From 690ac62f19c35ed77490df0b54de63a48921df2c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tr=E1=BA=A7n=20Quang=20=C4=90=C3=A3ng?=
 <tranquangdang21@gmail.com>
Date: Tue, 12 May 2026 14:11:57 +0000
Subject: [PATCH 1/7] Port security & bug fixes from 9router (CWE-1385,
 dropdown dark theme, DATA_DIR EACCES, Fal.ai endpoint, developer role)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- web/src/components/page.tsx: scope OAuth callback postMessage to the
  existing expectedOrigins allowlist instead of '*' (CWE-1385, 9router #998).
  The wildcard origin leaked the live OAuth code/state to any page that
  could open the popup against the well-known redirect_uri.

- web/src/shared/components/styles/global.css: add explicit color-scheme
  rules for <select> in dark mode so option text isn't rendered dark-on-dark
  on Chrome/Firefox (9router #997).

- src/db/mod.rs: when DATA_DIR is set but not writable, fall back to the
  default ~/.openproxy data dir instead of crashing on startup. Other I/O
  errors (read-only filesystem, disk full, etc.) still propagate (9router
  #1005).

- web/src/shared/constants/providers.ts: Fal.ai key test now hits
  https://api.fal.ai/v1/models?limit=1 (stable GET) instead of POSTing to
  a model-specific queue URL that was unreliable for validation (9router 0.4.29).

- src/core/executor/api_key.rs: normalize role: 'developer' -> 'system'
  in transform_request so Deepseek / Groq / Mistral / Perplexity / Together /
  Fireworks / Cerebras / xAI / NVIDIA / etc. don't 400 on the OpenAI
  Responses-style 'developer' role (9router #1011 / #773). Includes 4 unit
  tests.

The 9router CWE-295 DNS-bypass-fetch fix (#998 part 2) doesn't apply here —
the Rust stack uses reqwest with default TLS verification everywhere; no
'dangerous_accept_invalid_certs'/'rejectUnauthorized: false' codepath
exists. Similarly the 9router PORT-env model-test fix (#1014) doesn't
apply — openproxy's internal_base_url already reads $PORT.

Refs: decolua/9router commits 52c38cf, c7c1074, a48fa4e, 80a2bfc, b1f9...
---
 src/core/executor/api_key.rs                | 75 ++++++++++++++++++++-
 src/db/mod.rs                               | 32 +++++++--
 web/src/components/page.tsx                 | 22 ++++--
 web/src/shared/components/styles/global.css | 17 +++++
 web/src/shared/constants/providers.ts       |  2 +-
 5 files changed, 135 insertions(+), 13 deletions(-)

diff --git a/src/core/executor/api_key.rs b/src/core/executor/api_key.rs
index 7de4f335..fc9667c7 100644
--- a/src/core/executor/api_key.rs
+++ b/src/core/executor/api_key.rs
@@ -216,7 +216,28 @@ impl ApiKeyExecutor {
     }
 
     fn transform_request(&self, body: &Value) -> Value {
-        body.clone()
+        let mut transformed = body.clone();
+        normalize_developer_role(&mut transformed);
+        transformed
+    }
+}
+
+/// Many OpenAI-format providers (Deepseek, Groq, Mistral, Perplexity, Together,
+/// Fireworks, Cerebras, xAI, NVIDIA, …) reject `role: "developer"` with a 400
+/// — they only accept `system`, `user`, `assistant`, `tool`. OpenAI itself uses
+/// `developer` for its newer Responses API. Rewrite at the dispatch boundary so
+/// the upstream sees the role it understands.
+fn normalize_developer_role(body: &mut Value) {
+    let Some(messages) = body.get_mut("messages").and_then(Value::as_array_mut) else {
+        return;
+    };
+    for message in messages {
+        let Some(role) = message.get_mut("role") else {
+            continue;
+        };
+        if role.as_str() == Some("developer") {
+            *role = Value::String("system".to_string());
+        }
     }
 }
 
@@ -349,3 +370,55 @@ pub fn get_api_key_provider_config(provider: &str) -> Option<(&'static str, &'st
 pub fn is_api_key_provider(provider: &str) -> bool {
     API_KEY_PROVIDERS.contains_key(provider)
 }
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+    use serde_json::json;
+
+    #[test]
+    fn normalize_developer_role_rewrites_developer_to_system() {
+        let mut body = json!({
+            "model": "deepseek-chat",
+            "messages": [
+                { "role": "developer", "content": "be terse" },
+                { "role": "user", "content": "hi" },
+            ]
+        });
+        normalize_developer_role(&mut body);
+        assert_eq!(body["messages"][0]["role"], "system");
+        assert_eq!(body["messages"][1]["role"], "user");
+    }
+
+    #[test]
+    fn normalize_developer_role_leaves_other_roles_alone() {
+        let mut body = json!({
+            "messages": [
+                { "role": "system", "content": "you are helpful" },
+                { "role": "user", "content": "hello" },
+                { "role": "assistant", "content": "hi" },
+                { "role": "tool", "content": "{}" },
+            ]
+        });
+        let original = body.clone();
+        normalize_developer_role(&mut body);
+        assert_eq!(body, original);
+    }
+
+    #[test]
+    fn normalize_developer_role_handles_missing_messages_field() {
+        let mut body = json!({ "model": "x" });
+        normalize_developer_role(&mut body);
+        assert_eq!(body, json!({ "model": "x" }));
+    }
+
+    #[test]
+    fn normalize_developer_role_handles_messages_without_role_field() {
+        let mut body = json!({
+            "messages": [{ "content": "no role" }]
+        });
+        let original = body.clone();
+        normalize_developer_role(&mut body);
+        assert_eq!(body, original);
+    }
+}
diff --git a/src/db/mod.rs b/src/db/mod.rs
index 3fc3b2d4..d9dc9b82 100644
--- a/src/db/mod.rs
+++ b/src/db/mod.rs
@@ -29,11 +29,25 @@ pub struct Db {
 
 impl Db {
     pub async fn load() -> anyhow::Result<Self> {
-        let data_dir = std::env::var_os("DATA_DIR")
-            .map(PathBuf::from)
-            .unwrap_or_else(default_data_dir);
-
-        Self::load_from(&data_dir).await
+        let configured = std::env::var_os("DATA_DIR").map(PathBuf::from);
+        let default = default_data_dir();
+
+        match &configured {
+            Some(dir) => match Self::load_from(dir).await {
+                Ok(db) => Ok(db),
+                Err(err) if is_permission_denied(&err) && *dir != default => {
+                    tracing::warn!(
+                        target: "openproxy::db",
+                        configured = %dir.display(),
+                        fallback = %default.display(),
+                        "DATA_DIR not writable (permission denied); falling back to default"
+                    );
+                    Self::load_from(&default).await
+                }
+                Err(err) => Err(err),
+            },
+            None => Self::load_from(&default).await,
+        }
     }
 
     pub async fn load_from(data_dir: impl AsRef<Path>) -> anyhow::Result<Self> {
@@ -157,6 +171,14 @@ fn default_data_dir() -> PathBuf {
     }
 }
 
+fn is_permission_denied(err: &anyhow::Error) -> bool {
+    err.chain().any(|cause| {
+        cause
+            .downcast_ref::<std::io::Error>()
+            .is_some_and(|io| io.kind() == std::io::ErrorKind::PermissionDenied)
+    })
+}
+
 async fn load_or_init_app_db(path: &Path) -> anyhow::Result<AppDb> {
     if !fs::try_exists(path).await? {
         let value = AppDb::default();
diff --git a/web/src/components/page.tsx b/web/src/components/page.tsx
index ae3dea3c..d9b3a880 100644
--- a/web/src/components/page.tsx
+++ b/web/src/components/page.tsx
@@ -43,19 +43,29 @@ function CallbackContent() {
 
     let relayed = false;
 
-    // Check if this callback is from expected origin/port
+    // Trusted origins that may receive this callback. The OAuth code/state
+    // must only be relayed to the dashboard window we expect to be the opener
+    // (same origin) or the Codex helper that listens on a fixed loopback port.
+    // Any other origin is treated as hostile (drive-by attacker that opened
+    // the popup against the well-known redirect_uri to phish the code).
     const expectedOrigins = [
       window.location.origin, // Same origin (for most providers)
       "http://localhost:1455", // Codex specific port
     ];
 
     // Method 1: postMessage to opener (popup mode)
+    // Send once per expected origin. The browser delivers the message only
+    // when the opener's origin matches the targetOrigin we pass — using "*"
+    // here would leak the code/state to any opener (e.g. an attacker page
+    // that opened this URL in a popup), so iterate over the allowlist.
     if (window.opener) {
-      try {
-        window.opener.postMessage({ type: "oauth_callback", data: callbackData }, "*");
-        relayed = true;
-      } catch (e) {
-        console.log("postMessage failed:", e);
+      for (const origin of expectedOrigins) {
+        try {
+          window.opener.postMessage({ type: "oauth_callback", data: callbackData }, origin);
+          relayed = true;
+        } catch (e) {
+          console.log("postMessage failed:", e);
+        }
       }
     }
 
diff --git a/web/src/shared/components/styles/global.css b/web/src/shared/components/styles/global.css
index 1d8fb8b7..9687e031 100644
--- a/web/src/shared/components/styles/global.css
+++ b/web/src/shared/components/styles/global.css
@@ -222,6 +222,23 @@
   color-scheme: dark;
 }
 
+/* ============================================================
+   Fix native select dropdowns in dark mode (otherwise Chrome
+   renders dark-on-dark option text, see 9router #997).
+   ============================================================ */
+select {
+  color-scheme: light;
+}
+
+.dark select {
+  color-scheme: dark;
+}
+
+.dark select option {
+  background-color: var(--color-surface);
+  color: var(--color-text-main);
+}
+
 @theme inline {
   /* MiniMax brand accents */
   --color-brand-coral: var(--color-brand-coral);
diff --git a/web/src/shared/constants/providers.ts b/web/src/shared/constants/providers.ts
index 6204654f..cba6a756 100644
--- a/web/src/shared/constants/providers.ts
+++ b/web/src/shared/constants/providers.ts
@@ -118,7 +118,7 @@ export const APIKEY_PROVIDERS: Record<string, Provider> = {
   searchapi: { id: "searchapi", alias: "searchapi", name: "SearchAPI", icon: "search", color: "#0EA5A4", textIcon: "SA", website: "https://www.searchapi.io", notice: { apiKeyUrl: "https://www.searchapi.io/dashboard" }, serviceKinds: ["webSearch"], searchConfig: { baseUrl: "https://www.searchapi.io/api/v1/search", method: "GET", authType: "apikey", authHeader: "api_key", costPerQuery: 0.004, freeMonthlyQuota: 100, searchTypes: ["web", "news"], defaultMaxResults: 5, maxMaxResults: 100, timeoutMs: 10000, cacheTTLMs: 300000 } },
   youcom: { id: "youcom", alias: "youcom", name: "You.com Search", icon: "search", color: "#7C3AED", textIcon: "YC", website: "https://you.com", notice: { apiKeyUrl: "https://api.you.com" }, serviceKinds: ["webSearch"], searchConfig: { baseUrl: "https://ydc-index.io/v1/search", method: "GET", authType: "apikey", authHeader: "x-api-key", costPerQuery: 0.005, freeMonthlyQuota: 0, searchTypes: ["web", "news"], defaultMaxResults: 5, maxMaxResults: 100, timeoutMs: 10000, cacheTTLMs: 300000 } },
   firecrawl: { id: "firecrawl", alias: "firecrawl", name: "Firecrawl", icon: "local_fire_department", color: "#F59E0B", textIcon: "FC", website: "https://firecrawl.dev", notice: { apiKeyUrl: "https://www.firecrawl.dev/app/api-keys" }, serviceKinds: ["webFetch"], fetchConfig: { baseUrl: "https://api.firecrawl.dev/v1/scrape", method: "POST", authType: "apikey", authHeader: "bearer", costPerQuery: 0.002, freeMonthlyQuota: 500, formats: ["markdown", "html", "text"], maxCharacters: 200000, timeoutMs: 30000 } },
-  "fal-ai": { id: "fal-ai", alias: "fal", name: "Fal.ai", icon: "image", color: "#2563EB", textIcon: "FL", website: "https://fal.ai", notice: { apiKeyUrl: "https://fal.ai/dashboard/keys" }, serviceKinds: ["image"], imageConfig: { baseUrl: "https://queue.fal.run/fal-ai/flux/schnell", method: "POST", authType: "apikey", authHeader: "key" } },
+  "fal-ai": { id: "fal-ai", alias: "fal", name: "Fal.ai", icon: "image", color: "#2563EB", textIcon: "FL", website: "https://fal.ai", notice: { apiKeyUrl: "https://fal.ai/dashboard/keys" }, serviceKinds: ["image"], imageConfig: { baseUrl: "https://api.fal.ai/v1/models?limit=1", method: "GET", authType: "apikey", authHeader: "key" } },
   "stability-ai": { id: "stability-ai", alias: "stability", name: "Stability AI", icon: "image", color: "#8B5CF6", textIcon: "SA", website: "https://stability.ai", notice: { apiKeyUrl: "https://platform.stability.ai/account/keys" }, serviceKinds: ["image"], imageConfig: { baseUrl: "https://api.stability.ai/v1/user/account", method: "GET", authType: "apikey", authHeader: "bearer" } },
   "black-forest-labs": { id: "black-forest-labs", alias: "bfl", name: "Black Forest Labs", icon: "image", color: "#111827", textIcon: "BF", website: "https://blackforestlabs.ai", notice: { apiKeyUrl: "https://api.bfl.ai" }, serviceKinds: ["image"], imageConfig: { baseUrl: "https://api.bfl.ai/v1/get_result?id=ping", method: "GET", authType: "apikey", authHeader: "x-key" } },
   recraft: { id: "recraft", alias: "recraft", name: "Recraft", icon: "image", color: "#EC4899", textIcon: "RC", website: "https://recraft.ai", notice: { apiKeyUrl: "https://www.recraft.ai/profile/api" }, serviceKinds: ["image"], imageConfig: { baseUrl: "https://external.api.recraft.ai/v1/users/me", method: "GET", authType: "apikey", authHeader: "bearer" } },

From fc3a0c305141d92cf46d6a7232779ddaf16d5313 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tr=E1=BA=A7n=20Quang=20=C4=90=C3=A3ng?=
 <tranquangdang21@gmail.com>
Date: Wed, 13 May 2026 11:12:36 +0000
Subject: [PATCH 2/7] Add Cline + Kilo Code tool cards & settings handlers

Ported from 9router (ClineToolCard.js, KiloToolCard.js, cline-settings/route.js,
kilo-settings/route.js). Both tools previously rendered only a 'guide' card with
copy-paste steps; they now have a full apply/reset flow against per-tool
settings files.

Backend:
- src/server/api/cli_tools/cline_settings.rs
  GET/POST/DELETE /api/cli-tools/cline-settings. Detects Cline CLI on PATH,
  reads/writes ~/.cline/data/{globalState.json,secrets.json}. Normalizes
  baseUrl by stripping /v1 (Cline expects base without /v1).
- src/server/api/cli_tools/kilo_settings.rs
  GET/POST/DELETE /api/cli-tools/kilo-settings. Detects Kilo Code CLI on PATH,
  reads/writes ~/.local/share/kilo/auth.json with the openai-compatible
  provider block. Best-effort sync to ~/.config/Code/User/settings.json
  (kilocode.customProvider/defaultModel). Normalizes baseUrl by adding /v1.
- src/server/api/cli_tools.rs
  Registers cline_settings and kilo_settings modules and merges their routes.

Frontend:
- web/src/components/cli-tools/{Cline,Kilo}ToolCard.tsx
  Apply/Reset flow modeled on OpenClawToolCard with EndpointPresetControl,
  ModelSelectModal, ManualConfigModal.
- web/src/components/cli-tools/index.{ts,tsx}
  Export new cards.
- web/src/components/CLIToolsPageClient.tsx
  Route cline/kilo to their dedicated cards and seed initialStatus from
  the new endpoints.
- web/src/shared/constants/cliTools.ts
  Flip cline + kilo configType from 'guide' to 'custom'.

cargo fmt clean, cargo test --lib --tests passes (785+ tests), web build clean.
---
 src/server/api/cli_tools.rs                   |   4 +
 src/server/api/cli_tools/cline_settings.rs    | 329 ++++++++++++
 src/server/api/cli_tools/kilo_settings.rs     | 308 +++++++++++
 web/src/components/CLIToolsPageClient.tsx     |   8 +-
 .../components/cli-tools/ClineToolCard.tsx    | 477 ++++++++++++++++++
 web/src/components/cli-tools/KiloToolCard.tsx | 467 +++++++++++++++++
 web/src/components/cli-tools/index.ts         |   2 +
 web/src/components/cli-tools/index.tsx        |   2 +
 web/src/shared/constants/cliTools.ts          |   4 +-
 9 files changed, 1598 insertions(+), 3 deletions(-)
 create mode 100644 src/server/api/cli_tools/cline_settings.rs
 create mode 100644 src/server/api/cli_tools/kilo_settings.rs
 create mode 100644 web/src/components/cli-tools/ClineToolCard.tsx
 create mode 100644 web/src/components/cli-tools/KiloToolCard.tsx

diff --git a/src/server/api/cli_tools.rs b/src/server/api/cli_tools.rs
index 5a1ccaed..92c7983f 100644
--- a/src/server/api/cli_tools.rs
+++ b/src/server/api/cli_tools.rs
@@ -1,6 +1,8 @@
 mod claude_settings;
+mod cline_settings;
 mod cowork_settings;
 mod hermes_settings;
+mod kilo_settings;
 
 use std::collections::BTreeMap;
 use std::env;
@@ -2380,8 +2382,10 @@ async fn delete_mitm_alias(
 pub fn routes() -> Router<AppState> {
     Router::new()
         .merge(claude_settings::routes())
+        .merge(cline_settings::routes())
         .merge(cowork_settings::routes())
         .merge(hermes_settings::routes())
+        .merge(kilo_settings::routes())
         .route("/api/cli-tools", get(list_tools))
         .route("/api/cli-tools/execute", post(execute_command))
         .route("/api/cli-tools/run/{tool_name}", post(run_tool))
diff --git a/src/server/api/cli_tools/cline_settings.rs b/src/server/api/cli_tools/cline_settings.rs
new file mode 100644
index 00000000..4c8b5dfa
--- /dev/null
+++ b/src/server/api/cli_tools/cline_settings.rs
@@ -0,0 +1,329 @@
+use std::env;
+use std::path::{Path, PathBuf};
+
+use anyhow::Result as AnyhowResult;
+use axum::{
+    extract::State,
+    http::{HeaderMap, StatusCode},
+    response::{IntoResponse, Response},
+    routing::get,
+    Json, Router,
+};
+use serde::Deserialize;
+use serde_json::{json, Map, Value};
+use tokio::{fs, process::Command};
+
+use crate::server::state::AppState;
+
+pub fn routes() -> Router<AppState> {
+    Router::new().route(
+        "/api/cli-tools/cline-settings",
+        get(get_cline_settings)
+            .post(save_cline_settings)
+            .delete(delete_cline_settings),
+    )
+}
+
+#[derive(Debug, Deserialize)]
+#[serde(rename_all = "camelCase")]
+struct SaveClineSettingsRequest {
+    base_url: String,
+    api_key: String,
+    model: String,
+}
+
+async fn get_cline_settings(State(state): State<AppState>, headers: HeaderMap) -> Response {
+    if let Err(response) = super::super::require_dashboard_or_management_api_key(&headers, &state) {
+        return response;
+    }
+
+    let installed = check_installed().await;
+    if !installed {
+        return Json(json!({
+            "installed": false,
+            "settings": Value::Null,
+            "message": "Cline CLI is not installed",
+        }))
+        .into_response();
+    }
+
+    match read_global_state().await {
+        Ok(global_state) => {
+            let has_openproxy = has_openproxy_config(&global_state);
+            let settings = json!({
+                "actModeApiProvider": global_state.as_ref().and_then(|s| s.get("actModeApiProvider")).cloned().unwrap_or(Value::Null),
+                "planModeApiProvider": global_state.as_ref().and_then(|s| s.get("planModeApiProvider")).cloned().unwrap_or(Value::Null),
+                "openAiBaseUrl": global_state.as_ref().and_then(|s| s.get("openAiBaseUrl")).cloned().unwrap_or(Value::Null),
+                "openAiModelId": global_state.as_ref().and_then(|s| s.get("openAiModelId")).cloned().unwrap_or(Value::Null),
+            });
+            Json(json!({
+                "installed": true,
+                "settings": settings,
+                "hasOpenProxy": has_openproxy,
+                "globalStatePath": global_state_path().to_string_lossy().to_string(),
+            }))
+            .into_response()
+        }
+        Err(error) => {
+            tracing::warn!(?error, "failed to read cline settings");
+            (
+                StatusCode::INTERNAL_SERVER_ERROR,
+                Json(json!({ "error": "Failed to check cline settings" })),
+            )
+                .into_response()
+        }
+    }
+}
+
+async fn save_cline_settings(
+    State(state): State<AppState>,
+    headers: HeaderMap,
+    Json(body): Json<SaveClineSettingsRequest>,
+) -> Response {
+    if let Err(response) = super::super::require_dashboard_or_management_api_key(&headers, &state) {
+        return response;
+    }
+
+    if body.base_url.trim().is_empty()
+        || body.api_key.trim().is_empty()
+        || body.model.trim().is_empty()
+    {
+        return (
+            StatusCode::BAD_REQUEST,
+            Json(json!({ "error": "baseUrl, apiKey and model are required" })),
+        )
+            .into_response();
+    }
+
+    match write_cline_settings(&body).await {
+        Ok(()) => Json(json!({
+            "success": true,
+            "message": "Cline settings applied successfully!",
+            "globalStatePath": global_state_path().to_string_lossy().to_string(),
+        }))
+        .into_response(),
+        Err(error) => {
+            tracing::warn!(?error, "failed to write cline settings");
+            (
+                StatusCode::INTERNAL_SERVER_ERROR,
+                Json(json!({ "error": "Failed to update cline settings" })),
+            )
+                .into_response()
+        }
+    }
+}
+
+async fn delete_cline_settings(State(state): State<AppState>, headers: HeaderMap) -> Response {
+    if let Err(response) = super::super::require_dashboard_or_management_api_key(&headers, &state) {
+        return response;
+    }
+
+    match reset_cline_settings().await {
+        Ok(payload) => Json(payload).into_response(),
+        Err(error) => {
+            tracing::warn!(?error, "failed to reset cline settings");
+            (
+                StatusCode::INTERNAL_SERVER_ERROR,
+                Json(json!({ "error": "Failed to reset cline settings" })),
+            )
+                .into_response()
+        }
+    }
+}
+
+async fn check_installed() -> bool {
+    if command_exists("cline", true).await {
+        return true;
+    }
+    fs::metadata(global_state_path()).await.is_ok()
+}
+
+async fn read_global_state() -> AnyhowResult<Option<Value>> {
+    read_json_optional(&global_state_path()).await
+}
+
+fn has_openproxy_config(global_state: &Option<Value>) -> bool {
+    let Some(state) = global_state else {
+        return false;
+    };
+    let is_openai = matches!(
+        state.get("actModeApiProvider").and_then(Value::as_str),
+        Some("openai")
+    ) || matches!(
+        state.get("planModeApiProvider").and_then(Value::as_str),
+        Some("openai")
+    );
+    if !is_openai {
+        return false;
+    }
+    let base_url = state
+        .get("openAiBaseUrl")
+        .and_then(Value::as_str)
+        .unwrap_or("");
+    base_url.contains("localhost")
+        || base_url.contains("127.0.0.1")
+        || base_url.contains("openproxy")
+}
+
+async fn write_cline_settings(body: &SaveClineSettingsRequest) -> AnyhowResult<()> {
+    fs::create_dir_all(&data_dir()).await?;
+
+    // Cline expects base WITHOUT /v1
+    let normalized_base_url = body
+        .base_url
+        .strip_suffix("/v1")
+        .map(str::to_string)
+        .unwrap_or_else(|| body.base_url.clone());
+
+    let mut global_state = read_json_optional(&global_state_path())
+        .await?
+        .and_then(|value| match value {
+            Value::Object(fields) => Some(fields),
+            _ => None,
+        })
+        .unwrap_or_default();
+
+    global_state.insert(
+        "actModeApiProvider".to_string(),
+        Value::String("openai".to_string()),
+    );
+    global_state.insert(
+        "planModeApiProvider".to_string(),
+        Value::String("openai".to_string()),
+    );
+    global_state.insert(
+        "openAiBaseUrl".to_string(),
+        Value::String(normalized_base_url),
+    );
+    global_state.insert(
+        "openAiModelId".to_string(),
+        Value::String(body.model.clone()),
+    );
+    global_state.insert(
+        "planModeOpenAiModelId".to_string(),
+        Value::String(body.model.clone()),
+    );
+
+    write_json(&global_state_path(), &Value::Object(global_state)).await?;
+
+    let mut secrets = read_json_optional(&secrets_path())
+        .await?
+        .and_then(|value| match value {
+            Value::Object(fields) => Some(fields),
+            _ => None,
+        })
+        .unwrap_or_default();
+    secrets.insert(
+        "openAiApiKey".to_string(),
+        Value::String(body.api_key.clone()),
+    );
+    write_json(&secrets_path(), &Value::Object(secrets)).await
+}
+
+async fn reset_cline_settings() -> AnyhowResult<Value> {
+    let global_state = read_json_optional(&global_state_path()).await?;
+    let Some(Value::Object(mut state)) = global_state else {
+        return Ok(json!({
+            "success": true,
+            "message": "No settings file to reset",
+        }));
+    };
+
+    if matches!(
+        state.get("actModeApiProvider").and_then(Value::as_str),
+        Some("openai")
+    ) {
+        state.remove("openAiBaseUrl");
+        state.remove("openAiModelId");
+        state.remove("planModeOpenAiModelId");
+        state.insert(
+            "actModeApiProvider".to_string(),
+            Value::String("cline".to_string()),
+        );
+        state.insert(
+            "planModeApiProvider".to_string(),
+            Value::String("cline".to_string()),
+        );
+    }
+    write_json(&global_state_path(), &Value::Object(state)).await?;
+
+    let mut secrets: Map<String, Value> = read_json_optional(&secrets_path())
+        .await?
+        .and_then(|value| match value {
+            Value::Object(fields) => Some(fields),
+            _ => None,
+        })
+        .unwrap_or_default();
+    secrets.remove("openAiApiKey");
+    write_json(&secrets_path(), &Value::Object(secrets)).await?;
+
+    Ok(json!({
+        "success": true,
+        "message": "OpenProxy settings removed from Cline",
+    }))
+}
+
+async fn command_exists(program: &str, inject_windows_npm_path: bool) -> bool {
+    let finder = if cfg!(windows) { "where" } else { "which" };
+    let mut command = Command::new(finder);
+    command.arg(program);
+
+    if cfg!(windows) && inject_windows_npm_path {
+        if let Some(path) = windows_npm_augmented_path() {
+            command.env("PATH", path);
+        }
+    }
+
+    command
+        .status()
+        .await
+        .map(|status| status.success())
+        .unwrap_or(false)
+}
+
+fn windows_npm_augmented_path() -> Option<String> {
+    let appdata = env::var_os("APPDATA")?;
+    let current_path = env::var_os("PATH").unwrap_or_default();
+    let npm_dir = PathBuf::from(appdata).join("npm");
+    Some(format!(
+        "{};{}",
+        npm_dir.to_string_lossy(),
+        PathBuf::from(current_path).to_string_lossy()
+    ))
+}
+
+async fn read_json_optional(path: &Path) -> AnyhowResult<Option<Value>> {
+    let content = match fs::read_to_string(path).await {
+        Ok(content) => content,
+        Err(error) if error.kind() == std::io::ErrorKind::NotFound => return Ok(None),
+        Err(error) => return Err(error.into()),
+    };
+    Ok(Some(serde_json::from_str(&content)?))
+}
+
+async fn write_json(path: &Path, value: &Value) -> AnyhowResult<()> {
+    if let Some(parent) = path.parent() {
+        fs::create_dir_all(parent).await?;
+    }
+    fs::write(path, serde_json::to_vec_pretty(value)?).await?;
+    Ok(())
+}
+
+fn data_dir() -> PathBuf {
+    home_dir().join(".cline").join("data")
+}
+
+fn global_state_path() -> PathBuf {
+    data_dir().join("globalState.json")
+}
+
+fn secrets_path() -> PathBuf {
+    data_dir().join("secrets.json")
+}
+
+fn home_dir() -> PathBuf {
+    env::var_os("HOME")
+        .map(PathBuf::from)
+        .or_else(|| env::var_os("USERPROFILE").map(PathBuf::from))
+        .unwrap_or_else(|| PathBuf::from("/"))
+}
diff --git a/src/server/api/cli_tools/kilo_settings.rs b/src/server/api/cli_tools/kilo_settings.rs
new file mode 100644
index 00000000..d3095633
--- /dev/null
+++ b/src/server/api/cli_tools/kilo_settings.rs
@@ -0,0 +1,308 @@
+use std::env;
+use std::path::{Path, PathBuf};
+
+use anyhow::Result as AnyhowResult;
+use axum::{
+    extract::State,
+    http::{HeaderMap, StatusCode},
+    response::{IntoResponse, Response},
+    routing::get,
+    Json, Router,
+};
+use serde::Deserialize;
+use serde_json::{json, Value};
+use tokio::{fs, process::Command};
+
+use crate::server::state::AppState;
+
+pub fn routes() -> Router<AppState> {
+    Router::new().route(
+        "/api/cli-tools/kilo-settings",
+        get(get_kilo_settings)
+            .post(save_kilo_settings)
+            .delete(delete_kilo_settings),
+    )
+}
+
+#[derive(Debug, Deserialize)]
+#[serde(rename_all = "camelCase")]
+struct SaveKiloSettingsRequest {
+    base_url: String,
+    api_key: String,
+    model: String,
+}
+
+async fn get_kilo_settings(State(state): State<AppState>, headers: HeaderMap) -> Response {
+    if let Err(response) = super::super::require_dashboard_or_management_api_key(&headers, &state) {
+        return response;
+    }
+
+    let installed = check_installed().await;
+    if !installed {
+        return Json(json!({
+            "installed": false,
+            "settings": Value::Null,
+            "message": "Kilo Code CLI is not installed",
+        }))
+        .into_response();
+    }
+
+    match read_auth().await {
+        Ok(auth) => {
+            let has_openproxy = has_openproxy_config(&auth);
+            let auth_keys = auth
+                .as_ref()
+                .and_then(|value| value.as_object())
+                .map(|object| object.keys().cloned().collect::<Vec<_>>())
+                .unwrap_or_default();
+            Json(json!({
+                "installed": true,
+                "settings": { "auth": auth_keys },
+                "hasOpenProxy": has_openproxy,
+                "authPath": auth_path().to_string_lossy().to_string(),
+            }))
+            .into_response()
+        }
+        Err(error) => {
+            tracing::warn!(?error, "failed to read kilo settings");
+            (
+                StatusCode::INTERNAL_SERVER_ERROR,
+                Json(json!({ "error": "Failed to check kilo settings" })),
+            )
+                .into_response()
+        }
+    }
+}
+
+async fn save_kilo_settings(
+    State(state): State<AppState>,
+    headers: HeaderMap,
+    Json(body): Json<SaveKiloSettingsRequest>,
+) -> Response {
+    if let Err(response) = super::super::require_dashboard_or_management_api_key(&headers, &state) {
+        return response;
+    }
+
+    if body.base_url.trim().is_empty()
+        || body.api_key.trim().is_empty()
+        || body.model.trim().is_empty()
+    {
+        return (
+            StatusCode::BAD_REQUEST,
+            Json(json!({ "error": "baseUrl, apiKey and model are required" })),
+        )
+            .into_response();
+    }
+
+    match write_kilo_settings(&body).await {
+        Ok(()) => Json(json!({
+            "success": true,
+            "message": "Kilo Code settings applied successfully!",
+            "authPath": auth_path().to_string_lossy().to_string(),
+        }))
+        .into_response(),
+        Err(error) => {
+            tracing::warn!(?error, "failed to write kilo settings");
+            (
+                StatusCode::INTERNAL_SERVER_ERROR,
+                Json(json!({ "error": "Failed to update kilo settings" })),
+            )
+                .into_response()
+        }
+    }
+}
+
+async fn delete_kilo_settings(State(state): State<AppState>, headers: HeaderMap) -> Response {
+    if let Err(response) = super::super::require_dashboard_or_management_api_key(&headers, &state) {
+        return response;
+    }
+
+    match reset_kilo_settings().await {
+        Ok(payload) => Json(payload).into_response(),
+        Err(error) => {
+            tracing::warn!(?error, "failed to reset kilo settings");
+            (
+                StatusCode::INTERNAL_SERVER_ERROR,
+                Json(json!({ "error": "Failed to reset kilo settings" })),
+            )
+                .into_response()
+        }
+    }
+}
+
+async fn check_installed() -> bool {
+    if command_exists("kilo", true).await {
+        return true;
+    }
+    fs::metadata(auth_path()).await.is_ok()
+}
+
+async fn read_auth() -> AnyhowResult<Option<Value>> {
+    read_json_optional(&auth_path()).await
+}
+
+fn has_openproxy_config(auth: &Option<Value>) -> bool {
+    let Some(auth) = auth else { return false };
+    let entry = auth
+        .get("openai-compatible")
+        .or_else(|| auth.get("openproxy"))
+        .or_else(|| auth.get("9router"));
+    let Some(entry) = entry else { return false };
+    let base_url = entry
+        .get("baseUrl")
+        .or_else(|| entry.get("baseURL"))
+        .and_then(Value::as_str)
+        .unwrap_or("");
+    base_url.contains("localhost")
+        || base_url.contains("127.0.0.1")
+        || base_url.contains("openproxy")
+}
+
+async fn write_kilo_settings(body: &SaveKiloSettingsRequest) -> AnyhowResult<()> {
+    fs::create_dir_all(&data_dir()).await?;
+
+    let normalized_base_url = if body.base_url.ends_with("/v1") {
+        body.base_url.clone()
+    } else {
+        format!("{}/v1", body.base_url)
+    };
+
+    let mut auth = read_json_optional(&auth_path())
+        .await?
+        .and_then(|value| match value {
+            Value::Object(fields) => Some(fields),
+            _ => None,
+        })
+        .unwrap_or_default();
+    auth.insert(
+        "openai-compatible".to_string(),
+        json!({
+            "type": "api-key",
+            "apiKey": body.api_key,
+            "baseUrl": normalized_base_url,
+            "model": body.model,
+        }),
+    );
+    write_json(&auth_path(), &Value::Object(auth)).await?;
+
+    // Best-effort: update VS Code extension settings (ignore failures).
+    if let Some(vscode_path) = vscode_settings_path() {
+        if let Ok(Some(Value::Object(mut vscode))) = read_json_optional(&vscode_path).await {
+            vscode.insert(
+                "kilocode.customProvider".to_string(),
+                json!({
+                    "name": "OpenProxy",
+                    "baseURL": normalized_base_url,
+                    "apiKey": body.api_key,
+                }),
+            );
+            vscode.insert(
+                "kilocode.defaultModel".to_string(),
+                Value::String(body.model.clone()),
+            );
+            let _ = write_json(&vscode_path, &Value::Object(vscode)).await;
+        }
+    }
+
+    Ok(())
+}
+
+async fn reset_kilo_settings() -> AnyhowResult<Value> {
+    let auth = read_json_optional(&auth_path()).await?;
+    let Some(Value::Object(mut auth)) = auth else {
+        return Ok(json!({
+            "success": true,
+            "message": "No settings file to reset",
+        }));
+    };
+    auth.remove("openai-compatible");
+    auth.remove("openproxy");
+    auth.remove("9router");
+    write_json(&auth_path(), &Value::Object(auth)).await?;
+
+    if let Some(vscode_path) = vscode_settings_path() {
+        if let Ok(Some(Value::Object(mut vscode))) = read_json_optional(&vscode_path).await {
+            let modified = vscode.remove("kilocode.customProvider").is_some()
+                | vscode.remove("kilocode.defaultModel").is_some();
+            if modified {
+                let _ = write_json(&vscode_path, &Value::Object(vscode)).await;
+            }
+        }
+    }
+
+    Ok(json!({
+        "success": true,
+        "message": "OpenProxy settings removed from Kilo Code",
+    }))
+}
+
+async fn command_exists(program: &str, inject_windows_npm_path: bool) -> bool {
+    let finder = if cfg!(windows) { "where" } else { "which" };
+    let mut command = Command::new(finder);
+    command.arg(program);
+
+    if cfg!(windows) && inject_windows_npm_path {
+        if let Some(path) = windows_npm_augmented_path() {
+            command.env("PATH", path);
+        }
+    }
+
+    command
+        .status()
+        .await
+        .map(|status| status.success())
+        .unwrap_or(false)
+}
+
+fn windows_npm_augmented_path() -> Option<String> {
+    let appdata = env::var_os("APPDATA")?;
+    let current_path = env::var_os("PATH").unwrap_or_default();
+    let npm_dir = PathBuf::from(appdata).join("npm");
+    Some(format!(
+        "{};{}",
+        npm_dir.to_string_lossy(),
+        PathBuf::from(current_path).to_string_lossy()
+    ))
+}
+
+async fn read_json_optional(path: &Path) -> AnyhowResult<Option<Value>> {
+    let content = match fs::read_to_string(path).await {
+        Ok(content) => content,
+        Err(error) if error.kind() == std::io::ErrorKind::NotFound => return Ok(None),
+        Err(error) => return Err(error.into()),
+    };
+    Ok(Some(serde_json::from_str(&content)?))
+}
+
+async fn write_json(path: &Path, value: &Value) -> AnyhowResult<()> {
+    if let Some(parent) = path.parent() {
+        fs::create_dir_all(parent).await?;
+    }
+    fs::write(path, serde_json::to_vec_pretty(value)?).await?;
+    Ok(())
+}
+
+fn data_dir() -> PathBuf {
+    home_dir().join(".local").join("share").join("kilo")
+}
+
+fn auth_path() -> PathBuf {
+    data_dir().join("auth.json")
+}
+
+fn vscode_settings_path() -> Option<PathBuf> {
+    Some(
+        home_dir()
+            .join(".config")
+            .join("Code")
+            .join("User")
+            .join("settings.json"),
+    )
+}
+
+fn home_dir() -> PathBuf {
+    env::var_os("HOME")
+        .map(PathBuf::from)
+        .or_else(|| env::var_os("USERPROFILE").map(PathBuf::from))
+        .unwrap_or_else(|| PathBuf::from("/"))
+}
diff --git a/web/src/components/CLIToolsPageClient.tsx b/web/src/components/CLIToolsPageClient.tsx
index d896696f..07f66856 100644
--- a/web/src/components/CLIToolsPageClient.tsx
+++ b/web/src/components/CLIToolsPageClient.tsx
@@ -4,7 +4,7 @@ import { useState, useEffect, useCallback } from "react";
 import { Card, CardSkeleton } from "@/shared/components";
 import { CLI_TOOLS } from "@/shared/constants/cliTools";
 import { getModelsByProviderId, PROVIDER_ID_TO_ALIAS } from "@/shared/constants/models";
-import { ClaudeToolCard, CodexToolCard, DroidToolCard, OpenClawToolCard, HermesToolCard, DefaultToolCard, OpenCodeToolCard, CoworkToolCard, MitmLinkCard } from "./cli-tools";
+import { ClaudeToolCard, ClineToolCard, KiloToolCard, CodexToolCard, DroidToolCard, OpenClawToolCard, HermesToolCard, DefaultToolCard, OpenCodeToolCard, CoworkToolCard, MitmLinkCard } from "./cli-tools";
 import { MITM_TOOLS } from "@/shared/constants/cliTools";
 
 const CLOUD_URL: string | undefined = (import.meta.env as Record<string, string | undefined>)?.PUBLIC_CLOUD_URL;
@@ -12,6 +12,8 @@ const CLOUD_URL: string | undefined = (import.meta.env as Record<string, string
 
