diff --git a/.claude/CLAUDE.md b/.claude/CLAUDE.md
index bb1ce653..0f93847e 100755
--- a/.claude/CLAUDE.md
+++ b/.claude/CLAUDE.md
@@ -30,7 +30,7 @@ Violations cause state drift, which causes future applies to break or silently r
 - **New service**: Use `setup-project` skill for full workflow
 - **Ingress**: `ingress_factory` module. Auth: `protected = true`. Anti-AI: on by default. **DNS**: `dns_type = "proxied"` (Cloudflare CDN) or `"non-proxied"` (direct A/AAAA). DNS records are auto-created — no need to edit `config.tfvars`.
 - **Docker images**: Always build for `linux/amd64`. Use 8-char git SHA tags — `:latest` causes stale pull-through cache.
-- **Private registry**: `forgejo.viktorbarzin.me/viktor/<name>` (Forgejo packages, OAuth-style PAT auth). Use `image: forgejo.viktorbarzin.me/viktor/<name>:<tag>` + `imagePullSecrets: [{name: registry-credentials}]`. Kyverno auto-syncs the Secret to all namespaces. Containerd `hosts.toml` on every node redirects to in-cluster Traefik LB `10.0.20.200` to avoid hairpin NAT. Push-side: viktor PAT in Vault `secret/ci/global/forgejo_push_token` (Forgejo container packages are scoped per-user; only the package owner can push, ci-pusher cannot write to viktor/*). Pull-side: cluster-puller PAT in Vault `secret/viktor/forgejo_pull_token`. Retention CronJob (`forgejo-cleanup` in `forgejo` ns, daily 04:00) keeps newest 10 versions + always `:latest`; integrity probed every 15min by `forgejo-integrity-probe` in `monitoring` ns (catalog walk + manifest HEAD on every blob). See `docs/plans/2026-05-07-forgejo-registry-consolidation-{design,plan}.md` for the migration history. Pull-through caches for upstream registries (DockerHub, GHCR, Quay, k8s.gcr, Kyverno) stay on the registry VM at `10.0.20.10` ports 5000/5010/5020/5030/5040 — the old port-5050 R/W private registry was decommissioned 2026-05-07.
+- **Private registry**: `registry.viktorbarzin.me` (htpasswd auth, credentials in Vault `secret/viktor`). Use `image: registry.viktorbarzin.me/<name>:<tag>` + `imagePullSecrets: [{name: registry-credentials}]`. Kyverno auto-syncs the secret to all namespaces. Build & push from registry VM (`10.0.20.10`). Containerd `hosts.toml` redirects pulls to LAN IP directly. Web UI at `docker.viktorbarzin.me` (Authentik-protected).
 - **LinuxServer.io containers**: `DOCKER_MODS` runs apt-get on every start — bake slow mods into a custom image (`RUN /docker-mods || true` then `ENV DOCKER_MODS=`). Set `NO_CHOWN=true` to skip recursive chown that hangs on NFS mounts.
 - **Node memory changes**: When changing VM memory on any k8s node, update kubelet `systemReserved`, `kubeReserved`, and eviction thresholds accordingly. Config: `/var/lib/kubelet/config.yaml`. Template: `stacks/infra/main.tf`. Current values: systemReserved=512Mi, kubeReserved=512Mi, evictionHard=500Mi, evictionSoft=1Gi.
 - **Node OS disk tuning** (in `stacks/infra/main.tf`): kubelet `imageGCHighThresholdPercent=70` (was 85), `imageGCLowThresholdPercent=60` (was 80), ext4 `commit=60` in fstab (was default 5s), journald `SystemMaxUse=200M` + `MaxRetentionSec=3day`.
@@ -48,7 +48,6 @@ Violations cause state drift, which causes future applies to break or silently r
 - **Tier 0 details**: Decrypt priority: Vault Transit (primary) → age key fallback. Encrypt: both Vault Transit + age recipients. Scripts: `scripts/state-sync {encrypt|decrypt|commit} [stack]`.
 - **Adding operator**: Generate age key (`age-keygen`), add pubkey to `.sops.yaml`, run `sops updatekeys` on Tier 0 `.enc` files. For Tier 1, only Vault access is needed.
 - **Migration script**: `scripts/migrate-state-to-pg` (one-shot, idempotent) migrates Tier 1 stacks from local to PG.
-- **Adopting existing resources**: use HCL `import {}` blocks (TF 1.5+), not `terraform import` CLI. Commit stanza → plan-to-zero → apply → delete stanza. Canonical reason: reviewable in PR, plan-safe, idempotent, tier-agnostic. Full rules + per-provider ID formats in `AGENTS.md` → "Adopting Existing Resources".
 
 ## Secrets Management — Vault KV
 - **Vault is the sole source of truth** for secrets.
@@ -74,7 +73,7 @@ Violations cause state drift, which causes future applies to break or silently r
 - **LimitRange**: Tier-based defaults silently apply to pods with `resources: {}`. Always set explicit resources on containers needing more than defaults. Tier 3-edge and 4-aux now use Burstable QoS (request < limit) to reduce scheduler pressure.
 - **Democratic-CSI sidecars**: Must set explicit resources (32-80Mi) in Helm values — 17 sidecars default to 256Mi each via LimitRange. `csiProxy` is a TOP-LEVEL chart key, not nested under controller/node.
 - **ResourceQuota blocks rolling updates**: When quota is tight, scale to 0 then back to 1 instead of RollingUpdate. Or use Recreate strategy.
-- **Kyverno ndots drift**: Kyverno injects dns_config on all pods. Every `kubernetes_deployment`, `kubernetes_stateful_set`, and `kubernetes_cron_job_v1` MUST include `lifecycle { ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1 }` (use `spec[0].job_template[0].spec[0].template[0].spec[0].dns_config` for CronJobs). The `# KYVERNO_LIFECYCLE_V1` marker is the canonical discoverability tag — grep for it to locate every site. A shared Terraform module was considered but `ignore_changes` only accepts static attribute paths (not module outputs, locals, or expressions), so the snippet convention is the only viable path. Full rationale and copy-paste snippets in `AGENTS.md` → "Kyverno Drift Suppression".
+- **Kyverno ndots drift**: Kyverno injects dns_config on all pods. Add `lifecycle { ignore_changes = [spec[0].template[0].spec[0].dns_config] }` to kubernetes_deployment resources to prevent perpetual TF plan drift.
 - **NVIDIA GPU operator resources**: dcgm-exporter and cuda-validator resources configurable via `dcgmExporter.resources` and `validator.resources` in nvidia values.yaml.
 - **Pin database versions**: Disable Diun (image update monitoring) for MySQL, PostgreSQL, Redis.
 - **Quarterly right-sizing**: Check Goldilocks dashboard. Compare VPA upperBound to current request. Also check for under-provisioned (VPA upper > request x 0.8).
@@ -117,7 +116,7 @@ Repo IDs: infra=1, Website=2, finance=3, health=4, travel_blog=5, webhook-handle
 - **Rate limiting**: Return 429 (not 503). Per-service tuning: Immich/Nextcloud need higher limits.
 - **Retry middleware**: 2 attempts, 100ms — in default ingress chain.
 - **HTTP/3 (QUIC)**: Enabled cluster-wide via Traefik.
-- **IPAM & DNS auto-registration**: pfSense Kea DHCP serves all 3 subnets (VLAN 10, VLAN 20, 192.168.1.x). Kea DDNS auto-registers every DHCP client in Technitium (RFC 2136, A+PTR). CronJob `phpipam-pfsense-import` (hourly) pulls Kea leases + ARP into phpIPAM via SSH (passive, no scanning). CronJob `phpipam-dns-sync` (15min) bidirectional sync phpIPAM ↔ Technitium. 42 MAC reservations for 192.168.1.x.
+- **IPAM & DNS auto-registration**: pfSense Kea DHCP serves all 3 subnets (VLAN 10, VLAN 20, 192.168.1.x). Kea DDNS auto-registers every DHCP client in Technitium (RFC 2136, A+PTR). CronJob `phpipam-pfsense-import` (5min) pulls Kea leases + ARP into phpIPAM via SSH (passive, no scanning). CronJob `phpipam-dns-sync` (15min) bidirectional sync phpIPAM ↔ Technitium. 42 MAC reservations for 192.168.1.x.
 
 ## Service-Specific Notes
 | Service | Key Operational Knowledge |
@@ -129,15 +128,15 @@ Repo IDs: infra=1, Website=2, finance=3, health=4, travel_blog=5, webhook-handle
 | Authentik | 3 replicas, PgBouncer in front of PostgreSQL, strip auth headers before forwarding |
 | Kyverno | failurePolicy=Ignore to prevent blocking cluster, pin chart version |
 | MySQL Standalone | Raw `kubernetes_stateful_set_v1` with `mysql:8.4` (migrated from InnoDB Cluster 2026-04-16). `skip-log-bin`, `innodb_flush_log_at_trx_commit=2`, `innodb_doublewrite=ON`. ConfigMap `mysql-standalone-cnf`. PVC `data-mysql-standalone-0` (15Gi, `proxmox-lvm-encrypted`). Service `mysql.dbaas` unchanged. Anti-affinity excludes k8s-node1. Old InnoDB Cluster + operator still in TF (Phase 4 cleanup pending). Bitnami charts deprecated (Broadcom Aug 2025) — use official images. |
-| phpIPAM | IPAM — no active scanning. `pfsense-import` CronJob (hourly) pulls Kea leases + ARP via SSH. `dns-sync` CronJob (15min) bidirectional sync with Technitium. Kea DDNS on pfSense handles all 3 subnets. API app `claude` (ssl_token). |
+| phpIPAM | IPAM — no active scanning. `pfsense-import` CronJob (5min) pulls Kea leases + ARP via SSH. `dns-sync` CronJob (15min) bidirectional sync with Technitium. Kea DDNS on pfSense handles all 3 subnets. API app `claude` (ssl_token). |
 
 ## Monitoring & Alerting
 - Alert cascade inhibitions: if node is down, suppress pod alerts on that node.
 - Exclude completed CronJob pods from "pod not ready" alerts.
-- Every new service gets Prometheus scrape config + Uptime Kuma monitor. External monitors auto-created for Cloudflare-proxied services by `external-monitor-sync` CronJob (10min, uptime-kuma ns). Mechanism: `ingress_factory` auto-adds `uptime.viktorbarzin.me/external-monitor=true` whenever `dns_type != "none"` (see `modules/kubernetes/ingress_factory/main.tf`) — no manual action needed on new services. The `cloudflare_proxied_names` list in `config.tfvars` is a legacy fallback for the 17 hostnames not yet migrated to `ingress_factory` `dns_type`; don't check that list when debugging "is this monitored?" questions.
+- Every new service gets Prometheus scrape config + Uptime Kuma monitor. External monitors auto-created for Cloudflare-proxied services by `external-monitor-sync` CronJob (10min, uptime-kuma ns).
 - **External monitoring**: `[External] <service>` monitors in Uptime Kuma test full external path (DNS → Cloudflare → Tunnel → Traefik). Divergence metric `external_internal_divergence_count` → alert `ExternalAccessDivergence` (15min). Config: `stacks/uptime-kuma/`, targets from `cloudflare_proxied_names` in `config.tfvars` (17 remaining centrally-managed hostnames; most DNS records now auto-created by `ingress_factory` `dns_type` param).
 - Key alerts: OOMKill, pod replica mismatch, 4xx/5xx error rates, UPS battery, CPU temp, SSD writes, NFS responsiveness, ClusterMemoryRequestsHigh (>85%), ContainerNearOOM (>85% limit), PodUnschedulable, ExternalAccessDivergence.
-- **E2E email monitoring**: CronJob `email-roundtrip-monitor` (every 20 min) sends test email via Brevo HTTP API to `smoke-test@viktorbarzin.me` (catch-all → `spam@`), verifies IMAP delivery, deletes test email, pushes metrics to Pushgateway + Uptime Kuma. Alerts: `EmailRoundtripFailing` (60m), `EmailRoundtripStale` (60m), `EmailRoundtripNeverRun` (60m). Outbound relay: Brevo EU (`smtp-relay.brevo.com:587`, 300/day free — migrated from Mailgun). Inbound external traffic enters via pfSense HAProxy on `10.0.20.1:{25,465,587,993}`, which forwards to k8s `mailserver-proxy` NodePort (30125-30128) with `send-proxy-v2`. Mailserver pod runs alt PROXY-speaking listeners (2525/4465/5587/10993) alongside stock PROXY-free ones (25/465/587/993) for intra-cluster clients. Real client IPs recovered from PROXY v2 header despite kube-proxy SNAT (replaces pre-2026-04-19 MetalLB `10.0.20.202` ETP:Local scheme; see bd code-yiu + `docs/runbooks/mailserver-pfsense-haproxy.md`). Vault: `brevo_api_key` in `secret/viktor` (probe + relay).
+- **E2E email monitoring**: CronJob `email-roundtrip-monitor` (every 20 min) sends test email via Mailgun API to `smoke-test@viktorbarzin.me` (catch-all → `spam@`), verifies IMAP delivery, deletes test email, pushes metrics to Pushgateway + Uptime Kuma. Alerts: `EmailRoundtripFailing` (60m), `EmailRoundtripStale` (60m), `EmailRoundtripNeverRun` (60m). Outbound relay: Brevo EU (`smtp-relay.brevo.com:587`, 300/day free — migrated from Mailgun). Mailserver on dedicated MetalLB IP `10.0.20.202` with `externalTrafficPolicy: Local` for CrowdSec real-IP detection. Vault: `mailgun_api_key` in `secret/viktor` (probe), `brevo_api_key` in `secret/viktor` (relay).
 
 ## Storage & Backup Architecture
 
@@ -155,9 +154,9 @@ Choose storage class based on workload type:
 
 **Default for sensitive data is proxmox-lvm-encrypted.** Use plain `proxmox-lvm` only for non-sensitive workloads. Use NFS when you need RWX, backup pipeline integration, or it's a large shared media library.
 
-**NFS server:**
-- **Proxmox host** (192.168.1.127): Sole NFS for all workloads. HDD at `/srv/nfs` (ext4 thin LV `pve/nfs-data`, 1TB). SSD at `/srv/nfs-ssd` (ext4 LV `ssd/nfs-ssd-data`, 100GB). Exports use `async,insecure` options (`async` — safe with UPS + Vault Raft replication + databases on block storage; `insecure` — pfSense NATs source ports >1024 between VLANs).
-- **`nfs-truenas` StorageClass**: Historical name retained only because SC names are immutable on PVs (48 bound PVs reference it — renaming would require mass PV churn, not worth it). Now points to the Proxmox host, identical to `nfs-proxmox`. TrueNAS (VM 9000, 10.0.10.15) operationally decommissioned 2026-04-13; VM still exists in stopped state on PVE pending user decision on deletion.
+**NFS servers:**
+- **Proxmox host** (192.168.1.127): Primary NFS for all workloads. HDD at `/srv/nfs` (ext4 thin LV `pve/nfs-data`, 1TB). SSD at `/srv/nfs-ssd` (ext4 LV `ssd/nfs-ssd-data`, 100GB). Exports use `async,insecure` options (`async` — safe with UPS + Vault Raft replication + databases on block storage; `insecure` — pfSense NATs source ports >1024 between VLANs).
+- **TrueNAS** (10.0.10.15): **Immich only** (8 PVCs). `nfs-truenas` StorageClass retained exclusively for Immich.
 
 **Migration note**: CSI PV `volumeAttributes` are immutable — cannot update NFS server in place. New PV/PVC pairs required (convention: append `-host` to PV name).
 
@@ -237,7 +236,7 @@ resource "kubernetes_persistent_volume_claim" "data_encrypted" {
 
 **Synology layout** (`192.168.1.13:/volume1/Backup/Viki/`):
 - `pve-backup/` — PVC file backups (`pvc-data/`), SQLite backups (`sqlite-backup/`), pfSense, PVE config (synced from sda)
-- `nfs/` — mirrors `/srv/nfs` on Proxmox (inotify change-tracked rsync)
+- `nfs/` — mirrors `/srv/nfs` on Proxmox (inotify change-tracked rsync, renamed from `truenas/`)
 - `nfs-ssd/` — mirrors `/srv/nfs-ssd` on Proxmox (inotify change-tracked rsync)
 
 **App-level CronJobs** (write to Proxmox host NFS, synced to Synology via inotify):
diff --git a/.claude/agents/payslip-extractor.md b/.claude/agents/payslip-extractor.md
deleted file mode 100644
index 4471421c..00000000
--- a/.claude/agents/payslip-extractor.md
+++ /dev/null
@@ -1,194 +0,0 @@
----
-name: payslip-extractor
-description: "Extract structured UK payslip fields from already-extracted text (preferred) or a base64 PDF (fallback) into strict JSON."
-model: haiku
-allowedTools:
-  - Bash
-  - Read
----
-
-You are a headless payslip-field extractor. You receive a prompt containing a UK payslip (either as pre-extracted text or as a base64-encoded PDF) plus a target JSON schema, and you produce exactly one JSON object that matches the schema.
-
-## Your single job
-
-Given a prompt that contains EITHER:
-- A line `PAYSLIP_TEXT:` followed by already-extracted text (preferred path — use it directly, skip to Step 3).
-- OR a line `PDF_BASE64:` followed by a base64 blob (fallback path — decode then extract text first).
-
-Produce EXACTLY ONE JSON object on stdout matching the schema. No prose. No markdown fences. No preamble. No trailing commentary. The final message content must be a single valid JSON object and nothing else.
-
-## RSU handling (important — Meta UK payslips)
-
-UK payslips for equity-compensated employees (e.g. Meta) report RSU vests as NOTIONAL pay for HMRC reporting only — the broker (Schwab) sells shares to cover US-side withholding but the UK payslip ALSO runs the vest through PAYE via a grossed-up Taxable Pay line. Meta UK template:
-
-- EARNINGS lines: `RSU Tax Offset` (grossed-up vest value) and optionally `RSU Excs Refund` (over-withheld amount returned). SUM BOTH into `rsu_vest`. Other labels seen on non-Meta templates: `RSU Vest`, `Restricted Stock Units`, `Notional Pay`, `GSU Vest`.
-- Meta's template does NOT use a matching offset deduction — `rsu_offset` should be 0. Taxable Pay is grossed up to (Total Payment + rsu_vest) so PAYE already includes the RSU share.
-- For non-Meta templates that DO use an offset (`Shares Retained`, `Notional Pay Offset`), populate `rsu_offset` with the magnitude.
-
-If you see ANY of these lines, do NOT add them to `other_deductions` and do NOT let them count as regular income_tax/NI.
-
-If the payslip has no stock component, leave both as 0.
-
-## Earnings decomposition (v2)
-
-- `salary`: the basic salary/pay line (usually the first "Salary" or "Basic Pay" entry in the Earnings/Payments block).
-- `bonus`: the bonus line (`Perform Bonus`, `Bonus`, `Performance Bonus`). If absent or 0, leave as 0 — that's meaningful signal (bonus-sacrifice months). Don't invent.
-- `pension_sacrifice`: **ABSOLUTE VALUE** of any NEGATIVE pension line in the Payments block (e.g. `AE Pension EE    -600.20` → `600.20`). This is salary-sacrifice and is ALREADY subtracted from Total Payment/gross. Do not also put it in `pension_employee`.
-- `pension_employee`: use this ONLY when pension appears as a POSITIVE deduction on the Deductions side (legacy Meta variant A, or non-Meta templates). Never double-count.
-- `taxable_pay`: the "Taxable Pay" line in the summary block, THIS PERIOD column. For Meta this is the post-sacrifice + RSU-grossed-up base that PAYE is computed on. If the payslip doesn't surface a summary block, null.
-- `ytd_tax_paid`, `ytd_taxable_pay`, `ytd_gross`: YTD column values from the same summary block. Null if not present.
-
-## Fast path: PAYSLIP_TEXT is present
-
-If the prompt contains `PAYSLIP_TEXT:`, the caller has already run `pdftotext -layout`. Skip Steps 1-2 entirely — the text is already in your context. Go straight to Step 3.
-
-## Processing steps
-
-### Step 1. Extract and decode the base64 PDF
-
-The prompt will include a line that starts with `PDF_BASE64:` followed by the base64 blob. Decode it to `/tmp/payslip.pdf`.
-
-Preferred method (handles whitespace and very long blobs robustly):
-
-```bash
-python3 - <<'PY'
-import base64, re, pathlib, sys, os
-prompt = os.environ.get("PAYSLIP_PROMPT", "")
-# If the orchestrator didn't set an env var, fall back to reading the transcript via CWD stdin mechanism.
-# In practice the agent receives the prompt in its conversation — you extract the PDF_BASE64 value
-# from the prompt text you were given, strip whitespace, and base64-decode.
-PY
-```
-
-In practice: read the `PDF_BASE64:` value out of the prompt you have been given (you can see the full prompt), then run:
-
-```bash
-python3 -c "
-import base64, sys
-data = sys.stdin.read().strip()
-open('/tmp/payslip.pdf','wb').write(base64.b64decode(data))
-print('decoded bytes:', len(base64.b64decode(data)))
-" <<'B64'
-<paste-the-base64-here>
-B64
-```
-
-Or pipe via shell `base64 -d`:
-
-```bash
-printf '%s' '<base64>' | base64 -d > /tmp/payslip.pdf
-```
-
-Verify the file looks like a PDF:
-
-```bash
-head -c 8 /tmp/payslip.pdf | xxd
-# Expected: 25 50 44 46 2d (i.e. "%PDF-")
-```
-
-### Step 2. Extract text from the PDF
-
-Try tools in this order. Use the first one that works; do not chain all of them.
-
-1. `pdftotext` from `poppler-utils` (preferred — fastest, most reliable on layout-preserving payslips):
-   ```bash
-   pdftotext -layout /tmp/payslip.pdf - 2>/dev/null
-   ```
-
-2. Python `pypdf` fallback:
-   ```bash
-   python3 -c "
-   from pypdf import PdfReader
-   r = PdfReader('/tmp/payslip.pdf')
-   for p in r.pages:
-       print(p.extract_text() or '')
-   "
-   ```
-
-3. Python `pdfplumber` fallback:
-   ```bash
-   python3 -c "
-   import pdfplumber
-   with pdfplumber.open('/tmp/payslip.pdf') as pdf:
-       for page in pdf.pages:
-           print(page.extract_text() or '')
-   "
-   ```
-
-4. If none of those are installed, check what IS available:
-   ```bash
-   which pdftotext pdf2txt.py mutool
-   python3 -c "import pypdf, pdfplumber, pdfminer" 2>&1
-   ```
-   and use whatever you find (e.g. `mutool draw -F txt`).
-
-If every text-extraction tool fails, emit the failure JSON (see "Failure mode" below).
-
-### Step 3. Parse the extracted text
-
-UK payslips are laid out in a few common templates (Sage, Iris, QuickBooks, Xero, in-house ADP/Workday layouts). Common landmarks:
-
-- "Pay Date" / "Payment Date" / "Date Paid" — the date wages hit the account. Usually at the top or in a header box.
-- "Tax Period" / "Period" / "Month" — e.g. "Month 1", "Week 12".
-- Two numeric columns per line: "This Period" (or "Amount", "Current") and "Year to Date" (or "YTD"). **Always take the This Period column**, never YTD.
-- Payments / Earnings block: "Basic Pay", "Salary", "Bonus", "Overtime", "Commission", "Holiday Pay".
-- Deductions block: "Income Tax" / "PAYE", "National Insurance" / "NI" / "NIC", "Pension" / "Pension Contribution" / "Salary Sacrifice Pension", "Student Loan" / "SL", optional: "Union Dues", "Charity", "Season Ticket Loan", "Private Medical", etc.
-- "Gross Pay" / "Total Gross" — sum of payments.
-- "Net Pay" / "Take Home" / "Amount Payable" — the money actually paid.
-- "Tax Code" — e.g. "1257L", "BR", "D0", "NT".
-- "NI Number" / "National Insurance Number" — `AA123456A` format. Never invent one.
-- "Employer" / "Company" — usually in the letterhead. "Employee" / "Name".
-- Currency: almost always GBP / "£" for UK payslips. If the PDF is not in GBP or not a UK payslip, still return the numbers as-is but include a best-effort `currency` field.
-
-### Step 4. Map to the schema and emit JSON
-
-Rules that apply regardless of the caller's exact schema:
-
-- **Dates**: `pay_date` MUST be `YYYY-MM-DD`. If the PDF prints `12/03/2026`, interpret as `DD/MM/YYYY` (UK format) → `2026-03-12`. If ambiguous (`01/02/2026`), prefer UK ordering. If impossible to determine a year, use the pay_period year.
-- **Money fields**: emit as JSON numbers, not strings. Two decimal places are acceptable (`2450.17`). Strip `£`, commas, and trailing spaces. Negative values stay negative.
-- **Missing numeric fields**: emit `0` (zero), not `null`, not an empty string, not `"N/A"`.
-- **`other_deductions`**: an object mapping `{ "<label>": <number>, ... }` for any deduction that isn't one of the first-class fields in the schema (tax, NI, pension, student loan). Use the exact label from the payslip (e.g. `"Season Ticket Loan"`, `"Private Medical"`). If there are no other deductions, emit `{}` — NEVER `null` and NEVER omit the key.
-- **Column discipline**: ALWAYS use the "This Period" column, NEVER the YTD column. If only one column exists, that's the period column.
-- **Currency default**: `"GBP"` unless the payslip explicitly shows another currency symbol or ISO code.
-- **No invented data**: If a field genuinely isn't on the payslip, use the documented default (`0` for money, `""` for strings, `{}` for objects). Do NOT make up names, NI numbers, tax codes, or employers.
-
-Follow the exact field names and types given in the prompt's schema. If the prompt's schema adds fields not listed above, produce them too using the same discipline.
-
-## Failure mode
-
-If the PDF cannot be read at all — unreadable base64, not a PDF, encrypted PDF with no text layer, no text-extraction tool available, or clearly not a UK payslip — emit a single JSON object:
-
-```json
-{"error": "<short human reason>"}
-```
-
-Examples of acceptable error reasons:
-- `"base64 did not decode to a valid PDF"`
-- `"pdf has no extractable text layer (image-only scan)"`
-- `"no pdf text extraction tool available (pdftotext/pypdf/pdfplumber all missing)"`
-- `"document does not appear to be a UK payslip"`
-- `"pay_date not found on document"`
-
-The caller treats the `error` key as a non-retriable parse failure. Do not include any other keys when emitting an error object.
-
-## Hard constraints — things you MUST NOT do
-
-1. **No network calls.** Do not curl, wget, dig, or otherwise talk to the network. Everything you need is in the prompt.
-2. **No modifications to `/workspace/infra/**`.** Do not edit, write, or commit any file under the infra repo. The only file you may create is the scratch PDF at `/tmp/payslip.pdf` (and intermediate text dumps under `/tmp/`).
-3. **No git operations.** No `git add`, `git commit`, `git push`, nothing.
-4. **No kubectl, no terraform, no vault.** You are not an infra agent — you are a narrow extractor.
-5. **No markdown in output.** No ` ```json ` fences, no preamble like "Here's the extraction:", no trailing notes. The ENTIRE final assistant message is exactly one JSON object.
-6. **No verbose logging in the final message.** It is fine to run bash commands and see their output during processing, but your final assistant message is JSON and nothing else.
-7. **No hallucinated fields.** If the payslip does not show a pension line, do not invent one. Use the documented default instead.
-
-## Output discipline — summary
-
-- Exactly one JSON object, UTF-8, no BOM.
-- Keys match the schema the caller gave you.
-- Numeric fields are JSON numbers, not strings.
-- `pay_date` is `YYYY-MM-DD`.
-- `other_deductions` is always present and is an object (possibly `{}`).
-- Missing money → `0`, missing string → `""`, missing object → `{}`.
-- On unrecoverable failure, one JSON object with a single `error` key.
-
-That's the whole job. Decode, extract, parse, emit JSON. Be boring and exact.
diff --git a/.claude/agents/service-upgrade.md b/.claude/agents/service-upgrade.md
index d0310807..f6cf5978 100644
--- a/.claude/agents/service-upgrade.md
+++ b/.claude/agents/service-upgrade.md
@@ -34,11 +34,7 @@ You receive these parameters in your invocation:
 - **Infra repo**: `/home/wizard/code/infra`
 - **Config**: `/home/wizard/code/infra/.claude/reference/upgrade-config.json`
 - **Kubeconfig**: `/home/wizard/code/infra/config`
-- **Secrets (env-var contract)**: You run in the `claude-agent-service` pod, which has NO Vault CLI auth — do NOT call `vault kv get`. The following env vars are pre-loaded via `envFrom: claude-agent-secrets`:
-  - `GITHUB_TOKEN` — PAT for GitHub API (changelog fetch) and `git push`
-  - `WOODPECKER_API_TOKEN` — bearer for `ci.viktorbarzin.me/api/...`
-  - `SLACK_WEBHOOK_URL` — full Slack webhook URL for status messages
-  - Anything else (e.g. `kubectl`) uses the pod's ServiceAccount or in-repo git-crypt-unlocked secrets.
+- **Vault**: Authenticate with `vault login -method=oidc` if needed. Secrets at `secret/viktor` and `secret/platform`.
 - **Git remote**: `origin` → `github.com/ViktorBarzin/infra.git`
 
 ## NEVER Do
@@ -122,6 +118,7 @@ cat /home/wizard/code/infra/.claude/reference/upgrade-config.json
 3. **For Helm charts**: Check `helm_chart_repo_overrides` for the chart repository URL
 4. If auto-detect fails, verify the repo exists:
    ```bash
+   GITHUB_TOKEN=$(vault kv get -field=github_pat secret/viktor)
    curl -sf -H "Authorization: token $GITHUB_TOKEN" \
      "https://api.github.com/repos/${DETECTED_REPO}" > /dev/null
    ```
@@ -131,6 +128,7 @@ cat /home/wizard/code/infra/.claude/reference/upgrade-config.json
 ## Step 3: Fetch Changelogs via GitHub API
 
 ```bash
+GITHUB_TOKEN=$(vault kv get -field=github_pat secret/viktor)
 curl -s -H "Authorization: token $GITHUB_TOKEN" \
   "https://api.github.com/repos/${GITHUB_REPO}/releases?per_page=100"
 ```
@@ -173,9 +171,11 @@ Scan all intermediate release notes for breaking change indicators from the conf
 ## Step 5: Slack Notification — Starting
 
 ```bash
+SLACK_WEBHOOK=$(vault kv get -field=alertmanager_slack_api_url secret/platform)
+
 curl -s -X POST -H 'Content-type: application/json' \
   --data "{\"text\":\"[Upgrade Agent] Starting: *${STACK}* ${OLD_VERSION} -> ${NEW_VERSION} (risk: ${RISK})\"}" \
-  "$SLACK_WEBHOOK_URL"
+  "$SLACK_WEBHOOK"
 ```
 
 For CAUTION risk, include breaking change excerpts in the Slack message.
@@ -266,28 +266,23 @@ UPGRADE_SHA=$(git rev-parse HEAD)
 
 ## Step 9: Wait for Woodpecker CI
 
-The commit triggers one pipeline that runs multiple **workflows** in parallel — e.g. `default` (terragrunt apply) and `build-cli` (builds the infra CLI image). Only the `default` workflow gates your upgrade; the other workflows may be unrelated and sometimes fail without breaking anything on the cluster (current example: `build-cli` push to `registry.viktorbarzin.me:5050` is known-broken as of 2026-04-19).
-
-**Do not read the overall pipeline `status`** — it reports `failure` whenever *any* workflow fails. Read the `default` workflow's `state` instead.
+The commit triggers the `app-stacks.yml` pipeline (or `default.yml` for platform stacks).
 
 ```bash
-# Find the pipeline for our commit
-curl -s -H "Authorization: Bearer $WOODPECKER_API_TOKEN" \
-  "https://ci.viktorbarzin.me/api/repos/1/pipelines?page=1&per_page=10" \
-  | jq --arg sha "$UPGRADE_SHA" '.[] | select(.commit==$sha) | .number'
-# → $PIPELINE_NUMBER
-
-# Fetch detail (includes workflows[])
-curl -s -H "Authorization: Bearer $WOODPECKER_API_TOKEN" \
-  "https://ci.viktorbarzin.me/api/repos/1/pipelines/$PIPELINE_NUMBER" \
-  | jq '.workflows[] | select(.name=="default") | .state'
-# → "running" | "pending" | "success" | "failure" | "error" | "killed"
+WOODPECKER_TOKEN=$(vault kv get -field=woodpecker_token secret/viktor)
 ```
 
-Poll every 30 seconds until the `default` workflow's `state` is terminal (`success`, `failure`, `error`, `killed`). Timeout after 15 minutes.
+Poll for the pipeline triggered by our commit:
+```bash
+# Get latest pipeline
+curl -s -H "Authorization: Bearer $WOODPECKER_TOKEN" \
+  "https://ci.viktorbarzin.me/api/repos/1/pipelines?page=1&per_page=5"
+```
 
-**If `default` state is `success`** → proceed to Step 10 (verification), regardless of other workflows' state.
-**If `default` state is terminal-and-not-success, or the poll times out** → proceed to Step 10b (rollback).
+Find the pipeline matching our commit SHA. Poll every 30 seconds until status is `success`, `failure`, `error`, or `killed`. Timeout after 15 minutes.
+
+**If CI fails** → proceed to Step 10 (rollback).
+**If CI succeeds** → proceed to verification.
 
 ## Step 10: Verify
 
@@ -346,7 +341,7 @@ Re-run verification checks to confirm rollback succeeded. If rollback verificati
 ```bash
 curl -s -X POST -H 'Content-type: application/json' \
   --data '{"text":"[Upgrade Agent] CRITICAL: Rollback of *${STACK}* also failed. Manual intervention required."}' \
-  "$SLACK_WEBHOOK_URL"
+  "$SLACK_WEBHOOK"
 ```
 
 ## Step 11: Report Results
@@ -355,14 +350,14 @@ curl -s -X POST -H 'Content-type: application/json' \
 ```bash
 curl -s -X POST -H 'Content-type: application/json' \
   --data "{\"text\":\"[Upgrade Agent] SUCCESS: *${STACK}* upgraded ${OLD_VERSION} -> ${NEW_VERSION}\nVerification: pods ready, HTTP OK${UPTIME_KUMA_MSG}\nCommit: ${UPGRADE_SHA}\"}" \
-  "$SLACK_WEBHOOK_URL"
+  "$SLACK_WEBHOOK"
 ```
 
 ### On failure + rollback
 ```bash
 curl -s -X POST -H 'Content-type: application/json' \
   --data "{\"text\":\"[Upgrade Agent] FAILED + ROLLED BACK: *${STACK}* ${OLD_VERSION} -> ${NEW_VERSION}\nReason: ${FAILURE_REASON}\nRollback commit: ${ROLLBACK_SHA}\nRollback status: ${ROLLBACK_STATUS}\"}" \
-  "$SLACK_WEBHOOK_URL"
+  "$SLACK_WEBHOOK"
 ```
 
