From 9a708fce1d7927b540a0a2287099392f037e4b5d Mon Sep 17 00:00:00 2001
From: CJ_Clippy <cj@futureporn.net>
Date: Wed, 3 Dec 2025 03:59:28 -0800
Subject: [PATCH] add vibeui player

---
 services/pocketbase/.gitignore                |  31 +-
 services/pocketbase/go.mod                    |  46 +
 services/pocketbase/go.sum                    | 141 +++
 services/pocketbase/main.go                   | 148 +++
 services/pocketbase/package.json              |   2 +-
 .../pb_hooks/{cdn.pb.js => cdn.pb.js.noexec}  |  82 +-
 .../pb_hooks/pages/(site)/+layout.ejs         |   3 +-
 .../pb_hooks/pages/(site)/about/index.ejs     |  19 +
 .../pages/(site)/auth/_private/oauth2.ejs     |   2 +-
 .../pb_hooks/pages/(site)/vods/[id]/index.ejs | 211 +++-
 .../pb_hooks/pages/(site)/vt/index.ejs        |   6 +-
 .../pb_hooks/pages/_private/vod-list.ejs      |  15 +-
 .../pb_migrations/1764156924_updated_vods.js  |  29 +
 .../pb_migrations/1764481404_updated_vods.js  |  48 +
 .../pb_migrations/1764574888_updated_vods.js  |  29 +
 .../pb_migrations/1764648351_updated_vods.js  |  48 +
 .../pb_migrations/1764723356_updated_vods.js  |  48 +
 .../pb_migrations/1764758197_updated_vods.js  |  48 +
 .../pb_migrations/1764758246_updated_vods.js  | 105 ++
 services/pocketbase/pb_public/Funscripts.js   | 305 ++++++
 .../pb_public/vibrator-controls.png           | Bin 0 -> 33607 bytes
 .../pocketbase/src/handlers/file_download.go  |  70 ++
 .../pocketbase/src/handlers/hls_package.go    |  52 +
 .../pocketbase/src/handlers/s3_download.go    |  56 +
 services/pocketbase/src/misc/bunny-cdn.go     |  80 ++
 .../src/plugins/patreon/package-lock.json     | 957 ------------------
 .../src/plugins/patreon/package.json          |  19 -
 .../src/plugins/patreon/src/index.ts          |  40 -
 .../src/plugins/patreon/tsconfig.json         |  19 -
 .../src/plugins/patreon/tsdown.config.ts      |  10 -
 services/worker/.config/env.ts                |  23 +-
 services/worker/package-lock.json             | 102 +-
 services/worker/package.json                  |   5 +-
 services/worker/src/index.ts                  |  17 +-
 .../src/processors/announceTorrent.spec.ts    |  16 +
 .../worker/src/processors/announceTorrent.ts  |  56 +
 .../worker/src/processors/cacheCleanup.ts     |  67 +-
 .../worker/src/processors/createFunscript.ts  | 271 +++--
 .../src/processors/createHlsPlaylist.ts       | 166 ++-
 .../worker/src/processors/createTorrent.ts    |  16 +-
 services/worker/src/processors/findWork.ts    |  19 +-
 .../src/processors/updateTrackerWhitelist.ts  | 111 ++
 services/worker/src/queues/downloadQueue.ts   |   1 -
 .../worker/src/queues/highPriorityQueue.ts    |  12 +
 services/worker/src/util/b2.ts                |  23 +-
 services/worker/src/util/bunnyCDN.spec.ts     |  46 +-
 services/worker/src/util/bunnyCDN.ts          |  63 +-
 services/worker/src/util/cache.ts             |  21 +
 services/worker/src/util/fsExtra.ts           |  29 +
 services/worker/src/util/funscripts.ts        |  15 +-
 services/worker/src/util/qbittorrent.ts       |  82 +-
 services/worker/src/util/sftp.spec.ts         |   6 +-
 services/worker/src/util/sftp.ts              |  64 +-
 services/worker/src/util/vibeui.ts            |  47 +-
 services/worker/src/workers/downloadWorker.ts |   2 +-
 services/worker/src/workers/gpuWorker.ts      |  10 +-
 .../worker/src/workers/highPriorityWorker.ts  |   4 +
 services/worker/systemd/up.sh                 |   2 +-
 58 files changed, 2534 insertions(+), 1431 deletions(-)
 create mode 100644 services/pocketbase/go.mod
 create mode 100644 services/pocketbase/go.sum
 create mode 100644 services/pocketbase/main.go
 rename services/pocketbase/pb_hooks/{cdn.pb.js => cdn.pb.js.noexec} (52%)
 create mode 100644 services/pocketbase/pb_hooks/pages/(site)/about/index.ejs
 create mode 100644 services/pocketbase/pb_migrations/1764156924_updated_vods.js
 create mode 100644 services/pocketbase/pb_migrations/1764481404_updated_vods.js
 create mode 100644 services/pocketbase/pb_migrations/1764574888_updated_vods.js
 create mode 100644 services/pocketbase/pb_migrations/1764648351_updated_vods.js
 create mode 100644 services/pocketbase/pb_migrations/1764723356_updated_vods.js
 create mode 100644 services/pocketbase/pb_migrations/1764758197_updated_vods.js
 create mode 100644 services/pocketbase/pb_migrations/1764758246_updated_vods.js
 create mode 100644 services/pocketbase/pb_public/Funscripts.js
 create mode 100644 services/pocketbase/pb_public/vibrator-controls.png
 create mode 100644 services/pocketbase/src/handlers/file_download.go
 create mode 100644 services/pocketbase/src/handlers/hls_package.go
 create mode 100644 services/pocketbase/src/handlers/s3_download.go
 create mode 100644 services/pocketbase/src/misc/bunny-cdn.go
 delete mode 100644 services/pocketbase/src/plugins/patreon/package-lock.json
 delete mode 100644 services/pocketbase/src/plugins/patreon/package.json
 delete mode 100644 services/pocketbase/src/plugins/patreon/src/index.ts
 delete mode 100644 services/pocketbase/src/plugins/patreon/tsconfig.json
 delete mode 100644 services/pocketbase/src/plugins/patreon/tsdown.config.ts
 create mode 100644 services/worker/src/processors/announceTorrent.spec.ts
 create mode 100644 services/worker/src/processors/announceTorrent.ts
 create mode 100644 services/worker/src/processors/updateTrackerWhitelist.ts
 create mode 100644 services/worker/src/util/cache.ts
 create mode 100644 services/worker/src/util/fsExtra.ts

diff --git a/services/pocketbase/.gitignore b/services/pocketbase/.gitignore
index e122e2de..fb09640c 100644
--- a/services/pocketbase/.gitignore
+++ b/services/pocketbase/.gitignore
@@ -2,4 +2,33 @@
 node_modules
 pb_data
 .DS_Store
-.secrets
\ No newline at end of file
+.secrets
+
+
+# Created by https://www.toptal.com/developers/gitignore/api/go
+# Edit at https://www.toptal.com/developers/gitignore?templates=go
+
+### Go ###
+# If you prefer the allow list template instead of the deny list, see community template:
+# https://github.com/github/gitignore/blob/main/community/Golang/Go.AllowList.gitignore
+#
+# Binaries for programs and plugins
+*.exe
+*.exe~
+*.dll
+*.so
+*.dylib
+
+# Test binary, built with `go test -c`
+*.test
+
+# Output of the go coverage tool, specifically when used with LiteIDE
+*.out
+
+# Dependency directories (remove the comment below to include it)
+# vendor/
+
+# Go workspace file
+go.work
+
+# End of https://www.toptal.com/developers/gitignore/api/go
diff --git a/services/pocketbase/go.mod b/services/pocketbase/go.mod
new file mode 100644
index 00000000..fec7d6ad
--- /dev/null
+++ b/services/pocketbase/go.mod
@@ -0,0 +1,46 @@
+module futureporn
+
+go 1.25.1
+
+require github.com/pocketbase/pocketbase v0.34.0
+
+require (
+	github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
+	github.com/disintegration/imaging v1.6.2 // indirect
+	github.com/dlclark/regexp2 v1.11.5 // indirect
+	github.com/domodwyer/mailyak/v3 v3.6.2 // indirect
+	github.com/dop251/base64dec v0.0.0-20231022112746-c6c9f9a96217 // indirect
+	github.com/dop251/goja v0.0.0-20251103141225-af2ceb9156d7 // indirect
+	github.com/dop251/goja_nodejs v0.0.0-20250409162600-f7acab6894b0 // indirect
+	github.com/dustin/go-humanize v1.0.1 // indirect
+	github.com/fatih/color v1.18.0 // indirect
+	github.com/fsnotify/fsnotify v1.7.0 // indirect
+	github.com/gabriel-vasile/mimetype v1.4.11 // indirect
+	github.com/ganigeorgiev/fexpr v0.5.0 // indirect
+	github.com/go-ozzo/ozzo-validation/v4 v4.3.0 // indirect
+	github.com/go-sourcemap/sourcemap v2.1.4+incompatible // indirect
+	github.com/golang-jwt/jwt/v5 v5.3.0 // indirect
+	github.com/google/pprof v0.0.0-20251007162407-5df77e3f7d1d // indirect
+	github.com/google/uuid v1.6.0 // indirect
+	github.com/inconshreveable/mousetrap v1.1.0 // indirect
+	github.com/mattn/go-colorable v0.1.14 // indirect
+	github.com/mattn/go-isatty v0.0.20 // indirect
+	github.com/ncruces/go-strftime v1.0.0 // indirect
+	github.com/pocketbase/dbx v1.11.0 // indirect
+	github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect
+	github.com/spf13/cast v1.10.0 // indirect
+	github.com/spf13/cobra v1.10.1 // indirect
+	github.com/spf13/pflag v1.0.10 // indirect
+	golang.org/x/crypto v0.45.0 // indirect
+	golang.org/x/exp v0.0.0-20251113190631-e25ba8c21ef6 // indirect
+	golang.org/x/image v0.33.0 // indirect
+	golang.org/x/net v0.47.0 // indirect
+	golang.org/x/oauth2 v0.33.0 // indirect
+	golang.org/x/sync v0.18.0 // indirect
+	golang.org/x/sys v0.38.0 // indirect
+	golang.org/x/text v0.31.0 // indirect
+	modernc.org/libc v1.66.10 // indirect
+	modernc.org/mathutil v1.7.1 // indirect
+	modernc.org/memory v1.11.0 // indirect
+	modernc.org/sqlite v1.40.1 // indirect
+)
diff --git a/services/pocketbase/go.sum b/services/pocketbase/go.sum
new file mode 100644
index 00000000..63a8d4be
--- /dev/null
+++ b/services/pocketbase/go.sum
@@ -0,0 +1,141 @@
+github.com/Masterminds/semver/v3 v3.2.1 h1:RN9w6+7QoMeJVGyfmbcgs28Br8cvmnucEXnY0rYXWg0=
+github.com/Masterminds/semver/v3 v3.2.1/go.mod h1:qvl/7zhW3nngYb5+80sSMF+FG2BjYrf8m9wsX0PNOMQ=
+github.com/asaskevich/govalidator v0.0.0-20200108200545-475eaeb16496/go.mod h1:oGkLhpf+kjZl6xBf758TQhh5XrAeiJv/7FRz/2spLIg=
+github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 h1:DklsrG3dyBCFEj5IhUbnKptjxatkF07cF2ak3yi77so=
+github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw=
+github.com/cpuguy83/go-md2man/v2 v2.0.6/go.mod h1:oOW0eioCTA6cOiMLiUPZOpcVxMig6NIQQ7OS05n1F4g=
+github.com/davecgh/go-spew v1.1.0 h1:ZDRjVQ15GmhC3fiQ8ni8+OwkZQO4DARzQgrnXU1Liz8=
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/disintegration/imaging v1.6.2 h1:w1LecBlG2Lnp8B3jk5zSuNqd7b4DXhcjwek1ei82L+c=
+github.com/disintegration/imaging v1.6.2/go.mod h1:44/5580QXChDfwIclfc/PCwrr44amcmDAg8hxG0Ewe4=
+github.com/dlclark/regexp2 v1.11.5 h1:Q/sSnsKerHeCkc/jSTNq1oCm7KiVgUMZRDUoRu0JQZQ=
+github.com/dlclark/regexp2 v1.11.5/go.mod h1:DHkYz0B9wPfa6wondMfaivmHpzrQ3v9q8cnmRbL6yW8=
+github.com/domodwyer/mailyak/v3 v3.6.2 h1:x3tGMsyFhTCaxp6ycgR0FE/bu5QiNp+hetUuCOBXMn8=
+github.com/domodwyer/mailyak/v3 v3.6.2/go.mod h1:lOm/u9CyCVWHeaAmHIdF4RiKVxKUT/H5XX10lIKAL6c=
+github.com/dop251/base64dec v0.0.0-20231022112746-c6c9f9a96217 h1:16iT9CBDOniJwFGPI41MbUDfEk74hFaKTqudrX8kenY=
+github.com/dop251/base64dec v0.0.0-20231022112746-c6c9f9a96217/go.mod h1:eIb+f24U+eWQCIsj9D/ah+MD9UP+wdxuqzsdLD+mhGM=
+github.com/dop251/goja v0.0.0-20251103141225-af2ceb9156d7 h1:jxmXU5V9tXxJnydU5v/m9SG8TRUa/Z7IXODBpMs/P+U=
+github.com/dop251/goja v0.0.0-20251103141225-af2ceb9156d7/go.mod h1:MxLav0peU43GgvwVgNbLAj1s/bSGboKkhuULvq/7hx4=
+github.com/dop251/goja_nodejs v0.0.0-20250409162600-f7acab6894b0 h1:fuHXpEVTTk7TilRdfGRLHpiTD6tnT0ihEowCfWjlFvw=
+github.com/dop251/goja_nodejs v0.0.0-20250409162600-f7acab6894b0/go.mod h1:Tb7Xxye4LX7cT3i8YLvmPMGCV92IOi4CDZvm/V8ylc0=
+github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY=
+github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
+github.com/fatih/color v1.18.0 h1:S8gINlzdQ840/4pfAwic/ZE0djQEH3wM94VfqLTZcOM=
+github.com/fatih/color v1.18.0/go.mod h1:4FelSpRwEGDpQ12mAdzqdOukCy4u8WUtOY6lkT/6HfU=
+github.com/frankban/quicktest v1.14.6 h1:7Xjx+VpznH+oBnejlPUj8oUpdxnVs4f8XU8WnHkI4W8=
+github.com/frankban/quicktest v1.14.6/go.mod h1:4ptaffx2x8+WTWXmUCuVU6aPUX1/Mz7zb5vbUoiM6w0=
+github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
+github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyTJwOpGvigM=
+github.com/gabriel-vasile/mimetype v1.4.11 h1:AQvxbp830wPhHTqc1u7nzoLT+ZFxGY7emj5DR5DYFik=
+github.com/gabriel-vasile/mimetype v1.4.11/go.mod h1:d+9Oxyo1wTzWdyVUPMmXFvp4F9tea18J8ufA774AB3s=
+github.com/ganigeorgiev/fexpr v0.5.0 h1:XA9JxtTE/Xm+g/JFI6RfZEHSiQlk+1glLvRK1Lpv/Tk=
+github.com/ganigeorgiev/fexpr v0.5.0/go.mod h1:RyGiGqmeXhEQ6+mlGdnUleLHgtzzu/VGO2WtJkF5drE=
+github.com/go-ozzo/ozzo-validation/v4 v4.3.0 h1:byhDUpfEwjsVQb1vBunvIjh2BHQ9ead57VkAEY4V+Es=
+github.com/go-ozzo/ozzo-validation/v4 v4.3.0/go.mod h1:2NKgrcHl3z6cJs+3Oo940FPRiTzuqKbvfrL2RxCj6Ew=
+github.com/go-sourcemap/sourcemap v2.1.4+incompatible h1:a+iTbH5auLKxaNwQFg0B+TCYl6lbukKPc7b5x0n1s6Q=
+github.com/go-sourcemap/sourcemap v2.1.4+incompatible/go.mod h1:F8jJfvm2KbVjc5NqelyYJmf/v5J0dwNLS2mL4sNA1Jg=
+github.com/go-sql-driver/mysql v1.4.1 h1:g24URVg0OFbNUTx9qqY1IRZ9D9z3iPyi5zKhQZpNwpA=
+github.com/go-sql-driver/mysql v1.4.1/go.mod h1:zAC/RDZ24gD3HViQzih4MyKcchzm+sOG5ZlKdlhCg5w=
+github.com/golang-jwt/jwt/v5 v5.3.0 h1:pv4AsKCKKZuqlgs5sUmn4x8UlGa0kEVt/puTpKx9vvo=
+github.com/golang-jwt/jwt/v5 v5.3.0/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE=
+github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
+github.com/google/pprof v0.0.0-20251007162407-5df77e3f7d1d h1:KJIErDwbSHjnp/SGzE5ed8Aol7JsKiI5X7yWKAtzhM0=
+github.com/google/pprof v0.0.0-20251007162407-5df77e3f7d1d/go.mod h1:I6V7YzU0XDpsHqbsyrghnFZLO1gwK6NPTNvmetQIk9U=
+github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
+github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
+github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
+github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
+github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
+github.com/mattn/go-colorable v0.1.14 h1:9A9LHSqF/7dyVVX6g0U9cwm9pG3kP9gSzcuIPHPsaIE=
+github.com/mattn/go-colorable v0.1.14/go.mod h1:6LmQG8QLFO4G5z1gPvYEzlUgJ2wF+stgPZH1UqBm1s8=
+github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
+github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
+github.com/ncruces/go-strftime v1.0.0 h1:HMFp8mLCTPp341M/ZnA4qaf7ZlsbTc+miZjCLOFAw7w=
+github.com/ncruces/go-strftime v1.0.0/go.mod h1:Fwc5htZGVVkseilnfgOVb9mKy6w1naJmn9CehxcKcls=
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/pocketbase/dbx v1.11.0 h1:LpZezioMfT3K4tLrqA55wWFw1EtH1pM4tzSVa7kgszU=
+github.com/pocketbase/dbx v1.11.0/go.mod h1:xXRCIAKTHMgUCyCKZm55pUOdvFziJjQfXaWKhu2vhMs=
+github.com/pocketbase/pocketbase v0.34.0 h1:5W80PrGvkRYIMAIK90F7w031/hXgZVz1KSuCJqSpgJo=
+github.com/pocketbase/pocketbase v0.34.0/go.mod h1:K/9z/Zb9PR9yW2Qyoc73jHV/EKT8cMTk9bQWyrzYlvI=
+github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec h1:W09IVJc94icq4NjY3clb7Lk8O1qJ8BdBEF8z0ibU0rE=
+github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo=
+github.com/rogpeppe/go-internal v1.9.0 h1:73kH8U+JUqXU8lRuOHeVHaa/SZPifC7BkcraZVejAe8=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
+github.com/spf13/cast v1.10.0 h1:h2x0u2shc1QuLHfxi+cTJvs30+ZAHOGRic8uyGTDWxY=
+github.com/spf13/cast v1.10.0/go.mod h1:jNfB8QC9IA6ZuY2ZjDp0KtFO2LZZlg4S/7bzP6qqeHo=
+github.com/spf13/cobra v1.10.1 h1:lJeBwCfmrnXthfAupyUTzJ/J4Nc1RsHC/mSRU2dll/s=
+github.com/spf13/cobra v1.10.1/go.mod h1:7SmJGaTHFVBY0jW4NXGluQoLvhqFQM+6XSKD+P4XaB0=
+github.com/spf13/pflag v1.0.9/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/spf13/pflag v1.0.10 h1:4EBh2KAYBwaONj6b2Ye1GiHfwjqyROoF4RwYO+vPwFk=
+github.com/spf13/pflag v1.0.10/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/testify v1.4.0 h1:2E4SXV/wtOkTonXsotYi4li6zVWxYlZuYNCXe9XRJyk=
+github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/crypto v0.45.0 h1:jMBrvKuj23MTlT0bQEOBcAE0mjg8mK9RXFhRH6nyF3Q=
+golang.org/x/crypto v0.45.0/go.mod h1:XTGrrkGJve7CYK7J8PEww4aY7gM3qMCElcJQ8n8JdX4=
+golang.org/x/exp v0.0.0-20251113190631-e25ba8c21ef6 h1:zfMcR1Cs4KNuomFFgGefv5N0czO2XZpUbxGUy8i8ug0=
+golang.org/x/exp v0.0.0-20251113190631-e25ba8c21ef6/go.mod h1:46edojNIoXTNOhySWIWdix628clX9ODXwPsQuG6hsK0=
+golang.org/x/image v0.0.0-20191009234506-e7c1f5e7dbb8/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.33.0 h1:LXRZRnv1+zGd5XBUVRFmYEphyyKJjQjCRiOuAP3sZfQ=
+golang.org/x/image v0.33.0/go.mod h1:DD3OsTYT9chzuzTQt+zMcOlBHgfoKQb1gry8p76Y1sc=
+golang.org/x/mod v0.30.0 h1:fDEXFVZ/fmCKProc/yAXXUijritrDzahmwwefnjoPFk=
+golang.org/x/mod v0.30.0/go.mod h1:lAsf5O2EvJeSFMiBxXDki7sCgAxEUcZHXoXMKT4GJKc=
+golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
+golang.org/x/net v0.47.0 h1:Mx+4dIFzqraBXUugkia1OOvlD6LemFo1ALMHjrXDOhY=
+golang.org/x/net v0.47.0/go.mod h1:/jNxtkgq5yWUGYkaZGqo27cfGZ1c5Nen03aYrrKpVRU=
+golang.org/x/oauth2 v0.33.0 h1:4Q+qn+E5z8gPRJfmRy7C2gGG3T4jIprK6aSYgTXGRpo=
+golang.org/x/oauth2 v0.33.0/go.mod h1:lzm5WQJQwKZ3nwavOZ3IS5Aulzxi68dUSgRHujetwEA=
+golang.org/x/sync v0.18.0 h1:kr88TuHDroi+UVf+0hZnirlk8o8T+4MrK6mr60WkH/I=
+golang.org/x/sync v0.18.0/go.mod h1:9KTHXmSnoGruLpwFjVSX0lNNA75CykiMECbovNTZqGI=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.38.0 h1:3yZWxaJjBmCWXqhN1qh02AkOnCQ1poK6oF+a7xWL6Gc=
+golang.org/x/sys v0.38.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.31.0 h1:aC8ghyu4JhP8VojJ2lEHBnochRno1sgL6nEi9WGFGMM=
+golang.org/x/text v0.31.0/go.mod h1:tKRAlv61yKIjGGHX/4tP1LTbc13YSec1pxVEWXzfoeM=
+golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/tools v0.39.0 h1:ik4ho21kwuQln40uelmciQPp9SipgNDdrafrYA4TmQQ=
+golang.org/x/tools v0.39.0/go.mod h1:JnefbkDPyD8UU2kI5fuf8ZX4/yUeh9W877ZeBONxUqQ=
+google.golang.org/appengine v1.6.5 h1:tycE03LOZYQNhDpS27tcQdAzLCVMaj7QT2SXxebnpCM=
+google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
+gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+modernc.org/cc/v4 v4.26.5 h1:xM3bX7Mve6G8K8b+T11ReenJOT+BmVqQj0FY5T4+5Y4=
+modernc.org/cc/v4 v4.26.5/go.mod h1:uVtb5OGqUKpoLWhqwNQo/8LwvoiEBLvZXIQ/SmO6mL0=
+modernc.org/ccgo/v4 v4.28.1 h1:wPKYn5EC/mYTqBO373jKjvX2n+3+aK7+sICCv4Fjy1A=
+modernc.org/ccgo/v4 v4.28.1/go.mod h1:uD+4RnfrVgE6ec9NGguUNdhqzNIeeomeXf6CL0GTE5Q=
+modernc.org/fileutil v1.3.40 h1:ZGMswMNc9JOCrcrakF1HrvmergNLAmxOPjizirpfqBA=
+modernc.org/fileutil v1.3.40/go.mod h1:HxmghZSZVAz/LXcMNwZPA/DRrQZEVP9VX0V4LQGQFOc=
+modernc.org/gc/v2 v2.6.5 h1:nyqdV8q46KvTpZlsw66kWqwXRHdjIlJOhG6kxiV/9xI=
+modernc.org/gc/v2 v2.6.5/go.mod h1:YgIahr1ypgfe7chRuJi2gD7DBQiKSLMPgBQe9oIiito=
+modernc.org/goabi0 v0.2.0 h1:HvEowk7LxcPd0eq6mVOAEMai46V+i7Jrj13t4AzuNks=
+modernc.org/goabi0 v0.2.0/go.mod h1:CEFRnnJhKvWT1c1JTI3Avm+tgOWbkOu5oPA8eH8LnMI=
+modernc.org/libc v1.66.10 h1:yZkb3YeLx4oynyR+iUsXsybsX4Ubx7MQlSYEw4yj59A=
+modernc.org/libc v1.66.10/go.mod h1:8vGSEwvoUoltr4dlywvHqjtAqHBaw0j1jI7iFBTAr2I=
+modernc.org/mathutil v1.7.1 h1:GCZVGXdaN8gTqB1Mf/usp1Y/hSqgI2vAGGP4jZMCxOU=
+modernc.org/mathutil v1.7.1/go.mod h1:4p5IwJITfppl0G4sUEDtCr4DthTaT47/N3aT6MhfgJg=
+modernc.org/memory v1.11.0 h1:o4QC8aMQzmcwCK3t3Ux/ZHmwFPzE6hf2Y5LbkRs+hbI=
+modernc.org/memory v1.11.0/go.mod h1:/JP4VbVC+K5sU2wZi9bHoq2MAkCnrt2r98UGeSK7Mjw=
+modernc.org/opt v0.1.4 h1:2kNGMRiUjrp4LcaPuLY2PzUfqM/w9N23quVwhKt5Qm8=
+modernc.org/opt v0.1.4/go.mod h1:03fq9lsNfvkYSfxrfUhZCWPk1lm4cq4N+Bh//bEtgns=
+modernc.org/sortutil v1.2.1 h1:+xyoGf15mM3NMlPDnFqrteY07klSFxLElE2PVuWIJ7w=
+modernc.org/sortutil v1.2.1/go.mod h1:7ZI3a3REbai7gzCLcotuw9AC4VZVpYMjDzETGsSMqJE=
+modernc.org/sqlite v1.40.1 h1:VfuXcxcUWWKRBuP8+BR9L7VnmusMgBNNnBYGEe9w/iY=
+modernc.org/sqlite v1.40.1/go.mod h1:9fjQZ0mB1LLP0GYrp39oOJXx/I2sxEnZtzCmEQIKvGE=
+modernc.org/strutil v1.2.1 h1:UneZBkQA+DX2Rp35KcM69cSsNES9ly8mQWD71HKlOA0=
+modernc.org/strutil v1.2.1/go.mod h1:EHkiggD70koQxjVdSBM3JKM7k6L0FbGE5eymy9i3B9A=
+modernc.org/token v1.1.0 h1:Xl7Ap9dKaEs5kLoOQeQmPWevfnk/DM5qcLcYlA8ys6Y=
+modernc.org/token v1.1.0/go.mod h1:UGzOrNV1mAFSEB63lOFHIpNRUVMvYTc6yu1SMY/XTDM=
diff --git a/services/pocketbase/main.go b/services/pocketbase/main.go
new file mode 100644
index 00000000..61316ab5
--- /dev/null
+++ b/services/pocketbase/main.go
@@ -0,0 +1,148 @@
+// @see https://github.com/pocketbase/pocketbase/blob/master/examples/base/main.go
+
+package main
+
+import (
+	"futureporn/src/handlers"
+	"log"
+	"net/http"
+	"os"
+	"path/filepath"
+
+	"github.com/pocketbase/pocketbase"
+	"github.com/pocketbase/pocketbase/apis"
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/plugins/ghupdate"
+	"github.com/pocketbase/pocketbase/plugins/jsvm"
+	"github.com/pocketbase/pocketbase/plugins/migratecmd"
+	"github.com/pocketbase/pocketbase/tools/hook"
+	"github.com/pocketbase/pocketbase/tools/osutils"
+)
+
+func main() {
+	app := pocketbase.New()
+
+	// ---------------------------------------------------------------
+	// Optional plugin flags:
+	// ---------------------------------------------------------------
+
+	var hooksDir string
+	app.RootCmd.PersistentFlags().StringVar(
+		&hooksDir,
+		"hooksDir",
+		"",
+		"the directory with the JS app hooks",
+	)
+
+	var hooksWatch bool
+	app.RootCmd.PersistentFlags().BoolVar(
+		&hooksWatch,
+		"hooksWatch",
+		true,
+		"auto restart the app on pb_hooks file change; it has no effect on Windows",
+	)
+
+	var hooksPool int
+	app.RootCmd.PersistentFlags().IntVar(
+		&hooksPool,
+		"hooksPool",
+		15,
+		"the total prewarm goja.Runtime instances for the JS app hooks execution",
+	)
+
+	var migrationsDir string
+	app.RootCmd.PersistentFlags().StringVar(
+		&migrationsDir,
+		"migrationsDir",
+		"",
+		"the directory with the user defined migrations",
+	)
+
+	var automigrate bool
+	app.RootCmd.PersistentFlags().BoolVar(
+		&automigrate,
+		"automigrate",
+		true,
+		"enable/disable auto migrations",
+	)
+
+	var publicDir string
+	app.RootCmd.PersistentFlags().StringVar(
+		&publicDir,
+		"publicDir",
+		defaultPublicDir(),
+		"the directory to serve static files",
+	)
+
+	var indexFallback bool
+	app.RootCmd.PersistentFlags().BoolVar(
+		&indexFallback,
+		"indexFallback",
+		true,
+		"fallback the request to index.html on missing static path, e.g. when pretty urls are used with SPA",
+	)
+
+	app.RootCmd.ParseFlags(os.Args[1:])
+
+	// ---------------------------------------------------------------
+	// Plugins and hooks:
+	// ---------------------------------------------------------------
+
+	// load jsvm (pb_hooks and pb_migrations)
+	jsvm.MustRegister(app, jsvm.Config{
+		MigrationsDir: migrationsDir,
+		HooksDir:      hooksDir,
+		HooksWatch:    hooksWatch,
+		HooksPoolSize: hooksPool,
+	})
+
+	// migrate command (with js templates)
+	migratecmd.MustRegister(app, app.RootCmd, migratecmd.Config{
+		TemplateLang: migratecmd.TemplateLangJS,
+		Automigrate:  automigrate,
+		Dir:          migrationsDir,
+	})
+
+	// GitHub selfupdate
+	ghupdate.MustRegister(app, app.RootCmd, ghupdate.Config{})
+
+	// route for generating hls playlists with BunnyCDN signed URLs
+	app.OnServe().BindFunc(func(se *core.ServeEvent) error {
+		se.Router.GET("/api/hls/{collectionId}/{recordId}/hls/{fileName}", handlers.PackageHandler)
+		return se.Next()
+	})
+
+	// route for direct downloads (patrons only)
+	app.OnServe().BindFunc(func(se *core.ServeEvent) error {
+		se.Router.GET("/api/download/{collectionId}/{recordId}/{fileName}", handlers.S3Download)
+		return se.Next()
+	})
+
+	// static route to serves files from the provided public dir
+	// (if publicDir exists and the route path is not already defined)
+	app.OnServe().Bind(&hook.Handler[*core.ServeEvent]{
+		Func: func(e *core.ServeEvent) error {
+			if !e.Router.HasRoute(http.MethodGet, "/{path...}") {
+				e.Router.GET("/{path...}", apis.Static(os.DirFS(publicDir), indexFallback))
+			}
+
+			return e.Next()
+		},
+		Priority: 999, // execute as latest as possible to allow users to provide their own route
+	})
+
+	app.OnFileDownloadRequest().BindFunc(handlers.HandleFileDownload)
+
+	if err := app.Start(); err != nil {
+		log.Fatal(err)
+	}
+}
+
+// the default pb_public dir location is relative to the executable
+func defaultPublicDir() string {
+	if osutils.IsProbablyGoRun() {
+		return "./pb_public"
+	}
+
+	return filepath.Join(os.Args[0], "../pb_public")
+}
diff --git a/services/pocketbase/package.json b/services/pocketbase/package.json
index 771b24aa..5d21b77f 100644
--- a/services/pocketbase/package.json
+++ b/services/pocketbase/package.json
@@ -1,6 +1,6 @@
 {
   "name": "futureporn",
-  "version": "4.0.0",
+  "version": "4.2.0",
   "private": true,
   "description": "Dedication to the preservation of lewdtuber history",
   "license": "Unlicense",
diff --git a/services/pocketbase/pb_hooks/cdn.pb.js b/services/pocketbase/pb_hooks/cdn.pb.js.noexec
similarity index 52%
rename from services/pocketbase/pb_hooks/cdn.pb.js
rename to services/pocketbase/pb_hooks/cdn.pb.js.noexec
index 21d0aa8b..209b0e5f 100644
--- a/services/pocketbase/pb_hooks/cdn.pb.js
+++ b/services/pocketbase/pb_hooks/cdn.pb.js.noexec
@@ -1,7 +1,5 @@
 /// <reference path="../pb_data/types.d.ts" />
 
-
-
 /**
  * onFileDownloadRequest hook is triggered before each API File download request. Could be used to validate or modify the file response before returning it to the client.
  * @see https://pocketbase.io/docs/js-event-hooks/#onfiledownloadrequest
@@ -13,7 +11,12 @@
 onFileDownloadRequest((event) => {
 
 
-  // console.log('event', JSON.stringify(event))
+  console.log('>>> We got a file download request event', JSON.stringify(event))
+
+
+  console.log('the below the following is event.request');
+  console.log(JSON.stringify(event.request));
+  console.log('the above the previous line is event.request');
   // e.app
   // e.collection
   // e.record
@@ -24,7 +27,7 @@ onFileDownloadRequest((event) => {
   const securityKey = process.env?.BUNNY_TOKEN_KEY;
   const baseUrl = process.env?.BUNNY_ZONE_URL;
 
-  // console.log(`securityKey=${securityKey}, baseUrl=${baseUrl}`)
+  console.log(`securityKey=${securityKey}, baseUrl=${baseUrl}`)
 
   if (!securityKey) {
     console.error('BUNNY_TOKEN_KEY was missing from env');
@@ -37,34 +40,52 @@ onFileDownloadRequest((event) => {
 
   /**
    * Generate a signed BunnyCDN URL.
+   * 
+   * @see https://support.bunny.net/hc/en-us/articles/360016055099-How-to-sign-URLs-for-BunnyCDN-Token-Authentication
+   * 
    * @param {string} securityKey - Your BunnyCDN security token
-   * @param {string} baseUrl - The base URL (protocol + host)
-   * @param {string} path - Path to the file (starting with /)
-   * @param {string} rawQuery - Raw query string, e.g., "width=500&quality=5"
+   * @param {string} inputUrl - The base URL (protocol + host + path + (optional) qs)
    * @param {number} expires - Unix timestamp for expiration
+   * @param {string} tokenPath - (optional) create a token that has access to any file within that path
    */
-  function signUrlCool(securityKey, baseUrl, path, rawQuery = "", expires) {
+  function signUrlCool(securityKey, inputUrl, expires, tokenPath = '') {
 
-    if (!path.startsWith('/')) path = '/' + path;
-    if (baseUrl.endsWith('/')) throw new Error(`baseUrl must not end with a slash. got baseUrl=${baseUrl}`);
+    if (inputUrl.endsWith('/')) throw new Error(`url must not end with a slash. got inputUrl=${inputUrl}`);
+
+
+    // reading query parameters
+    // let search = e.request.url.query().get("search")
+    const URL = event.request.url
+
+
+
+    let parsedURL = URL.parse(inputUrl); // this is pre-parsed. no need to parse again
+    let params = (URL.parse(parsedURL)).searchParams; // these are pre-parsed as event.request.url.rawQuery. no need to parse again
+    let signaturePath = '';
+    let parameterData = '';
+    let parameterDataUrl = '';
+
+    console.log(`eyy we got parsedURL=${parsedURL}`);
+
+    throw new Error('@todo');
 
     // Build parameter string (sort keys alphabetically)
-    let parameterData = "";
-    if (rawQuery) {
-      const params = rawQuery
-        .split("&")
-        .map(p => p.split("="))
-        .filter(([key]) => key && key !== "token" && key !== "expires")
-        .sort(([a], [b]) => a.localeCompare(b));
+    // let parameterData = "";
+    // if (rawQuery) {
+    //   const params = rawQuery
+    //     .split("&")
+    //     .map(p => p.split("="))
+    //     .filter(([key]) => key && key !== "token" && key !== "expires")
+    //     .sort(([a], [b]) => a.localeCompare(b));
 
-      if (params.length) {
-        parameterData = params.map(([k, v]) => `${k}=${v}`).join("&");
-      }
-    }
+    //   if (params.length) {
+    //     parameterData = params.map(([k, v]) => `${k}=${v}`).join("&");
+    //   }
+    // }
 
     // Build hashable base
     const hashableBase = securityKey + path + expires + parameterData;
-    // console.log(`hashableBase`, hashableBase)
+    console.log(`hashableBase`, hashableBase)
 
     // Compute token using your $security.sha256 workflow
     const tokenH = $security.sha256(hashableBase);
@@ -79,6 +100,7 @@ onFileDownloadRequest((event) => {
     let tokenUrl = baseUrl + path + "?token=" + token;
     if (parameterData) tokenUrl += "&" + parameterData;
     tokenUrl += "&expires=" + expires;
+    if (tokenPath) tokenUrl += "&token_path=" + tokenPath;
 
     return tokenUrl;
   }
@@ -87,12 +109,12 @@ onFileDownloadRequest((event) => {
 
   const rawQuery = event.requestEvent.request.url.rawQuery;
 
-  // console.log(`record: ${JSON.stringify(event.record)}`)
-  // // console.log(`collection: ${JSON.stringify(event.collection)}`)
-  // console.log(`app: ${JSON.stringify(event.app)}`)
-  // console.log(`fileField: ${JSON.stringify(event.fileField)}`)
-  // console.log(`servedPath: ${JSON.stringify(event.servedPath)}`)
-  // console.log(`servedName: ${JSON.stringify(event.servedName)}`)
+  console.log(`record: ${JSON.stringify(event.record)}`)
+  // console.log(`collection: ${JSON.stringify(event.collection)}`)
+  console.log(`app: ${JSON.stringify(event.app)}`)
+  console.log(`fileField: ${JSON.stringify(event.fileField)}`)
+  console.log(`servedPath: ${JSON.stringify(event.servedPath)}`)
+  console.log(`servedName: ${JSON.stringify(event.servedName)}`)
 
   // Our job here is to take the servedPath, and sign it using bunnycdn method
   // Then serve a 302 redirect instead of serving the file proxied thru PB
@@ -100,8 +122,8 @@ onFileDownloadRequest((event) => {
   const path = event.servedPath;
   const expires = Math.round(Date.now() / 1000) + 7 * 24 * 3600; // 7 days
   const signedUrl = signUrlCool(securityKey, baseUrl, path, rawQuery, expires);
-  // console.log(`rawQUery`, rawQuery, 'path', path);
-  // console.log(`signedUrl=${signedUrl}`);
+  console.log(`rawQuery`, rawQuery, 'path', path);
+  console.log(`signedUrl=${signedUrl}`);
 
   // This redirect is a tricky thing. We do this to avoid proxying file requests via our pocketbase origin server. 
   // The idea is to reduce load. 
diff --git a/services/pocketbase/pb_hooks/pages/(site)/+layout.ejs b/services/pocketbase/pb_hooks/pages/(site)/+layout.ejs
index 2b966f64..e1c18d26 100644
--- a/services/pocketbase/pb_hooks/pages/(site)/+layout.ejs
+++ b/services/pocketbase/pb_hooks/pages/(site)/+layout.ejs
@@ -71,8 +71,9 @@
     <footer class="footer mt-5">
       <div class="content has-text-centered">
         <p>
-          <strong>Futureporn <%= meta('version') %></strong> made with love by <a href="https://cjclippy.carrd.co/">@CJ_Clippy</a>.
+          <strong>🔞💦 Futureporn <%= meta('version') %></strong> made with love by <a href="https://cjclippy.carrd.co/">@CJ_Clippy</a>.
         </p>
+        <p><i><a href="/about">Dedication to the preservation of lewdtuber history</a></i></p>
 
