From 4b665fc0bfee47f6e3e7afff64c36324dc68f39b Mon Sep 17 00:00:00 2001
From: TrueCharts-Bot <bot@truecharts.org>
Date: Tue, 15 Feb 2022 22:16:37 +0000
Subject: [PATCH] Commit new App releases for TrueCharts

Signed-off-by: TrueCharts-Bot <bot@truecharts.org>
---
 core/traefik/10.0.57/CHANGELOG.md             |   99 +
 core/traefik/10.0.57/CONFIG.md                |    8 +
 core/traefik/10.0.57/Chart.lock               |    6 +
 core/traefik/10.0.57/Chart.yaml               |   30 +
 core/traefik/10.0.57/README.md                |   39 +
 core/traefik/10.0.57/app-readme.md            |    3 +
 core/traefik/10.0.57/charts/common-8.15.4.tgz |  Bin 0 -> 41411 bytes
 core/traefik/10.0.57/crds/ingressroute.yaml   |  198 ++
 .../traefik/10.0.57/crds/ingressroutetcp.yaml |  160 ++
 .../traefik/10.0.57/crds/ingressrouteudp.yaml |   84 +
 core/traefik/10.0.57/crds/middlewares.yaml    |  563 ++++
 core/traefik/10.0.57/crds/middlewarestcp.yaml |   59 +
 .../10.0.57/crds/serverstransports.yaml       |  101 +
 core/traefik/10.0.57/crds/tlsoptions.yaml     |   87 +
 core/traefik/10.0.57/crds/tlsstores.yaml      |   64 +
 .../traefik/10.0.57/crds/traefikservices.yaml |  270 ++
 core/traefik/10.0.57/helm-values.md           |   44 +
 core/traefik/10.0.57/ix_values.yaml           |  316 +++
 core/traefik/10.0.57/questions.yaml           | 2462 +++++++++++++++++
 core/traefik/10.0.57/security.md              |  159 ++
 core/traefik/10.0.57/templates/_args.tpl      |  146 +
 core/traefik/10.0.57/templates/_helpers.tpl   |   22 +
 .../10.0.57/templates/_ingressclass.tpl       |   24 +
 .../10.0.57/templates/_ingressroute.tpl       |   25 +
 .../traefik/10.0.57/templates/_portalhook.tpl |   26 +
 .../traefik/10.0.57/templates/_tlsoptions.tpl |   12 +
 core/traefik/10.0.57/templates/common.yaml    |   24 +
 .../middlewares/basic-middleware.yaml         |   65 +
 .../templates/middlewares/basicauth.yaml      |   34 +
 .../10.0.57/templates/middlewares/chain.yaml  |   21 +
 .../templates/middlewares/forwardauth.yaml    |   30 +
 .../templates/middlewares/ipwhitelist.yaml    |   33 +
 .../templates/middlewares/ratelimit.yaml      |   19 +
 .../templates/middlewares/redirectScheme.yaml |   19 +
 .../templates/middlewares/redirectregex.yaml  |   20 +
 .../templates/middlewares/tc-chains.yaml      |   29 +
 .../templates/middlewares/tc-headers.yaml     |   64 +
 .../templates/middlewares/tc-nextcloud.yaml   |   25 +
 core/traefik/10.0.57/values.yaml              |    0
 39 files changed, 5390 insertions(+)
 create mode 100644 core/traefik/10.0.57/CHANGELOG.md
 create mode 100644 core/traefik/10.0.57/CONFIG.md
 create mode 100644 core/traefik/10.0.57/Chart.lock
 create mode 100644 core/traefik/10.0.57/Chart.yaml
 create mode 100644 core/traefik/10.0.57/README.md
 create mode 100644 core/traefik/10.0.57/app-readme.md
 create mode 100644 core/traefik/10.0.57/charts/common-8.15.4.tgz
 create mode 100644 core/traefik/10.0.57/crds/ingressroute.yaml
 create mode 100644 core/traefik/10.0.57/crds/ingressroutetcp.yaml
 create mode 100644 core/traefik/10.0.57/crds/ingressrouteudp.yaml
 create mode 100644 core/traefik/10.0.57/crds/middlewares.yaml
 create mode 100644 core/traefik/10.0.57/crds/middlewarestcp.yaml
 create mode 100644 core/traefik/10.0.57/crds/serverstransports.yaml
 create mode 100644 core/traefik/10.0.57/crds/tlsoptions.yaml
 create mode 100644 core/traefik/10.0.57/crds/tlsstores.yaml
 create mode 100644 core/traefik/10.0.57/crds/traefikservices.yaml
 create mode 100644 core/traefik/10.0.57/helm-values.md
 create mode 100644 core/traefik/10.0.57/ix_values.yaml
 create mode 100644 core/traefik/10.0.57/questions.yaml
 create mode 100644 core/traefik/10.0.57/security.md
 create mode 100644 core/traefik/10.0.57/templates/_args.tpl
 create mode 100644 core/traefik/10.0.57/templates/_helpers.tpl
 create mode 100644 core/traefik/10.0.57/templates/_ingressclass.tpl
 create mode 100644 core/traefik/10.0.57/templates/_ingressroute.tpl
 create mode 100644 core/traefik/10.0.57/templates/_portalhook.tpl
 create mode 100644 core/traefik/10.0.57/templates/_tlsoptions.tpl
 create mode 100644 core/traefik/10.0.57/templates/common.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/basic-middleware.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/basicauth.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/chain.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/forwardauth.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/ipwhitelist.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/ratelimit.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/redirectScheme.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/redirectregex.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/tc-chains.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/tc-headers.yaml
 create mode 100644 core/traefik/10.0.57/templates/middlewares/tc-nextcloud.yaml
 create mode 100644 core/traefik/10.0.57/values.yaml

diff --git a/core/traefik/10.0.57/CHANGELOG.md b/core/traefik/10.0.57/CHANGELOG.md
new file mode 100644
index 00000000000..54b301db1f7
--- /dev/null
+++ b/core/traefik/10.0.57/CHANGELOG.md
@@ -0,0 +1,99 @@
+# Changelog<br>
+
+
+<a name="traefik-10.0.57"></a>
+### [traefik-10.0.57](https://github.com/truecharts/apps/compare/traefik-10.0.56...traefik-10.0.57) (2022-02-15)
+
+#### Fix
+
+* fix errors rendering ingressroute
+
+
+
+<a name="traefik-10.0.56"></a>
+### [traefik-10.0.56](https://github.com/truecharts/apps/compare/traefik-10.0.55...traefik-10.0.56) (2022-02-15)
+
+#### Chore
+
+* update helm general non-major helm releases ([#1901](https://github.com/truecharts/apps/issues/1901))
+
+
+
+<a name="traefik-10.0.55"></a>
+### [traefik-10.0.55](https://github.com/truecharts/apps/compare/traefik-10.0.54...traefik-10.0.55) (2022-02-08)
+
+#### Chore
+
+* update helm general non-major helm releases ([#1871](https://github.com/truecharts/apps/issues/1871))
+
+
+
+<a name="traefik-10.0.54"></a>
+### [traefik-10.0.54](https://github.com/truecharts/apps/compare/traefik-10.0.53...traefik-10.0.54) (2022-02-06)
+
+#### Chore
+
+* update helm chart common to v8.15.0 ([#1859](https://github.com/truecharts/apps/issues/1859))
+
+
+
+<a name="traefik-10.0.53"></a>
+### [traefik-10.0.53](https://github.com/truecharts/apps/compare/traefik-10.0.52...traefik-10.0.53) (2022-02-05)
+
+#### Chore
+
+* update helm general non-major helm releases ([#1852](https://github.com/truecharts/apps/issues/1852))
+
+
+
+<a name="traefik-10.0.52"></a>
+### [traefik-10.0.52](https://github.com/truecharts/apps/compare/traefik-10.0.51...traefik-10.0.52) (2022-02-02)
+
+#### Chore
+
+* update helm general non-major helm releases ([#1828](https://github.com/truecharts/apps/issues/1828))
+
+
+
+<a name="traefik-10.0.51"></a>
+### [traefik-10.0.51](https://github.com/truecharts/apps/compare/traefik-10.0.50...traefik-10.0.51) (2022-01-31)
+
+#### Chore
+
+* update docker general non-major ([#1824](https://github.com/truecharts/apps/issues/1824))
+
+
+
+<a name="traefik-10.0.50"></a>
+### [traefik-10.0.50](https://github.com/truecharts/apps/compare/traefik-10.0.49...traefik-10.0.50) (2022-01-31)
+
+#### Chore
+
+* update docker general non-major docker tags ([#1823](https://github.com/truecharts/apps/issues/1823))
+
+
+
+<a name="traefik-10.0.49"></a>
+### [traefik-10.0.49](https://github.com/truecharts/apps/compare/traefik-10.0.48...traefik-10.0.49) (2022-01-31)
+
+#### Fix
+
+* introduce two basic changes with different CORS policy
+
+
+
+<a name="traefik-10.0.48"></a>
+### [traefik-10.0.48](https://github.com/truecharts/apps/compare/traefik-10.0.47...traefik-10.0.48) (2022-01-31)
+
+
+
+<a name="traefik-10.0.47"></a>
+### [traefik-10.0.47](https://github.com/truecharts/apps/compare/traefik-10.0.46...traefik-10.0.47) (2022-01-31)
+
+#### Fix
+
+* replace depricated header references
+
+
+
+<a name="traefik-10.0.46"></a>
diff --git a/core/traefik/10.0.57/CONFIG.md b/core/traefik/10.0.57/CONFIG.md
new file mode 100644
index 00000000000..fc9b2fa2d5f
--- /dev/null
+++ b/core/traefik/10.0.57/CONFIG.md
@@ -0,0 +1,8 @@
+# Configuration Options
+
+##### Connecting to other apps
+If you need to connect this App to other Apps on TrueNAS SCALE, please refer to our "Linking Apps Internally" quick-start guide:
+https://truecharts.org/manual/Quick-Start%20Guides/14-linking-apps/
+
+##### Available config options
+In the future this page is going to contain an automated list of options available in the installation/edit UI.
diff --git a/core/traefik/10.0.57/Chart.lock b/core/traefik/10.0.57/Chart.lock
new file mode 100644
index 00000000000..538a7e405cd
--- /dev/null
+++ b/core/traefik/10.0.57/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: common
+  repository: https://truecharts.org
+  version: 8.15.4
+digest: sha256:d6aca168828f3fef09de9fbc634c303d040d74299b508a7cedf473f66f5a4503
+generated: "2022-02-15T22:12:14.992793261Z"
diff --git a/core/traefik/10.0.57/Chart.yaml b/core/traefik/10.0.57/Chart.yaml
new file mode 100644
index 00000000000..74937191df7
--- /dev/null
+++ b/core/traefik/10.0.57/Chart.yaml
@@ -0,0 +1,30 @@
+apiVersion: v2
+appVersion: "2.6.0"
+dependencies:
+- name: common
+  repository: https://truecharts.org
+  version: 8.15.4
+deprecated: false
+description: Traefik is a flexible reverse proxy and Ingress Provider.
+home: https://github.com/truecharts/apps/tree/master/charts/stable/traefik
+icon: https://truecharts.org/_static/img/appicons/traefik-icon.png
+keywords:
+- traefik
+- ingress
+kubeVersion: '>=1.16.0-0'
+maintainers:
+- email: info@truecharts.org
+  name: TrueCharts
+  url: https://truecharts.org
+name: traefik
+sources:
+- https://github.com/traefik/traefik
+- https://github.com/traefik/traefik-helm-chart
+- https://traefik.io/
+type: application
+version: 10.0.57
+annotations:
+  truecharts.org/catagories: |
+    - network
+  truecharts.org/SCALE-support: "true"
+  truecharts.org/grade: U
diff --git a/core/traefik/10.0.57/README.md b/core/traefik/10.0.57/README.md
new file mode 100644
index 00000000000..b77d355dcf5
--- /dev/null
+++ b/core/traefik/10.0.57/README.md
@@ -0,0 +1,39 @@
+# Introduction
+
+Traefik is a flexible reverse proxy and Ingress Provider.
+
+TrueCharts are designed to be installed as TrueNAS SCALE app only. We can not guarantee this charts works as a stand-alone helm installation.
+**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/apps/issues/new/choose)**
+
+## Source Code
+
+* <https://github.com/traefik/traefik>
+* <https://github.com/traefik/traefik-helm-chart>
+* <https://traefik.io/>
+
+## Requirements
+
+Kubernetes: `>=1.16.0-0`
+
+## Dependencies
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://truecharts.org | common | 8.15.4 |
+
+## Installing the Chart
+
+To install this App on TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/03-Installing-an-App/).
+
+## Uninstalling the Chart
+
+To remove this App from TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/07-Deleting-an-App/).
+
+## Support
+
+- Please check our [quick-start guides](https://truecharts.org/manual/Quick-Start%20Guides/01-Open-Apps/) first.
+- See the [Wiki](https://truecharts.org)
+- Check our [Discord](https://discord.gg/tVsPTHWTtr)
+- Open a [issue](https://github.com/truecharts/apps/issues/new/choose)
+---
+All Rights Reserved - The TrueCharts Project
diff --git a/core/traefik/10.0.57/app-readme.md b/core/traefik/10.0.57/app-readme.md
new file mode 100644
index 00000000000..0fa481e7ac5
--- /dev/null
+++ b/core/traefik/10.0.57/app-readme.md
@@ -0,0 +1,3 @@
+Traefik is a flexible reverse proxy and Ingress Provider.
+
+This App is supplied by TrueCharts, for more information please visit https://truecharts.org
diff --git a/core/traefik/10.0.57/charts/common-8.15.4.tgz b/core/traefik/10.0.57/charts/common-8.15.4.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..4f4a29996001141ca329bc4d5314b4b4e69a7bb6
GIT binary patch
literal 41411
zcmV)xK$E{8iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0POvHciT9UFb>b(`V@GW^wV~4bhRuy+ReP{cGBHGlQ=%HlYaM^
zo#Q|xBw<XEYyy&_ap$}L4(<R6Qj~9f8FP0!76}vzK%uHoC{%^%Vv#1@<2lS}XAKwe
zU+(|u^?JS0aLE7d^?JpBd!xPnU;4vAZ!jG8`h&f{^!kJ0e*Z6^_W-z*o+Y6$|4Z-A
zZ52EB2YFzIKcSr9G#P`{paru`|BN9;gtj6?!W?Imzx!dCgzPU6<4F$lHJGM3xX71?
z6A)?5(*+uXIi(pHce^u8=gUbaOc!06FHy+LbYYf}F3l0@E+C;O@5=Xr6k9lC4Ji<C
z1u4u)M}S%ql!s|TQ9?P?W%pn-?DY=z_ghzJeVyhJ8MoTNG}dY>OxyfLs|{o`SIY^~
zUH$g2ulk+-sMBlrzHKcaPAJ3)$~iE!fH)oloJ`aIHh?>6K5GGxK-OPt003C#u|dC3
zK@^u5&~=8!3cc1!;d0pN?{|i+N1A`R{#P(wBJw~CpmzQDd;7y-uekmX`g>37|1q9t
zpxp-VGn9NfI|U>|A)ew8glRIxvt<t1T5mlA{~e(zT*j0YK1T>lP@G=3(hMc5EIC=g
z85*|$;IPg)j5VNh1Y`ja#uz0OU{<gNK#sDMV4CLZF__K6yn|DlKge2bQL8CjKp|U@
z6wVaq`foCagZ<HX67IqM(PR+zU+%-<WEi6TaC9)8^uj^!<#g|`w>R1!^wA{R>yM)8
z03Jl6!^v>4KY1Ar4<~!Q#u#MFI0ji7<8a*q{MQ-(F$O2o)0Cd&h_DW|IJBQ}j(%Li
zJlb~DuW^oMtYY=J8`uqpT*GVt%^v7gztigsdV_xNWq+v0`v9Wh^sv`I+&kPqMA2yP
z;N@gAJ)9nlriW-coc1TfgW+T_7)%a(`v<7^vOj^n$q?;NM}wCyUpB#EtD(;FbU`7G
zw;gF!uX><0<c8y{%5R3{jPjr}><rZK_7D1~cNm3H)Q?7C@8x7VeK~v??j3|^I2|7B
zk0vh>>h<>q)5GX+INIyKJRD6S91QmMM+4|5=R(_Cjc$S{nWrh;c63#}>e1DZ8;-6j
zzZq6Fv)J$LM|;D)9*Pdael*;hqNsluO`?AP;9znvLg8dI4fhU4{r=u09QLEVVFU+z
zy>QqYz~SNkeuK8FNB1bchHE0nHB2K!P`*O>wj*n5R*x+!)0W^H4zE?E5k!ZChm29E
zL7u)mINaMG_6Ff}uh$z*!|8PL679kLa55T3(?fJ{2;s1gro#!`@4>zP{$coXI2a5D
zFQdWq05xlVD=LO@h7+{yNQ+w4qkJTwHXL99Z4(@4Sob=8i!}^;FZcIe4&h`1(aYWe
zdO4i*r-NxUK!XU4!r^q#>%;xY%Y)u<|6p%0+za6$n)FA}<S>jT2jRx1w`030p|c#3
zU$$qwx@HaQHPD+fUtOaKJXg#OJN-^ib6_+Xp$P56!@bFHI*R)HqrJWG<>6%ba(dX`
zo9w;Z@4rNQgT1}U!2s<?gZ=;>jHU-@@NyDH{ewo$Hy!HMEKVmdHe-Y+fC)%fD9>?(
z_y$d|cr?XdKsx2Wrpq{Hn-RH%c`r*lP*^#XP@E%P21ICz6U-+LXaIIiOwNyw-o6=w
zDU1nfwb)KAPvaQn8ZJuUBt~+<s;`|EkRPHk-@6sDFhv2|G<Ep*PcX(2NcqN;0GKlb
zvp8KZP(ojT2%<%r5JW+m141E1(`8H$lMQ0uWePhZ7e%~>Fa|J5QVIq1G~sxdI$aB7
zSGUyycCELV&@uS?KLmWaRV3*G$$@_c0O0#B@s|H-<8pTl#^B~_MekxbLGd<VMTNWe
z>6Xpf9XVYtCMaiw93g^p6oD*_h*<tH4j~zXehmRFvsn%!1PIL`MYA<8`a_z7*BTk}
zg7pDMq9=m3KA<p1kRq@nIo2+KNd!Kmag3AM$1H+W(j|j+E_-v1yujWkuThLBDuXcK
z1+dqAC>R)kXGxl~rGp9krtoJ=E4M+g7gqPp7#CVvz%O8#z!k(XTY9{f^?MsIWSP$d
z0RC5@sx`HRx*5!=Vkp4;(%j;Mm{A5KM=MNlnt(YbjKhN%FEHh^E<XGu-oIt9$6&A3
z!j9+=Ow~vTS6sNI4Ci;>SF&U&@VKx7=O{)YO>+R_IK3vE0V7D(Aj9DmPG$gt2v4Ud
zHyg(Yhx7%&i!9A4OsMABoSlLnKc0xrD9B?F@ZUj8HmsPir1ixDCeaSr)o_%MWy^pY
zwpy|fU&<aBFrSf{+U&Dc^(cx&4V-8e18AxsE%}-PZ2Bi_1+CM12F`N4fH{uWo(`ig
zG>1oSJ8Cs&yxtn{;fl2h^7QCj0BDI1MWHi82@;Bjl7bR|P)Zgsv*nPGVG@EKoHI!0
zU`g0C&QZJoE0|+ef$)+Ur1LTOw)<_V9&2r$68b`r!xy;7Vl-ysA%H;;E(uK+;N*<g
zWo5^p|8mgjj}AMdQD@`@3708dK#D^c$7?WybdDH9#0gU+2=5=SCtsYUIUR%1Xk-m&
zy~NAXsFkJBkw>a|_`jF?x1L#zHEDq}doO~n^pG{*x`L@WT7H@2K($bLjVQ_&I6(wl
z&k-AFvmgZJv#KCpCInn#ItLdQ|D&j>)1q{()uP*hBQ(N^0my&4Ao(%`KczYT7lRao
zvor!nOPZ1p#wagn+y50|!eRZj1!WnWaE@160u<&mM8}Mfj2Mste}R(^TJC~pT=XvB
z7x!JSr=c95ef&sqjQ_>w`V8eEN+@I0tl*(3_YN)6d|g{q^!iwcWw!IfA%bC;E)!b0
zvyjD(M6trg0$Y;-6+|FG0y0mRaRep^2u&br0r{7n1_{lgWyS_!6e(_4fa%fJ6pV|x
z)Vd|BDq=%Zuq0CBIGKVZrJTVsg+eMSm~dVC1%Lt&CW-^1NOB!}Cjcl~WHF>jpK1hw
zJH!wi$4f#{{vnNp>SF!=9w!k_W|ae<PhhBr`wgcs!c=ofg@ohM0Dg%)ZB_56%w8-I
zY`)Addx2LfsFk%#?5Z&qsv|Bu`F2~R%&3%M)uH%d$%o(9$(((1Dloo6mXm*?kP=16
zWgI$E(1h_alG6z%=}NDb;tB;Crp08BrFnqc%&yb?N+?)bKj1rgz=T|<&aP-`ZX`LU
zbOm(@(Tx8kt7K`Ubv&i6>w#fffjDXeL>6j`=@S})sXNvK%os$PgB&f`c*!oaT`K8-
z_nDkQDZ*a>B>$B!+Tu4;NO{EzzPn{>*9#pf%^=1h=4y+0Bh;*hRb<naYW9(coe79=
zjzSu*0i+a$b1B9c7nI5!PAJN!Fyu3M79&X5!~u8>b2J7Q48~-gK|&A#SBFHA4PhD~
z$`cr$C;-ITh%$Xie;9)RC1fv<`%#?1#aR9=H~&F253``6?j-NkRb|^59I6sP{5&~3
zwk=ykR|2370;R|GI{iVfI~W!!e@K@Uxm6-WC{Ca_bPswR{(oJK7k_4uqHDMwJMi_M
zK+gzGL6&CASg>%y_OVo`6pUWwu5_I)rIBvU=H+`iA%M;y*SQI@_peOapd`%K8C%#!
zsed8l50{f%6`isjE8Cy34dydW2FZGoMr(lp3`0g)a_LxS&|r#V)M*K1_2&QV==}WW
z_a9!5!D8KJByyeRk?ig}$hD&t&eMeNQnhB@0T)uT8SUvAIA13eeo^M5aqAg4+65Q?
zZwx+O9J2w~6|KD<gKuwcK<5MEl-fCElJe`<Z(Gm6u`be*Q-YG!4|%%KzX9lUIxUo}
zcn_XE1D_O5qWf}0ncSY{=|W3jw#dZ}fmQmMj}*uS21+Ryg9t6s7s5y<3bXbFOmL0k
z7)+2T)P~UlCk&5^EY^d0@#fvx+oOv&m!FQ_eta_qfv20ICQ}2daOZgMSbLgXj?wG%
zI=O~<1dh&5SY^hYl}p6ca)R;%QA9d8?M7)xx)hQt(!~iA2ki(_*oGO`AKBz|tyyiW
zS#6^)SxQhlOQSYUrfI$qWmzvjG1T}(sJ@=QfBok2^yu9iwZ^6x#nA^eHEWK)Ipg~`
zwhlT;8X-0ct(KZqwYd<x#dk2{^+j#v*TKHD7cgtfeMeiaw^C8@S{G}BW3m0qa-8Ov
zu0a?>BDUbhSU{O1<-|P^Mq?7rQM6>by{dQ2s-5yCz%xMBgrY^8^`#x=nC}zSW<eMy
z<eGQ3pc*R2wWWV*u<-hdO>R4a$qeP`lC%vXRnXBFHldhuZp&$yAWE6;qFyK~%FlC@
zs4aF%=&2CUU;(cXAWSvjyb4heB}B=}6nvH%$qzUulr5Q`MBUFV3rKMbW<+;jR}TQ5
zI&EVjDsuJ~RJ7!)#T4*POC!oh&#ta)FPYrnzCJxy<3e8O!xE*cCs9g?WLaPV*C0nE
zjaLXHBu>+-Wd<-IOQG1YjV}0`UTO^LG9w%pA*mSYYwjn6jv!6mN=xuBxoZykf!q~{
z12!dj34(bzN46p$^sKJbu{heU-NnnJIiV{_&)D<d|DL1iKmM^(!!*J)2~kE#SJi7v
zT@EKR_Az11#Ns2QEem#^3AuxlS)0z0dcE5c;^AEUe2bGS;u6d;Oqi;&B#3J?j0On`
zmwer&2}NIMCxjWC;22Z3mrR$G;7D)be*AdCX2vyDi8Xg@Rb#Ue<!L6z7)G|0&M3&-
zTqauwvU#m1p9v$zxr-e)6)%$`@{yo?4E9Hd>cx+Fy3Ev@sr!>Gvn)nzzF^EhsM(k0
zj^~UGC<1?<d`MIJ4wD6>;e0!+7fgm5D<dgmpXGRkV>Gj^6FGv>`y^hoc7MPz5=>7Y
zBylV3nX31OgfNzBl?K2@;56lk>uO<PMw~gRpOqL-QMe9cRMjzEz}op-a2?As0Z9?g
zuzLX@0WbkL!Bm%E`+7#gY?0vw0+0fn5DMcMq)EK)wB)a24f38_LrlF#5#}dsOJUHL
zl+O1*ot8Xm@nWFPK4G%vEtx`md&h8yFn2YD`5It~7Ni5-uqK_-$|^I5D+Dm(j@Jpe
zLR^Wxn4=;L_DS?LQua6D&Xq?f?|`3BY-wR2H0zxWr;TJqPb^zy*tkQ!N_G9J!_vU=
z;(C^+6I42cZ?~K9TcM<>x<d8R_*(B{yg~`vn6ib5`Co*>oG!C=#+oPH-8zq}iP{OZ
z+u*GP1u_rbtc)KD015}|B<hVhd5#^hEup%*$Is6Bq1Z%yW}iMYA<q<$YfR=`2*}xA
zr^}pAk^+9FVG9;-_>F{35GBg_YJ&Lg5?nLghwZKkrve61x6i@F@mbI^o70QqGt<Dy
z6hQFP#l@Ly0TUs*l+A*(C-%L|{&TM7@2==_2I*YY@ipBI<f$Fgnbj|CyJX`clxjuP
z#NKZf&z77~>qt;1Q>p94C}bPW&uS$3OuP_iiZ<qH91#UkdMPMw<b_>DIe=q6miiBe
z1mo8zhU;?_rb$G`px={UGn8X4WDD;ZhfJ4Lf7qArrx3@>99_(FL>R*Ci#h6yAifo?