 ## Edge Cases
diff --git a/.claude/cluster-health.sh b/.claude/cluster-health.sh
new file mode 100755
index 00000000..001d8ebb
--- /dev/null
+++ b/.claude/cluster-health.sh
@@ -0,0 +1,1728 @@
+#!/usr/bin/env bash
+
+# Cluster health check script (pod-compatible version).
+# Runs 24 diagnostic checks against the Kubernetes cluster and prints
+# a colour-coded report with PASS / WARN / FAIL for each section.
+# Optionally posts results to Slack.
+#
+# Usage: ./cluster-health.sh [--fix] [--quiet|-q] [--json] [--kubeconfig <path>] [--no-slack]
+#
+# Environment:
+#   KUBECONFIG         — path to kubeconfig (used in pod environment)
+#   SLACK_WEBHOOK_URL  — Slack incoming webhook URL (required unless --no-slack)
+#   UPTIME_KUMA_PASSWORD — Uptime Kuma admin password
+
+set -euo pipefail
+
+# --- Colors ---
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[0;33m'
+BLUE='\033[0;34m'
+BOLD='\033[1m'
+NC='\033[0m'
+
+# --- Globals ---
+PASS_COUNT=0
+WARN_COUNT=0
+FAIL_COUNT=0
+FIX=false
+QUIET=false
+JSON=false
+SEND_SLACK=true
+KUBECONFIG_PATH="${KUBECONFIG:-$(pwd)/config}"
+KUBECTL=""
+JSON_RESULTS=()
+TOTAL_CHECKS=24
+
+# --- Helpers ---
+info()  { [[ "$JSON" == true ]] && return 0; echo -e "${BLUE}[INFO]${NC} $*"; }
+pass()  { PASS_COUNT=$((PASS_COUNT + 1)); [[ "$JSON" == true ]] && return 0; [[ "$QUIET" == true ]] && return 0; echo -e "  ${GREEN}[PASS]${NC} $*"; }
+warn()  { WARN_COUNT=$((WARN_COUNT + 1)); [[ "$JSON" == true ]] && return 0; echo -e "  ${YELLOW}[WARN]${NC} $*"; }
+fail()  { FAIL_COUNT=$((FAIL_COUNT + 1)); [[ "$JSON" == true ]] && return 0; echo -e "  ${RED}[FAIL]${NC} $*"; }
+
+section() {
+    local num="$1" title="$2"
+    [[ "$JSON" == true ]] && return 0
+    [[ "$QUIET" == true ]] && return 0
+    echo ""
+    echo -e "${BOLD}[$num/$TOTAL_CHECKS] $title${NC}"
+}
+
+section_always() {
+    local num="$1" title="$2"
+    [[ "$JSON" == true ]] && return 0
+    echo ""
+    echo -e "${BOLD}[$num/$TOTAL_CHECKS] $title${NC}"
+}
+
+json_add() {
+    local name="$1" status="$2" detail="$3"
+    local escaped
+    escaped=$(echo "$detail" | python3 -c 'import json,sys; print(json.dumps(sys.stdin.read().strip()))')
+    JSON_RESULTS+=("{\"check\":\"$name\",\"status\":\"$status\",\"detail\":$escaped}")
+}
+
+# count lines in a variable, returning 0 for empty strings
+count_lines() {
+    local input="$1"
+    if [[ -z "$input" ]]; then
+        echo 0
+    else
+        echo "$input" | wc -l | tr -d ' '
+    fi
+}
+
+# --- Argument parsing ---
+parse_args() {
+    while [[ $# -gt 0 ]]; do
+        case "$1" in
+            --fix)        FIX=true; shift ;;
+            --quiet|-q)   QUIET=true; shift ;;
+            --json)       JSON=true; shift ;;
+            --no-slack)   SEND_SLACK=false; shift ;;
+            --kubeconfig) KUBECONFIG_PATH="$2"; shift 2 ;;
+            -h|--help)
+                echo "Usage: $0 [--fix] [--quiet|-q] [--json] [--kubeconfig <path>] [--no-slack]"
+                echo ""
+                echo "Flags:"
+                echo "  --fix              Auto-remediate safe issues (delete evicted/CrashLoopBackOff pods)"
+                echo "  --quiet, -q        Only show WARN and FAIL sections"
+                echo "  --json             Machine-readable JSON output"
+                echo "  --kubeconfig PATH  Override kubeconfig (default: \$KUBECONFIG or \$(pwd)/config)"
+                echo "  --no-slack         Skip Slack notification"
+                exit 0
+                ;;
+            *)
+                echo "Unknown option: $1" >&2
+                exit 1
+                ;;
+        esac
+    done
+    KUBECTL="kubectl --kubeconfig $KUBECONFIG_PATH"
+
+    # Auto-source UPTIME_KUMA_PASSWORD from terraform.tfvars if not set
+    if [[ -z "${UPTIME_KUMA_PASSWORD:-}" ]]; then
+        local script_dir tfvars_file
+        script_dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+        tfvars_file="${script_dir}/../terraform.tfvars"
+        if [[ -f "$tfvars_file" ]]; then
+            UPTIME_KUMA_PASSWORD=$(grep 'uptime_kuma_password' "$tfvars_file" | head -1 | sed 's/.*= *"\(.*\)"/\1/')
+            export UPTIME_KUMA_PASSWORD
+        fi
+    fi
+}
+
+# --- 1. Node Status ---
+check_nodes() {
+    section 1 "Node Status"
+    local nodes not_ready versions unique_versions detail=""
+
+    nodes=$($KUBECTL get nodes --no-headers 2>&1) || { fail "Cannot reach cluster"; json_add "node_status" "FAIL" "Cannot reach cluster"; return 0; }
+    not_ready=$(echo "$nodes" | awk '$2 != "Ready" {print $1}' || true)
+    versions=$(echo "$nodes" | awk '{print $5}' | sort -u)
+    unique_versions=$(echo "$versions" | wc -l | tr -d ' ')
+
+    if [[ -n "$not_ready" ]]; then
+        [[ "$QUIET" == true ]] && section_always 1 "Node Status"
+        fail "NotReady nodes: $not_ready"
+        detail="NotReady: $not_ready"
+        json_add "node_status" "FAIL" "$detail"
+    elif [[ "$unique_versions" -gt 1 ]]; then
+        [[ "$QUIET" == true ]] && section_always 1 "Node Status"
+        warn "Version mismatch across nodes: $(echo "$versions" | tr '\n' ' ')"
+        detail="Version mismatch: $(echo "$versions" | tr '\n' ' ')"
+        json_add "node_status" "WARN" "$detail"
+    else
+        pass "All nodes Ready, version $(echo "$versions" | head -1)"
+        detail="All nodes Ready"
+        json_add "node_status" "PASS" "$detail"
+    fi
+}
+
+# --- 2. Node Resources ---
+check_resources() {
+    section 2 "Node Resources"
+    local top detail="" had_issue=false status="PASS"
+
+    top=$($KUBECTL top nodes --no-headers 2>&1) || { fail "metrics-server unavailable"; json_add "node_resources" "FAIL" "metrics-server unavailable"; return 0; }
+
+    while IFS= read -r line; do
+        local node cpu_pct mem_pct
+        node=$(echo "$line" | awk '{print $1}')
+        cpu_pct=$(echo "$line" | awk '{print $3}' | tr -d '%')
+        mem_pct=$(echo "$line" | awk '{print $5}' | tr -d '%')
+
+        # Skip nodes where metrics are not yet available
+        if [[ "$cpu_pct" == *"unknown"* ]] || [[ "$mem_pct" == *"unknown"* ]]; then
+            detail+="$node metrics unavailable; "
+            continue
+        fi
+
+        if [[ "$cpu_pct" -gt 90 ]] || [[ "$mem_pct" -gt 90 ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 2 "Node Resources"
+            fail "$node: CPU ${cpu_pct}%, Mem ${mem_pct}%"
+            detail+="$node CPU=${cpu_pct}% Mem=${mem_pct}% [FAIL]; "
+            had_issue=true
+            status="FAIL"
+        elif [[ "$cpu_pct" -gt 80 ]] || [[ "$mem_pct" -gt 80 ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 2 "Node Resources"
+            warn "$node: CPU ${cpu_pct}%, Mem ${mem_pct}%"
+            detail+="$node CPU=${cpu_pct}% Mem=${mem_pct}% [WARN]; "
+            had_issue=true
+            [[ "$status" != "FAIL" ]] && status="WARN"
+        else
+            detail+="$node CPU=${cpu_pct}% Mem=${mem_pct}% [OK]; "
+        fi
+    done <<< "$top"
+
+    [[ "$had_issue" == false ]] && pass "All nodes below 80% CPU and memory"
+    json_add "node_resources" "$status" "$detail"
+}
+
+# --- 3. Node Conditions ---
+check_conditions() {
+    section 3 "Node Conditions"
+    local conditions detail=""
+
+    conditions=$($KUBECTL get nodes -o json | python3 -c '
+import json, sys
+data = json.load(sys.stdin)
+for node in data["items"]:
+    name = node["metadata"]["name"]
+    for c in node["status"]["conditions"]:
+        if c["type"] in ("MemoryPressure","DiskPressure","PIDPressure") and c["status"] == "True":
+            print(name + ": " + c["type"])
+' 2>&1) || true
+
+    if [[ -n "$conditions" ]]; then
+        [[ "$QUIET" == true ]] && section_always 3 "Node Conditions"
+        while IFS= read -r line; do
+            fail "$line"
+        done <<< "$conditions"
+        detail="$conditions"
+        json_add "node_conditions" "FAIL" "$detail"
+    else
+        pass "No pressure conditions on any node"
+        json_add "node_conditions" "PASS" "No pressure conditions"
+    fi
+}
+
+# --- 4. Problematic Pods ---
+check_pods() {
+    section 4 "Problematic Pods"
+    local bad count detail="" status="PASS"
+
+    bad=$( {
+        $KUBECTL get pods -A --no-headers --field-selector=status.phase!=Running,status.phase!=Succeeded 2>/dev/null \
+            | grep -E 'CrashLoopBackOff|Error|Pending|Init:|ImagePullBackOff|ErrImagePull' || true
+        $KUBECTL get pods -A --no-headers 2>/dev/null \
+            | grep -E 'CrashLoopBackOff|ImagePullBackOff|ErrImagePull' || true
+    } | awk '!seen[$1,$2]++' | sed '/^$/d') || true
+
+    count=$(count_lines "$bad")
+
+    # Auto-fix CrashLoopBackOff pods with >10 restarts when --fix is enabled
+    if [[ "$FIX" == true && "$count" -gt 0 ]]; then
+        local fixed_count=0
+        while IFS= read -r line; do
+            [[ -z "$line" ]] && continue
+            local ns pod pod_status restarts restarts_clean
+            ns=$(echo "$line" | awk '{print $1}')
+            pod=$(echo "$line" | awk '{print $2}')
+            pod_status=$(echo "$line" | awk '{print $4}')
+            restarts=$(echo "$line" | awk '{print $5}')
+            restarts_clean=$(echo "$restarts" | grep -oE '^[0-9]+' || echo "0")
+
+            if [[ "$pod_status" == "CrashLoopBackOff" ]] && [[ "$restarts_clean" -gt 10 ]]; then
+                info "Deleting CrashLoopBackOff pod $ns/$pod (restarts: $restarts_clean)"
+                $KUBECTL delete pod -n "$ns" "$pod" --grace-period=0 2>/dev/null || true
+                fixed_count=$((fixed_count + 1))
+            fi
+        done <<< "$bad"
+        if [[ "$fixed_count" -gt 0 ]]; then
+            info "Deleted $fixed_count CrashLoopBackOff pod(s) with >10 restarts"
+        fi
+    fi
+
+    if [[ "$count" -eq 0 ]]; then
+        pass "No problematic pods"
+        detail="None"
+    elif [[ "$count" -le 10 ]]; then
+        [[ "$QUIET" == true ]] && section_always 4 "Problematic Pods"
+        warn "$count problematic pod(s):"
+        [[ "$JSON" != true ]] && echo "$bad" | while IFS= read -r line; do echo "    $line"; done
+        detail="$count pods"
+        status="WARN"
+    else
+        [[ "$QUIET" == true ]] && section_always 4 "Problematic Pods"
+        fail "$count problematic pods (showing first 10):"
+        [[ "$JSON" != true ]] && echo "$bad" | head -10 | while IFS= read -r line; do echo "    $line"; done
+        detail="$count pods"
+        status="FAIL"
+    fi
+    json_add "problematic_pods" "$status" "$detail"
+}
+
+# --- 5. Evicted/Failed Pods ---
+check_evicted() {
+    section 5 "Evicted/Failed Pods"
+    local evicted count detail="" status="PASS"
+
+    evicted=$($KUBECTL get pods -A --no-headers --field-selector=status.phase=Failed 2>/dev/null || true)
+    count=$(count_lines "$evicted")
+
+    if [[ "$count" -eq 0 ]]; then
+        pass "No evicted or failed pods"
+        detail="0"
+    elif [[ "$count" -le 50 ]]; then
+        [[ "$QUIET" == true ]] && section_always 5 "Evicted/Failed Pods"
+        warn "$count evicted/failed pod(s)"
+        detail="$count pods"
+        status="WARN"
+    else
+        [[ "$QUIET" == true ]] && section_always 5 "Evicted/Failed Pods"
+        fail "$count evicted/failed pods"
+        detail="$count pods"
+        status="FAIL"
+    fi
+
+    if [[ "$FIX" == true && "$count" -gt 0 ]]; then
+        info "Deleting $count evicted/failed pods..."
+        $KUBECTL delete pods -A --field-selector=status.phase=Failed 2>/dev/null || true
+        info "Deleted evicted/failed pods"
+    fi
+    json_add "evicted_pods" "$status" "$detail"
+}
+
+# --- 6. DaemonSets ---
+check_daemonsets() {
+    section 6 "DaemonSets"
+    local ds detail="" had_issue=false
+
+    ds=$($KUBECTL get daemonsets -A --no-headers 2>&1) || { fail "Cannot list DaemonSets"; json_add "daemonsets" "FAIL" "Cannot list"; return 0; }
+
+    while IFS= read -r line; do
+        local ns name desired ready
+        ns=$(echo "$line" | awk '{print $1}')
+        name=$(echo "$line" | awk '{print $2}')
+        desired=$(echo "$line" | awk '{print $3}')
+        ready=$(echo "$line" | awk '{print $5}')
+
+        if [[ "$desired" != "$ready" ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 6 "DaemonSets"
+            fail "$ns/$name: desired=$desired ready=$ready"
+            detail+="$ns/$name desired=$desired ready=$ready; "
+            had_issue=true
+        fi
+    done <<< "$ds"
+
+    if [[ "$had_issue" == false ]]; then
+        pass "All DaemonSets healthy (desired == ready)"
+        json_add "daemonsets" "PASS" "All healthy"
+    else
+        json_add "daemonsets" "FAIL" "$detail"
+    fi
+}
+
+# --- 7. Deployments ---
+check_deployments() {
+    section 7 "Deployments"
+    local deps detail="" had_issue=false
+
+    deps=$($KUBECTL get deployments -A --no-headers 2>&1) || { fail "Cannot list Deployments"; json_add "deployments" "FAIL" "Cannot list"; return 0; }
+
+    while IFS= read -r line; do
+        local ns name ready current desired
+        ns=$(echo "$line" | awk '{print $1}')
+        name=$(echo "$line" | awk '{print $2}')
+        ready=$(echo "$line" | awk '{print $3}')
+        current=$(echo "$ready" | cut -d/ -f1)
+        desired=$(echo "$ready" | cut -d/ -f2)
+
+        if [[ "$current" != "$desired" ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 7 "Deployments"
+            fail "$ns/$name: $current/$desired ready"
+            detail+="$ns/$name $current/$desired; "
+            had_issue=true
+        fi
+    done <<< "$deps"
+
+    if [[ "$had_issue" == false ]]; then
+        pass "All deployments fully available"
+        json_add "deployments" "PASS" "All available"
+    else
+        json_add "deployments" "FAIL" "$detail"
+    fi
+}
+
+# --- 8. PVC Status ---
+check_pvcs() {
+    section 8 "PVC Status"
+    local pvcs detail="" had_issue=false
+
+    pvcs=$($KUBECTL get pvc -A --no-headers 2>&1) || true
+    if [[ -z "$pvcs" || "$pvcs" == *"No resources found"* ]]; then
+        pass "No PVCs in cluster"
+        json_add "pvcs" "PASS" "No PVCs"
+        return 0
+    fi
+
+    while IFS= read -r line; do
+        local ns name status
+        ns=$(echo "$line" | awk '{print $1}')
+        name=$(echo "$line" | awk '{print $2}')
+        status=$(echo "$line" | awk '{print $3}')
+
+        if [[ "$status" != "Bound" ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 8 "PVC Status"
+            fail "$ns/$name: $status"
+            detail+="$ns/$name=$status; "
+            had_issue=true
+        fi
+    done <<< "$pvcs"
+
+    if [[ "$had_issue" == false ]]; then
+        pass "All PVCs Bound"
+        json_add "pvcs" "PASS" "All Bound"
+    else
+        json_add "pvcs" "FAIL" "$detail"
+    fi
+}
+
+# --- 9. HPA Health ---
+check_hpa() {
+    section 9 "HPA Health"
+    local hpas detail="" had_issue=false status="PASS"
+
+    hpas=$($KUBECTL get hpa -A --no-headers 2>&1) || true
+    if [[ -z "$hpas" || "$hpas" == *"No resources found"* ]]; then
+        pass "No HPAs configured"
+        json_add "hpa" "PASS" "No HPAs"
+        return 0
+    fi
+
+    while IFS= read -r line; do
+        local ns name targets
+        ns=$(echo "$line" | awk '{print $1}')
+        name=$(echo "$line" | awk '{print $2}')
+        targets=$(echo "$line" | awk '{print $3}')
+
+        if echo "$targets" | grep -q '<unknown>'; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 9 "HPA Health"
+            fail "$ns/$name: targets=$targets (unknown metrics)"
+            detail+="$ns/$name=unknown; "
+            had_issue=true
+            status="FAIL"
+        else
+            # Parse percentage values from targets like "45%/80%, 30%/50%"
+            local pcts
+            pcts=$(echo "$targets" | grep -oE '[0-9]+%/' | tr -d '%/' || true)
+            if [[ -n "$pcts" ]]; then
+                while IFS= read -r pct; do
+                    [[ -z "$pct" ]] && continue
+                    if [[ "$pct" -gt 150 ]]; then
+                        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 9 "HPA Health"
+                        fail "$ns/$name: utilization at ${pct}%"
+                        detail+="$ns/$name=${pct}%; "
+                        had_issue=true
+                        status="FAIL"
+                        break
+                    elif [[ "$pct" -gt 100 ]]; then
+                        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 9 "HPA Health"
+                        warn "$ns/$name: utilization at ${pct}%"
+                        detail+="$ns/$name=${pct}%; "
+                        had_issue=true
+                        [[ "$status" != "FAIL" ]] && status="WARN"
+                        break
+                    fi
+                done <<< "$pcts"
+            fi
+        fi
+    done <<< "$hpas"
+
+    [[ "$had_issue" == false ]] && pass "All HPAs healthy"
+    json_add "hpa" "$status" "${detail:-All healthy}"
+}
+
+# --- 10. CronJob Failures ---
+check_cronjobs() {
+    section 10 "CronJob Failures"
+    local failures detail=""
+
+    failures=$($KUBECTL get jobs -A -o json 2>/dev/null | python3 -c '
+import json, sys
+from datetime import datetime, timezone, timedelta
+
+data = json.load(sys.stdin)
+cutoff = datetime.now(timezone.utc) - timedelta(hours=24)
+
+for job in data.get("items", []):
+    meta = job.get("metadata", {})
+    ns = meta.get("namespace", "")
+    name = meta.get("name", "")
+
+    owners = meta.get("ownerReferences", [])
+    is_cronjob = any(o.get("kind") == "CronJob" for o in owners)
+    if not is_cronjob:
+        continue
+
+    conditions = job.get("status", {}).get("conditions", [])
+    for c in conditions:
+        if c.get("type") == "Failed" and c.get("status") == "True":
+            ts = c.get("lastTransitionTime", "")
+            if ts:
+                try:
+                    t = datetime.fromisoformat(ts.replace("Z", "+00:00"))
+                    if t > cutoff:
+                        print(f"{ns}/{name}: {c.get(\"reason\", \"Unknown\")}")
+                except:
+                    print(f"{ns}/{name}: {c.get(\"reason\", \"Unknown\")}")
+' 2>/dev/null) || true
+
+    if [[ -z "$failures" ]]; then
+        pass "No CronJob failures in last 24h"
+        json_add "cronjob_failures" "PASS" "None"
+    else
+        [[ "$QUIET" == true ]] && section_always 10 "CronJob Failures"
+        local count
+        count=$(count_lines "$failures")
+        fail "$count CronJob failure(s) in last 24h:"
+        [[ "$JSON" != true ]] && echo "$failures" | while IFS= read -r line; do echo "    $line"; done
+        json_add "cronjob_failures" "FAIL" "$count failures"
+    fi
+}
+
+# --- 11. CrowdSec ---
+check_crowdsec() {
+    section 11 "CrowdSec Agents"
+    local cs_pods not_running
+
+    cs_pods=$($KUBECTL get pods -n crowdsec --no-headers 2>/dev/null || true)
+    if [[ -z "$cs_pods" ]]; then
+        [[ "$QUIET" == true ]] && section_always 11 "CrowdSec Agents"
+        warn "CrowdSec namespace not found or empty"
+        json_add "crowdsec" "WARN" "No CrowdSec pods found"
+        return 0
+    fi
+
+    not_running=$(echo "$cs_pods" | awk '$3 != "Running" && $3 != "Completed" {print $1 ": " $3}' || true)
+    if [[ -n "$not_running" ]]; then
+        [[ "$QUIET" == true ]] && section_always 11 "CrowdSec Agents"
+        while IFS= read -r line; do
+            fail "CrowdSec pod not running: $line"
+        done <<< "$not_running"
+        json_add "crowdsec" "FAIL" "$not_running"
+    else
+        local total
+        total=$(count_lines "$cs_pods")
+        pass "All $total CrowdSec pods running"
+        json_add "crowdsec" "PASS" "$total pods running"
+    fi
+}
+
+# --- 12. Ingress ---
+check_ingresses() {
+    section 12 "Ingress Routes"
+    local ingresses no_lb detail="" had_issue=false
+
+    ingresses=$($KUBECTL get ingress -A --no-headers 2>/dev/null || true)
+    if [[ -n "$ingresses" ]]; then
+        no_lb=$(echo "$ingresses" | awk '{if ($5 == "" || $5 == "<none>") print $1"/"$2}' || true)
+        if [[ -n "$no_lb" ]]; then
+            [[ "$QUIET" == true ]] && section_always 12 "Ingress Routes"
+            while IFS= read -r line; do
+                fail "Ingress missing LB IP: $line"
+            done <<< "$no_lb"
+            detail="Missing LB: $no_lb"
+            had_issue=true
+        fi
+    fi
+
+    # Check Traefik LB service
+    local traefik_svc_ip
+    traefik_svc_ip=$($KUBECTL get svc -n traefik traefik -o jsonpath='{.status.loadBalancer.ingress[0].ip}' 2>/dev/null || true)
+    if [[ -z "$traefik_svc_ip" ]]; then
+        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 12 "Ingress Routes"
+        fail "Traefik LoadBalancer has no external IP"
+        detail+="Traefik LB missing IP; "
+        had_issue=true
+    else
+        detail+="Traefik LB=$traefik_svc_ip; "
+    fi
+
+    if [[ "$had_issue" == false ]]; then
+        pass "All ingresses have LB assignment (Traefik LB=$traefik_svc_ip)"
+        json_add "ingresses" "PASS" "$detail"
+    else
+        json_add "ingresses" "FAIL" "$detail"
+    fi
+}
+
+# --- 13. Prometheus Alerts ---
+check_alerts() {
+    section 13 "Prometheus Alerts"
+    local alerts firing_count
+
+    # Try alertmanager first, then prometheus server
+    alerts=$($KUBECTL exec -n monitoring deploy/prometheus-alertmanager -- \
+        wget -q -O- http://localhost:9093/api/v2/alerts 2>/dev/null || true)
+
+    if [[ -z "$alerts" ]]; then
+        alerts=$($KUBECTL exec -n monitoring deploy/prometheus-server -- \
+            wget -q -O- http://localhost:9090/api/v1/alerts 2>/dev/null || true)
+    fi
+
+    if [[ -z "$alerts" ]]; then
+        [[ "$QUIET" == true ]] && section_always 13 "Prometheus Alerts"
+        warn "Could not query Prometheus/Alertmanager"
+        json_add "prometheus_alerts" "WARN" "Cannot query"
+        return 0
+    fi
+
+    firing_count=$(echo "$alerts" | python3 -c '
+import json, sys
+try:
+    data = json.load(sys.stdin)
+    if isinstance(data, list):
+        active = [a for a in data if a.get("status", {}).get("state") == "active"]
+        count = len(active)
+        names = [a.get("labels", {}).get("alertname", "?") for a in active]
+        print(f"{count}:" + ",".join(names) if count > 0 else "0:")
+    elif isinstance(data, dict) and "data" in data:
+        alerts_list = data["data"].get("alerts", [])
+        firing = [a for a in alerts_list if a.get("state") == "firing"]
+        count = len(firing)
+        names = [a.get("labels", {}).get("alertname", "?") for a in firing]
+        print(f"{count}:" + ",".join(names) if count > 0 else "0:")
+    else:
+        print("0:")
+except:
+    print("-1:")
+' 2>/dev/null || echo "-1:")
+
+    local count names
+    count=$(echo "$firing_count" | cut -d: -f1)
+    names=$(echo "$firing_count" | cut -d: -f2-)
+
+    if [[ "$count" == "-1" ]]; then
+        [[ "$QUIET" == true ]] && section_always 13 "Prometheus Alerts"
+        warn "Failed to parse alert data"
+        json_add "prometheus_alerts" "WARN" "Parse error"
+    elif [[ "$count" -eq 0 ]]; then
+        pass "No firing alerts"
+        json_add "prometheus_alerts" "PASS" "0 firing"
+    elif [[ "$count" -le 3 ]]; then
+        [[ "$QUIET" == true ]] && section_always 13 "Prometheus Alerts"
+        warn "$count firing alert(s): $names"
+        json_add "prometheus_alerts" "WARN" "$count firing: $names"
+    else
+        [[ "$QUIET" == true ]] && section_always 13 "Prometheus Alerts"
+        fail "$count firing alerts: $names"
+        json_add "prometheus_alerts" "FAIL" "$count firing: $names"
+    fi
+}
+
+# --- 14. Uptime Kuma ---
+check_uptime_kuma() {
+    section 14 "Uptime Kuma Monitors"
+    local result
+
+    result=$(python3 -c '
+import sys, os
+try:
+    from uptime_kuma_api import UptimeKumaApi
+except ImportError:
+    print("ERROR:uptime-kuma-api not installed")
+    sys.exit(0)
+
+try:
+    password = os.environ.get("UPTIME_KUMA_PASSWORD", "")
+    if not password:
+        print("ERROR:UPTIME_KUMA_PASSWORD not set")
+        sys.exit(0)
+    api = UptimeKumaApi("https://uptime.viktorbarzin.me", timeout=120, wait_events=0.2)
+    api.login("admin", password)
+
+    monitors = api.get_monitors()
+    heartbeats = api.get_heartbeats()
+
+    internal_up = 0
+    internal_down = []
+    external_up = 0
+    external_down = []
+    paused_count = 0
+
+    for m in monitors:
+        mid = m.get("id")
+        name = m.get("name", "unknown")
+        active = m.get("active", True)
+        is_external = name.startswith("[External] ")
+
+        if not active:
+            paused_count += 1
+            continue
+
+        beats = heartbeats.get(mid, [])
+        if beats:
+            last_beat = beats[-1]
+            if isinstance(last_beat, list):
+                last_beat = last_beat[-1] if last_beat else {}
+            status = last_beat.get("status", 0) if isinstance(last_beat, dict) else 0
+            if hasattr(status, "value"):
+                status = status.value
+            is_up = (status == 1)
+        else:
+            is_up = False
+
+        if is_external:
+            if is_up:
+                external_up += 1
+            else:
+                external_down.append(name.replace("[External] ", ""))
+        else:
+            if is_up:
+                internal_up += 1
+            else:
+                internal_down.append(name)
+
+    api.disconnect()
+
+    int_down_names = ", ".join(internal_down) if internal_down else ""
+    ext_down_names = ", ".join(external_down) if external_down else ""
+    print(f"{len(internal_down)}:{internal_up}:{len(external_down)}:{external_up}:{paused_count}:{int_down_names}|{ext_down_names}")
+except Exception as e:
+    print(f"CONN_ERROR:{e}")
+' 2>/dev/null) || result="CONN_ERROR:python execution failed"
+
+    if [[ "$result" == "ERROR:"* ]]; then
+        [[ "$QUIET" == true ]] && section_always 14 "Uptime Kuma Monitors"
+        warn "Uptime Kuma: ${result#ERROR:}"
+        json_add "uptime_kuma" "WARN" "${result#ERROR:}"
+    elif [[ "$result" == "CONN_ERROR:"* ]]; then
+        [[ "$QUIET" == true ]] && section_always 14 "Uptime Kuma Monitors"
+        warn "Cannot connect to Uptime Kuma: ${result#CONN_ERROR:}"
+        json_add "uptime_kuma" "WARN" "Connection failed"
+    else
+        local int_down int_up ext_down ext_up paused_count down_details
+        int_down=$(echo "$result" | cut -d: -f1)
+        int_up=$(echo "$result" | cut -d: -f2)
+        ext_down=$(echo "$result" | cut -d: -f3)
+        ext_up=$(echo "$result" | cut -d: -f4)
+        paused_count=$(echo "$result" | cut -d: -f5)
+        down_details=$(echo "$result" | cut -d: -f6-)
+        local int_down_names="${down_details%%|*}"
+        local ext_down_names="${down_details#*|}"
+
+        local total_down=$((int_down + ext_down))
+        local total_up=$((int_up + ext_up))
+        local total_active=$((total_up + total_down))
+
+        if [[ "$total_down" -eq 0 ]]; then
+            pass "All monitors up — internal: ${int_up}, external: ${ext_up} ($paused_count paused)"
+            json_add "uptime_kuma" "PASS" "internal: $int_up up, external: $ext_up up, $paused_count paused"
+        else
+            [[ "$QUIET" == true ]] && section_always 14 "Uptime Kuma Monitors"
+            local details=""
+            [[ "$int_down" -gt 0 ]] && details="internal down($int_down): $int_down_names"
+            [[ "$ext_down" -gt 0 ]] && { [[ -n "$details" ]] && details="$details; "; details="${details}external down($ext_down): $ext_down_names"; }
+            if [[ "$total_down" -le 3 ]]; then
+                warn "$total_down/$total_active down: $details"
+                json_add "uptime_kuma" "WARN" "$details"
+            else
+                fail "$total_down/$total_active down: $details"
+                json_add "uptime_kuma" "FAIL" "$details"
+            fi
+        fi
+    fi
+}
+
+# --- 15. ResourceQuota Pressure ---
+check_resourcequota() {
+    section 15 "ResourceQuota Pressure"
+    local quotas detail="" had_issue=false status="PASS"
+
+    quotas=$($KUBECTL get resourcequota -A -o json 2>/dev/null) || { pass "No ResourceQuotas configured"; json_add "resourcequota" "PASS" "No quotas"; return 0; }
+
+    local pressure
+    pressure=$(echo "$quotas" | python3 -c '
+import json, sys, re
+
+def parse_cpu(val):
+    """Convert CPU value to millicores."""
+    val = str(val)
+    if val.endswith("m"):
+        return float(val[:-1])
+    return float(val) * 1000
+
+def parse_mem(val):
+    """Convert memory value to bytes."""
+    val = str(val)
+    units = {"Ki": 1024, "Mi": 1024**2, "Gi": 1024**3, "Ti": 1024**4}
+    for suffix, mult in units.items():
+        if val.endswith(suffix):
+            return float(val[:-len(suffix)]) * mult
+    # Plain bytes or numeric
+    return float(val)
+
+data = json.load(sys.stdin)
+for item in data.get("items", []):
+    ns = item["metadata"]["namespace"]
+    name = item["metadata"]["name"]
+    status = item.get("status", {})
+    hard = status.get("hard", {})
+    used = status.get("used", {})
+
+    for resource, hard_val in hard.items():
+        used_val = used.get(resource, "0")
+        try:
+            if "cpu" in resource:
+                h = parse_cpu(hard_val)
+                u = parse_cpu(used_val)
+            elif "memory" in resource or "storage" in resource:
+                h = parse_mem(hard_val)
+                u = parse_mem(used_val)
+            elif resource == "pods":
+                h = float(hard_val)
+                u = float(used_val)
+            else:
+                continue
+            if h <= 0:
+                continue
+            pct = (u / h) * 100
+            if pct > 80:
+                level = "FAIL" if pct > 95 else "WARN"
+                print(f"{level}:{ns}/{name}:{resource}:{pct:.0f}%")
+        except (ValueError, ZeroDivisionError):
+            pass
+' 2>/dev/null) || true
+
+    if [[ -z "$pressure" ]]; then
+        pass "All ResourceQuotas below 80% usage"
+        json_add "resourcequota" "PASS" "All below 80%"
+    else
+        [[ "$QUIET" == true ]] && section_always 15 "ResourceQuota Pressure"
+        while IFS= read -r line; do
+            local level ns_res resource pct
+            level=$(echo "$line" | cut -d: -f1)
+            ns_res=$(echo "$line" | cut -d: -f2)
+            resource=$(echo "$line" | cut -d: -f3)
+            pct=$(echo "$line" | cut -d: -f4)
+            if [[ "$level" == "FAIL" ]]; then
+                fail "$ns_res: $resource at $pct"
+                status="FAIL"
+            else
+                warn "$ns_res: $resource at $pct"
+                [[ "$status" != "FAIL" ]] && status="WARN"
+            fi
+            detail+="$ns_res $resource=$pct; "
+            had_issue=true
+        done <<< "$pressure"
+        json_add "resourcequota" "$status" "$detail"
+    fi
+}
+
+# --- 16. StatefulSets ---
+check_statefulsets() {
+    section 16 "StatefulSets"
+    local sts detail="" had_issue=false
+
+    sts=$($KUBECTL get statefulsets -A --no-headers 2>&1) || true
+    if [[ -z "$sts" || "$sts" == *"No resources found"* ]]; then
+        pass "No StatefulSets in cluster"
+        json_add "statefulsets" "PASS" "No StatefulSets"
+        return 0
+    fi
+
+    while IFS= read -r line; do
+        local ns name ready current desired
+        ns=$(echo "$line" | awk '{print $1}')
+        name=$(echo "$line" | awk '{print $2}')
+        ready=$(echo "$line" | awk '{print $3}')
+        current=$(echo "$ready" | cut -d/ -f1)
+        desired=$(echo "$ready" | cut -d/ -f2)
+
+        if [[ "$current" != "$desired" ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 16 "StatefulSets"
+            fail "$ns/$name: $current/$desired ready"
+            detail+="$ns/$name $current/$desired; "
+            had_issue=true
+        fi
+    done <<< "$sts"
+
+    if [[ "$had_issue" == false ]]; then
+        pass "All StatefulSets fully available"
+        json_add "statefulsets" "PASS" "All available"
+    else
+        json_add "statefulsets" "FAIL" "$detail"
+    fi
+}
+
+# --- 17. Node Disk Usage ---
+check_node_disk() {
+    section 17 "Node Disk Usage"
+    local node_json detail="" had_issue=false status="PASS"
+
+    node_json=$($KUBECTL get nodes -o json 2>/dev/null) || { fail "Cannot get node info"; json_add "node_disk" "FAIL" "Cannot get nodes"; return 0; }
+
+    local disk_info
+    disk_info=$(echo "$node_json" | python3 -c '
+import json, sys
+
+def parse_storage(val):
+    """Convert storage value to bytes."""
+    val = str(val)
+    units = {"Ki": 1024, "Mi": 1024**2, "Gi": 1024**3, "Ti": 1024**4}
+    for suffix, mult in units.items():
+        if val.endswith(suffix):
+            return float(val[:-len(suffix)]) * mult
+    return float(val)
+
+data = json.load(sys.stdin)
+for node in data["items"]:
+    name = node["metadata"]["name"]
+    cap = node["status"].get("capacity", {})
+    alloc = node["status"].get("allocatable", {})
+    es_cap = cap.get("ephemeral-storage", "0")
+    es_alloc = alloc.get("ephemeral-storage", "0")
+    try:
+        c = parse_storage(es_cap)
+        a = parse_storage(es_alloc)
+        if c > 0:
+            used_pct = ((c - a) / c) * 100
+            if used_pct > 70:  # Lower threshold after node2 containerd corruption incident
+                if used_pct > 85:
+                    level = "FAIL"  # Critical: Risk of containerd corruption
+                elif used_pct > 75:
+                    level = "WARN"  # Warning: Monitor closely
+                else:
+                    level = "WARN"  # Early warning
+                print(f"{level}:{name}:{used_pct:.0f}")
+    except (ValueError, ZeroDivisionError):
+        pass
+' 2>/dev/null) || true
+
+    if [[ -z "$disk_info" ]]; then
+        pass "All nodes below 70% ephemeral-storage usage"
+        json_add "node_disk" "PASS" "All below 70%"
+    else
+        [[ "$QUIET" == true ]] && section_always 17 "Node Disk Usage"
+        while IFS= read -r line; do
+            local level node pct
+            level=$(echo "$line" | cut -d: -f1)
+            node=$(echo "$line" | cut -d: -f2)
+            pct=$(echo "$line" | cut -d: -f3)
+            if [[ "$level" == "FAIL" ]]; then
+                fail "$node: ephemeral-storage at ${pct}%"
+                status="FAIL"
+            else
+                warn "$node: ephemeral-storage at ${pct}%"
+                [[ "$status" != "FAIL" ]] && status="WARN"
+            fi
+            detail+="$node=${pct}%; "
+            had_issue=true
+        done <<< "$disk_info"
+        json_add "node_disk" "$status" "$detail"
+    fi
+}
+
+# --- 18. Helm Release Health ---
+check_helm_releases() {
+    section 18 "Helm Release Health"
+
+    # Helm may not be available in the pod environment
+    if ! command -v helm &>/dev/null; then
+        pass "Helm not available (skipped)"
+        json_add "helm_releases" "PASS" "Helm not available"
+        return 0
+    fi
+
+    local releases detail="" had_issue=false status="PASS"
+
+    releases=$(helm list --all-namespaces --kubeconfig "$KUBECONFIG_PATH" -o json 2>/dev/null) || {
+        [[ "$QUIET" == true ]] && section_always 18 "Helm Release Health"
+        warn "Cannot list Helm releases"
+        json_add "helm_releases" "WARN" "Cannot list"
+        return 0
+    }
+
+    local bad_releases
+    bad_releases=$(echo "$releases" | python3 -c '
+import json, sys
+data = json.load(sys.stdin)
+for r in data:
+    name = r.get("name", "?")
+    ns = r.get("namespace", "?")
+    st = r.get("status", "unknown")
+    if st != "deployed":
+        level = "FAIL" if st.startswith("pending") else "WARN"
+        print(f"{level}:{ns}/{name}:{st}")
+' 2>/dev/null) || true
+
+    if [[ -z "$bad_releases" ]]; then
+        pass "All Helm releases in deployed state"
+        json_add "helm_releases" "PASS" "All deployed"
+    else
+        [[ "$QUIET" == true ]] && section_always 18 "Helm Release Health"
+        while IFS= read -r line; do
+            local level release_name release_status
+            level=$(echo "$line" | cut -d: -f1)
+            release_name=$(echo "$line" | cut -d: -f2)
+            release_status=$(echo "$line" | cut -d: -f3)
+            if [[ "$level" == "FAIL" ]]; then
+                fail "Helm release $release_name: $release_status (blocks terraform)"
+                status="FAIL"
+            else
+                warn "Helm release $release_name: $release_status"
+                [[ "$status" != "FAIL" ]] && status="WARN"
+            fi
+            detail+="$release_name=$release_status; "
+            had_issue=true
+        done <<< "$bad_releases"
+        json_add "helm_releases" "$status" "$detail"
+    fi
+}
+
+# --- 19. Kyverno Policy Engine ---
+check_kyverno() {
+    section 19 "Kyverno Policy Engine"
+    local kv_pods not_running
+
+    kv_pods=$($KUBECTL get pods -n kyverno --no-headers 2>/dev/null || true)
+    if [[ -z "$kv_pods" ]]; then
+        [[ "$QUIET" == true ]] && section_always 19 "Kyverno Policy Engine"
+        fail "Kyverno namespace not found or empty — policy engine down, cascading cluster impact"
+        json_add "kyverno" "FAIL" "No Kyverno pods found"
+        return 0
+    fi
+
+    not_running=$(echo "$kv_pods" | awk '$3 != "Running" && $3 != "Completed" {print $1 ": " $3}' || true)
+    if [[ -n "$not_running" ]]; then
+        [[ "$QUIET" == true ]] && section_always 19 "Kyverno Policy Engine"
+        while IFS= read -r line; do
+            fail "Kyverno pod not running: $line"
+        done <<< "$not_running"
+        json_add "kyverno" "FAIL" "$not_running"
+    else
+        local total
+        total=$(count_lines "$kv_pods")
+        pass "All $total Kyverno pods running"
+        json_add "kyverno" "PASS" "$total pods running"
+    fi
+}
+
+# --- 20. NFS Connectivity ---
+check_nfs() {
+    section 20 "NFS Connectivity"
+
+    # Try native tools first (available locally), fall back to kubectl-based check (pod environment)
+    if command -v showmount &>/dev/null; then
+        if showmount -e 192.168.1.127 &>/dev/null; then
+            pass "NFS server 192.168.1.127 reachable (exports listed)"
+            json_add "nfs" "PASS" "NFS reachable"
+            return 0
+        fi
+    fi
+
+    if command -v nc &>/dev/null; then
+        if nc -z -G 3 192.168.1.127 2049 &>/dev/null; then
+            pass "NFS server 192.168.1.127 port 2049 open"
+            json_add "nfs" "PASS" "NFS port open"
+            return 0
+        fi
+    fi
+
+    # Fallback: check if NFS-backed pods are running (works in pod environment)
+    local nfs_pods
+    nfs_pods=$($KUBECTL get pods -A -o json 2>/dev/null | python3 -c '
+import json, sys
+data = json.load(sys.stdin)
+count = 0
+for pod in data.get("items", []):
+    for vol in pod.get("spec", {}).get("volumes", []):
+        if "nfs" in vol:
+            if pod.get("status", {}).get("phase") == "Running":
+                count += 1
+            break
+print(count)
+' 2>/dev/null) || nfs_pods="0"
+
+    if [[ "$nfs_pods" -gt 0 ]]; then
+        pass "NFS healthy ($nfs_pods pods using NFS volumes are running)"
+        json_add "nfs" "PASS" "$nfs_pods NFS pods running"
+    else
+        [[ "$QUIET" == true ]] && section_always 20 "NFS Connectivity"
+        warn "Cannot verify NFS (showmount not available, no NFS pods found)"
+        json_add "nfs" "WARN" "Cannot verify"
+    fi
+}
+
+# --- 21. DNS Resolution ---
+check_dns() {
+    section 21 "DNS Resolution"
+    local internal_ok=false external_ok=false detail=""
+
+    # Try dig first (available locally), fall back to python3 (pod environment)
+    # Use system resolver (no @server) so it works from any host or pod
+    if command -v dig &>/dev/null; then
+        if dig viktorbarzin.me +short +time=3 +tries=1 2>/dev/null | grep -q .; then
+            internal_ok=true
+        fi
+        if dig google.com +short +time=3 +tries=1 2>/dev/null | grep -q .; then
+            external_ok=true
+        fi
+    else
+        # Fallback: use python3 for DNS resolution (works in pod environment)
+        local result
+        result=$(python3 -c "
+import socket
+try:
+    socket.getaddrinfo('viktorbarzin.me', 443)
+    print('INTERNAL_OK')
+except Exception:
+    print('INTERNAL_FAIL')
+try:
+    socket.getaddrinfo('google.com', 443)
+    print('EXTERNAL_OK')
+except Exception:
+    print('EXTERNAL_FAIL')
+" 2>/dev/null) || result=""
+
+        if echo "$result" | grep -q "INTERNAL_OK"; then
+            internal_ok=true
+        fi
+        if echo "$result" | grep -q "EXTERNAL_OK"; then
+            external_ok=true
+        fi
+    fi
+
+    if [[ "$internal_ok" == true && "$external_ok" == true ]]; then
+        pass "DNS resolves both internal (viktorbarzin.me) and external (google.com)"
+        json_add "dns" "PASS" "Both resolve"
+    elif [[ "$internal_ok" == true || "$external_ok" == true ]]; then
+        [[ "$QUIET" == true ]] && section_always 21 "DNS Resolution"
+        if [[ "$internal_ok" == false ]]; then
+            warn "DNS: internal (viktorbarzin.me) failed, external (google.com) OK"
+            detail="Internal failed"
+        else
+            warn "DNS: internal (viktorbarzin.me) OK, external (google.com) failed"
+            detail="External failed"
+        fi
+        json_add "dns" "WARN" "$detail"
+    else
+        [[ "$QUIET" == true ]] && section_always 21 "DNS Resolution"
+        fail "DNS not resolving — both internal and external failed"
+        json_add "dns" "FAIL" "Both failed"
+    fi
+}
+
+# --- 22. TLS Certificate Expiry ---
+check_tls_certs() {
+    section 22 "TLS Certificate Expiry"
+    local secrets detail="" had_issue=false status="PASS"
+
+    secrets=$($KUBECTL get secrets -A -o json 2>/dev/null) || {
+        [[ "$QUIET" == true ]] && section_always 22 "TLS Certificate Expiry"
+        warn "Cannot list secrets"
+        json_add "tls_certs" "WARN" "Cannot list secrets"
+        return 0
+    }
+
+    local cert_issues
+    cert_issues=$(echo "$secrets" | python3 -c '
+import json, sys, base64, subprocess, hashlib
+from datetime import datetime, timezone
+
+data = json.load(sys.stdin)
+seen_fingerprints = set()
+results = []
+
+for item in data.get("items", []):
+    if item.get("type") != "kubernetes.io/tls":
+        continue
+    ns = item["metadata"]["namespace"]
+    name = item["metadata"]["name"]
+    cert_data = item.get("data", {}).get("tls.crt", "")
+    if not cert_data:
+        continue
+
+    # Deduplicate by cert fingerprint
+    raw = base64.b64decode(cert_data)
+    fp = hashlib.sha256(raw).hexdigest()[:16]
+    if fp in seen_fingerprints:
+        continue
+    seen_fingerprints.add(fp)
+
+    # Parse certificate expiry with openssl
+    try:
+        result = subprocess.run(
+            ["openssl", "x509", "-noout", "-enddate", "-subject"],
+            input=raw, capture_output=True, timeout=5
+        )
+        output = result.stdout.decode()
+        for line in output.splitlines():
+            if line.startswith("notAfter="):
+                date_str = line.split("=", 1)[1]
+                # Parse openssl date format: "Mon DD HH:MM:SS YYYY GMT"
+                try:
+                    expiry = datetime.strptime(date_str.strip(), "%b %d %H:%M:%S %Y %Z")
+                    expiry = expiry.replace(tzinfo=timezone.utc)
+                    days_left = (expiry - datetime.now(timezone.utc)).days
+                    if days_left <= 7:
+                        print(f"FAIL:{ns}/{name}:{days_left}d")
+                    elif days_left <= 30:
+                        print(f"WARN:{ns}/{name}:{days_left}d")
+                except ValueError:
+                    pass
+    except (subprocess.TimeoutExpired, Exception):
+        pass
+' 2>/dev/null) || true
+
+    if [[ -z "$cert_issues" ]]; then
+        pass "All TLS certificates valid for >30 days"
+        json_add "tls_certs" "PASS" "All valid >30d"
+    else
+        [[ "$QUIET" == true ]] && section_always 22 "TLS Certificate Expiry"
+        while IFS= read -r line; do
+            local level cert_name days
+            level=$(echo "$line" | cut -d: -f1)
+            cert_name=$(echo "$line" | cut -d: -f2)
+            days=$(echo "$line" | cut -d: -f3)
+            if [[ "$level" == "FAIL" ]]; then
+                fail "TLS cert $cert_name expires in $days"
+                status="FAIL"
+            else
+                warn "TLS cert $cert_name expires in $days"
+                [[ "$status" != "FAIL" ]] && status="WARN"
+            fi
+            detail+="$cert_name=$days; "
+            had_issue=true
+        done <<< "$cert_issues"
+        json_add "tls_certs" "$status" "$detail"
+    fi
+}
+
+# --- 23. GPU Health ---
+check_gpu() {
+    section 23 "GPU Health"
+    local gpu_pods not_running
+
+    gpu_pods=$($KUBECTL get pods -n nvidia --no-headers 2>/dev/null || true)
+    if [[ -z "$gpu_pods" ]]; then
+        [[ "$QUIET" == true ]] && section_always 23 "GPU Health"
+        warn "NVIDIA namespace not found or empty"
+        json_add "gpu" "WARN" "No GPU pods found"
+        return 0
+    fi
+
+    # Check specifically for device-plugin (critical for GPU scheduling)
+    local device_plugin_down=false
+    local other_down=false
+    local detail=""
+
+    while IFS= read -r line; do
+        local pod_name pod_status
+        pod_name=$(echo "$line" | awk '{print $1}')
+        pod_status=$(echo "$line" | awk '{print $3}')
+        if [[ "$pod_status" != "Running" && "$pod_status" != "Completed" ]]; then
+            if echo "$pod_name" | grep -q "device-plugin"; then
+                device_plugin_down=true
+                detail+="device-plugin $pod_name: $pod_status; "
+            else
+                other_down=true
+                detail+="$pod_name: $pod_status; "
+            fi
+        fi
+    done <<< "$gpu_pods"
+
+    if [[ "$device_plugin_down" == true ]]; then
+        [[ "$QUIET" == true ]] && section_always 23 "GPU Health"
+        fail "GPU device-plugin is down — GPU workloads cannot schedule"
+        json_add "gpu" "FAIL" "$detail"
+    elif [[ "$other_down" == true ]]; then
+        [[ "$QUIET" == true ]] && section_always 23 "GPU Health"
+        warn "Some GPU pods not running: $detail"
+        json_add "gpu" "WARN" "$detail"
+    else
+        local total
+        total=$(count_lines "$gpu_pods")
+        pass "All $total GPU pods running"
+        json_add "gpu" "PASS" "$total pods running"
+    fi
+}
+
+# --- 24. Cloudflare Tunnel ---
+check_cloudflare_tunnel() {
+    section 24 "Cloudflare Tunnel"
+    local cf_pods running_count total_count
+
+    cf_pods=$($KUBECTL get pods -n cloudflared --no-headers 2>/dev/null || true)
+    if [[ -z "$cf_pods" ]]; then
+        [[ "$QUIET" == true ]] && section_always 24 "Cloudflare Tunnel"
+        fail "Cloudflare tunnel namespace not found or empty — external access broken"
+        json_add "cloudflare_tunnel" "FAIL" "No pods found"
+        return 0
+    fi
+
+    total_count=$(count_lines "$cf_pods")
+    running_count=$(echo "$cf_pods" | awk '$3 == "Running"' | wc -l | tr -d ' ')
+
+    if [[ "$running_count" -eq 0 ]]; then
+        [[ "$QUIET" == true ]] && section_always 24 "Cloudflare Tunnel"
+        fail "Cloudflare tunnel: 0/$total_count pods running — external access broken"
+        json_add "cloudflare_tunnel" "FAIL" "0/$total_count running"
+    elif [[ "$running_count" -lt "$total_count" ]]; then
+        [[ "$QUIET" == true ]] && section_always 24 "Cloudflare Tunnel"
+        warn "Cloudflare tunnel: $running_count/$total_count pods running (degraded)"
+        json_add "cloudflare_tunnel" "WARN" "$running_count/$total_count running"
+    else
+        pass "Cloudflare tunnel: all $total_count pods running"
+        json_add "cloudflare_tunnel" "PASS" "$total_count pods running"
+    fi
+}
+
+# --- 25. Advanced CPU Monitoring (Prometheus) ---
+check_prometheus_cpu() {
+    section 25 "Advanced CPU Monitoring"
+    local cpu_query="100%20-%20(avg%20by%20(instance)%20(irate(node_cpu_seconds_total%7Bmode%3D%22idle%22%7D%5B5m%5D))%20*%20100)"
+    local detail="" had_issue=false status="PASS"
+
+    # Start port-forward to Prometheus if not using in-cluster DNS
+    local prom_url pf_pid=""
+    if curl -s --connect-timeout 2 "http://prometheus-server.monitoring.svc.cluster.local/api/v1/query?query=up" &>/dev/null; then
+        prom_url="http://prometheus-server.monitoring.svc.cluster.local/api/v1/query"
+    else
+        local pf_port
+        pf_port=$(python3 -c 'import socket; s=socket.socket(); s.bind(("",0)); print(s.getsockname()[1]); s.close()')
+        $KUBECTL port-forward -n monitoring svc/prometheus-server "$pf_port:80" &>/dev/null &
+        pf_pid=$!
+        sleep 2
+        prom_url="http://127.0.0.1:${pf_port}/api/v1/query"
+    fi
+    # Cleanup port-forward on exit from this function
+    trap '[[ -n "$pf_pid" ]] && kill $pf_pid 2>/dev/null || true' RETURN
+
+    # Try to query Prometheus for CPU metrics
+    local cpu_data
+    cpu_data=$(curl -s --connect-timeout 10 "${prom_url}?query=${cpu_query}" 2>/dev/null) || {
+        warn "Prometheus not accessible for CPU monitoring"
+        json_add "prometheus_cpu" "WARN" "Prometheus unreachable"
+        return 0
+    }
+    
+    # Parse JSON and check CPU usage
+    local cpu_results
+    cpu_results=$(echo "$cpu_data" | python3 -c "
+import json, sys
+try:
+    data = json.load(sys.stdin)
+    if data.get('status') == 'success':
+        for result in data['data']['result']:
+            instance = result['metric']['instance']
+            usage = float(result['value'][1])
+            # Map IP to node name  
+            if '10.0.20.100' in instance:
+                node = 'k8s-master'
+            elif '10.0.20.101' in instance:
+                node = 'k8s-node1' 
+            elif '10.0.20.102' in instance:
+                node = 'k8s-node2'
+            elif '10.0.20.103' in instance:
+                node = 'k8s-node3'
+            elif '10.0.20.104' in instance:
+                node = 'k8s-node4'
+            elif 'pve-node' in instance:
+                node = 'proxmox-host'
+            else:
+                node = instance
+            print(f'{node}:{usage:.1f}')
+except Exception as e:
+    print(f'ERROR:{e}')
+" 2>/dev/null) || true
+    
+    if [[ "$cpu_results" == *"ERROR"* || -z "$cpu_results" ]]; then
+        warn "Failed to parse Prometheus CPU data"
+        json_add "prometheus_cpu" "WARN" "Parse failed"
+        return 0
+    fi
+    
+    # Check CPU thresholds
+    while IFS=':' read -r node usage; do
+        [[ -z "$node" || -z "$usage" ]] && continue
+        usage_int=${usage%.*}  # Remove decimal
+        
+        if [[ "$usage_int" -gt 85 ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 25 "Advanced CPU Monitoring"
+            fail "$node: ${usage}% CPU (critical)"
+            detail+="$node=${usage}% [CRIT]; "
+            had_issue=true
+            status="FAIL"
+        elif [[ "$usage_int" -gt 70 ]]; then
+            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 25 "Advanced CPU Monitoring" 
+            warn "$node: ${usage}% CPU (high)"
+            detail+="$node=${usage}% [HIGH]; "
+            had_issue=true
+            [[ "$status" != "FAIL" ]] && status="WARN"
+        else
+            detail+="$node=${usage}% [OK]; "
+        fi
+    done <<< "$cpu_results"
+    
+    [[ "$had_issue" == false ]] && pass "All nodes below 70% CPU usage (5m avg)"
+    json_add "prometheus_cpu" "$status" "$detail"
+}
+
+# --- 26. Power Monitoring ---
+check_power_monitoring() {
+    section 26 "Power Monitoring"
+    local detail="" had_issue=false status="PASS"
+
+    # Start port-forward to Prometheus if not using in-cluster DNS
+    local prom_url pf_pid=""
+    if curl -s --connect-timeout 2 "http://prometheus-server.monitoring.svc.cluster.local/api/v1/query?query=up" &>/dev/null; then
+        prom_url="http://prometheus-server.monitoring.svc.cluster.local/api/v1/query"
+    else
+        local pf_port
+        pf_port=$(python3 -c 'import socket; s=socket.socket(); s.bind(("",0)); print(s.getsockname()[1]); s.close()')
+        $KUBECTL port-forward -n monitoring svc/prometheus-server "$pf_port:80" &>/dev/null &
+        pf_pid=$!
+        sleep 2
+        prom_url="http://127.0.0.1:${pf_port}/api/v1/query"
+    fi
+    trap '[[ -n "$pf_pid" ]] && kill $pf_pid 2>/dev/null || true' RETURN
+
+    # GPU Power monitoring
+    local gpu_query="DCGM_FI_DEV_POWER_USAGE"
+    local gpu_data
+    gpu_data=$(curl -s --connect-timeout 10 "${prom_url}?query=${gpu_query}" 2>/dev/null) || {
+        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 26 "Power Monitoring"
+        warn "GPU power metrics unavailable"
+        detail+="GPU metrics unavailable; "
+        had_issue=true
+        status="WARN"
+    }
+    
+    if [[ -n "$gpu_data" && "$gpu_data" != *"error"* ]]; then
+        local gpu_results
+        gpu_results=$(echo "$gpu_data" | python3 -c "
+import json, sys
+try:
+    data = json.load(sys.stdin)
+    if data.get('status') == 'success':
+        for result in data['data']['result']:
+            hostname = result['metric'].get('Hostname', 'unknown')
+            power = float(result['value'][1])
+            print(f'{hostname}:{power:.1f}')
+except Exception:
+    pass
+" 2>/dev/null) || true
+        
+        # Check GPU power thresholds (Tesla T4 TDP is ~70W)
+        while IFS=':' read -r node power; do
+            [[ -z "$node" || -z "$power" ]] && continue
+            power_int=${power%.*}
+            
+            if [[ "$power_int" -gt 65 ]]; then  # > 90% of T4 TDP
+                [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 26 "Power Monitoring"
+                warn "GPU $node: ${power}W (high power draw)"
+                detail+="GPU-$node=${power}W [HIGH]; "
+                had_issue=true
+                [[ "$status" != "FAIL" ]] && status="WARN"
+            elif [[ "$power_int" -gt 50 ]]; then  # > 70% of T4 TDP
+                detail+="GPU-$node=${power}W [ACTIVE]; "
+            else
+                detail+="GPU-$node=${power}W [IDLE]; "
+            fi
+        done <<< "$gpu_results"
+    fi
+    
+    [[ "$had_issue" == false ]] && pass "Power consumption within normal ranges"
+    json_add "power_monitoring" "$status" "$detail"
+}
+
+# --- Summary ---
+print_summary() {
+    if [[ "$JSON" == true ]]; then
+        echo "{"
+        echo "  \"timestamp\": \"$(date -u +%Y-%m-%dT%H:%M:%SZ)\","
+        echo "  \"pass\": $PASS_COUNT,"
+        echo "  \"warn\": $WARN_COUNT,"
+        echo "  \"fail\": $FAIL_COUNT,"
+        echo "  \"checks\": ["
+        local first=true
+        for r in "${JSON_RESULTS[@]}"; do
+            if [[ "$first" == true ]]; then
+                echo "    $r"
+                first=false
+            else
+                echo "    ,$r"
+            fi
+        done
+        echo "  ]"
+        echo "}"
+        return 0
+    fi
+
+    echo ""
+    echo -e "${BOLD}═══════════════════════════════════════${NC}"
+    echo -e "${BOLD}  Cluster Health Summary${NC}"
+    echo -e "${BOLD}═══════════════════════════════════════${NC}"
+    echo -e "  ${GREEN}PASS${NC}: $PASS_COUNT    ${YELLOW}WARN${NC}: $WARN_COUNT    ${RED}FAIL${NC}: $FAIL_COUNT"
+    echo ""
+
+    if [[ "$FAIL_COUNT" -gt 0 ]]; then
+        echo -e "  Overall: ${RED}UNHEALTHY${NC}"
+    elif [[ "$WARN_COUNT" -gt 0 ]]; then
+        echo -e "  Overall: ${YELLOW}DEGRADED${NC}"
+    else
+        echo -e "  Overall: ${GREEN}HEALTHY${NC}"
+    fi
+    echo ""
+}
+
+# --- Slack Notification ---
+
+# Human-readable check name mapping
+friendly_check_name() {
+    case "$1" in
+        node_status)        echo "Node Status" ;;
+        node_resources)     echo "Node Resources" ;;
+        node_conditions)    echo "Node Conditions" ;;
+        problematic_pods)   echo "Problematic Pods" ;;
+        evicted_pods)       echo "Evicted Pods" ;;
+        daemonsets)         echo "DaemonSets" ;;
+        deployments)        echo "Deployments" ;;
+        pvcs)               echo "PVCs" ;;
+        hpa)                echo "HPAs" ;;
+        cronjob_failures)   echo "CronJob Failures" ;;
+        crowdsec)           echo "CrowdSec" ;;
+        ingresses)          echo "Ingresses" ;;
+        prometheus_alerts)  echo "Prometheus Alerts" ;;
+        uptime_kuma)        echo "Uptime Kuma" ;;
+        resourcequota)      echo "Resource Quotas" ;;
+        statefulsets)       echo "StatefulSets" ;;
+        node_disk)          echo "Node Disk" ;;
+        helm_releases)      echo "Helm Releases" ;;
+        kyverno)            echo "Kyverno" ;;
+        nfs)                echo "NFS Storage" ;;
+        dns)                echo "DNS Resolution" ;;
+        tls_certs)          echo "TLS Certificates" ;;
+        gpu)                echo "GPU" ;;
+        cloudflare_tunnel)  echo "Cloudflare Tunnel" ;;
+        prometheus_cpu)     echo "Advanced CPU Monitoring" ;;
+        power_monitoring)   echo "Power Monitoring" ;;
+        *)                  echo "$1" ;;
+    esac
+}
+
+send_slack() {
+    if [[ "$SEND_SLACK" != true ]]; then
+        return 0
+    fi
+    if [[ -z "${SLACK_WEBHOOK_URL:-}" ]]; then
+        [[ "$JSON" != true ]] && echo "WARNING: SLACK_WEBHOOK_URL not set, skipping Slack notification"
+        return 0
+    fi
+
+    # Gather stats for summary line
+    local node_count pod_count
+    node_count=$($KUBECTL get nodes --no-headers 2>/dev/null | wc -l | tr -d ' ')
+    pod_count=$($KUBECTL get pods -A --no-headers --field-selector=status.phase=Running 2>/dev/null | wc -l | tr -d ' ')
+
+    local total_checks=$((PASS_COUNT + WARN_COUNT + FAIL_COUNT))
+
+    # Use python3 to build the entire Slack payload from JSON_RESULTS
+    local json_results_str
+    json_results_str=$(printf '%s\n' "${JSON_RESULTS[@]}")
+
+    local json_payload
+    json_payload=$(echo "$json_results_str" | python3 -c "
+import json, sys
+
+CHECK_NAMES = {
+    'node_status': 'Node Status',
+    'node_resources': 'Node Resources',
+    'node_conditions': 'Node Conditions',
+    'problematic_pods': 'Problematic Pods',
+    'evicted_pods': 'Evicted Pods',
+    'daemonsets': 'DaemonSets',
+    'deployments': 'Deployments',
+    'pvcs': 'PVCs',
+    'hpa': 'HPAs',
+    'cronjob_failures': 'CronJob Failures',
+    'crowdsec': 'CrowdSec',
+    'ingresses': 'Ingresses',
+    'prometheus_alerts': 'Prometheus Alerts',
+    'uptime_kuma': 'Uptime Kuma',
+    'resourcequota': 'Resource Quotas',
+    'statefulsets': 'StatefulSets',
+    'node_disk': 'Node Disk',
+    'helm_releases': 'Helm Releases',
+    'kyverno': 'Kyverno',
+    'nfs': 'NFS Storage',
+    'dns': 'DNS Resolution',
+    'tls_certs': 'TLS Certificates',
+    'gpu': 'GPU',
+    'cloudflare_tunnel': 'Cloudflare Tunnel',
+    'prometheus_cpu': 'Advanced CPU Monitoring',
+    'power_monitoring': 'Power Monitoring',
+}
+
+def format_detail(check, detail):
+    \"\"\"Format detail text for readability. Truncate long lists, split semicolons.\"\"\"
+    detail = detail.rstrip('; ').strip()
+
+    # For checks with long comma-separated lists (e.g. Uptime Kuma down monitors),
+    # truncate to first 5 items with a count
+    if check == 'uptime_kuma' and ': ' in detail:
+        prefix, names_str = detail.split(': ', 1)
+        names = [n.strip() for n in names_str.split(',') if n.strip()]
+        if len(names) > 5:
+            shown = ', '.join(names[:5])
+            detail = f'{prefix}: {shown} (+{len(names) - 5} more)'
+        elif names:
+            detail = prefix + ': ' + ', '.join(names)
+
+    # For resource quotas and similar semicolon-separated items,
+    # split into separate lines
+    if '; ' in detail:
+        parts = [p.strip() for p in detail.split(';') if p.strip()]
+        if len(parts) > 1:
+            lines = '\\n'.join(f'     \u2022 {p}' for p in parts)
+            return lines
+
+    return detail
+
+# Parse results
+fails = []
+warns = []
+for line in sys.stdin:
+    line = line.strip()
+    if not line:
+        continue
+    try:
+        d = json.loads(line)
+    except json.JSONDecodeError:
+        continue
+    status = d.get('status', '')
+    check = d.get('check', '')
+    detail = d.get('detail', '')
+    name = CHECK_NAMES.get(check, check)
+    formatted = format_detail(check, detail)
+
+    if status == 'FAIL':
+        fails.append((name, formatted))
+    elif status == 'WARN':
+        warns.append((name, formatted))
+
+pass_count = ${PASS_COUNT}
+warn_count = ${WARN_COUNT}
+fail_count = ${FAIL_COUNT}
+total = ${total_checks}
+nodes = '${node_count}'
+pods = '${pod_count}'
+
+blocks = []
+
+# Header block
+if fail_count == 0 and warn_count == 0:
+    header = f':white_check_mark: *Cluster Health Check \u2014 All Clear*'
+    summary = f'{total}/{total} checks passed \u2022 {nodes} nodes \u2022 {pods} pods'
+    blocks.append({'type': 'section', 'text': {'type': 'mrkdwn', 'text': f'{header}\n{summary}'}})
+else:
+    issue_count = fail_count + warn_count
+    emoji = ':rotating_light:' if fail_count > 0 else ':warning:'
+    header = f'{emoji} *Cluster Health Check \u2014 {issue_count} Issue(s)*'
+    summary = f':white_check_mark: {pass_count} passed \u2022 :warning: {warn_count} warnings \u2022 :x: {fail_count} failed'
+    blocks.append({'type': 'section', 'text': {'type': 'mrkdwn', 'text': f'{header}\n{summary}'}})
+
+# Failed section
+if fails:
+    blocks.append({'type': 'divider'})
+    lines = [':x: *Failed*']
+    for name, detail in fails:
+        if '\\n' in detail:
+            lines.append(f'\u2022 *{name}*:')
+            lines.append(detail)
+        else:
+            lines.append(f'\u2022 *{name}*: {detail}')
+    blocks.append({'type': 'section', 'text': {'type': 'mrkdwn', 'text': '\\n'.join(lines)}})
+
+# Warnings section
+if warns:
+    blocks.append({'type': 'divider'})
+    lines = [':warning: *Warnings*']
+    for name, detail in warns:
+        if '\\n' in detail:
+            lines.append(f'\u2022 *{name}*:')
+            lines.append(detail)
+        else:
+            lines.append(f'\u2022 *{name}*: {detail}')
+    blocks.append({'type': 'section', 'text': {'type': 'mrkdwn', 'text': '\\n'.join(lines)}})
+
+# Footer with timestamp
+from datetime import datetime, timezone
+ts = datetime.now(timezone.utc).strftime('%Y-%m-%d %H:%M UTC')
+blocks.append({'type': 'context', 'elements': [{'type': 'mrkdwn', 'text': f'{nodes} nodes \u2022 {pods} pods \u2022 {ts}'}]})
+
+payload = {'blocks': blocks}
+print(json.dumps(payload))
+")
+
+    curl -s -X POST "$SLACK_WEBHOOK_URL" \
+        -H 'Content-Type: application/json' \
+        -d "$json_payload" >/dev/null 2>&1 || {
+        [[ "$JSON" != true ]] && echo "WARNING: Failed to send Slack notification"
+    }
+
+    [[ "$JSON" != true ]] && echo "Slack notification sent."
+}
+
+# --- Main ---
+main() {
+    parse_args "$@"
+
+    if [[ "$JSON" != true ]]; then
+        echo -e "${BOLD}Cluster Health Check${NC} — $(date '+%Y-%m-%d %H:%M:%S')"
+        echo -e "Kubeconfig: $KUBECONFIG_PATH"
+        if [[ "$FIX" == true ]]; then
+            echo -e "${YELLOW}Auto-fix mode enabled${NC}"
+        fi
+    fi
+
+    check_nodes
+    check_resources
+    check_conditions
+    check_pods
+    check_evicted
+    check_daemonsets
+    check_deployments
+    check_pvcs
+    check_hpa
+    check_cronjobs
+    check_crowdsec
+    check_ingresses
+    check_alerts
+    check_uptime_kuma
+    check_resourcequota
+    check_statefulsets
+    check_node_disk
+    check_helm_releases
+    check_kyverno
+    check_nfs
+    check_dns
+    check_tls_certs
+    check_gpu
+    check_cloudflare_tunnel
+    check_prometheus_cpu
+    check_power_monitoring
+    print_summary
+    send_slack
+
+    # Always exit 0 — reporting is done via Slack notification.
+    # Non-zero exits mark the CronJob as Failed, which triggers Prometheus
+    # JobFailed alerts, creating a circular alert loop.
+    exit 0
+}
+
+main "$@"
diff --git a/.claude/reference/authentik-state.md b/.claude/reference/authentik-state.md
index f76dd325..2005bb09 100644
--- a/.claude/reference/authentik-state.md
+++ b/.claude/reference/authentik-state.md
@@ -119,18 +119,3 @@ Removed bindings from:
 - `default-source-authentication` (PK: via policybindingmodel `1a779f24`) — Google/GitHub/Facebook OAuth
 
 Policy still exists with 0 bindings. If brute-force protection is needed, bind to the **password stage** (not the flow level).
-
-## Session Duration (2026-05-01)
-
-Pinned via Terraform in `stacks/authentik/`:
-
-| Knob | Value | Surface | Effect |
-|------|-------|---------|--------|
-| `UserLoginStage.session_duration` on `default-authentication-login` | `weeks=4` | `authentik_stage_user_login.default_login` in `authentik_provider.tf` | Authenticated users stay logged in 4 weeks across browser restarts. No sliding refresh — resets on each login. |
-| `AUTHENTIK_SESSIONS__UNAUTHENTICATED_AGE` (server + worker) | `hours=2` | `server.env` + `worker.env` in `modules/authentik/values.yaml` | Anonymous Django sessions (bots, healthcheckers, partial flows) are reaped within 2h instead of the 1d default. |
-
-Notes:
-- There is **no** `Brand.session_duration`; `UserLoginStage` is the only correct lever for authenticated session lifetime.
-- Embedded outpost session storage moved from `/dev/shm` → Postgres table `authentik_providers_proxy_proxysession` in authentik 2025.10. The 2026-04-18 `/dev/shm`-fill outage class is no longer load-bearing in 2026.2.2; the `unauthenticated_age` cap is still the right lever for anonymous-session bloat from external monitors.
-- `ProxyProvider.access_token_validity` and `remember_me_offset` stay UI-managed via `ignore_changes`.
-- The `unauthenticated_age` env var is injected via `server.env` / `worker.env` (not `authentik.sessions.unauthenticated_age`) because we set `authentik.existingSecret.secretName: goauthentik`, which makes the chart skip rendering its own `AUTHENTIK_*` Secret. The `authentik.*` value block is therefore inert in this stack — anything new under `authentik.*` must use the `*.env` arrays instead. The same applies to the existing `authentik.cache.*`, `authentik.web.*`, `authentik.worker.*` blocks (currently inert; live values come from the orphaned, helm-keep-policy `goauthentik` Secret created by chart 2025.10.3 before `existingSecret` was introduced).
diff --git a/.claude/reference/patterns.md b/.claude/reference/patterns.md
index 4a563e3c..6035b764 100644
--- a/.claude/reference/patterns.md
+++ b/.claude/reference/patterns.md
@@ -26,12 +26,11 @@ module "nfs_data" {
 ## ~~iSCSI Storage~~ (REMOVED — replaced by proxmox-lvm)
 > iSCSI via democratic-csi and TrueNAS has been fully removed (2026-04). All database storage now uses `StorageClass: proxmox-lvm` (Proxmox CSI, LVM-thin hotplug). TrueNAS has been decommissioned.
 