 
         <div class="container">
diff --git a/services/pocketbase/pb_hooks/pages/(site)/about/index.ejs b/services/pocketbase/pb_hooks/pages/(site)/about/index.ejs
new file mode 100644
index 00000000..769b9e73
--- /dev/null
+++ b/services/pocketbase/pb_hooks/pages/(site)/about/index.ejs
@@ -0,0 +1,19 @@
+<div class="content">
+  <h1 class="heading is-1">About</h1>
+  <p><b>R18</b>. For adults only.</p>
+
+  <p><i>Dedication to the preservation of VTuber history.</i></p>
+
+  <h2 class="heading is-2">Mission</h2>
+
+  <p>We archive what would otherwise disappear. Streams vanish, accounts get banned, VODs get wiped. We're here to make sure VTuber culture doesn't evaporate overnight.</p>
+
+  <p>Our goal is to document creators' work so fans, researchers, and future communities can look back on it.</p>
+
+  <p>We record and share and want our favorite lewdtuber moments to last long into the future.</p>
+
+
+  <h2 class="heading is-2">Our patrons keep us going</h2>
+
+  <p>We couldn't do this work without continuing support from our <a href="/patrons">patrons</a></p>
+</div>
\ No newline at end of file
diff --git a/services/pocketbase/pb_hooks/pages/(site)/auth/_private/oauth2.ejs b/services/pocketbase/pb_hooks/pages/(site)/auth/_private/oauth2.ejs
index 0192c10b..a376c54b 100644
--- a/services/pocketbase/pb_hooks/pages/(site)/auth/_private/oauth2.ejs
+++ b/services/pocketbase/pb_hooks/pages/(site)/auth/_private/oauth2.ejs
@@ -31,7 +31,7 @@
 <% providers.forEach(provider => { %>
 <form method="POST" action="/auth/oauth/login">
   <input type="hidden" name="provider" value="<%=provider.name%>">
-  <button class="button" type="submit">Log in with <%=provider.displayName%></button>
+  <button class="button is-primary" type="submit">Log in with <%=provider.displayName%></button>
 </form>
 <% }) %>
 <% if (providers.length === 0) { %>
diff --git a/services/pocketbase/pb_hooks/pages/(site)/vods/[id]/index.ejs b/services/pocketbase/pb_hooks/pages/(site)/vods/[id]/index.ejs
index 9d53aa14..3d63cc55 100644
--- a/services/pocketbase/pb_hooks/pages/(site)/vods/[id]/index.ejs
+++ b/services/pocketbase/pb_hooks/pages/(site)/vods/[id]/index.ejs
@@ -1,3 +1,6 @@
+<% const buttplugSVG = '<svg xmlns="http://www.w3.org/2000/svg" viewBox="-5 -10 51.480372 52.012249"><path d="m 20.221554,24.21173 3.6797,3.6797 c 0.53906,0.53906 0.73047,1.3281 0.48828,2.058599 l -1.6211,4.878901 c -0.51953,1.558599 -0.30859,3.261698 0.578121,4.6719 0.980469,1.539099 2.952215,2.636214 4.730499,2.5 5.799113,-1.246595 18.520815,-15.042558 18.4025,-18.562601 -0.200697,-2.557237 -2.4414,-5.441399 -5.4414,-5.441399 -0.57813,0 -1.1602,0.08984 -1.7188,0.28125 -1.808761,0.530862 -3.664125,1.462123 -5.48046,1.71874 -0.533759,0.07541 -1.078099,-0.21094 -1.4492,-0.57812 l -3.6797,-3.679701 C 31.639694,10.239 30.889819,4.5008743 26.659194,0.2699988 22.42882,-3.960626 11.331194,-10.000001 3.4091936,-10 c -16.3546746,0.5198707 -4.9007052,25.702135 1.3475999,32.1723 4.7260967,4.893907 9.7749655,4.584497 15.4647605,2.03943 z" fill="currentColor"/></svg>' %>
+
+
 <% if (!data?.user) { %>
 <div class="notification is-warning">
   <span class="icon-text">
@@ -16,9 +19,9 @@
 </div>
 <% } else { %>
 
-<div class="players" <% if (data?.user?.get('patron')) { %> data-signals="{'selected':'cdn1'}" <% } else { %> data-signals="{'selected':'cdn2'}" <% } %>>
+<div class="players" <% if (data?.user?.get('patron')) { %> data-signals="{'selected':'vibeui'}" <% } else { %> data-signals="{'selected':'cdn2'}" <% } %>>
 
-  <!-- CDN2 Player (B2) -->
+  <%#  CDN2 Player (B2) %>
   <div class="b2-player" data-show="$selected == 'cdn2'">
     <video controls <% if (!data?.user?.get('patron')) { %> preload="none" <% } %>>
       <% if (data.vod?.get('videoSrcB2')) { %>
@@ -29,22 +32,115 @@
     </video>
   </div>
 
-  <!-- CDN1 Player (Mux, patrons only) -->
   <% if (data?.user?.get('patron')) { %>
+  <%# CDN1 Player (Mux, patrons only) %>
   <div class="mux-player" data-show="$selected == 'cdn1'">
     <script src="https://cdn.jsdelivr.net/npm/@mux/mux-player" defer></script>
     <mux-player playback-id="<%= data.vod?.get('muxPlaybackId') %>" playback-token="<%= data.vod?.get('muxPlaybackToken') %>"></mux-player>
   </div>
+
+
+  <%# vibeui player (patrons only) %>
+  <% if (
+    data?.user?.get('patron') && 
+    data?.vod?.get('funscriptThrust') || data?.vod?.get('funscriptVibrate') &&
+    data?.vod?.get('hlsPlaylist')
+  ) { %>
+
+
+  <div class="vibeui-player" data-show="$selected == 'vibeui'">
+    <style>
+      .vjs-menu-button.vjs-funscript-selector button {
+        /* match control size */
+        display: flex;
+        /* center contents */
+        align-items: center;
+        justify-content: center;
+        padding: 0;
+        color: white;
+      }
+
+      .vjs-menu-button.vjs-funscript-selector button::before {
+        content: "";
+        display: block;
+        width: 1.5em;
+        height: 1.5em;
+        background: no-repeat center/contain url("data:image/svg+xml;utf8,<svg xmlns='http://www.w3.org/2000/svg' viewBox='-5 -10 51.480372 52.012249'><path d='m 20.221554,24.21173 3.6797,3.6797 c 0.53906,0.53906 0.73047,1.3281 0.48828,2.058599 l -1.6211,4.878901 c -0.51953,1.558599 -0.30859,3.261698 0.578121,4.6719 0.980469,1.539099 2.952215,2.636214 4.730499,2.5 5.799113,-1.246595 18.520815,-15.042558 18.4025,-18.562601 -0.200697,-2.557237 -2.4414,-5.441399 -5.4414,-5.441399 -0.57813,0 -1.1602,0.08984 -1.7188,0.28125 -1.808761,0.530862 -3.664125,1.462123 -5.48046,1.71874 -0.533759,0.07541 -1.078099,-0.21094 -1.4492,-0.57812 l -3.6797,-3.679701 C 31.639694,10.239 30.889819,4.5008743 26.659194,0.2699988 22.42882,-3.960626 11.331194,-10.000001 3.4091936,-10 c -16.3546746,0.5198707 -4.9007052,25.702135 1.3475999,32.1723 4.7260967,4.893907 9.7749655,4.584497 15.4647605,2.03943 z' fill='white'/></svg>");
+      }
+    </style>
+    <link href="https://cdn.jsdelivr.net/npm/video.js@8/dist/video-js.min.css" rel="stylesheet" />
+    <script src="https://cdn.jsdelivr.net/npm/video.js@8.23.4/dist/video.min.js"></script>
+    <script src="https://cdn.jsdelivr.net/npm/buttplug@3.2.2/dist/web/buttplug.min.js"></script>
+    <script src="/Funscripts.js"></script>
+    <script>
+      function collectFunscripts() {
+        return Array.from(document.querySelectorAll('.funscript'))
+          .map(div => {
+            const url = div.getAttribute('data-url');
+            if (!url) return null;
+
+            const name = url.split('/').pop().split('?')[0]; // filename without query
+            return {
+              name,
+              url
+            };
+          })
+          .filter(Boolean); // remove nulls
+      }
+
+      window.HELP_IMPROVE_VIDEOJS = false; // disable videojs tracking
+
+      document.addEventListener("DOMContentLoaded", () => {
+        const player = videojs('vibeplayer');
+
+        player.ready(() => {
+          console.log('setting up plugins')
+          const funscripts = collectFunscripts()
+          console.log(funscripts)
+          const funscriptsOptions = {
+            buttplugClientName: "futureporn.net",
+            debug: true,
+            funscripts,
+          }
+
+          player.funscriptPlayer(funscriptsOptions);
+
+
+          // let qualityLevels = player.qualityLevels();
+          // console.log(qualityLevels)
+          // player.hlsQualitySelector({
+          //   displayCurrentQuality: true,
+          // });
+        })
+      })
+    </script>
+    <video id="vibeplayer" class="video-js vjs-fluid" controls preload="auto" poster="/api/files/vods/<%= data.vod?.get('id') %>/<%= data.vod?.get('thumbnail') %>" data-playlist="<%= data.vod?.get('hlsPlaylist') %>">
+      <source src="/api/hls/<%= data.vod?.get('hlsPlaylist') %>" type="application/x-mpegURL">
+      <track kind="captions" src="<%= data.vod?.get('asrVtt') %>" srclang="en" label="English" default>
+      <div class="funscript" data-url="/api/files/vods/<%= data.vod?.get('id') %>/<%= data.vod?.get('funscriptVibrate') %>"></div>
+      <div class="funscript" data-url="/api/files/vods/<%= data.vod?.get('id') %>/<%= data.vod?.get('funscriptThrust') %>"></div>
+      <p class="vjs-no-js">
+        To view this video please enable JavaScript, and consider upgrading to a
+        web browser that
+        <a href="https://videojs.com/html5-video-support/" target="_blank">
+          supports HTML5 video
+        </a>
+      </p>
+    </video>
+  </div>
+  <% } %> <%# /if %>
   <% } %>
 
 </div>
-<!-- Player toggle buttons -->
+<%# Player toggle buttons %>
 <nav class="level mt-5">
   <div class="level-left">
     <% if (data?.vod?.get('muxAssetId')) { %>
     <% if (data?.user?.get('patron')) { %>
+    <button class="button is-success" data-on-click="$selected = 'vibeui'">vibe player</button>
     <button class="button is-success" data-on-click="$selected = 'cdn1'">CDN1 player</button>
     <% } else { %>
+    <button disabled class="button is-danger">vibe player (patrons only)</button>
     <button disabled class="button is-danger">CDN1 player (patrons only)</button>
     <% } %>
     <% } %>
@@ -97,12 +193,109 @@
   <div class="p-2 level"><%- data.vod?.get('notes') %></div>
   <% } %>
 
-  <% if (data.vod?.get('thumbnail')) { %>
-  <p><b id="thumbnail">Thumbnail:</b></p>
-  <figure class="image">
-    <img src="/api/files/vods/<%= data.vod?.get('id') %>/<%= data.vod?.get('thumbnail') %>" />
-  </figure>
+
+  <% if (data.vod?.get('funscriptThrust') || data.vod?.get('funscriptVibrate')) { %>
+  <p><b>Funscripts</b> <i class="icon is-small"><%- buttplugSVG %></i></p>
+
+  <div class="buttons">
+
+    <% if (data.vod?.get('funscriptThrust') && data?.user?.get('patron')) { %>
+    <a class="funscript-thrust button" href="/api/download/<%= data.vod.get('funscriptThrust') %>">
+      thrust
+    </a>
+    <% } else { %>
+    <button class="button" disabled>thrust funscript (patrons only)</button>
+    <% } %>
+
+
+    <% if (data.vod?.get('funscriptVibrate') && data?.user?.get('patron')) { %>
+    <a class="funscript-vibrate button" href="/api/download/<%= data.vod.get('funscriptVibrate') %>">
+      vibrate
+    </a>
+    <% } else { %>
+    <button class="button" disabled>vibrate funscript (patrons only)</button>
+    <% } %>
+  </div>
+
+  <% if (data?.user?.get('patron')) { %>
+
+
+  <div class="notification">
+    <div class="content">
+      To get started with Futureporn vibrator integration, follow these steps.
+      <ol type="1" class="is-lower-alpha">
+        <li>Download and run <a target="_blank" href="https://intiface.com/central/">Intiface Central</a> on your device.</li>
+        <li>Pair your sex toy with Intiface Central.</li>
+        <li>Reload this page.</li>
+        <li>Click the vibe player button.</li>
+        <li>(optional) Assign funscripts to each of your sex toy's actuators in the video menu.</li>
+        <li>Play the video. Your vibrator will activate when Lovense UI is present in the video.</li>
+      </ol>
+      <figure class="image is-128x128">
+        <img src="/vibrator-controls.png" />
+      </figure>
+    </div>
+  </div>
   <% } %>
+
+
+
+  <% } %>
+
+  <% if (data.vod?.get('thumbnail')) { %>
+  <div class="mb-5">
+    <p><b id="thumbnail">Thumbnail:</b></p>
+    <figure class="image">
+      <img width="830" height="465" src="/api/files/vods/<%= data.vod?.get('id') %>/<%= data.vod?.get('thumbnail') %>" />
+    </figure>
+  </div>
+  <% } %>
+
+
+
+
+
+  <h2 id="advanced" class="title is-2">Advanced VOD Details</h2>
+  <h3 class="title is-3">Download links</h3>
+  <div class="mb-5">
+    <% if (data?.user?.get('patron')) { %>
+    <p><b>HLS Playlist:</b> <a href="/api/hls/<%= data.vod?.get('hlsPlaylist') %>"><%= data.vod?.get('hlsPlaylist') %> </a></p>
+    <p><b>Source Video: </b><a href="/api/download/<%= data.vod?.get('sourceVideo') %>"><%= data.vod?.get('sourceVideo') %> </a></p>
+    </p>
+    <% } else { %>
+    <p><b>HLS Playlist:</b> <span><i>(patrons only)</i></span></p>
+    <p><b>Source Video: </b> <span><i>(patrons only)</i></span></p>
+    </p>
+    <% } %>
+  </div>
+
+
+  <% if (data?.vod.get('audioIntegratedLufs')) { %>
+  <h3 id="audio-analysis" class="title is-3">Audio Analysis</h3>
+  <div class="ml-5 mt-5 mb-5">
+    <div class="content">
+      <p>
+        <abbr title="Loudness Units relative to Full Scale - the overall perceived loudness of the audio">LUFS-I</abbr>
+        <strong><%= data?.vod.get('audioIntegratedLufs') %></strong>
+      </p>
+      <p>
+        <abbr title="Loudness Range - the dynamic range of the audio in LUFS">LRA</abbr>
+        <strong><%= data?.vod.get('audioLoudnessRange') %></strong>
+      </p>
+      <p>
+        <abbr title="True Peak: the maximum instantaneous signal level in dBTP">TP</abbr>
+        <strong><%= data?.vod.get('audioTruePeak') %></strong>
+      </p>
+    </div>
+    <% } %>
+  </div>
+
+</div> <%# /.vod-details %>
+
+
+
+
+
 </div>
 
 <div class="mb-5"></div>
\ No newline at end of file
diff --git a/services/pocketbase/pb_hooks/pages/(site)/vt/index.ejs b/services/pocketbase/pb_hooks/pages/(site)/vt/index.ejs
index 47ab9cc3..af05f9a1 100644
--- a/services/pocketbase/pb_hooks/pages/(site)/vt/index.ejs
+++ b/services/pocketbase/pb_hooks/pages/(site)/vt/index.ejs
@@ -4,5 +4,7 @@
 </script>
 