z>t*IAcK!K5s9i&UBKK{`-5s`jrguN^-y6Z73z@Jrxl38%Cw5{3y=PLFu%8Hh8$!1S
z?Vicp2l_sUyhzLg`Tp56VVzzem=J&|m@_>YEZ`TsSS}b=``_*LUiJ5TY*)zYax!9A
zf@KCK!WfDvUlqi^qN*3psMl%<jTJgBGVa!c&n=|jdX7V3-<@K%G*au0yBYbG01GTw
zAVT0w8xX;DjwwY+M>Qw(#5y%GN8DN!BI{!tX1L3?=5Y$6c8*B8%tJ)FOod$ayU+B7
zsNLUX`zwhBH^*s)ags!ACy&59y>8wSb84%M;8B(P;Aggb{LF1UpMQXHJb~fWMfx_K
zk@v})JWun_ztJ!#CnMSTYsn@7P7I}qb19G@B<N0!1p>1ihG@Es<Mkt9&vECio|WW9
zaldTseH5G8>adR}V~zCw@a@Mp06y}dAoo--ip2Q_LsNQg=`9@FN)o)lG0fEo#<z?l
zzg1v1Vm;=*5;!Tzvhp#dtl<%9rtUj<rH*_oCn@DPu)}2pPK3}PFPJ#uCk-_0bUM2h
zbLJ;EOhPP#zadOOUx9gH*<tzFP@2SR^O@Iz`4x)TepjL(K+7K`tQ~(QVHjRcr}&Ei
zuVkB;I!v5_aQ%-xAhi^dN3KE=XfHZ(#$9j~RXt&XSANxJu;+M@#c1bk3Zn^(VG^Qz
z_XS`-zn4E>DD&>g*$Z%*M(9kqU@1YazX~go*IBs2wYJi^R(9YlPgktd6%JiO04(5|
zn|aVLOPmW<==DMI`1{@xty_8hR(DB)s_9Ma_)wI@qy<Y_dbyh%uuhRAYuKbxuxe(2
ztR7o#{Wz1y@*SIsl39$-DGaY(fHTf&UoT-SUwjaq(Qi0hoc#b7I9@9&s|BLv>Ss6u
zQ&tpn#sO`&C2k=yXq=p_hA-HEM|KmKTl2v`ykjS<w+#l(;;DR;Zp~1cjItPNqbX5p
zo?)#U*=wd&X$61Xz+?GXY+$e!oLll(G2)dBwt~qz)WJa{+=1TINpm_blx19t^@FBi
z8h5O3=gW-4u$%!tvt7pL7vkS@_Q%EXnN*`bzCQbGR~H)+_DOC{GI*T;$o4nJ!!3!x
z3{k`PxyJ}2rH>!p@~>P<m{TRI_X6QDhhFHCHq#mo&m9eUR||VTapdZV1Kw+KN<T-y
zI#%LeI_~U#HlRPV8I#waP$V}u)--4dhZB8ML0EvT9S=?jMKA*C)M|&7{+#h9_-u68
z3`>^_HbRkHddgvgh^e!MDc@un+zr-6dT?$tN~tDY4U|%4OF=$MO8PkxmDnS7*F!#i
zp2r~bQ*PElv(gl%<C0n^9heyN-mDdJTYWVL6Q3={C4m>TzrX*ZWwlzVtjaP?v{h5|
zZtALpQ?0HlcdzE^su}`^oobJ|T3)Jr*YBvWYIiw5FIBBPxW1|fw@zWzr{$@-<pUG#
zR0S3|isEaSBYQl5z+X`Gj(tJ=QwdK_+v!x)7G)HVp*ciTd}V*RIwazJKZ7AsPRnpf
zQ+>NYLKeQj{D9D?jmDkKhRK)!%reCGrwl&(Et@uNY40ynQ+$-|nL8qST%7}SjjLG~
zI|OCi&3V^BhvAqmDd3(%(xqadT1QFLUJ@x4r^T_A9Hq_HB2L;9NN{KkwY4Vy6r;Yd
z$x0n~|30@WN|d;wLoGV)L^TG<3@2YIiqe?0VaVOx*#Zjw;G3U&-ZrUCu^dqDUDkxr
zJyY8lV*4QRAWJXBZo>ko{mKG9QF02NJu67Yc}l2}infH|U(6yEsQ;7_es_o?<(`=<
zdC9$uE&WGay5jP-E!`PAaT>zd=qyE~GDznJDF(o3qwJH}e;CZpAf0zWGn9a~#CM%{
z!XnCLMZ~mMrr=o-t-xPjfqthyZ1+l#gn#%MzYXquw2V@vmXy$Pj8Q`RX;Yyg1=dUf
zig56244Es)%^+Lbmx4NV@%Fq(E*<cFO6Su1k~_IF_9!Te%|Mo?+#?yfvm@q%#>C<V
z+P71XuR}F$8WRg6b$v$qUh`c9<nCbl48)abA<8M9a%;C{GJxOWIz~Bl&azzc*Z$)^
zA}*?%8KV_K*$CGt!XKr#o4i#76PvBDJ|N*7#>AY!p21n9%Y-r^`|<pH5Fz2ge<!Wl
z!nUkgixw&s>t;QDDC7#Qdok2b#SQd+tL$wRe*xlKkn$Ti)tbM)8Oz8k)PAEIw117D
zPyg4o#a*Yu1v$5>bNL@^x?Jbh^=S$mfG!3iNFh++1PlCFUlm~WSV2eKn5O9%OkiF|
zX?LcwhI1&r!YUl93_kkEQ2ITWaCOe$`N1LS)E>n*CJ4JF*6Av`xK|~UUx#&x<?Pe3
zB>6v~-CK7$)(fl9-zpWaJW1B!N9mk&%qTI7(b=ct7xK@a&R&3Q6}|vyk<s;QoWGE=
z?uA)xFSwlI_vaa{@gslhU?f}FJF01#hdP=;#zSSWzF0&5Gmc}f_3$lIvexl!a=9ND
zJ2?jDRNrRR@PFne1DXmsB^(&ic)37ov*w;Hs{yue41DhX7enVVonF#8x)jy_`uT+{
zD!uqw$#2`=O6f`LmL^N;t`hP79m7a8$dMCwQou7HT`bGz40vjTHTHg99Yx$9s4aYg
zSzYBXU1G>vS~f&`^@fden&xnZz_Gr~Vi>gpfE#iM;`f?Aw?DrC(K>+(95Rhe#P?u>
z$?q2ui!nRZxc1The?Odme&P6_Xb>p(*bijC%JA5lrgMIGB_>FKoZ%Hp01>?sohsK~
zCfsz3BCunjvCBzQfKHZi`~oDY1Bt7n+`Wb$bF#HFPqn4O*BjBM4MS|B+BT_6Z<}i<
zE{*4C$?vfM^aT@6p<xX1;)R)X>0YD1vxVpEPOOt2Rp^+(;Ek`-W!~l>EgU{dQ(l-R
z|5O2lx$)w&1K@MVx`+<}Sx(x*St%ikEcKosG7DDO#<`z#F5>_3+r@h6u&Hd5<%Dk^
zBwAu|<!J_I@;-pW7LWK9k$0&bK}#`6S|Htb#>ALPm7eR#;&$UAjgVeK#t1)=u4Qui
z#Jol*|34DwR>pAwqiZm13k-?6>(XXe5MdgJx@%+b0m10!98>h3sjjB`7jp!lV2<fj
z<EVPU1P>zSD4}v}2>urugO@K~{)jbjVN^)@CPq*sW3uAf%BN$n%+dsW=D}5#iM+$`
zSu!qGuz2tPSno@e@KKb(CSwkBrmxUzgc1N_+bzFkjq)~wtVfo&7vX%j-d~ZS5RF}x
zM{nSS@Kcx<xqeqv_84RqD8fr_y$nR8jKD}U2<Rf460q~(=v{jP!z(sV`eMwkS}_u+
z_NEh4tN^o_W_5`^^N})%f9I=8H0-h(ekgU0|AoZI?|JK=#E5+cQv@knCNmkILXO7^
z&Y?n>DA{R_>hQnB`de^tK=wvXfuS)O^$9!!eL-n|2+~-=JWglimb9^gd6!jxqK-$V
z4#D)$B1?G$d^t9?GtElha+>KP`yEcOoZUa)<UZcg&zH%#Y9riW>F3Mji7uMcg^mLw
zV<n_h0L_kcAw$yKZR!~~refAlJuB6Y&}zfvE8Of&E8F{XjaXU~Sef#MucHq|B)LRr
zWhu7mc#&^LGL$bcA$)Hy?k0ru^g0o7Jm!m3kOM*V%oHqb96h^fskb-WOX~{+Y+61m
z%s&_DJ_y)0c(HzM_vhS>V4$jAtTS#sVcUpsj>0SDeoynY+?BhyDy-N<StnLe8uI9c
z(j=DV$`Im?v5vV@wKwO(vBl0@o#mHFR=A-4hLkHTJ`D(1nTGC4z@o?ZPsR%F6EXj0
z#4K+?85*v%H1mS(g$mkNLw1&B@ege3v-<mR2EW(bOeIWmVkSOGkQoZOmFEt&2*q23
z%|ZNP9dOQ3v~_r_Ujb$55(bLlpl5v&R`|ubt%9Uf(3Lv2YC>A7tU4{-L|@J+Q`tMx
zGNBnXgb|)mh?yo{Uwk-~-7*1${=oG6(B$i#ae1`9dAeobrDk(23U8ih*?PlSE<$~p
z;VK3d83v`DA^8|BY`d&Ao(}6cI5_a~Iyqb7^tC)${Jrrex<czQSQ3=$!zZA9au)0M
zEKiqNcd>5kBCQQ3Z!7PCq%w0D_}TKbz)6HxI9kG(&CHbwB+etC5DJqJby{MCx$#^D
zxg#=A89%e;F~{tkBYVqV+D72Ou>uGDyRh8yt<$q-;C&AGu>puNp;m}xw)t9SrB<xh
z+6+(U=v@50Mf-yvvH0bjafEXOv$lNK=1zWc)K3{*2n#$L@GwmX%^~IifwvN3BAyve
zW^J?*$M9W92%aT8><QcVcAq6Y&5pQCw%cOA&Yi1e7Tpm5r`(%=ZQ&$Bt!^FdstIbU
zwKhzmHcTjPt2etX^_K@pnr3O7&erD{Taw3j#8llC<yS<-JyF#_oA4IeW-yqdP}Mxq
zvG*46%lQ?$9)thF2}LuM|CN)6s`xjyR{x98949mJ<$8{ij|qVklPM21R`|}3#Lcw*
zm*CWYErj-=d=O|F%Nr-;9_Eb0<nv?T@-fhj6vC@A{ro7#kRa{&BDFS@&>V}mT|~pK
z@MmMAm1T_WpPVU2NKr^d+`E@ZYcPu15`i{NISnEjwmA-M#_{-{Z74AB?zXIc=y}DN
z6~(mQ>Gyhq3usIQCu@U1xwM7pB2e$Hudh4KdpBKxx~i;>tqACf>=C3QKv$=wZ#R!y
z;2HQCfhAe;5c@d_)5QWM5%)c?!bF(J9<ruzyiP%k;7VR|;PC<&$%i;y5(YV(r`Ylo
zVlt#7q71;8qyQ&O7VsM$bH?zA@FgN3UnXn|ZN<`)VL4+=X^a?XjmQf?mf@T={thRY
zO>ajX3P-6v7gqhSsx1@IS22pyG>+429&Gv<h#9+h0bumcC85HR9ukls#?xWG7I9!@
z_+YWU$m2Db<lOZfPASU4w`PpL?eLIIY(|9K4YTDK412xaLK+trJg3v)kC?~15wmC&
z?H3B}_ugR>=}hKZm3~<A1eO4TRw#!tTN-V)306VT#8J17XBF}DeChL0>uUw0NJsvy
zZCQJGeL6dp&3C{FZO}B3`DOS`7o1Gf7t$h-E-CnXy3E-opNPdg?()^!xjH0mNZa#t
z!B<B&UFK~QrCO!kZL2i7ayYurbWX_jDogx^AuD2U3xHK-Uk$Q#W!6ugxXG8aNjh}A
z&^a~J9N76Nb;2fD(7uaPpSM($tG+EN8#H@Qac~f!gkmT>sAL>TW!GViojVum`KoKf
zT@8aNveE{nLKF+TcDkG?-({sMYBLMaWsRfK6^`TcYfQtrby$SH@c8PHj4?_sPtI0D
z?WpGaIx5~ymRyl_#R@m4Mz9ccv0@C}i3i16MPG_IwnBaC%a9^2o{BUg{2!J5EK2~v
z5elJ|7Q?b?@g0F<&XPMZ)+>=yXDTxAXlEmivE1&h93zB^`uuxF*zrdM;F;}^h?12t
zk(BeCfRb0C31}a2#LJGKa$CeHe4^K|*sY1uKj2t9^q0>xy@wdLvI08?8LKQ||LZUm
z<kuwSdsL_GdpD(SZ%i$jQ`vY0EstzaiPX!|!OmzYxH8xKgjbPp&;9*L4GZZeGQ*@Q
zEeG_<mq}6{3B$9nN!a7D;<y|SChMBW!!~?v_IwC7Vdr$c4Y#oBKPc01#?ER~rVZoz
zpGobdEK+R8h8gK8dsCZRMMOmR2<IXVgykw0r}7RxO+l86Mx4n|fI=Q)SagghAJgWU
zb{j4=e`$jxO)M@@M8NtINO#(9XGK_xK}7%$xy=C_{W+w1UYYX1<o_HcF3Oax4+%_W
z=HYIm!o?D1nF>HFmW8^A$=FT?=Q=?r&Iz?>%Cg6C*b=YTI2S?MY^6xJjK^yc`&e-d
z2!6!WN_xi_JJUM2V=d1&mE#qp2%Mk)#Q4TW^=XEwqdI+n*SxNRqhJ8(`ObIeTH)bU
zzJ~;jhHaFv5sZqpJ0ceRB<1-A)H-8IBX^JGdpp_Y6=J*eD?}I_g-nH0;X<s|MQcSI
z-Y7>`X&00WlD+ZwMno1CIz9T5@w7NtnSC>nmsRs%1U}>FGAHn};>8Y1=Q6{EQu+#)
z@N9Ny0#_J6>Y{+?Y?R1u03yzCENa(I#)aT6N=dcDtCX3yDKrNC!QP;6z4c)PoR}Rd
z#-YU4#G<g;u?jqU_8?IyIN%&j$94HCZV{EjX~6zrqEvvrQNMQ}=)elOP@;oGM=#id
z5R7HL>Jl~B<{EY3W>(=2E|6Ju#ME`_Zq$12$+FtMJFlFfZhPgm^3toi&AFXUrW55G
zh0N$=aXJ%bA2P?84lfX=S9l9WtzKVJ?bm5b8po!p5@@a|Y1m#h>6TiN26`)<NY{Qm
zjmR2dpFU*N6zc|=Ah3@g-m+f5O|LNjz=*?jwz$x@$~o=K^z|{J0mxb|Y}t!ARkwrm
zrE#g`unOJpI;?<qzb-p&C5Py3w=NPy$vhR;vDCWA(<LJT{yNb)QFwxqYfR@{=QvBF
zds`a{hq|?)@qCDFga&?}i$epw)#A{#AJ)e3>{&}j$0g?IO#}z#cW;<dCYodzOt}d+
zp(?0Lgff&cl?@}pK*?MMCL_KsurB2;sJQm3>v|KKs#`}|`-&!Ejv^8$nh)JfFFb}2
zOhg)I!R$F*B`HPnO6JE8Z_i~?PD>)NDR})oBi>~mTL*3*P=v|$-O5?DW<BCXAGcEr
zM%U3~`)<jK%{nFvKUUZN@+W@;XYcBCBHc@qK=>?;O#0vs&Ei|O(d+ekqv4SM+w1j;
z{|@#>`+w;V2fe{?*y|7W{?Z%t27`mYfZjd#)%z^jhW#(SJGWKr+#lq*x#@n_;+$KD
zKHwV(d0IJ%mnh4z%t=2txuvsIM5+?RAw8UAY#_EnS2>bRqG4Bu=(N7;e*N0IxzS!e
zfhf?KXD|TmuS{sNuXqYNpM;#Z@>F*uqmTtf(dY9F@>{gyS1J*$hAPgxRkGs%bljR^
zyV<<**RQR1yWN5rmfMdpu(0c{1`|YKzjcL^XbdV=RBM4K6mB}ov+?G}bb_NN_gNaz
zB4*+{!{}F#V8(SR7_zD=-aT*Xg7;45I|RVNI?G6R)t4tu4BMNVivAnNCAOWCqX2+~
zyKkbz$bw(BZNVOE4!}tvUIE1_V}a^R0Cv9dDgdU81z=ACKs3jpJ<NWht50FBhNCS_
zEg$3ow^FX<PqWpPStGNhej^$<TA>`ykk!bB(cOd*>k>*L`)6$rYm%?uvXcvQFX#^a
zY=D>3RrRASIgR@Jw`RJ(qo*wYVI1E<*883f^1rt~=(+O0KkN^m<o}~QT>i`C$uwVQ
zsgm_&kuB5uvF$qFspg1p(b;~IZ`NaRgsKzMO(0XprS(FFH;B}py;A(cIJU)q_dD>T
zi1e&X?l6h$EryIl{ax4A84B`?CqI<}%L6w@3u*9IYD_IOwz)jFA^wqBOL_h4TMPHb
z1vaez{-D2CSpWNb!@<+~e~gE({||g67lOCx#h}7WDNhiY-Lq-|Yx=2L#v(Ym6~zu(
zZ8$40hsg|q=d8jD@Z4Od8Nbp>f_dpGH>PxHs~}Z=T|hu$K&>X)U%$3=>F#$Ta*uUF
zW=A|K1)vj`L-+uh2IY}OvE7aX$>1olykvN>#!L7HcEv!9lG8`clUiPQAb8IwSbz(_
zPJ~0sW>HUHvB}-S5EdCDKPR&1BmmEA^)gE>`vbDhKgCn#|2iJsWAXpNU{uuq_V-5p
zC;tB!Pp$ojF*Vl$#0{jJK+g4rH;>gvp6_g9_R(Y)c#SL4Od(7Z8Uw!xrIGpO4z?9l
zf&2bif=FHKk^vYUUP;scfs42rmgbH2;e3SxY8C0IOEz9K>yWfVV_JAr<7r{3j7vEZ
zq3C|Xgr@mghTO2W@K$@ivI4M9$i<Q1dE?(&Q&TrN9aZ<OXRby9yrOFf-Xa(PO2b{%
zoNvfGY#7`o58X+3#y(4<qw<*7jC%o?Wx#Q1_YOmJSVW_U@!J9^H$k?9uAO_+t2Y=b
z$<oL(iBC$xgFPPkufx>dmjbXs{_hPB_KWg=|6uP){y)ZZ8~LvZ<bD+Z4Yr8}pbI~#
z0Dl4%Aom^LI5p+bjYi`+p*f^zwr2ZTwJ8riAVGkE4~VW|pDn^90y_z^;29vhr7vk5
z<7D<Ri^OMZ(54W_V23Z1DF{we3LseV%Wk?l&jijEk+pz!z9GATX=1lD&Op}}R4Ptg
zZf-2J8jxddBMypY2|fnsm%5(rq&eu2Wj;fovrOO$;uub1q=&$1VC+#TtV*W+1^n{S
zycd&Sqer+91vWOUbM~eI6wh&(8SN)!^hp{0H&RB+`k(UpzP~fTjr!kS$^O&ZA3o`S
zkMVHhwr&4Ek#`Gft^c4(iIc=rZ~8ZhD;rw=)qMxc?yp`Itp194D{TJqvt{vDaD4Xu
zNJUsGTk?h4kkSH3$CxkG2X2?&DY6-bs7x~%faklrb=H3u^NqIu_U(-Sdivb<ni~F1
zb>Oxvr<1YKFE7Az8e3CP970-V@puY4I{lUXQTEF@LK(jTJ3uL7->ll-tO5|wSad2v
zUw}K#CED3^EaPjl)Ff}U4&p|P3VKgz2F)1yh@lSi%|}2er$41}gz~^@$2)9ALO?m~
zh<kL_*^jqNbxN53e5fUP6<y{@DFj<FeXNYdwt-KX<!4yWbIChSG?!vK3^p*gU{CGs
z_>-BM5)xvKyKakWjh9wD2bLqkHbvuCAPAb^UT(91J!g7zNdAV_redImaM$!sO-7-2
z5}{WGezmbD>f}_`cN{l0%qz4eo-X_<Z_<{5y8!-OUBt@zpS-Gbmc}?---{MlumAOX
zqyDg<|BVLw`%n7cV?5mc_kGF6cWM)X4s1Dx`lgoT{5o$v4}Mf_+>=C=ad?4VZI&0R
zOLmGsN<*M9`Z-8B#zAxawsUpJ@2;-;j$!Z)hQ94=ifVhArO~-%N~rCuRkp%tx1qeK
z!El$G;Y!P$#Rg-dttTZj$K8w^w#?qxb@mSr%VJyQ&@Y?I8)cQ(G+)RV{5_BoAoz#f
z-KLOH4d6El?ri`|l-qR;D9m2~(^fMfS+SI?jS|wg%8e$lxmFv{)X;^jMN^yho+m<w
z;McaC4>+5YJ{XK~_I;d&SCt<+A&zoT*u-TM@JghQ($46zxD}fKN4YQsRztGeL0>|Y
zIeQE7#<gn6zE@XjH@80ew`=7$o{cBy=uGaK5$u8;p(U~5*)4T6&Art+*3#!7s*1e%
zk}-nd*23a;kWYSbMoMt>NUEW)N5<Z3c+9Yx>D5E=aK!$=f?Xc^P3YMJQNq#s*c4G4
z-uBquf^=-@(THfQ3T1LBeRK(>2$7SDepwKb8hwjZv?~ia`(rg}Rk${#rmFgPprhIm
z+KPf|A>B9alxWG(OT_hmS<DIxQ>llHD)o?C2{p(3X9Y{yB-WgIZJvs~B-wa=_9xl)
zB-@^3TT{;TB-@^3+aFoBJ*sGP?2Ny)&9Q9%)7RS`%m06Gv{$tM?GO8-C;Q)HJly_w
zj>0sFV7|65fijk=4Eb>iBbhy&7Q&iWn*6M5lFnhUIBb?V#wp4Z7@s5*<x?IU-Z}-Y
zJZ3Cc3qS{0E3yZii=HwHlqa4po>rVc+t=fHSoe+zLTDQ&L6wURH;0-!+T+l}b_|9l
z9(*lkY>-tn^q`36Doc1?8TatUi{2_rn&DN9dbh=}sjAHfP1R_IS~2k07O1JJ%~4Y|
zHlX(X633Cb5x9U^Jz1OUa-C`-HbBh{>-uZTtI)mjT)q{}163Y{VY*Ccq3qP>M(7(T
z$MRXoZ3KdXQ?I2x6p*nCmPSET@|jx84La9|YT7g9?$Vr<yD0$mEjmSO+jPKGJC+ua
z5x%4qsO}aI+BxBr=(mJ*K7nBsU6u;-&^-;yO6qG|UR(PsIlV=*GL)}jfu81tlR_Dq
zXH{1(S*|U@xDu=Kp^<wKR_gp?>w_NsZxudn{Ez;icTkG|aqx8i|52XO{r@u)o?T`G
z<>}>a8x4R<A-^+VwhA{o04k5MvrosidyS4EAEJUVVp=OJt!32?`UULh3j!P+{#`Id
z{$f|U^6_di-XQOE$rxm{Yxxi|<l04R0EbvA-}ttFxuv3;mv9~1wB_CG?PawTc-n31
z`zJ=$VQ0mycJXld=1=8G{l|RD{GUnu`xOA2?*H!(21WkA*MH*wkMe94{}INqB_BSS
z<fHd`5m2a{9v2}_nFY@v+Y5+)hfB)CRPviGmN$@aA(H72KBO`F9bFvch`Uz?Z|-nm
zu&RZv@B5Xwbr~kl49Y(9KhzOiwJVYY$n@j8P2cx8iEuJ|n#Jv!$<r9gK%g+gKj!H&
zs~P#03JPkko2^~qmV!Bq`H`!Dckb98IFcKHy4H$Qdm4c`kQ2wEA5e@SL7h|ex}<tk
z4X(n~l<|z~pi-0h<9QC3<-gb&-=_w!LH_sld!wTKA070b<o{zlQvM@w?#W><g?P27
zR#p^`FxEU<0RC<Gw74z(K7+q3QCWaVD-mN+JSFsNiC*2Z|FdmheCwYx+Q+;9IT-ee
z`u~1!__Y2X<tf>JRC?Q6+IzHFx9$R{N}JX6{-?^-Wm$mKE7$s?N><&klAkTxje>KV
zc#o=XMYKnAN7QMy`5jT!nWlF{-QGP=d`LaPZgWk|M5ek|2llhqmZVaB^G}^i6Ngwg
z5oO(NzjH;Bn=bp+&|>kj-v(kVUG~#BJkVV~3-wZybyxjVJ^QL(VMu?wtA4r%PdEK;
z^Hj=zC^lO6p$2Ty{|`#%KcnH`DgM`^JeK}%@2|Js2e_^TW!s%wq9Y(~*f%&P0`LAo
zN#~O2ENvuqt1wCKo@>QpOei!`ve|fTJ&giy-SY;-v;K{r!aeN)Hmv{Q-k@L9{||;w
z_kSPdxkdcHb4eig9Rb*JkdZ~6ue7QzmzMsL3nQP(+2k1ge2m2nAZT^scVt4ouLy#5
zfbWqP{Z4}bI<f2S5()5q@*2hH0V4t0OQ}I9z$I_)e2aj9&7%8liWu0*U`{d5>nUM-
z<NfJUl`~im^yU!*@ks%Fy5(}OkKb2Xc2!~aJc0fym)%q3Ju_=7bL4!XG?wE1J?%5J
z3aPzI_tmv2kCjiPFp<tRh5h_0wADpVEnfj^0NN#jvGe{ZKzab}@d7eK>AN&S&gB_?
zDQ`zKZHiba?t%{pMnC76qW9dxXBYemep#k=7*Lb8%>m7`^g3DHIaV~y;mqLNA^2ZT
zdoN$U{1FGfR(x)l0-7)n1z-pGe3IBi2D3Pwz&HTUOP;KM7E}Ch@|5&{;T+$!E=zPT
zt-BAm*%55g{|Eg-{Kr9mFnGHE^C*wd|CQ=bQ<c@Na9JizS}N_ETEbm`6B!l=87qE8
z`nMTgp=5LJx6-W{j~7t&eH>-$>wX80vW)QqvHdVTF<IZG2_HrgS3zKWtUl>*k2f+)
zl&s;&3tPmuqe~0vHO<on7m?026bq(f-_-VCtEXk;0^Vrb9;6b$l3}&`9XOG=i$jep
zPS<}!YkBA^t*&U1(Y4cic|zKx>jju5!>+N07ku&!{Ib)iuLstg%6dYitGN`v-071g
zw(5ZJYdhERlq+UYg07!J+fi9whPgs(eV8ICHvj?6mnZ<iB3&l*4AOZ3f;M~2GwlZ9
zlF)P!fM8|eCNbEp8?vap29!158m8LSRdtHtKTz8Ur((eB53hnEPw)V^?Rizh)2ec-
z%f#F6cC(=ZQZ${7ssNHV-te{?;ZzM~ZMfOeY)A;*@4#zBQNCb2o!?Xwxu2bL(*Miv
zRGZ^cK}M@k*>S8es&+F?EWGUk$TQYZ6PgrvzU>bjM;o5pTU@>X&*v$jcI;pYoxLWN
zXM8(iN5Lz1GDznH^mZ-kl+-HvqQ@g(cm%pLyA=m%P1nN4@V<3x!3yqshqX}k_iwES
z{kuL5^?#{f-0nbNlmE}b!KkSJ_eM|p|D!zm{LfJlaD+lwP?veoPlEE=gTOkCm@RXe
z@?L*$;RQD)1dhQ_eLZ0xJ2}cyf@zws!Pl?jnt~M0z}K&VfO)ozV-fVJV2yO^WV#qP
zXrpkMW4dPgHu}N?B<0KGh<qd{AA_FyDcz=fEtIUrElWJ0Wc3!44MIm1DjJ_vZDB&v
zzxbv}6mDDQBB!wA$GoWfS=4rnF*i;a8f~%;&iMHWH#_0!nm5%I)u(B0%^5(+3g>CU
z6WFX^j+rJBR2@|MZVq_IMAeZ)dG!K3U-5w~_x;M#;g#J<ziCJYb5W2iDg=hqnVfYf
zW?QX+qn70<O~W)EgNx&{7R+bFrju&WtRz3Y60x@YU221%-R7DB`}0ny2C}6}05YuZ
zYn<CQzHZ>$2q`INmMK?kQr@wBjkG$`951*L&;BI*ZY^Kij%OZ4*rsY^XPBC8T+?#j
zLxM)brlrrd&#)m$y{{980%{942HiYOX}3ejyo;mDoIqg*Urxkl`R=CXj!hXGZK~zB
zIc&S_mTt>J>uMzb?|3C(gZ%IJ4+{C;2fe-hgD3g_7>}0!?=zHqIy(hnju_cs7!zq`
zAzJ#2kl$NK|B_Lt{Rk`hwwDpK14P{!VB22o_jfO$cF*q)M(MhOU?Ur3mJ6dOSEM!&
z-5R1C`i&y^Y0LLJdm8b7A*dgY|L+y|f4yPv>Hf!~JevPYbM{V-rYJ{Ah?5zZVQQ3{
z-NGgi;Dn~u0g5o2Z*jWgx41usgxFfw6N1o_$YBd@QNYj+C%1s$Zrlp+nmDjH!pm_^
zkedCwG(uxA*dH+=K+!_Vwl=szYpt&e^JeB#VV|sef3&BH|Eo}UcQ*bt;QymxN&nyP
zJ^BAX%A@(e4y1Tj<DU+z=r#SRuRg<{`nJLB=N4;X^mA*tCcmw1egK3pgA*KMij~6@
zj3VVF)dr_;E-sH=zdJc?ZDAj@f>Hhvt%I6+?#ni4kH^DX1{ndvBoYxSx)Ypq$(;Y)
z4*5SMMkoU~nc@V~^=72+*+}z%&u0FwJ9X>JARG99?_j@d{~0~q|9F(A%KyubtNWPF
zUnazEwd+?YaIfF-OLyTxyuN&5?ty*2%-Ga=d~KzSSFL{)g_-MrGS=xs>3_pvzqJ1!
zKIQ*@lt=4-I>xt{?=5Y<I?T5f%({93`+|a3nrx3b#CI^e{XMO=YS6LSZe_7m?P}E5
za1oEeui`|9Z`_pzIHxqbjJem}WyVhvU-k}r^5ZPeLieNi!gXEyKFAcuNOZDG7g<+-
z=MDRBj}=EZPOq@ihr$@6L}&b2=JD9c=2N_?5#}&Ma_N_DSX8$+Bj&EdKhw#jo~2IV
zY6FE7hc0}cXOKIL6)rf$X$a$aN~nHYy!HZEW4?CSb9tFTI={S>dkyx3Zx|}B5d52&
zFdFgyhu!}V2Ic+#aP-9gALS|Y|GV!0ZBbC(|7%X{+5f9=8}|Qhu_pU}x5gd!|66S8
zEjjl`+|+B5xUWsUJsuCgso&srqmgOsb0fr6he_sFT|`5}Bpt0FC^@#M&ZuG%QpsJU
z8m8+wQvQ@97`;#8^_XX>yR&Cb17Dol`TgVAKmOgH&GKJQ>O<Lo`UiUlCHv1){J+O}
zs_Z{@%BRP)|CsDgTWlZw_8)skd;j(ypPKW)_8&7gTi^K8+w$tWex^vHKAV(PrH)E4
zPDjn_tuOl(EfaUY^{4x>dZ?>@1xf$l7yfR&d)>_c@96x~!2Z8CDDD4xy{G#hkMh*|
z{|Mr}C&wS}qHFWRH)-IzgI(`QU%cg0wf<LG(!J!lBp*EfW4|}(72`h+_WMuk|1q8_
z{ZFPMeN5Glrz5qrzHQQ+-sn`6L7JgNWH!BZVpIbH_!Si0*fq}4Yzgx_<zcmfcp7Xq
z(l}OGqI3-pCgRf%IF^yF|6R@9Pfy{g<NtCQbT0*&KG^=he=scSe}lcJ{9ljqRPldx
z9Y{<)P(lFe5Eg|kb&LrG>D0TmZowqtHKFHr5#yx7{yfE-4;M6N_HX%9b&2UAcKovK
zN8Ir1-fq3$CwC0&qxwqjJDAUttoeOCjrjk=#(&s57!~<HzY_Gs{~zHg-T%Dn@vnzV
zn$utT(RcVOKW#YsbxJik`gJPYE!e{rj^FCd`Tv|>zI*@r<J&h|oEo#y`(qv$Gy1u&
zvtl_44}VNtamc{hzrt~RevN53cU$}6<inevkKVquTMOQw23C;|?>}C=x$HY7`Uitf
zf7I!9dfomY@F%(!gIPfoUxYK>smLKuE>F%@Ll-mA?9B~Vw`3ICfp1(Yrd&^ne?WW~
zj7;_C>buNxPgWz5l17*Cp2TnHTQ%%g0PI)+!~XM|Rp2ex0lURM-pk;RJcB<fjDG(%
zqhC#>X%2RL=qa|lBq-<0eYd_`1_`-N^GJ*gN>)GQ=|cD_2t7_F2?d)oa~5o}ipN{X
zm;E6uuLs*t#~3s^WDau_b#y^Bi~<?)wfdrH!RFyileUzU{4bcYqiQzscVJ~>yg~^g
z<Sb7oydmdBQ<sPKhE^WTp`wxg_ptFldZYfJ<p1{+|Mzj82Z;Ys+&i`(Dm&<No82_^
z?0#P5+5PG4^z!KA#ZO}qQN18mny}nv?DkhM84Xbq{yyBC>ej!uOW)A~xN-fD%J+Yt
z{C^(jsj~n5tmgh+EP#?_)bkDN7{qVgGdSJRzNbxgCHKezCXTId_W>+?R-YT+>AKhX
zZ@B*NWC7Y_{~7HS<$r&;_vHWoD36x^W^vus0_0si#s;K6`>a6v;|4oWp<EM7P@&2;
zwxIpdVZj<C-rU(9WHu$|Z_bWB99_Ks;8+a)Gk7u?l}$!}NSo2$PTsyf|M}$N_$OzE
zxf@`m`DDn=C$8P-L2N0*hPITU-<DGD<mH?H|MA<8uiv~reRJ{i`wxFRzdSknG%S%*
z8Gd2x|NM5ShGRD>j9ueV*-Xq2ZJxOo+YF+irI1|DdjC#VnumKz`kxH<e;@b$)w9X}
z<6v*U;Qx2f>p$)P9_6Xc{|XD)Utz4A@ZZ7gUUR>yBol@30g~lTmvOA}gKV}zw~Kcg
z-oZ@OHlVChr5v*z_Y#BAr({O_jz7<ZeI?)i-YMUSa9e&=lk4B(c<3bOmmu5}ExYP{
z$A0a*k)g)MNxZ`4m;1d2p2fdz8^oc|7zcYlnRON3#dNw=9C<@NT?OtQljw@UD7C;|
zo3b>E!HxpA>liVsWJog+QqBL-7mD%(#wQ6y`4onTJed7&Sn~fH9X$DeKgzQe|9>M%
z0%)4376MCxlbOgDeth)y4fyfn$!7Lnra9vgUO218ym^af<1cSYwFTQ*=6qoSABPIA
z4oN3Wa3@T{X$Pm>RX>nCORCXFl)`Y%Hm9!<kN<|##KXn#mo{T$#WdvnrOqa+Qo0Iu
zHwNGGue>K;zkd5$XoA)2Uu7D*`vs8t_22Iei}64Dqy7F<{Le>uw$}enWa7Ao(EfCa
zvHQ^dB(N<tKRYkpo%OzAlD*%7)@P4OS?9CAHqiJi1fOR)Uch{PE_3~jUxAr*2BJ~`
zmJVEWf*Mi1aLn>t#-%<t+1jh-vN%Eod`ctbey<rZ4+`ah^Au{(LUGnht*H!#Y$%KH
zcuF5nfDboyrOf=JhgaT1UP%Hj0Nven<`k223Ma95?b)_(ot08mkQbR0oJAB}=WI|&
zCWUq&`xyZDqP4Sbj#*dChM)qJvAp3g?QdA0s-WzabZ^aM@D~)l!%-BYYnTg;5cqKu
zH@JT&R#5A<prsT5i!AX1P^nFaNw5~3B=j758PQjc<?#jJ1o_{bCQD_DgIB^XxLQt7
zo*;@ym`4HFb#XG*{f6jhRPNfa*@wA%vcfbjs%Ee_Eer3AEVi7CMYDNW)J?(S4x?Y)
ze&xV#(Oh}V3!K(7{k!b#!g--t>8A1WQ*0TQ9t$=rb&IH`LE>v{x76R_X2Ii=<Yj}V
zj%0*lLm^eC3KNJedw+KZkdk>LpgBZSe5LzrsEO^O@^ndgT0fevvlJ(k1eWV7u|C*o
z<*w0$AH=HDzoyMt^DLXOXTEewS#QbN!gQmybM|SgmYMa!toYU$ooe~#a6d~bQ8l$R
zE`{sVT#v?9YUpxR0NQ{jF*boUEg-tGOmu7r3Gl#aG-IRn+#PKXJF$7Hfk{FbqhqAf
zCjwB)Z&F}y_Wu_Y*MP<%#W7>p0sayqo<rH!nAxs>Kr74^te5NJDd-q<DpBM^V3pH@
z;b*L#8Pz}XWo!<P<P5Al!!Kscw9a!=dnRE{X=bLC=byI2r&>p%A~&@)d-`^tR_uM+
zZo6C~lgg_{r*-pdJ48_cu0T=0$`kL!;+19^`jysrlQKRwMpjk++tHLgI60In#ynFe
zqkPPHL|HH4+qACvLg72BeZkYg-P{;Xc$T9n{t^h_?6VJS2{QmDFuX!ZG<IHYMgpiD
z?Zt|=fKmfpstb5Z_i|MLlI3E8a#7tRM=kZk(QFDBoo;TQ7{c1vRB_0vmf&_)^gr%X
zZU4(w;e7;uX_EiDSBU@D-yiKg<$rjTXKVZ4nQ{W5BJR_14DsSYtby6eN(bjL)!E@s
ztgtclwz>*ST@e<jwAH!3AdXwe^K2DvXR5p()1HKqq!jF+U;HJ5cChRAOd(q~W~nc=
zO%?~i^hO&v(%exF3a$E!8E9<tCH75Tk}IAw`!`jpIeVPaT(_Mg3URXKsjk&USzm2d
z<|tlt$h@muf7%&$Fb&4w3ZcvwX#eipkvc8%mbnf#?jE<^Ai*$1guF{5q%#U~m0tH+
zf48@T9}tXw&M`&rlMn^`>WrmgIsR3EN1{U3=7rES=kCSUzKY;~ISssg`SM2`6gP;a
zfs&vEV+z0y5H?hcX9Q;1&f;_e;{ZIj?G+Zu2xmJ(l;*dCs#VN)PxRi72&?74Qi~t@
z{I7Q~Jm{Ct|DOE69_86u{;LC(hmiP^<Z7k9y*<2(#4m0$x03cPdo%i5iF~L1vJ|(!
zRzfOjFk}_--KJ#~=Rxc&rfJQNJUntvsbsDDIh_)J?C#e3mPv}N&;aaVxT{&Uz{-n4
zQOU%@_c{StQZa6HY{4C8d^=g5(lktCcPe&4@YBV`*||2D*4s<fu#1F6goJa%#%WGz
zMtl~=&8o?*45d41E;Lm|ZozT9BoyT*XTdJm5#g%T$6YB$Mb3O(usj{1`XtKhpN?ED
z6uP;w!$BxxpM#q6Dmvwh*g}O<mn_9!Bderq?Y2IY4>7#0oty<5O1@2D^gWDW5~92w
zuOiu671cPn?;PZP#p_Jbs<Rh4oKA6Q?pT=taz1%S%2T<nO&iB^t`&ZO$xIywRec>-
zt=lSSl_cJFr)tw=RCR+O!g$-!ROA^IWeP7{h1OT09;k4M^MV$isz${Rr^%31aun_E
zcSc+SIXT<bi?-D5Y&nTBnV+VVZ6nr4QN;M6B8jT6&gj;IsB0W&Kfnc!*EapS@7(hq
zPx1PZlQpnH#{4c$-=<;X61Z^Ez@+C3%Yg65bf>@Um7T?pTgM$cY{xdniu`V_p|)dQ
zTC(lAeF4#FO$$QzBM*$j7^GW>i^qT;Ojmq7ul#y(d}bYstM_AYaeUVD*{)3q(|HfF
z#RDKO1g8yC!RR%f@!8=@r6VLx(}>%}nOGI}At75ia*6!7yQ@2?URhmGuPmAGw>J0|
zgm4r{P^CQGt@_La;I8CSF$!s#kA1vNe5zO_?q|tOsy*qexQabP)f%I2?QOjRS#{d5
zK@+G{f8QjLIAOnU1-LXcWH}*7T@i$uW$N3_IP=PKr8HQ)W=n2U$8SW_KAvNk$zjhv
z^r>D${-fDH^{LQC`_HA=qTR&`wCVoeUdjLa;9zj@WdC`LhueQXAiB&GnQVt|Ir)MT
zHXj+o-?jTRw&fIe_?G!XF5@%4&d0BWRn>g=bBB(@9olv5q2P6`<FdF73nozQiCq!-
zzXx_=l(?{VZRWv)AM7Zj%xNl^AGee#1ljN^Gt~bE-;n<e{!gIY5g5O&c3903VT?^U
zIc^#=x5I@obDgGHjX+J-u2y0MO%w)H;_yli;Wh)vR1sC*F~Dh<S7=QNi2n+vI488)
zciIAYFShZ2ho{W{)m>H6<*XmxA@QGlHt_%9!NH((|9kj!|L0L29|zYL|Hb?V#^h}U
za}eJ^IZTHn8cRvLx##;Kb>`>CyCiX=uG0wHe}ul2E)nf;E>?Ui`IrTTd+jk^{+w;L
zE^!u^KFZDwhkI7P<))HV;kH|=Jfw5}zH8peh6|wdaXs&Yv#V!sidy!K?N2((i(a6L
z2-xe3EVlJ+rfKsYz5+YOOOX|NUg>Sg%llyzz7;oUh0^YjRycww<V(JfW=LOw9U*;0
zp<UtiR|&Ijqi4qu;-b@kE5?}&pGR=He)%elzw)kUTk~9=9EjyRPtz*~F;3H~Wd?#(
zKLCNg#2?u02Bt<}`eiwIvyQo*-32<+C2ieMzkKB_R~*PP1CqVw+`)ouFNRljbyOqj
zszG^t>@~9^SwOj%xXEw#$k7uE2;Bls4S7kM0$&Tom0*1@Fiq;3jvQ<yn$FRbYa#NP
zfhrsE9AeZol=&O+HFM^(0=oLE{wld>P__4Wf|_Z>?0GA5PwINhlo}(I0nUKV&!z2W
z1uEs!sce?TxwVL*z;!)9o|jlb#bU~Ih$n|7`T$FJ=n~*|yWQG8IEVmR@MYTO%(mph
zm8Wqm4L~_eqN6yQ!_(yg?Awku3W<VA*Rkem&wDY>j+>5ak1Bjq-s55zoo~xLF5Pw*
zce~%L#^0=jZ=OOyG%COgK)ahmeU-OGCH+6flWvG|+P!4|J-=JzZ}DvM|LqTo{yztU
z-c$U~M|phuKgy{Syjyv@=!-3lon16Hal;{@oc@%?krV0G^5dy0?E1&}l21uj81G%7
zz$sMKNWp7X-5#neZtfE8dQX9yq37auyH*`PC0Aq_(^t_&O73(FXdUT%*Yz~oZgc~V
zpy-6@P3ij8uGg<hy1$h6Y>X`73gTGYFlQo0X3;h&Efr?}n|wq5Hwi${ZnwFl-8%UE
zbLYZW`{o9e?~2*SDO-sp;Tz!k=FpgEu|s3h38e(_4+KA(4*!PMVjzA6G(D#|PG%;)
zydzi`#4EI}gP7wLq^K##o5zSw{q#KavqApfNBEzO@xS}~qf-9or~IFf^QiNm9HSKi
zjGcC;P;Pk{0pKYPAw>Wa8MJDdqp14ur@*5vht~$O%;WXD!&v8HN$6{Yvg0&cTUIk8
z)s+9Nz=FYgpK*=f5paJ)YvFUCPM9}hWE#`X(RNQSvm6nWP~-jIwzrJxhZxTypL7mJ
zTJAIm<_@mV8l=uN)DOHR6MlC?2?7f{MrK;}`-G7h(M=;Igx2;$WeL0A-B{gnXtr3&
zdWiy@0Q}|Hd?mHxW+>k0p|4-Me(feepWP1F(Jr~g;p<q#W~m{&8`q89%W0l2bToOc
z*46fGLyw+IlsIwR9&xkDsUI8NoYQ{M$G%}*+eNyBv0jym=6LmvJ(6XfCJV_$#MWL7
zb9+(_f6tF!|C>Xm09vNAhxGsHjRvLo-=qFh{MSc$c#frGaZk&>;2|RT0~qG173{Gx
z@ry+%*J*wgr!eY}49N@JjZCfu!}G>)t~{z0t9W%tI;*}D#8u^7;7$HB#R&*rfZ!Ie
zD{QAt$6(9u{|0QbZv8v4t?s}8Hv0b!dZqP$@Ra}YQ67<FEsoP`@VDgzNgJ8W_>>Ae
zXoQkZ<<j>CK)W)aZ1*(fkJ~x6D_QM!RQqbBT7U}o77L0muzVO{mgQ-dW2U?qyB~MA
zD@L!~s#kVcH`6I`JvNXm2Pd-*V@M*Bv}@lcXt6^1ak|KO{JsC`cls{_k2P-Nh<4mi
z4ibY2qR?s5yVVp7e~!W{Js5<F_SV}ChY9xCE}Zo?>yi^CZ?}E~rSE>e^o34+(lBrT
z)bW3Lui?%Xz)k$WSGND{_n+ebJj!G1fAYTacB-E`<6w(V#XsTnQ<K7%f0v;#E00Y)
z_i1c4(>Z29I!9Ti_&Y!4$qF}~S61xKa+Rvk8f7>On7|o|+7p>nP@M&xo1kQ6HhZq_
zAKhVOOT*Ci;<q7bvdPcxsf!arVG<&@XSSQ!6L<ZyK6U(Gkj{h0e;FPe6!rhn-ss8y
z<53>Yr`~+Ypv<w%uX3bQ5x#|yK_z>#8H?pAAmSgL+FlgJTPl{T$EQNnB*&-21L_sn
z(Km!WpVhWOd~$p_b}R3Vm|Y1M51jAmRun|XEyU9_KQGUhNeD)J{7<|%Urwj^3kceQ
zUkh&?^N2YBY7C~!I9`KamN3Rs%mhW2@d@d)entX1FHcz;Y;p*gpb#zz0wi4^zJU{5
zT}<N?qc{>*j$*vP6h$IkHYQ+avgT9#`t+QY#mS5(Xx;6!PNpCi5<mcvIedwv2L2Aq
zT;LM~mW1I+0OZI^Z0kwJI0;!~lhpbZdD44`DfmGqg19GID}gK1Td7Ea=2Y)C)1A1q
zuBsR7Rkr7#od}nlBDHP_%rWm<{<M1T<s~^sH7MK$lbHC+lp1g=nYirSYu$y>^mduv
zB8oLAsx@1QK(0iK#2G)7x+5cRPUdpWh*DfT+rS*9o?EaLSRJ)Ej{Mtbra8)D?qB~O
z0SGRG?fHx9RgtYrmGvkL(`7;#OJE$Nz9+<~b6Qxvmf6-V*bza&oY_;fS~3!pTnKlo
zpeAlm$r9=607?2jMMFT91{3FoY?`4wUV{)aqEJMlWM-PsJdI<N^8hfL2t=2@SZ5wX
zij|L2mXm(-5z69pz0gOo1yj)L(&rmDj8HXTh!$x=Pz7B6^&D*tmQYC1bQyENKFH^?