-## Anti-AI Scraping (3 Active Layers) (Updated 2026-04-17)
+## Anti-AI Scraping (5-Layer Defense)
 Default `anti_ai_scraping = true` in ingress_factory. Disable per-service: `anti_ai_scraping = false`.
-1. Bot blocking (ForwardAuth → poison-fountain) 2. X-Robots-Tag noai 3. Tarpit/poison content (standalone at poison.viktorbarzin.me)
-Trap links (formerly layer 3) removed April 2026 — rewrite-body plugin broken on Traefik v3.6.12 (Yaegi bugs). `strip-accept-encoding` and `anti-ai-trap-links` middlewares deleted.
-Rybbit analytics injection now via Cloudflare Worker (`stacks/rybbit/worker/`, HTMLRewriter, wildcard route `*.viktorbarzin.me/*`, 28 site ID mappings).
-Key files: `stacks/poison-fountain/`, `stacks/rybbit/worker/`, `stacks/platform/modules/traefik/middleware.tf`
+1. Bot blocking (ForwardAuth → poison-fountain) 2. X-Robots-Tag noai 3. Trap links before `</body>`
+4. Tarpit (~100 bytes/sec) 5. Poison content (CronJob every 6h, `--http1.1` required)
+Key files: `stacks/poison-fountain/`, `stacks/platform/modules/traefik/middleware.tf`
 
 ## Terragrunt Architecture
 - Root `terragrunt.hcl`: DRY providers, backend, variable loading, `generate "tiers"` block
diff --git a/.claude/reference/proxmox-inventory.md b/.claude/reference/proxmox-inventory.md
index 60dfab0b..1d1ab9bb 100644
--- a/.claude/reference/proxmox-inventory.md
+++ b/.claude/reference/proxmox-inventory.md
@@ -122,9 +122,8 @@ Channel 3:  A4 [32G] ──── A8 [32G]  ──── A12[ 8G ]     = 72 GB
 | `offsite-sync-backup.timer` | Timer | Daily 06:00 | Two-step rsync to Synology (sda + NFS via inotify) |
 | `nfs-change-tracker.service` | Service | Continuous | inotifywait on `/srv/nfs` + `/srv/nfs-ssd`, logs to `/mnt/backup/.nfs-changes.log` |
 
-## GPU Node (currently k8s-node1)
-- **VMID**: 201, **PCIe**: `0000:06:00.0` (NVIDIA Tesla T4) — physical passthrough, no Terraform pin
-- **Taint**: `nvidia.com/gpu=true:PreferNoSchedule` (applied dynamically to every NFD-discovered GPU node)
-- **Label**: `nvidia.com/gpu.present=true` (auto-applied by gpu-feature-discovery; also `feature.node.kubernetes.io/pci-10de.present=true` from NFD)
-- GPU workloads need: `node_selector = { "nvidia.com/gpu.present" : "true" }` + nvidia toleration
-- Taint applied via `null_resource.gpu_node_config` in `stacks/nvidia/modules/nvidia/main.tf`; node discovery keyed on the NFD `pci-10de.present` label so the taint follows the card to whichever host is carrying it
+## GPU Node (k8s-node1)
+- **VMID**: 201, **PCIe**: `0000:06:00.0` (NVIDIA Tesla T4)
+- **Taint**: `nvidia.com/gpu=true:NoSchedule`, **Label**: `gpu=true`
+- GPU workloads need: `node_selector = { "gpu": "true" }` + nvidia toleration
+- Taint applied via `null_resource.gpu_node_taint` in `modules/kubernetes/nvidia/main.tf`
diff --git a/.claude/reference/service-catalog.md b/.claude/reference/service-catalog.md
index a3619212..3fa30de6 100644
--- a/.claude/reference/service-catalog.md
+++ b/.claude/reference/service-catalog.md
@@ -19,7 +19,7 @@
 | Service | Description | Stack |
 |---------|-------------|-------|
 | vaultwarden | Bitwarden-compatible password manager | platform |
-| redis | Shared Redis 8.x via HAProxy at `redis-master.redis.svc.cluster.local` — 3-pod raw StatefulSet `redis-v2` (redis+sentinel+exporter per pod), quorum=2. Clients use HAProxy only, no sentinel fallback. | redis |
+| redis | Shared Redis at `redis.redis.svc.cluster.local` | redis |
 | immich | Photo management (GPU) | immich |
 | nvidia | GPU device plugin | nvidia |
 | metrics-server | K8s metrics | metrics-server |
@@ -45,8 +45,7 @@
 | nextcloud | File sync/share | nextcloud |
 | calibre | E-book management (may be merged into ebooks stack) | calibre |
 | onlyoffice | Document editing | onlyoffice |
-| f1-stream | F1 streaming (uses chrome-service for hmembeds verifier) | f1-stream |
-| chrome-service | Headed Chromium WebSocket pool (`ws://chrome-service.chrome-service.svc:3000/<token>`) for sibling services driving anti-bot embeds | chrome-service |
+| f1-stream | F1 streaming | f1-stream |
 | rybbit | Analytics | rybbit |
 | isponsorblocktv | SponsorBlock for TV | isponsorblocktv |
 | actualbudget | Budgeting (factory pattern) | actualbudget |
@@ -138,18 +137,3 @@ jellyfin, jellyseerr, tdarr, affine, health, family, openclaw
 - `*.viktor.actualbudget` - Actualbudget factory instances
 - `*.freedify` - Freedify factory instances
 - `mailserver.*` - Mail server components (antispam, admin)
-
-## Key Runbooks
-
-Operational surfaces that aren't k8s services (VMs, pipelines, host-side
-procedures) are documented in `infra/docs/runbooks/`:
-
-| Surface | Runbook |
-|---|---|
-| Private Docker registry VM (10.0.20.10) | [registry-vm.md](../../docs/runbooks/registry-vm.md) |
-| Rebuild after orphan-index incident | [registry-rebuild-image.md](../../docs/runbooks/registry-rebuild-image.md) |
-| PVE host operations (backups, LVM) | [proxmox-host.md](../../docs/runbooks/proxmox-host.md) |
-| NFS prerequisites and CSI mount options | [nfs-prerequisites.md](../../docs/runbooks/nfs-prerequisites.md) |
-| pfSense + Unbound DNS | [pfsense-unbound.md](../../docs/runbooks/pfsense-unbound.md) |
-| Mailserver PROXY-protocol / HAProxy | [mailserver-pfsense-haproxy.md](../../docs/runbooks/mailserver-pfsense-haproxy.md) |
-| Technitium apply flow | [technitium-apply.md](../../docs/runbooks/technitium-apply.md) |
diff --git a/.claude/skills/archived/setup-remote-executor.md b/.claude/skills/archived/setup-remote-executor.md
new file mode 100644
index 00000000..f826c7cc
--- /dev/null
+++ b/.claude/skills/archived/setup-remote-executor.md
@@ -0,0 +1,102 @@
+# Setup Shared Remote Executor
+
+Skill for setting up Claude Code's shared remote executor in new projects.
+
+## When to Use
+- When adding Claude Code support to a new project
+- When the user says "set up remote executor for this project"
+- When working on a new project that needs remote command execution
+
+## Prerequisites
+- Shared executor already deployed at `~/.claude/` on wizard@10.0.10.10
+- Project accessible via NFS from both macOS and the remote VM
+
+## Setup Steps
+
+### 1. Create .claude Directory
+```bash
+mkdir -p .claude/sessions
+```
+
+### 2. Create session-exec.sh Wrapper
+Create `.claude/session-exec.sh` with the following content (adjust PROJECT_ROOT):
+
+```bash
+#!/bin/bash
+# Project-Local Session Helper - Wrapper for shared executor
+
+set -euo pipefail
+
+SHARED_SESSION_EXEC="/home/wizard/.claude/session-exec.sh"
+PROJECT_ROOT="/home/wizard/path/to/project"  # UPDATE THIS
+
+if [ -f "$SHARED_SESSION_EXEC" ]; then
+    if [ "${1:-}" = "create" ] || [ -z "${1:-}" ]; then
+        "$SHARED_SESSION_EXEC" create "$PROJECT_ROOT"
+    else
+        "$SHARED_SESSION_EXEC" "$@"
+    fi
+else
+    SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+    SESSIONS_DIR="$SCRIPT_DIR/sessions"
+    SESSION_ID="${1:-$(date +%s)-$$-$RANDOM}"
+    ACTION="${2:-create}"
+    SESSION_DIR="$SESSIONS_DIR/$SESSION_ID"
+
+    case "$ACTION" in
+        create|init|"")
+            mkdir -p "$SESSION_DIR"
+            echo "ready" > "$SESSION_DIR/cmd_status.txt"
+            echo "$PROJECT_ROOT" > "$SESSION_DIR/workdir.txt"
+            > "$SESSION_DIR/cmd_input.txt"
+            > "$SESSION_DIR/cmd_output.txt"
+            echo "$SESSION_ID"
+            ;;
+        cleanup|remove|delete)
+            [ -d "$SESSION_DIR" ] && rm -rf "$SESSION_DIR"
+            ;;
+        status)
+            [ -d "$SESSION_DIR" ] && cat "$SESSION_DIR/cmd_status.txt"
+            ;;
+        list)
+            [ -d "$SESSIONS_DIR" ] && ls -1 "$SESSIONS_DIR" 2>/dev/null
+            ;;
+    esac
+fi
+```
+
+Make executable: `chmod +x .claude/session-exec.sh`
+
+### 3. Link Sessions Directory (on remote VM)
+Run on the remote VM to add project sessions to the shared executor:
+
+```bash
+# Option A: Symlink project sessions (if using project-local sessions)
+ln -sfn /path/to/project/.claude/sessions ~/.claude/sessions
+
+# Option B: Use shared sessions (all projects share one directory)
+# Just ensure ~/.claude/sessions exists
+```
+
+### 4. Create CLAUDE.md
+Add execution instructions to `.claude/CLAUDE.md`:
+
+```markdown
+## Remote Command Execution
+Uses shared executor at `~/.claude/` on wizard@10.0.10.10.
+
+### Usage
+\```bash
+SESSION_ID=$(.claude/session-exec.sh)
+echo "command" > .claude/sessions/$SESSION_ID/cmd_input.txt
+sleep 1 && cat .claude/sessions/$SESSION_ID/cmd_status.txt
+cat .claude/sessions/$SESSION_ID/cmd_output.txt
+\```
+
+Start executor: `~/.claude/remote-executor.sh` (on remote VM)
+```
+
+## Shared Executor Location
+- Scripts: `~/.claude/remote-executor.sh`, `~/.claude/session-exec.sh`
+- Sessions: `~/.claude/sessions/`
+- Remote VM: wizard@10.0.10.10
diff --git a/.claude/skills/cluster-health/SKILL.md b/.claude/skills/cluster-health/SKILL.md
index ef3ae25f..be18fc9f 100644
--- a/.claude/skills/cluster-health/SKILL.md
+++ b/.claude/skills/cluster-health/SKILL.md
@@ -7,314 +7,339 @@ description: |
   (3) User asks to fix stuck pods, evicted pods, or CrashLoopBackOff,
   (4) User mentions "health check", "cluster status", "cluster health",
   (5) User asks "is everything running" or "any problems".
-  Runs 42 cluster-wide checks (nodes, workloads, monitoring, certs,
-  backups, external reachability) with safe auto-fix for evicted pods.
+  Runs 8 standard K8s health checks with safe auto-fix for evicted pods
+  and stuck CrashLoopBackOff pods.
 author: Claude Code
-version: 2.0.0
-date: 2026-04-19
+version: 1.0.0
+date: 2026-02-21
 ---
 
 # Cluster Health Check
 
-## MANDATORY: Run the script first
+## Overview
 
-When this skill is invoked, your **first action** must be to run the
-cluster health check script and reason over its output before doing
-anything else. Do not improvise individual `kubectl` calls — the
-script is the authoritative surface.
+- **Script**: `/workspace/infra/.claude/cluster-health.sh`
+- **Schedule**: CronJob runs every 30 minutes in the `openclaw` namespace
+- **Slack notifications**: Posts results to the webhook URL in `$SLACK_WEBHOOK_URL`
+- **Auto-fix**: Automatically deletes evicted/failed pods and CrashLoopBackOff pods with >10 restarts
+- **Exit code**: 0 = healthy, 1 = issues found
+
+## Quick Check
+
+Run the health check interactively:
 
 ```bash
-cd /home/wizard/code
-bash infra/scripts/cluster_healthcheck.sh --json | tee /tmp/cluster-health.json
+# Report only, no Slack notification
+bash /workspace/infra/.claude/cluster-health.sh --no-slack
+
+# Full run with Slack notification
+bash /workspace/infra/.claude/cluster-health.sh
+
+# Report only, no auto-fix and no Slack
+bash /workspace/infra/.claude/cluster-health.sh --no-fix --no-slack
 ```
 
-If the session is rooted elsewhere, fall back to the absolute path:
+## What It Checks
 
-```bash
-bash /home/wizard/code/infra/scripts/cluster_healthcheck.sh --json
-```
-
-Then:
-
-1. Parse the JSON. Report the PASS/WARN/FAIL counts + overall verdict.
-2. Iterate every FAIL and WARN check, describe what tripped, and propose
-   the remediation path (use the recipes below).
-3. Only reach for ad-hoc `kubectl` commands when investigating a
-   specific failure beyond what the script reported.
-
-Exit codes: `0` = healthy, `1` = warnings only, `2` = failures.
-
-## Quick flags
-
-```bash
-# Human-readable report (default), no auto-fix
-bash infra/scripts/cluster_healthcheck.sh
-
-# Machine-readable JSON summary
-bash infra/scripts/cluster_healthcheck.sh --json
-
-# Only show WARN + FAIL (suppress PASS noise)
-bash infra/scripts/cluster_healthcheck.sh --quiet
-
-# Enable auto-fix (delete evicted pods, kick stuck CrashLoop pods)
-bash infra/scripts/cluster_healthcheck.sh --fix
-
-# Combined: quiet JSON without auto-fix
-bash infra/scripts/cluster_healthcheck.sh --no-fix --quiet --json
-
-# Custom kubeconfig
-bash infra/scripts/cluster_healthcheck.sh --kubeconfig /path/to/config
-```
-
-## What It Checks (42 checks)
-
-| # | Check | Notes |
-|---|-------|-------|
-| 1 | Node Status | NotReady nodes, version drift |
-| 2 | Node Resources | CPU/mem >80% (warn) / >90% (fail) |
-| 3 | Node Conditions | MemoryPressure / DiskPressure / PIDPressure |
-| 4 | Problematic Pods | CrashLoopBackOff / Error / ImagePullBackOff |
-| 5 | Evicted/Failed Pods | `status.phase=Failed` |
-| 6 | DaemonSets | desired == ready |
-| 7 | Deployments | ready == desired replicas |
-| 8 | PVC Status | all Bound |
-| 9 | HPA Health | targets not `<unknown>`, utilization <100% |
-| 10 | CronJob Failures | job conditions `Failed=True` in last 24h |
-| 11 | CrowdSec Agents | all pods Running |
-| 12 | Ingress Routes | every ingress has an LB IP + Traefik LB |
-| 13 | Prometheus Alerts | count of firing alerts |
-| 14 | Uptime Kuma Monitors | internal + external monitors up |
-| 15 | ResourceQuota Pressure | any quota >80% used |
-| 16 | StatefulSets | ready == desired |
-| 17 | Node Disk Usage | ephemeral-storage <80% |
-| 18 | Helm Release Health | all `deployed` (no `pending-*`) |
-| 19 | Kyverno Policy Engine | all pods Running |
-| 20 | NFS Connectivity | 192.168.1.127 showmount / port 2049 |
-| 21 | DNS Resolution | Technitium resolves internal + external |
-| 22 | TLS Certificate Expiry | TLS `Secret` certs >30d valid |
-| 23 | GPU Health | nvidia namespace + device-plugin Running |
-| 24 | Cloudflare Tunnel | pods Running |
-| 25 | Resource Usage | node CPU/mem headroom |
-| 26 | HA Sofia — Entity Availability | Home Assistant unavailable/unknown count |
-| 27 | HA Sofia — Integration Health | config entries setup_error / not_loaded |
-| 28 | HA Sofia — Automation Status | disabled / stale (>30d) automations |
-| 29 | HA Sofia — System Resources | HA CPU / mem / disk |
-| 30 | Hardware Exporters | snmp / idrac-redfish / proxmox / tuya pods + scrapes |
-| 31 | cert-manager — Certificate Readiness | Certificate CRs with `Ready!=True` |
-| 32 | cert-manager — Certificate Expiry (<14d) | notAfter within 14d |
-| 33 | cert-manager — Failed CertificateRequests | `Ready=False, reason=Failed` |
-| 34 | Backup Freshness — Per-DB Dumps | MySQL + PG dumps within 25h |
-| 35 | Backup Freshness — Offsite Sync | Pushgateway `backup_last_success_timestamp` <27h |
-| 36 | Backup Freshness — LVM PVC Snapshots | newest thin snapshot <25h (SSH PVE) |
-| 37 | Monitoring — Prometheus + Alertmanager | `/-/ready` + AM pods Running |
-| 38 | Monitoring — Vault Sealed Status | `vault status` reports `Sealed: false` |
-| 39 | Monitoring — ClusterSecretStore Ready | `vault-kv` + `vault-database` Ready |
-| 40 | External — Cloudflared + Authentik Replicas | deployments fully ready |
-| 41 | External — ExternalAccessDivergence Alert | alert not firing |
-| 42 | External — Traefik 5xx Rate (15m) | top-10 services emitting 5xx |
+| # | Check | Auto-Fix | Alerts |
+|---|-------|----------|--------|
+| 1 | **Node Health** — NotReady nodes, MemoryPressure, DiskPressure, PIDPressure | No | Yes |
+| 2 | **Pod Health** — CrashLoopBackOff, ImagePullBackOff, ErrImagePull, Error | Yes (CrashLoop >10 restarts) | Yes |
+| 3 | **Evicted/Failed Pods** — Pods in `Failed` phase | Yes (deletes all) | Yes |
+| 4 | **Failed Deployments** — Deployments with ready != desired replicas | No | Yes |
+| 5 | **Pending PVCs** — PersistentVolumeClaims not in `Bound` state | No | Yes |
+| 6 | **Resource Pressure** — Node CPU or memory >80% (warn) or >90% (issue) | No | Yes |
+| 7 | **CronJob Failures** — Failed CronJob-owned Jobs in the last 24h | No | Yes |
+| 8 | **DaemonSet Health** — DaemonSets with desired != ready | No | Yes |
 
 ## Safe Auto-Fix Rules
 
-`--fix` only performs operations that are genuinely reversible and
-observable. Nothing here rewrites Terraform state or mutates the cluster
-beyond "delete pod".
+### Safe to auto-fix (the script does these automatically)
 
-### Done automatically by `--fix`
+1. **Evicted/Failed pods** — These are already terminated and just cluttering the namespace:
+   ```bash
+   kubectl delete pods -A --field-selector=status.phase=Failed
+   ```
 
-- **Evicted / Failed pods** — delete them; the controller recreates.
-  ```bash
-  kubectl delete pods -A --field-selector=status.phase=Failed
-  ```
-- **CrashLoopBackOff pods with >10 restarts** — delete once to reset
-  backoff timer.
+2. **CrashLoopBackOff pods with >10 restarts** — The pod is stuck in a crash loop; deleting lets the controller recreate it with a fresh backoff timer:
+   ```bash
+   kubectl delete pod -n <namespace> <pod-name> --grace-period=0
+   ```
 
 ### NEVER auto-fix (requires human investigation)
 
-- NotReady nodes
-- MemoryPressure / DiskPressure / PIDPressure
-- ImagePullBackOff (usually a bad tag / registry credential)
-- Deployment ready-replica mismatch
-- Pending PVCs
-- Node CPU/memory >90%
-- CronJob failures
-- DaemonSet desired != ready
-- Vault sealed
-- ClusterSecretStore not Ready
-- cert-manager Certificate failures
-- Backup freshness regressions
-- Any external-reachability failure
+- **NotReady nodes** — Could be network, kubelet, or hardware issue; needs SSH investigation
+- **DiskPressure / MemoryPressure / PIDPressure** — Root cause must be identified
+- **ImagePullBackOff** — Usually a wrong image tag or registry issue; needs config fix
+- **Failed deployments** — Could be resource limits, bad config, missing secrets
+- **Pending PVCs** — Usually NFS export missing or storage class issue
+- **Resource pressure >90%** — Need to identify which pods are consuming resources
+- **CronJob failures** — Need to check job logs to understand why it failed
+- **DaemonSet issues** — Could be node taints, resource limits, or image issues
 
-## Deep-investigation recipes per failure mode
+## Deep Investigation
 
-### Node Issues (checks 1, 3, 17, 25)
+When the health check reports issues, use these commands to investigate further.
+
+### Node Issues
 
 ```bash
-kubectl describe node <node>
+# Describe the problematic node (events, conditions, capacity)
+kubectl describe node <node-name>
+
+# Check resource usage across all nodes
 kubectl top nodes
-kubectl get events --field-selector involvedObject.name=<node> --sort-by='.lastTimestamp'
-# SSH to the node
-ssh root@10.0.20.10X
+
+# Check recent events on a specific node
+kubectl get events --field-selector involvedObject.name=<node-name> --sort-by='.lastTimestamp'
+
+# SSH to the node for direct inspection
+ssh root@<node-ip>
 systemctl status kubelet
 journalctl -u kubelet --since "30 minutes ago" | tail -100
-df -h ; free -h
+df -h
+free -h
 ```
 
-Node IPs: `10.0.20.100` master, `.101` node1 (GPU), `.102` node2,
-`.103` node3, `.104` node4.
-
-### Pod Issues (checks 4, 5, 11, 19)
+### Pod Issues
 
 ```bash
-kubectl describe pod -n <ns> <pod>
-kubectl logs -n <ns> <pod> --tail=200
-kubectl logs -n <ns> <pod> --previous --tail=200
-kubectl get events -n <ns> --sort-by='.lastTimestamp' | tail -20
+# Describe the pod (events, conditions, container statuses)
+kubectl describe pod -n <namespace> <pod-name>
+
+# Check current logs
+kubectl logs -n <namespace> <pod-name> --tail=100
+
+# Check logs from the previous crashed container
+kubectl logs -n <namespace> <pod-name> --previous --tail=100
+
+# Check events in the namespace
+kubectl get events -n <namespace> --sort-by='.lastTimestamp' | tail -20
+
+# Check all pods in a namespace
+kubectl get pods -n <namespace> -o wide
 ```
 
-Common failure causes: OOMKilled (raise mem limit in Terraform), bad
-config / missing env var, DB connection failure (check `dbaas` pods),
-NFS mount failure (`showmount -e 192.168.1.127`), stale
-imagePullSecret.
-
-### Deployment / StatefulSet / DaemonSet (checks 6, 7, 16)
+### Deployment Issues
 
 ```bash
-kubectl describe deployment -n <ns> <name>
-kubectl rollout status deployment -n <ns> <name>
-kubectl rollout history deployment -n <ns> <name>
-kubectl get rs -n <ns> -l app=<app>
+# Describe the deployment (strategy, conditions, events)
+kubectl describe deployment -n <namespace> <deployment-name>
+
+# Check rollout status
+kubectl rollout status deployment -n <namespace> <deployment-name>
+
+# Check rollout history
+kubectl rollout history deployment -n <namespace> <deployment-name>
+
+# Check the replicaset
+kubectl get rs -n <namespace> -l app=<app-label>
 ```
 
-### PVC (check 8)
+### PVC Issues
 
 ```bash
-kubectl describe pvc -n <ns> <pvc>
-kubectl get events -n <ns> --field-selector reason=FailedMount --sort-by='.lastTimestamp'
-kubectl get pv | grep <pvc>
-showmount -e 192.168.1.127
+# Describe the PVC (events, status, storage class)
+kubectl describe pvc -n <namespace> <pvc-name>
+
+# Check PVs
+kubectl get pv
+
+# Check events related to PVCs
+kubectl get events -n <namespace> --field-selector reason=FailedMount --sort-by='.lastTimestamp'
+
+# Verify NFS export exists
+showmount -e 10.0.10.15 | grep <service-name>
 ```
 
-### cert-manager (checks 31, 32, 33)
+### Resource Pressure
 
 ```bash
-kubectl get certificate -A
-kubectl describe certificate -n <ns> <name>
-kubectl get certificaterequest -A
-kubectl describe certificaterequest -n <ns> <name>
-kubectl logs -n cert-manager deploy/cert-manager | tail -50
+# Top nodes (CPU and memory usage)
+kubectl top nodes
+
+# Top pods sorted by memory (cluster-wide)
+kubectl top pods -A --sort-by=memory | head -20
+
+# Top pods sorted by CPU (cluster-wide)
+kubectl top pods -A --sort-by=cpu | head -20
+
+# Check resource requests/limits in a namespace
+kubectl describe resourcequota -n <namespace>
+kubectl describe limitrange -n <namespace>
 ```
 
-Common causes: ACME HTTP-01 challenge blocked, ClusterIssuer missing
-DNS provider secret, rate-limit from Let's Encrypt.
+## Common Remediation
 
-### Backups (checks 34, 35, 36)
+### Persistent CrashLoopBackOff
 
-```bash
-# Per-DB dumps (inside the DB pod)
-kubectl exec -n dbaas mysql-standalone-0 -- ls -lah /backup/per-db/
-kubectl exec -n dbaas pg-cluster-0 -- ls -lah /backup/per-db/
+A pod keeps crashing even after the auto-fix deletes it.
 
-# Pushgateway metrics
-kubectl exec -n monitoring deploy/prometheus-server -- \
-    wget -qO- http://prometheus-prometheus-pushgateway:9091/metrics | \
-    grep backup_last_success_timestamp
+1. **Check logs from the crashed container**:
+   ```bash
+   kubectl logs -n <namespace> <pod-name> --previous --tail=200
+   ```
 
-# LVM snapshots on PVE host
-ssh -o BatchMode=yes root@192.168.1.127 \
-    'lvs -o lv_name,lv_time,lv_size --noheadings | grep snap'
-```
+2. **Check the pod description for clues**:
+   ```bash
+   kubectl describe pod -n <namespace> <pod-name>
+   ```
+   Look for:
+   - `OOMKilled` in Last State — the container ran out of memory
+   - `Error` with exit code 1 — application error (bad config, missing env var, DB connection failure)
+   - `Error` with exit code 137 — killed by OOM killer or liveness probe
+   - `Error` with exit code 143 — SIGTERM (graceful shutdown failure)
 
-If offsite sync is stale, the common cause is the
-`offsite-sync-backup.service` systemd unit on the PVE host failing.
-`ssh root@192.168.1.127 'systemctl status offsite-sync-backup'`.
+3. **Common causes**:
+   - **OOMKilled**: Increase memory limits in Terraform (see below)
+   - **Bad config**: Check environment variables, secrets, config maps
+   - **DB connection failure**: Verify the database pod is running (`kubectl get pods -n dbaas`)
+   - **NFS mount failure**: Verify NFS export exists (`showmount -e 10.0.10.15`)
+   - **Missing secret**: Check if TLS secret or other secrets exist in the namespace
 
-### Monitoring stack (checks 37, 38, 39)
+### OOMKilled
 
-```bash
-# Prometheus
-kubectl exec -n monitoring deploy/prometheus-server -- wget -qO- http://localhost:9090/-/ready
-kubectl logs -n monitoring deploy/prometheus-server --tail=100
+The container was killed because it exceeded its memory limit.
 
-# Alertmanager
-kubectl get pods -n monitoring | grep alertmanager
-kubectl logs -n monitoring -l app=prometheus-alertmanager --tail=100
+1. **Check current limits**:
+   ```bash
+   kubectl describe pod -n <namespace> <pod-name> | grep -A 5 "Limits"
+   ```
 
-# Vault
-kubectl exec -n vault vault-0 -- sh -c 'VAULT_ADDR=http://127.0.0.1:8200 vault status'
-# If sealed: check raft peers with `vault operator raft list-peers` and unseal.
+2. **Fix in Terraform** — Edit `modules/kubernetes/<service>/main.tf` and increase the memory limit:
+   ```hcl
+   resources {
+     limits = {
+       memory = "2Gi"  # Increase from current value
+     }
+   }
+   ```
 
-# ClusterSecretStore
-kubectl get clustersecretstore
-kubectl describe clustersecretstore vault-kv vault-database
-kubectl logs -n external-secrets deploy/external-secrets --tail=100
-```
+3. **Apply the change**:
+   ```bash
+   cd /workspace/infra
+   terraform apply -target=module.kubernetes_cluster.module.<service> -auto-approve
+   ```
 
-### External reachability (checks 40, 41, 42)
+### ImagePullBackOff
 
-```bash
-# Cloudflared
-kubectl get pods -n cloudflared
-kubectl logs -n cloudflared -l app=cloudflared --tail=100
+The container image cannot be pulled.
 
-# Authentik
-kubectl get pods -n authentik -l app=authentik-server
-kubectl logs -n authentik -l app=authentik-server --tail=100
+1. **Check the exact error**:
+   ```bash
+   kubectl describe pod -n <namespace> <pod-name> | grep -A 5 "Events"
+   ```
 
-# ExternalAccessDivergence alert
-kubectl exec -n monitoring deploy/prometheus-server -- \
-    wget -qO- 'http://localhost:9090/api/v1/alerts' | \
-    python3 -m json.tool | grep -A 5 ExternalAccessDivergence
+2. **Common causes**:
+   - **Wrong image tag**: Verify the tag exists on the registry (Docker Hub, ghcr.io, etc.)
+   - **Private registry without credentials**: Check if imagePullSecrets are configured
+   - **Pull-through cache issue**: The registry cache at `10.0.20.10` may have a stale entry
+     ```bash
+     # Check pull-through cache ports:
+     # 5000 = docker.io, 5010 = ghcr.io, 5020 = quay.io, 5030 = registry.k8s.io
+     curl -s http://10.0.20.10:5000/v2/_catalog | python3 -m json.tool
+     ```
+   - **Registry rate limit**: Docker Hub free tier has pull limits; pull-through cache helps avoid this
 
-# Traefik 5xx — find the hot service
-kubectl exec -n monitoring deploy/prometheus-server -- \
-    wget -qO- 'http://localhost:9090/api/v1/query?query=topk(10,rate(traefik_service_requests_total{code=~%225..%22}%5B15m%5D))' \
-    | python3 -m json.tool
-```
+3. **Fix**: Update the image tag in the service's Terraform module and re-apply.
 
-### OOMKilled remediation
+### Node NotReady
 
-1. `kubectl describe pod -n <ns> <pod> | grep -A 5 Limits`
-2. Edit `infra/modules/kubernetes/<service>/main.tf` and raise
-   `resources.limits.memory`.
-3. `cd /home/wizard/code/infra && scripts/tg apply` (Tier 1) or
-   `terraform apply -target=module.<service>` as appropriate.
+A node has gone NotReady.
 
-### ImagePullBackOff remediation
+1. **Check node conditions**:
+   ```bash
+   kubectl describe node <node-name> | grep -A 20 "Conditions"
+   ```
 
-1. `kubectl describe pod -n <ns> <pod> | grep -A 5 Events`
-2. Verify tag exists on the source registry.
-3. Check pull-through cache at `10.0.20.10:{5000,5010,5020,5030}`.
-4. Update the image tag in Terraform + re-apply.
+2. **SSH to the node and check kubelet**:
+   ```bash
+   ssh root@<node-ip>
+   systemctl status kubelet
+   journalctl -u kubelet --since "10 minutes ago" | tail -50
+   ```
 
-### Persistent CrashLoopBackOff after auto-fix
+3. **Check resources**:
+   ```bash
+   # On the node
+   df -h          # Disk space
+   free -h        # Memory
+   top -bn1       # CPU/processes
+   ```
 
-1. `kubectl logs -n <ns> <pod> --previous --tail=200`
-2. `kubectl describe pod -n <ns> <pod>` and check Last State:
-   - `OOMKilled` → raise memory limit
-   - Exit code 137 → OOM or probe killed
-   - Exit code 143 → SIGTERM / graceful shutdown failed
-3. Cross-check dbaas + NFS + secrets are healthy.
+4. **Node IPs** (for SSH):
+   - `10.0.20.100` — k8s-master
+   - `10.0.20.101` — k8s-node1 (GPU)
+   - `10.0.20.102` — k8s-node2
+   - `10.0.20.103` — k8s-node3
+   - `10.0.20.104` — k8s-node4
 
-## Notes on the canonical / hardlink setup
+## Slack Webhook
 
-The authoritative copy of this SKILL.md lives at
-`/home/wizard/code/.claude/skills/cluster-health/SKILL.md`. A hardlink
-at `/home/wizard/code/infra/.claude/skills/cluster-health/SKILL.md`
-points to the same inode so infra-rooted sessions also discover the
-skill.
+The script posts results to the Slack incoming webhook URL in `$SLACK_WEBHOOK_URL`. The message format uses Slack mrkdwn:
+- All clear: green checkmark with node/pod count
+- Warnings only: warning icon with details
+- Issues found: red alert icon with auto-fixes applied and remaining issues
 
-To verify the hardlink is intact:
+The webhook URL is passed as an environment variable from `openclaw_skill_secrets` in `terraform.tfvars`.
 
-```bash
-stat -c '%i %n' \
-    /home/wizard/code/.claude/skills/cluster-health/SKILL.md \
-    /home/wizard/code/infra/.claude/skills/cluster-health/SKILL.md
-```
+## Infrastructure
 
-Both should print the same inode number. If they diverge (e.g. `git
-checkout` replaced the file rather than updating it), re-link:
+| Component | Path / Location |
+|-----------|----------------|
+| Health check script | `/workspace/infra/.claude/cluster-health.sh` (in-pod) or `.claude/cluster-health.sh` (repo) |
+| Terraform module | `modules/kubernetes/openclaw/main.tf` |
+| CronJob definition | Defined in the OpenClaw Terraform module |
+| Existing full healthcheck | `scripts/cluster_healthcheck.sh` (local-only, 24 checks with color output) |
+| Infra repo (in pod) | `/workspace/infra` |
+| kubectl (in pod) | `/tools/kubectl` |
+| terraform (in pod) | `/tools/terraform` |
 
-```bash
-ln -f /home/wizard/code/.claude/skills/cluster-health/SKILL.md \
-      /home/wizard/code/infra/.claude/skills/cluster-health/SKILL.md
-```
+## Auto-File Incidents for SEV1/SEV2
+
+After running health checks, if **SEV1 or SEV2 issues** are found (node down, multiple services affected, core service outage, or single important service down), auto-file a GitHub Issue:
+
+### Severity Classification
+- **SEV1**: Node NotReady, multiple services down, data at risk, core service outage (DNS, auth, ingress, databases)
+- **SEV2**: Single non-core service down, degraded performance, persistent CrashLoopBackOff
+- **SEV3**: Warnings only, resource pressure <90%, cosmetic — do NOT auto-file
+
+### Workflow
+1. **Dedup check**: Before filing, query open incidents:
+   ```bash
+   GITHUB_TOKEN=$(vault kv get -field=github_pat secret/viktor)
+   curl -s -H "Authorization: token $GITHUB_TOKEN" \
+     "https://api.github.com/repos/ViktorBarzin/infra/issues?labels=incident&state=open&per_page=50"
+   ```
+   If an open issue already covers the same service/namespace, **skip filing**.
+
+2. **File the issue** with labels `incident`, `sev1` or `sev2`, `postmortem-required`:
+   - Title: `[AUTO] <Service/Namespace> — <brief symptom>`
+   - Body: full diagnostic dump (pod status, events, alerts, node state)
+   - The issue-automation GHA workflow will trigger the post-mortem pipeline automatically
+
+3. **Auto-close recovered services**: If a service that previously had an auto-filed incident is now healthy:
+   ```bash
+   # Comment and close
+   curl -s -X POST -H "Authorization: token $GITHUB_TOKEN" \
+     "https://api.github.com/repos/ViktorBarzin/infra/issues/<N>/comments" \
+     -d '{"body": "**Resolved** — Service recovered. Auto-closed by cluster health check."}'
+   curl -s -X PATCH -H "Authorization: token $GITHUB_TOKEN" \
+     "https://api.github.com/repos/ViktorBarzin/infra/issues/<N>" \
+     -d '{"state": "closed"}'
+   ```
+
+## Post-Mortem Auto-Suggest
+
+After running a healthcheck, if the cluster has **recovered from an unhealthy state** (previous run showed FAIL items that are now resolved), suggest writing a post-mortem:
+
+> The cluster has recovered from the previous unhealthy state. Would you like me to write a post-mortem? Run `/post-mortem` to generate one.
+
+This ensures incidents are documented while context is fresh.
+
+## Notes
+
+1. This script is designed to run inside the OpenClaw pod where kubectl is pre-configured via the ServiceAccount
+2. The full `scripts/cluster_healthcheck.sh` script runs 24 checks and is meant for local interactive use; this skill's script runs 8 core checks optimized for automated CronJob execution
+3. When investigating issues interactively, prefer running commands directly rather than re-running the script
+4. All Terraform changes must go through the `.tf` files — never use `kubectl apply/edit/patch` for persistent changes
diff --git a/.claude/skills/uptime-kuma/SKILL.md b/.claude/skills/uptime-kuma/SKILL.md
index dc982b4b..912912d6 100644
--- a/.claude/skills/uptime-kuma/SKILL.md
+++ b/.claude/skills/uptime-kuma/SKILL.md
@@ -155,19 +155,3 @@ Common port is 80. Exceptions:
 3. Add `time.sleep(0.3)` between bulk operations to avoid overloading
 4. Homepage dashboard widget slug: `cluster-internal`
 5. Cloudflare-proxied at `uptime.viktorbarzin.me`
-
-## Terraform-Managed Monitors
-
-There is NO `louislam/uptime-kuma` Terraform provider. Two patterns exist for
-declarative monitor management in this stack:
-
-- **External HTTPS monitors** — auto-discovered from ingress annotations by the
-  `external-monitor-sync` CronJob (`*/10 * * * *`). Opt-out via
-  `uptime.viktorbarzin.me/external-monitor: "false"` on the ingress.
-- **Internal monitors (DBs, non-HTTP)** — declared in the
-  `local.internal_monitors` list in `stacks/uptime-kuma/modules/uptime-kuma/main.tf`
-  and synced by the `internal-monitor-sync` CronJob. To add one, append to the
-  list (provide `name`, `type`, `database_connection_string`,
-  `database_password_vault_key`, `interval`, `retry_interval`, `max_retries`)
-  and `scripts/tg apply`. The sync is idempotent — looks up by name, creates
-  if missing, patches if drifted. Existing monitors keep their id and history.
diff --git a/.gitignore b/.gitignore
index 3475f32a..759ff6f6 100755
--- a/.gitignore
+++ b/.gitignore
@@ -65,11 +65,6 @@ state/infra/
 backend.tf
 providers.tf
 .terraform.lock.hcl
-cloudflare_provider.tf
-tiers.tf
-stacks/*/cloudflare_provider.tf
-stacks/*/tiers.tf
-stacks/*/terragrunt_rendered.json
 
 # Kubernetes config (sensitive)
 config
diff --git a/.woodpecker/build-ci-image.yml b/.woodpecker/build-ci-image.yml
index 796426ac..f08c00ce 100644
--- a/.woodpecker/build-ci-image.yml
+++ b/.woodpecker/build-ci-image.yml
@@ -1,85 +1,38 @@
 # Build the CI tools Docker image used by all infra pipelines.
-# Triggers on push that touches ci/Dockerfile, or manual (API/UI) so
-# rebuilds after a registry incident don't need a cosmetic Dockerfile edit.
+# Triggers on changes to ci/Dockerfile only (push to master).
 
 when:
-  - event: push
-    branch: master
-    path:
-      include:
-        - 'ci/Dockerfile'
-  - event: manual
+  event: push
+  branch: master
+  path:
+    include:
+      - 'ci/Dockerfile'
 
 steps:
   - name: build-and-push
     image: woodpeckerci/plugin-docker-buildx
     settings:
-      # Phase 4 of forgejo-registry-consolidation 2026-05-07 —
-      # registry.viktorbarzin.me dropped, Forgejo is the only target.
-      repo:
-        - forgejo.viktorbarzin.me/viktor/infra-ci
+      repo: registry.viktorbarzin.me:5050/infra-ci
       dockerfile: ci/Dockerfile
       context: ci/
       tags:
         - latest
         - "${CI_COMMIT_SHA:0:8}"
       platforms: linux/amd64
+      registry: registry.viktorbarzin.me:5050
       logins:
-        - registry: forgejo.viktorbarzin.me
+        - registry: registry.viktorbarzin.me:5050
           username:
-            from_secret: forgejo_user
+            from_secret: registry_user
           password:
-            from_secret: forgejo_push_token
-
-  # Post-push integrity check is now redundant with the every-15min
-  # forgejo-integrity-probe in stacks/monitoring/, which walks
-  # /v2/_catalog + HEADs every blob across the entire Forgejo registry.
-  # If a corruption pattern emerges that the periodic probe misses,
-  # restore a verify step similar to the pre-Phase-4 version (see
-  # commit 49f4956f) but pointed at forgejo.viktorbarzin.me.
-
-  # Break-glass tarball: save the just-pushed infra-ci image to disk on the
-  # registry VM (10.0.20.10) so we can `docker load` it back into a node
-  # when Forgejo is unreachable. Pulls from Forgejo (the only registry now).
-  # Best-effort — failure here doesn't fail the pipeline.
-  # Recovery procedure: docs/runbooks/forgejo-registry-breakglass.md.
-  - name: breakglass-tarball
-    image: alpine:3.20
-    failure: ignore
-    environment:
-      REGISTRY_SSH_KEY:
-        from_secret: registry_ssh_key
-      FORGEJO_USER:
-        from_secret: forgejo_user
-      FORGEJO_PASS:
-        from_secret: forgejo_push_token
-    commands:
-      - apk add --no-cache openssh-client
-      - mkdir -p ~/.ssh && chmod 700 ~/.ssh
-      - printf '%s\n' "$REGISTRY_SSH_KEY" > ~/.ssh/id_ed25519
-      - chmod 600 ~/.ssh/id_ed25519
-      - ssh-keyscan -t ed25519 10.0.20.10 >> ~/.ssh/known_hosts 2>/dev/null
-      - SHA=${CI_COMMIT_SHA:0:8}
-      - |
-        ssh -n -o BatchMode=yes root@10.0.20.10 "
-          set -e
-          mkdir -p /opt/registry/data/private/_breakglass
-          IMAGE=forgejo.viktorbarzin.me/viktor/infra-ci:$SHA
-          echo \$FORGEJO_PASS | docker login forgejo.viktorbarzin.me -u \$FORGEJO_USER --password-stdin
-          docker pull \$IMAGE
-          docker save \$IMAGE | gzip > /opt/registry/data/private/_breakglass/infra-ci-$SHA.tar.gz
-          ln -sfn infra-ci-$SHA.tar.gz /opt/registry/data/private/_breakglass/infra-ci-latest.tar.gz
-          ls -t /opt/registry/data/private/_breakglass/infra-ci-*.tar.gz \
-            | grep -v 'latest' | tail -n +6 | xargs -r rm -v
-          ls -lh /opt/registry/data/private/_breakglass/
-        "
+            from_secret: registry_password
 
   - name: slack
     image: curlimages/curl
     commands:
       - |
         curl -s -X POST -H 'Content-type: application/json' \
-          --data "{\"text\":\"CI image built: forgejo.viktorbarzin.me/viktor/infra-ci:${CI_COMMIT_SHA:0:8} (and registry-private mirror)\"}" \
+          --data "{\"text\":\"CI image built: registry.viktorbarzin.me:5050/infra-ci:${CI_COMMIT_SHA:0:8}\"}" \
           "$SLACK_WEBHOOK" || true
     environment:
       SLACK_WEBHOOK:
diff --git a/.woodpecker/build-cli.yml b/.woodpecker/build-cli.yml
index 4da90a43..89f0f2ff 100644
--- a/.woodpecker/build-cli.yml
+++ b/.woodpecker/build-cli.yml
@@ -23,14 +23,6 @@ steps:
           username: viktorbarzin
           password:
             from_secret: dockerhub-pat
-        # Private registry on :5050 requires htpasswd auth since 2026-03-22.
-        # Without this, buildx pushes the second repo but blob HEAD comes
-        # back 401 → pipeline fails → CI false-negative (see bd code-12b).
-        - registry: registry.viktorbarzin.me:5050
-          username:
-            from_secret: registry_user
-          password:
-            from_secret: registry_password
       dockerfile: cli/Dockerfile
       context: cli
       auto_tag: true
diff --git a/.woodpecker/default.yml b/.woodpecker/default.yml
index 05a579ea..1106f29d 100644
--- a/.woodpecker/default.yml
+++ b/.woodpecker/default.yml
@@ -25,7 +25,7 @@ clone:
 
 steps:
   - name: apply
-    image: forgejo.viktorbarzin.me/viktor/infra-ci:latest
+    image: registry.viktorbarzin.me:5050/infra-ci:latest
     pull: true
     backend_options:
       kubernetes:
@@ -37,12 +37,6 @@ steps:
     environment:
       SLACK_WEBHOOK:
         from_secret: slack_webhook
-      # Each `- |` command runs in a fresh shell, so we can't rely on an
-      # `export VAULT_ADDR=...` in the auth command persisting — pin it at
-      # step level. VAULT_TOKEN is still per-command; we persist it to
-      # ~/.vault-token (auto-read by `vault` CLI) so downstream commands
-      # don't need explicit token propagation.
-      VAULT_ADDR: http://vault-active.vault.svc.cluster.local:8200
     commands:
       # ── Skip CI commits ──
       - |
@@ -61,17 +55,9 @@ steps:
       # ── Vault auth ──
       - |
         SA_TOKEN=$(cat /var/run/secrets/kubernetes.io/serviceaccount/token)
-        VAULT_TOKEN=$(curl -s -X POST "$VAULT_ADDR/v1/auth/kubernetes/login" \
+        export VAULT_ADDR=http://vault-active.vault.svc.cluster.local:8200
+        export VAULT_TOKEN=$(curl -s -X POST "$VAULT_ADDR/v1/auth/kubernetes/login" \
           -d "{\"role\":\"ci\",\"jwt\":\"$SA_TOKEN\"}" | jq -r .auth.client_token)
-        if [ -z "$VAULT_TOKEN" ] || [ "$VAULT_TOKEN" = "null" ]; then
-          echo "ERROR: Vault K8s auth failed (role=ci, ns=woodpecker)" >&2
-          exit 1
-        fi
-        # Persist for downstream `- |` blocks (each runs in a fresh shell,
-        # so exporting VAULT_TOKEN wouldn't help). `vault`, `scripts/tg`,
-        # and `scripts/state-sync` all fall through to ~/.vault-token when
-        # the env var is unset.
-        umask 077; printf '%s' "$VAULT_TOKEN" > "$HOME/.vault-token"
 
       # ── Detect changed stacks ──
       - |
@@ -128,7 +114,7 @@ steps:
       # ── Pre-warm provider cache ──
       - |
         if [ -s .platform_apply ] || [ -s .app_apply ]; then
-          FIRST_STACK=$(cat .platform_apply .app_apply 2>/dev/null | head -1)
+          FIRST_STACK=$(head -1 .platform_apply .app_apply 2>/dev/null | head -1)
           if [ -n "$FIRST_STACK" ]; then
             echo "Pre-warming provider cache from stacks/$FIRST_STACK..."
             cd "stacks/$FIRST_STACK" && terragrunt init --terragrunt-non-interactive -input=false 2>&1 | tail -3 && cd ../..
@@ -137,7 +123,6 @@ steps:
 
       # ── Apply platform stacks (serial, with Vault advisory locks) ──
       - |
-        FAILED_PLATFORM_STACKS=""
         if [ -s .platform_apply ]; then
           echo "=== Applying platform stacks (serial, locked) ==="
           while read -r stack; do
@@ -150,9 +135,8 @@ steps:
               if echo "$OUTPUT" | grep -q "is locked by"; then
                 echo "[$stack] SKIPPED (locked by another session)"
               else
-                echo "$OUTPUT" | tail -50
+                echo "$OUTPUT" | tail -5
                 echo "[$stack] FAILED (exit $EXIT)"
-                FAILED_PLATFORM_STACKS="$FAILED_PLATFORM_STACKS $stack"
               fi
             else
               echo "$OUTPUT" | tail -3
@@ -160,12 +144,9 @@ steps:
             fi
           done < .platform_apply
         fi
-        # Deferred until after app stacks so both lists get a chance to run.
-        echo "$FAILED_PLATFORM_STACKS" > .platform_failed
 