 const STATUS_ENDPOINTS: Record<string, string> = {
   claude: "/api/cli-tools/claude-settings",
+  cline: "/api/cli-tools/cline-settings",
+  kilo: "/api/cli-tools/kilo-settings",
   codex: "/api/cli-tools/codex-settings",
   opencode: "/api/cli-tools/opencode-settings",
   droid: "/api/cli-tools/droid-settings",
@@ -181,6 +183,10 @@ export default function CLIToolsPageClient({ machineId }: CLIToolsPageClientProp
             initialStatus={toolStatuses.claude}
           />
         );
+      case "cline":
+        return <ClineToolCard key={toolId} {...commonProps} activeProviders={getActiveProviders()} cloudEnabled={cloudEnabled} initialStatus={toolStatuses.cline} />;
+      case "kilo":
+        return <KiloToolCard key={toolId} {...commonProps} activeProviders={getActiveProviders()} cloudEnabled={cloudEnabled} initialStatus={toolStatuses.kilo} />;
       case "codex":
         return <CodexToolCard key={toolId} {...commonProps} activeProviders={getActiveProviders()} cloudEnabled={cloudEnabled} initialStatus={toolStatuses.codex} />;
       case "opencode":
diff --git a/web/src/components/cli-tools/ClineToolCard.tsx b/web/src/components/cli-tools/ClineToolCard.tsx
new file mode 100644
index 00000000..382296bf
--- /dev/null
+++ b/web/src/components/cli-tools/ClineToolCard.tsx
@@ -0,0 +1,477 @@
+"use client";
+
+import { useState, useEffect } from "react";
+import type { ChangeEvent } from "react";
+import { Card, Button, ModelSelectModal, ManualConfigModal } from "@/shared/components";
+import EndpointPresetControl from "./EndpointPresetControl";
+
+interface Tool {
+  name: string;
+  description: string;
+}
+
+interface ApiKey {
+  id: string;
+  key: string;
+}
+
+interface ClineStatus {
+  installed: boolean;
+  error?: string;
+  hasOpenProxy?: boolean;
+  settings?: {
+    actModeApiProvider?: string;
+    planModeApiProvider?: string;
+    openAiBaseUrl?: string;
+    openAiModelId?: string;
+  };
+  globalStatePath?: string;
+}
+
+interface Message {
+  type: "success" | "error";
+  text: string;
+}
+
+interface ClineToolCardProps {
+  tool: Tool;
+  isExpanded: boolean;
+  onToggle: () => void;
+  baseUrl: string;
+  apiKeys: ApiKey[];
+  activeProviders: string[];
+  cloudEnabled: boolean;
+  initialStatus?: ClineStatus | null;
+}
+
+export default function ClineToolCard({
+  tool,
+  isExpanded,
+  onToggle,
+  baseUrl,
+  apiKeys,
+  activeProviders,
+  cloudEnabled,
+  initialStatus,
+}: ClineToolCardProps): React.ReactNode {
+  const [status, setStatus] = useState<ClineStatus | null>(initialStatus || null);
+  const [checking, setChecking] = useState<boolean>(false);
+  const [applying, setApplying] = useState<boolean>(false);
+  const [restoring, setRestoring] = useState<boolean>(false);
+  const [message, setMessage] = useState<Message | null>(null);
+  const [selectedApiKey, setSelectedApiKey] = useState<string>("");
+  const [selectedModel, setSelectedModel] = useState<string>("");
+  const [modalOpen, setModalOpen] = useState<boolean>(false);
+  const [showManualConfigModal, setShowManualConfigModal] = useState<boolean>(false);
+  const [customBaseUrl, setCustomBaseUrl] = useState<string>("");
+
+  const normalizeLocalhost = (url: string): string => url.replace("://localhost", "://127.0.0.1");
+
+  const getLocalBaseUrl = (): string => {
+    if (typeof window !== "undefined") {
+      return normalizeLocalhost(window.location.origin);
+    }
+    return "http://127.0.0.1:4623";
+  };
+
+  // Cline expects base WITHOUT /v1, but we render WITH /v1 for consistency with
+  // other tools. The backend strips /v1 before persisting.
+  const getDisplayUrl = (): string => {
+    const url = customBaseUrl || getLocalBaseUrl();
+    return url.endsWith("/v1") ? url : `${url}/v1`;
+  };
+
+  const getEffectiveBaseUrl = (): string => getDisplayUrl();
+
+  const hasCustomSelectedApiKey =
+    selectedApiKey && !apiKeys.some((key) => key.key === selectedApiKey);
+
+  const getConfigStatus = (): "configured" | "not_configured" | "other" | null => {
+    if (!status?.installed) return null;
+    if (!status.hasOpenProxy) return "not_configured";
+    const url = status.settings?.openAiBaseUrl || "";
+    const localMatch = url.includes("localhost") || url.includes("127.0.0.1") || url.includes("0.0.0.0");
+    return localMatch ? "configured" : "other";
+  };
+
+  const configStatus = getConfigStatus();
+
+  useEffect(() => {
+    if (apiKeys?.length > 0 && !selectedApiKey) setSelectedApiKey(apiKeys[0].key);
+  }, [apiKeys, selectedApiKey]);
+
+  useEffect(() => {
+    if (initialStatus) setStatus(initialStatus);
+  }, [initialStatus]);
+
+  useEffect(() => {
+    if (isExpanded && !status) {
+      void checkStatus();
+    }
+  }, [isExpanded]);
+
+  useEffect(() => {
+    if (status?.settings?.openAiModelId) setSelectedModel(status.settings.openAiModelId);
+  }, [status]);
+
+  const checkStatus = async (): Promise<void> => {
+    setChecking(true);
+    try {
+      const res = await fetch("/api/cli-tools/cline-settings");
+      const data = await res.json();
+      setStatus(data);
+    } catch (error) {
+      setStatus({ installed: false, error: (error as Error).message });
+    } finally {
+      setChecking(false);
+    }
+  };
+
+  const handleApply = async (): Promise<void> => {
+    setApplying(true);
+    setMessage(null);
+    try {
+      const keyToUse =
+        selectedApiKey?.trim() ||
+        (apiKeys?.length > 0 ? apiKeys[0].key : null) ||
+        (!cloudEnabled ? "sk_openproxy" : null);
+
+      const res = await fetch("/api/cli-tools/cline-settings", {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+          baseUrl: getEffectiveBaseUrl(),
+          apiKey: keyToUse,
+          model: selectedModel,
+        }),
+      });
+      const data = await res.json();
+      if (res.ok) {
+        setMessage({ type: "success", text: "Settings applied successfully!" });
+        void checkStatus();
+      } else {
+        setMessage({ type: "error", text: data.error || "Failed to apply settings" });
+      }
+    } catch (error) {
+      setMessage({ type: "error", text: (error as Error).message });
+    } finally {
+      setApplying(false);
+    }
+  };
+
+  const handleReset = async (): Promise<void> => {
+    setRestoring(true);
+    setMessage(null);
+    try {
+      const res = await fetch("/api/cli-tools/cline-settings", { method: "DELETE" });
+      const data = await res.json();
+      if (res.ok) {
+        setMessage({ type: "success", text: "Settings reset successfully!" });
+        setSelectedModel("");
+        void checkStatus();
+      } else {
+        setMessage({ type: "error", text: data.error || "Failed to reset settings" });
+      }
+    } catch (error) {
+      setMessage({ type: "error", text: (error as Error).message });
+    } finally {
+      setRestoring(false);
+    }
+  };
+
+  const handleModelSelect = (model: { value: string }): void => {
+    setSelectedModel(model.value);
+    setModalOpen(false);
+  };
+
+  const getManualConfigs = (): Array<{ filename: string; content: string }> => {
+    const keyToUse =
+      selectedApiKey?.trim() ||
+      (apiKeys?.length > 0 ? apiKeys[0].key : null) ||
+      (!cloudEnabled ? "sk_openproxy" : "<API_KEY_FROM_DASHBOARD>");
+    const effectiveUrl = getEffectiveBaseUrl();
+    const baseWithoutV1 = effectiveUrl.endsWith("/v1") ? effectiveUrl.slice(0, -3) : effectiveUrl;
+    return [
+      {
+        filename: "~/.cline/data/globalState.json",
+        content: JSON.stringify(
+          {
+            actModeApiProvider: "openai",
+            planModeApiProvider: "openai",
+            openAiBaseUrl: baseWithoutV1,
+            openAiModelId: selectedModel || "provider/model-id",
+            planModeOpenAiModelId: selectedModel || "provider/model-id",
+          },
+          null,
+          2,
+        ),
+      },
+      {
+        filename: "~/.cline/data/secrets.json",
+        content: JSON.stringify({ openAiApiKey: keyToUse }, null, 2),
+      },
+    ];
+  };
+
+  return (
+    <Card padding="xs" className="overflow-hidden">
+      <div
+        className="flex items-start justify-between gap-3 hover:cursor-pointer sm:items-center"
+        onClick={onToggle}
+      >
+        <div className="flex min-w-0 items-center gap-3">
+          <div className="size-8 flex items-center justify-center shrink-0">
+            <img
+              src="/providers/cline.png"
+              alt={tool.name}
+              width={32}
+              height={32}
+              className="size-8 object-contain rounded-lg"
+              sizes="32px"
+              onError={(e: React.SyntheticEvent<HTMLImageElement>) => {
+                (e.target as HTMLImageElement).style.display = "none";
+              }}
+            />
+          </div>
+          <div className="min-w-0">
+            <div className="flex min-w-0 flex-wrap items-center gap-2">
+              <h3 className="font-medium text-sm">{tool.name}</h3>
+              {configStatus === "configured" && (
+                <span className="px-1.5 py-0.5 text-[10px] font-medium bg-green-500/10 text-green-600 dark:text-green-400 rounded-full">
+                  Connected
+                </span>
+              )}
+              {configStatus === "not_configured" && (
+                <span className="px-1.5 py-0.5 text-[10px] font-medium bg-yellow-500/10 text-yellow-600 dark:text-yellow-400 rounded-full">
+                  Not configured
+                </span>
+              )}
+              {configStatus === "other" && (
+                <span className="px-1.5 py-0.5 text-[10px] font-medium bg-blue-500/10 text-blue-600 dark:text-blue-400 rounded-full">
+                  Other
+                </span>
+              )}
+            </div>
+            <p className="text-xs text-text-muted truncate">{tool.description}</p>
+          </div>
+        </div>
+        <span
+          className={`material-symbols-outlined text-text-muted text-[20px] transition-transform ${isExpanded ? "rotate-180" : ""}`}
+        >
+          expand_more
+        </span>
+      </div>
+
+      {isExpanded && (
+        <div className="mt-4 pt-4 border-t border-border flex flex-col gap-4">
+          {checking && (
+            <div className="flex items-center gap-2 text-text-muted">
+              <span className="material-symbols-outlined animate-spin">progress_activity</span>
+              <span>Checking Cline CLI...</span>
+            </div>
+          )}
+
+          {!checking && status && !status.installed && (
+            <div className="flex flex-col gap-4">
+              <div className="flex flex-col gap-3 p-4 bg-yellow-500/10 border border-yellow-500/30 rounded-lg">
+                <div className="flex items-start gap-3">
+                  <span className="material-symbols-outlined text-yellow-500">warning</span>
+                  <div className="flex-1">
+                    <p className="font-medium text-yellow-600 dark:text-yellow-400">
+                      Cline CLI not detected locally
+                    </p>
+                    <p className="text-sm text-text-muted">
+                      Install Cline from{" "}
+                      <a
+                        className="text-primary underline"
+                        href="https://docs.cline.bot/"
+                        target="_blank"
+                        rel="noreferrer"
+                      >
+                        docs.cline.bot
+                      </a>{" "}
+                      or use Manual Config below.
+                    </p>
+                  </div>
+                </div>
+                <div className="flex items-center gap-2 pl-9">
+                  <Button
+                    variant="secondary"
+                    size="sm"
+                    onClick={() => setShowManualConfigModal(true)}
+                    className="!bg-yellow-500/20 !border-yellow-500/40 !text-yellow-700 dark:!text-yellow-300 hover:!bg-yellow-500/30"
+                  >
+                    <span className="material-symbols-outlined text-[18px] mr-1">content_copy</span>
+                    Manual Config
+                  </Button>
+                </div>
+              </div>
+            </div>
+          )}
+
+          {!checking && status?.installed && (
+            <>
+              <div className="flex flex-col gap-2">
+                {status?.settings?.openAiBaseUrl && (
+                  <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                    <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                      Current
+                    </span>
+                    <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                      arrow_forward
+                    </span>
+                    <span className="min-w-0 truncate rounded bg-surface/40 px-2 py-2 text-xs text-text-muted sm:py-1.5">
+                      {status.settings.openAiBaseUrl}
+                    </span>
+                  </div>
+                )}
+
+                <EndpointPresetControl
+                  baseUrl={getDisplayUrl()}
+                  apiKey={selectedApiKey}
+                  onBaseUrlChange={setCustomBaseUrl}
+                  onApiKeyChange={setSelectedApiKey}
+                />
+
+                <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                  <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                    Base URL
+                  </span>
+                  <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                    arrow_forward
+                  </span>
+                  <input
+                    type="text"
+                    value={getDisplayUrl()}
+                    onChange={(e: ChangeEvent<HTMLInputElement>) => setCustomBaseUrl(e.target.value)}
+                    placeholder="https://.../v1"
+                    className="w-full min-w-0 px-2 py-2 bg-surface rounded border border-border text-xs focus:outline-none focus:ring-1 focus:ring-primary/50 sm:py-1.5"
+                  />
+                  {customBaseUrl && customBaseUrl !== baseUrl && (
+                    <button
+                      onClick={() => setCustomBaseUrl("")}
+                      className="p-1 text-text-muted hover:text-primary rounded transition-colors"
+                      title="Reset to default"
+                    >
+                      <span className="material-symbols-outlined text-[14px]">restart_alt</span>
+                    </button>
+                  )}
+                </div>
+
+                <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                  <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                    API Key
+                  </span>
+                  <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                    arrow_forward
+                  </span>
+                  {apiKeys.length > 0 || selectedApiKey ? (
+                    <select
+                      value={selectedApiKey}
+                      onChange={(e: ChangeEvent<HTMLSelectElement>) => setSelectedApiKey(e.target.value)}
+                      className="w-full min-w-0 px-2 py-2 bg-surface rounded text-xs border border-border focus:outline-none focus:ring-1 focus:ring-primary/50 sm:py-1.5"
+                    >
+                      {hasCustomSelectedApiKey && <option value={selectedApiKey}>{selectedApiKey}</option>}
+                      {apiKeys.map((key) => (
+                        <option key={key.id} value={key.key}>
+                          {key.key}
+                        </option>
+                      ))}
+                    </select>
+                  ) : (
+                    <span className="min-w-0 rounded bg-surface/40 px-2 py-2 text-xs text-text-muted sm:py-1.5">
+                      {cloudEnabled ? "No API keys - Create one in Keys page" : "sk_openproxy (default)"}
+                    </span>
+                  )}
+                </div>
+
+                <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                  <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                    Model
+                  </span>
+                  <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                    arrow_forward
+                  </span>
+                  <div className="relative w-full min-w-0">
+                    <input
+                      type="text"
+                      value={selectedModel}
+                      onChange={(e: ChangeEvent<HTMLInputElement>) => setSelectedModel(e.target.value)}
+                      placeholder="provider/model-id"
+                      className="w-full min-w-0 pl-2 pr-7 py-2 bg-surface rounded border border-border text-xs focus:outline-none focus:ring-1 focus:ring-primary/50 sm:py-1.5"
+                    />
+                    {selectedModel && (
+                      <button
+                        onClick={() => setSelectedModel("")}
+                        className="absolute right-1 top-1/2 -translate-y-1/2 p-0.5 text-text-muted hover:text-red-500 rounded transition-colors"
+                        title="Clear"
+                      >
+                        <span className="material-symbols-outlined text-[14px]">close</span>
+                      </button>
+                    )}
+                  </div>
+                  <button
+                    onClick={() => setModalOpen(true)}
+                    disabled={!activeProviders?.length}
+                    className={`w-full sm:w-auto rounded border px-2 py-2 text-xs transition-colors sm:py-1.5 whitespace-nowrap sm:shrink-0 ${
+                      activeProviders?.length
+                        ? "bg-surface border-border text-text-main hover:border-primary cursor-pointer"
+                        : "opacity-50 cursor-not-allowed border-border"
+                    }`}
+                  >
+                    Select
+                  </button>
+                </div>
+              </div>
+
+              {message && (
+                <div
+                  className={`flex items-center gap-2 px-2 py-1.5 rounded text-xs ${
+                    message.type === "success"
+                      ? "bg-green-500/10 text-green-600"
+                      : "bg-red-500/10 text-red-600"
+                  }`}
+                >
+                  <span className="material-symbols-outlined text-[14px]">
+                    {message.type === "success" ? "check_circle" : "error"}
+                  </span>
+                  <span>{message.text}</span>
+                </div>
+              )}
+
+              <div className="grid grid-cols-1 gap-2 sm:flex sm:items-center">
+                <Button onClick={() => void handleApply()} disabled={applying || !selectedModel} className="w-full sm:w-auto">
+                  {applying ? "Applying..." : "Apply Settings"}
+                </Button>
+                {status?.hasOpenProxy && (
+                  <Button onClick={() => void handleReset()} disabled={restoring} variant="secondary" className="w-full sm:w-auto">
+                    {restoring ? "Resetting..." : "Reset Settings"}
+                  </Button>
+                )}
+                <Button onClick={() => setShowManualConfigModal(true)} variant="secondary" className="w-full sm:w-auto">
+                  <span className="material-symbols-outlined text-[18px] mr-1">content_copy</span>
+                  Manual Config
+                </Button>
+              </div>
+            </>
+          )}
+        </div>
+      )}
+
+      <ModelSelectModal
+        isOpen={modalOpen}
+        onClose={() => setModalOpen(false)}
+        onSelect={handleModelSelect}
+        selectedModel={selectedModel}
+        activeProviders={activeProviders}
+      />
+
+      <ManualConfigModal
+        isOpen={showManualConfigModal}
+        onClose={() => setShowManualConfigModal(false)}
+        toolName={tool.name}
+        configs={getManualConfigs()}
+      />
+    </Card>
+  );
+}
diff --git a/web/src/components/cli-tools/KiloToolCard.tsx b/web/src/components/cli-tools/KiloToolCard.tsx
new file mode 100644
index 00000000..df25c262
--- /dev/null
+++ b/web/src/components/cli-tools/KiloToolCard.tsx
@@ -0,0 +1,467 @@
+"use client";
+
+import { useState, useEffect } from "react";
+import type { ChangeEvent } from "react";
+import { Card, Button, ModelSelectModal, ManualConfigModal } from "@/shared/components";
+import EndpointPresetControl from "./EndpointPresetControl";
+
+interface Tool {
+  name: string;
+  description: string;
+}
+
+interface ApiKey {
+  id: string;
+  key: string;
+}
+
+interface KiloStatus {
+  installed: boolean;
+  error?: string;
+  hasOpenProxy?: boolean;
+  settings?: {
+    auth?: string[];
+  };
+  authPath?: string;
+}
+
+interface Message {
+  type: "success" | "error";
+  text: string;
+}
+
+interface KiloToolCardProps {
+  tool: Tool;
+  isExpanded: boolean;
+  onToggle: () => void;
+  baseUrl: string;
+  apiKeys: ApiKey[];
+  activeProviders: string[];
+  cloudEnabled: boolean;
+  initialStatus?: KiloStatus | null;
+}
+
+export default function KiloToolCard({
+  tool,
+  isExpanded,
+  onToggle,
+  baseUrl,
+  apiKeys,
+  activeProviders,
+  cloudEnabled,
+  initialStatus,
+}: KiloToolCardProps): React.ReactNode {
+  const [status, setStatus] = useState<KiloStatus | null>(initialStatus || null);
+  const [checking, setChecking] = useState<boolean>(false);
+  const [applying, setApplying] = useState<boolean>(false);
+  const [restoring, setRestoring] = useState<boolean>(false);
+  const [message, setMessage] = useState<Message | null>(null);
+  const [selectedApiKey, setSelectedApiKey] = useState<string>("");
+  const [selectedModel, setSelectedModel] = useState<string>("");
+  const [modalOpen, setModalOpen] = useState<boolean>(false);
+  const [showManualConfigModal, setShowManualConfigModal] = useState<boolean>(false);
+  const [customBaseUrl, setCustomBaseUrl] = useState<string>("");
+
+  const normalizeLocalhost = (url: string): string => url.replace("://localhost", "://127.0.0.1");
+
+  const getLocalBaseUrl = (): string => {
+    if (typeof window !== "undefined") {
+      return normalizeLocalhost(window.location.origin);
+    }
+    return "http://127.0.0.1:4623";
+  };
+
+  // Kilo expects base WITH /v1. We always render with /v1 and the backend
+  // appends it if missing.
+  const getDisplayUrl = (): string => {
+    const url = customBaseUrl || getLocalBaseUrl();
+    return url.endsWith("/v1") ? url : `${url}/v1`;
+  };
+
+  const getEffectiveBaseUrl = (): string => getDisplayUrl();
+
+  const hasCustomSelectedApiKey =
+    selectedApiKey && !apiKeys.some((key) => key.key === selectedApiKey);
+
+  const getConfigStatus = (): "configured" | "not_configured" | "other" | null => {
+    if (!status?.installed) return null;
+    if (!status.hasOpenProxy) return "not_configured";
+    // Kilo backend already verifies localhost/127.0.0.1/openproxy in the URL;
+    // if hasOpenProxy is true we treat it as connected.
+    return "configured";
+  };
+
+  const configStatus = getConfigStatus();
+
+  useEffect(() => {
+    if (apiKeys?.length > 0 && !selectedApiKey) setSelectedApiKey(apiKeys[0].key);
+  }, [apiKeys, selectedApiKey]);
+
+  useEffect(() => {
+    if (initialStatus) setStatus(initialStatus);
+  }, [initialStatus]);
+
+  useEffect(() => {
+    if (isExpanded && !status) {
+      void checkStatus();
+    }
+  }, [isExpanded]);
+
+  const checkStatus = async (): Promise<void> => {
+    setChecking(true);
+    try {
+      const res = await fetch("/api/cli-tools/kilo-settings");
+      const data = await res.json();
+      setStatus(data);
+    } catch (error) {
+      setStatus({ installed: false, error: (error as Error).message });
+    } finally {
+      setChecking(false);
+    }
+  };
+
+  // Kilo expects base WITH /v1 (the backend ensures the trailing /v1).
+  const handleApply = async (): Promise<void> => {
+    setApplying(true);
+    setMessage(null);
+    try {
+      const keyToUse =
+        selectedApiKey?.trim() ||
+        (apiKeys?.length > 0 ? apiKeys[0].key : null) ||
+        (!cloudEnabled ? "sk_openproxy" : null);
+
+      const res = await fetch("/api/cli-tools/kilo-settings", {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+          baseUrl: getEffectiveBaseUrl(),
+          apiKey: keyToUse,
+          model: selectedModel,
+        }),
+      });
+      const data = await res.json();
+      if (res.ok) {
+        setMessage({ type: "success", text: "Settings applied successfully!" });
+        void checkStatus();
+      } else {
+        setMessage({ type: "error", text: data.error || "Failed to apply settings" });
+      }
+    } catch (error) {
+      setMessage({ type: "error", text: (error as Error).message });
+    } finally {
+      setApplying(false);
+    }
+  };
+
+  const handleReset = async (): Promise<void> => {
+    setRestoring(true);
+    setMessage(null);
+    try {
+      const res = await fetch("/api/cli-tools/kilo-settings", { method: "DELETE" });
+      const data = await res.json();
+      if (res.ok) {
+        setMessage({ type: "success", text: "Settings reset successfully!" });
+        setSelectedModel("");
+        void checkStatus();
+      } else {
+        setMessage({ type: "error", text: data.error || "Failed to reset settings" });
+      }
+    } catch (error) {
+      setMessage({ type: "error", text: (error as Error).message });
+    } finally {
+      setRestoring(false);
+    }
+  };
+
+  const handleModelSelect = (model: { value: string }): void => {
+    setSelectedModel(model.value);
+    setModalOpen(false);
+  };
+
+  const getManualConfigs = (): Array<{ filename: string; content: string }> => {
+    const keyToUse =
+      selectedApiKey?.trim() ||
+      (apiKeys?.length > 0 ? apiKeys[0].key : null) ||
+      (!cloudEnabled ? "sk_openproxy" : "<API_KEY_FROM_DASHBOARD>");
+    const effectiveUrl = getEffectiveBaseUrl();
+    return [
+      {
+        filename: "~/.local/share/kilo/auth.json",
+        content: JSON.stringify(
+          {
+            "openai-compatible": {
+              type: "api-key",
+              apiKey: keyToUse,
+              baseUrl: effectiveUrl,
+              model: selectedModel || "provider/model-id",
+            },
+          },
+          null,
+          2,
+        ),
+      },
+    ];
+  };
+
+  return (
+    <Card padding="xs" className="overflow-hidden">
+      <div
+        className="flex items-start justify-between gap-3 hover:cursor-pointer sm:items-center"
+        onClick={onToggle}
+      >
+        <div className="flex min-w-0 items-center gap-3">
+          <div className="size-8 flex items-center justify-center shrink-0">
+            <img
+              src="/providers/kilocode.png"
+              alt={tool.name}
+              width={32}
+              height={32}
+              className="size-8 object-contain rounded-lg"
+              sizes="32px"
+              onError={(e: React.SyntheticEvent<HTMLImageElement>) => {
+                (e.target as HTMLImageElement).style.display = "none";
+              }}
+            />
+          </div>
+          <div className="min-w-0">
+            <div className="flex min-w-0 flex-wrap items-center gap-2">
+              <h3 className="font-medium text-sm">{tool.name}</h3>
+              {configStatus === "configured" && (
+                <span className="px-1.5 py-0.5 text-[10px] font-medium bg-green-500/10 text-green-600 dark:text-green-400 rounded-full">
+                  Connected
+                </span>
+              )}
+              {configStatus === "not_configured" && (
+                <span className="px-1.5 py-0.5 text-[10px] font-medium bg-yellow-500/10 text-yellow-600 dark:text-yellow-400 rounded-full">
+                  Not configured
+                </span>
+              )}
+              {configStatus === "other" && (
+                <span className="px-1.5 py-0.5 text-[10px] font-medium bg-blue-500/10 text-blue-600 dark:text-blue-400 rounded-full">
+                  Other
+                </span>
+              )}
+            </div>
+            <p className="text-xs text-text-muted truncate">{tool.description}</p>
+          </div>
+        </div>
+        <span
+          className={`material-symbols-outlined text-text-muted text-[20px] transition-transform ${isExpanded ? "rotate-180" : ""}`}
+        >
+          expand_more
+        </span>
+      </div>
+
+      {isExpanded && (
+        <div className="mt-4 pt-4 border-t border-border flex flex-col gap-4">
+          {checking && (
+            <div className="flex items-center gap-2 text-text-muted">
+              <span className="material-symbols-outlined animate-spin">progress_activity</span>
+              <span>Checking Kilo Code CLI...</span>
+            </div>
+          )}
+
+          {!checking && status && !status.installed && (
+            <div className="flex flex-col gap-4">
+              <div className="flex flex-col gap-3 p-4 bg-yellow-500/10 border border-yellow-500/30 rounded-lg">
+                <div className="flex items-start gap-3">
+                  <span className="material-symbols-outlined text-yellow-500">warning</span>
+                  <div className="flex-1">
+                    <p className="font-medium text-yellow-600 dark:text-yellow-400">
+                      Kilo Code CLI not detected locally
+                    </p>
+                    <p className="text-sm text-text-muted">
+                      Install Kilo Code from{" "}
+                      <a
+                        className="text-primary underline"
+                        href="https://kilocode.ai/"
+                        target="_blank"
+                        rel="noreferrer"
+                      >
+                        kilocode.ai
+                      </a>{" "}
+                      or use Manual Config below.
+                    </p>
+                  </div>
+                </div>
+                <div className="flex items-center gap-2 pl-9">
+                  <Button
+                    variant="secondary"
+                    size="sm"
+                    onClick={() => setShowManualConfigModal(true)}
+                    className="!bg-yellow-500/20 !border-yellow-500/40 !text-yellow-700 dark:!text-yellow-300 hover:!bg-yellow-500/30"
+                  >
+                    <span className="material-symbols-outlined text-[18px] mr-1">content_copy</span>
+                    Manual Config
+                  </Button>
+                </div>
+              </div>
+            </div>
+          )}
+
+          {!checking && status?.installed && (
+            <>
+              <div className="flex flex-col gap-2">
+                {status?.settings?.openAiBaseUrl && (
+                  <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                    <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                      Current
+                    </span>
+                    <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                      arrow_forward
+                    </span>
+                    <span className="min-w-0 truncate rounded bg-surface/40 px-2 py-2 text-xs text-text-muted sm:py-1.5">
+                      {status.settings.openAiBaseUrl}
+                    </span>
+                  </div>
+                )}
+
+                <EndpointPresetControl
+                  baseUrl={getDisplayUrl()}
+                  apiKey={selectedApiKey}
+                  onBaseUrlChange={setCustomBaseUrl}
+                  onApiKeyChange={setSelectedApiKey}
+                />
+
+                <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                  <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                    Base URL
+                  </span>
+                  <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                    arrow_forward
+                  </span>
+                  <input
+                    type="text"
+                    value={getDisplayUrl()}
+                    onChange={(e: ChangeEvent<HTMLInputElement>) => setCustomBaseUrl(e.target.value)}
+                    placeholder="https://.../v1"
+                    className="w-full min-w-0 px-2 py-2 bg-surface rounded border border-border text-xs focus:outline-none focus:ring-1 focus:ring-primary/50 sm:py-1.5"
+                  />
+                  {customBaseUrl && customBaseUrl !== baseUrl && (
+                    <button
+                      onClick={() => setCustomBaseUrl("")}
+                      className="p-1 text-text-muted hover:text-primary rounded transition-colors"
+                      title="Reset to default"
+                    >
+                      <span className="material-symbols-outlined text-[14px]">restart_alt</span>
+                    </button>
+                  )}
+                </div>
+
+                <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                  <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                    API Key
+                  </span>
+                  <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                    arrow_forward
+                  </span>
+                  {apiKeys.length > 0 || selectedApiKey ? (
+                    <select
+                      value={selectedApiKey}
+                      onChange={(e: ChangeEvent<HTMLSelectElement>) => setSelectedApiKey(e.target.value)}
+                      className="w-full min-w-0 px-2 py-2 bg-surface rounded text-xs border border-border focus:outline-none focus:ring-1 focus:ring-primary/50 sm:py-1.5"
+                    >
+                      {hasCustomSelectedApiKey && <option value={selectedApiKey}>{selectedApiKey}</option>}
+                      {apiKeys.map((key) => (
+                        <option key={key.id} value={key.key}>
+                          {key.key}
+                        </option>
+                      ))}
+                    </select>
+                  ) : (
+                    <span className="min-w-0 rounded bg-surface/40 px-2 py-2 text-xs text-text-muted sm:py-1.5">
+                      {cloudEnabled ? "No API keys - Create one in Keys page" : "sk_openproxy (default)"}
+                    </span>
+                  )}
+                </div>
+
+                <div className="grid grid-cols-1 gap-1.5 sm:grid-cols-[8rem_auto_1fr_auto] sm:items-center sm:gap-2">
+                  <span className="text-xs font-semibold text-text-main sm:text-right sm:text-sm">
+                    Model
+                  </span>
+                  <span className="material-symbols-outlined hidden text-text-muted text-[14px] sm:inline">
+                    arrow_forward
+                  </span>
+                  <div className="relative w-full min-w-0">
+                    <input
+                      type="text"
+                      value={selectedModel}
+                      onChange={(e: ChangeEvent<HTMLInputElement>) => setSelectedModel(e.target.value)}
+                      placeholder="provider/model-id"
+                      className="w-full min-w-0 pl-2 pr-7 py-2 bg-surface rounded border border-border text-xs focus:outline-none focus:ring-1 focus:ring-primary/50 sm:py-1.5"
+                    />
+                    {selectedModel && (
+                      <button
+                        onClick={() => setSelectedModel("")}
+                        className="absolute right-1 top-1/2 -translate-y-1/2 p-0.5 text-text-muted hover:text-red-500 rounded transition-colors"
+                        title="Clear"
+                      >
+                        <span className="material-symbols-outlined text-[14px]">close</span>
+                      </button>
+                    )}
+                  </div>
+                  <button
+                    onClick={() => setModalOpen(true)}
+                    disabled={!activeProviders?.length}
+                    className={`w-full sm:w-auto rounded border px-2 py-2 text-xs transition-colors sm:py-1.5 whitespace-nowrap sm:shrink-0 ${
+                      activeProviders?.length
+                        ? "bg-surface border-border text-text-main hover:border-primary cursor-pointer"
+                        : "opacity-50 cursor-not-allowed border-border"
+                    }`}
+                  >
+                    Select
+                  </button>
+                </div>
+              </div>
+
+              {message && (
+                <div
+                  className={`flex items-center gap-2 px-2 py-1.5 rounded text-xs ${
+                    message.type === "success"
+                      ? "bg-green-500/10 text-green-600"
+                      : "bg-red-500/10 text-red-600"
+                  }`}
+                >
+                  <span className="material-symbols-outlined text-[14px]">
+                    {message.type === "success" ? "check_circle" : "error"}
+                  </span>
+                  <span>{message.text}</span>
+                </div>
+              )}
+
+              <div className="grid grid-cols-1 gap-2 sm:flex sm:items-center">
+                <Button onClick={() => void handleApply()} disabled={applying || !selectedModel} className="w-full sm:w-auto">
+                  {applying ? "Applying..." : "Apply Settings"}
+                </Button>
+                {status?.hasOpenProxy && (
+                  <Button onClick={() => void handleReset()} disabled={restoring} variant="secondary" className="w-full sm:w-auto">
+                    {restoring ? "Resetting..." : "Reset Settings"}
+                  </Button>
+                )}
+                <Button onClick={() => setShowManualConfigModal(true)} variant="secondary" className="w-full sm:w-auto">
+                  <span className="material-symbols-outlined text-[18px] mr-1">content_copy</span>
+                  Manual Config
+                </Button>
+              </div>
+            </>
+          )}
+        </div>
+      )}
+
+      <ModelSelectModal
+        isOpen={modalOpen}
+        onClose={() => setModalOpen(false)}
+        onSelect={handleModelSelect}
+        selectedModel={selectedModel}
+        activeProviders={activeProviders}
+      />
+
+      <ManualConfigModal
+        isOpen={showManualConfigModal}
+        onClose={() => setShowManualConfigModal(false)}
+        toolName={tool.name}
+        configs={getManualConfigs()}
+      />
+    </Card>
+  );
+}
diff --git a/web/src/components/cli-tools/index.ts b/web/src/components/cli-tools/index.ts
index 06b45ccc..b396c868 100644
--- a/web/src/components/cli-tools/index.ts
+++ b/web/src/components/cli-tools/index.ts
@@ -1,4 +1,6 @@
 export { default as ClaudeToolCard } from "./ClaudeToolCard";
+export { default as ClineToolCard } from "./ClineToolCard";
+export { default as KiloToolCard } from "./KiloToolCard";
 export { default as CodexToolCard } from "./CodexToolCard";
 export { default as DroidToolCard } from "./DroidToolCard";
 export { default as OpenClawToolCard } from "./OpenClawToolCard";
diff --git a/web/src/components/cli-tools/index.tsx b/web/src/components/cli-tools/index.tsx
index 06b45ccc..b396c868 100644
--- a/web/src/components/cli-tools/index.tsx
+++ b/web/src/components/cli-tools/index.tsx
@@ -1,4 +1,6 @@
 export { default as ClaudeToolCard } from "./ClaudeToolCard";
+export { default as ClineToolCard } from "./ClineToolCard";
+export { default as KiloToolCard } from "./KiloToolCard";
 export { default as CodexToolCard } from "./CodexToolCard";
 export { default as DroidToolCard } from "./DroidToolCard";
 export { default as OpenClawToolCard } from "./OpenClawToolCard";
diff --git a/web/src/shared/constants/cliTools.ts b/web/src/shared/constants/cliTools.ts
index 4da41582..33403ca1 100644
--- a/web/src/shared/constants/cliTools.ts
+++ b/web/src/shared/constants/cliTools.ts
@@ -209,7 +209,7 @@ export const CLI_TOOLS: Record<string, CLITool> = {
     image: "/providers/cline.png",
     color: "#00D1B2",
     description: "Cline AI Coding Assistant",
-    configType: "guide",
+    configType: "custom",
     guideSteps: [
       { step: 1, title: "Open Settings", desc: "Go to Cline Settings panel" },
       { step: 2, title: "Select Provider", desc: "Choose API Provider → OpenAI Compatible" },
@@ -224,7 +224,7 @@ export const CLI_TOOLS: Record<string, CLITool> = {
     image: "/providers/kilocode.png",
     color: "#FF6B6B",
     description: "Kilo Code AI Assistant",
-    configType: "guide",
+    configType: "custom",
     guideSteps: [
       { step: 1, title: "Open Settings", desc: "Go to Kilo Code Settings panel" },
       { step: 2, title: "Select Provider", desc: "Choose API Provider → OpenAI Compatible" },

From b72a5e50e227aec79fbc95e9da9af041f788de80 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tr=E1=BA=A7n=20Quang=20=C4=90=C3=A3ng?=
 <tranquangdang21@gmail.com>
Date: Wed, 13 May 2026 11:20:33 +0000
Subject: [PATCH 3/7] Bulk API key import + ModelSelectModal Done button +
 3-min SSE stall timeout

Three medium-priority features ported from 9router:

1. Bulk API key import (web/src/components/providers/AddApiKeyModal.tsx)
   - New Single/Bulk toggle at the top of the modal
   - Bulk mode accepts one key per line in 'name|apiKey' or just 'apiKey'
     (auto-numbered)
   - Posts each line directly to POST /api/providers (bypassing onSave so the
     loop is not interrupted by the modal closing on each success)
   - Hidden for Azure/Cloudflare-AI/Ollama-local (they need per-key extra
     fields)
   - Parent ConnectionsCard + ProviderDetailPageClient now refresh on onClose
     so bulk results show up after the user dismisses the modal.

2. ModelSelectModal: optional Done button (web/src/shared/components/ModelSelectModal.tsx)
   - New 'closeOnSelect' prop (defaults true). When false, picking a model no
     longer auto-closes the modal and a 'Done' footer button is rendered.
   - Lets callers use the modal for multi-select / toggling without round-trips.

3. SSE stream stall timeout, 3 min (src/server/api/chat.rs)
   - Wrap upstream bytes_stream / Hyper body.frame() awaits with
     tokio::time::timeout(SSE_STALL_TIMEOUT). If the upstream goes silent for
     180s the stream is closed with usage_live.finish_request(error=true).
   - 180s > the longest keep-alive any major provider sends (OpenAI ~30s,
     Anthropic ~60s, Gemini ~30s) so legitimate quiet periods do not trip it.
   - Applied to both Reqwest and Hyper UpstreamResponse stream paths.

cargo fmt clean, 54 test binaries pass, web build succeeds.

Refs: 9router AddApiKeyModal.js bulk mode, ModelSelectModal.js Done footer,
CHANGELOG 'Stream stall timeout (3 min) in open-sse'.
---
 src/server/api/chat.rs                        |  51 ++++++++-
 .../components/providers/AddApiKeyModal.tsx   | 102 ++++++++++++++++++
 .../components/providers/ConnectionsCard.tsx  |   7 +-
 .../providers/ProviderDetailPageClient.tsx    |   4 +
 .../shared/components/ModelSelectModal.tsx    |  24 ++++-
 5 files changed, 180 insertions(+), 8 deletions(-)

diff --git a/src/server/api/chat.rs b/src/server/api/chat.rs
index f573db9f..d26f46a1 100644
--- a/src/server/api/chat.rs
+++ b/src/server/api/chat.rs
@@ -1,4 +1,5 @@
 use std::collections::{BTreeMap, HashSet};
+use std::time::Duration;
 
 use axum::body::Body;
 use axum::extract::rejection::JsonRejection;
@@ -29,6 +30,12 @@ use crate::types::{AppDb, ProviderConnection, TokenUsage};
 
 use super::auth_error_response;
 
+/// Maximum time we'll wait for the next byte from an upstream SSE stream before
+/// considering the connection stalled. 3 minutes matches what most providers
+/// use for their keep-alive heartbeats (OpenAI sends a comment every ~30s,
+/// Anthropic every ~60s, Gemini every ~30s — 180s is well past any of them).
+const SSE_STALL_TIMEOUT: Duration = Duration::from_secs(180);
+
 pub async fn cors_options() -> Response {
     cors_preflight_response("GET, POST, OPTIONS")
 }
@@ -948,8 +955,24 @@ async fn proxy_response_with_pending_tracking(
             let stream = async_stream::stream! {
                 let mut upstream = response.bytes_stream();
                 loop {
-                    match upstream.try_next().await {
-                        Ok(Some(chunk)) => {
+                    let next = tokio::time::timeout(SSE_STALL_TIMEOUT, upstream.try_next()).await;
+                    match next {
+                        Err(_elapsed) => {
+                            // Upstream went silent for SSE_STALL_TIMEOUT; treat
+                            // as an error so the client can retry.
+                            tracing::warn!(
+                                target: "openproxy::chat::stream",
+                                provider = %provider,
+                                model = %model,
+                                "SSE stalled, closing stream"
+                            );
+                            state
+                                .usage_live
+                                .finish_request(&model, &provider, connection_id.as_deref(), true)
+                                .await;
+                            return;
+                        }
+                        Ok(Ok(Some(chunk))) => {
                             if let Some(transformer) = transformer.as_mut() {
                                 for line in transform_dashboard_sse_chunk(&chunk, transformer.as_mut(), &mut pending_text) {
                                     if let Some(frame) = sse_frame_for_dashboard(&line) {
@@ -960,8 +983,8 @@ async fn proxy_response_with_pending_tracking(
                                 yield Ok::<Bytes, std::io::Error>(chunk);
                             }
                         }
-                        Ok(None) => break,
-                        Err(_) => {
+                        Ok(Ok(None)) => break,
+                        Ok(Err(_)) => {
                             state
                                 .usage_live
                                 .finish_request(&model, &provider, connection_id.as_deref(), true)
@@ -993,7 +1016,25 @@ async fn proxy_response_with_pending_tracking(
             let mut transformer = transformer;
             let mut pending_text = String::new();
             let stream = async_stream::stream! {
-                while let Some(frame_result) = body.frame().await {
+                loop {
+                    let next = tokio::time::timeout(SSE_STALL_TIMEOUT, body.frame()).await;
+                    let frame_result = match next {
+                        Err(_elapsed) => {
+                            tracing::warn!(
+                                target: "openproxy::chat::stream",
+                                provider = %provider,
+                                model = %model,
+                                "SSE stalled, closing stream"
+                            );
+                            state
+                                .usage_live
+                                .finish_request(&model, &provider, connection_id.as_deref(), true)
+                                .await;
+                            return;
+                        }
+                        Ok(Some(result)) => result,
+                        Ok(None) => break,
+                    };
                     match frame_result {
                         Ok(frame) => {
                             if let Ok(data) = frame.into_data() {
diff --git a/web/src/components/providers/AddApiKeyModal.tsx b/web/src/components/providers/AddApiKeyModal.tsx
index 77dfea42..28924cc5 100644
--- a/web/src/components/providers/AddApiKeyModal.tsx
+++ b/web/src/components/providers/AddApiKeyModal.tsx
@@ -53,6 +53,47 @@ export default function AddApiKeyModal({ isOpen, provider, providerName, isCompa
   const [validationResult, setValidationResult] = useState<"success" | "failed" | null>(null);
   const [saving, setSaving] = useState<boolean>(false);
 
+  // Bulk add: one key per line in `name|apiKey` or just `apiKey` (auto-named).
+  // Skipped for Azure/Cloudflare/Ollama since they need extra fields per key.
+  const supportsBulk = !isOllamaLocal && !isAzure && !isCloudflareAi;
+  const [mode, setMode] = useState<"single" | "bulk">("single");
+  const [bulkText, setBulkText] = useState<string>("");
+  const [bulkResult, setBulkResult] = useState<{ success: number; failed: number } | null>(null);
+
+  const handleBulkSubmit = async (): Promise<void> => {
+    if (!provider) return;
+    const lines = bulkText
+      .split("\n")
+      .map((l) => l.trim())
+      .filter(Boolean);
+    if (!lines.length) return;
+    setSaving(true);
+    setBulkResult(null);
+    let success = 0;
+    let failed = 0;
+    // POST directly: onSave from the parent closes the modal on success which
+    // would interrupt the loop. The parent should refresh on onClose.
+    for (let i = 0; i < lines.length; i++) {
+      const parts = lines[i].split("|");
+      const apiKey = parts.length >= 2 ? parts.slice(1).join("|").trim() : parts[0].trim();
+      const baseName = parts.length >= 2 ? parts[0].trim() : "Key";
+      const name = `${baseName} ${i + 1}`;
+      try {
+        const res = await fetch("/api/providers", {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({ provider, name, apiKey, priority: 1, testStatus: "unknown" }),
+        });
+        if (res.ok) success++;
+        else failed++;
+      } catch {
+        failed++;
+      }
+    }
+    setSaving(false);
+    setBulkResult({ success, failed });
+  };
+
   const buildProviderSpecificData = (): any => {
     if (isOllamaLocal && formData.ollamaHostUrl.trim()) {
       return { baseUrl: formData.ollamaHostUrl.trim() };
@@ -134,6 +175,65 @@ export default function AddApiKeyModal({ isOpen, provider, providerName, isCompa
   return (
     <Modal isOpen={isOpen} title={`Add ${providerName || provider} ${credentialLabel}`} onClose={onClose}>
       <div className="flex flex-col gap-4">
+        {supportsBulk && (
+          <div className="flex gap-2">
+            <Button
+              size="sm"
+              variant={mode === "single" ? "primary" : "ghost"}
+              onClick={() => {
+                setMode("single");
+                setBulkResult(null);
+              }}
+            >
+              Single
+            </Button>
+            <Button
+              size="sm"
+              variant={mode === "bulk" ? "primary" : "ghost"}
+              onClick={() => {
+                setMode("bulk");
+                setBulkResult(null);
+              }}
+            >
+              Bulk Add
+            </Button>
+          </div>
+        )}
+
+        {supportsBulk && mode === "bulk" && (
+          <div className="flex flex-col gap-3">
+            <p className="text-xs text-text-muted">
+              One key per line. Format: <code>name|apiKey</code> or just <code>apiKey</code> (auto-named by index).
+            </p>
+            <textarea
+              className="w-full rounded border border-accent/30 bg-sidebar p-2 text-sm font-mono resize-y min-h-[140px] focus:outline-none focus:ring-1 focus:ring-primary"
+              placeholder={`prod|sk-aaa...\nstaging|sk-bbb...\nsk-ccc...`}
+              value={bulkText}
+              onChange={(e: ChangeEvent<HTMLTextAreaElement>) => setBulkText(e.target.value)}
+            />
+            {bulkResult && (
+              <div
+                className={`text-sm font-medium ${
+                  bulkResult.failed > 0 ? "text-yellow-400" : "text-green-400"
+                }`}
+              >
+                Added {bulkResult.success}
+                {bulkResult.failed > 0 ? `, ${bulkResult.failed} failed` : ""}
+              </div>
+            )}
+            <div className="flex gap-2">
+              <Button onClick={() => void handleBulkSubmit()} fullWidth disabled={saving || !bulkText.trim()}>
+                {saving ? "Adding..." : "Add All Keys"}
+              </Button>
+              <Button onClick={onClose} variant="ghost" fullWidth>
+                Close
+              </Button>
+            </div>
+          </div>
+        )}
+
+        {(!supportsBulk || mode === "single") && (
+          <>
         <Input
           label="Name"
           value={formData.name}
@@ -286,6 +386,8 @@ export default function AddApiKeyModal({ isOpen, provider, providerName, isCompa
             Cancel
           </Button>
         </div>
+          </>
+        )}
       </div>
     </Modal>
   );
diff --git a/web/src/components/providers/ConnectionsCard.tsx b/web/src/components/providers/ConnectionsCard.tsx
index 9d3c1fb1..a58289c7 100644
--- a/web/src/components/providers/ConnectionsCard.tsx
+++ b/web/src/components/providers/ConnectionsCard.tsx
@@ -485,7 +485,12 @@ export default function ConnectionsCard({ providerId, isOAuth = false }: Connect
         provider={providerId}
         proxyPools={proxyPools}
         onSave={handleSaveApiKey}
-        onClose={() => setShowAddModal(false)}
+        onClose={() => {
+          setShowAddModal(false);
+          // Refresh after close — bulk-add posts directly to /api/providers
+          // and never goes through handleSaveApiKey.
+          void fetch_();
+        }}
       />
       <EditConnectionModal
         isOpen={showEditModal}
diff --git a/web/src/components/providers/ProviderDetailPageClient.tsx b/web/src/components/providers/ProviderDetailPageClient.tsx
index fafdebd3..ab518422 100644
--- a/web/src/components/providers/ProviderDetailPageClient.tsx
+++ b/web/src/components/providers/ProviderDetailPageClient.tsx
@@ -1201,6 +1201,10 @@ export default function ProviderDetailPageClient() {
         onClose={() => {
           setAddConnectionError("");
           setShowAddApiKeyModal(false);
+          // Refresh after close — bulk-add posts directly to /api/providers
+          // and never goes through handleSaveApiKey, so fetchConnections only
+          // runs here.
+          fetchConnections();
         }}
       />
       <EditConnectionModal
diff --git a/web/src/shared/components/ModelSelectModal.tsx b/web/src/shared/components/ModelSelectModal.tsx
index 8d9a18c7..0d3204cc 100644
--- a/web/src/shared/components/ModelSelectModal.tsx
+++ b/web/src/shared/components/ModelSelectModal.tsx
@@ -2,6 +2,7 @@
 
 import { useState, useMemo, useEffect } from "react";
 import Modal from "./Modal";
+import Button from "./Button";
 import { getModelsByProviderId } from "@/shared/constants/models";
 import { OAUTH_PROVIDERS, APIKEY_PROVIDERS, FREE_PROVIDERS, FREE_TIER_PROVIDERS, AI_PROVIDERS, isOpenAICompatibleProvider, isAnthropicCompatibleProvider, getProviderAlias } from "@/shared/constants/providers";
 import React from "react";
@@ -66,6 +67,9 @@ interface ModelSelectModalProps {
   title?: string;
   modelAliases?: Record<string, string>;
   kindFilter?: string | null;
+  // When false, picking a model does not close the modal; the user must press
+  // Done. Useful when the parent uses onSelect to toggle multiple entries.
+  closeOnSelect?: boolean;
 }
 
 export default function ModelSelectModal({
@@ -77,6 +81,7 @@ export default function ModelSelectModal({
   title = "Select Model",
   modelAliases = {},
   kindFilter = null,
+  closeOnSelect = true,
 }: ModelSelectModalProps) {
   // Filter activeProviders by serviceKinds when kindFilter set (e.g. "webSearch", "webFetch")
   const filteredActiveProviders = useMemo(() => {
@@ -356,8 +361,10 @@ export default function ModelSelectModal({
 
   const handleSelect = (model: Model) => {
     onSelect(model);
-    onClose();
-    setSearchQuery("");
+    if (closeOnSelect) {
+      onClose();
+      setSearchQuery("");
+    }
   };
 
   return (
@@ -370,6 +377,19 @@ export default function ModelSelectModal({
       title={title}
       size="md"
       className="p-4!"
+      footer={
+        !closeOnSelect ? (
+          <Button
+            onClick={() => {
+              onClose();
+              setSearchQuery("");
+            }}
+            fullWidth
+          >
+            Done
+          </Button>
+        ) : null
+      }
     >
       {/* Search - compact */}
       <div className="mb-3">

From 72f7d301d880fff2ebd61678f1249da7ed6336be Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tr=E1=BA=A7n=20Quang=20=C4=90=C3=A3ng?=
 <tranquangdang21@gmail.com>
Date: Wed, 13 May 2026 11:27:15 +0000
Subject: [PATCH 4/7] Catalog: gpt-5.5-image | UI: APIKEY sort+top20, header
 search, local Material Symbols

4 medium ports from 9router (open-sse v0.4.21+):

1. Codex GPT-5.5 image support (src/core/model/provider_catalog.json)
   - Add gpt-5.5-image (image kind) to the cx (codex) provider catalog,
     mirroring open-sse/config/providerModels.js.
   - Existing image pricing fallback ('gpt-5*' pattern) covers it for display.

2. APIKEY providers: sort by usage + top-20 collapse
   (web/src/components/providers/ProvidersPageClient.tsx)
   - sortApikeyByPriority(): connected>0 first, alpha tie-break (mirrors
     9router sortByPriority).
   - APIKEY_INITIAL_VISIBLE=20, 'Show all N providers' chip when there are
     more and the user has not typed in the search box. Searching reveals
     everything regardless.

3. Header search input wired (web/src/shared/components/Header.tsx)
   - Reads visible/query/placeholder from useHeaderSearchStore and renders a
     bordered search input on the right side of the header whenever a page
     calls register(placeholder). Clear button included.
   - Providers page already uses register/unregister; this completes the
     wire-up so the input actually appears.

4. Local Material Symbols font, no Google Fonts
   (web/src/shared/components/styles/global.css + web/package.json)
   - Add 'material-symbols': ^0.44.6 dependency.
   - Replace Google Fonts CDN import for Material Symbols Outlined with the
     vendored 'material-symbols/outlined.css'. Removes a runtime dependency
     on fonts.googleapis.com / fonts.gstatic.com.

cargo test passes (398 main lib tests; full suite still green), web build clean.

Refs: 9router CHANGELOG 'Codex GPT 5.5 image support', 'Sort APIKEY providers
by usage, collapse to top 20', 'Local Material Symbols font (no Google Fonts)',
'Header search store'.
---
 src/core/model/provider_catalog.json          |  5 +++
 web/package.json                              |  1 +
 .../providers/ProvidersPageClient.tsx         | 40 +++++++++++++++++--
 web/src/shared/components/Header.tsx          | 39 ++++++++++++++++++
 web/src/shared/components/styles/global.css   |  3 +-
 5 files changed, 83 insertions(+), 5 deletions(-)

diff --git a/src/core/model/provider_catalog.json b/src/core/model/provider_catalog.json
index 348a610f..0c2e800b 100644
--- a/src/core/model/provider_catalog.json
+++ b/src/core/model/provider_catalog.json
@@ -266,6 +266,11 @@
           "name": "GPT 5 Codex Mini Review",
           "kind": "llm"
         },
+        {
+          "id": "gpt-5.5-image",
+          "name": "GPT 5.5 Image",
+          "kind": "image"
+        },
         {
           "id": "gpt-5.4-image",
           "name": "GPT 5.4 Image",
diff --git a/web/package.json b/web/package.json
index 790f5553..6e9a72de 100644
--- a/web/package.json
+++ b/web/package.json
@@ -29,6 +29,7 @@
     "jose": "^6.1.3",
     "lowdb": "^7.0.1",
     "marked": "^18.0.1",
+    "material-symbols": "^0.44.6",
     "monaco-editor": "^0.55.1",
     "node-forge": "^1.3.3",
     "node-machine-id": "^1.1.12",
diff --git a/web/src/components/providers/ProvidersPageClient.tsx b/web/src/components/providers/ProvidersPageClient.tsx
index 1cb0218d..7a637bf2 100644
--- a/web/src/components/providers/ProvidersPageClient.tsx
+++ b/web/src/components/providers/ProvidersPageClient.tsx
@@ -97,6 +97,8 @@ export default function ProvidersPageClient() {
   const [providerNodes, setProviderNodes] = useState([]);
   const [loading, setLoading] = useState(true);
   const [showAddCompatibleModal, setShowAddCompatibleModal] = useState(false);
+  const [showAllApikey, setShowAllApikey] = useState(false);
+  const APIKEY_INITIAL_VISIBLE = 20;
   const [showAddAnthropicCompatibleModal, setShowAddAnthropicCompatibleModal] =
     useState(false);
   const [testingMode, setTestingMode] = useState(null);
@@ -257,10 +259,31 @@ export default function ProvidersPageClient() {
   const freeTierEntries = Object.entries(FREE_TIER_PROVIDERS).filter(
     ([, info]) => matchSearch(info.name),
   );
-  const apikeyEntries = Object.entries(APIKEY_PROVIDERS).filter(
-    ([, info]) =>
-      (info.serviceKinds ?? ["llm"]).includes("llm") && matchSearch(info.name),
+  // Sort APIKEY providers so ones with any connected (working) connection
+  // surface first; ties break alphabetically. Mirrors 9router's
+  // sortByPriority — when the list is long, this keeps the most useful
+  // providers above the fold.
+  const sortApikeyByPriority = (entries: Array<[string, any]>) =>
+    [...entries].sort(([ka, a], [kb, b]) => {
+      const sa = getProviderStats(ka, "apikey");
+      const sb = getProviderStats(kb, "apikey");
+      const ca = sa.connected > 0 ? 1 : 0;
+      const cb = sb.connected > 0 ? 1 : 0;
+      if (ca !== cb) return cb - ca;
+      return (a.name || "").localeCompare(b.name || "");
+    });
+  const apikeyEntries = sortApikeyByPriority(
+    Object.entries(APIKEY_PROVIDERS).filter(
+      ([, info]) =>
+        (info.serviceKinds ?? ["llm"]).includes("llm") && matchSearch(info.name),
+    ),
   );
+  const isApikeySearching = !!searchQuery.trim();
+  const visibleApikeyEntries =
+    isApikeySearching || showAllApikey
+      ? apikeyEntries
+      : apikeyEntries.slice(0, APIKEY_INITIAL_VISIBLE);
+  const hiddenApikeyCount = apikeyEntries.length - APIKEY_INITIAL_VISIBLE;
 
   if (loading) {
     return (
@@ -464,7 +487,7 @@ export default function ProvidersPageClient() {
           </button>
         </div>
         <div className="grid grid-cols-1 gap-3 sm:grid-cols-2 sm:gap-4 lg:grid-cols-3 xl:grid-cols-4">
-          {apikeyEntries.map(([key, info]) => (
+          {visibleApikeyEntries.map(([key, info]) => (
             <ApiKeyProviderCard
               key={key}
               providerId={key}
@@ -475,6 +498,15 @@ export default function ProvidersPageClient() {
             />
           ))}
         </div>
+        {!isApikeySearching && !showAllApikey && hiddenApikeyCount > 0 && (
+          <button
+            onClick={() => setShowAllApikey(true)}
+            className="flex w-full items-center justify-center gap-1.5 rounded-lg border border-dashed border-primary/40 px-3 py-2.5 text-sm font-medium text-primary transition-colors hover:border-primary hover:bg-primary/5"
+          >
+            <span className="material-symbols-outlined text-[16px]">expand_more</span>
+            Show all {apikeyEntries.length} providers
+          </button>
+        )}
       </div>
       )}
 
diff --git a/web/src/shared/components/Header.tsx b/web/src/shared/components/Header.tsx
index f9d0babc..a463d463 100644
--- a/web/src/shared/components/Header.tsx
+++ b/web/src/shared/components/Header.tsx
@@ -7,6 +7,7 @@ import ThemeToggle from "@/shared/components/ThemeToggle";
 import { OAUTH_PROVIDERS, APIKEY_PROVIDERS } from "@/shared/constants/config";
 import { MEDIA_PROVIDER_KINDS, AI_PROVIDERS } from "@/shared/constants/providers";
 import { translate } from "@/i18n/runtime";
+import { useHeaderSearchStore } from "@/store/headerSearchStore";
 
 interface Breadcrumb {
   label: string;
@@ -281,9 +282,47 @@ export default function Header({ onMenuClick, showMenuButton = true }: HeaderPro
 
       {/* Right actions */}
       <div className="flex items-center gap-1 shrink-0">
+        <HeaderSearchInput />
         <ThemeToggle />
         <HeaderMenu onLogout={handleLogout} />
       </div>
     </header>
   );
 }
+
+/**
+ * Search input wired to the global useHeaderSearchStore. Pages opt in by
+ * calling `register(placeholder)` on mount and `unregister()` on unmount; the
+ * input is hidden whenever no page has registered.
+ */
+function HeaderSearchInput() {
+  const visible = useHeaderSearchStore((s) => s.visible);
+  const query = useHeaderSearchStore((s) => s.query);
+  const placeholder = useHeaderSearchStore((s) => s.placeholder);
+  const setQuery = useHeaderSearchStore((s) => s.setQuery);
+  if (!visible) return null;
+  return (
+    <div className="relative hidden sm:flex items-center mr-1">
+      <span className="material-symbols-outlined absolute left-2 top-1/2 -translate-y-1/2 text-text-muted text-[16px] pointer-events-none">
+        search
+      </span>
+      <input
+        type="text"
+        placeholder={placeholder}
+        value={query}
+        onChange={(e) => setQuery(e.target.value)}
+        className="pl-7 pr-2.5 py-1.5 w-[180px] md:w-[220px] rounded border border-hairline bg-surface text-[12px] text-ink placeholder:text-text-muted focus:outline-none focus:ring-1 focus:ring-primary/50"
+      />
+      {query && (
+        <button
+          type="button"
+          onClick={() => setQuery("")}
+          className="absolute right-1 top-1/2 -translate-y-1/2 text-text-muted hover:text-ink"
+          aria-label="Clear search"
+        >
+          <span className="material-symbols-outlined text-[16px]">close</span>
+        </button>
+      )}
+    </div>
+  );
+}
diff --git a/web/src/shared/components/styles/global.css b/web/src/shared/components/styles/global.css
index 9687e031..5c069ab0 100644
--- a/web/src/shared/components/styles/global.css
+++ b/web/src/shared/components/styles/global.css
@@ -1,4 +1,5 @@
-@import url('https://fonts.googleapis.com/css2?family=Material+Symbols+Outlined:wght,FILL@100..700,0..1&display=swap');
+/* Local Material Symbols (no Google Fonts) — vendored via `material-symbols` */
+@import url('material-symbols/outlined.css');
 @import url('https://fonts.googleapis.com/css2?family=DM+Sans:opsz,wght@9..40,400;9..40,500;9..40,600;9..40,700&family=Inter:wght@400;500;600;700&display=swap');
 
 @tailwind base;

From 9a874b713fa608b35d2a693be65f35e20ebd5710 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tr=E1=BA=A7n=20Quang=20=C4=90=C3=A3ng?=
 <tranquangdang21@gmail.com>
Date: Wed, 13 May 2026 11:34:41 +0000
Subject: [PATCH 5/7] Usage: live GLM + MiniMax quota fetchers | Icons: 9 new
 provider PNGs

Big port from 9router (open-sse/services/usage.js):

1. Live GLM (intl + cn) and MiniMax (intl + cn) quota fetchers
   (src/core/usage/quota_fetcher.rs, src/server/api/usage.rs)
   - New module with fetch_glm_quota() and fetch_minimax_quota() (async,
     reqwest), idiomatic Rust port of getGlmUsage / getMiniMaxUsage from
     9router's usage.js.
   - GLM: GET https://api.z.ai/api/monitor/usage/quota/limit (intl) or
     https://open.bigmodel.cn/api/monitor/usage/quota/limit (cn) with the
     provider API key as Bearer auth. Normalizes TOKENS_LIMIT entries into
     the dashboard's canonical quotas shape (used / total / remaining /
     remainingPercentage / resetAt / unlimited). Exposes the account plan
     name.
   - MiniMax: tries up to 2 URLs per region with transient-error fallback
     (404/405/5xx). Auth-failure detection (401/403/status_code=1004 or
     'invalid api key' / 'inactive' in the response) returns an
     'invalid or inactive' message. Filters down to text-quota models
     (minimax-m* / coding-plan*), picks the highest-quota
     representative, and emits 'session (5h)' + 'weekly (7d)' buckets.
     Handles both 'count means used' and 'count means remaining'
     conventions automatically based on the URL.
   - GET /api/usage/{connection_id}: when the provider matches
     glm | glm-cn | minimax | minimax-cn and the connection has an api key,
     calls the live fetcher and merges 'quotas' + 'message' into the
     response. Falls back to the static usage_message_for_provider() text
     when the upstream fetch fails or returns its own message.
   - 5 unit tests for the MiniMax helper logic (model filtering, quota math,
     representative picking).

2. Provider icons: 9 new PNGs vendored from 9router/public/providers/
   - aws-polly, black-forest-labs, commandcode, fal-ai, jina-ai, recraft,
     runwayml, stability-ai, topaz
   - Brings openproxy from 87 to 96 provider icons matching the upstream set.

cargo test passes (790 lib + tests). Web build clean.

Refs: 9router CHANGELOG 'Usage quotas: GLM (intl/cn) and MiniMax (intl/cn)
fetchers', provider catalog icons.
---
 src/core/usage/mod.rs                      |   1 +
 src/core/usage/quota_fetcher.rs            | 477 +++++++++++++++++++++
 src/server/api/usage.rs                    |  35 +-
 web/public/providers/aws-polly.png         | Bin 0 -> 30178 bytes
 web/public/providers/black-forest-labs.png | Bin 0 -> 4654 bytes
 web/public/providers/commandcode.png       | Bin 0 -> 6585 bytes
 web/public/providers/fal-ai.png            | Bin 0 -> 6389 bytes
 web/public/providers/jina-ai.png           | Bin 0 -> 3874 bytes
 web/public/providers/recraft.png           | Bin 0 -> 4083 bytes
 web/public/providers/runwayml.png          | Bin 0 -> 5346 bytes
 web/public/providers/stability-ai.png      | Bin 0 -> 24455 bytes
 web/public/providers/topaz.png             | Bin 0 -> 1134 bytes
 12 files changed, 511 insertions(+), 2 deletions(-)
 create mode 100644 src/core/usage/quota_fetcher.rs
 create mode 100644 web/public/providers/aws-polly.png
 create mode 100644 web/public/providers/black-forest-labs.png
 create mode 100644 web/public/providers/commandcode.png
 create mode 100644 web/public/providers/fal-ai.png
 create mode 100644 web/public/providers/jina-ai.png
 create mode 100644 web/public/providers/recraft.png
 create mode 100644 web/public/providers/runwayml.png
 create mode 100644 web/public/providers/stability-ai.png
 create mode 100644 web/public/providers/topaz.png

diff --git a/src/core/usage/mod.rs b/src/core/usage/mod.rs
index 84cffb99..c50f1409 100644
--- a/src/core/usage/mod.rs
+++ b/src/core/usage/mod.rs
@@ -18,6 +18,7 @@
 //! Subscriptions (Claude Code, Codex, Copilot, Cursor) are tracked via their own quota systems.
 
 mod pricing;
+pub mod quota_fetcher;
 mod tracker;
 
 pub use pricing::{CostModel, ModelPricing, Pricing};
diff --git a/src/core/usage/quota_fetcher.rs b/src/core/usage/quota_fetcher.rs
new file mode 100644
index 00000000..37dcecdd
--- /dev/null
+++ b/src/core/usage/quota_fetcher.rs
@@ -0,0 +1,477 @@
+//! Live provider quota fetchers (GLM, MiniMax).
+//!
+//! Each provider exposes a small JSON API that reports remaining quota for the
+//! current billing window. These functions issue a one-shot GET and normalize
+//! the response into the canonical `quotas` shape used by the dashboard:
+//!
+//! ```jsonc
+//! {
+//!   "plan": "Pro",            // optional, GLM only
+//!   "quotas": {
+//!     "session (5h)": {
+//!       "used": 12.3,
+//!       "total": 100,
+//!       "remaining": 87.7,
+//!       "remainingPercentage": 87.7,
+//!       "resetAt": "2026-05-12T18:30:00Z",
+//!       "unlimited": false
+//!     }
+//!   }
+//! }
+//! ```
+//!
+//! Mirrors `open-sse/services/usage.js` from decolua/9router.
+
+use serde_json::{json, Value};
+use std::time::Duration;
+
+const GLM_INTL_URL: &str = "https://api.z.ai/api/monitor/usage/quota/limit";
+const GLM_CN_URL: &str = "https://open.bigmodel.cn/api/monitor/usage/quota/limit";
+
+// Tried in order; later entries are fallbacks for transient errors only.
+const MINIMAX_INTL_URLS: &[&str] = &[
+    "https://www.minimax.io/v1/token_plan/remains",
+    "https://api.minimax.io/v1/api/openplatform/coding_plan/remains",
+];
+const MINIMAX_CN_URLS: &[&str] = &[
+    "https://www.minimaxi.com/v1/api/openplatform/coding_plan/remains",
+    "https://api.minimaxi.com/v1/api/openplatform/coding_plan/remains",
+];
+
+const REQUEST_TIMEOUT: Duration = Duration::from_secs(15);
+
+fn http_client() -> reqwest::Client {
+    reqwest::Client::builder()
+        .timeout(REQUEST_TIMEOUT)
+        .build()
+        .unwrap_or_else(|_| reqwest::Client::new())
+}
+
+/// Fetch GLM (z.ai / open.bigmodel.cn) quota using the provider's API key.
+/// `provider` is one of `glm` (intl) or `glm-cn` (china).
+pub async fn fetch_glm_quota(api_key: &str, provider: &str) -> Value {
+    if api_key.is_empty() {
+        return json!({ "message": "GLM API key not available." });
+    }
+    let url = if provider == "glm-cn" {
+        GLM_CN_URL
+    } else {
+        GLM_INTL_URL
+    };
+
+    let client = http_client();
+    let response = match client
+        .get(url)
+        .bearer_auth(api_key)
+        .header("Accept", "application/json")
+        .send()
+        .await
+    {
+        Ok(r) => r,
+        Err(e) => return json!({ "message": format!("GLM error: {e}") }),
+    };
+
+    let status = response.status();
+    if !status.is_success() {
+        let msg = if status.as_u16() == 401 {
+            "GLM API key invalid or expired.".to_string()
+        } else {
+            format!("GLM quota API error ({}).", status.as_u16())
+        };
+        return json!({ "message": msg });
+    }
+
+    let body: Value = match response.json().await {
+        Ok(v) => v,
+        Err(e) => return json!({ "message": format!("GLM error: {e}") }),
+    };
+
+    let data = body.get("data").cloned().unwrap_or_else(|| json!({}));
+    let limits = data
+        .get("limits")
+        .and_then(|v| v.as_array())
+        .cloned()
+        .unwrap_or_default();
+
+    let mut quotas = serde_json::Map::new();
+    for limit in &limits {
+        if limit.get("type").and_then(|v| v.as_str()) != Some("TOKENS_LIMIT") {
+            continue;
+        }
+        let used_percent = limit
+            .get("percentage")
+            .and_then(|v| v.as_f64())
+            .unwrap_or(0.0);
+        let reset_ms = limit
+            .get("nextResetTime")
+            .and_then(|v| v.as_i64())
+            .unwrap_or(0);
+        let remaining = (100.0 - used_percent).max(0.0);
+        let reset_at = if reset_ms > 0 {
+            chrono::DateTime::<chrono::Utc>::from_timestamp_millis(reset_ms)
+                .map(|dt| dt.to_rfc3339_opts(chrono::SecondsFormat::Secs, true))
+        } else {
+            None
+        };
+        quotas.insert(
+            "session".to_string(),
+            json!({
+                "used": used_percent,
+                "total": 100,
+                "remaining": remaining,
+                "remainingPercentage": remaining,
+                "resetAt": reset_at,
+                "unlimited": false,
+            }),
+        );
+    }
+
+    let plan = data
+        .get("level")
+        .and_then(|v| v.as_str())
+        .map(|raw| {
+            let mut chars = raw.chars();
+            match chars.next() {
+                Some(c) => {
+                    c.to_ascii_uppercase().to_string()
+                        + chars.as_str().to_ascii_lowercase().as_str()
+                }
+                None => "Unknown".to_string(),
+            }
+        })
+        .unwrap_or_else(|| "Unknown".to_string());
+
+    json!({ "plan": plan, "quotas": Value::Object(quotas) })
+}
+
+fn minimax_field<'a>(model: &'a Value, snake: &str, camel: &str) -> Option<&'a Value> {
+    model.get(snake).or_else(|| model.get(camel))
+}
+
+fn minimax_num(model: &Value, snake: &str, camel: &str) -> f64 {
+    minimax_field(model, snake, camel)
+        .and_then(|v| v.as_f64())
+        .unwrap_or(0.0)
+}
+
+fn is_text_quota_model(name: &str) -> bool {
+    let n = name.trim().to_lowercase();
+    n.starts_with("minimax-m") || n.starts_with("coding-plan")
+}
+
+fn build_minimax_quota(
+    total: f64,
+    count: f64,
+    reset_at: Option<String>,
+    count_is_remaining: bool,
+) -> Value {
+    let safe_total = total.max(0.0);
+    let used = if count_is_remaining {
+        (safe_total - count).max(0.0)
+    } else {
+        count.max(0.0).min(safe_total)
+    };
+    let remaining = (safe_total - used).max(0.0);
+    let remaining_pct = if safe_total > 0.0 {
+        ((remaining / safe_total) * 100.0).clamp(0.0, 100.0)
+    } else {
+        0.0
+    };
+    json!({
+        "used": used,
+        "total": safe_total,
+        "remaining": remaining,
+        "remainingPercentage": remaining_pct,
+        "resetAt": reset_at,
+        "unlimited": false,
+    })
+}
+
+fn pick_representative<'a, F: Fn(&Value) -> f64>(
+    models: &'a [Value],
+    get_total: F,
+) -> Option<&'a Value> {
+    let with_quota: Vec<&Value> = models.iter().filter(|m| get_total(m) > 0.0).collect();
+    let pool = if !with_quota.is_empty() {
+        with_quota
+    } else {
+        models.iter().collect()
+    };
+    pool.into_iter().max_by(|a, b| {
+        get_total(a)
+            .partial_cmp(&get_total(b))
+            .unwrap_or(std::cmp::Ordering::Equal)
+    })
+}
+
+fn minimax_reset_at(
+    model: &Value,
+    captured_at_ms: i64,
+    remains_snake: &str,
+    remains_camel: &str,
+    end_snake: &str,
+    end_camel: &str,
+) -> Option<String> {
+    let remains_ms = minimax_num(model, remains_snake, remains_camel);
+    if remains_ms > 0.0 {
+        return chrono::DateTime::<chrono::Utc>::from_timestamp_millis(
+            captured_at_ms + remains_ms as i64,
+        )
+        .map(|dt| dt.to_rfc3339_opts(chrono::SecondsFormat::Secs, true));
+    }
+    minimax_field(model, end_snake, end_camel)
+        .and_then(|v| v.as_i64())
+        .and_then(|ms| {
+            chrono::DateTime::<chrono::Utc>::from_timestamp_millis(ms)
+                .map(|dt| dt.to_rfc3339_opts(chrono::SecondsFormat::Secs, true))
+        })
+}
+
+/// Fetch MiniMax token-plan / coding-plan quota. `provider` is one of
+/// `minimax` (intl) or `minimax-cn` (china).
+pub async fn fetch_minimax_quota(api_key: &str, provider: &str) -> Value {
+    if api_key.is_empty() {
+        return json!({ "message": "MiniMax API key not available." });
+    }
+    let urls: &[&str] = if provider == "minimax-cn" {
+        MINIMAX_CN_URLS
+    } else {
+        MINIMAX_INTL_URLS
+    };
+
+    let client = http_client();
+    let mut last_error: Option<String> = None;
+
+    for (index, url) in urls.iter().enumerate() {
+        let can_fallback = index + 1 < urls.len();
+        let response = match client
+            .get(*url)
+            .bearer_auth(api_key)
+            .header("Accept", "application/json")
+            .header("Content-Type", "application/json")
+            .send()
+            .await
+        {
+            Ok(r) => r,
+            Err(e) => {
+                last_error = Some(e.to_string());
+                if can_fallback {
+                    continue;
+                }
+                break;
+            }
+        };
+
+        let status = response.status();
+        let raw_text = response.text().await.unwrap_or_default();
+        let payload: Value = if raw_text.is_empty() {
+            json!({})
+        } else {
+            serde_json::from_str(&raw_text).unwrap_or_else(|_| json!({}))
+        };
+        let base_resp = payload
+            .get("base_resp")
+            .or_else(|| payload.get("baseResp"))
+            .cloned()
+            .unwrap_or_else(|| json!({}));
+        let api_status = base_resp
+            .get("status_code")
+            .or_else(|| base_resp.get("statusCode"))
+            .and_then(|v| v.as_i64())
+            .unwrap_or(0);
+        let api_msg = base_resp
+            .get("status_msg")
+            .or_else(|| base_resp.get("statusMsg"))
+            .and_then(|v| v.as_str())
+            .unwrap_or("")
+            .trim()
+            .to_string();
+        let combined = format!("{api_msg} {raw_text}").to_lowercase();
+        let auth_like = [
+            "token plan",
+            "coding plan",
+            "invalid api key",
+            "invalid key",
+            "unauthorized",
+            "inactive",
+        ]
+        .iter()
+        .any(|needle| combined.contains(needle));
+
+        if status.as_u16() == 401 || status.as_u16() == 403 || api_status == 1004 || auth_like {
+            return json!({ "message": "MiniMax API key invalid or inactive. Use an active Token/Coding Plan key." });
+        }
+
+        if !status.is_success() {
+            let err = format!("MiniMax usage endpoint error ({})", status.as_u16());
+            last_error = Some(err.clone());
+            let transient = matches!(status.as_u16(), 404 | 405) || status.as_u16() >= 500;
+            if transient && can_fallback {
+                continue;
+            }
+            return json!({ "message": format!("MiniMax connected. {err}") });
+        }
+
+        if api_status != 0 {
+            let msg = if api_msg.is_empty() {
+                "Upstream quota API error".to_string()
+            } else {
+                api_msg
+            };
+            return json!({ "message": format!("MiniMax connected. {msg}") });
+        }
+
+        let model_remains = payload
+            .get("model_remains")
+            .or_else(|| payload.get("modelRemains"));
+        let all_models: Vec<Value> = model_remains
+            .and_then(|v| v.as_array())
+            .cloned()
+            .unwrap_or_default();
+        let text_models: Vec<Value> = all_models
+            .into_iter()
+            .filter(|m| {
+                let name = minimax_field(m, "model_name", "modelName")
+                    .and_then(|v| v.as_str())
+                    .unwrap_or("");
+                is_text_quota_model(name)
+            })
+            .collect();
+
+        if text_models.is_empty() {
+            return json!({ "message": "MiniMax connected. No text quota data was returned." });
+        }
+
+        let captured_at_ms = chrono::Utc::now().timestamp_millis();
+        let count_is_remaining = url.contains("/coding_plan/remains");
+        let mut quotas = serde_json::Map::new();
+
+        if let Some(session_model) = pick_representative(&text_models, |m| {
+            minimax_num(
+                m,
+                "current_interval_total_count",
+                "currentIntervalTotalCount",
+            )
+        }) {
+            let total = minimax_num(
+                session_model,
+                "current_interval_total_count",
+                "currentIntervalTotalCount",
+            );
+            let count = minimax_num(
+                session_model,
+                "current_interval_usage_count",
+                "currentIntervalUsageCount",
+            )
+            .max(0.0);
+            let reset_at = minimax_reset_at(
+                session_model,
+                captured_at_ms,
+                "remains_time",
+                "remainsTime",
+                "end_time",
+                "endTime",
+            );
+            quotas.insert(
+                "session (5h)".to_string(),
+                build_minimax_quota(total, count, reset_at, count_is_remaining),
+            );
+        }
+
+        if let Some(weekly_model) = pick_representative(&text_models, |m| {
+            minimax_num(m, "current_weekly_total_count", "currentWeeklyTotalCount")
+        }) {
+            let weekly_total = minimax_num(
+                weekly_model,
+                "current_weekly_total_count",
+                "currentWeeklyTotalCount",
+            );
+            if weekly_total > 0.0 {
+                let count = minimax_num(
+                    weekly_model,
+                    "current_weekly_usage_count",
+                    "currentWeeklyUsageCount",
+                )
+                .max(0.0);
+                let reset_at = minimax_reset_at(
+                    weekly_model,
+                    captured_at_ms,
+                    "weekly_remains_time",
+                    "weeklyRemainsTime",
+                    "weekly_end_time",
+                    "weeklyEndTime",
+                );
+                quotas.insert(
+                    "weekly (7d)".to_string(),
+                    build_minimax_quota(weekly_total, count, reset_at, count_is_remaining),
+                );
+            }
+        }
+
+        if quotas.is_empty() {
+            return json!({ "message": "MiniMax connected. Unable to extract quota usage." });
+        }
+
+        return json!({ "quotas": Value::Object(quotas) });
+    }
+
+    let msg = match last_error {
+        Some(e) => format!("MiniMax connected. Unable to fetch usage: {e}"),
+        None => "MiniMax connected. Unable to fetch usage.".to_string(),
+    };
+    json!({ "message": msg })
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    #[test]
+    fn test_is_text_quota_model() {
+        assert!(is_text_quota_model("MiniMax-M2.7"));
+        assert!(is_text_quota_model("minimax-m2.5"));
+        assert!(is_text_quota_model("Coding-Plan-Pro"));
+        assert!(!is_text_quota_model("voice-1"));
+        assert!(!is_text_quota_model(""));
+    }
+
+    #[test]
+    fn test_build_minimax_quota_count_means_used() {
+        let q = build_minimax_quota(100.0, 30.0, None, false);
+        assert_eq!(q["used"], 30.0);
+        assert_eq!(q["remaining"], 70.0);
+        assert_eq!(q["remainingPercentage"], 70.0);
+    }
+
+    #[test]
+    fn test_build_minimax_quota_count_means_remaining() {
+        let q = build_minimax_quota(100.0, 30.0, None, true);
+        assert_eq!(q["used"], 70.0);
+        assert_eq!(q["remaining"], 30.0);
+        assert_eq!(q["remainingPercentage"], 30.0);
+    }
+
+    #[test]
+    fn test_build_minimax_quota_zero_total() {
+        let q = build_minimax_quota(0.0, 0.0, None, false);
+        assert_eq!(q["total"], 0.0);
+        assert_eq!(q["remainingPercentage"], 0.0);
+    }
+
+    #[test]
+    fn test_pick_representative_prefers_with_quota() {
+        let models = vec![
+            json!({"current_interval_total_count": 0}),
+            json!({"current_interval_total_count": 50}),
+            json!({"current_interval_total_count": 100}),
+        ];
+        let pick = pick_representative(&models, |m| {
+            minimax_num(
+                m,
+                "current_interval_total_count",
+                "currentIntervalTotalCount",
+            )
+        });
+        assert_eq!(pick.unwrap()["current_interval_total_count"], 100);
+    }
+}
diff --git a/src/server/api/usage.rs b/src/server/api/usage.rs
index 2f8fbf88..74c896c6 100644
--- a/src/server/api/usage.rs
+++ b/src/server/api/usage.rs
@@ -10,6 +10,7 @@ use serde_json::Value;
 use std::collections::{BTreeMap, BTreeSet, HashMap};
 use tokio::time::{self, Duration};
 