zfDd-N=2|TU5UgN~BT#H}=NqycRAJ=f%9R3|&1)cN@;^Y(;s4e5Uji`wB}z7lykDZk
ztWv`TI*bc6S_n2v6!&iK#vzpcSEv6IM3;BZ{=517?_gMr|2!HFp3eUs<?)a#pLWah
zyZaq@hw_<N2XPw0Sc*XDD516vGTNi~COIzw-*t^6LV?cJ{mKronmSt2bcPa?vz3>n
zgwAqAeu+T_3As-5i17R42t_EWgB_s^B@s$O%x|VBFddxylUq~jTFp^}$(<VH5E`|$
zfH{WI<W8+g7{&G)8E)#<zX|~Pu=d}<UT<$$vj6Ts`F}pj!?l|`EpNZvTa{w4T1uh>
z<?Li6M3bN<lCF2PwUz|so+>-(0#mc&6E%wg&=;)Nk*U2{63Rz{?T)T<Oi>XlyEzAx
z_6h8Oz+A0R*f=fuG>;aC)BO(cf*?zyBjZf)785GMTDkAV(3|U$_P5tKq&lREDJ4_9
z==*x5W-Nfl&Cvr|D9&P%txD!bross(Ny^8Tcg)|iw*?<2dOqFq&QQxXcPqwK7}1>}
z6|YL8DPA`kNK3bj4g9LHv;a3A#u!e@qgZOT2)<?vt;!%!M>y^<#&F^tMN`vDq~6c&
z=z5E6JJPTT=~lPYZ0JpWKOy_^scX0CoWKhDb}`y8K}BjWeyN(4hoOBh{B7r<=}Pc6
zR?Ad8tH5bij<twlWO#~60$|3OC#(?3MC1sIg^cp@nBI6&n^Ux?NOZ#6C|dxX*bgx#
zl$)1!R1!4nD%Y+XeSqIrr)behoWy3fajyLRrhNI{W^uBYqQ2-%@qE=C!w9YL=Hc5g
zNEVO{<0DG`&PT|Qj7NN0$!at(&uvd5FYQbfHkU`aqH0h@)qYLH``uwD&1u?NmU^(=
z;4^9{JZ;u8DFLgIq^N=3j78B!#$&A&o2=-9D^GasIvl(>^D(WI6otmL@>|AT2c4)S
zf|A-){Pbv3-#|18FdH>7FU(uawUY&)h^`~9O0&E{G|36}sb@|L4W`zaSm}Ugrc*_x
zvV|2+X15YnHt^rKpi(_-z=jz@B{r-^O#`Z9!LqP3i~4F%aplRvUe;Uww$0j8I5%5&
z<+kpN-Bv)pKUOOn@Uhv7wr{~=twy$IuWF$bSgZ5;!Ke1#*l8Kwy|7XV*26~24Q|Im
z4dmwR^9>(Ie(4m)Xoe!dgPLKwW;+G+g@WrjN^E@=%cEn9vpR>RqV}<<-LU|dPS-qo
zZZ*FtLgq1DCFr2&M%|z`jN|nBOo4bqLKySqP=aOAIv+6tR|t@0mc?j+5(?uV^K_XJ
zKvTfauI3`Li@K-jiXfh$T~-*s0!&<h{n4S-Z%$k@w}kl`q1BI7-)7me{7qq<Eh(F}
zyp0lyayHFY4`g#V@%Er%rn59UFHE*)RQw%#bz3L}>OIOb_J$|QW1X7msqg^Vj*v}3
z-{`BU1N|Nt^uVAT4FC2h@=Mb{o_*Z3(o``Y1xWmcL(uOXRN@w<iwRDIXNa&4!#J*>
zZ6)??Y9`CfP+XWMA*3#eJCkk=pM`17nk~}?2+GI>HXiMgW+>ewj5JblSsgP*np2O+
zXdt3&@Xo=2PfYzzwMNtX&3dD&M3Q_}RwC5^TX5^tNSz_il4K-b?Rw^t1GFvOIVD@z
zQ{4P`)$_CsNepB=16E7|Gia7u8r+s71`TLpu!$%JccqF!6(u-IPa&(009D#F)=`I4
za(J176`x0?FNx>sADV{XlBNqtaR}ph&09G>I=ei5b8-3o$?5CM^EV$pogBX@i|b>U
z9Yv8x;D$>=(?#WH&ig9AM(YGFa9H_WHT^nIv%0n`zN^M7KAYD41!^=p=i(cTqKY2B
zx&?q@jMYXEBG!S5jyFWY1yO~C9`dU0JM{3XalI|tEA-VRg4!0nUDWF{$14?bT*Ox?
z@VX)gEwVzHoxut-QckQT;=bw>oF+roF4zHAIEhZUO~FKiam(1Cc1rh7Ux9vaFl5|P
z^GGigJCv;M^(&$BS8x%zS#i<NY7v)TZ;x|!Yiu`iLnARX#44sFnL<!xk>xnQ^$MlE
z)~ZxV!v`HbQoeRLO94v<hT>*LApE_{8;U&85!I!a8+VirM*#s_Z-IeRA+KapZa21U
z2}V(%p_I3+zGYl8S1Zm#iwQQ-FF?7w;zbstvror?7gZ2Y?(Q38tFTNTmGFK#+W>B!
z5_$&d+>P+vA&8!#e1UoXMsm(!RRD5}2Ak@ZxUs^Zwh@D7W%*mJQ+M7(2KD0@;>CsX
zZhOoLY>a40PHezUjMWCjJb~34VR-X&+w<S*@%w*jzlZK6+X!Ta1Kh?Nbc6r*-d-{P
z|DZqWJ>~y-l&3cTKb<2miI+&+(U_(=f3rxJi7gbsKhp`IbI6T^`7&uu&@|1}Jt=;<
zJQn8Snyhh_Bb7^VR$xAE8govP%l6PI;l?dfNlBP@3~M*fTv;dQU8_2)ZWk4FQC!<7
z<WE;()?U}!5pNt@g@jVN^k!}M3tf^H2Z4L_wU)16TWuNMx-i5o0Pq6N<o$oya~Nkh
zK_~2eCr4RIFirC{`1*BRQHVmFRoa;nnRQ{A9FdO%<zvv}FU*0&SZt&C+p2>GyNs>T
zspO+fgH(S5&<00u-?jkA5#i~(b$(-R2~)`HueMF6Vb)|uwlIlAlWh=mCphVnd7yr`
zL;WWT=PCI1$g!t{X`Z8yvKhB|Yp3(=f8N}b^M1f6VxL!;O3w8Ij*+H2o<cXJA|HsS
zioDo`2`?T1p6xfBr`HK+e*pWV!}0#;5Oh~r(p4?|CkW?@G-BUp|8ebp1Hb+XM4v>N
zDa0z7;VMgHl;9Wq*6})BvWZVvKTm%+Uk$<0@muo$<DC>kDMF&L6?pjqJfCOW1X(0-
z3tL8fk`H|SDspdRi;mz(BAEtJ5j_fhsK&Ys<?Gja{5LeLd&g)%sG*`KW7`P%;8QFK
zP%QaXmI%0Vk!Z}v?(A0CI$b_lIZ;lV#T2_vtG-chIqA6gXR@5QALR=Jpj5(x{gZNA
z^=#Dt<Q;I7-~Jv@z5dtd-(3B#w>NmY|MMu%jkuF`!Sp(a6QHMCT{(*YPKr01t&3^Z
zdK?3Hte^=k&SDIk^T+VzYxI(01^&fEM{;YNE#vqsjd8ekbQ=Dxlj)B}use!@6z(2L
zFFBL4V-l{k>82UyW34%y$4O0ib5o;WY}%oVco9Zqpf5CsNBN9!@t~!Gc)@G2zrCst
zFXWzy-Lg-2>XCz!>CSJDnEpYjOF@)Mq9HWGiSvoSspwnLp{80--a-d0wG!hg3fG~s
zqv@Y_hfJB0nutBz0ujQNn3lQL$9Lx2*qWW~fm_Sd1KwKMJ`)>CR%1sIIs5VCwOoPR
zs_o2M%_h<b4`;yr_~HG>v&;Jhc^}YxOrmHG&k>B?C-M42no_1>k~N`d;c$>r6}ELd
zO%qlHloZSJ(dCCXN3Sp6pT7N{%Mb70U%34U`hnlIPG$k$DZA*DnmGM*^7`cH^3%!r
z$@g#HT)uwu>E!s$d7+(Eild6Ar0#l!*6P^J-r}QVWhJb&bypeKzBn&5ixrsXo*CG(
zZT{B}dAewZ0V`=Xx;J)sf0?uGZ)p7iO-(h<X!Lti*UEKedgQ<mMu=h`<)e~GRn=vv
zd#l>#gtB6&5<nIZx8H9<+%CH<;!fSoh!@_;Y5i4kSHoKmOVxeer4FH>WW}9fTq3dj
zZXE-Z{3QFUe%UU!4mml+J(OL5P#A-<gq7h~f-?~>jASUp(=~6fD?qUQHA+@EPm={3
z5#=W7%eAV1ROkoE%CjN8V#`Y8>TouI+Dqv9RpEnPgwI!{EvI`x?GBS`!pqSwOPr$!
z1itPO5fY7`2&Yr9fEiIW0JMU$sZ(%|E0VQ?wWd%^$n$b>3;6|4&@8&yE}&mbKq8Zz
z2ksJaM(UNq(GO8AWgl3^tO}qlEkv&ywOmG<R-1ThC1)26R4>3X#A4d-(hDV*Jfpc=
zgyzvspF4}sGnkI_sKd@IOF8KU$kk?!!Vi?Jl+-96KFW`-aT`chZn5Jw(60<9cKEQV
z<7K}#tpG2_Z&&bpx0Q{2-X$FGuvA1YW9T>QZ^PZI(>QnXQIk*#kZ$(P(v7bpV>tO$
zb<P>fVb%>4+w5q7NecGaB&}AewDvlr^K^pzSZgoH?sqL9LXC)%rHg!tPLIyP`SH=)
zH$X+ii2(QJPNu2oBr93A*fSo`0*+IR`KZo#0v`2}yM>mN%wP2(3@>Us4;et(2h+T&
zI6Uy5G(5lk5yNAdDmU8yaFS9yT|Z#{kKRFluW0}4J;i^2oags<{woR2wHV5mzxhce
z&6jAq<3F+{A&o)%8cd1mTW0~kTrLU9FRvjD=ZL)89}EYFhv5JIUr=9Og=#0S_WJ`6
z+?`EqT>n`b-8BN(Ci{Q?pcwz}fc^8d{vY8H_W#z!oQFpe%M!D-T4Vob%ecV-K$b>!
z{4ZxSr>*oN1vi(E#do!4%ktfda){a*Rm~UAwo_rB^xUlC%{8~)R$T;fo5^v?0mhIJ
zm3*P}vbkB6gmV-vW0Wgc&Wq-7<|(14A~g>yVg1|=hT5~LziVsTcMB6@%)$DHBLSQu
z?pC9s7Z#l3cu6SAf517RKVv%oNt7(?Bq}PDl{Po3ca+G)a-CEp-1L0m6v<?6?)yp*
z%$bOgNQk%IL!EM4d^F^byB`AhG3I5h7h~}Ef81kJcK4aU7QeP{#QIY>Rh+B4h>1)S
zXm-TK&kfEkW;qPe8Okx|6=@RjN>+&<O9d+EpRr$kY^t{tb$hRp!(0XHse_@FuBLUX
z<Evs?35Bgk70CF6oCwX(yXd9XXa>UGKs_&ib?#(2210ee@k%D|y+UhJ)6B16nc!c*
zuYjaE<(V3H3-&{ELax&BRzq_Q_?CIeKyf|&K-t^Rv?pUwmw}dySe_Aj1)#WG?fGW4
z;j<>mWtPQYN15(QFm|~aW|P1x@pwZGAG28wBjlxqrTA7s4dt)5q=qt}yHG<J+HXb;
zWmF6`c+lLM8cHy3Ney}(*(|WI@|{n&UiJ=@yRCT#)Ni=p9X#yS?jm@LrEUY*G_zqz
zbk#_mf{Rdv)NnmlqKI!#V3lm}7O18Z>Cos*aOeJKu=aeX4s$b+-p|`lrw>fC<=W8Z
zTr@Y!w?_Xo?KIvy9K{$Cp#)k#@4n|s(g^7!eP6$}?B92X4ySxG&DXB_`|eO_nx%0%
zTc2k+g3)oB5Sl|Q-ES*D-bcGJ%1xjx>*toRAIr4;^fY)H*#B~R#~c6~?En3PVJZLj
ze(x#&-=jR-{(r{f4`_p*%5&uy{2G}1__?JOS4>ATiQVun{_C%W+++IggPStU72BDN
z!yqFl)QDtW(vilc!UBfK10VxY$#<f5d)uRTkva-}VYRzC+b)X(6y+9Th2*(WVFq+R
ztj_XYJl8=YiUZ_2R$HzlH^x)Q4(zZ~@~AZ*t#eQ})6)B8E)H}Eh*GW(k!8k*g|!#S
zzVIU=4XgupbP4bcd0~A5A~}-?5$J8+x@slW6jnfV(Sl>naYY;mXFrkUDNV!FH8F7a
zNc4;KHTdb`;w<1kkmdL1z7H42yu3Kqmv6`5;`prOe_*~c#LEbk!)H_jb;M^ukXHS@
zY5i~J|NLbCP6A-l{om2SpveD6dr#-TkMaoq&*vD3yA(K0K%CBS*o^B-#}9qqHp}q>
z=4+J~Tke;O%)YdZkRLj-I!}65gsGzL1g1F|n#FF>7C=@#xo>w1OSw_r)WnbwgRUrM
zaN7~?CGx8{J!;gWK&8bg;IX^wUBu7%=w7Tdk=K-S9i5g-3I|@~REk6Pw{v}2OsviR
zM4^&&Ei`AhralLOrPlXAsiHh*;>6@!myu11Kug6GpyC_JQ0Q~u8#pqyaF@pT!4^os
znRr{y7g6H(Cfx$M2>Qh-6&!uMcpsDsdq&P~-Ee$gD}|J(6%e`buSeH0CKO(lJFg_5
z)kZ<o6~C|#emsLYrP+^&jsxGU6-z5^BI6fCzF7sTXPLM|Te_xG1%QNe#1tL_f+JfA
zp>ni&A844Jr{Pt7FKUO>nR81$@wBGLfU7gI1K!FTd$T?CY%^RRDJiJjHvq=3Q4H7m
z7|WVQwv0QTLZE(F6?mp{E^~A-&k>oYaa4v~EYT1!#S4@!X(h_;_l7_-_cX5v)A{U&
z*l-`=|MPz2|3>}K_7%OQ7PvwG8|?M=i}7E2`@JXq?=c>}Mg1g9v^5rh$~=FSF2}{~
ze)Du7w#{7x=S?|KN8>PI1IDk+F15=SA#Z87Xiz}E*pbI{T6Yn`OEhF>2KKb1BDN|h
z6-mi0+o>pTAk={Fl%Tojb3Mlizq^wl8${3!c7-jV5M`kdVZmGn648?#lq{^BxC(aE
zh0cb93=4+3Z72$;U)w?v9mvxR&bYx@6fC~o0JVy_76tpw=H%N>GVAK2$5rTD<EoBF
zC#hi-QhjO3nHr^ItU_7}N$k|}6(~~@Us$}TSyv^ZVc#nWN3~hh#d)ntx+#C%G)*-V
z^>m7GKTkvXe<uUb2KhhSFZ%xudcEOO{EtU@xcz6d{BL9n(&xVg`?X?-wxq9C0Q8Q^
zysj{H+g#GH?V@D2;Rpe5MeS6Z?NxZHqRMZ&+x5JpS-7Zv!Gz*u#u>fK=DOd3qxc%G
z3CMCZMLB>8aEs%qzDPk3)!BcFXuhgzvR$;8w2Mf*r*o8FV}gJ{gQk48&psUsQ+=V?
zVh>rF_bZg=IPzXF<<}><5uvIQS5?Y(8LNL<qx*)4!2S(prLw)<@}<?Jc&=134%`Pq
z1x2)~?cxAW(_B~;>k!&l!>5#*%ZREn{bbY<VYCa`pV~!Sx9A>HDEnApZGiwSGP-_^
zb9a5Iw@&y)SJSgWEl`A)B}<_>%+ufkQ8Mso&-E=3{4ewtFaAIF-nF}J8*3Py&-xX3
zm6_GJuSN5si{&%zd0i)MeI`kLY$sjM)2FM3NJv6W5i9}8(KJ23{Vd!_@B&F>oHU&k
zeMl@3+}In~*f(r!;OeekV<&mzrhdd%-S(_PZbL+KSRYA})z^z0&HS)y|H#%v9#id?
zuDJL+nf;1FmW#CfuzJqLMgy^zhve}tQxpq7jkCID<5K4Z0Bg_cth4dU-$BhK+evi3
z0Vuyq{w&150l6_sEQdzECI5c4@7=QHS?3$2TV9eVf6w^otX`35A3#3Jxf>w9oEhxc
zkWVwVo5njAW~DZ`{wjM*wT)hsHOQS@#UB+-nm^u2oo;oTSF;9yqqAe6_ERGF5lR9^
zC%2i6r8RORHx`<*k(x?b<O}2#VE}>+jBx~NC_ELr*A14%VUfE>58}PYr_ug5llxD8
zS-}j$Xm*+WD)Qpmdjfmx|Ix^++W+3<bN%O!^JzH$t54!n0J#MpkrhZGr4J;FL=*}o
zbe(Z;f$5b&0Sq%jDOjhGU?LP@Mzvij(nhTQL+K!iVl@XVUNiTV7hITdb(ULVo54Re
z{o)LP5axXaq7U>wsgYQ&!JF>HV9<jpe!~eN$r;#qy?dNQXFwi8?5z-k5oD0dNqLK;
zv9(z-0rf4D4JVPL(o+408H%W+Dw?Gk+F-Jlc~XSjuT#+9czw{92vq2!DGUoD1)#nb
zDSwY<SCCS*L#}_!2w~-)B{|ygG%zSO&K0Duz*8W7ETfsj-_KDPXx8Y1Bk&H)#={7O
z#$_%=|AzqMjdww;b}IBpI~+@JO8p%OtcIhO=%tz?#Sro(Bn}n4TCc#!Z62D&Mvc^J
zz+z-j5|)df*a<6oYkIS!g4bEB#v<Qt{VhH_Ir+!t>>r!|^N-Cy^>P*j?pTD}s|!s1
z|C*vqmS|B(m)EN0t!I$I8Kem4`L9vA&f<hn+78SAo6>kiBJ`Cill;-KPGg9Zlw^zx
zvI^=#mI+Ml0&OQ;8_f3LevM{f1(NuQ{uaw4o??s}c;InHiT5>FZTVa_AR!-o1OycD
zCKS}84~T>`k$*_xZ)?>1z44kO1u37;t6U&GHAIAjn2V_WV6K&r$UzxW<4|DEI*UPH
za3u%PiXl7n!8!k9^ut$fLq7*B+K!!B2z&GnL$XR^#8A1fKT+hjL!U3oGU^{nTp4&Z
zxpRNXou~u+KYhCUGQq6VHqgHFAO5(O|KU$Qpa1wMp9cR=`*$gcsJ=T`pYI1bYiz+1
zZV-SVLNVN;2=H+{(9NsW3ux`-6%hKyo>5V;C5PXzb5uMX@ZO7>QvFiVW!<P+SgKrC
zs@hK0mg?JzOMQxW*EH9yS|<$0AYJ@|X@+351%ub1k#6J9T=@U-2N*2n_JN$xKmPc?
zKtuqI5lVp%_?HCro67ZH&R-FBl_81}_8%i<Kiy9&`QI@BxG(+}46FCQ`QGsJ`HzqC
z`LyDHCB@J=1XxiH2Wp3p83=rg7~o;yzjW~-f`5hz-538;2pkGc{kaQlL+5)!cNTPO
z(5juc0NaFj=fGe-W{pj3^zV)g?xj=r+95nxz&2e*<JZwJ@Jn9fZu4Qc@7VZm=b+)C
zxZA^re*!IgLy0?O;^PDo4}oZlB~}K#nN=Qdzz&F~87_`NS;wea6R^|-l`pjxpjw92
zs?*c0r$d8lkJFni#Kw8z19oW(w0)Rvo5O9NoCs}Amn9DOL6`b}Vnpuaeh%>eG8EzN
z&ffv&|2=nHjsFeZ&-vdU<@0Ize}dKC$Mq8c8ofRV`p<IsMDOqK^A%wBxP8&=QaCMV
z#bx7tw_h0y@oz3rAI&)wV0Sri<pz74tU9zVZdF5<yWFKc{*HiV>S_7IIG9XJD%u$4
zJ&HM>u*b9b)lzsIV}B>G1I%mjz5>(HsFs7-&ImTpZVmrX)AxP)uo=9ZlODYzo0;39
zv(HA>f7++f{#!E~)01CR%}V^9<)8N1f8()VtN%CrT>t6ge8l<x4PKqeGaxudT$+Ei
z;=>Xy(V099CMwzWt`S>j34nl-IRgoa(7CQ~THG7bYq)d6U?lz)bvS^$jM6>Y_Cf#K
zAAaZ;^^u;68hQP1&aeCY-~aBb3Q0CA($d2~T%m#HD9cdvY@Oj`aU*ZRz{%ork&yi7
z=WkKC7RShY01VUtJ(Pq<@64_s3zyH|rWulD_RSqzeWj>VD%8wBB;}?w$<DxKV*D)0
zJgZf2QI!$p<1(cDzU#(IO>3u39uQtE*%|Oka=J2)OPEFPHIE#?hn+{+1Aj#yO*woT
z&1$~4DAPx427jfw+%bFaF>(2v@x|T;eYsjb$PD(&w=JUIfIhe;`ZN!O9VRs#1E6tG
zNFQ?&{L%)he4_-lp^jpc1WZY!$Nz-?oiN;fK2j1@<Y7owDM?Vm^0^RK<G<ug`$9XK
z=B4?@6LETup|>nQr+mOX87SlqcaB8Kh3o^Tc#yZPAz{2CXgUIQM7xXTV$}Jf)(cO#
z;N{xgx!9In%EOtpgS*mqcUGn0Rik)h`176%YA2TS)6T1uZH+-Ysy59{ZkVRd{d$J7
z1TjP%OiuEb&g5y!Vt{MiHP+^8zG1vRDOHTrtpchvN7IGRmW~r0k0{AaF3;4cHAF6I
zkaeN*e{peJ9uR#&R7*Yfc&o9b)&88-Sg5^^w;J0k*g^BEd%QJQyFmS*1^52Ttzofs
zTxtg|v`UxtMb>hO9kRf7EU8CZO&`b9kUc$urD5p8$1^mHCB4ti_}Kp6F8^QTX1=HI
z|F;9`|Bby${<k+CjlIwQ|Ht?o=Kq_rfh`e8Gwuw@<XxadNo@fr_7VT}!Bcf7xA=NZ
z2s3uFAzM0(IBbbzYtUcBWCmlQHg^bsau2x%EONDV1q>(e)x04%e}Tb8r4|3>9bn`}
zl*rFp7DZsrgz~8LBmnL79QfcBqXyQLL+3wIr9*cNq;8^aD%~?EMeCeQ@#GnnW$BEn
z+-g#a-6Q!fip(laqKSD|juNv=NdJYlIjG{@davb9Yb_0rw_yqkI6J1$X!IdxP_h3r
z65gW>h{S(zjTV@)Y^$~pfl$ogX@t@Yg^;1>46G>v<w=s4LYVj9;)F5;qoW;skQU7=
z%PQBQ)|KTQ+n@PI#k$jt<o81sVF{~896`jb1IYLss!$3n_NwWQVXBSoqYsv8-0vTt
z27LZ(<-bS&D=Ym&>wk9?RPTQnk4B&KKR(K*h5r9n?nD5}U=nesTe66i^%V!{=El7Z
z)&z=1$)WrzMuZF{35ZY{ldUYYtu>wLPKrbox(UlI_TgFbM|Y!|!+c@G{Lh}*!#=y#
zKV>8nXWHIV0PM5>gJI47pNv1(|NbbS_V&N2zi%Xm0C7EilP=aQBra4b6tGb_tJw`O
z3(*zM0NAN#D}Ch`rTkqz5J<|~!pus5=EK~aBx{zg&C6!;tf*T1JmByY{RaAjez{4x
zSg3~k73lv@|9|@Zh6saza&vM1;`!jezrCqI1C?TX8d{Okf!_|)3j;9@qF5zRc3e5f
z<EYwuBWN4JrQn6WY+rT*%u&%@>kEMD(5gM|f1{z#+)a6Vv4j~@hi*UQXw~~x)YopZ
zYiiXz5PODV*Q>ub)V<Vqy)=WV4AqgnAr<@xYNhcXXGASkzMC#Y%8OGNBOq%!3TIB?
zGcYri{yM7oPx<W9|16C+>h9O~vH<qk|6_Mj&Ho94&-VXE`Lxpi+<~RCEan=?O4aIi
z#=<3cdao&5ptB}xpkOHJ3>OB0__^5>5I-I4Y}dP}2t-a^>GDfSOl2pArLlgZw_HGD
zjoI=mPaVC#BWp1nHNX7{B~b2K{|_)raI$#s2*958@43OSy8gXj{CWL<j8BX8|D$9F
z0B2;)ROmV*aV$dEaItIQ=bWV4-@?U?@c%U-Y}XoZgk~D)VvD#M0e%NEv_Nma#YqJE
zgY19)C;H!ie@B<lAC1ps`RpIhuU}oh`tA%|7gT`=F&U+P`up#|3_YtlFtXsw(J@Gc
zX~X+gq7lnF{wyQOBHn@warC)RiU1=3ZU~O*qeuZ3+pigk*77b+lx%QDk`+pr)BE2z
znG>*NETv~BClLv$Gs7%_E9``1b&}teOHY>MVZg}ATF7h$lW3rN8Sq{PMoTmJ{%HuM
z&!3O>QS#qeqIiWxqQ~R+u|NJ>jsN)L&-=e0=ko+yLB>#)i0G>10PwIx37D;M9C4|X
z!th?~VDz2<aZ*s-{7nH}qBsWJx05+PI9VKn48@S)4H8A=jo)Ds^`3wPsXM%$rWu;!
zw<wZ@t^U`M1H?^XBoS|Nlt79y5aR?nJ?GiYFE@;2sP_b12$ltJE^a`CGum?&n4O4!
zCHg&Q_V4UO{HuRhE>8GA`YYWeCk3Dx4DZ*e(0#P`r9&Um-j~h{-uJ$A*oyy6GQ8-0
z`TzBvfHyD`=ix4&J*Pb<&B(7PWIYE*2%gC18Tqy6Y-mU#bn;gaplbbJe1HDxyXP-{
z_|92HkKV`b^*{0badrR44~C!ZzmM{H0xp&?S)iCK{yEFO?)7^Agd#WLD`jmBP91OL
z4EtaI^8|j~d-CK7_^I^Z=cn2lSzxwY&x9SqvNaONe(4EJQ!0|~V1`c2Hv`9UN|27g
zQ{VOdf$I;v;ZcwG#j)cnw)dqvS_~q&V=T`o#~>leU<H3A8F>2B6Yq37ItU$1=^D`!
z-u~#QXQMf=(HwN9*{{$Xm^8cHXr7GQ(L5RNpxL+4?02TwtI+HlG`pwWXdX}7(LA2+
zpxLw0>~*Hut<db5G*3Fxd>GpmGzUjVhr%AUTsNa#>&CT>r`vHnht8-no~}8b<8I?Q
zY{^4I!9${>ZxLj?9~eadCO}<y4RAsjo^QGN5-!!i9wr})fgM^0cIb?n2X^QjHhWD2
zJ1h<C&>5Kn8+04kprt?x>;h?MQ#`}Yif33+JVQhAc!R)eO|yC+e0M>=-*Tb)!4CQ@
zN@&<w2@NYsXlN)QlYY(P;%Yf?_v+2%v&-{e-dx^Xe)Hn_FVCL8xx9FOa|Zewf}{SO
zbQux?zPox2Fa?lOyhu<aN5pHn)I7Vm9@<pYu(OI9R#eo`P*L8%?`DcjPTQ@5$?2|D
zU{O)S&MInHQBgxfMR@~1U-{qSx18dTWElz>SYgWGy|^h<WGccq7MV8dbdkXb2}uZw
z(2|uNi;5U_RuMr(MGOrUQKH9?+!|?4fF_2fD8zFd3Q8{a5fa!$a?n{M2NjVV7$Vsl
z_<lEL9Jf<Lld)Y51vZf!bQZ}$MI;9$k?gk@$%5w5VQV9&dF1V&*&>F6&SE&Ih~c0l
zhP`PwnujfE9`2&qB4~rof;OlK+Mpz8yVC5pQ!W$Vu;Zk36J{KkqX)1e83GhBhLZ&?
zE<>D?O#cejDR_PJ4T#VNhsZ7%ED}5DEU|-%#12Xl+w103O#IW9gLk@vVJuQT=q%O!
z+9ENfy4NVxzk7Wt<|{$$fn@ixth^-FI}DGUSkDz66ndKyib|#Xx&GrF39xQU26XM#
zjc;3Ye&<E!R~DULUUaoFl$m|;mNWc11>$Vu0A`Ck?5l`w$vCc^aeUii@jEXTzp_~T
z@?!BT0w5ycdW8}uQyWRfV61MPUBOh?2jZ>^%s>h=io{kw=P}tv49M6!Y=ZQFj6HwH
zfLK<N-+3i@wE=OP2gF!Ox3~Xw3~p|pUA_`SaC!ADTw%@_B|d1mrd-!bwr3;T>rA%m
zj7wyDb+Q{#ah-89Dz0;wS>J?8*+O-lv588z;NSSPUEpSXY7gAFHe=T9Y|Oe9W7aJh
zvt4PPOxn>rne3q1V$8aojaj#1%(^9G_F$SDVhiG@BQ*x?#P4`w7r(B}xOF=lw{Asm
zyCvh+omRx}9KQuISqQI7rcrSc$1O=5?;_EnR^85O)vc&ix1?6xZb5_buqDmIT{K&?