 
-<h3>Vtubers</h3>
-<%- include('vtuber-list.ejs', { vtubers }) %>
\ No newline at end of file
+<div class="content">
+  <h1 class="heading is-1">Vtubers</h1>
+  <%- include('vtuber-list.ejs', { vtubers }) %>
+</div>
\ No newline at end of file
diff --git a/services/pocketbase/pb_hooks/pages/_private/vod-list.ejs b/services/pocketbase/pb_hooks/pages/_private/vod-list.ejs
index 2fdfdd88..25478977 100644
--- a/services/pocketbase/pb_hooks/pages/_private/vod-list.ejs
+++ b/services/pocketbase/pb_hooks/pages/_private/vod-list.ejs
@@ -1,3 +1,5 @@
+<% const buttplugSVG = '<svg xmlns="http://www.w3.org/2000/svg" viewBox="-5 -10 51.480372 52.012249"><path d="m 20.221554,24.21173 3.6797,3.6797 c 0.53906,0.53906 0.73047,1.3281 0.48828,2.058599 l -1.6211,4.878901 c -0.51953,1.558599 -0.30859,3.261698 0.578121,4.6719 0.980469,1.539099 2.952215,2.636214 4.730499,2.5 5.799113,-1.246595 18.520815,-15.042558 18.4025,-18.562601 -0.200697,-2.557237 -2.4414,-5.441399 -5.4414,-5.441399 -0.57813,0 -1.1602,0.08984 -1.7188,0.28125 -1.808761,0.530862 -3.664125,1.462123 -5.48046,1.71874 -0.533759,0.07541 -1.078099,-0.21094 -1.4492,-0.57812 l -3.6797,-3.679701 C 31.639694,10.239 30.889819,4.5008743 26.659194,0.2699988 22.42882,-3.960626 11.331194,-10.000001 3.4091936,-10 c -16.3546746,0.5198707 -4.9007052,25.702135 1.3475999,32.1723 4.7260967,4.893907 9.7749655,4.584497 15.4647605,2.03943 z" fill="currentColor"/></svg>' %>
+
 <% if (Array.isArray(data.vods.items) && data.vods.items.length > 0) { %>
 <div class="table-container">
   <table class="table is-striped is-hoverable is-fullwidth">
@@ -8,6 +10,7 @@
         <th>Thumbnail</th>
         <th>Torrent</th>
         <th>Magnet Link</th>
+        <th>Funscript</th>
       </tr>
     </thead>
     <tbody>
@@ -60,7 +63,17 @@
                   <path fill="#f8312f" d="M11 23v-7.94c0-2.75 2.2-5.04 4.95-5.06c2.78-.03 5.05 2.23 5.05 5v8h8v-8c0-7.18-5.82-13-13-13S3 7.82 3 15v8z" />
                 </g>
               </svg>
-            </span></a>
+            </span>
+          </a>
+          <% } %>
+        </td>
+        <td>
+          <% if (vod?.funscriptVibrate || vod?.vunscriptThrust) { %>
+          <a target="_blank" href="/vods/<%= vod.id %>#funscripts">
+            <span class="icon">
+              <%- buttplugSVG %>
+            </span>
+          </a>
           <% } %>
         </td>
       </tr>
diff --git a/services/pocketbase/pb_migrations/1764156924_updated_vods.js b/services/pocketbase/pb_migrations/1764156924_updated_vods.js
new file mode 100644
index 00000000..d00fc4eb
--- /dev/null
+++ b/services/pocketbase/pb_migrations/1764156924_updated_vods.js
@@ -0,0 +1,29 @@
+/// <reference path="../pb_data/types.d.ts" />
+migrate((app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // add field
+  collection.fields.addAt(17, new Field({
+    "hidden": false,
+    "id": "file3704076214",
+    "maxSelect": 1,
+    "maxSize": 0,
+    "mimeTypes": [],
+    "name": "torrent",
+    "presentable": false,
+    "protected": false,
+    "required": false,
+    "system": false,
+    "thumbs": [],
+    "type": "file"
+  }))
+
+  return app.save(collection)
+}, (app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // remove field
+  collection.fields.removeById("file3704076214")
+
+  return app.save(collection)
+})
diff --git a/services/pocketbase/pb_migrations/1764481404_updated_vods.js b/services/pocketbase/pb_migrations/1764481404_updated_vods.js
new file mode 100644
index 00000000..5d04fe9d
--- /dev/null
+++ b/services/pocketbase/pb_migrations/1764481404_updated_vods.js
@@ -0,0 +1,48 @@
+/// <reference path="../pb_data/types.d.ts" />
+migrate((app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // add field
+  collection.fields.addAt(18, new Field({
+    "hidden": false,
+    "id": "file2376425770",
+    "maxSelect": 1,
+    "maxSize": 0,
+    "mimeTypes": [],
+    "name": "funscriptVibrate",
+    "presentable": false,
+    "protected": false,
+    "required": false,
+    "system": false,
+    "thumbs": [],
+    "type": "file"
+  }))
+
+  // add field
+  collection.fields.addAt(19, new Field({
+    "hidden": false,
+    "id": "file4278982190",
+    "maxSelect": 1,
+    "maxSize": 0,
+    "mimeTypes": [],
+    "name": "funscriptThrust",
+    "presentable": false,
+    "protected": false,
+    "required": false,
+    "system": false,
+    "thumbs": [],
+    "type": "file"
+  }))
+
+  return app.save(collection)
+}, (app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // remove field
+  collection.fields.removeById("file2376425770")
+
+  // remove field
+  collection.fields.removeById("file4278982190")
+
+  return app.save(collection)
+})
diff --git a/services/pocketbase/pb_migrations/1764574888_updated_vods.js b/services/pocketbase/pb_migrations/1764574888_updated_vods.js
new file mode 100644
index 00000000..3db843e8
--- /dev/null
+++ b/services/pocketbase/pb_migrations/1764574888_updated_vods.js
@@ -0,0 +1,29 @@
+/// <reference path="../pb_data/types.d.ts" />
+migrate((app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // add field
+  collection.fields.addAt(20, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text3367203181",
+    "max": 0,
+    "min": 0,
+    "name": "hlsPlaylist",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  return app.save(collection)
+}, (app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // remove field
+  collection.fields.removeById("text3367203181")
+
+  return app.save(collection)
+})
diff --git a/services/pocketbase/pb_migrations/1764648351_updated_vods.js b/services/pocketbase/pb_migrations/1764648351_updated_vods.js
new file mode 100644
index 00000000..58627e0e
--- /dev/null
+++ b/services/pocketbase/pb_migrations/1764648351_updated_vods.js
@@ -0,0 +1,48 @@
+/// <reference path="../pb_data/types.d.ts" />
+migrate((app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // remove field
+  collection.fields.removeById("text3367203181")
+
+  // add field
+  collection.fields.addAt(20, new Field({
+    "hidden": false,
+    "id": "file3367203181",
+    "maxSelect": 1,
+    "maxSize": 0,
+    "mimeTypes": [],
+    "name": "hlsPlaylist",
+    "presentable": false,
+    "protected": false,
+    "required": false,
+    "system": false,
+    "thumbs": [],
+    "type": "file"
+  }))
+
+  return app.save(collection)
+}, (app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // add field
+  collection.fields.addAt(20, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text3367203181",
+    "max": 0,
+    "min": 0,
+    "name": "hlsPlaylist",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  // remove field
+  collection.fields.removeById("file3367203181")
+
+  return app.save(collection)
+})
diff --git a/services/pocketbase/pb_migrations/1764723356_updated_vods.js b/services/pocketbase/pb_migrations/1764723356_updated_vods.js
new file mode 100644
index 00000000..00fada4a
--- /dev/null
+++ b/services/pocketbase/pb_migrations/1764723356_updated_vods.js
@@ -0,0 +1,48 @@
+/// <reference path="../pb_data/types.d.ts" />
+migrate((app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // remove field
+  collection.fields.removeById("file3367203181")
+
+  // add field
+  collection.fields.addAt(20, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text3367203181",
+    "max": 0,
+    "min": 0,
+    "name": "hlsPlaylist",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  return app.save(collection)
+}, (app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // add field
+  collection.fields.addAt(20, new Field({
+    "hidden": false,
+    "id": "file3367203181",
+    "maxSelect": 1,
+    "maxSize": 0,
+    "mimeTypes": [],
+    "name": "hlsPlaylist",
+    "presentable": false,
+    "protected": false,
+    "required": false,
+    "system": false,
+    "thumbs": [],
+    "type": "file"
+  }))
+
+  // remove field
+  collection.fields.removeById("text3367203181")
+
+  return app.save(collection)
+})
diff --git a/services/pocketbase/pb_migrations/1764758197_updated_vods.js b/services/pocketbase/pb_migrations/1764758197_updated_vods.js
new file mode 100644
index 00000000..123e69d1
--- /dev/null
+++ b/services/pocketbase/pb_migrations/1764758197_updated_vods.js
@@ -0,0 +1,48 @@
+/// <reference path="../pb_data/types.d.ts" />
+migrate((app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // remove field
+  collection.fields.removeById("file2376425770")
+
+  // remove field
+  collection.fields.removeById("file4278982190")
+
+  return app.save(collection)
+}, (app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // add field
+  collection.fields.addAt(18, new Field({
+    "hidden": false,
+    "id": "file2376425770",
+    "maxSelect": 1,
+    "maxSize": 0,
+    "mimeTypes": [],
+    "name": "funscriptVibrate",
+    "presentable": false,
+    "protected": false,
+    "required": false,
+    "system": false,
+    "thumbs": [],
+    "type": "file"
+  }))
+
+  // add field
+  collection.fields.addAt(19, new Field({
+    "hidden": false,
+    "id": "file4278982190",
+    "maxSelect": 1,
+    "maxSize": 0,
+    "mimeTypes": [],
+    "name": "funscriptThrust",
+    "presentable": false,
+    "protected": false,
+    "required": false,
+    "system": false,
+    "thumbs": [],
+    "type": "file"
+  }))
+
+  return app.save(collection)
+})
diff --git a/services/pocketbase/pb_migrations/1764758246_updated_vods.js b/services/pocketbase/pb_migrations/1764758246_updated_vods.js
new file mode 100644
index 00000000..2f9f858a
--- /dev/null
+++ b/services/pocketbase/pb_migrations/1764758246_updated_vods.js
@@ -0,0 +1,105 @@
+/// <reference path="../pb_data/types.d.ts" />
+migrate((app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // add field
+  collection.fields.addAt(19, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text2376425770",
+    "max": 0,
+    "min": 0,
+    "name": "funscriptVibrate",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  // add field
+  collection.fields.addAt(20, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text4278982190",
+    "max": 0,
+    "min": 0,
+    "name": "funscriptThrust",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  // add field
+  collection.fields.addAt(21, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text7357270",
+    "max": 0,
+    "min": 0,
+    "name": "audioIntegratedLufs",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  // add field
+  collection.fields.addAt(22, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text513636770",
+    "max": 0,
+    "min": 0,
+    "name": "audioLoudnessRange",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  // add field
+  collection.fields.addAt(23, new Field({
+    "autogeneratePattern": "",
+    "hidden": false,
+    "id": "text2917960678",
+    "max": 0,
+    "min": 0,
+    "name": "audioTruePeak",
+    "pattern": "",
+    "presentable": false,
+    "primaryKey": false,
+    "required": false,
+    "system": false,
+    "type": "text"
+  }))
+
+  return app.save(collection)
+}, (app) => {
+  const collection = app.findCollectionByNameOrId("pbc_144770472")
+
+  // remove field
+  collection.fields.removeById("text2376425770")
+
+  // remove field
+  collection.fields.removeById("text4278982190")
+
+  // remove field
+  collection.fields.removeById("text7357270")
+
+  // remove field
+  collection.fields.removeById("text513636770")
+
+  // remove field
+  collection.fields.removeById("text2917960678")
+
+  return app.save(collection)
+})
diff --git a/services/pocketbase/pb_public/Funscripts.js b/services/pocketbase/pb_public/Funscripts.js
new file mode 100644
index 00000000..b77bc107
--- /dev/null
+++ b/services/pocketbase/pb_public/Funscripts.js
@@ -0,0 +1,305 @@
+const MenuButton = videojs.getComponent('MenuButton');
+const VideoJsMenuItem = videojs.getComponent('MenuItem');
+
+/* ------------------------- Menu Components ------------------------- */
+
+class ActuatorMenuButton extends MenuButton {
+  constructor(player, { actuator, funscripts = [], onAssign } = {}) {
+    super(player, {
+      title: actuator?.name ?? 'Actuator',
+      name: 'ActuatorMenuButton',
+      actuator,
+      funscripts,
+      onAssign,
+    });
+  }
+
+  createItems() {
+    const { actuator, funscripts, onAssign } = this.options_ || {};
+    if (!actuator || !funscripts?.length) return [];
+
+    return funscripts.map(funscript =>
+      new FunscriptMenuItem(this.player_, {
+        actuator,
+        funscript,
+        onAssign,
+      })
+    );
+  }
+}
+
+class FunscriptMenuItem extends VideoJsMenuItem {
+  constructor(player, { actuator, funscript, onAssign } = {}) {
+    super(player, { label: funscript.name, selectable: true });
+
+    this.actuator = actuator;
+    this.funscript = funscript;
+    this.onAssign = onAssign;
+
+    // Pre-select if this actuator already has this funscript assigned
+    this.selected(this.actuator.assignedFunscript?.url === this.funscript.url);
+
+    this.on('click', () => {
+      if (!this.actuator || !this.onAssign) return;
+
+      // Use centralized assignment method
+      this.onAssign?.(this, this.actuator, this.funscript);
+    });
+  }
+}
+
+/* ------------------------- Helper ------------------------- */
+function pickInitialFunscript(actuatorType, availableFunscripts) {
+  actuatorType = actuatorType.toLowerCase();
+
+  if (actuatorType.includes('vibrator')) {
+    return availableFunscripts.find(f => f.name.includes('vibrate')) ?? availableFunscripts[0];
+  }
+
+  if (actuatorType.includes('thrust')) {
+    return availableFunscripts.find(f => f.name.includes('thrust')) ?? availableFunscripts[0];
+  }
+
+  return availableFunscripts[0];
+}
+
+/* ------------------------- Main Plugin ------------------------- */
+
+class FunscriptPlayer {
+  constructor(player, { debug = false, funscripts, ...options } = {}) {
+    this.player = player;
+    this.debug = debug;
+    this.funscriptCache = new Map(); // key: url, value: parsed funscript
+    this.funscripts = (funscripts || []).map(f => {
+      if (typeof f === 'string') {
+        const url = f;
+        const name = url.split('/').pop().split('?')[0];
+        return { name, url };
+      }
+      return f;
+    });
+    this.options = options;
+
+    this.menuButton = null;
+    this.devices = [];
+
+    player.on('toyConnected', () => this.refreshMenu());
+    player.on('toyDisconnected', () => this.refreshMenu());
+    player.on('pause', () => this.stopAllDevices());
+  }
+
+  async init() {
+    const connector = new window.buttplug.ButtplugBrowserWebsocketClientConnector("ws://localhost:12345");
+    this.client = new window.buttplug.ButtplugClient(this.options?.buttplugClientName || "Funscripts VideoJS Client");
+
+    this.client.addListener("deviceadded", device => {
+      this.addDevice(device);
+      this.debug && console.log("Device added:", device.name, device);
+      this.player.trigger('toyConnected');
+    });
+
+    this.client.addListener("deviceremoved", device => {
+      this.removeDevice(device);
+      this.debug && console.log("Device removed:", device.name);
+      this.player.trigger('toyDisconnected');
+    });
+
+    try {
+      await this.client.connect(connector);
+      await this.client.startScanning();
+      this.initVideoListeners();
+      this.debug && console.log("[buttplug] Connected and scanning");
+    } catch (err) {
+      console.error("[buttplug] Connection error:", err);
+    }
+  }
+
+  async loadFunscript(funscript) {
+    try {
+      const response = await fetch(funscript.url);
+      if (!response.ok) throw new Error(`Failed to load ${funscript.name}`);
+      return await response.json();
+    } catch (err) {
+      console.error("[funscripts] Error loading funscript:", funscript.name, err);
+      return null;
+    }
+  }
+
+  getFunscriptValueAtTime(funscriptData, timeMs) {
+    if (!funscriptData?.actions?.length) return null;
+
+    let lastAction = null;
+    for (const action of funscriptData.actions) {
+      if (action.at <= timeMs) {
+        lastAction = action;
+      } else {
+        break;
+      }
+    }
+    return lastAction ? lastAction.pos / 100 : null; // normalize 0–1
+  }
+
+  initVideoListeners() {
+    this.player.on('pause', () => {
+      this.debug && console.log('Video paused. Stopping devices...');
+      this.stopAllDevices();
+    });
+
+    this.player.on('timeupdate', () => {
+      if (this.player.paused() || this.player.ended()) return;
+
+      const currentTime = this.player.currentTime() * 1000;
+
+      this.devices.forEach(device => {
+        device.actuators.forEach(actuator => {
+          const fun = actuator.assignedFunscript;
+          if (!fun) return;
+
+          const funscriptData = this.funscriptCache.get(fun.url);
+          if (!funscriptData) return;
+
+          const position = this.getFunscriptValueAtTime(funscriptData, currentTime);
+          this.debug && console.log(`${fun.name} position=${position}`);
+
+          if (position !== null) {
+            this.sendToDevice(device, actuator, position);
+          }
+        });
+      });
+    });
+  }
+
+  async stopAllDevices() {
+    if (!this.client || !this.client.devices) return;
+
+    for (const [deviceIndex, device] of this.client.devices.entries()) {
+      const scalarCmds = device.messageAttributes?.ScalarCmd || [];
+      for (const cmd of scalarCmds) {
+        try {
+          await this.sendToDevice(device, {
+            index: cmd.Index,
+            name: `${device.name} - ${cmd.ActuatorType} #${cmd.Index + 1}`
+          }, 0);
+        } catch (err) {
+          console.warn(`[buttplug] Failed to stop ${device.name}`, err);
+        }
+      }
+    }
+  }
+
+  async sendToDevice(device, actuator, position) {
+    try {
+      this.client.devices[device.index].vibrate(position);
+      if (this.debug) {
+        console.log(`[buttplug] Sent to ${actuator.name}:`, position);
+      }
+    } catch (err) {
+      console.error("[buttplug] Error sending command:", err);
+    }
+  }
+
+  /* ------------------------- Device Tracking ------------------------- */
+
+  addDevice(device) {
+    const scalarCmds = device._deviceInfo?.DeviceMessages?.ScalarCmd || [];
+
+    const actuators = scalarCmds.map((cmd, i) => {
+      const assignedFunscript = pickInitialFunscript(cmd.ActuatorType, this.funscripts);
+
+      if (assignedFunscript && !this.funscriptCache.has(assignedFunscript.url)) {
+        this.loadFunscript(assignedFunscript).then(data => {
+          if (data) this.funscriptCache.set(assignedFunscript.url, data);
+        });
+      }
+
+      return {
+        name: `${device.name} - ${cmd.ActuatorType} #${cmd.Index + 1}`,
+        type: cmd.ActuatorType,
+        index: cmd.Index,
+        assignedFunscript,
+        deviceIndex: this.devices.length, // track device index
+      };
+    });
+
+    this.devices.push({
+      name: device._deviceInfo.DeviceName,
+      index: this.devices.length,
+      actuators,
+    });
+  }
+
+  removeDevice(device) {
+    this.devices = this.devices.filter(d => d.name !== device.name);
+  }
+
+  /* ------------------------- Central Assignment ------------------------- */
+  async assignFunscript(deviceIndex, actuatorIndex, funscript) {
+    const actuator = this.devices[deviceIndex]?.actuators[actuatorIndex];
+    if (!actuator) return;
+
+    actuator.assignedFunscript = funscript;
+
+    if (!this.funscriptCache.has(funscript.url)) {
+      const data = await this.loadFunscript(funscript);
+      if (data) this.funscriptCache.set(funscript.url, data);
+    }
+
+    this.debug && console.log(`Assigned ${funscript.name} to ${actuator.name}`);
+  }
+
+  /* ------------------------- Menu Management ------------------------- */
+
+  createMenuButtons() {
+    if (this.menuButtons?.length) {
+      this.menuButtons.forEach(btn => this.player.controlBar.removeChild(btn));
+    }
+    this.menuButtons = [];
+
+    this.devices.forEach(device => {
+      device.actuators.forEach(actuator => {
+        const button = new ActuatorMenuButton(this.player, {
+          actuator,
+          funscripts: this.funscripts,
+          onAssign: async (item, act, funscript) => {
+            await this.assignFunscript(device.index, act.index, funscript);
+
+            const menuItems = item.parentComponent_.children()
+              .filter(c => c instanceof FunscriptMenuItem);
+            menuItems.forEach(i => {
+              i.selected(i.funscript.url === funscript.url);
+            });
+          }
+        });
+
+        const placementIndex = Math.max(
+          0,
+          this.options?.placementIndex ?? (this.player.controlBar.children().length - 2)
+        );
+        this.player.controlBar.addChild(button, { componentClass: 'funscriptSelector' }, placementIndex);
+
+        setTimeout(() => {
+          button.addClass('vjs-funscript-selector');
+          button.removeClass('vjs-hidden');
+        }, 0);
+
+        this.menuButtons.push(button);
+      });
+    });
+  }
+
+  refreshMenu() {
+    this.createMenuButtons();
+  }
+}
+
+/* ------------------------- Register Plugin ------------------------- */
+
+videojs.registerPlugin("funscriptPlayer", async function (options) {
+  try {
+    const plugin = new FunscriptPlayer(this, options);
+    await plugin.init();
+    return plugin;
+  } catch (err) {
+    console.error("Funscripts plugin failed to initialize:", err);
+  }
+});
diff --git a/services/pocketbase/pb_public/vibrator-controls.png b/services/pocketbase/pb_public/vibrator-controls.png
new file mode 100644
index 0000000000000000000000000000000000000000..2ea758efba6326de869ec4e0762fa22b581ec985
GIT binary patch
literal 33607