+use crate::core::usage::quota_fetcher::{fetch_glm_quota, fetch_minimax_quota};
 use crate::core::usage::{DailyUsageSummary, Pricing, ProviderUsage, UsageTracker};
 use crate::server::state::AppState;
 use crate::server::usage_live::UsageEvent;
@@ -418,14 +419,44 @@ async fn get_connection_usage(
         }
     }
 
+    // Live quota fetch for whitelisted apikey providers (GLM, MiniMax). Falls
+    // back to a static info message when the fetcher returns one. We never
+    // surface upstream errors as HTTP failures — the dashboard treats
+    // `quotas: {}` + `message` as "connected, but quota unavailable".
+    let mut live_quotas = serde_json::json!({});
+    let mut live_message: Option<String> = None;
+    if is_apikey_eligible {
+        if let Some(api_key) = connection
+            .api_key
+            .as_deref()
+            .map(str::trim)
+            .filter(|s| !s.is_empty())
+        {
+            let provider = connection.provider.clone();
+            let result = match provider.as_str() {
+                "glm" | "glm-cn" => fetch_glm_quota(api_key, &provider).await,
+                "minimax" | "minimax-cn" => fetch_minimax_quota(api_key, &provider).await,
+                _ => serde_json::json!({}),
+            };
+            if let Some(quotas) = result.get("quotas") {
+                live_quotas = quotas.clone();
+            }
+            if let Some(msg) = result.get("message").and_then(|v| v.as_str()) {
+                live_message = Some(msg.to_string());
+            }
+        }
+    }
+
+    let message = live_message.unwrap_or_else(|| usage_message_for_provider(&connection.provider));
+
     Json(ConnectionUsageResponse {
         connection_id,
         total_requests: request_count,
         total_prompt_tokens: prompt,
         total_completion_tokens: completion,
         total_cost: cost,
-        message: usage_message_for_provider(&connection.provider),
-        quotas: serde_json::json!({}),
+        message,
+        quotas: live_quotas,
     })
     .into_response()
 }
diff --git a/web/public/providers/aws-polly.png b/web/public/providers/aws-polly.png
new file mode 100644
index 0000000000000000000000000000000000000000..eef2d60102db72c22139d63f3c09596586a3c961
GIT binary patch
literal 30178
zcmZ_!1yEeUvo{RyqKhw*;ILQ%A-MbE5Fkh(KyZiP4#9SDcMER82^!p;;O_43Zg2kg
z-tRt7ef7SlYR>d@|GIm6re@~U^a)Y=ERBUuf(`%xuw-Q<RQ}bl{}d3)zjv3g!Qj6N
z$xKv16ac7<!gw-3{?~>W$*3p*06*US!}$XM5C6gM0RYad0KkDh0KlIN01(=xH7X1K
z6G)h7$eJoB06zSqK>%Qo1pw(E1^ib?{uKZKF$)Ml{8t12!^=YWUnwjL@&C~O0m?)o
zx&DI<TBvF`X(-6^8`)Yj8yMRfnlQUr+x-Us5Om}JM_QXW89>~ut!y0m-Gr$B3&H=7
z{tugl8uDKdCrcq}4Fx5LxUGW;gqxX_nUz`?9Rh&}IvAVst4K)wkNUrs5Vg6JlN~<`
zi>s?EvnvO)t%Dg08y_DZ3oAPdJ3G@q1e2q?jgx^JlZ_+Ie;fJ#*^w}DG;*-8bF#3t
zf&9m=fuXIllMprae;obq^WXh6akKb8o@^ZdC#-(~viwKF!p6+X^1rtKsS5sw%P($g
zW$W<8&cMh-m`(7%fd4n^|9JUtw33CJiIs+gg|&%|<G&sWvvYC(kJA6Y<o{Ju^Z!%x
z|C0QVrXb6I!u`L(|L?K=FYdp=6-F0i`QM2WM&BW+odN)$09gr9RX5;Ni(IL$x=U8w
z=%LTjdlrU+=?_VbIn235d2nbToFY#FF@rO@NN|8ws1gpahCp{3(@=?PVnhXHVME;p
z;Zu2l$wD}=kIO<@!nNU>vRYAIEd9kr>r0>e&g0BIOV6NO!_v&4@K(d_({97<kMcjW
zy6@#)iIQHA%ZslzB98s4R!f>{L}cgxP|2Yd9pb1cYa4k84F(=+ey|y9IkZ^Q{(GbH
z*L8w*s5)LzMMO1?k=;gKeCF3j%enF|nTcc~gO5(J1y0>9QM@m#W~n$mxl_(jLCu1n
zdh9rjpEp}G$$V;3)ALTB3NEj-+NPh35Z`+}_0_^E2O<pX(h{GQ2-Fe?yQ1Ipj1jtL
zY`f3y-nVm~`^f0u7MZwx7jfZ;tdI1mewoK$A2B7y0lsREcwA83a(OA&XtHrm=E%8M
zHfbmBm)jD6XSZ*K9vgjNZG%2A>xaeEE3=~dmqC|Ub<KpCl7TU`>1ea*vF)2*NC9+v
zzSVKv>3+~U>UYuj^b|k5?M-2~d~7))F3ijb`x{<sx+lAuM+A`8A&(V~v&bp+$tkrs
zQ=y+Gv&F^V6eyPEm=x`wrK>$3k<KKwX`cF!IYS8ToL{}~I~89yIY(37U4(z)%p0SG
znu;Hog5V6Z3Tw~b_a0+O_ekC1;E%)4f>DUVqwhaqoHU50bZw=s8m2#Xcrug2ZsEHo
zf;c&YDARrM&R^f&htEzG@mXFlU-PWKTG6kP&zvp?fw24DKVH3;Yd#z(w?`H8-0A0e
zxI~L@8?V!aJdgC-?awTKTy7?|cDHop(Q1iGG1WYkuX52fy`JxCK5-45uPOP;kh(MY
zozc0+<?n&c)j0)d#czE4{8`w1ku<OdC+F7S%2MBxa$$b&wFdc{sUX>N=9?vTn8u1f
z7K}U^%g?1f)F`a951Xh8f6Q^HvajE#t`G8%*MDIITJtwcH`Z}i!P<BF#<?3kYp5bW
zbKlk2&}!94x}WfZ|1mmUnud+6IW{oUQ}AT9IU$heH0m+vG+ZnAnDl+1tu(^iI0iM~
z-q!2X<NiDL7oWxipS!d7l03^Jx3#A3O(z#Om}5Ja4(t}ijj0NMYcqbeu6~kSpa}Ft
zH9qdFZxWw9g^%duarcQj1y&}R$RO9d5bc=-UqVU?+69XNoW2;KATkH7paanF@@SMV
z{yohy?p^cTsF!^4J+^chJ}SyCIsr51I@MM}rJ?D^je`$62Hp!hyI!uGxgDCbK4&~S
znJ&5qHeyAn$w{ZnpPrF%JxTlPMpv<cccw|M8mG%cks{BWdQL2FoqbfT-e{TVSOX_D
z=Z#BbmEWq37s!6wp8TLUvcUPX0Mjks6Jumq)~j~7G0eRd5q+N0C3;~IVnmuZ>W*kg
zLQV9DE^Old(q##8TGM^~;otY+p_0BnF;{Kowp!5OB*3X3rBtCXm!6H2F;W3N7!eUj
zoM3Ar-qsG#T%%i)ELA_$Y&coSmZIWPV=GHFS^dh>cq8~)szXKYeg4`y!DO4a&ibu$
zu<h6OA`RgFXxa6WXVsHKL|Ax4J!;WGxV+dTMomp1-AO#f<<LNw08&v>_fVQ_=Ec<~
z<kzG*-??50%!6y8QK@&EQR^tPz=t}H!;SDG4Srb?MfL{Bn2FG~%K)-G1<~TnNMhm;
z1_9iZ7u<v6Z@`km9Tdq1OjZqVWm20@2@6TPeJa=B7$@4s%N0jZN8$93@gT1i=BDF;
zMje(z%`juRsMNk!POSGIa8-c{3;mGAt6}C<3Sc3E_tU0!Wm|FN-}}768EZBM{pVJ#
z(V*;w52lx8+50Z=M{YpSB0h+6>!d8+?=F5+G||8PI^-G3O%@e{0)&sE(VLcx;N&Vv
z&7OUs)UQPzx$jaFQq&J4iRP4xtSJ8$ZCDk%iGKv+JJq#6EtZ+bThI_Az!+hPIm3AB
zLcYy#9CX)JH4~prFDT|$AYb_u<rS@v*dJ4x(Hw8XoryJh+REB|-NpIj1}(Uou{F3)
z1Oc{Io79`J7t_*9KUg)%w)%ZZAI_gwvJoW}0C*5q92rg-j2Ubh^k*mCmzh&GkV<qO
zYivNg{mj9_@=yS1imuzCPYAHf$`L9GxXq#T!?CJH{o6;5JHn<TJ^+lslUS>Tb*+1@
zveiJEb_}?Xs+rk?4P+Q?v>b4e;OKinj#u3bTA2Nqela&=A|FS5%_Rew;_|)X(p@KO
zZuiX?T7D!>q|dq^jzyGJ#;h(;OM6y_rTMVHpK$)hZNHBrzR~gis#sk%@Ns*(S+7<=
zoNa!%(X;Ke5s^21T1KySl#R*LsRb#TCX}t2pO@Tz*tT9!ddSby1&ZQE$|uNAB=(g+
z5B77C(}WffNlZc{3nTRc?D7WwwO6zlb6ojDw>L%gLgUbX{)ch)H}uK(aJ2pwN&Gyy
zPmuZXDcFU=q)0%jF+K5q%ZjMcM6Ir58uO3c%+#P$%g(~hion$lX(E!I5HNTR_XPGZ
z5c{i3Jo5GPORvxEH~U77_({Dq`A|(RP4&HLl<|eHch~bS<0b-LnWv6y>x)lWr&Xi?
zWNISpijErqr<5++CYOVdFkdgpI^POG2W2Fp*w<(&M2XCt)?JxC;JvoZ<SF3*1^gWt
zpTtjl=(1(ji~#c17J#O2Y_E!({h<b{zHZQChRTu^$+DKQo+2bV-F_6U+YTwaVh0CJ
zfl>`kOlH5nw25P=|8lBsuyj@TqLY7cv624v&~kF>g{xy{F{ntyGgOr&%Us}iw&%3m
zP%g8r8?V2${&nQ8w5hJ@%H>mC<%#0;{_d&SVdk-M7@^+B+Lx|^?Sp{k(wW)f>yOd}
zwUeGzT;vNB%PF;B-@S+Lb*DjI89x9UQ18h1!=VIOuf@LBFxCLV@nebYtL>0!JCPd_
z2=<vBHx1FGnZ!1D(T*|8vO}O%*cCGi+x&;M9lzFZ;C>g86a^YO*Mz#%OMUIuzydO!
z*wQ9`ea3sbV8}YfTT9GNuG$X1QD?Gsww1x$W=aa&6wm$_832O-)51&IVf5Rcs;!Jx
zi`gF5GS~Og3XgWvD;l<Svjyc&QD=C%_w-nlZ7G3Trx8L;uRHZ#yLL<H&n)5udLt-G
z+CmCQ5WUQoJJie_krwXZ*@A+elW|dHy+!7oL+6Gc+uzh`hG~!A##yW?EUJDELfN|Q
zA_L?+K9WlcQaua#Q^|}{`5t9aK3GDCNg>C+X3aoe5%IR$RMu1aR?$94fuH%wS4AAO
z@gJ4s-y_*H@U<~;iSAHCtb8xG?aoGpWMY9uVyd`kn{SPKg|$Zasl`CrL+NCsUEPtA
z{>PP6c!fXVe%Zzm`ap?qPF|W<&jeYc(N32GW6WWZ6<-s|zF?f!G+ocEG=HA1ad+~Z
zU{2DxwV!wK=sP@7XK9;JoGl6hKVVQ3@kPG%4%r^Wg+^0i&4EQBKChEcSL-4SyP1N;
z50*t%tbhMrlZY3lK~&$1bEUf!_1H0*LQ+_5Qo1^|{B0{wFlYf1(V?s_&@nCwFRTrv
zE59eQ+rc&Lw=K-+V!GKB=eL-MO!d07vssSFC|}d`;EP<;hQpO4mx@JW@O)O(TnuVT
zi3$8>p%&!M7AZ2#1|Jk<T%7jj!yq*J@-dzt$fbT-Qn?Uc5IVAfKCi<YZz<WuU=nt_
zJ;1cmS2tWc@2eQp^vhmkmUz%tucWUgnq^tJ*FRc{3nr^FZgtXksvq)7f`fjUD!k6n
z_o|=kBOJ4@C26+`0<}2-CweXS-YyR>-h9gs$o&}#rqfm_wSS45d4k4GH9G4p_a0lJ
zTds~)4B*fc)Jlnq+VQ_y?T!McpaV>y4GJ;HUsSUTQddR)!pnrt>^8I^YHz-BT)Mh)
zN$y8RUea!(1kyBF@<wjG&MV!5^IoAlB9L8!BkemrV*f~P<U6WZ87+5QQNgE|A+Q5?
z*H;+pj}Sjz`1c_XB7f{uDkn}*fize&M5yD>9JnjbH@e=8l<}I((l};&nNI~!o~?CL
zq)i}MM;1&8l|6elp2vDFrq3TV`C1mrt(UYtYO&9`Tz{@2j%07erSMucs4f9;1wWT>
zWs*@6Eb?49m<!}-alAhZp;WZP8KFQIuR)X<sa?M*6I9>o8rSuE8NIN3tzC0s@{A!L
z7sQ1SR-s&ovIjwlWsDcI#@BBs5I^?4@1s;?%P5b+4tir&al@yAMBOeuil+iQ?DL?a
zD9j3j8%02qV?^^XeMD$FXMLR(+48JGz&e7??qj5%j=uv~A=u$^d2k?&c<--Rm}LyO
z#{cuV`aW!~Z%pmzk}TLJyAFUmkq@5}ZGf#2rqN`Kv6vt7bwl-wa-Ma#6vG_2Mm24q
zCeA)X^!^50PC;tCo&%Df9vlYkl2>~hU-$I{3r+7obCD5Ndl#gMk1qBYSNS<M$;mk5
zjQ1u!e_Ry>h=Y(}bQ!Do6UP{UGF2HF(6WGP7c{z{YYyXgU(aL<Vmmmfmvlq89L^@}
z2GMCpQ^jHhdSJ6;<fv#oa@73s2h`aM)dFLQ8Nd_bmZA+&fxU9J9GxS<_pK7&upESq
zuq;qN*Wollevod=QM1>VEo^+F@pX(QqX;Pm8ja4ub;U3$IhXw4gf`T&h`m@uj9J5T
z2y!6vY_{NHUX~z=Q5X@z06h_J0WV#RkigHesM^udzs*9nv)k-thtu{A<~O%`;?ut<
zcF{5RPTQWIK>+j1zehJM9`}BPlv~oLql5ESn%k4<va|Aa4|v$4`H-f?!@$n*dM^N6
zPvnSkges6cx+heXHMS4E-xPDqV0rfoMU*+0WnZPM^fBj%)9_el_AAs7z=7P?KCruX
z7H%0*j9J>lz$CamhXxf2P#Wnc=R=*9b8BTLDx~^7sU{Q!498vH-BuGQ3ZFE2HrC}t
zTnX$~Y=V5p>BdiO_ay%XhZmEBi&f|HZ9k#&3S#!!QPO>hylo5xCwD7drjbyynF5rd
zAfbL~bh}l)QT|P`pE8JxPec}Wm{yTg!JDPFiXf{DQ=O)MOWNMXBAf|P$FuL>PlHM@
zsG1S?UxloE^%Mc0sx-tFkS0X5Uz{uXAIqBWhbKK<8}#DM%%&YCKC@#sx9->eZKY*C
zJ+o>IWGfZ%!IIGSGrf^rn(Mjq0~xlXY;`>ct5&e~9-*oTJ(T)`+VMT#l?^ENi$@xL
zA%Vf;-sFbf<DM7vYv<V7c^*JuvGimy_0$6U{Am9!TDE@s1HM{E%qu5#<<aB?VRVu&
zljzy%%8wAnRnf--f^TC0=Cd}_d`oFJYYRfr)rh;NzR5cE=}gLUy;OG*3$Y+2)IuN#
z&;)gtG$iS6w>3gxiv0ytbDlS2jBeZFImuGd-}26I|Lfcb9^SOtqo84kdgt{cd`j?V
z-c9pCEs+PW)@X`_7ssl#u*Z|^?R@e6V3PW?kMm~4NiC9nKPfkc{F(9V#@ys$33q${
zvbJN;OLLd`a{5!*@@pb)6XjNk<?Py>>eZl+?vb7V9K?RLBHNH5U>GD<N4A6S#Fti!
zsCvF#;<c2DSb=&m$wgA#_reU4Y%9_7b0n)!o>E-XmuT_h{x&(0z87@rdkEC7cS3yI
z(vP$39r=k59wgdI9mlk!Xcxd`R@(ZWpoB!}gPqr)#;aB1Noalt{oz4%HV@Fw!z?nk
zmtIp{t=haGdX<Ehr!eBJKh!NbLo|>Nw;h-%(&qrk{(+xMuKy95Dt4IG>c(tANRLGg
z?O}_McLaaJjEMc5Gtn<c7ORUq8>x%j?JH2E4wnv_LKMBjCx?v>%KIy*t2KO<12o$N
zj;5p^Pqp54>T0Fgy6#V+F6+tLy70UnD?V;slRob&o?vxZhwCI^DFd41kn9rx&37lu
zPdCG>0~F0}A|e?pAHLpQK8Kn0eCA;wEZA!>`QpscE^(vKM3yh%kRKkZ$X2<lFBj>e
zO@YRG<kye5Qm@!{v;V|QRugd_aUOI+nd?sE+D=K%a&gQVF;zXQ(DkkFPnhwr6&6yW
z-An8$c6*xR30YPegd75+psgm42i(gb*$71AxWYSnZmi7QogM(=e72Ec&o;WtIQk!b
zoEcNc{PvZ#bOe&Q53BRV-D%o;@K6xhBmk0AqDZ?tNMLO45YF8y-CIY6CJV|HRC{!7
zO+nCc5}e34dw*O<f}N;pf-!5Jh};PeVE|fNiPZIzx(#;6{XLI`x|JMQ<jpRNeC`*S
z7w6eP?Z!#j=*;!AJji5~Q)o-a$Wfo2%;!h0kOEHQ{xDDD<LUCLu-E0+*R^BLW-mfa
z!D{Vyu$V`h<V&E;s-;MGqyRnIa`bDhdf5WkiB3<s=LCCx$JlZWlbj)cy(<zoYu?$e
z^Q_(Cg?CbEy3i0e0<Yamd$L#fteM6vTX1fabyiOn#!xm2{??Ok+*~Xy<~x8c4nd>4
zuF|E<3{!|TC?S0AX!@C&k}cE3Os7|dEQXsXWmCIa^u;NW$!zetF>`D9WW>kn_27n4
z`@s|p_(1)*EP(msb6Y?9knY_m9(`Uai*>Y$&6EshS$8sgV2Ut;(EG|+l2};*yYQTG
zaX$$KQIwm-TM@Z&OcAuUW%#a$b`wME_htM^Js@aocI3qQTiidli`hQl+9mHo41z*g
zFG`*6ezLmFyMAgz4%~>XHhx<Q!r4Bw-moF6yq+&Exy5Px!8074Y%<AQ!tHe?dfVbR
zEAXq`j;NdPIq@wsJ^+>TNZ8Z*=c$_H`P~)=iUr%z#XORFAPl5QQeq>e<P_+NG2yY4
zZ54Ug91x2UgH0{pt)Cgsqzb3`!O07d5J3a%Pq4Y+2Pf?rxb=A5?ZEO;?~5Qpi)#`6
zGgYHdH(`fn8k-|=Hv6>2KX+9AHGo_U)p3L-jMWsR2n49}rAg|6+Pvaf_S@sb_vLlB
zFT;o7C}QTRl9#b4PC-HC1-CcCL+?y7rl)C3NGG20h{=s%kZ67qxhCijQCLy=*@ym9
z88@Q(u(VZ_`M{z-$XB<TesgRD*KgxN76{am%pb7ZIKWY#>@tmLCa?s=|9vd>XTl-N
zpD(d1MDRY8!_KrY`!2LiAvtjJaVE<x=uc-xyQ=SKAGbBD55j6STn-<8q|CPYFQ1GL
zEEX1oc{jC)0eVkwqeeq>Rb#@cIet1HmmVIve_^wkrEX>9pWN1>m9{0V5zXKGV2$6c
zA8#X$<dkfdi>@I%2J0ZJH7O(<)D^-(w2Nx=_VaAE2{Jd}#b*3W6O5?;X0?=<n!Kd7
zPwnrTRY-PM1jz*6K+q={xebt<pn$K?d}wXiLJr*<Bg;QFsU){~HmPclGi^W0p5sK+
zFufz6M&Y;;?N+ea#yEB15mV{Cl$;RN$>!r95_*$C*A$}pCY{s;ZM#TG(VhbhC=#4h
z2x~A}&J|Gr<8jU&+NXf&He`g5cliv#DErvlRLH(WWBA1ge3YcXPMA_411N*$jU68w
zK?wfX>RhMx78&H)jvNhKflMJObunK7vmu-t+IHwk{y<`m^)98Ex@Tk4;5Jv?I|3a*
zg1u5BJ(-hM_JL1t%asq2RiPR&=`;r@c~y_yMM2(2v2Pz&b3|Sk0>$RHi%T=83CFf)
z{%FL-0NTQB#)Qjlj+dY~r^Um~C2N2fMOrP9jM51CZ-o#)!eoqaY$)HV{7{dV8)7eP
z5&x!YiD!G@tBgA3#BpdQXuAv%N;TE33nLt9$~4E`U^WTL%zfT(apevAu(x}tPSo^#
ztJ!u-ZfI+w=ZY!s>h7nnfpc6@Tx<v@6n{aGNdMtTF#Z_q@etYdH+ZK)E~jt;h(YOU
zOUC{?=G!8KBuOa&Hb~^p`Uy!5(5+l~on{X@!Vtn(`Wj3^G@(cxfXgF;`R*E1zzAUU
z2t^`l1{)GJb>$t0A|N1ql)E~Ohg=s6n3s6Jkh0HhZxf^0z1LFo7C1Ch6FwcRvQ(^3
z-BTA{?ESZG?p+{k{-(Sc3)piGwC1SoJ`l~?yn1KRc`Pn*0wuA7aZ@=(PI|vs&PS2F
zVY6aI$=jry)Qw~0JX^bXBAB-CJU3F^G73IqtAipTlh53Bt@b~@NvB<jN(&TVqfAjf
z;ym2ROIIkcp3V3(+~Fc1@S{zyxnlMBbt6L9OP<ko@)Jo%+xrh|>@q43*rxj|6K(BP
z&u+=&@yq);-(A0q*D#e2xqx4t)nXgwy1vPON@iV=e;d1G9j`QQ3qvhJTCMDfCn5<S
zNPN*3?EQ3RzUQt1?hJm))}I2W6BT!a)8&No4#z}+@WmyTnhgE%sFjYB|CA0JoOA%#
z#7ef<5bTarsLjJwAYUKfDyz+y_~F@l->{n0Vej9s?|S(J0-^ypBNtxUy7BohcQvKO
znu?#f-4^M%%SCV|8uE<X-X3O{;_b<T5gWZRS0gvCFjKO$Fw%Hc7f_a{b`;w3_w|)V
zRw0!3zki#hrA68Yki8~1X;jnXZ7HufV^-e0&kIW5q+)~lGJkfC8+JJ`<vp%VX{oiL
zaA|t}>>AqN%X9Qsj~r)z`~GY}uXQ{%Fx}e?{#{L25odX{a{MkLj%QV_3wM^;Hh;Y%
zlM<^9zMLAlYCgM|8SM{q_!$lI_nIQ#ygi|s9{v1ItwAlOF+A~jcUlR538-0ERduK(
zL$L_tdm}|l#k%wj9Mb5wWr2dke&8*L45C_+Izr?nx@qU{0Uy~%vD%V#$;jYh8LF1f
zE6u~cIp<YLJFH0=N)#*eicIyFeqc$>H-a*p&N}myl_yX-JX#V$gOA@JxLL4|MiO!Y
z7*w{l{fE8=>b<e%`>j(h;EFZ(v!dhfsok91=(f>Q>W1L;p<~aTH`&Ef*Iw1ORecJ>
z3JnkoBE+dIPbkO!(u`lZ8LrhWoF-x{y=0Hn$C0R;aTffgm-y}U2fY~0>ihx)FNX=N
zW1HCov*&qNuy>nVcH2uB=hLH>YtU77-OuqpeDLwO)&)VvN5cMF*drLoq_D5^&8~8(
zb-Km%y@@Ty-No9A-0@*KI7zqQ$!}Dc*_1~XTUdwCW3p`8P*YXYk-bbsa)f_ih+O79
za(@g||D9Y_XWauY8K9x}4G|Mk3K$kh<&^+vXUKr%rgvl3dpJdzlh3Yu8%D*R(tA>2
zZ-P)zxf3~OsdGY_SRqvFKrPy>nvY*42#8d53AA=={>q0HBn~3A2kTag4CKev?j6(?
z50s$VJMKu}Rs{?y1G7|oUPvI~BoMR=NTy}@YHBCBVJ4&GlMLV~VP(IbuU3iuOe&3d
zi0v~@U!BC!)qYS~#jc$^y<0qB`AmZx)g+TZfxnAdhg;!W(rVE`hVs?vuTy876Anhy
z-z|?xu7Ou00??TEA}wUX&zl%GnJv4QgMm${&mL>1XRIb|KTZ>FhIzi+P_T;p^z0Yx
zA^wu!QURT@o;D?K99~Dsg>~oc@r|MwgbRL{*cTCp1$$Wi(bv2QcMYOtrO=NKK6J+F
zV3wew8l(B;*EL!nV&8%%h7fv*rzk_<m|~aB*ScXcC-aPuimd)vT6nWFzkD0*smPRs
z2E$+WpXW_bomMw4ktZI@pmEr?p?33kiP#eo74G`e-7U)TR>a0|Yju)vUu&xxiyCBP
zi@8UCK}8Zl?6AqI%X(Ik7qx$4bOJozN9ufsvf@Za3SpEKZg85mXw!Fcdavb-8I@5k
zVr~0NYq`nxvbG=wHL$gnj?~Q)JgZaKdDn5e>QyGt;zQ}ba*$s_Gvr%l(7VR+HT3=y
z7-5ISo8j5gZks3w5=-n7)j?}4Gy!g<Z4OoJVJZYgh{A~~0c-wOYfmzuUbKFdSSSpS
z+(h!kF?V*HbA@WYqsc<qfYlFX;rnyYFvwoI;rzlO05EfDBCJK&)A;_J%1pmkmI(|%
z2*+(n{^5*8+j&o|*Tur_#QD&hH-t42gWa6UCE*j9-51LDsYx~>@shk$bn2Fv+MD3|
zYMpJ#NSM5zMX@Pc*zaT%Mwuwma2;pRAo%#P_iDB2_3Q0QHto$Z6KN-nH!CJ3+i}U`
z9gq3Yrhys{h{~#J2281)Y1w^^6e$BSk-+men8zXUC;txh!|~rlMjAdt)c4h(gBs&^
zUDFhxQbCD6e<Pmu?dSP~mKK8oc%utNh?avXATy+IWGIgF5(Qz#lf}iJ4LO7WY&b+t
zcMGhgoN&Yr$$ZnP3oC$jj}GC@RHa_mEmEt&p39WM0XK56X3F?rx19B()aa1&9O1u}
z8R@P;tvnKk%>r2gy+4rlC_1R3^b2X?7tok@iN7F4gWq(dxy+YN6lbLUhRb|uzW#c-
zDMFVFyvW=ith?a|G{y<KLM?~1y_ycs{bu8+(N<>5t+d5O<a)<vq==j-NTcYr>U+2H
zGoPB$9eAN5elel&k=hz>jaYj)4*Ed9p@t!YdW6zPBEu(+Y{%5S`R`I<o=y*}NaG@Q
zfrXbPA3hDG+;&M^elio>6Dt5#${|6JZi$LD;=$GmO&4rL9h)%-TU#8-h;x#ykCC&R
z7ajM{dpn{;aJQ7a0L48{vn|GG#e#t;Vvrv8P!?4o&>+p=j|>u#rwlw^D5o+?nc(gb
z+1sYoeDNCnV>vOX=#fy@>h0XEh*zcnjzxz^%{F;6s^RhEs$0==ugE-~k6>DQf>8E=
zjb#K+zIx&qI6RikieJ_L1nZeyNogH3&L8hZL}nV)9E}2%#68s?50s%r8qMV%()A_U
z60Aef00Y^4Vu&Q*qAR#rhVMAs3)DD%?n(~RSNl~fGO2^I`~bnMn>}lZIkupooJD&9
zhiW53mB63;y^qA5CP*wx*#4<Gl$AJa=6m~Xu?dG`)&@s{D00yBbsfXqIRFiA7CJg_
z`niYH1z7OCTSo!X8X+c}TDES+!YmLF+$}S)bFhB%>@nZcwV32NU+{2Qc1*E?t6qui
z;X%0(_<4~~w;fZj4DGYx1DbGluEdu#vF1y|Pfsv#1s{?G-azJ_QCK$}AwsWlkC6Yh
z+q>ERf2;Hfd|!-I2Z8>{MgqiWlhPDmeliG7cJ8ThSEWCxpP$U5CaU%{Z4d*{e&pZ_
z!eDF3rjSxN=Rn)^6)eyro_tpi+Qmon!=ci~9d(p^fexYPqKHASjP5EXpngJIWB4a@
z;Le0p+*UFh`hk83qaO&egK2c7Iou5{v|W(D%vlyFC*El{&)RJ=|K-%GzSQi@xcm-d
zW2Z@cXJ|p3m*pX^{Yi?Df5gEpn1}V-%skWC)%tmmL`mq;yWQX+oH(OTiB~!T<xRb~
zOPXACAH^MHfKr|1>S8YKzS?jYPS-FllWIusS(OpEIH({5xP_`LLspEcE$#$6M=tdN
zNA1n}IS!c=iYc8H6ux33jU|MY9-ud)(kga%^nT;_7aWeJTOhc14}?~tOVQwTmz@3*
z`Avc-NDl}GRzVSDz=enj2(EIhrG=;j0Th_e2cOnN-+_KkYH~2X8+2#Wsx$G(C2?u`
zV5x}y?n}b6NZb7N@Tl;Bp5ow19Oa)b>DO)2=VO5ZAodgjb4vFa7e2yw?k2<uxJU!u
z?S(o$*y(xO%a_)qmS2G3B`nl{FE-cQb|qs2I;#9Qs5&BN^*uQ;gla8pgvT^{otV1e
z`gv`R^$LMKSQ|!qp-QwNUlEmt<O`V}glA^JWdOd#L2SbMYqCqxY60hj?kFfp?Z0%*
zjD(N3w_}m)AoN1Lq<;6f%t}cYX_VyFG|BCQH1LkNb}BG2h+LUG7KYv3RL}ijhHAmP
zNlP$G#oJBOhXl%Z76nJ9j>cduhHsRWgx648nRH|I_#|^)5&a%mc)K6s8hYx<X{o-5
zDXds>5^$U^@PI>k!*i>5crsqFh}Xf>v{h%*mdxR)apXhD^%9+yY~A?R_)G%NcKSE^
zMh|Tc?w3sNH==Ss&BJ1)7QGht`8mWsaoU;>$G)}rb~6Wv&xV)G2mRQ3Vm%=^Erw?`
zE7OJdCxN+<fVlqaku5MO{UZ{V04;#vM6Ni3+vSP0NUH==5=h^l@+Q3@(e1bYiJzEP
zP<%TYE~TN*zdO2y@n;Ax$Ri$!n*>2Rc8rK$JibJ{u84$aP(p=>rH|!ZW5D;dZ|{|O
zDL&u1vlalN-hg%{xtMLca!EeYqwF;WuJ4(aq;kJsl&pSq7|-}hnSW~A#!ZH|``Xx`
zcQ>}V4u&*SL+bQCe16?8UHVHn6(XzFG{Q(dmG=f$Tr_K3$hX(=J2BQ5)6#E$QQj=@
z%D3XU{1*L-svogN;%8+nbMAy^xW1;;WMrOn%Wxu!0#b5tsFtBrgMo;BE-}wbXaQ$u
z5EUS`N{l#Rc(46Lcc@tsBhna)>~FfIEUf-3Q)7I^klDS&GjqOGbsdQAxDOT9MsmNj
z{+bMw)2>DR66qHht3bIDk3=m?mfl@<8nrM*uzBg+sTc79S(bOF_X{&j7C*dGRD){@
zCZ2q7dE&Xu0pBR3X$hlvHhlgPOTF4o=~L^WH+t&oc0{RodpWszS(TQlAS`N5MPgqE
zbz+l$XiSe8{UpZXF7@`OemH=2k4;hmQ4A6H3&TJv63Q$sf@)Y--wrNsY^akHUML=w
zHk1yi6c1YZfVEVG;@#_I!01pv%8Ssnr;W~3&xr|UqisJ5yu05TeS<L9)1@_y=}bBk
zv+oX6G(4mcZ8JrYvwJ|EZ8AZILlW|l4cYjo=p_E|Hfm<efDnD>3j?5nn=6nN+03as
z(blwTN(SxbSF*?cbpw_551}kq^)b`21@XzsQ+gU&1(q6Ru8$tBS(mmlSWB|E7sq|G
zgGqYyCBNs>soU5Zd*4KGq2BI5S(zvJUq$__QunP*v2Ak?itMA00mH#L4wPCPVMcp|
z(j94HLsZn2P?99@+yDcNjJNZ91vf9eCj+9_Er;olI157QZbKC$37ZrDt*6P1-yS8)
z*D#MompxRk65YAJ@W82((Nmj+JJF52i#j_=wELHOg9-uj4Jj(aM8=$7z`gZ{ct46c
z#PvT}mz*EbIM=xysW{-&;x}a9#L$h+f-5;x=tk=I!?UM3=))v}Z6*w(Ai8eKCd@+>
zlFtbnjoGGYGq&xZr;aXFPZdw47=MoAs_V3D{OYVawshHO1B8&=oOwX3Y%XnZAiJ3u
z2q|(xUrFiOOf60(1-Kr$spSDHa>!4>Kj@(cxGVs&ZF$m|F;I@gae~%SzjOEFs3Jl~
zI#~3B?jFq9!tn%izeZ>x6omf~YSDfN7-6l*Tu6z3B5JFF;3<g5(kt+8pF-^l5kl5{
zFO8yu=m~^^zHjnQATYGIUIhbXs&kH?xG#Ht*2z~+fF0f{(SAj#o3z6dBYMl7B54eU
zvq|SFR5J8tD;6xy1F9dVU8cYKcs*9191F0p+TqW4(Evr3C(HF$T~~yf^%MwMK7+OV
zHR_1z4{Jq<i`IkBn2lbjaVNs9APA-~tEfonHB68UQujt0S^%j~esIU}h&ZjYbdHNZ
zjxytBxD3t+N=E1MGn9e->t}T#DCBC;vEx)fbk~u~b}ie6uWwpIsZ#q7!f$Z<&ZlrF
zW$9XUN^imXp&b0eGuZtXG}z1W8tuL_76nFjzr#z$vY}~2iPla`TFL|EKr@B&j|k+K
zc{??ynr8>Rg$g%D%SDLzGk4>&=LYZX6VXxyLTl0F6@6WG*)DEMgj?j*W_=z{f1AAy
z4~jqDoGy-x5;jJkgxiJsozDF#NHiN2@;F^~{qo{R`CL;<`8nU(o1gN)CH3xr`>z%1
zusm_9OQziu#S+Gb(F?4(yTaXnc;0o%zZo4%$O`!ZJ`W|z#1(!}NCLiNJQM%6;fG3y
zx`Ft!=KWdwS7!8~3bjy#FAZd|=)YLZ>>v=FskN1Y#`KjR#iJ+QY(O`3>MR2whSGr_
zRB#lV0fK<I{LYzm&LF=Ojp7^dDCBG}TqoP_Bc6Z1^zNnht0YN%>_|T$!7)swUR>A%
zk*JUXAknu>A^?_(Nz8oHKjf(qN3ZY{tVy$dGb)_1<ilC^y8BwR|C023U-4#f{o&f>
zZnMpuM%h|lM%CVPdu`?{2+gZb6X`D_Y-cm~alVY_%R@((?9C}}tw-)qWaQw{>qm-h
zmZ!Zx8*F?%&5EfemO847nCr)D69(;njOE^xc2UGas<Qr=v3gXV{kfpStoM<}Gl@4p
zqUpOUSH$wax`x}3MHi4yPxi$=^6^pJehZO!2gV`s_!Oc45h>E`7Mt>j2Dy@#mSqn^
z>6r`xreP_8GU9$ma?vzJ+ZJ8}a6s(YxoE)a`77%=#KvYc6RF%@pRqHEjM~jD(f*}F
z2P`p%__QNilYk*rWQOPe7IhX$|48&`!UA{HT`VV%n`v6AFs0*7w;A8?prI51U#PK#
z+Q?By(Iq=5qvm(3$JHM0uXh>^7LQFlftM%ZJ2`FfH&Oi;rhFpcz<;L}lWq4Q<*!Z8
zBzB6$zS1c~ro_i>&DP)j<7(8ydq><24)0)iyaQ#LfUzHCZn(p2AS&?c;mUpLxT+vP
zTXcy}>Ms6lU7hBAr52dD{~L`D>qkS<gKW_nS6YOa0mr<zGxnTgsBUS8wAjCjCNvq^
z*_x1#HU(?CS+3+ut(cicsbJ^L@3RK(M455icCx8Cl}JO<CJJa2Ki5k%MAw*?iu3~O
z+0BzYy33BKA#_#i`r*)?jB3L)lwQscTl7(@r6U+*sVqBmZiQ(<=7Lf-EzGe}_`OEq
z61`InV9{DT+PK)LB#u9g?}L|ShmzYRSFL}JiJxb?KSt9A&3~S58FHJSa3A>i7(H>%
zK04x(ELzL#uu*eoCt-!An0HA+8imGJ)SG0sVL4+R;;B8wdII2mXsiBaA&;M1jpClu
z|0dlulX!g3^PxSu;Wzp7n&A~c)kU%>5+d#)>j-=i;E}A5m!VD#)5a252cFIKJoLRg
zDX^l;fP@1o`rmE}rn**eut$?$dH*@QM0!y}XqV~skTg%OrbgIU&eGvq>!e`W72=ey
z93^rkjN_4+k-%eJj=hYz`Bf$rM3$pux=6@72QP(IHBx#7Q}rkRDMM9KVJG)z%^`i-
zeqJh>^_z1<8Rs>lEJBc$Bx$_yy+rD#I~pOTH%YX{`7t1nWp1?UYJ5Jy9B4cml(JBz
zBOr9#$blH@(WD%<<EGHd_szJ~GMSsDNQTegVh)Ll7ZD57l_RoiOEd;2*Sf2CYd_35
zVs`9MfHQ62HzYOI`3heVR<AEl!=pvytESggRP!Z|PXoJ?oQy`a`@2zoWNJTr7yCpI
z2dIw$6PkX9<gb6`ZAAqNJgh;}|1b{OMD<?#qKti!Km{+>r^dZq+Wr8vVmA5=j8ZKN
zM#>Nn9_@Sd>q}jDg9MoPSsC{;bEF$H3U_&v0@XL3N;fP`{VKQI4k($YExJiuIq|xU
zt=q%MdL@OJ{F!}JbWKxVv=eIk?N=8c;4@R#uN-#=(tCd)djyq1`41*lD5auB+#p|L
zJXOSdRN8K3r|e<kz=8wX>4pU+mF@S^hlND;tbF}nktpCfd~2b5`|;x=tw*)N`Z-NS
z-zKt8i<Idnl#R#^S@)95@Ixv{{MeM<U7&4Y<~bWJEv!K2c>m~V0ECrk5ZGMG@M{Kc
zqZn+5_{CJSqtEi&Kl(_$K|hQ3U7~bEnd1>*CGs<~Ppj*T2BN~*cP&ViKr58E#eApZ
zW=Slx0G6qu=qdtg&UhL;M8&UVR^5c<)$$|^V+7p6=$bKy1v+aVHM*oANsRh*g?Pq+
zKw7&rF_TZcQ_L6cDl%`T{8-`}_ba;b)8B6fZxZQKJ(K|qWi^0A4Hw#qUn?1uhDfL@
z38IyPs->^kMW}HrDy6XOf3$yNk6uw)O&3LJ{+#&cQr5$}Y*aRNkRu<=)<tZDFzOzJ
z$=zAI%^a~v6RnV@eIkXRQ9g#o3a;|XKE`Y%y5<P$V<oBf5YtAT4TEMwj;;oVj!Y8E
z>9%DeMSqCWE4L%?ZeX#UP;pAIr$zOvva?IdzpL<M68e)I5KBO)va|LR;jah5d=|R7
ztmVt)E#b$}_pp?ovHi~DRiY2(k=-njp8!-l%1P^O9IY&L0&1!8*0s2e$j}AQJ5lQ2
zyd(gszX6NVWPpL}5e_#3q<~K3vc{XucKqjj()D*1PiX!ii>P98do%=d+P_$0fUM|}
z1b$^SRa~rVv8DFx%UTX5z0Xvcsj{@hJ#>lk6o#c=>cLEsoislmTvT!+Sw9o3H}R5r
zAd#1|sklaPpNc1vc&UCwK2I!30937HYp7ofTqBG9wO(K(oZ!ceGB?B6O~Em+5vfkc
zV~d>1q-H8LTB~8{#g!$o|3OC1MhT!v%BSj+f8Ehxg^3^JlYWN!-y?x_!zn?TN&r0Q
znofJ@<6RMEeWPF!px<gZ8AN79r222wvn?IR?MXS&3j#KM!p+Q5`Q0rBARxmzwtaXv
zQmkkpXxoh%3-zlV7Z8HtC8Lm4nlf3Gp!VHokz%I8p<VknSu^b5%Tv#%Hs6B;aHJ!R
zWKJ~xDGoUX8>@3@JDxuzW{hXa<a@i)5U~ZqFSe8Lv^o{k`)~5e`hTU6#V;Jb5f!n<
zrLq43Sz(9}mGb~^03THf9kMju*t3(NEs(qw@&Zr|k<j=`3$V}<;tD=~xD9kx^!X@(
z7@m`nwQWMDV#Xysa8Hi_w5v4wR^^sXAScZSz*O~tP$~w!Ab>Cw0GPhg?PS<g_mgSB
zW0dv&uz6)0@flH6aMFq((|Tq2sbG^f--bq(W)kMun0f-n@|wt$N!`){Yf%Sb@1Qj&
z+2_Bqk)r0?@(0(@VW^M7sd7uArZjGQx83`%J`A_`f?~Ip8{v2eouP#R;}QZ*Xb9_c
zyqYM=An<X@cVk*~fP_y(@ID_At3yc{fTvIlir_kioz<?*m%r7q<7pYV5ndCPYK@;}
zy7KOQMF0Bd4ORe3y~uYGOw?%FfDdQ~tbBoLZ(xLmLo3DWF>wrieUEoc;m?RFP|Syn
zUTG6BHtAjtlt2>lkuLS3uV#}7_D%gPJPi~k#X1-gxGC(X)f|%sqEhLtCE2S@r%ezu
z$PN8vhVUjnnD_-vYOTA&J`)nwCw6J>s+)+U4uUcE2ISM|x`7nJJ~v3$@v!8CggQgQ
za?lEJba}ve=J_Oq<aP&~)J%FD7Hs`!gF4aC_+xBSS}Be4iQq2PaN0968BTLW?2hCK
z@nG3^*ijqIRU2{_%t)WE6lnSd-R;PJPJb?q#=wGz0`TOO$`T!nCt^MM=p+>fo20yB
z6EH&h3`@oK5qNNh?!|{3%W0e(gc$Mlhk|MZ!@sl>G_*?p$#cd|<Ndv5h~uW;gJ^n`
zrNJbRyirC?f>QcrDgBqsiIH5at|;34lYh3+bP}t$wTt{)<V&gtk6yX0?@vDAsy7Lq
zn2E8aQ5krs)B&!tP9Lm)x7s21{2bn(4;y+ux*$VXV=tbKZO@Si9NVKN$~ymU{Mx-K
zc)|#L>r>>8HY|p17tbt@<o}&FGoED%sJXLs4?Lcc*I*YP+fFx%>piZdaSCvvn%=Be
zYVM{|Mh%hD^FgZrH4i}$3V5%Lx(f${7|Q1b-yz&0ONWwu`qLv%3h@8d&P5vW6;A;o
z=*Rl;3I;*0{aV1ee@7c3O4_$q?ZxhPkB$Z>_jZ)$%KgnF8nFmu8Y{pG)t~;!uZzpf
z<|ohVtr|4q&Iwk8V|>{tLzMW+c}Xcc!vJ%1z~o5%*=qtNx0}>8FH~z2aCqBWeG2#6
zJ5IL#l}bN+-iq~=xnk2c1ST*Sn-nWw=(ggJ00>94Q_Ya%eUM1pqu28GN7u(0`h<>$
zkpAuiNuLZLY{vZjLj@)dhcvTMt8jns299}dIPd2UR8`~`{`OyUahK2O&O>QGN^C2)
zWgGSJfZT{L^)#lzx{(6GoS|N&MmLpAVv_zy(VGpc?f7Zs@q0CB$)*u^f7%gSa+gO&
z{q*<W>#WW1y$4~4#|Z}8FRg$wda~u=L9F{NQbea&+cbS1ZOrB8V7e51-b$~JO2jT>
z_<7>LzH(8Kri7bY1B!isYSfDHRfs6!t4fI|i5>16-Zg)UmJav>LhSJ?6lgpfvYZW)
zEPJr~gQs%|`y`j7+5_&QzNo)w)4_)60=Nmvr@rIML+HWBn_lXWOo}o4ytrC~Ej$&V
zZXo3vJuo~Nm6z7(Z17X^9*;!c<eOvFu<^v0cPl(7F`t3l4{uH`yKv&o#ia#46^g#2
zLQ)>H7_9oaS{!d@8o|^_?knMsQ$r7+3O+lW-$;}c>_EVlA=#O=h##n=qI3szix;Sp
z{>F=6%`;*}_p>D{;L)wbeZ-CM!xum5+#hky`j<8karc>G$P;p-#rqRTetA=5*>228
zlc0)19;ORU*OT`M72KMyI??)Wy6bH6M~q+P+XQS&=3%d$xCbf|oPVB%FpC`+?DFTG
zZ9r^KPY<>7ovk4Ei?0atXT5phB)~gN)WIiT$!umXNtxXZwW}dQe^Hr9rA{!=hfA0j
z`@<TO#2Z6Oew#Ji36IM+0$g7r7v9KYI#r^t*CuK=RPh>#rS}lxwg@p8ASU!;)+WEt
zY8&;h06oYMfc@rcAWBv7LiN&?#8O{(@tJ3s*9efh*^W^s%B$C8qN9}2*X_!L8^p_M
zl7s<zB<0Kctu5Yyjl#vgc;V<Fe$O2qdkm+OpL4AcPMEJ>>ZA0(Xxw~ab9lQnx^5#k
zt3;mW<*!E&ECpd<6_a%@Nt7qfZ&h!~c+1f|imV#a`aQ{$(n5+00rQJ6CxG|f4sUGt
zxOaS?uzYgJ?(l$G7y+EScH39DycbP$-mKDPUpP4U2Eh*VlG@S#rUGd>LIUjajwL6k
zRG0@3+ahBLb&L+s1IUWQbo@(W1aRmKwX$s9qQm|9)&Ry-p<qKO#bOA=NIwN!FeNlr
z1fHeQx;T}EyrKQVOVuM0Be;XNC)D0E!W~K&0$L&GhMnRpm(ykeVMFzfM1k0yS>ISI
zD)`|c{YflyRer%36zc?ATLyGxD-u>-8O_i>n1Fw-nV(INz}c=S_a6|jI!^oQnBkH;
z%}`FMaRj0mnW>mA_UsuQ#Syx2sIDQ(Xs4G;n39uY!)-jdMtnK%&#w28%IXQ%0b*_(
z)bgR*U10ea+NPWGTE^<QX_Q|H?)+wJz2mxS39y|zRy1w;_5NSZjrlX2*c=5EsDZlZ
z@Eo|}83D*+N=rhwf3OM)|2H*|11JNm=#vs6ZOw8``C;|_k5pf5Y1K;E#oexx;iRgY
zt6&QeKEI<a7q#p76#FR})=nup>kFVL{$zU-eO13>Q3@O$;)t^w%2%&Gv->O2CttZ)
zEpkTail>HvO11ADcwJv(<~;8hhn#^9gAA3-jr0z=2oI^Q1P|f7nF?$>rNU)MlvGOB
zISfB4G;|0LIH++^{h1)Z4;D!qd;PNXi{nYLTu+H5bwMcX8Y;T?d~p5aZ}%~dq6meq
zma^M^7DH%$YCCQ+il+*at*^?1{D*P%g+0f1`B#6oJ&<o!c8$#>rN_pGOEb;qGr8TD
zgMW!SGD4qr{`Cb4CaCiViX+55m%WU0Ng5?+>nO%B0U0H<hw1zWpX6Vt>09!v*{>xg
z0v3y=sq+*fnk_R++}cPo!augN>Rnz8ymW29h_x1DyeMyD_$d#-4V7GgSp0|a-*2#r
z0VFASi)$uq$a`JZXuq))fwZWl=7Y$nehM}LGQ23!5DFVajp(>%W2{aDr`*V0a=6=5
zYVatHyF}|Ig}<#4HKUr)&*dSk#45hG_k{spV2-|Q#F8J}qu`mB&5N3~*ZU9antC*^
z2QO>SH)VvY2R1EkaSSL7KAV5q3QeUgg(YQV*v-~*jM$q|FieSpa{|828Tu6zVQ(Z!
zOVoF>;@!F#H;;HoIRp>>erk{aFkDD_4@j!!ZLSmLeS~Ss3{nb))petXN<(}@)>4!M
z0=v&rsMX}*-PrAiX6ChWVHQcFi#D%Ye|A<3W>z*+hI5=3SKI}hGgmyvtXpKb?yK@1
z90%_hj2bOJJx&PllFDy)OHv_xy0I&_ne9zBGLBfo2Ehe}{~V4lf;3Hg9Q2SZp~iDa
z!DhT<qzM=h@LtD>#aMuH5E(|;*e(X2Nx=b19ot8*@Rqbt6U0r5P%ld&6Hles{bP52
zDSozP@;VzD;^>oqe*)$HR#s4;$=5bjWfTzjt*5{;Q+Lw(3+N7K)a?qhebsz8y30!|
zX!%`Q6oNnpM3+q)2w3Y%{-gdWuH!k@ci5?tqY~}u4w0EQ5m7yOTM5w=Sz9-Q3O1^k
z*gXI{b%Xpn0XICjC7`6-$E-_*GRR!b>Jw`p7Pei}izW%$eu^$+imVl`zWgw)<mp<@
zZg6yq<M;~!6|R@S1)~})Ob3jPFVjsw{f4}W_#owkm6>c0EA0HU)-!``C^J)a89Aic
z$?VG=K17VjS|d*?PGZjEpG<g95l8Q&b5Cwy8S}e|XoF&*eWGu!`biLl@*&fB8csW1
zXeu_JlEyE@@Ez|G;N^*@*>u^<67uVZGUuGIr#5f8XQ-8zQk(m&s|k~hkIVh#OTdmE
z0_AtTvBD2D$KdT>;|>Pvkz~hS8%B9w)=<~HmL{W?l*GyKlScJ^;{ke{>1FwZLj~Wg
zlpO(OR2J_LD1}13Njj)DkpUWO4DaV6C8%HTw75In6feoOS6MWCLD5J)S7)X!n<z&B
z$Ky4uy3a+`Cm~4fs+Qhh?FGn+Vy$Fv#ZR7*nhx`+gsT#oAK+5E;tW4Oslp8m<H6_d
zB*gPMzEF>K%z7#$-Z*<qBNR_eyo>4yUdgokx8Pnf^4k)9(~o_#9d6ulT4kSCL}5dS
zf18lMqW?knIJikrO<_!&<kY!-?<K_NQRcphT8G?6*a?sI?#5u@RpZA^SrZk4OjADq
zBk7YCrMkPeh1nx3uh)|*d%7{oeMbK6n=Zts8aZhgDHc~5uaTdSaRIduP%@ov;3@W5
z?>myA1Q|}54I*ojZRvnZ(H?Hymjg$Vv#ac*=z)wNdoAv5kD<4D;@(tEqMl*NW@mny
z{*36-N|Y5@o!pd(PO6b^KpCUpnTbm`tgpBE8MxnvM2m=Yj7S|m@}eEVwY|HVYAFXP
zawjT*(nJwT`~gC(FFnHR3(9SiT!uIC4wQwsM6uAMC{20KE%^HlT-K-r79Zn)>Xcgb
zxytJwNvA%7x?C*QZByQ7YknsYSEH>&_xt4hPX&s8#?>seWwpqmlC2Rdpoti;|L+=o
zvv^c1acUUOO;>b5B5}1^!~YYcG+WE+KgG2df36UKCn65uyFj$oliV&{De`%8Alc{J
zAPF*rzScL#9JG)3vjM1RY$`Mpz9yF{`;-!#|0~B2S-)uU<4AlHr~hcZCZCTy&Krc;
z>Z+S`YiqXF3^uF?m{=!}Dhy1qHr0x>abhJw2*md-=}y^LkU@Dilu(Fvxt$*A=Lh@%
z5=e)(lnNM_*a{A_D)!CJG0B8dHPkK0(j)rukh_jBYB2V2?U=WqOULu@REiZ<D5)_|
zVKqJ#%jkFA=99WTJ#KclcANTf-Im*ByEt0(w{JcGLi`tzU$jvAkPi!H)5V;avSv<X
z18vYPqAymSBNA8x@jh2^9nbe2E*IB|#OJ^BxdagR@<;Kl=gcccWcv{RLrh8^DQn~)
zej_SW1aSp=n^At^u-=EqPb_#vsz#dJOn11A$J(+hi_O0CX7r$c_0?C}59@Aw`Tzhk
zI!Q!9RJd+>_DQ$1!&J*2<hQGOhkQNicQWu(lGDT7I|i;1y$;~a3E|=E_j?fS5>G;o
zR(iqZdI9Djnp23hACJShI{pxVK^+Hfuvqv>YLMk<(eGK$OxfWfcRb+Q&v+Om+<T+|
zlL33CC=bmV5Y%K(H4K9{t8$H;s@vV2X@m0bAcgLw>ZMNPfBNR9{jK!&@N{*KD*#}|
zQ5+*DXiYDHA%Sc}G0bCrhR%x=tWpKeEE_P!5BJ@<K>o${;yQm{MfcSsT&BM8aaOp)
z!4HfnK%cyaa|Vh0?HGW2ARr_GfFFs&Yy5^bLc$o`q*`W^1$NZd3*PYD#pfN4XL{z`
z4^-mnKRS5{0wBX={b9kB;TjYd)72>fMW$O%_n<Kb&AL-+88O3_Zw!N7(sw~9|7lx9
z^dMvnLQ~L)1?bz4?jNum2>_!4LV^4BA_&sNJj$4(NKl7rWqke(o$-)9KjMWHu|UT+
z{d#Y*v*z;y?UE^qeKF~(a<`j5F1oYN&KN=3@0JJ4;e%H{7#_U$V0c^P|JvoxNlyN+
znIp9#1UXBMLW!4cKoWQu_kENIVC$;rR}#cYjt3hGc&}sego8WJnI8IF0x)LaC`vp~
z5b;3w$G^VImx*-#`fjKWF&PrWzj!YO<bxK$03{Q7_1HRo{cTHz4Pc|ASDBT#E|$Z?
z*IElP{N4ePq3QK}O3_0K{^y^ZoR{CZag*A@>*=H~8%o!styX@ai|}uJpU5N;<Mj;E
zFgV4SKjWN^8ipi*D3lT{G^(ug8v*owBm_E+5lH!YK1RW1ay}n&C{D7~dQr{i>j$5n
zwlB`AwqMo#&6oG7(SO|ki`83wQi>f$_oMm33NPnkf84p~*x$C5`$Z=AkI)QmV_)RE
zKmHyO?J*9yNDxmJ_r=2Vmn#I|n6b1X_xr#|O?&FzXbz3iyr5gb^|CoY9>Zs}17j@I
zgts~1yP*t!{vDPlWcze4ti%z&p$QZa#URpa*?VuN?9Ft)_$-~3-`(OHRaD8JA}2^s
zVGeAKezv|YqmFPjs*22^*5O*#KsKrYX~k19b)zZ={c-S$3?`)ksaxEO7ab{FBn_V<
zg3o)9-!OfB)|}Tz>HYR-mAd<P?^A;K9ob}T^HYR-(P4?;KW{OO+k3=@(8d7_<BwOU
zgZVwi04@;k*6TU1ScY*!Kf{axvLF_f`sL*c0X%(Lq^c#|K54)2=bz}mPy-kH5e}vS
z#skdeH&mmqY7@2=TdAF>TEB_~NnuX`v;^_)+e3Hr)zm*YJ|oh8GQoW$gkVYcaooTp
zP{3sr4-N;}KvnPr0rMCo0FQH6m*bFZd<=pdDzC>YKo2qo!CV98S2Lw=^?KS`y?*rn
zG{1HC_r*jkhp_yYUw(&2yw5tu>no=U2z^|Ok=cEnNEX0AHQYZB31L^3ph1a1tZ`jz
z`Av1rw962jk9=ymOaMRT3_iFEb702z$j$7A7vPB?fUy}`{})DJY`M_3NM{m(&2{ln
z%GIxH`Te_D_h%14&2OJK>t#+^cdWyn<jS1Lde&-86ISNS9=LjlOXo2%+=>cNRnZ}k
zzCpg=VIOm!{z@eLHo=3>WAMy=h2}5Mo7X@1w9W2)j{L8_UowhfdxON-ZZIdH!z1Q&
z7+?TAkbXe`91p?}8C)9}2h9-(Alc&?b>JJWEE7Y)@Pq*#FOb+A>wk6~k<W47<CP5I
zj@R>7B9OYiSo>Ug?Uy=m`!@04kJtTmj54aoknWYYOdf3~>UWTd-XB*)JYy@2=D9UD
zAXYgaBEV;5IvK~T<Hy!&o>V)_Sqr2F84Tymd7p0I-az|HHTmywvq)D3j2w@u0<tv6
z-&WX<b8dr9H^(;nPVKw6H@44b!OIeWTb^D*#E<O%g!6ezNCXcn0VFbAz#x>608j06
zjWl?%C|s^iP`)_(CAWt}YyQXcey6?3_iL8SRP5ky9VtBmkPCt_j*tXGF23`Fl8SMC
z+8&v;K?K-Oaz58u+fOBC@`&C7$`B#2`vTeGyz5K0_V0MRNEFg8%2Qt}?YYlZaeE>D
zW6R;-dbU9%8#<*c<9*MR2jS=y0x%yyS|J34t%2rrU^E`e%XI~{FlkdDpX+o^l>~YO
zq5CBQj;pq8FV!-EqtO5le6b72$uG6|&i|d6J~t;l5duO4Wz82;7)!;B2l<R9VmV0&
z=m#2z1R%mrzqA9i0VEPSM<XL=U>t=cZ46p421`(!a3mwv>!U9YXMd><T-+>(j4`b)
zkR|e5;OtT4vQM+*aDN9O2wV4AE^y@*sU7Ey<{499uFMl1&z{Q_0vK~g&*FsIQ5|WR
zBy0ezOdlEVWTOfi%|Wh&5W+3=m~Dv**<MI7cE8>w8(!M|zX=c$;%!&@c%}(y{W<d%
zV;*0H&?Y9$n92@kLlE>R2pBFmJ6Xs&`WC}&JSj}*7>zS}&=LAs?vu(m_V8=y&Y$zl
z?>zNffhQMVtQUxuC<HRUBP!><*RT!Xv+F)Uu$v>AF9^wVpD)iLfYDwEyVz%Jt_{Zb
z`TmaM62r*-0)&7JV-+0(ELa4NLvBQp*V_cD6<_jBeau(A{9^r!{#NlC-jdl9kR(%h
zA%6J)B!W!CDv|;}AZd<^U<r4;hRsMMoZvX4sOGacv27fZ<@4_Si@f8jZuh0<efC*O
z*Ixv}x`9B>`k)$hie6W>83~J{cowprv$^aGYzg23S?mT8#Ix9c&XCY^3BXG|;o}_;
z64CK={Y-XwhXW~3-sirCprEobVFDsJ{bxO=&WgW8>X+vEevQlbU;X~D^MN^Nh5{`>
zO06SMXsb~Hpq_osMf;&g`b7(sbCPTf4*6TLz;F@Q(g%kOk#v}o<b_Wj650Fy*Vl)8
z0O!^YQ%Cdy1Sr!Q`B-X*VSh`n>gB-9MmmW6SjD>g0+_Ab&k=g!0T!_-QGLMr`SN@M
zzz9%nsA8Ox<AWqDA5M#6U!u_dhbSGTlpsP11OVgrI1J-)h<M=3KEpQ0|MIt^S)aGy
zE8lxeitv^K4D7XIs3(X~)i0uX|9BL{8{k$j*g5*cS&2fs#w(2(V=qQ}B^f#crOm(I
z<>oDNkO^wmk91g}%r&cqn3I~_;+-<Wh5l!stu^4(y&`ucg6PK+WJw6(&z=+N^yjn7
zB?5ShvkzG{0!<4yh~skshJWI}dlw7L<fB7PNGu~KK@1y+IsyZPIl~j+B=57n?{flW
zp8Cob2R+Fo04^G!(E);F09079QNq(!w(LU;$~bWy*SfXc^x3AX=;WPmWO?&GQ(L!f
zJjg|++Q7(!0^wzFJ{{N~-2R27{S@*8S++Dl9(W&dCzgc6)vSO^1mLYMUgj;>zd<;G
zIZwnQNCJ**4Fmx&<Z4I)P6S|W6W4^E7;pMU|7t%g0r;RIe>W7UeZnu9Ut$$V7u;`~
z<0@@L2?QmepcnyZEQ1M$%yL{ZyYQP`5cBF*S~DV0B+|2Ry&#GwoG-vPKo7uko$A^}
zzC(?V5V^?rjx+JcGnW@V1s4g7e<pbt;zigqsc#eXkuX4U=zT85r4pz(TG&-?H>=cT
zAjn8y<uD7&rn0uXU)z!~_tS9{>~`A2;4wBHLR9Q;l0ZkbYMU|e5KgKG3nH_i`bP<2
z=pgLGXm`!P^EEzV_O&kWy*Fa5<?{*ZYpS2ca4>y{2~7qi^->+vib5=$Cn`9u61!yY
z@69%3InUv1(_a*ey-EOFYF4no@T5p|UzbnL5s(Tef4k)~=m1a|;65cT+2<O$&CvkM
zz%sPLacAQ_O1U3f;&ETgvis3bD2YxgKMS)dg5zzw+#^ywF(Oy7Pa{G4xD8K${qeVw
z!M;npAtEDgM1lZwcYFtjzn<mIH%UKvkdu>#Xm#+C`K9qqYPNhBnDKRy&oPO>6@s9j
zf$$)Xr;slZ7%LD_K^V_(@)ZIw5ac2URZ5i+(O@x5J}rG*X^A1yKb4r6M}8#G*_Ese
z%yXX4RDpcp%KdyCA*0krUR)!u`<Az=V87<&f^Y+wSkK|2J|P4ombG(5wA^o;2=_`m
z0M}2uigTlikbo|v*w@+Q4NQoq+bnWkBZAH62boiY{wJ2k)_H;kH={6{#1X?47X+as
zkSIpPM*v2tz;C6AT>VUyQ2P@E?#{D|C!`%ErwCV-gm`D8j`T2pA_b6;aar`vm5+}Z
znHA=AEb1mxL(^{$;R{-UV^*A&^N)7Rdv~;Cl+U5uc+^+998(W@e>1yj<mj>KP$fOm
zyL)21Y7m4ZfKut;82?c+0MqFC#hr@OE<U;U;Hzxv=2^TYOLy)R>G-%vH~3!kNz9mv
zQh1!g1mXMbq_~3sU@1J=rp78>phiDkqCj2QXw{bJ3DEN74dUWeetudj|EWdXURh!=
z2ypp)L_FJ3%wq!}?njR2EM-c_&BEE{u@ubrgU8gzA)U>Y`S(=YAhD%oziX*JJge}u
zt77`7TvBV74>Te;zAj0yhHD+aL9d5x1ci=LfMX(f6#o~<9|=N^zfc8A0cST!G+*x$
z$ba|UJUx8Ka8p}B1Rxw_12aT7<`Zk?K6L`d-|RDalaKpB1k4>oS||xZT_6=gC8#Pw
zJ;0(!0LA$ijK^M)0IP;{Y-(f?O2HxqB*037iiSoO4F^Fy;!<VH3>*s;k#|q+KDZnM
z+;T1C;}0Zd<Q=7ancqgqmbN*YZf9k^%Bp6Y&rRLO9VDT{Oc_a*$A9&U$isnV72*Dq
zBS7wx{ZY)z1#u1uVM|5<=Q)o$Dl)2pt2XqPYjeQ#?YHxE|2|*Iq1ya%3Eftdf1yYd
ztOD?z9>)9_6JM<}=r@Y_4p3@XAqeszX)Q#+q$#FOjE%=?A3MmUfL8yX*%TqiYmLiS
zE;afJ0az~H<Qaj7oDL!oeu5$zJi^6-1%e9hckX&jon|^SwSO!TV+vN(%foYGYBo}r
z^ejGMO|Bz(y3K@7fh;Mz^S$5O!~`IMjm)~#xG(dgWC&mWwf~6yK)GDajt78|yPvB7
zrGSf4z&$T>QHl^kWDi(>g-gIv<p199<>|*CmuU-*ZV>e)^?zEpz8BGGGrrtSgURIZ
z6L5SBDDT<l9HnkTGN@wxyfASqRyqo@M}E?66Nzl;jUCnucxLhNl_k20)WE7I63)H0
z7Fc2J0}$0fj1f{($NDuf;|B7jZVsP-p`lSs5hI2|iR9~d{TAwgYF627%Wozvo7u@(
zH9h($RUiL2Ro^4W@9^*mysxz7?{h%6^YcYyO8{;SY+WRQ==yE;g<D)R9<y?d2BLcZ
zYg-Nvvvd&1N0h_)XK*{y*kdi7701dKMzH!RJ>RjqZ3w9Ii5b4{4t(h*5+Jx=2@pmh
z$XDFs8C)2FF|+t-6=2rS=gV^mz|#}#dAD#-gnE$(SOfqO3!Z%pDTITiTQT&wlBrje
zL$&-HGjwQ;H2|5c!J1oSq32k>MIDwo6?kUl(99P7`K+xUPd<J%Rkzapl4Q^?Y>Vyq
z&s$bu1314~q-)tTA`wW|5R3??2$$<Q?rfV2X&|vk^mG?uXNPHs+7n|OooNAI!9wP%
zeJ#_gAM-7t$JFM3C_+K_WXAifj|Ae|5%I$Y`GfNw+=l>y2(%64ephV(2Qx3c00zTE
zyyFPk0F{+`p2Pmph-W%9!vsOKFtN3DHl@-J6VTBzpoE!B;~XAUsc;xc5arQEDL^Zz
z+~HUZZ!^t0bBY_4K`5j^1M$%N7DI5DK(Je6YSFT6{fm=)XL_^#ZA8nv?^5RdZQu9z
zw+Wv9I5t+5=%j}>+r3e|E73xv@tZ~jVL%C^<b)`~wc+<DHvv0)N|i5b1B9!0_imnk
z^do2!#I4r|+bJTy<fG$=_(B9z6@_mQ@KTcDscFqrH^ex{*bniK3doo`uKpjnAFu~{
zq-H3V)%bR-Vh@og#<1Gbgn6ycESGG6@4uRcpX2AO!JmU40LR<429YU_uTbs7q>30P
zK|2XOg4S@pgO(a38h~DlJhF<1Q4EmZQOli797`NAO$_{YIa#(S=(d=Xy3w7Y!-~iC
zKl#7b%};-H+Wyra{8j({(fj?|#>V{`_{DPPPL>Yed7|Vl4nMn9c`gxw%uog#Bl7J`
za621!qv=5aAlx?yyEraUcp$7Gw&QWn{kny_Xy0LWrOih84i574M}NeuAGGBuSu!2^
ze#(b8CvY;7k&j<kcv2+qQW9bhVi-RulXHv`IUw8fqxio-KGPY3Jk@Ki;>gdIk6ZSM
z596QHZkpx>ZS$(%wD^3vL;x3uXK*^m1zq|SX308b3c834S#suiGRH}_4M`xt2>wJl
zI*KTb#G)jyya59%DkO4iC<7wYgBD5KFZ&7U8q=X^SNWt}lgGE_BVlz-!u380#Q$pc
zo85=+{mZ`nH}{6c`HTH6CRwCce`iQ<-*qPOukjq#j%FgOFyK^KwpJLi1wbJN+>Cmj
zHfbcnAoL*sC4|hqQ;2F(^Vzy#9Y*B^gsyJ6CrcW2ZvXI4vUKz@y!!!@$S5&5`)v^a
z^CB%Uo0j3af%pb4_Jf>S_SjBE%hy>!w8f{h<{FTtI+<0-A%>jdSyVU~?Se4=z?-vn
zM5+jOq>#KXtCCThk%MlL`9y`ta|9CVLau`Vo>{IC0EXZA&o}U?K{Si?c$9t?*0svj
zRDkkOD_5B?CUZFes5b!N09k<zn6)1Wuy8<Yk%>AaRpE!v3pz{X3kpkjfTU#3h?Sbx
zd<iV^g|LpPHj8F8&6_eiYbTT4){;>lPU~*<@U{N<V7GsZHvr}<%PC{^H$HewnkU&O
zP9o;jP$@JZg5`7I02riz(El9rG2^2y9x0*N6QhEvBl1cjMpzAd#rg357v%%k%Rl@>
z{Q2vkk=jtmwA8+Y5+z(RIRf!~KF(kc0WuH^(knP0Lyt=2Sp6WEUaIe@A^}7}dIte8
z!H5q}(AZttZlyAa1OlLPDCYq^jnqg9aWBGqQZAzk8Rh7h&!FO`+7$0Vi#ffR5iNW5
z)N=V3C$@O}F=(bh9s0U!s8eG)hqG&#5E)gkjQ9ydrG!;1H5Y}U0U_H2-KZ8&96<vF
zizvp<^^|s_2$WU4DJM(Fm}gostENO64bLf+hMFzbs}=mc?uwF+a*%?zNcDDpR<DYi
z4Kr`r`KuI>xfAc>^2^KZbi04l{GhM-oD-dn5ek!oBvJr2N_kpJJ7UN>2mxA(<Uo#v
zaFAGl7ng}r`lD1pb<u;qd8zjum*2YirFwex_p<a6KD|&r<D1va7lR>HjZ>J^dO!I0
zez*-|&(FIy>T_1U%M7z(<e}%|OYI_?Zw+OrgM<{Ye4ciJ6Je=N3c_J!g`mcss+sB!
z)Gz>s)LiMAg~_xw%F=N?(^jaqGUj+wg;~Gw@^Xa$8c;IL`50E$kTPvOUq97mdDEzF
z$rNm8RSxG(xP{i=L$XJaC1V2!0PF!j05RGLgn|hPM*(O%8=r=w!nedkVdtEcn*MZl
zfx=kO0jg(FP%-BdaYIcdp=>cv^QE6`px$WKQcGzoZT0uYNtDk;L_g(2AuAF?9Wo6|
zSP2DcX|oi`{|y8-DuAcx0RSusg}=%RuJJ--2c`<93%#nz5S(FEfAJ!Zh~g3fJb^Kt
zwaiMt72o>v)EEYDzyXer94U?~{<ZL<vWYeT*Jud(eIeC>Hh|C2^^=iIan$0sf9f~@
zMXNQkfg>LUV;URxScw!&VhUl1bBvE}5)*AmXq`h-Pc4@S-~kgd>z83$YH@H2!)XQS
zDT&&4&W)q`hQSENQ3Mnqfs3^1VRbMDS7Gcc^{tK12Y*!wkUE!OKyx3i4b(wVET;)l
zDU0XAY19c+tsr3vhyud!eNu3lmsB2yUl65Ex?VB2eZSfte);oX4ln-3i(pL6Lo1$M
z4)3Jlf4DWwOzKAHc~X6bq=_wUV_)=+$PO6BzDGuS67M`XR*$-1N>XNedw5}nWZ@mp
zE?k$T_wG<j{L?DU;rw%uuUMZKAbdhi6cO1_?Ley@1SdW-*W>0Digaii$p`{P{3sEu
zc5aPC13w}@=_1Bh0HBs)q2|c;l)Dx6e4RK^l8*WXY^_zq3=rxR6);su0Sp?-q*JDw
zZzkQm1hY#7V8^H<0L=K%1{Oa>{1C+%U)~s~h>=nH3@_etbpa$40YnIr@fT17n$7&g
z)(8`Ur$`i0bdlpk390zmGxOGRD^>_a?+2BFd`t>h$FeIuTT0IB>rx<*hA=;a0R*~C
zS-oL<NzQL}FdTeDdhWY;C%+#a+UNLq`&L#Q*ZB%D!hC&>>%gJ<z^O!ls?>U6Z$!4|
z><d5&!te~Jj%yt>^0=KcEW{VAvq#6X{QBGPWa;i9_dK<{i);5oNVWS_m6rR6`E!iA
zFz7}Ro@2<V*Go!XgpsGN*RTs04<e8#R1FXS^IO=8aJMLAxIPAdV&I3%g0$7?tQvf9
ze&#SA2)B?$CIL9Loo_CZ!@~V|VSa;Ii_sLH%gYr4zycqRKVvckpW$MHtrb2MCFpEs
z$A<0^$-+k9gf{@dl&-GMy5%771e7JKb|BT$tacq0wxgUX*J-In-5tU|NCos3TmbP<
zcgH|T0D#1(9)F25h9EFS`9GBFUu8$Qcpv@nPt%_r{#pIIhqnPlXz%QPx?AjE^iPY5
zk#NeyLp&IvyxI#yKFF2?*oQc!h(I|fJ*d&b6~fg$BA>W4#6vLXDD{NETX!c=)m=cL
z0u}<?et1}<AO3KXj<!MA);vv*A>MME5QlCYi0==0C*K<Anec}(m*d}4x`uOD`*JzR
z5BJVKi|`0Jh;+q0F*UQ=wfMu*2N0^ZnCYQthr{9gQS^_<&!S=(b&DwT0(0R8TJxYu
zYfAH3$o84#5&=+|V|eQ$F3+|Z#i5QF1rP}5Vw~k?Skt&Hj{JdNx(*Qp5Ch?Y6(G7O
zV)>8mzc2zV&=3JdRYa%;5Mj-}sKCkAIs44-w=Q1P#P<sr5D#1niU>nE1_~-cVYz~d
zCOIGN$;#6v-}(7T@&Enz|3|Ypf4BeX*&k=OX1`f}l0G4K$HEbOj~XwSz%}%VB^R_B
z;Y(h}gLw&JpN&>OFEb86A2et|J9a7|PKX-t7i~|uhPJDU3G`U}tV;j-UsJ!7?A>kZ
zQT_bqaQ(rQaZtjy<UPyHQEtA#pKq@r=AG$@TgU3hrL^d^^h3le`sMmq@ecG5VsJ+z
z4^SH&4Ubo#+CbB4Kq&eUsmY-;-Y54X`b9hiEjsq8VZd+BAszUr9))jfqQ;$-j?<gW
zQ@{H;6<i_!4=)WnobVVbGZCGlI7_x9nzMkRCWwEFJj31)fH37PuHZ(Hnp3a&%=9Y_
zL(8)vBu44L;gAwout<<F%$>JN2gm9ira?j=G#$Ik&X3}n5CX9bj`>*JDvD}iUpPmH
z`Y?tSR@eId^+Clf?t>dl68~jMl#y^MADFKwObj7Vs;xpp(a%U!q3M!>R$ZjA(LCX*
ziqPD*8v;GN7_#rtyG6#QT865l^gxl-R<7d{60aK@=2nDZP7Nq#i$l+fZ;d<+I62>7
z&H;}+;Ca`0?kE99cTVmH`5K6N2dpBV3MRf=7}+SEW8+*AOCTRP$g$Dd&p>{Ba6+*^
zkgJC1cP;oGL_r-R=COdcnvyeZnxZm}seu1<sFXKcA%Gob$W!O6BO9ox`w6ypvm(3R
zf=M(C)M8F!1}G=-tDJR9oFK~$5=FseF0dlk_(26a#Cf?nh7{-(eGcFgrwJ(v;9)?3
zjvXP=Aqt6%m6yQtK@bFG_zeO&>IxSaOSn4|>g^IuTkuJ+bwz1Ozge@@8k<_rC@nW<
z9<No#RXqTfFNM%}YzhIZ2HPZs1d#a&jK^cJNT@FeGe+1*Y@yOP70U^Z&xbWd*C%A@
zXo>l4=ZfGLpvCURkJqvn`MPUV+Tx2Nyz5$s{(+B^<>AjO{x$Bn79FpC$G2e%;v=v_
zD>g_Ek)%Gt%_FkGR*?_qM**vINJKr)HwWN&S85gVPWD;HLX{8*l~xI`5YcMVY}uvj
z!~q`Bf~S^C1n|xw!?Uc@pYsSJ)Kp+vQx=hGXEHpGCRZKEnV;OC*fEJgy8fq@yk*lA
zYbZhx%4&^1M+f6OH;R4?Ld2RuMuY{}<&qwk5f0a7hX^D9USd2!{g3|Z$T#qFDIGO{
zIzHuso#3b8qEs6qF3PdBOUR?1F$J6f3{ul94$^9DZPDx*O$I?>$n!4C0*PRHqfjx1
z?v4UX?nlu;i3+rMHzENyS5?(Q)Ggsflw!B$t8zq1ru4<6jfSs-^L>Hv-$ky*AG#h2
zLENW(It3vh`qlg44TOC|n~de_(}$k7Ei}ZUs&af7dRq8~-q&!o0UoS<eS2U{|DoB@
z(31$rA%ZDDIMqxjXNM(^TCff)DxjpKUdvqXM-^c<ynuJ;@F8b6%OwKv*!Qpj7@am$
z)jS|AV4sh(YI2l?U!X^z@M#zTxQ3UA4_F$FvZ;0qA0L9SB)fI`pzw~EK^Qnn1h^4I
zu*%^;7({DnMW77{VP$NQAKZ`B00Df}4a89GQ*#7v)*nWPvgLi2UTx8F?Kwng<qkQc
z!F5DvuptNwH2GwEXIXhT%+xeI3M3KFme?S^4bmk52muOEEpT~=V5HE1Afe3^oa8(s
zn?L~qq4D7q&=%tP*oF?$4Cr*eG6v@0aP@mg0>3kW7ZApt$CX^Tbz$78<AHrd^LTXx
zbT)|RJsC*TdZ*GE_v0pmc#S&ZB{CYY)@VM1*g(1lH0r?b5LDJR(lCtA=P?{oEXgdc
z`T8NmbkLCtqR6|nTp@r{284=-wCFLfrzoR>4Hn>Yde-P|+pL<b8G6=_2Pqj<usi&F
zs(Z(mKB&^kXVKxHDC-WQcL8{~K1BW?gb;n>hnAeRA<`KbLUO>IM4qFvH-JaalS>G(
zbW@%M@o*nRhWN1de$?$jO`dQ&E@NlSUTX7qHj$dtRD1)_9D^XeFS3+;j_OD=nAe2u
zp*oNd0EjttN(PSmodNBakX&@#k3}+)36i-O&4^(DBNP*(e1>KtN|*0&*vK7y<$DME
z`^NPz{Qd|88N)}e;vMlm?Hu0g3i6+DJnsn)2}Ea|$kxaM$#8oh9`2S1viP{hND%t^
zxYa={orM5dsmzyVY-^BDXgw9z+I0Q6OCP`X>j~gCE%*~?k4j42tB&Xa5~?kNt!WE*
z>!P8|HMxGU#W}(X!ziB-b)Ac-X<mRV5<w(@0&BM$_<DBlw{}z&d~%J1cBBI5b$Q4V
z64`!VFZ?d`uE5uQG=^aC)wqKa06_EcMk10Bm|_sF@A!1<aEwUD6z|Uv<_I_kz%}B6
za3UW80IF+|*{A^onbL=MgK#|n&<+y7Jk9gIu)L8zIv#i>&^|Sy?GIRjP^nGG#Xb3j
zK8s8z13Vd?XTLx8PyG&2M0+9JF^vl~h`5hH4$s#P330Ek56<TUP>wVy;<fJOV7Qu^
z!$=o&dZ%93&>Ka5Zm3tufREpc_?mmr^O$T99g>63acnULK;{+SJ!41|<e#5(Y3~N_
zyC=n6S}sX|fWsk1E@SdHaS301FZJ(HX@@&dCaJkTcbs@i-9vNN<|WYP+lo{?r(h$q
z@Tk(HxE}a43sFPr<J0)4&IK)j_>R!BU&K+wMV%hMf5V3zbqTbn9CE?GQw`_^YzSdQ
zo`s+---cR=sFxKwBWS|dszcCx5JG?;1&B{;U+8j<QVH9TXNgS3u88y52oqF+$WQ`=
zm*G1>Jq8)~VtYU|5^D^t^2xCXdqhl#S3{hR%@6TOc)l*?pw0MENgf8mBd9Y&rC6{U
z7;97bE<?ESLj8G-A9TE;p0N-^x$1bWdy#!%)$7`gR{rSPS!3OA6;u#G57H;pU@P(S
z7ZqNc&tqJGl8ULBcj=P_smun9UdKziH>5v!BJybBxLhKDi-T|9P5qrWQ})iAslR(K
z^{;$Cwco*6(W+WwlC<r-*v3Du3Dour%G>AI;zQ2BM{lvl1<HHLm*Q$dc@)%Y!72l4
zunU0Fs<kE`BdwiVSf8j2Ti_yK)yE<T<Zzq&5fcda2w(;``|$@pD;Lruj5W9vBavvL
z)x8YiK>$3=QSGolc<vN+wGqGne|6`!+s1W;;mzS$5-lr=<0N&_APsVnA{Rw3dKtfj
z-$!|j_7(gP)m_mGUl}rrpfG||aB3)(Y*Qp9&Vl{DwMT*+I0j<67EEJ2!x3jV-0SqO
z!`=&GWDH`y0-DPJ5f~B$Z~`yK+J+`nw&n*$WnBpvgM6kzX0I6_yYvri43C5O**XM%
zjPI-6wDXt?{-(B3>N!M?xH-p+fsr|~ciQ@pW(Y5^BNEE>NIFu#lJHJNS{-u^gpZ47
zbg#g@V`*C0cu8WuB!60_Ex_XkBNnM;ZLH_o`XdOA@=6E%xI+avrF;BPp8V&pSDgC!
zM;s(Z2Ifh7sk4s_efW>m{TSu9ZOJ0B8PXfQft=8z=Wb^nk_T3z3Z3ZJs@{Pjv|i)5
zZnoLedrx~F;0X!CP80Ly^WhdD>BJAHc@IW#p$-&AY(V@dcBs%K4A`n-ab}lmukFrp
zim4*ORAH-09MDgK5r+u&6`}<V_ymr!C5>IUIIji>Mw6I)45r~moI^yz*Jd>^TfsDb
z2gE@-oo~j{)m+Op+Va{`H^Hw!Z^FJ+|1v8UGe_`bXa*FRiu=O-1$YqOxl*co@2kp}
zsI{owaJan&@abz-DTM)g)d}(dGuT~p!6MFn9x)tqj|NGvaop=;WB`Ki-hsLH8<D=?
z2I{ku!+-h3-+%q<k{R|>L9c`2F--8u$k_ksAoZskgv<bj<%G1t4OZ*gMkmvBF>N<>
zsar%3AS9>B$q`&UTt<K-jt7LGM<9N&9spjb<`%j@Ov4Qk6hd3T2x1DFE-|pUo)CXk
zvvPOM(j67iVrro!t|%Q3fN?-2E0ti0Xuu@KaBb)Sdwhf={&7y?2a(hyNIY>3h(tCN
zLeXv(Ni+VQ-Bl&rAdW<r2{Q35+m^Y)wCL8MO(M4p;VsZ8*h1ywQWhq0_zi+R)3`;M
z-8cr3^Es?rAoUGhNNg?JJ)g34sNTRloj(UG(t_#J9qxM&9ENbpnXe`Gt0?_O3~=>E
zt3ALIjPUnchy7cFjsAR2<?onvnryDzt+rSu7)Gc>$P*|z!S1t+d$~z<$R?tS3su1^
zdJ_2g`1&m)zzii?A&MVl3bcZYdf9~*@Fa$SKuQn<r>>wTpI}2snhZcW2nU~qs@I<D
z0mujuon(x_tyrTB`eMxZTLdBC0S1#UN8laqEnp3IjEXo+8DEZFXo;(Y8@e`{m)*Mn
zwpe3redM0a)7MOi<sL3?ui7?{<8vFLy|nqRJg)l3rDe%^K4%CQGXU~;Q6CdK=?pgy
z+i&W;KS$gk{`MgZ3482mR^I&eN(}I8Zr9mk$oD7;cygy2onRk&C#;`N5EgF@q@*>+
z0CpKXf=V^Zs$=WW1{<75@@)lY;K&|<f;G+u@Iot4NsR3UYItl|f{0w02R#O=O4Sxj
z+C*}}3d}eVXu@5*7gKO65qI_|AOdPRHvN0)D87*ReoieAF9;CEn)f&q0Y<q_4<aO(
zKSugn6z{#&0^!X-)Qm48ge!yUcLVMsRU5!AyL1`htGU=z<!o_IEzq9R$EO22_hf@1
z^m>$hR>~$B3*dwJv%`vz?%Kqc&J4i%FNjJ#Tq+)cu&dG2J{l7oI6@!bH-ga7d^U78
zJUph2pmv!ULdm|QeB9uOkv0QIG6Zf{sxT4D8xVGabYo-7EhJv7U|9CTV}ObQ%CHSe
zs|!JD9`M%%T>&Ipw=QdgoO|Fr1PJ0oXhs0D8A22QkP{J!3r*lXd9V6L^#^nCcdm7k
zrs!U8z&+t^F5|wUSco49n;@=niYZ*0ft?_Z_Hm)c_3I1DZ-`=ZoeW^=7I24@TgXx1
z-jQZP>M<4A{3W38l<oImh=YTggiid3b*Z<u2Dp3x+{Oh_#O>kjYVz!9`f*B;4;cvR
zy`0H_yVBr0_Gc{RJ0z(CGZ+V;8)($H8$2<F4zLR1R}*}EZ6s1nT~MrxqhPf){1*Vu
zoPpkgffaKUu{abo5(6pWO1p?(;&6<1LGs}btpr4uaozjD%mmnN0b!_m86lV<v`P?{
zzy^EoANOOQ?Y)<aAKZfY*lEEWt{nFQ%#o~#JU!=R0;OADpEZY(8O#A@fm#V9pCC@D
zpJfYK@WT0$NDLd3`#uDN^yXE1vQ0*hhq!+^@@pNe%>W_&?IS!sNewf7NPbSM#o4HN
zR`qDZJt{F@XTw#$SD%rY8_k^kj&-Q$(MwhA5)Dvb{~M!;NIE8>Ta+yDTw*q$RE(<x
zV{9G#aPz{yj=|>~e?!$Pe3_W;B~Ysc+I_3?vw47~+{^oUUyo$~u9G{sG8jT>zR16;
z5%P!loS(h2wdVsM3i6cbwmG!R3b86eXLSN7Ip#70J0g9fdxm(8UEt3Xz+sjE(!V5e
zL+Z9i2^aEX(#>U$H*b*3$F)1(Zqmu;P5Sf!m&a4{+vDNm{hR!^76V)*zF&S1&b&|X
z=wAAwIXp_83GsvR2~ow5cRJ6$|FK)$IO|PlAWQV1-&Cgq@-{;-+q_ejV*nvNc944d
zgdz0;F5GyCPHrAE5DegNg(h$Vj(NCZB6(v4;sSknlxwJX)qLPO#>c<O1Zqs(B7lA?
z`FzInoDTIL41m4otzQJeqbvxUp5Ob2t6NKWI27!`#cdcD)oz+Lttd}!Kt(mgXHvGu
zYJq|!&5i2^20;B&aZX|h6;CgOCH9?ml4+A*&c;V|+Wldbo)Ay^2pDqkN53ycK0glf
zf1F&42^^HS`f_lE7W|hVIPSgztP)tdyI-WQ?{uF&oA=J^e-CPK!f?d$oAZ*IX)Hyb
zIytle^d*E`@1WPor&qh!dh|*~fxVeETevp_d2}0f7qeT(F^nKMY?%V2k07f=WDbIm
zR~aFzex%RfCnKnI`?#^^z_`E_V(WQ`>_g4Vl@LkyP7XCy#w;k_qr%xDeowoZw8DRH
zPAGn8iC>=(HYQ(>1}I3{G!VaEE`soVRQ>73GTkI=_mH&h-Tfx*#Xw#e!+65Ai2W);
zzjX$9)t6j7$1m!nyMODZ&r<KWTu^X8sS03WQglbnpcyZl)2&fcP)@bn#<K4))=a5s
zZW>E~Fys}Cz5yb`?aEBRK$B0v?-wANVnv5Sc{&z?5h!iu8iS4|oA|wgHBE$IE{HGT
z*+T7yg!5So6d<(HEx`qXmzyBZ5UzWqz9oKiWTJXX^<EgsGnmsngL#qsBr`mxz-CH%
z7MBj<7Yno<sD8Fsrv7-zcvNX`Kij6O1NMJDe&-C}@5xNC*Zuyp-}SbRKj@!#>%nl?
zrHZFBq|pwMyE$>j)r4|#%BPGTD)~YD2?K0uw(SduCeX_;ifG*-aRapib~gL{)Dj?x
z#1LQ#-MSnBlmRduGDADwVe<ue0u8|=L`UU7c-=WRh#Z8*PREQJ)V5%+P2liMO1@wY
zP)Bg85CB@NK>(+q(NqQDyDjl8*KTIy=mC2@)PBS2N#FBb`|qCk(&Abez%LFa_|so{
z>FY1MKNT;SFJ2GMH&+9E$Wa%!@r-HZqoTV}Hj4>efrtqhKqCI$;3=4X4lO_!*+^n|
z5@>}u7uiF+419E=e=-Q?We7Ed8Ai1NJY_B(CO`{7_W&1Ye(;5^AND*GA0j&|N{@ss
z0y(iao&nf1prZ?iAD<_;5R?iGU|<KJhpJ~LAj-oy00o+SUdca0<zEngFs;*HAAo7X
z2Jv<8_O%uWT<1~!!K=@Aa1f3<A0lnX8_Ul542|0xuO{OGqFa^#;bphz1B;e3jQEsf
z%ot<5L0KNbBc_*;Phh|~b`er*5v<AcJ@J3eS+b)<tI{1`Bs&uv)4+KiAyhv<1Dg-=
zIj5>O!lu+qbck#PP6TNnDs=}QOH9+Ux^e_+@Go<~h92-_M{ogA@g{jJ(qQf*(XmAu
zoB{N3@0tOfFqdW8<+~0+_Oq{ekOy+%wY;v40YU>f`*;7F=3nE7EGjUphSYrZ$0Zi>
zyzUMA<!oLqH#dg#-0ji}rWvyKGwJ4fTqE^(3`)Owg-xgjW}sf6<~?o%@68Gl*Tt5r
z(FxBINFsQH<VRXoFG1HbFaZM(gKz=+topU@POywjT}bqlPtpUpp+hLuNa4nHNI)@L
ziV`&#!_sV-0^$?AF#<?0c-js@aPsn7q-{(39xlNVBkBrAB$fX8yh(q)!*@E_bv-1%
z4(D7O11OOxeVY=^6u;OR;@|F2W<6`3)^uPyb&a%Pfekpr3#7`Ml7sGPf6#OWWx;AA
zEH6;kL=I7{gl8vIaGWE+Wa}dK4k{;V7l9zF0|bPD0Wbkp<EREg+TCde(A2ySlrPd3
z2dD+Y?xO{iehCZ%P@n-^(8r&`QMve%PNLi(t9z!larqf(TFS6!(lZ!T=~Sk&@Pm7I
zsT!lUDxDA>_$>h)XX*T59rCSz?X@sKb`{%)R|_0`)uf|Gopkg~bNkEh$ZPL(9`WbF
z$xf$tdrTYI?}|@4z3vNUeDwPBA&sTadPT{sC5lX3b$~E!81zWJ3ha#4>kW{waf=+i
zt33v)hsYp)|HWQL)B}huGeD$mTP;B55vkV{;JP(bM;q2POQ)}2=<nM++6W)X8W>>M
zC!lj)rXwcU?b1kmm&vUEfw>c&?9OARxH~`p7D+sbPmO;2;^3{jco+A6-JZd^-q%aa
z@Y19BXqV%|@wet1dUU=T&K4CWpxmTJYr>K^mYi)<33wCWNBn>^NvFPvz~Md;N8lK-
z%bo-YCRDWG5HP4VxX=Jdr>>s<d{jBB_Kn&>Xu`NWBR+gOAq|~Fx+%MO+zVH)`+};R
zDU;`CX*`>!DX!i9`vOVri(K{EG4?Zj_S#<8q5-b{+7^aiJ$2>yrLi;qy<FYhYc_xL
zUoIn0bYAt#KJ)A;ohH4E&2=G*hFrc08LN)6)NAk==ZN)YnuPSX-{bhl#(&U@8*qXx
zn**qrV*pOC3KtL$!JK|Uinn1AUi11(0y@QbksiNTboTcp{^jes34Hk=zi`0Vyl1cd
zJ!ZL1iI@MxWCxZ4U<MoJ8iG4V-nx2it|30ueI}yBY^i*)dx_vGp)d$7BQPK^g8yU&
zTnJ8hFSdvi=vnYRfV*%PVTgKI(h_B<FVDI6>h<0+KuFZ!A@kfUhhj<?HHT=~mO$(g
zdq5wAQ;K!+TVis87i3i{=Qo*B?b~1hLxcW3&gIYgK0E~Pr(+=#$Pgua03Dz;4HwK9
idic(xc=`F)`~QDThCt;)SC#ev0000<MNUMnLSTY?mX-|w