zs@qwsx)mkjmb7ZeaN&5^E>JQa+5;u7O@p{yHOSQQCl#8N2I1;s;7^+rr&f^MM1aR2
zLkZdNaS+fMp2g@`9Rk*eh~!B4Ed`rz6>J>s#*yF;I*&w2mvTtvNOW^R#$HPW=2;aO
zN6<!dN2NV={85GGu}O2sRqnQ&XLoY&PR^+14(Q0f1ImfFjb}%LVCwk8%6N{<@$6<0
zj9MB&BfAmA5wy|V(IA*Qeo&!#Xwcj->M<I(<Dt=bm#k<u0QiH>H2W2r1C!>{h5(E%
zQ54N&C1@@@Wz}FwZ@W#E(b&4F!jZGl+tC`BI=)w-*Kefv&^fN#M{+1~ziTvZ7wH>~
zt&u*Cylp%>S_)IgcPr!Jnd8yTQWym-X%2SL+-xcE2VH6QrWKk^OTp_FxgUA$EW(jz
zwFo(a7Mc&-pKGG|v`n)%ZKPQ-vNnt;Ss@VNxhS#9#4SN!oyA{JvFi1m)cP6#D><h&
zat<4_3ONi>HVB-+nN&zRHA%8=M$|Th#q_mQ^&@wOnD%TYo!8l<^C~8tXPR_wRZO#N
zs}j~Bph#3hMTK>{$jCYs6KLEK%QA=)D?v7U&FgHhc@=xj8#fYUpFBQm!_#()Zg{$D
z(b<fs11;YsA}dCeXBtuV^r8xplXhY2;lvuY<`~(C>|{0NOR>tH!%l>@GY^N89p<5D
zno6bL4a7z@#8za30F2{eZye+WrbXiQ?Zw5l#I|J!U?@TWU#d%4n&HC?fpWI>ruQWX
zV+50RDz9k4V&Td{RPx$lka7nVf*EGLFTrfRN)^4mFF}S_h8GKzsh>b5&-GfTVBF5f
zACAYS$5R2;GI47t61S|t+S!%EVXy;OO9y`FPj&%oiJ4!*OwCnEehV&)P)bG0J7>Ga
zGR)*|8F_H5Ja01(y-wy~zPKwcf@hkD4QuETIqOkI#b!VrxXWl8m5L+bnMR}tu{EP(
zGwnKCb``^JT1BHgIqk*IhZl*DC_OBLZZkkT*`NHyis@-up6&sbXLpHaA<$-Vb~ZRG
z3cWBly+L4&{yc`1wGe1C&N|y>71L~F5a?I;Jz)F*w^U_VLT*XJl}ty=P?#Z3I+=qI
zWo$rIc|elrL6JkzZqs?_TQ{AjmYuL^*Nw2LQwe(w&7r8e7BXd8Srgg;jB#?0tnQyJ
zXw^MtRmL|k@wG-Q%Dfqzwo9}NPOXV{Q_G&!wCk4Dw5nSCMgrA@D1lxrv;r2K3uS2q
z6zROsc&n&yXK4q!0<l)3qbv25h?HkiZw<~=r?*|ULvU)%c9>eWs-|6cs!prZ>oyXo
z_o*&dX^ce9iwMS0yh>v{$Duf!Nx?iLEAWjxSuRO$x#Jwzcbrcxb9>r#Zcoc|ds?1b
zuO@XV;f4o!kUo#Be1Ve%zzLuz+u+bB$7`XWdGb!XPTr(Ed8g&ctL5Yu*oSM%$g0>!
zl*I|TnoyKbM@?T#!8EZ7rio?xCS9j*Ql7ra?&;I1=z?v{d~}(N^%ACF36m&R6RK2-
z7=xCl#sd4Pv5AENCS4g|T+R-fSQsD|Po_U!-+(UXu1VVgm?ibd>{k>rs)nWI%C;w3
zj4k%mxT`%iF56S%vOQI04V);eDb2`?`*bnfiV<LVg~(cN$Uh)>k1{~Fl%bU+e|Ky#
zhQ?iup>f$58kdYA`}R;p`;1y@pOIDjj4jsFxU2OvE?ZCIlJ(?SPv}($9JVuOgQ3-&
z9b2rYaaZeUT$a$|lJ(>r7_A6e9*qm^N8`p8DLn2fg~w$nJT6J$g21vAmTAIz?^bT#
zY)HIbp)iJcl~<J#t1#V!Unr3iwA4m{RU3^hl6c%z5|7GG__!pAjd3u<t@c;+_ErqH
zHn(MDaj8dLUFuQUr5=@B>V{+VBI*m)DG;?Eoh@9+bi1IXD;Wq^(#Gd4UGzY@=sBjW
zrsA5%vU&e#)HO$UR93<xXKapTV~(`kmOoEZNq5Vm0D=7|z{sLXM_pCvsH{pyB~@xq
zORY?-+mcJ%9bDp1+et%zT8rJv%m`UiR0L0CTX`B)o$15L!ZyUsTE25pi%Lz4QAx`i
zyQ#SqPl*tpGUBsBs~O5bN+?@oi2fFXj1ZPzy>FwTS&?@xQc<Z<F)AtYL$}=gNjpo$
zpI9vwTS<z}6)7qODMlql-cU>6Mta8E{9utRJ<na|<C0CSOl`4wrfceo!8mOv6#Ua2
zLZMmdcP>>?sZ=p4DgB1Q5GUoLNZkDeV*q0eDMeE6ix2_=OG25b{A7-e9EWyF!9TUe
zZEZCsI+vIjR>#3@90$E}al%A>J{31XS8p!l^z(1q@2|=OV-5t{riiNHXes^d2gGgX
zsXHI14l21!!#(419z}ZkRoFq?kp?M%;01xvH!y}th%#`_$3>Cf&II)Bk<!4H*c5b5
zYziugO@W!%<PF>d<AwgXT|m?yTLYqjE!`>TnC>LroK%QBHHkcM!^v-%n(5n9GXq<W
zQ_wlbDX8Q)1!j(uNu*9uE8H27M1+a0NKdS8ZfryeC8-RN8b?6=aXYifA6p&Qz?Kyi
zbk2$jDp^s1nHA*@e5-e^DvO>JCdrv79O3E|w+Jr~WqgFjlVCC*j^${y+=2AVITgE4
zKKVh*B^B&iQq4AY&^b3NsN`k^W^UH5p{^{cpd~*AyZEWu$_?H(H_NRMIy4D&E6Yk=
zeI_HfTw9i|Fc8+dOe{34U!gsWR6>#fc@2RWp_a#Oefx3Spq$iI8ljFxbl`Y?Wpn~#
zbQ*I0uVg97!SgW2DMcWK83X<?fDuf^-UJsw!guFiLS3>?jD<I8x8A(TjvOYh<wk)g
zHwu~}^m4Xj{bWoMu_?hIL-TbUQ^c&Z(QNSZ2c2ibtIURP&PH`F`huieP`(_)sqKR@
z0>UMZBOtrB64Pw32OV>##GBQH=QR_fY%{LV^6O;uqLTWpMijSJ<*cc4PHZW*Q7Bm8
z4NBxzlGkz@#j|gt1hy=ypko#le{)(H9@iY6NoB78pEYG5&Bz8v2&lT^lK61BA`zHF
zEVt9(nvoP`D@>`-{$eCX?K~Q9Wc6qQO9EHWHGwN|DhBM-9EN(lntOH|m~ok+*g|?V
zEJJV=;{<_d2G&_j0bE#9x&uo_RM0ges*;Q!7#UHDie@xyR%B-*vSLF{8V569ayn#S
zXtQ+|t0NxzxTn|h;Hzgp_!?Lup+VP3Xr-K1;Ft!Z{rHZ(D4y3c;_ulb{<fl9oojAY
zN^S*?X|mbR?Nsz;%lNrxPsOrT*y>zht5RPpa7<H8oW^fP!)6wBwu&l7QE(U<HhZAE
zIZ#H!KMW14Chv+yRgWKrhD~91)R%sBQrtt(u+=H*T&Ac}rN}Q&%Fv2N^Q3ex98{?r
z<d-MKjz;sObT8La9S!#oG(20yht35bD)k=9qhZTMx0dngIvTFyl}oCWhr@=4YxC>e
z&VHR+@#|c}uXCp|!PkOH^LlYRJ2h^_sc{XbW)CXO)8lqFx!tnK?HVTcZcLg@Ubmac
ztKt$~*>Z6UyO-l~YQ?45aCN&Hu5Q_Ibqm9lqcOIk(QLT7T@BYt{VTUHTz8|<Y)*DA
ze&tptWqcSK&2~`d+Dw(wOm1NZaWrh+gsnbO$MQ%ypAO5o1c%{blOx^5NEr?PFf^Jq
zP3O`=mC8bHp=oxbVH0KVa|Fw)a*4YimkCF?iCg7^F4#;edQU<!P$`mo^g%XwkATS9
zuLdh9VpJUNlxMWbLn4lD8oB$^X)FJ1I<>fG6PwzdbXL2QirSr2)vo=rkdliwZMXkC
zwQWC7Z0dZ{S)ETR>U>gF=bq(w#skjKVhythpkxC!Fr#3B7?5eOjVU9tD;xHmmallz
ztzd61;94DsWPLBs{=K<+rSb)-yfg0sfrunuFtK6qbc@&#AZrH5TwT^=C8<dgOgbAi
zld@4WsTwskiun66Vo2QcCyq9*lQl(APMwI~=PM2+a26v_YB47n9}gRaO~%rstFbgG
z8z_^Com3-F(L`cPZn<%CQ<0(CozO7DX>)vhVzGB7UG1Go+1{B{?45>5lN%MAG^u9p
z*zj#Kj3!+Tqe<B?np6xUOL<c9mIaMY5itJZu#CoN*RUzs1CxX>aa`yHrc83UIDR6(
z%4N)@QJRquQL5@_N0@TnkIXX&(@Cq!KGTV%u+PL|GfukNjFYm>IH}l-2L=bH?a~9L
zGCQDLl^G{H4@=9PcsZEu@-e0|9YgeXxk@v#5gAV6F9f1QPAp#{>Rx4$GEBD#gKx2#
zy;j+NQ(Lm%#A0esx|-Vj#fsrjvK#6NE<(zQBJeVRy<E?X>n!*{fA{^xHCW*+Q&T%?
zb$DhvI<4-OD$yFP(-?=Gb+jbX7e|YucomDzHhea-q`Os89=?)I;#QgTB_~9j%aX5D
zhK{T=ZhDsP2NCaIqdAm^?Y>l7+p0Wf47XhSGolq{UTjD%Gs+DEiX#+qBIJCuN)MUZ
zF0z_fe4I&FA7@hbaV8ZXr#_gX;y72N+!BH!t?~-8WnQO6>eo4rkw^ilAXeXWMlceG
z#dGZ}2BV!M7zK^BF|u`XPG6BkT+7UeA%m*vu1p`S6q(DFiD~Cx*e=4FSiHVTSFdke
zxeRAg@%V~r#U`6xBg(RM$YjwA!R+Gh8!ju21leM!3RaG=)_U#Eb4_i>xyH5|b;g}<
z)ESHWC5**CHm=mE3`?$}NX9tr`SIcVQ#ycbup}y7LJkuryj?+$sjbSf!m^q2t|=Ds
zRkuWXQ1)kBYt2qYBSVxGsY_U9{7&0d9+}z-k0=DKRCk~7X_aWpgqJG>tW$N89L6HN
zP|D|0*QAIVFfe3m7{^=AB=TmkX}be|Q*qw!&%QDBKkFms`{erh`LmbLKg8v~`|tnu
zMt<%7U)K#j-~anDK2N}<I?TXTR<HN%I+59WF`i{G+X{Q*Hd~_$mFKpv!3`FNVL(ho
z*oK=b#Zz#erqZEM-{(Zw3lLDe!ZFPB)!)Z}Eiujecz{&gM=lg-hQ!f}6~qZc3FO^{
zgfcKg>;a)fT1OJRh$(RcN~va+Z2=6I7;QL;3j$+~;|y_8_3Zk;94_I&wY>I;i!|En
z{cAl#S%Mg%XW;JZuRO;aJMO@}6HT8PGQQV)2d+^{C}t$vf_Ffq)V%|5P{wU`@UHi6
zV0_+{{^NfMh?n`HH9?0Mre056yN)S<;CmFWzza1j@(gG1$Mfq~m#@A%1GnE_-hhkm
z&#!O6<qdfC!!3CE{QT7|xcvcq^Bi2hy16}n@#6V2@a*#X`Ni#v{}Mgk$WyDm-T+*Q
zlXM_lqVQgr>p%Ur#^L>dFA)Y7YaAh32<$>iJ0x42tYET+@yY)y-nij!{KI#@6Yre3
z-r$E6B?CVFCr4n8Gs>La0NfxX$o%O?e2;CAk9q@eQK0k;(~x9Q(K?bpIE%#zdqb~o
zzyI-;W&9=HC4k^3p+4Fungl(ZgiAswI_eDugWh=@gKNB4GRh4<lx<K12H>{L+A4+j
zFQ%WA{9mGYHBb)zqbq@(^51jai94yt|G=M&KFj})@!>K|W&?A{GI%3cpw~0_8dH#F
zcm*>YZ-o$!xDXa*-&XMdtMeO`HO!Z{)BB!0pbg57!2?ofTxDAr$4dTFKp9LTm_@Qz
z*^>h<6Djud`?xp+yb@lMc}15_V3rIEa3Umw+#%3HQHV^jwmAhN(mvZ3dWpXvkYOax
z|D`ZNMJ)pn&m;>RO0A$r<{kJK;?n(gn{w%{N00v{W8J2#uM7D>NeA@a8Qx-X-6(jc
zqNCs)xcmK&JMa$Nh>J<L04Cc;2a|#&%EXa7?qBkU*%n}iR@4E{VYqDeO6iiU<NS6r
zD#A1OXzNHdQ<QHAVFG4yzrq0uYwqV6cydubLtL4^6OvJffW!=_$_Nxt&KWS~?+-{q
z9o|&jtta5i=*2oi5m+Y?$|N@kgo;j`kVH}lXVw1A2xSQiZAavI@X-);tU0iOf+mp?
zQH(G|l!7^q5ob$w0D|9=OhyiIGAGBm4rSmc&T0_}mFDCMi-goMyknt?$T}McDXjF7
za>Nwo12teLPYi^Qnn%SExAnaPF{Xlne(DbfaLtze<9<RC)c;xV6Jo#^NZy-Zc$^>r
zvxQh|)BzVHp*TXt^_PRenxbqFK?VmA&ct99CtMkbi7X)|*Odfc8e|Pf2KuOl1R3v(
zz&kJ_giq$(9L5xJ%%7`J;5td_Q&_MzPSkCFk+q9W(>fF9@wWga8=R3uh@1_~Fz=J9
zOaF@Q#G12$e<3Fzp9eAU+?FT+s{4jfBtbpkIOcpNJ!D2yq%WT)6;d<E)E1PMk8<#p
z;cdJr1FGUiqF7&UsO4uf0SnA*>-&dPN)jp5x&1EJ3k2U`2C~8ko^3__0#%C(az!G-
zw>LN6^HpQ-*^#I0rKqJW;}G6~yMCV!;Wc~^5Hz#{A$<cW8V?)b$p-_J@He9>Xb1eb
zL<yJ?wlpRV%8O!;#W-gQA&!WwN0w$NMBFhz7SUBk?M7~+)=_)@7E`fY)JChCc>YUu
z1a7t41JK)4?5ttoF3pf!hzZMO76NxT`X!_AZijGnaI(k{r3b7<m;lw-2v1k#s;wJ!
zV!WXnZk?OG<kk7wck)28dz>tu;jBE!Cw)`7a+s<m5W-EQB&an>Qk0-b9S$-D8WU#H
z<s2l0$%9goD`1++m$kW~*7J(26PCiIUZuhtG9-aa2zbd`nbahR(Ip|ZMcF~=<)8|U
z$1<|!j4ggvcjxBSR4`kL<$Fb<1GQlT-mPSMj^RFmZb0uQ&hwtCvfPCHNRmA7tEC*z
z-#bu>rx{r>h~r0Kl^m48D!F|WlZCXC=@N^J1ca#`lY88rO>{>!>m@f=a#Wg)l}2D~
zc+P;oo97JZ-FPnVsmgOE<VWJUyswr#m%rDN=N!QlRlGT`rI0PDWRQh8Q^~uL!p;Kd
z9yh2&4(j#w3l8XoXi>bnNt1(FzT%kV4FBfpRjx}uDZ@X{^&4!`<fuZnBN6--$EeJa
zeYFDmXIz^e_w_z<|EzzqNs|-(ZohcMJ=^|SpTiO^gV03!eI_5~U<AisDF+&=dbIf8
zNT!VFVUwICHmjvYqWy8s0&lKfId*cKeCNBYxJ$@$Bz|1ta4DEf^A>+oySOu@cgqf}
ztuN)=8~usVFl+_MET#4^ins|Z8DNIyoF`Z&S~4Pgmn#dhr6ZWLh%HyvAYW~&&PWa2
zW}(wwFo>+Tb~1sljRVDj!t{}Z*oViJTXzlOqwsi8!XYYT!wP3N19P~moXA~(sua7(
zxO>1bjH$}0NO-S`Uf$J>GIpPewIc4#7{DX&LlWy-xO8bafGI!;Sud7VM5+lIJB1_H
zTe@>2M5HOM!76vfYD-3E`qfNq-T`m!fHyG4k>+&aQ|XtEfu0eP8EMX<)A<}Hm~9(Y
z!80_+3HQ!)laM4-+(E`bwidyhpMJ{F{O4jf;67i24kkiEpM)d{QOf8E4VNfd$2eIG
z&_;&UPPjX}NCqj11__DK$rIhz04C7@CJYbsFG@(qDNfL(U_}de$tF9Qs{rDp>o~q5
zF%B!f@#Xv#VOP@CtBv`&>_V;x4gsVJL<M?gZebbF7t1i?BV=xwh}U*^RRz!Bq6~K<
zYUcR=hc2N%8lMf_=_r^E;cN!c)SaN|aOTbZdE_HMLgR2a_gxQ;X48o~98Cg$7=-W?
z&Af3mI}M}RB;1XS=$&KKWMlrYL0QJtm~h^B3+-oW2d-EZ0?3*X8p2pol27bEH4A^u
zMO_pD2)-v7{x^R&<}MUCS1&3!g`2vQNz5>iolz>lx-pCC-ZpbgwVM`PV*o#(<EGB)
zJT!FNf`#VO$!Rbex_&qhTz5PV=kwVV1#lG3#=~fSiYBKJ4m~s<&fv&}fj2r0r$gWO
z{b}USCv}FdW2N~>dm=koNi}*(kM=NBk-TSNfeUSg7RBz3h>I|2xej$W+Zn-r-BQ`I
zQnSvsh0SYh8Qi07z89~Q(H9cL7YZk*jH@!AoFW~(Y5U^bc*_09$cS$0vi*%<BgkL_
zyy7j<K;+6Mtg>&RvPL5d#(RB33W|JndI+-W_JumSFXV$gl(US)G0OG~C0EnHY@)2)
zqAux)F0(`tJBc7#k%S_)qnAc2O}Mc}t<U%G(H`Mb>Ah-Hbo=W2*5T!-7B^pXK~27W
z$T+-TKN%8f-kb<-le`0W9`EDTTGaj}a}XhlxtE!eh}K`;V2VldJ*HgJzQ8LHqE~<d
z5gM29Z^W4#*%~Zma}dk+6_`XMo4gkJi%tqNhNUhs<ZFUsJrD+w;M#l@7_aW?fv&R!
zvOzCKvjTht-vagKF5v3~ZXk{YFLmjn^nSS`ZbdS**xKNhSr@F+MFt}T^4Gp48F-fW
zO^><ljU(-haLe~v-}&`aX@?^bS}S2GqYXD|5^hi<pdXTFC`Js`UoSvA;F(}i4g%ms
zB7D^)rnNQKVAkhU^ex0&ZF{3~a<M{4R^lqrzlb7Sz!c7Kj2T9iMc;=})Ia;_=i`2q
zk(B=>#K1+dOD$3qIKP&i7AG`ek~QN_rS=%Vdwt25bvdPhqa%}8%fjKOpG*4KsPQY>
zH7VuS3NJOyFfqjn?;NQcnXs;OC~m_h>qP7Ty}tP-Pp38XyV&Emt9JR=(CB70VnJL&
zB^i|==6<WRd8iy}HIx0bpX9^-Szi=L?H~6A^YzdAUjL7ukNXtCEL<X*&x_tJ1kYaG
z=>1=MoExt?*G-mNmEC|9+=2{I5^oSlXiUicI@S9TB$1~~jPMCXY@I6ZjS|{m@v61@
zOs97+0{R#6nlhAqi!;jl0MA7{=T*M>0fapumQktckC-jLmo1y#;z~_oBGsC5<X_<A
zp4yF#6J=<~bK0^}m<ngu1IfiDPp#Zq_0~Y`^WbE0q5=>Dn96fVe5wbk;mH#j@8^Cn
zTO$4Qk)p9F9Q6|7q#17q+}6yq8*!RU%Zf8_egtm+`wYCky#U`FfvfYIn;)N@fiHgl
z9XQvj+P_Gy{Ns-=z(vtOd{DCaHX|$b4FJc{b0L1OsdxSGHjNwT&`(A7k9xnk&0B`D
z1jd&ML)jdLsP13BrbwkXVRZ}`GA2@U#0G=Nq>$?#YaotJ$>eMM0cPk7h`grRHkI|o
z?@wvY1R9SFo;SI-!WHEYa3OfKDOzlzaG^QdY6ryuS9$7}7HJYiF0Xihi<rz{?9A73
z%!NYk`0P-VC}B85;!p$c2PcKuprB!@gl~PZn9UC95GH`=CYl0y8EwA(s!$h@`BD}|
z$}RI}K3CSfx`GWQEW`5G6U4$3-jad=Siv;qXkA|M))}JeRsLMa*!N$%Fp37M`vD^&
zG=*3=5Eu*|Fk6a02T<aDa+Fi5g;v8j|5%*iFk2QiCbncPi)H81mJx7g5tDa$m$h)H
znyd3TCJ#CoEMn&9Etf=?6|d>kAr1@gif$;F&7ljtD_~K2(`=K!SPedu-q3LY@$E)m
z%2zU<#3Nxj$!JgB3d#}SOo|}gf)t1M+C86(v%Y%&m%Ho70IyP#F_<vR%G4Pddt(Xw
zRn-{n4JQ;0yG9dM5GP+~IF5;`!yoPOe)FxSX3z9NYyxrPVaDfAB=ScMok-R5Eq;rl
zmpF=I#Dyzu@Jw^9OthH{lUzK46@OQ~+T2B}@IpRiRao;nqD6LJxP&+v%pk>~%<U5v
zD49#_)C+1Sn`IEq@xA$ks}LcGQWzpF)Zm(t6=XORNnRJiVx_`l%?Dd<Nr;3N1DZGh
znWiX-BxHH&LUda6Li1FZ{7w1LP&aE`FraLYYy67oe@aoxjU{wcLWE;S)*=~-P-SAS
zbiXKxL>^;(q=nG@$^BXUQC_)XMGVkexJqN>#3Y2VSjSw(Y1v+lK&eF{v~?37=G}?S
zas5YAj?$IbHGCBC_1(=Yp%JB25?mf}yEY*Va9yNNuzdX$@EmVAa1ZH7r*+u`zE<3l
z^L1vIXq}ffP{IgPxvkrxS8*8i;9f=RgL_q9in7@|Y#p<$OefRH=y@l(Bvj{)sOi^;
z14q+34%SdugM3tN4;788W-+5}NDcKbEM#gV?=vJz;e2U|tmoW>+%u!Kj^sg#ZG)b9
z$qg&<wzN=XJFO7p9xzVi&8GC2FHQa*Vxi+WM-I3YwrqwtGAkL(feG+5fMdgO6F8G3
z-WHF=TQIvv5rF!%$F>1|7S~y#up@3?+~n3nJ_O$owp7Whuk`Kq(lq9>OO=Mv=i0Pf
zD|Njy?qastXSuWtl$4b*W(Ob7s5IVlE~C`iejwv^iK-BUb)^za8Ol~Tkqk<*2xa?^
zaH#9?c9Nw|XB16zc1E^Nj>TmHvhG3N;#eHzOcvZ?!hE`!?nkhk>^a7B6mG+6s?r~K
zHM6v6sVA57VP)G)U%zQFboFE7Dv|oOscPh`v!*COSPm?TwFDDsrpwTXuo3y9RATn^
z^@|(cbWM?wFUbjb_Kh3_ozuB<&$mbzweR?r09p5Y&*KNUrM0ciN@i)*S1QA9vB|4n
z+}B~fliKF4U|*&;cSr6h3WkA;qDkmQ!(fgg?=+f4o;R7yCSw%N#`7?kj6E-yg+nh2
zh7t4wHypY?9G;Fw`w-F|oN}-8q1@v`m76z7q8d;KY5%M&P`PF#nXU_@8i_f<N_SPj
zwD&VA#MM9+uH*ZmCON5YZuaZIbPQpeBI>A!F+D5v7gGPL9|oup&IyT3U%R?^Uy(@P
z=Z|GgBApTR=&3-7NK}xR$S8|SV%oXL56CSu!E{UM(AiXBjEg`*b-9<iX|dYXdjkpl
zu)b^k?OFJ<Fo2`+%n!Zk2o7h%5RJm|WIl64-<{5bQ#Tlod=Jf{z#B(%A5Nn2>1^na
zX47zZIt$#xu+q!Fv`eyY@tcj`&j>j%5hKr?H+oh%2sUi>In^qz^$cBV1MNsH_L5YL
z<o-2+(T^Es=!Ybfp{?_xWgc`b&Irn!Z%5j^(k3Npg$nCmD$5m#P;OwWJZ(8#Te8mb
zTWZwd-Ryt0Th8+BlLD)Os>7)_I|jUedSo4o-RUmeyD6u<T)nx-n>B;%Ajr+x6egh!
zv^qw15ktIc@^CKaBB1*K6IEhER2@rzei4ZK+>Z+fNCnUH=bXG!G{R7O4G7Ii7NVN-
zEER)zrZcBRRaF69bo(Q>KNER!Nf_HYmY->t%+jINVdhg6=jl27XG!eG*7DKSF#afv
z{Zh8KI^dvO<Ffhcl(r-9PX5Vh{DsVaVN3LjeDUkM<2>%o2>4>~h1x%+CiK~wl^Mf0
zLuQ?WNA`O4s<!l&AsC6=<p%cFVj0g(qH3A@fWsIRendkr6#u)zQq$@5JDeXJfpTKV
zJeMDum<;{4MwI0gHA*a7ujXxrP0=9Lmuyh3;FrU`oQwSw&Ip6MV-Rf<xWb{7ZxoY6
z-NdG|OG_{07rfmam+}kqmr>RbOI1^7LZW1a<fU&Yrbq%4M;gmFHkxm)6S0YhBJkAc
z`baEE2{c*9@i9n9{lYnJ@(A&c*f9_lS9CH!0|oZsU(aj{^0kVage3V@7cLSZrMr?y
zymJ%}ayu3Rx}FV0><^36@A8bV4i84flFrL6a#vl{JhWg~&!R~;p-!Kvi*nJtmOpb=
z+%|oz{`~&x7^Iu<7@$?kw$E^OtYR(4MRwtFQ9F|Bd%0WLjOPlbI=*eQBc7|rWG+tL
z>x9)+ep+=W)c+jmX%Zy|s;<peTiJH7f@$6FG_+_jj%v*1At^2P_G9p&g{xqiftut)
z7(;TIg)0nb{}Bvf((@5#!jS+tRO?X~$zF0c-l+a~doi$G3}$U5*9~KlV-TUuK@5_M
zBssGRlP-un;h?y%wqs;FLKvY<hm(Uld$7bh{+vUDjhHqsxPITV-jo{LyV?Xp!+0&`
z_fC^|XUC&qq3FGk$~qA!v|1&3Cls+O;~tcTHF>W0poFnvUYa74U&1AMNaXDe;zHQQ
zuB0+PnE7u+^N+X&3jA_LRXBW*1<}ymr@bx=gg=GlVW9KDSBcSAd9maS^5{!OTBxlI
zO;!D-*`6rFbCl<x!c^*T#AGrN**t|(%u{#-%#|6cQoZfzM~3o@5c%)@d$jGJ_4TRW
z{&7E*C+%0;fhdi9vf2*vr+@rhQPZkh33s;zSV84Kz=*0)WH+g0!=2`|8pwle=}NyJ
z*nFc)n288qb3{2m7@*xb-3j;1`Kx)2+tOVi^u2V4=qtimU3W-qofV4kx-n{~vs_dQ
zMnL~1T9ItqFZc}two2y|JiR`DIheul9z`<Dyrm4Sj!Z9F%$*9AXpl?D0DntuT#=|D
z3Zw9(_}@sMiE0XPasYQX_}@t4_>I6t8pZSu%n=mT{1<!*#DRKs4t-13BC<*K7C#U{
zCUG`H00N3CHKKL=7+TqnbatL|A+69VC9-ml8n>ptn`Tf?)F(8J0@Y7;66NLi_H^1$
zZ0#y^KmEn45&e`WK3iK0gM5PXo~@I=$ck6UeyUUd-Y5PZ@t9spqVv7S!W+(L>(XWA
z_d6c=Hh{f2{493ut@g*P4G=f>k~Vk0_viFGZfN(<M&r|C{p~`Onw2RN{j>fL;wGb)
zn64lTm;K|uxZucqPyFzjqD*}^?>G_dinER7d^L?6(Aa6NxXKC07>sQtx`e6uhq*v?
zBB*+=zK2r)-L-$L&exZZ70Q7XaE;0n0v=_H4AI|e1q8L!yDD1jOsgv(eZ<VVqSKve
zHwKkEGH)utx+UKjT{S1(RC{TWdsDo+zuTs+>cv#Nq2oEO&b#r@Y>Xl_f~Uc3I3Gve
zXdDFL^mI0y&QHBy7EDLp6a{_|%qBh>MZV|5$#_0N{&W^b-ef;kdCpCSiCEdY66-Hy
zEL*n)VZNnWoRVT(CyP_3s=}N~-ctFZGKbp676$~y8Kn0@JIj?X62NlBZu}nO4N4HD
z1MU%G@s}tTyG{oZ2OUKhUmV@shS>}KT(ocE)iNAM@AWmfvO>II>Eg?P5>^=?m@b9s
zqGoKXZ|&1iuSDlf-R&*lD>HgaL^Q#vo`C6}^ramD!S}bfSL#ijf1pbm2p-_iPxwDK
z`Kj0=<0yxIr>R$3*+!|>vlq|j7|APe`CQW?s#h-+RT?fw=hw(2ClrA@IX7qGu=t(2
z?M6ahk~pFomOdP-#B~K~6CKs9=Kk%)6(7I+4sbbqqM4{=oDil0clo|uZEkV~wvEs=
ziXc9OIde#l%bhvc8haKU9>kvorS?JixExw^`^YR>9<xW|(JI(RQa%WmD&cAyq8s&i
z4~Hr!kISD5XpK8{X9w{nEfLTF<)iYY?(~tl(j2Kr<H<761|lAvA4Lh{-S%f*n0bfw
zX#(nKdzR}s*DTLc4{hvD_2Rw`>z&jsPTw&qKzb7oxu;PWMP4)x-RW#TpAM&CFbUCc
zKAeokvnfKZ7x?qj=yW&^yy@w94x#S{qp=Sg61^)3X>&81K`Y<ts18u|46aEmkFFWt
zzrjhQs}XQmPFOtK@2Z#mTeF)cc&e}W0J{rY^=zk0e_oFU90>hAz!va2<VLrdI#C<e
zg5tG!whKABR#(|KXBX#>)jn_?5eMKTjMw^DGMteOQd??~7RN9Q^WD!3MR=DfhUsp%
zT)h7gJ@O1uvd+R<881<hj`q)f?}zESf7TzmuDj|V_hoplf7U<!4)^~!?yKBfqor4F
zH*#O%{vV~tiSAP;_EK;nE8tPfSwe|w?kd_G(0ZYgTmckrW?oN5Zzb1;IWGpp2uMk~
zj-|X&?ekO5N=XVGD0_6kH>wtpjIlCtMAIn$#x)a4!fczW;}S}<9?LCxv0Ew53X7bI
z4W?Mtw}8oZMxw3kT+gDBx}XY0&vC4D=#J{rcfa>VJ(H^pZ*Ytj=s68xEI3ewxsLm0
zEjB*0^`dUa{Zzjn<*(^2+G|4Cw|P8T*QYlxE0@2u3DY&4F4Z*x4l1LPmtxuz4bI!W
zUlA2u?Z8Cz!xm8~b+XTBt;^(mFsq<&`Yl}H7&p`$;5H;q!CXHVTwm<E%RKb_z~JT8
zW_Zm19a}ruHrY@&;?VL9gW-M6fWWD;n2dgm_Q&8#B!@p+!&v>GN;%}e)Ny&-0uCk6
zk9@AfI%o3YjDyz2jag^|Cv%dmq&BLp3<<RBvRE>f?phWCdROL^HAQxSOh|;TEQLo(
zxhlGy%m~x6;st@xH!y}th%zCoU+H#w3e@S?_pKL}m-XZD#L-nw#L-ULYz0+r^}r;u
zgzZikEvsJ$xO+-pSSw#BBy5#0Bqv(SUf4+>jD!MtLwIn%Sr+NxP<0zeU#)Cv=R4l^
z?pXeR!~eLwxVjV5efRp=)tv*R6V887?sy6x5&*&N#Z}G-{OJO*Vx@|TfqebEzJ4K|
zigj)5_v|8y!EAxpKF%$!Uo+ZQ;vO;vUlR3V0OlE4Nz=9{FDae~5C5(JcqdK+=^H_m
ze{b@a7Eda7t<cqm(_h({zDosQF$toOhBAHl5JgJhXv3*EXPV1D5nZrxMR_Z;SpXW6
ze2*Ng_tA32(9)eD9qPsGSv4B|feVM)Pvz%ID3AN(ZL3h~ho_VWb$L}vW-z6ssi;?J
zjGl7gI#a^+=(r?nk3kOaxRAL98t2;e+8Hcp@YBlgcP^2iuX;OZRa4lSwa5*phb7{3
zZY*RCu&}1I)7j94<szHgTJmKXwsZ^~eLo^a@+N+Tuqu~(44?#psTNu&Qt>rr*67SD
zpBV_YT!TApbODw{IB6QnXS&QzF_uO?kG$ZNL?BxyvizKaRJw&gLJ-sJEHW6PE0kf8
z)j*QSEDP`6<(rYa6n%ay(Ret3DL&!KJ|-|4<j(g=N}|EWJ9&~<)j9gPhSQ2W_zPr9
zCjP((4ZIyFS?hd$G^9wZ)M>*7h1$Lol|{^!?^|U=Kopk?6;Rd2F(WC7$zpqxa;Nwr
zuWV9BPhX5=d!x(kNP6tVkjZh=;0IK|9~8w_^j<e(jk(pWm)7m=f0Y-Os<{8b%UK~9
zE&+<LC|tjmW%czjPI2?Rz(%H&iL=GGc?qtDg2I-=$&~{9XJ&=`JEMj?P9nU)(Hh3w
zRk_#IV?|jp%3yx|aDIW-&K-##afZGV*KF<Bk|=}fwkJ_^)VwKC>7&K2ME>U9J{$UJ
zNQH4+$9H|toqEH(5X}Ul;r!I~PJ`3YDT>CyWI7wqPv?{I{1nZHb8j}B3}?RY&raRZ
z1i4dh2Hn{Zjpk#2I-TytOm0y0&f^$d<HeFua4jqGM_?e-?QOP37lK}Jl@UIXy}xz+
z$lE4QbSTeRMV&!eKd$S#<Ka;J@49aFe|I=>|K<&S*B=gD&kz3Qdj7;4{|&g0k4pWs
zrVM6(bKkqKDsg|2&tNd<Epdd-dH@UnBVmvK(tA?GNV%oH!RVpa`)7=kd$7#V{HwlJ
z5XIVaNVYing$pVip0EsWwoXWCUzp=x^%;80PQ>>N#b5O)+s2445n_FC@^!EG<cX+P
zI1p^jzdm{L1l)u$;k>_&8SV9Yy?5Xh0WUEv2_-J`)=8wx{quEwHrV%hCweS&h3=87
nA+gVFK5E3~&z`r>pU<DqpU<E7{rvv{00960^!H4}0NMippmRlY

literal 0
HcmV?d00001

diff --git a/core/traefik/10.0.57/crds/ingressroute.yaml b/core/traefik/10.0.57/crds/ingressroute.yaml
new file mode 100644
index 00000000000..3391ba532a4
--- /dev/null
+++ b/core/traefik/10.0.57/crds/ingressroute.yaml
@@ -0,0 +1,198 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: ingressroutes.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: IngressRoute
+    listKind: IngressRouteList
+    plural: ingressroutes
+    singular: ingressroute
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: IngressRoute is an Ingress CRD specification.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: IngressRouteSpec is a specification for a IngressRouteSpec
+              resource.