zcmV)FK)=6<P)<h;3K|Lk000e1NJLTq006oG006cK0ssI2;jRGP00009a7bBm000ie
z000ie0hKEb8vp<x07*naRCt`Uz3H+g$&nuRxkqH?+3s5V+6%e?G`g`4W{4&@8;!If
zX*6Oe{gCNDWu`~aW9R{7(o0BxWHg#&)C|cP&PL2&u*{&>TDq!k-R&%y8R7ovN8~wo
zsp>`p=!tHtx^?b3nQ=TkJU;(?Nf~PuW1P$;TiaVz9YuujKJ}}vZCA@~wTxBOG~+tP
z7=mh0RaF%M04aZ690Ulc5F{_WE`%r`fY1R{=|)QF`Kk7OUW5$5q<q>zR)C0-E<_Xn
z6cG`vW4*Jry}!G&zqNC1Yj-rMt8wVGJL;aFo*o|_JUcl($=OJ{d(L^eT(rw&O1(Qp
z<jVg3&h8H20H~RCx^KRTz(oX%Bq14qP|KGBpl~OhA|jPUrfBoYNt;eB7~BOAp{R-|
zgm98VDj*O6T;QYuga{x2VC!p35Cw$N5gzl7AiTEw8#iy<`lkPr#eDH6&;I@M<+EP@
za(8DZpv|5*I~4@U`(2ybr7m)RTnAMp3Am5~sDJ?F+#=xongG1??;?qpENdB2gdyl?
zG^(m7a1c)9ocq-(_r0hTNs=Tl+)U)`S1(@I2>^cXzFua|qD%^a=DAOuR9QU`B3izI
zy9p4W3Kdr&su-K5sv8}To9&(1_3Jy=Z%nGHGH=_};q&A9;ql4Ie7;<*l4Yk8!)!y4
zrm1ska|Qr&cB#v`ud7M`hmb0uJN2CEn>azG0<d9L5D<ilXjutBh|178<`5xNKoJNj
z$Y5D8irBD7g5fX9nHYz)5fPyX;HU)Hw^#PJul>&W2h)D~Bl~~fd-UGV;-Bk8uf@=5
zE1?Y%8oNTsB5{>@64azpxR4l@Lm=WC6(OZa<f0}Bp_kO<(=?^1OVBVHjp{lIKsq3F
zTF&kSL{&owL1m*iB2c|>&6nF4vfTT;VAk>iNfEJ}Q=i-vU=Sss7$m78LIy<)VLTqq
zCX?;0>F(av*7nwPIucEb#nI{M$zm~YSF6Q*-sMb@^XgnC3m}9Lt4jOc-9U70+xLA_
zMF8~S?K&(a0JuBD*}u#7698w+%wjDDc}rPyA$azEFYc_*T!KMd!>*%?>hAWHyLawa
zUH#zUqo4IZIq8m7IUZG`MzdwO*W(egnpsMoa&|^s*t#!WlP_SzD#qDlTt|>;n6(*G
zhEpIhRx!p9HK+`mN2Dw^)~kN$ie<mJfaUl(|0@-P5Qr`Uu>=~xtb&S4hz;gQ>#AyM
z%x2RoSN5-5+1uV4H+2;v+jezy`1IuTc)mRC`!=PXga|}MMJRN-pIJK!SOsaSDpwV=
zJ1C^53^&rD<(>Kb{8f<QkhN(P7a)|g3noOMtW}>>hfr9K5+~Q@;-b-C8|E`%oR^G?
z05WVaib9&O6R>4ouR45)zv)AJos-4`(YdFlk{H9X*FJkPWETq#Kna2zZgg==Z<gjI
zC&7yg_^Bh-O;y!VRoq;t*(`Tv$;BmVj8W<;h7d)d5YfSO5tPBY4nMr)w)&FSwP+hf
zMBPk?ATA;iBC6RDL!50*_x5+MUEST;*_uwrB3QMj2ZvAFZr-j|^ToVvTk}+OcR*33
zyBC{#Hi2ScRAY=)Ri!?`jX<`Xa}Gi24&c)^;vixQAW8@*Bna^U2}E#H`e4!qJO5ed
zJ}%>ivzIS|Jo@v~2NL=llP_Jly>oBz<@w?y`m+FZmNcM=we^;=_bK(+&53a7;^$OT
zHnR8v3{I>kQGy4Gil~je@6zc~sI@d92!cfo0*EL?HZm)=7l2+q`+mU)ggey(T$)%T
zQ|+{>;%qvdZOx|B@%HxC&d#iEs!-7^AD=u}td@tz2dAgU?nxw&5JeDia@a>A0;q_?
z&jeJA9|4h2hN{2@t1n7XEl5*dzK($a5Ltl;Q~@GgsKG`~$*gEF1Q&II12%|)<z)J0
z#`&YmA#%bWtxn@8U%7qr-uLytKg@?eUHl)FhsSlULp8Ed+x4qHw_TsSauL#p&z2#8
z_{(ne>yB7A6$MVf#WFlW5dqgKgi1_%5-K8)V)ZXr)b)3LiQdYv2$!%+`H_OY>tY(k
z7_aVMna!qqdsp^$_qMjDF-AyUEanGK4^K~yPv(arFj~P<q!*pN1loo(4B{KCzXlgY
zpHwu&5R-v)KNF>hK$PV9kLjRL3P2d>ga;83s!-`wcDCkjbQ9Zra)36!{3afb_996Y
zXcl*-M<?%hI{)tV-<qZvOc7XDh|1J?+ohCgMh7UDR^;Ui@`a2TDmXJ`<R-ofuzIAj
z>Q{Z&M~NZUma|5L5H89>3c}}lZkt~aXS#A;!`E+65r!DXVKffgTU%Srtx;W7lW7g)
z<M}76)pEH!ZriqP`;?P;7Lma@#pbj*hiFBx_ETIS9BxX$2^F|Abt(0U29W~KoU{R&
z4#y2lNkAC@RLlU>BMIe*1bU$a<&2J;(0MvxXPG22gdi`k&@X3RP*$BFf<u;Z1wog8
z_-s+Xa<~nGvz);g7I5ipvh2(df#?#}F4uWEzc`;SW<<9LinGqWArll)NjWckwKv(l
ze*OCK@nO4KXb7TO#JxG~i;D(A<jndOd|wtqFN#eH)=>!>nx?sT|5n{JU1-~G_2lXE
zwq3Pdn^K>1OOg<GQi|8Q){%lCga9dm!2qD_&_GoNXW@9t*}$AqYQ0-!bECrxt3&5G
z_d!rd3J3%u>LUQr8xnm|Gxw|{TJK1hq4(Uw+{uA%;ki8{vUYRM9Of6!yYqlaa9*TN
zh`2%+#RK!l$A4W_HMcrI#;YqSr7n3gcyP)FS`&a5S#3NyoS9(xEcJcquU@Wgk$D1Y
zPSf0_Dica-b~r`u-GAj@|J#4{qaXk1kN?yEXJ(P2P=}W_<8bV6jPRuiyqxZF5P;Fl
z^PxXXC%IpB*=*UiZsw#4AQTaYGSG{k#lc6F!lc0=iBy*m7$QTVzM@BDb*i(FBgk;?
zMQjv>j+Lq!dKY&j!offwqSzdD_kpcRTLP(kWX^77W=w3%Eh8C`3xalKacFSnZ=88J
z7x|U7Q~xQ;RkWW90mVs1R~4NE8;`4J_*2yY?V?t%wZDJbp8kFQxl5g-CB)Cn2~4OQ
zAeR<VaifLc%kb1CF6~TNJ_Y|rvhqypX$jFIkxk6#bzQ&l#v4EQ!5@C>JKsJzJ^8c$
z`lk#Gu?ZT=+0V7Xy8so=&Ev&c6ek>j!~5JndHU3{nK?*@Xkm0j)+8U-Xuhy+h3#N5
z*<cXF$QT&af)mNvWpSeybW%2%fNVx}sN*=<GUaY%i-_P<^T8&P0BPA%PL|D`vpkA1
zE-YuWlU%4vA(@3(^DF1Ln)BOv{Y_sg?9U#9PN@hqdlhwDYpoP<5ipNKXtu`pCL=pJ
zjZaQKG5xU6Yy=1gJkSIJgaKmy(&ynX9?@*%M$eHZ?iC@O^mAWc+rIkdn_s?l=gzHr
zcR&2-qrdy<-#vNqNzhQ$)nGmcC?Svwrga1SUR0RPD~4<a0Pc?U8L&1<8}ZqhAcX=E
z1_1&{C|L(q(JS=|Ikw5$WSx6Ynh(<wNCl0mm0F{yV?)g&)KI6>L=;Xk7)UNwUCO!b
zTX)vnuBP?UBpc>Y1PEpn<bs;%6l|EM%}H|x>wd{KVA)6zKvdMp2p`8#ORfM3Nd)Y#
zN3B)v?CtGPU(xm_&*Wow5CO&g10oX;MC!9u_@YPbve4JGqCkQYG}v@Hy?gi0Xf&!u
z)!Xm9{mN^ve(>Q3LE_f5ilGt_S9i4{G?7aRLlreM2ug_Mf^^QQ(V8}q3yzMgL4Z&}
zA%syOVoIwjxe-Eeib7!C^{G#}wcO_1k)68_(Gn3#5@<#x9)nhqb=6Gb9%(suure2y
zq@HuTT4cA*j6gy*(uibaEVyw!X<l$pWdQXr*&CmK$Z&mO34M@F6-RaD-nu|S4WP=6
zIey&#<?ZpEtCKhHU4Q-Y;g?UB$E}`7kPMdrrw9HjmhJP7IPa(;!6|?T#2DCftfSr8
z?*9IMUDr<5O}(|VP1V)1p9Ph=iXmoAt|D-uU&e989aZg9pR-j}EWyG8iZ|MG?gw0S
zwAbD&8IXk<tyXF@5!;={cOpXDFWYY3_wzQ-m*{#}kK6&RcrkoJ5s?6@z$nq_NeF4Y
z2C1x2{0A~5MKa`5ff5~n4C^gHXPMc29Si_~0u{m~A^tkLf&$42s<=}iLBhCZ9W|#u
z1bP^|*|;Bfss9=O{L!<&|E=+j?Y*mS<bU$8d+$O1kAS9NgalTUGn@PmF=Ec0ih#xY
zpwm}<w>8_kd;1Q-M-Lwu?BMy+@o2m=-CZ5F=#(yqA`*gvNG}96A%K}#wv_sv?VZVF
z+^2LppXZcIZ122oD5SWuWC3Wf0-jxk5*XEE%-fOE3GYps{gK{0$p;6kN2kl9-j}Ai
zM>cq&9|HAU)MOxvOyGc%DO+b=JSG4c1P~bN(KswBa-bXyec!LflPey=+zr6m;IBE!
zbKm$^)07QmwVtdf1az1;qgtwz*dqc_;L#0-=z63MZ9nh+cJ-HcMtARS-)}rFP9Ds=
zBgTh>B#rAJG=34hUQb?7IAOUI<{D;q`2rElPGounMRGxP*REZ^dHcrGXP^A%|MW)^
z_4)C^q#0k^z5eX<py3!Dk+p<SsoBLZ*bGucgoOKBU;fIszy0mWWb)yMAO7%fesp+v
zsGzL*m=bc*HKHXMC=fA<5K0wCm20uOPJ0b*U9bP?NSfv8$@BT6PyAUzO0jpi!G*;X
zdmwq{)k~r8GaP^sa8{czCeSMhOe9pzI4m176|p%|GVF>V#wrVeELkuhV{8EOnOJ!d
zzI~1{c$FJwPXYi@C2I}TuFG9B3LfEY@Qh>WvgTfT&_D2>E{=|Fb+6vpdhN76{qX5e
zPQ!Z+?Ohe9O2)*w=+$S=0xk%I5_a+3FAWGrqXS|H1Tt%ZX$aG;X)|d~<|p&+Gz7`k
ztD<S@x@rRIrRVIzUR6S+s5E$VhT_&aAtcOr_wK#l{+-|X&Ud~;`u>&uSXDp#;SZ0V
zAC@c-2!LK7ijhJ}I0n{0q|Pw+&NMJeH_|+t>bGWF`@O6V+eZ%;KYi9eT*Z}(JKf<f
zK7e6DMF^o>SdOwJB}9;mhh4y_Qvg%TVoi*FzbsTyrVuot#1OI(G%-L0;nEiTO!wpE
zi?#8sH%u}I&Ow6cNUegY<QUk5hDObeq(sm3tU(cj=hKre|6Tvbx2E@A+j?W>lW=&l
zNb{3;0MH~0R0rpt8&YUEQ!nWR3~;boGo4Umft#oU+j(acC%d{IB(~Oesfz}RC=o$q
zj1-AN1eKr$3TO_u47$Sr0Ye5CfcJ=uQ$-UZVNi#p4Zo?Ox^nG$Ga5ZVJOohH^_O0M
z{qe(xr-vuz1}QFICj_mcc%&2uO+<pJWnY@AMYa8%(fw=V-_@#rbn@RG&Hw(P{m_D$
z4&2<3-68-G06mL%a!u<2qMK#5ji7)?2$01(@9H{gKjbYL#lbfBbu$Vg4nm4pRUm#Y
zAblQu{ZbmkH9{7EBIO{Cu^MaPlylRBO6orMOc9CnR1{bs2=gSX2l=nk@$+xxH@-Ce
zYRvZj!Ou?YSkz7Xu=dwjyhyB*(q1?^2?sJ*fq{kZVp4ckxZ_H^dFRT#H>Y2#W%O)y
zaC~|c!yqyMP$%3R26c)<e65$pl1K&^kjUhqldwKWga(snFr|qXuoa^~>~wJ)pAB*B
z7`3h|MIfOTr6li=UD~2^<dwUVYUV5VoCw>R#@+kVZ}0A2HGllz=%bI@zdcURy5J&(
z)KwCKa=xv1&*qpId@c|qd=oA>&l5Qy5QFsQlMtgc;)|kVMyA}?qgu6W$q0gU8S()!
zkUDFY>{Ha`vxclAk%1t+Q5}c6iV4V#NE3o2(GIOyHY?eBP6jPm0e&h6dDRR4!_DT-
zt*y7ZRXABbUGel(A5fSff}oeli5JLa)L<<jBtevd=v82SqrWl2<af4z<Ez)c{Ef+5
zBdtGKJwIxWV^~X12n9)+WGF=eDVc~xPpGOI)G{-fAwm&DB3eizh@uSe02L}=p0oAN
zOfkSi2&wnQav>B&2p$2r1UGNnk-IaEL<G|Ina2+6d84{|d-si3CcnALM}K$pUml)*
z^i)5}!LmXj)er|Pcy?g!_yX#F5r&@$3MjiFyTE9mB1VbXvqKz6)|=-cxQf7a@Zr48
z;97LQ(pVD)q!2Z<fog;ZYn2M{9_+lgZ1jwQRpk2I?c%)Sa?$>mljGNK)W3Oa>&-4c
zd3gHXDLy7(kN^>ci^+R0%zzabAS*$J27t<O^!QqQ_5SWF|ML3xU*Eg;Mtg0{=6G^*
zsmplj^Fvxf2q6T441qlmK;4XD)AvRPh47NwMClWIr;COVl~geeo>M+LJUl#jKATL(
zlksw~djId=d+_LiEGN@uvYWovwf%$UV{_|l-gn)JXRWGPhFi7c_r~Md>wDjrZA~Av
zfBVVv4?kM{)rxIl7sg(|Du)2pS#V&j1sHgFUie;@<%D%^Xd=zMp-5=dst5&Kf!^9a
z)hZ(g0sYlX$fu2so+(7&0vQEX?5SC!s8^oQ8aqQvE7qbMtLxpZlo?6S?aBP%d-eZw
zb?@36)i=l3UYs5;ak`Apfk;u18`5YEtA{C&2yQ|$dKRm~3>~lJ>-To<{=xL!w{N`p
zt?6r9KB`T`ecDt_GrO!V0H9LWRaI5R-=ULE)i4=PV$-!tI-r07u1HXEk<2;=$to0A
zgJ-%wd;0Wm{^m#X`J!o>XV0F!_w%2hoStmAvnr0R>pL=z@AdOOb;grE=T#j9xk_4x
z$(^mQUfI3A6K)?JKYf4x!^7n#$NGpNQpbU4TpdU<aJQSI<uZmlFPKkRFRWby2OX-R
zk}QglkriT0mXn6D4p4M+nJ*%hq-Z=KKnyX4I0~Z7SzW7uR&ug7dGE+29;6VFi~iV%
zaFs6E{PF6)p?dAD@jt(}6%YN%gZbYt`2?zio4DRo7lkAMqe7h>%)}d1RXuuR>#N_q
z_x0bazx(>^_I_W5wuJaivs92+03ra<A<!FCtE#H1N<&yjMOcM;I^C)2rE}$F79xN;
z07Xx<^g3&_=%Io_5&DIH^z%oj&zF|HZC8DtVl~Qf``H3jJidD6#_LCKAFqzy=TU`9
zL_Bd<-rAe)zq0)%f_<>~PtT4XJ?HyblS(KoE(A&BEM9gNr{5rz0d8G%0nX=e4c^G+
z-)oXlLa0VE>exG0fD#?iMVg2P2GUEK=6N?=hLniU=S818w91zW^e9p*#&s0$Rj3*O
zH4mw`V_FZU;*=FqYJI1**HdyU`Um>KakuDY``Y%kw|0KBvaQoDCtENq2q)G#$<Pv$
z0!m)CYZw8lHXg;%*Xpm|o!$Gx>AP>wUU^k^C%IPJ6e>^+0ODq6iikj*Ud5`e>UDX@
zVAEAY(~M)Rj0-Q}0t_yzg97$6OCCW+P&L*8ZZzwbIj5X6tJpNL@oIW>deZwRT@}7G
zeQg)>C#%0(*@}5N4&ysJU%Rq<wQeVmAAj(X{dJd@T|7Vx%6d>26sH+F#DXt)wHu3Z
zkpx>W?s;{&gg*d4s;X-GQOdcngkW~>MLei#aU76JS|JK8v1adnndFkep)0_<)DH*=
zH!xLoMO8C53psO1nil?px}oxh%M|*j6p7d(&RfsE_(_ufyW`)!vu6($2hUGF>apB7
z((7+68y1~(bMY)er`wb3-?;i4U)%rcKhAI8OS{2WLvh1q&PIsD00ksKLg5_Dswz}<
zEJPa$vB47IRZ`r}%s5E_11O-o&mAokHiodWI)or1eF_3V%^dTE=REJxxA?2mqaQW=
zy(`zQeB<b!Kb${G%=^1nUfq9V(H;Ng{Qr8kdUDu&BDF+}NP+6cLP())iu-w)hLp`A
z<QHGRq&GY>M#C@&LX5FS4uApT&}{ukatNx@I_T%T3^@m#N&@mPgf<-THBnq!kpM(u
z92wBE&eovuDkrX-EtyL+t`uyEVv~wCTy9982Sdyw0H^-p!{zel^<;PF_P6=FAFTfR
zVb7Huw(*HFM#jP?x;V9jva8*G_ljKmPV?3~v#<Q4(Ob81^(rFRQoQ630Q60aMkLBw
z<;sH4ysE0YuGS7%Nj`Ho%PFUnZ5>2eLra$Mpu6{w3=u{FvK6=-)@V5Z=)2Ci%FMkS
zER%oy{G$~6SM)oRYu9teY&x@5e)8n$1Nm_my0%V%5^}@A!jb1a=Jhtcv`l=7*|;>$
zUE|!D<baVe)&XIi;N<2R^cX~#1;9GOuu&Ou%}H<aCqGkbHpLNyc;Q+!D7vVKqkuqZ
z9m(2^9xPd*#TuMZCggdw8CWh>0J6+aGe123iA%gI?_#HG=Z~H&=S%cKL@W>vQG$i_
zb;@47|JK#7{r=Xw@66tKO}4gDRS_Zv5hrz>$4nrI0Ep{dOD)ME@T#usstO@&6b9~Y
zo_g!ML{hadcp`-pTZ1VF3JMm8xhEzygFrE);gGaamWW0b&+}iOJpGAp=UX>!-%r1J
zaQyTy4*u_Dnxkf=abhMHF^3eMS}rKUXOzbM!m(juNSH`Z-`2W9U3>|`jEUYw9R)ym
zvA_gCsfQ|;8va}>&9IgiZ%4@5Hj2B7jFcm_j5gG9EK~N@_uBWNH)N`+C<;d0V0z+=
z9Mtmj`MYGcPnSPW{i52!?)Hth{r5&``vc2hC*HP@6s4ku<k#}mJI&qSnZ5g)JHPSH
z^pz{JHA1h*Kp;w*VhO$vM|=scMhxtQmt_z^3?am7y$VBatDC1j<y10fW#b8+C#eed
z_KoV3PQw|_EX)B#rGzMRI8DY!NAFo&-QWIR9qU}rv(JkVf<Xj!KHK38X1oAQ27|fA
z1fQlLXYaqXp!AYIpdliPqGW$(8r@W(mmTwA7UzMsY<^q=(H8~<qJY5w291?y0JFM8
ziPV&G-+MNe!>Y*5&Igx(b5)9$u^Rxw6BkGA<4^drTAS<RZ{~V&Jpb_Y<PmKpv7}ld
zQg2PJf9KY>zQ6lhZ`E(?=Xz`r(u;CkhQ~88@oarx;z)~Xi~#_>Bx1PJ-M#PooU`gL
zC`sUX%elVIaAg^)ph=@hA1VYq^M@xV&#LABdG+eGukHQbC(j@Kc=@N0l=bmo?}pEQ
z4mkO_5$8H=y`CXKg_9a$3{~)ou!2+)-GEBQ&V<jG9q{52c{V>0g@H1GPPD4x3P?>;
zM+wX$CSAC9F71FC)++OPM==N9hU1^uU!1N^Fw&i^t#9!6-)sN&ll=3Mq)O~{fBmiI
zYrnnyweOAJzAsm%odouZWNL)7@Sk)!FQD~!QC%dc#u&@@20+k#&=_7qTc0`j!Vg#*
z>ViTFhDzFHPmfOC>t*r!_Pe*Qj-Q@9I6QqyKvmCtz<>B*bXBdZ8l5P#>|=wwd(c>@
zvd=j_O=HT7DpE<PHMm;{tm~S9C0df?k|-{l55HhYf5D(C9c*>+ynXWU;Jw>?_1gGe
zf4w_BIyqTBo7Bx$cHVk-@3()mdF@TTKC%=oQ;3qbIvB6bO<z!#b=JBINO6kC80)Hv
zF{+5Om_O3V5=N3@mMNgZhcH&TNjYT+0sLh}bDQ+uf^cL=4C)E_B>ed4{O?`b>(_3-
zBj0(PKK{7xlXvs@d?V#AaFlbzOM=S~yrR21pml{d)Kagw0HjCXdEZFLqM{`P^|>bV
za!^I6qY80ap+?_n#wY|Cx$!uoGg*Q;3~^AAECL+@CNIB>pF0yt&ETnO5DDN4r$6ui
zbb0dZD}nc$Yq!Gh8cy#vd++Xi>#L(zud<$4=VX$#W6xTNtmfkCL0(2C#f|cc4y6Yg
zLWnVhSjzlJ6zpQ=>o5&BL7H`@0B|vw@@bo*WKmqo)g(P>5_V6HKQi`jY~R0o?UjD<
z@X68Rp#tMm&HJx7UMhTdH?sn;%6}q~X(^>iqd^Lh`I3ozc6RBd4~S?CF{%extYg(w
z!jSs5&z?vtsjxt)(g7eU{7e&jUhck5TZs@CTiNOH;@KzmU_7f|nZ0`J#?~u)S6&O(
zce=Vt4#}cJy3wYx+L1rwW^pMdkj6z=iZ@+FLI@fZ0O<~9VNO}w9H1tp#=!x)N`b@c
zlzNJkTod?<QXQi2MSLP6TI`mn$UqZ6j2}NsPglq3?)6u{vi%3U`NJO{{>NV1)8?s*
zWYy>x849uW84|pF=a=Y5!B-`*Zp}xMi<CkL6>2LxoTOOF9V=JSb<y?NH8{8@mw|Wr
z>>4j#Ff-#UGX#&zzDl8qq8i!|`q-oE#86_pLLprWg1j*OjcS%gE;<DDjDQznK*UsC
zg2003-jk>PE@%I=dGqFYXU|5{UaLe0`XMWPI3LPgDwecL^^O0qmRG488ot)L#ScOZ
zF_s2AgAx=&Z7I81F)F_Hm<Fb5z3I3<+g>(!UTPQLIS`~-Q^)pr`RvitkG&1o_wL@h
za<|bjL5;yTg|}Zo`tr*snQ|r&W3_n`$(*y9$%}CN7ohJ8S|UT`tyUo_0ii}AU}iaI
z%VuuA-UG7X5no~lH%!^(--)P(qSZnXsA`O}>DK+*_g=g6%B}6Id(~{>F}g$`s8U{x
z!}20UefbWtaaYkwLoJn3La3&bX<gSibE8QznvJ_&Q|>@Vrg($~%8<-f_?%MCDDaJH
zoMQ#lFNSV_^VF*{mV6R}9EFFctEZH7Z}!@Eu6_SQzW>vsdf6Q<t4DxBf~*g_U*mjI
ztfw<nqYDTmccqWR*t2(708Hou1H5}#KZ(zMGZByjbsk#MO?m`vypkjf(-k#av33-d
zl0E*5@*<R=OIFIrDi`!x+6;Keahk8(mRsM5U;p;>_1_!4b2IF1v#wm!37Bq`LI40D
z07*naR3Jyq0#j7}qO<c^yK!K3wNxRCs)VYlbU1O(3<jMrcgsdlS*m@`cY#<RNrmAo
zhtvzKz{N9oAfAfF9{v!LUGAEI!}(KWxiY(dWA8>ge&xY)Z~fsJ3GfdvR25{-Ifiw>
zL1YbLHZ>x@${<-fDygUnf+Ey0R3bfc%3YG=zt;CEdBiM5TZ*97bTqrQb?5EfufM(f
z>K$Gmi3T4SJ_#j-w74;wg?r(WFB@@|?m&|G0VE@~0ZZV{24IS4If?q*uky;hi*$!k
z0jbg;&W&RE8FlwLM%mV7WdfW)?Ga!X%>^r*9`wuA{P0%&=Joh)nBA4b>d+34o99s^
zc={E@`q`5afe9#>cvGQMs89@UVmTy)%9DToWi8$#RE-P;=|StLXp+~dsmDqUsj=2N
zpjXW_4sqi3c`Yv-f9Ho}K){;9t~PU14Ka^ywzppm_kMr$?l))mzBj(Pi@mYca2GQd
zFlq)eC_v?<B=Z6d_}L@gyK%oyi#V%qT-*QT!@pUs96)K0;qG16kxVJM83b<bVono^
z4JkVYx=?i8S&oiPYq$#s<5~B)mkGDfs9Ngb;dFpTo3Bm}o<G}}q@AsOAKmYs^au7#
zgIq54`69-~_yrATvEQ{E^_OGJ*62b2pqQ2_RCTO0h8U?T?#^s(W)Q=WlX1R>(&yZE
zB(fWTY&m4#9__q&=goJv-hO4Wvz=pbYDr<>I`%|TURp8zi%0y<SN65p`~JWAH@iEt
z|NVdaUqAVa2MYDfcGas=5G{49dD^;p?UjGL|NJk0+&(-}r{>fOdqF{GI^;deI``w{
z-?VhCxui53bO$hCNk~&j24+Y;s-7(EpzogCoP6cR<oj>z-rIThvjh9+q<a6Qcer$3
ze4c>7`H=-GsKcnjD4-&|WZRjqXeO+ba9uYB+kmml+)6q9O<+U-Gyr3blc<%X9NnT%
z86@G@!xEB)=!~5?Yv)F3GqdJh&UL0iB}3i}NYp;QneKme^y>dO`Db6Bz4>OmE-fNU
z3avv}0#GCssEO!^MACBQ^K$wunZ<ke?)Gf|?9cw|YI*wOpZ&CRH?!^St=GQv>S)xQ
z&X4~3hkyP4`yYJutKa;=5B|;f-hJ>N{{4Uc=)IrKj}D$K+LWwR*E^v?*9-k4FOAIs
z_t^_}mM%Srp4rmT@pDO!r#p+i-Ti=Di-Tt;oA-awlnlu#)+%~l33ASg5VSE~*2qu)
zA^-+OSfezDNYDs%@7?;`C$U^=;4iq!g_0=N`O|op!46T}jr6*z?p?q4?YrOlX8rYD
z8DUYFF^H}!NMy~Kotxe-JHq6)KDWp3fAG^k`jbCCI6a-srp>5I)}Jg+AAR!p$<rqf
zA3u5c_~5<wKlt%a{&ulCxN&Rx=4<zF>|WXRtCN%M&`)dbL?1_M#Gw>XssbTXjX@AZ
z5lOg`%B;yGoAf3rcmSxInpcrP0VJzaU{bU%IIN3@D?DxS6V!_<v#)K{JK?0ZzM~ve
zGE$!rFtv5^4T@j{L(znnIPeSqm!gwm4oZ(vB~@i++V^RNV}K4<04X|Q^#meTz?!T*
z<x)delEsGngrVuFzyMR^5#tC=2#3|^sE$qW(aNfmj>ib6rD{{eNGrN>k+m|2uboZ8
z0FHnr1aS=vwQtS1_qKoU54Qi{f1dq!|2Tf*e%c$Skuy-Di4s9v*HwP%r3?^4z{?qV
z&NW~E3p(_o<l11fw6=|Z^v8d+HJi;wlii)2t?exhVYOO)_~A#7pL~)n1HN3eM@RFV
z^893edUCR}yE6-0+UjUDx_f75miyzbJzX57+-IyZ`qmbGN(mX_rT$EvDnX-ST?yzf
zahpDE5F(=L?nlQ*XdlJtlfB*X{X4Jl;N+=2@quRg!VF9y4nv4;gPki4EvqV8sr3G3
zE(JnWLQnxjCB&c_%#ixjr{wE$>(7&2wHfX-OF^3uV=dMGX#X2~Uw`Z7mv8X;2oXI#
z)&Bk3bd@Ne8e)vo>2y3E*L4L&RaGe6G=S2DG=$(lHt+f*oyQbrxH*&S4etiuuS19$
zDv3cuwk}&<q|-&aSf!H=s}@U;R1=X-Tc@uuC)mX$04)iy8?F*a5&@LXC9aNA#zu&V
zdc7U5y|VYs*Jr=ITs=Q{{=wt)vjhD*(uPI`LgATzUp7k?`o<ib8+;)WQ!0sGkF!;~
zdYpfrnKL?pZt3ps&b1TH`kXry1SSH+m#xeCH3M_wVJxu;xegx2eKjV0t6lPR<z4a>
zstn2M5Q$6zN?~%(6`b}6Soc+=WRW2UZQS3xIo|&P-ulXoFa4|0ceh5<S*j^QImZI5
z8`~D@{oDkJfgQN04W$MYP&h92ic<j)MMPEIY%!m=t5q`|Nx*nCZki^>SSkTPn0ud6
z*Y~ToM{6TAm2?4ZvU&76hd^gUh#{0xh!AvVdwVBNLZzm;>)Uxc$(9#3@A@`*Z)R$N
zpddgX>gS@}1?8-hf=WAV(GXOitA6?T>BGtL<EvM<_V@OV4o7O03y4heGa9#k&QU(B
zsxkyr%8Np<3ZYMFUEB02W5|^p5~Wm7TH}X+(xow_oDyx5P`+8!Pr2whVyozoDm6&8
zJKDard;M!yzWV0%SGSM1f{VPspZxmd_oWd_Pi}}fJ@+|Ts_H8BX}BBV=0OAyCwsHr
zaxKBDM0>t+i#}H$X|F*-WD`&ase=Ycj8)ylS<o0cnP7LOuLccTQO44vO*tK|o-W&E
z$0dM1%$=TOnLYJ!4uN9@5MnACP&qWAvXHv^;J}VD-$VDEuZ-TEUH$IP!S#<<e{&o@
z5)nB|aQjt8h%u;oc2(6i8ABEakh4&kwNN-bsQ`3RL}f!Vb5qU2fB+98a9e0$>2*)p
z@-#|0_U749lAcwx8j3?+G=C1Db^=J6AyWDEsBzL>yD_=??{@#?8`tmse!df)#ww3p
z*art0OJBC3tHr>!`>(}-pN)9+>easQ-5fgXA!iBAn%NK<3MC7jqAH_NGpR?DdOWgO
zNMm-<dzzcM6Y8MB)dM9kw|%r2>I$_`z!rq4t7>SpZtC6L-EH6Q*t%PfX`lPnYIEyC
zZI%*)yP5YO=t78S5E)twEtiXj%a67vx3{kD-?(z~<ly15f0~D)$rsh-myi|7?6z)X
zFXsdBa1K=Dr4JBgg>ZHViU1*m0M`Hpl^8XIoRG5F5Lgv0oy0cvCl_Zd7p5+NG^i%k
z^p)xTH*dfGdUgNK-u3#pp|LzM;w6mD7j0hRY-iSWotv)%r(Pn5a38RX47@%mR7lXE
z8U#WKqY5?pdAsUbch3-t21rmTNzj2+@F+TQNW@50BZ5+z<tVhF!6c|Qm<G`(`&Fo#
zrV*8v%RY4-lhHESr?#_$&eJ0Ioh(nobEOBSLw@+@-Gf(7zI%W2y|3*3qy58IKk9#Y
zC?CGKmee5|Ve{Iji_-z=)kUC;G9(`}qcwJ8YH&pmkYUp+PjD6<Crjd_Ix5vsh;`_x
zJ)^TCEwZnA^Od`;^VElDs*t6tyrVp~!U05$Buxc?Llyc?diDO!{XZQ2i+lC$Z}&Ir
zqX4d4d@<^R%QQs?`(T5gDQn;Piwm7Z0CiPca2XI5Hq~{dae5Wwx+VrjH+rF`lvLOV
z<L$83x8Am?&6eHGdb&G|Ll~oXfRM~Aq7f=UMo+NjGKh|_iXjH7iUx_If{ImLHKQto
z5khdEw0-DuYErw*bA<>^nE-R^4xb%OXV0$RxOV%-y~W|<)#_QP{UaQuu%bA&XF?MW
z1TG6<$n%ecSgXv|Z1#M4*6M<wWh<l@hiAVChVJFSCG$l95>)CcR6&EPR*?eB-lu+D
z>UCB&v~GbeSkF{d&5gxK83eM0@wgg&b@%nRU;o-ytJf!?(PQC|n<j-XSf|;p;nvxo
z_@eAgB%m>>z|G(k#l|TWgmaa_<vfN!=ngvd(BydE-+brRH{QJZeeHHn=ZoW$lb;>^
z?0J81m=9ZPJDVr(I$ye5heMDK6G5zNfmli*gc_3&V`LO)ltv&`9)+yUVyqe>o1j%C
z<89r&8n$&*2aHr4)-L_{)StHM%k*r1v~_LkwYO(_t>5{e`^kYn&S)ViNAWP^E3aW|
zMZiUe$figT00`v~OHP2Rh^7u?Nn>aMH(It7SiU@<L${cL0$aypWyo|beXnvPDT`dS
z4Mx(}^WNL+Fo_gL7}$iNG_f?&Wb_IUiSE|B)b74zTO|Lr{*y0Xd*grT{?YaJ+J0M+
zp0#t9_KuvSQkY7i)TS&f@L>8b9dT!twVa{96w-^OX$b%k<;zl+U%c9oY%c)l!M)+=
z%J}N!cGOxmzGLqkEe{`^JU%#jet7ca^z`^-dAL|DPWz)Scb%==X`KTMTIZC399<|5
zL554QL(s$=Gz7LmVkIMCjA#Wh$~XoI;;iy$JZ`iSZED1JwFphTvUjVkm!XZBOJg@@
z-+Rt9(h+0`oInf^(RE#ytwmWXGEw^SmcAH6^b|Dr@`!=b8Twr3<RKscib8@&fYu?X
zW@iclXfOkl^*ys8yLw3kE-jEa+<M3^5-KF6L@+`HdP}cfyL$DvX1{U&_T8I@H|tm<
z`MGt!(7gBjn*BqB?xPPqV@of9@-Tw4eRFOM6Vx)BHMji44*ulHpTECa?oRI99N*iY
zUb{NEy4zg6e)F!}R4=i~j`R8a==k};^Mg+oj~C1Nksq#Xbzsj|X?2oMX;{f~D5yfv
zqXVK61rn$VZP+M6%|;jkEAc3(L$2yHiWo)E@H}g)t5K+~-Klr)RK4|X$xe0AvR`rD
zTie?_v+sH2%$>AUny#E~VgRx@fTRSl=XvB7&<1o#jexrtji8GsLD1kX3aES0C4neZ
z87c|2Y9p%JNnD_=Ol$NtJLyyIjY;UG-{M-t>$Dq|{1p)iRZwW`$J5F5-;Mw9*6z*U
z7=Lq?r@JymBG~~@KkHaivYvI|X25lfNxqQk|MTi{Datc^iO->#MSa}*!{f&fJ~*~C
z+LrxkwS9GV?aJ={&i0k<+0Nef?)GeZd$cv%n(W+}y^8x8sqMN&f4W?)9?zd19zOr*
z*~jzwe4ZbroD2SGxiWVbacpp^1pw#;A;2NIWEOh1C|-evoV-U4TuB|hQVOFm#E4nl
zOhSYrduyIow%zxud0rSj%gX7A9f00j2g|eXBC6nxiYm1vJrCe!VE;w1d3vA^FG^|E
zPF0CPs}NYQSg4G2hq>EX{PhAiRA39&dB7rC<q?3dRIk2v^R@3zzCIhzW^EICFIc5y
zSURxQ3d*??=Uls)bF26Txk&MHTJkz2>V<b+4y_Szpq7;~xAJ_U@?75cjQV*Mo~xs&
z<9OQaY|plD?A_kk+POBpwlmwl9dAuWldH{@W_$GYTi?w&cc*E!S}nSR#bW-+(WB$V
z@q_%)$?EhlpDxpKWxbj8)+Ns!mZ~Ktr6RG?rk0U%p%z4gh7bWI$C>VQOr4GN#Yr8h
zR--tLvEJ32ROT8GWa-T<u_d`kpCqQ_D`TDonc5_v5}1R8R8mLOfvBK?7GO>z%QFV3
z<xwaS6pRQ_q*6f*G!TiBVxMwy%K{U=*sftsvO3}PN)WH5FJ0Za_P@k``=#-#Z!C7h
zQliuvf~iB$mnRcS1`x^wSk6-wNZ=(k;ji4T=*1BMImZ!~67KTo$zQ+_uI-?@ibx1D
zbm=KQ84T9ivS0QmtLIM-J|Sg<rm5;(Y;VuDZtvaQ-rm`t+?`CO+oQedbaL(1jq7^r
z6};x~<8*j*a(pm9Iyyc&U7gOCi=+AB>EdY79i^PIXJ)z}Ac(jiOG)B)%W$C?Q|CEJ
zXK13ULV;R525+KOQotw_5D(N4s!^<~YAn|YW^c_M-q)iTw4o(#f_vr_#*KRPZtxsS
zyjj*=tczI0O5?2%RYGNneX`E74PoW8=mgeXMaoA@JYnp+(|YTBvv=;_y8o7bX}cO%
zq4>itYc@~^b5w43VQntCL+4)pG>th^rO#?Iwa&tc>r$0r3Tqqk5|zB1?oKF>Rk|ur
zHBe15)H5<bLr)pL<f$l2pw1yoJoNgYQ3?B_SEsYtUUOr6Yy1Arm#5>&wdwWgczUzG
z`ReS}xA%7KrUjtS{b_e{JU@DJ^zdkYbl4rAw)4||v05CZ{-m?6&wUH_lq{V|Pd$Rp
zmpbXBp4q7O=mH8NYGtUsS%V?XJ`xL!kGl{`|B@zd)iJKr=|MPkq#_ZA1&vp#`wiRP
zj=HqUGIv-Ocfh2i_9?_-FpY``)hJ%KJ(eqLb2hl+TptN1NT_T)ld&O6c&GZ-{j0D4
zPtCu$s=KdaM^{c=0d({b71RRMjNp)5Y!~(8(hoeZ1~0QQms*Wn(ldEMgW_=LZYb#D
z+m(c;i^}m*?JE$kL_E&G@R|}^XF`b(VR&S2Ffm00akzSRxO(;!&lLI-{G`@;XS_G6
zo10rVuk7w$-?~1k$5*$mOeT|RRPXHUTzzFfxwW}VmglR*!Luie<Ac-X{CIwNyjq_2
z-6}2Ge%a-aQDqSk309t4<P;`mh`1y=J2WclvZPDRQLs?C0MaHE5mc36bk^Qx;8E(W
z>D8)9mS=t6cd0Yx<jIjtmgX6N>Plr1l+8$k#+2x0ZaG^vaTkSX36H4<g&G1>V{(C9
z%QyBXd++YQ{pPJV@8_$Psbm5w61fgU`Fartf?v+FEVA*9&#nH36Xwf*hMrTB!9t1*
zeQVZ%EFbtQG7b-qJu@y)gmWD9=FWaeU5070JXK7bVkOs=fDHXhN=AFBCyEp?WKl&N
zQha4apl1Tm%X0uvRuxzLt7A5go2G6?aeQrbXJ@v%Ke@I)y?SGEcQ)SI8tqM++1>H~
z&)#<j>QPjE|IV4&eagKz_a*^CD4`QTM4BK<l_FILAfOaMy7VHx^j9S4tJqKwQNV^M
z3Me8VNgzM~=`AFoC3Mnmed?B(^ZhZq`|NEYAn>Z+J6vw|KD*EC?9ACSr~J-26V_OB
zJpx5>&}h_Z&3d(7?W<J!2KsyJiwA<9O0=jR_BFyv6g8U?#S%5eSimS9+1RjVrJYNT
zM3Ye2GDLhK0BxqTpxcy%1}Et_pkP!~FTnU+QHQ6>zBk?&Ygv&FgnOG&(?~dg1q1ZF
zudMIIVoTN(U>mT3K^&1-jwLl37Hk`f4%jn-lJUyQ-@a|H4JT~0dugo|&6uvb<|L~P
z2^T~}$VwV=rd*<##G^daDIqzsNa5&`-!6oVOJD;KL?<<&h#Z{H<(gzicGhL+b>h4=
zQK+q0A_9qZG0TEX-X6k8hEq@?sN3`<On2~vEHh;S$aKEcrI3by=adBZ6~&JDY`sx$
zNTb@{;6=(4zewc{J+`Afrn7BqSNoXpW5&0)b+nh;i^aB5v8}X1xzq2OB+5oMi0X}I
zt-rdszp}Ky*3)0@>#Ysc!$yBlZAL*Ot_5f|Yy^R&FhM;KN6wo~0KrH(ikl)Kr->;5
zvM}{<sWlRYP^zdY5DU#k%|aAvPhhPQs|)OT1-7j1_=1cptFXNo6oYER1O~>kxGcKv
znai=qme<0>wO3qY`;JZ5Sz+x7VY_G2oLpi-l!D0zWn~qCq^4>tZ%genLTO%iB-;j3
z(@{!Q5g8ByWh~Kvsx_maFYK*WD_T-EmP8O(OGD`bluL6%`J1PC9Rz44l1PGDIRz2s
z2`t$T3GC9^CG|)MX;x)Q0=6ls1r<<L0EvZ3^_Yb;KzcxVtV+IL@QNkBTq=$4C{G;M
zw!*mfaTAIwtWX@+S?(O$w(1%klX!v{*vLc!K~!rryK74-wSgt|*L$noOPdSpVXYo^
zM`75En-Hn0z*uWlNJMS6J+fj@BQ#UK%ob4~3u9{nV@W)4H-tS?=GeU)CN|B$ub|z6
z3es#Z#;bM2YqM4;qN*zOs2+1@$i!^JIP90jp>1|a$N08!yOwv_Xu<~D#H)>Ow3i|x
zi<k@;Br$=+0X(2Ggoh;yz}1*l%S$e~4M;dkoMQ)NN^{p35Y^FWn&=%nPzxK+%WF&O
z-Se6YYW14tBqUhKX@jY-z1*#3;cRgbq+!rG8?+>sa4O5UWO_$1xgL-nQ$mLfrHIIq
zkcdQx<FHu?1^@yUD!f{tV$m;k7TP<D9i8o6W7<1A%N-r1w)S#Ids|0G`wHX7wy&r<
ztVknRx6x?S>y=ugUTyT$>Xjw^i>tM2chnsOK_lvqqDaT&8J(HGNRcNV0aizmjT+Lh
zmLfYKR(vjbq<m=MC{|S})U+3qF>z??%?d?}SZQVrMP;ujswhmND2n5vZi{WSwi-8i
zwY7HW*krsKQ>^%5Y}hJJ1w}7`u((}EI8{9d1^mAIVx?fQywh4-N@2u61TmhqEH$ds
zqiSE!+Xx$PnV#-y-y4m^1NG`_@#3njEk!RNNpLGAQtmMC{PK*2(x9z`95@k@T94BL
z%x3`^iT93Nt}>!QM4BTSB&q%_TY~_uoVBx@C9%n2B=x$8jpWTJw$+%HGLtT=a$B*j
zt2nl^t!vfNnw|c*vBh!irH*mMRXa-KSMOM-IKJrmuZI1V%0RbSRIk?-RTkFk^+x6O
zpx*56onvC_k~S()B2q^+Kv3lY3j`bsSx<W<Dv&9Js%DD)#Wuw%jGCSb+f7^#;zcH4
z5yf0qTw+yF$`{s}i(`2#vD$#UHk3(gH2k(WV!#qbtO(37L}1Hg0VnB_1wmVJ#vX@w
zAR?3Vw2!<%NRpI_IC~XA49G%}h>axf51ZXVe<iNXm)GBJE_|i_T2Hh0WxKd9s#a~?
zz{X6%uoMEKQ;$ccOTSn99}|!y!K4H#oKSOilt_!IawmB<Lh1I2A$%<r%-|>x5Rj(C
zTka(GENERa?5_)sFgC21pc3>h>3f@n=Hgi&r8cj<Tx?sReL`n@*NUAhcC>Yry^dnB
z)HP;o`$}!A6jriUR*P1*#(2%(&3E2-=FwS|Y5)td5+f>j#ZI$wBW^^Ij>%XK0qe(J
zK`Z8vyx6pfXhu+o0uIACG}XE^3=yCSzOp{UQ=(nuE5lQ)m-5&Jiv~27woyUrPR}cK
zQM+c<RczNvmsL?YKYbcD>pN{oBwr?D*)6fVvauXRnv9mJ)cT@IUsUUFR^ADgF06IG
zU0c-Oth{3v_ep;r`T~k7XvVOHtq_Eqpc6qvJIy&=sP{}R1R|G|nbML-BrZd564H^;
zMN(5O%Q=$}NS4|UsUqn5m9+boEG#M^kt_f;DO8fgZ>Fru2#lf7Acl>tjVn+@?1|4!
zMRlu|sv>&@U1;}KEcnG0+9!_hT45!<W?QLkLi?n0xx7kg<yFTOwb#+aA~)N_cBQcs
zc3gMQTC?8W=x*5N(qL(=R*C8jYb%!D@k(fRNE`xn-$XhxHnRPoSimlGF_Y3@W!;}p
z@ICf=X~jY?00adtTH~|PW19sf)a7;h?00(OJkKvsNo(DvJx}W{@)RrI65vu(((t&X
z5h#WvLfD80x*G#a<Guy)!ujFbZ#0%HY4*Jpzq2&zso6$^xWUbcW2<6;O>!+K3a$p6
z915MRoFs%uY5LFB``=o@5yz6}N{MFS+^QJFCkF{7gEt<^ZX)@6rpVI-3nH0?E0w#Q
z)m#$Q6iJp;ms0{D4RPM~B&s7OFj+7{iJNiEanRdr0yKZ=Yd#f<XfOE171~xT7K^Km
znb<z2J&5~&W=giUTr7NigH1foYt#cF^w(?E+Q8DKi)O#^(96NgWnG#WjaSVv6m-?Y
zpb|G@>lspMNN@xRVpvWM8VW@tg+3Gt@W*;l$@9lR5vTwoR(h-ND5#3+V<x5&E7qi#
zsKYN73WcI7Y3*sR=xJTlCC#cR#LUWw2t;u#aYMp@q5;$@^-49YEs7VuQlG!5vUF*)
zcd6;^rAmXs2)2nvgvh`MIX&GeIs}j<a9XtnX&F_Wn}12<7z|#zbhSrgJ4t9g2{938
zbmnB|7Oe~d2M*hHoETyT$@zpNrFNow=gg7`Qvs|bco9lX>?ClBY82clR!%mIDWzuT
zxP*Y}BG$zNh*$)8wLt(@Y#%pv?AThfn-RHAt;Ds;z-uqRHh%019o#vlqif=r4m-xY
zVPAdy?RgEa*5$RY<4+pjIk`M;^3wV{OT)MOqI!SWtOb>NPz&PzSn8mV#1MhO9<^Hp
zy|ze^H{P}};<3<0_KVshO+g_BtWd)cH4z(Y<JiV=EFr0eVk$8yUl%>4%c@+`-UPo~
zE|xk}0nCx1{^r0t^`(oV?)mnO?s|7m)c2}+b6z~Z5jR7MMa9C_)q!D1LJ=((1_)$b
zQSBrTbEam4)?0tAL2q*MdnkF(D1|F@qutc>Ko~V*6L4%(=dI&nS<o?%>ORBbbexqh
zFXfC|y(2r$lg{7)v<5uL9h;J0qCQB<He2WOk1v@iGZ_p3z*oN3Iu7bFObkN+gM2QO
z^*8`p6@29tl*gJIVY3$W2h?9s#m?f`j?!44+Kn|vtg&LOjp8VZqu7M8jbanUCbHIK
z*$;duO}a$B$Et*aCZ(X5$R_EeiI66a%$aMgB!Z?0KL6Hk1SzrBO8dTNG<BodTOWA4
zws=vr^bNZxps>zCjca{WF)$WJ5V>O5lstUWU6Qye&7qTM75SNUx#?0Ea|%^_Z!OVm
zz#wL#BzG^RR+ilDGD;oVL8h|iM>eEMjw*5&B#h_Xqq>IB-sqR7`>Ld+s6h!F*EVb=
zjAKA)q7rG=Dk1~6iim_vEOBJCvWh)lX(mOatQc#p5o4^0Oc2FkY@*o4VH_H3U}9Ji
zh=EvZO%g=HZlT<eIX7m<xjBWW2~ZjUu|Q70!`9lS2_sXFB2zH=eM<lUAOJ~3K~#;R
z1-7>u)|S}5ey(<VjhIc7Bg;ymO>87KB4HMVL=$!?*&(iejGJiyVg|Vf(g_<1V0f=B
z4K62UR*FE9NYhSF$@Zm;T!v-U88Kzv@Ro`=Bd;?pGg6v{rb!xd769e#(J~~?(h1e+
zlv#*@#E4)ct3)%ys>quDs9I?@6n87-Ywi2WcU;O-N@?F?&l69qh@*_ySZl3~jWJFJ
zQ?WqAWspi=!Iu8Wgv{fY(<-T`7)+vA;0bJpL~Nu=ewT1x<aLP`ny_iZh~j{v$cB-P
ztVDv?l2}TzfW@$`+>j9wiiO0&MGiSPc#E@Xq)g?X2}~y@1!dVq`a57Da%xeFTzFWj
z4HB0GZ_sB$F3BCWwv!L8rK8Mz7t%`Jkw{iZToVa=n#qa*L0Bw6LdHrQhZb(RHCTJ3