       # ── Apply app stacks (serial, with Vault advisory locks) ──
       - |
-        FAILED_APP_STACKS=""
         if [ -s .app_apply ]; then
           echo "=== Applying app stacks (serial, locked) ==="
           while read -r stack; do
@@ -178,9 +159,8 @@ steps:
               if echo "$OUTPUT" | grep -q "is locked by"; then
                 echo "[$stack] SKIPPED (locked by another session)"
               else
-                echo "$OUTPUT" | tail -50
+                echo "$OUTPUT" | tail -5
                 echo "[$stack] FAILED (exit $EXIT)"
-                FAILED_APP_STACKS="$FAILED_APP_STACKS $stack"
               fi
             else
               echo "$OUTPUT" | tail -3
@@ -188,15 +168,6 @@ steps:
             fi
           done < .app_apply
         fi
-        # Fail the step loudly so the pipeline `default` workflow state
-        # reflects reality — the service-upgrade agent and CI alert cascade
-        # both rely on this (see bd code-e1x). Lock-skipped stacks are NOT
-        # counted as failures.
-        FAILED_PLATFORM=$(cat .platform_failed 2>/dev/null | tr -d ' ')
-        if [ -n "$FAILED_PLATFORM" ] || [ -n "$FAILED_APP_STACKS" ]; then
-          echo "=== FAILED STACKS: platform=[$FAILED_PLATFORM ] apps=[$FAILED_APP_STACKS ] ==="
-          exit 1
-        fi
 
       # ── Commit and push state changes ──
       - |
diff --git a/.woodpecker/drift-detection.yml b/.woodpecker/drift-detection.yml
index 438c408c..f1d491a4 100644
--- a/.woodpecker/drift-detection.yml
+++ b/.woodpecker/drift-detection.yml
@@ -14,7 +14,7 @@ clone:
 
 steps:
   - name: detect-drift
-    image: forgejo.viktorbarzin.me/viktor/infra-ci:latest
+    image: registry.viktorbarzin.me:5050/infra-ci:latest
     pull: true
     backend_options:
       kubernetes:
@@ -42,15 +42,10 @@ steps:
           -d "{\"role\":\"ci\",\"jwt\":\"$SA_TOKEN\"}" | jq -r .auth.client_token)
 
       # ── Run terraform plan on all stacks ──
-      # Emits two timestamps per drifted stack so the Pushgateway/Prometheus
-      # side can compute drift-age-hours via `time() - drift_stack_first_seen`.
       - |
         DRIFTED=""
         CLEAN=0
         ERRORS=""
-        NOW=$(date +%s)
-        # Metrics accumulator — written once per stack, then pushed as a batch.
-        METRICS=""
 
         for stack_dir in stacks/*/; do
           stack=$(basename "$stack_dir")
@@ -61,50 +56,12 @@ steps:
           EXIT=$?
 
           case $EXIT in
-            0)
-              echo "OK (no changes)"
-              CLEAN=$((CLEAN + 1))
-              # drift_stack_state=0 means clean; age-hours irrelevant so we
-              # still push 0 so per-stack gauges don't go stale.
-              METRICS="${METRICS}drift_stack_state{stack=\"$stack\"} 0\n"
-              METRICS="${METRICS}drift_stack_age_hours{stack=\"$stack\"} 0\n"
-              ;;
-            1)
-              echo "ERROR"
-              ERRORS="$ERRORS $stack"
-              METRICS="${METRICS}drift_stack_state{stack=\"$stack\"} 2\n"
-              ;;
-            2)
-              echo "DRIFT DETECTED"
-              DRIFTED="$DRIFTED $stack"
-              # Fetch first-seen timestamp from Pushgateway (preserve across runs).
-              FIRST_SEEN=$(curl -s "http://prometheus-prometheus-pushgateway.monitoring:9091/metrics" \
-                | awk -v s="$stack" '$1 == "drift_stack_first_seen{stack=\""s"\"}" {print $2; exit}')
-              if [ -z "$FIRST_SEEN" ] || [ "$FIRST_SEEN" = "0" ]; then
-                FIRST_SEEN="$NOW"
-              fi
-              AGE_HOURS=$(( (NOW - FIRST_SEEN) / 3600 ))
-              METRICS="${METRICS}drift_stack_state{stack=\"$stack\"} 1\n"
-              METRICS="${METRICS}drift_stack_first_seen{stack=\"$stack\"} $FIRST_SEEN\n"
-              METRICS="${METRICS}drift_stack_age_hours{stack=\"$stack\"} $AGE_HOURS\n"
-              ;;
+            0) echo "OK (no changes)"; CLEAN=$((CLEAN + 1)) ;;
+            1) echo "ERROR"; ERRORS="$ERRORS $stack" ;;
+            2) echo "DRIFT DETECTED"; DRIFTED="$DRIFTED $stack" ;;
           esac
         done
 
-        # Summary counters — single gauge per run.
-        DRIFT_COUNT=$(echo "$DRIFTED" | wc -w)
-        ERROR_COUNT=$(echo "$ERRORS" | wc -w)
-        METRICS="${METRICS}drift_stack_count $DRIFT_COUNT\n"
-        METRICS="${METRICS}drift_error_count $ERROR_COUNT\n"
-        METRICS="${METRICS}drift_clean_count $CLEAN\n"
-        METRICS="${METRICS}drift_detection_last_run_timestamp $NOW\n"
-
-        # ── Push to Pushgateway ──
-        # One batched push keeps the run atomic: either all metrics land or none.
-        printf "%b" "$METRICS" | curl -s --data-binary @- \
-          http://prometheus-prometheus-pushgateway.monitoring:9091/metrics/job/drift-detection \
-          || echo "(pushgateway unavailable, metrics lost for this run)"
-
         echo ""
         echo "=== Drift Detection Summary ==="
         echo "Clean: $CLEAN stacks"
diff --git a/.woodpecker/issue-automation.yml b/.woodpecker/issue-automation.yml
index ece97dab..ddfc3caa 100644
--- a/.woodpecker/issue-automation.yml
+++ b/.woodpecker/issue-automation.yml
@@ -9,70 +9,52 @@ clone:
 
 steps:
   - name: run-issue-responder
-    image: alpine:3.20
+    image: python:3.12-alpine
     commands:
-      - apk add --no-cache curl jq
+      - apk add --no-cache openssh-client curl jq
       # Authenticate to Vault via K8s SA JWT
       - |
         SA_TOKEN=$(cat /var/run/secrets/kubernetes.io/serviceaccount/token)
         VAULT_RESP=$(curl -sf -X POST http://vault-active.vault.svc.cluster.local:8200/v1/auth/kubernetes/login \
-          -d "{\"role\":\"ci\",\"jwt\":\"$$SA_TOKEN\"}")
-        VAULT_TOKEN=$(echo "$$VAULT_RESP" | jq -r .auth.client_token)
-        if [ -z "$$VAULT_TOKEN" ] || [ "$$VAULT_TOKEN" = "null" ]; then
+          -d "{\"role\":\"ci\",\"jwt\":\"$SA_TOKEN\"}")
+        VAULT_TOKEN=$(echo "$VAULT_RESP" | jq -r .auth.client_token)
+        if [ -z "$VAULT_TOKEN" ] || [ "$VAULT_TOKEN" = "null" ]; then
           echo "ERROR: Vault authentication failed"
           exit 1
         fi
         echo "Vault authenticated"
-      # Fetch API token for claude-agent-service
+      # Fetch DevVM SSH key
       - |
-        AGENT_TOKEN=$(curl -sf -H "X-Vault-Token: $$VAULT_TOKEN" \
-          http://vault-active.vault.svc.cluster.local:8200/v1/secret/data/claude-agent-service | \
-          jq -r '.data.data.api_bearer_token')
-        if [ -z "$$AGENT_TOKEN" ] || [ "$$AGENT_TOKEN" = "null" ]; then
-          echo "ERROR: Failed to fetch agent API token"
+        curl -sf -H "X-Vault-Token: $VAULT_TOKEN" \
+          http://vault-active.vault.svc.cluster.local:8200/v1/secret/data/ci/infra | \
+          jq -r '.data.data.devvm_ssh_key' > /tmp/devvm-key
+        chmod 600 /tmp/devvm-key
+        if [ ! -s /tmp/devvm-key ]; then
+          echo "ERROR: Failed to fetch DevVM SSH key"
           exit 1
         fi
-        echo "Agent token fetched"
-      # Submit job to claude-agent-service
+        echo "SSH key fetched"
+      # SSH to DevVM and run issue-responder agent
       - |
         ISSUE_NUM="${ISSUE_NUMBER:-}"
         ISSUE_TITLE="${ISSUE_TITLE:-}"
         ISSUE_LABELS="${ISSUE_LABELS:-}"
         ISSUE_URL="${ISSUE_URL:-}"
 
-        if [ -z "$$ISSUE_NUM" ]; then
+        if [ -z "$ISSUE_NUM" ]; then
           echo "ERROR: No issue number provided"
           exit 1
         fi
 
-        echo "Processing issue #$$ISSUE_NUM: $$ISSUE_TITLE"
+        echo "Processing issue #$ISSUE_NUM: $ISSUE_TITLE"
+        echo "Labels: $ISSUE_LABELS"
 
-        PAYLOAD=$(jq -n \
-          --arg prompt "Process GitHub Issue #$$ISSUE_NUM: $$ISSUE_TITLE. Labels: $$ISSUE_LABELS. URL: $$ISSUE_URL. Read the issue body via GitHub API, investigate, and take appropriate action." \
-          --arg agent ".claude/agents/issue-responder" \
-          '{prompt: $prompt, agent: $agent, max_budget_usd: 10, timeout_seconds: 1800}')
-
-        RESP=$(curl -sf -X POST \
-          -H "Authorization: Bearer $$AGENT_TOKEN" \
-          -H "Content-Type: application/json" \
-          -d "$$PAYLOAD" \
-          http://claude-agent-service.claude-agent.svc.cluster.local:8080/execute)
-
-        JOB_ID=$(echo "$$RESP" | jq -r '.job_id')
-        echo "Job submitted: $$JOB_ID"
-      # Poll for completion (30min max)
-      - |
-        for i in $(seq 1 120); do
-          sleep 15
-          RESULT=$(curl -sf \
-            -H "Authorization: Bearer $$AGENT_TOKEN" \
-            http://claude-agent-service.claude-agent.svc.cluster.local:8080/jobs/$$JOB_ID)
-          STATUS=$(echo "$$RESULT" | jq -r '.status')
-          echo "[$$i/120] Status: $$STATUS"
-          if [ "$$STATUS" != "running" ]; then
-            echo "$$RESULT" | jq .
-            if [ "$$STATUS" = "completed" ]; then exit 0; else exit 1; fi
-          fi
-        done
-        echo "ERROR: Job timed out after 30 minutes"
-        exit 1
+        ssh -i /tmp/devvm-key -o StrictHostKeyChecking=no wizard@10.0.10.10 \
+          "cd ~/code && git -C infra stash && git -C infra pull --rebase && git -C infra stash pop 2>/dev/null; \
+           ~/.local/bin/claude -p \
+             --agent infra/.claude/agents/issue-responder \
+             --dangerously-skip-permissions \
+             --max-budget-usd 10 \
+             'Process GitHub Issue #${ISSUE_NUM}: ${ISSUE_TITLE}. Labels: ${ISSUE_LABELS}. URL: ${ISSUE_URL}. Read the issue body via GitHub API, investigate, and take appropriate action.'"
+      # Cleanup
+      - rm -f /tmp/devvm-key
diff --git a/.woodpecker/postmortem-todos.yml b/.woodpecker/postmortem-todos.yml
index 729e9a85..26068492 100644
--- a/.woodpecker/postmortem-todos.yml
+++ b/.woodpecker/postmortem-todos.yml
@@ -17,7 +17,7 @@ steps:
   - name: parse-and-implement
     image: python:3.12-alpine
     commands:
-      - apk add --no-cache jq curl git
+      - apk add --no-cache jq curl git openssh-client
       - sh scripts/postmortem-pipeline.sh
 
   - name: notify-slack
diff --git a/.woodpecker/pve-nfs-exports-sync.yml b/.woodpecker/pve-nfs-exports-sync.yml
deleted file mode 100644
index 2c26df45..00000000
--- a/.woodpecker/pve-nfs-exports-sync.yml
+++ /dev/null
@@ -1,63 +0,0 @@
-# Sync infra/scripts/pve-nfs-exports → PVE host /etc/exports on change.
-#
-# Wave 6b of the state-drift consolidation plan: move the "scp + exportfs -ra"
-# deploy step out of runbook-human-hands and into CI so the Proxmox NFS export
-# table tracks git.
-#
-# Trigger: push to master that touches `scripts/pve-nfs-exports`. The file
-# header documents the deploy invocation; this pipeline codifies it.
-#
-# Credentials:
-#   - pve_ssh_key: Woodpecker repo-secret (ed25519 keypair provisioned
-#     2026-04-18 as `woodpecker-pve-nfs-exports-sync`). Public key lives in
-#     /root/.ssh/authorized_keys on the PVE host. Private key mirrored in
-#     Vault `secret/woodpecker/pve_ssh_key` for recovery.
-
-when:
-  - event: push
-    branch: master
-    path: scripts/pve-nfs-exports
-  - event: manual
-
-clone:
-  git:
-    image: woodpeckerci/plugin-git
-    settings:
-      depth: 1
-      attempts: 3
-
-steps:
-  - name: deploy
-    image: alpine:3.20
-    environment:
-      PVE_SSH_KEY:
-        from_secret: pve_ssh_key
-      SLACK_WEBHOOK:
-        from_secret: slack_webhook
-    commands:
-      - apk add --no-cache openssh-client curl
-      - mkdir -p ~/.ssh && chmod 700 ~/.ssh
-      - printf '%s\n' "$PVE_SSH_KEY" > ~/.ssh/id_ed25519
-      - chmod 600 ~/.ssh/id_ed25519
-      # Pin host key — CI's ~/.ssh/known_hosts is ephemeral, so accept-new on first pull.
-      - ssh-keyscan -t ed25519 192.168.1.127 >> ~/.ssh/known_hosts 2>/dev/null
-      # Diff what we'd ship, so pipeline logs show the intended change.
-      - echo '---diff---' && ssh -o BatchMode=yes root@192.168.1.127 "cat /etc/exports" > /tmp/remote.exports || true
-      - diff -u /tmp/remote.exports scripts/pve-nfs-exports || true
-      - echo '---applying---'
-      - scp -o BatchMode=yes scripts/pve-nfs-exports root@192.168.1.127:/etc/exports
-      - ssh -o BatchMode=yes root@192.168.1.127 "exportfs -ra && exportfs -s | head -5"
-      - echo '---done---'
-
-  - name: slack
-    image: curlimages/curl:8.11.0
-    environment:
-      SLACK_WEBHOOK:
-        from_secret: slack_webhook
-    commands:
-      - |
-        curl -s -X POST -H 'Content-type: application/json' \
-          --data "{\"channel\":\"general\",\"text\":\"PVE /etc/exports sync: ${CI_PIPELINE_STATUS}\"}" \
-          "$SLACK_WEBHOOK" || true
-    when:
-      status: [success, failure]
diff --git a/.woodpecker/registry-config-sync.yml b/.woodpecker/registry-config-sync.yml
deleted file mode 100644
index a4f03185..00000000
--- a/.woodpecker/registry-config-sync.yml
+++ /dev/null
@@ -1,156 +0,0 @@
-# Sync modules/docker-registry/* → /opt/registry/ on docker-registry VM
-# (10.0.20.10) on change, and bounce containers + nginx when needed.
-#
-# Replaces the manual "ssh + scp + docker compose up -d" that was required
-# after the 2026-04-19 `registry:2 → registry:2.8.3` pin landed. The deploy
-# flow is now: edit a file in modules/docker-registry/ → git push → this
-# pipeline runs → registry VM picks up the change.
-#
-# Trigger: push to master that touches any managed file (see `when.path`),
-# or a manual run via Woodpecker UI / API.
-#
-# Credentials:
-#   - registry_ssh_key: Woodpecker repo-secret (ed25519 keypair provisioned
-#     2026-04-19 as `woodpecker-registry-config-sync`). Public key lives in
-#     /root/.ssh/authorized_keys on 10.0.20.10. Private key mirrored in
-#     Vault `secret/woodpecker/registry_ssh_key` (subkeys private_key /
-#     public_key / known_hosts_entry) for recovery.
-#
-# Why bounce nginx every time: nginx caches upstream DNS at startup, so if
-# any registry-* container gets recreated (new IP on the docker bridge),
-# nginx keeps forwarding to a stale address. Always restart nginx as the
-# last step — see docs/runbooks/registry-vm.md § "Bouncing registry
-# containers — the nginx DNS trap".
-
-when:
-  - event: push
-    branch: master
-    path:
-      include:
-        - 'modules/docker-registry/docker-compose.yml'
-        - 'modules/docker-registry/fix-broken-blobs.sh'
-        - 'modules/docker-registry/cleanup-tags.sh'
-        - 'modules/docker-registry/nginx_registry.conf'
-        - 'modules/docker-registry/config-private.yml'
-  - event: manual
-
-clone:
-  git:
-    image: woodpeckerci/plugin-git
-    settings:
-      depth: 1
-      attempts: 3
-
-steps:
-  - name: deploy
-    image: alpine:3.20
-    environment:
-      REGISTRY_SSH_KEY:
-        from_secret: registry_ssh_key
-    commands:
-      - apk add --no-cache openssh-client rsync
-      - mkdir -p ~/.ssh && chmod 700 ~/.ssh
-      - printf '%s\n' "$REGISTRY_SSH_KEY" > ~/.ssh/id_ed25519
-      - chmod 600 ~/.ssh/id_ed25519
-      # Pin host key — CI's ~/.ssh/known_hosts is ephemeral, so accept-new on first pull.
-      - ssh-keyscan -t ed25519 10.0.20.10 >> ~/.ssh/known_hosts 2>/dev/null
-      - echo '---detecting changed files---'
-      - |
-        # Mirror the remote state of each file so we can diff and decide what bounces.
-        CHANGED=""
-        for f in docker-compose.yml fix-broken-blobs.sh cleanup-tags.sh nginx_registry.conf config-private.yml; do
-          LOCAL="modules/docker-registry/$f"
-          REMOTE="/opt/registry/$f"
-          if [ ! -f "$LOCAL" ]; then
-            echo "skip $f (not in repo)"
-            continue
-          fi
-          # Pull the remote copy into /tmp for a diff. ssh -n avoids stdin-hogging.
-          REMOTE_CONTENT=$(ssh -n -o BatchMode=yes root@10.0.20.10 "cat $REMOTE 2>/dev/null || true")
-          LOCAL_CONTENT=$(cat "$LOCAL")
-          if [ "$LOCAL_CONTENT" = "$REMOTE_CONTENT" ]; then
-            echo "unchanged: $f"
-          else
-            echo "---diff: $f ---"
-            echo "$REMOTE_CONTENT" > /tmp/remote.txt
-            diff -u /tmp/remote.txt "$LOCAL" | head -40 || true
-            CHANGED="$CHANGED $f"
-          fi
-        done
-        echo "CHANGED_FILES=$CHANGED"
-        printf '%s' "$CHANGED" > /tmp/changed
-      - echo '---applying---'
-      - |
-        CHANGED=$(cat /tmp/changed)
-        if [ -z "$CHANGED" ]; then
-          echo "No files changed — exiting cleanly (manual run with no drift)."
-          exit 0
-        fi
-        # Ship every managed file unconditionally — scp is cheap, idempotency is safe.
-        scp -o BatchMode=yes \
-          modules/docker-registry/docker-compose.yml \
-          modules/docker-registry/fix-broken-blobs.sh \
-          modules/docker-registry/cleanup-tags.sh \
-          modules/docker-registry/nginx_registry.conf \
-          modules/docker-registry/config-private.yml \
-          root@10.0.20.10:/opt/registry/
-        ssh -n -o BatchMode=yes root@10.0.20.10 '
-          chmod +x /opt/registry/fix-broken-blobs.sh /opt/registry/cleanup-tags.sh
-        '
-      - echo '---bouncing containers + nginx---'
-      - |
-        CHANGED=$(cat /tmp/changed)
-        # Compose-visible files: docker-compose.yml (image tag, mounts) and
-        # config-private.yml (registry config → needs registry-private reload).
-        BOUNCE_COMPOSE=0
-        BOUNCE_NGINX=0
-        echo "$CHANGED" | grep -q "docker-compose.yml" && BOUNCE_COMPOSE=1
-        echo "$CHANGED" | grep -q "config-private.yml" && BOUNCE_COMPOSE=1
-        echo "$CHANGED" | grep -q "nginx_registry.conf" && BOUNCE_NGINX=1
-
-        if [ "$BOUNCE_COMPOSE" = "1" ]; then
-          echo "compose-visible change → pull + up -d"
-          ssh -n -o BatchMode=yes root@10.0.20.10 '
-            cd /opt/registry
-            docker compose pull 2>&1 | tail -5
-            docker compose up -d 2>&1 | tail -20
-          '
-          # Any compose recreate requires nginx DNS refresh too.
-          BOUNCE_NGINX=1
-        fi
-
-        if [ "$BOUNCE_NGINX" = "1" ]; then
-          echo "bouncing nginx to flush upstream DNS cache"
-          ssh -n -o BatchMode=yes root@10.0.20.10 '
-            docker restart registry-nginx
-            sleep 3
-            docker ps --format "{{.Names}}\t{{.Image}}\t{{.Status}}" | grep -E "registry-"
-          '
-        fi
-
-        if [ "$BOUNCE_COMPOSE" = "0" ] && [ "$BOUNCE_NGINX" = "0" ]; then
-          echo "only script files changed (cron-picks-up semantics) — no bounce needed"
-        fi
-      - echo '---verify---'
-      - |
-        ssh -n -o BatchMode=yes root@10.0.20.10 '
-          echo "=== catalog ==="
-          # Prove auth + routing survived.
-          curl -sk -o /dev/null -w "catalog (unauth → 401 expected): HTTP %{http_code}\n" \
-            https://127.0.0.1:5050/v2/
-          echo "=== integrity scan (dry-run) ==="
-          python3 /opt/registry/fix-broken-blobs.sh --dry-run 2>&1 | tail -5
-        '
-
-  - name: slack
-    image: curlimages/curl:8.11.0
-    environment:
-      SLACK_WEBHOOK:
-        from_secret: slack_webhook
-    commands:
-      - |
-        curl -s -X POST -H 'Content-type: application/json' \
-          --data "{\"channel\":\"general\",\"text\":\"Registry config sync on 10.0.20.10: ${CI_PIPELINE_STATUS}\"}" \
-          "$SLACK_WEBHOOK" || true
-    when:
-      status: [success, failure]
diff --git a/AGENTS.md b/AGENTS.md
index 5f9c0839..8ce10dc1 100644
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -15,49 +15,6 @@
 - **Health check**: `bash scripts/cluster_healthcheck.sh --quiet`
 - **Plan all**: `cd stacks && terragrunt run --all --non-interactive -- plan`
 
-## Adopting Existing Resources — Use `import {}` Blocks, Not the CLI
-
-When bringing a live cluster/Vault/Cloudflare resource under Terraform management, use an HCL `import {}` block (Terraform 1.5+). Do **NOT** use `terraform import` on the CLI for anything landing in this repo — the CLI path leaves no audit trail and makes multi-operator adoption fragile.
-
-**Canonical workflow:**
-
-1. Write the `resource` block that matches the live object.
-2. In the same stack, add an `import {}` stanza naming the target and the provider-specific ID:
-   ```hcl
-   import {
-     to = helm_release.kured
-     id = "kured/kured"  # Helm ID format: <namespace>/<release-name>
-   }
-
-   resource "helm_release" "kured" {
-     name       = "kured"
-     namespace  = "kured"
-     repository = "https://kubereboot.github.io/charts/"
-     chart      = "kured"
-     version    = "5.7.0"
-     # ... values matching the live release
-   }
-   ```
-3. `scripts/tg plan` — every change it proposes is real divergence between HCL and live state. Iterate on values until the plan is **0 changes**.
-4. `scripts/tg apply` — the import runs alongside whatever zero-change apply you have. If your plan is 0 changes, this commits only the state-ownership transfer.
-5. After the apply lands cleanly, **delete the `import {}` block** in a follow-up commit. The resource is now fully TF-owned and the stanza would be a no-op that clutters diffs.
-
-**Why `import {}` and not `terraform import`:**
-
-- Reviewable in PRs before any state mutation. The CLI path is an out-of-band action nobody sees.
-- Plan-safe: the `import` plan step shows the exact object being adopted. Mistyped IDs or the wrong resource address are caught before apply, not after.
-- Survives state backend changes (Tier 0 SOPS vs Tier 1 PG) transparently — both work identically from the operator's perspective because both use `scripts/tg`.
-- Re-runnable: if the apply fails partway through, the `import {}` block is idempotent. The CLI path's state mutation is not.
-
-**Finding the provider-specific ID:** each provider has its own convention.
-| Resource | ID format | Example |
-|---|---|---|
-| `helm_release` | `<namespace>/<release-name>` | `kured/kured` |
-| `kubernetes_manifest` | `{"apiVersion":"...","kind":"...","metadata":{"namespace":"...","name":"..."}}` | (pass as HCL object literal) |
-| `kubernetes_<kind>_v1` | `<namespace>/<name>` for namespaced, `<name>` for cluster-scoped | `kube-system/coredns` |
-| `authentik_provider_proxy` | provider UUID | `0eecac07-97c7-443c-...` |
-| `cloudflare_record` | `<zone-id>/<record-id>` | `abc123/def456` |
-
 ## Secrets Management (SOPS)
 - **`config.tfvars`** — plaintext config (hostnames, IPs, DNS records, public keys)
 - **`secrets.sops.json`** — SOPS-encrypted secrets (passwords, tokens, SSH keys, API keys)
@@ -99,13 +56,13 @@ Terragrunt-based homelab managing a Kubernetes cluster (5 nodes, v1.34.2) on Pro
 - `config.tfvars` — non-secret configuration (plaintext)
 - `secrets.sops.json` — all secrets (SOPS-encrypted JSON)
 - `terraform.tfvars` — legacy secrets file (git-crypt, kept for reference)
-- `scripts/cluster_healthcheck.sh` — 42-check cluster health script (nodes, workloads, monitoring, certs, backups, external reachability)
+- `scripts/cluster_healthcheck.sh` — 25-check cluster health script
 
 ## Storage
 - **NFS** (`nfs-proxmox` StorageClass): For app data. Use the `nfs_volume` module, never inline `nfs {}` blocks.
 - **proxmox-lvm-encrypted** (`proxmox-lvm-encrypted` StorageClass): **Default for all sensitive data** — databases, auth, email, passwords, git repos, health data. LUKS2 encryption via Proxmox CSI. Passphrase in Vault, backup key on PVE host.
 - **proxmox-lvm** (`proxmox-lvm` StorageClass): For non-sensitive stateful apps (configs, caches, tools). Proxmox CSI driver.
-- **NFS server**: Proxmox host at 192.168.1.127 (sole NFS). HDD NFS at `/srv/nfs` (2TB ext4 LV `pve/nfs-data`), SSD NFS at `/srv/nfs-ssd` (100GB ext4 LV `ssd/nfs-ssd-data`). Exports use `async` mode (safe with UPS + databases on block storage). TrueNAS (VM 9000, 10.0.10.15) decommissioned 2026-04-13. Legacy `nfs-truenas` StorageClass name retained (48 PVs bind it; SC names are immutable on PVs) but now points to the Proxmox host, identical to `nfs-proxmox`.
+- **NFS server**: Proxmox host at 192.168.1.127. HDD NFS at `/srv/nfs` (2TB ext4 LV `pve/nfs-data`), SSD NFS at `/srv/nfs-ssd` (100GB ext4 LV `ssd/nfs-ssd-data`). Exports use `async` mode (safe with UPS + databases on block storage). TrueNAS (10.0.10.15) decommissioned.
 - **SQLite on NFS is unreliable** (fsync issues) — always use proxmox-lvm or local disk for databases.
 - **NFS mount options**: Always `soft,timeo=30,retrans=3` to prevent uninterruptible sleep (D state).
 - **NFS export directory must exist** on the Proxmox host before Terraform can create the PV.
@@ -113,47 +70,11 @@ Terragrunt-based homelab managing a Kubernetes cluster (5 nodes, v1.34.2) on Pro
 - **daily-backup** (Daily 05:00): Auto-discovered BACKUP_DIRS (glob), auto SQLite backup (magic number + `?mode=ro`), pfSense, PVE config. No NFS mirror step (NFS syncs directly to Synology via inotify).
 - **offsite-sync-backup** (Daily 06:00): Step 1: sda→Synology `pve-backup/`. Step 2: NFS→Synology `nfs/`+`nfs-ssd/` via `rsync --files-from` (inotify change log). Monthly full `--delete`.
 - **nfs-change-tracker.service**: inotifywait on `/srv/nfs` + `/srv/nfs-ssd`, logs to `/mnt/backup/.nfs-changes.log`. Incremental syncs complete in seconds.
-- **Synology layout** (`/volume1/Backup/Viki/`): `pve-backup/` (from sda), `nfs/` (from `/srv/nfs`), `nfs-ssd/` (from `/srv/nfs-ssd`).
+- **Synology layout** (`/volume1/Backup/Viki/`): `pve-backup/` (from sda), `nfs/` (from `/srv/nfs`), `nfs-ssd/` (from `/srv/nfs-ssd`). `truenas/` renamed to `nfs/`, `pve-backup/nfs-mirror/` removed.
 
 ## Shared Variables (never hardcode)
 `var.nfs_server` (192.168.1.127), `var.redis_host`, `var.postgresql_host`, `var.mysql_host`, `var.ollama_host`, `var.mail_host`
 
-## Redis Service Naming (read before wiring a new consumer)
-
-The Redis stack (`stacks/redis/`) exposes three distinct entry points. Pick the one that matches the client's connection pattern — the wrong one causes READONLY errors or silent connection drops.
-
-| Endpoint | Port(s) | Use for | Backed by |
-|----------|---------|---------|-----------|
-| `redis-master.redis.svc.cluster.local` | 6379 (redis), 26379 (sentinel) | **Default for new services.** Write-safe — HAProxy health-checks nodes and routes only to the current master. Matches `var.redis_host`. | `kubernetes_service.redis_master` → HAProxy → Bitnami StatefulSet |
-| `redis-node-{0,1,2}.redis-headless.redis.svc.cluster.local` | 26379 | **Long-lived connections (PUBSUB, BLPOP, MONITOR, Sidekiq).** Use a sentinel-aware client with master name `mymaster`. Example: `stacks/nextcloud/chart_values.yaml:32-54`. | Bitnami-created headless service → pod DNS |
-| `redis.redis.svc.cluster.local` | 6379 | **Do NOT use.** Helm chart's default service — selector patched by `null_resource.patch_redis_service` to match `redis-haproxy`, so today it behaves like `redis-master`. This patch is load-bearing but temporary; consumers hard-coded on this name are tracked in a beads follow-up (T0). | Bitnami chart (patched) |
-
-**HAProxy's `timeout client 30s` closes idle raw Redis connections** — any client that holds a connection open for pub/sub, blocking commands, or replication streams MUST use the sentinel path. Uptime Kuma's Redis monitor hit this limit and had to be re-pointed at the sentinel endpoint (see memory id=748).
-
-**When onboarding a new service:** start from `redis-master.redis.svc.cluster.local:6379` via `var.redis_host`. Only reach for sentinel discovery if the client library supports it natively (ioredis, redis-py Sentinel, go-redis FailoverClient, Sidekiq `sentinels` array) AND the workload uses long-lived connections.
-
-## Kyverno Drift Suppression (`# KYVERNO_LIFECYCLE_V1`)
-
-Kyverno's admission webhook mutates every pod with a `dns_config { option { name = "ndots"; value = "2" } }` block (fixes NxDomain search-domain floods — see `k8s-ndots-search-domain-nxdomain-flood` skill). Terraform does not manage that field, so without suppression every pod-owning resource shows perpetual `spec[0].template[0].spec[0].dns_config` drift.
-
-**Rule**: every `kubernetes_deployment`, `kubernetes_stateful_set`, `kubernetes_daemon_set`, and `kubernetes_cron_job_v1` MUST include the following `lifecycle` block, tagged with the `# KYVERNO_LIFECYCLE_V1` marker so every site is greppable:
-
-```hcl
-# kubernetes_deployment / kubernetes_stateful_set / kubernetes_daemon_set
-lifecycle {
-  ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-}
-
-# kubernetes_cron_job_v1 (extra job_template nesting)
-lifecycle {
-  ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-}
-```
-
-**Why not a shared module?** Terraform's `ignore_changes` meta-argument only accepts static attribute paths. It rejects module outputs, locals, variables, and any expression. A DRY module is therefore impossible — the canonical pattern IS the snippet + marker. When `kubernetes_manifest` resources get Kyverno `generate.kyverno.io/*` annotations mutated, a sibling convention `# KYVERNO_MANIFEST_V1` will be introduced (Phase B).
-
-**Audit**: `rg "KYVERNO_LIFECYCLE_V1" stacks/ | wc -l` — should grow (never shrink). Add the marker to every new pod-owning resource. The `_template/main.tf.example` stub shows the canonical form.
-
 ## Tier System
 `0-core` | `1-cluster` | `2-gpu` | `3-edge` | `4-aux` — Kyverno auto-generates LimitRange + ResourceQuota per namespace based on tier label.
 - Containers without explicit `resources {}` get default limits (256Mi for edge/aux — causes OOMKill for heavy apps)
@@ -163,10 +84,10 @@ lifecycle {
 ## Infrastructure
 - **Proxmox**: 192.168.1.127 (Dell R730, 22c/44t, 142GB RAM)
 - **Nodes**: k8s-master (10.0.20.100), node1 (GPU, Tesla T4), node2-4
-- **GPU**: `node_selector = { "nvidia.com/gpu.present" : "true" }` + toleration `nvidia.com/gpu`. The label is auto-applied by NFD/gpu-feature-discovery on any node with an NVIDIA PCI device — nothing is hostname-pinned, so the GPU card can move between nodes without Terraform edits.
+- **GPU**: `node_selector = { "gpu": "true" }` + toleration `nvidia.com/gpu`
 - **Pull-through cache**: 10.0.20.10 — docker.io (:5000), ghcr.io (:5010) only. Caches stale manifests for :latest tags — use versioned tags or pre-pull with `ctr --hosts-dir ''` to bypass.
 - **pfSense**: 10.0.20.1 (gateway, firewall, DNS forwarding)
-- **MySQL InnoDB Cluster**: 1 instance on proxmox-lvm (scaled from 3 — only Uptime Kuma + phpIPAM remain), PriorityClass `mysql-critical` + PDB, anti-affinity excludes any GPU node (`nvidia.com/gpu.present=true`) so MySQL moves off the GPU host automatically if the card is relocated
+- **MySQL InnoDB Cluster**: 1 instance on proxmox-lvm (scaled from 3 — only Uptime Kuma + phpIPAM remain), PriorityClass `mysql-critical` + PDB, anti-affinity excludes k8s-node1 (GPU node)
 - **SMTP**: `var.mail_host` port 587 STARTTLS (not internal svc address — cert mismatch)
 
 ## Contributor Onboarding
@@ -184,7 +105,7 @@ lifecycle {
 - **NFS exports**: Create dir on Proxmox host (`ssh root@192.168.1.127 "mkdir -p /srv/nfs/<service>"`), add to `/etc/exports`, run `exportfs -ra`.
 
 ## Automated Service Upgrades
-- **Pipeline**: DIUN (detect) → n8n webhook (filter + rate limit) → HTTP POST → `claude-agent-service` (K8s) → `claude -p` (upgrade agent)
+- **Pipeline**: DIUN (detect) → n8n webhook (filter + rate limit) → SSH → `claude -p` (upgrade agent)
 - **Agent**: `.claude/agents/service-upgrade.md` — analyzes changelogs, backs up DBs, bumps versions, verifies health, rolls back on failure
 - **Config**: `.claude/reference/upgrade-config.json` — GitHub repo mappings, DB-backed services, skip patterns
 - **Rate limit**: Max 5 upgrades per 6h DIUN scan cycle (configured in n8n workflow)
diff --git a/ci/Dockerfile b/ci/Dockerfile
index 2a02b586..aefc8407 100644
--- a/ci/Dockerfile
+++ b/ci/Dockerfile
@@ -5,7 +5,6 @@ ARG TERRAFORM_VERSION=1.5.7
 ARG TERRAGRUNT_VERSION=0.99.4
 ARG SOPS_VERSION=3.9.4
 ARG KUBECTL_VERSION=1.34.0
-ARG VAULT_VERSION=1.18.1
 
 # Install system packages (single layer)
 RUN apk add --no-cache \
@@ -35,16 +34,6 @@ RUN curl -fsSL "https://dl.k8s.io/release/v${KUBECTL_VERSION}/bin/linux/amd64/ku
     -o /usr/local/bin/kubectl \
     && chmod +x /usr/local/bin/kubectl
 
-# Vault CLI — required by scripts/tg for Tier 1 stack PG credential reads
-# and Tier 0 advisory locks. Pinned to server version (1.18.1). Without this
-# the CI pipeline surfaces the misleading "Cannot read PG credentials" error
-# because scripts/tg swallows stderr ("vault: not found").
-RUN curl -fsSL "https://releases.hashicorp.com/vault/${VAULT_VERSION}/vault_${VAULT_VERSION}_linux_amd64.zip" \
-    -o /tmp/vault.zip \
-    && unzip /tmp/vault.zip -d /usr/local/bin/ \
-    && rm /tmp/vault.zip \
-    && vault version
-
 # Provider cache directory (shared across stacks)
 ENV TF_PLUGIN_CACHE_DIR=/tmp/terraform-plugin-cache
 ENV TF_PLUGIN_CACHE_MAY_BREAK_DEPENDENCY_LOCK_FILE=1
diff --git a/config.tfvars b/config.tfvars
index 790a48ae..11f75005 100644
Binary files a/config.tfvars and b/config.tfvars differ
diff --git a/diagram/main.py b/diagram/main.py
index 598bd3d3..df04ea4f 100644
--- a/diagram/main.py
+++ b/diagram/main.py
@@ -80,6 +80,8 @@ def sofia():
                 pfsense >> k8s_switch
             with Cluster('Management Network'):
                 mgt_switch = Switch()
+                # Truenas
+                truenas = Storage("Truenas")
                 # pxe server
                 pxe_server = Rack("PXE Server")
                 # HA
@@ -89,6 +91,7 @@ def sofia():
                     devvm_vpn_client = VPN("Tailscale Client")
                     vpn_clients["devvm"] = devvm_vpn_client
 
+                mgt_switch >> truenas
                 mgt_switch >> pxe_server
                 mgt_switch >> home_assistant
                 mgt_switch >> devvm
diff --git a/docs/README.md b/docs/README.md
index b12e6d9d..5b485214 100644
--- a/docs/README.md
+++ b/docs/README.md
@@ -20,7 +20,7 @@ This repository contains the configuration and documentation for a homelab Kuber
 | [Overview](architecture/overview.md) | Infrastructure overview, hardware specs, VM inventory, and service catalog |
 | [Networking](architecture/networking.md) | Network topology, VLANs, routing, and firewall rules |
 | [VPN](architecture/vpn.md) | Headscale mesh VPN and Cloudflare Tunnel configuration |
-| [Storage](architecture/storage.md) | Proxmox host NFS, Proxmox CSI (LVM-thin + LUKS2), and persistent volume management |
+| [Storage](architecture/storage.md) | TrueNAS NFS, democratic-csi, and persistent volume management |
 | [Authentication](architecture/authentication.md) | Authentik SSO, OIDC flows, and service integration |
 | [Security](architecture/security.md) | CrowdSec IPS, Kyverno policies, and security controls |
 | [Monitoring](architecture/monitoring.md) | Prometheus, Grafana, Loki, and observability stack |
diff --git a/docs/architecture/automated-upgrades.md b/docs/architecture/automated-upgrades.md
index 4a023c10..650be533 100644
--- a/docs/architecture/automated-upgrades.md
+++ b/docs/architecture/automated-upgrades.md
@@ -16,10 +16,10 @@ n8n Webhook (POST /webhook/<uuid>)
   │ rate limit: max 5 upgrades per 6h window
   │
   ▼
-HTTP POST → claude-agent-service (K8s)
+SSH → Dev VM (10.0.10.10)
   │
   ▼
-claude -p "upgrade agent prompt" (in-cluster)
+claude -p "upgrade agent prompt"
   │
   ▼
 Service Upgrade Agent
@@ -54,7 +54,7 @@ Service Upgrade Agent
   - Only `status=update` (skip `new`, `unchanged`)
   - Skip databases, custom images, infra images, `:latest`
 - **Rate limiting**: Max 5 upgrades per 6-hour window using `$getWorkflowStaticData('global')`
-- **Action**: HTTP POST to `claude-agent-service.claude-agent.svc:8080/execute` with the upgrade agent prompt
+- **Action**: SSH to dev VM, runs `claude -p` with the upgrade agent prompt
 
 ### Upgrade Agent
 - **Prompt**: `.claude/agents/service-upgrade.md`
@@ -173,35 +173,7 @@ Key behaviors observed:
 | Secret | Vault Path | Purpose |
 |--------|-----------|---------|
 | n8n webhook URL | `secret/diun` → `n8n_webhook_url` | DIUN → n8n trigger |
-| Agent API bearer token | `secret/claude-agent-service` → `api_bearer_token` | n8n → claude-agent-service `/execute` auth. Synced into both `claude-agent` ns (consumer) and `n8n` ns (caller) via ESO. n8n exposes it to the container as `CLAUDE_AGENT_API_TOKEN` env var. |
-| Claude OAuth (primary) | `secret/claude-agent-service` → `claude_oauth_token` | Long-lived 1-year token from `claude setup-token`. Consumed by the CLI via `CLAUDE_CODE_OAUTH_TOKEN` env var (set on the container via `envFrom`). Preferred over the short-lived `.credentials.json` — CLI skips the refresh dance entirely. Rotate yearly; alert fires 30d out. |
-| Claude OAuth (spares) | `secret/claude-agent-service-spare-{1,2}` → `claude_oauth_token` | Failover tokens. Minted alongside primary (verified Anthropic does NOT revoke earlier sessions on new mint). Swap into primary if revocation or compromise. |
 | GitHub PAT | `secret/viktor` → `github_pat` | Changelog fetch (5000 req/hr) |
 | Slack webhook | `secret/platform` → `alertmanager_slack_api_url` | Upgrade notifications |
 | Woodpecker token | `secret/viktor` → `woodpecker_token` | CI pipeline polling |
-
-## OAuth token lifecycle
-
-The CLI supports two auth modes. We use the second — long-lived.
-
-| Mode | How minted | TTL | Needs refresh? | When to use |
-|------|-----------|-----|----------------|-------------|
-| `claude login` → `.credentials.json` | Interactive browser OAuth | Access ~6h + refresh token | Yes — CLI auto-refreshes on startup if refresh token valid | Human dev machines |
-| `claude setup-token` → opaque `sk-ant-oat01-*` | Interactive browser OAuth | **1 year** | No — expires hard | **Headless / service accounts (us)** |
-
-When both are present on disk, `CLAUDE_CODE_OAUTH_TOKEN` env var wins.
-
-**Harvesting headless**: `setup-token` uses Ink (React for terminals) and needs a real PTY with **≥300-column width**. At 80-col, Ink wraps and DROPS one character at the wrap boundary (107-char invalid instead of 108-char valid). Python wrapper pattern documented in memory; we harvested 2 spare tokens into Vault on 2026-04-18 using a temporary harvester pod.
-
-**Monitoring**: CronJob `claude-oauth-expiry-monitor` (claude-agent ns, every 6h) pushes `claude_oauth_token_expiry_timestamp{path="..."}` to Pushgateway. Alerts: `ClaudeOAuthTokenExpiringSoon` (30d, warn), `ClaudeOAuthTokenCritical` (7d, crit), `ClaudeOAuthTokenMonitorStale` (48h no push, warn), `ClaudeOAuthTokenMonitorNeverRun` (metric absent, warn).
-
-**Rotation**: on alert, harvest a new token, `vault kv patch secret/claude-agent-service claude_oauth_token=<new>`, update the `claude_oauth_token_mint_epochs` local in `stacks/claude-agent-service/main.tf`, `scripts/tg apply` → alert clears on next cron tick.
-
-## n8n workflow gotchas
-
-The `DIUN Upgrade Agent` workflow is imported once into n8n's PG DB — it is **not** Terraform-managed. The JSON at `stacks/n8n/workflows/diun-upgrade.json` is a backup; the live state lives in `workflow_entity.nodes`. Drift between the two is possible.
-
-- **HTTP Request node header expressions must use template-literal form**: `=Bearer {{ $env.CLAUDE_AGENT_API_TOKEN }}` works; `='Bearer ' + $env.CLAUDE_AGENT_API_TOKEN` does NOT evaluate and sends an empty/bogus header → 401 from claude-agent-service.
-- **`N8N_BLOCK_ENV_ACCESS_IN_NODE=false`** must be set on the n8n deployment for expressions to read `$env.*` at all.
-- **Troubleshooting 401**: the workflow will show `success` status on the webhook node but error on `Run Upgrade Agent`. Inspect in n8n UI → Executions, or query `execution_entity` + `execution_data` directly. Claude-agent-service logs will also show `POST /execute HTTP/1.1 401 Unauthorized`.
-- **Patching the live workflow** (one-off, since it's not in TF): `UPDATE workflow_entity SET nodes = REPLACE(nodes::text, OLD, NEW)::json WHERE name = 'DIUN Upgrade Agent';`
+| Dev VM SSH key | n8n credentials store → `devvm-ssh` | n8n → dev VM SSH |
diff --git a/docs/architecture/backup-dr.md b/docs/architecture/backup-dr.md
index b307ec6c..5e531728 100644
--- a/docs/architecture/backup-dr.md
+++ b/docs/architecture/backup-dr.md
@@ -209,7 +209,7 @@ graph LR
 | Vault Backup | Weekly Sunday 02:00, 30d | CronJob in `vault` | raft snapshot |
 | Redis Backup | Weekly Sunday 03:00, 30d | CronJob in `redis` | BGSAVE + copy |
 | Vaultwarden Integrity Check | Hourly | CronJob in `vaultwarden` | PRAGMA integrity_check → metric |
-| ~~TrueNAS Cloud Sync~~ | **DECOMMISSIONED 2026-04-13** | Was TrueNAS Cloud Sync Task 1 | Replaced by offsite-sync-backup + inotify change tracking on Proxmox host NFS |
+| ~~TrueNAS Cloud Sync~~ | **DECOMMISSIONED** | Was TrueNAS Cloud Sync Task 1 | Replaced by offsite-sync-backup |
 
 ## How It Works
 
@@ -217,7 +217,7 @@ graph LR
 
 Native LVM thin snapshots provide crash-consistent point-in-time recovery for 62 Proxmox CSI PVCs. These are CoW snapshots — instant creation, minimal overhead, sharing the thin pool's free space.
 
-**Script**: `/usr/local/bin/lvm-pvc-snapshot` on PVE host (source: `infra/scripts/lvm-pvc-snapshot.sh`). Deploy: `scp infra/scripts/lvm-pvc-snapshot.sh root@192.168.1.127:/usr/local/bin/lvm-pvc-snapshot`
+**Script**: `/usr/local/bin/lvm-pvc-snapshot` on PVE host (source: `infra/scripts/lvm-pvc-snapshot`)
 **Schedule**: Daily 03:00 via systemd timer, 7-day retention
 **Discovery**: Auto-discovers PVC LVs matching `vm-*-pvc-*` pattern in VG `pve` thin pool `data`
 
@@ -226,7 +226,7 @@ Native LVM thin snapshots provide crash-consistent point-in-time recovery for 62
 - They already have app-level dumps (Layer 2)
 - Including them causes ~36% write amplification; excluding them reduces overhead to ~0%
 
-**Monitoring**: Pushes metrics to Pushgateway via NodePort (30091). Alerts: `LVMSnapshotStale` (>30h since last run + 30m `for:`), `LVMSnapshotFailing`, `LVMThinPoolLow` (<15% free).
+**Monitoring**: Pushes metrics to Pushgateway via NodePort (30091). Alerts: `LVMSnapshotStale` (>24h), `LVMSnapshotFailing`, `LVMThinPoolLow` (<15% free).
 
 **Restore**: `lvm-pvc-snapshot restore <pvc-lv> <snapshot-lv>` — auto-discovers K8s workload, scales down, swaps LVs, scales back up. See `docs/runbooks/restore-lvm-snapshot.md`.
 
@@ -234,7 +234,7 @@ Native LVM thin snapshots provide crash-consistent point-in-time recovery for 62
 
 **Backup disk**: sda (1.1TB RAID1 SAS) → VG `backup` → LV `data` → ext4 → mounted at `/mnt/backup` on PVE host. Dedicated backup disk, independent of live storage.
 
-**Script**: `/usr/local/bin/daily-backup` on PVE host (source: `infra/scripts/daily-backup.sh`)
+**Script**: `/usr/local/bin/daily-backup` on PVE host (source: `infra/scripts/daily-backup`)
 **Schedule**: Daily 05:00 via systemd timer
 **Retention**: 4 weekly versions (weeks 0-3 via `--link-dest` hardlink dedup)
 
@@ -334,14 +334,14 @@ Two-step offsite sync:
 **Monthly full sync**: On 1st Sunday of month, runs `rsync --delete` for cleanup (removes orphaned files on Synology).
 
 **Destination**:
-- `Synology/Backup/Viki/nfs/` — mirrors `/srv/nfs`
+- `Synology/Backup/Viki/nfs/` — mirrors `/srv/nfs` (renamed from `truenas/`)
 - `Synology/Backup/Viki/nfs-ssd/` — mirrors `/srv/nfs-ssd`
 
 **Monitoring**: Pushes `offsite_backup_sync_last_success_timestamp` to Pushgateway. Alerts: `OffsiteBackupSyncStale` (>8d), `OffsiteBackupSyncFailing`.
 
-#### ~~TrueNAS Cloud Sync~~ — DECOMMISSIONED 2026-04-13
+#### ~~TrueNAS Cloud Sync~~ — DECOMMISSIONED
 
-> TrueNAS Cloud Sync was decommissioned along with TrueNAS (2026-04-13). The current offsite path is inotify-change-tracked rsync from the Proxmox host NFS (`/srv/nfs`, `/srv/nfs-ssd`) to Synology.
+> TrueNAS Cloud Sync was decommissioned along with TrueNAS (2026-04). The `Synology/Backup/Viki/truenas/` directory was renamed to `nfs/` to reflect the new consolidated layout.
 