+            properties:
+              entryPoints:
+                items:
+                  type: string
+                type: array
+              routes:
+                items:
+                  description: Route contains the set of routes.
+                  properties:
+                    kind:
+                      enum:
+                      - Rule
+                      type: string
+                    match:
+                      type: string
+                    middlewares:
+                      items:
+                        description: MiddlewareRef is a ref to the Middleware resources.
+                        properties:
+                          name:
+                            type: string
+                          namespace:
+                            type: string
+                        required:
+                        - name
+                        type: object
+                      type: array
+                    priority:
+                      type: integer
+                    services:
+                      items:
+                        description: Service defines an upstream to proxy traffic.
+                        properties:
+                          kind:
+                            enum:
+                            - Service
+                            - TraefikService
+                            type: string
+                          name:
+                            description: Name is a reference to a Kubernetes Service
+                              object (for a load-balancer of servers), or to a TraefikService
+                              object (service load-balancer, mirroring, etc). The
+                              differentiation between the two is specified in the
+                              Kind field.
+                            type: string
+                          namespace:
+                            type: string
+                          passHostHeader:
+                            type: boolean
+                          port:
+                            anyOf:
+                            - type: integer
+                            - type: string
+                            x-kubernetes-int-or-string: true
+                          responseForwarding:
+                            description: ResponseForwarding holds configuration for
+                              the forward of the response.
+                            properties:
+                              flushInterval:
+                                type: string
+                            type: object
+                          scheme:
+                            type: string
+                          serversTransport:
+                            type: string
+                          sticky:
+                            description: Sticky holds the sticky configuration.
+                            properties:
+                              cookie:
+                                description: Cookie holds the sticky configuration
+                                  based on cookie.
+                                properties:
+                                  httpOnly:
+                                    type: boolean
+                                  name:
+                                    type: string
+                                  sameSite:
+                                    type: string
+                                  secure:
+                                    type: boolean
+                                type: object
+                            type: object
+                          strategy:
+                            type: string
+                          weight:
+                            description: Weight should only be specified when Name
+                              references a TraefikService object (and to be precise,
+                              one that embeds a Weighted Round Robin).
+                            type: integer
+                        required:
+                        - name
+                        type: object
+                      type: array
+                  required:
+                  - kind
+                  - match
+                  type: object
+                type: array
+              tls:
+                description: "TLS contains the TLS certificates configuration of the
+                  routes. To enable Let's Encrypt, use an empty TLS struct, e.g. in
+                  YAML: \n \t tls: {} # inline format \n \t tls: \t   secretName:
+                  # block format"
+                properties:
+                  certResolver:
+                    type: string
+                  domains:
+                    items:
+                      description: Domain holds a domain name with SANs.
+                      properties:
+                        main:
+                          type: string
+                        sans:
+                          items:
+                            type: string
+                          type: array
+                      type: object
+                    type: array
+                  options:
+                    description: Options is a reference to a TLSOption, that specifies
+                      the parameters of the TLS connection.
+                    properties:
+                      name:
+                        type: string
+                      namespace:
+                        type: string
+                    required:
+                    - name
+                    type: object
+                  secretName:
+                    description: SecretName is the name of the referenced Kubernetes
+                      Secret to specify the certificate details.
+                    type: string
+                  store:
+                    description: Store is a reference to a TLSStore, that specifies
+                      the parameters of the TLS store.
+                    properties:
+                      name:
+                        type: string
+                      namespace:
+                        type: string
+                    required:
+                    - name
+                    type: object
+                type: object
+            required:
+            - routes
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/ingressroutetcp.yaml b/core/traefik/10.0.57/crds/ingressroutetcp.yaml
new file mode 100644
index 00000000000..67e099b47da
--- /dev/null
+++ b/core/traefik/10.0.57/crds/ingressroutetcp.yaml
@@ -0,0 +1,160 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: ingressroutetcps.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: IngressRouteTCP
+    listKind: IngressRouteTCPList
+    plural: ingressroutetcps
+    singular: ingressroutetcp
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: IngressRouteTCP is an Ingress CRD specification.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: IngressRouteTCPSpec is a specification for a IngressRouteTCPSpec
+              resource.
+            properties:
+              entryPoints:
+                items:
+                  type: string
+                type: array
+              routes:
+                items:
+                  description: RouteTCP contains the set of routes.
+                  properties:
+                    match:
+                      type: string
+                    middlewares:
+                      description: Middlewares contains references to MiddlewareTCP
+                        resources.
+                      items:
+                        description: ObjectReference is a generic reference to a Traefik
+                          resource.
+                        properties:
+                          name:
+                            type: string
+                          namespace:
+                            type: string
+                        required:
+                        - name
+                        type: object
+                      type: array
+                    services:
+                      items:
+                        description: ServiceTCP defines an upstream to proxy traffic.
+                        properties:
+                          name:
+                            type: string
+                          namespace:
+                            type: string
+                          port:
+                            anyOf:
+                            - type: integer
+                            - type: string
+                            x-kubernetes-int-or-string: true
+                          proxyProtocol:
+                            description: ProxyProtocol holds the ProxyProtocol configuration.
+                            properties:
+                              version:
+                                type: integer
+                            type: object
+                          terminationDelay:
+                            type: integer
+                          weight:
+                            type: integer
+                        required:
+                        - name
+                        - port
+                        type: object
+                      type: array
+                  required:
+                  - match
+                  type: object
+                type: array
+              tls:
+                description: "TLSTCP contains the TLS certificates configuration of
+                  the routes. To enable Let's Encrypt, use an empty TLS struct, e.g.
+                  in YAML: \n \t tls: {} # inline format \n \t tls: \t   secretName:
+                  # block format"
+                properties:
+                  certResolver:
+                    type: string
+                  domains:
+                    items:
+                      description: Domain holds a domain name with SANs.
+                      properties:
+                        main:
+                          type: string
+                        sans:
+                          items:
+                            type: string
+                          type: array
+                      type: object
+                    type: array
+                  options:
+                    description: Options is a reference to a TLSOption, that specifies
+                      the parameters of the TLS connection.
+                    properties:
+                      name:
+                        type: string
+                      namespace:
+                        type: string
+                    required:
+                    - name
+                    type: object
+                  passthrough:
+                    type: boolean
+                  secretName:
+                    description: SecretName is the name of the referenced Kubernetes
+                      Secret to specify the certificate details.
+                    type: string
+                  store:
+                    description: Store is a reference to a TLSStore, that specifies
+                      the parameters of the TLS store.
+                    properties:
+                      name:
+                        type: string
+                      namespace:
+                        type: string
+                    required:
+                    - name
+                    type: object
+                type: object
+            required:
+            - routes
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/ingressrouteudp.yaml b/core/traefik/10.0.57/crds/ingressrouteudp.yaml
new file mode 100644
index 00000000000..910acd6c270
--- /dev/null
+++ b/core/traefik/10.0.57/crds/ingressrouteudp.yaml
@@ -0,0 +1,84 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: ingressrouteudps.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: IngressRouteUDP
+    listKind: IngressRouteUDPList
+    plural: ingressrouteudps
+    singular: ingressrouteudp
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: IngressRouteUDP is an Ingress CRD specification.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: IngressRouteUDPSpec is a specification for a IngressRouteUDPSpec
+              resource.
+            properties:
+              entryPoints:
+                items:
+                  type: string
+                type: array
+              routes:
+                items:
+                  description: RouteUDP contains the set of routes.
+                  properties:
+                    services:
+                      items:
+                        description: ServiceUDP defines an upstream to proxy traffic.
+                        properties:
+                          name:
+                            type: string
+                          namespace:
+                            type: string
+                          port:
+                            anyOf:
+                            - type: integer
+                            - type: string
+                            x-kubernetes-int-or-string: true
+                          weight:
+                            type: integer
+                        required:
+                        - name
+                        - port
+                        type: object
+                      type: array
+                  type: object
+                type: array
+            required:
+            - routes
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/middlewares.yaml b/core/traefik/10.0.57/crds/middlewares.yaml
new file mode 100644
index 00000000000..1770587a327
--- /dev/null
+++ b/core/traefik/10.0.57/crds/middlewares.yaml
@@ -0,0 +1,563 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: middlewares.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: Middleware
+    listKind: MiddlewareList
+    plural: middlewares
+    singular: middleware
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: Middleware is a specification for a Middleware resource.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: MiddlewareSpec holds the Middleware configuration.
+            properties:
+              addPrefix:
+                description: AddPrefix holds the AddPrefix configuration.
+                properties:
+                  prefix:
+                    type: string
+                type: object
+              basicAuth:
+                description: BasicAuth holds the HTTP basic authentication configuration.
+                properties:
+                  headerField:
+                    type: string
+                  realm:
+                    type: string
+                  removeHeader:
+                    type: boolean
+                  secret:
+                    type: string
+                type: object
+              buffering:
+                description: Buffering holds the request/response buffering configuration.
+                properties:
+                  maxRequestBodyBytes:
+                    format: int64
+                    type: integer
+                  maxResponseBodyBytes:
+                    format: int64
+                    type: integer
+                  memRequestBodyBytes:
+                    format: int64
+                    type: integer
+                  memResponseBodyBytes:
+                    format: int64
+                    type: integer
+                  retryExpression:
+                    type: string
+                type: object
+              chain:
+                description: Chain holds a chain of middlewares.
+                properties:
+                  middlewares:
+                    items:
+                      description: MiddlewareRef is a ref to the Middleware resources.
+                      properties:
+                        name:
+                          type: string
+                        namespace:
+                          type: string
+                      required:
+                      - name
+                      type: object
+                    type: array
+                type: object
+              circuitBreaker:
+                description: CircuitBreaker holds the circuit breaker configuration.
+                properties:
+                  expression:
+                    type: string
+                type: object
+              compress:
+                description: Compress holds the compress configuration.
+                properties:
+                  excludedContentTypes:
+                    items:
+                      type: string
+                    type: array
+                type: object
+              contentType:
+                description: ContentType middleware - or rather its unique `autoDetect`
+                  option - specifies whether to let the `Content-Type` header, if
+                  it has not been set by the backend, be automatically set to a value
+                  derived from the contents of the response. As a proxy, the default
+                  behavior should be to leave the header alone, regardless of what
+                  the backend did with it. However, the historic default was to always
+                  auto-detect and set the header if it was nil, and it is going to
+                  be kept that way in order to support users currently relying on
+                  it. This middleware exists to enable the correct behavior until
+                  at least the default one can be changed in a future version.
+                properties:
+                  autoDetect:
+                    type: boolean
+                type: object
+              digestAuth:
+                description: DigestAuth holds the Digest HTTP authentication configuration.
+                properties:
+                  headerField:
+                    type: string
+                  realm:
+                    type: string
+                  removeHeader:
+                    type: boolean
+                  secret:
+                    type: string
+                type: object
+              errors:
+                description: ErrorPage holds the custom error page configuration.
+                properties:
+                  query:
+                    type: string
+                  service:
+                    description: Service defines an upstream to proxy traffic.
+                    properties:
+                      kind:
+                        enum:
+                        - Service
+                        - TraefikService
+                        type: string
+                      name:
+                        description: Name is a reference to a Kubernetes Service object
+                          (for a load-balancer of servers), or to a TraefikService
+                          object (service load-balancer, mirroring, etc). The differentiation
+                          between the two is specified in the Kind field.
+                        type: string
+                      namespace:
+                        type: string
+                      passHostHeader:
+                        type: boolean
+                      port:
+                        anyOf:
+                        - type: integer
+                        - type: string
+                        x-kubernetes-int-or-string: true
+                      responseForwarding:
+                        description: ResponseForwarding holds configuration for the
+                          forward of the response.
+                        properties:
+                          flushInterval:
+                            type: string
+                        type: object
+                      scheme:
+                        type: string
+                      serversTransport:
+                        type: string
+                      sticky:
+                        description: Sticky holds the sticky configuration.
+                        properties:
+                          cookie:
+                            description: Cookie holds the sticky configuration based
+                              on cookie.
+                            properties:
+                              httpOnly:
+                                type: boolean
+                              name:
+                                type: string
+                              sameSite:
+                                type: string
+                              secure:
+                                type: boolean
+                            type: object
+                        type: object
+                      strategy:
+                        type: string
+                      weight:
+                        description: Weight should only be specified when Name references
+                          a TraefikService object (and to be precise, one that embeds
+                          a Weighted Round Robin).
+                        type: integer
+                    required:
+                    - name
+                    type: object
+                  status:
+                    items:
+                      type: string
+                    type: array
+                type: object
+              forwardAuth:
+                description: ForwardAuth holds the http forward authentication configuration.
+                properties:
+                  address:
+                    type: string
+                  authRequestHeaders:
+                    items:
+                      type: string
+                    type: array
+                  authResponseHeaders:
+                    items:
+                      type: string
+                    type: array
+                  authResponseHeadersRegex:
+                    type: string
+                  tls:
+                    description: ClientTLS holds TLS specific configurations as client.
+                    properties:
+                      caOptional:
+                        type: boolean
+                      caSecret:
+                        type: string
+                      certSecret:
+                        type: string
+                      insecureSkipVerify:
+                        type: boolean
+                    type: object
+                  trustForwardHeader:
+                    type: boolean
+                type: object
+              headers:
+                description: Headers holds the custom header configuration.
+                properties:
+                  accessControlAllowCredentials:
+                    description: AccessControlAllowCredentials is only valid if true.
+                      false is ignored.
+                    type: boolean
+                  accessControlAllowHeaders:
+                    description: AccessControlAllowHeaders must be used in response
+                      to a preflight request with Access-Control-Request-Headers set.
+                    items:
+                      type: string
+                    type: array
+                  accessControlAllowMethods:
+                    description: AccessControlAllowMethods must be used in response
+                      to a preflight request with Access-Control-Request-Method set.
+                    items:
+                      type: string
+                    type: array
+                  accessControlAllowOriginList:
+                    description: AccessControlAllowOriginList is a list of allowable
+                      origins. Can also be a wildcard origin "*".
+                    items:
+                      type: string
+                    type: array
+                  accessControlAllowOriginListRegex:
+                    description: AccessControlAllowOriginListRegex is a list of allowable
+                      origins written following the Regular Expression syntax (https://golang.org/pkg/regexp/).
+                    items:
+                      type: string
+                    type: array
+                  accessControlExposeHeaders:
+                    description: AccessControlExposeHeaders sets valid headers for
+                      the response.
+                    items:
+                      type: string
+                    type: array
+                  accessControlMaxAge:
+                    description: AccessControlMaxAge sets the time that a preflight
+                      request may be cached.
+                    format: int64
+                    type: integer
+                  addVaryHeader:
+                    description: AddVaryHeader controls if the Vary header is automatically
+                      added/updated when the AccessControlAllowOriginList is set.
+                    type: boolean
+                  allowedHosts:
+                    items:
+                      type: string
+                    type: array
+                  browserXssFilter:
+                    type: boolean
+                  contentSecurityPolicy:
+                    type: string
+                  contentTypeNosniff:
+                    type: boolean
+                  customBrowserXSSValue:
+                    type: string
+                  customFrameOptionsValue:
+                    type: string
+                  customRequestHeaders:
+                    additionalProperties:
+                      type: string
+                    type: object
+                  customResponseHeaders:
+                    additionalProperties:
+                      type: string
+                    type: object
+                  featurePolicy:
+                    type: string
+                  forceSTSHeader:
+                    type: boolean
+                  frameDeny:
+                    type: boolean
+                  hostsProxyHeaders:
+                    items:
+                      type: string
+                    type: array
+                  isDevelopment:
+                    type: boolean
+                  publicKey:
+                    type: string
+                  referrerPolicy:
+                    type: string
+                  sslForceHost:
+                    description: 'Deprecated: use RedirectRegex instead.'
+                    type: boolean
+                  sslHost:
+                    description: 'Deprecated: use RedirectRegex instead.'
+                    type: string
+                  sslProxyHeaders:
+                    additionalProperties:
+                      type: string
+                    type: object
+                  sslRedirect:
+                    description: 'Deprecated: use EntryPoint redirection or RedirectScheme
+                      instead.'
+                    type: boolean
+                  sslTemporaryRedirect:
+                    description: 'Deprecated: use EntryPoint redirection or RedirectScheme
+                      instead.'
+                    type: boolean
+                  stsIncludeSubdomains:
+                    type: boolean
+                  stsPreload:
+                    type: boolean
+                  stsSeconds:
+                    format: int64
+                    type: integer
+                type: object
+              inFlightReq:
+                description: InFlightReq limits the number of requests being processed
+                  and served concurrently.
+                properties:
+                  amount:
+                    format: int64
+                    type: integer
+                  sourceCriterion:
+                    description: SourceCriterion defines what criterion is used to
+                      group requests as originating from a common source. If none
+                      are set, the default is to use the request's remote address
+                      field. All fields are mutually exclusive.
+                    properties:
+                      ipStrategy:
+                        description: IPStrategy holds the ip strategy configuration.
+                        properties:
+                          depth:
+                            type: integer
+                          excludedIPs:
+                            items:
+                              type: string
+                            type: array
+                        type: object
+                      requestHeaderName:
+                        type: string
+                      requestHost:
+                        type: boolean
+                    type: object
+                type: object
+              ipWhiteList:
+                description: IPWhiteList holds the ip white list configuration.
+                properties:
+                  ipStrategy:
+                    description: IPStrategy holds the ip strategy configuration.
+                    properties:
+                      depth:
+                        type: integer
+                      excludedIPs:
+                        items:
+                          type: string
+                        type: array
+                    type: object
+                  sourceRange:
+                    items:
+                      type: string
+                    type: array
+                type: object
+              passTLSClientCert:
+                description: PassTLSClientCert holds the TLS client cert headers configuration.
+                properties:
+                  info:
+                    description: TLSClientCertificateInfo holds the client TLS certificate
+                      info configuration.
+                    properties:
+                      issuer:
+                        description: TLSCLientCertificateDNInfo holds the client TLS
+                          certificate distinguished name info configuration. cf https://tools.ietf.org/html/rfc3739
+                        properties:
+                          commonName:
+                            type: boolean
+                          country:
+                            type: boolean
+                          domainComponent:
+                            type: boolean
+                          locality:
+                            type: boolean
+                          organization:
+                            type: boolean
+                          province:
+                            type: boolean
+                          serialNumber:
+                            type: boolean
+                        type: object
+                      notAfter:
+                        type: boolean
+                      notBefore:
+                        type: boolean
+                      sans:
+                        type: boolean
+                      serialNumber:
+                        type: boolean
+                      subject:
+                        description: TLSCLientCertificateDNInfo holds the client TLS
+                          certificate distinguished name info configuration. cf https://tools.ietf.org/html/rfc3739
+                        properties:
+                          commonName:
+                            type: boolean
+                          country:
+                            type: boolean
+                          domainComponent:
+                            type: boolean
+                          locality:
+                            type: boolean
+                          organization:
+                            type: boolean
+                          province:
+                            type: boolean
+                          serialNumber:
+                            type: boolean
+                        type: object
+                    type: object
+                  pem:
+                    type: boolean
+                type: object
+              plugin:
+                additionalProperties:
+                  x-kubernetes-preserve-unknown-fields: true
+                type: object
+              rateLimit:
+                description: RateLimit holds the rate limiting configuration for a
+                  given router.
+                properties:
+                  average:
+                    format: int64
+                    type: integer
+                  burst:
+                    format: int64
+                    type: integer
+                  period:
+                    anyOf:
+                    - type: integer
+                    - type: string
+                    x-kubernetes-int-or-string: true
+                  sourceCriterion:
+                    description: SourceCriterion defines what criterion is used to
+                      group requests as originating from a common source. If none
+                      are set, the default is to use the request's remote address
+                      field. All fields are mutually exclusive.
+                    properties:
+                      ipStrategy:
+                        description: IPStrategy holds the ip strategy configuration.
+                        properties:
+                          depth:
+                            type: integer
+                          excludedIPs:
+                            items:
+                              type: string
+                            type: array
+                        type: object
+                      requestHeaderName:
+                        type: string
+                      requestHost:
+                        type: boolean
+                    type: object
+                type: object
+              redirectRegex:
+                description: RedirectRegex holds the redirection configuration.
+                properties:
+                  permanent:
+                    type: boolean
+                  regex:
+                    type: string
+                  replacement:
+                    type: string
+                type: object
+              redirectScheme:
+                description: RedirectScheme holds the scheme redirection configuration.
+                properties:
+                  permanent:
+                    type: boolean
+                  port:
+                    type: string
+                  scheme:
+                    type: string
+                type: object
+              replacePath:
+                description: ReplacePath holds the ReplacePath configuration.
+                properties:
+                  path:
+                    type: string
+                type: object
+              replacePathRegex:
+                description: ReplacePathRegex holds the ReplacePathRegex configuration.
+                properties:
+                  regex:
+                    type: string
+                  replacement:
+                    type: string
+                type: object
+              retry:
+                description: Retry holds the retry configuration.
+                properties:
+                  attempts:
+                    type: integer
+                  initialInterval:
+                    anyOf:
+                    - type: integer
+                    - type: string
+                    x-kubernetes-int-or-string: true
+                type: object
+              stripPrefix:
+                description: StripPrefix holds the StripPrefix configuration.
+                properties:
+                  forceSlash:
+                    type: boolean
+                  prefixes:
+                    items:
+                      type: string
+                    type: array
+                type: object
+              stripPrefixRegex:
+                description: StripPrefixRegex holds the StripPrefixRegex configuration.
+                properties:
+                  regex:
+                    items:
+                      type: string
+                    type: array
+                type: object
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/middlewarestcp.yaml b/core/traefik/10.0.57/crds/middlewarestcp.yaml
new file mode 100644
index 00000000000..f0d1d5640bd
--- /dev/null
+++ b/core/traefik/10.0.57/crds/middlewarestcp.yaml
@@ -0,0 +1,59 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: middlewaretcps.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: MiddlewareTCP
+    listKind: MiddlewareTCPList
+    plural: middlewaretcps
+    singular: middlewaretcp
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: MiddlewareTCP is a specification for a MiddlewareTCP resource.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: MiddlewareTCPSpec holds the MiddlewareTCP configuration.
+            properties:
+              ipWhiteList:
+                description: TCPIPWhiteList holds the TCP ip white list configuration.
+                properties:
+                  sourceRange:
+                    items:
+                      type: string
+                    type: array
+                type: object
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/serverstransports.yaml b/core/traefik/10.0.57/crds/serverstransports.yaml
new file mode 100644
index 00000000000..78241697d1a
--- /dev/null
+++ b/core/traefik/10.0.57/crds/serverstransports.yaml
@@ -0,0 +1,101 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: serverstransports.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: ServersTransport
+    listKind: ServersTransportList
+    plural: serverstransports
+    singular: serverstransport
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: ServersTransport is a specification for a ServersTransport resource.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: ServersTransportSpec options to configure communication between
+              Traefik and the servers.
+            properties:
+              certificatesSecrets:
+                description: Certificates for mTLS.
+                items:
+                  type: string
+                type: array
+              disableHTTP2:
+                description: Disable HTTP/2 for connections with backend servers.
+                type: boolean
+              forwardingTimeouts:
+                description: Timeouts for requests forwarded to the backend servers.
+                properties:
+                  dialTimeout:
+                    anyOf:
+                    - type: integer
+                    - type: string
+                    description: The amount of time to wait until a connection to
+                      a backend server can be established. If zero, no timeout exists.
+                    x-kubernetes-int-or-string: true
+                  idleConnTimeout:
+                    anyOf:
+                    - type: integer
+                    - type: string
+                    description: The maximum period for which an idle HTTP keep-alive
+                      connection will remain open before closing itself.
+                    x-kubernetes-int-or-string: true
+                  responseHeaderTimeout:
+                    anyOf:
+                    - type: integer
+                    - type: string
+                    description: The amount of time to wait for a server's response
+                      headers after fully writing the request (including its body,
+                      if any). If zero, no timeout exists.
+                    x-kubernetes-int-or-string: true
+                type: object
+              insecureSkipVerify:
+                description: Disable SSL certificate verification.
+                type: boolean
+              maxIdleConnsPerHost:
+                description: If non-zero, controls the maximum idle (keep-alive) to
+                  keep per-host. If zero, DefaultMaxIdleConnsPerHost is used.
+                type: integer
+              rootCAsSecrets:
+                description: Add cert file for self-signed certificate.
+                items:
+                  type: string
+                type: array
+              serverName:
+                description: ServerName used to contact the server.
+                type: string
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/tlsoptions.yaml b/core/traefik/10.0.57/crds/tlsoptions.yaml
new file mode 100644
index 00000000000..c901ac2df5e
--- /dev/null
+++ b/core/traefik/10.0.57/crds/tlsoptions.yaml
@@ -0,0 +1,87 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: tlsoptions.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: TLSOption
+    listKind: TLSOptionList
+    plural: tlsoptions
+    singular: tlsoption
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: TLSOption is a specification for a TLSOption resource.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: TLSOptionSpec configures TLS for an entry point.
+            properties:
+              cipherSuites:
+                items:
+                  type: string
+                type: array
+              clientAuth:
+                description: ClientAuth defines the parameters of the client authentication
+                  part of the TLS connection, if any.
+                properties:
+                  clientAuthType:
+                    description: ClientAuthType defines the client authentication
+                      type to apply.
+                    enum:
+                    - NoClientCert
+                    - RequestClientCert
+                    - VerifyClientCertIfGiven
+                    - RequireAndVerifyClientCert
+                    type: string
+                  secretNames:
+                    description: SecretName is the name of the referenced Kubernetes
+                      Secret to specify the certificate details.
+                    items:
+                      type: string
+                    type: array
+                type: object
+              curvePreferences:
+                items:
+                  type: string
+                type: array
+              maxVersion:
+                type: string
+              minVersion:
+                type: string
+              preferServerCipherSuites:
+                type: boolean
+              sniStrict:
+                type: boolean
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/tlsstores.yaml b/core/traefik/10.0.57/crds/tlsstores.yaml
new file mode 100644
index 00000000000..7bb6193b026
--- /dev/null
+++ b/core/traefik/10.0.57/crds/tlsstores.yaml
@@ -0,0 +1,64 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: tlsstores.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: TLSStore
+    listKind: TLSStoreList
+    plural: tlsstores
+    singular: tlsstore
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: TLSStore is a specification for a TLSStore resource.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: TLSStoreSpec configures a TLSStore resource.
+            properties:
+              defaultCertificate:
+                description: DefaultCertificate holds a secret name for the TLSOption
+                  resource.
+                properties:
+                  secretName:
+                    description: SecretName is the name of the referenced Kubernetes
+                      Secret to specify the certificate details.
+                    type: string
+                required:
+                - secretName
+                type: object
+            required:
+            - defaultCertificate
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/crds/traefikservices.yaml b/core/traefik/10.0.57/crds/traefikservices.yaml
new file mode 100644
index 00000000000..1d98c25d68d
--- /dev/null
+++ b/core/traefik/10.0.57/crds/traefikservices.yaml
@@ -0,0 +1,270 @@
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    "helm.sh/resource-policy": keep
+    "helm.sh/hook": pre-install,pre-upgrade,pre-rollback
+    controller-gen.kubebuilder.io/version: v0.4.1
+  creationTimestamp: null
+  name: traefikservices.traefik.containo.us
+spec:
+  group: traefik.containo.us
+  names:
+    kind: TraefikService
+    listKind: TraefikServiceList
+    plural: traefikservices
+    singular: traefikservice
+  scope: Namespaced
+  versions:
+  - name: v1alpha1
+    schema:
+      openAPIV3Schema:
+        description: TraefikService is the specification for a service (that an IngressRoute
+          refers to) that is usually not a terminal service (i.e. not a pod of servers),
+          as opposed to a Kubernetes Service. That is to say, it usually refers to
+          other (children) services, which themselves can be TraefikServices or Services.
+        properties:
+          apiVersion:
+            description: 'APIVersion defines the versioned schema of this representation
+              of an object. Servers should convert recognized schemas to the latest
+              internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
+            type: string
+          kind:
+            description: 'Kind is a string value representing the REST resource this
+              object represents. Servers may infer this from the endpoint the client
+              submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
+            type: string
+          metadata:
+            type: object
+          spec:
+            description: ServiceSpec defines whether a TraefikService is a load-balancer
+              of services or a mirroring service.
+            properties:
+              mirroring:
+                description: Mirroring defines a mirroring service, which is composed
+                  of a main load-balancer, and a list of mirrors.
+                properties:
+                  kind:
+                    enum:
+                    - Service
+                    - TraefikService
+                    type: string
+                  maxBodySize:
+                    format: int64
+                    type: integer
+                  mirrors:
+                    items:
+                      description: MirrorService defines one of the mirrors of a Mirroring
+                        service.
+                      properties:
+                        kind:
+                          enum:
+                          - Service
+                          - TraefikService
+                          type: string
+                        name:
+                          description: Name is a reference to a Kubernetes Service
+                            object (for a load-balancer of servers), or to a TraefikService
+                            object (service load-balancer, mirroring, etc). The differentiation
+                            between the two is specified in the Kind field.
+                          type: string
+                        namespace:
+                          type: string
+                        passHostHeader:
+                          type: boolean
+                        percent:
+                          type: integer
+                        port:
+                          anyOf:
+                          - type: integer
+                          - type: string
+                          x-kubernetes-int-or-string: true
+                        responseForwarding:
+                          description: ResponseForwarding holds configuration for
+                            the forward of the response.
+                          properties:
+                            flushInterval:
+                              type: string
+                          type: object
+                        scheme:
+                          type: string
+                        serversTransport:
+                          type: string
+                        sticky:
+                          description: Sticky holds the sticky configuration.
+                          properties:
+                            cookie:
+                              description: Cookie holds the sticky configuration based
+                                on cookie.
+                              properties:
+                                httpOnly:
+                                  type: boolean
+                                name:
+                                  type: string
+                                sameSite:
+                                  type: string
+                                secure:
+                                  type: boolean
+                              type: object
+                          type: object
+                        strategy:
+                          type: string
+                        weight:
+                          description: Weight should only be specified when Name references
+                            a TraefikService object (and to be precise, one that embeds
+                            a Weighted Round Robin).
+                          type: integer
+                      required:
+                      - name
+                      type: object
+                    type: array
+                  name:
+                    description: Name is a reference to a Kubernetes Service object
+                      (for a load-balancer of servers), or to a TraefikService object
+                      (service load-balancer, mirroring, etc). The differentiation
+                      between the two is specified in the Kind field.
+                    type: string
+                  namespace:
+                    type: string
+                  passHostHeader:
+                    type: boolean
+                  port:
+                    anyOf:
+                    - type: integer
+                    - type: string
+                    x-kubernetes-int-or-string: true
+                  responseForwarding:
+                    description: ResponseForwarding holds configuration for the forward
+                      of the response.
+                    properties:
+                      flushInterval:
+                        type: string
+                    type: object
+                  scheme:
+                    type: string
+                  serversTransport:
+                    type: string
+                  sticky:
+                    description: Sticky holds the sticky configuration.
+                    properties:
+                      cookie:
+                        description: Cookie holds the sticky configuration based on
+                          cookie.
+                        properties:
+                          httpOnly:
+                            type: boolean
+                          name:
+                            type: string
+                          sameSite:
+                            type: string
+                          secure:
+                            type: boolean
+                        type: object
+                    type: object
+                  strategy:
+                    type: string
+                  weight:
+                    description: Weight should only be specified when Name references
+                      a TraefikService object (and to be precise, one that embeds
+                      a Weighted Round Robin).
+                    type: integer
+                required:
+                - name
+                type: object
+              weighted:
+                description: WeightedRoundRobin defines a load-balancer of services.
+                properties:
+                  services:
+                    items:
+                      description: Service defines an upstream to proxy traffic.
+                      properties:
+                        kind:
+                          enum:
+                          - Service
+                          - TraefikService
+                          type: string
+                        name:
+                          description: Name is a reference to a Kubernetes Service
+                            object (for a load-balancer of servers), or to a TraefikService
+                            object (service load-balancer, mirroring, etc). The differentiation
+                            between the two is specified in the Kind field.
+                          type: string
+                        namespace:
+                          type: string
+                        passHostHeader:
+                          type: boolean
+                        port:
+                          anyOf:
+                          - type: integer
+                          - type: string
+                          x-kubernetes-int-or-string: true
+                        responseForwarding:
+                          description: ResponseForwarding holds configuration for
+                            the forward of the response.
+                          properties:
+                            flushInterval:
+                              type: string
+                          type: object
+                        scheme:
+                          type: string
+                        serversTransport:
+                          type: string
+                        sticky:
+                          description: Sticky holds the sticky configuration.
+                          properties:
+                            cookie:
+                              description: Cookie holds the sticky configuration based
+                                on cookie.
+                              properties:
+                                httpOnly:
+                                  type: boolean
+                                name:
+                                  type: string
+                                sameSite:
+                                  type: string
+                                secure:
+                                  type: boolean
+                              type: object
+                          type: object
+                        strategy:
+                          type: string
+                        weight:
+                          description: Weight should only be specified when Name references
+                            a TraefikService object (and to be precise, one that embeds
+                            a Weighted Round Robin).
+                          type: integer
+                      required:
+                      - name
+                      type: object
+                    type: array
+                  sticky:
+                    description: Sticky holds the sticky configuration.
+                    properties:
+                      cookie:
+                        description: Cookie holds the sticky configuration based on
+                          cookie.
+                        properties:
+                          httpOnly:
+                            type: boolean
+                          name:
+                            type: string
+                          sameSite:
+                            type: string
+                          secure:
+                            type: boolean
+                        type: object
+                    type: object
+                type: object
+            type: object
+        required:
+        - metadata
+        - spec
+        type: object
+    served: true
+    storage: true
+status:
+  acceptedNames:
+    kind: ""
+    plural: ""
+  conditions: []
+  storedVersions: []
diff --git a/core/traefik/10.0.57/helm-values.md b/core/traefik/10.0.57/helm-values.md
new file mode 100644
index 00000000000..4498559a65c
--- /dev/null
+++ b/core/traefik/10.0.57/helm-values.md
@@ -0,0 +1,44 @@
+# Default Helm-Values
+
+TrueCharts is primarily build to supply TrueNAS SCALE Apps.
+However, we also supply all Apps as standard Helm-Charts. In this document we aim to document the default values in our values.yaml file.
+
+Most of our Apps also consume our "common" Helm Chart.
+If this is the case, this means that all values.yaml values are set to the common chart values.yaml by default. This values.yaml file will only contain values that deviate from the common chart.
+You will, however, be able to use all values referenced in the common chart here, besides the values listed in this document.