literal 0
HcmV?d00001

diff --git a/web/public/providers/black-forest-labs.png b/web/public/providers/black-forest-labs.png
new file mode 100644
index 0000000000000000000000000000000000000000..c42a3134e648b0960fd7ab37f69b7900bd96f957
GIT binary patch
literal 4654
zcmc(D=Q|u;wDn+Ql;{y*qPIkg=+UB=gdvC!JxUBCMjgF`(M2bW-U&j8-bL@dGkS{>
zy$o~xzP#^WaG(3^XYIB2KI?otXMfnCnh<3YB03@f06?OuqM&upe*b|0_dcr`o~Pau
zj+2(M9H4CI>CSzjV5z5SrLGR(y4M5%oM0#b_@Ct-boT%N@G@}#c=wF+UoR8)|DF0}
z;{AX9pHbx-5CH&Cd{<SF)p5hwHzYLFnWW3u;1hKEJo64j%`N;+Eko&6bAV{{I6?8*
zm;IfS*^{EsLhEaI?>;monI|PTFT2QWRf})qgneB%H1n$;E^dD9FOq@w8>Q>TuDUHl
zv!@4X?k)Yp*J(FtCuxW2SS-)-tK~XYdu!`xRo_+SO!DC>i`g(g1;3tK8J7F704j*Q
zhy;WJVkpRG8-;M$a21qfEKbG<q6x@pabgDFvi`4_{DNiB>pR*8ElcO*)FD5)5X*Zz
z!otE70VZOov;_B4y$kfgs`<_cxc1*8A^R1~z<~MtpgC1-Y5pe<Nrjj3<4u9JYs(kG
z%>^!WW6H`m9zD;l8ao;5%(>BNi;hHGEgomHZ4~(U_-u-@j3Nd+Lb6^pwi+$XW_%-g
zs0*S4QG9)#L|@+Tp8wjfluoni-XOE{tF786dZ|UZQl>p<p6&YpbA6iZI`UsUCovCa
zQ2g<02qTUd#Z7MT{<mqRJ%Vg(l$C#wWX#K{I+h4f>F9|T{$7&{qdWf?Z<NUWx_+FX
zu(UMopP6BA0wv!yph7N-AI0nNukx6f*ofAl0pY}nE3J-!UEDc;Ed6DRccY@^EbAkS
z!CYQnd+2Vj64o#?t!)i#WO%7XqtAQX`ST`rOP669v$g&O5pON)y6NC+U6ITkIRa5w
zwIAh+8OTWsfd`j0cdp%K#!{ZY<dW2D+X(oR2Z^ywVkcV>`I%%gR6u<#V{xaU0SUxm
zEziN<@H!lvhKpRzyb@Mxg=NriH%z25(u}I=jW_xzYvYG*yKWqHy;b{UL1yDu%!lBn
zM3iq#HdF$L<E>OWwj=qrzrWUpg1n<}!k}dVv)U@_8pe0FJ;s_jW%?aEiXnEdGd#sn
zFfV1cYF|IIjeUk3t0%0*Y82@#6*b<NVNzqqxG%P9XX3as%t|4K^4mHSO;n;{&Xu>E
z+Elk7X%i!Dl0(Le6`tgjszJ+fO<4PSC_14YCTPibWA!>iY^lr~lvfa>7^m)6zMtd&
z`PZ;Wv)6l<_cN8lfGHS`h^&Y0%5vABNgYhkDBdqDENlxz77r!AO*x)?F0{U7Qc~0T
zNY1=;ZZ{$QA+Z!n)2&e4)l-sti>w;<+mLxb4A^>2EBZOnP+sdoLn88fpH5%Rk~gSt
zrmbeTa*{~6P>&VpiuLR1+0IHxNO0vUJK7Ed{+(^;&WU`ng4`Vvf4`N!SQek)SRt4a
z@w4SDUoEd(o{_<f`khT7vOf|2TOq0TDGm+sae(JVG!)ABEtjU_(t|<F4G=uHk)7TB
zRh-+|ri_mVe7Aq5{EeY)CyX7zEBZ*Tf%vgcypweBrrT|KmH_Q;J_KWG`bQ>}b(WbQ
zJ{z0&rmoR{ErAl~aI4fga5+0&X4Fv>&Po&Rp1b(Rr8gH6c_smpoQ`*wbnS9}wZxq!
zAXUAzEoWRrtS-w5$pCI??S!Vw%t=#T8cfl$*}1l(YQ7-P_rgyzTiM@VdBCt%1!-X+
zQDt(ig9f4<*lXOeB#?<pucqo=EQ(ZH$tuWqUL=s_6Is?sQT^%mgND8Q>8WgXqfaD$
z0fCm>A29Gs{=88*=jwIw?sRaJ&*46zPG3wlV??^5Vw~qp>EPYdz+<PAlU165fJ-`v
zk*0h2*!-Wq3!j>(e-|u`zYP!Z#bE^pvWlIG>Lp>k5B9Fg-?5sG0}#Qc?<#IVR56B%
zC5E?z26}%2FAK7g!uVP!uiij>7%u*hC<SH9R(osjMkg6}o%PjUi?6E_)ETCulE6|n
ze-5XA;x$+AlD`v7R`Y3=mZ&~(`-QNd=UEvKJmRq9otm8P9!8<OnS-sWs*k&bF4M-P
zzxM^)g=%wlw_tq&7TO85`@j*KuJpJqkj1IK;S8`Kz{AFt1gza+lVd-w%h)Q+o2u|<
z6qHXj%|Ss&w1sG=0M`oDiU#_9P{}B;tfGW?{=I9HCT+|-18c$SnXr!i9Qf*AKM<`&
z6zIME9J+&l>$(}?E73HDw~wfXGQu(Igz4uRktmKFiv>$OHUa8at{AZp%hieD^nU2_
z#!IAb-noTqZs<-zm{RLvUtb6fh`H%ZspVuma2S5%FX?^A&@Mme_G<bYUR~nuKj)ug
zT7TT%nIk8Kg=6G%Ea=3V&jS_jM)}f+UKp)bOlIq6Q}FMZI9afjVY!qe7<#D`pL6l~
zRDn~k3jbyXE03W@uROhdx0%Rn!jpJ^FLL$kD6EHM1=Wi)Bqa7z2K${#c|OswEes52
zYMpx}wtc+OUn>HR>@u^Dh%ZVoG>Z01#TH*@F_L-yKChIrK~lkJOZ9$VYo~TTP6(Hg
z(RbI^y!hg{?p`38b3B#jeZ#APdi@p>{qnn$Z_rm%4u1!FV#V0==Lk8i{A>)!sI6m|
zn^lmiV8+ogixAM_^aqt=>T3a#U1J@1p#52G4Z2@s;`5Jqf@)hVPdw8p_;2ddRB<;6
zDh_ppGV!Ubj%c&no5lJ_mwNc5bgrQ_ZtN6?!J2N5SVNH8mk~d(sQqdRaL@HJ9Ix({
z1|2}O!B9Lbx<FG<^@G#JmTRLoS~|r2knCFZDz}Jn2KxInCliRdp0{5r#lRiTb?HyZ
zL$;ttf3N-tkXUV7hrB$DTI+f~J2$ko=}NGhD^u4Px!r+nE702eUS$L=NdyqC5EPaa
zd-1Ut4ki17Z+^-tpWLK@Na;_lH%K6);WQ{emj>HI&c41rxEt+5mk#Bqz^lmjZS3pf
z_2x-KN#T5J#g6rcwc{g-SYwa%ZL&wZu69jr<n*tc|2CMzL4fiv-9sr3HTg<ensW*M
z$!ScX32zhk&O91;&R;qhjh$DeJ<73SuLa`MEQAwtc6CjFBWnd9i4tjA7D&&F!*Np#
zWZPM`$@9^pM=aE`1bPuSTW*F}<TFV_-;SNHm=@aZIbgM7*?f-!U|vRyTV3VNdeL~O
zzFcaMag&EI1{p$(yy`iDr0C?cl|_A{3)|C2Y1c#~A0fgG^P}gZrt3e-W2MbJ5&Kg%
z6rbHSnV+(g(9$J4NXF^1*1v{5XVQHLa&pZdd@LwG0=n?UPQ)?0>O*|1>|@7CgoN}y
zt>tG7OARYB!e}GU4x6N`tk-SD8fLeK2h(3qTMIaiilWrg#rKP&KA=Z}#c6nrfhMl-
z(cm>``0NC0Z9`bT8D(W<na;DrDIN7>Iy~bdqr?-&G_jQE_jxcC<|lOf2mzhtqq~g{
z{V`!of#jIz!XD3Hk#j_;X|`rz&j$Agw6kn8_<UX(F6MtEVM)hzI_m?+-)!=Y=<v|Z
zg?&;B_srwn!%vey3@IN*ok-j=jAFM6u*Xcb>uZ*dGp8(~BwUuKg)!tG+KOn5n<wg&
zMc3V9#@?>YSD%e~=7)!edtP`Gd6V=i{}?Mq<a-AQt~_!lrUW3YIzY-yh;+Z_3qE?)
zj;}Ppq<8R{7n#ETjR!^AQVa_T-TEazet>VMz&$Qthz~k(A$H@f{&>ShzGwA6q=CtT
zuzprv0}#>VxIttvvlIH5&GfDvAKruSgkNJ;e&}mw;q3DJ%<<Ln&yq&T(^>v!U6aUt
z%A)s&5DjH65hAKss+F(!9@~WpFBF?_QM<1vc@xRDhGL*E9hg7TN_nvHO#3DxY>M*;
z#Nd~ibJKXVpOf}<=rguG4%*!f<<U$YaszDZ)YNFap_qKN@Xq^}H1VPUPrOQg$djMd
z<)Mcpx5PYzJ~hu@{sHS%HJ`}CnDXkp#<9oD0L&1Bw;cag+Q+V8^OI^F2?7}7is*MC
zY3pM&)3YkynbP?hyZ-t7!-b|BH3hL)$vy*RPpAlN&e|YdJ>zbps+r2`n;+@$)$6f?
z)1NKBkZIrH(m3V(-;myM!b^cEUP9}ay;Or7uyTG0&ifxk9zj_q4$Jq#`<Nl-9$Rob
zzGl^99RU@7>9Y!~RrJ?3iAz=SfQ}eb$&<QWb<Vr3I=Dz{9(dt4zgc`}C-Z>VQvAB;
z&ie{8RNQBl6T}+8%TN7maw1Ga_gDye*zB#>5|@?!7yQvHFHo8O>nHmNZ_unutGJq`
z;MTESox9CuucH7CeEU-6Xw7jVixrq9dFB%wh3PpF>HkowiGD1fz+$rwhugz<^DOgZ
zr5gHwhh*iPeri0sJ6hp_Bqh)!#XEcd;`G3{znq(rh6hLR{*4b5BrGg0^Ktp3d8)OU
zgXinq7ON=v;#S*A33YB46VAy*d8%;4?v+Zp+2m>RnTdmOkE=NAF^_SN`J4zhuXoKH
zS*7=Qkw;)qeEbm!>wIxatSbl3k(p2}t@W0Md{7GpH)`2^|Jvnpm!c9n(w^pW$31BK
z+JxBn_4N&#@XPJVmZjzZqnbK?^$bDcR}}i*{6Sux3wr6qcnfov>=0ITcaAbf0?2gp
zf+xLHqIy_5nB;N0{WtYwhJZ-zF*E{#6sS$KNE;jjRR`SiA{K)P9;O~<^!Byyux!9L
zerQ|@_ACK#g!NXY?A2ts#F?B)aayo<5~;hH0Z4fL4-Rb+pSBan@<mV!)tZkUnH|@c
zh1Mc@0)|z|9#UfSm?O=fTf&h)9)EHwm#S`(Z2Lu=`@nVIc@uV`(n;%xivv#)doJ=I
zwAp1~ER4dwdC18c?}IfX@xfPP$+p9Z8u1};L12z9e_OUW3ShsR))Kj*U*nJ|)c2w6
z8i<QmP5ldM%>yg2U-_wiJPkwb0dbp`>e8UdW<%0xQqQ2%peP?Z^|}0&SRm{)CXVdX
z<ad(D^H;OgjYiiaWWmso%A6qyGhq*w-08e*t7Y5I>a7Y`#|iEp`=gabrXX=&Rc#vA
zYRH#WGduzJD;g8J$NHLjfHuhk{kn>>FBYdE{&*~C9wdr5hWvXo)pY6m=s<5Zpijh@
zg-rojNb=Jh-O-ChzR%n?)_Mu$n@<(!4sPApxr2aJRCn{IS2UyVI$#@v>RU#QGly4q
zHO1U3Nt}P32d&~j9k3e#VHPhxBi%{{#xTE>xw#tb`N20M2`Keye`42#X3vIF9N`5d
z@d0s`!k=8aemwa|8v5v6-S`aw&8<zj$LjBH#>YD3Zs1NRzKXIgGqbu*<bsL0{~J?B
z;+@I8dAnsGx?_~A>P(ZO!o{RS<L$EIXoxkV?USLWnK$S=m9OhcKz*ZD3ZF2t0^(5x
zw(An{i%NjVk5EFrr4k|YJG8-^b^)Z*SBOkkOf3c!PS1(f>#9(EOVhi4q|b-AyBy~?
zS<1*;5LPVK0oQo_ww%`u2BVp9&@^3x$=;>exE@&@)mXAer7a22iU9+DGRQQ&?Y96R
z&yCxaM)GTifW>c3fd;lQZ144So``yKC;;fKLs)^WQMKMFwJ9=26^>|<J2IVTN)7f{
zgl#M(z4hBlPVyO1b<|6GY25dEFPxct_=o+I;Prh?lQ&sUCC?Motl~N??nm46fZ<mw
zjXy6;Jp6|TcSYDoC2?E-y-|S_m(<T6R4B(V28(p&l3UWzJqrtzcufW+=40K#!+p5v
zamhOX(qT^$ezHqRNtI6O-Zwsef`hdCg_>4xtq9m#Bf>uo2DuP|!P#spw~~^Q(RZHX
z%b<mkdBnj2cw61(g<;Xj`RVGHhweNgQGoQYT%K-nxCMplKx{5jL52lD7!H>U1+0`S
zeT*fLX=h2*WRVdoiAiL`jV>qPj3*!`wasM@1+ek76SCt5cF;jp|F5nb`AXE$A2M+m
RSpB!FQB{N}l*yTX{T~Aw<ADGG