zeAb$^$DYSUPx-zs`r6mpWA;5?xwLX3$x9Av#aP(bS_@;uT3AT|QE6z3TddZQU6pGg
zNvb<3QskAJ>~(s6Ur;KCUOlSS<3@v`2CEo4LKIVMB#vRMD=PrRWG%!nS-?;zWMXK6
zH3)&^-Eoc~?M(j3p5O9tjxwXUzfv*5Sz9<kPO?xMN$OIM0mv(RM8nvN1I4CX3hC=U
z=#sotGQ#LmF*kQQ*_z#(=*;KKL<yx<=<LQBmZNn+ilehk%5A=!q?eUgY@F<v7KmWu
z2oxKnOoEw|W=|`vl-64Ns^DqQSH7n_k3Frmf(A5;FCt{ESR*D$-fG3|X*SIX*b3lP
zD5v;v2V0HDkSRl#b-9CeN$Xlru7uT^)T>-?ny@L<00JNc#bOPSa3W+Hf-nme1R|8X
z9jvtyQ=D0Kk*Y<l<$AZ)f;}YPNF^jk4ukS0Qfn1POKX)}om6tB-0#-Ww7YJcGxx>Q
z&bSEaLMo-sJngtW_uOTr6~`}l^^Koh^XuDgpZ1N5&;G*xdu{s3UBfT{@Yh>^-QQpN
z>+OI4_S6gVxBc`Ed!Kds2?tEs`;4z$bn9R40PxD(N6z{BH*UM_uJg`2?K9hcYU0F|
zo_==r4LAPbZ+G53W7=QVT62x;yMO-69p_(giSuwBFlC=hzH#2*p7%Wa^snweWp4mI
zJ-tsqJNuGvUjF*)Z$^eT-f*My&OLpjjn?n)8+hjFIp4kXs-C{)C6}GE`{#GezW&ae
zOU^#xGNpXd&TC8JIGeTZH>?#`HPc$Ag5!Avxad7k5CbmsQ~dT0?T;xG2h6~LsA}A-
z#ZAs!!hjVqR*YCU$N>ph1I(mJgi@CjF~=N9LN0^Y$}neQP9brG?82@UnB0vi5o#0P
zqGKy|2+<AcG*2xp4n)X!-H^cy{}ur_`Kw<!{<tG<zUB7EpM2)PDSQ9mdzW<g^xi#f
z=HXvDV4JPCxbK07Iy=XFY{SV@zx^Zkt#dD!+TGLZI_U1{17M6f{+PpWz3t9yJKS-n
z&wTmFLvH-ttxr7j)S+KI@LQK&eE0O303LbtiQoR}Cg;FkxM-0Z0h=T@*m>t)x}>Mq
zy&ye3eF7})?mq8=%Ql$2?vY0v@|#~>waab?luPAbUUx+h1mFMR)xP$RJMOTHr=D^0
z3I7$Dpu4;GI~QNctTgMe8TJo!Ypp%@STU1!86lKb?9!tqFTGe}I>)UZMqx9G;y4PU
z5Mh&=5}GJ5krC^QR#Z@2@K9)zwz|}7wqBz~U4n)ULK`(CXi6B0SlEb-fi>d9UKhip
zMIfvp>{(`|^w1YMS=!u+4f+dN&>E+dL+S28Ih})O<ZWX(y$s?v*_Hzg+G6q_Q)UyA
zLk`~WuDfUc*LhO~@|WBGe&0QRKK!r)k3Z?_-95eAZoAcevmV}gr|kgTao3FPx7`}R
zqfb0NfBtK^?&#@fXK(zm4fon(*T3B{&3(G+s;dCF>#i9yAAaz`haWAKicw?$ba(gM
zGh?Q}A)J_0Qv1M3IgdW^)XT5Dntw%tAiR6}%xTkSKK{frzx&PA`|Pv(xUplqx;ppV
z=SwfV@Df0C=e<bA3K@Y7gYe#I_Yo;giikaEX4a&cnb~7zPkBlyPkGF&NP)@a7#O$e
z%2p(VjZGXz0fkYqTB|qe)q1trY&OGY6i2X3M847m_KNHk#V^@L(|9rBs_44mhLK3(
zCdHAM$i@P(VjyCnA!Nh@h@ouEL(*hs`}OdpmfYE7-AFi9Gc&a%$&8n>g**w3+_B_L
zJ}&3_5Q-XsFA)H=x3#S>e(ZCz=eQn%D4hNL+|^fGg&_CNeDIT7YzE*n+idyFvvU?M
zTHKPiTFM$gXg0%}Z~fbe#~pFUozq<3_uTuy8K<3a)la`O@5L9Nc=DN_U-#?QphcKj
z93~DV0)w0#X-ML$bnp-V<FOzJ)?Ite_V)JP-oAM+yyUKV@S#Vva2AQ-@(wxthJ{Ne
zV#pH15XewSL|SQ=JcWo!v0~Mz_xT0C;QK|bP-p{Fyu#QHW6E(9M^V%an$2djUavQ+
z^+r_%HEC23H?(OKIgD-OOS6P#o$8?p1Jok~O$m&|O^GaQBvv3Sbqg1XI5ey3a64H3
z&!J15X%uLwHiFE`?-pmUo;>RAA|o6n#)e@xO?EGpuO^gy%VkiWHsk&&`|i=%IcCc(
zHofJ~ccf#)^gI9PE}Jv=#l5E-27riu_KROnzvGX)?!2Sx>CLy^`SM|3-DB^a*IjSz
zFYLeX=l9xuk9`jUu;(7T?zzXV?(1JW=fc0=HA6&9nuvP(T{mYv@3rq2hd-H1Rh)ft
z-#vexwEC(54m$8F04A<7;qez{xU;wX?)D#k^QZ1L62VFnCJ<5gq8<RSLPW+W09Gus
zdhvz1UcvWEMc?<!#Wqze#O0!9<rRFtRBG#FhkB1q7zB+*qt<NJL(>f6dfz~Ae}7+J
zI8Y7iIx2)V2%sYyXj_kLL=sw9C6R@&#1<5Zu_8mrWki3K<m|kO5s)#&ijyE&B$aAg
z3ptos49~JgS>$p;88n=c<cTRGzky0+$<m&WZ@iH^UGTk)Kepi$Pd)>}%m*H<)@lb%
z*=y43tN!iIX;}y7UU-?4U8<F8*5hk$y!F>R?mqt5!=oqyFlo|iAN%+Q-@E+E0O2k>
z?{MwaS8Vo)jR8FJ=o2^m<`2XS$n4p3;WXb=;Xe0*OPBWa5>TmBhdknzn}4EED9nA~
zrLkRIW5;%FxZ(P9=e>CTh2L6loi#7I@N9Q+cX!X!3%^ewCR+IBLJ<RE3rzXqUZ-7j
zB7n0FyI{^!FSw}?<2V{wvGu;i0BK^Sbipeq<$(*uVzFFmE0#;#R`&g3(f3gt6Sj{n
zg^`Vov#>-_7zE8qQ0uP^^i=x>>Xm9-tq1k)YImhx@zHA#2U3e|9Fh-`hyuY-a(Qp9
zC8;E0E~o6Ca+eGu7aks0m-9mBP2EH91OON}e%vmf-Oe4)e*T5u-}L8GzWSB#e(Rz~
zpLpuPDSNlKm45QmYXL-2JnO+njyUX~c`v;5%7WK23Z#@6J387|T4}{>WIw&;S9jg^
zJ9o(m#~yLW!BaZB+TUFG&c6HX3E+)4-)ZS@1PIn#WA#PvEU|VF@jKPMqoaMogp~jk
z3jS`p?zGyf6Hhqyi09|LaO+?0Xzyr0@%S%ad(HQMe(eoRy!mDy7m-Gz+1j=V04A=s
z@@p@>A=V1;kNY3%`Dz~suf6<wA|;W7>84}1MyxeL;5dp+BrK*85Lc8YrP%j8zu*^&
z)Lyn7ZNBFhyh6d#zAm(v%N=dhiFksI>v0goQKaH}*j!Rs+}q!?WZ>0WW1z3Gv=KCF
zaZeb9Hi|{8P7(jhHhg7k?94`FogytHq=Xd!A|a>@C6(?$!;CC4Tn2XhoHARGv^KDz
zU;orrn}2Gn&E4_YU;oCHKfTWP^qza{vfHjZKKJ~*lTSZ?-U}}~&NgG_gM00<>owQi
zKrKNEmwmIP@t$(#`PuPHuPnHG`u%%+ZYKhM@S~q~b#|U}&S?OGAo#%*SH1M|D*(3M
zYKyJ6+QMBwZ{AD$?RS`~z~aXGtxH>4`pIXU3t)xu<FC2u@_|a_p@$#;#-*3X*7W!F
zA9?I)7oL0OS*M@a)>fYP!b>N9^_-Vpo)2LB_;KI6>e8%-UAEY-UTXmI)?15~ytNdm
z;h$XyT&jrzV2+94Sum_;i~&W^R)`FXfek4ls)C^y+9Rb%YtQowg;Ke#RBkJ&g69>y
zu3}Mlw25Dg1*?r+vk`;?js7SOLK{R;*jw)&sPrxAT{KV`pbghs!!7n`lp-l=%^h13
zCB#C$^*rmvaa$Dmbutl&P@1G@B&j9q!Tp2Gf#58bwza73<J<C-GUCW`7CRaGVYaOe
zvf__4jND20h%UthiHU6-yC5EdVx^U*lu|AkV=QrOVi6HBASAU=1;by2!7afC<WxK@
zuJ({pAO)30;b<rqA5P3#h*B(pJIlnB!dUlN{3!;NNGW0uY{3y}LXs7m1VYT7XRSoB
zF+e0pU~EjJTxw{~FP97DHm|+QE0$HUto?#@a2hQl5>O+G!bV&RqcGzx`K9HY9+ZFs
zl5_ze0t=Ld7AaWkS<&MB895Y_V?8<Sfs=(Zrt6F~l-PY!*@cirCFRz&B|*2&2=Y8?
z*eVf*x-`-bhs)D4_!5`a$=WP|DipI)tX)PnQ6ko5G&OKO`jlid0EG<daPYt~8vqfI
zrd%W>#j%}*!tKX4`_MpBB0RdM&Y%HqZ;C7^1Sto^bhbB;!vVRdREaGB<&t<v3Li2e
z5lnyvqt;JCFbSGLmC9wWQ0VCBXzS=`Yj1CBD=N<mbf+z(no&NX(#S^LK{{gckVr~d
zF(rlaTIsBX5`q{qZ;ADG@NehWleF$GrO06<&MdS@sHFy{wwHY8K*}as{BkhnCSBmv
zIWUCQoJZJ7E@h8$+53oy#JDPhlCua6<#6eMM{JTxIEf07SL%_DFS|4q<s^N_;KD^D
z<z&vdN)9BJY>bwWzP`w2F@?a1WO9%D&_Y~cYa=#-v9Lzas8xiph)L;!@B8HGLa|ux
z9M|5_p)s`FElX=5a>_F$`H4it73d}L87g*=1qht4NPt!bPC@2HLu<_`pUE?!RMJcW
zvc@1=(d^EI!8A9>$u`W_JcM5iV*f}*-Qm)cJE!0Z;##*vOwg<pv5OgZ=sky7YvsgD
zfMCf6n7%GUm}GuTG?@0`e7q?{O^_h$$wCnci3P|)h{(EHbKne<5+Guww6GDQg&B$=
z>?%P64w{lKWR88g)YO2$xI>1xnyiu(WrQ)(jQR#Danr=sS}yq7^G4H*mM!_VX4#5M
zvu4xmiX(iHk{4-cL4X`f6Qp^WS~EC=owsBeYB32QeZgAa%5feU^3|bFNC^}#Js?hZ
zB1cs&$0;$36-Pw*Ej6Qyl!D)-(TImbKg%9G<tCYM<w#O8@&rh%SXgpJt0YMv!Zr=A
zkRkmK;(OA%3na-mMIb;C*+c>%B31NRtTe4@HflOaIZtWULN_r$k~oPBAxTVV9Y#5c
z(<Ma=ktk|3;wT_vNSNT*Hb9n>7nYshHsiA{9h`MVp0We7ASfWa^$?`OAlg7KN-j4Q
zxm8H$Y4~<E!dH?_G<orv#kdTnP@d9SE0=yvNL-dj$IyrMIoRKw1e6cjy^-CIfb98N
zkC$J)B%;+}OeM`O<L=Q4b0q==5;FuKcDZHTP6SdeTB5~akwPB^%>cuYvnIQ0iQ+_`
zB-twx_>BmON3mivyjE6%${S9NS+mxPjbS1QB#45@#vx1$VG_mZHlHM$RBrpvU|=n*
ze};3gZnE+q2c+UrCK!W;Z#&Cul&77v2?jk=ei5_%(~1yCDVL93C7-x4I>sd}(J5Ke
zkqKz{m~uq4tVeNFlDyv8Cutr$v|=GdjJ060VqNjBgpM4yb~_@q1j=RHk<u-|%^SO@
zTOwyU1VNL9V$G&S+Acy)C?ZPsj@DBpRToG}lKjO+aTMAh4nkPVR>)f065AvZftZLX
zPTT^D8EJ+J<^(6@1j#58$B0rNisW}3M=dThoEuf1(PrDjpp9biY#=+6tyV@(0!ctO
z<aSrBlv0{q8DI+$7z;^v0C1i-(##Zt*vn{Ui4noAEe1*n?In*Qttc4+OtQNW(s)E7
zP=uxd3u1=ypct$~GqHsxz?EA}XHtg4nOqjdq}&kzfGJ5IW5p7~3PZ$-D0mpLN`3wr
zMr;Hk#X@d!9iNu`mI`D(b|f{9hyWOFNifXDeXbNUD-#*#LL;K$AUt+X(oK#e6FJiH
zNOtLRKmwhtk|VujttHtWVSS~QV%MEb69q_1oXSHz6Hyn)e5L6<hSTj}swIq|IgZfM
z+or&%bYpR&wbs2!Vnx_pVg=+>aVKkW>cq=rveq~qfpS`YH{HJyG>Ka~CbnR(6{}sv
z0ha)Y67j`Rx=ZoWs!qiM2uGro6v*h<gs}vMVgrF#MX<;TtI3fOL8?(hOmadpYY$Nz
z3K2O_W*h|oN~Y79p^}wN*Ob!I%IR^kxeVHrN1Xh@At&i7NFHUONE1j9`(BaQC8bW3
zQ<0=Hl{ni-PLIwV4X4v|;Dd&i6i#N>wJS^w5+Dh=OEwuIh=nDP3vhMNcbmE5(yb<<
z$dHXm6e&niu@w@6Wmty8{E30U)q+eTG|<vB1OzJ%2iY2}6(bN>7n%(VVZ=<Ma+i^t
zd&$IF6UR{$*^E4#Ix-5rdhmxb;wh5@0wm03s6w4!vm6i$gY&_r`pNP)YAtv6l1Nfc
z*CASrF(Se(C_W|T!5kCINk1*-G3YkK?>R~nfJS@*$!}qfwj_OgCx5dQVHOKZmPv%!
zg^(xc^c1$1bur=+Q1)le5;(MJC9Xb<mDU_cA~mNSkbuA>8kWg2EScEYI5rMQ+Hw&f
z(;8^dOywQjBc$#Wku+@<62=dR3`_DWnRb|}7wOhAifs`IA?LYIHZ5spQ6zCM$${g@
zVy%g+Lj{U6XXU3bw|=cNEhBGsZlnR_C@nQlr-CaemCFRkWK;sARiFfkJ<eI{A~7tY
zoQYf_&5B%VH#qUr$tDD`i7~V_73Au&B2~xS4IJ28+hjj;16C<Lup+HkGn|Eoo!U%7
zup|~p;tSF=&>#`S#zZDEwgrnHeYM_m<7Jk}l(c4nb^qI>iM1)}S@zg%mlvOV<kO$p
z%6;X+^UiweA2U{8ZQ_g1J$&dP2Yg}weO`R-;TNBK_@(C_zU%fsTzLLjMZd7h$}7*A
zJ!{VFS<gTB@Dq>S`_n6bu*$@Vj=QY0?ppJnfB3-}w*mOrhU?FN{*nC8EjM0&@PYfz
zpYxdeSup4E1#=!>W#Y<|HPDYQziguo)<5iv2cCHBkpwzm%HGdDHuE>Xx+-CnG@O)|
z)v{N!wQ*Rn);Pp&Yku4erE?<4#G3rRoNnf=NzKwuXG0nU#@AlZ!OUdSB1uSOHc7zc
zX{StvNg%PcVH7muAcBd>f{0TK-RM<N>?p_imL~OBwy>JKV}il*h{<+h;I6x;)oSN&
zv-K7aKJ+jVe{zdWAAI=HD2m;cj{9A3@nwDe1KWLi>%+cy;8RaN^Yk;%1GwSFKRxou
zV_jp%ocz@jE<FF7qrP&IVztK}yM$r1^2#f1y6MI*zcT;$Q_q3m```ZWe?0ocO}G5D
zufKooHC6|3-bGWpd;8pQdV2a=113zGwA$PkUOM8?gKxY2uHARt>EsiRe)Fxj^UpNe
z%a+Nd0=PPk=~}k7!-xzMTQOF^P?jZTFxZ0!kU^5Yfr&`q0yZ+~J{JO=8%$y|XX}s$
zBJ9*E0RY_y0<E-yN|%ZfN=yYw01lC3AVzF#OcY14F)4qRcZtXt+TNp#(W3L^{azHu
z5B=kjt+w34SUX{*@$0X*?sdPq(TQ2vcK+BCPcL}&HCP;c(3EBnxG%oC;EfqG?-MJV
zZ?@SsTW?8BtayiQx0!y=eV^QN^WApd@tJ35&$#z~0I`YRS+sciz4wdA+G|b%@Ys{j
zyt3fc!H<bmR$gh=jN1XsfBrE5yY9687mqw)%E4d$!FRst`+i=p&p)dS`7lkkls}d7
z7-v=!c9?$W{;>d&O*SIpG@#Du<L-a}0wc}Plo?zodz(k8A*g%8K(X<;lq4lgoK>k*
z>-ZSN5F&_`*hm<Qja@WA>P$vrha9xHqcj@jWPW@jN_@lr9`z>E@45f7OD-svi#u-j
z=`alMx_f$idpqFbyexpf-+q(3a@zEn_ul)!DibHT2eH<yx9-|oZn5dh^A|9y2@@uK
z>|-1J>V}()wL5ON&E-G%arSTo5VhicXrutGcNQ+*_X|fHbJSs{eeHr<e}Db{ha5Fz
zCNe)$MmUmEg&@gd0TLl{i*HlS2`R2QO2CbY0AT=vC|BAWq{Vq0*};oREGNafpukM2
z^*EW)<Y|&D1G(qPgk>E>5g`s?2~d(1{z`kuHYDXXBQq!(G}F`51W>JQZlqeaA81?F
zK7ZHWr(gQt=kK)r_Mh7NlaD?ARHa&NYi|RP?RDp0cxg{>-@0qBdFm-AoO;S}fBMs(
z0i1vCndhH-CV;o!Svd9E-y^0y_t-g(&As={5|VxP+-=h8tG)iloB0uB4|(@r6Z)Go
z@5Ox%I4rwngALYuW&VN*E3H_q)`pEcak*w3W5|@r(CY_3y*L5DG7=7w)$|sKh$XN<
zvSbO82=~cNEUYA!rj|7{Z^uiSMmlQ*0J@&|lk4d)hzBV$nK13xNg6JaGJ~{)ZTjoo
ziR3*NH5hfahMbW6L8Vsx$0Ltz^~ue**nHFLe)(Ipw&+AfeDaB>UtRFp{r5ev^Um9E
zwdH1iy7?9WzxmxCW<BumnP;5T+t>fn3omQsZMWU0Jx@RWP!c4t_a3`m^|R}8s=Z{|
z`1u!4b%9IOYBd|#K?i*PvP&)iaQex|1Nixs-#_-GGg||tL2euY$eG>~=YFDY=|tXg
zRwyfgbtnrG0!0)tu|SyE!Z0fh7Ge?>a=0Z{V$*m-PRgl(g+OF72P=@`ZxSWXjVoWF
z7-AEw?ud%`;I*JZR{4MZcF)ZFzjEYZ6IY&a`<-_KIerKN@X0MVTX&tc+uPgLTX)^t
zZ@<%>d*zk+f1f_1-mL%T`fCpU!ju{JJh1s@o80uLzua@*0{~7w@#yV8v(1%PUz_xl
zv$5t|dwcsz6INWjXbFIuZn^DqyMFefOTN9|=lAUG>%ZamH&0r9)yeCvJGQG!YrV^7
zx1T+G?vlkzhqIB)4vtjp$crp)AxKEbIRz8GLPR3gf(X_odbn6vPA#2|>m<r~;t0!a
zr#bR%8Sw@;oh1-?mzH>em&;TCk+jhWHyPjUcier!xo1E1%<QGz-T9?(ob!@P5}@wu
zufOrj-`-%X0pM^?vt~Vf&y4%dI^*QF_70`g&#(LSD+^vFV2#yRJLjxZ#&vae_qsSp
zN$N6+0GRrX7V`JBv(Nk6ozva%*siX(-d;F){q?T-#jgnX?2g-A_+MwbQ&<1^JExz0
z!5w$b$X@Q&qqRIA4$+kSm5P;;U2e!G^_56K;;JdT-<lu^hp|NLm=}Yb(=SOS=x9;M
zq4_A4W+?Lj=cd~dsN6Yj@MP1F3>uVhav4zpTCV+PP<wakTyd2(-|dq3L$i((XfU(O
zCdh^b1ZzzcMJ6_q%FjjRE2SfAtt*r`)ZRMy?yi1~I|8zOZ>ZXnU5$)OP_kwMq;yOP
z(9Rj`TR5`hSde}0ey_W59Ft2$#)=dZvnVFkP>Pfm#ek+H;gS=0#Tl)gfvt7Nj8F(d
zocJnQ4`2zy<Ba~pS|+x+Stce{&NP-xAQ@{+92sMfimpzT7-lMOq4H!1>EvX>p>BXo
z4#@VB7VK^iFQHZ+lxe<+3Z3zFB+68>RXJUkA|bZ0#L7v&AS+-Yu@29gBJlvQ1CSFS
zR!A|WLCcO%ocCG?lv#B1ST<mEkMw^=YavDmND}_C`wvd~a0QS>oOU5d(e^pxIEFIN
zp@yxN0+F|fN{+qcs3l`AneSwXqs@uD&Y&e(Qqr7wBQ3&)bCtMs>#)R3WCbp@wiRo|
zF|U^QO%myq7;IrV<(rw*;yO*`nn8J%|KqreQ`=g=gv4w~i7nfOOSr;-sbSo>=%&Pi
zq`<6HiiRGx4UM=POS%gUJCjkH>%7HJQe0dj)TVkwc9lDH;Ac(@bdv6GBspGWDOTjr
zmdfSZKvIX7l*@u;6_L*D9U1gYV2MD&iIp`=gdswNL?_QZud~GHp$|HuOBwG^TKLG-
zsG)clNw%B>1IkP}Xo^6rO~@vFJ_S}_=Ub5>Jul<FEl9%%)0D2QyGsJeYxV95MaU37
z<Y+J>i{uT+0Ua~59$8{`NxhM5E@`-&WnqD}VhAZ&q<5hN!!tyePko;0pF^4+MSdOp
z$NQv}506}iV+GQevc<2{#3C+R0Vz(lW)X-M5+kreHier31lGh1M3k<rB)3X~c803F
z!-gR(JmJWvbBmI==rZ`O%YW|JgUtwC03ugvgEF#|q-q%%Vhhs5l7t7iNREUDiHMN3
z37>GRR$M+yPSLE!X-Ua?ITwNxeg~O_T+@TL#ee5EOrl7_ZIYH0Ds!Ps1eZ<ATAMmX
z2~5Pylr3V;v-Z9QvWyv(!IPe-!WJN#xDpAeE63@ooT71ZUnD>bVsb%^&h+X^PB@#o
z5T|@o5^Pz5-)3R~afXC*mOnQSlDuO`kzDzw`VS$O!Hb&AHxn~KIVF^>kO-`2*cGid
z0++KZ`xX<slE{+vI?}8R+m~p>zebzTJOL(KP6}gk!65`PiE=`T+Cpgt>DFQqLkJXc
zlp;r&TN&P1C(0a4N*S&yjRg}dgBg~S&l1o3f5HF&AOJ~3K~$hcHf&0?wPBUD{v$Ob
z$G+K>@*^U4?~>!Slmc0;xG0d8gh>u+Gssu+VU020arR;-Xeh~trldxZG<qbFM?nxU
zfof<Hu?MSIdk(noimbs<8v4pEzYt(SD&ZVi=b+ZUou9%)&>G5J5=`&EH*-P4is7sa
zoU#^TCT12kaKJ=M4%8({TGE#Az{JdoV6CxExBVz+B~yc1V0FPzYC?jePNh&uJkvsi
zUTHFvN1g{=WKm#Gl#9i5adwV<5}1UTSV*%FLsY6c0z`SgbZYhikjt={^zxs=U0PAc
ziNc%(JP8cB<mHyEafxcJmDseL<_@9DBGw|slYLafMxK+5atU0ReBvR>mQYAgiK;Hi
zrKh}58IM)LYDLO}QXrQ^UL(@bN;H#ldyh(d1;VhL#E!V;=q9T_%h?E=H2iN)E-kS#
zu}LsNQ33}g5=%xP%4(M|S%iedSc%1C!3YeO9?*q}Siy(GSVrk{8M1Uf5+xC20f@Ac
zii%X?DukG{wz_Vc1?81RDb_x;0u`V=)*g8t3O<S~4r|Spl#qz90=u9CPN7n1d|(dT
znB2`}5=kEA1D~Of<Q1hs6vM>I?Ltf-u_SEC#WowUE|k`>7KaygfNmz%snn8EN~#5a
zaB9Gy9Vp=r%M_V`!8Q)J3AxXmC}shKhyfvqL&JfMJfmu0Man0oKt<LC@(Sd6DEbIl
zSV3#j9z36YP1+OI!ep6<Ik6TvJ6&3!n!w`1YHf?Vq;b*zhEhzTQxbs_N^w3P5*M1q
zf>0#3!hmM7##$JgN_PZOM9iG#bZJ>mB&Q)Q&luk4(3eG$!)&P8@AUte;zXeaK}^#+
z>5a6I1{Iin(M6>TDEm@Y!V1dgLO~S^D0t+TtoALFXn-M_Kqj#yT7nQM2&L6M4F1X7
zbpLy;WiLw|@tk;qC@~$d5UdgxUu7kU29ZR<MQR-7L?IH36vdurSs&g543l`@XOsMq
zmDJTFLKY$hvE_($ldVFegxGRH7YZmAQ1Ic`MQc(8cpmA36f`uECSqdCL`n==@oMt#
zOD<V!(F!~BJtdW&*%DiX7Dhyn1U(uXo2(FvBNt{zM@W@w`CvAm(MS9t_MMbT0;K`&
zB39TMi9`gU0xRLB2|P3l;upl%q8X})f=9Y6We<LV3YxV;#`w%6q(ngyYZTMq_8~sY
z2iH=oC!KNXSAX>VZz<--9-XoF+G`{pXG>&Yt%O!$vBr7J2qHGNCiM`JQu@n>e~DQM
z(ozX&=R?}}zdLpAvyUEr=)oV-<D7Boi9i0qw?;dA)R(_F+Nt3!wZ$ep))K`)1RK~W
zkf0$!9YMu5`r}G>*ta<BSr{!{7%zF-E_qv)zK!m;(ftm(7g297`ullcfcq<IpvsjR
zR~r;HIsW(KE-ej@_(wnanF4!`$~osvafN|I46G$#f><$WnKA$b+G@)!_S|!~8-IU`
z&8Hz6BuOL$wBruj9&pIvbLPD8fj@}b`+ji6PnU7oDJLFx{jY9Z{$BHVQ0MZ>0z;E}
z?qbLSL@WdX6Kg3bcx8!vDwI$tkYBdsK^53j#IY?gDGw!v`qw9y<l)DS?Rw;aY1{9-
z_o79M2=whsFAl=6zkgt@H7A{Y&P4!r+j)nB58mJR{XhQc*6)4qs?9h5#3kQ2_vKd>
ztTAcz{SG*M?|nXZ_~8e&wUrkwUh>VU|Fd}E(r-__X#DtbKfC(-#~gRscH3@q&eu)_
z(9_d<&bb#aT(~H^{f~e6o%Xi2Z(sV~S6_48_r5drb9?Xq`s;53nEULbpWA!?6<1hc
z>LnM>o-=2iwbm|`3P1VjFK)l%?;CEg{^_TjFt)2JHs+2yr~UTEn*f}3`bmc#a$u!e
zz2(-wUUB6$r<`=$y6dbpdHr=CfAX27OS{)zYtkuaoICr;2XDIh&l_zpd5uY{{qdID
zzW<}EuDas8ot<ND`NOZz`uYV6UVVM|?6jC-2Io!Dv=&a6VrqGRB&qEo35#V50)=7-
zDng`4mr(GHSGCrIDq5{rwb^#f%EuUndiS!j|01oYx9{;MpWbu#T^*<0ai?vk-93X-
z^#;J?$?F|`%*o%J`rV_BJnUl|Zx|c9^2!rtKR@@tgO6-0m(KmK)Bor4D|X&}%HqXK
zPB`x9f&S{XKmYX$^IkgUxYJf$W#Sb-{PrbNzq{AIhs<B_>ctnHBe`ITQ%*mp(P*A=
z_IY>QHEsB)L}aZsCrzJm-;{$6z2U|`9((kc0Xh1}!=9fr@1R4!a?~*=?Xdl4#*XdU
zXRqCN+hxb2jy?JGv(7v6h%arm)fU#6tv<QMH@|iH`4_d)=~`>+_4*-)A9M8ar=D=^
zkssS|@}=LpJc{D|4?bc<S{X7D_iygUx{zf<Fn}Q#LJWyv4Ov4rA``>JHg1}rVVYG_
ztJ-SCR0g7f{<yz4>g|jA`lH_dxUWCzuSC^qT>Doc7nf|v{iGz2cVq|wGiKbk<My9n
z;%&Ft%EtDw$DdBUi2(5X8~-$a{({@@xNF|L7bkDHzCe`XU;N_NHi`!ZDw}V;)2xU7
zA!46+^66DqnW&Od+5*UDKfB%Bxi38O=;MG~ea-dTZ~JLtI4?~KtA@0KL?r(qfFKC(
zynDI;&(C{d#qr|=sMcybZoloPKfQG`439bSw4UC+U3cE$j=QEm^W5yGo_Th&t#^Fn
z(I)`B{PO%+4?Z$v9v*u5Q2=x1y*PK?iyMDz!}l|jt*~e(?+c4nVzr3-Q6fs91ll<g
znUsq?5o1gg*hbw{E2cJJYQ3h?9Stmr`xl$Og;=~0i~eQEB?(_1*~sZ=;%|3O-*Ssh
z$98t@y6b1B&6t_FQQeEx)7@i?6_HA<*51(uLbX;WK&&xhPCxa82k!aXYcD<f&Hp~1
zh+Sqbcdv2d#(wgXo4+#e$yeq*Icw&fg+gKV)mB^XVWZw?B*#`*DFBy#`|`g}zxSLo
zPQGv2UynTe5J1L`8`obM$bAU_YW3Ri4wrWKxPxl7);XqQxyF!_)06JgA4-0NAl&+K
z76d2kIn;*pN(x|&M3D_cM1c((Ca9U964wUeT3^)H8}<F`%P!7K%S6<@c<Jofb9df(
z`|Y;f=KPB;%{YtOtlP$P7!iOv+S+=%dzH&rAvU&V_uY5?{NB6oci>??J-vs2@sKI|
z?PXhO!lkFT_kmdtA9?Ia+3oVS-TX+bHLieSsZ{cPZ^$6C<0y)*{`s|6|NOemKC#Kq
zulnJuuf5UR)6>~8#+}~u6CdyG?ZYUovopD@y}fN|QmN}*Cn!NbEYHOwd_5m{COPCP
zAr?!ZCIS*78?r1jJI4QZb5{6dE}UoQ-g{^5KV@%Xdh+RK;Y2opH5R~>{q`2Y1{<uu
z!3OI;_2koTr!gkBkoDJFXTgHkdVBiX%WeDav%BwkA`%3l_Ot-gX3X4Zqsg0oVq-wI
z*nHEA&i^`qRaRd4ysw`*WI%7fv(Rl2d+fH03mzCkDDI!@ueox!T|Nuosb`+8RI396
zl^ORw@VQ-gYHx3wIB~)+e)^+HlSbuU2kf^GfQ>d-f5Q#dfBea(nn9oxkDkvK032NX
zJ<jdWF(aj$%$$%NShj|2j5xC4yWb|GJ{hUK-%$>2EX=|TW~4D4AOb7Viae#1Qp{}c
zxa+Phw%GK(`)08#fh-V61k21XzWmDFcisGptABX))z`oE#yjr8UBT2_{&M@|$?N^)
zmK%Qgiz{#X<Db`Acg<5zJ?^n5o|rUgwfpY*+uLt1{My$qp8AaoZo1+63(q^}fmsg$
zw8Dxj9Ci4iLk9V~Km6&kOD?+UhU>?4boBQRjP^obapljxFlFCgUw8HNJ8qqM|AS9H
z{mh^L`nQ?)J$V20zdd;GUDNKF`M|7))34^ebpqhk*I)nB?|*si&#t)g>T6$r{mq`9
z-p8MK`tgVF*?Oxj28*%D4<$;ELqUCD-gM^^vIGl>VPeD)M<GYlKBntkzUe?aqZexa
z0F8UDs}&}$1qabc9Xia+1WKmEI%!j^SPLW8(F6bnv$$koh;3}FF^P^t01E7Dr5%F7
zkVzjb6=KuSbF`-XpPc%^)3O|$J^T2qDF+?)%KTTC{~k-<UNGb?BQFz;yiBQVGsyML
z&S#XSM{skS6b4@Yk&V{!0lmv;c|B)n%v0KlTeqY#0E88(BrYhc*+=3cgOjSY)}_;i
zfYLA`0I@Z(wI;Q>kxN$rh_y*A3`xy#t#`X+noC1_hCI|q;$#0`ZO))))4<B~Q%3s9
z2P5h(55=_5TCHgD);5>V&Xt7RwNOq-!yEvYTg$kD+}1%`(>`4o5s9^?h1n*67^FDK
zcO-*QQSXTaJ_^_4N8j?Sg@}eSML=?vVm<t8`GwC5F3WS*We`njX=eyD2qH-`b&3GQ
z0D+346)Ejjorsfv3E~RkCQ0d1*jp073_yVt2|=u}k%?1OB^bnD#jTXeHuV|hU~K8M
zw3-834S(eKzwIs$p>49|w(q<D_u0f%Uv-D+8|h$J>1&mm92g^V7x%8eKQZ=QiKeyb
zP_|sj5Sd7k_O+Kp8@imONb(O!D>GlK*ifoIrbsYro%q{Ia06(EmP%xjl=|@>$tm7*
z%P$mB>+jJPe*|**=SA01_9iE*!~l%a02C7dWjg@U@IA$20Hu{t;xb8y*d&LEO$bI>
z2@{!INee)MKxD1N))iNAWI^QedMeM=b$7}1Y(^$26g++G`~%R?PqOd)|Jy7^<1QcO
zT?KIXk~9&#6-A_cT`CmIB&4~)gmm+AhFWJ+6B*1o2%sbhg%!tH1|<S@AQ(wCpybgg
zH;xbUIsch9{9XHS*JQa{t6JKKvdahCT9T9j0FR19RP;QhRmrDfi6Ui*<n1?J`j7_j
zpWjANm_MlYQ9A(=ZQcR^v+_Kz>=isu`yOen0~i@4Md$yukET%u9?D6(S^I#=C6iiQ
zX)#XnlP~~Zn29-NViJ(jx?J!*Py5PerdU^nR9jFs_W#J`qif4%MM-J2T>HSei--sf
zc46ctUt-cqE8i;=3gx1&SlKvJ<Rp&cFpNIvA^l%_|7{4xw8-THQHV0}(FO9y41stc
zBGRIiaM3II+SdiGJsoizN?ZV2D;@RrFp8>C7@8RW%6`xPthPLAO}-|;2e~rC@!|Op
zRHc;X`-MWGQ1A-{-_stmVpi7LFbM1QM!jBdHk(ltzUz&YQU@G-1b~e<+5E55h9ZpK
zN84$aJ=R!jogp9o_tYQEd}N-x(TCBF{puOt{GT6>cJ|;ykNS}AyX>}XkpDkRE<z$a
z=*PNjA;OBhE>jpE7gsaoNv3@jU0lU07E4AKBctmPSK15;K^%pu(U8T>YIoG^LEOI_
ziCZ_>Y|EW@+w-3sdA{v;;FngOxayD(x7l{5<Br(>=0E)U1H4hb{rsvQT=?}<Mmu}t
zv7?^)02>W!`BTHMSAL=RPu?$Yz7R>mNm+=Qi|iFVuf0$z77DuHd7f`QV#Odbu{BK-
zM^PiPVHiYlXvN0FLQra0C8Jy$)7kZ%AO3u`)h2Da`BqOq`RI;2e{RCct6ch>AMd%(
z0sZ}b^Iv}P=;KeD@`Xc>Iq~%MCU5ldPi(&TzF(Mm&))%@aLU)*@lnT~a>6NR@4ep_
zw%TU9xpSU9@Zc|hZjXI8`uHcRmC7qGCvg8uzw?vzCU3a$CYuio^j&}BU#H!5TV<dh
zz|2SHO}p#1wbowm`#-sU<4ra@;wxW0_|T&U2Kwi}{Nj3(H~jhqQx81kh~4*|QYw|_
zKL0F$<4-#4((him|AB{gbc}iGiAVBd+i2rWrW|<az0>cU{@`=tS6K0gubg<?NoS53
z)A__>4^RE>Rg*XT*fyWp@#!ZY9q1nwO9jCG6Up@7-OV@bf`5v;xR5X{+Wjc2wACeB
zYBS|A(%vOwy1e$W#ZKu^%{JR#Qawcy@lB+4&C^xgQxCcuVNWzrp=MLrrb3g0kl#hr
z9q8}-?e$l`^y1vJPWcLevEx<%aKPR>{OJ$BIrNC*02pI7-F&MbU4H5ReDl2FUtf9R
zss|tTl~a#D{Dh+pdU)2%-S*h`m%sSQqDAjq@x7^c-}#s9vJ1{Rx!I^+eBNpIOuJ)v
zC)V24*I4U;nbVIxY`<G>y20J|ki(9Cao(I0jymYflaBh-wmWo<9k=W5pWptoyPb9N
zQ5T<g+84fb<YrrLJ>uBJ+IqeI)uRtN`_!WkJL-h>CvSAc_b!d1=-4Cnf8(_U!|(o4
zwjmVr&uK<kokdC1A7=KH_So}T6+FLK@I0l!u&}V!T5AlM*u<fPQ51xM6|oe%zQ_g1
zy~iO~Yp%NDf8r>5>4iDt#*cR&zB>QqM<0G*#OvcYR!V*8h+}X0<8SZ0{g(Ir=t0oD
zclw<GvisI+wQaWD@wsQ7c=R8$zIN&{0Jh(0*L$YjF=zHO0CwMDGXS61^phiw?TJSp
z0`Srcb6<LK?&J+Oe)J!+-uJ-XQyUosGbD>+&Ve|TyGR;Loq~Uv9Og)v#pR|-epr+e
zrLEFNdB!W)ViBb_)!tU{+sj^Yj8bhjESXv%GGJraZ&<GunQASrR(qTM{ZS>PdPH@m
zDpM8IU~c+|inOeqXn3ntt8o+ou-0b9hU@j}XxA@Yvgq^^k63%%^?!fs^r_#yYR$FQ
zeNVT`S~Ep-XZQWl_b$Ef-n)-K<!d+Je*ZyVItoBn*SKm6(T!z{t-E_^a<*FS7}NRw
zhV(w#dqqf&x)}{3yEKX;O|O@J2!g<cC@ZBrt$j}y3WZ{^P|&_snuW*+j1^<zIF7=o
z5eAJYXvSe=qSzWEZu2Du6O<<HEB^zT2-l2>Da9j~%4K)({BuuV^k1h=*<;&kW#GRq
zy6jy$vDUaeWTjHs_eULG97Vsm?x#l|y6;8jo_6FhCvEeY9sBxv+EYaL#+z)m+UjeJ
z_TA3T1k+e<Z}02vS-yw+P}+!UQT7R2viTo@`(;IJnpy{Gg<xyM7>b3hun<^5`&2CJ
z_A$lwu5!niwnAH3`2`}j3c^+j0SXQ1Mx<&%6b3;M^it5zQB^f7+z2=bRRr-MUct7N
z(9uOJw8dlI^^w9b)Y^O3%K$8V`>i$BT!)C1Qk#5YO8{GKv)xax`vZU=Xg)vt=|;T{
zAc{iI^8rj)d6iSnJby?hix$2!dBcqX?6k`sDWZFX_Whq+zr$yD1MvKFPgSdxN@ZZy
zeKU6a?C09rJ0`5W%6ESF^HoPDmp%60AHaH(H(YQ14WD`Hu^?zFrL?zP&-lLEh^%Eq
z1~ckrl&}v<@rP;bkL!g%ZdcM!nw6(?p;#!ll}e>zq3C;_=PB(9831Ih4db}pY*uQu
zO1)kWnt_R;*jN!FW>yMbQZH0kvC>Kri8b$T)qUov$5vf!(k*w4ES==rJ=5<jx3&H5
z=DRPu{Hn(veGo*C{bSZMPd)yfA6|3KuWtU*5y$@Q%I^Vq<e>+?@vR>ocI5HnS6K0&
zFC96glfT^jyRTm`_3G<yYHRPP4D^pCUtRmNEB5;Qfj_$XH#goo{ow~^&VKgEzu)oa
zhi1+E)9v@&dgrVMW=?<Pq5DT0=bLZ5dd;tHzWj=7e|7DZZ@u|?UvJN|Pd|R=J&$j;
z<<`r7z~P$kXzg9+YIz!!a<NYdNY)Y&*x}7cEMO!7Kr1MZbb)=Je618K_IywKTDg?9
z5LZygS~1p!Q51%87>0p~1Y(pWCgTcpkrffo_{3C1QL*yGMsXa4%^(VB?7x2W(+An6
zJ@CviN9_OFf>++hcjI_@U2MyVOIfz?J9J@)2uy-3$TNY>62M@ebwPOrT_|Xu6|rJg
zu7pPt%w(*IV~JxE#&H-$Q5?syHI!xswh6XYF)7w1ufWV~l`%FnVGxFmuolCV|J^g@
z{pYqp3u7rwL~kLaTrij>)?jAVN|&_XraksZDH3H3VnD1gSrIX@5gWx}Y{D=KO)Me-
zBxV~k3y2Mf$b(W!wOP`nN`|emP1`h4Se3f962QbT<^QF*_`mk9jY?xO(K1Oi>QIRc
zrAR6AlwzMXE7n>Ul=ijO3QS^Pj2LTRjEFU2jfqVhn<z3-Y+_?T6tY-?K!HeED5cA~
z;3=i!*ccOsVHAadm>98<2%v~y#CDDQf9+j+bX3I||K_o~gjeW+^ba{8Bs?N5kc5DN
z_IMOxf&t`FTWIAV5}F`E1SymfXu(54Pc$5ATWt{$BoHyDpjZ@8Bmq1@u>?Y11hw+A
z<spv{lHGgnO#hgB@7~?LyL&g;C6DHJ_K&-B=gv1X_q#LS%zO_^w!s~MmY9shq=OMw
z0|OJzFkl-H8*$iaXB#0lN`L|<90)XG*#Tf@TsV9KNn%cyB+Cj@Tuc#WDomA%5yuQL
z*crhH+p&#c(uEOFxJ!~HNxH`FC`^$sLmaw*2*Cps5sU5bK=WZy1lF@rHDZgZwudmF
zPMi=-D7I6Zo!V@68?{ja7&u}K6vh?AxX_DL7;BJRjgm`J6h-qKi8%p;DZ&_IN*xFx
zgb7nP=S-61o06<3vdmlz7z5$-R<$1?h;|`18?|!?ZKtjS_Y71-(m@yzjBV83iIbkP
z9TCc@oe@xMK<oq&f`D^HL5hMEi7ARCD~xejR&I0oE+{ev8NkjFLEzwoVqyn^0Ch%P
z5kvJ-y;E{J!O0kJP#PF;37i1j1`Ysj2S9)brcpGiYv*VV=mxapK2>`~Sk}@gE<Opg
z<-5>Lq1q0vsz5L32;b;Twe|sRFGs{MRAV}c5`{H90zD&Bqe%(l9`{@;f=?pV{iJZJ
zh=Fs3b74XzS_!Hj2Dj-DnA?nbz@qAW%Q|nguHWxj&la<%q!bYZfVFq5h9z-_5zs7i
zbbmcejVvHG^xWYq05K3oW5TEhxSLDdEFyA?C=V22gs@;$hQ&^@3|?8yU9EJWWk88I
zQV|S*KsU)z&CZ3VRxMN@5;_ZdU^Xou(>9dV0Y!V-XgH{uD}!px3<zNiBFH4DwyY{)
z&;=^cj;1=$DnPN=kwqLKqz(qcUR?psREOu9{{zs6Pc4wB7&Zi#Fz$CKKp;jGgl*cS
zBW%sM7O0u44i5xVs!Yo{Ak;Cgv?5SFtcB_UgEK`|goP;QpoO<p2OO@75ujfP2#Lhg
zCS83Hsp5}t*pCnr#`FvTMD!_Rcot1BTq~qwRB2_P3^6fK2p0!Jg-O4yNt;OL65UGQ
zpvu6F!k3UsK-0BTBRXhuxv+Cqw5?-3jIUcK!b<?uDR`xHpd~<MNn(t-r4LVE=bHRs
zd|!sxY<iL!)sG{D2=>;A<8Ju|v`B|K<GBSCzwn~(j=5}xFfmg|HpxvM1&t535-Vr}
zOj<=Hmt=T>Zg7ulBWEB@Q%VzP5W+wa5G0f_ML;E?<t-LRy3YgT!5^M+M13pAL5MGA
z>Hg6AI=zj;{0pFz+q_<YX@|R|3T@~>?!6fypr~A@1qM=w4#QBOjuM(CjXP0Q`1J!*
zR*EQM`}beFI(OL6Ay=<nudJ@wRkWx0$T7}&q-CkN*nVqQuk@uGQKEV4Uzj{8gOK27
zFHV;W{djPS`i~o@9^>j4<}b*cn>EYfa0DppWZCKY3zuEFat+)*HB4s>lf_d2b_vA0
zmh%UIDF+n3y?JDEk}>70ufJKfdfo9aPJ~!|2;dwF-`+fGqzT>9&rd{Xn=U3MrnKb1
z@h`rtsHhH_IeA1Pm64*20UR`UZTh-dRO?qWe;$}u03b18*x0cT?JO*UK)m94$5)Is
zV8hGnhCC3THes4Siqob}`p53Qfos(?^zGyA_ckuJ|Bh{&-h8WIeO^9`n9=|JKK^z!
zy4%<1ZHNS2N(cZP`>gaYufO4W$K*3wwPGojxFmB);*tci46+1@42sMZnKSLDU~7>k
zD8WpdgN%NAj9Yc8<4K=%FE|{IpN>iC+&OBfAHVo<asAR#AF)!aCg8%wOQz{_W<R-P
zQBH)20>JqT{^-t(C|&Eo93hU7P~BG4y%3?v&9tBTPMuC?*{L&Sr_PApWQ>(pRF$1N
z^X>TydT~J~cO)DK3n9pTZCI590KoXPaaC0{2R=SDc~S-d^zGaGgWZMV)_X<U2M&z;
zL+<kAq{OAqKij8o?}DwH_U<m+Rj_5ifY@N<y?+{Wd;CtGD)(1FR_5&P-Mf3`4;RW#
z2ca82QbA$bF@VJ#h7eaRj6j!3y}Dz4-o~jjW=)+jD>Y+kLqo%d`wvcj;>l^#XFZZW
z<#t_Ncq=<GBYofggYOpYNlzPRnqkY<f)oEbnV0`+PWIeGhf5|+o$>DOJqvTP0u^dm
zP~E$4zrR};<M{YNRtpLd9|WZPK*Z=;2NiO+I5!fjR&}!Qkv$q48`rH_IsJ(#r^_qt
zcDvIl<;=@m@?1`NMO9R%C_S6ur68Xab8yeBUAuG{k(97#>5BS0^|x==rHo3x{Gadq
zJsTfCXv?-80C4nJX;$X!pbfTyGiNF*Dyx4qB;NGyrHhxnQo=L9ASe$=_u|FN#x-Vm
z;Z<UG=2J1fVvH#wh!-_3Qw>X8?#nO!_dmEtre?Qg%HtEFqr0Czp&EWp%t-tDn_Km}
zgivEG0YG0@h08nw0P;8fb@Si;<ePr;=B?{DECm7y6{6?vJzX$+V^bcVFnG{FW6Gi8
z5)kf2wMRTBVxQ%{qmyI%&UdorFPc8{X_w38aM=I(;lb>j=cmt{+t8?5fO;MXn$Lg!
zYOMdpkAHN<suyD86Jz5OCr$fh>ez>G-Ky)>tt$ZZyT4EWetiLeF-9o`fXb?x5lIOE
z@ZhNAipt=tL5ujb_{i32U6%j=0?A24K~%nv4)~_`=n=hh>l>3NX5_!L_Vc43XQV$G
zE{Yrg5PVv4ujz&aQxgsIm%3=dynlat9squ~Y;janR9fn|-uK-H0819l@7^tJ%Gf`Q
zi5WZ~ZqECv--C+E>PwfuOB_C|<j7~c3bp`3wdcO(0Ob{x0|&&d`Tg=gzqV=R^53MV
zr2$p~sr}xmyYtd38^cu%0Qhb08cC9ctPKFyu3zufvnK!y8#-h|-XBHc;)T!b+iwzd
zuUT|gwhUb>pw=gk9zCKHdJNV7+H5po_|O3Pn}#b_t|pHeYfSmsjHdwLaEZ55f``UU
z5EsupyCm$@0D$`XyNj3RzP4%0=#-I%i;p%sUGEna#PsTE%u{;&%ZSijmizjqw??NV
zA1*%D=ybl<Ou8O>t^qf@g29pjn20YG6taK&VXJ7q3>OyZ#ZbuE+H+@X&xz|D?-V_k
zlda#Xsy@5^<@|8aGeJ#lZB1?My{9Yi*yLaMCZ>*km|9`BZ3Tr3bFu>qlGQb5KRHy~
zj2hk(Uh(+Oe24~neDs4O_3Q7yzmc7@`0m|?5USTyM2@cb!hbR*<p<G0!dd}9Qo?W)
zJ2(Nn-&BD27MVk~aGilzXO|{DUR72q4nxj;_062D1s5-Suc#ve4ppa`M>pVP^lJW#
z6CO*qSQ6?#IMGkpZ4*}b*|&+-4)A{c^sM>wGCw--$+{Qw>+1b_911&HfUd`&>+YR)
z$1c#MF(xwSy=@qN*rh#sJPuijAtJSCMF=1B`>u=-1W>+jD_>o+RI1uaBSS%`9pa&6
zqCd>d7SipbyR3H*_v)S259B`D3kt8J8tV=8o|Cl`X+OoceV8^SX#3hk2Q-bXoBc7g
zcRx)Q)b>0&v01ZNYlEgpBw8NYXMg}qA|tm`*~JT*`W^?}#ID^#n0kpx%k15U2DJxi
j-Hrc-p>7@c|G@tMCl7_bZ+OE~00000NkvXXu0mjfO|987