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| additionalArguments | list | `["--metrics.prometheus","--ping","--serverstransport.insecureskipverify=true","--providers.kubernetesingress.allowexternalnameservices=true"]` | Additional arguments to be passed at Traefik's binary All available options available on https://docs.traefik.io/reference/static-configuration/cli/ |
+| globalArguments[0] | string | `"--global.checknewversion"` |  |
+| image.pullPolicy | string | `"IfNotPresent"` |  |
+| image.repository | string | `"tccr.io/truecharts/traefik"` |  |
+| image.tag | string | `"v2.6.0@sha256:cc9fc0d653690523166b8a32b6bb6e1c609283b7c1010fe32cc4d6b43feca3ac"` |  |
+| ingressClass | object | `{"enabled":false,"fallbackApiVersion":"","isDefaultClass":false}` | Use ingressClass. Ignored if Traefik version < 2.3 / kubernetes < 1.18.x |
+| ingressRoute | object | `{"dashboard":{"annotations":{},"enabled":true,"labels":{}}}` | Create an IngressRoute for the dashboard |
+| logs | object | `{"access":{"enabled":false,"fields":{"general":{"defaultmode":"keep","names":{}},"headers":{"defaultmode":"drop","names":{}}},"filters":{}},"general":{"level":"ERROR"}}` | Logs https://docs.traefik.io/observability/logs/ |
+| metrics.prometheus.entryPoint | string | `"metrics"` |  |
+| middlewares | object | `{"basicAuth":[],"chain":[],"forwardAuth":[],"ipWhiteList":[],"rateLimit":[],"redirectRegex":[],"redirectScheme":[]}` | SCALE Middleware Handlers |
+| pilot | object | `{"enabled":false,"token":""}` | Activate Pilot integration |
+| podAnnotations."prometheus.io/path" | string | `"/metrics"` |  |
+| podAnnotations."prometheus.io/port" | string | `"9180"` |  |
+| podAnnotations."prometheus.io/scrape" | string | `"true"` |  |
+| portalhook.enabled | bool | `true` |  |
+| probes.liveness | object | See below | Liveness probe configuration |
+| probes.liveness.path | string | "/" | If a HTTP probe is used (default for HTTP/HTTPS services) this path is used |
+| probes.liveness.type | string | "TCP" | sets the probe type when not using a custom probe |
+| probes.readiness | object | See below | Redainess probe configuration |
+| probes.readiness.path | string | "/" | If a HTTP probe is used (default for HTTP/HTTPS services) this path is used |
+| probes.readiness.type | string | "TCP" | sets the probe type when not using a custom probe |
+| probes.startup | object | See below | Startup probe configuration |
+| probes.startup.path | string | "/" | If a HTTP probe is used (default for HTTP/HTTPS services) this path is used |
+| probes.startup.type | string | "TCP" | sets the probe type when not using a custom probe |
+| providers | object | `{"kubernetesCRD":{"enabled":true,"namespaces":[]},"kubernetesIngress":{"enabled":true,"namespaces":[],"publishedService":{"enabled":true}}}` | Configure providers |
+| rbac | object | `{"enabled":true,"rules":[{"apiGroups":[""],"resources":["services","endpoints","secrets"],"verbs":["get","list","watch"]},{"apiGroups":["extensions","networking.k8s.io"],"resources":["ingresses","ingressclasses"],"verbs":["get","list","watch"]},{"apiGroups":["extensions","networking.k8s.io"],"resources":["ingresses/status"],"verbs":["update"]},{"apiGroups":["traefik.containo.us"],"resources":["ingressroutes","ingressroutetcps","ingressrouteudps","middlewares","middlewaretcps","tlsoptions","tlsstores","traefikservices","serverstransports"],"verbs":["get","list","watch"]}]}` | Whether Role Based Access Control objects like roles and rolebindings should be created |
+| service | object | `{"main":{"ports":{"main":{"port":9000,"protocol":"HTTP","targetPort":9000}},"type":"LoadBalancer"},"metrics":{"enabled":true,"ports":{"metrics":{"enabled":true,"port":9180,"protocol":"HTTP","targetPort":9180}},"type":"ClusterIP"},"tcp":{"enabled":true,"ports":{"web":{"enabled":true,"port":9080,"protocol":"HTTP","redirectTo":"websecure"},"websecure":{"enabled":true,"port":9443,"protocol":"HTTPS"}},"type":"LoadBalancer"},"udp":{"enabled":false}}` | Options for the main traefik service, where the entrypoints traffic comes from from. |
+| serviceAccount | object | `{"create":true}` | The service account the pods will use to interact with the Kubernetes API |
+| tlsOptions | object | `{"default":{"cipherSuites":["TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305","TLS_AES_128_GCM_SHA256","TLS_AES_256_GCM_SHA384","TLS_CHACHA20_POLY1305_SHA256"],"curvePreferences":["CurveP521","CurveP384"],"minVersion":"VersionTLS12","sniStrict":false}}` | TLS Options to be created as TLSOption CRDs https://doc.traefik.io/tccr.io/truecharts/https/tls/#tls-options Example: |
+
+All Rights Reserved - The TrueCharts Project
diff --git a/core/traefik/10.0.57/ix_values.yaml b/core/traefik/10.0.57/ix_values.yaml
new file mode 100644
index 00000000000..edf0e924291
--- /dev/null
+++ b/core/traefik/10.0.57/ix_values.yaml
@@ -0,0 +1,316 @@
+image:
+  repository: tccr.io/truecharts/traefik
+  # defaults to appVersion
+  tag: v2.6.0@sha256:cc9fc0d653690523166b8a32b6bb6e1c609283b7c1010fe32cc4d6b43feca3ac
+  pullPolicy: IfNotPresent
+
+# -- Use ingressClass. Ignored if Traefik version < 2.3 / kubernetes < 1.18.x
+ingressClass:
+  # true is not unit-testable yet, pending https://github.com/rancher/helm-unittest/pull/12
+  enabled: false
+  isDefaultClass: false
+  # Use to force a networking.k8s.io API Version for certain CI/CD applications. E.g. "v1beta1"
+  fallbackApiVersion: ""
+
+# -- Activate Pilot integration
+pilot:
+  enabled: false
+  token: ""
+  # Toggle Pilot Dashboard
+  # dashboard: false
+
+# -- Create an IngressRoute for the dashboard
+ingressRoute:
+  dashboard:
+    enabled: true
+    # Additional ingressRoute annotations (e.g. for kubernetes.io/ingress.class)
+    annotations: {}
+    # Additional ingressRoute labels (e.g. for filtering IngressRoute by custom labels)
+    labels: {}
+
+podAnnotations:
+  prometheus.io/scrape: "true"
+  prometheus.io/path: "/metrics"
+  prometheus.io/port: "9180"
+
+#
+# -- Configure providers
+providers:
+  kubernetesCRD:
+    enabled: true
+    namespaces: []
+      # - "default"
+  kubernetesIngress:
+    enabled: true
+    # labelSelector: environment=production,method=traefik
+    namespaces: []
+      # - "default"
+    # IP used for Kubernetes Ingress endpoints
+    publishedService:
+      enabled: true
+      # Published Kubernetes Service to copy status from. Format: namespace/servicename
+      # By default this Traefik service
+      # pathOverride: ""
+
+# -- Logs
+# https://docs.traefik.io/observability/logs/
+logs:
+  # Traefik logs concern everything that happens to Traefik itself (startup, configuration, events, shutdown, and so on).
+  general:
+    # By default, the logs use a text format (common), but you can
+    # also ask for the json format in the format option
+    # format: json
+    # By default, the level is set to ERROR. Alternative logging levels are DEBUG, PANIC, FATAL, ERROR, WARN, and INFO.
+    level: ERROR
+  access:
+    # To enable access logs
+    enabled: false
+    # By default, logs are written using the Common Log Format (CLF).
+    # To write logs in JSON, use json in the format option.
+    # If the given format is unsupported, the default (CLF) is used instead.
+    # format: json
+    # To write the logs in an asynchronous fashion, specify a bufferingSize option.
+    # This option represents the number of log lines Traefik will keep in memory before writing
+    # them to the selected output. In some cases, this option can greatly help performances.
+    # bufferingSize: 100
+    # Filtering https://docs.traefik.io/observability/access-logs/#filtering
+    filters: {}
+      # statuscodes: "200,300-302"
+      # retryattempts: true
+      # minduration: 10ms
+    # Fields
+    # https://docs.traefik.io/observability/access-logs/#limiting-the-fieldsincluding-headers
+    fields:
+      general:
+        defaultmode: keep
+        names: {}
+          # Examples:
+          # ClientUsername: drop
+      headers:
+        defaultmode: drop
+        names: {}
+          # Examples:
+          # User-Agent: redact
+          # Authorization: drop
+          # Content-Type: keep
+
+metrics:
+  # datadog:
+  #   address: 127.0.0.1:8125
+  # influxdb:
+  #   address: localhost:8089
+  #   protocol: udp
+  prometheus:
+    entryPoint: metrics
+  # statsd:
+  #   address: localhost:8125
+
+globalArguments:
+  - "--global.checknewversion"
+
+##
+# -- Additional arguments to be passed at Traefik's binary
+# All available options available on https://docs.traefik.io/reference/static-configuration/cli/
+## Use curly braces to pass values: `helm install --set="additionalArguments={--providers.kubernetesingress.ingressclass=traefik-internal,--log.level=DEBUG}"`
+additionalArguments:
+  - "--metrics.prometheus"
+  - "--ping"
+  - "--serverstransport.insecureskipverify=true"
+  - "--providers.kubernetesingress.allowexternalnameservices=true"
+
+# -- TLS Options to be created as TLSOption CRDs
+# https://doc.traefik.io/tccr.io/truecharts/https/tls/#tls-options
+# Example:
+tlsOptions:
+  default:
+    sniStrict: false
+    minVersion: VersionTLS12
+    curvePreferences:
+      - CurveP521
+      - CurveP384
+    cipherSuites:
+      - TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+      - TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
+      - TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
+      - TLS_AES_128_GCM_SHA256
+      - TLS_AES_256_GCM_SHA384
+      - TLS_CHACHA20_POLY1305_SHA256
+
+# -- Options for the main traefik service, where the entrypoints traffic comes from
+# from.
+service:
+  main:
+    type: LoadBalancer
+    ports:
+      main:
+        port: 9000
+        targetPort: 9000
+        protocol: HTTP
+  tcp:
+    enabled: true
+    type: LoadBalancer
+    ports:
+      web:
+        enabled: true
+        port: 9080
+        protocol: HTTP
+        redirectTo: websecure
+        # Options: Empty, 0 (ingore), or positive int
+        # redirectPort:
+      websecure:
+        enabled: true
+        port: 9443
+        protocol: HTTPS
+#      tcpexample:
+#        enabled: true
+#        targetPort: 9443
+#        protocol: TCP
+#        tls:
+#          enabled: false
+#          # this is the name of a TLSOption definition
+#          options: ""
+#          certResolver: ""
+#          domains: []
+#          # - main: example.com
+#          #   sans:
+#          #     - foo.example.com
+#          #     - bar.example.com
+  metrics:
+    enabled: true
+    type: ClusterIP
+    ports:
+      metrics:
+        enabled: true
+        port: 9180
+        targetPort: 9180
+        protocol: HTTP
+  udp:
+    enabled: false
+
+probes:
+  # -- Liveness probe configuration
+  # @default -- See below
+  liveness:
+    # -- sets the probe type when not using a custom probe
+    # @default -- "TCP"
+    type: HTTP
+    # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+    # @default -- "/"
+    path: "/ping"
+
+  # -- Redainess probe configuration
+  # @default -- See below
+  readiness:
+    # -- sets the probe type when not using a custom probe
+    # @default -- "TCP"
+    type: HTTP
+    # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+    # @default -- "/"
+    path: "/ping"
+
+  # -- Startup probe configuration
+  # @default -- See below
+  startup:
+    # -- sets the probe type when not using a custom probe
+    # @default -- "TCP"
+    type: HTTP
+    # -- If a HTTP probe is used (default for HTTP/HTTPS services) this path is used
+    # @default -- "/"
+    path: "/ping"
+
+# -- Whether Role Based Access Control objects like roles and rolebindings should be created
+rbac:
+  enabled: true
+  rules:
+    - apiGroups:
+        - ""
+      resources:
+        - services
+        - endpoints
+        - secrets
+      verbs:
+        - get
+        - list
+        - watch
+    - apiGroups:
+        - extensions
+        - networking.k8s.io
+      resources:
+        - ingresses
+        - ingressclasses
+      verbs:
+        - get
+        - list
+        - watch
+    - apiGroups:
+        - extensions
+        - networking.k8s.io
+      resources:
+        - ingresses/status
+      verbs:
+        - update
+    - apiGroups:
+        - traefik.containo.us
+      resources:
+        - ingressroutes
+        - ingressroutetcps
+        - ingressrouteudps
+        - middlewares
+        - middlewaretcps
+        - tlsoptions
+        - tlsstores
+        - traefikservices
+        - serverstransports
+      verbs:
+        - get
+        - list
+        - watch
+
+# -- The service account the pods will use to interact with the Kubernetes API
+serviceAccount:
+  create: true
+
+# -- SCALE Middleware Handlers
+middlewares:
+  basicAuth: []
+  # - name: basicauthexample
+  #   users:
+  #     - username: testuser
+  #       password: testpassword
+  forwardAuth: []
+  # - name: forwardAuthexample
+  #   address: https://auth.example.com/
+  #   authResponseHeaders:
+  #     - X-Secret
+  #     - X-Auth-User
+  #   authRequestHeaders:
+  #     - "Accept"
+  #     - "X-CustomHeader"
+  #   authResponseHeadersRegex: "^X-"
+  #   trustForwardHeader: true
+  chain: []
+  # - name: chainname
+  #   middlewares:
+  #    - name: compress
+  redirectScheme: []
+  # - name: redirectSchemeName
+  #   scheme: https
+  #   permanent: true
+  rateLimit: []
+  # - name: rateLimitName
+  #   average: 300
+  #   burst: 200
+  redirectRegex: []
+  # - name: redirectRegexName
+  #   regex: putregexhere
+  #   replacement: replacementurlhere
+  #   permanent: false
+  ipWhiteList: []
+  # - name: ipWhiteListName
+  #   sourceRange: []
+  #   ipStrategy:
+  #     depth: 2
+  #     excludedIPs: []
+
+portalhook:
+  enabled: true
diff --git a/core/traefik/10.0.57/questions.yaml b/core/traefik/10.0.57/questions.yaml
new file mode 100644
index 00000000000..0fed912f3cb
--- /dev/null
+++ b/core/traefik/10.0.57/questions.yaml
@@ -0,0 +1,2462 @@
+groups:
+  - name: "Container Image"
+    description: "Image to be used for container"
+  - name: "Controller"
+    description: "Configure workload deployment"
+  - name: "Container Configuration"
+    description: "additional container configuration"
+  - name: "App Configuration"
+    description: "App specific config options"
+  - name: "Networking and Services"
+    description: "Configure Network and Services for container"
+  - name: "Storage and Persistence"
+    description: "Persist and share data that is separate from the container"
+  - name: "Ingress"
+    description: "Ingress Configuration"
+  - name: "Security and Permissions"
+    description: "Configure security context and permissions"
+  - name: "Resources and Devices"
+    description: "Specify resources/devices to be allocated to workload"
+  - name: "Middlewares"
+    description: "Traefik Middlewares"
+  - name: "Metrics"
+    description: "Metrics"
+  - name: "Addons"
+    description: "Addon Configuration"
+  - name: "Advanced"
+    description: "Advanced Configuration"
+portals:
+  web_portal:
+    protocols:
+      - "http"
+    host:
+        - "$kubernetes-resource_configmap_portal_host"
+    ports:
+      - "$kubernetes-resource_configmap_portal_port"
+    path: "/dashboard/"
+questions:
+  - variable: portal
+    group: "Container Image"
+    label: "Configure Portal Button"
+    schema:
+      type: dict
+      hidden: true
+      attrs:
+        - variable: enabled
+          label: "Enable"
+          description: "enable the portal button"
+          schema:
+            hidden: true
+            editable: false
+            type: boolean
+            default: true
+  - variable: global
+    label: "global settings"
+    group: "Controller"
+    schema:
+      type: dict
+      hidden: true
+      attrs:
+        - variable: isSCALE
+          label: "flag this is SCALE"
+          schema:
+            type: boolean
+            default: true
+            hidden: true
+  - variable: controller
+    group: "Controller"
+    label: ""
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: advanced
+          label: "Show Advanced Controller Settings"
+          schema:
+            type: boolean
+            default: false
+            show_subquestions_if: true
+            subquestions:
+              - variable: type
+                description: "Please specify type of workload to deploy"
+                label: "(Advanced) Controller Type"
+                schema:
+                  type: string
+                  default: "deployment"
+                  required: true
+                  enum:
+                    - value: "deployment"
+                      description: "Deployment"
+                    - value: "statefulset"
+                      description: "Statefulset"
+                    - value: "daemonset"
+                      description: "Daemonset"
+              - variable: replicas
+                description: "Number of desired pod replicas"
+                label: "Desired Replicas"
+                schema:
+                  type: int
+                  default: 1
+                  required: true
+              - variable: strategy
+                description: "Please specify type of workload to deploy"
+                label: "(Advanced) Update Strategy"
+                schema:
+                  type: string
+                  default: "RollingUpdate"
+                  required: true
+                  enum:
+                    - value: "Recreate"
+                      description: "Recreate: Kill existing pods before creating new ones"
+                    - value: "RollingUpdate"
+                      description: "RollingUpdate: Create new pods and then kill old ones"
+                    - value: "OnDelete"
+                      description: "(Legacy) OnDelete: ignore .spec.template changes"
+        - variable: expert
+          label: "Show Expert Configuration Options"
+          schema:
+            type: boolean
+            default: false
+            show_subquestions_if: true
+            subquestions:
+              - variable: extraArgs
+                label: "Extra Args"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: arg
+                      label: "arg"
+                      schema:
+                        type: string
+              - variable: labelsList
+                label: "Controller Labels"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: labelItem
+                      label: "Label"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                          - variable: value
+                            label: "Value"
+                            schema:
+                              type: string
+              - variable: annotationsList
+                label: " Controller Annotations"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: annotationItem
+                      label: "Label"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                          - variable: value
+                            label: "Value"
+                            schema:
+                              type: string
+
+  - variable: env
+    group: "Container Configuration"
+    label: "Image Environment"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: TZ
+          label: "Timezone"
+          schema:
+            type: string
+            default: "Etc/UTC"
+            $ref:
+              - "definitions/timezone"
+        - variable: UMASK
+          label: "UMASK"
+          description: "Sets the UMASK env var for LinuxServer.io (compatible) containers"
+          schema:
+            type: string
+            default: "002"
+
+  - variable: envList
+    label: "Image environment"
+    group: "Container Configuration"
+    schema:
+      type: list
+      default: []
+      items:
+        - variable: envItem
+          label: "Environment Variable"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: name
+                label: "Name"
+                schema:
+                  type: string
+              - variable: value
+                label: "Value"
+                schema:
+                  type: string
+
+  - variable: expertpodconf
+    group: "Container Configuration"
+    label: "Show Expert Config"
+    schema:
+      type: boolean
+      default: false
+      show_subquestions_if: true
+      subquestions:
+        - variable: tty
+          label: "Enable TTY"
+          description: "Determines whether containers in a pod runs with TTY enabled. By default pod has it disabled."
+          group: "Workload Details"
+          schema:
+            type: boolean
+            default: false
+        - variable: stdin
+          label: "Enable STDIN"
+          description: "Determines whether containers in a pod runs with stdin enabled. By default pod has it disabled."
+          group: "Workload Details"
+          schema:
+            type: boolean
+            default: false
+        - variable: termination
+          group: "Container Configuration"
+          label: "Termination settings"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: gracePeriodSeconds
+                label: "Grace Period Seconds"
+                schema:
+                  type: int
+                  default: 10
+        - variable: podLabelsList
+          group: "Container Configuration"
+          label: "Pod Labels"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: podLabelItem
+                label: "Label"
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                    - variable: value
+                      label: "Value"
+                      schema:
+                        type: string
+
+        - variable: podAnnotationsList
+          group: "Container Configuration"
+          label: "Pod Annotations"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: podAnnotationItem
+                label: "Label"
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                    - variable: value
+                      label: "Value"
+                      schema:
+                        type: string
+
+  - variable: pilot
+    label: "Traefik Pilot"
+    group: "App Configuration"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: enabled
+          label: "Enable"
+          schema:
+            type: boolean
+            default: false
+            show_subquestions_if: true
+            subquestions:
+              - variable: token
+                label: "token"
+                schema:
+                  type: string
+                  default: ""
+              - variable: dashboard
+                label: "Pilot Dashboard"
+                schema:
+                  type: boolean
+                  default: false
+
+  - variable: ingressClass
+    label: "ingressClass"
+    group: "App Configuration"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: enabled
+          label: "Enable"
+          schema:
+            type: boolean
+            default: false
+            show_subquestions_if: true
+            subquestions:
+              - variable: isDefaultClass
+                label: "isDefaultClass"
+                schema:
+                  type: boolean
+                  default: false
+
+  - variable: logs
+    label: "Logs"
+    group: "App Configuration"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: general
+          label: "General Logs"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: level
+                label: "Log Level"
+                schema:
+                  type: string
+                  default: "ERROR"
+                  enum:
+                    - value: "INFO"
+                      description: "Info"
+                    - value: "WARN"
+                      description: "Warnings"
+                    - value: "ERROR"
+                      description: "Errors"
+                    - value: "FATAL"
+                      description: "Fatal Errors"
+                    - value: "PANIC"
+                      description: "Panics"
+                    - value: "DEBUG"
+                      description: "Debug"
+        - variable: access
+          label: "Access Logs"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "Enable"
+                schema:
+                  type: boolean
+                  default: false
+                  show_subquestions_if: true
+                  subquestions:
+                    - variable: enabledFilters
+                      label: "Enable Filters"
+                      schema:
+                        type: boolean
+                        default: false
+                        show_subquestions_if: true
+                        subquestions:
+                          - variable: filters
+                            label: "Filters"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                              - variable: statuscodes
+                                label: "Status codes"
+                                schema:
+                                  type: string
+                                  default: "200,300-302"
+                              - variable: retryattempts
+                                label: "retryattempts"
+                                schema:
+                                  type: boolean
+                                  default: true
+                              - variable: minduration
+                                label: "minduration"
+                                schema:
+                                  type: string
+                                  default: "10ms"
+                    - variable: fields
+                      label: "Fields"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: general
+                            label: "General"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: defaultmode
+                                  label: "Default Mode"
+                                  schema:
+                                    type: string
+                                    default: "keep"
+                                    enum:
+                                      - value: "keep"
+                                        description: "Keep"
+                                      - value: "drop"
+                                        description: "Drop"
+                          - variable: headers
+                            label: "Headers"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: defaultmode
+                                  label: "Default Mode"
+                                  schema:
+                                    type: string
+                                    default: "drop"
+                                    enum:
+                                      - value: "keep"
+                                        description: "Keep"
+                                      - value: "drop"
+                                        description: "Drop"
+
+  - variable: middlewares
+    label: ""
+    group: "Middlewares"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: basicAuth
+          label: "basicAuth"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: basicAuthEntry
+                label: ""
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        required: true
+                        default: ""
+                    - variable: users
+                      label: "Users"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: usersEntry
+                            label: ""
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: username
+                                  label: "Username"
+                                  schema:
+                                    type: string
+                                    required: true
+                                    default: ""
+                                - variable: password
+                                  label: "Password"
+                                  schema:
+                                    type: string
+                                    required: true
+                                    default: ""
+
+        - variable: forwardAuth
+          label: "forwardAuth"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: basicAuthEntry
+                label: ""
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        required: true
+                        default: ""
+                    - variable: address
+                      label: "Address"
+                      schema:
+                        type: string
+                        required: true
+                        default: ""
+                    - variable: trustForwardHeader
+                      label: "trustForwardHeader"
+                      schema:
+                        type: boolean
+                        default: false
+                    - variable: authResponseHeadersRegex
+                      label: "authResponseHeadersRegex"
+                      schema:
+                        type: string
+                        default: ""
+                    - variable: authResponseHeaders
+                      label: "authResponseHeaders"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: authResponseHeadersEntry
+                            label: ""
+                            schema:
+                              type: string
+                              default: ""
+                    - variable: authRequestHeaders
+                      label: "authRequestHeaders"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: authRequestHeadersEntry
+                            label: ""
+                            schema:
+                              type: string
+                              default: ""
+        - variable: chain
+          label: "chain"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: chainEntry
+                label: ""
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        required: true
+                    - variable: middlewares
+                      label: "Middlewares to Chain"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                              required: true
+                              default: ""
+
+        - variable: redirectScheme
+          label: "redirectScheme"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: redirectSchemeEntry
+                label: ""
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        required: true
+                    - variable: scheme
+                      label: "Scheme"
+                      schema:
+                        type: string
+                        required: true
+                        default: "https"
+                        enum:
+                          - value: "https"
+                            description: "https"
+                          - value: "http"
+                            description: "http"
+                    - variable: permanent
+                      label: "Permanent"
+                      schema:
+                        type: boolean
+                        required: true
+                        default: false
+
+        - variable: rateLimit
+          label: "rateLimit"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: rateLimitEntry
+                label: ""
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        required: true
+                    - variable: average
+                      label: "Average"
+                      schema:
+                        type: int
+                        required: true
+                        default: 300
+                    - variable: burst
+                      label: "Burst"
+                      schema:
+                        type: int
+                        required: true
+                        default: 200
+        - variable: redirectRegex
+          label: "redirectRegex"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: redirectRegexEntry
+                label: ""
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        required: true
+                    - variable: regex
+                      label: "Regex"
+                      schema:
+                        type: string
+                        required: true
+                        default: ""
+                    - variable: replacement
+                      label: "Replacement"
+                      schema:
+                        type: string
+                        required: true
+                        default: ""
+                    - variable: permanent
+                      label: "Permanent"
+                      schema:
+                        type: boolean
+                        required: true
+                        default: false
+
+        - variable: ipWhiteList
+          label: "ipWhiteList"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: ipWhiteListEntry
+                label: ""
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        required: true
+                        default: ""
+                    - variable: sourceRange
+                      label: "Source Range"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: sourceRangeEntry
+                            label: ""
+                            schema:
+                              type: string
+                              required: true
+                              default: ""
+                    - variable: ipStrategy
+                      label: "IP Strategy"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: depth
+                            label: "Depth"
+                            schema:
+                              type: int
+                              required: true
+                          - variable: excludedIPs
+                            label: "Excluded IPs"
+                            schema:
+                              type: list
+                              default: []
+                              items:
+                                - variable: excludedIPsEntry
+                                  label: ""
+                                  schema:
+                                    type: string
+                                    required: true
+                                    default: ""
+
+
+  - variable: service
+    group: "Networking and Services"
+    label: "Configure Service Entrypoint"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: main
+          label: "Main Service"
+          description: "The Primary service on which the healthcheck runs, often the webUI"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "Enable the service"
+                schema:
+                  type: boolean
+                  default: true
+                  hidden: true
+              - variable: type
+                label: "Service Type"
+                description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer"
+                schema:
+                  type: string
+                  default: "Simple"
+                  enum:
+                    - value: "Simple"
+                      description: "Simple"
+                    - value: "ClusterIP"
+                      description: "ClusterIP"
+                    - value: "NodePort"
+                      description: "NodePort (Advanced)"
+                    - value: "LoadBalancer"
+                      description: "LoadBalancer (Advanced)"
+              - variable: loadBalancerIP
+                label: "LoadBalancer IP"
+                description: "LoadBalancerIP"
+                schema:
+                  show_if: [["type", "=", "LoadBalancer"]]
+                  type: string
+                  default: ""
+              - variable: externalIPs
+                label: "External IP's"
+                description: "External IP's"
+                schema:
+                  show_if: [["type", "=", "LoadBalancer"]]
+                  type: list
+                  default: []
+                  items:
+                    - variable: externalIP
+                      label: "External IP"
+                      schema:
+                        type: string
+              - variable: ipFamilyPolicy
+                label: "IP Family Policy"
+                description: "(Advanced) Specify the ip policy"
+                schema:
+                  show_if: [["type", "!=", "Simple"]]
+                  type: string
+                  default: "SingleStack"
+                  enum:
+                    - value: "SingleStack"
+                      description: "SingleStack"
+                    - value: "PreferDualStack"
+                      description: "PreferDualStack"
+                    - value: "RequireDualStack"
+                      description: "RequireDualStack"
+              - variable: ipFamilies
+                label: "(advanced) IP families"
+                description: "(advanced) The ip families that should be used"
+                schema:
+                  show_if: [["type", "!=", "Simple"]]
+                  type: list
+                  default: []
+                  items:
+                    - variable: ipFamily
+                      label: "IP family"
+                      schema:
+                        type: string
+              - variable: ports
+                label: "Service's Port(s) Configuration"
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: main
+                      label: "Main Entrypoint Configuration"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: advanced
+                            label: "Show Advanced settings"
+                            schema:
+                              type: boolean
+                              default: false
+                              show_subquestions_if: true
+                              subquestions:
+                                - variable: protocol
+                                  label: "Port Type"
+                                  schema:
+                                    type: string
+                                    default: "HTTP"
+                                    enum:
+                                      - value: HTTP
+                                        description: "HTTP"
+                                      - value: "HTTPS"
+                                        description: "HTTPS"
+                                      - value: TCP
+                                        description: "TCP"
+                                      - value: "UDP"
+                                        description: "UDP"
+                                - variable: nodePort
+                                  label: "Node Port (Optional)"
+                                  description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
+                                  schema:
+                                    type: int
+                                    min: 9000
+                                    max: 65535
+                                - variable: targetPort
+                                  label: "Target Port"
+                                  description: "The internal(!) port on the container the Application runs on"
+                                  schema:
+                                    type: int
+                                    default: 9000
+
+                          - variable: port
+                            label: "Entrypoints Port"
+                            schema:
+                              type: int
+                              default: 9000
+                              required: true
+        - variable: tcp
+          label: "TCP Service"
+          description: "The tcp Entrypoint service"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "Enable the service"
+                schema:
+                  type: boolean
+                  default: true
+                  hidden: true
+              - variable: type
+                label: "Service Type"
+                description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer"
+                schema:
+                  type: string
+                  default: "Simple"
+                  enum:
+                    - value: "Simple"
+                      description: "Simple"
+                    - value: "ClusterIP"
+                      description: "ClusterIP"
+                    - value: "NodePort"
+                      description: "NodePort (Advanced)"
+                    - value: "LoadBalancer"
+                      description: "LoadBalancer (Advanced)"
+              - variable: loadBalancerIP
+                label: "LoadBalancer IP"
+                description: "LoadBalancerIP"
+                schema:
+                  show_if: [["type", "=", "LoadBalancer"]]
+                  type: string
+                  default: ""
+              - variable: externalIPs
+                label: "External IP's"
+                description: "External IP's"
+                schema:
+                  show_if: [["type", "=", "LoadBalancer"]]
+                  type: list
+                  default: []
+                  items:
+                    - variable: externalIP
+                      label: "External IP"
+                      schema:
+                        type: string
+              - variable: ipFamilyPolicy
+                label: "IP Family Policy"
+                description: "(Advanced) Specify the ip policy"
+                schema:
+                  show_if: [["type", "!=", "Simple"]]
+                  type: string
+                  default: "SingleStack"
+                  enum:
+                    - value: "SingleStack"
+                      description: "SingleStack"
+                    - value: "PreferDualStack"
+                      description: "PreferDualStack"
+                    - value: "RequireDualStack"
+                      description: "RequireDualStack"
+              - variable: ipFamilies
+                label: "(advanced) IP families"
+                description: "(advanced) The ip families that should be used"
+                schema:
+                  show_if: [["type", "!=", "Simple"]]
+                  type: list
+                  default: []
+                  items:
+                    - variable: ipFamily
+                      label: "IP family"
+                      schema:
+                        type: string
+              - variable: ports
+                label: "Service's Port(s) Configuration"
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: web
+                      label: "web Entrypoint Configuration"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: port
+                            label: "Entrypoints Port"
+                            schema:
+                              type: int
+                              default: 9080
+                              required: true
+                          - variable: advanced
+                            label: "Show Advanced settings"
+                            schema:
+                              type: boolean
+                              default: false
+                              show_subquestions_if: true
+                              subquestions:
+                                - variable: protocol
+                                  label: "Port Type"
+                                  schema:
+                                    type: string
+                                    default: "HTTP"
+                                    enum:
+                                      - value: HTTP
+                                        description: "HTTP"
+                                      - value: "HTTPS"
+                                        description: "HTTPS"
+                                      - value: TCP
+                                        description: "TCP"
+                                      - value: "UDP"
+                                        description: "UDP"
+                                - variable: nodePort
+                                  label: "Node Port (Optional)"
+                                  description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
+                                  schema:
+                                    type: int
+                                    min: 9000
+                                    max: 65535
+                                - variable: targetPort
+                                  label: "Target Port"
+                                  description: "The internal(!) port on the container the Application runs on"
+                                  schema:
+                                    type: int
+                                - variable: redirectPort
+                                  label: "Redirect to Port"
+                                  schema:
+                                    type: int
+                                - variable: redirectTo
+                                  label: "Redirect to Entrypoint"
+                                  schema:
+                                    type: string
+                                    default: "websecure"
+                    - variable: websecure
+                      label: "websecure Entrypoints Configuration"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: port
+                            label: "Entrypoints Port"
+                            schema:
+                              type: int
+                              default: 9443
+                              required: true
+                          - variable: advanced
+                            label: "Show Advanced settings"
+                            schema:
+                              type: boolean
+                              default: false
+                              show_subquestions_if: true
+                              subquestions:
+                                - variable: protocol
+                                  label: "Port Type"
+                                  schema:
+                                    type: string
+                                    default: "HTTPS"
+                                    enum:
+                                      - value: HTTP
+                                        description: "HTTP"
+                                      - value: "HTTPS"
+                                        description: "HTTPS"
+                                      - value: TCP
+                                        description: "TCP"
+                                      - value: "UDP"
+                                        description: "UDP"
+                                - variable: nodePort
+                                  label: "Node Port (Optional)"
+                                  description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer"
+                                  schema:
+                                    type: int
+                                    min: 9000
+                                    max: 65535
+                                - variable: targetPort
+                                  label: "Target Port"
+                                  description: "The internal(!) port on the container the Application runs on"
+                                  schema:
+                                    type: int
+                                - variable: redirectPort
+                                  label: "Redirect to Port"
+                                  schema:
+                                    type: int
+                                - variable: redirectTo
+                                  label: "Redirect to Entrypoint"
+                                  schema:
+                                    type: string
+                          - variable: tls
+                            label: "websecure Entrypoints Configuration"
+                            schema:
+                              type: dict
+                              hidden: true
+                              attrs:
+                                - variable: enabled
+                                  label: "Enabled"
+                                  schema:
+                                    type: boolean
+                                    default: true
+                                    hidden: true
+              - variable: portsList
+                label: "Additional TCP Entrypoints"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: portsListEntry
+                      label: "Custom Entrypoints"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: enabled
+                            label: "Enable the port"
+                            schema:
+                              type: boolean
+                              default: true
+                              hidden: true
+                          - variable: name
+                            label: "Entrypoints Name"
+                            schema:
+                              type: string
+                              default: ""
+                          - variable: protocol
+                            label: "Entrypoints Type"
+                            schema:
+                              type: string
+                              default: "TCP"
+                              enum:
+                                - value: HTTP
+                                  description: "HTTP"
+                                - value: "HTTPS"
+                                  description: "HTTPS"
+                                - value: TCP
+                                  description: "TCP"
+                          - variable: port
+                            label: "Port"
+                            description: "This port exposes the container port on the service"
+                            schema:
+                              type: int
+                              required: true
+                          - variable: tls
+                            label: "websecure Entrypoints Configuration"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: enabled
+                                  label: "Enabled"
+                                  schema:
+                                    type: boolean
+                                    default: true
+                                - variable: redirectPort
+                                  label: "Redirect to Port"
+                                  schema:
+                                    type: int
+                                - variable: redirectTo
+                                  label: "Redirect to Entrypoint"
+                                  schema:
+                                    type: string
+  - variable: ingress
+    label: ""
+    group: "Ingress"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: main
+          label: "Main Ingress"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "Enable Ingress"
+                schema:
+                  type: boolean
+                  default: false
+                  show_subquestions_if: true
+                  subquestions:
+                    - variable: hosts
+                      label: "Hosts"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: hostEntry
+                            label: "Host"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: host
+                                  label: "HostName"
+                                  schema:
+                                    type: string
+                                    default: ""
+                                    required: true
+                                - variable: paths
+                                  label: "Paths"
+                                  schema:
+                                    type: list
+                                    default: []
+                                    items:
+                                      - variable: pathEntry
+                                        label: "Host"
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: path
+                                              label: "path"
+                                              schema:
+                                                type: string
+                                                required: true
+                                                default: "/"
+                                            - variable: pathType
+                                              label: "pathType"
+                                              schema:
+                                                type: string
+                                                required: true
+                                                default: "Prefix"
+
+                    - variable: tls
+                      label: "TLS-Settings"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: tlsEntry
+                            label: "Host"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: hosts
+                                  label: "Certificate Hosts"
+                                  schema:
+                                    type: list
+                                    default: []
+                                    items:
+                                      - variable: host
+                                        label: "Host"
+                                        schema:
+                                          type: string
+                                          default: ""
+                                          required: true
+                                - variable: scaleCert
+                                  label: "Select TrueNAS SCALE Certificate"
+                                  schema:
+                                    type: int
+                                    $ref:
+                                      - "definitions/certificate"
+
+                    - variable: entrypoint
+                      label: "(Advanced) Traefik Entrypoint"
+                      description: "Entrypoint used by Traefik when using Traefik as Ingress Provider"
+                      schema:
+                        type: string
+                        default: "websecure"
+                        required: true
+                    - variable: middlewares
+                      label: "Traefik Middlewares"
+                      description: "Add previously created Traefik Middlewares to this Ingress"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                              default: ""
+                              required: true
+
+              - variable: expert
+                label: "Show Expert Configuration Options"
+                schema:
+                  type: boolean
+                  default: false
+                  show_subquestions_if: true
+                  subquestions:
+                    - variable: enableFixedMiddlewares
+                      description: "These middlewares enforce a number of best practices."