literal 0
HcmV?d00001

diff --git a/web/public/providers/commandcode.png b/web/public/providers/commandcode.png
new file mode 100644
index 0000000000000000000000000000000000000000..ed7c8c99b9b72c21aced2b4a1435d32552b228dc
GIT binary patch
literal 6585
zcmb7}RZtsD-0p)Fg1fbp0KuI?aY;+CK=2~PU4s{j2Djo`EI1Sj6sRBtiaP`^6bnvq
zDN^k8opWx^#dq;t>^}26yT93;z1W%kZ>$zvnS_v$5C8y>sH!OH{L>%*H3Hm!{nbqA
zyMKaf57B@C0QE^kx0ZPSJjhx_M*{%x=KuhZ5dgs7e-UyA0Pqn40DfBl08-fi0G)eY
zi?+<a0c<OnvLfIiI%%ZipTqZ7)qvvf5Rl<wQS}6V$^`)E%~Ta3dVUKB`ES#yXWIJZ
z^=I}*gphn)F<d-_xLQv#vbpG~s4^@F$Qmu)fjQE;hhv9Tr|C5_?M+V2)UDQH$%MCh
z`8gPa$hAupL}jcOV{kK|R^*CU^GbH*mxul#-uga1J}ZZ{hrdjpy$sn?pIZE-@3VJV
zvvTA+w-U*b<4_D7FC1vq%epgG>l7~=c=$_o{yoG;x$5pQ?9Y&Z5fDsJJk0IVdtv`z
z9_$~&+9`0jk3!rqL+|kiSc*AVyyu~gbPcJO{8?7xDLP>}DGyP5i8!6&(oABLT7TAk
z=U3crii}ZCX2!vBI=`06x&rGOmHRHTU>@b0Q`$H{{g}d-9sQTzw~FT5c`GYb4>GJT
zl9Cc(?=(oJ!rvG9YmwO*pX@?pk>xj7(7BHyA7--PAT#8<Yg1J$F5sk^PHc)^iJD$)
zHU3P@EYsr5>BWF6r`t1JL~!|_1nIwBpjS^R_%Xkrb;U&tsJ{A&gACn^arGxzjJXWu
z-*zFeQXG5+_VSCWo6n{g5;ilbAXf>9)X_kS)fE0EbrWkL@8xVYS0*}W>tt)-kC(q(
zUS1wU(M?+>%7x3rN7G^*Z4VEz(i7xfA4p00kQosN9H45Ciz6dp4i3BuFg6%JD#(?A
zkOlCUD=Em*8_KVRY|Fq?!K#mG^i#B0u%fOSkJ{{FmNh{P#`VWPx~3=Ydh(xBGCcHk
zA4xrUP=ZwrMYCJ9gz;zy#{4fEXP2Xs09e?M`#J)HTsY+F*fH$sett9abH4j*kS=s|
z9*3Ud3nOg46X(jl0A}!c*L1=hr<^-M`(<x3P&Q=2r~e3~)P;`p-t^Z}ipbp6P7s$@
zaX32WM8u9c5z3RjpY5kLq1$Iu$^)wo(`S?wmeRLU3+=ZH-fU5sy%{WUBW;&TB<4yf
zX}>$Eh+zb0Bbtfv*a?JsP+xAa!XnsSJ{%AK+%=PT2vHgy5;Reb;PRl%<mOQgO$Ov%
z-Qf~UG#o}`9gTl}dlz%Zv{36MC}TxOVFf1E)l0>$@$)RW3XgCMz@!@-%8UNK{sM8k
z+1~ylX1&Z=*Ilb?#CsK_jm<Z=_pG<$_je5#=>cH{(bY;m>MbTF=)#Ou7_V54vA5xl
z#rWZ(Gvv+&aIxk0NcPj=p$3&ByE=fGvFhhE9ffn&JjNm><Su<K^Lg(PssHNy$^j#c
zhz0u*mYRV!B_XbJHgn_J{G|A8Z)@%h{Bq#4Y%sHH1aM8<r;r}6ciE*8LjzXd>;5M0
zEH}d<c6hl`k&$c}mA+;-fQe|O?*4lNoa{<grt=9|*u!UNiqTATk@?LOKxfJcH^{5N
z`WnnE59wNBdlS^X7fp}WdcNY&wDysK2iv~b>gNN1#rW0YNAc<cF_vc=DZ>sd5zOXq
zkh8n^F1UtY9{8{@A?ooX=YO#t$z22?9tL!RLFPE>WaJ=4zojpuPsbOEoHb2dcN8Xm
zSEd1GK0dfHF{3toF!=cXa;Xk%4!cO4SNxU3PtFK!_T-aR(q+2#ipeM|rH$c!6Uz|S
zIwDCig_qr$TvL>i^Lw6TPoGF+CAUHBq9I7v#W`i<Y8u_|oV^=S7KN6(45|Y$mH;z2
zj;F>aK+zKFv;`eb^jNU|ZK#a0i#WuNMwH$aCVJ4Jrw9i-i1ibSf!ubMG%ZH+?C|si
zL^?^*Tui5)?{1ZMZY})il(i2qUG0n}IU`v6R#luy(QpHp*@+<SN&M5&6iz0aj~myF
z2_(@v!K{dhP@VpleMpHSLldeei)}8Vkv<wYdiXmFQL$0Lp)+hF60MJFm1Gb1y59x%
zS9>xWPc^hIdc|9FU2%I7Yt32o?2aj<-uF;^UgPXSEN_U-eu`R-inYSE_u$}k=ZhAO
zko)VGJNkWK%B6DMG@yLb5t*7Vn6h^yzWw8R>gAp;(t2l&XhU2mjCk8`%bi3x^US%R
zsssQK-D-@{+#tavwdG<O*@*vPcZf0gZjcqg*=LMf$*!*D<}CZjGI8zcb1#y$3)7hK
zQ?Q^H!t|-!O)_0$EWRYOhv2Xc!iM*ory<iJ3ejsIq1tOkG>JyfqQEzOJO+)S@w_>6
zGlNtzBN!jQ+rit&0EyZ#^RMobxlM-tK<|~%H`ZdNh<q-di%4b0c3Iuc<u{_5r>M_O
z64r8i$)*&oF<FvRy+_I(WWG~8&D3?MbhogU^nb@XaSZJn{=SJ@uxVX8&e)x1!c$K@
z=gxe%JsX%(!N9Idzc0-)4&+Tf!z!nmO=a6$IySr?>Zuw#_uw>7(TmHy($26i7($i#
zhyOIp1&XXr1Nhl%NWCRAg}?r8q{(y-jnFaa{34boo1vUC$Dd5^$Zv_SY@WP{CxRI9
z0ah*!3yYaT*5x?n4C9P$oBDVIV^BjB1j&rAOmI$T+w8%kICr$$(}4*ri!gp1uY*NF
zOZc7D)*uCNmzFp1B?VP!ad97xrxJGGnJhO{E~9S7{o>ENG@UqeJxo_TgzRTkAs*Zi
z0$rMA*@Q2GY6yLUX2?SL%(L{O*qTj-e9jkd1l_xSn{mHP=|8?sz5dl4d6qo{9@|ix
zO}{-LpfxaxtA^#Eh?6FIqa_om-uF{pq<^2K@$^>MC82u;`5I+dm#*Ys5UYH&DZ=4N
z6SC&>^_cIQNbdYcL60xJ`bNDMsjl-Ck|~;=oZ}}Pdq!hciJ0iphz{mKds~921E$QY
zGbacwUOmN^6~#?f%VpBB)#sFn(_(=!wq0HvO-|i8hDbjs#x<|oIq|bud;j$l>H@Y3
zXRC*wYm63Bmi&^X7rA+S-a&067-p!~-z(w}3NsHlO<6YY$lI7<Rk~55L3><D_eb5%
zbR_kbKktw_g;<Wj8f0UH<O;W?Q)*yJHt49NcDPXFb#h~xAd8v!9k_#f!(pV#R22N{
zRGO8rFXCC}f*WhjR8xYqTEVyc2igsFU(;L^DA3%kux{hMIJw8Q2_o5vcbW84j+G<u
z;BXypmyGsjFy|p%>COAq2I68`?;QN$yk=zyE<NY!C!m?I5}q7+G3^O<2V~{L_PFi%
ztu#KaB*MABcx!}rpFiM`N7a@q%Dc%>`UmZU5LM+J2djL0+x~kgX%n+4SBB-<RTHEC
zCj5+%euZYhA7E9msT*bhDO6%1!u4XPukQ%Q5?TTU#8skCO+U5qVgne~JB#N@ta&61
z^yEE$QB&Qurz#*=b*FSoOaLN~++(6Z02c!gcb}@1EPYogUjQ{sB7zm5{3LD)S9Jo(
zA9fyEzxJAn6vx%WCw~o%GnSD$2I`~?^ZYKLf?_Y@)^#)KO8F0RDdC6a2^GRX3X5g#
zx#w>mHB59SbbYtCSp?NRO4k^Oj=*G#bqPf7E=EU0DJ==Tv+b(t>bR<iklrCZfeA~(
z&l^m##gk@K@-JB_rrs9lMmBe3c%_N(Zn8tqJE|3zqvuC7clQmP3q|eD<Zs&)?O*1s
zs5GY?o;Tyw5OI4N4H{e8lD;q*%y_cO^oDMFxPoY`d2Exfs042pWl_ckU3c%xVmk6q
z7PloRj|pVL9azZUYLzkDqU&aWZ#IG|gf-Nfr7G>v(w!kHsj#<HV4&u)N|3-lFu2Q3
z)nM}RIu3xgv9UnJ5oER*eJU`^MS{G%!XETD{T{kw7y2onmQXYiaP=&HVEX8k1QLe#
zo#iYn0SpKpo{I=y#KCF{jGNJ^`>DX3+*_AzuFV`6(nC77rRmcFTVh+gPl20N-B=Iw
z6WUFeEGCFSjJ^-<2AZn5`Imf3z#FNtI5&L6NJ%9%dhlda|NBg`aurFPCpXpGCd*4_
zLld+a0>ha%$SIk-d){F&Eo^2dHf%Vzdh=XVsCtZX79hvr4t9mMl!yFCFScJE@~S-)
zO^Sq0p)eO=pSfgR>~od%?KD}}%YU-cuTqWfgcL-ZEI~d$^{XD<n`Ryj!je%+10+p=
z3+s=Inb3;dqQGN%4eb9H{;>XE*ur`)L*xYb|1wY2VcPG1fD=nIx&}bSH0g8%20=8@
z4ysq8wcIN4ll{+^D?vFhS+o}Rg3%8XI|GU!*CLDJjMsTOtX9470y~BzLIcS;d=j=*
z!`dyYIZJ!S*m^!27W}4g)Qlrlnw3KgnZx$0=Myt^y>3<#D|WndtSs(2PzL~3qhJ1T
z+j|@%cH^elEXg94%PMIsgHOgf1P6UqjDo`E_qM}dacpX)pSx4ZKh`>GXR47IFxU&u
zYH|8;>9o++72vSg$*xmZNj(x;$A(2W_<Hq-fjZOE-}FdJ9Gj!Dv=+~e8v7Q$r6iYd
zibV(mA4p+j`_9Zy1zsfrjD{lw1t_`#Rx!gP>E7&RNMwtiwrKn7EjmXt4AU~NAIlaY
zHgnw@hPrJqoHwVv8C0C#hk4RFomyAWMJAz{=rBYH>ct%uY_?yABUUfNe7e){a2E%U
zOfy!Ev9QL0&+!=h*-aw-h`xA9s*e2~Z1@7=#tr<SxQwH|aS{B@B>-Ps<b#b#4^-!{
zM6?T-#8n^u)73<eBe=uYFDdD)Qs}bL^VXV8sb`E*Dzl<l=Z)@bo>UVsG5nd58v1hs
zW1)&+4c~$%=cw(SoSz1nL36Nx0T($k4FII1{KI<x!D74kK1QB!y?bznNq-b%mB}$3
z3eYBTXs)jI!`GJNolj_eG7Tn`Uj-|?$QGYKuKODpoRHT2cV}rewi^EAa;Hr8^bo^R
zl(szhu)1jc+^llrGGkiu4RF%dyQb2^eqw}@VbF>F=3RQIN-WQOIP`O5)32&(t}#pY
z$9Qo$)+dac*oB))w;Hj(Jbff_W4_|Zv;>|+Slc7Mkx|^;R}zlV+$r_Zau^evZs2$;
zWI>P)6~&tAvS;rY-&j<AB-Z7ne@gS`uS>P5=vDDfALQa04A~pY0U1}EX~MHjK(j*p
zr^T>xad*|`DQbaT8sxS;WPhN<6R!uvAuSx1uO{Qe&b8SYB>_{B(wVhBOruWGLhh&f
z?*!g%X>_?e3F=7S23>q(Zoth3O0{sXs2xpp<sGH(OuKGlVeU^3!z+Gw=@4&XD7}Jd
zPb4Amu#Q=Q96qe~Ym9{@CHP>!9FiAor6<y3f;m&2Jdn>4g*|57dLCm8w-5{Bjv*b4
zk*4adqRTFa^)&#rjnkma!B>X5dTI%m4%whf94hb2GJ0)wmTXY{J2phGiI;g~b2DtT
zisKjngDHAZ%cnhl=buH)APuzZFH3|+skf%9rgW@HS$e6jKQ<ZC{b(l*B;D2%AV)mO
z=pC=-dHGKI>Z_11<?#H7r<tv|tNN<R7!QM**K2)a!x*+V+wt-+Bq9zqvg2#JxFvhI
zaY}j3KVoebIp<&f+xO^|K*{v|bXs%En)96soGVy18|12G0h*(n9ZY86bTmHxL*pZ(
z7v`pax6=yS2X2wpWh`b^dUEZ`;H1xy4mc?oYYfs;AnyWo)lv+msTHqiE&FpGmtN<T
z)^JUiP66J}pz|oyhIh#Dnhe5zEoggsH_K4+C8I-+gR-;(deMLRNVs;08oncGKU|!`
zZ>0sNy@LhMoD(hXAH_R8i42IzwFTln+&n+C{(%Vd7O@G$uWoP02^#reNzB(5sk3$|
z-?heA{Gx8nDpt5GJRm-|kdK&zKrK(WA<0PQ_00RFJYLt!IO*n3Lq6uiO$ut9pJR^?
zWvEJDwv(X;lM!hxhQ|Qrb-LQ|g&z#;7dAdg%GtfIvbIaF$?i3_?p1$eYm`D6En-mW
z{YoD$!DE|&3s5(^u-x7B2H!d+K@Y-?H^Q}F3yf|R{1tAvACr)9Esze_m6oe<04x}E
zuMl{oVxu_f+tNNpTrDV=WE*Sa*Mwegwd(7QLU6aXP86wx6C@Lh^#E4s^E0F->2dZC
z14FitX)c?OI2yGU%0qjPvA2c8QH`&YQ5JY8OIBF2kf<5JoSAzvlR`wdCNN*rak4b<
zh*N2H{Uo3{zLmbuMe4mezANsIrJ&oVQ2SDsEEC|Y2cCgQhLO4@c8LSq3o^IH*epL<
zN1tO>f&;Lt1G41V*eo#{wCYdIU-D$A_^>RBrSz;S{dt4*JHI6~@-z2snST)#JcY4w
z%=(&GNB#P-s?Jy@vP3Y3dXPb+Z#l<ZK{e?YbVvk3`|qVSKg(7pT@0k^lm)9AKT<(c
z!qZrx4Wq8rWw8zP^@+Hu)r?i~RYlyX;JydcTrX2#c71B8Z5SUNan*G%D+pq>b>^vr
zmm^dJm3|{B`a^+&S>Z)Oq_3apMrR~uPc<22ITOaWp$Qwb0fOXqh3n#FnuN|M)-oUM
zY>I;5x1Z^LPq27YcC7^UwD!c(`2)g{Wp)qVQKG7pJuyrdadW*-Wh9)~g{{CUQnE-d
zghM7$!lQV5an8HPvyfvfIIPk#Z1VbPAsXLi4<c;!^5WZEqxC8Ii+;x9s7HoREj~=)
z8!B<_;aMrh25*Sp`D-5mLUXRJUMj{?e$#((aQ(JpY&M*-Czg_-?d*8FP2m1Ve~)du
z8Ea1r-5KCHcIIzVHtHg`!zGbfq9;QHhq-O3a;%CZWQ8T$P6}F;SS=8Rbb=tKqrr}o
zzZ8!|&*xz~Wl01clw-kYJ{M=!*~#~&oK=N|#l@J%0jmcdK}=@y{R+Jvymq%4h~<jt
z_B^1maTmUXPhoVyTVK4Ew&3K@SeDo0W)QNra|W?O^?FCzx7A^MOaMF@JQ|XNCZES+
z=sTLFMj%n=;rPnOH&dfG=ahqA!m^~CG9zLAUZeF~LFewD4%#&D4Qu*ELm|ZG=Uus?
zQ&)-!v<l^hUzY0y5d8V`g5`n$nlgUjeRH?`a&hs1O7ixd3dGZvG(^j8(cDhNfW)4>
z5jCIs{z%+1DW0w0(bb>V@L^FBZ9IZEA%}ezAFs$JVd;j4cjm8;_pq^N?YOxVU{-4@
z-$qnOA_&e4ii3W2G2>r&AQ7aKFMDPIyr=iNE{?UfQ6sxvO27D%WlkcOx=BfUw0080
z<UBSP12PaT2}AZhzmeoIs5R%3GjD}&%v37`ZLMcl<=i|`T9=YAcwhmd`|6y$z6#}U
zdC;$@jqPH`C9Y%fq~vn+>h-s}fIzPYcIoMjbk42iXXmEN-xyHYZ5NHN+{=Y%tqo=w
zsvWL?<fW0X7U*9{yAsC|n~Q~9;(KemguWy+wpxTS2dM8AWj*zOS8nk2j75Lwue~-a
zeR%>l^S?rsLs7!3D74z+n%%GZ+Z|q$MF*KUvi&mRdkn0KJ7S4))klrkCt0zxt|g#q
ze3q`y=oh>-pC?}s6@5!IyP3dIX7)Ghq<dVyd9GjLOELP!gi-nHwmh6i{K3+3P&-2e
zW5G|TE=xepsu&MZ%oehIf$Qu2@nLn@di@~0qrSYfd#OYmb-HMI6HCGAL{83Pl@P$5
zV1)L6dtyLd*Umd9pEDEwkpmY<CDOyps*()Ay8V^pXT7joV%437>4Zk+oI+n;CM-zV
z-tDyY5u+qLtQ2cHn%Hj_iFX>->KwWO@z_($SI1N!g=7%Rx*$veApfr#c?|8&P5Sk$
z)>qL*rC5w+$N^`_a!*YOc5M~fj_za$=yyRiiIG2h<eUaRBN({vRsFeq8>gN`gng=_
zMWS(x5&z5rgTilV@vhKlt%R4cc)m#z?uH-5mQx8TZU?n^vM<VT98tApH~>fIFYvy<
zuUenJ_mZYwB37&3abiS&Db0DM+n${{nHpM|N!;@ysHnaB!e@U*XRFF_(njTdT4sWy
zvm_y9)N12df$mooa+<i6-b@BlJLZ%b4OfToamrTRTe)?EM_83_q_l)vZ){wDVV-_9
zw0!lNQv<<ny^teZ@Ri^bGq-bBjVv*KM*PZV_pf&;Rs<r-5t*ERXM&ubXP1(M`)h78
zz?MIb@l?sm$m@snKlZ`pACDZ@iJy_bkN52$#C8E^KT@slsWL+4{MoXXr-5zU!Eiif
zO?yQZzG){vUq10(zFa&y{~cjYgGCFJH2tKjz5i)@TdpnW!K;W(12Ydr5Y7~222AA(
zhnVE%=Ku%TSSrXQc|2JS2px3(hF){SLlIPMrh<8>3v~4~Yaozp#g@(zL9J0A+a#o4
zKfzH0)+b!KEjUW_>J&Zy{v<D~4th?>+{)`qQ(-1CMF>4IWg^%&PQDwVt6S3EuF!7X
z**m^6?OoZiI#=oNB|$T-cw3T!V8<Ny%-L}?D+$`l1phuC*u9~K-Zqxrwo=xfw*Lem
zA|xWpFC@V)ET$(UDkUT=B`nD+BqSvyG|AJ_|NjB5ZZ?i~Z~teY#1}i@A7J3GXXveC
z=?ilAbhC4Gu?2a*b+-jMx_es#0DgJvr^Eyvuei8|G>1o2H+29wY(xUqL{w~4urz8M
zDv%;lwA%)Utx*p&{BwGsXQbyz5B@MxrBF=(@SBdp`}Boa#=j*1s!+IM?F);r{{u|i
BMFs!>

literal 0
HcmV?d00001

diff --git a/web/public/providers/fal-ai.png b/web/public/providers/fal-ai.png
new file mode 100644
index 0000000000000000000000000000000000000000..871855e344c43a4b201b81a7123fe303c3ea349b
GIT binary patch
literal 6389
zcmYLOWmMGP^ZqQobc5tlD@ZqpbS|BOlr#uPBMpmmgER<BONU6egmeo?cc*|f{P@24
z|6e@!nYqurnRDjMnYlMYT~!_jlL8X}034WtjOH`L{{sfv^VuzCI`m8+S50{-pmLOI
z@7a;D)Pq^6r~t2?Z43Yu_5ncoFXR~%&j0}A91wu~%%K17a*+N{h36puzx`jJLM)00
z0Fb|j$w+E@f{u*rs<nS78}D4SaHf8vXU0R7!AGTw3@6ma#;}bhgegOvd0>6%iaZ0_
zR;4@x7Tdp+nas;eSgf4}U-fCLsFdVmXUIS_h|aoLTZ!XSA&?V6<Kr^K&hXWdD`lqA
z%JEd{vDn>Wdy7r;$==kGPu1m7-K@UPQ5`nRr2PVJe}*VgZ~acx#}NW<XgD4Bz0syt
zo1>Q;s2l$j%35!qC}AS(`R_Z`a_fLzHDo~taT*atN$%LczjS^&dewFMf)GQFDU+b4
zJj(I7EsqveSqlIXl%av66=YM!%u|&H_T+uCyjS$V9OXZ}WQ%<mcT5%hEVMvNCfPse
z@JQnWraFD_Px^Nl0P9^Iiqwi=QOxV?r!FkOq-xnYU*XgX9Of9$*f}+H?W=!t#UF?t
z5n1rX03IsNT@<&HK{@ON%pKI@B)FZrgXJBxhsTyC?iO8{b0p&Dq1<-$+?I<3xY$vs
z&|6Fq=8{e=2^i-&EIxal`8PuXcoM2MPbm;Aq>Ktg9C|5y&XxDJ_E+2TU2eqqEU~Hq
z<MWTz#qsHl%n1&ygzt7B+sQ0vQFIifQ1(dg6&bS@>&Z67Tba<^^eSRXb1Q#)gsAwO
z@E+>4I1qGuQeq;+5AWbC|NdCP?!A)>1dj<tka4bBp<3qSNIr60kS<t0lfaWIH`+yD
z>=v?CI*|fOUS}FjPrx}Hq1hMJ*);E^Yhky=#{${Whlc=|_mrwH$lj<b4RIj$oLjZ@
z<jF}wU%+EZ+5>>J#00t{!<1#px-rAg%3?LTjd01I-h5FjenvU$%e8_b&$pK}6?4%?
z{l(WkxrZjROdOcAyhZEDR(Z!I>C^MQ`|DoGkAm5w&d8ATs(0py$pc8T=4qNYd-CGA
z9E`>MGdK?6Kg}itsFNJDx!+RRlhuWiv<}rq?Iyafvn8=|6#7fR_pPv_N@w+dD5Z2|
zTADsI=+9pkaC$n_G4<NoqDuH70jI{@CDW*o>PPFiY|@sP!Lm>kImF@2rvVyaoTX`T
zi%T^%N$rDG7yu`f&;owE?0M}bHO5pL<+Vi%m^_Rf3QzZPxiv+POfBs)_z{VHcm#l#
zzCMaPw1*_!)4JCDIT%*;$2xwOQ8c@F0Hl%5=d{rRFKg1Eb&^oXO_S#?_NPt-r}}wF
zq8ebL=-tgxlVNZ%Q=R)@ppG(?d9{l({RZV4890K$Di@KK)SiyN$CWg!gngq<(5Bcg
z^=j4Sy!>XvjIni6ZSjfbG)%9T!_sONG+@7i7a&rv&*ylH4Ae5;^m+S@bc|vbi38gv
zfAJ_q>dQn{a%NY&k>T}EYg%8tT@%Sc57t_-b#h$H11pY6<#<VwZ6HA9b(33+MI7QR
z*(1h>WF{R7<1ol?<0<9@l6Fpl8I6sO%KjiYQ3;iFl|FHraq<g*FHr$2jfH?G)$cET
z1@2ria)>21HSg9*nppM44#03H^`nZH@88G8vp$tSWC@qM1#a0fJ^Z4kHzf&PxFH>T
zn!y9ogt6~z{k$X0mF_I<>hM|rTv;gUBW{xCtS_R?$FYFLt?rKc_Z%LFkBV~>*d7u&
zMKKE0lmxQAZ!`I^ms?i@d6V}RMKShQLsgl~m>^v|BL9>YYKN#ei>yS_y$5u;zUl{<
z4J?=$VxAKm_t=<Hg=*)`Qt>DtNpljNM}o|7UodaO<+v%Fv?B-KanL{mO=7iFUaf~G
zi2m8IHvMdN*Tf$vT~8{I%ca{~GW;Spp3&G#_w$CF!sdB{^s8MWco`l*Pd8A$!c?Kg
zE@y+&I2n_JIqL9tk!o7)vtX=d+<4D~87?)WmAN6~GJ(QidIdRRLu^a15KlZBok`YJ
zM7hZ|R`;ZB=}Vug#iu7{0INe1f{*V&*+B-eeTZW+!)-B?O8iy2;&gXryKFtj>aner
zo6+(6(nET0=;zYHeWEPnZ_QuBViTxr1BfX~Id1X%1z4@kc$gJkctu)6Rf46ch3eJy
z796B}Z1Tg8)MW0lhH=GPZL+K(!u>B1dchVzvI;ij*P}pq8X}ojx*#dE6e+4KpV0uq
z+YB?}Eo2MD*9$rfoCBWWe@};DgiVgk!O&R32-B2}=18|s1CF{K-%<eU83S6{)Xm5%
zZE{ai4Mp1zPG#j%il}lpI@TC&KwtyVSw2EP_^rus+x2bGYOX<_(mkas69#vcj7PIn
zqydWz*Nqf2MBq)*k<xNP&ybKF>QHZ8Nh;oFyD(Oz+-bG92Y!x#1Oe8zwSXV<h<Jc1
zTclqqFCxPiIIy`NJ5KE1arhLDJK=4dUPfAo>BreC&M1v$YH~Doudi9=blAS3pS!@>
zh=!l0i<cl4aAyftp*~?lPp*E=ah)(3Fiisx7pAohSlSi3uMt{rH%?r8#e<%H)<TuK
zJ!lAt>{ycPBGYUO_q6YE|IrTN@;^M+q^mfT!_;qM@-zsQu*sto*(|m;w4(kw(FXAk
zDfO~SOlM^t)LX+bgt9)=Z>8=tuV9Bt9wK%esh}(hem{MlYI1%5Go*r_l7(q0hxETf
z!30_2M4BJ7$sZ`~Z0V-a0P26dMtK*JmL9%`HoJ`aC2~IP0knJP`BjS7l>^xkgPKck
zp2Q?N8#_~8W~W}vA04L%MEWZP0rx04D}H)=0)s9ZJ6EFtt~$orWPo-GS9k4QtipO>
z17qNk24$s2gDMTBqLGPHz~1@PFGe@k8CVPzvuu+jY7IY2g<3mgV5QRiA}Np7X<2*Q
zo)3Fzn>51DFBV14_^f1hvUjJ&RcQ;<30tZOOcVuN_dE_5!OjTLrA@Bok@6h{p>y=h
z<i3F0qF^!CtbjDc22w$GjQYQsm)Tl;PGy^#-{|m>Qt{M{yLTTNBv+b-C-52%b@VjK
zv4MW=E$VLGjVtjtkmzt&dkv^khpXLi?8S_1{`(-l#|?y{%`MKOxj!ySyuSdFerCXJ
z`FH%?a+f6uWJ)DC46-Qtj^4FM(TVS?{DqaK<7z&V2{RsGJJ1(kA(SjA7Ou!cZI-<@
zUeX|_^shTeh&i1ZaaMqf9&&PWzEK53+0~t>t1Ky6ivh&jLU;VHfAEkkaRlthBbC9A
zt$Aq@JLgOZ)45@=9za>4%Ow}Oj0y)H2A$wd$bgC<Po@<axdVUQYR>ixcU+FPgPhkm
z(!F8aXRq8cZ+sRbZ_gRrjn(gaJGj->;{uk?cHO;KQUfM;YPJ}JuLPf1J}G7XrA`vX
zRmI+<GlS~Y)_{hP{t-8>a9gFNF`y~IGY!>KNFX`k%_Hx$DFF3Nn`UmlsDT&ZR#74r
zX>0oh9CCS|1~K9tctqu~Uwi#*Fy@ST`rAlOh2nQDT4-7iHP)wNf4c3!ZQ}@eTY$wB
zB&#)t&p^}5kSEYO9O!2%8=csX++eO%Ud50bHC`<Qm>}kN=D&V@Ls=ixF}}}&(@5+D
zr1FH1X8nXmx8qDYuHi9u*5Q81k*~wm=YQ(1ePz+g=9fcE$4otqEJ#QmPnZicFFe}`
zz%2nfkSg7OcaG5G9O&MyH#o6jeR!9a7)HZ6>V}Gxm*X-L>KP^Kl8RDEJ#(I>#*-ka
zN3pTuFEKoHtNXT@z_7`Z;thS(WTuA_VK%Iek=Rtr8ORw+XZJZhTW=t_@%M0)tip(;
zrJLX!MLFj`KW(B6Y-!n@g}X(GdA4XCF8UR>c&xo)`lnBP8tE$w9-V}uO1~2MgZ1g<
zzg@PiGgfFNrvJDjS?<Iyn#XdKFmukJd7nB8Pph(%Uu+zciU5Ep7dV%UUkxr}!akR?
zoO?C-hvtkl&CHM+{|u{vMWmzD+@-5!5-7IC3)EEp+~3v^*%i-TnRq##vnpq$CL6up
znTM&*uCT@qa8V*TxrSOVPxF#=R0@SVXLfU@_EQ)4Ny}%1jc5VmzXwb(Tu<Tqm0>i5
zjYEh~_OWYO1|-Mq|HRWx<;_~XyP-29Z-w&6N4`Q@<>l2~R;AZ=uWnni+J{8|b!>VU
zL8qnD+sp?GB<lAHY$FO**&?T<UT8q%)9T!s)U0Kk;6w8|N7C|mQjO39HeQ+h2rn=m
zLq#P%d8Yk4;%@*!935(q9$Mq&(eL&!Yd}4O6l%C}sBa{b{<;aEOuM5EWF<HSad}R(
zf&dxB1p3_q##JfhLI=KwDHtDk!(lZ=w=Q{(2B>>``o}G#4H9j3b=KX$4ja*I(0r!f
zAOZ1lM9ur;x^0zD!lBZbY4O3Yis(HmLdUWJpf2KfdVAz?#B97x@<U1Nfcn5(B+u(z
zFtB^g{bDTibgy{^)X%ISk*H+q_q^#;NnpHtAu)URHZDyq&yx{!u`MrpIm!T-<Yxpz
zY5ufd_N;1}Ut$1GzH8xWrA9ls*Q~N%Gg{-$3`Uswwlvs+Ujin7p_IQn>^r_*mO%+2
z*cG)399`;;cp1+M3hTiWW~_==;e)rt!B24*7#?kLxdjfsib92C5jutJX$tBR(Db>v
z8S^_b0;#}Pwn3^3-H5tK-iR;NOo6`r)(1mG3Q|0z98o{)25Hru2X8mASilKU@jI{D
z@`3~jCFnX+_;^E3J6RZ|j06<m*ftU&bF37eXh0uwb$zTm5}3@Zyo7@i+Erw9`GT;B
z4a69?TJxc*2k|X!<91B@hrtyc<8TXjb%`_R_Dyq=uLrNa35xXe0#E0@*?6EHzSceu
z6dzdSiT8hEkO!B3vxJ+3?QovWH{Xhp|FrCU?KLw{&|9(Q{Q>`GIBGbU((+q$30KS;
zBP1cx%76jE6(Y*m+-40l(?=#_fBE0Uf4%ouap1Ns#WjzX|7ep@Y!4I~aSMQywnKS&
zZM3@5F@LgFRuHg>kPIvHbBQ{0iXdAdjw+cI)ee8fW`q?${p&WsF(RZ@Nhj;Uq`k|+
zh-vhS3>`>H9v@MdWY!Vu8stBl`|u&)@d^Nl3$pjgq~tCx`m)Bo9`%CiXv0(;$aTJ?
z^nw5ncDqHcwfL-`qtrx#+~Gl11|e5fEVzk7vqDTW>gL~m@eli^<bE&+wqH+PMrGpc
zC;E%_+&-j;eifrk7k+k#v<5SfRin&Vr$HT(6QQx~2ipSn+l(TUJ#?kNdw2ptrFl51
zKZOAf_|$j5rz0PQf*xXPa&@&2{Ume$E?7&+i`KpiNTo`@?Cv^T%+-9UVyLaGt;WrH
zQWd)>e}Xs;Uf#gAs(DKR-1DU?IqGm|FqWEI#L;PN1`;tJ`71C*4x1?@Ca|mKDFAty
zvDDj`(ZiY081Wkl|GApfD4b5R6S^HbEE8VK@-JVPa&git31!#SRiu@(pn2hVG2NgA
zQw3sS;s|=@c|A*1bH(|u1sswP51`*KLO-)fZbMSyv<sUoB8iLJ?Rmw3RV?P&KEC_d
zPcay|()#UdXyByu+$kBJ;$e-?140<3Rx~P-UL~MyoZEe<5M8FFRGT!W^t)?$9B~Gp
z+~-+Hl|=d55;G-kE?RuO6`o?CPiCS-P(zA(f@A;MRT$aYleoQhEexwVc4_Z}N|vTH
z=dIWU#lbi@*@n0FT*507VfJS7=Q@Vb<}nMQoIt|(rLM?LAdFV^jbezB{T2)m6qn-~
zck4-XzfNLQ$KU}!NTP~zO)#!_OhHi79)IAaeCD!4mK@YxpmLvLpS@z<M#xB(%i1n1
zT(U4LN-(<&XX5*v;?_~2$>lfz1|+r&Iy8W)Zq}3Vf$6L(X*Hoxl;na*fgO4{lBD+f
zijN*azGm^*iJ6YEInFi|uPoQOV}<=(rwd~fJCZ)c@FGEki3`&#+s+Ftd#u@~ZUk(4
z%RwX(l&j<i(n2^{sU-tDWB4GT)z>lNxLK>LSIh&NgFgly>_-s7G|ax`p)-G@c9@Xk
z5UkZ6!?&xA36rO(@108XtIvtgbsXwI5)SxjFG_8QBc*G_sxd=8<x@IUbZ7Lh$2-5p
zrUX8cS<e2jr9uZfF<B~}Vr^}T`AS__Q}-><JM-VC<wly-C@QimZA_B_jA$x~%EYqF
z)8P8dc=44HRg+(AV7fAe?)M|9kb@IVzAtcNfl+Up+nE9AhxZqyrBMa9n`m=F)Rq^H
z61l}Uz!jf-N!gjFEgryA7G(1xErzWoWywREV1k4;7s6d8cai&o(7-8`+{u?2&$0sV
zE&QZZfUt+Jtl)=ei}rU~>Q7dpzjRAACZyX<Zbd#T5N}OOuwCX3cAVe<E*qWRFv_OG
z$(liIDbvCPX>Iq4Q#MA!VAmdyR5BA%x>7`lm__|jYW<U!$|S1>cT%OEzPN+F|DK-q
zz51}ndDE-K4R$~X@>)?(xOMTi>z*wYC`MNnpiXyX-N#%mh-72AOUp}AE|FoFVwr5x
ziuf*69+M=)r?#KPZkCG@-PMLgmT2t0g|wZ|75b|=`U-&PxInJC2Y&_l4rl#M8q*8c
zO11&rc)W9gMjz%&5}Ru42n~><qCr9i8EJbd(zARzZ`GsaBfcI^OnuQm2c@;Y8}V%}
zH!|R9T9FoihgE%M%|?qyG-keCYv2vQMFT@5&i5AMvNc+)EL-Als7?5Y)Ok?Z%WP4r
zXiMs4f{N>V|Jp6GX?R6wM@zqi#P6Y?-xCX1340v#_{0_a#SZ^_C|xHT+L`M?KcHW4
zDi3Yv=GEUAYd<26n%Oid7Xu*txkQWswTk-c8ioXE%6kq$E`3Wp$-ZF1&=w12#gFtX
z`HCZbo6$|HMEc}xpHb0j=`-9*!RP{G07hexy)#Om)6$7U!0Q54M29p>E4n(S8qs#*
z5BPUE9QuS1Vo#F-YLfaz?{Umnpq2_e_qE}By`H?PQi^;vF|W`axY8GXmf`x~OTw2{
zE=O+n#3bN-ZT3E!DWOTL4*%|^djbovz_t2#Z*Zlw9ppC{vp<;rMLbWcYQUP=Ih(2z
zIF}xm*Lz{ORwhkBykA5%%R#-Ie9S-0`pU7?iIF$r_k4TRrstf8{hz)L-uDaM3b!CQ
zHawL2vjDBE3C7jWhxxgyeo;Z`J<4xcyJHjDYJl4X2c{ar>s`m-pYtY-+4UFt;;isr
z9kDqniZ=|U<Bre6!BOTyZVkG%c1QDD5)3<QUP4)k3UJH&8@kd{%H(TBKTzj{DQS&;
zv+%gJCcHL)OR>A=wuy&<wX1aBH*6UI&V+*K!!iCgH@_9$+&TOvIC)Wx3txEL$AQOc
zs3&ONxbgGmViLaa<J)j9>?HMlUmJCc3{RHTFkps<agKr^ZX!-cI;yB{w0d06!l>}v
zBpb(`4o8~{lwGMo>mCb9KY8QZS3Do5sz(5#VImjeNWox*5Hcnr$Pl;~vA1^`)v~p}
z-O?JP1$Mc>?+oOvGc)|Ku&Eil2&8|^KDt6q(E*{o8ZGkHwT$zfH5cUZy+8HpSkCJ<
zJ3X;|pI;%Yo*$=tqL<q6NxJTFTJIBV&M5BU%<;Dp7p!LT)OtnMXo1eApAbcc&>URq
z5y^{za9Kt!s%-H%#ZD4y_caecRG_kI{uUVnn0{PiG0HOP$TEeixKvo~e|snl3YmC=
zeK6_lCyQVPDW`N#{n5Nh%G<3D%#f`AvGacFik~@J?~OaIggj9c6ym|5W78Om!QT09
zXw(c`-B2?18g+SgpYQ_(SkZGHr5M0KpDq6*aQ~$Bt8DcxJCnAx_gQdCzd&e1J8s3L
zRmIVP;m(@X7D4I7{Kqfz)yTTs7*)Dl{C{fu2YBDo3ymISULsN=**o|Tf498c_-(7s
zyN`trsULH&)rlaT!eG#C2{sOd56cJq6q@hNx9yWCfAa6QlW7~{!oPDE<2&3MVwiNC
z<^hLT!!Tjw_v6g%X~=3LVwZ@pHYoSmxkYPiGmLI9xJE5Ou`=mmqGfuqM)x=aosqK_
zP#@~G`%Jp;d{P&w0k0Lum-*Uy$z*<87nKZ!Ol%7}jUJ;$boT6j6wO51bcVL+eK9v)
zlSoEc#qyaNWi4FtHTt;*{-S)U>3Hyg7;>&PP(e62EKsB>)VC%~2yjNTY{ZW--W3;U
z88AlX&k&QeRamRTTN%}+_V9YD+cV6?&^>5?`|dO`|FX2MKk)!3W^I7xyIoWy*v6RL
zaza?q2PK}HuX=xkBY%12vj~lRq_j4fJ@%Gi+h}RLBK2I&+h=Qk|6{QgG_$3o4^y5@
zA7NZgF^(81`L-GBJf!~piXNu}0=UT3zV~K<=&EEOJ<kF98-_O6L=b}bH`jS51AYZp
yf0Qtt`dDYhT3bSIC_L+A94Kp1qfaK?Z=cBCc<9K}c^d!s<p7gam8q06`TRe{fYL+&

literal 0
HcmV?d00001

diff --git a/web/public/providers/jina-ai.png b/web/public/providers/jina-ai.png
new file mode 100644
index 0000000000000000000000000000000000000000..bb8ee31a2f4de3eaf9481b099f821f25f4c93fb9
GIT binary patch
literal 3874
zcmbtXc{r49`+jD|)`%ozi?O`f85Cjcd$NSFmh4Qg8QWmUG9=!HN|cc(QIUNOW2a<a
zs<CI!7B5*s2H&W@-uF0u$M3K2K91|Tmis)<>$&c~?)$cxi9QpQ8wvmblc9l*Io0Ej
zjDe2&ZBcXTq&kqlxxN-q*u%R>O>k~DhVI73fH*Z~0BAtm0PPWkYHA>!-?1J@6oCAw
zg8?8G1<?G$m{9%EGN9TK=ck8cfPSH=wG8lYG(H3JPkcnX0fK8#-7y~nTYmsxJauFs
zAT^DXs+Nwjw87dKUs87QMoT-ndON#G<Ip}wEC7L1riN%YtP>1}_QLop<5UHIAe5=`
zQCUV1_5*_bQ&rH$*bJua?dJwlkcLac1=XN17!2X(>aJ|AqxXwW%~S<Fu~;8v8JVD<
zAn71^X>UId8CfMIB^kJ!jGUYl6(QvxjKMnLq%i(MKSlnlqvPi9;)n9VqP#J%BV8wF
z?*Oc-px{xX-|Odpy5Ug&bi(-m8jCuh%+ZdFtTbHaw>FiEII1d}p>S?qHaaM@8^)j7
zLrviv9PtDHe|G-q_%EjI|I7T>&MziH=4gO_4fON0epIQ)r3OXF{62a$Xb2`o5CD#+
z8tQ0T;y^1`|MX%TWUrUsTT}CLsX@fcvT5N&6SU0x*UgY0SX^myU<?pwi8+gL`-yN3
z$VtPKXkjxcwr6K)EHhuS-g@9AsiM_XK^7J3V|Dn<&YJ|LbB4sp?%djzt&vytP&Deg
z9#nU)x@>TT3w6FoW&X)tx___Ic2{~$e7_z83pg4O(D>gSga?FjEbG0!7rX%--dwb>
z!C*j)bV|rXe17|zl+4Xi9>s%}@!)JF&GvZj`(PdID)guy3+2ltqzF8zoi}W>c%yi_
z+7?z!tp3#Cf<%5oEYTseRs_JKuj?Au*AKdcUvU<;XVAo>>;l8v9!SoYrlmbv<7uK}
zQhvkD6QHQS-qL#5z+d~#PQYI|f)Q?`<<3w0bcKn%Z`C6MkQn;-sw}uz8_J@Iy!=wz
zn?H&DDgTtf__$ZHz}Xa@)xfiZh9JQOCEk|C&A8k2c0#&h@x{6G4qbF#hMQecZbBob
z$%>L9ous`(mSIa=MyahX00!?XmIB{hI$|>=lfY}5fp|0W&T*qQ@Nt%1$YWO!-QD~P
zKH`Q~SWmfvF0>I&8I}TR_%ocYf81tsbTlCF5NE+vnksOHBw9{Rzv<RLYynIkGfndY
z25tuP=?<Z4pm2>~k|r0KY4n$T#4Pv%L{d4p6!?)*1&^{08iKSy59L1X<niK#Sur}6
zt6FKhLX3@Ej$hj?1PwyDd}kBRM*GlMW8breHXF*~7tE)-_}>C)AdYmzXOIq&#p9q2
z>_caRU1$3#^{K&BKI($Dq{6Oa0-J`{G2gknR{#&Zu865-#sVvqYzy=NahLeik0-kk
zKsw3yLACvzFo*_6HPjrq|Dq*b(L`3`n^kkXR{qQU{6^QZI}&~u_#^_AW0@-K&^EIn
zruXKb^v+`zSL&R(&Mo-e>Lhb*EgT+*wE~H6-0tV(i#O8us@cmGRN?Biljl=~7g1%B
zC#;d@>Axk$6lpj~1Ss2<v^+DG7GI}5SFknE@i4oNU>@{lMa^=!&qrT>(O<TN^wpz8
zl+?eZEh+&uYjA9OBSIhy3<;x-LC=I=ibTrZbTamUd2&=ZW<9^2+AV45Qc#K*a4)g!
z;!#@X+3t84QP($IeZwSRi>!vexSC*b!sy<koNSg8d1RgdB+)|KnqhZ8-!@oLTp~gq
zz0lV}YxTvBEBapZw`T4zfvN2e!e&us!wFHIBL+2+4ayZ6lM59c9oC(C_n52W!wrN<
z1u+A(CYFNs+i<3Q)Kx^TVi!2H8oT&FAaKv5W*EVEqehXXEk`xyxSAQSZDP!6J4s~W
zaM`><AU1y=W!!CzVzp}O73_1GNIHA+6Th}~POd}X##th{nW+TuNS1nRJ&olneRQeJ
z%u^Imr||qU{Vnhy+{4_->C;=c&hSKzm14%ednM&5e{CcPZxz#@7?~OCUXTl--3fV1
zc<YkZv!5vZFe3wpHsArbub!wF&Fi(c>@v*a3-5Z-)YYQj2X6BdslmQlnL2;wM3s2s
zD*|EoCi=B1{Hd&Z<K>-`h+^hA$rF*6TgH=&k}0Bos_kJzw8FMS#m+fElcW3|WrLY7
zz|R7oWt1GxokXm(A1H4&>ubHa$9Yb+zD@QKLI3kyy>)|Ue;=o=^R?!;DFImH5(&c@
z@q@5S-m7oVJ-M`W(gEto{RNAuy!al+_E$d-2~yL(IXg?C6o`Gi6Hhn|frTex#cu^Z
zw|o!>J{LI=l+qpNgCiC&Jp`h9I^sHsM3MHJUsFf;T|5uiU&K|sezIERN!kvu#;3cv
zRqJwe>aFd?Fv+@{=WEEq;~LF9D=;H+sKoPDkMs+lF-|`4j(GmW(gdbS2bvsQF6)(k
zv2G*oMrE(Re^1-D@zT9zQ(uucHtoXZ73E;R!-z^}x!Xhr=waAc_VTpu&J0ZL@i-I~
zxf%wtAwR~96wph+=7(1#@W9Xq8hiL(P?*Va7KOv`xef9klgcypBxr77Z75>)iwB`^
zPpB<}9q)+!*0j4}Bsl2&_v6$z1W+F(Z;3W=uIqLRWeI!PniiLzv+yoqN$R8g2O>(P
z#HdB%dK*KmONf@;8n@h3SeADt7>A%w>HIupTTuuF6aqO+-9Nlw3I@Fza)112EjS*e
z!$p_5wtt|KU$>tXjrihYVM?1oZ!2jkykTWZUvD88X$55F94n5Sa4<gg4(zy=jgo#H
zcEkT7lW~?$sD`=lYoE=9P%b&2>5QGL5V&rdi^A!K^DcTlLDpG!n>k=h&KxGPJB&2S
zHbL9cLe~e4L6TN^7RPA31YcVC2Hwxl-8Frf+<I8#dYP@!S#zU-h#v2f+8?zp!CK%m
zGE+dFpBA><<YrtrKSjEg;zB~EH)5q>qqkwp`{9RD1Mk<ZTG1wn8lf7A!YpF$<`3|~
ziTroqF*nMA1j~x~xz=qn!L_^f6EnlDfy-3`#IPstNMd+r1@+>TOKLRs<xEOZljZZ5
zjEpG6Q||tupW&IB?rmv%p-)RcWKYOvk_^s}#57ha{=AAW<az0->&aLaJIl5~f3tG%
zjLKYGr=<crENv6z5wv=cx?QDC+9!ztELJsP^{qRXt+3?Q^cF8+_hzE_?SoL+WpL?3
z=)h#bgx>3bFSavg#|EEggD1yoUGx-TkG@kP@qzEY>{~aNdV)$%(%4PuzL;ouTwuSQ
z9Zm5iy~+buv45@-;ap~IXNsn%y96~XE*RveO>t?q+5x=l!F5mJl{bXi28T!uNYSh8
zlOANUaRPQ1Jl^R0e(+<v7I(_7<<?qrOiXgLsl6nX6Tj2%{Q7mFD-wC-WvGbPYNg^<
zvgKN2CPnvoWo|}76QAxd<BIWE3!Dy4@QvR&zcP`Z<)ZZb#ulYkitCZOxt=$zW5D)m
z#4?iXFK7dj*p%}zyta(+o%X(0t~_99a#xlE=&sM@^GHwcEmIt?;)`P!Dq1WA{`|5;
z`g?aDxpVQtV@Pwt>R`Esy|*`clqmC#|3J4-!I_Qa+ipO@vaM*;TFD|w0$}|V`fXX?
zkycIb@Nq#mo%=wRD8GqsHS^iG5L4R5F$U+UuggwXuXYZ_FjXc^x8t?0oW+nFnMaFS
z@7N#SjEc&Jsa)t-;L<V^Nj)e^MLc1`J2_AAgOt?y%c9#K-a#aF@$HAfhd|nOgTvpq
zYNqZlyYpt@=A1#rcRjBESycXgzae@cuvx_ZGI?F)Eh(zW@kVxU<##S(-ucB;US_uV
za3~(lytgNmpPkLyy1NPvdlr3f$j1T@Rtq>h2r*!;JD#Hk*E;5t4$8^P>vXl-+Nlpa
z)Zt4UFLXc(@We(szQ6ZIlJjKk%L;8w#Hp^O;JfG%EW+IuB<<%53L8aI4)*BB@~ro|
zbHBgiwdIRXIv4D<766BIC>8|-6@7o!Nsjo)-yPi>Tc^IyM~Kq*=V#b#&b~sQF=$;P
zWuKavcXB1I2JCn<c4gSYf9dUM@4F>7<1v$7+~ScA+L&`r7sfU&zVDYd455vV5Rgi!
z8{cFDk{m>Fl&E(zuWps>*DQA{-dg$EKjiAUn%Vw`n!1DSZXK%)8Irti1L>@tZQ&u6
z4?-KU^4~%@(POcueSws^vW*iBIR(atj3dZA!q9WWYf<o6ku)-!@5!n0yG-@RU)FO+
zAA-83m57|6uYYsr0{7?mua$dVGz>qGSR?mr6nAwxVxgKTm9f>3<(Lu$SGHTs-dkFc
zj0~TczTWCQ!>}9@GEv`Z)B7BY?oQQG2&V*_;mr*`M)Tic;MpGf;43=6A;uyyhR-?R
zUsGu_d4g!Ze!WU^Jc0EP#nD3m>)_BfwYV|QyoxbQg&IAhp6W4+j+iE*?p(c0Qi3L>
zcI-664hW|>yVbiz2Y!04qJn%_`|O#Lmc)#zcw_W2VoHmwaJdG%w9`$avPMz5a5QXL
zkL94fZ}rV>#{BvNht>e71}qQSSGix~-o<%Y!FPJ5v{w;Y-_J?6?f0w~mD~OiV$qFh
zdG9l*UK_I2G4LVVdn?SOa)#(oT2kV2%{@@XH34x|Ql__iWaRJCxw+BhHK(-f`ThcF
lL7o5o2LIo803O3YIsLlFuE$HH=G)Pu(NNb!r%=l=>Ob@UurvSw

literal 0
HcmV?d00001

diff --git a/web/public/providers/recraft.png b/web/public/providers/recraft.png
new file mode 100644
index 0000000000000000000000000000000000000000..3ed12856322ff968314e1e0848502ab4e1c063ea
GIT binary patch
literal 4083
zcmV<P4-D{$P)<h;3K|Lk000e1NJLTq004jh004jp1^@s6!#-il00001b5ch_0Itp)
z=>Px#L}ge>W=%~1DgXcg2mk?xX#fNO00031000^Q000001E2u_0{{R30RRC20H6W@
z1ONa40RR91fS>~a1ONa40RR91fB*mh07#AmcK`qnT}ebiRCodHU1_Wo#TKpsR8YW+
z$l}5d3WA6t$OTk_J|!9+;18CkiRKw&Fo<zYjQ9f;0evEh2=9j|MhW<b_#iC708c;#
z0wRkG0^W=A1TTvU3JOfU?;CHEdxxr-p6TkYuDN}Z%1l>P*K*ER)pe>)Ri%V^YKSD;
z!S#Y01lI$u6I=_p25<@G=fEjMse;=Lw+U_q+%C9ExD#;3C}k+6#tj-Y=qsfhkxr)v
z;+FtuW+?3>nZG!21V0sU>);l_eFAq3&K{k2-g%wt)vGrFCD@)yr6hh67Yz^6;Po~*
z^8Qk|$f-G6{KWe8>sKX$w+?!K7NP?JggzV@5`9T)j~5TVflNlhg+|Sh^30^g#~S!2
zDI++_$|zlhmcJ1xCavB99#qTfT2lxpM?zFV65+eWgT0U$WfzE;024}t?<Nldfq-2|
zB78RmU$eoo_wEK)5S2l{=L}TMgp&V`@}pXoWhw;JS9sFzUzpANyCN*{a*zX%<s~R~
zQ@G`DY{)rjBtlQaB`v;$cmVbNG_-@EIVF$4)^Ix$;g>A<w?nqI)@bU%qbB_m4_#_{
zB>zi_1Klwm7_X}lTR-QOldivnc>n+$Y}l}2M-K!wdjPinwq8K;TbdlefUx<WfByLo
zuXY{)8pGp^rx#dCzd*gf3TECBa4FSURTlt2z-D7K!kRGLv(V{}|6S=(O4PV<V=-pT
z7<t!Scct33YsZSGfPQi4&>`{DPd|yu%1W_w=T5n2&z@98MTOYAcP{~A%19=*tb|6;
z4H`k8Q>RX?^a}X~{*=_WzgxF%>5o7D7=X`DV1)ef#~<aYRjcI0i4$dcdAWqKOG)t~
zTfP9m3{Uut@Mm*&1ec$C_UtKl@7|qX@|qZb{PBm}vSo{$Fkyo1-o1NC0s+0iR>+vL
z&!~NeT^4xFvR{1h#TnsgWLvQJ&p-bx-+AX9dGpOTml_Z#^UiSM&YBE#{r{V9zFDx4
z{k(AE#0fcf?p)ccSFch6LdJq<y6Zys%0F=6z%&MVe&ktnoL_$VMLzY^Q?f~uCZzy`
z+2Ea6<1x_X-*e76M=o2otZ2a&`r^8E>*V#<U++2yD0}fgmj&;Y{l*(_lpMV22&$g^
z@WT%!)IVL6g8dI4J}mFQ|9*miX4)=-fwC7gBy_RxwaWbd`|oQ7_}OQl$u@1;WP~(m
z&>*>g|9)-ULIW_jASX?lBr(NWt2~bIl(KhU_#HZQkVlRjQOfSuUw@T1+;BrJ;fxzM
zF0G6lz;nu!DXxOReE>ZC@WWcsapay2@@CDNrN905+XMuEHGa1Nz<mlIee{tM0G#1t
zm!Ay)K0p2R)5Zb7LQI}KnfbXiCU6@7UAuObM~@y=0$|&=ZL(3LMoIu+wlGcIJ`8%`
zfd`a%s(@(Q&sz;dIou?wVqEl5(TWu-#PQ?DRYBsbuf9rs`Q?|&u%MnVz4Vf}?z-y;
zg4mPu0O;SpzjE~sEn8r5M=OAnCr^sCYuAP%q_VOyF>~h36nY<R{&5L#8UR?|7Xt<i
zQ1bG(-+mKceDQ@c%=3hLs05D}9^|)QzkcGOhaL(AU_r{IdY6TC(sk<8Nm9*I(T*KE
z<oV~HpR-<^*UvS1q)N9Czk>%4N|rIs{B^nq=-9ENfRI(778n4E-+%vI8RmI@_uY2_
z0P-G<|2A*lTs;2x<Hpl9nV{1EfYFD5VS|z%yLNF$RBqyD0`md6BLxh-`|i61G?jp<
zg!j7B0ALTGBbayTg3kD3o`7axXP(3O)3j;Rj9FS3X`4vXSpZ-HNOb9<-okMD^l9HM
z8>V0;_?R<|(W6JFF1X-=oN;UgItu`50Bzg0Rq~Ahpy8(<+P80?pJ;*NV68%6Jt9yV
zVZH1u064;L*|MdQFP!|rik~tp+cWG>0P};bg1~ZhcGj_Yb`}5-ehQYmN+z=P>t+D6
zU*JFxs$I6X@#kA_z14V{CK7ZO09erzIsj1p!#ce${tzsj6%3m=Ub*BF?$VAIIST;l
z|2h>Ai$j7Vd_TkuBHSzzHeGn(g@T(?;zrH_fDGk8P(=iQ-&S31M5;>0s2_VP-I&E_
zMg=D3EC67FC8!Fj2+O>_KLN*%9ZUKBT&VK$>&LPJ0O1cd{1&J>p0fZr_uO-}RV4u8
zNH8T=Bi3SJodtky4S>AV^$aRLv-Rg&Gf=%(j9($;DklA6-f<QH#Z*@JP84dOE^piZ
z&H@0-xVCv$aQ+x?Bx8Vrxu$u+RJYB+WUkMNCi|kiG3Sts0gB?B;w1`BN3;<v<a=94
zTwR{|{5dayokaPfMINr_V&p|BEJIH9>eRPf;K<H}R>OtF&wk(UGiMxOi0U_bWbvE@
z06zg-^-~elt;_<9DlFR%>-8z!jAC}&AkSQMI&k1XkR(ER*I58?`c~HiP@sOhb$<V&
z=mA!)Tp7utQ=uqv768}_D0G^@MHgM<y9a2|qJ{6cg)-NR&z=hB6?u=b`gIln{HE#_
zad1qG;IVLis8y?0+C?Ql@B4}K{rBICPe1+CPt?fcI12!r)FGf(D;dTO8C)**L+k;<
zrUeTY2=-WUB=vHd#gg*-?ME-?cbfyN_U+rBRa&kRa^=mB#V^+AIXM%WeonJ<95QuQ
z8ROy+I{*wBGDKiYw=e$a_5>0DG#SS+E_u_TWl`Qp0U|6~v`BpY_16JX2=~?40pPaV
zZWG*45tRHGU(i<XiYu-Nnw9o_ex_b{;RS7Y90FoB2B6Ud&f_z}7oEj$&BQrSyzH{e
zYI+&{KWEOIShs$!vit_d!u9FXN1EER|M};iO9(h;y*hX9EHR-}$aX*9akp;WDqFX1
zoiqP9@I6*N0Bz@WhMpc;{r=JxA7*0|fR=Dbga~5`Hw{vreDX=(rs>)OMi3Ay0Nj52
z?Z&FiEm`PMat`pq+N|;X^UsUr%XvRj{3$j7xcu_VMc=-Cjd6@q!PTdODbwTt(A0RN
zW(IG+{kC}Jl~-zd#r}URzEi`85BL3j^&4^h`t_10h(ZEqIi3P;`ujg`-n_iy4pmuf
z`o*RP7(95e@s`q~M-R>iD8~W(+?f3S&!0bEj2}N<#MK}*7jw^Q9Z@5aqjenT;<sTJ
z6z|nnUp=dSuqc-79ZV6_J(n+-IJ<j{8UXxOhjmm-RaKS5IRdpnFly8&BWDC+^ND=+
z*=JoAex`S<#hj>x&-@;F<PlSiQJK!-#f#IJHqO+Ow~6rJ=%9oXNaV0#!>sepfV}MY
z0GKZiDv!MHZ``<1;&YG=a+M4-!P<W229fMu#eg7efypiap#DjiO63(`93tRc!So$>
z+~LwOuzo;g7XV?Xf2P5*X3d&3uAWO{@K|cXm)2JU!%+Xw9S0^Fa4uQ0MBtJMv2^KD
zS|8<{RScY=r39=3fU9v~%*GYNOIjI2V-PrboJY*c)vH$voFC)~-TN&j=~%yG6#&;<
zbB&cV^tefbCR()9r_~S*Hh8WepQ~*RQ`~(_dqKa}#eStskm=0X{ib0uo>c(wJl$N|
zyiHaV=K>3^5PC+Sv>EK(ySKRd>Z>yXp%oEb*e2pnJn@8>HEWj1ss&EV&qy(pI8ms7
z-hgn%j2RNvIYuUcyflmX<@`aM>;$Z>1(;s_%hwFpvZqa(mboN4U)(Umad@<N?6Jq#
zpkhJR0Ko1)$}@A=y>oLWCWEXq{=WO}OX1Y8Sb)G90Bos$wA0(PX_HkDa4!OGDUXF_
zVFdtG|7-z(n@OrKcCreB5hF&3n{K+vY8jZh6#(F(2CHZ0(N-S|L{^#4Mu6+-sd-ra
z6j%X3d3m|-y?bFuiL-hyzWAbb<BeNxxkd0K@i6M>H%%)5xbsflSZ|lOS@W&8-m+Q<
zY9{Ojc<7}qiW~q`|7eaK2bw;8I<K6yT9hlVyiz>);Dgr65IF#7iXFv{Tt6Jeq)h7d
z*I)M&HPkq~R|uP2t&9aC2LQi&aU$IBCn_o`tQLv$Av7qpL6HK$ruwI2E*EDwAhb<m
z$Bs>5BTMAPh!g-^{X<t5c_s5@`0l&!%FUZMTj_$mvaxYI^UO2GS0BCfb-$4U0N1=4
z+xw@hP%-|nNKQ?fG|BfJ1I6Uw=N)QCI3FQWAVvy+IH-R*K`dOjFlBo`AJ;2jW*+Gc
zW03)%O`A5cQU6pRz|yXG?z!hey-8G+Z?+#N$?m=P-fZvCo+ASQH-5%N{nK%C!-fsw
zz4zXWv<p_11<S<(HUp|4<9?9=Aa3fPj+0ZTPEAoWut~HTc=XXnBLQM00EnadrxP$w
z9((Pz*L1;=`O{{g`sVRa^Na)lRR8=O+7xO{3rKwS?AZcGycF<;`KX*6;(*Y6%C%FB
z1OPPsW-nlq3ONv(mccK-{Bk5+a4w$QbI(1Y-#8kHRWJ@?vVK}tp?3s-@WBTHn?D85
z7_db&Ngp|Kq`=N3f-#idfQg2VbS``9PWHCNTvzgC&lToA0s?^drbf~exWe>0RL)Zz
z1K8Dh>JYbMSk)>5V0R1)mJ}%(4(uiXc0`j`l1mIZu!#Uz6~lrhMT&+4D+mDYlCWzS
z7fof8TxxTGGT%u6?1R4fL+!BSsSa?U0(Ja>05}dk{l9gf!buftbKsMV?CFOdU?CjO
zze%WWaDW#s{)bg%4?t6>jWCFa-?f%3TtZ=RfOpui2RO4g@F+e5^EvmNP@UkwJk&CC
z<yxi(V3l!H%RB(!P@SlL-LB+bRDX`gf-?ZXDc5`8Il~J`eoK}E|3=OB>uSf_7PrH3
zg)niY$Ag`aYi?shEI$s#r+}lx1OTPQ1IlzHTrH|!>j@9g2DmuH`&6Ufr<7fo<k=(#
zcsAWMI5zCOR0gepQ^ZLxPy#%tmStI9sb@v#hUZ-g2%K*O9Q9wDC0pN*<%r1ylAgd#
z9#D3aVIWFC;HL1|dj}T2hn#Dn9c;uy(i1qqgKAk_<q6N!FR%2T2}dK+1PC$Y0n~TO
zg)$0${W=oS(I^Cb1DAjxUOd=_mOor4G}Hc<BEbo8m2e3VEb)LX9zw6exdIa*hfrHR
z(pQoPgl!0=JwXD72zXH4)o+J>KLNL`cUDTqr>Cj)-^R$VKip8b0dVc%xUP_pISw3w
z;42~YwfJ2K8;%V~I<ur3Bnwjjs96T?0&NFJWd04VH(Vz;PA?}rkiY~VbP92}VTaT5
lT%21Cw*{^e?gX4M`ai%#DUWsMBH#c3002ovPDHLkV1gE#ncn~a