 ## Configuration
 
@@ -673,7 +673,7 @@ module "nfs_backup" {
 │  ~~CloudSyncNeverRun~~      REMOVED (TrueNAS decommissioned)    │
 │  ~~CloudSyncFailing~~       REMOVED (TrueNAS decommissioned)    │
 │  VaultwardenIntegrityFail   integrity_ok == 0                   │
-│  LVMSnapshotStale           > 30h since last snapshot           │
+│  LVMSnapshotStale           > 24h since last snapshot           │
 │  LVMSnapshotFailing         snapshot creation failed            │
 │  LVMThinPoolLow             < 15% free space in thin pool       │
 │  WeeklyBackupStale          > 8d  since last success            │
@@ -692,16 +692,6 @@ module "nfs_backup" {
 - ~~CloudSync monitor~~: Removed (TrueNAS decommissioned)
 - Vaultwarden integrity: Pushes `vaultwarden_sqlite_integrity_ok` hourly
 
-**Pushgateway persistence**: The Pushgateway is configured with
-`--persistence.file=/data/pushgateway.bin --persistence.interval=1m`
-on a 2Gi `proxmox-lvm-encrypted` PVC (helm values:
-`prometheus-pushgateway.persistentVolume`). Without this, every pod
-restart drops in-memory metrics. Once-per-day pushers (offsite-sync,
-weekly backup) are otherwise invisible for up to 24h if the
-Pushgateway restarts between pushes — which is exactly what triggered
-the 2026-04-22 backup_offsite_sync FAIL (node3 kubelet hiccup at
-11:42 UTC terminated the Pushgateway 8h after the 03:12 UTC push).
-
 **Alert routing**:
 - All backup alerts → Slack `#infra-alerts`
 - Vaultwarden integrity fail → Slack `#infra-critical` (immediate action required)
diff --git a/docs/architecture/chrome-service.md b/docs/architecture/chrome-service.md
deleted file mode 100644
index 9d8901d3..00000000
--- a/docs/architecture/chrome-service.md
+++ /dev/null
@@ -1,136 +0,0 @@
-# chrome-service — In-cluster headed Chromium pool
-
-## Overview
-
-`chrome-service` is a single-replica, persistent-profile, bearer-token-gated
-Playwright **launch-server** that exposes a headed Chromium browser over a
-WebSocket. Sibling services connect to it instead of running their own
-in-process Chromium when the upstream's anti-bot tooling
-(`disable-devtool.js` redirect-to-google trap, console-clear timing tricks,
-`navigator.webdriver` checks) defeats a headless browser.
-
-Initial caller: `f1-stream`'s `playback_verifier`. Future callers attach
-via the WS+token contract documented in `stacks/chrome-service/README.md`.
-
-## Why a separate stack
-
-In-process Chromium inside `f1-stream`:
-
-- Runs **headless** by default (no `Xvfb`/`DISPLAY`).
-- Has the `HeadlessChromium/...` UA suffix and `navigator.webdriver === true`.
-- Trips `disable-devtool.js`'s **Performance** detector — Playwright's CDP
-  adds latency to `console.log(largeArray)` vs `console.table(largeArray)`,
-  which the lib reads as "DevTools is open" and redirects to
-  `https://www.google.com/`.
-
-`chrome-service` solves this by:
-
-1. Running **headed** under `Xvfb :99` (via `playwright launch-server` with
-   a JSON config that pins `headless: false`).
-2. Living in a long-lived pod so JIT browser launch latency disappears.
-3. Allowing a per-context init script
-   (`stacks/chrome-service/files/stealth.js` ~ 40 lines, vendored from
-   `puppeteer-extra-plugin-stealth`) to spoof `webdriver`, `chrome.runtime`,
-   `plugins`, `languages`, `Permissions.query`, WebGL renderer strings, and
-   to hide the `disable-devtool-auto` script-tag attribute so the lib's
-   IIFE exits early.
-
-## Wire protocol
-
-```text
-                  ws://chrome-service.chrome-service.svc.cluster.local:3000/<TOKEN>
-                                            │
-            ┌───────────────────────────────┼───────────────────────────────┐
-            │ caller pod                    │                  chrome-service pod
-            │  (e.g. f1-stream)             │                  (single replica)
-            │                               │
-            │  CHROME_WS_URL  ──────────────┘
-            │  CHROME_WS_TOKEN ─── from `secret/chrome-service.api_bearer_token` (ESO)
-            │
-            │  await chromium.connect(f"{ws}/{token}")
-            │  await ctx.add_init_script(STEALTH_JS)
-            │  page.goto("https://upstream.com/embed/...")
-            │
-            └─── ←── pages render under Xvfb, headed Chromium ──── ─────────┘
-```
-
-## Image pin
-
-Both the server image (`mcr.microsoft.com/playwright:v1.48.0-noble` in
-`stacks/chrome-service/main.tf`) and the Python client
-(`playwright==1.48.0` in callers' `requirements.txt`) **must match
-minor-versions**. Bump in lockstep — Playwright protocol changes between
-minors and the client cannot connect to a mismatched server.
-
-The Microsoft image ships only the browser binaries, not the `playwright`
-npm SDK; the start command runs `npx -y playwright@1.48.0 launch-server`
-which downloads the SDK on first start (cached under `$HOME/.npm` via the
-PVC) and reuses it on subsequent restarts.
-
-## Storage
-
-- **`chrome-service-profile-encrypted`** (PVC, 2Gi → 10Gi autoresize,
-  `proxmox-lvm-encrypted`) — Chromium user-data dir + npm cache.
-  Encrypted because cookies/localStorage may include third-party auth tokens
-  for sites callers drive. `HOME=/profile` so npx caches there.
-- **`chrome-service-backup-host`** (NFS, RWX) — destination for a 6-hourly
-  CronJob that `tar -czf /backup/<YYYY_MM_DD_HH>.tar.gz -C /profile .`,
-  retention 30 days.
-
-## Auth + secrets
-
-- Vault KV `secret/chrome-service.api_bearer_token` — 32-byte URL-safe
-  random, rotated by hand:
-  `vault kv put secret/chrome-service api_bearer_token=$(python3 -c 'import secrets; print(secrets.token_urlsafe(32))')`.
-- ESO syncs into namespace-local Secret `chrome-service-secrets`
-  (server pod) and `chrome-service-client-secrets` (each caller pod).
-- Reloader (`reloader.stakater.com/auto = "true"`) cascades token rotation
-  to both server and any annotated caller — no manual rollout.
-
-## Network controls
-
-- **`kubernetes_network_policy_v1.ws_ingress`** — two separate ingress
-  rules on the same policy:
-  - **TCP/3000** (Playwright WS): only namespaces labelled
-    `chrome-service.viktorbarzin.me/client = "true"` (plus an explicit
-    fallback for `f1-stream` by `kubernetes.io/metadata.name`).
-  - **TCP/6080** (noVNC HTTP+WS): only the `traefik` namespace, since
-    the public-facing path is `chrome.viktorbarzin.me` ingress →
-    Traefik → sidecar. Authentik forward-auth still gates external
-    access at the Traefik layer.
-- **WS port 3000** is internal-only (no ingress, no Cloudflare DNS).
-- **noVNC sidecar** (`forgejo.viktorbarzin.me/viktor/chrome-service-novnc`)
-  exposes a live HTML5 view of the headed Chromium session via
-  `x11vnc` (connected to Xvfb on `localhost:6099`) bridged to
-  `websockify` on port 6080. Service `chrome` maps :80 → :6080 and is
-  exposed via `ingress_factory` at `chrome.viktorbarzin.me`,
-  Authentik-gated. Both static page and WebSocket upgrade share the
-  same path — Cloudflare proxy, Cloudflared tunnel, Traefik, and
-  Authentik forward-auth all preserve `Upgrade: websocket`.
-
-## Adding a new caller
-
-See `stacks/chrome-service/README.md` for the four-step recipe:
-
-1. Label the caller's namespace.
-2. Add an `ExternalSecret` pulling `secret/chrome-service`.
-3. Inject `CHROME_WS_URL` + `CHROME_WS_TOKEN` env vars.
-4. Vendor `stealth.js` and apply via `await context.add_init_script(...)`
-   after every `new_context()`.
-
-## Limits + risks
-
-- **Anti-bot vs stealth arms race** — when an upstream beats us (DRM
-  license check, device-fingerprint mismatch, hotlink protection that
-  whitelists specific parent domains), the verifier returns
-  `is_playable=False` and the extractor moves on. No user-visible
-  breakage, just empty stream lists for that source.
-- **JWPlayer DRM error 102630** — observed with several hmembeds embeds
-  even from the headed chrome-service. The license check bails because
-  the request origin isn't on the embed's allowlist; this is upstream
-  policy, not an infra defect.
-- **Single replica + RWO PVC** — the deployment uses `Recreate` strategy.
-  Brief outage on rollout, ~30s for browser warmup.
-- **No `/metrics` endpoint** — the cluster's generic
-  `KubePodCrashLooping` rule covers basic alerting. A Prometheus scrape
-  exporter is day-2 work.
diff --git a/docs/architecture/ci-cd.md b/docs/architecture/ci-cd.md
index 4c0c020b..cc51cdde 100644
--- a/docs/architecture/ci-cd.md
+++ b/docs/architecture/ci-cd.md
@@ -19,7 +19,7 @@ graph LR
     I --> J[Pull from DockerHub<br/>or Pull-Through Cache]
 
     K[Pull-Through Cache<br/>10.0.20.10] -.-> J
-    L[forgejo.viktorbarzin.me<br/>Private Registry on Forgejo] -.-> J
+    L[registry.viktorbarzin.me<br/>Private Registry] -.-> J
 
     style B fill:#2088ff
     style F fill:#4c9e47
@@ -33,7 +33,7 @@ graph LR
 | GitHub Actions | Cloud | `.github/workflows/build-and-deploy.yml` | Build Docker images, push to DockerHub |
 | Woodpecker CI | Self-hosted | `ci.viktorbarzin.me` | Deploy to Kubernetes cluster |
 | DockerHub | Cloud | `viktorbarzin/*` | Public image registry |
-| Private Registry | Forgejo Packages | `forgejo.viktorbarzin.me/viktor` | Private container images (PAT auth, retention CronJob) — migrated from registry.viktorbarzin.me 2026-05-07 |
+| Private Registry | Custom | `registry.viktorbarzin.me` | Private images, htpasswd auth |
 | Pull-Through Cache | Custom | `10.0.20.10:5000` (docker.io)<br/>`10.0.20.10:5010` (ghcr.io) | LAN cache for remote registries |
 | Kyverno | Cluster | `kyverno` namespace | Auto-sync registry credentials to all namespaces |
 | Vault | Cluster | `vault.viktorbarzin.me` | K8s auth for Woodpecker pipelines |
@@ -102,8 +102,7 @@ Woodpecker API uses numeric IDs (not owner/name):
 1. **Containerd hosts.toml** redirects pulls from docker.io and ghcr.io to pull-through cache at `10.0.20.10`
 2. **Pull-through cache** serves cached images from LAN, fetches from upstream on cache miss
 3. **Kyverno ClusterPolicy** auto-syncs `registry-credentials` Secret to all namespaces for private registry access
-4. **Private registry** has been Forgejo's built-in OCI registry at `forgejo.viktorbarzin.me/viktor/<image>` since 2026-05-07. Auth via PAT (Vault `secret/ci/global/forgejo_push_token` for push, `secret/viktor/forgejo_pull_token` for pull). The pre-migration `registry:2.8.3`-based private registry on `registry.viktorbarzin.me:5050` was the root cause of three orphan-index incidents in three weeks (2026-04-13, 2026-04-19, 2026-05-04 — see `docs/post-mortems/2026-04-19-registry-orphan-index.md` and the full migration writeup at `docs/plans/2026-05-07-forgejo-registry-consolidation-{design,plan}.md`). The five pull-through caches on `10.0.20.10` (ports 5000/5010/5020/5030/5040) stay in place for upstream registries.
-5. **Integrity probe** (`registry-integrity-probe` CronJob in `monitoring` ns, every 15m) walks `/v2/_catalog` → tags → indexes → child manifests via HEAD and pushes `registry_manifest_integrity_failures` to Pushgateway; alerts `RegistryManifestIntegrityFailure` / `RegistryIntegrityProbeStale` / `RegistryCatalogInaccessible` page on broken state. Authoritative check (HTTP API, not filesystem).
+4. **Private registry** (`registry.viktorbarzin.me`) uses htpasswd auth, credentials stored in Vault
 
 ### Infra Pipelines (Woodpecker-only)
 
@@ -112,14 +111,7 @@ Woodpecker API uses numeric IDs (not owner/name):
 | default | `.woodpecker/default.yml` | Terragrunt apply on push |
 | renew-tls | `.woodpecker/renew-tls.yml` | Certbot renewal cron |
 | build-cli | `.woodpecker/build-cli.yml` | Build and push to dual registries |
-| build-ci-image | `.woodpecker/build-ci-image.yml` | Build `infra-ci` tooling image (triggered by `ci/Dockerfile` change or manual); post-push HEADs every blob via `verify-integrity` step to catch orphan-index pushes |
 | k8s-portal | `.woodpecker/k8s-portal.yml` | Path-filtered build for k8s-portal subdirectory |
-| registry-config-sync | `.woodpecker/registry-config-sync.yml` | SCP `modules/docker-registry/*` to `/opt/registry/` on `10.0.20.10` when any managed file changes; bounces containers + nginx per `docs/runbooks/registry-vm.md` |
-| pve-nfs-exports-sync | `.woodpecker/pve-nfs-exports-sync.yml` | Sync `scripts/pve-nfs-exports` → `/etc/exports` on PVE host |
-| postmortem-todos | `.woodpecker/postmortem-todos.yml` | Auto-resolve safe TODOs from new `docs/post-mortems/*.md` via headless Claude agent |
-| drift-detection | `.woodpecker/drift-detection.yml` | Nightly Terraform drift detection |
-| issue-automation | `.woodpecker/issue-automation.yml` | Triage + respond to `ViktorBarzin/infra` GitHub issues |
-| provision-user | `.woodpecker/provision-user.yml` | Add namespace-owner user from Vault spec |
 
 ## Configuration
 
diff --git a/docs/architecture/compute.md b/docs/architecture/compute.md
index cc9c4786..bf456030 100644
--- a/docs/architecture/compute.md
+++ b/docs/architecture/compute.md
@@ -18,7 +18,7 @@ graph TB
     subgraph Proxmox["Proxmox VE"]
         direction TB
         MASTER["VM 200: k8s-master<br/>8c / 32GB<br/>10.0.20.100"]
-        NODE1["VM 201: k8s-node1<br/>16c / 32GB<br/>GPU Passthrough<br/>nvidia.com/gpu=true:PreferNoSchedule"]
+        NODE1["VM 201: k8s-node1<br/>16c / 32GB<br/>GPU Passthrough<br/>nvidia.com/gpu=true:NoSchedule"]
         NODE2["VM 202: k8s-node2<br/>8c / 32GB"]
         NODE3["VM 203: k8s-node3<br/>8c / 32GB"]
         NODE4["VM 204: k8s-node4<br/>8c / 32GB"]
@@ -72,7 +72,7 @@ graph TB
 | VM | VMID | vCPUs | RAM | Network | Role | Taints |
 |----|------|-------|-----|---------|------|--------|
 | k8s-master | 200 | 8 | 32GB | vmbr1:vlan20 (10.0.20.100) | Control Plane | `node-role.kubernetes.io/control-plane:NoSchedule` |
-| k8s-node1 | 201 | 16 | 32GB | vmbr1:vlan20 | GPU Worker | `nvidia.com/gpu=true:PreferNoSchedule` (applied dynamically to whichever node carries the GPU) |
+| k8s-node1 | 201 | 16 | 32GB | vmbr1:vlan20 | GPU Worker | `nvidia.com/gpu=true:NoSchedule` |
 | k8s-node2 | 202 | 8 | 32GB | vmbr1:vlan20 | Worker | None |
 | k8s-node3 | 203 | 8 | 32GB | vmbr1:vlan20 | Worker | None |
 | k8s-node4 | 204 | 8 | 32GB | vmbr1:vlan20 | Worker | None |
@@ -85,9 +85,9 @@ graph TB
 |-----------|-------|
 | Device | NVIDIA Tesla T4 (16GB GDDR6) |
 | PCIe Address | 0000:06:00.0 |
-| Assigned VM | VMID 201 (k8s-node1) — physical location only, no Terraform pin |
-| Node Label | `nvidia.com/gpu.present=true` (auto-applied by gpu-feature-discovery; also `feature.node.kubernetes.io/pci-10de.present=true` from NFD) |
-| Node Taint | `nvidia.com/gpu=true:PreferNoSchedule` (applied by `null_resource.gpu_node_config` to every NFD-tagged GPU node) |
+| Assigned VM | VMID 201 (k8s-node1) |
+| Node Label | `gpu=true` |
+| Node Taint | `nvidia.com/gpu=true:NoSchedule` |
 | Driver | NVIDIA GPU Operator |
 | Resource Name | `nvidia.com/gpu` |
 
@@ -273,8 +273,8 @@ resources {
 ### GPU Resource Management
 
 **Node Selection**: GPU pods must:
-1. Tolerate `nvidia.com/gpu=true:PreferNoSchedule` taint
-2. Select `nvidia.com/gpu.present=true` label (auto-applied by gpu-feature-discovery wherever the card is)
+1. Tolerate `nvidia.com/gpu=true:NoSchedule` taint
+2. Select `gpu=true` label
 3. Request `nvidia.com/gpu: 1` resource
 
 **Example**:
@@ -286,7 +286,7 @@ spec:
     value: "true"
     effect: NoSchedule
   nodeSelector:
-    nvidia.com/gpu.present: "true"
+    gpu: "true"
   containers:
   - name: app
     resources:
@@ -294,14 +294,6 @@ spec:
         nvidia.com/gpu: 1
 ```
 
-**Portability**: No Terraform code references a specific hostname for
-GPU scheduling. If the GPU card is physically moved to a different
-node, gpu-feature-discovery moves the `nvidia.com/gpu.present=true`
-label with it, and `null_resource.gpu_node_config` re-applies the
-`nvidia.com/gpu=true:PreferNoSchedule` taint to the new host on the
-next apply (discovery keyed on
-`feature.node.kubernetes.io/pci-10de.present=true`).
-
 **GPU Workloads**:
 - Ollama (LLM inference)
 - ComfyUI (Stable Diffusion workflows)
@@ -537,7 +529,7 @@ kubectl describe pod <pod-name> -n <namespace>
    ```
    0/5 nodes are available: 5 Insufficient nvidia.com/gpu.
    ```
-   **Fix**: Verify the GPU-carrying node is Ready and has the `nvidia.com/gpu.present=true` label. Check `kubectl get nodes -l nvidia.com/gpu.present=true` — if empty, gpu-feature-discovery hasn't labeled any node (operator not running, driver not loaded, or PCI passthrough broken).
+   **Fix**: Verify GPU node (201) is Ready and labeled `gpu=true`.
 
 ### Pods OOMKilled repeatedly
 
@@ -622,7 +614,7 @@ spec:
     value: "true"
     effect: NoSchedule
   nodeSelector:
-    nvidia.com/gpu.present: "true"
+    gpu: "true"
   containers:
   - name: app
     resources:
diff --git a/docs/architecture/databases.md b/docs/architecture/databases.md
index c47fcb3d..5500ed32 100644
--- a/docs/architecture/databases.md
+++ b/docs/architecture/databases.md
@@ -120,29 +120,9 @@ graph TB
 
 ### Redis
 
-Single shared cluster for all 17 consumers (Immich, Authentik, Nextcloud, Paperless, Dawarich Sidekiq, Traefik, etc.). HAProxy (3 replicas, PDB minAvailable=2) is the sole client-facing path — clients talk only to `redis-master.redis.svc.cluster.local:6379` and HAProxy health-checks backends via `INFO replication`, routing only to `role:master`.
-
-**Architecture**:
-
-3 pods in StatefulSet `redis-v2`, each co-locating redis + sentinel + redis_exporter, using `docker.io/library/redis:8-alpine` (8.6.2). HAProxy (3 replicas, PDB minAvailable=2) routes clients to the current master via 1s `INFO replication` tcp-checks. Full context behind the April 2026 rework in beads `code-v2b`.
-
-- 3 redis pods + 3 co-located sentinels (quorum=2). Odd sentinel count eliminates split-brain.
-- **Pod anti-affinity is `required` (hard)** — each redis pod must land on a distinct node. Soft anti-affinity previously let the scheduler co-locate 2/3 pods on the same node; when that node (`k8s-node3`) went `NotReady→Ready` at 11:42 UTC on 2026-04-22 it took 2 redis pods with it and the cluster lost quorum. Cluster-wide PV `nodeAffinity` matches one zone (`topology.kubernetes.io/region=pve, zone=pve`), so PVCs rebind freely on reschedule.
-- `podManagementPolicy=Parallel` + init container that regenerates `sentinel.conf` on every boot by probing peer sentinels for consensus master (priority: sentinel vote → peer role:master with slaves → deterministic pod-0 fallback). No persistent sentinel runtime state — can't drift out of sync with reality (root cause of 2026-04-19 PM incident).
-- redis.conf has `include /shared/replica.conf`; the init container writes either an empty file (master) or `replicaof <master> 6379` (replicas), so pods come up already in the right role — no bootstrap race.
-- **Sentinel hostname persistence**: `sentinel resolve-hostnames yes` + `sentinel announce-hostnames yes` in the init-generated sentinel.conf are mandatory — without them, sentinel stores resolved IPs in its rewritten config, and pod-IP churn on restart breaks failover. The MONITOR command itself must be issued with a hostname and the flags must be active before MONITOR, otherwise sentinel stores an IP that goes stale the next time the pod is deleted.
-- **Failover timing (tuned 2026-04-22)**: `sentinel down-after-milliseconds=15000` + `sentinel failover-timeout=60000`. Redis liveness probe `timeout_seconds=10, failure_threshold=5`; sentinel liveness probe same. LUKS-encrypted LVM + BGSAVE fork can briefly stall master I/O >5s, which under the old 5s/30s sentinel timings + 3s/3 probes induced spurious `+sdown`→`+odown`→`+switch-master` cycles every 1-2 minutes. The new values absorb normal BGSAVE pauses without triggering failover.
-- **HAProxy check smoothing (tuned 2026-04-22)**: `check inter 2s fall 3 rise 2` (was `1s / 2 / 2`) + `timeout check 5s` (was `3s`). The aggressive 1s polling used to race sentinel failovers — during a legitimate promote, HAProxy could catch the old master serving `role:slave` in the 1-3s window before re-probing the new master, leaving the backend empty and clients receiving `ReadOnlyError`.
-- **Headless service `publish_not_ready_addresses=false`** (flipped 2026-04-22). Previously `true` meant HAProxy's DNS resolver saw not-yet-ready pods during rollouts, compounding the check-race above. Sentinel peer discovery is unaffected because sentinels announce to each other explicitly via `sentinel announce-hostnames yes`.
-- Memory: master + replicas `requests=limits=768Mi`. Concurrent BGSAVE + AOF-rewrite fork can double RSS via COW, so headroom must cover it. `auto-aof-rewrite-percentage=200` + `auto-aof-rewrite-min-size=128mb` tune down rewrite frequency.
-- Persistence: RDB (`save 900 1 / 300 100 / 60 10000`) + AOF `appendfsync=everysec`. Disk-wear analysis on 2026-04-19 (sdb Samsung 850 EVO 1TB, 150 TBW): Redis contributes <1 GB/day cluster-wide → 40+ year runway at the 20% TBW budget.
-- `maxmemory=640mb` (83% of 768Mi limit), `maxmemory-policy=allkeys-lru`.
-- Weekly RDB backup to NFS (`/srv/nfs/redis-backup/`, Sunday 03:00, 28-day retention, pushes Pushgateway metrics).
-- Auth disabled this phase — NetworkPolicy is the isolation layer. Enabling `requirepass` + rolling creds to all 17 clients is a planned follow-up.
-
-**Observability** (redis-v2 only): `oliver006/redis_exporter:v1.62.0` sidecar per pod on port 9121, auto-scraped via Prometheus pod annotation. Alerts: `RedisDown`, `RedisMemoryPressure`, `RedisEvictions`, `RedisReplicationLagHigh`, `RedisForkLatencyHigh`, `RedisAOFRewriteLong`, `RedisReplicasMissing`, `RedisBackupStale`, `RedisBackupNeverSucceeded`.
-
-**Why this design** — four incidents in April 2026 drove the rework: (a) 2026-04-04 service selector routed reads+writes to master+replica causing `READONLY` errors; (b) 2026-04-19 AM master OOMKilled during BGSAVE+PSYNC with the 256Mi limit too tight for a 204 MB working set under COW amplification; (c) 2026-04-19 PM sentinel runtime state drifted (only 2 sentinels, no majority) and routed writes to a slave; (d) 2026-04-22 five-factor flap cascade — soft anti-affinity let 2/3 pods co-locate on `k8s-node3`, node bounced NotReady→Ready and took quorum with it; aggressive sentinel/probe timing (5s/30s + 3s/3) amplified disk-I/O stalls under LUKS-encrypted LVM into spurious `+switch-master` loops; HAProxy's 1s polling raced sentinel failovers and routed writes to demoted masters; `publish_not_ready_addresses=true` fed not-yet-ready pods into HAProxy DNS; downstream `realestate-crawler-celery` CrashLoopBackOff closed the feedback loop. See beads epic `code-v2b` for the full plan and linked challenger analyses.
+- Shared instance at `redis.redis.svc.cluster.local`
+- Used for caching and session storage
+- No persistence (ephemeral)
 
 ### SQLite (Per-App)
 
diff --git a/docs/architecture/dns.md b/docs/architecture/dns.md
index eec99830..cba4803c 100644
--- a/docs/architecture/dns.md
+++ b/docs/architecture/dns.md
@@ -1,10 +1,10 @@
 # DNS Architecture
 
-Last updated: 2026-04-19 (WS C — NodeLocal DNSCache deployed; WS D — pfSense Unbound replaces dnsmasq; WS E — Kea multi-IP DHCP option 6 + TSIG-signed DDNS)
+Last updated: 2026-04-15
 
 ## Overview
 
-DNS is served by a split architecture: **Technitium DNS** handles internal resolution (`.viktorbarzin.lan`) and recursive lookups, while **Cloudflare DNS** manages all public domains (`.viktorbarzin.me`). Kubernetes pods use **CoreDNS** which forwards to Technitium for internal zones. All three Technitium instances run on encrypted block storage with zone replication via AXFR every 30 minutes. A **NodeLocal DNSCache** DaemonSet runs on every node and transparently intercepts pod DNS traffic, caching responses locally so pods keep resolving even during CoreDNS, Technitium, or pfSense disruptions.
+DNS is served by a split architecture: **Technitium DNS** handles internal resolution (`.viktorbarzin.lan`) and recursive lookups, while **Cloudflare DNS** manages all public domains (`.viktorbarzin.me`). Kubernetes pods use **CoreDNS** which forwards to Technitium for internal zones. All three Technitium instances run on encrypted block storage with zone replication via AXFR every 30 minutes.
 
 ## Architecture Diagram
 
@@ -22,15 +22,14 @@ graph TB
     end
 
     subgraph "pfSense (10.0.20.1)"
-        pf_unbound[Unbound<br/>Resolver<br/>auth-zone AXFR]
+        pf_dnsmasq[dnsmasq<br/>Forwarder]
         pf_kea[Kea DHCP4<br/>3 subnets, 53 reservations]
         pf_ddns[Kea DHCP-DDNS<br/>RFC 2136]
+        pf_nat[NAT rdr<br/>UDP 53 → Technitium]
     end
 
     subgraph "Kubernetes Cluster"
-        NodeLocalDNS[NodeLocal DNSCache<br/>DaemonSet, 5 nodes<br/>169.254.20.10 + 10.96.0.10]
         CoreDNS[CoreDNS<br/>kube-system<br/>.:53 + viktorbarzin.lan:53]
-        KubeDNSUpstream[kube-dns-upstream<br/>ClusterIP, selects CoreDNS pods]
 
         subgraph "Technitium HA (namespace: technitium)"
             Primary[Primary<br/>technitium]
@@ -52,17 +51,16 @@ graph TB
 
     Internet -->|DNS query| CF
     CF -->|CNAME to tunnel| CFTunnel
-    LAN -->|DNS query UDP 53| pf_unbound
+    LAN -->|DNS query UDP 53| pf_nat
+    pf_nat -->|forward| LB_DNS
     pf_kea -->|lease event| pf_ddns
     pf_ddns -->|A + PTR| LB_DNS
 
-    pf_unbound -->|AXFR viktorbarzin.lan| LB_DNS
-    pf_unbound -->|public queries DoT :853| CF
+    pf_dnsmasq -->|.viktorbarzin.lan| LB_DNS
+    pf_dnsmasq -->|public queries| CF
 
-    NodeLocalDNS -->|cache miss| KubeDNSUpstream
-    KubeDNSUpstream --> CoreDNS
     CoreDNS -->|.viktorbarzin.lan| ClusterIP
-    CoreDNS -->|public queries| pf_unbound
+    CoreDNS -->|public queries| pf_dnsmasq
 
     LB_DNS --> Primary
     LB_DNS --> Secondary
@@ -82,9 +80,8 @@ graph TB
 |-----------|----------|---------|---------|
 | Technitium DNS | K8s namespace `technitium` | 14.3.0 | Primary internal DNS + recursive resolver |
 | CoreDNS | K8s `kube-system` | Cluster default | K8s service discovery + forwarding to Technitium |
-| NodeLocal DNSCache | K8s `kube-system` (DaemonSet) | `k8s-dns-node-cache:1.23.1` | Per-node DNS cache, transparent interception on 10.96.0.10 + 169.254.20.10. Insulates pods from CoreDNS/Technitium/pfSense disruption. |
 | Cloudflare DNS | SaaS | N/A | Public domain management (~50 domains) |
-| pfSense Unbound | 10.0.20.1 | pfSense 2.7.2 (Unbound 1.19) | DNS resolver on LAN/OPT1/WAN; AXFR-slaves `viktorbarzin.lan` from Technitium; DoT upstream to Cloudflare |
+| pfSense dnsmasq | 10.0.20.1 | pfSense 2.7.x | DNS forwarder for management VLAN |
 | Kea DHCP-DDNS | 10.0.20.1 | pfSense 2.7.x | Automatic DNS registration on DHCP lease |
 | phpIPAM | K8s namespace `phpipam` | v1.7.0 | IPAM ↔ DNS bidirectional sync |
 
@@ -93,22 +90,19 @@ graph TB
 | Stack | Path | DNS Resources |
 |-------|------|---------------|
 | Technitium | `stacks/technitium/` | 3 deployments, services, PVCs, 4 CronJobs, CoreDNS ConfigMap |
-| NodeLocal DNSCache | `stacks/nodelocal-dns/` | DaemonSet (5 pods), ConfigMap, kube-dns-upstream Service, headless metrics Service |
 | Cloudflared | `stacks/cloudflared/` | Cloudflare DNS records (A, AAAA, CNAME, MX, TXT), tunnel config |
 | phpIPAM | `stacks/phpipam/` | dns-sync CronJob, pfsense-import CronJob |
-| pfSense | `stacks/pfsense/` | VM config only (Unbound config is managed out-of-band via pfSense web UI / direct config.xml edits; see `docs/runbooks/pfsense-unbound.md`) |
+| pfSense | `stacks/pfsense/` | VM config (DNS config is via pfSense web UI) |
 
 ## DNS Resolution Paths
 
 ### K8s Pod → Internal Domain (.viktorbarzin.lan)
 
 ```
-Pod → NodeLocal DNSCache (intercepts on kube-dns:10.96.0.10)
-  → cache hit: serve locally (TTL 30s / stale up to 86400s via CoreDNS upstream)
-  → cache miss: forward to kube-dns-upstream (selects CoreDNS pods directly)
-     → CoreDNS: template matches 2+ labels before .viktorbarzin.lan → NXDOMAIN
-     → CoreDNS: forward to Technitium ClusterIP (10.96.0.53)
-     → Technitium resolves from viktorbarzin.lan zone
+Pod → CoreDNS (kube-dns:53)
+  → template: if 2+ labels before .viktorbarzin.lan → NXDOMAIN (ndots:5 junk filter)
+  → forward to Technitium ClusterIP (10.96.0.53)
+  → Technitium resolves from viktorbarzin.lan zone
 ```
 
 The ndots:5 template in CoreDNS short-circuits queries like `www.cloudflare.com.viktorbarzin.lan` (caused by K8s search domain expansion) by returning NXDOMAIN for any query with 2+ labels before `.viktorbarzin.lan`. Only single-label queries (e.g., `idrac.viktorbarzin.lan`) reach Technitium.
@@ -116,54 +110,41 @@ The ndots:5 template in CoreDNS short-circuits queries like `www.cloudflare.com.
 ### K8s Pod → Public Domain
 
 ```
-Pod → NodeLocal DNSCache (intercepts on kube-dns:10.96.0.10)
-  → cache hit: serve locally
-  → cache miss: forward to kube-dns-upstream (selects CoreDNS pods directly)
-     → CoreDNS: forward to pfSense (10.0.20.1), fallback 8.8.8.8, 1.1.1.1
-     → pfSense Unbound:
-        - .viktorbarzin.lan → local auth-zone (AXFR-cached from Technitium)
-        - public → DoT to Cloudflare (1.1.1.1 / 1.0.0.1 port 853)
+Pod → CoreDNS (kube-dns:53)
+  → forward to pfSense (10.0.20.1), fallback 8.8.8.8, 1.1.1.1
+  → pfSense dnsmasq → Cloudflare (1.1.1.1)
 ```
 
 ### LAN Client (192.168.1.x) → Any Domain
 
 ```
 Client gets DNS=192.168.1.2 (pfSense WAN) from DHCP
-  → pfSense Unbound listens on 192.168.1.2:53 directly (no NAT rdr)
-    - .viktorbarzin.lan → auth-zone (AXFR-cached from Technitium 10.0.20.201)
-      Survives full Technitium/K8s outage — auth-zone keeps serving from
-      /var/unbound/viktorbarzin.lan.zone with `fallback-enabled: yes`.
-    - .viktorbarzin.me (non-proxied) and other public → DoT to Cloudflare
-      (1.1.1.1 / 1.0.0.1 on port 853, SNI cloudflare-dns.com)
+  → pfSense NAT rdr on WAN interface → Technitium LB (10.0.20.201)
+  → Technitium resolves:
+    - .viktorbarzin.lan → local zone
+    - .viktorbarzin.me (non-proxied) → recursive, then Split Horizon translates
+      176.12.22.76 → 10.0.20.200 for 192.168.1.0/24 clients
+    - other → recursive to Cloudflare DoH (1.1.1.1)
 ```
 
-**Trade-off vs. prior NAT rdr**: Split Horizon hairpin translation
-(`176.12.22.76 → 10.0.20.200` for 192.168.1.x clients) was only applied
-when queries reached Technitium via the NAT rdr. With Unbound answering
-on 192.168.1.2:53 directly, non-proxied `*.viktorbarzin.me` queries on the
-192.168.1.x LAN return the public IP, which the TP-Link AP can't hairpin.
-If hairpin is broken on LAN for a given non-proxied service, the fix is
-either (a) switch the service to proxied (via `dns_type = "proxied"`)
-or (b) add a local-data override on pfSense Unbound. The pre-Unbound
-state is documented in the `docs/runbooks/pfsense-unbound.md` rollback
-section.
+Client source IPs are preserved (no SNAT on 192.168.1.x → 10.0.20.x path) — Technitium logs show real per-device IPs.
 
 ### Management VLAN (10.0.10.x) → Any Domain
 
 ```
 Client gets DNS from Kea DHCP → pfSense (10.0.10.1)
-  → pfSense Unbound:
-    - .viktorbarzin.lan → auth-zone (local)
-    - other → DoT to Cloudflare (1.1.1.1 / 1.0.0.1 port 853)
+  → pfSense dnsmasq:
+    - .viktorbarzin.lan → forward to Technitium (10.0.20.201)
+    - other → forward to Cloudflare (1.1.1.1)
 ```
 
 ### K8s VLAN (10.0.20.x) → Any Domain
 
 ```
 Client gets DNS from Kea DHCP → pfSense (10.0.20.1)
-  → pfSense Unbound:
-    - .viktorbarzin.lan → auth-zone (local)
-    - other → DoT to Cloudflare (1.1.1.1 / 1.0.0.1 port 853)
+  → pfSense dnsmasq:
+    - .viktorbarzin.lan → forward to Technitium (10.0.20.201)
+    - other → forward to Cloudflare (1.1.1.1)
 ```
 
 ## Technitium DNS — Internal DNS Server
@@ -212,7 +193,7 @@ All three pods share the `dns-server=true` label, so the DNS LoadBalancer (10.0.
 | `0.168.192.in-addr.arpa` | Primary | PTR | Reverse DNS for Valchedrym site |
 | `emrsn.org` | Primary (stub) | — | Returns NXDOMAIN locally (avoids 27K+ daily corporate query floods) |
 
-**Dynamic updates**: Enabled via `UseSpecifiedNetworkACL` from pfSense IPs (10.0.20.1, 10.0.10.1, 192.168.1.2) **AND require a valid TSIG signature** on `viktorbarzin.lan`, `10.0.10.in-addr.arpa`, `20.0.10.in-addr.arpa`, `1.168.192.in-addr.arpa`. Policy: `updateSecurityPolicies = [{tsigKeyName: "kea-ddns", domain: "*.<zone>", allowedTypes: ["ANY"]}]`. Unsigned updates from the allowlisted pfSense source IPs are refused ("Dynamic Updates Security Policy"). TSIG key `kea-ddns` (HMAC-SHA256) present on primary/secondary/tertiary; secret in Vault `secret/viktor/kea_ddns_tsig_secret`. Applied 2026-04-19 (WS E, bd `code-o6j`).
+**Dynamic updates**: Enabled via `UseSpecifiedNetworkACL` from pfSense IPs (10.0.20.1, 10.0.10.1, 192.168.1.2) for Kea DDNS RFC 2136 updates.
 
 ### Resolver Settings
 
@@ -271,61 +252,29 @@ Technitium's **Split Horizon AddressTranslation** app post-processes DNS respons
 
 Config is synced to all 3 Technitium instances by CronJob `technitium-split-horizon-sync` (every 6h).
 
-## NodeLocal DNSCache
-
-A DaemonSet in `kube-system` (`node-local-dns`, image `registry.k8s.io/dns/k8s-dns-node-cache:1.23.1`) runs on every node including the control plane. Each pod uses `hostNetwork: true` + `NET_ADMIN` and installs iptables NOTRACK rules so it transparently serves DNS on both:
-
-- **169.254.20.10** — the canonical link-local IP from the upstream docs
-- **10.96.0.10** — the `kube-dns` ClusterIP, so existing pods (which already use this as their nameserver) hit the on-node cache with no kubelet change
-
-Cache misses go to a separate `kube-dns-upstream` ClusterIP service (not `kube-dns`, to avoid looping back to ourselves) that selects the CoreDNS pods directly via `k8s-app=kube-dns`.
-
-Priority class is `system-node-critical`; tolerations are permissive (`operator: Exists`) so the DaemonSet runs on tainted master and other reserved nodes. Kyverno `dns_config` drift is suppressed via `ignore_changes` on the DaemonSet.
-
-**Caching**: `cluster.local:53` caches 9984 success / 9984 denial entries with 30s/5s TTLs. Other zones cache 30s. If CoreDNS is killed, nodes keep answering cached names — verified on 2026-04-19 by deleting all three CoreDNS pods and running `dig @169.254.20.10 idrac.viktorbarzin.lan` + `dig @169.254.20.10 github.com` from a pod (both returned answers).
-
-**Kubelet clusterDNS**: **Unchanged** — still `10.96.0.10`. NodeLocal DNSCache co-listens on that IP so traffic interception is transparent; switching kubelet to `169.254.20.10` would require a rolling reconfigure of every node and provides no additional cache benefit over transparent mode.
-
-**Metrics**: A headless Service `node-local-dns` (ClusterIP `None`) exposes each pod on port `9253` for Prometheus scraping (annotated `prometheus.io/scrape=true`).
-
 ## CoreDNS Configuration
 
-CoreDNS is managed via Terraform in `stacks/technitium/modules/technitium/` — the Corefile ConfigMap lives in `main.tf`, and scaling/PDB are in `coredns.tf` (a `kubernetes_deployment_v1_patch` against the kubeadm-managed Deployment).
+CoreDNS is managed via a Terraform `kubernetes_config_map` resource in `stacks/technitium/modules/technitium/main.tf`.
 
 ```
 .:53 {
   errors / health / ready
   kubernetes cluster.local in-addr.arpa ip6.arpa  # K8s service discovery
   prometheus :9153                                  # Metrics
-  forward . 10.0.20.1 8.8.8.8 1.1.1.1 {
-      policy sequential                             # try upstreams in order
-      health_check 5s                               # mark unhealthy in 5s
-      max_fails 2
-  }
-  cache {
-    success 10000 300 6
-    denial 10000 300 60
-    serve_stale 86400s                        # resilience during upstream outage
-  }
+  forward . 10.0.20.1 8.8.8.8 1.1.1.1             # pfSense → Google → Cloudflare
+  cache (success 10000 300, denial 10000 300)
   loop / reload / loadbalance
 }
 
 viktorbarzin.lan:53 {
   template: .*\..*\.viktorbarzin\.lan\.$ → NXDOMAIN  # ndots:5 junk filter
-  forward . 10.96.0.53 {                             # Technitium ClusterIP
-    health_check 5s
-    max_fails 2
-  }
-  cache (success 10000 300, denial 10000 300, serve_stale 86400s)
+  forward . 10.96.0.53                                # Technitium ClusterIP
+  cache (success 10000 300, denial 10000 300)
 }
 ```
 
-**Scaling**: 3 replicas, `required` anti-affinity on `kubernetes.io/hostname` (spread across 3 distinct nodes). PodDisruptionBudget `coredns` with `minAvailable=2`.
-
 **Kyverno ndots injection**: A Kyverno policy injects `ndots:2` on all pods cluster-wide to reduce search domain expansion noise. The template regex is a second layer of defense for any queries that still get expanded.
 
-**Failover behaviour**: With `policy sequential` on the root forward block, CoreDNS tries pfSense first; if `health_check 5s` detects pfSense as down, it fails over to 8.8.8.8 then 1.1.1.1 within ~5s rather than timing out per-query. Combined with `serve_stale`, pods keep resolving cached names for up to 24h even with full upstream failure.
-
 ## Cloudflare DNS — External Domains
 
 All public domains are under the `viktorbarzin.me` zone. DNS records are **auto-created per service** via the `ingress_factory` module's `dns_type` parameter. A small number of records (Helm-managed ingresses, special cases) remain centrally managed in `config.tfvars`.
@@ -375,9 +324,9 @@ The Cloudflare tunnel uses a **wildcard rule** (`*.viktorbarzin.me → Traefik`)
 Devices get automatic DNS registration without manual intervention. See [networking.md § IPAM & DNS Auto-Registration](networking.md#ipam--dns-auto-registration) for the full data flow diagram.
 
 Summary:
-1. **Kea DHCP** on pfSense assigns IP (53 reservations across 3 subnets). DHCP option 6 (DNS servers) is pushed with two IPs per internal subnet: internal resolver + AdGuard public fallback (`94.140.14.14`) — clients survive an internal DNS outage.
-2. **Kea DDNS** sends **TSIG-signed** RFC 2136 dynamic update to Technitium (A + PTR records) — immediate. Key `kea-ddns` (HMAC-SHA256); Technitium enforces both source-IP ACL and TSIG signature on `viktorbarzin.lan` + reverse zones.
-3. **phpipam-pfsense-import** CronJob (hourly) pulls Kea leases + ARP table into phpIPAM
+1. **Kea DHCP** on pfSense assigns IP (53 reservations across 3 subnets)
+2. **Kea DDNS** sends RFC 2136 dynamic update to Technitium (A + PTR records) — immediate
+3. **phpipam-pfsense-import** CronJob (5min) pulls Kea leases + ARP table into phpIPAM
 4. **phpipam-dns-sync** CronJob (15min) pushes named phpIPAM hosts → Technitium A + PTR, pulls Technitium PTR → phpIPAM hostnames
 
 ## Automation CronJobs
@@ -389,7 +338,7 @@ Summary:
 | `technitium-split-horizon-sync` | `15 */6 * * *` | technitium | Split Horizon + DNS Rebinding Protection on all 3 instances |
 | `technitium-dns-optimization` | `30 */6 * * *` | technitium | Min cache TTL 60s, emrsn.org stub zone |
 | `phpipam-dns-sync` | `*/15 * * * *` | phpipam | Bidirectional phpIPAM ↔ Technitium DNS sync |
-| `phpipam-pfsense-import` | `0 * * * *` | phpipam | Import Kea DHCP leases + ARP from pfSense |
+| `phpipam-pfsense-import` | `*/5 * * * *` | phpipam | Import Kea DHCP leases + ARP from pfSense |
 
 ### Password Rotation Flow
 
@@ -411,62 +360,28 @@ Vault DB engine rotates password
 | Metric Source | Dashboard | Alerts |
 |---------------|-----------|--------|
 | Technitium query logs (PostgreSQL) | Grafana `technitium-dns.json` | — |
-| CoreDNS Prometheus metrics (:9153) | Grafana CoreDNS dashboard | `CoreDNSErrors`, `CoreDNSForwardFailureRate` |
-| Technitium zone-sync CronJob (Pushgateway) | — | `TechnitiumZoneSyncFailed`, `TechnitiumZoneSyncStale`, `TechnitiumZoneCountMismatch` |
-| Technitium DNS pod availability | — | `TechnitiumDNSDown` |
-| `dns-anomaly-monitor` CronJob (Pushgateway) | — | `DNSQuerySpike`, `DNSQueryRateDropped`, `DNSHighErrorRate` |
+| CoreDNS Prometheus metrics (:9153) | Grafana CoreDNS dashboard | — |
 | Uptime Kuma | External monitors for all proxied domains | ExternalAccessDivergence (15min) |
 
-### Metrics pushed by `technitium-zone-sync`
-
-The zone-sync CronJob (runs every 30min) pushes the following to the Prometheus Pushgateway under `job=technitium-zone-sync`:
-
-| Metric | Labels | Meaning |
-|--------|--------|---------|
-| `technitium_zone_sync_status` | — | 0 = last run succeeded, 1 = at least one zone failed to create |
-| `technitium_zone_sync_failures` | — | Number of zones that failed to create this run |
-| `technitium_zone_sync_last_run` | — | Unix timestamp of last run (used by `TechnitiumZoneSyncStale`) |
-| `technitium_zone_count` | `instance=primary\|<replica-host>` | Zone count on each Technitium instance (drives `TechnitiumZoneCountMismatch`) |
-
-### DNS alert rewrites
-
-- `DNSQuerySpike` was previously broken: it compared current queries against `dns_anomaly_avg_queries`, which was computed from a per-pod `/tmp/dns_avg` file. Each CronJob run started with a fresh `/tmp`, so `NEW_AVG == TOTAL_QUERIES` every time and the spike condition could never fire. Rewritten to use `avg_over_time(dns_anomaly_total_queries[1h] offset 15m)` which compares against the actual 1h Prometheus history.
-- `DNSQueryRateDropped` (new): fires when query rate drops below 50% of 1h average — upstream clients may be failing to reach Technitium.
-
 ## Troubleshooting
 
 ### DNS Not Resolving Internal Domains
 
-1. Check NodeLocal DNSCache pods first — pod queries go through these: `kubectl -n kube-system get pod -l k8s-app=node-local-dns -o wide`
-2. Check Technitium pods: `kubectl get pod -n technitium`
-3. Check all 3 are healthy: `kubectl get pod -n technitium -l dns-server=true`
-4. Test via NodeLocal DNSCache from a pod: `kubectl exec -it <pod> -- dig @169.254.20.10 idrac.viktorbarzin.lan`
-5. Bypass NodeLocal DNSCache (test CoreDNS directly): `kubectl exec -it <pod> -- dig @<kube-dns-upstream-ClusterIP> idrac.viktorbarzin.lan` (`kubectl get svc -n kube-system kube-dns-upstream`)
-6. Check CoreDNS logs: `kubectl logs -n kube-system -l k8s-app=kube-dns`
-7. Verify ClusterIP service: `kubectl get svc -n technitium technitium-dns-internal`
+1. Check Technitium pods: `kubectl get pod -n technitium`
+2. Check all 3 are healthy: `kubectl get pod -n technitium -l dns-server=true`
+3. Test from a pod: `kubectl exec -it <pod> -- nslookup idrac.viktorbarzin.lan 10.96.0.53`
+4. Check CoreDNS logs: `kubectl logs -n kube-system -l k8s-app=kube-dns`
+5. Verify ClusterIP service: `kubectl get svc -n technitium technitium-dns-internal`
 
 ### LAN Clients Can't Resolve
 
-1. Verify pfSense Unbound is running: `ssh admin@10.0.20.1 "sockstat -l -4 -p 53 | grep unbound"` — expect listeners on `192.168.1.2:53`, `10.0.10.1:53`, `10.0.20.1:53`, `127.0.0.1:53`
-2. Verify the auth-zone is loaded: `ssh admin@10.0.20.1 "unbound-control -c /var/unbound/unbound.conf list_auth_zones"` — expect `viktorbarzin.lan. serial N`
-3. Test from LAN: `dig @192.168.1.2 idrac.viktorbarzin.lan` (should return with `aa` flag)
-4. Test public upstream: `dig @192.168.1.2 example.com +dnssec` (should have `ad` flag — DoT via Cloudflare working)
-5. If auth-zone can't AXFR: check Technitium `viktorbarzin.lan` zone options → `zoneTransferNetworkACL` contains `10.0.20.1, 10.0.10.1, 192.168.1.2`
-6. See `docs/runbooks/pfsense-unbound.md` for full Unbound runbook and rollback instructions
+1. Verify pfSense NAT rule redirects UDP 53 on WAN to 10.0.20.201
+2. Check Technitium LB service: `kubectl get svc -n technitium technitium-dns`
+3. Test from LAN: `dig @192.168.1.2 idrac.viktorbarzin.lan`
+4. Check `externalTrafficPolicy: Local` — if no Technitium pod runs on the node receiving traffic, it drops
 
 ### Hairpin NAT Not Working (LAN → *.viktorbarzin.me Fails)
 
-Since 2026-04-19 (Workstream D), pfSense Unbound answers LAN DNS queries
-directly instead of forwarding to Technitium, so the Technitium Split Horizon
-post-processing does NOT run for 192.168.1.x clients anymore. Non-proxied
-services break hairpin on LAN clients again. Options:
-
-1. **Switch service to proxied Cloudflare** (preferred) — set `dns_type = "proxied"` in the `ingress_factory` module call; DNS now resolves to Cloudflare edge, hairpin-independent.
-2. **Add a local-data override on pfSense Unbound** — under `Services → DNS Resolver → Host Overrides`, set `<service>.viktorbarzin.me → 10.0.20.200` (Traefik LB IP). This is equivalent to what Split Horizon did, applied at the resolver.
-3. **Revert to prior NAT rdr + Technitium Split Horizon** — documented in `docs/runbooks/pfsense-unbound.md` rollback section.
-
-K8s-side Split Horizon is still configured and applies when `*.viktorbarzin.me` queries DO reach Technitium (e.g., from pods that query via CoreDNS → Technitium forwarding for `.viktorbarzin.me` via pfSense). Verify Technitium split-horizon app:
-
 1. Verify Split Horizon app is installed on all instances
 2. Check CronJob status: `kubectl get cronjob -n technitium technitium-split-horizon-sync`
 3. Run the job manually: `kubectl create job --from=cronjob/technitium-split-horizon-sync test-sh -n technitium`
@@ -501,8 +416,6 @@ For external `.viktorbarzin.me` records:
 ## Incident History
 
 - **2026-04-14 (SEV1)**: NFS `fsid=0` caused Technitium primary data loss on restart. Fixed by migrating all 3 instances to `proxmox-lvm-encrypted`, adding zone-sync CronJob (30min AXFR). See [post-mortem](../post-mortems/2026-04-14-nfs-fsid0-dns-vault-outage.md).
-- **2026-04-19 (hardening, not outage)**: Workstream D — pfSense Unbound replaces dnsmasq as the pfSense DNS service. Unbound AXFR-slaves `viktorbarzin.lan` from Technitium so LAN-side resolution survives a full K8s outage. WAN NAT rdr `192.168.1.2:53 → 10.0.20.201` removed (Unbound listens on WAN directly). DoT upstream via Cloudflare. See `docs/runbooks/pfsense-unbound.md` and bd `code-k0d`.
-- **2026-04-19 (hardening, not outage)**: Workstream E — Kea DHCP now pushes TWO DNS IPs (internal + AdGuard public fallback `94.140.14.14`) via option 6 to the internal subnets (10.0.10/24, 10.0.20/24); 192.168.1/24 was already dual-IP (served by TP-Link). Kea DHCP-DDNS now TSIG-signs its RFC 2136 updates (key `kea-ddns`, HMAC-SHA256) and the Technitium zones require both source-IP ACL AND TSIG signature. See `docs/runbooks/pfsense-unbound.md` § "Kea DHCP-DDNS TSIG" and bd `code-o6j`.
 
 ## Related
 
diff --git a/docs/architecture/incident-response.md b/docs/architecture/incident-response.md
index 54ef0e51..631b1ece 100644
--- a/docs/architecture/incident-response.md
+++ b/docs/architecture/incident-response.md
@@ -178,11 +178,11 @@ flowchart LR
     subgraph "Kubernetes Cluster"
         C -->|Yes| D[Woodpecker Pipeline]
         D --> E[Vault Auth<br/>K8s SA JWT]
-        E --> F[Fetch API Token]
+        E --> F[Fetch SSH Key]
     end
 
-    subgraph "claude-agent-service (K8s)"
-        F --> G[HTTP POST /execute]
+    subgraph "DevVM (10.0.10.10)"
+        F --> G[SSH + Claude Code]
         G --> H[issue-responder agent]
         H --> I[Investigate / Implement]
         I --> J[Comment on Issue]
diff --git a/docs/architecture/mailserver.md b/docs/architecture/mailserver.md
index 0026b932..5cd46f08 100644
--- a/docs/architecture/mailserver.md
+++ b/docs/architecture/mailserver.md
@@ -1,147 +1,72 @@
 # Mail Server Architecture
 
-Last updated: 2026-04-19 (code-yiu Phase 6: MetalLB LB retired; traffic now enters via pfSense HAProxy with PROXY v2)
+Last updated: 2026-04-12 (Brevo relay migration)
 
 ## Overview
 
-Self-hosted email for `viktorbarzin.me` using docker-mailserver 15.0.0 on Kubernetes. Inbound mail arrives directly via MX record to the home IP on port 25. Outbound mail relays through Brevo EU (`smtp-relay.brevo.com:587` — migrated from Mailgun on 2026-04-12; SPF record cut over on 2026-04-18). Roundcubemail provides webmail access. CrowdSec protects SMTP/IMAP from brute-force attacks using real client IPs: pfSense HAProxy injects the PROXY v2 header on each backend connection so the mailserver pod sees the true source IP despite kube-proxy SNAT. See [`runbooks/mailserver-pfsense-haproxy.md`](../runbooks/mailserver-pfsense-haproxy.md) for ops details.
+Self-hosted email for `viktorbarzin.me` using docker-mailserver 15.0.0 on Kubernetes. Inbound mail arrives directly via MX record to the home IP on port 25. Outbound mail relays through Mailgun EU. Roundcubemail provides webmail access. CrowdSec protects SMTP/IMAP from brute-force attacks using real client IPs via `externalTrafficPolicy: Local` on a dedicated MetalLB IP.
 
 ## Architecture Diagram
 
-Two independent paths into the mailserver pod:
-
-- **External** (MX traffic, webmail clients over WAN): Internet → pfSense → HAProxy → NodePort → **alt container ports** (2525/4465/5587/10993) that **require** PROXY v2 framing.
-- **Intra-cluster** (Roundcube, E2E probe): same pod, **stock container ports** (25/465/587/993), **no** PROXY framing.
-
-One Deployment, one pod, two sets of Postfix `master.cf` services + Dovecot `inet_listener` blocks, two Kubernetes Services (`mailserver` ClusterIP + `mailserver-proxy` NodePort).
-
 ```mermaid
-flowchart TB
-    %% External ingress path
-    SENDER[Sending MTA<br/>arbitrary public IP] -->|MX lookup + SMTP<br/>:25| MX[mail.viktorbarzin.me<br/>A 176.12.22.76]
-    MX --> PF[pfSense WAN<br/>vtnet0 192.168.1.2]
-    PF -->|NAT rdr<br/>WAN:25/465/587/993<br/>→ 10.0.20.1:same| HAP
-    HAP[pfSense HAProxy<br/>4 TCP frontends on 10.0.20.1<br/>send-proxy-v2 to backends]
-    HAP -->|round-robin<br/>tcp-check inter 120s| KN{k8s worker<br/>node1..4}
-    KN -->|NodePort 30125-30128<br/>ETP: Cluster → kube-proxy SNAT| PODEXT
-
-    %% Internal ingress path
-    RC[Roundcubemail pod] -->|SMTP :587 + IMAP :993<br/>no PROXY| SVC[Service mailserver<br/>ClusterIP 10.103.108.x<br/>25/465/587/993]
-    PROBE[email-roundtrip-monitor<br/>CronJob every 20m] -->|IMAP :993<br/>no PROXY| SVC
-    SVC -->|kube-proxy routes| PODINT
-
-    %% The pod — two listener sets, one process tree
-    subgraph POD["mailserver pod (docker-mailserver 15.0.0)"]
-        direction LR
-        PODEXT[Alt ports<br/>2525 / 4465 / 5587 / 10993<br/><b>PROXY v2 REQUIRED</b><br/>smtpd_upstream_proxy_protocol=haproxy<br/>haproxy = yes]
-        PODINT[Stock ports<br/>25 / 465 / 587 / 993<br/>PROXY-free]
-        PODEXT --> POSTFIX
-        PODINT --> POSTFIX
-        POSTFIX[Postfix<br/>postscreen + smtpd + cleanup + queue]
-        POSTFIX --> RSPAMD[Rspamd<br/>spam + DKIM + DMARC]
-        RSPAMD --> DOVECOT[Dovecot IMAP<br/>LMTP deliver]
-        DOVECOT --> MAILBOX[(Maildir storage<br/>mailserver-data-encrypted PVC<br/>proxmox-lvm-encrypted LUKS2)]
+graph TB
+    subgraph "Inbound Mail"
+        SENDER[Sending MTA] -->|MX lookup| MX[mail.viktorbarzin.me:25]
+        MX -->|176.12.22.76:25| PF[pfSense NAT]
+        PF -->|10.0.20.202:25| MLB[MetalLB<br/>ETP: Local]
+        MLB --> POSTFIX[Postfix MTA]
     end
 