literal 0
HcmV?d00001

diff --git a/services/pocketbase/src/handlers/file_download.go b/services/pocketbase/src/handlers/file_download.go
new file mode 100644
index 00000000..af604949
--- /dev/null
+++ b/services/pocketbase/src/handlers/file_download.go
@@ -0,0 +1,70 @@
+package handlers
+
+import (
+	"futureporn/src/misc"
+	"log"
+	"net/http"
+	"os"
+	"path"
+	"strings"
+
+	"github.com/pocketbase/pocketbase/core"
+)
+
+// getPathAllowedForMaster returns the pathAllowedRoute for master playlists,
+// or an empty string if the request is not a master playlist.
+func getPathAllowedForMaster(e *core.FileDownloadRequestEvent) string {
+	if strings.HasPrefix(e.ServedName, "master_") && strings.HasSuffix(e.ServedName, ".m3u8") {
+		dir := path.Dir(misc.GetCDNPath(e.Collection.Id, e.Record.Id, e.ServedName, true))
+		return dir + "/"
+	}
+	return ""
+}
+
+// HandleFileDownload redirects a file request to a signed BunnyCDN URL.
+// We use this to avoid having Pocketbase acting as a proxy to assets on S3. (Avoiding a performance hit)
+// @see https://pocketbase.io/docs/go-event-hooks/#onfiledownloadrequest
+func HandleFileDownload(e *core.FileDownloadRequestEvent) error {
+
+	// e.App
+	// e.Collection
+	// e.Record
+	// e.FileField
+	// e.ServedPath
+	// e.ServedName
+	// and all RequestEvent fields...
+
+	securityKey := os.Getenv("BUNNY_TOKEN_KEY")
+	if securityKey == "" {
+		log.Fatal("missing BUNNY_TOKEN_KEY env var")
+	}
+
+	cdnUrl := os.Getenv("BUNNY_ZONE_URL")
+	if cdnUrl == "" {
+		log.Fatal("missing BUNNY_ZONE_URL env var")
+	}
+
+	log.Println(">> ServedName=", e.ServedName)
+
+	expirationTime := int64(3600)
+
+	cdnPath := misc.GetCDNPath(e.Collection.Id, e.Record.Id, e.ServedName, false)
+	urlStr := cdnUrl + cdnPath
+
+	log.Println(">> We are handling a file download request with urlStr:", urlStr)
+	log.Println(">> FileField", e.FileField)
+	log.Println(">> Record", e.Record)
+	log.Println(">> Collection", e.Collection)
+
+	// If the request is for a master .m3u8 file,
+	// we respond with a signed URL that has a pathAllowedRoute. ("" otherwise)
+	pathAllowedRoute := getPathAllowedForMaster(e)
+	log.Println(">> pathAllowedRoute:", pathAllowedRoute)
+
+	signedUrl := misc.SignBunnyCDNURL(securityKey, urlStr, expirationTime, pathAllowedRoute)
+	log.Println(">> Signed URL is", signedUrl)
+
+	e.Redirect(http.StatusTemporaryRedirect, signedUrl)
+
+	return e.Next()
+}
diff --git a/services/pocketbase/src/handlers/hls_package.go b/services/pocketbase/src/handlers/hls_package.go
new file mode 100644
index 00000000..31b4f9b4
--- /dev/null
+++ b/services/pocketbase/src/handlers/hls_package.go
@@ -0,0 +1,52 @@
+package handlers
+
+import (
+	"fmt"
+	"futureporn/src/misc"
+	"log"
+	"net/http"
+	"os"
+
+	"github.com/pocketbase/pocketbase/core"
+)
+
+// func getCDNPath(e *core.FileDownloadRequestEvent, mediaPackage bool) string {
+// 	// e.Collection.Name is "vods"
+// 	// e.Record.ID is the record ID
+// 	// e.ServedName is the filename
+
+// }
+
+// PackageHandler handles /api/package/:vodId requests
+func PackageHandler(e *core.RequestEvent) error {
+	securityKey := os.Getenv("BUNNY_TOKEN_KEY")
+	if securityKey == "" {
+		log.Fatal("missing BUNNY_TOKEN_KEY env var")
+	}
+
+	cdnUrl := os.Getenv("BUNNY_ZONE_URL")
+	if cdnUrl == "" {
+		log.Fatal("missing BUNNY_ZONE_URL env var")
+	}
+
+	// get the vodId from the path
+	recordId := e.Request.PathValue("recordId")
+	collectionId := e.Request.PathValue("collectionId")
+	fileName := e.Request.PathValue("fileName")
+
+	log.Println("getting CDNPath")
+	urlStr := cdnUrl + misc.GetCDNPath(collectionId, recordId, fileName, true)
+	log.Println(">>> urlStr:", urlStr)
+	expirationTime := int64(3600)
+	pathAllowed := fmt.Sprintf("/%s/%s/hls/", collectionId, recordId)
+	// pathAllowed := path // fileName is something like `master_1234.m3u8` and the urlStr is something like `https://fppbdev.b-cdn.net/`
+	// urlStr is something like https://fppbdev.b-cdn.net/pbc_144770472/j8cgd0qqjbzyfi3/hls/master_j50o7q3n0i.m3u8
+	// we need to use existing variables and set pathAllowed to `/pbc_144770472/j8cgd0qqjbzyfi3/hls/`
+
+	log.Println(">>> pathAllowed:", pathAllowed, "urlStr:", urlStr)
+
+	signedUrl := misc.SignBunnyCDNURL(securityKey, urlStr, expirationTime, pathAllowed)
+
+	// redirect the client
+	return e.Redirect(http.StatusFound, signedUrl)
+}
diff --git a/services/pocketbase/src/handlers/s3_download.go b/services/pocketbase/src/handlers/s3_download.go
new file mode 100644
index 00000000..abab4f26
--- /dev/null
+++ b/services/pocketbase/src/handlers/s3_download.go
@@ -0,0 +1,56 @@
+package handlers
+
+import (
+	"futureporn/src/misc"
+	"log"
+	"net/http"
+	"os"
+
+	"github.com/pocketbase/pocketbase/core"
+)
+
+// S3Download redirects a file request to a signed BunnyCDN URL.
+// This bypasses Pocketbase file downloading API
+// This is useful for serving files which have been uploaded outside of Pocketbase
+// Instead of being uploaded directly to Pocketbase using FormData.
+// We use this method for serving large VOD files.
+// @see https://pocketbase.io/docs/go-event-hooks/#onfiledownloadrequest
+func S3Download(e *core.RequestEvent) error {
+
+	// e.App
+	// e.Collection
+	// e.Record
+	// e.FileField
+	// e.ServedPath
+	// e.ServedName
+	// and all RequestEvent fields...
+
+	securityKey := os.Getenv("BUNNY_TOKEN_KEY")
+	if securityKey == "" {
+		log.Fatal("missing BUNNY_TOKEN_KEY env var")
+	}
+
+	cdnUrl := os.Getenv("BUNNY_ZONE_URL")
+	if cdnUrl == "" {
+		log.Fatal("missing BUNNY_ZONE_URL env var")
+	}
+
+	expirationTime := int64(3600)
+
+	recordId := e.Request.PathValue("recordId")
+	collectionId := e.Request.PathValue("collectionId")
+	fileName := e.Request.PathValue("fileName")
+
+	cdnPath := misc.GetCDNPath(collectionId, recordId, fileName, false)
+
+	urlStr := cdnUrl + cdnPath
+
+	log.Println(">>>>>>>>>>>>>>>>>>>>>>>>> urlStr:", urlStr)
+
+	signedUrl := misc.SignBunnyCDNURL(securityKey, urlStr, expirationTime, "")
+	log.Println(">>>>>>>>>>>>>>>> Signed URL is", signedUrl)
+
+	e.Redirect(http.StatusTemporaryRedirect, signedUrl)
+
+	return e.Next()
+}
diff --git a/services/pocketbase/src/misc/bunny-cdn.go b/services/pocketbase/src/misc/bunny-cdn.go
new file mode 100644
index 00000000..47df9b8b
--- /dev/null
+++ b/services/pocketbase/src/misc/bunny-cdn.go
@@ -0,0 +1,80 @@
+package misc
+
+import (
+	"crypto/sha256"
+	"encoding/base64"
+	"fmt"
+	"net/url"
+	"sort"
+	"strings"
+	"time"
+)
+
+func GetCDNPath(collectionId string, recordId string, fileName string, mediaPackage bool) string {
+	var base string
+
+	if mediaPackage {
+		base = fmt.Sprintf("/%s/%s/hls/%s", collectionId, recordId, fileName)
+	} else {
+		base = fmt.Sprintf("/%s/%s/%s", collectionId, recordId, fileName)
+	}
+
+	return base
+}
+
+func SignBunnyCDNURL(securityKey string, urlStr string, expirationTime int64, pathAllowed string) string {
+	expires := time.Now().Unix() + expirationTime
+
+	parsedURL, _ := url.Parse(urlStr)
+	parameters := parsedURL.Query()
+
+	var signaturePath string
+	if pathAllowed != "" {
+		signaturePath = pathAllowed
+		parameters.Set("token_path", signaturePath)
+	} else {
+		signaturePath, _ = url.QueryUnescape(parsedURL.Path)
+	}
+
+	// Manually sort the parameters
+	var keys []string
+	for key := range parameters {
+		keys = append(keys, key)
+	}
+	sort.Strings(keys)
+
+	var parameterData string
+	var parameterDataURL string
+
+	for _, key := range keys {
+		values := parameters[key]
+		sort.Strings(values)
+		for _, value := range values {
+			if value == "" {
+				continue
+			}
+			if parameterData != "" {
+				parameterData += "&"
+			}
+			parameterData += key + "=" + value
+			parameterDataURL += "&" + key + "=" + url.QueryEscape(value)
+		}
+	}
+
+	hashableBase := securityKey + signaturePath + fmt.Sprint(expires) + parameterData
+	hash := sha256.New()
+	hash.Write([]byte(hashableBase))
+	token := base64.StdEncoding.EncodeToString(hash.Sum(nil))
+	token = strings.ReplaceAll(token, "\n", "")
+	token = strings.ReplaceAll(token, "+", "-")
+	token = strings.ReplaceAll(token, "/", "_")
+	token = strings.ReplaceAll(token, "=", "")
+
+	isDirectory := pathAllowed != ""
+
+	if isDirectory {
+		return parsedURL.Scheme + "://" + parsedURL.Host + "/bcdn_token=" + token + parameterDataURL + "&expires=" + fmt.Sprint(expires) + parsedURL.Path
+	} else {
+		return parsedURL.Scheme + "://" + parsedURL.Host + parsedURL.Path + "?token=" + token + parameterDataURL + "&expires=" + fmt.Sprint(expires)
+	}
+}
diff --git a/services/pocketbase/src/plugins/patreon/package-lock.json b/services/pocketbase/src/plugins/patreon/package-lock.json
deleted file mode 100644
index 6df976b9..00000000
--- a/services/pocketbase/src/plugins/patreon/package-lock.json
+++ /dev/null
@@ -1,957 +0,0 @@
-{
-  "name": "pocketpages-plugin-patreon",
-  "version": "0.0.1",
-  "lockfileVersion": 3,
-  "requires": true,
-  "packages": {
-    "": {
-      "name": "pocketpages-plugin-patreon",
-      "version": "0.0.1",
-      "license": "Unlicense",
-      "dependencies": {
-        "pocketpages-plugin-js-sdk": "0.2.0"
-      },
-      "devDependencies": {
-        "tsdown": "^0.15.12",
-        "typescript": "^5.7.3"
-      }
-    },
-    "node_modules/@babel/generator": {
-      "version": "7.28.5",
-      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.28.5.tgz",
-      "integrity": "sha512-3EwLFhZ38J4VyIP6WNtt2kUdW9dokXA9Cr4IVIFHuCpZ3H8/YFOl5JjZHisrn1fATPBmKKqXzDFvh9fUwHz6CQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@babel/parser": "^7.28.5",
-        "@babel/types": "^7.28.5",
-        "@jridgewell/gen-mapping": "^0.3.12",
-        "@jridgewell/trace-mapping": "^0.3.28",
-        "jsesc": "^3.0.2"
-      },
-      "engines": {
-        "node": ">=6.9.0"
-      }
-    },
-    "node_modules/@babel/helper-string-parser": {
-      "version": "7.27.1",
-      "resolved": "https://registry.npmjs.org/@babel/helper-string-parser/-/helper-string-parser-7.27.1.tgz",
-      "integrity": "sha512-qMlSxKbpRlAridDExk92nSobyDdpPijUq2DW6oDnUqd0iOGxmQjyqhMIihI9+zv4LPyZdRje2cavWPbCbWm3eA==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=6.9.0"
-      }
-    },
-    "node_modules/@babel/helper-validator-identifier": {
-      "version": "7.28.5",
-      "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.28.5.tgz",
-      "integrity": "sha512-qSs4ifwzKJSV39ucNjsvc6WVHs6b7S03sOh2OcHF9UHfVPqWWALUsNUVzhSBiItjRZoLHx7nIarVjqKVusUZ1Q==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=6.9.0"
-      }
-    },
-    "node_modules/@babel/parser": {
-      "version": "7.28.5",
-      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.28.5.tgz",
-      "integrity": "sha512-KKBU1VGYR7ORr3At5HAtUQ+TV3SzRCXmA/8OdDZiLDBIZxVyzXuztPjfLd3BV1PRAQGCMWWSHYhL0F8d5uHBDQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@babel/types": "^7.28.5"
-      },
-      "bin": {
-        "parser": "bin/babel-parser.js"
-      },
-      "engines": {
-        "node": ">=6.0.0"
-      }
-    },
-    "node_modules/@babel/types": {
-      "version": "7.28.5",
-      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.28.5.tgz",
-      "integrity": "sha512-qQ5m48eI/MFLQ5PxQj4PFaprjyCTLI37ElWMmNs0K8Lk3dVeOdNpB3ks8jc7yM5CDmVC73eMVk/trk3fgmrUpA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@babel/helper-string-parser": "^7.27.1",
-        "@babel/helper-validator-identifier": "^7.28.5"
-      },
-      "engines": {
-        "node": ">=6.9.0"
-      }
-    },
-    "node_modules/@emnapi/core": {
-      "version": "1.7.0",
-      "resolved": "https://registry.npmjs.org/@emnapi/core/-/core-1.7.0.tgz",
-      "integrity": "sha512-pJdKGq/1iquWYtv1RRSljZklxHCOCAJFJrImO5ZLKPJVJlVUcs8yFwNQlqS0Lo8xT1VAXXTCZocF9n26FWEKsw==",
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "dependencies": {
-        "@emnapi/wasi-threads": "1.1.0",
-        "tslib": "^2.4.0"
-      }
-    },
-    "node_modules/@emnapi/runtime": {
-      "version": "1.7.0",
-      "resolved": "https://registry.npmjs.org/@emnapi/runtime/-/runtime-1.7.0.tgz",
-      "integrity": "sha512-oAYoQnCYaQZKVS53Fq23ceWMRxq5EhQsE0x0RdQ55jT7wagMu5k+fS39v1fiSLrtrLQlXwVINenqhLMtTrV/1Q==",
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "dependencies": {
-        "tslib": "^2.4.0"
-      }
-    },
-    "node_modules/@emnapi/wasi-threads": {
-      "version": "1.1.0",
-      "resolved": "https://registry.npmjs.org/@emnapi/wasi-threads/-/wasi-threads-1.1.0.tgz",
-      "integrity": "sha512-WI0DdZ8xFSbgMjR1sFsKABJ/C5OnRrjT06JXbZKexJGrDuPTzZdDYfFlsgcCXCyf+suG5QU2e/y1Wo2V/OapLQ==",
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "dependencies": {
-        "tslib": "^2.4.0"
-      }
-    },
-    "node_modules/@jridgewell/gen-mapping": {
-      "version": "0.3.13",
-      "resolved": "https://registry.npmjs.org/@jridgewell/gen-mapping/-/gen-mapping-0.3.13.tgz",
-      "integrity": "sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@jridgewell/sourcemap-codec": "^1.5.0",
-        "@jridgewell/trace-mapping": "^0.3.24"
-      }
-    },
-    "node_modules/@jridgewell/resolve-uri": {
-      "version": "3.1.2",
-      "resolved": "https://registry.npmjs.org/@jridgewell/resolve-uri/-/resolve-uri-3.1.2.tgz",
-      "integrity": "sha512-bRISgCIjP20/tbWSPWMEi54QVPRZExkuD9lJL+UIxUKtwVJA8wW1Trb1jMs1RFXo1CBTNZ/5hpC9QvmKWdopKw==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=6.0.0"
-      }
-    },
-    "node_modules/@jridgewell/sourcemap-codec": {
-      "version": "1.5.5",
-      "resolved": "https://registry.npmjs.org/@jridgewell/sourcemap-codec/-/sourcemap-codec-1.5.5.tgz",
-      "integrity": "sha512-cYQ9310grqxueWbl+WuIUIaiUaDcj7WOq5fVhEljNVgRfOUhY9fy2zTvfoqWsnebh8Sl70VScFbICvJnLKB0Og==",
-      "dev": true,
-      "license": "MIT"
-    },
-    "node_modules/@jridgewell/trace-mapping": {
-      "version": "0.3.31",
-      "resolved": "https://registry.npmjs.org/@jridgewell/trace-mapping/-/trace-mapping-0.3.31.tgz",
-      "integrity": "sha512-zzNR+SdQSDJzc8joaeP8QQoCQr8NuYx2dIIytl1QeBEZHJ9uW6hebsrYgbz8hJwUQao3TWCMtmfV8Nu1twOLAw==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@jridgewell/resolve-uri": "^3.1.0",
-        "@jridgewell/sourcemap-codec": "^1.4.14"
-      }
-    },
-    "node_modules/@napi-rs/wasm-runtime": {
-      "version": "1.0.7",
-      "resolved": "https://registry.npmjs.org/@napi-rs/wasm-runtime/-/wasm-runtime-1.0.7.tgz",
-      "integrity": "sha512-SeDnOO0Tk7Okiq6DbXmmBODgOAb9dp9gjlphokTUxmt8U3liIP1ZsozBahH69j/RJv+Rfs6IwUKHTgQYJ/HBAw==",
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "dependencies": {
-        "@emnapi/core": "^1.5.0",
-        "@emnapi/runtime": "^1.5.0",
-        "@tybys/wasm-util": "^0.10.1"
-      }
-    },
-    "node_modules/@oxc-project/types": {
-      "version": "0.95.0",
-      "resolved": "https://registry.npmjs.org/@oxc-project/types/-/types-0.95.0.tgz",
-      "integrity": "sha512-vACy7vhpMPhjEJhULNxrdR0D943TkA/MigMpJCHmBHvMXxRStRi/dPtTlfQ3uDwWSzRpT8z+7ImjZVf8JWBocQ==",
-      "dev": true,
-      "license": "MIT",
-      "funding": {
-        "url": "https://github.com/sponsors/Boshen"
-      }
-    },
-    "node_modules/@quansync/fs": {
-      "version": "0.1.5",
-      "resolved": "https://registry.npmjs.org/@quansync/fs/-/fs-0.1.5.tgz",
-      "integrity": "sha512-lNS9hL2aS2NZgNW7BBj+6EBl4rOf8l+tQ0eRY6JWCI8jI2kc53gSoqbjojU0OnAWhzoXiOjFyGsHcDGePB3lhA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "quansync": "^0.2.11"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sxzz"
-      }
-    },
-    "node_modules/@rolldown/binding-android-arm64": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-android-arm64/-/binding-android-arm64-1.0.0-beta.45.tgz",
-      "integrity": "sha512-bfgKYhFiXJALeA/riil908+2vlyWGdwa7Ju5S+JgWZYdR4jtiPOGdM6WLfso1dojCh+4ZWeiTwPeV9IKQEX+4g==",
-      "cpu": [
-        "arm64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "android"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-darwin-arm64": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-darwin-arm64/-/binding-darwin-arm64-1.0.0-beta.45.tgz",
-      "integrity": "sha512-xjCv4CRVsSnnIxTuyH1RDJl5OEQ1c9JYOwfDAHddjJDxCw46ZX9q80+xq7Eok7KC4bRSZudMJllkvOKv0T9SeA==",
-      "cpu": [
-        "arm64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "darwin"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-darwin-x64": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-darwin-x64/-/binding-darwin-x64-1.0.0-beta.45.tgz",
-      "integrity": "sha512-ddcO9TD3D/CLUa/l8GO8LHzBOaZqWg5ClMy3jICoxwCuoz47h9dtqPsIeTiB6yR501LQTeDsjA4lIFd7u3Ljfw==",
-      "cpu": [
-        "x64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "darwin"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-freebsd-x64": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-freebsd-x64/-/binding-freebsd-x64-1.0.0-beta.45.tgz",
-      "integrity": "sha512-MBTWdrzW9w+UMYDUvnEuh0pQvLENkl2Sis15fHTfHVW7ClbGuez+RWopZudIDEGkpZXdeI4CkRXk+vdIIebrmg==",
-      "cpu": [
-        "x64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "freebsd"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-linux-arm-gnueabihf": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-linux-arm-gnueabihf/-/binding-linux-arm-gnueabihf-1.0.0-beta.45.tgz",
-      "integrity": "sha512-4YgoCFiki1HR6oSg+GxxfzfnVCesQxLF1LEnw9uXS/MpBmuog0EOO2rYfy69rWP4tFZL9IWp6KEfGZLrZ7aUog==",
-      "cpu": [
-        "arm"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "linux"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-linux-arm64-gnu": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-linux-arm64-gnu/-/binding-linux-arm64-gnu-1.0.0-beta.45.tgz",
-      "integrity": "sha512-LE1gjAwQRrbCOorJJ7LFr10s5vqYf5a00V5Ea9wXcT2+56n5YosJkcp8eQ12FxRBv2YX8dsdQJb+ZTtYJwb6XQ==",
-      "cpu": [
-        "arm64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "linux"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-linux-arm64-musl": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-linux-arm64-musl/-/binding-linux-arm64-musl-1.0.0-beta.45.tgz",
-      "integrity": "sha512-tdy8ThO/fPp40B81v0YK3QC+KODOmzJzSUOO37DinQxzlTJ026gqUSOM8tzlVixRbQJltgVDCTYF8HNPRErQTA==",
-      "cpu": [
-        "arm64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "linux"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-linux-x64-gnu": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-linux-x64-gnu/-/binding-linux-x64-gnu-1.0.0-beta.45.tgz",
-      "integrity": "sha512-lS082ROBWdmOyVY/0YB3JmsiClaWoxvC+dA8/rbhyB9VLkvVEaihLEOr4CYmrMse151C4+S6hCw6oa1iewox7g==",
-      "cpu": [
-        "x64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "linux"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-linux-x64-musl": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-linux-x64-musl/-/binding-linux-x64-musl-1.0.0-beta.45.tgz",
-      "integrity": "sha512-Hi73aYY0cBkr1/SvNQqH8Cd+rSV6S9RB5izCv0ySBcRnd/Wfn5plguUoGYwBnhHgFbh6cPw9m2dUVBR6BG1gxA==",
-      "cpu": [
-        "x64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "linux"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-openharmony-arm64": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-openharmony-arm64/-/binding-openharmony-arm64-1.0.0-beta.45.tgz",
-      "integrity": "sha512-fljEqbO7RHHogNDxYtTzr+GNjlfOx21RUyGmF+NrkebZ8emYYiIqzPxsaMZuRx0rgZmVmliOzEp86/CQFDKhJQ==",
-      "cpu": [
-        "arm64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "openharmony"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-wasm32-wasi": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-wasm32-wasi/-/binding-wasm32-wasi-1.0.0-beta.45.tgz",
-      "integrity": "sha512-ZJDB7lkuZE9XUnWQSYrBObZxczut+8FZ5pdanm8nNS1DAo8zsrPuvGwn+U3fwU98WaiFsNrA4XHngesCGr8tEQ==",
-      "cpu": [
-        "wasm32"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "dependencies": {
-        "@napi-rs/wasm-runtime": "^1.0.7"
-      },
-      "engines": {
-        "node": ">=14.0.0"
-      }
-    },
-    "node_modules/@rolldown/binding-win32-arm64-msvc": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-win32-arm64-msvc/-/binding-win32-arm64-msvc-1.0.0-beta.45.tgz",
-      "integrity": "sha512-zyzAjItHPUmxg6Z8SyRhLdXlJn3/D9KL5b9mObUrBHhWS/GwRH4665xCiFqeuktAhhWutqfc+rOV2LjK4VYQGQ==",
-      "cpu": [
-        "arm64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "win32"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-win32-ia32-msvc": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-win32-ia32-msvc/-/binding-win32-ia32-msvc-1.0.0-beta.45.tgz",
-      "integrity": "sha512-wODcGzlfxqS6D7BR0srkJk3drPwXYLu7jPHN27ce2c4PUnVVmJnp9mJzUQGT4LpmHmmVdMZ+P6hKvyTGBzc1CA==",
-      "cpu": [
-        "ia32"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "win32"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/binding-win32-x64-msvc": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/binding-win32-x64-msvc/-/binding-win32-x64-msvc-1.0.0-beta.45.tgz",
-      "integrity": "sha512-wiU40G1nQo9rtfvF9jLbl79lUgjfaD/LTyUEw2Wg/gdF5OhjzpKMVugZQngO+RNdwYaNj+Fs+kWBWfp4VXPMHA==",
-      "cpu": [
-        "x64"
-      ],
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "os": [
-        "win32"
-      ],
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      }
-    },
-    "node_modules/@rolldown/pluginutils": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/@rolldown/pluginutils/-/pluginutils-1.0.0-beta.45.tgz",
-      "integrity": "sha512-Le9ulGCrD8ggInzWw/k2J8QcbPz7eGIOWqfJ2L+1R0Opm7n6J37s2hiDWlh6LJN0Lk9L5sUzMvRHKW7UxBZsQA==",
-      "dev": true,
-      "license": "MIT"
-    },
-    "node_modules/@tybys/wasm-util": {
-      "version": "0.10.1",
-      "resolved": "https://registry.npmjs.org/@tybys/wasm-util/-/wasm-util-0.10.1.tgz",
-      "integrity": "sha512-9tTaPJLSiejZKx+Bmog4uSubteqTvFrVrURwkmHixBo0G4seD0zUxp98E1DzUBJxLQ3NPwXrGKDiVjwx/DpPsg==",
-      "dev": true,
-      "license": "MIT",
-      "optional": true,
-      "dependencies": {
-        "tslib": "^2.4.0"
-      }
-    },
-    "node_modules/ansis": {
-      "version": "4.2.0",
-      "resolved": "https://registry.npmjs.org/ansis/-/ansis-4.2.0.tgz",
-      "integrity": "sha512-HqZ5rWlFjGiV0tDm3UxxgNRqsOTniqoKZu0pIAfh7TZQMGuZK+hH0drySty0si0QXj1ieop4+SkSfPZBPPkHig==",
-      "dev": true,
-      "license": "ISC",
-      "engines": {
-        "node": ">=14"
-      }
-    },
-    "node_modules/ast-kit": {
-      "version": "2.1.3",
-      "resolved": "https://registry.npmjs.org/ast-kit/-/ast-kit-2.1.3.tgz",
-      "integrity": "sha512-TH+b3Lv6pUjy/Nu0m6A2JULtdzLpmqF9x1Dhj00ZoEiML8qvVA9j1flkzTKNYgdEhWrjDwtWNpyyCUbfQe514g==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@babel/parser": "^7.28.4",
-        "pathe": "^2.0.3"
-      },
-      "engines": {
-        "node": ">=20.19.0"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sxzz"
-      }
-    },
-    "node_modules/birpc": {
-      "version": "2.6.1",
-      "resolved": "https://registry.npmjs.org/birpc/-/birpc-2.6.1.tgz",
-      "integrity": "sha512-LPnFhlDpdSH6FJhJyn4M0kFO7vtQ5iPw24FnG0y21q09xC7e8+1LeR31S1MAIrDAHp4m7aas4bEkTDTvMAtebQ==",
-      "dev": true,
-      "license": "MIT",
-      "funding": {
-        "url": "https://github.com/sponsors/antfu"
-      }
-    },
-    "node_modules/cac": {
-      "version": "6.7.14",
-      "resolved": "https://registry.npmjs.org/cac/-/cac-6.7.14.tgz",
-      "integrity": "sha512-b6Ilus+c3RrdDk+JhLKUAQfzzgLEPy6wcXqS7f/xe1EETvsDP6GORG7SFuOs6cID5YkqchW/LXZbX5bc8j7ZcQ==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=8"
-      }
-    },
-    "node_modules/chokidar": {
-      "version": "4.0.3",
-      "resolved": "https://registry.npmjs.org/chokidar/-/chokidar-4.0.3.tgz",
-      "integrity": "sha512-Qgzu8kfBvo+cA4962jnP1KkS6Dop5NS6g7R5LFYJr4b8Ub94PPQXUksCw9PvXoeXPRRddRNC5C1JQUR2SMGtnA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "readdirp": "^4.0.1"
-      },
-      "engines": {
-        "node": ">= 14.16.0"
-      },
-      "funding": {
-        "url": "https://paulmillr.com/funding/"
-      }
-    },
-    "node_modules/debug": {
-      "version": "4.4.3",
-      "resolved": "https://registry.npmjs.org/debug/-/debug-4.4.3.tgz",
-      "integrity": "sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "ms": "^2.1.3"
-      },
-      "engines": {
-        "node": ">=6.0"
-      },
-      "peerDependenciesMeta": {
-        "supports-color": {
-          "optional": true
-        }
-      }
-    },
-    "node_modules/defu": {
-      "version": "6.1.4",
-      "resolved": "https://registry.npmjs.org/defu/-/defu-6.1.4.tgz",
-      "integrity": "sha512-mEQCMmwJu317oSz8CwdIOdwf3xMif1ttiM8LTufzc3g6kR+9Pe236twL8j3IYT1F7GfRgGcW6MWxzZjLIkuHIg==",
-      "dev": true,
-      "license": "MIT"
-    },
-    "node_modules/diff": {
-      "version": "8.0.2",
-      "resolved": "https://registry.npmjs.org/diff/-/diff-8.0.2.tgz",
-      "integrity": "sha512-sSuxWU5j5SR9QQji/o2qMvqRNYRDOcBTgsJ/DeCf4iSN4gW+gNMXM7wFIP+fdXZxoNiAnHUTGjCr+TSWXdRDKg==",
-      "dev": true,
-      "license": "BSD-3-Clause",
-      "engines": {
-        "node": ">=0.3.1"
-      }
-    },
-    "node_modules/dts-resolver": {
-      "version": "2.1.2",
-      "resolved": "https://registry.npmjs.org/dts-resolver/-/dts-resolver-2.1.2.tgz",
-      "integrity": "sha512-xeXHBQkn2ISSXxbJWD828PFjtyg+/UrMDo7W4Ffcs7+YWCquxU8YjV1KoxuiL+eJ5pg3ll+bC6flVv61L3LKZg==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=20.18.0"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sxzz"
-      },
-      "peerDependencies": {
-        "oxc-resolver": ">=11.0.0"
-      },
-      "peerDependenciesMeta": {
-        "oxc-resolver": {
-          "optional": true
-        }
-      }
-    },
-    "node_modules/empathic": {
-      "version": "2.0.0",
-      "resolved": "https://registry.npmjs.org/empathic/-/empathic-2.0.0.tgz",
-      "integrity": "sha512-i6UzDscO/XfAcNYD75CfICkmfLedpyPDdozrLMmQc5ORaQcdMoc21OnlEylMIqI7U8eniKrPMxxtj8k0vhmJhA==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=14"
-      }
-    },
-    "node_modules/fdir": {
-      "version": "6.5.0",
-      "resolved": "https://registry.npmjs.org/fdir/-/fdir-6.5.0.tgz",
-      "integrity": "sha512-tIbYtZbucOs0BRGqPJkshJUYdL+SDH7dVM8gjy+ERp3WAUjLEFJE+02kanyHtwjWOnwrKYBiwAmM0p4kLJAnXg==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=12.0.0"
-      },
-      "peerDependencies": {
-        "picomatch": "^3 || ^4"
-      },
-      "peerDependenciesMeta": {
-        "picomatch": {
-          "optional": true
-        }
-      }
-    },
-    "node_modules/get-tsconfig": {
-      "version": "4.13.0",
-      "resolved": "https://registry.npmjs.org/get-tsconfig/-/get-tsconfig-4.13.0.tgz",
-      "integrity": "sha512-1VKTZJCwBrvbd+Wn3AOgQP/2Av+TfTCOlE4AcRJE72W1ksZXbAx8PPBR9RzgTeSPzlPMHrbANMH3LbltH73wxQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "resolve-pkg-maps": "^1.0.0"
-      },
-      "funding": {
-        "url": "https://github.com/privatenumber/get-tsconfig?sponsor=1"
-      }
-    },
-    "node_modules/hookable": {
-      "version": "5.5.3",
-      "resolved": "https://registry.npmjs.org/hookable/-/hookable-5.5.3.tgz",
-      "integrity": "sha512-Yc+BQe8SvoXH1643Qez1zqLRmbA5rCL+sSmk6TVos0LWVfNIB7PGncdlId77WzLGSIB5KaWgTaNTs2lNVEI6VQ==",
-      "dev": true,
-      "license": "MIT"
-    },
-    "node_modules/jiti": {
-      "version": "2.6.1",
-      "resolved": "https://registry.npmjs.org/jiti/-/jiti-2.6.1.tgz",
-      "integrity": "sha512-ekilCSN1jwRvIbgeg/57YFh8qQDNbwDb9xT/qu2DAHbFFZUicIl4ygVaAvzveMhMVr3LnpSKTNnwt8PoOfmKhQ==",
-      "dev": true,
-      "license": "MIT",
-      "bin": {
-        "jiti": "lib/jiti-cli.mjs"
-      }
-    },
-    "node_modules/jsesc": {
-      "version": "3.1.0",
-      "resolved": "https://registry.npmjs.org/jsesc/-/jsesc-3.1.0.tgz",
-      "integrity": "sha512-/sM3dO2FOzXjKQhJuo0Q173wf2KOo8t4I8vHy6lF9poUp7bKT0/NHE8fPX23PwfhnykfqnC2xRxOnVw5XuGIaA==",
-      "dev": true,
-      "license": "MIT",
-      "bin": {
-        "jsesc": "bin/jsesc"
-      },
-      "engines": {
-        "node": ">=6"
-      }
-    },
-    "node_modules/magic-string": {
-      "version": "0.30.21",
-      "resolved": "https://registry.npmjs.org/magic-string/-/magic-string-0.30.21.tgz",
-      "integrity": "sha512-vd2F4YUyEXKGcLHoq+TEyCjxueSeHnFxyyjNp80yg0XV4vUhnDer/lvvlqM/arB5bXQN5K2/3oinyCRyx8T2CQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@jridgewell/sourcemap-codec": "^1.5.5"
-      }
-    },
-    "node_modules/ms": {
-      "version": "2.1.3",
-      "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz",
-      "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==",
-      "dev": true,
-      "license": "MIT"
-    },
-    "node_modules/pathe": {
-      "version": "2.0.3",
-      "resolved": "https://registry.npmjs.org/pathe/-/pathe-2.0.3.tgz",
-      "integrity": "sha512-WUjGcAqP1gQacoQe+OBJsFA7Ld4DyXuUIjZ5cc75cLHvJ7dtNsTugphxIADwspS+AraAUePCKrSVtPLFj/F88w==",
-      "dev": true,
-      "license": "MIT"
-    },
-    "node_modules/picomatch": {
-      "version": "4.0.3",
-      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.3.tgz",
-      "integrity": "sha512-5gTmgEY/sqK6gFXLIsQNH19lWb4ebPDLA4SdLP7dsWkIXHWlG66oPuVvXSGFPppYZz8ZDZq0dYYrbHfBCVUb1Q==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">=12"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/jonschlinkert"
-      }
-    },
-    "node_modules/pocketbase-js-sdk-jsvm": {
-      "version": "0.25.10004",
-      "resolved": "https://registry.npmjs.org/pocketbase-js-sdk-jsvm/-/pocketbase-js-sdk-jsvm-0.25.10004.tgz",
-      "integrity": "sha512-/0RkFa6X4LeKMdv4KCXhC5i2cvpG0elvXInRyk8bApjG8jyyPiNDL6o9VBvgxjl6j8/HcQYf3oKYXmZteqAFvQ==",
-      "license": "MIT"
-    },
-    "node_modules/pocketpages-plugin-js-sdk": {
-      "version": "0.2.0",
-      "resolved": "https://registry.npmjs.org/pocketpages-plugin-js-sdk/-/pocketpages-plugin-js-sdk-0.2.0.tgz",
-      "integrity": "sha512-/uY1nCz7Zt19C/kyoOraH5ekTZa4PLPpHd0qIEoyf1XBPtEpHL4k7jZE0IPEMu1dH/8RfsKb/YzN52GR+9DdzQ==",
-      "dependencies": {
-        "pocketbase-js-sdk-jsvm": "^0.25.10004"
-      }
-    },
-    "node_modules/quansync": {
-      "version": "0.2.11",
-      "resolved": "https://registry.npmjs.org/quansync/-/quansync-0.2.11.tgz",
-      "integrity": "sha512-AifT7QEbW9Nri4tAwR5M/uzpBuqfZf+zwaEM/QkzEjj7NBuFD2rBuy0K3dE+8wltbezDV7JMA0WfnCPYRSYbXA==",
-      "dev": true,
-      "funding": [
-        {
-          "type": "individual",
-          "url": "https://github.com/sponsors/antfu"
-        },
-        {
-          "type": "individual",
-          "url": "https://github.com/sponsors/sxzz"
-        }
-      ],
-      "license": "MIT"
-    },
-    "node_modules/readdirp": {
-      "version": "4.1.2",
-      "resolved": "https://registry.npmjs.org/readdirp/-/readdirp-4.1.2.tgz",
-      "integrity": "sha512-GDhwkLfywWL2s6vEjyhri+eXmfH6j1L7JE27WhqLeYzoh/A3DBaYGEj2H/HFZCn/kMfim73FXxEJTw06WtxQwg==",
-      "dev": true,
-      "license": "MIT",
-      "engines": {
-        "node": ">= 14.18.0"
-      },
-      "funding": {
-        "type": "individual",
-        "url": "https://paulmillr.com/funding/"
-      }
-    },
-    "node_modules/resolve-pkg-maps": {
-      "version": "1.0.0",
-      "resolved": "https://registry.npmjs.org/resolve-pkg-maps/-/resolve-pkg-maps-1.0.0.tgz",
-      "integrity": "sha512-seS2Tj26TBVOC2NIc2rOe2y2ZO7efxITtLZcGSOnHHNOQ7CkiUBfw0Iw2ck6xkIhPwLhKNLS8BO+hEpngQlqzw==",
-      "dev": true,
-      "license": "MIT",
-      "funding": {
-        "url": "https://github.com/privatenumber/resolve-pkg-maps?sponsor=1"
-      }
-    },
-    "node_modules/rolldown": {
-      "version": "1.0.0-beta.45",
-      "resolved": "https://registry.npmjs.org/rolldown/-/rolldown-1.0.0-beta.45.tgz",
-      "integrity": "sha512-iMmuD72XXLf26Tqrv1cryNYLX6NNPLhZ3AmNkSf8+xda0H+yijjGJ+wVT9UdBUHOpKzq9RjKtQKRCWoEKQQBZQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@oxc-project/types": "=0.95.0",
-        "@rolldown/pluginutils": "1.0.0-beta.45"
-      },
-      "bin": {
-        "rolldown": "bin/cli.mjs"
-      },
-      "engines": {
-        "node": "^20.19.0 || >=22.12.0"
-      },
-      "optionalDependencies": {
-        "@rolldown/binding-android-arm64": "1.0.0-beta.45",
-        "@rolldown/binding-darwin-arm64": "1.0.0-beta.45",
-        "@rolldown/binding-darwin-x64": "1.0.0-beta.45",
-        "@rolldown/binding-freebsd-x64": "1.0.0-beta.45",
-        "@rolldown/binding-linux-arm-gnueabihf": "1.0.0-beta.45",
-        "@rolldown/binding-linux-arm64-gnu": "1.0.0-beta.45",
-        "@rolldown/binding-linux-arm64-musl": "1.0.0-beta.45",
-        "@rolldown/binding-linux-x64-gnu": "1.0.0-beta.45",
-        "@rolldown/binding-linux-x64-musl": "1.0.0-beta.45",
-        "@rolldown/binding-openharmony-arm64": "1.0.0-beta.45",
-        "@rolldown/binding-wasm32-wasi": "1.0.0-beta.45",
-        "@rolldown/binding-win32-arm64-msvc": "1.0.0-beta.45",
-        "@rolldown/binding-win32-ia32-msvc": "1.0.0-beta.45",
-        "@rolldown/binding-win32-x64-msvc": "1.0.0-beta.45"
-      }
-    },
-    "node_modules/rolldown-plugin-dts": {
-      "version": "0.17.3",
-      "resolved": "https://registry.npmjs.org/rolldown-plugin-dts/-/rolldown-plugin-dts-0.17.3.tgz",
-      "integrity": "sha512-8mGnNUVNrqEdTnrlcaDxs4sAZg0No6njO+FuhQd4L56nUbJO1tHxOoKDH3mmMJg7f/BhEj/1KjU5W9kZ9zM/kQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@babel/generator": "^7.28.5",
-        "@babel/parser": "^7.28.5",
-        "@babel/types": "^7.28.5",
-        "ast-kit": "^2.1.3",
-        "birpc": "^2.6.1",
-        "debug": "^4.4.3",
-        "dts-resolver": "^2.1.2",
-        "get-tsconfig": "^4.13.0",
-        "magic-string": "^0.30.21"
-      },
-      "engines": {
-        "node": ">=20.18.0"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sxzz"
-      },
-      "peerDependencies": {
-        "@ts-macro/tsc": "^0.3.6",
-        "@typescript/native-preview": ">=7.0.0-dev.20250601.1",
-        "rolldown": "^1.0.0-beta.44",
-        "typescript": "^5.0.0",
-        "vue-tsc": "~3.1.0"
-      },
-      "peerDependenciesMeta": {
-        "@ts-macro/tsc": {
-          "optional": true
-        },
-        "@typescript/native-preview": {
-          "optional": true
-        },
-        "typescript": {
-          "optional": true
-        },
-        "vue-tsc": {
-          "optional": true
-        }
-      }
-    },
-    "node_modules/semver": {
-      "version": "7.7.3",
-      "resolved": "https://registry.npmjs.org/semver/-/semver-7.7.3.tgz",
-      "integrity": "sha512-SdsKMrI9TdgjdweUSR9MweHA4EJ8YxHn8DFaDisvhVlUOe4BF1tLD7GAj0lIqWVl+dPb/rExr0Btby5loQm20Q==",
-      "dev": true,
-      "license": "ISC",
-      "bin": {
-        "semver": "bin/semver.js"
-      },
-      "engines": {
-        "node": ">=10"
-      }
-    },
-    "node_modules/tinyexec": {
-      "version": "1.0.1",
-      "resolved": "https://registry.npmjs.org/tinyexec/-/tinyexec-1.0.1.tgz",
-      "integrity": "sha512-5uC6DDlmeqiOwCPmK9jMSdOuZTh8bU39Ys6yidB+UTt5hfZUPGAypSgFRiEp+jbi9qH40BLDvy85jIU88wKSqw==",
-      "dev": true,
-      "license": "MIT"
-    },
-    "node_modules/tinyglobby": {
-      "version": "0.2.15",
-      "resolved": "https://registry.npmjs.org/tinyglobby/-/tinyglobby-0.2.15.tgz",
-      "integrity": "sha512-j2Zq4NyQYG5XMST4cbs02Ak8iJUdxRM0XI5QyxXuZOzKOINmWurp3smXu3y5wDcJrptwpSjgXHzIQxR0omXljQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "fdir": "^6.5.0",
-        "picomatch": "^4.0.3"
-      },
-      "engines": {
-        "node": ">=12.0.0"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/SuperchupuDev"
-      }
-    },
-    "node_modules/tree-kill": {
-      "version": "1.2.2",
-      "resolved": "https://registry.npmjs.org/tree-kill/-/tree-kill-1.2.2.tgz",
-      "integrity": "sha512-L0Orpi8qGpRG//Nd+H90vFB+3iHnue1zSSGmNOOCh1GLJ7rUKVwV2HvijphGQS2UmhUZewS9VgvxYIdgr+fG1A==",
-      "dev": true,
-      "license": "MIT",
-      "bin": {
-        "tree-kill": "cli.js"
-      }
-    },
-    "node_modules/tsdown": {
-      "version": "0.15.12",
-      "resolved": "https://registry.npmjs.org/tsdown/-/tsdown-0.15.12.tgz",
-      "integrity": "sha512-c8VLlQm8/lFrOAg5VMVeN4NAbejZyVQkzd+ErjuaQgJFI/9MhR9ivr0H/CM7UlOF1+ELlF6YaI7sU/4itgGQ8w==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "ansis": "^4.2.0",
-        "cac": "^6.7.14",
-        "chokidar": "^4.0.3",
-        "debug": "^4.4.3",
-        "diff": "^8.0.2",
-        "empathic": "^2.0.0",
-        "hookable": "^5.5.3",
-        "rolldown": "1.0.0-beta.45",
-        "rolldown-plugin-dts": "^0.17.2",
-        "semver": "^7.7.3",
-        "tinyexec": "^1.0.1",
-        "tinyglobby": "^0.2.15",
-        "tree-kill": "^1.2.2",
-        "unconfig": "^7.3.3"
-      },
-      "bin": {
-        "tsdown": "dist/run.mjs"
-      },
-      "engines": {
-        "node": ">=20.19.0"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/sxzz"
-      },
-      "peerDependencies": {
-        "@arethetypeswrong/core": "^0.18.1",
-        "publint": "^0.3.0",
-        "typescript": "^5.0.0",
-        "unplugin-lightningcss": "^0.4.0",
-        "unplugin-unused": "^0.5.0",
-        "unrun": "^0.2.1"
-      },
-      "peerDependenciesMeta": {
-        "@arethetypeswrong/core": {
-          "optional": true
-        },
-        "publint": {
-          "optional": true
-        },
-        "typescript": {
-          "optional": true
-        },
-        "unplugin-lightningcss": {
-          "optional": true
-        },
-        "unplugin-unused": {
-          "optional": true
-        },
-        "unrun": {
-          "optional": true
-        }
-      }
-    },
-    "node_modules/tslib": {
-      "version": "2.8.1",
-      "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.8.1.tgz",
-      "integrity": "sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w==",
-      "dev": true,
-      "license": "0BSD",
-      "optional": true
-    },
-    "node_modules/typescript": {
-      "version": "5.9.3",
-      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.9.3.tgz",
-      "integrity": "sha512-jl1vZzPDinLr9eUt3J/t7V6FgNEw9QjvBPdysz9KfQDD41fQrC2Y4vKQdiaUpFT4bXlb1RHhLpp8wtm6M5TgSw==",
-      "dev": true,
-      "license": "Apache-2.0",
-      "bin": {
-        "tsc": "bin/tsc",
-        "tsserver": "bin/tsserver"
-      },
-      "engines": {
-        "node": ">=14.17"
-      }
-    },
-    "node_modules/unconfig": {
-      "version": "7.3.3",
-      "resolved": "https://registry.npmjs.org/unconfig/-/unconfig-7.3.3.tgz",
-      "integrity": "sha512-QCkQoOnJF8L107gxfHL0uavn7WD9b3dpBcFX6HtfQYmjw2YzWxGuFQ0N0J6tE9oguCBJn9KOvfqYDCMPHIZrBA==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "@quansync/fs": "^0.1.5",
-        "defu": "^6.1.4",
-        "jiti": "^2.5.1",
-        "quansync": "^0.2.11"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/antfu"
-      }
-    }
-  }
-}
diff --git a/services/pocketbase/src/plugins/patreon/package.json b/services/pocketbase/src/plugins/patreon/package.json
deleted file mode 100644
index 1c8d446c..00000000
--- a/services/pocketbase/src/plugins/patreon/package.json
+++ /dev/null
@@ -1,19 +0,0 @@
-{
-  "name": "pocketpages-plugin-patreon",
-  "version": "0.0.1",
-  "description": "",
-  "main": "dist/index.js",
-  "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1",
-    "build": "tsdown",
-    "dev": "tsdown --watch"
-  },
-  "dependencies": {
-    "pocketpages-plugin-js-sdk": "0.2.0"
-  },
-  "devDependencies": {
-    "tsdown": "^0.15.12",
-    "typescript": "^5.7.3"
-  },
-  "license": "Unlicense"
-}
\ No newline at end of file
diff --git a/services/pocketbase/src/plugins/patreon/src/index.ts b/services/pocketbase/src/plugins/patreon/src/index.ts
deleted file mode 100644
index 8b6eee53..00000000
--- a/services/pocketbase/src/plugins/patreon/src/index.ts
+++ /dev/null
@@ -1,40 +0,0 @@
-import { type ExtendContextApiContext } from 'pocketpages'
-import PocketBase, {
-  AuthModel,
-  RecordAuthResponse,
-} from 'pocketbase-js-sdk-jsvm'
-import { type OAuth2SignInOptions } from 'pocketpages-plugin-auth'
-import { PluginFactory } from 'pocketpages'
-import { OAuth2ProviderInfo } from 'pocketpages-plugin-auth'
-
-const authPluginFactory: PluginFactory = (config) => {
-  return {
-    name: 'patreon',
-    onExtendContextApi(context: ExtendContextApiContext) {
-      const { api } = context;
-      const pb = () => api.pb() as PocketBase
-
-
-      api.savePatreonData = (
-        authData: AuthModel
-      ) => {
-        pb.collection('users')
-      },
-
-      api.getPatreonUser = (
-        authData: AuthModel,
-      ) => {
-
-
-        console.log("AYO we got authData as follo");
-        console.log(JSON.stringify(authData, null, 2));
-
-        // make a request to Patreon
-
-
-      }
-    },
-  }
-}
-
-export default authPluginFactory;
\ No newline at end of file
diff --git a/services/pocketbase/src/plugins/patreon/tsconfig.json b/services/pocketbase/src/plugins/patreon/tsconfig.json
deleted file mode 100644
index a16e3652..00000000
--- a/services/pocketbase/src/plugins/patreon/tsconfig.json
+++ /dev/null
@@ -1,19 +0,0 @@
-{
-  "compilerOptions": {
-    "types": [
-      "pocketbase-jsvm"
-    ],
-    "strict": true,
-    "strictNullChecks": true,
-    "noUncheckedIndexedAccess": true,
-    "noImplicitAny": true,
-    "target": "ES6",
-    "module": "CommonJS",
-    "moduleResolution": "node",
-    "esModuleInterop": true,
-    "resolveJsonModule": true
-  },
-  "include": [
-    "src/**/*.ts"
-  ]
-}
\ No newline at end of file
diff --git a/services/pocketbase/src/plugins/patreon/tsdown.config.ts b/services/pocketbase/src/plugins/patreon/tsdown.config.ts
deleted file mode 100644
index 111f04cb..00000000
--- a/services/pocketbase/src/plugins/patreon/tsdown.config.ts
+++ /dev/null
@@ -1,10 +0,0 @@
-import { defineConfig } from 'tsdown'
-
-export default defineConfig({
-  entry: {
-    index: 'src/index.ts',
-  },
-  format: ['cjs'],
-  clean: true,
-  outDir: 'dist',
-})
\ No newline at end of file
diff --git a/services/worker/.config/env.ts b/services/worker/.config/env.ts
index b83a2dc1..e922976e 100644
--- a/services/worker/.config/env.ts
+++ b/services/worker/.config/env.ts
@@ -14,7 +14,7 @@ const env = (() => {
   if (!process.env.MUX_SIGNING_KEY_PRIVATE_KEY) throw new Error('MUX_SIGNING_KEY_PRIVATE_KEY missing in env');
   if (!process.env.PATREON_CREATOR_ACCESS_TOKEN) throw new Error('PATREON_CREATOR_ACCESS_TOKEN missing in env');
   if (!process.env.VIBEUI_DIR) throw new Error('VIBEUI_DIR missing in env');
-  if (!process.env.APP_DIR) throw new Error('APP_DIR missing in env');
+  if (!process.env.WORKER_DIR) throw new Error('WORKER_DIR missing in env');
   if (!process.env.AWS_BUCKET) throw new Error('AWS_BUCKET missing in env');
   if (!process.env.AWS_ACCESS_KEY_ID) throw new Error('AWS_ACCESS_KEY_ID missing in env');
   if (!process.env.AWS_SECRET_ACCESS_KEY) throw new Error('AWS_SECRET_ACCESS_KEY missing in env');
@@ -33,6 +33,7 @@ const env = (() => {
   if (!process.env.SEEDBOX_SFTP_PORT) throw new Error('SEEDBOX_SFTP_PORT missing in env');
   if (!process.env.SEEDBOX_SFTP_USERNAME) throw new Error('SEEDBOX_SFTP_USERNAME missing in env');
   if (!process.env.SEEDBOX_SFTP_PASSWORD) throw new Error('SEEDBOX_SFTP_PASSWORD missing in env');
+  if (!process.env.SEEDBOX_SFTP_KEY_FILE) throw new Error('SEEDBOX_SFTP_KEY_FILE missing in env');
   if (!process.env.QBT_HOST) throw new Error('QBT_HOST missing in env');
   if (!process.env.QBT_PORT) throw new Error('QBT_PORT missing in env');
   if (!process.env.QBT_PASSWORD) throw new Error('QBT_PASSWORD missing in env');
@@ -40,6 +41,10 @@ const env = (() => {
   if (!process.env.WORKER_WORKERS) throw new Error('WORKER_WORKERS missing in env');
   if (!process.env.BUNNY_ZONE_URL) throw new Error('BUNNY_ZONE_URL missing in env');
   if (!process.env.BUNNY_TOKEN_KEY) throw new Error('BUNNY_TOKEN_KEY missing in env');
+  if (!process.env.TRACKER_SFTP_HOST) throw new Error('TRACKER_SFTP_HOST missing in env');
+  if (!process.env.TRACKER_SFTP_PORT) throw new Error('TRACKER_SFTP_PORT missing in env');
+  if (!process.env.TRACKER_SFTP_USERNAME) throw new Error('TRACKER_SFTP_USERNAME missing in env');
+  if (!process.env.TRACKER_SFTP_KEY_FILE) throw new Error('TRACKER_SFTP_KEY_FILE missing in env');
 
   const CACHE_ROOT = process.env?.CACHE_ROOT || paths.cache;
 
@@ -55,7 +60,7 @@ const env = (() => {
     MUX_SIGNING_KEY_PRIVATE_KEY,
     PATREON_CREATOR_ACCESS_TOKEN,
     VIBEUI_DIR,
-    APP_DIR,
+    WORKER_DIR,
     AWS_BUCKET,
     AWS_ACCESS_KEY_ID,
     AWS_SECRET_ACCESS_KEY,
@@ -74,6 +79,12 @@ const env = (() => {
     SEEDBOX_SFTP_PORT,
     SEEDBOX_SFTP_USERNAME,
     SEEDBOX_SFTP_PASSWORD,
+    SEEDBOX_SFTP_KEY_FILE,
+    TRACKER_SFTP_HOST,
+    TRACKER_SFTP_PORT,
+    TRACKER_SFTP_USERNAME,
+    TRACKER_SFTP_PASSWORD,
+    TRACKER_SFTP_KEY_FILE,
     VALKEY_PORT,
     QBT_HOST,
     QBT_USERNAME,
@@ -96,7 +107,7 @@ const env = (() => {
     MUX_SIGNING_KEY_PRIVATE_KEY,
     PATREON_CREATOR_ACCESS_TOKEN,
     VIBEUI_DIR,
-    APP_DIR,
+    WORKER_DIR,
     AWS_BUCKET,
     AWS_ACCESS_KEY_ID,
     AWS_SECRET_ACCESS_KEY,
@@ -115,6 +126,12 @@ const env = (() => {
     SEEDBOX_SFTP_PORT,
     SEEDBOX_SFTP_USERNAME,
     SEEDBOX_SFTP_PASSWORD,
+    SEEDBOX_SFTP_KEY_FILE,
+    TRACKER_SFTP_HOST,
+    TRACKER_SFTP_PORT,
+    TRACKER_SFTP_USERNAME,
+    TRACKER_SFTP_PASSWORD,
+    TRACKER_SFTP_KEY_FILE,
     VALKEY_PORT,
     QBT_HOST,
     QBT_USERNAME,
diff --git a/services/worker/package-lock.json b/services/worker/package-lock.json
index c5b3ac2e..1636e04c 100644
--- a/services/worker/package-lock.json
+++ b/services/worker/package-lock.json
@@ -1,17 +1,19 @@
 {
   "name": "worker",
-  "version": "0.1.0",
+  "version": "0.2.0",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "worker",
-      "version": "0.1.0",
+      "version": "0.2.0",
       "dependencies": {
         "@bull-board/express": "^6.14.0",
         "@mux/mux-node": "^12.8.0",
         "@types/express": "^5.0.5",
+        "@types/fs-extra": "^11.0.4",
         "@types/js-yaml": "^4.0.9",
+        "@types/magnet-uri": "^5.1.5",
         "@types/node": "^24.10.1",
         "@types/semver": "^7.7.1",
         "@types/ssh2": "^1.15.5",
@@ -20,6 +22,7 @@
         "date-fns": "^4.1.0",
         "fs-extra": "^11.3.2",
         "js-yaml": "^4.1.0",
+        "magnet-uri": "^7.0.7",
         "nano-spawn": "^2.0.0",
         "nanoid": "^5.1.6",
         "onnxruntime-web": "^1.23.2",
@@ -1586,6 +1589,18 @@
       "dev": true,
       "license": "MIT"
     },
+    "node_modules/@thaunknown/thirty-two": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/@thaunknown/thirty-two/-/thirty-two-1.0.5.tgz",
+      "integrity": "sha512-Q53KyCXweV1CS62EfqtPDqfpksn5keQ59PGqzzkK+g8Vif1jB4inoBCcs/BUSdsqddhE3G+2Fn+4RX3S6RqT0A==",
+      "license": "MIT",
+      "dependencies": {
+        "uint8-util": "^2.2.5"
+      },
+      "engines": {
+        "node": ">=0.2.6"
+      }
+    },
     "node_modules/@tootallnate/quickjs-emscripten": {
       "version": "0.23.0",
       "resolved": "https://registry.npmjs.org/@tootallnate/quickjs-emscripten/-/quickjs-emscripten-0.23.0.tgz",
@@ -1668,6 +1683,16 @@
         "@types/send": "*"
       }
     },
+    "node_modules/@types/fs-extra": {
+      "version": "11.0.4",
+      "resolved": "https://registry.npmjs.org/@types/fs-extra/-/fs-extra-11.0.4.tgz",
+      "integrity": "sha512-yTbItCNreRooED33qjunPthRcSjERP1r4MqCZc7wv0u2sUkzTFp45tgUfS5+r7FrZPdmCCNflLhVSP/o+SemsQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/jsonfile": "*",
+        "@types/node": "*"
+      }
+    },
     "node_modules/@types/http-errors": {
       "version": "2.0.5",
       "resolved": "https://registry.npmjs.org/@types/http-errors/-/http-errors-2.0.5.tgz",
@@ -1680,6 +1705,24 @@
       "integrity": "sha512-k4MGaQl5TGo/iipqb2UDG2UwjXziSWkh0uysQelTlJpX1qGlpUZYm8PnO4DxG1qBomtJUdYJ6qR6xdIah10JLg==",
       "license": "MIT"
     },
+    "node_modules/@types/jsonfile": {
+      "version": "6.1.4",
+      "resolved": "https://registry.npmjs.org/@types/jsonfile/-/jsonfile-6.1.4.tgz",
+      "integrity": "sha512-D5qGUYwjvnNNextdU59/+fI+spnwtTFmyQP0h+PfIOSkNfpU6AOICUOkm4i0OnSk+NyjdPJrxCDro0sJsWlRpQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/node": "*"
+      }
+    },
+    "node_modules/@types/magnet-uri": {
+      "version": "5.1.5",
+      "resolved": "https://registry.npmjs.org/@types/magnet-uri/-/magnet-uri-5.1.5.tgz",
+      "integrity": "sha512-SbBjlb1KGe38VfjRR+mwqztJd/4skhdKkRbIzPDhTy7IAeEAPZWIVSEkZw00Qr4ZZOGR3/ATJ20WWPBfrKHGdA==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/node": "*"
+      }
+    },
     "node_modules/@types/mime": {
       "version": "1.3.5",
       "resolved": "https://registry.npmjs.org/@types/mime/-/mime-1.3.5.tgz",
@@ -2191,6 +2234,15 @@
         "bare-path": "^3.0.0"
       }
     },
+    "node_modules/base64-arraybuffer": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/base64-arraybuffer/-/base64-arraybuffer-1.0.2.tgz",
+      "integrity": "sha512-I3yl4r9QB5ZRY3XuJVEPfc2XhZO6YweFPI+UovAzn+8/hb3oJ6lnysaFcjVpkCPfVWFUDvoZ8kmVDP7WyRtYtQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6.0"
+      }
+    },
     "node_modules/basic-ftp": {
       "version": "5.0.5",
       "resolved": "https://registry.npmjs.org/basic-ftp/-/basic-ftp-5.0.5.tgz",
@@ -2209,6 +2261,15 @@
         "tweetnacl": "^0.14.3"
       }
     },
+    "node_modules/bep53-range": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/bep53-range/-/bep53-range-2.0.0.tgz",
+      "integrity": "sha512-sMm2sV5PRs0YOVk0LTKtjuIprVzxgTQUsrGX/7Yph2Rm4FO2Fqqtq7hNjsOB5xezM4v4+5rljCgK++UeQJZguA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=12.20.0"
+      }
+    },
     "node_modules/body-parser": {
       "version": "2.2.0",
       "resolved": "https://registry.npmjs.org/body-parser/-/body-parser-2.2.0.tgz",
@@ -3754,6 +3815,34 @@
         "@jridgewell/sourcemap-codec": "^1.5.5"
       }
     },
+    "node_modules/magnet-uri": {
+      "version": "7.0.7",
+      "resolved": "https://registry.npmjs.org/magnet-uri/-/magnet-uri-7.0.7.tgz",
+      "integrity": "sha512-z/+dB2NQsXaDuxVBjoPLpZT8ePaacUmoontoFheRBl++nALHYs4qV9MmhTur9e4SaMbkCR/uPX43UMzEOoeyaw==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "@thaunknown/thirty-two": "^1.0.5",
+        "bep53-range": "^2.0.0",
+        "uint8-util": "^2.2.5"
+      },
+      "engines": {
+        "node": ">=12.20.0"
+      }
+    },
     "node_modules/math-intrinsics": {
       "version": "1.1.0",
       "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
@@ -5274,6 +5363,15 @@
         "node": ">=14.17"
       }
     },
+    "node_modules/uint8-util": {
+      "version": "2.2.5",
+      "resolved": "https://registry.npmjs.org/uint8-util/-/uint8-util-2.2.5.tgz",
+      "integrity": "sha512-/QxVQD7CttWpVUKVPz9znO+3Dd4BdTSnFQ7pv/4drVhC9m4BaL2LFHTkJn6EsYoxT79VDq/2Gg8L0H22PrzyMw==",
+      "license": "MIT",
+      "dependencies": {
+        "base64-arraybuffer": "^1.0.2"
+      }
+    },
     "node_modules/undici-types": {
       "version": "7.16.0",
       "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-7.16.0.tgz",
diff --git a/services/worker/package.json b/services/worker/package.json
index 410d7582..3d1fdd01 100644
--- a/services/worker/package.json
+++ b/services/worker/package.json
@@ -11,7 +11,9 @@
     "@bull-board/express": "^6.14.0",
     "@mux/mux-node": "^12.8.0",
     "@types/express": "^5.0.5",
+    "@types/fs-extra": "^11.0.4",
     "@types/js-yaml": "^4.0.9",
+    "@types/magnet-uri": "^5.1.5",
     "@types/node": "^24.10.1",
     "@types/semver": "^7.7.1",
     "@types/ssh2": "^1.15.5",
@@ -20,6 +22,7 @@
     "date-fns": "^4.1.0",
     "fs-extra": "^11.3.2",
     "js-yaml": "^4.1.0",
+    "magnet-uri": "^7.0.7",
     "nano-spawn": "^2.0.0",
     "nanoid": "^5.1.6",
     "onnxruntime-web": "^1.23.2",
@@ -40,4 +43,4 @@
   "scripts": {
     "start": "tsx src/index.ts"
   }
-}
\ No newline at end of file
+}
diff --git a/services/worker/src/index.ts b/services/worker/src/index.ts
index 64fb1cdc..198cdbd2 100644
--- a/services/worker/src/index.ts
+++ b/services/worker/src/index.ts
@@ -1,3 +1,5 @@
+import env from '../.config/env.ts';
+import { version } from '../package.json';
 import { createBullBoard } from '@bull-board/api';
 import { BullMQAdapter } from '@bull-board/api/bullMQAdapter';
 import { ExpressAdapter } from '@bull-board/express';
@@ -5,13 +7,12 @@ import express, { type Request, type Response } from 'express';
 import { generalQueue } from './queues/generalQueue.ts';
 import { gpuQueue } from './queues/gpuQueue.ts';
 import { highPriorityQueue } from './queues/highPriorityQueue.ts';
-import env from '../.config/env.ts';
-import { version } from '../package.json';
 import { downloadQueue } from './queues/downloadQueue.ts';
 import { cacheQueue } from './queues/cacheQueue.ts';
 import { muxQueue } from './queues/muxQueue.ts';
 import { b2Queue } from './queues/b2Queue.ts';
 