literal 0
HcmV?d00001

diff --git a/web/public/providers/runwayml.png b/web/public/providers/runwayml.png
new file mode 100644
index 0000000000000000000000000000000000000000..8f53a141075d47cd4e04b0989022fe520fb7f9e7
GIT binary patch
literal 5346
zcmcIohc_Hf*Ph+Qu1;17(V_)Wqb5WbeX)odHQENhRij%i2+<PJyDTDli|9m1Bx)pj
zNkOy~L@%Fw-+SKgA9&w6=gxEIp6AXvGxy#(GZU+iQl}(iCIbLaYHFyWFA(=v5F{6U
zkG$=`1wg#e>dK&Ukmc9Kz|X-{(@|F!2wdn0Km=h1#D6IlA`iLpZ~YF055WG{4h10E
z1rYs<gSx=KE$Kr3`urcl@*)3XU)b`Y|7PRzVgIlHb<2dcez^crtcIBv01P~T1)_=O
z-U5IQrm3oA<OkWfN9w2hmBEUs-zG*wUzI+V+tFC^Ss{M3ssdB~Qc}&%^{};Zer;EN
z*P#Bz3nNNNRqeQ!8LNTDLvllQT9GjvoQ|9kO=rQZgm#I|+2y5Nuf*KC4iRg2&;6T$
z8x3b|U#1>ZwKbV6y{LQmUI70S*W?oD?qiAVgyP<Z*+BlnO`Gja3+Dg0_5*AMn;sE<
z{`^y&B(TyNxWA~;D8&tef`iL6Xsw~tUY?$O($Z-P3M>@H`edB}fq}@QZ#^A#&Fm|2
zBS*HE0nSV<j^V}ny6m%O-YLF>ITbiH8~$zaeJwq`lIf<p6<Y&nC&ngUAyvTmF<Wr`
zr6`kftv_pDi~37fjRZ=$VOLFXN|3l~p@A%b=4D=<!oBvO3<eP^Epo<F<-oo5qWE}<
zu8XiMl<rrrfXmn8y-$8DEs1Sd85OFEy}Vn&?6W?cU={F-`0?Y%bR0O}o%_GHe++Vz
z_N}kGn!oWT*3CQ-VwJ&ah*oGMb1JXo-j8pYCb?__-9lbMXIc@aqDZLOG=2^!D4Us?
zZMvh5g4tlWjt&J@g^+Ohvp$4*-IBDDs1A-v%gTz)p++-8^YZN@Bxbr%a@Ljxa0f6Z
z>cFm^%!eFH`-B|&m^XVqsXle2l_#Qj%0P2j@fwQTAdxM2Wtx911FjZXHhcxVIl9Pp
z8=QiWMSBWKyX3P<%VsSI1QM`6DY~Jw@^JJ1STs9j$xN#yvrN9od9b?4k+&q|>?}li
zwy&46a824hhCijUP14z3l$6g9uTv~s<-5c*<TlGUP6@E<Hai7-hK6I2AI2)usFhT(
zR4OVe&c9Nk=$M!W2R#ymjn=-wY?z7k_KOmu$9|1D2`(~nn175J%#qdOQcs{An}@!1
z-WItB7M7RQ70z2DSv%$@myREdCU<me+j5%h#5-?Hg(fTP=p+_4BN2(x;^I%+Gj2R-
zv-I)nsYiG~Cp3;506V+&9($1Gx5RDvG`73HliakHdFomHI80jocAds{nd-{!wR|ZY
zGS{P&gaiD;on?_9)$UNpVlDApHM<^TmV{q6vt&SccelW(n-o_xHG6@OMWe@S88cjG
zpE?!7hWjL`KxMwr(_!E-B1cdNvvw7e;lcluicLntqG=<aoN@H#6#v(UpH<F%*JpHf
zvn0L*-OaxVI5c#QJLx9Foie4|bO;^iRFVO;1?d6;To8h$wyfUH(y4~E?!lwVdo8?@
zSvZnr{~ccAQvI-_{WY#H4EKL|ykJ}T_+4}>_AU33-3*a=wT;-}0Y~vhI_<&PmkNvB
z>sjGTdXn^ASDl7lE9Y&;<LiKoRBUYQu4^>P`_HOm*_Lp2?_iE~aV+wk!TS`R$emJz
z^;PDgxx|L|>}zK#9>MTf+DDDq^sOzy$5OlBPj0^PpHwqj%co%f%@6av@c_C!f=VxY
z<MUu_+d(1j=<t~EDi711CW*q#`F98#ZO*m9S1y&SFv+H;`b3YPJ{3F>d5d9Q>LK=F
zBj=O;XQueMP*&U<prZ6=6X{8S1x4HUp@w^RDfk1n6$l^ZADX7$)FHsxTeXGEC7z;x
z0WZ&O{##E29yL75j`fO?k}Ki|rUKq8*l<(eafgEl!4APFtjwj9)j7G(we}98uLM*K
zTt|}&=yx%SIO<O|d%b~xU>q_o<{Cq&C|@?cDXH^E`@T!}e0_5o3WBQmK@w4Nzm&e?
zuFA%Em33OKT_60x`Swp?pTIV9`s;T;mNDRjdRrh+rpzBMSSw_RZbaXjfuEnTSe?g7
zWZEztKfjYiiJ>6?hfGXq6Tdy?C|2bst05vO2eS0Vw|8j7;^O1;$$k!K`|mY3-}K%*
zA>Q`=7C+gvm@u?rjm1{?lO}zFy#6@mbT>YeVL8R4#y?)l`-r6Pq^*@Tu-zH@XR)As
zLsSRu%KP!%Y)fPM8?F=sc8Rjg=Q05Wj|szlqc0+O^0o@g<$5604T71FPWr-ol$-fN
zlVMO`*%2~}+-7v+ToN(%`*@(?j4FG0v-Cb6C}lmRI{LYF-S6isD9e|TZ`y*Vczmt{
zhemZyhCy~om-(^4rDx7vWJB$Sp(9U44a=N{Mn{VJilHXJ+1Z&dLd^oBOA7QlsjvQ4
zi+esiS+}gJI?P0AN)b?xR!hD_c;#-}-URe7Z)(bs&l6qG58U4@aWU*b9<yfOCQ;xi
zHKG}Ef2rN8pWQYzvOoB}Bq28h(NTBEWTo7Isjw20?V=u?fqRh69FjBo`REJNvGkG_
z^<RFTbK{Kw*%+iVtE9NUw}*s|D6d`sdw@oxSJHT{^U0sVX{nQG<yXRnE$W?x!!1lZ
zM=zD)VL-V?-09s|twXs)hJBBd3U+mMyxh)<T=@-+oZ>Y@Q9@q=rz=O-GXw3#2(~c@
zpt$YDn`$_QzW-y<jx{SbtWk-qH8Y%kU^$PVA&F6SaX(i|`vq_)`zYNtW2yS0M!up@
zP!es=jBwIlv-<?CU#fn*Z-3ZgQnhKPOBAObKt~P&ux5o%ESlU6>m2n)<{!0J#BG>p
z)Pj6$cSMKnK3944SY(yF6I@hdrz|hnL<mfH^}zDPwz)XFUA}xQvoo_08L#plhvK?P
zb3%I-Rkoe#9Ce-NsOw67bIj3Zx|_UX&+5QKaf46C9DecJ3kzt8`~4iu-7a>$ag6&h
zTS`sDKyuWpMwl}YL3LGwuKW1>mantk>Crp=jj0Az3G_frv3SZwNL44W-f=ogt)1hl
z^h7x{5DNZ#nT3T#rGLbQ%6!(I8#S!j+YNzi1wF=#jq3jAYa?ZY%h>39bAX=O9L+u;
z_*0(0Hj?jX6D?Sc(0X3%@%>%Q>kxf?QY!gFG*y)X$LTCzZzSk{ap%dE(dh{Ih?{RW
z3w`{VleuIGTicQ6V<|<BrZ#edDz6?ddywQ|R@ttM6U;uKWVt<5{j~Oc(7O&y*t&Lp
z{8oB}=-UeXebI<yq03<QFT0m`-ye4Tepd*T>m%aN(S93BzLLXMisqqGtl;wvI^Q=W
z?7tqBnR|N|WBy@{Q|gDW>^V~8$Yr?7(3pZGMO6m9>6a#n3qGg6gu?*d{`?H4j08kC
zj$u6gp4#-}AjLJ3HwHmna&S|;lq7H$bKB23{PdWbl!lv!Ssi&X1rd086$jG=c^tPs
z(9<X)S?-tIK&8XDoT20w_etDKWh8ce&XLLz0+E13<U3`{z$eEN3Wz}}Q1nqlcCsvd
zwEnZyxrE%kPs5!j_tT(n_!+>e=jP}ljf$Fo&)3*r=1HhBh~UZ6!zR7ip&NOcP;ili
zg5|O-u{|tp)xCJqh0ER7u*S%Vk6oJbJN?L|PH&*-Dj%{b=W(}2HlZwvw{-A5i`RFj
z35l?mb(9(`k0E)ABSbgg8gvY=_lB~l0AeI}c?W`R9Dd`oX6&>vC9ZcEk0^*iDk5Lg
z32qk!A5+DA;xehU9Fepg_XfCO(GR0zB52oj#i@FiIt!{Q!B@OEsj1f<;*?jUw7OD-
zJ1!E6n27Q4Zc4g5Ed95|OeHDibusCQ%jW)$OYh@x_X2eiB|I?>3Qdog6FVhF%y`6C
z3=?sp^5yMfCN<geJj1{Lupyffv+y8+8p0Oj5q@KidGb;;HUW1h3SY5u*p*757W$_9
zeF>A=<#(%$8&1{*KH=fua&!+%jTd94%@|(DeTOt@LpCi!?P49`{R~z$_`DGFV(l{=
zF)k1tW{>cq;gaZbY?`p4y%zJsSd|CG(L4?Rjl12l{}?2f|8lOisRK5B{BIF-c{a$v
zAMRpsP85yOMfrV4Ds&f11$FOnWjTMXye((%5t56$$7mE<50Vlcq;!)|Vl}YHn^;B!
zX8bWeG-R84apJw}k?N>G<%o)V!Si0IB4noFD^Yq@3yf$2^10@F-REKtu50g0rNXhV
z+_uZcvfBjxUs*y<lMd5}ad0eY=0bQnD>fS!p%z69xpR9^*?oM~CE4u+=SVoe;s}~b
zKH#h7L-l{cRUm*g>yAJ-izvcQH9LQcRz*;C@yImZy(B6lEYcXL5BTATcu<-?rjVTH
zLQywqG_S8uNGRR<vsmq6`w0RP>SBurB^}<`vWMv&2&D53tOx#)fZ@U|OK)eua0chl
zzUA>k);~3qurz(GoX+>GCgc)X_I_tpZ>vR@I^(EVZwbEm(v`Tdz){no_=y9}AL>RR
z@BColtP%6s;2O=3xwhlTh+-0=iPo^45SspEg9^Wghuc4kS;PVz&-9Qs8;Z9P!<+Q-
zGOLLSQd$*zUB`XnJMzL-2@ZNKMMIe`K;m(6oT&T;+ED;TLiiDvg5`gf`4&-M6Vxl<
zA&^Fa1t~T5>SJC*J`1vuECh-VLo!*siq#so5zxcR1&4vVqh~O9vG5Zd3BoC~D-BZV
zFhU200qx>=@rwHFKw8ysseyge4wqL9GX0_!d^5%D8|j=E4B+rI{I%Rty{FfnIMLKI
z2JXH<w3@uflhV=jS8#Sy@N%=f5VLPj!jK6lh>9kyZe>6)pHhurzNr$#z|{-ZzE{Eh
zPs+0z`w7LGfKTSkazAc+;1#~~Lx_%(pA6AJFW39;NF}Q#XZV|~8o9ZWs_dbd<_hn%
z`gycB1aex>p2cf(=y$(c`}$A5oenw3?pO#t5DsfF7o1PaPVu}WKu@Wx{<)guAMKt-
zPoaUlGGF@#7mr9)tS(u)h#?3kCTAES7x671_`AuSa<ZsQ`?p-yoX}20HbqmiYgYMe
zDD~-aYn2(*=k)Qp&b~<n^v*ER65SlZvuMR9nc+4D0Rgvs2(;QrUKGO;5l*cYC>+GM
zMUCNyiqow9Bg8}Yv|adzaT(oXdeTL;4$6{WL8jG}=s_Y;@pmEexp#tYWL71lbqKJ9
zKVp6LmaE`{ed;0p$>_Jeiu!tqTOOR6Gk3_W3-XhreRmk+1uQ3P_r5w9HE$Q~+iwr^
z_EW8nw^V5tSf{62k{CY8Gzj`?i?rQd*x}~o8F@!(!ME5?E4J#O!|eR7ZtKDGlWpXD
z{ulk?{AEI%?D-cKuyVjp<??N_GhRE*NLG@@5`_|ufQWgBEdKhQQyXrQ9z{D>{xxg&
z&s&dB^Gsp{dI)dO<lgp{O<r=kGj(63XhB`f1c(sDvP%+o<)LzNOD5~^n94JyG(0b$
zRKzW=Blgxup49TBsr=4HbGW(|)Rx^<DA*h)W0z3Op<<yi$=8Z%BrP`$Tl$#$uCMX4
zw+ky<ILQ-09kOLsu?1nC3Hj0y`U-=)eu6%>@B%oFiF(M#AWQNR-^8{lDtaS!x4kt+
zZOI3B=1ooy*K9Z1wNm@uE)CuC!L$&CpAd|WrBRe?lRLVY59D_+moz>%+FM&Qf=*QT
zqr@}s$k$X1FVR(=amE<g_SnGT{18E-KC_!-h^0?iYM&-ad+Gw{hwpZT+zuejUhV!m
zvWDWi2LNw)vkcjvouNCVA}koQwQvI?@mrbgC!T`k_nX%ol$>5vi)QwavTQKP$W&Rc
zL6N)tTn;XyU%&S%jzman<$1#Zb7aI=!`gL;kQvilUSiDZV)w7|_dCuqhP4?oWQG8m
z{e6FSm!EFBBrV^NH?vHxYDs#k+uM8e?Qf$hD^^{9G|fGE!ue^=B5`oR_&Ls9^&9ra
z(jaS#%%i-)!O?SgAlaDITw?P4#nCAdJjE@aQb8teEKFiMFHA(WTqpD(46US8?=v7}
zd+C0O*B&8Y*oh+ML+W)e!EX;RJrMqriiaaX%m?{YN<1aS#iQvp-<=n`dpVP!kIMgS
zrSA7s;qtH7N-JP(SbBT+80P$JPbqcQ7RI?O4tl7gM=ECnRTWD_6>%Tn`n1oE*6Wgu
zZgX~Xb;AjABtW84=V_zcG|I4KsL-dQiV?zw172RD))^*6?ZI8oNQ>w`M)nxRGUiyV
z?m~NaH&Np<+lV1{pBZB?7{@5$;prq7JkS(+)dE49RcqFguZGBVd1oLF^Lx2}r|E0I
z0vORf&Hi?Bvc(7J>}W<*@~<uSi_JA0%eqZe$0o4c)Ji+p{xR)3(8Zya4v4y|A+0n<
zyxh-LKUe4q9ftF~-K`0F887^EcJqYNM)?XiH%o#44&(6l&vL$-hY}BR1zRM^i}4e<
z=m_2skzop1c2-uNaJj1Xsn`#xLf3RsM@1fvmMz_T1aQh&S}Od(0mEVsgS#P#_3w~d
zJW;5;TRr@v8JshZ0|5Epbd){gySV`844MStBaDDwl>AR=2}Wl%s_wmw7U#Z%9Pf0K
zV;c0}zySRk0OTk#O7e0(U-)8mzs4LFPLcW>XFBthg3Dw;>XFT^AE`C){j$Unu*3Ie
zUnrDvJkixm)ZjY7@{Y_No-7kyZ=?GCd>A@6*Vq!fCC$*|dev<|gNKPZXIzW}WGB1M
z5ZpM%mus&*^iZ1BifS=Gjce~)@?w4vDQn+Q8OGuC)^vVt2tp2yc4qX2%z@}LncZve
zptv(RX`?s>K*2+G8e0SM6^1Cs3yFbBtV*bzAXpjlQfY98bn1T_&b$2Iay=B$>9)Z%
ToAG}7`&X!`hElCmwh8|q>%ggv