+                      label: "Enable Default Middlewares"
+                      schema:
+                        type: boolean
+                        default: true
+                    - variable: ingressClassName
+                      label: "IngressClass Name"
+                      schema:
+                        type: string
+                        default: ""
+                    - variable: labelsList
+                      label: "Labels"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: labelItem
+                            label: "Label"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: name
+                                  label: "Name"
+                                  schema:
+                                    type: string
+                                - variable: value
+                                  label: "Value"
+                                  schema:
+                                    type: string
+                    - variable: annotationsList
+                      label: "Annotations"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: annotationItem
+                            label: "Label"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: name
+                                  label: "Name"
+                                  schema:
+                                    type: string
+                                - variable: value
+                                  label: "Value"
+                                  schema:
+                                    type: string
+
+  - variable: ingressList
+    label: "Add Manual Custom Ingresses"
+    group: "Ingress"
+    schema:
+      type: list
+      default: []
+      items:
+        - variable: ingressListEntry
+          label: "Custom Ingress"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "Enable Ingress"
+                schema:
+                  type: boolean
+                  default: true
+                  hidden: true
+              - variable: name
+                label: "Name"
+                schema:
+                  type: string
+                  default: ""
+              - variable: ingressClassName
+                label: "IngressClass Name"
+                schema:
+                  type: string
+                  default: ""
+              - variable: labelsList
+                label: "Labels"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: labelItem
+                      label: "Label"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                          - variable: value
+                            label: "Value"
+                            schema:
+                              type: string
+              - variable: annotationsList
+                label: "Annotations"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: annotationItem
+                      label: "Label"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                          - variable: value
+                            label: "Value"
+                            schema:
+                              type: string
+              - variable: hosts
+                label: "Hosts"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: hostEntry
+                      label: "Host"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: host
+                            label: "HostName"
+                            schema:
+                              type: string
+                              default: ""
+                              required: true
+                          - variable: paths
+                            label: "Paths"
+                            schema:
+                              type: list
+                              default: []
+                              items:
+                                - variable: pathEntry
+                                  label: "Host"
+                                  schema:
+                                    additional_attrs: true
+                                    type: dict
+                                    attrs:
+                                      - variable: path
+                                        label: "path"
+                                        schema:
+                                          type: string
+                                          required: true
+                                          default: "/"
+                                      - variable: pathType
+                                        label: "pathType"
+                                        schema:
+                                          type: string
+                                          required: true
+                                          default: "Prefix"
+                                      - variable: service
+                                        label: "Linked Service"
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: name
+                                              label: "Service Name"
+                                              schema:
+                                                type: string
+                                                default: ""
+                                            - variable: port
+                                              label: "Service Port"
+                                              schema:
+                                                type: int
+              - variable: tls
+                label: "TLS-Settings"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: tlsEntry
+                      label: "Host"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: hosts
+                            label: "Certificate Hosts"
+                            schema:
+                              type: list
+                              default: []
+                              items:
+                                - variable: host
+                                  label: "Host"
+                                  schema:
+                                    type: string
+                                    default: ""
+                                    required: true
+                          - variable: scaleCert
+                            label: "Select TrueNAS SCALE Certificate"
+                            schema:
+                              type: int
+                              $ref:
+                                - "definitions/certificate"
+              - variable: entrypoint
+                label: "Traefik Entrypoint"
+                description: "Entrypoint used by Traefik when using Traefik as Ingress Provider"
+                schema:
+                  type: string
+                  default: "websecure"
+                  required: true
+              - variable: middlewares
+                label: "Traefik Middlewares"
+                description: "Add previously created Traefik Middlewares to this Ingress"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: name
+                      label: "Name"
+                      schema:
+                        type: string
+                        default: ""
+                        required: true
+
+  - variable: advancedSecurity
+    label: "Show Advanced Security Settings"
+    group: "Security and Permissions"
+    schema:
+      type: boolean
+      default: false
+      show_subquestions_if: true
+      subquestions:
+        - variable: securityContext
+          label: "Security Context"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: privileged
+                label: "Privileged mode"
+                schema:
+                  type: boolean
+                  default: false
+              - variable: readOnlyRootFilesystem
+                label: "ReadOnly Root Filesystem"
+                schema:
+                  type: boolean
+                  default: true
+              - variable: allowPrivilegeEscalation
+                label: "Allow Privilege Escalation"
+                schema:
+                  type: boolean
+                  default: false
+              - variable: runAsNonRoot
+                label: "runAsNonRoot"
+                schema:
+                  type: boolean
+                  default: true
+              - variable: capabilities
+                label: "Capabilities"
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: drop
+                      label: "Drop Capability"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: dropEntry
+                            label: ""
+                            schema:
+                              type: string
+                    - variable: add
+                      label: "Add Capability"
+                      schema:
+                        type: list
+                        default: []
+                        items:
+                          - variable: addEntry
+                            label: ""
+                            schema:
+                              type: string
+
+  - variable: podSecurityContext
+    group: "Security and Permissions"
+    label: "Pod Security Context"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: runAsUser
+          label: "runAsUser"
+          description: "The UserID of the user running the application"
+          schema:
+            type: int
+            default: 568
+        - variable: runAsGroup
+          label: "runAsGroup"
+          description: The groupID this App of the user running the application"
+          schema:
+            type: int
+            default: 568
+        - variable: fsGroup
+          label: "fsGroup"
+          description: "The group that should own ALL storage."
+          schema:
+            type: int
+            default: 568
+        - variable: fsGroupChangePolicy
+          label: "When should we take ownership?"
+          schema:
+            type: string
+            default: "OnRootMismatch"
+            enum:
+              - value: "OnRootMismatch"
+                description: "OnRootMismatch"
+              - value: "Always"
+                description: "Always"
+        - variable: supplementalGroups
+          label: "supplemental Groups"
+          schema:
+            type: list
+            default: []
+            items:
+              - variable: supplementalGroupsEntry
+                label: "supplemental Group"
+                schema:
+                  type: int
+
+
+  - variable: advancedresources
+    label: "Set Custom Resource Limits/Requests (Advanced)"
+    group: "Resources and Devices"
+    schema:
+      type: boolean
+      default: false
+      show_subquestions_if: true
+      subquestions:
+        - variable: resources
+          label: ""
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: limits
+                label: "Advanced Limit Resource Consumption"
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: cpu
+                      label: "CPU"
+                      description: "1000m means 1 hyperthread. Detailed info: https://truecharts.org/manual/indepth/validation/"
+                      schema:
+                        type: string
+                        default: "4000m"
+                        valid_chars: '^(?!^0(\.0|m|)$)([0-9]+)(\.[0-9]|m?)$'
+                    - variable: memory
+                      label: "RAM"
+                      description: "1Gi means 1 Gibibyte RAM. Detailed info: https://truecharts.org/manual/indepth/validation/"
+                      schema:
+                        type: string
+                        default: "8Gi"
+                        valid_chars: '^(?!^0(e[0-9]|[EPTGMK]i?|)$)([0-9]+)(|[EPTGMK]i?|e[0-9]+)$'
+              - variable: requests
+                label: "Minimum Resources Required (request)"
+                schema:
+                  additional_attrs: true
+                  type: dict
+                  attrs:
+                    - variable: cpu
+                      label: "CPU"
+                      description: "1000m means 1 hyperthread. Detailed info: https://truecharts.org/manual/indepth/validation/"
+                      schema:
+                        type: string
+                        default: "10m"
+                        valid_chars: '^(?!^0(\.0|m|)$)([0-9]+)(\.[0-9]|m?)$'
+                    - variable: memory
+                      label: "RAM"
+                      description: "1Gi means 1 Gibibyte RAM. Detailed info: https://truecharts.org/manual/indepth/validation/"
+                      schema:
+                        type: string
+                        default: "50Mi"
+                        valid_chars: '^(?!^0(e[0-9]|[EPTGMK]i?|)$)([0-9]+)(|[EPTGMK]i?|e[0-9]+)$'
+
+  - variable: deviceList
+    label: "Mount USB devices"
+    group: "Resources and Devices"
+    schema:
+      type: list
+      default: []
+      items:
+        - variable: deviceListEntry
+          label: "Device"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "Enable the storage"
+                schema:
+                  type: boolean
+                  default: true
+              - variable: type
+                label: "(Advanced) Type of Storage"
+                description: "Sets the persistence type"
+                schema:
+                  type: string
+                  default: "hostPath"
+                  hidden: true
+              - variable: readOnly
+                label: "readOnly"
+                schema:
+                  type: boolean
+                  default: false
+              - variable: hostPath
+                label: "Host Device Path"
+                description: "Path to the device on the host system"
+                schema:
+                  type: path
+              - variable: mountPath
+                label: "Container Device Path"
+                description: "Path inside the container the device is mounted"
+                schema:
+                  type: string
+                  default: "/dev/ttyACM0"
+
+  # Specify GPU configuration
+  - variable: scaleGPU
+    label: "GPU Configuration"
+    group: "Resources and Devices"
+    schema:
+      type: dict
+      $ref:
+        - "definitions/gpuConfiguration"
+      attrs: []
+
+  - variable: autoscaling
+    group: "Advanced"
+    label: "(Advanced) Horizontal Pod Autoscaler"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: enabled
+          label: "enabled"
+          schema:
+            type: boolean
+            default: false
+            show_subquestions_if: true
+            subquestions:
+              - variable: target
+                label: "Target"
+                description: "deployment name, defaults to main deployment"
+                schema:
+                  type: string
+                  default: ""
+              - variable: minReplicas
+                label: "Minimum Replicas"
+                schema:
+                  type: int
+                  default: 1
+              - variable: maxReplicas
+                label: "Maximum Replicas"
+                schema:
+                  type: int
+                  default: 5
+              - variable: targetCPUUtilizationPercentage
+                label: "Target CPU Utilization Percentage"
+                schema:
+                  type: int
+                  default: 80
+              - variable: targetMemoryUtilizationPercentage
+                label: "Target Memory Utilization Percentage"
+                schema:
+                  type: int
+                  default: 80
+  - variable: networkPolicy
+    group: "Advanced"
+    label: "(Advanced) Network Policy"
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: enabled
+          label: "enabled"
+          schema:
+            type: boolean
+            default: false
+            show_subquestions_if: true
+            subquestions:
+              - variable: policyType
+                label: "Policy Type"
+                schema:
+                  type: string
+                  default: ""
+                  enum:
+                    - value: ""
+                      description: "Default"
+                    - value: "ingress"
+                      description: "Ingress"
+                    - value: "egress"
+                      description: "Egress"
+                    - value: "ingress-egress"
+                      description: "Ingress and Egress"
+              - variable: egress
+                label: "Egress"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: egressEntry
+                      label: ""
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: to
+                            label: "To"
+                            schema:
+                              type: list
+                              default: []
+                              items:
+                                - variable: toEntry
+                                  label: ""
+                                  schema:
+                                    additional_attrs: true
+                                    type: dict
+                                    attrs:
+                                      - variable: ipBlock
+                                        label: "ipBlock"
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: cidr
+                                              label: "cidr"
+                                              schema:
+                                                type: string
+                                                default: ""
+                                            - variable: except
+                                              label: "except"
+                                              schema:
+                                                type: list
+                                                default: []
+                                                items:
+                                                  - variable: exceptint
+                                                    label: ""
+                                                    schema:
+                                                      type: int
+                                      - variable: namespaceSelector
+                                        label: "namespaceSelector"
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: matchExpressions
+                                              label: "matchExpressions"
+                                              schema:
+                                                type: list
+                                                default: []
+                                                items:
+                                                  - variable: expressionEntry
+                                                    label: ""
+                                                    schema:
+                                                      additional_attrs: true
+                                                      type: dict
+                                                      attrs:
+                                                        - variable: key
+                                                          label: "Key"
+                                                          schema:
+                                                            type: string
+                                                        - variable: operator
+                                                          label: "operator"
+                                                          schema:
+                                                            type: string
+                                                            default: "TCP"
+                                                            enum:
+                                                              - value: "In"
+                                                                description: "In"
+                                                              - value: "NotIn"
+                                                                description: "NotIn"
+                                                              - value: "Exists "
+                                                                description: "Exists "
+                                                              - value: "DoesNotExist "
+                                                                description: "DoesNotExist "
+                                                        - variable: values
+                                                          label: "values"
+                                                          schema:
+                                                            type: list
+                                                            default: []
+                                                            items:
+                                                              - variable: value
+                                                                label: ""
+                                                                schema:
+                                                                  type: string
+                                      - variable: podSelector
+                                        label: ""
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: matchExpressions
+                                              label: "matchExpressions"
+                                              schema:
+                                                type: list
+                                                default: []
+                                                items:
+                                                  - variable: expressionEntry
+                                                    label: ""
+                                                    schema:
+                                                      additional_attrs: true
+                                                      type: dict
+                                                      attrs:
+                                                        - variable: key
+                                                          label: "Key"
+                                                          schema:
+                                                            type: string
+                                                        - variable: operator
+                                                          label: "operator"
+                                                          schema:
+                                                            type: string
+                                                            default: "TCP"
+                                                            enum:
+                                                              - value: "In"
+                                                                description: "In"
+                                                              - value: "NotIn"
+                                                                description: "NotIn"
+                                                              - value: "Exists "
+                                                                description: "Exists "
+                                                              - value: "DoesNotExist "
+                                                                description: "DoesNotExist "
+                                                        - variable: values
+                                                          label: "values"
+                                                          schema:
+                                                            type: list
+                                                            default: []
+                                                            items:
+                                                              - variable: value
+                                                                label: ""
+                                                                schema:
+                                                                  type: string
+                          - variable: ports
+                            label: "Ports"
+                            schema:
+                              type: list
+                              default: []
+                              items:
+                                - variable: portsEntry
+                                  label: ""
+                                  schema:
+                                    additional_attrs: true
+                                    type: dict
+                                    attrs:
+                                      - variable: port
+                                        label: "port"
+                                        schema:
+                                          type: int
+                                      - variable: endPort
+                                        label: "port"
+                                        schema:
+                                          type: int
+                                      - variable: protocol
+                                        label: "Protocol"
+                                        schema:
+                                          type: string
+                                          default: "TCP"
+                                          enum:
+                                            - value: "TCP"
+                                              description: "TCP"
+                                            - value: "UDP"
+                                              description: "UDP"
+                                            - value: "SCTP"
+                                              description: "SCTP"
+              - variable: ingress
+                label: "Ingress"
+                schema:
+                  type: list
+                  default: []
+                  items:
+                    - variable: ingressEntry
+                      label: ""
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: from
+                            label: "From"
+                            schema:
+                              type: list
+                              default: []
+                              items:
+                                - variable: fromEntry
+                                  label: ""
+                                  schema:
+                                    additional_attrs: true
+                                    type: dict
+                                    attrs:
+                                      - variable: ipBlock
+                                        label: "ipBlock"
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: cidr
+                                              label: "cidr"
+                                              schema:
+                                                type: string
+                                                default: ""
+                                            - variable: except
+                                              label: "except"
+                                              schema:
+                                                type: list
+                                                default: []
+                                                items:
+                                                  - variable: exceptint
+                                                    label: ""
+                                                    schema:
+                                                      type: int
+                                      - variable: namespaceSelector
+                                        label: "namespaceSelector"
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: matchExpressions
+                                              label: "matchExpressions"
+                                              schema:
+                                                type: list
+                                                default: []
+                                                items:
+                                                  - variable: expressionEntry
+                                                    label: ""
+                                                    schema:
+                                                      additional_attrs: true
+                                                      type: dict
+                                                      attrs:
+                                                        - variable: key
+                                                          label: "Key"
+                                                          schema:
+                                                            type: string
+                                                        - variable: operator
+                                                          label: "operator"
+                                                          schema:
+                                                            type: string
+                                                            default: "TCP"
+                                                            enum:
+                                                              - value: "In"
+                                                                description: "In"
+                                                              - value: "NotIn"
+                                                                description: "NotIn"
+                                                              - value: "Exists "
+                                                                description: "Exists "
+                                                              - value: "DoesNotExist "
+                                                                description: "DoesNotExist "
+                                                        - variable: values
+                                                          label: "values"
+                                                          schema:
+                                                            type: list
+                                                            default: []
+                                                            items:
+                                                              - variable: value
+                                                                label: ""
+                                                                schema:
+                                                                  type: string
+                                      - variable: podSelector
+                                        label: ""
+                                        schema:
+                                          additional_attrs: true
+                                          type: dict
+                                          attrs:
+                                            - variable: matchExpressions
+                                              label: "matchExpressions"
+                                              schema:
+                                                type: list
+                                                default: []
+                                                items:
+                                                  - variable: expressionEntry
+                                                    label: ""
+                                                    schema:
+                                                      additional_attrs: true
+                                                      type: dict
+                                                      attrs:
+                                                        - variable: key
+                                                          label: "Key"
+                                                          schema:
+                                                            type: string
+                                                        - variable: operator
+                                                          label: "operator"
+                                                          schema:
+                                                            type: string
+                                                            default: "TCP"
+                                                            enum:
+                                                              - value: "In"
+                                                                description: "In"
+                                                              - value: "NotIn"
+                                                                description: "NotIn"
+                                                              - value: "Exists "
+                                                                description: "Exists "
+                                                              - value: "DoesNotExist "
+                                                                description: "DoesNotExist "
+                                                        - variable: values
+                                                          label: "values"
+                                                          schema:
+                                                            type: list
+                                                            default: []
+                                                            items:
+                                                              - variable: value
+                                                                label: ""
+                                                                schema:
+                                                                  type: string
+                          - variable: ports
+                            label: "Ports"
+                            schema:
+                              type: list
+                              default: []
+                              items:
+                                - variable: portsEntry
+                                  label: ""
+                                  schema:
+                                    additional_attrs: true
+                                    type: dict
+                                    attrs:
+                                      - variable: port
+                                        label: "port"
+                                        schema:
+                                          type: int
+                                      - variable: endPort
+                                        label: "port"
+                                        schema:
+                                          type: int
+                                      - variable: protocol
+                                        label: "Protocol"
+                                        schema:
+                                          type: string
+                                          default: "TCP"
+                                          enum:
+                                            - value: "TCP"
+                                              description: "TCP"
+                                            - value: "UDP"
+                                              description: "UDP"
+                                            - value: "SCTP"
+                                              description: "SCTP"
+
+
+  - variable: addons
+    group: "Addons"
+    label: ""
+    schema:
+      additional_attrs: true
+      type: dict
+      attrs:
+        - variable: vpn
+          label: "VPN"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: type
+                label: "Type"
+                schema:
+                  type: string
+                  default: "disabled"
+                  enum:
+                    - value: "disabled"
+                      description: "disabled"
+                    - value: "openvpn"
+                      description: "OpenVPN"
+                    - value: "wireguard"
+                      description: "Wireguard"
+              - variable: openvpn
+                label: "OpenVPN Settings"
+                schema:
+                  type: dict
+                  show_if: [["type", "=", "openvpn"]]
+                  attrs:
+                    - variable: username
+                      label: "authentication username"
+                      description: "authentication username, optional"
+                      schema:
+                        type: string
+                        default: ""
+                    - variable: password
+                      label: "authentication password"
+                      description: "authentication credentials"
+                      schema:
+                        type: string
+                        default: ""
+                        required: true
+              - variable: killSwitch
+                label: "Enable killswitch"
+                schema:
+                  type: boolean
+                  show_if: [["type", "!=", "disabled"]]
+                  default: true
+              - variable: excludedNetworks_IPv4
+                label: "Killswitch Excluded IPv4 networks"
+                description: "list of killswitch excluded ipv4 addresses"
+                schema:
+                  type: list
+                  show_if: [["type", "!=", "disabled"]]
+                  default: []
+                  items:
+                    - variable: networkv4
+                      label: "IPv4 Network"
+                      schema:
+                        type: string
+                        required: true
+              - variable: excludedNetworks_IPv6
+                label: "Killswitch Excluded IPv6 networks"
+                description: "list of killswitch excluded ipv4 addresses"
+                schema:
+                  type: list
+                  show_if: [["type", "!=", "disabled"]]
+                  default: []
+                  items:
+                    - variable: networkv6
+                      label: "IPv6 Network"
+                      schema:
+                        type: string
+                        required: true
+
+              - variable: configFile
+                label: "VPN Config File Location"
+                schema:
+                  type: dict
+                  show_if: [["type", "!=", "disabled"]]
+                  attrs:
+                    - variable: enabled
+                      label: "enabled"
+                      schema:
+                        type: boolean
+                        default: true
+                        hidden: true
+                    - variable: type
+                      label: "type"
+                      schema:
+                        type: string
+                        default: "hostPath"
+                        hidden: true
+                    - variable: hostPathType
+                      label: "hostPathType"
+                      schema:
+                        type: string
+                        default: "File"
+                        hidden: true
+                    - variable: noMount
+                      label: "noMount"
+                      schema:
+                        type: boolean
+                        default: true
+                        hidden: true
+                    - variable: hostPath
+                      label: "Full path to file"
+                      description: "path to your local VPN config file for example: /mnt/tank/vpn.conf or /mnt/tank/vpn.ovpn"
+                      schema:
+                        type: string
+                        default: ""
+                        required: true
+              - variable: envList
+                label: "VPN environment Variables"
+                schema:
+                  type: list
+                  show_if: [["type", "!=", "disabled"]]
+                  default: []
+                  items:
+                    - variable: envItem
+                      label: "Environment Variable"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                              required: true
+                          - variable: value
+                            label: "Value"
+                            schema:
+                              type: string
+                              required: true
+
+        - variable: codeserver
+          label: "Codeserver"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "enabled"
+                schema:
+                  type: boolean
+                  default: false
+                  show_subquestions_if: true
+                  subquestions:
+                    - variable: git
+                      label: "Git Settings"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: deployKey
+                            description: "Raw SSH private key"
+                            label: "deployKey"
+                            schema:
+                              type: string
+                          - variable: deployKeyBase64
+                            description: "Base64-encoded SSH private key. When both variables are set, the raw SSH key takes precedence"
+                            label: "deployKeyBase64"
+                            schema:
+                              type: string
+                    - variable: service
+                      label: ""
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: type
+                            label: "Service Type"
+                            description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer"
+                            schema:
+                              type: string
+                              default: "NodePort"
+                              enum:
+                                - value: "NodePort"
+                                  description: "NodePort"
+                                - value: "ClusterIP"
+                                  description: "ClusterIP"
+                                - value: "LoadBalancer"
+                                  description: "LoadBalancer"
+                          - variable: loadBalancerIP
+                            label: "LoadBalancer IP"
+                            description: "LoadBalancerIP"
+                            schema:
+                              show_if: [["type", "=", "LoadBalancer"]]
+                              type: string
+                              default: ""
+                          - variable: externalIPs
+                            label: "External IP's"
+                            description: "External IP's"
+                            schema:
+                              show_if: [["type", "=", "LoadBalancer"]]
+                              type: list
+                              default: []
+                              items:
+                                - variable: externalIP
+                                  label: "External IP"
+                                  schema:
+                                    type: string
+                          - variable: ports
+                            label: ""
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: codeserver
+                                  label: ""
+                                  schema:
+                                    additional_attrs: true
+                                    type: dict
+                                    attrs:
+                                      - variable: nodePort
+                                        description: "leave empty to disable"
+                                        label: "nodePort"
+                                        schema:
+                                          type: int
+                                          default: 36107
+                    - variable: envList
+                      label: "Codeserver environment Variables"
+                      schema:
+                        type: list
+                        show_if: [["type", "!=", "disabled"]]
+                        default: []
+                        items:
+                          - variable: envItem
+                            label: "Environment Variable"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: name
+                                  label: "Name"
+                                  schema:
+                                    type: string
+                                    required: true
+                                - variable: value
+                                  label: "Value"
+                                  schema:
+                                    type: string
+                                    required: true
+
+
+        - variable: promtail
+          label: "Promtail"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "enabled"
+                schema:
+                  type: boolean
+                  default: false
+                  show_subquestions_if: true
+                  subquestions:
+                    - variable: loki
+                      label: "Loki URL"
+                      schema:
+                        type: string
+                        required: true
+                    - variable: logs
+                      label: "Log Paths"
+                      schema:
+                        additional_attrs: true
+                        type: dict
+                        attrs:
+                          - variable: name
+                            label: "Name"
+                            schema:
+                              type: string
+                              required: true
+                          - variable: path
+                            label: "Path"
+                            schema:
+                              type: string
+                              required: true
+                    - variable: args
+                      label: "Promtail ecommand line arguments"
+                      schema:
+                        type: list
+                        show_if: [["type", "!=", "disabled"]]