+
 const run = async () => {
 
 
@@ -77,6 +78,9 @@ const run = async () => {
         <li><a href="/task?name=createTorrent&vodId=1234">Task: createTorrent</a></li>
         <li><a href="/task?name=createMuxAsset&vodId=">Task: createMuxAsset</a></li>
         <li><a href="/task?name=cacheGet&vodId=1234">Task: cacheGet</a></li>
+        <li><a href="/task?name=updateTrackerWhitelist">Task: updateTrackerWhitelist</a></li>
+        <li><a href="/task?name=createFunscript&vodId=1234">Task: createFunscript</a></li>
+        <li><a href="/task?name=createHlsPlaylist&vodId=1234">Task: createHlsPlaylist</a></li>
       </ul>
     `)
   })
@@ -103,6 +107,15 @@ const run = async () => {
       case 'download':
         await downloadQueue.add(name, data);
         break;
+      case 'createFunscript':
+        await gpuQueue.add(name, data);
+        break;
+      case 'createHlsPlaylist':
+        await gpuQueue.add(name, data);
+        break;
+      case 'updateTrackerWhitelist':
+        await highPriorityQueue.add(name, data);
+        break;
       default:
         await highPriorityQueue.add(name, data);
         break;
diff --git a/services/worker/src/processors/announceTorrent.spec.ts b/services/worker/src/processors/announceTorrent.spec.ts
new file mode 100644
index 00000000..8c897c63
--- /dev/null
+++ b/services/worker/src/processors/announceTorrent.spec.ts
@@ -0,0 +1,16 @@
+import { test, expect, describe, vi } from 'vitest';
+import { decode } from 'magnet-uri';
+
+
+describe('announceTorrent integration', () => {
+  test("magnet-uri", () => {
+    const fixture = 'magnet:?xt=urn:btih:ca2b3ba127c17e689cc50b0f2190d0dd4b40d981&xt=urn:btmh:12207892c2345ea1e0460dc642219b76bc60f303569b6f9dbc911d1af78dd7301f3d&dn=2025-11-16-undefined-jwz52dszvnagplf.mp4&xl=13629592283&tr=udp%3A%2F%2Ftracker.future.porn%3A6969%2Fannounce';
+    const parsed = decode(fixture);
+    console.log(parsed)
+    expect(parsed).toHaveProperty('infoHash', 'ca2b3ba127c17e689cc50b0f2190d0dd4b40d981');
+    expect(parsed).toHaveProperty('infoHashV2', '7892c2345ea1e0460dc642219b76bc60f303569b6f9dbc911d1af78dd7301f3d');
+
+  });
+
+
+})
diff --git a/services/worker/src/processors/announceTorrent.ts b/services/worker/src/processors/announceTorrent.ts
new file mode 100644
index 00000000..5785da3d
--- /dev/null
+++ b/services/worker/src/processors/announceTorrent.ts
@@ -0,0 +1,56 @@
+import { Job } from "bullmq";
+import { getPocketBaseClient } from "../util/pocketbase";
+import { Vod } from "../types";
+import { Client, ConnectConfig, SFTPWrapper } from 'ssh2';
+import { opentrackerSSHClient } from "../util/sftp";
+import magnet from 'magnet-uri';
+
+interface Payload {
+  vodId: string;
+}
+
+
+function assertPayload(payload: any): asserts payload is Payload {
+  if (typeof payload !== "object" || !payload) throw new Error("invalid payload-- was not an object.");
+  if (typeof payload.vodId !== "string") throw new Error("invalid payload-- was missing vodId");
+}
+
+
+/**
+ * 
+ * announceTorrent
+ * 
+ * We use ssh to write a whitelist.txt file to our opentracker server
+ * 
+ * 
+ * @todo we aren't using this yet. Right now we are only bulk updating the whitelist at the top of the hour. 
+ *       As we get more torrents, we will want to implement announcing a single torrent by patching the whitelist using this method
+ * 
+ */
+export default async function announceTorrent(job: Job) {
+
+  throw new Error('@todo please implement');
+
+  assertPayload(job.data);
+  const pb = await getPocketBaseClient();
+
+  const vodId = job.data.vodId;
+
+  const vod = await pb.collection('vods').getOne(vodId);
+
+  const magnetLink = vod.magnetLink
+  if (!magnetLink) throw new Error(`vod ${vodId} has no magnetLink!`);
+
+
+
+  const parsed = magnet.decode(magnetLink)
+  job.log('dn=' + parsed.dn) // "Leaves of Grass by Walt Whitman.epub"
+  job.log('infoHash=' + parsed.infoHash) // "d2474e86c95b19b8bcfdb92bc12c9d44667cfa36"
+
+  const whitelist = ''
+  const localWhitelistPath = '@todo';
+  const remoteWhitelistPath = '/etc/opentracker/whitelist.txt';
+  await opentrackerSSHClient.uploadFileAs(localWhitelistPath, remoteWhitelistPath);
+
+
+}
diff --git a/services/worker/src/processors/cacheCleanup.ts b/services/worker/src/processors/cacheCleanup.ts
index 6c690d20..20072310 100644
--- a/services/worker/src/processors/cacheCleanup.ts
+++ b/services/worker/src/processors/cacheCleanup.ts
@@ -2,43 +2,72 @@ import { Job } from "bullmq";
 import fs from "node:fs/promises";
 import { join } from "node:path";
 import env from "../../.config/env";
+import { subDays } from "date-fns";
 
-const retainmentDayCount = 2;
+const retainmentDayCount = 365;
 
 /**
- * cacheCleanup
- *
- * Deletes files in the cache directory that are older than retainmentDayCount days
+ * Recursively delete files older than retainmentDayCount days
  */
 export default async function cacheCleanup(job: Job) {
   const cacheDir = join(env.CACHE_ROOT, 'worker');
   let cleanedCount = 0;
 
-  try {
-    // read all files in the cache directory
-    const files = await fs.readdir(cacheDir);
+  const cutoffDate = subDays(new Date(), retainmentDayCount);
+  const cutoffMs = cutoffDate.getTime();
 
-    const now = Date.now();
-    const retainMs = retainmentDayCount * 24 * 60 * 60 * 1000; // days → ms
+  job.log(`Starting recursive cache cleanup in directory: ${cacheDir}`);
+  job.log(`Deleting files older than: ${cutoffDate.toISOString()} (${cutoffMs} ms)`);
+
+  async function cleanDir(dir: string) {
+    let files: string[];
+    try {
+      files = await fs.readdir(dir);
+    } catch (err) {
+      job.log(`Failed to read directory ${dir}: ${(err as Error).message}`);
+      return;
+    }
 
     for (const file of files) {
-      const filePath = join(cacheDir, file);
+      const filePath = join(dir, file);
       try {
         const stat = await fs.stat(filePath);
-        // only delete files older than retainment
-        if (now - stat.mtimeMs > retainMs) {
-          await fs.unlink(filePath);
-          cleanedCount++;
+
+        if (stat.isDirectory()) {
+          job.log(`Entering directory: ${filePath}`);
+          await cleanDir(filePath); // recurse into subdirectory
+        } else {
+          job.log(`Checking file: ${filePath}, last access: ${new Date(stat.atimeMs).toISOString()}`);
+          if (stat.atimeMs < cutoffMs) {
+            await fs.unlink(filePath);
+            cleanedCount++;
+            job.log(`Deleted file: ${filePath}`);
+          } else {
+            job.log(`Keeping file: ${filePath}`);
+          }
         }
       } catch (err) {
-        // skip errors per-file, but log them
-        job.log(`failed to check/delete ${file}: ${(err as Error).message}`);
+        job.log(`Failed to check/delete ${filePath}: ${(err as Error).message}`);
       }
     }
 
-    job.log(`cleaned ${cleanedCount} stale cache files`);
+    // Optionally remove empty directories
+    try {
+      const remaining = await fs.readdir(dir);
+      if (remaining.length === 0 && dir !== cacheDir) {
+        await fs.rmdir(dir);
+        job.log(`Deleted empty directory: ${dir}`);
+      }
+    } catch (err) {
+      job.log(`Failed to delete directory ${dir}: ${(err as Error).message}`);
+    }
+  }
+
+  try {
+    await cleanDir(cacheDir);
+    job.log(`Cache cleanup complete. Deleted ${cleanedCount} files`);
   } catch (err) {
-    job.log(`cache cleanup failed: ${(err as Error).message}`);
-    throw err; // allow BullMQ to handle retry/failure
+    job.log(`Cache cleanup failed: ${(err as Error).message}`);
+    throw err;
   }
 }
diff --git a/services/worker/src/processors/createFunscript.ts b/services/worker/src/processors/createFunscript.ts
index 948f16a0..fda86a49 100644
--- a/services/worker/src/processors/createFunscript.ts
+++ b/services/worker/src/processors/createFunscript.ts
@@ -1,39 +1,104 @@
-import { getOrDownloadAsset } from "../util/cache.ts";
-import env from "../../env.ts";
-import { getS3Client, uploadFile } from "../util/s3.ts";
+import env from "../../.config/env.ts";
 import { inference } from "../util/vibeui.ts";
 import { buildFunscript } from "../util/funscripts.ts";
 import { generateS3Path } from "../util/formatters.ts";
-import { type Job } from "bullmq";
-import { getPocketBaseClient } from '../util/pocketbase';
+import { cacheQueue, cacheQueueEvents } from "../queues/cacheQueue.ts";
+import { Job } from "bullmq";
+import { basename } from "node:path";
+import { getPocketBaseClient } from "../util/pocketbase";
+import Client, { RecordModel } from "pocketbase";
+import { Vod } from "../types";
+import { readFile } from "node:fs/promises";
+import { getS3KeyTarget } from '../util/b2.ts';
+import spawn from "nano-spawn";
 
 interface Payload {
   vodId: string;
 }
 
+interface Funscripts { vibratePath: string, thrustPath: string }
+
 
 function assertPayload(payload: any): asserts payload is Payload {
-  if (typeof payload !== "object" || !payload)
-    throw new Error("invalid payload-- was not an object.");
-  if (typeof payload.vodId !== "string")
-    throw new Error("invalid payload-- was missing vodId");
+  if (typeof payload !== "object" || !payload) throw new Error("invalid payload-- was not an object.");
+  if (typeof payload.vodId !== "string") throw new Error("invalid payload-- was missing vodId");
 }
 
-async function getVod(vodId: string) {
-  // return prisma.vod.findFirstOrThrow({
-  //   where: { id: vodId },
-  //   include: { vtubers: true },
-  // });
-  // funscriptVibrate: funscriptKeys.vibrateKey,
-  //   funscriptThrust: funscriptKeys.thrustKey,
+
+
+/**
+ * createFunscript
+ */
+export async function createFunscript(job: Job) {
+  assertPayload(job.data);
+  const vodId = job.data.vodId;
   const pb = await getPocketBaseClient();
-  const vod = await pb.collection('vods').getOne(vodId, {
-    expand: 'vtubers'
-  });
-  return vod;
+  const vod = await pb.collection('vods').getOne(vodId, { expand: 'vtubers' });
+
+  job.log(`createFunscript running on vodId ${vodId}`);
+
+  ensureVodReady(job, vod);
+
+  const cachePath = await getVodFromCache(job, vodId);
+
+  job.log(`Running inference on video...`);
+  const predictionOutputPath = await inference(cachePath);
+
+  const funscripts = await buildFunscripts(
+    job,
+    predictionOutputPath,
+    cachePath
+  );
+
+  await uploadFunscripts(job, pb, vod, funscripts);
+
 }
 
-function ensureVodReady(vod: Awaited<ReturnType<typeof getVod>>) {
+async function uploadFunscript(job: Job, vod: RecordModel, assetPath: string): Promise<string> {
+  if (!job) throw new Error('job missing');
+  if (!vod) throw new Error('vod missing');
+  if (!assetPath) throw new Error('vod missing');
+  const s3KeyTarget = getS3KeyTarget(vod.collectionId, vod.id, assetPath, null);
+  job.log(`uploading funscript ${assetPath} to ${s3KeyTarget}`);
+  await spawn('b2', ['file', 'upload', env.AWS_BUCKET, assetPath, s3KeyTarget]);
+  return s3KeyTarget;
+}
+
+/**
+ *
+ * uploadFunscripts
+ * 
+ * Update the record in the database 
+ *
+ */
+async function uploadFunscripts(job: Job, pb: Client, vod: RecordModel, funscripts: Funscripts) {
+  const { vibratePath, thrustPath } = funscripts;
+  const funscriptVibrate = await uploadFunscript(job, vod, vibratePath);
+  const funscriptThrust = await uploadFunscript(job, vod, thrustPath);
+  const data = {
+    funscriptVibrate,
+    funscriptThrust,
+  }
+  await pb.collection('vods').update(vod.id, data);
+
+}
+
+async function getVodFromCache(job: Job, vodId: string): Promise<string> {
+
+  job.log('getting vod from cache...');
+  const cacheGetJob = await cacheQueue.add(
+    'cacheGet',
+    { vodId },
+    { jobId: `cacheGet-${vodId}` }
+  );
+
+  job.log('waiting up to 5 hours for download to finish...');
+  const result = (await cacheGetJob.waitUntilFinished(cacheQueueEvents, 1000 * 60 * 60 * 5));
+  return result.cachePath;
+}
+
+
+function ensureVodReady(job: Job, vod: RecordModel) {
   if (vod.funscriptVibrate && vod.funscriptThrust) {
     job.log(`Doing nothing-- vod ${vod.id} already has funscripts.`);
     return false;
@@ -48,28 +113,16 @@ function ensureVodReady(vod: Awaited<ReturnType<typeof getVod>>) {
   return true;
 }
 
-async function downloadVideo(sourceVideo: string) {
-  const s3Client = getS3Client();
-  const videoFilePath = await getOrDownloadAsset(
-    s3Client,
-    env.S3_BUCKET,
-    sourceVideo
-  );
-  job.log(`Downloaded video to ${videoFilePath}`);
-  return { s3Client, videoFilePath };
-}
-
 async function runInference(videoFilePath: string) {
-  job.log(`Running inference on video...`);
   const predictionOutputPath = await inference(videoFilePath);
-  job.log(`Prediction output at ${predictionOutputPath}`);
   return predictionOutputPath;
 }
 
 async function buildFunscripts(
+  job: Job,
   predictionOutputPath: string,
   videoFilePath: string
-) {
+): Promise<Funscripts> {
   job.log(`Building funscripts...`);
   const vibratePath = await buildFunscript(
     predictionOutputPath,
@@ -87,95 +140,97 @@ async function buildFunscripts(
   return { vibratePath, thrustPath };
 }
 
-async function uploadFunscripts(
-  s3Client: ReturnType<typeof getS3Client>,
-  slug: string,
-  streamDate: Date,
-  vodId: string,
-  funscripts: { vibratePath: string; thrustPath: string }
-) {
-  const vibrateKey = generateS3Path(
-    slug,
-    streamDate,
-    vodId,
-    `funscripts/vibrate.funscript`
-  );
-  const vibrateUrl = await uploadFile(
-    s3Client,
-    env.S3_BUCKET,
-    vibrateKey,
-    funscripts.vibratePath,
-    "application/json"
-  );
+// async function uploadFunscripts(
+//   job: Job,
+//   s3Client: ReturnType<typeof getS3Client>,
+//   slug: string,
+//   streamDate: Date,
+//   vodId: string,
+//   funscripts: { vibratePath: string; thrustPath: string }
+// ) {
+//   const vibrateKey = generateS3Path(
+//     slug,
+//     streamDate,
+//     vodId,
+//     `funscripts/vibrate.funscript`
+//   );
+//   const vibrateUrl = await uploadFile(
+//     s3Client,
+//     env.S3_BUCKET,
+//     vibrateKey,
+//     funscripts.vibratePath,
+//     "application/json"
+//   );
 
-  const thrustKey = generateS3Path(
-    slug,
-    streamDate,
-    vodId,
-    `funscripts/thrust.funscript`
-  );
-  const thrustUrl = await uploadFile(
-    s3Client,
-    env.S3_BUCKET,
-    thrustKey,
-    funscripts.thrustPath,
-    "application/json"
-  );
+//   const thrustKey = generateS3Path(
+//     slug,
+//     streamDate,
+//     vodId,
+//     `funscripts/thrust.funscript`
+//   );
+//   const thrustUrl = await uploadFile(
+//     s3Client,
+//     env.S3_BUCKET,
+//     thrustKey,
+//     funscripts.thrustPath,
+//     "application/json"
+//   );
 
-  job.log(`Uploaded funscriptVibrate to S3: ${vibrateUrl}`);
-  job.log(`Uploaded funscriptThrust to S3: ${thrustUrl}`);
+//   job.log(`Uploaded funscriptVibrate to S3: ${vibrateUrl}`);
+//   job.log(`Uploaded funscriptThrust to S3: ${thrustUrl}`);
 
-  return { vibrateKey, thrustKey };
-}
+//   return { vibrateKey, thrustKey };
+// }
 
-async function saveToDatabase(
-  vodId: string,
-  funscriptKeys: { vibrateKey: string; thrustKey: string }
-) {
-  const pb = await getPocketBaseClient();
+// async function saveToDatabase(
+//   job: Job,
+//   vodId: string,
+//   funscriptKeys: { vibrateKey: string; thrustKey: string }
+// ) {
+//   const pb = await getPocketBaseClient();
 
-  await pb.collection('users').update(vodId, {
-    funscriptVibrate: funscriptKeys.vibrateKey,
-    funscriptThrust: funscriptKeys.thrustKey,
-  });
+//   await pb.collection('users').update(vodId, {
+//     funscriptVibrate: funscriptKeys.vibrateKey,
+//     funscriptThrust: funscriptKeys.thrustKey,
+//   });
 
-  job.log(`Funscripts saved to database for vod ${vodId}`);
-}
+//   job.log(`Funscripts saved to database for vod ${vodId}`);
+// }
 
 
-export async function createFunscriptTask(job: Job) {
+// export async function createFunscriptTask(job: Job) {
 
-  const pb = await getPocketBaseClient();
+//   const pb = await getPocketBaseClient();
 
-  job.log(`the job '${job.name}' is running`);
+//   job.log(`the job '${job.name}' is running`);
 
-  const { vodId } = job.data.vodId;
-  job.log(`createFunscript called with vodId=${vodId}`);
+//   const { vodId } = job.data.vodId;
+//   job.log(`createFunscript called with vodId=${vodId}`);
 
-  const vod = await getVod(vodId);
-  if (!ensureVodReady(vod)) return;
+//   const vod = await getVod(vodId);
+//   if (!ensureVodReady(vod)) return;
 
-  const { s3Client, videoFilePath } = await downloadVideo(vod.sourceVideo!);
-  const predictionOutputPath = await runInference(videoFilePath);
+//   const { s3Client, videoFilePath } = await downloadVideo(vod.sourceVideo!);
+//   const predictionOutputPath = await runInference(videoFilePath);
 
-  const slug = vod.vtubers[0].slug;
-  if (!slug)
-    throw new Error(`vod.vtubers[0].slug for vod ${vod.id} was falsy.`);
+//   const slug = vod.vtubers[0].slug;
+//   if (!slug)
+//     throw new Error(`vod.vtubers[0].slug for vod ${vod.id} was falsy.`);
 
-  const funscripts = await buildFunscripts(
-    predictionOutputPath,
-    videoFilePath
-  );
+//   const funscripts = await buildFunscripts(
+//     predictionOutputPath,
+//     videoFilePath
+//   );
 
-  const funscriptKeys = await uploadFunscripts(
-    s3Client,
-    slug,
-    vod.streamDate,
-    vod.id,
-    funscripts
-  );
+//   const funscriptKeys = await uploadFunscripts(
+//     s3Client,
+//     slug,
+//     vod.streamDate,
+//     vod.id,
+//     funscripts
+//   );
 
-  await saveToDatabase(vodId, funscriptKeys);
-};
+//   await saveToDatabase(vodId, funscriptKeys);
+// };
 
 
diff --git a/services/worker/src/processors/createHlsPlaylist.ts b/services/worker/src/processors/createHlsPlaylist.ts
index 6acc6676..823d6cc5 100644
--- a/services/worker/src/processors/createHlsPlaylist.ts
+++ b/services/worker/src/processors/createHlsPlaylist.ts
@@ -1,26 +1,23 @@
-import type { Task, Helpers } from "graphile-worker";
-import { PrismaClient } from "../../generated/prisma";
-import { withAccelerate } from "@prisma/extension-accelerate";
-import { getOrDownloadAsset } from "../utils/cache";
-import { env } from "../config/env";
-import { S3Client } from "@aws-sdk/client-s3";
-import { getS3Client, uploadFile } from "../utils/s3";
+
+import env from "../../.config/env.ts";
 import { nanoid } from "nanoid";
-import { basename, join, dirname } from "node:path";
+import { basename, join } from "node:path";
 import { mkdirp } from "fs-extra";
-import { listFilesRecursive } from "../utils/filesystem";
-import { getMimeType } from "../utils/mimetype";
-import { getNanoSpawn } from "../utils/nanoSpawn";
-import logger from "../utils/logger";
-
-const prisma = new PrismaClient().$extends(withAccelerate());
-
+import { listFilesRecursive } from "../util/fsExtra.ts";
+import spawn from "nano-spawn";
+import { Job } from "bullmq";
+import { getSourceVideo } from "../util/cache.ts";
+import { getPocketBaseClient } from "../util/pocketbase";
+import PocketBase, { RecordModel } from 'pocketbase';
+import { readFile } from "node:fs/promises";
+import { getS3KeyTarget } from "../util/b2.ts";
 
 interface Payload {
   vodId: string;
 }
 
 
+
 interface HlsVariant {
   videoPath: string;
   resolution: string; // e.g. "1920x1080"
@@ -29,31 +26,11 @@ interface HlsVariant {
 }
 
 
-// // Create a fragmented MP4 for use with fMP4 HLS
-// async function createFragmentedMp4(helpers: Helpers, inputFilePath: string) {
 
-//   const outputFilePath = join(env.CACHE_ROOT, `${nanoid()}.mp4`)
-//   await spawn('ffmpeg', [
-//     '-i', inputFilePath,
-//     '-c', 'copy',
-//     '-f', 'mp4',
-//     '-movflags', 'frag_keyframe+empty_moov',
-//     outputFilePath
-//   ], {
-//     stdout: 'inherit',
-//     stderr: 'inherit',
-//   })
-//   return outputFilePath
-// }
-
-
-
-
-export async function createVariants(helpers: Helpers, inputFilePath: string): Promise<HlsVariant[]> {
+export async function createVariants(job: Job, inputFilePath: string): Promise<HlsVariant[]> {
   const workdir = join(env.CACHE_ROOT, nanoid());
   await mkdirp(workdir);
   const baseName = basename(inputFilePath, '.mp4');
-  const spawn = await getNanoSpawn()
 
   const resolutions = [
     { width: 1920, height: 1080, bitrate: 4000000, name: '1080p' }, // 4Mbps
@@ -96,13 +73,14 @@ export async function createVariants(helpers: Helpers, inputFilePath: string): P
 }
 
 export async function packageHls(
-  helpers: Helpers,
+  job: Job,
   variants: HlsVariant[],
   outputDir: string
 ): Promise<string> {
   const args: string[] = [];
 
-  const spawn = await getNanoSpawn();
+  job.log(`packageHls called with ${variants.length} variants. ${Object.entries(variants).map(([i, variant]) => `${i}: ${variant.videoPath} ${variant.resolution}`).join(', ')}`);
+
   // Sort by bandwidth (highest first)
   variants.sort((a, b) => b.bandwidth - a.bandwidth);
 
@@ -130,15 +108,33 @@ export async function packageHls(
   args.push("--generate_static_live_mpd");
   args.push("--segment_duration=2");
 
-  await spawn("packager", args, {
-    stdout: "inherit",
-    stderr: "inherit",
-  });
+  await spawn("packager", args);
 
   return masterPlaylist;
 }
 
 
+/**
+ * 
+ * uploadHlsAsset
+ * 
+ * Save the playlist .m3u8 to S3. 
+ * Then update the vod record in Pocketbase with the s3 key target path.
+ * 
+ * example: `pbc_144770472/j8cgd0qqjbzyfi3/hls/master_j8cgd0qqjbzyfi3.m3u8`
+ * 
+ * these files are later made available to users via our `/api/hls` route 
+ * which creates 302 redirects with BunnyCDN token signed URLs to the CDN asssets
+ */
+export async function uploadHlsAsset(job: Job, pb: PocketBase, vod: RecordModel, assetPath: string): Promise<void> {
+  const vodId = vod.id;
+  const s3KeyTarget = getS3KeyTarget(vod.collectionId, vodId, assetPath, 'hls');
+  job.log(`uploading hls asset ${assetPath} to ${s3KeyTarget}`);
+  await spawn('b2', ['file', 'upload', env.AWS_BUCKET, assetPath, s3KeyTarget]);
+
+  await pb.collection('vods').update(vodId, { hlsPlaylist: s3KeyTarget });
+}
+
 
 
 function assertPayload(payload: any): asserts payload is Payload {
@@ -147,19 +143,19 @@ function assertPayload(payload: any): asserts payload is Payload {
 }
 
 
-export default async function createHlsPlaylist(payload: any, helpers: Helpers) {
-  assertPayload(payload)
-  const { vodId } = payload
-  const vod = await prisma.vod.findFirstOrThrow({
-    where: {
-      id: vodId
-    }
-  })
-  // * [x] load vod
+
+
+export async function createHlsPlaylist(job: Job) {
+  assertPayload(job.data)
+  const { vodId } = job.data;
+
+  const pb = await getPocketBaseClient();
+  const vod = await pb.collection('vods').getOne(vodId);
+
 
   // * [x] exit if video.hlsPlaylist already defined
   if (vod.hlsPlaylist) {
-    logger.info(`Doing nothing-- vod ${vodId} already has a hlsPlaylist.`)
+    job.log(`Doing nothing-- vod ${vodId} already has a hlsPlaylist.`)
     return; // Exit the function early
   }
 
@@ -167,54 +163,46 @@ export default async function createHlsPlaylist(payload: any, helpers: Helpers)
     throw new Error(`Failed to create hlsPlaylist-- vod ${vodId} is missing a sourceVideo.`);
   }
 
-  logger.info(`Creating HLS Playlist.`)
-  const s3Client = getS3Client()
+  job.log(`Creating HLS Playlist.`)
   const taskId = nanoid()
-  const workDirPath = join(env.CACHE_ROOT, taskId)
+  const workDirPath = join(env.CACHE_ROOT, 'worker', taskId)
   const packageDirPath = join(workDirPath, 'package', 'hls')
   await mkdirp(packageDirPath)
 
-  logger.info("download source video from pull-thru cache")
-  const videoFilePath = await getOrDownloadAsset(s3Client, env.S3_BUCKET, vod.sourceVideo)
-  logger.info(`videoFilePath=${videoFilePath}`)
-
-  logger.info("create ABR variants")
-  const variants = await createVariants(helpers, videoFilePath)
-  logger.info('variants as follows')
-  logger.info(JSON.stringify(variants))
+  job.log("download source video from pull-thru cache")
+  const videoFilePath = await getSourceVideo(job);
 
 
-  logger.info("run shaka packager")
-  const masterPlaylistPath = await packageHls(helpers, variants, packageDirPath)
-  logger.debug(`masterPlaylistPath=${masterPlaylistPath}`)
+  job.log(`videoFilePath=${videoFilePath}`)
+
+  job.log("create ABR variants")
+  const variants = await createVariants(job, videoFilePath)
+  job.log('variants as follows')
+  job.log(JSON.stringify(variants))
 
 
-  logger.info('uploading assets')
+  job.log("run shaka packager")
+  const masterPlaylistPath = await packageHls(job, variants, packageDirPath)
+  job.log(`masterPlaylistPath=${masterPlaylistPath}`)
+
+
+  job.log('uploading assets')
   let assets = await listFilesRecursive(workDirPath)
-  logger.info('assets as follows')
-  logger.info(JSON.stringify(assets))
+  job.log('assets as follows')
+  job.log(JSON.stringify(assets))
   for (let i = 0; i < assets.length; i++) {
-    const asset = assets[i]
-    const s3Key = `package/${taskId}/hls/${basename(asset)}`
-    const mimetype = getMimeType(asset)
-    await uploadFile(s3Client, env.S3_BUCKET, s3Key, asset, mimetype)
+    const asset = assets[i];
+    // const s3Key = `package/${taskId}/hls/${basename(asset)}`;
+    // const mimetype = mime.lookup(asset);
+    const s3KeyTarget = getS3KeyTarget(vod.collectionId, vod.id, asset, 'hls');
+    job.log(`uploading asset ${asset} to ${s3KeyTarget}`);
+    await uploadHlsAsset(job, pb, vod, asset);
   };
 
+  // await spawn('b2', ['file', 'upload', env.AWS_BUCKET, asset, s3KeyTarget]);
+  job.log("generate thumbnail s3 key");
+  await uploadHlsAsset(job, pb, vod, masterPlaylistPath);
+  await job.log('Finished creating HLS playlist');
 
-  logger.info("generate thumbnail s3 key")
-  const s3Key = `package/${taskId}/hls/master.m3u8`
+}
 
-
-  // * [x] upload assets to s3
-  await uploadFile(s3Client, env.S3_BUCKET, s3Key, masterPlaylistPath, 'application/vnd.apple.mpegurl')
-  // await uploadFile(s3Client, env.S3_BUCKET, s3Key, masterPlaylistPath, 'application/vnd.apple.mpegurl')
-
-  // * [x] update vod record
-  await prisma.vod.update({
-    where: { id: vodId },
-    data: { hlsPlaylist: s3Key }
-  });
-
-  // * [x] done
-
-}
\ No newline at end of file
diff --git a/services/worker/src/processors/createTorrent.ts b/services/worker/src/processors/createTorrent.ts
index 529493ad..c70fe78e 100644
--- a/services/worker/src/processors/createTorrent.ts
+++ b/services/worker/src/processors/createTorrent.ts
@@ -20,12 +20,13 @@
 
 
 
-import { sshClient } from "../util/sftp";
+import { seedboxSSHClient } from "../util/sftp";
 import { qbtClient, QBTorrentInfo } from "../util/qbittorrent";
 import { Job } from "bullmq";
 import { getPocketBaseClient } from "../util/pocketbase";
 import { basename } from 'node:path';
 import { cacheQueue, cacheQueueEvents } from "../queues/cacheQueue";
+import { highPriorityQueue } from "../queues/highPriorityQueue";
 import { readFile } from "node:fs/promises";
 
 
@@ -163,7 +164,7 @@ async function uploadTorrentToSeedbox(job: Job, videoFilePath: string, torrentFi
   job.log(`Uploading ${videoFilePath} to seedbox...`);
   let lastLog = 0; // timestamp in ms
 
-  await sshClient.uploadFile(videoFilePath, './data', async ({ percent }) => {
+  await seedboxSSHClient.uploadFileToDir(videoFilePath, './data', async ({ percent }) => {
     const now = Date.now();
     if (now - lastLog >= 1_000) {       // 10 seconds
       lastLog = now;
@@ -172,7 +173,7 @@ async function uploadTorrentToSeedbox(job: Job, videoFilePath: string, torrentFi
   });
 
   job.log(`Uploading ${torrentFilePath} to seedbox...`);
-  await sshClient.uploadFile(torrentFilePath, './watch');
+  await seedboxSSHClient.uploadFileToDir(torrentFilePath, './watch');
 
 
 }
@@ -231,12 +232,17 @@ export async function createTorrent(job: Job) {
   const formData = new FormData();
 
   const torrentBuffer = await readFile(torrentFilePath)
-  formData.append('torrent', new Blob([torrentBuffer]), basename(torrentFilePath));
+  formData.append('torrent', new Blob([torrentBuffer as any]), basename(torrentFilePath));
   formData.append('magnetLink', magnetLink);
 
   await pb.collection('vods').update(vod.id, formData);
 
-
+  // fire off an announce job so opentracker gets to know about this torrent
+  await highPriorityQueue.add(
+    'announceTorrent',
+    { vodId },
+    { jobId: `announceTorrent-${vodId}` }
+  );
 
 
 
diff --git a/services/worker/src/processors/findWork.ts b/services/worker/src/processors/findWork.ts
index 6bde88e4..68c5cbff 100644
--- a/services/worker/src/processors/findWork.ts
+++ b/services/worker/src/processors/findWork.ts
@@ -5,11 +5,13 @@ import { generalQueue } from "../queues/generalQueue.ts";
 import { muxQueue } from "../queues/muxQueue.ts";
 import { b2Queue } from "../queues/b2Queue.ts";
 import { shuffle } from "../util/random.ts";
+import { gpuQueue } from "../queues/gpuQueue.ts";
 
 const queues: Record<string, Queue> = {
   generalQueue: generalQueue,
   muxQueue: muxQueue,
   b2Queue: b2Queue,
+  gpuQueue: gpuQueue,
 };
 
 type VodJobConfig = {
@@ -31,7 +33,7 @@ async function handleMissing(job: Job, pb: Client, config: VodJobConfig) {
   // @todo figure out a better way to handle permafailed vod processing tasks that isn't a ticking timebomb.
   const results = await pb.collection('vods').getList(1, 3, {
     filter: config.filter,
-    sort: '-created',
+    sort: '-created', // newest first
   });
 
   const vods = results.items;
@@ -53,6 +55,8 @@ async function handleMissing(job: Job, pb: Client, config: VodJobConfig) {
   const attempts = 3;
 
   const queue = queues[config.queueName];
+  if (!queue?.name) throw new Error(`failed to get a valid queue: ${config.queueName}. Did you forget to add the queue to the findWork queue map at the top of the module?`);
+
   await queue.add(config.processorName, { vodId }, { jobId, attempts });
 }
 
@@ -124,6 +128,17 @@ async function handleMissing(job: Job, pb: Client, config: VodJobConfig) {
 
 
 
+
+export async function handleMissingFunscripts(job: Job, pb: Client) {
+  return handleMissing(job, pb, {
+    filter: "sourceVideo != '' && (funscriptVibrate = '' || funscriptThrust = '')",
+    queueName: 'gpuQueue',
+    processorName: 'createFunscript',
+    logMessage: (id) => `findWork found ${id} in need of a funscript.`
+  });
+}
+
+
 export async function handleMissingTorrent(job: Job, pb: Client) {
   return handleMissing(job, pb, {
     filter: "sourceVideo != '' && magnetLink = ''",
@@ -195,9 +210,9 @@ export async function findWork(job: Job) {
   await handleMissingSourceVideo(job, pb);
   await handleMissingMuxAsset(job, pb);
   await handleMissingThumbnail(job, pb);
+  await handleMissingFunscripts(job, pb);
 
 
-  // findMissingThumbnail 
   // findMissingAudioAnalysis
   // ... etc.
 
diff --git a/services/worker/src/processors/updateTrackerWhitelist.ts b/services/worker/src/processors/updateTrackerWhitelist.ts
new file mode 100644
index 00000000..dfbe7dbe
--- /dev/null
+++ b/services/worker/src/processors/updateTrackerWhitelist.ts
@@ -0,0 +1,111 @@
+import { Job } from "bullmq";
+import { getPocketBaseClient } from "../util/pocketbase";
+import Client, { type RecordModel } from "pocketbase";
+import { Vod } from "../types";
+import { writeFile } from "fs/promises";
+import { decode } from "magnet-uri";
+import { nanoid } from "nanoid";
+import env from "../../.config/env";
+import { join } from "path";
+import { opentrackerSSHClient } from '../util/sftp.ts';
+import spawn from 'nano-spawn';
+import retry from "../util/retry.ts";
+
+interface Payload { }
+
+
+function assertPayload(payload: any): asserts payload is Payload {
+  if (typeof payload !== "object" || !payload) throw new Error("invalid payload-- was not an object.");
+}
+
+
+/**
+ * getApplicableVods
+ * 
+ */
+async function getApplicableVods(pb: Client) {
+  const vods = await pb.collection('vods').getFullList({
+    filter: "magnetLink != ''"
+  })
+
+  return vods;
+}
+
+async function generateWhitelist(job: Job, vods: RecordModel[]) {
+  let whitelistLines = [];
+  for (let i = 0; i < vods.length; i++) {
+    const vod = vods[i];
+
+    const magnetLink = vod.magnetLink;
+
+    let parsed;
+    try {
+      parsed = decode(magnetLink);
+    } catch (err) {
+      await job.log(`Failed to parse magnet link for VOD ${vod.id}: ${err}`);
+      continue;
+    }
+
+    const infoHash = parsed?.infoHash;
+    // @ts-ignore I think @types/magnet-uri is missing infoHashV2 property
+    const infoHashV2 = parsed?.infoHashV2;
+    if (!infoHash) {
+      throw new Error(`vod ${vod.id} is missing infoHash`);
+    }
+    if (!infoHashV2) {
+      throw new Error(`vod ${vod.id} is missing infoHashV2`);
+    }
+
+    whitelistLines.push(infoHash);
+    whitelistLines.push(infoHashV2);
+
+  }
+
+  await job.log(`whitelist contains ${whitelistLines.length} lines.`);
+
+  const whitelistTmpFile = join(env.CACHE_ROOT, 'worker', `tracker-whitelist-${nanoid()}.txt`);
+  await job.log('write whitelist file to ' + whitelistTmpFile);
+  await writeFile(whitelistTmpFile, whitelistLines.join('\n') + '\n', { encoding: 'utf-8' });
+  return whitelistTmpFile;
+}
+
+
+async function uploadWhitelist(job: Job, whitelistTmpFile: string) {
+  await job.updateProgress(0);
+
+  return retry(
+    async () => {
+      await opentrackerSSHClient.uploadFileAs(
+        whitelistTmpFile,
+        '/etc/opentracker/whitelist.txt',
+        async ({ transferred, total, percent }) => {
+          await job.updateProgress(percent / 100); // updateProgress expects 0..1
+        }
+      );
+    },
+    3,
+    3000
+  );
+
+
+}
+
+
+export async function updateTrackerWhitelist(job: Job) {
+
+  assertPayload(job.data);
+  const pb = await getPocketBaseClient();
+  const vods = await getApplicableVods(pb);
+
+  await job.log(`There are ${vods.length} vods with magnetLink that we will use to populate the opentracker whitelist.`);
+
+  const whitelistTmpFile = await generateWhitelist(job, vods);
+
+  await job.log('uploading whitelist to tracker...');
+  await uploadWhitelist(job, whitelistTmpFile);
+
+  await job.log('Reloading opentracker');
+  await spawn('systemctl', ['--host=tracker', 'reload', 'opentracker.service']);
+
+  await job.log('All done.');
+}
diff --git a/services/worker/src/queues/downloadQueue.ts b/services/worker/src/queues/downloadQueue.ts
index f302ea33..3b3f1114 100644
--- a/services/worker/src/queues/downloadQueue.ts
+++ b/services/worker/src/queues/downloadQueue.ts
@@ -5,4 +5,3 @@ export const downloadQueueEvents = new QueueEvents("downloadQueue", {
   connection
 });
 