-    %% Outbound
-    POSTFIX -->|queued mail<br/>SASL + TLS| BREVO[Brevo EU Relay<br/>smtp-relay.brevo.com:587<br/>300/day free tier]
-    BREVO --> RECIPIENT[External Recipient]
+    subgraph "Mail Processing"
+        POSTFIX --> RSPAMD[Rspamd<br/>Spam/DKIM/DMARC]
+        RSPAMD --> DOVECOT[Dovecot IMAP]
+        DOVECOT --> MAILBOX[(Mailboxes<br/>proxmox-lvm PVC)]
+    end
 
-    %% Webmail HTTP path
-    USER[User browser] -->|HTTPS| CF[Cloudflare proxy<br/>mail.viktorbarzin.me]
-    CF --> TUNNEL[Cloudflared tunnel<br/>pfSense → Traefik]
-    TUNNEL --> TRAEFIK[Traefik Ingress<br/>Authentik-protected]
-    TRAEFIK --> RC
+    subgraph "Outbound Mail"
+        POSTFIX_OUT[Postfix] -->|SASL + TLS| MAILGUN[Brevo EU Relay<br/>smtp-relay.brevo.com:587]
+        MAILGUN --> RECIPIENT[Recipient]
+    end
 
-    %% Security
-    POSTFIX -.->|log stream<br/>real client IPs from PROXY v2| CSAGENT[CrowdSec Agent<br/>postfix + dovecot parsers]
-    CSAGENT -.-> CSLAPI[CrowdSec LAPI]
-    CSLAPI -.->|bouncer decisions<br/>ban external IPs| PF
+    subgraph "Webmail"
+        USER[User] -->|HTTPS| TRAEFIK[Traefik Ingress]
+        TRAEFIK --> RC[Roundcubemail]
+        RC -->|IMAP 993| DOVECOT
+        RC -->|SMTP 587| POSTFIX_OUT
+    end
 
-    %% Monitoring
-    PROBE -.->|Brevo HTTP API<br/>triggers external delivery| MX
-    PROBE -.->|Push on roundtrip success| PUSH[Pushgateway + Uptime Kuma]
+    subgraph "Security"
+        MLB -->|Real client IPs| CS_AGENT[CrowdSec Agent<br/>postfix + dovecot parsers]
+        CS_AGENT --> CS_LAPI[CrowdSec LAPI]
+    end
 
-    classDef extPath fill:#ffedd5,stroke:#ea580c,stroke-width:2px
-    classDef intPath fill:#dbeafe,stroke:#2563eb,stroke-width:2px
-    classDef pod fill:#dcfce7,stroke:#15803d
-    classDef sec fill:#fee2e2,stroke:#dc2626
-    class SENDER,MX,PF,HAP,KN,PODEXT extPath
-    class RC,PROBE,SVC,PODINT intPath
-    class POSTFIX,RSPAMD,DOVECOT,MAILBOX pod
-    class CSAGENT,CSLAPI sec
+    subgraph "Monitoring"
+        PROBE[E2E Roundtrip Probe<br/>CronJob every 20m] -->|Mailgun API| SENDER
+        PROBE -->|IMAP check| DOVECOT
+        PROBE --> PUSH[Pushgateway + Uptime Kuma]
+        DEXP[Dovecot Exporter<br/>:9166] --> PROM[Prometheus]
+    end
 ```
 
-### PROXY v2 sequence (external SMTP roundtrip)
-
-Illustrates the wire-level sequence of a Brevo probe email arriving at our MX. Same sequence applies to any external sender.
-
-```mermaid
-sequenceDiagram
-    autonumber
-    participant C as External MTA<br/>(e.g. Brevo 77.32.148.26)
-    participant PF as pfSense WAN<br/>192.168.1.2:25
-    participant HAP as pfSense HAProxy<br/>10.0.20.1:25
-    participant N as k8s-node:30125<br/>ETP: Cluster
-    participant P as Postfix postscreen<br/>pod:2525
-
-    C->>PF: TCP SYN dst=192.168.1.2:25
-    PF->>HAP: NAT rdr rewrites dst → 10.0.20.1:25
-    HAP->>N: TCP connect (src=10.0.20.1, dst=k8s-node:30125)
-    Note over HAP,N: HAProxy opens a NEW TCP flow<br/>to the backend k8s node.
-    HAP->>N: PROXY v2 header<br/>(source=77.32.148.26, dest=10.0.20.1)
-    N->>P: kube-proxy SNAT src=k8s-node IP<br/>forwards PROXY header + payload to pod
-    P->>P: Parse PROXY v2 header<br/>smtpd_client_addr := 77.32.148.26<br/>(despite kube-proxy SNAT on the wire)
-    P-->>C: SMTP banner 220 mail.viktorbarzin.me
-    C-->>P: EHLO / MAIL FROM / RCPT TO / DATA
-    Note over P,C: Real client IP logged in maillog,<br/>fed to CrowdSec postfix parser.
-    P->>P: → smtpd → Rspamd → Dovecot → mailbox
-```
-
-
 ## Components
 
 | Component | Version | Location | Purpose |
 |-----------|---------|----------|---------|
-| docker-mailserver | 15.0.0 | `mailserver` namespace | Postfix MTA + Dovecot IMAP + Rspamd (single container) |
+| docker-mailserver | 15.0.0 | `mailserver` namespace | Postfix MTA + Dovecot IMAP + Rspamd |
 | Roundcubemail | 1.6.13-apache | `mailserver` namespace | Webmail UI (MySQL-backed) |
+| Dovecot Exporter | latest | Sidecar in mailserver pod | Prometheus metrics (port 9166) |
 | Rspamd | Built into docker-mailserver | — | Spam filtering, DKIM signing, DMARC verification |
-| pfSense HAProxy | 2.9-dev6 (`pfSense-pkg-haproxy-devel`) | pfSense VM | TCP reverse proxy injecting PROXY v2 for external mail |
 | Brevo EU (ex-Sendinblue) | SaaS | — | Outbound SMTP relay (300/day free) |
 
-Dovecot exporter was retired in code-1ik (2026-04-19) — `viktorbarzin/dovecot_exporter` speaks the pre-2.3 `old_stats` FIFO protocol which docker-mailserver 15.0.0's Dovecot 2.3.19 no longer emits.
-
-## Port mapping
-
-The mailserver pod exposes **8 TCP listeners**: 4 stock + 4 alt. Two Kubernetes Services front them depending on whether the client can inject PROXY v2.
-
-| Mail protocol | Service port | K8s Service | Container port | NodePort | PROXY v2? | Who uses this path |
-|---|---|---|---|---|---|---|
-| SMTP (plain + STARTTLS) | 25  | `mailserver` ClusterIP | 25    | —     | ❌ stock | Intra-cluster only (not used — internal clients send via 587) |
-| SMTPS (implicit TLS) | 465 | `mailserver` ClusterIP | 465   | —     | ❌ stock | Intra-cluster (Roundcube rarely uses this) |
-| Submission (STARTTLS) | 587 | `mailserver` ClusterIP | 587   | —     | ❌ stock | **Roundcube pod** → mailserver.svc:587 |
-| IMAPS | 993 | `mailserver` ClusterIP | 993   | —     | ❌ stock | **Roundcube pod** + E2E probe → mailserver.svc:993 |
-| SMTP | 25  | `mailserver-proxy` NodePort | 2525  | 30125 | ✅ required | External MX traffic via pfSense HAProxy |
-| SMTPS | 465 | `mailserver-proxy` NodePort | 4465  | 30126 | ✅ required | External SMTPS submission |
-| Submission | 587 | `mailserver-proxy` NodePort | 5587  | 30127 | ✅ required | External STARTTLS submission (mail clients over WAN) |
-| IMAPS | 993 | `mailserver-proxy` NodePort | 10993 | 30128 | ✅ required | External IMAPS (mail clients over WAN) |
-
-The alt listeners are set up by:
-- **Postfix**: `user-patches.sh` (shipped via ConfigMap `mailserver-user-patches`) appends 3 entries to `master.cf` with `-o postscreen_upstream_proxy_protocol=haproxy` (for 2525) or `-o smtpd_upstream_proxy_protocol=haproxy` (for 4465/5587).
-- **Dovecot**: `dovecot.cf` ConfigMap adds a second `inet_listener` inside `service imap-login` with `haproxy = yes`, plus `haproxy_trusted_networks = 10.0.20.0/24` to allow PROXY headers from the k8s node subnet (post kube-proxy SNAT the source IP is always a node IP).
-
 ## Mail Flow
 
 ### Inbound
 ```
 Internet → MX: mail.viktorbarzin.me (priority 1)
          → A record: 176.12.22.76 (non-proxied Cloudflare DNS-only)
-         → pfSense NAT rdr: WAN:{25,465,587,993} → 10.0.20.1:{same}
-         → pfSense HAProxy (TCP mode, send-proxy-v2 on backend)
-         → k8s-node:{30125..30128} NodePort (mailserver-proxy, ETP: Cluster)
-         → kube-proxy → pod alt listener (2525/4465/5587/10993)
-         → Postfix postscreen / smtpd / Dovecot parses PROXY v2 header
-         → Rspamd (spam + DKIM + DMARC) → Dovecot → mailbox
+         → pfSense NAT: port 25 → 10.0.20.202:25
+         → MetalLB (dedicated IP, ETP: Local — preserves real client IPs)
+         → Postfix → Rspamd (spam + DKIM + DMARC check) → Dovecot → mailbox
 ```
 
 No backup MX. If the server is down, sender MTAs queue and retry for 4-5 days per SMTP standards (RFC 5321).
@@ -170,13 +95,13 @@ All managed in Terraform at `stacks/cloudflared/modules/cloudflared/cloudflare.t
 | MX | `viktorbarzin.me` | `mail.viktorbarzin.me` (pri 1) | Inbound mail routing |
 | A | `mail.viktorbarzin.me` | `176.12.22.76` (non-proxied) | Mail server IP |
 | AAAA | `mail.viktorbarzin.me` | `2001:470:6e:43d::2` | IPv6 (HE tunnel) |
-| TXT (SPF) | `viktorbarzin.me` | `v=spf1 include:spf.brevo.com ~all` | Authorize Brevo for outbound (soft-fail during cutover; was `include:mailgun.org -all` until 2026-04-18 Brevo migration) |
-| TXT (DKIM) | `s1._domainkey` | RSA 1024-bit key | Mailgun DKIM (roundtrip probe only — inbound testing still uses Mailgun API) |
+| TXT (SPF) | `viktorbarzin.me` | `v=spf1 include:mailgun.org -all` | Authorize Mailgun for outbound |
+| TXT (DKIM) | `s1._domainkey` | RSA 1024-bit key | Mailgun DKIM (roundtrip probe) |
 | TXT (DKIM) | `mail._domainkey` | RSA 2048-bit key | Rspamd self-hosted DKIM signing |
 | CNAME (DKIM) | `brevo1._domainkey` | b1.viktorbarzin-me.dkim.brevo.com | Brevo outbound DKIM (delegated) |
 | CNAME (DKIM) | `brevo2._domainkey` | b2.viktorbarzin-me.dkim.brevo.com | Brevo outbound DKIM (delegated) |
 | TXT | `viktorbarzin.me` | `brevo-code:a6ef1dd9...` | Brevo domain verification |
-| TXT (DMARC) | `_dmarc` | `p=quarantine; pct=100; rua=mailto:dmarc@viktorbarzin.me` | DMARC enforcement; aggregate reports land in-domain at `dmarc@viktorbarzin.me` (tracked under code-569; current live record still points at `e21c0ff8@dmarc.mailgun.org` pending cutover) |
+| TXT (DMARC) | `_dmarc` | `p=quarantine; pct=100` | DMARC enforcement, reports to Mailgun + ondmarc |
 | TXT (MTA-STS) | `_mta-sts` | `v=STSv1; id=20260412` | TLS enforcement for inbound |
 | TXT (TLSRPT) | `_smtp._tls` | `v=TLSRPTv1; rua=mailto:postmaster@...` | TLS failure reporting |
 
@@ -189,13 +114,9 @@ Reverse DNS for `176.12.22.76` returns `176-12-22-76.pon.spectrumnet.bg.` (ISP-a
 ### CrowdSec Integration
 - **Collections**: `crowdsecurity/postfix` + `crowdsecurity/dovecot` (installed)
 - **Log acquisition**: CrowdSec agents parse mailserver pod logs for brute-force patterns
-- **Real client IPs**: pfSense HAProxy injects PROXY v2 header on each backend connection; Postfix (`postscreen_upstream_proxy_protocol=haproxy` / `smtpd_upstream_proxy_protocol=haproxy` on alt ports) + Dovecot (`haproxy = yes` on alt IMAPS listener) parse it to recover the true source IP despite kube-proxy SNAT. Replaces the pre-2026-04-19 MetalLB `10.0.20.202` ETP:Local scheme (see code-yiu)
+- **Real client IPs**: `externalTrafficPolicy: Local` on dedicated MetalLB IP `10.0.20.202` preserves original client IPs (not SNATed to node IPs)
 - **Decisions**: CrowdSec bans/challenges attackers via firewall bouncer rules
 
-### Fail2ban Disabled (CrowdSec is the Policy)
-
-docker-mailserver ships Fail2ban, but it is explicitly disabled here: `ENABLE_FAIL2BAN = "0"` at [`stacks/mailserver/modules/mailserver/main.tf:68`](../../stacks/mailserver/modules/mailserver/main.tf). CrowdSec is the cluster-wide bouncer for SSH, HTTP, and SMTP/IMAP brute-force defence — it already parses the `postfix` and `dovecot` log streams via the collections listed above and applies decisions at the LB/firewall layer. Enabling Fail2ban in-pod would create a duplicate response path (two systems racing to ban the same IP from different enforcement points), add iptables churn inside the container, and fragment the audit trail across two decision stores. Decision (2026-04-18): keep it disabled; CrowdSec owns this policy.
-
 ### Rspamd
 - Spam filtering with phishing detection and Oletools
 - DKIM signing (selector `mail`, 2048-bit RSA)
@@ -218,30 +139,28 @@ anvil_rate_time_unit = 60s
 ## Monitoring
 
 ### E2E Roundtrip Probe
-CronJob `email-roundtrip-monitor` (every 20 min, `*/20 * * * *`):
-1. Sends test email via **Brevo HTTP API** to `smoke-test@viktorbarzin.me` (Brevo delivers it to our MX over the public internet, exercising the full external-ingress path).
-2. Email hits WAN → pfSense HAProxy → k8s-node:30125 → pod :2525 postscreen (PROXY v2) → Postfix → catch-all delivers to `spam@` mailbox.
-3. Verifies delivery via IMAP — connects to `mailserver.mailserver.svc.cluster.local:993` (intra-cluster path, no PROXY), searches by UUID marker.
-4. Deletes test email, pushes metrics to Pushgateway + Uptime Kuma.
-
-Push secrets (`BREVO_API_KEY`, `EMAIL_MONITOR_IMAP_PASSWORD`) come from ExternalSecret `mailserver-probe-secrets` (synced from Vault `secret/viktor` + `secret/platform.mailserver_accounts`) — see code-39v.
+CronJob `email-roundtrip-monitor` (every 10 min):
+1. Sends test email via Mailgun HTTP API to `smoke-test@viktorbarzin.me`
+2. Email hits MX → Postfix → catch-all delivers to `spam@` mailbox
+3. Verifies delivery via IMAP (searches by UUID marker)
+4. Deletes test email, pushes metrics to Pushgateway + Uptime Kuma
 
 ### Prometheus Alerts
 | Alert | Threshold | Severity |
 |-------|-----------|----------|
 | MailServerDown | No replicas for 5m | warning |
 | EmailRoundtripFailing | Probe failing for 30m | warning |
-| EmailRoundtripStale | No success in >80m (60m threshold + for:20m) | warning |
+| EmailRoundtripStale | No success in >40m | warning |
 | EmailRoundtripNeverRun | Metric absent for 40m | warning |
 
 ### Uptime Kuma Monitors
-- TCP SMTP on `176.12.22.76:25` — full external path (DNS → WAN → pfSense HAProxy → mailserver)
-- TCP `mailserver.svc:{587,993}` — intra-cluster ClusterIP path
-- TCP `10.0.20.1:{25,993}` — pfSense HAProxy health (post code-yiu Phase 6)
-- E2E Push monitor (receives push from `email-roundtrip-monitor` probe)
+- TCP SMTP on `176.12.22.76:25` (external, 60s interval)
+- TCP IMAP on `10.0.20.202:993` (internal)
+- E2E Push monitor (receives push from roundtrip probe)
 
-### Dovecot exporter — retired
-`viktorbarzin/dovecot_exporter` was removed in code-1ik (2026-04-19). It spoke the pre-2.3 `old_stats` FIFO protocol; Dovecot 2.3.19 (docker-mailserver 15.0.0) no longer emits that, so the scrape only ever returned `dovecot_up{scope="user"} 0`. If Dovecot metrics become valuable, reach for a 2.3+ compatible exporter (e.g. `jtackaberry/dovecot_exporter`) and re-add the scrape + alerts. The previously-created `mailserver-metrics` ClusterIP Service was also removed.
+### Dovecot Exporter
+- Sidecar container in mailserver pod, port 9166
+- Scraped by Prometheus for IMAP connection metrics
 
 ## Terraform
 
@@ -258,21 +177,17 @@ Push secrets (`BREVO_API_KEY`, `EMAIL_MONITOR_IMAP_PASSWORD`) come from External
 | `secret/platform` | `mailserver_accounts` | User credentials (JSON) |
 | `secret/platform` | `mailserver_aliases` | Postfix virtual aliases |
 | `secret/platform` | `mailserver_opendkim_key` | DKIM private key |
-| `secret/platform` | `mailserver_sasl_passwd` | Brevo relay credentials (`[smtp-relay.brevo.com]:587 <login>:<key>`) |
-| `secret/viktor` | `brevo_api_key` | Brevo API key — used by BOTH outbound SMTP SASL (postfix) AND the E2E roundtrip probe (sends external test mail via Brevo HTTP) |
-| `secret/viktor` | `mailgun_api_key` | Historical; no longer used by the probe post code-n5l/Phase-5 work. Kept for reference. |
+| `secret/platform` | `mailserver_sasl_passwd` | Mailgun relay credentials |
+| `secret/viktor` | `mailgun_api_key` | Mailgun API for E2E probe (inbound testing) |
+| `secret/viktor` | `brevo_api_key` | Brevo API key (stored for reference) |
 
 ## Storage
 
 | PVC | Size | Storage Class | Purpose |
 |-----|------|---------------|---------|
-| `mailserver-data-encrypted` | 2Gi (auto-resize 5Gi) | `proxmox-lvm-encrypted` (LUKS2) | Maildir + Postfix queue + state + logs |
-| `roundcubemail-html-encrypted` | 1Gi | `proxmox-lvm-encrypted` | Roundcube PHP code + user session data |
-| `roundcubemail-enigma-encrypted` | 1Gi | `proxmox-lvm-encrypted` | Roundcube Enigma (PGP) user keys |
-| `mailserver-backup-host` (RWX) | 10Gi | `nfs-truenas` (historical SC name, Proxmox host NFS) | `mailserver-backup` CronJob destination (`/srv/nfs/mailserver-backup/<YYYY-WW>/`) |
-| `roundcube-backup-host` (RWX) | 10Gi | `nfs-truenas` (historical SC name, Proxmox host NFS) | `roundcube-backup` CronJob destination |
-
-**Backup**: daily `mailserver-backup` + `roundcube-backup` CronJobs rsync data PVCs to NFS. NFS directory is picked up by the PVE host's inotify-driven `/usr/local/bin/offsite-sync-backup` which pushes to Synology (weekly). See [Storage & Backup Architecture](storage.md) for the 3-2-1 flow.
+| `mailserver-data-proxmox` | 2Gi (auto-resize 5Gi) | proxmox-lvm | Mail data, state, logs |
+| `roundcubemail-html-proxmox` | 1Gi | proxmox-lvm | Roundcube web files |
+| `roundcubemail-enigma-proxmox` | 1Gi | proxmox-lvm | Roundcube encryption |
 
 ## Decisions & Rationale
 
@@ -291,23 +206,19 @@ Push secrets (`BREVO_API_KEY`, `EMAIL_MONITOR_IMAP_PASSWORD`) come from External
 - **Decision**: Rspamd replaces both SpamAssassin and OpenDKIM in a single component
 - **Tradeoff**: Higher memory usage (~150-200MB) but simpler stack
 
-### Client-IP Preservation (pfSense HAProxy + PROXY v2)
-- **Current (2026-04-19, bd code-yiu)**: pfSense HAProxy listens on `10.0.20.1:{25,465,587,993}`, forwards to k8s NodePort 30125-30128 with `send-proxy-v2` on each backend connection. The mailserver pod exposes parallel listeners (2525/4465/5587/10993) that REQUIRE the PROXY v2 header, while the stock ports 25/465/587/993 stay PROXY-free for intra-cluster traffic (Roundcube, probe). The mailserver Service is ClusterIP-only; ETP is no longer a concern for external traffic.
-- **Historical (2026-04-12 → 2026-04-19)**: Dedicated MetalLB IP `10.0.20.202` with `externalTrafficPolicy: Local` — required pod/speaker colocation; kube-proxy preserved client IP only when pod was on the same node as the advertising speaker.
-- **Why switched**: ETP:Local made the mailserver's single replica drop inbound mail silently during pod reschedule (30-60s GARP flip). HAProxy with `send-proxy-v2` lets the pod reschedule to any node and recover IP-preservation through the header.
-- **Tradeoff**: pfSense now runs HAProxy (one more service in the firewall's responsibility); alt container ports + extra Service are ~80 lines of Terraform. The win is HA without IP-preservation compromise.
-- **Runbook**: [`runbooks/mailserver-pfsense-haproxy.md`](../runbooks/mailserver-pfsense-haproxy.md).
+### Dedicated MetalLB IP for CrowdSec
+- **Decision**: Mailserver gets `10.0.20.202` (separate from shared `10.0.20.200`) with `externalTrafficPolicy: Local`
+- **Why**: Shared IP with ETP: Cluster SNATs away real client IPs, making CrowdSec detections and Postfix rate limiting useless
+- **Tradeoff**: Uses one extra IP from the MetalLB pool. Requires separate pfSense NAT rule.
 
 ## Troubleshooting
 
 ### Inbound mail not arriving
-1. **DNS/MX**: `dig MX viktorbarzin.me +short` → should show `mail.viktorbarzin.me`
-2. **WAN reachability**: `nc -zw5 mail.viktorbarzin.me 25` from outside
-3. **pfSense NAT**: verify WAN:{25,465,587,993} rdr to `10.0.20.1` (HAProxy VIP). `ssh admin@10.0.20.1 'pfctl -sn' | grep '10.0.20.1'`
-4. **HAProxy health**: `ssh admin@10.0.20.1 "echo 'show servers state' | socat /tmp/haproxy.socket stdio"` — at least one backend in `srv_op_state=2` (UP) per pool
-5. **Container listener**: `kubectl exec -n mailserver -c docker-mailserver deployment/mailserver -- ss -ltn | grep -E ':(25|2525|465|4465|587|5587|993|10993)\b'` — 8 lines expected
-6. **Postfix queue + delivery**: `kubectl logs -n mailserver deploy/mailserver -c docker-mailserver | grep -E 'from=|reject|smtpd-proxy'`
-7. **CrowdSec decisions**: `kubectl exec -n crowdsec deploy/crowdsec-lapi -- cscli decisions list`
+1. Check MX: `dig MX viktorbarzin.me +short` → should show `mail.viktorbarzin.me`
+2. Check port 25: `nc -zw5 mail.viktorbarzin.me 25`
+3. Check pfSense NAT rule: port 25 → `10.0.20.202:25`
+4. Check Postfix logs: `kubectl logs -n mailserver deploy/mailserver -c docker-mailserver | grep -E 'from=|reject'`
+5. Check if CrowdSec is blocking the sender: `kubectl exec -n crowdsec deploy/crowdsec-lapi -- cscli decisions list`
 
 ### Outbound mail failing
 1. Check Brevo relay: `kubectl logs -n mailserver deploy/mailserver -c docker-mailserver | grep relay` — should show `relay=smtp-relay.brevo.com`
diff --git a/docs/architecture/monitoring.md b/docs/architecture/monitoring.md
index 3b9d915d..5a7a120d 100644
--- a/docs/architecture/monitoring.md
+++ b/docs/architecture/monitoring.md
@@ -63,7 +63,6 @@ graph TB
 | External Monitor Sync | Python 3.12 | `stacks/uptime-kuma/` | CronJob (10min) syncs `[External]` monitors from `cloudflare_proxied_names` |
 | dcgm-exporter | Configurable resources | `stacks/monitoring/modules/monitoring/` | NVIDIA GPU metrics collection |
 | Email Roundtrip Probe | Python 3.12 | `stacks/mailserver/modules/mailserver/` | E2E email delivery verification via Mailgun API + IMAP |
-| Forgejo Registry Integrity Probe | Alpine 3.20 + curl/jq | `stacks/monitoring/modules/monitoring/main.tf` | CronJob every 15m: walks `/v2/_catalog` on `forgejo.viktorbarzin.me` (HTTP via in-cluster service), HEADs every tagged manifest + index child; emits `registry_manifest_integrity_*` metrics to Pushgateway. Replaces the legacy `registry-integrity-probe` against `registry.viktorbarzin.me:5050` decommissioned in Phase 4 of forgejo-registry-consolidation 2026-05-07. |
 
 ## How It Works
 
@@ -76,9 +75,7 @@ Prometheus scrapes metrics from all cluster components and applications using Se
 
 ### External Monitoring
 
-The `external-monitor-sync` CronJob (every 10min, `stacks/uptime-kuma/`) ensures Uptime Kuma has `[External] <service>` monitors for externally-reachable ingresses. Discovery is **opt-OUT**: the script lists every ingress via the K8s API and creates a monitor for any host ending in `.viktorbarzin.me`, skipping only those annotated `uptime.viktorbarzin.me/external-monitor: "false"`. Both `ingress_factory` and the `reverse-proxy` factory emit that annotation when the caller sets `external_monitor = false`; leaving it null keeps the opt-in default (important for helm-provisioned ingresses that don't go through our factories). The legacy `cloudflare_proxied_names` ConfigMap is a fallback if the K8s API discovery fails.
-
-These monitors test the full external access path (DNS → Cloudflare → Tunnel → Traefik → Service) from inside the cluster. The status-page-pusher groups them as "External Reachability" and pushes a `external_internal_divergence_count` metric to Pushgateway when services are externally down but internally up. Alert `ExternalAccessDivergence` fires after 15min of divergence.
+The `external-monitor-sync` CronJob (every 10min, `stacks/uptime-kuma/`) ensures Uptime Kuma has `[External] <service>` monitors for every service in `cloudflare_proxied_names`. These monitors test the full external access path (DNS → Cloudflare → Tunnel → Traefik → Service) from inside the cluster. The status-page-pusher groups them as "External Reachability" and pushes a `external_internal_divergence_count` metric to Pushgateway when services are externally down but internally up. Alert `ExternalAccessDivergence` fires after 15min of divergence.
 
 Data flows from targets through Prometheus storage to Grafana dashboards. Applications emit logs to stdout/stderr which are aggregated by Loki and queryable through Grafana's log viewer.
 
@@ -158,14 +155,9 @@ spec:
 
 #### Email Monitoring Alerts
 - **EmailRoundtripFailing**: E2E email probe returning failure for >30m
-- **EmailRoundtripStale**: No successful email round-trip in >80m (60m threshold + for:20m)
+- **EmailRoundtripStale**: No successful email round-trip in >40m
 - **EmailRoundtripNeverRun**: Email probe has never reported (40m)
 
-#### Registry Integrity Alerts
-- **RegistryManifestIntegrityFailure**: Private registry serving 404 for manifests it advertises (orphan OCI-index children) — fires after 30m of `registry_manifest_integrity_failures > 0`. Remediation: rebuild affected image per `docs/runbooks/registry-rebuild-image.md`.
-- **RegistryIntegrityProbeStale**: Probe hasn't reported in >1h (CronJob broken)
-- **RegistryCatalogInaccessible**: Probe cannot fetch `/v2/_catalog` (auth failure or registry down)
-
 The email monitoring system uses a CronJob (`email-roundtrip-monitor`, every 10 min) in the `mailserver` namespace that:
 1. Sends a test email via Mailgun HTTP API to `smoke-test@viktorbarzin.me`
 2. Email lands in the `spam@` catch-all mailbox via MX delivery
diff --git a/docs/architecture/networking.md b/docs/architecture/networking.md
index e7959589..d0779a17 100644
--- a/docs/architecture/networking.md
+++ b/docs/architecture/networking.md
@@ -1,6 +1,6 @@
 # Networking Architecture
 
-Last updated: 2026-04-19 (WS E — Kea DHCP pushes dual DNS per subnet; Kea DDNS TSIG-signed)
+Last updated: 2026-04-12
 
 ## Overview
 
@@ -28,6 +28,7 @@ graph TB
 
         subgraph "VLAN 10 - Management<br/>10.0.10.0/24"
             Proxmox[Proxmox Host<br/>10.0.10.1]
+            TrueNAS[TrueNAS<br/>10.0.10.15]
             DevVM[DevVM<br/>10.0.10.10]
             Registry[Registry VM<br/>10.0.20.10]
         end
@@ -63,6 +64,7 @@ graph TB
     vmbr0 -.physical link.- eno1
     vmbr0 --> vmbr1
     vmbr1 -.VLAN 10.- Proxmox
+    vmbr1 -.VLAN 10.- TrueNAS
     vmbr1 -.VLAN 10.- DevVM
     vmbr1 -.VLAN 20.- pfSense
     vmbr1 -.VLAN 20.- Tech
@@ -104,7 +106,7 @@ flowchart LR
     end
 
     subgraph K8s["Kubernetes"]
-        Import[CronJob<br/>pfsense-import<br/>hourly]
+        Import[CronJob<br/>pfsense-import<br/>every 5min]
         Sync[CronJob<br/>dns-sync<br/>every 15min]
         IPAM[phpIPAM<br/>Web UI + API]
         MySQL[(MySQL<br/>InnoDB)]
@@ -142,14 +144,14 @@ flowchart LR
 
 ### DHCP Coverage
 
-| Subnet | DHCP Server | DNS option 6 | Reservations | DDNS | Notes |
-|--------|------------|--------------|--------------|------|-------|
-| 10.0.10.0/24 (Mgmt) | Kea on pfSense | `10.0.10.1, 94.140.14.14` | 3 (devvm, pxe, ha) | Yes (TSIG) | VMs with static MACs |
-| 10.0.20.0/24 (K8s) | Kea on pfSense | `10.0.20.1, 94.140.14.14` | 7 (master, nodes 1-5, registry) | Yes (TSIG) | K8s cluster nodes |
-| 192.168.1.0/24 (LAN) | **TP-Link AP** | `192.168.1.2, 94.140.14.14` | 42 (all home devices) | Yes | pfSense Kea WAN is disabled |
-| 10.3.2.0/24 (VPN) | Static | — | — | No | WireGuard peers |
-| 192.168.0.0/24 (Valchedrym) | OpenWRT | — | — | No | Remote site |
-| 192.168.8.0/24 (London) | GL-iNet | — | — | No | Remote site |
+| Subnet | DHCP Server | Reservations | DDNS | Notes |
+|--------|------------|--------------|------|-------|
+| 10.0.10.0/24 (Mgmt) | Kea on pfSense | 4 (devvm, truenas, pxe, ha) | Yes | VMs with static MACs |
+| 10.0.20.0/24 (K8s) | Kea on pfSense | 7 (master, nodes 1-5, registry) | Yes | K8s cluster nodes |
+| 192.168.1.0/24 (LAN) | Kea on pfSense | 42 (all home devices) | Yes | TP-Link is dumb AP only |
+| 10.3.2.0/24 (VPN) | Static | — | No | WireGuard peers |
+| 192.168.0.0/24 (Valchedrym) | OpenWRT | — | No | Remote site |
+| 192.168.8.0/24 (London) | GL-iNet | — | No | Remote site |
 
 ## How It Works
 
@@ -158,7 +160,7 @@ flowchart LR
 The Proxmox host uses a dual-bridge architecture:
 - **vmbr0**: Physical bridge on interface `eno1`, connected to upstream LAN (192.168.1.0/24). Proxmox management IP is 192.168.1.127.
 - **vmbr1**: Internal VLAN-aware bridge, acts as a trunk carrying:
-  - **VLAN 10 (Management)**: 10.0.10.0/24 — Proxmox, DevVM
+  - **VLAN 10 (Management)**: 10.0.10.0/24 — Proxmox, TrueNAS, DevVM
   - **VLAN 20 (Kubernetes)**: 10.0.20.0/24 — All K8s nodes, services, MetalLB IPs
 
 VMs tag traffic on vmbr1 to isolate workloads. pfSense bridges VLAN 20 to the upstream LAN via NAT.
@@ -312,14 +314,9 @@ Containerd on all K8s nodes uses `hosts.toml` to redirect pulls to the local cac
 
 **pfSense**:
 - Config: Not Terraform-managed (pfSense web UI / config.xml)
-- DHCP: Kea DHCP4 on the two internal VLANs (VLAN 10 = 10.0.10.0/24, VLAN 20 = 10.0.20.0/24). WAN/192.168.1.0/24 is served by the TP-Link dumb AP — pfSense's Kea WAN subnet is disabled.
-- **DNS option 6** (per-subnet, WS E 2026-04-19):
-  - 10.0.10.0/24 → `10.0.10.1, 94.140.14.14` (internal Unbound + AdGuard Home public fallback)
-  - 10.0.20.0/24 → `10.0.20.1, 94.140.14.14`
-  - 192.168.1.0/24 → `192.168.1.2, 94.140.14.14` (served by TP-Link, unchanged by WS E)
-  - Rationale: clients survive an internal resolver outage by falling through to AdGuard (`94.140.14.14`) — confirmed via null-route drill on 2026-04-19.
+- DHCP: Kea DHCP4 on all 3 subnets (VLAN 10, VLAN 20, WAN/LAN 192.168.1.0/24)
 - 42 MAC→IP reservations for 192.168.1.0/24 (all known home devices)
-- DHCP DDNS: Kea DHCP-DDNS sends **TSIG-signed** RFC 2136 updates to Technitium (key `kea-ddns`, HMAC-SHA256; secret in Vault `secret/viktor/kea_ddns_tsig_secret`). Zone `viktorbarzin.lan` + reverse zones require both a pfSense-source IP AND a valid TSIG signature. Config: `/usr/local/etc/kea/kea-dhcp-ddns.conf` (hand-managed on pfSense; pre-WS-E backup at `kea-dhcp-ddns.conf.2026-04-19-pre-tsig`).
+- DHCP DDNS: Kea DHCP-DDNS sends RFC 2136 updates to Technitium on every lease grant (forward A + reverse PTR)
 - Firewall rules: Allow K8s egress, block inter-VLAN by default
 
 **Technitium**:
@@ -338,7 +335,7 @@ Containerd on all K8s nodes uses `hosts.toml` to redirect pulls to the local cac
 - Stack: `stacks/phpipam/`
 - Web UI: `phpipam.viktorbarzin.me` (Authentik-protected)
 - Database: MySQL InnoDB cluster (`mysql.dbaas.svc.cluster.local`)
-- Device import: CronJob `phpipam-pfsense-import` hourly — queries Kea DHCP leases + pfSense ARP table via SSH (no active scanning)
+- Device import: CronJob `phpipam-pfsense-import` every 5min — queries Kea DHCP leases + pfSense ARP table via SSH (no active scanning)
 - DNS sync: CronJob `phpipam-dns-sync` every 15min — bidirectional sync between phpIPAM and Technitium DNS (push named hosts → A+PTR, pull DNS hostnames → unnamed phpIPAM entries)
 - Subnets tracked: 10.0.10.0/24, 10.0.20.0/24, 192.168.1.0/24, 10.3.2.0/24, 192.168.8.0/24, 192.168.0.0/24
 - API: REST API enabled (app `claude`, ssl_token auth), MCP server available for agent access
@@ -367,7 +364,7 @@ Containerd on all K8s nodes uses `hosts.toml` to redirect pulls to the local cac
 1. **Single flat network**: Simpler, but no isolation between management and workload traffic.
 2. **Routed network with physical VLANs**: Requires switch with VLAN support.
 
-**Decision**: vmbr0 (physical) + vmbr1 (VLAN trunk) gives isolation without requiring managed switches. Management traffic (Proxmox, DevVM) stays on VLAN 10, K8s workloads stay on VLAN 20. Failures in K8s don't affect access to Proxmox or storage.
+**Decision**: vmbr0 (physical) + vmbr1 (VLAN trunk) gives isolation without requiring managed switches. Management traffic (Proxmox, TrueNAS) stays on VLAN 10, K8s workloads stay on VLAN 20. Failures in K8s don't affect access to Proxmox or storage.
 
 ### Why Cloudflared Tunnel Instead of Port Forwarding?
 
diff --git a/docs/architecture/overview.md b/docs/architecture/overview.md
index cb0f8e6d..df06e765 100644
--- a/docs/architecture/overview.md
+++ b/docs/architecture/overview.md
@@ -92,7 +92,7 @@ graph TB
 | 203 | k8s-node3 | 8 | 32GB | vmbr1:vlan20 | - | Worker node |
 | 204 | k8s-node4 | 8 | 32GB | vmbr1:vlan20 | - | Worker node |
 | 220 | docker-registry | 4 | 4GB | vmbr1:vlan20 | 10.0.20.10 | Private Docker registry |
-| ~~9000~~ | ~~truenas~~ | — | — | — | ~~10.0.10.15~~ | **DECOMMISSIONED 2026-04-13** — NFS now served by Proxmox host (192.168.1.127). VM still exists in stopped state on PVE pending user decision on deletion. |
+| ~~9000~~ | ~~truenas~~ | — | — | — | ~~10.0.10.15~~ | **DECOMMISSIONED** — NFS now served by Proxmox host (192.168.1.127) |
 
 ### Kubernetes Cluster
 
@@ -139,7 +139,7 @@ The Kubernetes cluster consists of 5 nodes:
 - **k8s-node1 (201)**: 16c/32GB GPU node with Tesla T4 passthrough, tainted for GPU workloads only
 - **k8s-node2-4 (202-204)**: 8c/32GB workers running general-purpose workloads
 
-GPU passthrough on node1 uses PCIe device 0000:06:00.0. The NVIDIA GPU Operator's gpu-feature-discovery auto-labels whichever node carries the card with `nvidia.com/gpu.present=true`; `null_resource.gpu_node_config` taints the same set of nodes with `nvidia.com/gpu=true:PreferNoSchedule`. No hostname is hardcoded — moving the card to a different node requires no Terraform edits.
+GPU passthrough on node1 uses PCIe device 0000:06:00.0, with Kubernetes taint `nvidia.com/gpu=true:NoSchedule` and label `gpu=true` to ensure only GPU-requesting pods schedule there.
 
 ### Service Organization
 
@@ -213,7 +213,7 @@ Secrets are stored in HashiCorp Vault under `secret/`:
 
 **Rationale**:
 - **Flexibility**: Easy to snapshot, clone, and roll back VMs during upgrades
-- **Isolation**: Management network (devvm) separated from Kubernetes
+- **Isolation**: Management network (TrueNAS, devvm) separated from Kubernetes
 - **GPU passthrough**: Can dedicate GPU to a single node without tainting the entire host
 - **Multi-purpose**: Same physical host can run non-K8s VMs (pfSense, Home Assistant)
 
diff --git a/docs/architecture/security.md b/docs/architecture/security.md
index 3d68bedc..7796a88c 100644
--- a/docs/architecture/security.md
+++ b/docs/architecture/security.md
@@ -2,7 +2,7 @@
 
 ## Overview
 
-The homelab implements defense-in-depth security at the application layer (L7) using CrowdSec for threat intelligence and IP reputation, Kyverno for policy enforcement and resource governance, and a 3-layer anti-AI scraping defense (reduced from 5 in April 2026 after removing the rewrite-body plugin). All security components operate in graceful degradation mode (fail-open) to prevent cascading failures. Security policies are deployed in audit mode first, then selectively enforced after validation.
+The homelab implements defense-in-depth security at the application layer (L7) using CrowdSec for threat intelligence and IP reputation, Kyverno for policy enforcement and resource governance, and a 5-layer anti-AI scraping defense. All security components operate in graceful degradation mode (fail-open) to prevent cascading failures. Security policies are deployed in audit mode first, then selectively enforced after validation.
 
 ## Architecture Diagram
 
@@ -59,7 +59,7 @@ Every incoming request passes through 6 security layers:
 1. **Cloudflare WAF** - DDoS protection, bot detection, firewall rules (external)
 2. **Cloudflared Tunnel** - Zero Trust tunnel, hides origin IP
 3. **CrowdSec Bouncer** - IP reputation check against LAPI (fail-open on error)
-4. **Anti-AI Scraping** - 3-layer bot defense (optional per service, updated 2026-04-17)
+4. **Anti-AI Scraping** - 5-layer bot defense (optional per service)
 5. **Authentik ForwardAuth** - Authentication check (if `protected = true`)
 6. **Rate Limiting** - Per-source IP rate limits (returns 429 on breach)
 7. **Retry Middleware** - Auto-retry on transient errors (2 attempts, 100ms delay)
@@ -131,12 +131,10 @@ This prevents resource exhaustion and enforces governance without manual quota m
 | `sync-tier-label` | Propagate tier label to child resources | Enforce |
 | `goldilocks-vpa-auto-mode` | Disable VPA globally (VPA off) | Enforce |
 
-### Anti-AI Scraping (3 Active Layers) (Updated 2026-04-17)
+### Anti-AI Scraping (5-Layer Defense)
 
 Enabled by default via `ingress_factory` module. Disable per-service with `anti_ai_scraping = false`.
 
-Active middleware chain: `ai-bot-block` (ForwardAuth) + `anti-ai-headers` (X-Robots-Tag). The `strip-accept-encoding` and `anti-ai-trap-links` middlewares were removed in April 2026 due to Traefik v3.6.12 Yaegi plugin incompatibility with the rewrite-body plugin.
-
 #### Layer 1: Bot Blocking (ForwardAuth)
 
 - Middleware calls `poison-fountain` service before backend
@@ -150,16 +148,25 @@ Active middleware chain: `ai-bot-block` (ForwardAuth) + `anti-ai-headers` (X-Rob
 - Instructs compliant bots to skip content
 - Lightweight, no performance impact
 
-#### ~~Layer 3: Trap Links~~ (REMOVED)
+#### Layer 3: Trap Links
 
-Removed April 2026. The rewrite-body Traefik plugin used to inject hidden trap links broke on Traefik v3.6.12 due to Yaegi runtime bugs. The companion `strip-accept-encoding` middleware was also removed.
+- JavaScript injects invisible links before `</body>`
+- Links point to honeypot endpoints
+- Legitimate browsers don't click, bots follow
+- Triggered bots get added to ban list
 
-#### Layer 3 (formerly 4): Tarpit / Poison Content
+#### Layer 4: Tarpit
+
+- Serves AI bots extremely slowly (~100 bytes/sec)
+- Wastes bot resources, makes scraping uneconomical
+- Humans see normal speed (only applies to detected bots)
+
+#### Layer 5: Poison Content
 
-- `poison-fountain` service still exists as a standalone service at `poison.viktorbarzin.me`
-- Serves AI bots extremely slowly (~100 bytes/sec tarpit)
 - CronJob every 6 hours generates fake content
-- Trap links are no longer injected into real pages, but bots that discover `poison.viktorbarzin.me` directly still get tarpitted and poisoned
+- Injects misleading/nonsense data into pages shown to bots
+- Degrades AI training data quality
+- **Requires `--http1.1` flag** to work with current HTTP/2 setup
 
 **Implementation**: See `stacks/poison-fountain/` and `stacks/platform/modules/traefik/middleware.tf`
 
@@ -279,13 +286,13 @@ spec:
 - **Better observability**: Collect violation metrics before enforcing
 - **Selective enforcement**: Move to enforce mode per-policy after validation
 
-### Why Multi-Layer Anti-AI Defense? (Updated 2026-04-17)
+### Why 5-Layer Anti-AI Defense?
 
 - **Defense in depth**: Each layer catches different bot types
 - **Compliant bots**: Layer 2 (X-Robots-Tag) handles respectful crawlers
-- **Persistent bots**: Tarpit makes scraping uneconomical
-- **Poison content**: Degrades training data for bots that reach poison-fountain
-- Layer 3 (trap links via rewrite-body) was removed due to Traefik v3 plugin incompatibility
+- **Dumb bots**: Layer 3 (trap links) catches simple scrapers
+- **Persistent bots**: Layer 4 (tarpit) makes scraping uneconomical
+- **Sophisticated bots**: Layer 5 (poison content) degrades training data
 
 ### Why Fail-Open Mode?
 
@@ -375,16 +382,15 @@ spec:
 2. Verify backend isn't returning transient errors: Check for 5xx responses
 3. Disable retry for specific service: Remove retry middleware from `ingress_factory`
 
-### Poison Content Not Serving (Updated 2026-04-17)
+### Poison Content Not Injecting
 
-**Problem**: Bots not receiving poisoned content on `poison.viktorbarzin.me`.
-
-**Note**: Poison content is no longer injected into real pages (rewrite-body removed). It is only served directly via the `poison.viktorbarzin.me` subdomain.
+**Problem**: Bots not receiving poisoned content.
 
 **Fix**:
 1. Verify CronJob running: `kubectl get cronjob -n poison-fountain`
-2. Check logs: `kubectl logs -n poison-fountain -l app=poison-fountain`
-3. Manually trigger: `kubectl create job --from=cronjob/poison-content manual-poison`
+2. Check logs: `kubectl logs -n poison-fountain -l app=poison-content-injector`
+3. Ensure `--http1.1` flag set (required for HTTP/2 backends)
+4. Manually trigger: `kubectl create job --from=cronjob/poison-content manual-poison`
 
 ## Related
 
diff --git a/docs/architecture/storage.md b/docs/architecture/storage.md
index df1e89f9..f7d0b656 100644
--- a/docs/architecture/storage.md
+++ b/docs/architecture/storage.md
@@ -16,13 +16,13 @@ All services storing sensitive data were migrated to `proxmox-lvm-encrypted` on
 - **HDD NFS**: `/srv/nfs` on ext4 LV `pve/nfs-data` (2TB) — bulk media and backup targets
 - **SSD NFS**: `/srv/nfs-ssd` on ext4 LV `ssd/nfs-ssd-data` (100GB) — high-performance data (Immich ML)
 
-Both `StorageClass: nfs-truenas` and `StorageClass: nfs-proxmox` point to the Proxmox host and are functionally identical. The `nfs-truenas` name is historical — it was retained because StorageClass names are immutable on bound PVs (48 PVs reference it) and renaming would force mass PV churn across the cluster.
+Both `StorageClass: nfs-truenas` (name kept for compatibility) and `StorageClass: nfs-proxmox` (identical) point to the Proxmox host. Migrated from TrueNAS (10.0.10.15) which has been fully decommissioned.
 
 **Backup storage (sda)**: 1.1TB RAID1 SAS disk, VG `backup`, LV `data` (ext4), mounted at `/mnt/backup` on PVE host. Dedicated backup disk for weekly PVC file backups, auto SQLite backups, pfSense backups, and PVE config. NFS data syncs directly to Synology via inotify change tracking (not stored on sda). Independent of live storage (sdc).
 
-**History (2026-04-02)**: iSCSI block volumes migrated from democratic-csi (TrueNAS iSCSI → ZFS → LVM-thin) to Proxmox CSI (direct LVM-thin hotplug). democratic-csi iSCSI driver removed.
+**Migration (2026-04-02)**: All iSCSI block volumes were migrated from democratic-csi (TrueNAS iSCSI → ZFS → LVM-thin) to Proxmox CSI (direct LVM-thin hotplug). democratic-csi iSCSI driver has been removed.
 
-**History (2026-04-13)**: TrueNAS (VM 9000, 10.0.10.15) fully decommissioned. NFS storage migrated to the Proxmox host (192.168.1.127). ZFS datasets under `/mnt/main/` and `/mnt/ssd/` moved to ext4 LVs at `/srv/nfs/` and `/srv/nfs-ssd/`. Legacy PVs referencing `/mnt/main/` paths still work (bind-mounted or symlinked on the Proxmox host); new PVs use `/srv/nfs/` and `/srv/nfs-ssd/`. TrueNAS VM still exists in stopped state on PVE pending user decision on deletion.
+**Migration (2026-04)**: TrueNAS (10.0.10.15) fully decommissioned. All NFS storage migrated to the Proxmox host (192.168.1.127). ZFS datasets under `/mnt/main/` and `/mnt/ssd/` moved to ext4 LVs at `/srv/nfs/` and `/srv/nfs-ssd/`. Legacy PVs referencing `/mnt/main/` paths still work (bind-mounted or symlinked on the Proxmox host); new PVs use `/srv/nfs/` and `/srv/nfs-ssd/`.
 
 ## Architecture Diagram
 
@@ -39,7 +39,7 @@ graph TB
     end
 
     subgraph K8s["Kubernetes Cluster"]
-        CSI_NFS["nfs-csi driver<br/>StorageClass: nfs-proxmox (+ legacy nfs-truenas)<br/>soft,timeo=30,retrans=3"]
+        CSI_NFS["nfs-csi driver<br/>StorageClass: nfs-truenas / nfs-proxmox<br/>soft,timeo=30,retrans=3"]
         CSI_PVE["Proxmox CSI plugin<br/>StorageClass: proxmox-lvm<br/>StorageClass: proxmox-lvm-encrypted"]
 
         NFS_PV["NFS PersistentVolumes<br/>RWX, ~100 volumes"]
@@ -77,10 +77,10 @@ graph TB
 | Proxmox NFS (HDD) | LV `pve/nfs-data`, 2TB ext4 | 192.168.1.127:/srv/nfs | Bulk NFS data for all services |
 | Proxmox NFS (SSD) | LV `ssd/nfs-ssd-data`, 100GB ext4 | 192.168.1.127:/srv/nfs-ssd | High-performance data (Immich ML) |
 | nfs-csi | Helm chart | Namespace: nfs-csi | NFS CSI driver |
-| StorageClass `nfs-proxmox` | RWX, soft mount | Cluster-wide | NFS storage, points to Proxmox host |
-| StorageClass `nfs-truenas` | RWX, soft mount | Cluster-wide | **Historical name** — functionally identical to `nfs-proxmox`, points to the Proxmox host. Kept because SC names are immutable on 48 bound PVs. |
+| StorageClass `nfs-truenas` | RWX, soft mount | Cluster-wide | NFS storage (name kept for compatibility, points to Proxmox) |
+| StorageClass `nfs-proxmox` | RWX, soft mount | Cluster-wide | NFS storage (identical to nfs-truenas) |
 | TF module `nfs_volume` | `modules/kubernetes/nfs_volume/` | Infra repo | Static NFS PV/PVC factory |
-| ~~TrueNAS VM~~ | **DECOMMISSIONED 2026-04-13** | Was VM 9000 at 10.0.10.15 | Replaced by Proxmox NFS. VM still in stopped state pending deletion. |
+| ~~TrueNAS VM~~ | **DECOMMISSIONED** | Was VMID 9000 at 10.0.10.15 | Replaced by Proxmox NFS (2026-04) |
 | ~~democratic-csi-iscsi~~ | **REMOVED** | Was namespace: iscsi-csi | Replaced by Proxmox CSI (2026-04-02) |
 | ~~StorageClass `iscsi-truenas`~~ | **REMOVED** | Was cluster-wide | Replaced by `proxmox-lvm` |
 
@@ -105,7 +105,7 @@ graph TB
 
 **Note**: Some legacy PVs still reference `/mnt/main/<service>` paths. These work via compatibility symlinks/bind-mounts on the Proxmox host. New PVs should use `/srv/nfs/<service>` or `/srv/nfs-ssd/<service>`.
 
-**CRITICAL**: Never use inline `nfs {}` blocks in pod specs — they default to `hard,timeo=600` which causes 10-minute hangs on network issues. Always use the `nfs-proxmox` StorageClass (or the legacy `nfs-truenas` for existing PVs) via PVCs.
+**CRITICAL**: Never use inline `nfs {}` blocks in pod specs — they default to `hard,timeo=600` which causes 10-minute hangs on network issues. Always use the `nfs-truenas` or `nfs-proxmox` StorageClass via PVCs.
 
 ### Block Storage Flow (Proxmox CSI) — NEW
 
@@ -129,9 +129,7 @@ graph TB
 5. **Passphrase management**: ExternalSecret syncs passphrase from Vault KV (`secret/viktor/proxmox_csi_encryption_passphrase`) → K8s Secret. Backup key at `/root/.luks-backup-key` on PVE host.
 
 **Services on encrypted storage (2026-04-15 migration):**
-vaultwarden, dbaas (mysql+pg+pgadmin), mailserver, nextcloud, forgejo, matrix, n8n, affine, health, hackmd, redis, headscale, frigate, meshcentral, technitium, actualbudget, grampsweb, owntracks, wealthfolio, monitoring (alertmanager)
-
-**Services migrated later** (post-audit catch-up): paperless-ngx (2026-04-25 — sensitive document scans had been left on plain `proxmox-lvm` by an abandoned attempt; rsync swap cleaned up the orphan and re-did via Terraform). Vault raft cluster (2026-04-25 — all 3 voters migrated from `nfs-proxmox` to `proxmox-lvm-encrypted` after the 2026-04-22 raft-leader-deadlock post-mortem found NFS fsync semantics incompatible with raft consensus log; rolled non-leader-first with force-finalize on the pvc-protection finalizer to avoid pod-recreating on the old PVCs).
+vaultwarden, dbaas (mysql+pg+pgadmin), mailserver, nextcloud, forgejo, matrix, n8n, affine, health, hackmd, redis, headscale, frigate, meshcentral, technitium, actualbudget, grampsweb, owntracks, paperless-ngx, wealthfolio, monitoring (alertmanager)
 
 **CSI node plugin memory**: Requires 1280Mi limit for LUKS2 Argon2id key derivation (~1GiB). Set via `node.plugin.resources` in Helm values (not `node.resources`).
 
@@ -166,7 +164,7 @@ SQLite uses `fsync()` to guarantee durability. NFS's soft mount + async semantic
 |------|---------|
 | `/etc/exports` (on Proxmox host) | NFS export configuration for all service shares |
 | `stacks/proxmox-csi/` | Terraform stack for Proxmox CSI plugin + StorageClass |
-| `stacks/nfs-csi/` | NFS CSI driver + StorageClasses (`nfs-proxmox` + legacy `nfs-truenas`) |
+| `stacks/nfs-csi/` | NFS CSI driver + StorageClasses (`nfs-truenas`, `nfs-proxmox`) |
 | `modules/kubernetes/nfs_volume/` | Reusable module for static NFS PV/PVC creation |
 | `config.tfvars` | Variable `nfs_server = "192.168.1.127"` shared by all stacks |
 
@@ -175,10 +173,8 @@ SQLite uses `fsync()` to guarantee durability. NFS's soft mount + async semantic
 | Path | Contents |
 |------|----------|
 | `secret/viktor/proxmox_csi_encryption_passphrase` | LUKS2 encryption passphrase for `proxmox-lvm-encrypted` StorageClass |
-| ~~`secret/viktor/truenas_ssh_key`~~ | **REMOVED** — was SSH key for democratic-csi SSH driver (TrueNAS decommissioned 2026-04-13) |
-| ~~`secret/viktor/truenas_root_password`~~ | **REMOVED** — was TrueNAS root password (TrueNAS decommissioned 2026-04-13) |
-| ~~`secret/viktor/truenas_api_key`~~ | **REMOVED** — was TrueNAS API key (TrueNAS decommissioned 2026-04-13) |
-| ~~`secret/viktor/truenas_ssh_private_key`~~ | **REMOVED** — was TrueNAS SSH private key (TrueNAS decommissioned 2026-04-13) |
+| ~~`secret/viktor/truenas_ssh_key`~~ | **LEGACY** — was SSH key for democratic-csi SSH driver (TrueNAS decommissioned) |
+| ~~`secret/viktor/truenas_root_password`~~ | **LEGACY** — was TrueNAS root password (TrueNAS decommissioned) |
 
 ### Terraform Stacks
 
diff --git a/docs/architecture/vpn.md b/docs/architecture/vpn.md
index 5d2f22ad..fa74c06f 100644
--- a/docs/architecture/vpn.md
+++ b/docs/architecture/vpn.md
@@ -63,10 +63,10 @@ sequenceDiagram
     Cloudflare-->>AdGuard: A record (Cloudflare IP)
     AdGuard-->>Client: Response
 
-    Note over Client: Query: nextcloud.viktorbarzin.lan
+    Note over Client: Query: truenas.viktorbarzin.lan
     Client->>AdGuard: DNS query
     AdGuard->>Technitium: Forward (.lan domain)
-    Technitium-->>AdGuard: A record (10.0.20.200)
+    Technitium-->>AdGuard: A record (10.0.10.15)
     AdGuard-->>Client: Response
 
     Note over Client,Technitium: If Cloudflared tunnel is down:
@@ -370,14 +370,14 @@ dns_config:
 
 ### Can't Resolve .lan Domains from VPN
 
-**Symptoms**: `nslookup nextcloud.viktorbarzin.lan` returns `NXDOMAIN`.
+**Symptoms**: `nslookup truenas.viktorbarzin.lan` returns `NXDOMAIN`.
 
 **Diagnosis**: Check DNS chain: Client → AdGuard → Technitium.
 
 **Steps**:
 1. Verify AdGuard is running: `kubectl get pod -n adguard`
-2. Check AdGuard conditional forwarding: Query AdGuard directly: `nslookup nextcloud.viktorbarzin.lan <adguard-ip>`
-3. Check Technitium: `nslookup nextcloud.viktorbarzin.lan 10.0.20.101`
+2. Check AdGuard conditional forwarding: Query AdGuard directly: `nslookup truenas.viktorbarzin.lan <adguard-ip>`
+3. Check Technitium: `nslookup truenas.viktorbarzin.lan 10.0.20.101`
 
 **Common causes**:
 1. **AdGuard not forwarding .lan**: Conditional forwarding rule missing or misconfigured.
diff --git a/docs/plans/2026-02-22-anti-ai-scraping-design.md b/docs/plans/2026-02-22-anti-ai-scraping-design.md
index b1072981..fa9fd330 100644
--- a/docs/plans/2026-02-22-anti-ai-scraping-design.md
+++ b/docs/plans/2026-02-22-anti-ai-scraping-design.md
@@ -1,7 +1,5 @@
 # Anti-AI Scraping System Design
 
-> **Status (Updated 2026-04-17):** Partially superseded. Layer 3 (trap links via rewrite-body plugin) removed due to Traefik v3.6.12 Yaegi plugin incompatibility. The `strip-accept-encoding` and `anti-ai-trap-links` middlewares have been deleted. Rybbit analytics injection moved from Traefik rewrite-body to a Cloudflare Worker (`infra/stacks/rybbit/worker/`). Active layers: 1 (bot-block), 2 (headers), 4 (tarpit), 5 (poison content).
-
 ## Problem
 
 AI scrapers crawl public web services to harvest training data. We want to:
@@ -11,7 +9,7 @@ AI scrapers crawl public web services to harvest training data. We want to:
 
 ## Architecture
 
-Four active defense layers applied to all public services via Traefik (Layer 3 removed April 2026):
+Five defense layers applied to all public services via Traefik:
 