literal 0
HcmV?d00001

diff --git a/web/public/providers/stability-ai.png b/web/public/providers/stability-ai.png
new file mode 100644
index 0000000000000000000000000000000000000000..31cf71c7724396fde773d1f8fb98897d33e39867
GIT binary patch
literal 24455
zcmYJab8sfi6Ezy!HaF(Rw(TcQHnwe>8{4-1#I|kQPB!=b-TT#dr|R_SnL7Pv&vbQ7
zM=B{uBEsRpfq;M@N=u2U{Ko<R0}RxEc2MBY<bMR}tRg7_QaeL%{@=#KR8!haULJ(@
zKOY7J0u&Df@_&;5AOMR0e|-s1Y7p@M_Z$oaB-|1N;{RwA{^S2GssHf5nE#K#^FjZQ
z`oFV$u>Y$L$Or%b{r`n|gE9;KN3af3TFxLK@aX>oC`e{D4hV=4h_slnng{4|4{Sot
zs_X9iOOL@Ve1HTv2^JUxXJR3>HkP<f^sr_sJ+BObJ?7?p3@bVvE>lI6o^%BZ`^yqn
zt_&qn8l47OSN9OADeqtGaWo2Lc<IEy?cl#S3LDr0puBF|>K=b`KDS?ic5JW#WHi&)
z|609g`Cqr3XZ|zCpZaVMKY1wdi5sxnpPOsEyAO%;1^46gMt=<1Hm+v6pXUTKX3P$a
z=cU?EqJK#g&JP%NEfd_hbVXYH`t#1St-y&DD`7mZNs$_n8hPa=Ta_baU4b8&TDkl(
zz-jRH_HM`G<yO-SY<DvCyRT9dY^JVfuw*X2X;$~5e(yTu_}CU6Nmc94>@z0zxt&!o
zMSssI2=pcAoc-!EDM(mPjER$zG}@MH+g4b{KQ1t#%{y<-)Ps!V%ABJhI+ysHsL8f)
zF4iHY93Un3+8{+$Dp~Yv!_JjwJN3cEIMSqfoqBbl;!B2&$X<+RUc0Hw1*ldzP00J{
z{z!L8l~!5vu&(I;uUA)PXIjL+g~vwgoRjyVOBuAa_?*iBXtgwooHs1Y8GW!T>}F%d
zhU!)ABAVAIaZQMW|95hPINZ3HABwU}`Mh0M#)SmMvRf4cY}LFw#itZttSIPQ;#X#E
za{$+<i)Ancv|^A-#ISKgdzUl^26(DMm7bQZD_M!v_k#@8g4S$_<muo0lXF%&MLpeG
zU44C>Or7_`-Zw-Hqbii-HuZ%p;x>w=T^|;X<TD-lr<<<ZxNWCNLB(xWU+bH%g@#S^
z$fH^pCqpyu`#py9rzMvzJti04Yp%c692@F`g`Wze>|z<u`F?t3pu)eShRAFpHiZI-
z&afg_r`MBVc1&n<Q!dJHBiat{T`Kf@UH%Ph$Vy&LKR4BAJWf50P0!|Vc{l$XHWyIm
zbvi0&Rr2V!Z$-<h@9l`+Wq{iYRk)57ekJ@jHa1o3Yux2d(0*BJd+X)T$ln9d=$Nxx
zR-HEMI*@bE)AIfEdWe84Z&1KA7uN)~sss`qYDb3Wg3d_klUma-8pngI8fC(VtyqlT
zU{R=6ljHw>JUp7m&FOxzpQb1v`1+O@o*L8*SZ0rToCf|V&<UmEZbK7!kmN>Q<@(L)
z_?`Q9T#f0V-5+_-6YcKU&HHpZYS#|Y%+GtBcfl%1-2nYx&K2%zGX-jqmwN~2jG44)
zFH=P1;=pQv@se=)<q-F9EPR?+!Dnvu2-_ZAi`=`hY)mbMX}MpQbzd`S)`{zn@q7;v
zOv9@`yk?j{RXCvz;MGhp^1rD!Jyt<C3nz=)g21n#P2QXnm#+2ciV7L}?P8qGkw2`A
zo8vS>n(bo7wU8kwPe)IpRz{q#e^~7M9=gySL$IKDe!)RoOS?VH{(&S>h%#(Zx^#b~
z9Y3-!p4g3%vE<czN1E55$E}hms_0O;eo&PyS;q$Y9VqI*O_~3@Oi>!2JCC@*{tnxP
zr1uz{T-OCbi`wP%HMlVNx3F4P>I991`H1d59<-AojYx3Q%sY6|V(ip0B-jaYX(I}k
zj{`gPi!kbXqHVEA3x-Y!Sr|DWjfs>7OE^gq@QC742O6lr1NLH!NFV0`%S|bi>$xPY
zA?4U88E7XQ-o=SiS0R&<@)xb#Kcb{?d&rP17thM|;#`a#J&%5CtMk-$cazI`U&h&1
zUZN1d6WZ<BfAMsJdAhL<j_gD4Hu>gJs$+lCemoa0s7oKyqZ+flV#lfS?A5eTR<;Yh
zI6C0rI5Cv$FzDgkh*d2&^e1c{X^L(3VI{`_ytv2bTjVNkWD8280J=yjQi<#Eo69mP
zEaI=_R*P4^F{lqSUe4wp<wg}ZNMzCsxzi&y4!oR;t?`a<VxZIgkU8slVn-36c8SRI
z$QTr|G!E)VB99M$_sppeIj!9A>Snv>QzD9USCHH1G`K<2sZ_siK~vj`701}QocWYP
zJDP^(?DxL2uB0TPh-3oM2!tY40nX4Ybw0K^W#4b&t*86FJC?)sPB3}UAroPk2_Wf^
zQ3Az~%nMctIapAw!JR~F?(&BzzgLY+l<{_m3kQ}%=X$yN=Diodvkb}RGcZq}{<`P3
zv-#=Cyy<-gKolt!S4DED?67<si^#9N+h>I0a})?o6tTbOd-l)&xoBMTKF*G_qj!@7
znU}Hjg`ydfwE3T=?g5tdK#hy@C1n-uujuY^Flzlr2z)|5{!gyc=~roopzEfQmbX1E
znFCBGc$FI7K4hV7-Wrnl+-(~$M=~W#1yFWj%*eK4_J!}0aWnJlbw%G}&L2Jpj2^s?
zOO0XQO-K7;WTER=aKUHQ-jpua(=Oy)-$%hWAzA?!`{t~z0;sg4aC(WM^ip^nNjm4C
zzWqiIZ3+~(63D1FCHW`H6)wuEHaF^O2m1Qox>^?NeS0(uGsS)~MK(SNwNc1H?|E4J
z3GZwZ&@rcX!W`bM_>xpEHX+JlD9~tI_?U|FswzP?Y?(wmyx*+_1%ZSq+t9aqzBe7S
zoWl47hJM@NW4q-f{PALbmu-xu)@h3J!`iXPQ!(53#?u<jb9U}JaB4GC`~c!Flu14x
zWvcHv-B}6v0MA`6T~Tzl%{mW)o<1`C2{8g`-m4l7oRJKlDL26}Cy1Bb!r;`aMP)8|
zmY1mxT<c#}HF{}%Q{cBXAzJ8%5Man3jUc3#s14=O(Qc~J=fY$eXUQ{+e6Qv?Vi$F+
z=-y1<7j+69u#Bo&isP5=h>2gFq@hIwlqpjp*P`GR{IA6i>#ypx9D#>)OLTJ|PB^%5
zSmDf}6p73~{K*$~HMbhSgV@{aRq_!aCM~HNcq2sHHNjL<L0Z~CIF_1xXw&f=AOcrx
zL{>nCMVL{C`0t%mT}M&a16cF_(J(>>T9(^E<OTi~qZ{CBQ4MLu6RTLa5I@+2x_!&T
zo8GuN5xK?(`(h<j5-z~#yYGaAc=m!)G<lK){;awKe{uw0=_1z>K0Yl9)-75OVcAKX
zSEyA);IDenf7K{rY5Drj{zgxJz2ihb5AEP4lI-t<T}`Y)@HqW2)TRg;ScW)R7D?E~
zu%_d>^N>C4B$82fuN9Plw8acE<ZSaw?i+7X1c6)h7a_$H(OSZA_vu;I@_cDB_@4c_
zVFJGSXRAu|`5bOURpZA6XRgwb_{d*;iQW6Y`nt^ew*9;bDh@;4*tu`udX7(R?!Rm2
zNihV4QJJ9<!0NJN)LXqkpg2HLkZ!{QSVe^;YaLs;&|3D17&hgH`i!*GA(&jk^4KO)
z1RP8~PPF+M{-*ognWBs88!!S4pc|i(sVV#M1!&7vyk{cWw82Jc*hiJ#l;Q%wa$SUu
zPx?a4RdIMLJX{QoR-bfUt~OlHp4Q@wzK_OFt$Sj!ntH-cS5-j^1wZ@!wble53;2`3
zKX0bYsdlJJ5nMZM$F=>MD-XMLvWZvUhP_+|m{*`LgCWZUa|@?r)>0y|gG$4Oys5Mw
zUxxT=hbF>sV*1x%PZc=-q0ozv&%hxb$fpG$=MFxh#AYW{90wcs(WLJo0I1N?3_V{C
z5QLH?ABCbgwWX2wd^%OtD5z0R50ousl@lZ7_)^Er5ALIjg1at1OU)`3iM=s?#-pfq
z+tBryAR~N_$cZD75VyWldp39O_vibw{wX)<Pf9e`*1~0^-G;_Xx54^)J~Lxb#b_u_
z4(YODwKV{(LjU3{LY~%ALoviO@FCnbWt;nezEW{5j3d8tV|0(7<Yt@2^4s-;Oo9@a
zz6H1Ef;rfi5*ca(Re8<|eI$?xG;tJ(xe31CKwJ<fWJ16^VfY5fYbCN!!C{x<4pf3e
z$Gug?bzfwB9iL0V-{B?Wi68?fZE*BA&o|XU97)l{-zr`Ly>EJ-i+(7vq_?%JY9<#d
z3M(OuU2&oUe&@|VMB6P#;c`TmsaI9vT-8ozL!EG|iQ<F_?Wau-gqFaf(oSk&;-DU_
z-r;@0#1BGyTz=XfAYlGd#)s@OS~))QEMqP_jo|hrO6($oj6t6v_~yle^A@uOD>`<_
zY;D1WcjYN&9*buM?RQo}+79X0<X5_qXkM-uUKk&cXEko?aeWyWPlC43d5{4qmjtiG
zhue(<>#LoS6nJR(5<7V5y6HVE`YD~KMt0|wABP4dvC)R8QJPXBILV>={>6SoR1$#5
zye$YGj{1Z!AVVURUTUio<@VNp1O9al&#i=Y3@T{3cT1QmPbJuIKLCk8*%^U+?CRU*
z6xkU&$T=al_PfO;S>q6eyogC*AxEVT+Wh<Ivua~#@i>1>fWhj!$80$Lk|bRnRU=ut
z$+WUpOL>Lo$e{Su-hXsc18cI(jo54RVZJDSDMhpeou-boTLV%FlPnRM_-pv!ns>Lw
zd-f@ZIL;Nm%_=xd4G^O?t!sUh8%3sIRUMr9%A;q26s`O!7uBz53|4|t%@r=YHB`hF
zm_+ym0|2DW@_W0X5Su{Hj~H4IB7zivK-o8g$>7z@!>*ZgB&V)gVfJ;X8D!TL-izRX
zspt_xSpANW$NdUP=I3H_lO;;C6Y@e?VKko8w6n0#;X|LDK9-cUrcxA$M8gp`=}1J0
ziLw6`-LK7WPt@fr`J2^E=QscJjY<cZ{IkcLF1djks7#P{3Zq@nPzfZ-ibzC*25SDD
zC7+irW28oXL+jo%DComh8<c?Q;c{bs0$hyLR!(riFpvL0${=gaD)erlH$8F*XcOuV
zYFVlcFm`nR;Q$5IxJ>_VujBDsvma@V0)@tuLbo@6)62lkyeMLSQwC;$K!T)G>}9Mr
zNO^%o4)Kq7uYmJwLEeXj0Q<WDgYEIzBkals<T2zJs|#+@Afog<2PGgIb}sNa#JrR@
z1X`2HB4o0Ma6o~0#~TVc5V(}kE@?hO+D8b?<0w;UNH~`y;@~bazpOEd92kJc|1WRq
z*ROct(NZC>X1H6qV$Ig4I+eLUD9<`Hlp-CrFDP}T%|tF6bgdj#H635$`bF-C9;twx
zWH4p6t0LGky@?1!SW(8vTaV7Yf8{85EB&nb3i;Reit8xnUO$Co2Pi}WR`G5Aic<>>
z_V7o$%k80jHI1vNiKBlDWNNiK<W2YZOXOz-!vgMsPQHH@IX<p~yZ?beI}qs4a~{6b
zI}%9Oyr$ocuc?Q2@7?p);u;187>50Z_;;b@SfT5!2u$|?(P~fEH#n|xmcP=eKf-(r
zX#UjceXwCfC;n0rV7*i1ZP374ELCSxHO2r5Gi<EkJ#!5KqJiFHfG!RjWaXfn38$}1
zv_srxcym>nwWml3=#V3+J6CCOiem66YfUuRjZaDED~mz(FMtb))_n%-5*3e{5`*fM
zf@EnomGU32b@)jXf#X7Vcjq@|8S*oBfte9Jhj96Yc}Al}Y;#1Cjkb5{YyE6bcpWYF
ze%#&|3PR!{4nlS7@P%l$i(iydYdl*$FQ~C3c1kXKd0zJdst~X&XwY7qT0TiwUz5=i
zf+L^8heQ7a)4P!pt&z;Q!}0|yctbvmNWMj!bI(V!wj-W9dM@zr0YQ-C3pbE%`2BA9
zp+%3-8ER!o`uDT-FA%Ygh3b2P+exT5M!r`3J*NbI`#dj&)D?f83REKmJqhW_vHew~
z{QJ68=&U+cj_i2d1&sA}U0Va!p6#_h{Y0kvTk(o??Dj8Mp>65R#c@3cY5h(vc}=al
z(4s#froKbicz#cer5-5?0Pd(K3Sx|Ff^|RgJEMA$m2K!1G0f@2qLq#Dzj9TcH1e9K
zbJ{}Z(Bzsr%1W?cWNNxxA7Nf!K14VzKd2B-0k-bstY#TUPXaIM&yFD7V4S{W<4iwm
z^9K4icVfDWx&-uhmps&Z6KF>i`mHa@9ax1p>SH8=G>CNy(l$PCzdU!pdfOdRrm&@6
zzyX1mJcA{ZJWmdfnx2k6aYWf<;@80O`nr~|jnK@a`o5Q!nbd^^>*&<lo$W2rRNS{z
z%?>>|ca|Kgc?=1D4i|@>x(v!6U-vr1N|B2$-kJ~`iZC+gDn7L?pt7q*Ris4YdG-25
zDM6lg6@~#V;be7fO>t#S^te|QL0$6Yy_fZG<tp`-j$hPrQ)C9T0&5BsEIGQQs}odZ
z_~4=aCqi!BT2k?s(|K~7RdLA#*9!bAR_sPQ(9CAg<tSW~J72i^G%C1W#t?~8zg<uh
zGe7Sr=&<FJxX==d!3Hi7pY)Q)q1gho@=<>GQ)cVxYVLt5DZ*xxN!76XZdkcYZk8hb
zD|()AqIEXm)R{APO~3L1*3^Q!>QFo%AdKIBU!wOW$6((^OC&+-Y|FH4!o@&iHtEDq
zpxyv>ynH+6-v9N4ukZHpW=PyBvyT6bp=fYO)OKcf^t&Iv>If}^gO@dLlAXk6r7Mv=
zH&bN*E++47SUp=EYnPipP!ilJVpuX{uMe8=ZOi{!%yD7aWIU0?Q!V<e1P>*AK99_r
zBp=Rs*7Yj>ubA0Hls6Oabj5XAw1ZtJ#u%eP(bx?sml}RIhha`2VH~?~%b>Ll?(^<T
zCB!%b1O$k|Q}>_j;YY@sKQIshhBFh>td3s}d+&O0e|l41Y-s|d)fT%OGQPZDh%?^{
z3@%3wx=bga)I5@|6*SC+=bi572ESfK*=q%GvTH&=aopMYgaLmeMtQBK$3u@FE0!0I
zk3xsBodK!l&U7Wt=Q1_Pea)PBEn>XsO3b6w7Q$1#;la-x!Vo<$rTXx6>1MXQW6kjE
z`x0b{mho8bOHrYb62Cd;*Eqb&dAK=L6)B>wHR<PLN0%+7;s-qHfNAxp^aGCrg*$Gy
zxO>X!ZZ<-o>#3DVoVP&QrCFMQQBjTa)6#Y6PAsjUVy_HWPtzvJc;9`_nN(td`#DkM
z_ZR>+y<FW2q>w6`lPMo>qwVcC9`H()b<(ZynUaVT13ytXwBIgeE@f}JqqkFY#+N6+
z{e8-563K<E>iB)BB*ol`YL-u3SCc<4qwDKHs0Ns8!Ep~;{kOC7Q#rbH0bdr<U-0P~
zG)b~nw_2`jJ0>;jS*)Tv+i>H3VIWe3Qr*Iwb@(K%L9`^xZ3ieI;8C7Ai_j7l9**Cj
zsf{nssa9tYvHi~Tepz~i$P6g+{1dL~lTFTB9|sz|P2q929Bmil`L-rRwzJ*qyE${q
z>u6%Az=ew`w3a&b?1{m+eQtN!?~7b2L3NYO-TnjZFKpII{hbUQen?&h+Yil_kYe79
zW*!bvR$!Ny>hd$i4@&KMA9ZU5uv3YXBk%0=`~4i7Ch+_ItSN8H&FCevU^2Q%E5mb{
zreK>-x<#Tz-+389JOHZfKsy|Bb@tayp%6>P22ZUP<{w+Oss<-hZco2|!(SC0WnrnS
zv&Dc3=L$KNU0N(j_Bm4-oXUN2K+qwbURLQ9;VQj?G||u=M=lCuP3Laswl9e+_zPTL
zN(Uld&a8PH$31D{$Mb&)yLeDUUR30r##Al9qaj%D<#aBcP5TRL;?Ho18P8Ueps3&L
zx8PSDrR1oj09&TuU9FTHqQOjLiys;)2L>dB3^#qO##9gTjOdLZI<k{O`kAg*ev2kg
z?)!;s9>LFs^N;Ii6O*rB^Nyw>S-O~rHwAd$D=z^{uRy=@t(DMgK%wO>u$cx=Pdi7}
zpxvk1;p+;0u)?Id$@f7>>(-t5qD47G8HEk3iBW?_0z#pE1P=}diOHr`Adapd!o~rZ
z%JwTw1aH7KORnA|2pI{#g&Gmda#miER9CK1i6GPNs^@xcGSBnq(0TxB;!*{q(zMQc
zyZidnZk_eMM{wtS1xk$p2V5Pi9_%0LNkNLj8_|IJl3<4nG@Xq|(N4SUWM0mX#=h+C
z*IOL6qQ9w$<+BJ>;3ny3e)l&Re<9~vC0GsRQY7B;#c{g6uH{V*(3>Gq36KvJ*3v|}
zvHZn$(H+no5V<9D2UU$ufl3|!4*AfqI6esv`uXJ$ic!l(_x!F<;5CO}weevs-q;X0
zPiK7^UlKk3FrGA9uMcvJpBxauFu3{pHB>YFbhLf(<5o$Xf;n>vV@lfW&lSik+~u7Y
zD#D!4u?!7P;S;Mzo|dXVA#nfYpU3CCzkcB5`Fq)J^0pDU{hK(fd%Zs`60966v2{nT
z#&W2izS_#L6kp$i_3F}_fk(a^EgJsmyq`Zw;v&K^pD?B<ppgrv+V5koYY`(x7Q1^P
zGM+}^stHqFYbWlc#|_~m%Dww>1)1>aoztLAE#QCc&EG6+&ej|`T{VlfRPxgz+=TaP
z0Y=~ZOOvph+piHV-M$4P9zDQJF5msg1KB16LIyzE5~?*y**briGg6u9#|<xJPX=~(
zuYR=BUTY=5!wMwlQVUtQi;r>U4!YVcsEibLq$#h8vPbt<t9H_CgBwfIG!YR|ZaZWK
zUYvZHL-D?9r~C&7i>mwhd1uFpZZ(&>v#&stCF7o;6`_!M1SPW;8j>A!^{Q7MQ9K*3
zY-AIBJfhEYhTz7$MXKpzj^wPI7T1saCjSj)5h%BVhVc~{X!wjl4@jhQ91{(U7{1gH
ziEqP@A$Q^pcDq+%e=NI~B?v?2znpw5hDBlw8L{qJ9inGoXbT^Pr2B`IOv&HbV>??{
zv~IT_cd(3Q&=wN5V*O07n{ec<pV^(|^QE%Q8f~NkJ1qL+`fF}68A0c>nL&`z9%QCz
z0gbN@XMgU7Zl1g$boY~$GQU@S%Yv-X+X_<-R@%TdjrQp(p94}$0TPl&hai|6Uu#Ke
zF5M8E>0}R-)6ef#%Kg>@{>78;f(CTkD#BUUjfxCt;<xkH_lH419mqet{YirHu~zTm
zoD8?(5i@XjiTtH3`B(_WdVU+8cgD$M<-&)CUdEKM7AAV4@m!vtqrQ%JV@N)`^8zdD
ziFVk@7Gia+<Z#^FOCb>F0Mii(ap1~ca-Y-Ugr2NBAFQ{G@>By@%rVKd4#Ghs0$m_Y
z+SmpNd3`M~U{Occ=|y9!F|85-aVJE-tj+tvG+NCo3oiHKQ)64BX(xGk9Q#3ZH`)eV
zh%w<<VGD(5&U(`)l>$p%u`+KJ&~o)Gn})+PC}7Z_)VwVcl@^wQ0`m4LJ2~1od5O&u
zE3xeFZ^;^U>1Xyfd>1iJfFDIeHL~&(IMxqB6@6S96S)n7y!8xeb&^2{gkt9aUINSB
zK{beP;bDt}-G>Pd;}xdzg@}6)eB3H8vTXr{2YSV$Se-0LMe^JPZmDkNH(oVl>~S`U
zj?{xA8GUUxQ)P!4dhX-FTcqJ+49`h;*6#{|JW38+oDAD&gE*X9yn_9e1vfpVmRm(-
zL_|G}PCTa%+$x+V9f8pDXqFU8HuIxEl?pj3q9mpYN<&e#edXa6nQ}jk0rP1gVgzHD
zGAoCJdR%!_;b{VK>RCD!ia&qG_rL&IhxJY$V!@FsHr6CjFIHd>D?uJIEPfYwu?v~^
zf&H`=niBc9tB`)L4hgU*FVn9FDaxh0hGKcnErig&JarN<0w|S}g1gLLc3PUc`CcQk
z2-ygBV1N0$u>A199}Km=TBlX!@-VbA+i*x94M68-!DTTImZDR_*f(!W!-Tn?g=#zB
zHrO?KdtP^JeJ$AN8($W`VD!QM2_)o1>qPD0#FnOLN<5GJrZ~A94SNAlh1oT_BP~|M
zl)5yLHQ;OM=*T;oR<v(){-sW{j`Y;ZZ&^rr(zc{guc)<(>Ohr0<7a&*Lknxap=1+V
zr3(i-uZB1H>BN`D({2mClA-{sssLz@8x)q#2o$QXD+!bPQ#>&m-TmdZ@FVaBDoWj|
zA-PczZswf2F|M&16xzZy-e-G($m#$rU^!Yk5l4<NXy3y7DDnH+QOe2rplXIF=W-@p
z)T&Px+M3R3$apY3OfPYEpKVnV0hX`3Dm}I+xMaki9D#T=%hsy-!^|B9^;E64RSX-M
zn!S;3zmcP-{ZF$S-QLqX$rGyZ*VV?%x>-tSo%?bD`1JDfVe7Y|%96$3&j_u}rA~K1
z^%6~P?b;=@=M$@LwT|rWZXfQRcD5{T_xJZeiW*)ut14~$Gl?W=8mesn&;SQivo+OS
zxFz_lvJ907$rXl3iENG_RrnbK#+hz^{`F|KznD?<U57Vn9Gw@=R)tbF9ITZ8q|!S9
zNr2?q6XJ?`3#vqU1v%ngr!S82k1=Atr{6&1G5S{cj;S{X+N`X3s#!P|5?j<rljm6!
zd8y|k?KZn#CcZN2mJ7m?bqVPrTG8(AphhKCh!Q#~0mIL%xUO_0>SWNEK;Ya8k2z(I
zJu+6Al{=A#!=KleO__`%Dc*wfbuqr!hQAa5x)pKykv`E*OB|*wvBE1cW&GLGtZTOd
z{sclR%*VxN+oHu~N5ZtU8Iv>sQ%RcaDJz}z<GPtFF=R@QMk)iW%Z{7iIHk3XF}+^2
zb%rm_1uP>raw7dFD<+cjp%ED$`eN+r9Tcbv3r~<x2UQS~j0&qzG`YZ50<}!I+Q=4c
z+Gte4^$}XdR*Z?Su+j_ZWG)y2vK+#tY*yD(;!^XKtGY-Sk0{i71R{U4-vlnA0Z;`~
z<WLnFU91c8PO3*)rn+{vq*&@;a-<sRVR_a_q&S_p=62n$O8W<y$wF4CP3zX;L~3HW
zre3LBgT`t5D}p`_1B)_?<3gCpKne;gZB9Sf#HyW@nYnZ+W22U^EiFxhvE&4M#?0(A
zkDe&Ym!-4Qje9wUZ7IfZV7Y&Cp)8%gBD=FY*AnRnaW}ieL4NS+Z>Nl9Ws6DHhls<3
z;$-;w00uR9>Odjbzf0imMYhk_WyMlU+STD0(trYQj?A$eGO}bm%>)=6h<bybvAb;&
z<IY0t%7g@GhOmt=ow@Q3KMKW_mHJ$^Ez>ett)mf<VNLg6krxzWs1rQTfpMpYPR{FY
z^XF~*&k9*>>Wihz*!EI^Sg6}F5(h_ra6K$+iDGZ3`A%Lv+b^X)Q#|5ztt`Av)t<w>
zuGCW`qTYw6`(DDV#fiQ9b$ct!B}k0b*XwlmS&Q-MpyY+jFa-C6LA~mPzAfH=4b2RC
z%RmlWmCGKmcyJj=6zMLSqS8%|fo$5L@F0g9Xns{}YsGYP+t{WJ`w%Bbup0Hkl#Gf<
zUhVl4WzvQqxlA7qEpIC~>;-V%rJt%@!)d^DN%$BbA{FA1r;wqP-ANUoJ~FIxfJKG#
zOOi^%Ud^PNL){4e%`dqn$gW2@_GTIHduc4!ii3Yc<c%Zy7JMTI072YSa#wQ+mrf}}
zrSyDCXbWxKWf`wrQ`mF6^YiXg0ZicXy`S%=1FS5t5H~vZOZwY5NmR2|Nk+R1Gl@(#
z%fiZ$<-!foK;<((>}(RI1hQ~dF@n9tWfLs{bT~L<XboYNm?3PwdG&&xPi3xXz!W(8
zG>CnPwE(%HQqc^JjJnS@+JU7@$9(ZItCQA?W4grcKtni`cysrf6pgawGOT8WqEf~^
z;8TA-&Z$y`SGfR45R5NmWCWrx$q25VsWG$F!@qTL+VWg8+p&iCe&G(c#Bl_dg>zlW
zOGv9O+rcZy8_4NpoKmv%L}v<a3fD_)P*rsl2LYU1B?tvf(Qcp8HK6C|YmGvD+Cij=
z27I6qt?8YokpO>D6fP-IA`Z|sKJYkSh@&G4ZF@m4<6*x%(Ez~g6&^=TY+<O;TorX3
z8rsts+dEO^QZ<5gJuj`eOAyia*fR2fWWxBR09p!#d||yA*`3+k_6K-XRj1)V(x=bV
z$BKz?;N217eck`Z<+}h#^9$L4Jyf=5kJu3MHJ4(GuFYBn6rdlNn){7p5gy!`f?BF>
zWqfYInng6n0aERN6OIln>KlDsKP~@bL^*`M5gXWP7NBHUFt{&u6Ig^K6Ao2;(S=Xc
zz+4UAzEb0Zl{`0jb$$<6(5;s)&@?i%GMYvCJ<{OIdb^!EiGam6P^)ZDFg6{SI*S^2
zJ4&<hw;Yb--yB1Wn!>-k13hmfW6u_EbrptS_n-d~x-<<?S3I$7wQyLUOG^T)fo{=Z
z*C_F;!mU12kT}7;ykW612DZ-$rM*%(;-LNGv{U|@Ijs&kIQrddG`<Ra8F!22frIdJ
zA`orCvum~Eml74N$$+$I#C-@xrJxO<da{Tb7xacupY#S^G-G;dae=eNiIbj<tw$9H
zN|L2int%TW2_q~VY1ikL!@$gjByT-eYDiLvWD|6gsWJR&**>|yl@)%1(od`ccI5XE
zZE}R`LInZ1C-(aV3}-QmG;6O1kF(d!eLuQ$9`O<vf3Z}=Dnt4j1fm==0i*L$@<dbo
zC21;#*FDhlUF`Y(Y1s*lK?2^m6Ued-qobFEgK&t_P)sh~Adr<xKuzV_L8Q-}P}%5x
zO9(^!%@qzgfBxYr2`_?Nws@N*5nP(4=t%*ORb?bybEBrcY*+SMjUeI%O_RQVw)z+P
z`G4=iu$!d)+d?%8k&8~Ki~Yq^6FkSf;ZDT@M@Z~!^DpNBh@>R|ZuEP>NJ@z_F8{%t
z=H*Vpw>nWVUt$Mc8I+9TmnB~Pp!ZH&_R@^L)Dkp?Q5KaRA8pee^GQk&j)Fdqk#?z$
zAz%|5yg(0MDmWVn+Qtznb<41ulbmFZB$L7L2}@v4k$MI`PhjV7z+RlWZG%~Yomj}D
z7eVJsG6}}1PP_d#OgcAS)+<STh#gYc#5r3@zRYQaWD}&Xu_f9%)mv<i9dAbL$hU;Q
zj1p3aLSG0zHvh0upgL%^Fu!=$NHc;?F&`toxw(}(xg$r(_ggSH?-RrK>AO_|i<gh@
z8=wn3T%*;f>JqT9%lEL}(DJ-|baOsvJsj9@B4k#L8E*<!`HSP71t#esR)iOFw!bGO
zl+9B7<y6L<C<9srF1BBN4KyH;M|;xkt)`}&*(n3<on8z_U3g{B2vPf;A@4xWSB~in
zm^@6C;2ZswzYaH3-kLNyR0i?o1t|~=f2PG*vHlO#BySHo^-0{V?UL$Ox4?0jvZpW#
z$-OeD3}dlP+{;jOZ03i&y9Bh`^4ocC1f`}|y9igU>!cr_uPl$3&x=m*@r6v|j((JU
z+^*WXfRijm9+5TGGgLy6Qk~M|!I`fdzs$N%PjyL`BxS0PYql78{LU{J3MAEAWsFyd
z8t-A*Suo_>4HyFP0~yDYJ(}%WubX{kV*7t^dZtoy6V&u@rHHjQMWhJEApI5L%pRoz
zDrN~E#c>;KmwGTGG(j?0fp{a6{pV(hzCi}7mF#JfEca?Ml(BJ4eP>KYF$p+>LDV%l
z<qux<D+TcEW?m2KL7f>h(_OcE?<ez$^3?z=cJhceny?<PRz#e2CMgC-3&yFu2}hEr
zhD5>^y-nn_*7z+gJR*WRWW+c&Xn6GL;um5mOPgHwzzXr#pob@Zkwd}aroaWrI+}V^
zV@i)95e^8u&1C`;`!J<*xlNu5**z0dBm>D6K{I`Pn2-KkFshm7a~aineTSa*fE7Ol
zck}Nq&RgNaCS82e8rd`PeoOimi=~4i4HZ`H+pNf+Ey1tXTP7^kaJH2tA;6N#A5bzi
zn1OoR+!pekg&?nt75H2_J<zE@l6Y{5F#>VuXyaJADsz^U3mKo5=CKv~<GbY>WiLI>
zqu9}Pj-A+4wn2}VgXoU5(_9>$0^6<8S-#&srpGp3HBP^`R{&JJ+6a?oPBmiHB(%*!
z7AZ%=D)W=pf|>c}(~COil>t_Ev5EuN7w*JEJcm<e2Qgj-kYbD=hp`GzqSS~0DmLTt
z4108(<hg@bl$;=Q=acGuKY_iEaDXN#O?=B!Zse|9fxm{I9R;?0fmNG9A@^_g&h)XN
zuo0c<^h{XRMTqi(;Z1RoA(M7*{}bGO?MY-q{urHd6s+(O^Tg2__sA9p=gFJTw29-C
zw}p-27&GV+YO^*khgIKTGrXG0^mZEf;FKuKNY05YF}h0tnxrBnZ^xA(ZxUm(1az6z
zCKZxetKv=N9xKApXcjm)_(x-?25nZRW@Cz|Vlz5W%NW(<WRX7Lu%N8rbndy^o89_;
zSi5PF)Kwg5gV#oY36RweOCJ~y&6v8UC;3(=lPUAQR8!aY*+<WSu7Otl@`w_>X8F0*
zPq$n{H$rDblDAuGZ&#tU=8jN&7bs1&X^liXs~vD!VlAnO%COj4Xe`QmNih7S>1_I~
zA_Mi!j(J>p)L018%tD{SfHdxG&vyAyk)a?a+g*+2CYw@Xq8?R{XCsYpLYXx<O!(X|
zZ|g->UtV&QE#RKd4{wx^@lJFNYFVq7WfPl+C0}*d{E2lS2pRlM;vu&3LSO0+H(bEh
zlh60dQPXYzC7*~8c8BDhZE_bJrv9D)%HjOr?}s1_fGji8|1R+7nyMI6l*fjFeQcd|
z7ifweZ)o{!b`ctF4mP{9^~vRrh)@w_LT=2OIg8x(ur4B-WBmH{b>H3iT1kvUGw69p
zHHymGW~IHq3T&p6`UFW$N~_JD$<6R?@bJ2MKgfudjKapAF~N^jm;T*PXLO;m1ZF`t
z!Ss-wXOG!%!o;tNXV!m^9<@hQIuYRXEFE>5<zaP@>+N_q?QmAO(PTN|hNJ8=2ct}i
zG}YCUNZ}FY&cRfyIOB5N;sv0j(BwosA7C)Wk_Ik|=1pKTQo+B{%OURTC4zlL6E7cV
zE3>Cs?*(yQ^M%TDk8yYRfjf9p?m%u)nN9nct|{gVtW4qQ$?{h2LR-aQm|t|8xt$!a
zLLQ^ri?dDLR<w@3YS&SV8PIspX+A<(oo|#aSq__^qB%c~I#bQ?vHF}0z=Ok2o;J34
zQ3#M$^|?c?@t3}XE>fwFS&as7H(W?CM^4zSaZ*w%IPMPyw_o*t1)?*A%~wv1;Hqbl
z>HzYZZjo2VszoQ}Qx8uJF-@&e7DQtd`&>eHZ7c$jat8+x#X|Bz74-hnWQ@)I%XIr1
zy!|Qbr9axpJ*>}o5X!D9)T`O)Z^9Nx{R57$nOjl-blBti<pjzz?J_&$UML4|EeoJX
zn`}*8VJx9rZsB_TZWc3cc1rwoMXJ|!sX7!TeX2~;mTlJ7QPkB=pU&lZz3N+sXF`;c
z<QWt_M6_i{(h;U;J~ORRtr1{DWA0~NDTZ(D)R(V0hZzq#_q?Ul<Zl`)g2jU{8pVps
zzQ>{a!<kDFl(zpQ{x`%3XKeYGO+?~-8F)fqLK3Py_5rciEYrWB1kWh|>3TqNP)Hot
zTO;XoRNybgR9R>!a2L$#;(T9ULf}pTr1G>f>+hYv;D8gId=t;X;IgQDzEtV1xPwgd
zh`O}YBsog<W+Y}coYHSC?9(cX8dM?=IB!m}Ed;IJo0WcLQf;$aD^9OpNVK|{lJ3ix
z4#p97^!XtFcIGZH$PQ>BzF}0^peOQ!m_BXXOdQIO$eG*f=CBFu7*MmNlJG)<6E?D`
z96=e9QJ~1J<K-gp!)-^8_MJ$1=Lv|{)pL5DrursNb7@oQtZ96a!d{1}A)FsXFiSCe
ziTV#41Xvx!S5~l-@JbMxTzYJM6hkxZl1dhC37)bde~YuFKiVR|j=`Rh@uNi8ih}(@
zpe%ip{P4T5+`}4&<s%x{K3vyn0M-9+t_JD<)OvA<MV}anO6Xt^!TH&H^?y1gG?I(p
zWT^IvgphT>+4kZY;=*YwTIS~sI!{ZEEGNkaDcn>KXW=|YFwC)I&s_Z1ZEO5#?d=XM
zVPkLT(XL2F`&f||`Ft?JY7UFb)n0{F4%1D3{s}tJ4~Mq~xd>Y7XQbB~)79ro)6+4K
zy2%vK950Qw@vC2`0QhTC@hpW+EmhUVr9~xq?yfcdi6IBh{(6n6BW-B+(`TkG)q?JF
z?qEwn?F+%N$wm}>)#?+&PKvIb1w<b7$ookr7R=k9Mftz=5Py57O_MrlhZcLhz!fYU
z*C(E|AcY635zD>tg`EACfSkpccsvQ72R&)Ux4t}{vv9ZB6LS5@?OJuS>#gA9Z|VIT
zamtIwSo*x^^n%IUBTO$xo#n}wTjndmCtP<AmoYJ+;doz--qY>D(beum)8qc3M3a(=
zZi)Y-%b&BSH&5Taw$=5B=~eQ$xxz6i>l0y6KP;%zwvXqGf^Af&-FfaWf{2k$G7i6T
z`V64cWS-eQOC&9jEd_G|j3eQ|iVO7pd^}QWo@3V#HM|6Y;Jh0?j9XxV@gwBthhKmP
z8Zv}5kvs6~L@E3kop%b9C8rJ_%@DbwjoUMH(=m4PP;@o>I9Zsv*O4I~M2`*psxNiV
zxV;^@V40sbTRg#%>!^0p&=!gyKW)hs@0hztNN$nUTs*?{)umm<!`<1jXt6>o^AOQ<
zU9%(R*Zi^i6(Z9@nrlz%yYNLw{X|1Xhp2nULHWn{fzaIb#VnZ`QoE7GB0@_0hnWJ!
zs5X^EJAI&yaRkl<Mv2c#axOoB%yNGVSAT{l2!sW$L5;Yg3iNWKvuVMA27(P=!drT1
zs74bfG;-ik-4W%S_9Be@+@&=s&WwD0K**X|a0ib#r=q5IwroWvO(ohox*{5W^x=|%
z0fwE{kpW?!^^DMOb)r1W*IX!~uJAJjW*g)7AyR;*L7ynH*X81JgPrgeVS<JLFVn_F
zyHPC0#}M<0HAb~}Z)t?oIAc9*sSk(5CYU@zNO%I&ep@<*L!Z~IP!0kQ226a85xJof
z+Xmh+Vx6F#r?&rZp-LdOvDbtlTNaoFH_WG<8{G9q%mn5TQ7Zth)Uht%tP*u9qkx81
z?!(r#glr}a<}Kfxlih~bt)-p}(aybaT&=U`zdneml~J#sQ8N)k+Uj2>1CLIgUgoUD
z2ZxJ+f%B`651-D;I?r;Ds>-q7n1^td^<N_?{W#di45hO0We<bFAI)1swHt41wRpQ!
zSFiU24F6!XWeSF2QzW%iEL?4`iplz5(++N)L%`3DYM|+>Rf5b1Z96{TKo$w=)N{3a
z*@=`s_oC;TTqO?z=<xr+^%D4<GB2bY>YbPLyD{)*Nwt)9ecUjGWUMsef{E;zqMRLC
z76?R{2gBO7p1p%k9NrEl$>bkw`px8ES&}aHa{;=()Pa=cSKFM5oexst#`k|=9JHXL
zhDUl11szJ}ZHDk-&1`&a8Q6P2MBHA!8UkfAw+920b`$2`1Tqy&9m&*F+fk`Kl}au<
z^SO>p%RL<Tb#Fq`hzPm6Z@o3PWwOeYV-%w7uFGAeI_}i%T@nm0NaToeDf2b6s?r>S
zssi!a(}|mDrFOG#@^CW(HvOi5jmd>uVJU5g_$TRr7<HH#edbm*isNtm<79eD4yAD(
zcn)Iq88AT?B_&0_{Ug_2n8G+QswLpxxXm$BT%Q-$r;ycpLSpmE>UdS6O29)y<~1OR
z`tFQ1u8#2tNpmLIQu(Jan=Q;iba3!_e%^iQb$Y8u!#4SS18^|)jt!-d?OVa+f2;<q
zb_bC?E)kQNa3})Bvykd$9Jzbi`icx(UU*+RJ8SK9i)wtZ3@UMTJPpET=dmu-Xh!e6
z+#U8mCbyw5Ogos-U%QcRw+Q@;4dyx=Nc@j_Y(*(|h1I2QP3f|!E&FNe14g*eb|fjs
zw1YSYlc7*v3yFm;#|Kmf{N#u}$oq*IlyNm597i)iPzrA(cRvi>E&*Gw2n;L;0|WX{
z%)t~&PVJjs@4h~cjkS!8wnd^eRxN?E&g6p9=v{#{Y5sTNaxY=5Z`X~Eo+fujPood1
z^VJe-aFa6=f>ooWUIE0D)pu$_XfRD6kFIZ#V4-y3+qp9p{0C&66`Km+8Ye}`N2tw0
z{Fg++Hutdm+Y;^aM&fo0#O+>1k%v?gFn15mwGblrv~Sk1l5qG=1~eAzDj$TRMENf*
zc|%6*ZlO?gn{Jju5Mndr_a!&w5<Z(wJ_|(F0jgV`lXrbmyreXT$-L-WhN;pwUHnF2
zc8iadQnUik1C6aXehTqwTuRksMd<LOmn%-ewnai=6tojZ(PY&}K4vH^yv@3{K-@5=
z_QZ3)y;ZJ8azue+dLE`BsXhXm1%+`1!`d>>lXl^XR>xmygbMx%uJdP{+biyoR}=gr
zm$U@abrOhAgs5f&_+m`2rezEyM#;txvM^==5~zTbi#-ubqEh!^jH>>m(OCI=z}DGf
z?lT9g299?@n-5-pn>@?-A9<Eo&N2!6S~>eoy?5fgA4Tt#$w_V67p9gcxb|B7(wJwY
zKa6N~XOH*~Z*x;ScGRQ$eJJ<>+C2SPPTmsM)xs6(2UD;kg-aG*U%!D$>a^XzpANtR
zwg2lo+rXuJTi=WHYYWSfV_t&U1j`m{)h08Ij6zAeP1^{1{P&{=l-rOja2Qt3#Gom5
z1;uIMyodoL961oC#8-mg;+HoV#OLunCnh<%Uc&tforYE56%G3I*G+JBLoho*>SV!5
zjL1uM3xdBtFwjm2<V31cd=NyZ1l}tY1QMPjnMOgfY$RP%rdi8FTQlPj8W+6W+Te^s
zNdwrPUtst+2W+bwTZkY^G}Nvz8A~(=qgje%gCH1N2(bn#_UU9*2m0-E_>qh9KThPR
z$H6VIaA=I9(tQax959&%VW<s+egzF;$eh1qb}Xz>6f*c$*tIqMD`67+!ejuGoVBvX
z6qM{FoeOtH;o$Y)P?>vRl<kh}>v)9ge+4D$hcdRHVj5!CPFaiWU_#<>WhWLTY78>_
zsfJlbe{n2Fd%Eryu6lXp7iT6pE<0w$I#{;v6|=_KigaptseQiJ0gYW_fWFboS$A}<
zNWizcpLlnLo{vf|-cv^8e5P^UiGQNKJPY&l7IcVax@;fM()^Vp<JL?#X$c()508{7
z@Ms-AZ)|{ws_?B7&CZ1v$z#dqslM4_65P6YVxAYYXIUkUIyt+F(o9^PD36`m)iAU^
zq;2V|yrV9T#9p_Y1@%6qTT$GzPbT8a?tOk$d;t20787vAYQ_=ssH7qrs@;U=e>1cy
zkqXdI*`$2YC>?QMUBXj$X9!YN{_ma^Ye8=cezEmb#;~gwQ?dCSP+9;#*_=y_=9NQG
z0hijpESxfDOf_)}Zo=};L6_JFfpo(&6Zic$OR66^p%{E<V(Lyatv*PFO;~kegltD_
z1zAVz$t=kae)|RXqKQL#`%YSygXs@$i=u=lGu@6=0Qi*|X?Yh2LfBh=j6+9X)|3=r
zygqbr=Y=W}<i}{9vQe>GH^Ts9tTSMl0IgrAO$7q_0%A&Qn!}=67*51l3FA!8F(CwZ
zkpb+PnZY;8^kr-QU}D0lveX{@#Cdq7o+EMraHd0KHkL??Q<1KY)0~?C^1O^a3MpsM
z7f%F(aHm(Km=s+uTrPlCV-N8JVt*&Gz*6}|XQ8k8N0_UsXa(E)+#PXa{&_;Cahv|U
ziJc<DU>enep-73I?eD!VTOR%bb^`^*pOze9ZNWJZRW)ujLhNDFg<<t|wl2IhOzfRG
ztFGvBWY(lija3`WpoC!<uD!PqsFeiYgZ~W$zNr#_)I8pcS+{Yl$BiK;%QbIuSj?*s
zN{jhY)Y03*`PuZ+biR(w!ZsYH3b{{Ck}?6mS_&Q?B_B^22?*PNZt{Tb)~7ctI;|TU
z>F0Rr<%8(gr8OjdL-@*bgFPD8V6h0Z_US0)#aFqPU}N-bp!9Vfm(Yqv>b~^@C0l!1
zY|6+X4eCO;T;1M|A5)QEq3>GqB>WtW^-iQZ%l1V1AeognW~`wvZ+9;f4A48kZu?n=
z%cR3itL~7f49Ri=>JXsfHj|8#O{V@6VYgo)cJpRdIhm%JOC}}=1x36@kNU!|5x&N7
z*oTZ+y)g>O732G-W(*+%s9|SPnsQSTpD^KcUQX3A9Rj{@&}AJ8csQ>T_{GYNjw~Lh
z2Ww-dJb$~hm*897cHbZG)K>Yc`I~&*=yiTS@Cc+_&Qn6zCE@Sx><()F6z(wmp0|G*
zR)9uy;G)-CNy(6u#4ftm{Z~<N8kV^;%g={x)DB}ifUFI>E+`aX-^C`HJLFyCCh%-j
zi_hq}R@)%f_a@rE<#23#G;DQJc3eY8ke4KIBW)@<P<?v&d9vZSMK*ZUJdbFtmLD4W
zWvk<5uS<}vY}dEm$)Y(X{;bPehQ#bpvHcr%L6pG4QMT8O{6~!)k*4&`e1=0M$nD)&
zkGs}$dEcc+i@!vwhqTb)=m;Gf`Nr?_Vr);1smrpFWqclSsw027aljhV4{h|aj62Bd
zZV-cjZ+uQVFbLxc)1G>Tf3vOkdEiuXR-Z3-m)H4oW9NKxr7f1I8VLytzgrmNiy)@v
zO$&G8C^1y0hjb-U!!DwP1fo|@JFi;(HSdP8CU3^)@O)NYH(Ri1x|}E}xaS3zc;I4%
zkRaX0q|ve??P=L6@_=ljkAqeF)ytCo-yJ}p;X4DHm^iUFUu~H(?zl|&Wl~)039E6~
zU_MujMy7DNLSonX2b$@`IaruMjAoD%7Gj?{&{V$}hc2)G#Pd$>xwRokXleg5vMpd*
zp_Eob1B>VBJu9W<G#==Y!IK51+v($V+&AOBQlc<31HYCe-GAa5q=QR<Tdb{x)#jLf
zfB|*X+|A%+rXCbUt=DdyqW(QKexB}kAe)7e)nHYEnpZ9lfQE+3!pm_n{VgO~!Y}R7
zSF7^tDJYs{D`s+-4I;=mG+4d1no1vdC$e9-@;Z4DUvSj|K`+c$RCDCfV^!EJ7$2Qi
zqf^I7b;6W4nJeJmtyEE6j3)iU1@%2!3Wi#G7%D;Ch*IK2&hPzF68Qe!rQvoxm6mkg
zEQRbwm9*NheeVMP?iIk#pK|{|E}AfYL(Noauk0#=&6J}BSwbV!rN^H%j*uH~)fmIY
z@!R9;MzsX7g>gu+`hsE6o>DNO_HD1v^uwf=!XqieunlPi%|c<K)O5EN_=)ZRzU4f;
zc$&+E1x;kBph!f2z3u8@Ym=VF{Q^*l6yeRKc9D~Iz<ItTlOw7xLGZeBnio^L5J&iC
zR@3Fzl2|DnW(piyZ2^B<tFXr;_P($$V`R#ihS43Iz2y9<#i}eW7MCR=%&u;N1Uv?b
zlx$e7MQe>%P3Lkedz_3JlW*v1kD0=+&}Kld^GNx|xW7T5g;u(F-AL`<+xxk8E2Ue>
z$=j{oZCwkMe&+ivz@!XstLu^I=Br1NdC<B1=|R7~lNS605K&{CCU7&Cf_!L9l^}1u
zUN$Yeo%*n(?ZlEx5nsqhuEAX`2MUnF{MTu0{Sg0e+M6SiywRJPsMX&U!SH&gZmlK-
z>+fu>kK^0ec%8*J|2E-RJcqlTU^md&%HNa3z{ad4+QY}CP#_`0NNe6o#^BtwR{Lhi
zx<$jM#)rev@?6UA<;!{Ffj@197sf^~4a8pUE>1fc3$JNi#C&%rYxV3T9k-s6et*(S
z0t<`LOd*d~CBdFGec=GrQ}^bQTSvXn34vTvfuF<6VYjAg-KCM2P0i-xUmi!fkzBV?
zMiPrHlSP1!R4}Z59moPEE^!+H1F>{l!`OzCD{wh7NAyG~6l|`U*BmRiGkqK*?uLlV
zK~vvN99PbMFiD6jP|S-;iCbJusS^&I)SS{zEP~<M*?zu%*|3!hwyC44Sx&C^Zo%My
zx<n(M35l5dK84ipk63R44TFMvvt(T)XWTksQI(awzx-zRvGnK@WkQ%CgIuTskfUFf
z)I`sIsfgU`-sSY@-(O&F9r5&%kUaFWB<SKrrP-+hHlrSQp0RO-26D}FlHYe=W8rq#
z1dpIUV;WOTYuo=56d&v0ZQHi2@w!B(J|7ONFnw3hK9{3LYRH)c!og#85@{+~zgi3b
zT{`6>M}6ohe|C26*=o6Y4opOw1pr`q{qpiiqJ1XTjW=w1#fg(77qB`CXkgzm5Z8}4
z>6_B`Og?X50017GNkl<Z<1G)T>j)?T0UdI80d|>sz9}GK@|oCZyk3n|)Te7kix)jS
zsO8m0(pXyuQlkU4NW<vvZu~41G<7*##llEq$Mypi-gLHA#V|6_Q7Ww@>_b>KJV>il
zU!ySKE8oL%sesCBMapHp##YjoOX=6qFsuwVTo>1)a8C{&sHzU)deOuM@M?gXc+>WY
z>g@9J+Oj3+)Kh>;?aFeYo<FOp+>$DsQWuM?d%>oK5k8R)uccYBEYGS?T0PGg2J`>}
zZRuoDnq|0-Q=e^8Xz3`pomZk1tdRcrm9NlO)33tHo5NBN#Z#=ycNNfeL?951YE0Hg
zTfu63b{<-1wyb5dc^eUwYo)kauWe1+m~vxJ)Q`86%GHYYJ&J>3fMhSZJ05xyzp;z)
z?8PE^Ui&zPoyab}-fEQ3B5O|(;=~k0^zGRB@#y~NE9<RO(MXcb!-_?GE?`11DMD=u
zXqogx3`kH;>k)(w0x@L<qckI<Pm7-2Ux4}=7ZaYD+i-<lS3!5N^$`gDs(jZdY*Vs`
zR(-XW967M-&b3?j-?MT+6E^xzp{lHUs)jU995jNyXBfxv+=S$Y9~m`h?}3D0);rZT
z8}%83H({a+=yd~u$;bQy)-(T#R}5{axwf|U{K&|TXOVS)syD@CHJC3yR(|>7mp@B=
z)Sbl9n$3asz}GD;gHTKSVuL&q-FtzPhOi8VdmSi54;M%{zT1Opr0)wv`AX?K?)ku_
z12?^8-AIl#)tZu$iM)St)`rST$fUAuIf~zQz3}w0bh3Nu;`rTUH5f72H%c5p4)uxZ
z_<d^+GgIB4d@>H!rSu=y#~7kVo;&fC(uE6rDV$*9>2(3beDhqnKABs3>d=9ERyFJ%
zbE@pcDgb%+ZjKsgnMEvs?(j5;K^xHmGeL^6)jHw@<c4gb#5~pSe(@s&0>5hVj=O(o
zPTSMV`Fy_BY-<FFYWLLL!0c4i#uE)|w`ewfnCrb8DvsAjhbQalOgvIwQ=?OPy+Id3
z$HBt_h?Tuy%77>oOS*z6#Tjf#SC>wod->`4N;=pn;d1##YEO?m^0Cg@Gbb0?k;WBa
zXyI>S&g~FB6TYDZoW2HOyL&^RlWBymv<yP;Swyh_LO13xVgy3OJMi!L8Jb+{<I85L
z&iL5Q%Klxqt>?3On<R4^NuZmG_n2XHGfdScRLxh@uIR~cEI5qV>qNwU<vc&w(j>1j
zDbx%NsWYK{{yBr{N~A01nS<p$1`X|QXCB!i<1kfT0eX>-A9-j=pIrHx6rdbSXuUGf
zXH2*O_sg_#K2x&nn8jiR1BEdD-o4ftI)nL%ntmssEz{{V*HJA(-Cqy*O}+`2Pc>-W
zEYxh*+`|XH?`O{J-+%kMZDi3elz7st|5wxCPvk3CJGygvcV%L1M^!7Gn(^+nSD)pY
zSJ24vL<{+1d)w5G>eS?9wN};-mcn@7lE8wcWymK|ja<9eBbL~Xpt}`mG0ptwR9;?L
zeGJ)>JqRZA@C*;-a|mm6@s3;Wy)zMy4T&J9Bq%0hd9&vRXG22U(19;tBLP?`1V9-!
zJ*%4#M(wK2c4j8;kWy)oqu&Ew(>H?T$=i$^vwE(Ag8dEzUq0jdTD=r44vaVNzvqW9
z+<V7+uN>Ha>pDMGFVVmNSvJQG?(LANqpot+q64{+7Q2;eI`r*<tos>S$E#~q3(lc@
zlz-<f-@o|QJKuhJY;3HmaT{&eJKzQ+IWX6vwXwj#lS0tn!*^Pi*A?|wQSE(@$&bGL
z-#+n&e{gd4nHABofyZG5fJRg*Hobdj{lLsSC*%a`1EPhS<OiGiL;Pq5fIjfx<0#pl
z5vP;|M^J$dOiIy;>SNFCT{{kxcTL^7HafVg+H9@IOV!nMqoH5=&~9BYF)L_!jIF+u
zH{xoXg7j!hFQH=EHObUDyziaM?|sLQT)6e%y(?p*lMQzLiZGGnTrjJkBCr683~>X)
z+ldSnhZ^H!Q`MKx951d*$(g5cO?V^U!Zo74E$vPc4UvhF-Sr=Q&p$jjIjWgX=SM@R
zH7b*iG9r8?dJvW!;<qN}=((I0iSLS!Wm0LadRCvTRx3|@>!rW?%Ixec#rCW{51SQ$
zxTpZz@3`xSavEYK)c4)0RXLm7wf0Ggs<*EWj}{!4d=gHpIUroo0a3=wpIS@TJ9c{Q
zOH-<?Oe&`tz0pQ0#f+Y<cp(T)<k0Uq%*JFD0Fzv+^QF0BuXWx!pG2i5quCtM6z>jb
zL&ntjOl8;fE$esQ^1VyDcJ411_;wIX4J@GV(aiu*f0~*vJh(wwm}*X^Go7;Da9-6b
zY_cBuyt(Ql7+)8kjVoR=U8t-@XQ((<zw_|-E*&~>+nRPP(WA<75)k-92YAf?mLi}W
z97tTdeqgq-4vveC$ZDzd@WSfi^B@0%-<}Py^hBoTtrbA=-PB;Vx@~lKWN2XIHhpPr
zK+})vbfj5U9>UNKWZ6YGzQtP{U|OglgTVo$D1D3!rYDneEvXK-CdY1488=so1I3mU
zqb>hHvsGFZl-Ef%@=_z11UFD|4#P$1*AaXkmk%;oCDc|(`6TH~p*23dt)|z%*AMQ$
zcjb<Q_pRK#|IRhGjG>6uk6ZmHmliL!x_bL+Q(JfFLK#sF1Jmm6Mux_k)k-O@DP;Nz
z^6TWXS*>&nEm~F7m&^v5+a`8Z_U^iE?f$ntc%_gZXwlnJQ~2uT3?7QNBGCYVEKc!s
z!Fom!lnG+wXr<;ZEnNE4m!J6Di~8|shJR!Qq8EtRD$vn&{=>&UKcgQV{h6WsjvsEf
zEBaCf(_cza;g$*6@TkIhHUfI-Ze>}{q(EH1X*+o=WB;Vz0T5tUQ=b*Jn5Fb$=|uY2
zspkhTTt1bn)K-%66;k*Lya@~(1!`EMqQb^&L!AQTFiX1zTXLjLc=`@bD$QqMIz_!@
zJU%>A**SG*>DF5gtqc#3F?{0-J?!@ji0#v88!`0=U$H_2jG_fm6_|MUY-_UkVw$LI
zHX|<{dui~Z=Jk)C`NrVo#q&8^$~J4}6ku|6XL;YuU28WVxOH{sj_C^dY|li1jf-FS
z(TGd7U)^Ld#3PL;<^nv7wI1zP)lzc&x#v#&;Yz9X(C_@0pW`=zAbf-QC%*}fn@z!h
zAAIl^(|g8ly6OIVfABvx>Wu-}D*N=Q7;79CXI=h)|4so^hCE`8Lm_Mv+N~emvZ~l0
zOLda*lz7{TlxqmSqVN7KB(5x9&Rn{5C97W?OI912Z?COtwQt#0TVQCjRSRnaQtGOE
zY0I=XGU;MFmCCn^+3{w+kZJASxu-Nx7-{CTCo!ANxA`W4Hg#zFR>K)rD+w2;3tlnQ
z?eoklfZw5`vV%Mb$ti~4lSds8W~ZCdB8~PVlok?eYvts^(&aQSrlh2ZQoQ=eaK4qz
z7iwDS7OZ_7(E4|`is$%;g9qni2_*fEJlw1Rq)N5A$#i1n?>_yxe{t^FCr*Fn<Y)NY
z`3)%mc*qd_;0J#;_pZZ#|0l;r_x`lz2Q&N_X-{oLpJxxk$I-)F8CTe|7t_`*Ka7-!
z{5=pp(2$*?kWr)u8$TEhvHIwzR%^AIR;j8n{rsFvb1hcW2O~tGC=g7eH>2s$3Y9(x
zru_r?ZZekU6L1|iS7`O9n@%VAfk|mD&Y4?CqAWKM5jx1AUOKpO_0g>(kH{V;y#iRb
zqRqd2R>vy<YlV2}&H^fv%4oEhVb=%9G+(Gy%!uZgw7*T8f|Lo_S_i8<@bpy`0K5d0
zHxLH1f*R{<+@HYlte!h_;g7z4?2$iu=%L@`_Y|p(7Zo{sVZ%&dFV@|VNeo-BT)24d
zOGCv2_oY&uUFzbBvc|Td-denXs4H|(2?ETMY@F~-V;#MY4gqY4<JqSRLX%c}4-ds)
z0VvkiuAp>WzcrANl!`JvvO;PSuuFc471)v$pj;n#(2I{s6Gee;up>*@q)_rr$fX0P
zjRtO3J&ZwU?MoVfDSu$~gFLFAV5vfYhGK$XvjWteu8JN=AhZAh-~ekIysVrWO56z6
z4^L?6mv;g>QV78+!<JI==>1g|PPG#>e^9~Hy;k<5=_0l){WyE!{PLF~kt+!QRZ;dx
zH!NG9sB7o<{`HApDh##Xp3F24Rx4e5k;E&2SRqQpHUDx3G%*_{1-D7DfJ44Za17tN
zX!ofVRsf+}3}v^CzH#q=MT;`|CSEcnmsc!sK}8#*jZ{TRXgX82e*aW=B1pU4@Eb7i
zD3{M_d-<#x2nGkkPzG0B=mKcr1U(AGJ?p27<X^bBz7G)iJqFFIYOW8oe7@CMT42d-
z{O($_%CJa=cYugSccc4_U4W}Ia7_1l1!(CN`m7csTJ6qBDb<rd{m&lwO=a~A0p*rK
zthi>NM18|>{o?+;w+*Ed`F$-+nF0bZMsf;-53lI|sgL6rxr2jD1pllneTH=nFrR<S
zsNOijoMH+5#!fjt21|A-&ycdO01hcFT(LmtkWx51u6yVcN5wAd+bM@Z3bg95<$Iv0
z6-LEsta~0sAEw@LE1ojV^b1%`*})hSyzoH+TV>tVN;yOd7%kwy1rI{$>V&}&#XWl-
zg0Vc{Fvrg_s(h~`<PY#dSu&L@ua{Rp_uv2gPd*Wv^l?P?;5Od8S{L9U;byEBnLR&u
z@$?sR>1<<WX3x*pEBbLs<Ce}b#_fGl$mm<UN8+#M970kc9N=h?oAaA6e5TM90c>pj
zE^mLpymfuq`eK3>Vv~qkuts{O5b~fEf_z>)AvCmbx*g<<BKXj6`94OBVp3BIh)Fh~
z1;V1gMsQAe0dk+#&)&cDY077Klwyl)NFxa1ok$Wcx|ei1f9mA9KdF>TUqw~|fzS}N
z&$aQ|ug%8z%}<?29(km5YVq8$dMEkUrS-_?(ph{LK7pk^8&fD#&DHbK33VeHA7_jd
z)BUqSsUBe`ksgI(tFXD{(*bw|0%w1ple_oA_t&7|Zh+fRjz_2R?Ts1<-g)^pS!KgM
zoV~4>2RvKFErjOl^@5(6Y>TJmGG{MU@z)LIU-bY%o+y`y`KJwu3hk&)B&(J3!}|2=
z-<(=pJcg_Ubxq-eX{$Q861F)1(I5S4CDYw;sb24XBNA(_p_w{_1LDHL6N^>Ye1ze+
zr&)0*kMYFgx>g-LTo~V0apCkW?kU#}rEQfR<4n9y6RDElRRPD(9evKzar6%?Lm1IU
z6#e|DvlP$x)`uZy7zSLhU$m%ai?7z}&2Q`&9lVH)`nj%sw?$Q6G1CTR`IF!M@^8eW
zgWse1$6}+Z$#j_^g0(KGX74#P4D^^i49~#1Z`WOy!g>@T7Ex|cwkf^C<6FDW5Prr=
zpmS=fPU(VM=ipg?;IajZVcX!<4S1Qjd4P@dG7+QR-9{BGpI;rMAhcRD?T+3s41)B{
z(Ze8cqzoK!w%aEp1r7Q1LrKxKX1(?3Py8?M`Zd6Gc!q2w5F}fKP;IwJ-5BL-Wz-j9
zlgGAipPm+Z8BKrY0JVPKLvi)@qRIE^*5?a@JqIxMl4Xb|{sYRM;Ty^DPae5&2Y_xf
zj^g>>RDH8kJ}yXij;ab)zi&oJQoy^Xts2UJCLF<@^Z|Fyqy(=2pltBlvbZO2i>o=j
zJ>(k!Od)l`)nH-A=oN0>=ArvB8UlKJ&StGUUnw=7`NG4W{heozKgvp<R}aq|5BiGN
z8&Lp{1msZ_xIVM}<};a8@$z7C@@?#2lTixTApk6bAg#3-1N9ip4EoAaDf99H#p@3~
zmu|Din<`7;uCGTFPUP+?j%pVc9isKUo2qUvY*^QVkY!lS;wTSsL14lOqibHhn~c*F
ziXb>6R)DTL24}C!Y3{*caD*yvK(V{f+J)8))u=zpqGwlRaM1&Bec@uyl_%gAMKc6N
zv3y)WvZl3@jrsYxj~_Yq!r%V>C;siM;z8<F+=E^7>NVz?fSUlQd*{^r#S81}<rmi1
z7QT?s7d+W3Xy(sVIFv=;s+o13R=GX{0AjdDFu~j1tDPL%sV{eSsJZ)BwO=VG#k*mf
zZV+8Sf=NjZ9n5yJme_-2FMG2ll%e|BbcYoJ0_b*#{ANs7z7U8qRaH`FPS7dGMi>Vf
z)F60pd0ZT4Sp?~=&qp_ah0yyDk(K4uFRhlVN05OsBX|nE;qY24fG;F=^5m1Xv7Lu2
z>nn?^yQUAkRkLgvb(Nx5H4k(VQ%2w!EjFeG%qN~!X|rtzfVW!}OeowKTnLyr1zNtV
zFLhQPT^P#wGJ)~Iw{*t+e3a7ihEUS-X=TJ)Ygd}ZNw~iCyTv3b;7D>)_W0ip#^|Md
zYvB&LwODSYH{Lj4efls?UTpSoSfQ8#$mDPkqp_c@t5`L4D`K^_kzIQ9$*2DF>G}C%
zpZe7Q#YR<-yy*%+fw7}UA8GDBP`vQ+%NI@_+<VvCVv$7F*1wf#0Vw)dx&#Gg`pgt#
zj`6T94!hT<pI^vuQzIr8g9)FA#XLL3cPZ9qA|nX`W$@<SW`2dvx&p6_A!KfK&je$F
zN9bM=JeaoBNe)g)n1JGwuq^b*HZwLiFe`tv0+52m<B%4h6s7>W%6&J}Z?k-Q4!C2^
zo+*#A66fzV`KApu8BNXSmOlBZzxcOn&1b%$d48tk0dtJh&5Z`J>e~t?-lIp4Mi1UP
zbz$jp<CH$?9M9*Ad-PVW2B^&0i%|w8KIqwkm`QwC=wT{grnO3I4K919NuLW7m6Pc!
zRoT9xt!I-fCYpQWq)tIzQv~{Z0r5Ju6F8-*ohuKD<dg{*vgss+VJMGm5se?#({(sl
zUIV9Y{m^UK&>pN&SgOpnOM`?!0aQjnp3!cLMpig5sv08&tV<t#MEeB0Yo*G=U;FwK
zA9uokh~g1^n2b=4>%0AS6~LF$MG0=(b;pYKk<MxT{&Y5%+9y*rEDaaWr2f__#dOUb
z5lm>WKs!PZ3mlw@K=6uV&}(TX5$@g06RjKzW364CCS3uCl>w(Y5H?@m5`&Gi7L7op
zP=P5o;ZrW<BYasXEjZb;jmAh*Fsm&cMxg#sRh+}8yat94%_1Nnmr?rT>>Myec^Hrf
zxLpA}sJ_zHWGtaAbCFB)ix)n=usHXn%d=;W|H)teK3lsH{<j@oF9m>*=+nm@t!IX_
zHND4Ho*bLnnT%(~#ioQ9D|Hr2k&3l^$6QA}3LLJzi}mM#osMA!#)&-Q87-ST@fyJz
zdW&%<6L#+zJro&c4SJEL048{%LS(Qgi;!3`Mml}x589Owf;DWAgF+Z>Qbs+KkHZJ<
z?9hpE9+tt<EuV+dRcsP2=^5X6iC47A^ywE)Jo~rL9{a|*hyLdG=<`A2Dj&-BT5exY
z1%MzqhR@fZ{MHwi;_<?<g9r9a>3#Z1%~fW!uCH$bs@gK&ebWzfJuj(KKNzEeM+XI*
zuXoT5m>|StG0Y1;>;pI+QG(-@R~SR1SX<N~)tb9RVa?JN$~_0lMc~^#1V9WPaIAv@
zbMjpMGn67+i}S-gA(E96;UF-YUFINP??KOPy}zw@60{5&D>WO<$3OMiPyX&7{@MR|
z8r~`y8}_=ie&O+~;P!P3)P=*E`|tnuXMS8?!n!Ay8h&@9Rln|ON<49bYg2GjC{=Yn
zO6iwy{VE=CZU+x{K~M|hn>}v9MtPn5gdn&H1Zy8;!lpy9g5T}KYMu{UZPOyn1ga|v
zz)YZr2bs;>ZHRNJ*1szqFUZgGSyw=-K(q?l8(Glr<~+>w?$7`7gMX?h<E5^Y5h_Pd
z-)6v_dcA`u(yG%~&-{;t)s?TuGE1lT?B4xj>WA}fZTpo)&?dit>!Kjs%AL`5WVv{m
zWBnR94K*xuPq;aSo_jvhn*@7y4xdv7%91}ITs-4!+P4iwElbe-;8~*|*XwzK{Z#Hu
z@VYuh2;?GB*{Yr5ov?v)fk_{`qnN%KG)2%Zo|F_VA#zqupFIDcv=RSrikWfyh=ZWX
z;aY?tc>PYVXBV&~Re$@)A2zq|zq_8+r%AH8wB8Jg<z-ss7sN7b#_MNt%HWlPHqs9+
z&8&i0=p0H3Ae<WzGv(y62Y0ohrYs2kze59{{hP^G9QMVVdK`GWXHEinfm4D0ond$n
zwMFU?7>_rg$6_EKD}%|menS_-0kmov%A=joNx@ds&75B^uYK;q{L+^-!87}t|Ibfc
zx5b2<*Am`v1rSlO=brm~E1p@teB#*b`CAVi8rAA`MrvPx4`MegG9Egfcom>JFyB3!
z9K0|Bs(T6m$4y_j@z^9*-6LFZ$fLHaJsKVqLUBYBTv38^3c!^l>+f~NQZNMoeq~pZ
zP6EQebx3TuNNz(ag&`|`f?xm#6v1;Si%>v;xfYrn(LBSMR-^IEpZ)ote&Y0{FQ54I
zr+?p%@uBPu3r5NthJ7PqI7J(Y{qjHlj|aBx*!lf4yJmh=KU$)X_SR(z#4pWyi7Db6
zPM(3<9s|b##`$8Kj;*=@UzD2*KoJCphWHvPs<*ux)<ca?(=DJ_7}oi1lE)*|)pr3j
zU|Mvze@7R*6KE!05@iGs${yS*D-NL)gw9@S5Yrw$^*@m-XHQ-D%eiwGANlP+_{HM_
zb`^KmtI@p9F>i(i@FXKg*d9p_-MgHqwU3-U`}EgV)>`H5I|e6msmzc*F`sUA*lFj4
zjYxQ(f@kmK*_19w6#PODCfkiJ+|bR~FVpX~ayeP}?cL@F&@D*KSk$q+n0r$@>4aGT
z;`@gy4Qfm~4WW`TD=ta*IDsgJ>>0yBYyHG|rNxf%uAb)cbK2mleH6+0mF2b1KK9td
z|9<IG^lQ&uShzep`v^R8750U`!PlS$Z*VDBqo>^X^z?nnAOGQhGQ4dpcOa7<drKx!
zJUld!x>c_OWE<^9v#aSp_lp-!Pdzhj6kz-I9pc_Terxsc&_rbyW2a(J2Fy6m%<U7b
zr6c^F^QU`(nBoKun{VBgVbjTv0*JPcHIRqZ8)+4v<i}vxP9SNWHtcFsaH>)+tv{m|
zKws47U!F^3hED$RCqK6E_~Vab?wKZq_%}7YnHC^iF;l#?we#&qpZxS%EL$v(<##kQ
z*?c3Dk7l%2PkaCM`{?-BZ1(H&)eYCWtvj_PGK4IY2vl-Iwn67=<<L0kjeSsi7N{aD
zPETBgOpUb%=;sMs^95RY5T@=xzgargryE{N^vHp;Ng*kmUeD6IG<rcoeT&xXqc2zV
zqUM!_h3CKU#KSNChyVANFP=Yt9&Ox=T2XIKFm}8-MQvFMd?mny$O8{NkjO-KPk-o#
z{{HtDGDGju`z@3DiRl4mkh+P6JY~s4dY~3-40C>h8lAQ7kS?oM+H<eI+oKn9<>+nk
z4%ON|fnkFY30zv^`+JQvdivw~d=-r*nAZliF3_9%@w|2p@zE5?TzimtD@N|U6mwDK
z&hvi$r~c}bUu46k_Ur{O3wSK9{=KI+@g~HIH?h>Kiwa4~G2_0&9~qh1wQp?C&YRwH
z`1bwx7mLN)I?Y5uyI@lFR;8jni2)W{f9_$Vr8{RXjIx*f3OD^p9{|jmvkjek2)Y6{
zriWe5nF9{<jy@9TPU6XAo=>r9Os`+ETYH{w^6*&}zRVH&I765)Q+z}49Xk2hj_*+M
zy<)?RFb0WXtBuUv>#5Nno7+=e|AJn!ydxef?8>HdyQa5K+>uV?CZpYCPRqvnE>l%s
z=!#aD`E%A32ara_N1TMt$!!Y@fZ+84hlEEy+X1Y*%>n1l`L7sv^+{^uiDV+DA05!B
zF51@njO(Rx>G<r4xzn|3`Fx{OJ+o_O$Fp;lmFmg)&o#bv<XhCw3qD-e%|*TG&rW^c
z^kQGNz%6O|$shT(sp80vq2c1l@ZOp2JGJkAx>m03(66ry3=ZXsdV^?0pF%J2%3oaF
zuDXR3rAQC-ts`eu=qeJ{Q)rr)M81u!52iEpqrbO)g=jr!Wl?>CrtkF%ADepU$7RYj
z$tOeKidM9FWofOnvM!YC#X?aXdGz>+6Bia1OUo;3OLHrK{1?CBXYnX09DFh1xbN8g
zmdyT+QM0jN-(rZ}+-hPUeDBXrWfS?C@$sqQJ8!>hB9$7rNx#K26-!3b3B6EQtJjCp
z`Yw(3QK)IFW7eooUrLJT69g&q>cGlJm)n}&VI+V8*!F;!K9sDD1N_E{G=blRsyCa}
zOgg=y<eFZ9t?K8B7aEQAm!Em=smoWcTw1QS%4dUb?_NbG#ROq<nvegEUcZ|aU^8Q0
zO(B4dz4I*}866s*94!_GMx&k9%sam4fn5Xn{5B2F2iome5ukXgwOz&-<L%rv#W5r8
zeyKw%K<(rOeo>QHjRtD#<?_WxAA95sKd{7a?C>)y{L+T9Z6(la(Fh6ORpI{wwc(vb
Th%>_900000NkvXXu0mjf+s&r6

literal 0
HcmV?d00001

diff --git a/web/public/providers/topaz.png b/web/public/providers/topaz.png
new file mode 100644
index 0000000000000000000000000000000000000000..3f86008e4d05603a81c10cd06c6e1f0d8a80d652
GIT binary patch
literal 1134
zcmeAS@N?(olHy`uVBq!ia0vp^4Is?H1SEZ8zRdwrjKx9jP7LeL$-D$|Tv8)E(|mmy
zw18|52FCVG1{RPKAeI7R1_tH@j10^`nh_+nfC(<!uz(rC1}XIDV<`tJzv1cP7*fIb
zcJ6-f=s=0K*)!rFOgfs^IOA^L(Ubo~^?L8hGL>$q4{yt9DiPl(ptG^qLH&8cEcw4)
z3M|4F$3D;9xBTs7&AsN|tKV17+mn0n@YW6YbM`%4svK~|b@HFt3`|GvGqWf-_&CV;
zGYcrFDfBI8<PZ=RIDVOdrGvBMaVAg!%aM;J42(%kk1C`Z7z`N;ZFn6TW;9sLW5cR#
zW5Xni|NTe$k3ardBPSoKH@(~S`T95ZdIxq)KlQZ#`0@Pj-;`t}esy<uA4~|)s&x81
zNA$mF@%)4fZ?mhbs%~X%ebj#c{{8R2YvUQuwRXj)baDFo`|Bkyzr6DFoU4leTN|#j
zKK~}in54{s&lQ9mZ}&P@aH6y)&syIN;Y*`R5ANB#`LR)YsmDI1oUPj!k9=5r@7=cd
zZ;NJs{`%?D@w<1oUAOyPvoJt{ul*gLk*I-G@2$7ro^RfKGUXG`k+AwLcSEjUzaD??
zd~ToMomaQM^55R#wRBUR%`=Z>OmAjKufHzc>vrar*mXM_8;Po9aeallL%)iQL=()d
zW}m&5|6SBQ$9!sI^q#oF%2(b$@-wmyHU8w_VDPGyVqD3|{!CecLE~#C%Mvx28T}0m
z3$82|oG_~(!H$WkA!xpv10{-o|M#&dQa<^pF1Ag_?WTV-GtZLce_3z*YyKgs+wL;U
z;8&deo&NYM$2iY1<#0PKzg$^gkx_lg?AhKA3j%+a6@PyD<cQq%FNeI%>dt&yWMgM{
zYfDb`1Dyl=HoWKKvy+j{J+krY!S~y@?~ThZFE3xc`kH-C>ZWwFweshmbZlmbzIuMg
z-W+eeXPd%ShtAzrs(1X^w_^|AzrHi=OZi=XrX%|Vh)8TWqj^s~^B%bulRk&Bxo4i+
zt(3#>vHkYe_-&&57ruJ+>eT6_%KF~}TmPnAE?;3Qb@J)=T-|vyo>u2e`W5Fjti3SL
zIBh-8^jXh!fBu)A@Z4(iUTv0+s|v(t0i3Ra=bR4KKTPXBO))f3vwQ@~>z=NDF6*2U
FngE7O(NO>Z

literal 0
HcmV?d00001


From 4202506e29bd583399f7ec6717c2b2bc8eff7fd7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tr=E1=BA=A7n=20Quang=20=C4=90=C3=A3ng?=
 <tranquangdang21@gmail.com>
Date: Wed, 13 May 2026 14:27:59 +0000
Subject: [PATCH 6/7] STT pipeline: /v1/audio/transcriptions w/ provider
 dispatch + fallback
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Port the speech-to-text pipeline from upstream 9router. Adds a real
multipart-aware /v1/audio/transcriptions handler with provider-specific
dispatch and a credential fallback loop.

Backend (Rust)
  - New src/server/api/stt.rs: parses both multipart/form-data (OpenAI-
    compatible — file/model/language/prompt/response_format/temperature)
    and JSON (file_b64/file_name, kept for legacy CLI compat). Resolves
    model -> provider via get_model_info, then dispatches by sttConfig
    format:
      openai          - multipart POST to provider's transcriptions URL
      deepgram        - raw bytes + query params, response normalized
      assemblyai      - upload -> submit -> poll (120s budget)
      nvidia-asr      - multipart, response normalized to { text }
      huggingface-asr - raw bytes to {baseUrl}/{model_id}
      gemini-stt      - generateContent w/ inline_data base64 audio
    Fallback loop iterates active credentialed connections in priority
    order, skipping rate-limited ones, falling back on 401/402/403/408/
    429/5xx and surfacing the last status on exhaustion.
  - Cargo.toml: enable axum 'multipart' feature.
  - server/api/mod.rs: route /v1/audio/transcriptions to stt:: handlers.

Frontend (TS)
  - types/index.ts: new STTConfig / STTModel / STTFormat types,
    sttConfig?: STTConfig on Provider.
  - shared/constants/providers.ts: add sttConfig and 'stt' to
    serviceKinds for openai (whisper-1, gpt-4o-transcribe...), groq
    (whisper-large-v3...), gemini (gemini-2.5-pro/flash...), deepgram
    (nova-3/2, whisper-large), assemblyai (universal-3-pro,
    universal-2), huggingface (openai/whisper-large-v3 + whisper-small).

Tests
  - 11 new unit tests covering provider catalog coverage, MIME inference,
    Deepgram URL building (smart_format/punctuate/language vs.
    detect_language), auth header styles per provider (Bearer/Token/Key),
    fallback classification (auth, quota, rate-limit, 5xx), and upstream
    error message parsing.
  - cargo test --lib: 414/414 pass.
  - web build: clean (110 pages built).

Notes
  - No new audio crates / system deps: all dispatchers forward file bytes
    verbatim; MIME is inferred from filename extension when not provided
    by the multipart Content-Type.
  - The CLI media transcribe path (which posts JSON w/ file_b64) is
    preserved by the dual-input handler — no CLI client changes needed.
---
 Cargo.lock                            |   18 +
 Cargo.toml                            |    2 +-
 src/server/api/mod.rs                 |    3 +-
 src/server/api/stt.rs                 | 1246 +++++++++++++++++++++++++
 web/src/shared/constants/providers.ts |   12 +-
 web/src/types/index.ts                |   24 +
 6 files changed, 1297 insertions(+), 8 deletions(-)
 create mode 100644 src/server/api/stt.rs

diff --git a/Cargo.lock b/Cargo.lock
index 9a2c9082..78173165 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -365,6 +365,7 @@ dependencies = [
  "matchit",
  "memchr",
  "mime",
+ "multer",
  "percent-encoding",
  "pin-project-lite",
  "serde_core",
@@ -1908,6 +1909,23 @@ dependencies = [
  "windows-sys 0.61.2",
 ]
 
+[[package]]
+name = "multer"
+version = "3.1.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "83e87776546dc87511aa5ee218730c92b666d7264ab6ed41f9d215af9cd5224b"
+dependencies = [
+ "bytes",
+ "encoding_rs",
+ "futures-util",
+ "http 1.4.0",
+ "httparse",
+ "memchr",
+ "mime",
+ "spin",
+ "version_check",
+]
+
 [[package]]
 name = "native-tls"
 version = "0.2.18"
diff --git a/Cargo.toml b/Cargo.toml
index bdf8ecef..1c6c517f 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -5,7 +5,7 @@ edition = "2021"
 