-await downloadQueue.setGlobalConcurrency(1);
\ No newline at end of file
diff --git a/services/worker/src/queues/highPriorityQueue.ts b/services/worker/src/queues/highPriorityQueue.ts
index e7c22e94..29d7058d 100644
--- a/services/worker/src/queues/highPriorityQueue.ts
+++ b/services/worker/src/queues/highPriorityQueue.ts
@@ -13,3 +13,15 @@ await highPriorityQueue.upsertJobScheduler(
     opts: {}
   },
 )
+
+await highPriorityQueue.upsertJobScheduler(
+  'updateTrackerWhitelist-recurring',
+  {
+    pattern: '0 * * * *'
+  },
+  {
+    name: 'updateTrackerWhitelist',
+    data: {},
+    opts: {}
+  }
+)
\ No newline at end of file
diff --git a/services/worker/src/util/b2.ts b/services/worker/src/util/b2.ts
index 78da3e00..3af62188 100644
--- a/services/worker/src/util/b2.ts
+++ b/services/worker/src/util/b2.ts
@@ -1,7 +1,28 @@
 import spawn from 'nano-spawn';
 import env from '../../.config/env';
+import { basename } from 'node:path';
 
 export async function b2Download(fromS3Key: string, tmpFilePath: string): Promise<string> {
   await spawn('b2', ['file', 'download', `b2://${env.AWS_BUCKET}/${fromS3Key}`, tmpFilePath]);
   return fromS3Key;
-}
\ No newline at end of file
+}
+
+/**
+ * We put the hls package under `/:collection/:id/hls/` so we can use Bunny CDN's token singing 
+ * to allow token access to all the files within that folder
+ * @see https://support.bunny.net/hc/en-us/articles/360016055099-How-to-sign-URLs-for-BunnyCDN-Token-Authentication
+ */
+export function getS3KeyTarget(collectionId: string, vodId: string, filename: string, subFolder: string | null) {
+  if (!filename) throw new Error('third param filename was missing');
+  if (!vodId) throw new Error('second param vodId was missing');
+  if (!collectionId) throw new Error('first param collectionId was missing');
+
+  let s3KeyTarget: string;
+  let name = basename(filename);
+  if (subFolder) {
+    s3KeyTarget = `${collectionId}/${vodId}/${subFolder}/${name}`;
+  } else {
+    s3KeyTarget = `${collectionId}/${vodId}/${name}`;
+  }
+  return s3KeyTarget
+}
diff --git a/services/worker/src/util/bunnyCDN.spec.ts b/services/worker/src/util/bunnyCDN.spec.ts
index 69f0eb7f..cc329fc5 100644
--- a/services/worker/src/util/bunnyCDN.spec.ts
+++ b/services/worker/src/util/bunnyCDN.spec.ts
@@ -1,30 +1,58 @@
 import { describe, it, expect } from "vitest";
 import { signUrl } from "./bunnyCDN.ts";
+import env from "../../.config/env.ts";
 
-describe("signUrl", () => {
+describe("signUrl unit", () => {
   it("generates a correct signed BunnyCDN URL", () => {
     const securityKey = "my-secret";
-    const baseUrl = "https://cdn.example.com";
-    const path = "/videos/test.mp4";
-    const rawQuery = "width=500&quality=80";
+    const url = "https://cdn.example.com/videos/test.mp4?width=500&quality=80";
     const expires = 1732600000;
 
-    const signed = signUrl(securityKey, baseUrl, path, rawQuery, expires);
+    const signed = signUrl(securityKey, url, expires);
 
     // token part is deterministic but long, so let's just check it contains required parts
-    expect(signed).toContain(baseUrl + path);
     expect(signed).toContain("token=");
-    expect(signed).toContain("quality=80&width=500");
+    expect(signed).toContain("quality=80");
+    expect(signed).toContain("width=500");
     expect(signed).toContain(`expires=${expires}`);
   });
 
   it("throws if baseUrl ends with slash", () => {
-    expect(() => signUrl("k", "https://example.com/", "/file.jpg", "", 123))
+    expect(() => signUrl("k", "https://example.com/file.jpg/", 123))
       .toThrow(/must not end with a slash/);
   });
 
   it("prepends slash if path does not start with one", () => {
-    const out = signUrl("k", "https://x", "file.jpg", "", 1);
+    const out = signUrl("k", "https://x/file.jpg", 1);
     expect(out.startsWith("https://x/file.jpg")).toBe(true);
   });
+
+  it('allows a token_path arg', () => {
+    const url = signUrl("k", "https://example.com/vods/abcd/hls/master_abcd.m3u8", 123, "/vods/abcd/hls/")
+    expect(url).toMatch(/token=[A-Za-z0-9\-_]+/);
+    expect(url).toMatch(/expires=123/);
+    expect(url).toContain(`token_path=${encodeURIComponent('/vods/abcd/hls/')}`);
+  });
 });
+
+
+describe("signUrl integration", () => {
+  const expires = Math.floor(Date.now() / 1000) + 3 * 60 * 60; // 3h from now
+  it('should generate a URL that returns HTTP 200', async () => {
+    const path = '/pbc_144770472/j8cgd0qqjbzyfi3/2025_11_29_test_j8cgd0qqjbzyfi3_thumb_fv49sz62ro.png'
+    const inputUrl = `${env.BUNNY_ZONE_URL}${path}`;
+    const signedUrl = signUrl(env.BUNNY_TOKEN_KEY, inputUrl, expires);
+    const res = await fetch(signedUrl);
+    expect(res.status).toBeOneOf([200, 201]);
+  });
+
+  it('should generate a token_path URL that returns HTTP 200', async () => {
+    const pathAllowed = '/pbc_144770472/j8cgd0qqjbzyfi3/hls/';
+    const path = pathAllowed + 'master.m3u8';
+    const url = signUrl(env.BUNNY_TOKEN_KEY, `${env.BUNNY_ZONE_URL}${path}`, expires, pathAllowed);
+    console.log(url);
+    const res = await fetch(url);
+    expect(res.status).toBeOneOf([200, 201]);
+  });
+
+})
\ No newline at end of file
diff --git a/services/worker/src/util/bunnyCDN.ts b/services/worker/src/util/bunnyCDN.ts
index cad26fce..11c0da8d 100644
--- a/services/worker/src/util/bunnyCDN.ts
+++ b/services/worker/src/util/bunnyCDN.ts
@@ -1,36 +1,53 @@
 
 import crypto from "node:crypto";
-
+import { escape } from 'node:querystring';
 
 /**
  * Generate a signed BunnyCDN URL.
  * 
  * @see https://support.bunny.net/hc/en-us/articles/360016055099-How-to-sign-URLs-for-BunnyCDN-Token-Authentication
  */
-export function signUrl(securityKey: string, baseUrl: string, path: string, rawQuery = "", expires: number) {
-  if (!path) throw new Error('signUrl requires a path argument, but it was falsy.');
-  if (!path.startsWith('/')) path = '/' + path;
-  if (baseUrl.endsWith('/')) throw new Error(`baseUrl must not end with a slash. got baseUrl=${baseUrl}`);
+export function signUrl(
+  securityKey: string,
+  url: string,
+  expires: number,
+  pathAllowed: string = '',
+) {
+  if (url.endsWith('/')) throw new Error('url must not end with a slash.');
 
-  // Build parameter string (sort keys alphabetically)
-  let parameterData = "";
-  if (rawQuery) {
-    const params = rawQuery
-      .split("&")
-      .map(p => p.split("="))
-      .filter(([key]) => key && key !== "token" && key !== "expires")
-      .sort(([a], [b]) => a.localeCompare(b));
+  let parsedURL = new URL(url);
+  let params = (new URL(parsedURL)).searchParams;
+  let signaturePath = '';
+  let parameterData = '';
+  let parameterDataUrl = '';
 
-    if (params.length) {
-      parameterData = params.map(([k, v]) => `${k}=${v}`).join("&");
-    }
+  if (pathAllowed) {
+    signaturePath = pathAllowed;
+    params.set('token_path', signaturePath);
+  } else {
+    signaturePath = decodeURIComponent(parsedURL.pathname);
   }
 
-  // Build hashable base
-  const hashableBase = securityKey + path + expires + parameterData;
-  // console.log(`hashableBase`, hashableBase)
+  params.sort();
+  if (Array.from(params).length > 0) {
+    params.forEach(function (value, key) {
+      if (value == "") {
+        return;
+      }
+      if (parameterData.length > 0) {
+        parameterData += "&";
+      }
+      parameterData += key + "=" + value;
+      parameterDataUrl += "&" + key + "=" + escape(value);
+
+    });
+  }
+
+
+  const hashableBase = securityKey + signaturePath + expires + parameterData;
+  // const hashableBase = securityKey + path + expires + parameterData;
+  console.log(`hashableBase`, hashableBase)
 
-  // Compute token using your $security.sha256 workflow
 
   const tokenH = crypto.createHash("sha256").update(hashableBase).digest("hex");
   const token = Buffer.from(tokenH, "hex")
@@ -41,9 +58,7 @@ export function signUrl(securityKey: string, baseUrl: string, path: string, rawQ
     .replace(/=/g, "");
 
   // Build final signed URL
-  let tokenUrl = baseUrl + path + "?token=" + token;
-  if (parameterData) tokenUrl += "&" + parameterData;
-  tokenUrl += "&expires=" + expires;
+  return `${parsedURL.protocol}//${parsedURL.host}${parsedURL.pathname}?token=${token}${parameterDataUrl}&expires=${expires}`;
+
 
-  return tokenUrl;
 }
\ No newline at end of file
diff --git a/services/worker/src/util/cache.ts b/services/worker/src/util/cache.ts
new file mode 100644
index 00000000..db0e167a
--- /dev/null
+++ b/services/worker/src/util/cache.ts
@@ -0,0 +1,21 @@
+import { Job } from "bullmq";
+import { cacheQueue, cacheQueueEvents } from "../queues/cacheQueue";
+
+type CachePath = string;
+
+export async function getSourceVideo(job: Job, timeout: number = 1000 * 60 * 60 * 5): Promise<CachePath> {
+  const vodId = job.data.vodId;
+
+  await job.log(`First we need to get the vod from cache...`);
+  const cacheGetJob = await cacheQueue.add(
+    'cacheGet',
+    { vodId },
+    { jobId: `cacheGet-${vodId}` }
+  );
+
+  const results = (await cacheGetJob.waitUntilFinished(cacheQueueEvents, timeout));
+  await job.log(`cacheGet results: ${JSON.stringify(results)}`);
+  const { cachePath } = results;
+
+  return cachePath
+}
\ No newline at end of file
diff --git a/services/worker/src/util/fsExtra.ts b/services/worker/src/util/fsExtra.ts
new file mode 100644
index 00000000..97413ea5
--- /dev/null
+++ b/services/worker/src/util/fsExtra.ts
@@ -0,0 +1,29 @@
+import { writeFile, readdir } from "fs/promises";
+import { isAbsolute } from "path";
+import { join } from "path";
+
+export async function writeJson(outputPath: string, json: any) {
+  if (!outputPath) throw new Error('writeJson needs an outputPath as first arg');
+  if (!json) throw new Error('writeJson needs json object as second arg');
+  if (!isAbsolute(outputPath)) throw new Error('first arg to writeJson must be an absolute path');
+  if (outputPath === '/') throw new Error('first arg outputPath cannot be /');
+  await writeFile(outputPath, JSON.stringify(json));
+}
+
+
+export async function listFilesRecursive(dir: string): Promise<string[]> {
+  const entries = await readdir(dir, { withFileTypes: true });
+  const files: string[] = [];
+
+  for (const entry of entries) {
+    const fullPath = join(dir, entry.name);
+    if (entry.isDirectory()) {
+      const subFiles = await listFilesRecursive(fullPath);
+      files.push(...subFiles);
+    } else if (entry.isFile()) {
+      files.push(fullPath);
+    }
+  }
+
+  return files;
+}
\ No newline at end of file
diff --git a/services/worker/src/util/funscripts.ts b/services/worker/src/util/funscripts.ts
index c293c380..29614ddd 100644
--- a/services/worker/src/util/funscripts.ts
+++ b/services/worker/src/util/funscripts.ts
@@ -1,11 +1,12 @@
 // src/utils/funscripts.ts
 
 import { join } from "node:path";
-import { writeJson } from "fs-extra";
-import { env } from "../config/env";
+import env from "../../.config/env.ts";
 import { nanoid } from "nanoid";
 import { loadDataYaml, loadVideoMetadata, processLabelFiles } from "./vibeui";
-import logger from "./logger";
+import { writeJson } from "./fsExtra.ts";
+import { mkdirp } from "fs-extra";
+
 
 export interface FunscriptAction {
   at: number;
@@ -168,7 +169,7 @@ export function generateActions(
 export async function writeFunscript(outputPath: string, actions: FunscriptAction[]) {
   const funscript: Funscript = { version: '1.0', actions };
   await writeJson(outputPath, funscript);
-  logger.debug(`Funscript generated: ${outputPath} (${actions.length} actions)`);
+  console.log(`Funscript generated: ${outputPath} (${actions.length} actions)`);
 }
 
 /**
@@ -182,7 +183,9 @@ export async function buildFunscript(
   if (!type) throw new Error("buildFunscript requires type: 'vibrate' or 'thrust'");
 
   const labelDir = join(predictionOutput, 'labels');
-  const outputPath = join(process.env.CACHE_ROOT ?? '/tmp', `${nanoid()}.funscript`);
+  const workDir = join(env.CACHE_ROOT, 'worker', nanoid());
+  const outputPath = join(workDir, `${type}.funscript`);
+  await mkdirp(workDir);
 
   try {
     const data = await loadDataYaml(join(env.VIBEUI_DIR, 'data.yaml'));
@@ -195,7 +198,7 @@ export async function buildFunscript(
 
     return outputPath;
   } catch (error) {
-    logger.error(`Error generating Funscript: ${error instanceof Error ? error.message : 'Unknown error'}`);
+    console.error(`Error generating Funscript: ${error instanceof Error ? error.message : 'Unknown error'}`);
     throw error;
   }
 }
diff --git a/services/worker/src/util/qbittorrent.ts b/services/worker/src/util/qbittorrent.ts
index 7d8f5166..4c1b3404 100644
--- a/services/worker/src/util/qbittorrent.ts
+++ b/services/worker/src/util/qbittorrent.ts
@@ -22,13 +22,14 @@ import { nanoid } from 'nanoid';
 import semverParse from 'semver/functions/parse';
 import { type SemVer } from 'semver';
 import retry from "./retry";
-
+import { Job } from "bullmq";
 
 interface QBittorrentClientOptions {
   host?: string;
   port?: number;
   username?: string;
   password?: string;
+  job?: Job;
 }
 
 
@@ -123,6 +124,7 @@ export class QBittorrentClient {
   private readonly username: string;
   private readonly password: string;
   private readonly baseUrl: string;
+  private readonly job: Job | undefined;
   private sidCookie: string | null = null;
 
   constructor(options: QBittorrentClientOptions = {}) {
@@ -140,7 +142,7 @@ export class QBittorrentClient {
       password: env.QBT_PASSWORD!,
     };
 
-    const { host, port, username, password } = {
+    const { host, port, username, password, job } = {
       ...defaults,
       ...envOptions,
       ...options,
@@ -149,10 +151,20 @@ export class QBittorrentClient {
     this.port = port;
     this.username = username;
     this.password = password;
+    this.job = job;
 
     this.baseUrl = `http://${this.host}:${this.port}`;
   }
 
+  log(msg: string): void {
+    if (this.job) {
+      this.job.log(msg);
+    } else {
+      console.warn('A Job instance was not passed to qbittorrent constructor so we are logging to console.');
+      console.log(msg);
+    }
+  }
+
   /**
    * idempotently login to qBittorrent.
    * 
@@ -160,7 +172,7 @@ export class QBittorrentClient {
    */
   async connect(): Promise<void> {
     if (!this.sidCookie) {
-      console.log(`Connecting to qBittorrent at ${this.baseUrl}`);
+      this.log(`Connecting to qBittorrent at ${this.baseUrl}`);
       await this.__login();
     }
   }
@@ -199,7 +211,7 @@ export class QBittorrentClient {
    * Then use the returned SID cookie for subsequent requests.
    */
   private async __login(): Promise<void> {
-    console.log(`login() begin. using username=${this.username}, password=${this.password} env=${env.NODE_ENV}`);
+    this.log(`login() begin. using username=${this.username}, password=${this.password} env=${env.NODE_ENV}`);
     const response = await fetch(`${this.baseUrl}/api/v2/auth/login`, {
       method: "POST",
       headers: {
@@ -216,25 +228,25 @@ export class QBittorrentClient {
 
     if (!response.ok) {
       const msg = `Login request failed (${response.status} ${response.statusText}). body=${responseBody}`;
-      console.error(msg);
+      this.log(msg);
       throw new Error(msg);
     }
 
-    console.log(`Login response: status=${response.status} ${response.statusText}`);
-    console.log(`Headers: ${JSON.stringify([...response.headers.entries()])}`);
+    this.log(`Login response: status=${response.status} ${response.statusText}`);
+    this.log(`Headers: ${JSON.stringify([...response.headers.entries()])}`);
 
     // Extract SID cookie
     const setCookie = response.headers.get("set-cookie");
     if (!setCookie) {
       const msg = `Login failed: No SID cookie was returned. status=${response.status} ${response.statusText}. body=${responseBody}`;
-      console.error(msg);
+      this.log(msg);
       throw new Error(msg);
     }
 
     this.sidCookie = setCookie;
-    console.log(`sidCookie=${this.sidCookie}`);
+    this.log(`sidCookie=${this.sidCookie}`);
 
-    console.log("Successfully logged into qBittorrent.");
+    this.log("Successfully logged into qBittorrent.");
   }
 
 
@@ -252,10 +264,10 @@ export class QBittorrentClient {
   private async addTorrentCreationTask(sourcePath: string): Promise<string> {
     const torrentFilePath = join(tmpdir(), `${nanoid()}.torrent`);
     const url = `${this.baseUrl}/api/v2/torrentcreator/addTask`;
-    console.log(`addTorrentCreationTask using sourcePath=${sourcePath}, url=${url}`);
+    this.log(`addTorrentCreationTask using sourcePath=${sourcePath}, url=${url}`);
 
 
-    console.log(`addTorrent using sourcePath=${sourcePath}`)
+    this.log(`addTorrent using sourcePath=${sourcePath}`)
 
     if (!this.sidCookie) {
       throw new Error("Not connected: SID cookie missing");
@@ -293,7 +305,7 @@ export class QBittorrentClient {
       throw new Error(`addTorrentCreationTask failed: ${res.status} ${res.statusText} ${body}`);
     }
 
-    console.log('addTorrent success.');
+    this.log('addTorrent success.');
 
 
 
@@ -309,14 +321,14 @@ export class QBittorrentClient {
     }
 
     const data = JSON.parse(text);
-    console.log({ addTaskResponse: data });
+    this.log(JSON.stringify({ addTaskResponse: data }));
     return data.taskID;
   }
 
 
   private async pollTorrentStatus(taskId: string): Promise<TorrentCreatorTaskStatus> {
     while (true) {
-      console.log(`Polling torrent creation taskID=${taskId}`);
+      this.log(`Polling torrent creation taskID=${taskId}`);
 
       const res = await fetch(
         `${this.baseUrl}/api/v2/torrentcreator/status?taskId=${taskId}`,
@@ -326,12 +338,12 @@ export class QBittorrentClient {
       if (!res.ok) {
         throw new Error(`status failed: ${res.status} ${res.statusText}`);
       }
-      console.log('the request to poll for torrent status was successful.')
+      this.log('the request to poll for torrent status was successful.')
 
       const statusMap = (await res.json()) as TorrentCreatorTaskStatusMap;
-      console.log({ statusMap: statusMap })
+      this.log(JSON.stringify({ statusMap: statusMap }))
       const task = Object.values(statusMap).find((t) => t.taskID === taskId);
-      console.log({ task: task })
+      this.log(JSON.stringify({ task: task }))
 
 
 
@@ -339,13 +351,13 @@ export class QBittorrentClient {
         throw new Error(`Task ${taskId} not found in status response`);
       }
 
-      console.log(` Torrent creator task status=${task.status}`);
+      this.log(` Torrent creator task status=${task.status}`);
 
       switch (task.status) {
         case "Failed":
           const msg = `Torrent creation failed: ${task.errorMessage}`;
-          console.error(msg);
-          console.log('here is the task that failed', task);
+          this.log(msg);
+          this.log('here is the task that failed', task);
           throw new Error(msg);
         case "Finished":
           return task;
@@ -417,9 +429,9 @@ export class QBittorrentClient {
     });
 
     if (!torrentsRes.ok) {
-      console.error('__getTorrentInfos failed to fetch() torrent info.');
+      this.log('__getTorrentInfos failed to fetch() torrent info.');
       const body = await torrentsRes.text();
-      console.error(`${torrentsRes.status} ${torrentsRes.statusText} ${body}`);
+      this.log(`${torrentsRes.status} ${torrentsRes.statusText} ${body}`);
     }
 
     const torrents = await torrentsRes.json() as Array<{ hash: string; name: string }>;
@@ -432,7 +444,7 @@ export class QBittorrentClient {
   }
 
   async getInfoHashV2(torrentName: string): Promise<string> {
-    console.log(`getInfoHashV2 using torrentName=${torrentName}`)
+    this.log(`getInfoHashV2 using torrentName=${torrentName}`)
 
 
     const torrent = await this.getTorrentInfos(torrentName);
@@ -456,7 +468,7 @@ export class QBittorrentClient {
    */
   private async __addTorrent(localFilePath: string): Promise<void> {
 
-    console.log(`__addTorrent using localFilePath=${localFilePath}`)
+    this.log(`__addTorrent using localFilePath=${localFilePath}`)
 
     if (!this.sidCookie) {
       throw new Error("Not connected. (SID cookie missing.)");
@@ -487,7 +499,7 @@ export class QBittorrentClient {
       throw new Error(`__addTorrent failed: ${res.status} ${res.statusText} ${body}`);
     }
 
-    console.log('__addTorrent success.');
+    this.log('__addTorrent success.');
   }
 
   /*
@@ -498,7 +510,7 @@ export class QBittorrentClient {
    */
   async deleteTorrent(id: string): Promise<void> {
     await this.connect();
-    console.log(`Deleting torrent ${id}...`);
+    this.log(`Deleting torrent ${id}...`);
 
     if (!this.sidCookie) {
       throw new Error('Not logged in. sidCookie missing.');
@@ -515,14 +527,14 @@ export class QBittorrentClient {
     } else {
       // Not a hash → treat as name → look up hash
       const info = await this.getTorrentInfos(id);
-      console.log('info', info);
+      this.log('info', info);
       hashToDelete = info.hash;
     }
 
-    console.log(`deleting ${id} (${hashToDelete})`);
+    this.log(`deleting ${id} (${hashToDelete})`);
     await this.__deleteTorrent(hashToDelete);
 
-    console.log(`deleteTorrent success for: ${hashToDelete}`);
+    this.log(`deleteTorrent success for: ${hashToDelete}`);
   }
 
   /**
@@ -533,7 +545,7 @@ export class QBittorrentClient {
     if (!hashes) throw new Error('__deleteTorrent hashes arg missing');
     if (!this.sidCookie) throw new Error('__deleteTorrent missing sidCookie');
 
-    console.log(`deleting hashes`, hashes)
+    this.log(`deleting hashes`, hashes)
 
     const body = new URLSearchParams({
       hashes,
@@ -559,7 +571,7 @@ export class QBittorrentClient {
    * @deprecated use getTorrentInfos instead
    */
   async getMagnetLink(fileName: string): Promise<string> {
-    console.log(`getMagnetLink using fileName=${fileName}`)
+    this.log(`getMagnetLink using fileName=${fileName}`)
 
     // qBittorrent does NOT return infoHash directly here
     // we have to get it by querying the torrents list
@@ -573,7 +585,7 @@ export class QBittorrentClient {
   }
 
   async createTorrent(localFilePath: string): Promise<{ torrentFilePath: string; magnetLink: string, info: QBTorrentInfo }> {
-    console.log(`Creating torrent from file: ${localFilePath}`);
+    this.log(`Creating torrent from file: ${localFilePath}`);
     await this.connect();
 
     if (!this.sidCookie) {
@@ -582,7 +594,7 @@ export class QBittorrentClient {
 
     // 1. start task
     const taskId = await this.addTorrentCreationTask(localFilePath);
-    console.log(`Created torrent task ${taskId}`);
+    this.log(`Created torrent task ${taskId}`);
 
     // 2. poll until finished
     await this.pollTorrentStatus(taskId);
@@ -597,7 +609,7 @@ export class QBittorrentClient {
     await this.__addTorrent(torrentFilePath);
 
     // 5. Get magnet link
-    console.log('lets get the torrent infos');
+    this.log('lets get the torrent infos');
     const info = await this.getTorrentInfos(basename(localFilePath))
     const magnetLink = info.magnet_uri;
 
diff --git a/services/worker/src/util/sftp.spec.ts b/services/worker/src/util/sftp.spec.ts
index cead8c26..dba48f0d 100644
--- a/services/worker/src/util/sftp.spec.ts
+++ b/services/worker/src/util/sftp.spec.ts
@@ -1,6 +1,6 @@
 import { test, describe, expect } from 'vitest';
 import { join } from "node:path";
-import { sshClient } from './sftp.ts';
+import { seedboxSSHClient } from './sftp.ts';
 
 const fixturesDir = join(import.meta.dirname, '..', 'fixtures');
 const remoteUploadDir = "/upload"
@@ -11,13 +11,13 @@ describe('sftp integration', () => {
     let filePath = join(fixturesDir, 'pizza.avif');
 
     await expect(
-      sshClient.uploadFile(filePath, remoteUploadDir)
+      seedboxSSHClient.uploadFileToDir(filePath, remoteUploadDir)
     ).resolves.toBeUndefined();
   });
 
   test("uploadFile rejects on missing local file", async () => {
     await expect(
-      sshClient.uploadFile("/does/not/exist.jpg", remoteUploadDir)
+      seedboxSSHClient.uploadFileToDir("/does/not/exist.jpg", remoteUploadDir)
     ).rejects.toThrow();
   });
 })
\ No newline at end of file
diff --git a/services/worker/src/util/sftp.ts b/services/worker/src/util/sftp.ts
index bc5cba0e..8e799c9b 100644
--- a/services/worker/src/util/sftp.ts
+++ b/services/worker/src/util/sftp.ts
@@ -2,13 +2,13 @@
 import { Client, ConnectConfig, SFTPWrapper } from 'ssh2';
 import path from 'path';
 import env from '../../.config/env';
+import { readFileSync } from 'fs';
 
 interface SSHClientOptions {
   host: string;
   port?: number;
   username: string;
-  password?: string;
-  privateKey?: Buffer;
+  privateKey: string | Buffer;
 }
 
 export class SSHClient {
@@ -18,6 +18,12 @@ export class SSHClient {
 
   constructor(private options: SSHClientOptions) { }
 
+  static getSFTPPrivateKey(keyFile: string) {
+    if (!keyFile) throw new Error('no keyFile passed to getSFTPPrivateKey');
+    console.log(`we are loading keyFile=${keyFile}`);
+    return readFileSync(keyFile);
+  }
+
   async connect(): Promise<void> {
     if (this.connected) return;
 
@@ -29,7 +35,6 @@ export class SSHClient {
           host: this.options.host,
           port: this.options.port || 22,
           username: this.options.username,
-          password: this.options.password,
           privateKey: this.options.privateKey,
         } as ConnectConfig);
     });
@@ -86,7 +91,7 @@ export class SSHClient {
    * @returns {Promise<void>}
    * @throws {Error} If the upload fails.
    */
-  async uploadFile(
+  async uploadFileToDir(
     localFilePath: string,
     remoteDir: string,
     onProgress?: (info: { transferred: number; total: number; percent: number }) => void
@@ -105,7 +110,7 @@ export class SSHClient {
     console.log(`fileName=${fileName}`)
 
     const remoteFilePath = path.posix.join(remoteDir, fileName);
-    console.log(`remoteFilePath=${remoteFilePath}`)
+    console.log(`remoteFilePath=${remoteFilePath}`);
 
     await new Promise<void>((resolve, reject) => {
       sftp.fastPut(
@@ -126,6 +131,43 @@ export class SSHClient {
     });
   }
 
+
+  /**
+ * Uploads a local file to a specific path on the remote server via SFTP.
+ * @param {string} localFilePath - Path to the local file.
+ * @param {string} remoteFullPath - Full remote file path including filename.
+ * @param {(info: { transferred: number; total: number; percent: number }) => void} [onProgress] - Optional progress callback.
+ * @returns {Promise<void>}
+ * @throws {Error} If the upload fails.
+ */
+  async uploadFileAs(
+    localFilePath: string,
+    remoteFullPath: string,
+    onProgress?: (info: { transferred: number; total: number; percent: number }) => void
+  ): Promise<void> {
+    console.log(`Uploading localFilePath=${localFilePath} to remoteFullPath=${remoteFullPath}...`);
+
+    await this.connect();
+    const sftp = await this.getSFTP();
+
+    await new Promise<void>((resolve, reject) => {
+      sftp.fastPut(
+        localFilePath,
+        remoteFullPath,
+        {
+          step: (transferred, chunk, total) => {
+            const percent = (transferred / total) * 100;
+            if (onProgress) {
+              onProgress({ transferred, total, percent });
+            }
+          }
+        },
+        (err) => (err ? reject(err) : resolve())
+      );
+    });
+  }
+
+
   /**
    * Downloads a file from the remote server via SFTP.
    * @param {string} remoteFilePath - Path to the file on the remote server.
@@ -194,9 +236,17 @@ export class SSHClient {
 /**
  * Preconfigured SSHClient instance using environment-defined credentials.
  */
-export const sshClient = new SSHClient({
+export const seedboxSSHClient = new SSHClient({
   host: env.SEEDBOX_SFTP_HOST,
   port: parseInt(env.SEEDBOX_SFTP_PORT),
   username: env.SEEDBOX_SFTP_USERNAME,
-  password: env.SEEDBOX_SFTP_PASSWORD,
+  privateKey: SSHClient.getSFTPPrivateKey(env.SEEDBOX_SFTP_KEY_FILE),
 });
+
+
+export const opentrackerSSHClient = new SSHClient({
+  host: env.TRACKER_SFTP_HOST,
+  port: Number(env.TRACKER_SFTP_PORT),
+  username: env.TRACKER_SFTP_USERNAME,
+  privateKey: SSHClient.getSFTPPrivateKey(env.TRACKER_SFTP_KEY_FILE),
+});
\ No newline at end of file
diff --git a/services/worker/src/util/vibeui.ts b/services/worker/src/util/vibeui.ts
index 3a77e53b..ee43635e 100644
--- a/services/worker/src/util/vibeui.ts
+++ b/services/worker/src/util/vibeui.ts
@@ -3,7 +3,7 @@ import { join } from "node:path";
 import { readFile, writeFile, readdir, mkdir } from 'node:fs/promises';
 import yaml from 'js-yaml';
 import spawn from 'nano-spawn';
-import env from '../../env';
+import env from '../../.config/env.ts';
 import sharp from 'sharp';
 import { Tensor, InferenceSession } from "onnxruntime-web";
 
@@ -131,14 +131,20 @@ export async function loadDataYaml(yamlPath: string): Promise<DataYaml> {
  */
 export async function inference(videoFilePath: string): Promise<string> {
 
-  const modelPath = join(env.VIBEUI_DIR, 'vibeui.pt')
+  const modelPath = join(env.VIBEUI_DIR, "vibeui/runs/detect/vibeui/weights/best.pt");
 
-  // Generate a unique name based on video name + UUID
-  const uniqueName = nanoid()
-  const customProjectDir = 'vibeui/runs' // or any custom folder
-  const outputPath = join(env.APP_DIR, customProjectDir, uniqueName)
+  const uniqueName = nanoid();
 
-  await spawn('yolo', [
+  // absolute path
+  const customProjectDir = join(env.VIBEUI_DIR, "vibeui/runs");
+
+  // correct output path
+  const outputPath = join(customProjectDir, uniqueName);
+
+  console.log(`vibeui inference with modelPath=${modelPath} and uniqueName=${uniqueName} and cwd=${env.VIBEUI_DIR} and outputPath=${outputPath}`);
+  const yoloPath = join(env.VIBEUI_DIR, '.venv/bin/yolo')
+
+  const proc = await spawn(yoloPath, [
     'predict',
     `model=${modelPath}`,
     `source=${videoFilePath}`,
@@ -148,9 +154,12 @@ export async function inference(videoFilePath: string): Promise<string> {
     `project=${customProjectDir}`,
     `name=${uniqueName}`,
   ], {
-    cwd: env.APP_DIR,
-    stdio: 'inherit',
-  })
+    cwd: env.VIBEUI_DIR,
+  });
+
+  console.log(`yolo stdout: ${proc.stdout}`);
+  console.log(`yolo stderr: ${proc.stderr}`);
+
 
   return outputPath // contains labels/ folder and predictions
 }
@@ -207,14 +216,14 @@ export async function ffprobe(videoPath: string): Promise<{ fps: number; frames:
  */
 export async function loadVideoMetadata(videoPath: string) {
   const { fps, frames: totalFrames } = await ffprobe(videoPath);
-  // job.log(`Video metadata: fps=${fps}, frames=${totalFrames}`);
+  // console.log(`Video metadata: fps=${fps}, frames=${totalFrames}`);
   return { fps, totalFrames };
 }
 
 export async function processLabelFiles(labelDir: string, data: DataYaml): Promise<Detection[]> {
   const labelFiles = (await readdir(labelDir)).filter(file => file.endsWith('.txt'));
-  job.log(`[processLabelFiles] Found label files: ${labelFiles.length}`);
-  if (labelFiles.length === 0) job.log(`⚠️⚠️⚠️ no label files found! this should normally NOT happen unless the video contained no lovense overlay. ⚠️⚠️⚠️`);
+  console.log(`[processLabelFiles] Found label files: ${labelFiles.length}`);
+  if (labelFiles.length === 0) console.log(`⚠️⚠️⚠️ no label files found! this should normally NOT happen unless the video contained no lovense overlay. ⚠️⚠️⚠️`);
 
   const detections: Map<number, Detection[]> = new Map();
   const names = data.names;
@@ -222,7 +231,7 @@ export async function processLabelFiles(labelDir: string, data: DataYaml): Promi
   for (const file of labelFiles) {
     const match = file.match(/(\d+)\.txt$/);
     if (!match) {
-      job.log(`[processLabelFiles] Skipping invalid filename: ${file}`);
+      console.log(`[processLabelFiles] Skipping invalid filename: ${file}`);
       continue;
     }
     if (!match[1]) {
@@ -231,7 +240,7 @@ export async function processLabelFiles(labelDir: string, data: DataYaml): Promi
 
     const frameIndex = parseInt(match[1], 10);
     if (isNaN(frameIndex)) {
-      job.log(`[processLabelFiles] Skipping invalid frame index: ${file}`);
+      console.log(`[processLabelFiles] Skipping invalid frame index: ${file}`);
       continue;
     }
 
@@ -263,10 +272,10 @@ export async function processLabelFiles(labelDir: string, data: DataYaml): Promi
     if (maxConfidence > 0 && selectedClassIndex !== -1) {
       const className = names[selectedClassIndex.toString()];
       if (className) {
-        job.log(`[processLabelFiles] Frame ${frameIndex}: detected class "${className}" with confidence ${maxConfidence}`);
+        console.log(`[processLabelFiles] Frame ${frameIndex}: detected class "${className}" with confidence ${maxConfidence}`);
         frameDetections.push({ startFrame: frameIndex, endFrame: frameIndex, className });
       } else {
-        job.log(`[processLabelFiles] Frame ${frameIndex}: class index ${selectedClassIndex} has no name`);
+        console.log(`[processLabelFiles] Frame ${frameIndex}: class index ${selectedClassIndex} has no name`);
       }
     }
 
@@ -292,9 +301,9 @@ export async function processLabelFiles(labelDir: string, data: DataYaml): Promi
 
   if (currentDetection) detectionSegments.push(currentDetection);
 
-  job.log(`[processLabelFiles] Total detection segments: ${detectionSegments.length}`);
+  console.log(`[processLabelFiles] Total detection segments: ${detectionSegments.length}`);
   for (const segment of detectionSegments) {
-    job.log(`  - Class "${segment.className}": frames ${segment.startFrame}–${segment.endFrame}`);
+    console.log(`  - Class "${segment.className}": frames ${segment.startFrame}–${segment.endFrame}`);
   }
 
   return detectionSegments;
diff --git a/services/worker/src/workers/downloadWorker.ts b/services/worker/src/workers/downloadWorker.ts
index 16dc2774..f8e2005e 100644
--- a/services/worker/src/workers/downloadWorker.ts
+++ b/services/worker/src/workers/downloadWorker.ts
@@ -17,7 +17,7 @@ new Worker(
         throw new Error(`${workerName} Unknown job name: ${job.name}`);
     }
   },
-  { connection }
+  { connection, concurrency: 1 }
 );
 
 console.log(`${workerName} is running...`);
diff --git a/services/worker/src/workers/gpuWorker.ts b/services/worker/src/workers/gpuWorker.ts
index e18a4e10..d9f2edae 100644
--- a/services/worker/src/workers/gpuWorker.ts
+++ b/services/worker/src/workers/gpuWorker.ts
@@ -1,14 +1,20 @@
 // gpuWorker
 import { Worker } from 'bullmq';
 import { connection } from '../../.config/bullmq.config.ts';
-
+import { createFunscript } from '../processors/createFunscript.ts';
+import { createHlsPlaylist } from '../processors/createHlsPlaylist.ts';
 
 new Worker(
   'gpuQueue',
   async (job) => {
     console.log('gpuWorker. we got a job on the gpuQueue.', job.data, job.name);
     switch (job.name) {
-      // @todo implement
+      case 'createFunscript':
+        return await createFunscript(job);
+
+      case 'createHlsPlaylist':
+        return await createHlsPlaylist(job);
+
 
       default:
         throw new Error(`gpuWorker Unknown job name: ${job.name}`);
diff --git a/services/worker/src/workers/highPriorityWorker.ts b/services/worker/src/workers/highPriorityWorker.ts
index 2c016b57..089b9bed 100644
--- a/services/worker/src/workers/highPriorityWorker.ts
+++ b/services/worker/src/workers/highPriorityWorker.ts
@@ -6,6 +6,7 @@ import { syncronizePatreon } from '../processors/syncronizePatreon.ts'
 import { getAnnounceUrlDetails } from '../processors/getAnnounceUrlDetails.ts'
 import { createTorrent } from '../processors/createTorrent.ts';
 import { copyV1VideoToV3 } from '../processors/copyV1VideoToV3.ts';
+import { updateTrackerWhitelist } from '../processors/updateTrackerWhitelist.ts';
 
 new Worker(
   'highPriorityQueue',
@@ -26,6 +27,9 @@ new Worker(
       case 'copyV1VideoToV3':
         await copyV1VideoToV3(job);
         break;
+      case 'updateTrackerWhitelist':
+        await updateTrackerWhitelist(job);
+        break;
       default:
         throw new Error(`Unknown job name: ${job.name}`);
     }
diff --git a/services/worker/systemd/up.sh b/services/worker/systemd/up.sh
index 369f9a5e..35fc8a41 100755
--- a/services/worker/systemd/up.sh
+++ b/services/worker/systemd/up.sh
@@ -2,7 +2,7 @@
 
 loginctl enable-linger
 sudo cp worker.service /etc/systemd/user/worker.service
-sudo cp qbittorrent-nox.service /etc/systemd/user/worker.service
+sudo cp qbittorrent-nox.service /etc/systemd/user/qbittorrent-nox.service
 
 
 systemctl --user daemon-reload