 ```
 Internet -> Cloudflare -> Traefik
@@ -20,7 +18,7 @@ Internet -> Cloudflare -> Traefik
                            |
                            +-- Layer 2: Headers -> X-Robots-Tag: noai, noimageai
                            |
-                           +-- [REMOVED] Layer 3: Rewrite-body trap links (April 2026 — Yaegi bugs in Traefik v3.6.12)
+                           +-- Layer 3: Rewrite-body -> inject hidden trap links into HTML
                            |
                            +-- Layer 4: Poison service -> serve cached Poison Fountain data
                            |
@@ -70,10 +68,13 @@ All defined in `stacks/platform/modules/traefik/middleware.tf`:
 - Sets `X-Robots-Tag: noai, noimageai` on all responses
 - Added to all public services via ingress_factory
 
-**`anti-ai-trap-links` (rewrite-body plugin)** — REMOVED (Updated 2026-04-17):
-- Removed due to Traefik v3.6.12 Yaegi runtime bugs making the rewrite-body plugin unreliable
-- The companion `strip-accept-encoding` middleware was also removed (only existed for rewrite-body)
-- Trap link injection is no longer active; poison-fountain still serves tarpit content standalone
+**`anti-ai-trap-links` (rewrite-body plugin)**:
+- Regex: `</body>` -> injects hidden div with trap links + `</body>`
+- Links point to `https://poison.viktorbarzin.me/article/<slug>`
+- CSS: invisible to humans (`position:absolute;left:-9999px;height:0;overflow:hidden;aria-hidden=true`)
+- Only processes `text/html` responses
+- Requires strip-accept-encoding companion middleware (already exists)
+- Applied globally via ingress_factory
 
 ### 4. Trap subdomain: poison.viktorbarzin.me
 
@@ -87,7 +88,7 @@ All defined in `stacks/platform/modules/traefik/middleware.tf`:
 
 New variables:
 - `anti_ai_scraping` (bool, default: true) - enable all anti-AI layers
-- When true, adds to middleware chain: `ai-bot-block`, `anti-ai-headers`
+- When true, adds to middleware chain: `ai-bot-block`, `anti-ai-headers`, `strip-accept-encoding`, `anti-ai-trap-links`
 - Services can opt out with `anti_ai_scraping = false`
 
 ## Human User Protection
@@ -96,7 +97,7 @@ New variables:
 |---------|-----------|
 | Hidden links visible | CSS `position:absolute;left:-9999px;height:0;overflow:hidden` + `aria-hidden="true"` |
 | False positive blocking | Only blocks specific AI bot User-Agent strings; no browser matches these |
-| Performance overhead | ForwardAuth is a string match (<1ms). Rybbit injected via Cloudflare Worker (not Traefik). |
+| Performance overhead | ForwardAuth is a string match (<1ms). Rewrite-body already proven with Rybbit. |
 | Poison content leakage | Only served on poison.viktorbarzin.me, not linked from any navigation |
 | Slow responses | Tarpit only applies to poison.viktorbarzin.me, not to real services |
 