 [dependencies]
 # HTTP server
-axum = "0.8"
+axum = { version = "0.8", features = ["multipart"] }
 tokio = { version = "1", features = ["full"] }
 tower = { version = "0.5", features = ["util"] }
 tower-http = { version = "0.6", features = ["cors", "trace", "fs"] }
diff --git a/src/server/api/mod.rs b/src/server/api/mod.rs
index fe4477f6..0531190b 100644
--- a/src/server/api/mod.rs
+++ b/src/server/api/mod.rs
@@ -8,6 +8,7 @@ pub mod compat;
 pub mod locale;
 pub mod media;
 pub mod media_providers;
+pub mod stt;
 pub mod mitm_config;
 pub mod models_alias;
 pub mod models_availability;
@@ -84,7 +85,7 @@ pub fn routes() -> Router<AppState> {
         )
         .route(
             "/v1/audio/transcriptions",
-            post(media::audio_transcriptions).options(media::cors_options),
+            post(stt::audio_transcriptions).options(stt::cors_options),
         )
         .route(
             "/v1/audio/speech",
diff --git a/src/server/api/stt.rs b/src/server/api/stt.rs
new file mode 100644
index 00000000..f15425ec
--- /dev/null
+++ b/src/server/api/stt.rs
@@ -0,0 +1,1246 @@
+//! Speech-to-text (`/v1/audio/transcriptions`) pipeline.
+//!
+//! Ported from the upstream 9router `open-sse/handlers/sttCore.js` + `src/sse/handlers/stt.js`.
+//!
+//! Accepts either OpenAI-compatible **multipart/form-data** (with `file`, `model`,
+//! and optional `language`/`prompt`/`response_format`/`temperature`) or a JSON body
+//! with `file_b64` + `file_name` (legacy OpenProxy CLI shape — kept for backwards
+//! compatibility). Resolves the model to a provider, then dispatches by the
+//! provider's STT `format`:
+//!
+//! * **`openai`** — multipart POST to the provider's `/audio/transcriptions`.
+//! * **`deepgram`** — raw binary POST + query params (`smart_format`, `punctuate`,
+//!   `language`/`detect_language`).
+//! * **`assemblyai`** — upload bytes, submit transcript job, poll until done.
+//! * **`nvidia-asr`** — multipart POST, normalize response to `{ text }`.
+//! * **`huggingface-asr`** — raw binary POST to `{baseUrl}/{model_id}`.
+//! * **`gemini-stt`** — `generateContent` with `inline_data` audio + transcription prompt.
+//!
+//! On per-connection failures the pipeline falls back through other active
+//! credentialed connections for the same provider, skipping accounts that are
+//! currently rate-limited.
+
+use std::collections::HashSet;
+use std::time::Duration;
+
+use axum::extract::{FromRequest, Multipart, Request, State};
+use axum::http::{header, HeaderValue, StatusCode};
+use axum::response::{IntoResponse, Response};
+use axum::Json;
+use base64::{engine::general_purpose::STANDARD as B64, Engine};
+use chrono::{DateTime, Utc};
+use serde_json::{json, Value};
+use tracing::debug;
+
+use crate::core::model::{get_model_info, ModelRouteKind};
+use crate::server::auth::require_api_key;
+use crate::server::state::AppState;
+use crate::types::{AppDb, ProviderConnection};
+
+use super::auth_error_response;
+
+// ---------------------------------------------------------------------------
+// STT provider catalog (Rust-side mirror of web/src/shared/constants/providers.ts).
+// ---------------------------------------------------------------------------
+
+#[derive(Clone, Copy, Debug, PartialEq, Eq)]
+pub enum SttFormat {
+    /// OpenAI-compatible multipart (`file`, `model`, optional `language`, `prompt`, …).
+    OpenaiCompatible,
+    /// Deepgram `/v1/listen` — raw binary body + query params.
+    Deepgram,
+    /// AssemblyAI v2 — upload, submit, poll.
+    AssemblyAi,
+    /// NVIDIA NIM ASR — multipart, response normalized to `{ text }`.
+    NvidiaAsr,
+    /// HuggingFace inference API — raw binary to `{baseUrl}/{model_id}`.
+    HuggingfaceAsr,
+    /// Gemini `generateContent` with `inline_data` audio.
+    GeminiStt,
+}
+
+#[derive(Clone, Copy, Debug, PartialEq, Eq)]
+pub enum SttAuthHeader {
+    Bearer,
+    Token,
+    XApiKey,
+    Key,
+    None,
+}
+
+#[derive(Clone, Copy, Debug)]
+pub struct SttProviderConfig {
+    pub base_url: &'static str,
+    pub auth_type_none: bool,
+    pub auth_header: SttAuthHeader,
+    pub format: SttFormat,
+}
+
+/// Returns the STT config for a built-in provider, or `None` if the provider
+/// does not support STT (or is a custom node — those go through the `openai`
+/// fall-through path with their own `baseUrl`).
+pub fn stt_config(provider: &str) -> Option<SttProviderConfig> {
+    Some(match provider {
+        "openai" => SttProviderConfig {
+            base_url: "https://api.openai.com/v1/audio/transcriptions",
+            auth_type_none: false,
+            auth_header: SttAuthHeader::Bearer,
+            format: SttFormat::OpenaiCompatible,
+        },
+        "groq" => SttProviderConfig {
+            base_url: "https://api.groq.com/openai/v1/audio/transcriptions",
+            auth_type_none: false,
+            auth_header: SttAuthHeader::Bearer,
+            format: SttFormat::OpenaiCompatible,
+        },
+        "deepgram" => SttProviderConfig {
+            base_url: "https://api.deepgram.com/v1/listen",
+            auth_type_none: false,
+            auth_header: SttAuthHeader::Token,
+            format: SttFormat::Deepgram,
+        },
+        "assemblyai" => SttProviderConfig {
+            base_url: "https://api.assemblyai.com/v2/transcript",
+            auth_type_none: false,
+            auth_header: SttAuthHeader::Bearer,
+            format: SttFormat::AssemblyAi,
+        },
+        "huggingface" => SttProviderConfig {
+            base_url: "https://api-inference.huggingface.co/models",
+            auth_type_none: false,
+            auth_header: SttAuthHeader::Bearer,
+            format: SttFormat::HuggingfaceAsr,
+        },
+        "gemini" => SttProviderConfig {
+            base_url: "https://generativelanguage.googleapis.com/v1beta/models",
+            auth_type_none: false,
+            auth_header: SttAuthHeader::Key,
+            format: SttFormat::GeminiStt,
+        },
+        _ => return None,
+    })
+}
+
+// ---------------------------------------------------------------------------
+// Public Axum handler.
+// ---------------------------------------------------------------------------
+
+pub async fn cors_options() -> Response {
+    cors_preflight_response("POST, OPTIONS")
+}
+
+/// `POST /v1/audio/transcriptions` — content-type aware:
+/// * `multipart/form-data` → real STT pipeline.
+/// * `application/json` → legacy CLI shape (`{ model, file_b64, file_name, … }`).
+pub async fn audio_transcriptions(State(state): State<AppState>, request: Request) -> Response {
+    let (parts, body) = request.into_parts();
+    let headers = parts.headers.clone();
+
+    if let Err(error) = require_api_key(&headers, &state.db) {
+        return with_cors(auth_error_response(error));
+    }
+
+    let content_type = headers
+        .get(header::CONTENT_TYPE)
+        .and_then(|v| v.to_str().ok())
+        .unwrap_or("")
+        .to_ascii_lowercase();
+
+    let req = if content_type.starts_with("multipart/") {
+        let mut multipart =
+            match Multipart::from_request(Request::from_parts(parts, body), &state).await {
+                Ok(m) => m,
+                Err(err) => {
+                    return with_cors(json_error(
+                        StatusCode::BAD_REQUEST,
+                        &format!("Invalid multipart body: {}", err),
+                    ));
+                }
+            };
+        match parse_multipart_request(&mut multipart).await {
+            Ok(req) => req,
+            Err(err) => return with_cors(json_error(err.status, &err.message)),
+        }
+    } else if content_type.starts_with("application/json") {
+        let body_bytes = match axum::body::to_bytes(body, MAX_JSON_BODY).await {
+            Ok(b) => b,
+            Err(err) => {
+                return with_cors(json_error(
+                    StatusCode::PAYLOAD_TOO_LARGE,
+                    &format!("Body too large or unreadable: {}", err),
+                ));
+            }
+        };
+        match parse_json_request(&body_bytes) {
+            Ok(req) => req,
+            Err(err) => return with_cors(json_error(err.status, &err.message)),
+        }
+    } else {
+        return with_cors(json_error(
+            StatusCode::BAD_REQUEST,
+            "Content-Type must be multipart/form-data or application/json",
+        ));
+    };
+
+    let snapshot = state.db.snapshot();
+    let resolved = get_model_info(&req.model, &snapshot);
+    match resolved.route_kind {
+        ModelRouteKind::Combo => with_cors(json_error(
+            StatusCode::BAD_REQUEST,
+            "Combos not supported for audio/transcriptions",
+        )),
+        ModelRouteKind::Direct => {
+            let provider = match resolved.provider.as_deref() {
+                Some(p) if !p.is_empty() => p.to_string(),
+                _ => {
+                    return with_cors(json_error(
+                        StatusCode::BAD_REQUEST,
+                        "Invalid model format",
+                    ));
+                }
+            };
+            let model = resolved.model.clone();
+            with_cors(dispatch_with_fallback(&state, &snapshot, &provider, &model, &req).await)
+        }
+    }
+}
+
+const MAX_JSON_BODY: usize = 200 * 1024 * 1024; // 200 MiB — audio uploads can be large.
+
+// ---------------------------------------------------------------------------
+// Parsed-request shape.
+// ---------------------------------------------------------------------------
+
+struct SttRequest {
+    model: String,
+    file_bytes: Vec<u8>,
+    file_name: String,
+    file_content_type: Option<String>,
+    language: Option<String>,
+    prompt: Option<String>,
+    response_format: Option<String>,
+    temperature: Option<String>,
+}
+
+struct RequestError {
+    status: StatusCode,
+    message: String,
+}
+
+fn req_err(status: StatusCode, message: impl Into<String>) -> RequestError {
+    RequestError {
+        status,
+        message: message.into(),
+    }
+}
+
+async fn parse_multipart_request(mp: &mut Multipart) -> Result<SttRequest, RequestError> {
+    let mut model: Option<String> = None;
+    let mut file_bytes: Option<Vec<u8>> = None;
+    let mut file_name: Option<String> = None;
+    let mut file_content_type: Option<String> = None;
+    let mut language: Option<String> = None;
+    let mut prompt: Option<String> = None;
+    let mut response_format: Option<String> = None;
+    let mut temperature: Option<String> = None;
+
+    while let Some(field) = mp
+        .next_field()
+        .await
+        .map_err(|e| req_err(StatusCode::BAD_REQUEST, format!("Invalid multipart: {}", e)))?
+    {
+        let name = field.name().unwrap_or("").to_string();
+        match name.as_str() {
+            "file" => {
+                file_name = field.file_name().map(str::to_string);
+                file_content_type = field.content_type().map(str::to_string);
+                let bytes = field.bytes().await.map_err(|e| {
+                    req_err(
+                        StatusCode::BAD_REQUEST,
+                        format!("Failed reading file field: {}", e),
+                    )
+                })?;
+                file_bytes = Some(bytes.to_vec());
+            }
+            "model" => model = Some(read_text_field(field).await?),
+            "language" => language = Some(read_text_field(field).await?),
+            "prompt" => prompt = Some(read_text_field(field).await?),
+            "response_format" => response_format = Some(read_text_field(field).await?),
+            "temperature" => temperature = Some(read_text_field(field).await?),
+            _ => {
+                // Drop unknown fields silently to keep parity with upstream behavior.
+                let _ = field.bytes().await;
+            }
+        }
+    }
+
+    let model = model
+        .map(|s| s.trim().to_string())
+        .filter(|s| !s.is_empty())
+        .ok_or_else(|| req_err(StatusCode::BAD_REQUEST, "Missing model"))?;
+    let file_bytes = file_bytes
+        .ok_or_else(|| req_err(StatusCode::BAD_REQUEST, "Missing required field: file"))?;
+    let file_name = file_name.unwrap_or_else(|| "audio.wav".to_string());
+
+    Ok(SttRequest {
+        model,
+        file_bytes,
+        file_name,
+        file_content_type,
+        language: trim_opt(language),
+        prompt: trim_opt(prompt),
+        response_format: trim_opt(response_format),
+        temperature: trim_opt(temperature),
+    })
+}
+
+async fn read_text_field(field: axum::extract::multipart::Field<'_>) -> Result<String, RequestError> {
+    let bytes = field
+        .bytes()
+        .await
+        .map_err(|e| req_err(StatusCode::BAD_REQUEST, format!("Bad field: {}", e)))?;
+    String::from_utf8(bytes.to_vec())
+        .map_err(|e| req_err(StatusCode::BAD_REQUEST, format!("Non-UTF8 field: {}", e)))
+}
+
+fn parse_json_request(bytes: &[u8]) -> Result<SttRequest, RequestError> {
+    let value: Value = serde_json::from_slice(bytes)
+        .map_err(|e| req_err(StatusCode::BAD_REQUEST, format!("Invalid JSON: {}", e)))?;
+
+    let model = value
+        .get("model")
+        .and_then(Value::as_str)
+        .map(str::trim)
+        .filter(|s| !s.is_empty())
+        .ok_or_else(|| req_err(StatusCode::BAD_REQUEST, "Missing model"))?
+        .to_string();
+    let file_b64 = value
+        .get("file_b64")
+        .and_then(Value::as_str)
+        .ok_or_else(|| req_err(StatusCode::BAD_REQUEST, "Missing required field: file_b64"))?;
+    let file_bytes = B64
+        .decode(file_b64.trim().as_bytes())
+        .map_err(|e| req_err(StatusCode::BAD_REQUEST, format!("Invalid base64: {}", e)))?;
+    let file_name = value
+        .get("file_name")
+        .and_then(Value::as_str)
+        .map(str::to_string)
+        .unwrap_or_else(|| "audio.wav".to_string());
+
+    Ok(SttRequest {
+        model,
+        file_bytes,
+        file_name,
+        file_content_type: None,
+        language: value
+            .get("language")
+            .and_then(Value::as_str)
+            .map(str::to_string)
+            .and_then(non_empty),
+        prompt: value
+            .get("prompt")
+            .and_then(Value::as_str)
+            .map(str::to_string)
+            .and_then(non_empty),
+        response_format: value
+            .get("response_format")
+            .and_then(Value::as_str)
+            .map(str::to_string)
+            .and_then(non_empty),
+        temperature: value
+            .get("temperature")
+            .map(|v| v.to_string())
+            .and_then(non_empty),
+    })
+}
+
+fn trim_opt(v: Option<String>) -> Option<String> {
+    v.map(|s| s.trim().to_string()).and_then(non_empty)
+}
+
+fn non_empty(s: String) -> Option<String> {
+    if s.is_empty() {
+        None
+    } else {
+        Some(s)
+    }
+}
+
+// ---------------------------------------------------------------------------
+// Provider dispatch + fallback loop.
+// ---------------------------------------------------------------------------
+
+async fn dispatch_with_fallback(
+    state: &AppState,
+    snapshot: &AppDb,
+    provider: &str,
+    model: &str,
+    req: &SttRequest,
+) -> Response {
+    let Some(cfg) = stt_config(provider) else {
+        return json_error(
+            StatusCode::BAD_REQUEST,
+            &format!("Provider '{}' does not support STT", provider),
+        );
+    };
+
+    if cfg.auth_type_none {
+        match transcribe(state, provider, &cfg, model, req, None).await {
+            DispatchResult::Ok(resp) => return resp,
+            DispatchResult::Err { status, message } => {
+                return json_error(status, &message);
+            }
+        }
+    }
+
+    let mut excluded: HashSet<String> = HashSet::new();
+    let mut last_message: Option<String> = None;
+    let mut last_status: Option<StatusCode> = None;
+    let now = Utc::now();
+
+    loop {
+        let Some(connection) = select_stt_connection(snapshot, provider, &excluded, now) else {
+            if excluded.is_empty() {
+                return json_error(
+                    StatusCode::BAD_REQUEST,
+                    &format!("No credentials for provider: {}", provider),
+                );
+            }
+            return json_error(
+                last_status.unwrap_or(StatusCode::SERVICE_UNAVAILABLE),
+                last_message.as_deref().unwrap_or("All accounts unavailable"),
+            );
+        };
+
+        let token = connection
+            .api_key
+            .as_deref()
+            .or(connection.access_token.as_deref())
+            .map(|s| s.trim().to_string())
+            .filter(|s| !s.is_empty());
+
+        let token_ref = token.as_deref();
+        match transcribe(state, provider, &cfg, model, req, token_ref).await {
+            DispatchResult::Ok(resp) => return resp,
+            DispatchResult::Err { status, message } => {
+                if should_fallback(status) {
+                    debug!(provider, model, connection = %connection.id, status = %status, "stt: marking connection failed, falling back");
+                    excluded.insert(connection.id.clone());
+                    last_message = Some(message);
+                    last_status = Some(status);
+                    continue;
+                }
+                return json_error(status, &message);
+            }
+        }
+    }
+}
+
+fn should_fallback(status: StatusCode) -> bool {
+    // Per upstream: fallback on auth, quota, rate-limit, and 5xx errors.
+    matches!(status.as_u16(), 401 | 402 | 403 | 408 | 429) || status.is_server_error()
+}
+
+fn select_stt_connection(
+    snapshot: &AppDb,
+    provider: &str,
+    excluded: &HashSet<String>,
+    now: DateTime<Utc>,
+) -> Option<ProviderConnection> {
+    let mut candidates: Vec<_> = snapshot
+        .provider_connections
+        .iter()
+        .filter(|c| {
+            c.provider == provider
+                && c.is_active()
+                && connection_has_credentials(c)
+                && !excluded.contains(&c.id)
+                && !is_rate_limited(c, now)
+        })
+        .cloned()
+        .collect();
+    candidates.sort_by_key(|c| c.priority.unwrap_or(999));
+    candidates.into_iter().next()
+}
+
+fn connection_has_credentials(connection: &ProviderConnection) -> bool {
+    connection
+        .api_key
+        .as_deref()
+        .map(str::trim)
+        .filter(|v| !v.is_empty())
+        .is_some()
+        || connection
+            .access_token
+            .as_deref()
+            .map(str::trim)
+            .filter(|v| !v.is_empty())
+            .is_some()
+}
+
+fn is_rate_limited(connection: &ProviderConnection, now: DateTime<Utc>) -> bool {
+    connection
+        .rate_limited_until
+        .as_deref()
+        .and_then(|s| chrono::DateTime::parse_from_rfc3339(s).ok())
+        .map(|dt| dt.with_timezone(&Utc))
+        .is_some_and(|until| until > now)
+}
+
+// ---------------------------------------------------------------------------
+// Per-format transcription implementations.
+// ---------------------------------------------------------------------------
+
+enum DispatchResult {
+    Ok(Response),
+    Err { status: StatusCode, message: String },
+}
+
+async fn transcribe(
+    state: &AppState,
+    provider: &str,
+    cfg: &SttProviderConfig,
+    model: &str,
+    req: &SttRequest,
+    token: Option<&str>,
+) -> DispatchResult {
+    if !cfg.auth_type_none && token.is_none() {
+        return DispatchResult::Err {
+            status: StatusCode::UNAUTHORIZED,
+            message: format!("No credentials for STT provider: {}", provider),
+        };
+    }
+
+    let client = match state.client_pool.get(provider, None) {
+        Ok(c) => c,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::INTERNAL_SERVER_ERROR,
+                message: format!("Client error: {}", e),
+            };
+        }
+    };
+
+    match cfg.format {
+        SttFormat::OpenaiCompatible => transcribe_openai(&client, cfg, model, req, token).await,
+        SttFormat::Deepgram => transcribe_deepgram(&client, cfg, model, req, token).await,
+        SttFormat::AssemblyAi => transcribe_assemblyai(&client, cfg, model, req, token).await,
+        SttFormat::NvidiaAsr => transcribe_nvidia(&client, cfg, model, req, token).await,
+        SttFormat::HuggingfaceAsr => transcribe_huggingface(&client, cfg, model, req, token).await,
+        SttFormat::GeminiStt => transcribe_gemini(&client, cfg, model, req, token).await,
+    }
+}
+
+fn build_auth_header(cfg: &SttProviderConfig, token: Option<&str>) -> Option<(String, String)> {
+    let token = token?;
+    match cfg.auth_header {
+        SttAuthHeader::Bearer => Some(("Authorization".into(), format!("Bearer {}", token))),
+        SttAuthHeader::Token => Some(("Authorization".into(), format!("Token {}", token))),
+        SttAuthHeader::XApiKey => Some(("x-api-key".into(), token.to_string())),
+        SttAuthHeader::Key => Some(("Authorization".into(), format!("Key {}", token))),
+        SttAuthHeader::None => None,
+    }
+}
+
+fn audio_mime_for(req: &SttRequest) -> String {
+    if let Some(ct) = req.file_content_type.as_deref() {
+        let lower = ct.to_ascii_lowercase();
+        if lower.starts_with("audio/") {
+            return lower;
+        }
+    }
+    audio_mime_from_filename(&req.file_name)
+}
+
+pub fn audio_mime_from_filename(name: &str) -> String {
+    let lower = name.to_ascii_lowercase();
+    let ext = lower.rsplit('.').next().unwrap_or("");
+    match ext {
+        "mp3" => "audio/mpeg",
+        "mp4" | "m4a" => "audio/mp4",
+        "wav" => "audio/wav",
+        "ogg" => "audio/ogg",
+        "flac" => "audio/flac",
+        "webm" => "audio/webm",
+        "aac" => "audio/aac",
+        "opus" => "audio/opus",
+        _ => "application/octet-stream",
+    }
+    .to_string()
+}
+
+async fn upstream_error(res: reqwest::Response) -> DispatchResult {
+    let status =
+        StatusCode::from_u16(res.status().as_u16()).unwrap_or(StatusCode::BAD_GATEWAY);
+    let text = res.text().await.unwrap_or_default();
+    let message = parse_upstream_error_message(&text)
+        .unwrap_or_else(|| format!("Upstream error ({})", status));
+    DispatchResult::Err { status, message }
+}
+
+fn parse_upstream_error_message(text: &str) -> Option<String> {
+    if text.is_empty() {
+        return None;
+    }
+    if let Ok(v) = serde_json::from_str::<Value>(text) {
+        if let Some(m) = v
+            .get("error")
+            .and_then(|e| e.get("message"))
+            .and_then(Value::as_str)
+        {
+            return Some(m.to_string());
+        }
+        if let Some(m) = v.get("error").and_then(Value::as_str) {
+            return Some(m.to_string());
+        }
+        if let Some(m) = v.get("message").and_then(Value::as_str) {
+            return Some(m.to_string());
+        }
+    }
+    Some(text.to_string())
+}
+
+fn ok_json(body: Value) -> DispatchResult {
+    DispatchResult::Ok(
+        (
+            StatusCode::OK,
+            [(header::CONTENT_TYPE, "application/json")],
+            body.to_string(),
+        )
+            .into_response(),
+    )
+}
+
+fn ok_passthrough(content_type: Option<String>, body: String) -> DispatchResult {
+    let mut response = (StatusCode::OK, body).into_response();
+    if let Some(ct) = content_type {
+        if let Ok(v) = HeaderValue::from_str(&ct) {
+            response.headers_mut().insert(header::CONTENT_TYPE, v);
+        }
+    }
+    DispatchResult::Ok(response)
+}
+
+// --- openai-compatible (multipart) ---
+
+async fn transcribe_openai(
+    client: &reqwest::Client,
+    cfg: &SttProviderConfig,
+    model: &str,
+    req: &SttRequest,
+    token: Option<&str>,
+) -> DispatchResult {
+    let mut form = reqwest::multipart::Form::new().part(
+        "file",
+        reqwest::multipart::Part::bytes(req.file_bytes.clone())
+            .file_name(req.file_name.clone())
+            .mime_str(&audio_mime_for(req))
+            .unwrap_or_else(|_| {
+                reqwest::multipart::Part::bytes(req.file_bytes.clone())
+                    .file_name(req.file_name.clone())
+            }),
+    );
+    form = form.text("model", model.to_string());
+    if let Some(lang) = &req.language {
+        form = form.text("language", lang.clone());
+    }
+    if let Some(prompt) = &req.prompt {
+        form = form.text("prompt", prompt.clone());
+    }
+    if let Some(rf) = &req.response_format {
+        form = form.text("response_format", rf.clone());
+    }
+    if let Some(temp) = &req.temperature {
+        form = form.text("temperature", temp.clone());
+    }
+
+    let mut request = client.post(cfg.base_url).multipart(form);
+    if let Some((k, v)) = build_auth_header(cfg, token) {
+        request = request.header(k, v);
+    }
+
+    let res = match request.send().await {
+        Ok(r) => r,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Request failed: {}", e),
+            };
+        }
+    };
+    if !res.status().is_success() {
+        return upstream_error(res).await;
+    }
+    let ct = res
+        .headers()
+        .get(reqwest::header::CONTENT_TYPE)
+        .and_then(|v| v.to_str().ok())
+        .map(str::to_string);
+    let body = res.text().await.unwrap_or_default();
+    ok_passthrough(ct, body)
+}
+
+// --- deepgram (raw bytes + query string) ---
+
+async fn transcribe_deepgram(
+    client: &reqwest::Client,
+    cfg: &SttProviderConfig,
+    model: &str,
+    req: &SttRequest,
+    token: Option<&str>,
+) -> DispatchResult {
+    let url = build_deepgram_url(cfg.base_url, model, req.language.as_deref());
+    let mime = audio_mime_for(req);
+
+    let mut request = client
+        .post(&url)
+        .header(reqwest::header::CONTENT_TYPE, mime)
+        .body(req.file_bytes.clone());
+    if let Some((k, v)) = build_auth_header(cfg, token) {
+        request = request.header(k, v);
+    }
+
+    let res = match request.send().await {
+        Ok(r) => r,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Request failed: {}", e),
+            };
+        }
+    };
+    if !res.status().is_success() {
+        return upstream_error(res).await;
+    }
+    let value: Value = match res.json().await {
+        Ok(v) => v,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Failed parsing Deepgram response: {}", e),
+            };
+        }
+    };
+    let text = value
+        .pointer("/results/channels/0/alternatives/0/transcript")
+        .and_then(Value::as_str)
+        .unwrap_or("");
+    ok_json(json!({ "text": text }))
+}
+
+pub fn build_deepgram_url(base: &str, model: &str, language: Option<&str>) -> String {
+    let mut url = url::Url::parse(base).unwrap_or_else(|_| {
+        url::Url::parse("https://api.deepgram.com/v1/listen").expect("valid fallback URL")
+    });
+    {
+        let mut q = url.query_pairs_mut();
+        q.append_pair("model", model);
+        q.append_pair("smart_format", "true");
+        q.append_pair("punctuate", "true");
+        match language {
+            Some(lang) if !lang.trim().is_empty() => {
+                q.append_pair("language", lang.trim());
+            }
+            _ => {
+                q.append_pair("detect_language", "true");
+            }
+        }
+    }
+    url.to_string()
+}
+
+// --- assemblyai (upload → submit → poll) ---
+
+async fn transcribe_assemblyai(
+    client: &reqwest::Client,
+    cfg: &SttProviderConfig,
+    model: &str,
+    req: &SttRequest,
+    token: Option<&str>,
+) -> DispatchResult {
+    let auth = match build_auth_header(cfg, token) {
+        Some(h) => h,
+        None => {
+            return DispatchResult::Err {
+                status: StatusCode::UNAUTHORIZED,
+                message: "AssemblyAI requires credentials".to_string(),
+            };
+        }
+    };
+
+    // 1. Upload audio bytes.
+    let up = match client
+        .post("https://api.assemblyai.com/v2/upload")
+        .header(reqwest::header::CONTENT_TYPE, "application/octet-stream")
+        .header(&auth.0, &auth.1)
+        .body(req.file_bytes.clone())
+        .send()
+        .await
+    {
+        Ok(r) => r,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("AssemblyAI upload failed: {}", e),
+            };
+        }
+    };
+    if !up.status().is_success() {
+        return upstream_error(up).await;
+    }
+    let upload_url = match up.json::<Value>().await {
+        Ok(v) => v
+            .get("upload_url")
+            .and_then(Value::as_str)
+            .map(str::to_string),
+        Err(_) => None,
+    };
+    let Some(upload_url) = upload_url else {
+        return DispatchResult::Err {
+            status: StatusCode::BAD_GATEWAY,
+            message: "AssemblyAI upload returned no upload_url".to_string(),
+        };
+    };
+
+    // 2. Submit transcript job.
+    let sub = match client
+        .post(cfg.base_url)
+        .header(&auth.0, &auth.1)
+        .header(reqwest::header::CONTENT_TYPE, "application/json")
+        .json(&json!({
+            "audio_url": upload_url,
+            "speech_models": [model],
+            "language_detection": true,
+        }))
+        .send()
+        .await
+    {
+        Ok(r) => r,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("AssemblyAI submit failed: {}", e),
+            };
+        }
+    };
+    if !sub.status().is_success() {
+        return upstream_error(sub).await;
+    }
+    let id = match sub.json::<Value>().await {
+        Ok(v) => v.get("id").and_then(Value::as_str).map(str::to_string),
+        Err(_) => None,
+    };
+    let Some(id) = id else {
+        return DispatchResult::Err {
+            status: StatusCode::BAD_GATEWAY,
+            message: "AssemblyAI submit returned no transcript id".to_string(),
+        };
+    };
+
+    // 3. Poll up to 120s.
+    let poll_url = format!("{}/{}", cfg.base_url.trim_end_matches('/'), id);
+    let start = tokio::time::Instant::now();
+    while start.elapsed() < Duration::from_secs(120) {
+        tokio::time::sleep(Duration::from_secs(2)).await;
+        let poll = match client.get(&poll_url).header(&auth.0, &auth.1).send().await {
+            Ok(r) => r,
+            Err(_) => continue,
+        };
+        if !poll.status().is_success() {
+            continue;
+        }
+        let v: Value = match poll.json().await {
+            Ok(v) => v,
+            Err(_) => continue,
+        };
+        match v.get("status").and_then(Value::as_str) {
+            Some("completed") => {
+                let text = v.get("text").and_then(Value::as_str).unwrap_or("");
+                return ok_json(json!({ "text": text }));
+            }
+            Some("error") => {
+                let msg = v
+                    .get("error")
+                    .and_then(Value::as_str)
+                    .unwrap_or("AssemblyAI failed");
+                return DispatchResult::Err {
+                    status: StatusCode::INTERNAL_SERVER_ERROR,
+                    message: msg.to_string(),
+                };
+            }
+            _ => continue,
+        }
+    }
+    DispatchResult::Err {
+        status: StatusCode::GATEWAY_TIMEOUT,
+        message: "AssemblyAI timeout after 120s".to_string(),
+    }
+}
+
+// --- nvidia-asr (multipart, normalized response) ---
+
+async fn transcribe_nvidia(
+    client: &reqwest::Client,
+    cfg: &SttProviderConfig,
+    model: &str,
+    req: &SttRequest,
+    token: Option<&str>,
+) -> DispatchResult {
+    let form = reqwest::multipart::Form::new()
+        .part(
+            "file",
+            reqwest::multipart::Part::bytes(req.file_bytes.clone())
+                .file_name(req.file_name.clone())
+                .mime_str(&audio_mime_for(req))
+                .unwrap_or_else(|_| {
+                    reqwest::multipart::Part::bytes(req.file_bytes.clone())
+                        .file_name(req.file_name.clone())
+                }),
+        )
+        .text("model", model.to_string());
+
+    let mut request = client.post(cfg.base_url).multipart(form);
+    if let Some((k, v)) = build_auth_header(cfg, token) {
+        request = request.header(k, v);
+    }
+
+    let res = match request.send().await {
+        Ok(r) => r,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Request failed: {}", e),
+            };
+        }
+    };
+    if !res.status().is_success() {
+        return upstream_error(res).await;
+    }
+    let value: Value = match res.json().await {
+        Ok(v) => v,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Failed parsing NVIDIA response: {}", e),
+            };
+        }
+    };
+    let text = value
+        .get("text")
+        .and_then(Value::as_str)
+        .or_else(|| value.get("transcript").and_then(Value::as_str))
+        .unwrap_or("");
+    ok_json(json!({ "text": text }))
+}
+
+// --- huggingface-asr (raw bytes to {baseUrl}/{model_id}) ---
+
+async fn transcribe_huggingface(
+    client: &reqwest::Client,
+    cfg: &SttProviderConfig,
+    model: &str,
+    req: &SttRequest,
+    token: Option<&str>,
+) -> DispatchResult {
+    if model.contains("..") || model.contains("//") {
+        return DispatchResult::Err {
+            status: StatusCode::BAD_REQUEST,
+            message: "Invalid model ID".to_string(),
+        };
+    }
+    let url = format!("{}/{}", cfg.base_url.trim_end_matches('/'), model);
+    let mime = audio_mime_for(req);
+    let mut request = client
+        .post(&url)
+        .header(reqwest::header::CONTENT_TYPE, mime)
+        .body(req.file_bytes.clone());
+    if let Some((k, v)) = build_auth_header(cfg, token) {
+        request = request.header(k, v);
+    }
+
+    let res = match request.send().await {
+        Ok(r) => r,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Request failed: {}", e),
+            };
+        }
+    };
+    if !res.status().is_success() {
+        return upstream_error(res).await;
+    }
+    let value: Value = match res.json().await {
+        Ok(v) => v,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Failed parsing HF response: {}", e),
+            };
+        }
+    };
+    let text = value.get("text").and_then(Value::as_str).unwrap_or("");
+    ok_json(json!({ "text": text }))
+}
+
+// --- gemini-stt (generateContent with inline_data audio) ---
+
+async fn transcribe_gemini(
+    client: &reqwest::Client,
+    cfg: &SttProviderConfig,
+    model: &str,
+    req: &SttRequest,
+    token: Option<&str>,
+) -> DispatchResult {
+    let token = match token {
+        Some(t) => t,
+        None => {
+            return DispatchResult::Err {
+                status: StatusCode::UNAUTHORIZED,
+                message: "Gemini requires an API key".to_string(),
+            };
+        }
+    };
+    let mime = audio_mime_for(req);
+    let b64 = B64.encode(&req.file_bytes);
+    let mut prompt_text = req
+        .prompt
+        .clone()
+        .filter(|p| !p.is_empty())
+        .unwrap_or_else(|| {
+            "Generate a transcript of the speech. Return only the transcribed text, no commentary."
+                .to_string()
+        });
+    if let Some(lang) = req.language.as_deref().filter(|s| !s.is_empty()) {
+        prompt_text.push_str(&format!(" Language: {}.", lang));
+    }
+    let url = format!(
+        "{}/{}:generateContent?key={}",
+        cfg.base_url.trim_end_matches('/'),
+        model,
+        urlencoding::encode(token),
+    );
+    let body = json!({
+        "contents": [{
+            "parts": [
+                { "text": prompt_text },
+                { "inline_data": { "mime_type": mime, "data": b64 } }
+            ]
+        }]
+    });
+
+    let res = match client
+        .post(&url)
+        .header(reqwest::header::CONTENT_TYPE, "application/json")
+        .json(&body)
+        .send()
+        .await
+    {
+        Ok(r) => r,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Request failed: {}", e),
+            };
+        }
+    };
+    if !res.status().is_success() {
+        return upstream_error(res).await;
+    }
+    let value: Value = match res.json().await {
+        Ok(v) => v,
+        Err(e) => {
+            return DispatchResult::Err {
+                status: StatusCode::BAD_GATEWAY,
+                message: format!("Failed parsing Gemini response: {}", e),
+            };
+        }
+    };
+    let text = value
+        .pointer("/candidates/0/content/parts")
+        .and_then(Value::as_array)
+        .map(|parts| {
+            parts
+                .iter()
+                .filter_map(|p| p.get("text").and_then(Value::as_str))
+                .collect::<Vec<_>>()
+                .join("")
+        })
+        .unwrap_or_default();
+    ok_json(json!({ "text": text }))
+}
+
+// ---------------------------------------------------------------------------
+// CORS + error helpers.
+// ---------------------------------------------------------------------------
+
+fn json_error(status: StatusCode, message: &str) -> Response {
+    let body = Json(json!({
+        "error": {
+            "message": message,
+            "type": status_to_type(status),
+        }
+    }));
+    (status, body).into_response()
+}
+
+fn status_to_type(status: StatusCode) -> &'static str {
+    match status.as_u16() {
+        400 | 422 => "invalid_request_error",
+        401 | 403 => "authentication_error",
+        404 => "not_found_error",
+        429 => "rate_limit_error",
+        408 | 504 => "timeout_error",
+        500..=599 => "server_error",
+        _ => "api_error",
+    }
+}
+
+fn with_cors(mut response: Response) -> Response {
+    response.headers_mut().insert(
+        header::ACCESS_CONTROL_ALLOW_ORIGIN,
+        HeaderValue::from_static("*"),
+    );
+    response.headers_mut().insert(
+        header::ACCESS_CONTROL_ALLOW_HEADERS,
+        HeaderValue::from_static("*"),
+    );
+    response.headers_mut().insert(
+        header::ACCESS_CONTROL_ALLOW_METHODS,
+        HeaderValue::from_static("POST, OPTIONS"),
+    );
+    response
+}
+
+fn cors_preflight_response(methods: &str) -> Response {
+    let mut response = StatusCode::NO_CONTENT.into_response();
+    response.headers_mut().insert(
+        header::ACCESS_CONTROL_ALLOW_ORIGIN,
+        HeaderValue::from_static("*"),
+    );
+    response.headers_mut().insert(
+        header::ACCESS_CONTROL_ALLOW_HEADERS,
+        HeaderValue::from_static("*"),
+    );
+    response.headers_mut().insert(
+        header::ACCESS_CONTROL_ALLOW_METHODS,
+        HeaderValue::from_str(methods).unwrap_or(HeaderValue::from_static("POST, OPTIONS")),
+    );
+    response
+}
+
+// ---------------------------------------------------------------------------
+// Unit tests.
+// ---------------------------------------------------------------------------
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    #[test]
+    fn stt_catalog_has_expected_providers() {
+        for p in ["openai", "groq", "deepgram", "assemblyai", "huggingface", "gemini"] {
+            assert!(stt_config(p).is_some(), "{} should have STT config", p);
+        }
+        assert!(stt_config("anthropic").is_none());
+        assert!(stt_config("nonexistent").is_none());
+    }
+
+    #[test]
+    fn audio_mime_inferred_from_extension() {
+        assert_eq!(audio_mime_from_filename("clip.mp3"), "audio/mpeg");
+        assert_eq!(audio_mime_from_filename("clip.WAV"), "audio/wav");
+        assert_eq!(audio_mime_from_filename("clip.m4a"), "audio/mp4");
+        assert_eq!(audio_mime_from_filename("clip.opus"), "audio/opus");
+        assert_eq!(audio_mime_from_filename("noext"), "application/octet-stream");
+    }
+
+    #[test]
+    fn deepgram_url_uses_smart_format_and_detects_language_when_unset() {
+        let url = build_deepgram_url("https://api.deepgram.com/v1/listen", "nova-3", None);
+        assert!(url.contains("model=nova-3"));
+        assert!(url.contains("smart_format=true"));
+        assert!(url.contains("punctuate=true"));
+        assert!(url.contains("detect_language=true"));
+        // Should not include an explicit `language=...` param when nothing is supplied.
+        assert!(!url.contains("&language=") && !url.contains("?language="));
+    }
+
+    #[test]
+    fn deepgram_url_uses_explicit_language_when_set() {
+        let url =
+            build_deepgram_url("https://api.deepgram.com/v1/listen", "nova-3", Some("en"));
+        assert!(url.contains("&language=en") || url.contains("?language=en"));
+        assert!(!url.contains("detect_language=true"));
+    }
+
+    #[test]
+    fn auth_header_token_styles_match_upstream() {
+        let bearer_cfg = stt_config("openai").unwrap();
+        assert_eq!(
+            build_auth_header(&bearer_cfg, Some("sk-test")),
+            Some(("Authorization".into(), "Bearer sk-test".into()))
+        );
+        let token_cfg = stt_config("deepgram").unwrap();
+        assert_eq!(
+            build_auth_header(&token_cfg, Some("dg-test")),
+            Some(("Authorization".into(), "Token dg-test".into()))
+        );
+        let key_cfg = stt_config("gemini").unwrap();
+        assert_eq!(
+            build_auth_header(&key_cfg, Some("ai-test")),
+            Some(("Authorization".into(), "Key ai-test".into()))
+        );
+    }
+
+    #[test]
+    fn auth_header_returns_none_when_no_token() {
+        let cfg = stt_config("openai").unwrap();
+        assert_eq!(build_auth_header(&cfg, None), None);
+    }
+
+    #[test]
+    fn should_fallback_classifies_errors_correctly() {
+        assert!(should_fallback(StatusCode::UNAUTHORIZED));
+        assert!(should_fallback(StatusCode::FORBIDDEN));
+        assert!(should_fallback(StatusCode::PAYMENT_REQUIRED));
+        assert!(should_fallback(StatusCode::TOO_MANY_REQUESTS));
+        assert!(should_fallback(StatusCode::INTERNAL_SERVER_ERROR));
+        assert!(should_fallback(StatusCode::BAD_GATEWAY));
+        assert!(!should_fallback(StatusCode::BAD_REQUEST));
+        assert!(!should_fallback(StatusCode::NOT_FOUND));
+        assert!(!should_fallback(StatusCode::OK));
+    }
+
+    #[test]
+    fn parse_upstream_error_prefers_error_message_field() {
+        let body = r#"{"error":{"message":"Invalid API key","code":"invalid_api_key"}}"#;
+        assert_eq!(
+            parse_upstream_error_message(body),
+            Some("Invalid API key".into())
+        );
+    }
+
+    #[test]
+    fn parse_upstream_error_falls_back_to_string_error() {
+        let body = r#"{"error":"quota exceeded"}"#;
+        assert_eq!(
+            parse_upstream_error_message(body),
+            Some("quota exceeded".into())
+        );
+    }
+
+    #[test]
+    fn parse_upstream_error_returns_raw_text_when_not_json() {
+        let body = "Internal Server Error";
+        assert_eq!(
+            parse_upstream_error_message(body),
+            Some("Internal Server Error".into())
+        );
+    }
+
+    #[test]
+    fn parse_upstream_error_returns_none_for_empty_body() {
+        assert!(parse_upstream_error_message("").is_none());
+    }
+}
diff --git a/web/src/shared/constants/providers.ts b/web/src/shared/constants/providers.ts
index cba6a756..e7098bdf 100644
--- a/web/src/shared/constants/providers.ts
+++ b/web/src/shared/constants/providers.ts
@@ -26,7 +26,7 @@ export const FREE_TIER_PROVIDERS: Record<string, Provider> = {
   nvidia: { id: "nvidia", alias: "nvidia", name: "NVIDIA NIM", icon: "developer_board", color: "#76B900", textIcon: "NV", website: "https://developer.nvidia.com/nim", notice: { text: "Free access for NVIDIA Developer Program members (prototyping & testing).", apiKeyUrl: "https://build.nvidia.com/settings/api-keys" }, serviceKinds: ["llm", "tts", "embedding", "stt"], ttsConfig: { baseUrl: "https://integrate.api.nvidia.com/v1/audio/speech", authType: "apikey", authHeader: "bearer", format: "nvidia-tts", models: [{ id: "fastpitch", name: "FastPitch" }, { id: "tacotron2", name: "Tacotron2" }] }, embeddingConfig: { baseUrl: "https://integrate.api.nvidia.com/v1/embeddings", authType: "apikey", authHeader: "bearer", models: [{ id: "nvidia/nv-embedqa-e5-v5", name: "NV EmbedQA E5 v5", dimensions: 1024 }] } },
   ollama: { id: "ollama", alias: "ollama", name: "Ollama Cloud", icon: "cloud", color: "#ffffffff", textIcon: "OL", website: "https://ollama.com", notice: { text: "Free tier: light usage, 1 cloud model at a time (limits reset every 5h & 7d). Pro $20/mo · Max $100/mo.", apiKeyUrl: "https://ollama.com/settings/keys" } },
   vertex: { id: "vertex", alias: "vx", name: "Vertex AI", icon: "cloud", color: "#4285F4", textIcon: "VX", website: "https://cloud.google.com/vertex-ai", notice: { text: "New Google Cloud accounts get $300 free credits. Requires GCP project + Service Account with Vertex AI API enabled.", apiKeyUrl: "https://console.cloud.google.com/iam-admin/serviceaccounts" } },
-  gemini: { id: "gemini", alias: "gemini", name: "Gemini", icon: "diamond", color: "#4285F4", textIcon: "GE", website: "https://ai.google.dev", notice: { apiKeyUrl: "https://aistudio.google.com/app/apikey" }, serviceKinds: ["llm", "embedding", "image", "imageToText", "webSearch"], searchViaChat: { defaultModel: "gemini-2.5-flash", pricingUrl: "https://ai.google.dev/pricing", freeTier: "Free tier: 15 RPM, 1M tokens/day on gemini-2.5-flash via AI Studio." }, embeddingConfig: { baseUrl: "https://generativelanguage.googleapis.com/v1beta/models", authType: "apikey", authHeader: "key", models: [{ id: "text-embedding-004", name: "Text Embedding 004", dimensions: 768 }, { id: "embedding-001", name: "Embedding 001", dimensions: 768 }] } },
+  gemini: { id: "gemini", alias: "gemini", name: "Gemini", icon: "diamond", color: "#4285F4", textIcon: "GE", website: "https://ai.google.dev", notice: { apiKeyUrl: "https://aistudio.google.com/app/apikey" }, serviceKinds: ["llm", "embedding", "image", "imageToText", "webSearch", "stt"], searchViaChat: { defaultModel: "gemini-2.5-flash", pricingUrl: "https://ai.google.dev/pricing", freeTier: "Free tier: 15 RPM, 1M tokens/day on gemini-2.5-flash via AI Studio." }, embeddingConfig: { baseUrl: "https://generativelanguage.googleapis.com/v1beta/models", authType: "apikey", authHeader: "key", models: [{ id: "text-embedding-004", name: "Text Embedding 004", dimensions: 768 }, { id: "embedding-001", name: "Embedding 001", dimensions: 768 }] }, sttConfig: { baseUrl: "https://generativelanguage.googleapis.com/v1beta/models", authType: "apikey", authHeader: "key", format: "gemini-stt", models: [{ id: "gemini-2.5-pro", name: "Gemini 2.5 Pro (Best)" }, { id: "gemini-2.5-flash", name: "Gemini 2.5 Flash" }, { id: "gemini-2.5-flash-lite", name: "Gemini 2.5 Flash Lite (Cheapest)" }, { id: "gemini-2.0-flash", name: "Gemini 2.0 Flash" }] } },
   "cloudflare-ai": { id: "cloudflare-ai", alias: "cf", name: "Cloudflare", icon: "cloud", color: "#F38020", textIcon: "CF", website: "https://developers.cloudflare.com/workers-ai/", notice: { text: "Workers AI free tier. Requires a Cloudflare API token and Account ID.", apiKeyUrl: "https://dash.cloudflare.com/profile/api-tokens" }, serviceKinds: ["llm"], hasProviderSpecificData: true },
   byteplus: { id: "byteplus", alias: "bpm", name: "BytePlus ModelArk", icon: "cloud", color: "#2563EB", textIcon: "BP", website: "https://console.byteplus.com/ark", notice: { text: "Free credits for new accounts. Access to Seed 2.0, Kimi K2 Thinking, GLM 4.7, GPT-OSS-120B models.", apiKeyUrl: "https://console.byteplus.com/ark/region:ark+ap-southeast-1/apiKey" }, serviceKinds: ["llm"] },
 };
@@ -71,13 +71,13 @@ export const APIKEY_PROVIDERS: Record<string, Provider> = {
   "alicode-intl": { id: "alicode-intl", alias: "alicode-intl", name: "Alibaba Intl", icon: "cloud", color: "#FF6A00", textIcon: "ALi", website: "https://modelstudio.console.alibabacloud.com", notice: { apiKeyUrl: "https://modelstudio.console.alibabacloud.com/?apiKey=1" } },
   "xiaomi-mimo": { id: "xiaomi-mimo", alias: "mimo", name: "Xiaomi MiMo", icon: "smart_toy", color: "#FF6900", textIcon: "XM", website: "https://xiaomimimo.com", notice: { apiKeyUrl: "https://xiaomimimo.com" } },
   "volcengine-ark": { id: "volcengine-ark", alias: "ark", name: "Volcengine Ark", icon: "cloud", color: "#1677FF", textIcon: "ARK", website: "https://ark.cn-beijing.volces.com", notice: { apiKeyUrl: "https://console.volcengine.com/ark/region:ark+cn-beijing/apiKey" } },
-  openai: { id: "openai", alias: "openai", name: "OpenAI", icon: "auto_awesome", color: "#10A37F", textIcon: "OA", website: "https://platform.openai.com", notice: { apiKeyUrl: "https://platform.openai.com/api-keys" }, serviceKinds: ["llm", "embedding", "tts", "image", "imageToText", "webSearch"], thinkingConfig: THINKING_CONFIG.effort, searchViaChat: { defaultModel: "gpt-4o-mini", pricingUrl: "https://openai.com/api/pricing" }, ttsConfig: { baseUrl: "https://api.openai.com/v1/audio/speech", authType: "apikey", authHeader: "bearer", format: "openai", models: [{ id: "tts-1", name: "TTS-1" }, { id: "tts-1-hd", name: "TTS-1 HD" }, { id: "gpt-4o-mini-tts", name: "GPT-4o Mini TTS" }] }, embeddingConfig: { baseUrl: "https://api.openai.com/v1/embeddings", authType: "apikey", authHeader: "bearer", models: [{ id: "text-embedding-3-small", name: "Text Embedding 3 Small", dimensions: 1536 }, { id: "text-embedding-3-large", name: "Text Embedding 3 Large", dimensions: 3072 }, { id: "text-embedding-ada-002", name: "Text Embedding Ada 002", dimensions: 1536 }] } },
+  openai: { id: "openai", alias: "openai", name: "OpenAI", icon: "auto_awesome", color: "#10A37F", textIcon: "OA", website: "https://platform.openai.com", notice: { apiKeyUrl: "https://platform.openai.com/api-keys" }, serviceKinds: ["llm", "embedding", "tts", "stt", "image", "imageToText", "webSearch"], thinkingConfig: THINKING_CONFIG.effort, searchViaChat: { defaultModel: "gpt-4o-mini", pricingUrl: "https://openai.com/api/pricing" }, ttsConfig: { baseUrl: "https://api.openai.com/v1/audio/speech", authType: "apikey", authHeader: "bearer", format: "openai", models: [{ id: "tts-1", name: "TTS-1" }, { id: "tts-1-hd", name: "TTS-1 HD" }, { id: "gpt-4o-mini-tts", name: "GPT-4o Mini TTS" }] }, sttConfig: { baseUrl: "https://api.openai.com/v1/audio/transcriptions", authType: "apikey", authHeader: "bearer", format: "openai", models: [{ id: "whisper-1", name: "Whisper 1" }, { id: "gpt-4o-transcribe", name: "GPT-4o Transcribe" }, { id: "gpt-4o-mini-transcribe", name: "GPT-4o Mini Transcribe" }] }, embeddingConfig: { baseUrl: "https://api.openai.com/v1/embeddings", authType: "apikey", authHeader: "bearer", models: [{ id: "text-embedding-3-small", name: "Text Embedding 3 Small", dimensions: 1536 }, { id: "text-embedding-3-large", name: "Text Embedding 3 Large", dimensions: 3072 }, { id: "text-embedding-ada-002", name: "Text Embedding Ada 002", dimensions: 1536 }] } },
   anthropic: { id: "anthropic", alias: "anthropic", name: "Anthropic", icon: "smart_toy", color: "#D97757", textIcon: "AN", website: "https://console.anthropic.com", notice: { apiKeyUrl: "https://console.anthropic.com/settings/keys" }, serviceKinds: ["llm", "imageToText"] },
   "opencode-go": { id: "opencode-go", alias: "ocg", name: "OpenCode Go", icon: "terminal", color: "#E87040", textIcon: "OC", website: "https://opencode.ai/auth", notice: { text: "OpenCode Go subscription: $5/mo (then $10/mo). Access to Kimi, GLM, Qwen, MiMo, MiniMax models.", apiKeyUrl: "https://opencode.ai/auth" } },
   azure: { id: "azure", alias: "azure", name: "Azure OpenAI", icon: "cloud", color: "#0078D4", textIcon: "AZ", website: "https://azure.microsoft.com/en-us/products/ai-services/openai-service", notice: { apiKeyUrl: "https://portal.azure.com/#view/Microsoft_Azure_ProjectOxford/CognitiveServicesHub/~/OpenAI" }, hasProviderSpecificData: true },
 
   deepseek: { id: "deepseek", alias: "ds", name: "DeepSeek", icon: "bolt", color: "#4D6BFE", textIcon: "DS", website: "https://deepseek.com", notice: { apiKeyUrl: "https://platform.deepseek.com/api_keys" } },
-  groq: { id: "groq", alias: "groq", name: "Groq", icon: "speed", color: "#F55036", textIcon: "GQ", website: "https://groq.com", notice: { apiKeyUrl: "https://console.groq.com/keys" }, serviceKinds: ["llm", "imageToText"] },
+  groq: { id: "groq", alias: "groq", name: "Groq", icon: "speed", color: "#F55036", textIcon: "GQ", website: "https://groq.com", notice: { apiKeyUrl: "https://console.groq.com/keys" }, serviceKinds: ["llm", "imageToText", "stt"], sttConfig: { baseUrl: "https://api.groq.com/openai/v1/audio/transcriptions", authType: "apikey", authHeader: "bearer", format: "openai", models: [{ id: "whisper-large-v3", name: "Whisper Large v3" }, { id: "whisper-large-v3-turbo", name: "Whisper Large v3 Turbo" }, { id: "distil-whisper-large-v3-en", name: "Distil Whisper Large v3 EN" }] } },
   xai: { id: "xai", alias: "xai", name: "xAI (Grok)", icon: "auto_awesome", color: "#1DA1F2", textIcon: "XA", website: "https://x.ai", notice: { apiKeyUrl: "https://console.x.ai" }, serviceKinds: ["llm", "imageToText", "webSearch"], searchViaChat: { defaultModel: "grok-4.20-reasoning", pricingUrl: "https://x.ai/api#pricing" } },
   mistral: { id: "mistral", alias: "mistral", name: "Mistral", icon: "air", color: "#FF7000", textIcon: "MI", website: "https://mistral.ai", notice: { apiKeyUrl: "https://console.mistral.ai/api-keys" }, serviceKinds: ["llm", "imageToText", "embedding"], embeddingConfig: { baseUrl: "https://api.mistral.ai/v1/embeddings", authType: "apikey", authHeader: "bearer", models: [{ id: "mistral-embed", name: "Mistral Embed", dimensions: 1024 }] } },
   perplexity: { id: "perplexity", alias: "pplx", name: "Perplexity", icon: "search", color: "#20808D", textIcon: "PP", website: "https://www.perplexity.ai", notice: { apiKeyUrl: "https://www.perplexity.ai/settings/api" }, serviceKinds: ["llm", "webSearch"], searchConfig: { baseUrl: "https://api.perplexity.ai/search", method: "POST", authType: "apikey", authHeader: "bearer", costPerQuery: 0.005, freeMonthlyQuota: 0, searchTypes: ["web"], defaultMaxResults: 5, maxMaxResults: 20, timeoutMs: 10000, cacheTTLMs: 300000 } },
@@ -88,8 +88,8 @@ export const APIKEY_PROVIDERS: Record<string, Provider> = {
   nebius: { id: "nebius", alias: "nebius", name: "Nebius AI", icon: "cloud", color: "#6C5CE7", textIcon: "NB", website: "https://nebius.com", notice: { apiKeyUrl: "https://studio.nebius.com/settings/api-keys" }, serviceKinds: ["llm", "embedding"], embeddingConfig: { baseUrl: "https://api.tokenfactory.nebius.com/v1/embeddings", authType: "apikey", authHeader: "bearer", models: [{ id: "Qwen/Qwen3-Embedding-8B", name: "Qwen3 Embedding 8B", dimensions: 4096 }] } },
   siliconflow: { id: "siliconflow", alias: "siliconflow", name: "SiliconFlow", icon: "cloud_queue", color: "#5B6EF5", textIcon: "SF", website: "https://cloud.siliconflow.com", notice: { apiKeyUrl: "https://cloud.siliconflow.com/account/ak" } },
   hyperbolic: { id: "hyperbolic", alias: "hyp", name: "Hyperbolic", icon: "bolt", color: "#00D4FF", textIcon: "HY", website: "https://hyperbolic.xyz", notice: { apiKeyUrl: "https://app.hyperbolic.xyz/settings" }, serviceKinds: ["llm", "tts"], ttsConfig: { baseUrl: "https://api.hyperbolic.xyz/v1/audio/generation", authType: "apikey", authHeader: "bearer", format: "hyperbolic", models: [{ id: "melo-tts", name: "Melo TTS" }] } },
-  deepgram: { id: "deepgram", alias: "dg", name: "Deepgram", icon: "mic", color: "#13EF93", textIcon: "DG", website: "https://deepgram.com", notice: { text: "$200 free credit on signup (no card required). Aura-1: $0.015/1k chars, Aura-2: $0.030/1k chars (Pay-As-You-Go).", apiKeyUrl: "https://console.deepgram.com/api-keys" }, serviceKinds: ["stt", "imageToText", "tts"], ttsConfig: { baseUrl: "https://api.deepgram.com/v1/speak", authType: "apikey", authHeader: "token", format: "deepgram", models: [] } },
-  assemblyai: { id: "assemblyai", alias: "aai", name: "AssemblyAI", icon: "record_voice_over", color: "#0062FF", textIcon: "AA", website: "https://assemblyai.com", notice: { apiKeyUrl: "https://www.assemblyai.com/app/api-keys" }, serviceKinds: ["stt"] },
+  deepgram: { id: "deepgram", alias: "dg", name: "Deepgram", icon: "mic", color: "#13EF93", textIcon: "DG", website: "https://deepgram.com", notice: { text: "$200 free credit on signup (no card required). Aura-1: $0.015/1k chars, Aura-2: $0.030/1k chars (Pay-As-You-Go).", apiKeyUrl: "https://console.deepgram.com/api-keys" }, serviceKinds: ["stt", "imageToText", "tts"], ttsConfig: { baseUrl: "https://api.deepgram.com/v1/speak", authType: "apikey", authHeader: "token", format: "deepgram", models: [] }, sttConfig: { baseUrl: "https://api.deepgram.com/v1/listen", authType: "apikey", authHeader: "token", format: "deepgram", models: [{ id: "nova-3", name: "Nova 3" }, { id: "nova-2", name: "Nova 2" }, { id: "whisper-large", name: "Whisper Large" }] } },
+  assemblyai: { id: "assemblyai", alias: "aai", name: "AssemblyAI", icon: "record_voice_over", color: "#0062FF", textIcon: "AA", website: "https://assemblyai.com", notice: { apiKeyUrl: "https://www.assemblyai.com/app/api-keys" }, serviceKinds: ["stt"], sttConfig: { baseUrl: "https://api.assemblyai.com/v2/transcript", authType: "apikey", authHeader: "bearer", format: "assemblyai", async: true, models: [{ id: "universal-3-pro", name: "Universal 3 Pro" }, { id: "universal-2", name: "Universal 2" }] } },
   nanobanana: { id: "nanobanana", alias: "nb", name: "NanoBanana API", icon: "extension", color: "#FFD700", textIcon: "🍌", website: "https://nanobananaapi.ai", notice: { text: "3rd-party proxy for Google Nano Banana (Gemini 2.5/3 Flash Image). For official, use Gemini provider.", apiKeyUrl: "https://nanobananaapi.ai/dashboard" }, serviceKinds: ["image"] },
   elevenlabs: { id: "elevenlabs", alias: "el", name: "ElevenLabs", icon: "record_voice_over", color: "#6C47FF", textIcon: "EL", website: "https://elevenlabs.io", notice: { apiKeyUrl: "https://elevenlabs.io/app/settings/api-keys" }, serviceKinds: ["tts"], ttsConfig: { baseUrl: "https://api.elevenlabs.io/v1/text-to-speech", authType: "apikey", authHeader: "xi-api-key", format: "elevenlabs", models: [{ id: "eleven_multilingual_v2", name: "Eleven Multilingual v2" }, { id: "eleven_turbo_v2_5", name: "Eleven Turbo v2.5" }] } },
   cartesia: { id: "cartesia", alias: "cartesia", name: "Cartesia", icon: "spatial_audio", color: "#FF4F8B", textIcon: "CA", website: "https://cartesia.ai", notice: { apiKeyUrl: "https://play.cartesia.ai/keys" }, serviceKinds: ["tts"], hidden: true, ttsConfig: { baseUrl: "https://api.cartesia.ai/tts/bytes", authType: "apikey", authHeader: "x-api-key", format: "cartesia", models: [{ id: "sonic-2", name: "Sonic 2" }, { id: "sonic-3", name: "Sonic 3" }] } },
@@ -103,7 +103,7 @@ export const APIKEY_PROVIDERS: Record<string, Provider> = {
   "voyage-ai": { id: "voyage-ai", alias: "voyage", name: "Voyage AI", icon: "data_array", color: "#0EA5E9", textIcon: "VG", website: "https://www.voyageai.com", notice: { apiKeyUrl: "https://dash.voyageai.com/api-keys" }, serviceKinds: ["embedding"], embeddingConfig: { baseUrl: "https://api.voyageai.com/v1/embeddings", authType: "apikey", authHeader: "bearer", models: [{ id: "voyage-3-large", name: "Voyage 3 Large", dimensions: 1024 }, { id: "voyage-3.5", name: "Voyage 3.5", dimensions: 1024 }, { id: "voyage-3.5-lite", name: "Voyage 3.5 Lite", dimensions: 1024 }, { id: "voyage-code-3", name: "Voyage Code 3", dimensions: 1024 }, { id: "voyage-finance-2", name: "Voyage Finance 2", dimensions: 1024 }, { id: "voyage-law-2", name: "Voyage Law 2", dimensions: 1024 }, { id: "voyage-multilingual-2", name: "Voyage Multilingual 2", dimensions: 1024 }] } },
   sdwebui: { id: "sdwebui", alias: "sdwebui", name: "SD WebUI", icon: "brush", color: "#FF7043", textIcon: "SD", website: "https://github.com/AUTOMATIC1111/stable-diffusion-webui", serviceKinds: ["image"] },
   comfyui: { id: "comfyui", alias: "comfyui", name: "ComfyUI", icon: "account_tree", color: "#4CAF50", textIcon: "CF", website: "https://github.com/comfyanonymous/ComfyUI", serviceKinds: ["image"] },
-  huggingface: { id: "huggingface", alias: "hf", name: "HuggingFace", icon: "face", color: "#FFD21E", textIcon: "HF", website: "https://huggingface.co", notice: { apiKeyUrl: "https://huggingface.co/settings/tokens" }, serviceKinds: ["image", "imageToText", "tts"], hiddenKinds: ["tts"], ttsConfig: { baseUrl: "https://api-inference.huggingface.co/models", authType: "apikey", authHeader: "bearer", format: "huggingface-tts", models: [{ id: "facebook/mms-tts-eng", name: "MMS TTS English" }, { id: "microsoft/speecht5_tts", name: "SpeechT5 TTS" }] } },
+  huggingface: { id: "huggingface", alias: "hf", name: "HuggingFace", icon: "face", color: "#FFD21E", textIcon: "HF", website: "https://huggingface.co", notice: { apiKeyUrl: "https://huggingface.co/settings/tokens" }, serviceKinds: ["image", "imageToText", "tts", "stt"], hiddenKinds: ["tts"], ttsConfig: { baseUrl: "https://api-inference.huggingface.co/models", authType: "apikey", authHeader: "bearer", format: "huggingface-tts", models: [{ id: "facebook/mms-tts-eng", name: "MMS TTS English" }, { id: "microsoft/speecht5_tts", name: "SpeechT5 TTS" }] }, sttConfig: { baseUrl: "https://api-inference.huggingface.co/models", authType: "apikey", authHeader: "bearer", format: "huggingface-asr", models: [{ id: "openai/whisper-large-v3", name: "Whisper Large v3 (HF)" }, { id: "openai/whisper-small", name: "Whisper Small (HF)" }] } },
   blackbox: { id: "blackbox", alias: "bb", name: "Blackbox AI", icon: "smart_toy", color: "#5B5FEF", textIcon: "BB", website: "https://blackbox.ai", notice: { apiKeyUrl: "https://www.blackbox.ai/api-management" }, serviceKinds: ["llm"] },
   chutes: { id: "chutes", alias: "ch", name: "Chutes AI", icon: "water_drop", color: "#ffffffff", textIcon: "CH", website: "https://chutes.ai", notice: { apiKeyUrl: "https://chutes.ai/app/api" } },
   "ollama-local": { id: "ollama-local", alias: "ollama-local", name: "Ollama Local", icon: "cloud", color: "#ffffffff", textIcon: "OL", website: "https://ollama.com" },
diff --git a/web/src/types/index.ts b/web/src/types/index.ts
index 4d4632b5..bf2393e6 100644
--- a/web/src/types/index.ts
+++ b/web/src/types/index.ts
@@ -27,6 +27,7 @@ export interface Provider {
   };
   serviceKinds?: ServiceKind[];
   ttsConfig?: TTSConfig;
+  sttConfig?: STTConfig;
   embeddingConfig?: EmbeddingConfig;
   thinkingConfig?: ThinkingConfig;
   kindNotice?: Record<string, string>;
@@ -56,6 +57,29 @@ export interface TTSModel {
   name: string;
 }
 
+export type STTFormat =
+  | "openai"
+  | "deepgram"
+  | "assemblyai"
+  | "nvidia-asr"
+  | "huggingface-asr"
+  | "gemini-stt";
+
+export interface STTConfig {
+  baseUrl: string;
+  authType: "none" | "apikey";
+  authHeader: "bearer" | "token" | "x-api-key" | "key" | "none";
+  format: STTFormat;
+  models: STTModel[];
+  /** True for providers that require an async upload+poll flow (AssemblyAI). */
+  async?: boolean;
+}
+
+export interface STTModel {
+  id: string;
+  name: string;
+}
+
 export interface EmbeddingConfig {
   baseUrl: string;
   authType: "apikey";

From ddb757f1d2ddb6fc289c92bc110e984311db067b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tr=E1=BA=A7n=20Quang=20=C4=90=C3=A3ng?=
 <tranquangdang21@gmail.com>
Date: Wed, 13 May 2026 14:30:59 +0000
Subject: [PATCH 7/7] fmt: apply cargo fmt to STT module

---
 src/server/api/mod.rs |  2 +-
 src/server/api/stt.rs | 33 +++++++++++++++++++++------------
 2 files changed, 22 insertions(+), 13 deletions(-)

diff --git a/src/server/api/mod.rs b/src/server/api/mod.rs
index 0531190b..e1ab0304 100644
--- a/src/server/api/mod.rs
+++ b/src/server/api/mod.rs
@@ -8,7 +8,6 @@ pub mod compat;
 pub mod locale;
 pub mod media;
 pub mod media_providers;
-pub mod stt;
 pub mod mitm_config;
 pub mod models_alias;
 pub mod models_availability;
@@ -24,6 +23,7 @@ pub mod provider_nodes;
 mod provider_validate;
 pub mod providers;
 pub mod shutdown;
+pub mod stt;
 pub mod tags;
 pub mod translator;
 pub mod tunnel;
diff --git a/src/server/api/stt.rs b/src/server/api/stt.rs
index f15425ec..b6d45deb 100644
--- a/src/server/api/stt.rs
+++ b/src/server/api/stt.rs
@@ -193,10 +193,7 @@ pub async fn audio_transcriptions(State(state): State<AppState>, request: Reques
             let provider = match resolved.provider.as_deref() {
                 Some(p) if !p.is_empty() => p.to_string(),
                 _ => {
-                    return with_cors(json_error(
-                        StatusCode::BAD_REQUEST,
-                        "Invalid model format",
-                    ));
+                    return with_cors(json_error(StatusCode::BAD_REQUEST, "Invalid model format"));
                 }
             };
             let model = resolved.model.clone();
@@ -294,7 +291,9 @@ async fn parse_multipart_request(mp: &mut Multipart) -> Result<SttRequest, Reque
     })
 }
 
-async fn read_text_field(field: axum::extract::multipart::Field<'_>) -> Result<String, RequestError> {
+async fn read_text_field(
+    field: axum::extract::multipart::Field<'_>,
+) -> Result<String, RequestError> {
     let bytes = field
         .bytes()
         .await
@@ -408,7 +407,9 @@ async fn dispatch_with_fallback(
             }
             return json_error(
                 last_status.unwrap_or(StatusCode::SERVICE_UNAVAILABLE),
-                last_message.as_deref().unwrap_or("All accounts unavailable"),
+                last_message
+                    .as_deref()
+                    .unwrap_or("All accounts unavailable"),
             );
         };
 
@@ -570,8 +571,7 @@ pub fn audio_mime_from_filename(name: &str) -> String {
 }
 
 async fn upstream_error(res: reqwest::Response) -> DispatchResult {
-    let status =
-        StatusCode::from_u16(res.status().as_u16()).unwrap_or(StatusCode::BAD_GATEWAY);
+    let status = StatusCode::from_u16(res.status().as_u16()).unwrap_or(StatusCode::BAD_GATEWAY);
     let text = res.text().await.unwrap_or_default();
     let message = parse_upstream_error_message(&text)
         .unwrap_or_else(|| format!("Upstream error ({})", status));
@@ -1139,7 +1139,14 @@ mod tests {
 
     #[test]
     fn stt_catalog_has_expected_providers() {
-        for p in ["openai", "groq", "deepgram", "assemblyai", "huggingface", "gemini"] {
+        for p in [
+            "openai",
+            "groq",
+            "deepgram",
+            "assemblyai",
+            "huggingface",
+            "gemini",
+        ] {
             assert!(stt_config(p).is_some(), "{} should have STT config", p);
         }
         assert!(stt_config("anthropic").is_none());
@@ -1152,7 +1159,10 @@ mod tests {
         assert_eq!(audio_mime_from_filename("clip.WAV"), "audio/wav");
         assert_eq!(audio_mime_from_filename("clip.m4a"), "audio/mp4");
         assert_eq!(audio_mime_from_filename("clip.opus"), "audio/opus");
-        assert_eq!(audio_mime_from_filename("noext"), "application/octet-stream");
+        assert_eq!(
+            audio_mime_from_filename("noext"),
+            "application/octet-stream"
+        );
     }
 
     #[test]
@@ -1168,8 +1178,7 @@ mod tests {
 
     #[test]
     fn deepgram_url_uses_explicit_language_when_set() {
-        let url =
-            build_deepgram_url("https://api.deepgram.com/v1/listen", "nova-3", Some("en"));
+        let url = build_deepgram_url("https://api.deepgram.com/v1/listen", "nova-3", Some("en"));
         assert!(url.contains("&language=en") || url.contains("?language=en"));
         assert!(!url.contains("detect_language=true"));
     }