+                        default: []
+                        items:
+                          - variable: arg
+                            label: "Arg"
+                            schema:
+                              type: string
+                              required: true
+                    - variable: envList
+                      label: "Promtail environment Variables"
+                      schema:
+                        type: list
+                        show_if: [["type", "!=", "disabled"]]
+                        default: []
+                        items:
+                          - variable: envItem
+                            label: "Environment Variable"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: name
+                                  label: "Name"
+                                  schema:
+                                    type: string
+                                    required: true
+                                - variable: value
+                                  label: "Value"
+                                  schema:
+                                    type: string
+                                    required: true
+
+
+
+
+        - variable: netshoot
+          label: "Netshoot"
+          schema:
+            additional_attrs: true
+            type: dict
+            attrs:
+              - variable: enabled
+                label: "enabled"
+                schema:
+                  type: boolean
+                  default: false
+                  show_subquestions_if: true
+                  subquestions:
+                    - variable: envList
+                      label: "Netshoot environment Variables"
+                      schema:
+                        type: list
+                        show_if: [["type", "!=", "disabled"]]
+                        default: []
+                        items:
+                          - variable: envItem
+                            label: "Environment Variable"
+                            schema:
+                              additional_attrs: true
+                              type: dict
+                              attrs:
+                                - variable: name
+                                  label: "Name"
+                                  schema:
+                                    type: string
+                                    required: true
+                                - variable: value
+                                  label: "Value"
+                                  schema:
+                                    type: string
+                                    required: true
diff --git a/core/traefik/10.0.57/security.md b/core/traefik/10.0.57/security.md
new file mode 100644
index 00000000000..897d9dd6b8c
--- /dev/null
+++ b/core/traefik/10.0.57/security.md
@@ -0,0 +1,159 @@
+---
+hide:
+  - toc
+---
+
+# Security Overview
+
+<link href="https://truecharts.org/_static/trivy.css" type="text/css" rel="stylesheet" />
+
+## Helm-Chart
+
+##### Scan Results
+
+#### Chart Object: traefik/templates/common.yaml
+    
+
+      
+| Type         |    Misconfiguration ID   |   Check  |  Severity |                   Explaination                   | Links  |
+|:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------|
+| Kubernetes Security Check         |    KSV001   |   Process can elevate its own privileges  |  MEDIUM | <details><summary>Expand...</summary> A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.allowPrivilegeEscalation&#39; to false </details>| <details><summary>Expand...</summary><a href="https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted">https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted</a><br><a href="https://avd.aquasec.com/appshield/ksv001">https://avd.aquasec.com/appshield/ksv001</a><br></details>  |
+| Kubernetes Security Check         |    KSV003   |   Default capabilities not dropped  |  LOW | <details><summary>Expand...</summary> The container should drop all default capabilities and add only those that are needed for its execution. <br> <hr> <br> Container &#39;RELEASE-NAME-traefik&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should add &#39;ALL&#39; to &#39;securityContext.capabilities.drop&#39; </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/">https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/</a><br><a href="https://avd.aquasec.com/appshield/ksv003">https://avd.aquasec.com/appshield/ksv003</a><br></details>  |
+| Kubernetes Security Check         |    KSV003   |   Default capabilities not dropped  |  LOW | <details><summary>Expand...</summary> The container should drop all default capabilities and add only those that are needed for its execution. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should add &#39;ALL&#39; to &#39;securityContext.capabilities.drop&#39; </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/">https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/</a><br><a href="https://avd.aquasec.com/appshield/ksv003">https://avd.aquasec.com/appshield/ksv003</a><br></details>  |
+| Kubernetes Security Check         |    KSV011   |   CPU not limited  |  LOW | <details><summary>Expand...</summary> Enforcing CPU limits prevents DoS via resource exhaustion. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;resources.limits.cpu&#39; </details>| <details><summary>Expand...</summary><a href="https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits">https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits</a><br><a href="https://avd.aquasec.com/appshield/ksv011">https://avd.aquasec.com/appshield/ksv011</a><br></details>  |
+| Kubernetes Security Check         |    KSV012   |   Runs as root user  |  MEDIUM | <details><summary>Expand...</summary> &#39;runAsNonRoot&#39; forces the running image to run as a non-root user to ensure least privileges. <br> <hr> <br> Container &#39;autopermissions&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsNonRoot&#39; to true </details>| <details><summary>Expand...</summary><a href="https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted">https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted</a><br><a href="https://avd.aquasec.com/appshield/ksv012">https://avd.aquasec.com/appshield/ksv012</a><br></details>  |
+| Kubernetes Security Check         |    KSV012   |   Runs as root user  |  MEDIUM | <details><summary>Expand...</summary> &#39;runAsNonRoot&#39; forces the running image to run as a non-root user to ensure least privileges. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsNonRoot&#39; to true </details>| <details><summary>Expand...</summary><a href="https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted">https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted</a><br><a href="https://avd.aquasec.com/appshield/ksv012">https://avd.aquasec.com/appshield/ksv012</a><br></details>  |
+| Kubernetes Security Check         |    KSV014   |   Root file system is not read-only  |  LOW | <details><summary>Expand...</summary> An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk. <br> <hr> <br> Container &#39;autopermissions&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.readOnlyRootFilesystem&#39; to true </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/">https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/</a><br><a href="https://avd.aquasec.com/appshield/ksv014">https://avd.aquasec.com/appshield/ksv014</a><br></details>  |
+| Kubernetes Security Check         |    KSV014   |   Root file system is not read-only  |  LOW | <details><summary>Expand...</summary> An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.readOnlyRootFilesystem&#39; to true </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/">https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/</a><br><a href="https://avd.aquasec.com/appshield/ksv014">https://avd.aquasec.com/appshield/ksv014</a><br></details>  |
+| Kubernetes Security Check         |    KSV015   |   CPU requests not specified  |  LOW | <details><summary>Expand...</summary> When containers have resource requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;resources.requests.cpu&#39; </details>| <details><summary>Expand...</summary><a href="https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits">https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits</a><br><a href="https://avd.aquasec.com/appshield/ksv015">https://avd.aquasec.com/appshield/ksv015</a><br></details>  |
+| Kubernetes Security Check         |    KSV016   |   Memory requests not specified  |  LOW | <details><summary>Expand...</summary> When containers have memory requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;resources.requests.memory&#39; </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-resources-limits-memory/">https://kubesec.io/basics/containers-resources-limits-memory/</a><br><a href="https://avd.aquasec.com/appshield/ksv016">https://avd.aquasec.com/appshield/ksv016</a><br></details>  |
+| Kubernetes Security Check         |    KSV017   |   Privileged container  |  HIGH | <details><summary>Expand...</summary> Privileged containers share namespaces with the host system and do not offer any security. They should be used exclusively for system containers that require high privileges. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.privileged&#39; to false </details>| <details><summary>Expand...</summary><a href="https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline">https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline</a><br><a href="https://avd.aquasec.com/appshield/ksv017">https://avd.aquasec.com/appshield/ksv017</a><br></details>  |
+| Kubernetes Security Check         |    KSV018   |   Memory not limited  |  LOW | <details><summary>Expand...</summary> Enforcing memory limits prevents DoS via resource exhaustion. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;resources.limits.memory&#39; </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-resources-limits-memory/">https://kubesec.io/basics/containers-resources-limits-memory/</a><br><a href="https://avd.aquasec.com/appshield/ksv018">https://avd.aquasec.com/appshield/ksv018</a><br></details>  |
+| Kubernetes Security Check         |    KSV020   |   Runs with low user ID  |  MEDIUM | <details><summary>Expand...</summary> Force the container to run with user ID &gt; 10000 to avoid conflicts with the host’s user table. <br> <hr> <br> Container &#39;RELEASE-NAME-traefik&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsUser&#39; &gt; 10000 </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-runasuser/">https://kubesec.io/basics/containers-securitycontext-runasuser/</a><br><a href="https://avd.aquasec.com/appshield/ksv020">https://avd.aquasec.com/appshield/ksv020</a><br></details>  |
+| Kubernetes Security Check         |    KSV020   |   Runs with low user ID  |  MEDIUM | <details><summary>Expand...</summary> Force the container to run with user ID &gt; 10000 to avoid conflicts with the host’s user table. <br> <hr> <br> Container &#39;autopermissions&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsUser&#39; &gt; 10000 </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-runasuser/">https://kubesec.io/basics/containers-securitycontext-runasuser/</a><br><a href="https://avd.aquasec.com/appshield/ksv020">https://avd.aquasec.com/appshield/ksv020</a><br></details>  |
+| Kubernetes Security Check         |    KSV020   |   Runs with low user ID  |  MEDIUM | <details><summary>Expand...</summary> Force the container to run with user ID &gt; 10000 to avoid conflicts with the host’s user table. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsUser&#39; &gt; 10000 </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-runasuser/">https://kubesec.io/basics/containers-securitycontext-runasuser/</a><br><a href="https://avd.aquasec.com/appshield/ksv020">https://avd.aquasec.com/appshield/ksv020</a><br></details>  |
+| Kubernetes Security Check         |    KSV021   |   Runs with low group ID  |  MEDIUM | <details><summary>Expand...</summary> Force the container to run with group ID &gt; 10000 to avoid conflicts with the host’s user table. <br> <hr> <br> Container &#39;RELEASE-NAME-traefik&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsGroup&#39; &gt; 10000 </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-runasuser/">https://kubesec.io/basics/containers-securitycontext-runasuser/</a><br><a href="https://avd.aquasec.com/appshield/ksv021">https://avd.aquasec.com/appshield/ksv021</a><br></details>  |
+| Kubernetes Security Check         |    KSV021   |   Runs with low group ID  |  MEDIUM | <details><summary>Expand...</summary> Force the container to run with group ID &gt; 10000 to avoid conflicts with the host’s user table. <br> <hr> <br> Container &#39;autopermissions&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsGroup&#39; &gt; 10000 </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-runasuser/">https://kubesec.io/basics/containers-securitycontext-runasuser/</a><br><a href="https://avd.aquasec.com/appshield/ksv021">https://avd.aquasec.com/appshield/ksv021</a><br></details>  |
+| Kubernetes Security Check         |    KSV021   |   Runs with low group ID  |  MEDIUM | <details><summary>Expand...</summary> Force the container to run with group ID &gt; 10000 to avoid conflicts with the host’s user table. <br> <hr> <br> Container &#39;inotify&#39; of Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;securityContext.runAsGroup&#39; &gt; 10000 </details>| <details><summary>Expand...</summary><a href="https://kubesec.io/basics/containers-securitycontext-runasuser/">https://kubesec.io/basics/containers-securitycontext-runasuser/</a><br><a href="https://avd.aquasec.com/appshield/ksv021">https://avd.aquasec.com/appshield/ksv021</a><br></details>  |
+| Kubernetes Security Check         |    KSV029   |   A root primary or supplementary GID set  |  LOW | <details><summary>Expand...</summary> Containers should be forbidden from running with a root primary or supplementary GID. <br> <hr> <br> Deployment &#39;RELEASE-NAME-traefik&#39; should set &#39;spec.securityContext.runAsGroup&#39;, &#39;spec.securityContext.supplementalGroups[*]&#39; and &#39;spec.securityContext.fsGroup&#39; to integer greater than 0 </details>| <details><summary>Expand...</summary><a href="https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted">https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted</a><br><a href="https://avd.aquasec.com/appshield/ksv029">https://avd.aquasec.com/appshield/ksv029</a><br></details>  |
+
+      
+| No Misconfigurations found         |
+|:---------------------------------|
+
+      
+
+      
+| No Misconfigurations found         |
+|:---------------------------------|
+
+      
+
+      
+| No Misconfigurations found         |
+|:---------------------------------|
+
+      
+
+      
+| No Misconfigurations found         |
+|:---------------------------------|
+
+      
+
+## Containers
+
+##### Detected Containers
+
+          tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c
+          tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c
+          tccr.io/truecharts/traefik:v2.6.0@sha256:cc9fc0d653690523166b8a32b6bb6e1c609283b7c1010fe32cc4d6b43feca3ac
+
+##### Scan Results
+
+
+#### Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2)
+    
+
+**alpine**
+
+      
+| Package         |    Vulnerability   |   Severity  |  Installed Version | Fixed Version |                   Links                   |
+|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------|
+| busybox         |    CVE-2021-42378   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42379   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42380   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42381   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42382   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42383   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+| busybox         |    CVE-2021-42384   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42385   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42386   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42374   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r4 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42375   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r5 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+| ssl_client         |    CVE-2021-42378   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42379   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42380   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42381   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42382   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42383   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+| ssl_client         |    CVE-2021-42384   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42385   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42386   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42374   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r4 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42375   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r5 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+
+
+#### Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2)
+    
+
+**alpine**
+
+      
+| Package         |    Vulnerability   |   Severity  |  Installed Version | Fixed Version |                   Links                   |
+|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------|
+| busybox         |    CVE-2021-42378   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42379   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42380   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42381   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42382   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42383   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+| busybox         |    CVE-2021-42384   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42385   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42386   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42374   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r4 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| busybox         |    CVE-2021-42375   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r5 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+| ssl_client         |    CVE-2021-42378   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42379   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42380   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42381   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42382   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42383   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+| ssl_client         |    CVE-2021-42384   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42385   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42386   |   HIGH  |  1.33.1-r3 | 1.33.1-r6 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42374   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r4 | <details><summary>Expand...</summary><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374</a><br><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br><a href="https://ubuntu.com/security/notices/USN-5179-1">https://ubuntu.com/security/notices/USN-5179-1</a><br></details>  |
+| ssl_client         |    CVE-2021-42375   |   MEDIUM  |  1.33.1-r3 | 1.33.1-r5 | <details><summary>Expand...</summary><a href="https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/">https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/</a><br><a href="https://security.netapp.com/advisory/ntap-20211223-0002/">https://security.netapp.com/advisory/ntap-20211223-0002/</a><br></details>  |
+
+
+#### Container: tccr.io/truecharts/traefik:v2.6.0@sha256:cc9fc0d653690523166b8a32b6bb6e1c609283b7c1010fe32cc4d6b43feca3ac (alpine 3.14.3)
+    
+
+**alpine**
+
+      
+| No Vulnerabilities found         |
+|:---------------------------------|
+
+      
+
+**gobinary**
+
+      
+| Package         |    Vulnerability   |   Severity  |  Installed Version | Fixed Version |                   Links                   |
+|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------|
+| github.com/containerd/containerd         |    CVE-2021-43816   |   CRITICAL  |  v1.5.8 | 1.5.9 | <details><summary>Expand...</summary><a href="https://github.com/containerd/containerd/commit/a731039238c62be081eb8c31525b988415745eea">https://github.com/containerd/containerd/commit/a731039238c62be081eb8c31525b988415745eea</a><br><a href="https://github.com/containerd/containerd/issues/6194">https://github.com/containerd/containerd/issues/6194</a><br><a href="https://github.com/containerd/containerd/security/advisories/GHSA-mvff-h3cj-wj9c">https://github.com/containerd/containerd/security/advisories/GHSA-mvff-h3cj-wj9c</a><br><a href="https://github.com/dweomer/containerd/commit/f7f08f0e34fb97392b0d382e58916d6865100299">https://github.com/dweomer/containerd/commit/f7f08f0e34fb97392b0d382e58916d6865100299</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GD5GH7NMK5VJMA2Y5CYB5O5GTPYMWMLX/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GD5GH7NMK5VJMA2Y5CYB5O5GTPYMWMLX/</a><br><a href="https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPDIZMI7ZPERSZE2XO265UCK5IWM7CID/">https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MPDIZMI7ZPERSZE2XO265UCK5IWM7CID/</a><br><a href="https://nvd.nist.gov/vuln/detail/CVE-2021-43816">https://nvd.nist.gov/vuln/detail/CVE-2021-43816</a><br></details>  |
+| github.com/hashicorp/consul         |    CVE-2021-41805   |   HIGH  |  v1.10.3 | 1.8.17, 1.9.11, 1.10.4 | <details><summary>Expand...</summary><a href="https://discuss.hashicorp.com/t/hcsec-2021-29-consul-enterprise-namespace-default-acls-allow-privilege-escalation/31871">https://discuss.hashicorp.com/t/hcsec-2021-29-consul-enterprise-namespace-default-acls-allow-privilege-escalation/31871</a><br><a href="https://nvd.nist.gov/vuln/detail/CVE-2021-41805">https://nvd.nist.gov/vuln/detail/CVE-2021-41805</a><br><a href="https://security.netapp.com/advisory/ntap-20211229-0007/">https://security.netapp.com/advisory/ntap-20211229-0007/</a><br><a href="https://www.hashicorp.com/blog/category/consul">https://www.hashicorp.com/blog/category/consul</a><br></details>  |
+| github.com/opencontainers/image-spec         |    GMS-2021-101   |   UNKNOWN  |  v1.0.1 | 1.0.2 | <details><summary>Expand...</summary><a href="https://github.com/advisories/GHSA-77vh-xpmg-72qh">https://github.com/advisories/GHSA-77vh-xpmg-72qh</a><br><a href="https://github.com/opencontainers/distribution-spec/security/advisories/GHSA-mc8v-mgrf-8f4m">https://github.com/opencontainers/distribution-spec/security/advisories/GHSA-mc8v-mgrf-8f4m</a><br><a href="https://github.com/opencontainers/image-spec/commit/693428a734f5bab1a84bd2f990d92ef1111cd60c">https://github.com/opencontainers/image-spec/commit/693428a734f5bab1a84bd2f990d92ef1111cd60c</a><br><a href="https://github.com/opencontainers/image-spec/releases/tag/v1.0.2">https://github.com/opencontainers/image-spec/releases/tag/v1.0.2</a><br><a href="https://github.com/opencontainers/image-spec/security/advisories/GHSA-77vh-xpmg-72qh">https://github.com/opencontainers/image-spec/security/advisories/GHSA-77vh-xpmg-72qh</a><br></details>  |
+| golang.org/x/text         |    CVE-2021-38561   |   UNKNOWN  |  v0.3.6 | 0.3.7 | <details><summary>Expand...</summary></details>  |
+
diff --git a/core/traefik/10.0.57/templates/_args.tpl b/core/traefik/10.0.57/templates/_args.tpl
new file mode 100644
index 00000000000..fd8f62c1442
--- /dev/null
+++ b/core/traefik/10.0.57/templates/_args.tpl
@@ -0,0 +1,146 @@
+{{/* Define the args */}}
+{{- define "traefik.args" -}}
+args:
+  {{/* merge all ports */}}
+  {{- $ports := dict }}
+  {{- range $.Values.service }}
+  {{- range $name, $value := .ports }}
+  {{- $_ := set $ports $name $value }}
+  {{- end }}
+  {{- end }}
+  {{/* start of actual arguments */}}
+  {{- with .Values.globalArguments }}
+  {{- range . }}
+  - {{ . | quote }}
+  {{- end }}
+  {{- end }}
+  {{- range $name, $config := $ports }}
+  {{- if $config }}
+  {{- if or ( eq $config.protocol "HTTP" ) ( eq $config.protocol "HTTPS" ) ( eq $config.protocol "TCP" ) }}
+  {{- $_ := set $config "protocol" "TCP" }}
+  {{- end }}
+  - "--entryPoints.{{$name}}.address=:{{ $config.port }}/{{ default "tcp" $config.protocol | lower }}"
+  {{- end }}
+  {{- end }}
+  - "--api.dashboard=true"
+  - "--ping=true"
+  {{- if .Values.metrics }}
+  {{- if .Values.metrics.datadog }}
+  - "--metrics.datadog=true"
+  - "--metrics.datadog.address={{ .Values.metrics.datadog.address }}"
+  {{- end }}
+  {{- if .Values.metrics.influxdb }}
+  - "--metrics.influxdb=true"
+  - "--metrics.influxdb.address={{ .Values.metrics.influxdb.address }}"
+  - "--metrics.influxdb.protocol={{ .Values.metrics.influxdb.protocol }}"
+  {{- end }}
+  {{- if .Values.metrics.prometheus }}
+  - "--metrics.prometheus=true"
+  - "--metrics.prometheus.entrypoint={{ .Values.metrics.prometheus.entryPoint }}"
+  {{- end }}
+  {{- if .Values.metrics.statsd }}
+  - "--metrics.statsd=true"
+  - "--metrics.statsd.address={{ .Values.metrics.statsd.address }}"
+  {{- end }}
+  {{- end }}
+  {{- if .Values.providers.kubernetesCRD.enabled }}
+  - "--providers.kubernetescrd"
+  {{- end }}
+  {{- if .Values.providers.kubernetesIngress.enabled }}
+  - "--providers.kubernetesingress"
+  {{- if .Values.providers.kubernetesIngress.publishedService.enabled }}
+  - "--providers.kubernetesingress.ingressendpoint.publishedservice={{ template "providers.kubernetesIngress.publishedServicePath" . }}"
+  {{- end }}
+  {{- if .Values.providers.kubernetesIngress.labelSelector }}
+  - "--providers.kubernetesingress.labelSelector={{ .Values.providers.kubernetesIngress.labelSelector }}"
+  {{- end }}
+  {{- end }}
+  {{- if and .Values.rbac.enabled .Values.rbac.namespaced }}
+  {{- if .Values.providers.kubernetesCRD.enabled }}
+  - "--providers.kubernetescrd.namespaces={{ template "providers.kubernetesCRD.namespaces" . }}"
+  {{- end }}
+  {{- if .Values.providers.kubernetesIngress.enabled }}
+  - "--providers.kubernetesingress.namespaces={{ template "providers.kubernetesIngress.namespaces" . }}"
+  {{- end }}
+  {{- end }}
+  {{- range $entrypoint, $config := $ports }}
+  {{- if $config.redirectTo }}
+  {{- $toPort := index $ports $config.redirectTo }}
+  - "--entrypoints.{{ $entrypoint }}.http.redirections.entryPoint.to=:{{ $toPort.port }}"
+  - "--entrypoints.{{ $entrypoint }}.http.redirections.entryPoint.scheme=https"
+  {{- else if $config.redirectPort }}
+  {{ if gt $config.redirectPort 0.0 }}
+  - "--entrypoints.{{ $entrypoint }}.http.redirections.entryPoint.to=:{{ $config.redirectPort }}"
+  - "--entrypoints.{{ $entrypoint }}.http.redirections.entryPoint.scheme=https"
+  {{- end }}
+  {{- end }}
+  {{- if or ( $config.tls ) ( eq $config.protocol "HTTPS" ) }}
+  {{- if or ( $config.tls.enabled ) ( eq $config.protocol "HTTPS" ) }}
+  - "--entrypoints.{{ $entrypoint }}.http.tls=true"
+  {{- if $config.tls.options }}
+  - "--entrypoints.{{ $entrypoint }}.http.tls.options={{ $config.tls.options }}"
+  {{- end }}
+  {{- if $config.tls.certResolver }}
+  - "--entrypoints.{{ $entrypoint }}.http.tls.certResolver={{ $config.tls.certResolver }}"
+  {{- end }}
+  {{- if $config.tls.domains }}
+  {{- range $index, $domain := $config.tls.domains }}
+  {{- if $domain.main }}
+  - "--entrypoints.{{ $entrypoint }}.http.tls.domains[{{ $index }}].main={{ $domain.main }}"
+  {{- end }}
+  {{- if $domain.sans }}
+  - "--entrypoints.{{ $entrypoint }}.http.tls.domains[{{ $index }}].sans={{ join "," $domain.sans }}"
+  {{- end }}
+  {{- end }}
+  {{- end }}
+  {{- end }}
+  {{- end }}
+  {{- end }}
+  {{- with .Values.logs }}
+  {{- if .general.format }}
+  - "--log.format={{ .general.format }}"
+  {{- end }}
+  {{- if ne .general.level "ERROR" }}
+  - "--log.level={{ .general.level | upper }}"
+  {{- end }}
+  {{- if .access.enabled }}
+  - "--accesslog=true"
+  {{- if .access.format }}
+  - "--accesslog.format={{ .access.format }}"
+  {{- end }}
+  {{- if .access.bufferingsize }}
+  - "--accesslog.bufferingsize={{ .access.bufferingsize }}"
+  {{- end }}
+  {{- if .access.filters }}
+  {{- if .access.filters.statuscodes }}
+  - "--accesslog.filters.statuscodes={{ .access.filters.statuscodes }}"
+  {{- end }}
+  {{- if .access.filters.retryattempts }}
+  - "--accesslog.filters.retryattempts"
+  {{- end }}
+  {{- if .access.filters.minduration }}
+  - "--accesslog.filters.minduration={{ .access.filters.minduration }}"
+  {{- end }}
+  {{- end }}
+  - "--accesslog.fields.defaultmode={{ .access.fields.general.defaultmode }}"
+  {{- range $fieldname, $fieldaction := .access.fields.general.names }}
+  - "--accesslog.fields.names.{{ $fieldname }}={{ $fieldaction }}"
+  {{- end }}
+  - "--accesslog.fields.headers.defaultmode={{ .access.fields.headers.defaultmode }}"
+  {{- range $fieldname, $fieldaction := .access.fields.headers.names }}
+  - "--accesslog.fields.headers.names.{{ $fieldname }}={{ $fieldaction }}"
+  {{- end }}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.pilot.enabled }}
+  - "--pilot.token={{ .Values.pilot.token }}"
+  {{- end }}
+  {{- if hasKey .Values.pilot "dashboard" }}
+  - "--pilot.dashboard={{ .Values.pilot.dashboard }}"
+  {{- end }}
+  {{- with .Values.additionalArguments }}
+  {{- range . }}
+  - {{ . | quote }}
+  {{- end }}
+  {{- end }}
+{{- end -}}
diff --git a/core/traefik/10.0.57/templates/_helpers.tpl b/core/traefik/10.0.57/templates/_helpers.tpl
new file mode 100644
index 00000000000..8c6c4ac96bc
--- /dev/null
+++ b/core/traefik/10.0.57/templates/_helpers.tpl
@@ -0,0 +1,22 @@
+{{/*
+Construct the path for the providers.kubernetesingress.ingressendpoint.publishedservice.
+By convention this will simply use the <namespace>/<service-name> to match the name of the
+service generated.
+Users can provide an override for an explicit service they want bound via `.Values.providers.kubernetesIngress.publishedService.pathOverride`
+*/}}
+{{- define "providers.kubernetesIngress.publishedServicePath" -}}
+{{- $fullName := include "common.names.fullname" . -}}
+{{- $defServiceName := printf "%s/%s-tcp" .Release.Namespace $fullName -}}
+{{- $servicePath := default $defServiceName .Values.providers.kubernetesIngress.publishedService.pathOverride }}
+{{- print $servicePath | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Construct a comma-separated list of whitelisted namespaces
+*/}}
+{{- define "providers.kubernetesIngress.namespaces" -}}
+{{- default .Release.Namespace (join "," .Values.providers.kubernetesIngress.namespaces) }}
+{{- end -}}
+{{- define "providers.kubernetesCRD.namespaces" -}}
+{{- default .Release.Namespace (join "," .Values.providers.kubernetesCRD.namespaces) }}
+{{- end -}}
diff --git a/core/traefik/10.0.57/templates/_ingressclass.tpl b/core/traefik/10.0.57/templates/_ingressclass.tpl
new file mode 100644
index 00000000000..681ecc6fd0c
--- /dev/null
+++ b/core/traefik/10.0.57/templates/_ingressclass.tpl
@@ -0,0 +1,24 @@
+{{/* Define the ingressClass */}}
+{{- define "traefik.ingressClass" -}}
+---
+{{ if .Values.ingressClass.enabled }}
+  {{- if .Capabilities.APIVersions.Has "networking.k8s.io/v1/IngressClass" }}
+apiVersion: networking.k8s.io/v1
+  {{- else if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1/IngressClass" }}
+apiVersion: networking.k8s.io/v1beta1
+  {{- else if or (eq .Values.ingressClass.fallbackApiVersion "v1beta1") (eq .Values.ingressClass.fallbackApiVersion "v1") }}
+apiVersion: {{ printf "networking.k8s.io/%s" .Values.ingressClass.fallbackApiVersion }}
+  {{- else }}
+  {{- fail "\n\n ERROR: You must have at least networking.k8s.io/v1beta1 to use ingressClass" }}
+  {{- end }}
+kind: IngressClass
+metadata:
+  annotations:
+    ingressclass.kubernetes.io/is-default-class: {{ .Values.ingressClass.isDefaultClass | quote }}
+  labels:
+    {{- include "common.labels" . | nindent 4 }}
+  name: {{ .Release.Name }}
+spec:
+  controller: traefik.io/ingress-controller
+{{- end }}
+{{- end }}
diff --git a/core/traefik/10.0.57/templates/_ingressroute.tpl b/core/traefik/10.0.57/templates/_ingressroute.tpl
new file mode 100644
index 00000000000..ac0deaff2a3
--- /dev/null
+++ b/core/traefik/10.0.57/templates/_ingressroute.tpl
@@ -0,0 +1,25 @@
+{{/* Define the ingressRoute */}}
+{{- define "traefik.ingressRoute" -}}
+{{ if .Values.ingressRoute.dashboard.enabled }}
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: IngressRoute
+metadata:
+  name: {{ include "common.names.fullname" . }}-dashboard
+  annotations:
+  {{- with .Values.ingressRoute.dashboard.annotations }}
+  {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "common.labels" . | nindent 4 }}
+spec:
+  entryPoints:
+    - main
+  routes:
+  - match: PathPrefix(`/dashboard`) || PathPrefix(`/api`)
+    kind: Rule
+    services:
+    - name: api@internal
+      kind: TraefikService
+{{ end }}
+{{- end -}}
diff --git a/core/traefik/10.0.57/templates/_portalhook.tpl b/core/traefik/10.0.57/templates/_portalhook.tpl
new file mode 100644
index 00000000000..e3586c5d4e9
--- /dev/null
+++ b/core/traefik/10.0.57/templates/_portalhook.tpl
@@ -0,0 +1,26 @@
+{{/* Define the portalHook */}}
+{{- define "traefik.portalhook" -}}
+{{- if .Values.portalhook.enabled }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+---
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: portalhook
+  namespace: {{ $namespace }}
+data:
+  {{- $ports := dict }}
+  {{- range $.Values.service }}
+  {{- range $name, $value := .ports }}
+  {{- $_ := set $ports $name $value }}
+  {{- end }}
+  {{- end }}
+  {{- range $name, $value := $ports }}
+  {{ $name }}: {{ $value.port | quote }}
+  {{- end }}
+{{- end }}
+{{- end -}}
diff --git a/core/traefik/10.0.57/templates/_tlsoptions.tpl b/core/traefik/10.0.57/templates/_tlsoptions.tpl
new file mode 100644
index 00000000000..3e5aad3bee9
--- /dev/null
+++ b/core/traefik/10.0.57/templates/_tlsoptions.tpl
@@ -0,0 +1,12 @@
+{{/* Define the tlsOptions */}}
+{{- define "traefik.tlsOptions" -}}
+{{- range $name, $config := .Values.tlsOptions }}
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: TLSOption
+metadata:
+  name: {{ $name }}
+spec:
+  {{- toYaml $config | nindent 2 }}
+{{- end }}
+{{- end -}}
diff --git a/core/traefik/10.0.57/templates/common.yaml b/core/traefik/10.0.57/templates/common.yaml
new file mode 100644
index 00000000000..c87583e25bd
--- /dev/null
+++ b/core/traefik/10.0.57/templates/common.yaml
@@ -0,0 +1,24 @@
+{{/* Make sure all variables are set properly */}}
+{{- include "common.setup" . }}
+
+{{- if .Values.metrics }}
+{{- if .Values.metrics.prometheus }}
+{{- $_ := set .Values.podAnnotations "prometheus.io/scrape" "true" -}}
+{{- $_ := set .Values.podAnnotations "prometheus.io/path" "/metrics" -}}
+{{- $_ := set .Values.podAnnotations "prometheus.io/scrape" "9180" -}}
+{{- end }}
+{{- end }}
+
+{{- $newArgs :=  (include "traefik.args" . | fromYaml) }}
+{{- $_ := set .Values "newArgs" $newArgs -}}
+{{- $mergedargs := concat .Values.args .Values.newArgs.args }}
+{{- $_ := set .Values "args" $mergedargs -}}
+
+{{- include "traefik.portalhook" . }}
+{{- include "traefik.tlsOptions" . }}
+{{- include "traefik.ingressRoute" . }}
+{{- include "traefik.ingressClass" . }}
+
+
+{{/* Render the templates */}}
+{{ include "common.postSetup" . }}
diff --git a/core/traefik/10.0.57/templates/middlewares/basic-middleware.yaml b/core/traefik/10.0.57/templates/middlewares/basic-middleware.yaml
new file mode 100644
index 00000000000..144f94e7333
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/basic-middleware.yaml
@@ -0,0 +1,65 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: compress
+  namespace: {{ $namespace }}
+spec:
+  compress: {}
+---
+# Here, an average of 300 requests per second is allowed.
+# In addition, a burst of 200 requests is allowed.
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: basic-ratelimit
+  namespace: {{ $namespace }}
+spec:
+  rateLimit:
+    average: 600
+    burst: 400
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: basic-secure-headers
+  namespace: {{ $namespace }}
+spec:
+  headers:
+    accessControlAllowMethods:
+      - GET
+      - OPTIONS
+      - HEAD
+      - PUT
+    accessControlMaxAge: 100
+    sslRedirect: true
+    stsSeconds: 63072000
+    # stsIncludeSubdomains: false
+    # stsPreload: false
+    forceSTSHeader: true
+    contentTypeNosniff: true
+    browserXssFilter: true
+    sslForceHost: true
+    referrerPolicy: same-origin
+    customRequestHeaders:
+      X-Forwarded-Proto: "https"
+    customResponseHeaders:
+      X-Robots-Tag: 'none'
+      server: ''
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: chain-basic
+  namespace: {{ $namespace }}
+spec:
+  chain:
+    middlewares:
+    - name: basic-ratelimit
+    - name: basic-secure-headers
+    - name: compress
diff --git a/core/traefik/10.0.57/templates/middlewares/basicauth.yaml b/core/traefik/10.0.57/templates/middlewares/basicauth.yaml
new file mode 100644
index 00000000000..ccb541742f0
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/basicauth.yaml
@@ -0,0 +1,34 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+{{ range $index, $middlewareData := .Values.middlewares.basicAuth }}
+---
+{{- $users := list }}
+{{ range $index, $userdata := $middlewareData.users }}
+    {{ $users = append $users ( htpasswd $userdata.username $userdata.password ) }}
+{{ end }}
+
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{printf "%v-%v" $middlewareData.name "secret" }}
+  namespace: {{ $namespace }}
+type: Opaque
+stringData:
+  users: |
+    {{- range $index, $user := $users }}
+    {{ printf "%s" $user }}
+    {{- end }}
+---
+# Declaring the user list
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ $middlewareData.name }}
+  namespace: {{ $namespace }}
+spec:
+  basicAuth:
+    secret: {{printf "%v-%v" $middlewareData.name "secret" }}
+{{ end }}
diff --git a/core/traefik/10.0.57/templates/middlewares/chain.yaml b/core/traefik/10.0.57/templates/middlewares/chain.yaml
new file mode 100644
index 00000000000..e22eb312207
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/chain.yaml
@@ -0,0 +1,21 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+{{ range $index, $middlewareData := .Values.middlewares.chain }}
+
+---
+# Declaring the user list
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ $middlewareData.name }}
+  namespace: {{ $namespace }}
+spec:
+  chain:
+    middlewares:
+      {{ range $index, $chainData := . }}
+      - name: {{ printf "%v-%v@%v" $namespace $chainData.name "kubernetescrd" }}
+      {{ end }}
+{{ end }}
diff --git a/core/traefik/10.0.57/templates/middlewares/forwardauth.yaml b/core/traefik/10.0.57/templates/middlewares/forwardauth.yaml
new file mode 100644
index 00000000000..7a3e32fdbf7
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/forwardauth.yaml
@@ -0,0 +1,30 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+{{ range $index, $middlewareData := .Values.middlewares.forwardAuth }}
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ $middlewareData.name }}
+  namespace: {{ $namespace }}
+spec:
+  forwardAuth:
+    address: {{ $middlewareData.address }}
+    {{- with $middlewareData.authResponseHeaders }}
+    authResponseHeaders:
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+    {{- with $middlewareData.authRequestHeaders }}
+    authRequestHeaders:
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+    {{- if $middlewareData.authResponseHeadersRegex }}
+    authResponseHeadersRegex: {{ $middlewareData.authResponseHeadersRegex }}
+    {{- end }}
+    {{- if $middlewareData.trustForwardHeader }}
+    trustForwardHeader: true
+    {{- end }}
+{{ end }}
diff --git a/core/traefik/10.0.57/templates/middlewares/ipwhitelist.yaml b/core/traefik/10.0.57/templates/middlewares/ipwhitelist.yaml
new file mode 100644
index 00000000000..1179245017e
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/ipwhitelist.yaml
@@ -0,0 +1,33 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+{{ range $index, $middlewareData := .Values.middlewares.ipWhiteList }}
+
+---
+# Declaring the user list
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ $middlewareData.name }}
+  namespace: {{ $namespace }}
+spec:
+  ipWhiteList:
+    sourceRange:
+      {{- range $middlewareData.sourceRange }}
+      - {{ . }}
+      {{- end }}
+    {{- if $middlewareData.ipStrategy }}
+    ipStrategy:
+      {{- if $middlewareData.ipStrategy.depth }}
+      depth: {{ $middlewareData.ipStrategy.depth }}
+      {{- end }}
+      {{- if $middlewareData.ipStrategy.excludedIPs }}
+      excludedIPs:
+        {{- range $middlewareData.ipStrategy.excludedIPs }}
+        - {{ . }}
+        {{- end }}
+      {{- end }}
+    {{- end }}
+{{ end }}
diff --git a/core/traefik/10.0.57/templates/middlewares/ratelimit.yaml b/core/traefik/10.0.57/templates/middlewares/ratelimit.yaml
new file mode 100644
index 00000000000..144b9d8bf38
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/ratelimit.yaml
@@ -0,0 +1,19 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+{{ range $index, $middlewareData := .Values.middlewares.rateLimit }}
+
+---
+# Declaring the user list
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ $middlewareData.name }}
+  namespace: {{ $namespace }}
+spec:
+  rateLimit:
+    average: {{ $middlewareData.average }}
+    burst: {{ $middlewareData.burst }}
+{{ end }}
diff --git a/core/traefik/10.0.57/templates/middlewares/redirectScheme.yaml b/core/traefik/10.0.57/templates/middlewares/redirectScheme.yaml
new file mode 100644
index 00000000000..f2413f84e19
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/redirectScheme.yaml
@@ -0,0 +1,19 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+{{ range $index, $middlewareData := .Values.middlewares.redirectScheme }}
+
+---
+# Declaring the user list
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ $middlewareData.name }}
+  namespace: {{ $namespace }}
+spec:
+  redirectScheme:
+    scheme: {{ $middlewareData.scheme }}
+    permanent: {{ $middlewareData.permanent }}
+{{ end }}
diff --git a/core/traefik/10.0.57/templates/middlewares/redirectregex.yaml b/core/traefik/10.0.57/templates/middlewares/redirectregex.yaml
new file mode 100644
index 00000000000..46e3e724dd6
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/redirectregex.yaml
@@ -0,0 +1,20 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+{{ range $index, $middlewareData := .Values.middlewares.redirectRegex }}
+
+---
+# Declaring the user list
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: {{ $middlewareData.name }}
+  namespace: {{ $namespace }}
+spec:
+  redirectRegex:
+    regex: {{ $middlewareData.regex | quote }}
+    replacement: {{ $middlewareData.replacement | quote }}
+    permanent: {{ $middlewareData.permanent }}
+{{ end }}
diff --git a/core/traefik/10.0.57/templates/middlewares/tc-chains.yaml b/core/traefik/10.0.57/templates/middlewares/tc-chains.yaml
new file mode 100644
index 00000000000..409766daa89
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/tc-chains.yaml
@@ -0,0 +1,29 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: tc-opencors-chain
+  namespace: {{ $namespace }}
+spec:
+  chain:
+    middlewares:
+    - name: basic-ratelimit
+    - name: tc-opencors-headers
+    - name: compress
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: tc-closedcors-chain
+  namespace: {{ $namespace }}
+spec:
+  chain:
+    middlewares:
+    - name: basic-ratelimit
+    - name: tc-closedcors-headers
+    - name: compress
diff --git a/core/traefik/10.0.57/templates/middlewares/tc-headers.yaml b/core/traefik/10.0.57/templates/middlewares/tc-headers.yaml
new file mode 100644
index 00000000000..330fbe4467a
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/tc-headers.yaml
@@ -0,0 +1,64 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: tc-opencors-headers
+  namespace: {{ $namespace }}
+spec:
+  headers:
+    accessControlAllowHeaders:
+    - '*'
+    accessControlAllowMethods:
+    - GET
+    - OPTIONS
+    - HEAD
+    - PUT
+    - POST
+    accessControlAllowOriginList:
+    - '*'
+    accessControlMaxAge: 100
+    browserXssFilter: true
+    contentTypeNosniff: true
+    customRequestHeaders:
+      X-Forwarded-Proto: https
+    customResponseHeaders:
+      X-Robots-Tag: none
+      server: ""
+    forceSTSHeader: true
+    referrerPolicy: same-origin
+    sslForceHost: true
+    sslRedirect: true
+    stsSeconds: 63072000
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: tc-closedcors-headers
+  namespace: {{ $namespace }}
+spec:
+  headers:
+    accessControlAllowMethods:
+      - GET
+      - OPTIONS
+      - HEAD
+      - PUT
+    accessControlMaxAge: 100
+    sslRedirect: true
+    stsSeconds: 63072000
+    # stsIncludeSubdomains: false
+    # stsPreload: false
+    forceSTSHeader: true
+    contentTypeNosniff: true
+    browserXssFilter: true
+    sslForceHost: true
+    referrerPolicy: same-origin
+    customRequestHeaders:
+      X-Forwarded-Proto: "https"
+    customResponseHeaders:
+      X-Robots-Tag: 'none'
+      server: ''
diff --git a/core/traefik/10.0.57/templates/middlewares/tc-nextcloud.yaml b/core/traefik/10.0.57/templates/middlewares/tc-nextcloud.yaml
new file mode 100644
index 00000000000..6a3019d56c5
--- /dev/null
+++ b/core/traefik/10.0.57/templates/middlewares/tc-nextcloud.yaml
@@ -0,0 +1,25 @@
+{{- $values := .Values }}
+{{- $namespace := ( printf "ix-%s" .Release.Name ) }}
+{{- if or ( not .Values.ingressClass.enabled ) ( and ( .Values.ingressClass.enabled ) ( .Values.ingressClass.isDefaultClass ) ) }}
+{{- $namespace = "default" }}
+{{- end }}
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: tc-nextcloud-redirectregex-dav
+  namespace: {{ $namespace }}
+spec:
+  redirectRegex:
+    regex: "https://(.*)/.well-known/(card|cal)dav"
+    replacement: "https://${1}/remote.php/dav/"
+---
+apiVersion: traefik.containo.us/v1alpha1
+kind: Middleware
+metadata:
+  name: tc-nextcloud-chain
+  namespace: {{ $namespace }}
+spec:
+  chain:
+    middlewares:
+    - name: tc-nextcloud-redirectregex-dav
diff --git a/core/traefik/10.0.57/values.yaml b/core/traefik/10.0.57/values.yaml
new file mode 100644
index 00000000000..e69de29bb2d