diff --git a/docs/plans/2026-04-25-nfs-hostile-migration-design.md b/docs/plans/2026-04-25-nfs-hostile-migration-design.md
deleted file mode 100644
index 832064ea..00000000
--- a/docs/plans/2026-04-25-nfs-hostile-migration-design.md
+++ /dev/null
@@ -1,142 +0,0 @@
-# NFS-Hostile Workload Migration — Design
-
-**Date**: 2026-04-25
-**Author**: Viktor (with Claude)
-**Status**: Phase 1 done, Phase 2 in progress
-**Beads**: code-gy7h (Vault), code-ahr7 (Immich PG)
-
-## Problem
-
-The 2026-04-22 Vault Raft leader deadlock (post-mortem
-`2026-04-22-vault-raft-leader-deadlock.md`) traced to NFS client
-writeback stalls poisoning kernel state. Recovery took 2h43m and
-required hard-resetting 3 of 4 cluster VMs. Two workload classes on
-NFS are NFS-hostile per the criteria in
-`infra/.claude/CLAUDE.md` ("Critical services MUST NOT use NFS"):
-
-1. **Postgres with WAL fsync per commit** — Immich primary
-2. **Vault Raft consensus log** — fsync per append-entry, 3 replicas
-
-Everything else on NFS (47 PVCs, ~455 GiB) is correctly placed:
-RWX media libraries, append-only backups, ML caches.
-
-## Decision
-
-Migrate exactly those two workload classes to
-`proxmox-lvm-encrypted` (LUKS2 LVM-thin via Proxmox CSI). No iSCSI,
-no RWX media migration, no backup-target migration.
-
-## Rationale
-
-- Block storage decouples PG / Raft fsync from NFS client kernel
-  state. Failure mode that triggered the post-mortem cannot recur for
-  these workloads.
-- `proxmox-lvm-encrypted` is the documented default for sensitive data
-  (`infra/.claude/CLAUDE.md` storage decision rule). It already backs
-  ~28 PVCs across the cluster — pattern is proven.
-- Existing nightly `lvm-pvc-snapshot` PVE host script (03:00, 7-day
-  retention) auto-picks-up new PVCs via thin snapshots — no extra
-  backup wiring needed for the live data side.
-- LUKS2 satisfies "encrypted at rest for sensitive data" requirement.
-
-## Out of scope
-
-- iSCSI evaluation (already retired 2026-04-13).
-- RWX media (Immich library, music, ebooks) — correct placement.
-- Backup target PVCs (`*-backup` on NFS) — append-only, NFS-tolerant.
-- Prometheus 200 GiB — already on `proxmox-lvm`.
-
-## Pattern per workload
-
-### Immich PG (single replica, Deployment, Recreate strategy)
-
-- Add new RWO PVC on `proxmox-lvm-encrypted`.
-- Quiesce app pods (server + ML + frame).
-- `pg_dumpall` from running NFS pod → local file.
-- Swap deployment `claim_name` → encrypted PVC.
-- PG bootstraps fresh on empty PVC; restore dump.
-- REINDEX vector indexes (`clip_index`, `face_index`).
-- Backup CronJob keeps writing to NFS module (correct: append-only).
-
-### Vault Raft (3 replicas, StatefulSet, helm-managed)
-
-- Change `dataStorage.storageClass` and `auditStorage.storageClass`
-  from `nfs-proxmox` → `proxmox-lvm-encrypted`.
-- StatefulSet `volumeClaimTemplates` is immutable → use
-  `kubectl delete sts vault --cascade=orphan` then re-apply (memory
-  pattern for VCT swaps).
-- Per-pod rolling: delete pod + PVCs, controller recreates with new
-  template. Auto-unseal sidecar handles unseal; raft `retry_join`
-  rejoins cluster.
-- 24h validation window between pods. Migrate non-leader pods first;
-  step-down current leader before migrating it last.
-- Backup target (`vault-backup-host` on NFS) stays on NFS.
-
-## Risks and rollbacks
-
-### Immich PG
-
-- pg_dumpall captures schema + data, not file-level state. Vector
-  index versions matter (vchord 0.3.0 unchanged; vector 0.8.0 →
-  0.8.1 is a minor automatic bump on `CREATE EXTENSION` — confirmed
-  benign). Rollback: revert `claim_name`, scale apps; old NFS PVC
-  retained for 7 days post-migration.
-
-### Vault Raft
-
-- Cluster keeps quorum from 2 standby replicas while one pod is
-  swapped. Migrating the leader last avoids quorum churn.
-- Recovery anchor: pre-migration `vault operator raft snapshot save`
-  + nightly `vault-raft-backup` CronJob. RTO < 1h via snapshot
-  restore.
-
-## Helm `securityContext.pod` replace-not-merge (Vault, discovered during execution)
-
-The Vault helm chart sets pod-level securityContext defaults
-(`fsGroup=1000, runAsGroup=1000, runAsUser=100, runAsNonRoot=true`)
-from chart templates, not from values.yaml. When `main.tf` provided
-its own `server.statefulSet.securityContext.pod = {fsGroupChangePolicy
-= "OnRootMismatch"}` the helm rendering REPLACED the chart defaults
-rather than merging into them. On NFS this was harmless (`async,
-insecure` exports made the volume world-writable enough for any UID),
-but on a fresh ext4 LV via Proxmox CSI the volume root is `root:root`
-and vault user (UID 100) cannot open `/vault/data/vault.db`.
-
-vault-1 and vault-2 happened to be Running with the correct
-securityContext because their pod specs were written into etcd
-**before** the customization landed; helm chart upgrades don't
-restart pods, so the broken values lay dormant until vault-0 was
-recreated by the orphan-deleted STS during this migration.
-
-Resolution: provide all five fields (`fsGroup`, `fsGroupChangePolicy`,
-`runAsGroup`, `runAsUser`, `runAsNonRoot`) explicitly in main.tf so
-`runAsGroup=1000` etc. survive future chart bumps. Idempotent on
-both fresh PVCs and existing pods.
-
-## Init container chicken-and-egg (Immich PG, discovered during execution)
-
-The pre-existing `write-pg-override-conf` init container on the
-Immich PG deployment writes `postgresql.override.conf` directly to
-`PGDATA`. On a populated NFS PVC this was a no-op (init was already
-run). On the fresh encrypted PVC, the file made `initdb` refuse the
-non-empty directory and the pod CrashLoopBackOff'd.
-
-Resolution: gate the init container on `PG_VERSION` presence — first
-boot skips the override write, PG `initdb`s cleanly; force a pod
-restart and the second boot writes the override and PG loads
-`vchord` / `vectors` / `pg_prewarm` before the dump restore. Change
-is permanent and idempotent (correct on both fresh and initialised
-PVCs). One restart pre-migration only.
-
-## Verification
-
-End-to-end DONE when:
-
-- `kubectl get pvc -A | grep nfs-proxmox` returns only the
-  `vault-backup-host` PVC (or zero, if backup PVC moves elsewhere).
-- `vault operator raft list-peers` shows 3 voters on
-  `proxmox-lvm-encrypted`, leader elected.
-- Immich PG `\dx` matches pre-migration extensions (vector minor
-  drift OK).
-- `lvm-pvc-snapshot` captures new LVs in next 03:00 run.
-- 7 consecutive days of clean backup CronJob runs and no new alerts.
diff --git a/docs/plans/2026-04-25-nfs-hostile-migration-plan.md b/docs/plans/2026-04-25-nfs-hostile-migration-plan.md
deleted file mode 100644
index f24c562a..00000000
--- a/docs/plans/2026-04-25-nfs-hostile-migration-plan.md
+++ /dev/null
@@ -1,169 +0,0 @@
-# NFS-Hostile Workload Migration — Plan
-
-**Date**: 2026-04-25
-**Design**: `2026-04-25-nfs-hostile-migration-design.md`
-**Beads**: code-gy7h (Vault, epic), code-ahr7 (Immich PG)
-
-## Phase 1 — Immich PG (DONE 2026-04-25)
-
-| Step | Done |
-|---|---|
-| Snapshot extensions + row counts to `/tmp/immich-pre-migration-*` | ✓ |
-| Quiesce `immich-server` + `immich-machine-learning` + `immich-frame` | ✓ |
-| `pg_dumpall` → `/tmp/immich-pre-migration-<ts>.sql` (1.9 GB) | ✓ |
-| Add `kubernetes_persistent_volume_claim.immich_postgresql_encrypted` (10Gi, autoresize 20Gi cap) | ✓ |
-| Swap `claim_name` at `infra/stacks/immich/main.tf` deployment | ✓ |
-| Patch init container to gate on `PG_VERSION` (chicken-and-egg fix) | ✓ |
-| Force pod restart so override.conf gets written | ✓ |
-| Restore dump | ✓ |
-| `REINDEX clip_index`, `REINDEX face_index` | ✓ |
-| Scale apps back up | ✓ |
-| Verify: `\dx`, row counts (~111k assets), HTTP 200 internal/external | ✓ |
-| LV present on PVE host (`vm-9999-pvc-...`) | ✓ |
-
-### Phase 1 follow-ups (not blocking)
-
-- Old NFS PVC `immich-postgresql-data-host` retained 7 days for
-  rollback. After 2026-05-02: remove `module.nfs_postgresql_host`
-  from `infra/stacks/immich/main.tf` and the CronJob's reference.
-- Backup CronJob (`postgresql-backup`) still writes to the NFS
-  module. After cleanup, point it at a dedicated backup PVC or to
-  the existing `immich-backups` NFS share.
-
-## Phase 2 — Vault Raft (DONE 2026-04-25)
-
-**Phase 2 complete 2026-04-25; all 3 voters on `proxmox-lvm-encrypted`.**
-
-### Pre-flight (T-0) — DONE 2026-04-25 15:50 UTC
-
-- [x] Verify all 3 vault pods sealed=false, raft healthy.
-- [x] Take fresh `vault operator raft snapshot save` (anchor saved at
-      `/tmp/vault-pre-migration-20260425-155029.snap`, 1.5 MB).
-- [ ] Optional: scale ESO to 0 — skipped (auto-unseal sidecar is
-      independent; ESO refresh churn is non-disruptive for one swap).
-- [x] Confirmed leader is **vault-2** → migrate vault-0 first
-      (non-leader), vault-1 next, vault-2 last (with step-down).
-      Plan originally assumed vault-0 was leader; same intent
-      (non-leader first).
-- [x] Thin pool headroom: 54.63% used, plenty for 6 × 2 GiB LVs.
-
-### Step 0 — Helm values + StatefulSet swap — DONE 2026-04-25 16:08 UTC
-
-- [x] Edit `infra/stacks/vault/main.tf`: change
-      `dataStorage.storageClass` and `auditStorage.storageClass`
-      from `nfs-proxmox` → `proxmox-lvm-encrypted`.
-- [x] `kubectl -n vault delete sts vault --cascade=orphan` (StatefulSet
-      `volumeClaimTemplates` is immutable; orphan keeps pods+PVCs
-      alive while we recreate the controller with the new template).
-- [x] `tg apply -target=helm_release.vault` → recreates STS with new
-      VCT (full-stack `tg plan` blocks on unrelated for_each-with-
-      apply-time-keys errors at lines 848/865/909/917; targeted
-      apply on the helm release alone is the right scope here).
-      Existing pods still on old NFS PVCs.
-
-### Step 1 — Roll vault-0 first (non-leader) — DONE 2026-04-25 16:18 UTC
-
-- [x] `kubectl -n vault delete pod vault-0 --grace-period=30`
-- [x] `kubectl -n vault delete pvc data-vault-0 audit-vault-0`
-- [x] STS controller recreated pod; new PVCs auto-provisioned on
-      `proxmox-lvm-encrypted` (LVs `vm-9999-pvc-fb732fd7-...` data
-      4.12%, `vm-9999-pvc-36451f42-...` audit 3.99%).
-- [x] **Hit and fixed**: vault-0 CrashLoopBackOff'd with
-      `permission denied` on `/vault/data/vault.db`. The helm chart's
-      `statefulSet.securityContext.pod` block in main.tf only set
-      `fsGroupChangePolicy`, replacing (not merging) the chart's
-      defaults `fsGroup=1000, runAsGroup=1000, runAsUser=100,
-      runAsNonRoot=true`. NFS exports made the missing fsGroup a
-      no-op; ext4 LV needs it to chown the volume root for the
-      vault user. Old vault-1/vault-2 pods were created before that
-      block was added so they still had the chart-default
-      securityContext from their original spec. Fix: provide all
-      five fields explicitly in main.tf and re-apply. Same root
-      cause will affect vault-1 and vault-2 swaps unless this stays
-      in place.
-- [x] Wait Ready; auto-unseal sidecar unsealed; `retry_join` rejoined
-      raft cluster.
-- [x] Verify: `vault operator raft list-peers` shows 3 voters,
-      vault-0 follower, leader=vault-2. External HTTPS 200.
-
-### Step 2 — 24h soak (SKIPPED per user direction 2026-04-25)
-
-User instructed "continue with all the remaining actions" — soak
-gates compressed to per-pod settle windows + raft-state verification
-between rollings. No Raft alarms, no Vault errors observed at each
-verification gate.
-
-### Step 3 — Roll vault-1 — DONE 2026-04-25
-
-- [x] Force-finalize PVCs to break re-mount race:
-      `kubectl -n vault patch pvc data-vault-1 audit-vault-1 -p '{"metadata":{"finalizers":null}}' --type=merge`.
-      (Initial pod-then-PVC delete recreated pod on the OLD NFS PVCs
-      because pvc-protection finalizer hadn't cleared. Lesson learned
-      and applied to vault-2 below.)
-- [x] Pod recreated on encrypted PVCs; auto-unsealed; rejoined raft.
-
-### Step 4 — Settle window — DONE 2026-04-25
-
-3-check verification over 90s; raft index advancing (2730010→2730012),
-all 3 voters healthy.
-
-### Step 5 — Roll vault-2 (leader) — DONE 2026-04-25
-
-- [x] `vault operator step-down` on vault-2; vault-0 took leadership.
-      Confirmed vault-0 active, vault-1+vault-2 standby before delete.
-- [x] Snapshot anchor at `/tmp/vault-pre-vault2.snap` (1.5 MB) from new
-      leader vault-0.
-- [x] Force-finalize + delete PVCs + delete pod (lesson from vault-1).
-- [x] Pod recreated on encrypted PVCs; auto-unsealed; rejoined raft.
-- [x] `vault operator raft list-peers` shows 3 voters all healthy on
-      encrypted storage; leader vault-0.
-
-### Step 6 — Cleanup — DONE 2026-04-25
-
-- [x] `kubectl get pvc -A` cross-cluster shows zero PVCs on
-      `nfs-proxmox` SC (only Released PVs remain → Phase 3).
-- [x] Removed inline `kubernetes_storage_class.nfs_proxmox` from
-      `infra/stacks/vault/main.tf` (was lines 29–42).
-- [x] All 3 PVC pairs on `proxmox-lvm-encrypted`.
-- [x] `vault operator raft autopilot state` healthy=true.
-- [x] External `https://vault.viktorbarzin.me/v1/sys/health` = 200.
-
-## Phase 3 — Released-PV cleanup (FOLLOW-UP)
-
-### Step 3.1 — vault Released PVs — DONE 2026-04-25
-
-6 vault NFS PVs (Released, `nfs-proxmox` SC, Retain policy) deleted
-along with their NFS subdirectories on PVE host (~1.5 GB reclaimed):
-
-| PV | Claim | Size on disk |
-|---|---|---|
-| pvc-004a5d3b-… | data-vault-2 | 45M |
-| pvc-808a78ec-… | audit-vault-1 | 1.4M |
-| pvc-918ee7c1-… | audit-vault-0 | 3.2M |
-| pvc-9d2ddcb4-… | data-vault-0 | 46M |
-| pvc-a659711d-… | data-vault-1 | 46M |
-| pvc-d2e65109-… | audit-vault-2 | 1.4G |
-
-Procedure: `kubectl delete pv <name>` (cluster object only — Retain
-policy means CSI never touches NFS) then `rm -rf /srv/nfs/<dir>` on
-192.168.1.127.
-
-### Step 3.2 — Cluster-wide Released PV sweep (DEFERRED)
-
-~50 other Released PVs persist across the cluster (~200 GiB on
-`proxmox-lvm` and `proxmox-lvm-encrypted`). Out of scope for the
-2026-04-25 NFS-hostile session per user direction. To reclaim:
-
-1. List Released PVs, confirm LV exists on PVE.
-2. `kubectl delete pv <name>` (CSI removes underlying LV when PV is
-   orphaned with `Retain` reclaim policy and no PVC reference).
-3. If LV survives: manual `lvremove pve/vm-9999-pvc-<uuid>`.
-
-## Rollback
-
-| Phase | Trigger | Action |
-|---|---|---|
-| 1 | Immich UI broken / data loss | Revert `claim_name`; restore from `/tmp/immich-pre-migration-*.sql` to old NFS PVC |
-| 2 (mid-rolling) | Single pod broken | Delete the encrypted PVC; recreate with NFS SC explicitly; cluster keeps quorum from 2 healthy pods |
-| 2 (post-rolling, raft corrupt) | Cluster-wide failure | `vault operator raft snapshot restore <pre-migration.snap>` |
-| Catastrophic | All Vault data lost | Restore from latest `/srv/nfs/vault-backup/` snapshot via CronJob output |
diff --git a/docs/plans/2026-05-07-forgejo-registry-consolidation-design.md b/docs/plans/2026-05-07-forgejo-registry-consolidation-design.md
deleted file mode 100644
index 5e88bd36..00000000
--- a/docs/plans/2026-05-07-forgejo-registry-consolidation-design.md
+++ /dev/null
@@ -1,195 +0,0 @@
-# Forgejo Registry Consolidation — Design
-
-**Date**: 2026-05-07
-**Status**: Approved
-
-## Problem
-
-`registry-private` (the `registry:2` container on the docker-registry
-VM at `10.0.20.10`) has hit `distribution#3324` corruption three
-times in three weeks (2026-04-13, 2026-04-19, 2026-05-04). Each
-incident required manual blob recovery and another round of
-hardening to `cleanup-tags.sh` and the GC procedure. The integrity
-probe catches it within 15 minutes now, but every hit still costs
-~1h of cleanup, and we keep tightening the same loose screw.
-
-Root cause is a known race in `distribution`: tag deletes that race
-with concurrent garbage collection produce orphan OCI-index children.
-Upstream has not patched it; our mitigations (probe, blob
-fix-up script, idempotent cleanup) reduce blast radius but don't
-remove the failure mode.
-
-Forgejo (deployed for OAuth and personal repos at
-`forgejo.viktorbarzin.me`) ships a built-in OCI registry as part of
-the Packages feature, default-on in v11. Using it removes
-`distribution`-the-engine from the path entirely, replaces it with
-Forgejo's own implementation backed by Forgejo's DB+blob store, and
-gets us source hosting + image hosting in one resource.
-
-The PVE host RAM upgrade from 142GB to 272GB (memory id=569) means
-the cluster can absorb the resource bump Forgejo needs for the
-registry workload (1Gi → 1Gi).
-
-## Decision
-
-Move every image currently on `registry.viktorbarzin.me:5050` to
-Forgejo's OCI registry at `forgejo.viktorbarzin.me`. Decommission
-`registry-private` after a 14-day dual-push bake.
-
-Pull-through caches for upstream registries (DockerHub, GHCR, Quay,
-k8s.gcr, Kyverno) stay on the registry VM permanently — Forgejo
-won't serve as a pull-through, so the chicken-and-egg of "Forgejo
-pulling its own image through itself" never arises.
-
-## Design
-
-### Registry hostname
-
-Image references become `forgejo.viktorbarzin.me/viktor/<image>:<tag>`.
-The `viktor/` prefix is the Forgejo owner namespace; all current
-private images ship under that single owner.
-
-### Auth
-
-Two service-account users:
-
-| User | Scope | Vault key | Used by |
-|---|---|---|---|
-| `cluster-puller` | `read:package` | `secret/viktor/forgejo_pull_token` | cluster-wide `registry-credentials` Secret, monitoring probe |
-| `ci-pusher` | `write:package` | `secret/ci/global/forgejo_push_token` | Woodpecker pipelines (synced via `vault-woodpecker-sync` CronJob) |
-
-A third PAT (`secret/viktor/forgejo_cleanup_token`, also belongs to
-`ci-pusher`) drives the retention CronJob — kept separate from the
-push PAT so a leaked CI token doesn't immediately enable mass deletes.
-
-PATs have no expiry. Rotation policy: regenerate via Forgejo Web UI
-and `vault kv patch` if a leak is suspected; ESO/sync downstream is
-automatic.
-
-### Cluster pull path
-
-`registry-credentials` is a single Secret in `kyverno` ns, cloned
-into every namespace by the existing
-`sync-registry-credentials` ClusterPolicy. We extend its
-`dockerconfigjson` `auths` map with a fourth entry for
-`forgejo.viktorbarzin.me`. **No new Secret, no new ClusterPolicy,
-no `imagePullSecrets =` line edits across stacks.**
-
-Containerd `hosts.toml` redirects `forgejo.viktorbarzin.me` → in-cluster
-Traefik LB at `10.0.20.200`, the same pattern used for
-`registry.viktorbarzin.me` → `10.0.20.10:5050`. Avoids hairpin NAT
-through the WAN gateway for in-cluster pulls.
-
-### Push path
-
-Woodpecker pipelines push to BOTH targets during the bake:
-
-```yaml
-- name: build-and-push
-  image: woodpeckerci/plugin-docker-buildx
-  settings:
-    repo:
-      - registry.viktorbarzin.me/<name>
-      - forgejo.viktorbarzin.me/viktor/<name>
-    logins:
-      - registry: registry.viktorbarzin.me
-        username:
-          from_secret: registry_user
-        password:
-          from_secret: registry_password
-      - registry: forgejo.viktorbarzin.me
-        username:
-          from_secret: forgejo_user
-        password:
-          from_secret: forgejo_push_token
-```
-
-The `vault-woodpecker-sync` CronJob (every 6h) propagates
-`secret/ci/global` keys to every Woodpecker repo as global secrets.
-
-### Retention
-
-Forgejo's per-package "Cleanup Rules" UI is per-user runtime DB
-state, not Terraform-driven. Retention runs as a CronJob in the
-`forgejo` namespace, schedule `0 4 * * *`, that:
-
-1. Lists all container packages under the `viktor` owner.
-2. Groups by package name.
-3. Keeps newest 10 versions + always keeps `latest`.
-4. DELETEs the rest via `/api/v1/packages/{owner}/{type}/{name}/{version}`.
-
-First 7 days run with `DRY_RUN=true` — script logs what it would
-delete but issues no DELETE calls. After log review, flip the
-`forgejo_cleanup_dry_run` local in `cleanup.tf` to false.
-
-### Integrity monitoring
-
-Mirror the existing `registry-integrity-probe` CronJob: walk
-`/v2/_catalog`, walk every tag, HEAD every manifest + index child,
-push `registry_manifest_integrity_*` metrics. Existing
-Prometheus alerts fire on the `instance` label, so they cover both
-probes automatically once the alert annotations are made
-instance-aware (done in this change).
-
-### Source migration
-
-Projects currently living as plain dirs in the local-only monorepo
-become standalone Forgejo repos. Two GitHub-hosted private repos
-(`beadboard`, `claude-memory-mcp`) move to Forgejo and are archived
-on GitHub.
-
-CI standardises on Woodpecker for everything in scope. The two
-projects that used GHA (build + Woodpecker-deploy via GHA-hosted
-DockerHub push) keep DockerHub for legacy compatibility but their
-canonical image source becomes Forgejo.
-
-### Break-glass for infra-ci
-
-`infra-ci` is the Docker image used by all infra Woodpecker
-pipelines, including `default.yml` (terragrunt apply). If Forgejo is
-unreachable at the moment we need to apply, `infra-ci` is
-unreachable, and we can't apply our way out.
-
-Mitigation: dual-push step also `docker save | gzip` the built
-infra-ci image to:
-
-- `/opt/registry/data/private/_breakglass/infra-ci-<sha>.tar.gz` on
-  the registry VM disk (Copy 1)
-- `/srv/nfs/forgejo-breakglass/` on the NAS (Copy 2)
-
-A `latest` symlink in each location points at the most recent.
-Recovery procedure (`docs/runbooks/forgejo-registry-breakglass.md`):
-scp tarball → `docker load` → `ctr -n k8s.io images import` → fix
-Forgejo via that node.
-
-### Cutover style
-
-**Dual-push bake**: pipelines push to both registries for ≥14 days.
-Pods continue pulling from `registry.viktorbarzin.me`. After bake:
-
-1. Per-project PR: flip `image=` lines in Terraform stacks. Pod
-   re-pull naturally on next rollout.
-2. Phase 4: stop `registry-private` container, remove its
-   `auths` entry from the cluster Secret, drop containerd hosts.toml
-   entry.
-
-## Why not alternatives
-
-| Option | Rejected because |
-|---|---|
-| Stay on `registry-private` | Three corruption incidents in three weeks; mitigation cost rising |
-| Run a fresh registry container alongside (no Forgejo) | Same upstream, same `distribution#3324` failure mode |
-| GHCR / DockerHub for all private images | Public-by-default model + push rate limits; loses owner-owned blob storage |
-| Harbor | Heavier than Forgejo registry, would need its own DB + ingress, no source-hosting integration |
-
-## Risks
-
-See plan doc § "Risk register" for the full table. Top three:
-
-1. **Forgejo registry hits the same corruption pattern.** Mitigated
-   by 14-day bake + integrity probe within 15 min.
-2. **Forgejo down → infra-ci unreachable → can't apply.** Mitigated
-   by tarball break-glass on VM + NAS.
-3. **Pod re-pulls fail after `image=` flip due to containerd cache
-   poisoning.** Mitigated by hosts.toml deployment + per-project
-   `kubectl rollout restart` in Phase 3.
diff --git a/docs/plans/2026-05-07-forgejo-registry-consolidation-plan.md b/docs/plans/2026-05-07-forgejo-registry-consolidation-plan.md
deleted file mode 100644
index 1634d48e..00000000
--- a/docs/plans/2026-05-07-forgejo-registry-consolidation-plan.md
+++ /dev/null
@@ -1,152 +0,0 @@
-# Forgejo Registry Consolidation — Plan
-
-**Date**: 2026-05-07
-**Status**: Approved — execution in progress (Phase 0)
-**Design**: `2026-05-07-forgejo-registry-consolidation-design.md`
-
-This is the implementation roadmap for migrating off `registry-private`
-onto Forgejo's OCI registry. See the design doc for problem
-statement and rationale. Execution spans 5 phases over ≥3 weeks.
-
-## Phase 0 — Prepare Forgejo (1 PR, no cutover risk)
-
-| Task | File / artifact |
-|---|---|
-| Bump Forgejo memory request+limit 384Mi → 1Gi | `infra/stacks/forgejo/main.tf` |
-| Add `FORGEJO__packages__ENABLED=true` and `FORGEJO__packages__CHUNKED_UPLOAD_PATH=/data/tmp/package-upload` env vars (defensive — already default in v11) | `infra/stacks/forgejo/main.tf` |
-| Bump Forgejo PVC 5Gi → 15Gi, auto-resize cap 20Gi → 50Gi | `infra/stacks/forgejo/main.tf` |
-| Bump ingress `max_body_size = "5g"` (wired into ingress_factory as a Buffering middleware) | `infra/stacks/forgejo/main.tf`, `infra/modules/kubernetes/ingress_factory/main.tf` |
-| Create `cluster-puller` (read:package), `ci-pusher` (write:package), and a third `cleanup` PAT on `ci-pusher`; store PATs in Vault | runbook: `docs/runbooks/forgejo-registry-setup.md` |
-| Extend `registry-credentials` Secret with 4th `auths` entry for `forgejo.viktorbarzin.me` | `infra/stacks/kyverno/modules/kyverno/registry-credentials.tf` |
-| Add containerd `hosts.toml` entry redirecting `forgejo.viktorbarzin.me` → in-cluster Traefik LB `10.0.20.200` | `infra/stacks/infra/main.tf` cloud-init + new `infra/scripts/setup-forgejo-containerd-mirror.sh` for existing nodes |
-| Forgejo retention CronJob (`0 4 * * *`, dry-run for first 7 days) | new `infra/stacks/forgejo/cleanup.tf` + `infra/stacks/forgejo/files/cleanup.sh` |
-| Forgejo integrity probe CronJob (`*/15 * * * *`) | `infra/stacks/monitoring/modules/monitoring/main.tf` |
-| Make existing alerts instance-aware so they cover both registries | `infra/stacks/monitoring/modules/monitoring/prometheus_chart_values.tpl` |
-
-**Smoke test (must pass before declaring Phase 0 done):**
-
-- `docker login forgejo.viktorbarzin.me` succeeds.
-- Push a hello-world image to `forgejo.viktorbarzin.me/viktor/smoketest:1` succeeds.
-- `crictl pull forgejo.viktorbarzin.me/viktor/smoketest:1` from a k8s
-  node succeeds, using the auto-synced `registry-credentials` Secret.
-- A fresh namespace gets the cloned Secret with 4 `auths` entries.
-- Delete the smoketest package via API.
-- Forgejo integrity probe completes once and pushes metrics.
-
-## Phase 1 — Source migration (parallel-safe, no production impact)
-
-For each project the recipe is identical:
-
-1. `git init` + push to `forgejo.viktorbarzin.me/viktor/<name>` —
-   register in Woodpecker via OAuth.
-2. Add `.woodpecker.yml` based on `payslip-ingest/.woodpecker.yml`.
-   Push step uses `woodpeckerci/plugin-docker-buildx` with TWO
-   `repo:` entries (dual-push).
-3. Confirm first build pushes to BOTH registries.
-
-Projects (bake clock starts at "all dual-push"):
-
-| Project | Action |
-|---|---|
-| `claude-agent-service` | Extract from monorepo to Forgejo. New `.woodpecker.yml`. |
-| `fire-planner` | Extract from monorepo to Forgejo. New `.woodpecker.yml`. |
-| `wealthfolio-sync` | Extract from monorepo to Forgejo. New `.woodpecker.yml`. |
-| `hmrc-sync` | Extract from monorepo to Forgejo. New `.woodpecker.yml`. |
-| `freedify` | Push from monorepo to Forgejo. New `.woodpecker.yml`. (Upstream is gone.) |
-| `payslip-ingest` | Already on Forgejo. Add second `repo:` entry to `.woodpecker.yml`. |
-| `job-hunter` | Already on Forgejo. Add second `repo:` entry. |
-| `beadboard` | Push to Forgejo. New `.woodpecker.yml`. Disable GHA workflow. **Don't archive GitHub yet** (deferred to Phase 3). |
-| `claude-memory-mcp` | Push to Forgejo. New `.woodpecker.yml`. |
-| `infra-ci` | Edit `.woodpecker/build-ci-image.yml` to dual-push. ALSO `docker save | gzip` to `/opt/registry/data/private/_breakglass/` on VM AND `/srv/nfs/forgejo-breakglass/` on NAS. Pin a `latest` symlink. |
-
-Break-glass runbook (`docs/runbooks/forgejo-registry-breakglass.md`)
-documents the recovery path.
-
-## Phase 2 — Bake (≥14 days)
-
-- No `image=` lines change. Pods still pull from
-  `registry.viktorbarzin.me`.
-- **Daily smoke check**: pull a recent image from Forgejo as
-  `cluster-puller`, verify integrity (HEAD on manifest + each blob).
-- **Bake exit criteria**:
-  - Zero `RegistryManifestIntegrityFailure` alerts on Forgejo.
-  - Zero `ContainerNearOOM` for the forgejo pod.
-  - Retention CronJob has run ≥14 times successfully.
-  - At least one full Sunday GC cycle has elapsed.
-  - Switch retention CronJob to `DRY_RUN=false` on day 7, observe
-    until day 14.
-
-## Phase 3 — Cutover (one PR per project, single session)
-
-Order = lowest blast radius first. Each step:
-`image=` flip → `kubectl rollout restart` → verify pull from Forgejo.
-
-1. `payslip-ingest` (`infra/stacks/payslip-ingest/main.tf`)
-2. `job-hunter` (`infra/stacks/job-hunter/main.tf`)
-3. `claude-agent-service` (`infra/stacks/claude-agent-service/main.tf`)
-4. `fire-planner` (`infra/stacks/fire-planner/main.tf`)
-5. `wealthfolio-sync` (`infra/stacks/wealthfolio/main.tf`)
-6. `freedify` (`infra/stacks/freedify/factory/main.tf`)
-7. `chrome-service` (`infra/stacks/chrome-service/main.tf`)
-8. `beads-server` / `beadboard` (`infra/stacks/beads-server/main.tf`).
-   Then `gh repo archive ViktorBarzin/beadboard`.
-9. `infra-ci` — flip `image:` references in 4 `.woodpecker/*.yml`
-   files in the infra repo. Verify next push to master applies cleanly.
-10. `claude-memory-mcp` — update `CLAUDE.md` install instruction from
-    `claude plugins install github:ViktorBarzin/claude-memory-mcp` to
-    `claude plugins install https://forgejo.viktorbarzin.me/viktor/claude-memory-mcp.git`.
-    `gh repo archive ViktorBarzin/claude-memory-mcp`.
-
-## Phase 4 — Decommission
-
-| Step | File / location |
-|---|---|
-| Stop `registry-private` container on VM (10.0.20.10): edit `/opt/registry/docker-compose.yml`, comment out service, `docker compose up -d --remove-orphans`. (Manual SSH — cloud-init won't redeploy on TF apply per memory id=1078.) | live VM |
-| Update cloud-init template to match the new compose file | `infra/stacks/infra/main.tf:288` |
-| Delete `auths` entries for `registry.viktorbarzin.me` / `:5050` / `10.0.20.10:5050` from the dockerconfigjson | `infra/stacks/kyverno/modules/kyverno/registry-credentials.tf` |
-| Drop `registry.viktorbarzin.me` and `10.0.20.10:5050` `hosts.toml` entries on each node + cloud-init template | `infra/stacks/infra/main.tf` cloud-init + ad-hoc script |
-| After 1 week of no incidents, delete `/opt/registry/data/private/` blob storage on the VM (~2.6GB freed) | manual SSH |
-
-## Phase 5 — Docs
-
-In the same commit as the Phase 4 closing:
-
-| Doc | Update |
-|---|---|
-| `docs/runbooks/registry-vm.md` | Note `registry-private` is gone; pull-through caches and break-glass tarballs only |
-| `docs/runbooks/registry-rebuild-image.md` | Replaced by NEW `forgejo-registry-rebuild-image.md` |
-| `docs/runbooks/forgejo-registry-rebuild-image.md` (NEW) | Forgejo PVC restore procedure |
-| `docs/runbooks/forgejo-registry-breakglass.md` (NEW) | infra-ci tarball recovery |
-| `docs/architecture/ci-cd.md` | Image registry section flips to Forgejo |
-| `docs/architecture/monitoring.md` | Integrity probe target updated |
-| `infra/.claude/CLAUDE.md` | Registry references updated |
-| `CLAUDE.md` (monorepo root) | claude-memory-mcp install URL updated |
-| `infra/.claude/reference/service-catalog.md` | Cross-reference checked |
-
-## Critical files modified
-
-| File | Phase | What |
-|---|---|---|
-| `infra/stacks/forgejo/main.tf` | 0 | Memory bump, packages env vars, PVC bump, ingress max_body_size |
-| `infra/stacks/forgejo/cleanup.tf` (NEW) | 0 | Retention CronJob |
-| `infra/stacks/forgejo/files/cleanup.sh` (NEW) | 0 | Retention script (mounted via ConfigMap) |
-| `infra/modules/kubernetes/ingress_factory/main.tf` | 0 | Wire `max_body_size` into a Traefik Buffering middleware |
-| `infra/stacks/kyverno/modules/kyverno/registry-credentials.tf` | 0 | Add 4th `auths` entry |
-| `infra/stacks/infra/main.tf` | 0 + 4 | Containerd hosts.toml block (add Forgejo, later remove registry-private); compose template update |
-| `infra/scripts/setup-forgejo-containerd-mirror.sh` (NEW) | 0 | One-shot rollout for existing nodes |
-| `infra/stacks/monitoring/modules/monitoring/main.tf` | 0 | Forgejo integrity probe CronJob |
-| `infra/stacks/monitoring/modules/monitoring/prometheus_chart_values.tpl` | 0 | Make alerts instance-aware |
-| `infra/stacks/monitoring/main.tf` | 0 | Plumb `forgejo_pull_token` into module |
-| `infra/.woodpecker/build-ci-image.yml` | 1 | Dual-push to add Forgejo target + tarball break-glass |
-| `<each-project>/.woodpecker.yml` | 1 | Dual-push (NEW for fire-planner, wealthfolio-sync, hmrc-sync, freedify, beadboard, claude-memory-mcp; EDIT for payslip-ingest, job-hunter, claude-agent-service) |
-| `infra/.woodpecker/{default,drift-detection,build-cli}.yml` | 3 | Flip `image:` to Forgejo for infra-ci |
-| `infra/stacks/{beads-server,chrome-service,claude-agent-service,fire-planner,freedify/factory,job-hunter,payslip-ingest,wealthfolio}/main.tf` | 3 | Flip `image =` to Forgejo |
-
-## Verification
-
-- **Push** (Phase 0/1): `docker push forgejo.viktorbarzin.me/viktor/<name>` visible in Forgejo Web UI under viktor/.
-- **Pull** (Phase 0): `crictl pull forgejo.viktorbarzin.me/viktor/smoketest:1` succeeds with auto-synced Secret.
-- **Dual-push** (Phase 1): every Woodpecker pipeline run pushes to BOTH endpoints — confirmed via HEAD checks on `<reg>:<sha>` for both.
-- **Bake** (Phase 2): existing daily Forgejo `/api/healthz` external monitor stays green; integrity probe stays green; no `ContainerNearOOM` for forgejo pod.
-- **Cutover** (Phase 3): `kubectl rollout status deploy/<svc> -n <ns>` succeeds. `kubectl describe pod` shows the image was pulled from `forgejo.viktorbarzin.me`.
-- **Decommission** (Phase 4): `docker ps` on registry VM no longer shows `registry-private`. Brand-new namespace gets the Secret with only the Forgejo `auths` entry. Pull still works.
diff --git a/docs/post-mortems/2026-04-18-authentik-outpost-shm-full.md b/docs/post-mortems/2026-04-18-authentik-outpost-shm-full.md
deleted file mode 100644
index 6ee8d870..00000000
--- a/docs/post-mortems/2026-04-18-authentik-outpost-shm-full.md
+++ /dev/null
@@ -1,150 +0,0 @@
-# Post-Mortem: Authentik Embedded Outpost `/dev/shm` Fills — Cluster-Wide Auth Blocked
-
-| Field | Value |
-|-------|-------|
-| **Date** | 2026-04-18 |
-| **Duration** | ~44h for first-affected user (Emil, Apr 16 17:00 → Apr 18 12:40 UTC); ~30min for cluster-wide impact (Apr 18 12:10 → 12:40 UTC) |
-| **Severity** | SEV2 — authentication blocked for all users on all Authentik-protected services |
-| **Affected Services** | ~30+ Authentik-protected subdomains (every service using the `authentik-forward-auth` Traefik middleware) |
-| **Status** | Root cause fixed; permanent mitigation applied; alerting still TODO |
-
-## Summary
-
-The `ak-outpost-authentik-embedded-outpost` pod's `/dev/shm` (default 64 MB tmpfs) filled to 100% with ~44,000 `session_*` files. Once full, every forward-auth request failed to write its session state with `ENOSPC` and the outpost returned HTTP 400 instead of the usual 302 → login redirect. All users on all protected services were unable to log in.
-
-Detection was delayed because the initial user report (Emil) looked like a per-user bug — investigation spent two days chasing hypotheses about non-ASCII headers, user privileges, cookie corruption, and a newly-deployed Cloudflare Worker before the real cause was found in the outpost logs.
-
-## Impact
-
-- **User-facing**: HTTP 400 on initial GET of any Authentik-protected site (`terminal`, `grafana`, `immich`, `proxmox`, `london`, etc.). Existing sessions whose cookies were still cached worked until their cookie rotation attempt, then broke.
-- **Blast radius**: Every service using the `authentik-forward-auth` middleware via the "Domain wide catch all" Proxy provider. Public and internal.
-- **Duration**: First user (Emil) broken since 2026-04-16 ~17:00 UTC after his last valid session. Cluster-wide block when Viktor's cached session stopped being sufficient — roughly 2026-04-18 12:10 UTC. Fixed 12:40 UTC.
-- **Data loss**: None. Session state in tmpfs is ephemeral by design.
-- **Monitoring gap**: No Prometheus alert on outpost `/dev/shm` usage. No alert on outpost 400 response rate. Uptime Kuma external monitors hitting protected services returned 400s for 40+ hours without paging.
-
-## Timeline (UTC)
-
-| Time | Event |
-|------|-------|
-| **Apr 15 ~09:21** | `ak-outpost-authentik-embedded-outpost-587598dc4b-fvzzz` pod started (normal rolling restart, unrelated to this incident). `/dev/shm` fresh. |
-| **Apr 16 16:23:32** | Emil's last successful `authorize_application` event from his iPhone Brave (`85.255.235.23`). After this point, his subsequent requests create session files — his new sessions work briefly, then `/dev/shm` fills and every new session write fails. |
-| **Apr 16 ~17:00 (approx)** | `/dev/shm` at ~44,000 files = 100% full. New forward-auth requests start returning 400 across the board. Viktor's browser still has a valid cached cookie so his requests succeed without writing new session files. |
-| **Apr 17 10:30 (approx)** | Emil reports "terminal.viktorbarzin.me returns 400" to Viktor. |
-| **Apr 18 09:00–12:30** | Deep investigation begins. Multiple hypotheses tested and rejected: non-ASCII bytes in Emil's `name` field, policy denial, cookie corruption, Rybbit Cloudflare Worker (deployed 2026-04-17 — suspicious timing, turned out unrelated), plaintext redirect scheme. |
-| **Apr 18 12:20:39** | First direct evidence found: 2 Chrome 400s in Traefik logs from Emil's IP `176.12.22.76` (BG) on `terminal.viktorbarzin.me`, request missing `authentik_proxy_*` cookie. Redirect loop observed on iPhone IPv6 `2620:10d:c092:500::7:8c0d`. |
-| **Apr 18 12:34** | Viktor reports he can no longer log in either. |
-| **Apr 18 12:38** | `curl` against direct Traefik (`--resolve` bypassing Cloudflare) returns the same 400 with Authentik's CSP header — Cloudflare Worker exonerated. |
-| **Apr 18 12:39** | Outpost log grep finds the smoking gun: `failed to save session: write /dev/shm/session_XXX: no space left on device`. |
-| **Apr 18 12:40:13** | `kubectl delete pod ak-outpost-authentik-embedded-outpost-587598dc4b-fvzzz` — tmpfs cleared on pod restart. Replacement pod `-8qscr` Running within 8s. Cluster unblocked. |
-| **Apr 18 12:41** | Verified: direct-Traefik and via-CF curls both return `HTTP 302` to Authentik auth flow. Viktor authenticates successfully on `proxmox.viktorbarzin.me`. |
-| **Apr 18 12:53** | Permanent fix applied via Authentik API: `PATCH /api/v3/outposts/instances/{uuid}/` setting `config.kubernetes_json_patches` to mount `emptyDir {medium: Memory, sizeLimit: 512Mi}` at `/dev/shm`. |
-| **Apr 18 12:54** | Authentik controller reconciled the Deployment within 5s. `kubectl rollout restart` triggered new pod `-k5hv8`. `/dev/shm` now `tmpfs 256M` (4× the previous capacity; K8s clamps the tmpfs size to pod memory policy, but usage is capped at `sizeLimit=512Mi`). Forward-auth verified working. |
-
-## Root Cause Chain
-
-```
-[1] goauthentik/proxy outpost uses gorilla/sessions FileStore
- └─> each forward-auth request that has no valid session cookie writes
-     /dev/shm/session_<random> (~1500 bytes/file)
-         │
-         ├─> [2] Catch-all Proxy provider's access_token_validity = hours=168 (7 days)
-         │    └─> each file's MaxAge = 7 days
-         │        └─> Upstream 5-min GC (PR #15798, shipped in ≥ 2025.10) can only
-         │            delete files whose MaxAge has EXPIRED, not whose age exceeds any
-         │            shorter threshold
-         │
-         ├─> [3] Measured creation rate: ~18 files/min (Uptime-Kuma monitors +
-         │    real user traffic)
-         │    └─> 18/min × 60 × 24 × 7 = 181,440 steady-state files expected
-         │
-         └─> [4] Pod's /dev/shm default: 64 MB tmpfs (Kubernetes default)
-              └─> 64 MB / 1500 bytes ≈ 44,000 files maximum
-                  └─> Full in approx 44,000 / (18 × 60) min ≈ 41 hours
-                      └─> Actual observed time: pod started Apr 15 ~09:21,
-                          first ENOSPC ~Apr 16 ~17:00 ≈ 32 hours
-                          (some excess from Uptime-Kuma bursts)
-
-[ENOSPC] -> every new forward-auth request fails -> outpost returns HTTP 400
-         -> Traefik forwards the 400 to the browser
-         -> user sees "400 Bad Request" on every protected site
-```
-
-## Why Diagnosis Took So Long
-
-The initial report was framed as "Emil can't access terminal" — a per-user symptom. All four pre-registered hypotheses in the triage plan (non-ASCII bytes in header value, oversized cookie, corrupt user attribute, provider policy rejecting groups) were per-user explanations, all of which turned out to be falsified.
-
-Contributing distractions:
-1. **Misattribution in initial research** — an `authorize_application` event for Viktor (`vbarzin@gmail.com`) at 2026-04-18 08:09 was initially attributed to Emil. This led to the incorrect conclusion that Emil was authenticating successfully today.
-2. **Rybbit analytics Cloudflare Worker deployed 2026-04-17** (see memory #792, commit around 2026-04-17 21:26 UTC) ran on `*.viktorbarzin.me/*`. Suspicious timing — Viktor's first instinct was "this must be the Worker." The Worker WAS adding long cookies to browser state, but not the cause of the 400. Exonerated by direct-Traefik curl returning the same 400.
-3. **Viktor's cached session masked the outage** — only unauthenticated requests wrote new session files. Viktor's valid cookie kept working until the outpost needed to rotate state, at which point he also hit 400.
-4. **The tell is in the outpost logs, not anywhere else.** `grep 'no space left on device'` on the outpost logs would have found it in seconds, but the investigation scope started with user records, then cookies, then the Worker — outpost logs weren't grepped until hour 3+.
-
-## Contributing Factors
-
-1. **No alert on outpost `/dev/shm` usage.** A simple `kubelet_volume_stats_used_bytes / kubelet_volume_stats_capacity_bytes > 0.8` or equivalent cAdvisor metric would have paged hours before users noticed.
-2. **No alert on outpost HTTP 400 rate.** `increase(authentik_outpost_http_requests_total{status="400"}[15m])` went from ~0 to thousands — invisible to our monitoring.
-3. **No alert on "Uptime-Kuma external monitors all turning red simultaneously."** Every external monitor for a protected service started failing, but each is individually monitored — correlated failures across dozens of services didn't trigger a higher-level alert.
-4. **Default Kubernetes `/dev/shm` is 64 MB.** This is fine for most workloads, but the goauthentik proxy outpost writes one session file per unauthenticated request with a 7-day retention. The default sizing is an accident waiting to happen on any busy deployment.
-5. **Upstream issue [#20093](https://github.com/goauthentik/authentik/issues/20093)** ("External Proxy Outpost cannot use persistent session backend") is still OPEN as of 2026-04-18. Known architectural limitation.
-6. **Catch-all Proxy provider is UI-managed, not Terraform-managed.** Its `access_token_validity` and the outpost's `kubernetes_json_patches` are configured in Authentik's PostgreSQL database, not in code. This means the fix applied today is invisible to `git log` and vulnerable to drift if someone changes it in the UI.
-
-## Detection Gaps
-
-| Gap | Impact | Fix |
-|-----|--------|-----|
-| No alert on outpost `/dev/shm` usage | Outage progressed from "Emil only" to "everyone" over 40+ hours silently | Add Prometheus alert: `kubelet_volume_stats_used_bytes{namespace="authentik",persistentvolumeclaim=~"dshm.*"} / kubelet_volume_stats_capacity_bytes > 0.8` (or per-container cAdvisor metric if emptyDir not a PVC) |
-| No alert on outpost 400 rate spike | ~thousands of 400s over 40h didn't page | Alert on `increase(traefik_service_requests_total{code="400",service=~".*viktorbarzin-me.*"}[15m]) > N` OR on outpost-specific 400 metric |
-| Uptime Kuma external monitors not cross-correlated | Dozens of red monitors didn't trigger a cluster-wide alert | Add meta-alert: "more than N [External] Uptime Kuma monitors down within 10 min" — strong signal of shared-infra failure |
-| Outpost logs not searched during initial triage | Investigation went down 4 wrong paths before finding the real error | Runbook addition: for any Authentik forward-auth issue, FIRST command is `kubectl -n authentik logs -l goauthentik.io/outpost-name=authentik-embedded-outpost --since=1h \| grep -iE 'error\|no space'` |
-
-## Prevention Plan
-
-### P0 — Prevent this exact failure
-
-| Priority | Action | Type | Details | Status |
-|----------|--------|------|---------|--------|
-| P0 | Size `/dev/shm` up via `kubernetes_json_patches` on the embedded outpost config | Config | `PATCH /api/v3/outposts/instances/0eecac07-97c7-443c-8925-05f2f4fe3e47/` with `config.kubernetes_json_patches.deployment` adding an `emptyDir {medium: Memory, sizeLimit: 512Mi}` volume at `/dev/shm`. Authentik reconciles the Deployment within 5 minutes. **Applied 2026-04-18 12:53 UTC.** | **DONE** |
-
-### P1 — Detect this next time
-
-| Priority | Action | Type | Details | Status |
-|----------|--------|------|---------|--------|
-| P1 | Prometheus alerts on outpost `/dev/shm` fill (two thresholds) | Alert | Group `Authentik Outpost` added in `stacks/monitoring/modules/monitoring/prometheus_chart_values.tpl`. `AuthentikOutpostMemoryHigh` (warning, working set > 1.5 GiB for 15m) + `AuthentikOutpostMemoryCritical` (critical, > 1.8 GiB for 5m) + `AuthentikOutpostRestarts` (warning, > 2 restarts in 30m). Applied 2026-04-18 13:16 UTC; loaded in Prometheus, state=inactive. | **DONE** |
-| P1 | Uptime-Kuma meta-monitor: "N+ external monitors down simultaneously" | Alert | Either a Prometheus rule over `uptime_kuma_monitor_status == 0` counts, or a dedicated external probe. Very strong signal of shared-infra failure. | TODO |
-| P1 | Bump tmpfs `sizeLimit` from 512Mi → 2Gi + set explicit container memory limit 2560Mi | Config | Patched outpost `kubernetes_json_patches` via Authentik API. 2026-04-18 13:06 UTC (sizeLimit), 13:22 UTC (container limit). **Gotcha**: `sizeLimit` alone is insufficient — writes to tmpfs count against container cgroup memory, and Kyverno's `tier-defaults` LimitRange sets a default `limits.memory: 256Mi` which OOM-kills the container before tmpfs fills. Fix is to also set `containers[0].resources.limits.memory` ≥ `sizeLimit + working_set_headroom`. Verified 1.5 GB file write succeeds on the configured pod; df reports 2.0 GB tmpfs. Gives ~8× growth headroom at current probe rate. | **DONE** |
-
-### P2 — Codify the fix so it survives drift
-
-| Priority | Action | Type | Details | Status |
-|----------|--------|------|---------|--------|
-| P2 | Codify the catch-all Proxy provider + embedded outpost config in Terraform | Architecture | Adopt `goauthentik/authentik` Terraform provider in `infra/stacks/authentik/`. Import the existing UUID `0eecac07-97c7-443c-8925-05f2f4fe3e47` and the catch-all provider pk=5. Move `kubernetes_json_patches` into TF so the fix is reviewable in git. | TODO |
-| P2 | Runbook: Authentik forward-auth troubleshooting | Docs | Add a runbook at `docs/runbooks/authentik-forward-auth-400.md` with the "grep outpost logs first" first step, plus pointer commands for `/dev/shm` usage, session file count, and recent authorize events. | TODO |
-
-### P3 — Upstream + architectural
-
-| Priority | Action | Type | Details | Status |
-|----------|--------|------|---------|--------|
-| P3 | Comment/support on authentik issue [#20093](https://github.com/goauthentik/authentik/issues/20093) | Upstream | Request either a persistent-backed session store (Redis/DB) OR a configurable GC interval shorter than the default 5 min. | TODO |
-| P3 | Consider shortening `access_token_validity` from 168h (7 days) to 24h | Config | Reduces steady-state session file count from ~181k to ~26k (7× reduction). Trade-off: users re-auth daily. Viktor's call on UX tolerance. | TODO |
-| P3 | Evaluate moving forward-auth away from the embedded outpost | Architecture | The embedded outpost is a single replica Go binary with in-memory session state. An external, multi-replica outpost with Redis-backed sessions is the production-grade deployment. Probably overkill for a home-lab, but worth noting. | TODO (paused) |
-
-## Lessons Learned
-
-1. **When a per-user bug affects a shared infrastructure layer, suspect the shared layer, not the user.** The framing "Emil gets 400" led the first two hours of investigation down four user-specific rabbit holes. A sanity check ("does ANY user's non-cached request to a protected site return 400?") would have cut to the chase in minutes.
-
-2. **Check the outpost logs first, not last.** For any Authentik forward-auth oddity, the first `kubectl logs` should be on the outpost pod, grepping for `error` and `ENOSPC`. The outpost is the component that actually makes the 400/302 decision.
-
-3. **Cache + low-request users mask outages longer than you'd think.** Viktor had a valid cookie and his browser kept using it without writing new session files; he couldn't reproduce the bug Emil saw. The outage felt per-user until his cookie rotation needed to write state. **Any outage that "only affects some users" needs an active check from a fresh, cookie-less context** — `curl` with no cookie jar is the fastest way.
-
-4. **Default tmpfs sizing + per-request file writes = ticking clock.** 64 MB of `/dev/shm` is a Kubernetes default, not a considered choice. Any workload that writes per-request files into tmpfs without aggressive GC will eventually fill, and the time-to-fill scales inversely with request rate. Worth auditing other services that might have the same pattern.
-
-5. **UI-managed Authentik config is invisible to git review.** Our catch-all Proxy provider, embedded outpost config, property mappings, and policy bindings are all in Authentik's PostgreSQL database. The fix applied today (`kubernetes_json_patches`) is durable but not discoverable from `git log`. Drift risk. Codify in Terraform.
-
-6. **Recently-deployed things are prime suspects but not always guilty.** The Rybbit Cloudflare Worker was deployed 2026-04-17 with a wildcard route. Viktor's intuition was "that's the recent change, must be the cause." It was a plausible theory and worth checking — but `curl --resolve` to bypass Cloudflare proved it innocent within 30 seconds. Always have a way to bypass the suspect layer cheaply.
-
-## References
-
-- Memory #836-841: incident details stored in claude-memory MCP (2026-04-18 12:42 UTC).
-- Upstream issue: [goauthentik/authentik#20093](https://github.com/goauthentik/authentik/issues/20093) (open).
-- Related upstream fix: [PR #15798](https://github.com/goauthentik/authentik/pull/15798) — 5-min session GC shipped in ≥ 2025.10 (our version 2026.2.2 has it, but insufficient alone).
-- Beads task: `code-zru` (P1 bug).
diff --git a/docs/post-mortems/2026-04-19-registry-orphan-index.md b/docs/post-mortems/2026-04-19-registry-orphan-index.md
deleted file mode 100644
index ee596c63..00000000
--- a/docs/post-mortems/2026-04-19-registry-orphan-index.md
+++ /dev/null
@@ -1,246 +0,0 @@
-# Post-Mortem: Private Registry Orphan OCI-Index — Repeat Incident
-
-| Field | Value |
-|-------|-------|
-| **Date** | 2026-04-19 (first occurrence 2026-04-13) |
-| **Duration** | ~40 min of blocked CI each time; only detected via pipeline failures |
-| **Severity** | SEV2 — all infra CI pipelines using `infra-ci:latest` failed (P366 → P376 all exit 126 "image can't be pulled") |
-| **Affected Services** | Every Woodpecker pipeline that starts with `image: registry.viktorbarzin.me:5050/infra-ci:latest` — `default.yml`, `build-cli.yml`, `renew-tls.yml`, `drift-detection.yml`, `provision-user.yml`, `k8s-portal.yml`, `postmortem-todos.yml`, `issue-automation.yml`, `pve-nfs-exports-sync.yml` |
-| **Status** | Hot fix green (three commits: `a05d63ee`, `6371e75e`, `c113be4d` — URL fix + rebuild). This doc captures the permanent fix landed in the same branch. |
-
-## Summary
-
-On 2026-04-19 ~09:00 UTC, every infra CI pipeline started failing at the
-`clone` step with "image can't be pulled". The image in question — the CI
-toolchain image `registry.viktorbarzin.me:5050/infra-ci:latest` — resolved
-to an OCI image index whose `linux/amd64` platform manifest
-(`sha256:98f718c8…`) and its in-toto attestation
-(`sha256:27d5ab83…`) returned **HTTP 404** from the private registry.
-The index record itself still existed — it's the children that had been
-garbage-collected out from under it.
-
-This is the **second identical incident**: the same failure mode occurred
-on 2026-04-13 against a different image. Both times the immediate fix was
-to rebuild the image from scratch; both times the root cause was left
-unaddressed.
-
-## Impact
-
-- **User-facing**: all CI pipelines failed. No automated Terraform applies,
-  no TLS renewal, no drift detection. Manual workflows (Woodpecker UI
-  reruns) all failed with the same error.
-- **Blast radius**: every pipeline that pulls `infra-ci`. Does NOT affect
-  k8s workloads (those pull via containerd, which goes through the
-  pull-through proxy on :5000/:5010 — a completely different code path).
-- **Duration on 2026-04-19**: from first P366 failure to the hot-fix
-  commit `c113be4d` — roughly 40 min. Pipelines that had already been
-  triggered queued up until the rebuild restored `:latest`.
-- **Data loss**: none. The registry has the index object; the child
-  manifests are re-producible by rebuilding the source image.
-- **Monitoring gap**: nothing alerted. The only signal was the individual
-  pipeline failures from Woodpecker. No Prometheus alert fires on "the
-  registry served a 404 for a tag that exists".
-
-## Timeline (UTC, 2026-04-19)
-
-| Time | Event |
-|------|-------|
-| ~09:00 | P366 (`default.yml` on master) fails with exit 126. |
-| 09:00–11:00 | P367, P368, … P376 all fail with the same error. Nobody pages — there's no alert configured. |
-| 11:15 | User notices and investigates: `skopeo inspect` reveals the missing platform manifest. |
-| 11:20 | Hot fix phase begins: `a05d63ee` fixes a push-URL misalignment, `6371e75e` and `c113be4d` trigger a full rebuild. |
-| 11:40 | Rebuild completes; `infra-ci:latest` resolves to a fresh, complete index. Pipelines green from P377 onward. |
-| 11:45 | User requests a proper root-cause fix: "this is the second time — what's actually broken?" |
-| 12:00 | Investigation begins (this document's work). |
-
-## Root Cause Chain
-
-```
-[1] cleanup-tags.sh runs daily at 02:00 on the registry VM
- └─> For each repository, keeps the last 10 tags by mtime, rmtrees the rest.
-     This walks `_manifests/tags/<tag>` directly, bypassing the registry API.
-         │
-         ├─> [2] Subtle on-disk asymmetry: a registry:2 tag rmtree removes
-         │    BOTH the `_manifests/tags/<tag>/` dir AND — on 2.8.x — the
-         │    per-repo revision-link files under
-         │    `<repo>/_manifests/revisions/sha256/<child-digest>/link` for
-         │    every child referenced by that tag's index. The raw blob data
-         │    under `/var/lib/registry/docker/registry/v2/blobs/sha256/<.>/data`
-         │    is NOT touched — GC owns that, and GC only runs Sunday.
-         │
-         ├─> [3] If ANOTHER tag's index still references one of those same
-         │    children (common — successive rebuilds share layers), the child
-         │    blob survives. But the revision-link is gone, so the registry
-         │    API can no longer map `<repo>/manifests/sha256:<child>` back
-         │    to the blob. HEAD → 404, even though the bytes are on disk.
-         │    distribution/distribution#3324 is the upstream class of this bug.
-         │
-         └─> [4] Result: the surviving index (e.g. `infra-ci:5319f03e`) is
-              intact on disk, its children's blob data files are intact on
-              disk, but HEAD `/v2/infra-ci/manifests/sha256:98f718c8…`
-              returns 404. The registry has the bytes, but cannot find them
-              through the API because the per-repo link bridge is gone.
-
-[pull] containerd resolves `infra-ci:latest`
-         │
-         ├─> GET /v2/infra-ci/manifests/latest → 200 OK, returns the index
-         │
-         └─> GET /v2/infra-ci/manifests/sha256:98f718c8… → 404 Not Found
-              └─> containerd fails the pull with "manifest unknown"
-                    └─> woodpecker exit 126
-```
-
-> **Detection-gotcha** uncovered 2026-04-19 while implementing
-> `fix-broken-blobs.sh`: a scan that checks `/blobs/sha256/<child>/data` for
-> presence is NOT equivalent to "can the registry serve this child?" The
-> authoritative check is whether
-> `<repo>/_manifests/revisions/sha256/<child>/link` exists. The script
-> was rewritten to check the per-repo link file after the HTTP probe
-> caught 38 real orphans the filesystem scan had reported clean.
-
-## Why Existing Remediation Missed It
-
-1. **`fix-broken-blobs.sh` only scans layer links.** The existing cron
-   walks `_layers/sha256/` and removes link files whose blob `data` is
-   missing. It does NOT inspect `_manifests/revisions/sha256/` to see
-   whether an image-index's referenced children still exist. That's
-   exactly the class of orphan this incident represents.
-2. **`registry:2` image tag was floating.** `docker-compose.yml` pinned
-   only to `registry:2`. Whatever Docker Inc. last rebuilt as
-   "v2-current" was running, with no version pin. Any regression in
-   the upstream walker would silently swap in.
-3. **No integrity monitoring.** Prometheus alerted on cache hit rate
-   and registry-down, but nothing probes "are the manifests the registry
-   advertises actually fetchable?"
-4. **CI pipeline didn't verify its own push.** `buildx --push` returns
-   success as soon as it uploads. If a child blob upload 0-byted or
-   the client disconnected mid-push (distinct from the GC mode but the
-   same on-disk symptom), nothing would notice until the next pull.
-
-## Permanent Fix — Three Phases
-
-### Phase 1 — Detection (ship today)
-
-1. **Post-push integrity check** in `.woodpecker/build-ci-image.yml`.
-   After `build-and-push`, a new step walks the just-pushed manifest
-   (and every child of an image index) and HEADs every referenced blob.
-   Any non-200 fails the pipeline immediately, catching broken pushes at
-   the source rather than leaking them to consumers.
-2. **Prometheus alert `RegistryManifestIntegrityFailure`.** A new
-   CronJob (`registry-integrity-probe`, every 15m, in the `monitoring`
-   namespace) walks the private registry's catalog, HEADs every tag's
-   manifest, follows each image index's children, and pushes
-   `registry_manifest_integrity_failures` to Pushgateway. Accompanying
-   alerts: `RegistryIntegrityProbeStale`, `RegistryCatalogInaccessible`.
-3. **Post-mortem** — this document. Linked from
-   `.claude/reference/service-catalog.md` via the new runbook.
-
-### Phase 2 — Prevention
-
-4. **Pin `registry:2` → `registry:2.8.3`** in
-   `modules/docker-registry/docker-compose.yml` (all six registry
-   services). Removes the floating-tag footgun.
-5. **Extend `fix-broken-blobs.sh`** to scan every
-   `_manifests/revisions/sha256/<digest>` that is an image index and
-   flag children whose blob `data` file is missing. The script prints a
-   loud WARNING per orphan; it does not auto-delete the index, because
-   deleting a published image is a conscious decision, not an automated
-   repair.
-
-### Phase 3 — Recovery tooling
-
-6. **Manual event trigger** on `build-ci-image.yml`. Rebuilds no longer
-   need a cosmetic Dockerfile edit — POST to the Woodpecker API or
-   click "Run manually" in the UI.
-7. **Runbook** `docs/runbooks/registry-rebuild-image.md` — exact
-   command sequence for the next time this happens, plus fallback paths.
-
-## Out of Scope
-
-- **Pull-through caches.** The DockerHub / GHCR mirrors on
-  `:5000` / `:5010` are healthy (74.5% cache hit rate, no 404s). The
-  orphan problem is private-registry-only. No changes to nginx or
-  containerd `hosts.toml`.
-- **Registry HA / replication.** Single-VM SPOF is a known
-  architectural choice. Harbor or a replicated registry would solve
-  more than this incident requires, at multi-day cost. Synology offsite
-  snapshots already give RPO < 1 day.
-- **Disabling `cleanup-tags.sh`.** Keeping storage bounded is still
-  necessary; the fix is detection + rebuild, not "stop cleaning up".
-
-## Lessons
-
-- **Repeat incidents deserve root-cause work, not a third hot-fix.** The
-  2026-04-13 incident was closed when CI turned green. Without a probe
-  and without a scan for orphan indexes, the next incident was
-  inevitable — and it happened six days later against a different image.
-- **"No alert fired, so it wasn't detected" is a monitoring gap, not an
-  outage feature.** The registry was serving 404s for 2+ hours before
-  anyone noticed, because our only signal was "pipeline failures" and
-  our eyes were elsewhere. The new probe closes that gap.
-- **CI pipelines should verify their own output.** The `buildx --push`
-  "success" exit code is not a guarantee of pulled-back integrity — as
-  this incident proves. A 30-second post-push HEAD walk is cheap
-  insurance.
-
-## Related
-
-- **Prior incident (same failure mode, different image)**: memory `709`
-  / `710` — 2026-04-13.
-- **Runbook**: `docs/runbooks/registry-rebuild-image.md` (new).
-- **Hot-fix commits**: `a05d63ee`, `6371e75e`, `c113be4d`.
-- **Upstream bug class**: `distribution/distribution#3324`.
-
-## 2026-04-19 — Bulk cleanup sweep (beads code-8hk + code-jh3c)
-
-Same failure class, broader scope. The `registry-integrity-probe`
-surfaced 38 broken manifest references persisting after the 04-19
-infra-ci fix. `beads-dispatcher` + `beads-reaper` CronJobs were stuck
-`ImagePullBackOff` on `claude-agent-service:0c24c9b6` for >6h. All 34
-affected `repo:tag` pairs were OCI indexes whose `linux/amd64` child
-manifests were absent from blob storage (same orphan pattern).
-
-**Action taken**:
-1. Bumped `beads-server/main.tf` var default `claude_agent_service_image_tag`
-   from `0c24c9b6` → `2fd7670d` (the canonical tag in
-   `claude-agent-service/main.tf`), reused — same image already healthy
-   on the registry. `scripts/tg apply` on `beads-server`. Deleted the
-   stuck Jobs so new CronJob ticks could fire.
-2. Enumerated 34 broken `(repo, tag, parent_digest)` triples via HTTP
-   probe using `registry-probe-credentials` K8s Secret. Deleted each
-   via `DELETE /v2/<repo>/manifests/<digest>` (33× 202, 1× 404 —
-   claude-agent-service:latest pointed at an already-deleted digest).
-3. Ran `docker exec registry-private /bin/registry garbage-collect
-   /etc/docker/registry/config.yml` — reclaimed ~3GB of orphan blob
-   storage.
-4. Rebuilt the 3 in-use broken tags (all 3 OCI-index parents pointed
-   at missing children, so no cached copies would survive pod
-   reschedule):
-   - `freedify:latest` / `freedify:c803de02` — built on registry VM
-     directly (no CI pipeline exists for this image; python FastAPI).
-   - `beadboard:17a38e43` / `beadboard:latest` — GHA
-     `workflow_dispatch` failed at registry login (missing
-     `REGISTRY_USERNAME`/`REGISTRY_PASSWORD` GH secrets). Built on
-     registry VM directly as the fallback. GitHub secret gap is a
-     follow-up — beads `code-8hk` notes it.
-   - `priority-pass-backend:ae1420a0` / `priority-pass-frontend:ae1420a0`
-     — Woodpecker pipeline #8 on repo 81. Pipeline `kubectl set image`'d
-     the Deployment to `ae1420a0` (drift vs TF `v5`/`v8` defaults, but
-     that drift is pre-existing, not introduced by this cleanup).
-   - `wealthfolio-sync:latest` — **not rebuilt**. Monthly CronJob (next
-     run 2026-05-01), no source tree or CI pipeline available in the
-     monorepo; deferred for separate follow-up.
-
-**Post-cleanup state**:
-- Probe: 39 tags, 0 failures. `registry_manifest_integrity_failures{} = 0`.
-- Alert `RegistryManifestIntegrityFailure` cleared (was firing for
-  5h 32m).
-- No `ImagePullBackOff` pods anywhere in the cluster.
-- 28 of 34 deleted manifests were **dangling tags not referenced by any
-  workload** — old `382d6b1*`, `v2`-`v7`, `yt-fallback`, etc. Safe
-  deletes, no rebuilds needed.
-
-**Permanent fix still in flight**: Phase 2/3 of this post-mortem
-(post-push verification in CI, atomic `cleanup-tags.sh`) — not
-addressed by this cleanup. The probe continues to be the
-authoritative detector.
diff --git a/docs/post-mortems/2026-04-22-vault-raft-leader-deadlock.md b/docs/post-mortems/2026-04-22-vault-raft-leader-deadlock.md
deleted file mode 100644
index dcbb8e02..00000000
--- a/docs/post-mortems/2026-04-22-vault-raft-leader-deadlock.md
+++ /dev/null
@@ -1,155 +0,0 @@
-# Post-Mortem: Vault Raft Leader Deadlock + NFS Kernel Client Corruption Cascade
-
-> **Resolution status (2026-04-25):** Resolved structurally by code-gy7h
-> migration. All 3 vault voters now on `proxmox-lvm-encrypted` block
-> storage; the NFS fsync incompatibility that triggered the original
-> raft hang is no longer reachable. See
-> `docs/plans/2026-04-25-nfs-hostile-migration-plan.md` Phase 2.
-
-| Field | Value |
-|-------|-------|
-| **Date** | 2026-04-22 |
-| **Duration** | External endpoint 503 from ~09:00 UTC to ~11:43 UTC (~2h 43m). vault-2 became active leader 11:43:28 UTC. |
-| **Severity** | SEV1 (Vault — single source of secrets for 40+ services) |
-| **Affected Services** | All ESO-backed services (password rotation paused). CronJobs that read plan-time secrets (14 stacks). Woodpecker CI (blocked pipeline `d39770b3`). Everything with `ExternalSecret` refresh interval ≤ 2h. |
-| **Status** | Vault HA operational with vault-0 + vault-2 quorum. vault-1 still stuck ContainerCreating on node2 (third node2 reboot pending; workload can accept 2/3 quorum). Terraform fix committed as `2f1f9107`; apply pending. |
-
-## Summary
-
-A Vault raft leader (`vault-2`) entered a stuck goroutine state where its cluster port (8201) accepted TCP but never completed msgpack RPC. Standbys could not detect leader death because the TCP layer looked healthy, so no re-election fired. The only recovery was to kill the leader. During recovery, abrupt `kubectl delete --force` of the stuck Vault pods left kernel-side NFS client state on k8s-node1/node3/node4 in a corrupted state — **all new NFS mounts from those nodes timed out at 110s**, while existing mounts kept working. This created a cascade: the stuck leader blocked quorum, killing the leader broke NFS on the destination node for the recreated pod, force-killing the stuck pods left zombie `containerd-shim` processes kubelet couldn't clean up, and the resulting volume-manager loops pegged kubelet into 2-minute timeouts. Recovery required a VM hard-reset for node2 and node3 (kubelet was zombie on both). vault-0 remains down pending node4 reboot.
-
-## Impact
-
-- **User-facing**: `vault.viktorbarzin.me` returned HTTP 503 for ~2h. Any service that needed a Vault token during that window was degraded; Woodpecker CI pipeline blocked.
-- **Blast radius**: 3/3 Vault pods affected (raft deadlock blocked re-election even with standbys up). Three k8s nodes degraded simultaneously with kernel NFS client stuck state (node1, node3, node4). Two nodes required VM hard-reset to recover kubelet (node2, node3).
-- **Duration**: Degraded ~2h; resolution required sequential hard reboots.
-- **Data loss**: None. Raft data integrity preserved on NFS. vault-1 came up with index 2475732, caught up to 2476009+ once leader was elected.
-- **Observability gap**: No alert fired for the stuck raft leader. Standbys report `HA Mode: standby, Active Node Address: <leader IP>` as if healthy even when leader is hung.
-
-## Timeline (UTC)
-
-| Time | Event |
-|------|-------|
-| **~09:00** | `vault-2` (original raft leader) enters hung state — port 8201 open but msgpack RPCs hang. Its own logs go silent. Standbys continue heartbeat/appendEntries with `msgpack decode error [pos 0]: i/o timeout`. Neither standby triggers re-election because raft transport does not distinguish "TCP open + silent" from "TCP open + healthy". |
-| **~09:15** | External endpoint starts serving 503. Woodpecker CI pipeline `d39770b3` blocks waiting for Vault. |
-| **09:59** | Operator force-deletes `vault-2` pod — replacement comes up on node3 and enters candidate loop (term=32), cannot get quorum because DNS for `vault-0` is NXDOMAIN (ContainerCreating) and vault-1 does not respond (its raft goroutine also hung). |
-| **10:07** | Operator force-deletes `vault-1` — new `vault-1` gets scheduled to node2. Its raft would be fine, but kubelet on node2 hangs in the pod cleanup path for the old pod's NFS mount. Concurrently, a new `vault-0` pod is attempted on node4, but **NFS mount from node4 times out at 110s** — the host kernel NFS client is in a degraded state that blocks all new mounts (including to completely different NFS paths like `/srv/nfs/ytdlp`). |
-| **10:09** | Diagnostic test: from node1 and node4 CSI pods, `mount -t nfs -o nfsvers=4 192.168.1.127:/srv/nfs/ytdlp /tmp/test` times out. From node2 and node3 the same mount succeeds. NFS server is healthy (`showmount -e` works; `rpcinfo` shows all programs registered). The common factor on the broken nodes: they had a force-terminated Vault pod earlier in the session, leaving stuck `mount.nfs` processes in D-state. |
-| **10:18** | Manual unmount of stale NFS mount from the force-deleted old vault-0 pod on node4. New mount attempts from CSI still time out — clearing the old mount did not recover kernel NFS client state. |
-| **10:22** | Workaround discovered: mounting with `nfsvers=4.0` or `nfsvers=4.1` (instead of default `nfsvers=4` which negotiates to 4.2) succeeds on broken nodes. Confirms the stuck state is version-specific (NFSv4.2 session state), not a general NFS issue. Decision: rather than change CSI mount options cluster-wide (risk of remounting existing 48+ PVs), fix the nodes directly. |
-| **10:31** | Investigated node2 kubelet state: old `vault-1` container shows `vault` process in **Z (zombie)** state with its `sh` wrapper stuck in `do_wait` in kernel (`zap_pid_ns_processes`). Containerd-shim PID killed manually — `sh` and zombie reparented to init but remained stuck (uninterruptible kernel wait tied to NFS). |
-| **10:34** | Attempted `systemctl restart kubelet` on node2 — kubelet itself went into Z (zombie) with 2 tasks still attached. Classic NFS-related kernel deadlock. |
-| **10:42** | **Decision: hard-reset node2 VM** (`qm reset 202`). Disruption: 22 pods evicted. |
-| **10:43** | node2 back up (Ready). CSI registered. New `vault-1` scheduled to node2. NFS mount succeeded (fresh kernel state). Kubelet began chowning volume — **extremely slow, ~3 files per minute over NFS**. |
-| **10:48** | `vault-1` (2/2 Running) unsealed. **Raft leader elected: `vault-2` wins term 32, election tally=2** (vault-1 voted yes once it came up, vault-0 unreachable). However vault-2's vault-layer (HA active/standby) never transitioned to active — raft leader with `active_time: 0001-01-01T00:00:00Z` and `/sys/ha-status` returning 500. |
-| **10:50** | Restarted `vault-2` pod to force clean leader transition. New `vault-2` stuck in chown loop on node3 (same pattern as node2 earlier). |
-| **10:54** | Patched the Vault `StatefulSet` with `fsGroupChangePolicy: OnRootMismatch` so subsequent recreations skip the recursive chown. |
-| **10:57** | Force-deleted `vault-2` and `06fa940b` pod directory on node3. New pod spawned but kubelet again stuck on phantom state from the old pod. |
-| **11:01** | **Hard-reset node3 VM** (`qm reset 203`). |
-| **11:03** | First 200 response: vault-1 elected leader, vault-2 standby. Premature celebration — vault-1's audit log on node2 NFS starts timing out; `/sys/ha-status` returns 500 even though raft thinks vault-1 is active. |
-| **~11:18** | Service regresses. `vault-1` audit writes hanging (`event not processed by enough 'sink' nodes, context deadline exceeded`). Readiness probe fails; pod goes 1/2; `vault-active` endpoint stays pointed at vault-1's IP but backend unresponsive → 503. |
-| **11:22** | Force-restart `vault-1` to trigger re-election with new pod. Delete + containerd-shim cleanup leaves yet another zombie on node2. Same pattern: force-delete → zombie. |
-| **11:29** | **Hard-reset node4 VM** (`qm reset 204`). Rationale: vault-0 was still blocked there; 74 pods on node4 contribute to NFS server load (load avg 16 on PVE). After reboot, vault-0 mounts its PVCs on fresh kernel state and comes up 2/2 Running 11:31. |
-| **11:31** | Increased PVE NFS threads from 16 to 64 (`echo 64 > /proc/fs/nfsd/threads`). Did not help immediate mount failures — the stuck state is per-client kernel, not server capacity. |
-| **11:38** | Discover DNS resolution issue: vault-2's Go resolver returns NXDOMAIN for short names `vault-0.vault-internal` even though glibc resolver works. CoreDNS restart issued earlier didn't fix. Restart vault-2 pod to force fresh resolver state. |
-| **11:42** | **Second hard-reset of node3 VM** (`qm reset 203`). Kubelet+CSI re-register; vault-2 scheduled, NFS mounts finally succeed on fresh kernel state. |
-| **11:43:28** | **vault-2 becomes active leader.** External endpoint returns 200 and stays there. vault-0 follower, catches up to index 2477632+. vault-1 still stuck on node2; left for later recovery. |
-
-## Root Cause Chain
-
-```
-[1] Vault-2 raft goroutine hang (root cause — upstream Vault bug or infra-induced)
- └─> Cluster port 8201 accepts TCP but never responds to msgpack RPCs
-     └─> Standbys' appendEntries calls return `msgpack decode error [pos 0]: i/o timeout`
-         └─> Raft protocol: no re-election because leader is heartbeating at the TCP level
-            └─> External endpoint returns 503 because HA layer has no active leader
-
-[2] Recovery complication — abrupt pod termination
- └─> `kubectl delete --force --grace-period=0` on vault-0/1/2
-     └─> containerd-shim fails to kill container cleanly (NFS I/O in D-state)
-         └─> vault process ends as zombie; sh wrapper stuck in do_wait
-             └─> Kubelet retries forever, cannot tear down old pod volumes
-                └─> NFS-CSI unmount requests succeed at the NFS layer but kubelet's
-                    volume state-machine never marks the volume as unmounted
-                    (stale 0000-mode mount directory blocks teardown completion)
-
-[3] Kernel NFS client corruption on node1/node4
- └─> Force-terminated Vault pod left stuck `mount.nfs` processes in D-state
-     └─> Kernel NFS4.2 client session state corrupted (held open mount slot)
-         └─> All subsequent mount syscalls for nfsvers=4 block 110s+ waiting for
-             session slot that will never be freed
-            └─> Manual workaround: nfsvers=4.1 bypasses the corrupted session state
-
-[4] Kubelet starvation
- └─> Combination of (2) and (3) means kubelet is stuck in a 2-minute volume-setup
-     context deadline loop — each iteration times out, new iteration restarts,
-     infinite loop
-     └─> Hard VM reset is the only exit
-         └─> After reset, kubelet starts clean, CSI re-registers, mounts succeed
-
-[5] Slow recursive chown amplifies impact
- └─> Default fsGroupChangePolicy: Always (Vault Helm chart 0.29.1 default)
-     └─> Kubelet walks every file on NFS setting gid=1000
-        └─> Over a 1GB audit log and a 47MB raft.db on NFS with timeo=30,retrans=3,
-            each chown syscall takes seconds; kubelet 2-minute deadline runs out
-            before the walk finishes
-           └─> Loop never exits even when ownership is already correct
-```
-
-## Why This Failed
-
-1. **Raft transport does not detect stuck leaders.** If TCP is open and the process is alive enough to hold the port, standbys assume the leader is healthy. A stuck goroutine that never responds to RPCs appears to raft as "leader with high RTT" and does not trigger re-election. This is an upstream Vault bug (or at least a missing liveness check).
-
-2. **Abrupt pod termination + NFS = kernel-level zombie.** When a Vault pod holding an NFS mount is force-killed before it cleanly closes file handles, the kernel's NFS4.2 client session state enters a corrupted state. This blocks all new mounts from that node — not just to the same NFS path, but to ANY NFS path on the same server. The fix is a kernel reboot; there is no userspace recovery.
-
-3. **Vault data on NFS violates the documented rule.** `infra/.claude/CLAUDE.md` explicitly states: *"Critical services MUST NOT use NFS storage — circular dependency risk."* Vault currently uses `nfs-proxmox` for both `dataStorage` and `auditStorage`. If Vault had been on `proxmox-lvm-encrypted`, none of the NFS corruption cascade would have happened.
-
-4. **fsGroupChangePolicy: Always is the Helm default.** Every pod restart walks every file over NFS. On a 1GB audit log with degraded NFS RTT, this takes longer than kubelet's internal 2-minute deadline, causing infinite restart loops. `OnRootMismatch` makes chown a no-op when the root is already correct (which it always is after first setup).
-
-5. **No alert for this failure mode.** Prometheus alerts exist for `VaultSealed`, `VaultDown` (`up` metric), and backup staleness, but none for "raft leader has been running without advancing commit index" or "standby reports leader but leader's `/sys/ha-status` returns 500".
-
-## Remediation (Applied)
-
-- [x] Hard-reset node2 and node3 VMs to clear kernel NFS state and kubelet zombies.
-- [x] Manually patched live `StatefulSet vault/vault` with `fsGroupChangePolicy: OnRootMismatch` to stop the chown loop.
-- [x] Lazy-unmounted stale NFS mounts from force-deleted pod directories on node2 and node3.
-- [x] Removed stale kubelet pod directories (`/var/lib/kubelet/pods/<UID>`) that had 0000-mode mount subdirectories blocking teardown.
-- [x] Updated `stacks/vault/main.tf` with the `fsGroupChangePolicy` setting so the next `scripts/tg apply vault` makes it durable.
-
-## Remediation (Pending)
-
-- [ ] **Hard-reset node4** to recover vault-0 (same NFS kernel corruption pattern).
-- [ ] **Run `scripts/tg apply` on the vault stack** to persist the fsGroupChangePolicy change.
-- [ ] **Add Prometheus alert `VaultRaftLeaderStuck`** — fire when `vault_raft_last_index_gauge` (or derivation from `vault_runtime_total_gc_runs`) stops advancing for >2 minutes while `vault_core_active` is 1.
-- [ ] **Add Prometheus alert `VaultHAStatusUnavailable`** — fire when `vault_core_active{}` reports 0 across all pods but `up{job="vault"}` reports 1 (HA layer broken but pods alive).
-- [ ] **Migrate Vault to `proxmox-lvm-encrypted` block storage** — eliminates the entire NFS failure class. This follows the rule already documented in `infra/.claude/CLAUDE.md`. Tracked as beads task (open after Dolt is back up; currently down on node4).
-- [ ] **Consider raising kubelet volume-manager deadline** for large-volume chown scenarios, or document the `fsGroupChangePolicy: OnRootMismatch` requirement for all NFS-backed StatefulSets.
-- [ ] **Runbook**: `docs/runbooks/vault-raft-leader-deadlock.md` — how to detect stuck leader, safe force-restart procedure that avoids zombie pods, NFS kernel state recovery.
-
-## Contributing Factors
-
-1. **NFS mount options use bare `nfsvers=4`**. This negotiates to the highest version the server supports (NFSv4.2). When 4.2 session state corrupts, mounts fail; 4.1 works. Pinning to `nfsvers=4.1` in the `nfs-proxmox` StorageClass would make the failure mode recoverable without node reboot, but would also require recreating 48+ existing PVs (volumeAttributes are immutable). Deferred.
-
-2. **`kubectl delete --force` is the default for stuck pods**. Operators reach for force-delete when a pod won't terminate, but this leaves containerd in an inconsistent state when the underlying storage is hung. Better approach: identify the stuck process (typically `mount.nfs` or a kernel NFS callback) and fix the root cause before force-deleting.
-
-3. **Beads / Dolt server was on node4**, so beads task tracking went offline during this incident and couldn't be used to log progress cross-session.
-
-4. **node1 was cordoned mid-incident** to prevent rescheduling to a node with confirmed NFS issues, but this reduced the scheduling surface for anti-affinity-sensitive StatefulSets.
-
-## Learnings
-
-1. **NFS for stateful critical services is structurally unsafe.** When NFS breaks, the recovery involves killing pods → which can break NFS further → until a reboot. The rule exists for a reason; Vault should never have been on NFS.
-
-2. **Raft liveness needs application-layer probing, not TCP.** Every time we've seen a "stuck leader" issue in the homelab, TCP was fine and the app was unresponsive. A lightweight RPC probe with a short timeout and Prometheus alert would catch this in minutes instead of hours.
-
-3. **kubelet volume-manager is fragile against stuck NFS.** Once kubelet enters a chown loop with a context deadline shorter than the chown duration, it cannot make progress — even when the filesystem is otherwise healthy. `OnRootMismatch` is effectively mandatory for any pod with `fsGroup` and a volume >100MB.
-
-4. **VM hard-reset is cheap but disruptive.** The two reboots took ~60 seconds each but evicted 22+44 = 66 pods. Doing this twice in one session is a lot of churn. A post-mortem-driven improvement: pre-prepare "hot-standby" capacity so we can cordon+drain instead of hard-reset when kubelet zombies appear.
-
-5. **Documentation of this rule is worth more than the rule itself.** The CLAUDE.md already says "critical services must not use NFS". The vault stack violates it. The rule without enforcement (validation, linting, CI) is ignored during the rush to ship.
-
-## References
-
-- Related: `docs/post-mortems/2026-04-14-nfs-fsid0-dns-vault-outage.md` — previous Vault+NFS incident (different root cause, similar blast pattern).
-- Vault helm chart 0.29.1 default `fsGroupChangePolicy` is unset (behaves as `Always`).
-- Upstream Vault HA layer: raft leader → vault-active transition is in `vault/external_tests/raft`. Stuck goroutine pattern not documented as a known issue.
diff --git a/docs/runbooks/beads-auto-dispatch.md b/docs/runbooks/beads-auto-dispatch.md
deleted file mode 100644
index f8bade68..00000000
--- a/docs/runbooks/beads-auto-dispatch.md
+++ /dev/null
@@ -1,185 +0,0 @@
-# Beads Auto-Dispatch Runbook
-
-Users can hand work to the headless `beads-task-runner` agent by assigning a
-bead to the sentinel user `agent`. Two CronJobs in the `beads-server`
-namespace drive the pipeline:
-
-- **`beads-dispatcher`** — every 2 min: picks up the highest-priority
-  `assignee=agent`/`status=open` bead with non-empty acceptance criteria,
-  claims it by flipping to `in_progress`, and POSTs it to BeadBoard's
-  `/api/agent-dispatch`. BeadBoard forwards to `claude-agent-service` with
-  the existing bearer-token flow.
-- **`beads-reaper`** — every 10 min: flips any `assignee=agent` +
-  `status=in_progress` bead whose `updated_at` is older than 30 min to
-  `status=blocked` with an explanatory note. Catches pod crashes mid-run.
-
-The manual BeadBoard Dispatch button continues to work in parallel.
-
-## Flow diagram
-
-```
-  user: bd assign <id> agent
-         │
-         ▼
-  Dolt @ dolt.beads-server.svc:3306  ◄──── every 2 min ────┐
-         │                                                  │
-         ▼                                                  │
-  CronJob: beads-dispatcher                                 │
-    1. GET beadboard/api/agent-status  (busy?)              │
-    2. bd query 'assignee=agent AND status=open'            │
-    3. bd update -s in_progress   (claim)                   │
-    4. POST beadboard/api/agent-dispatch                    │
-    5. bd note "dispatched: job=…"                          │
-         │                                                  │
-         ▼                                                  │
-  claude-agent-service /execute                             │
-    beads-task-runner agent runs; notes/closes bead         │
-         │                                                  │
-         ▼                                                  │
-  done  ──► next tick picks up the next bead ───────────────┘
-
-
-  CronJob: beads-reaper  (every 10 min)
-    for bead (assignee=agent, status=in_progress, updated_at > 30 min):
-      bd note   "reaper: no progress for Nm — blocking"
-      bd update -s blocked
-```
-
-## Usage
-
-### Hand a bead to the agent
-
-```
-bd create "Title" \
-    -d "Full context — files, services, error messages. Any agent with no prior context must be able to execute this." \
-    --acceptance "Concrete, verifiable criteria" \
-    -p 2
-bd assign <new-id> agent
-```
-
-**Acceptance criteria is required.** Beads without it are skipped by the
-dispatcher and stay in `open` forever. This is intentional — the
-`beads-task-runner` agent expects clear done conditions.
-
-### Take a bead back (unassign)
-
-```
-bd assign <id> ""
-```
-
-If the bead is already `in_progress`, also reset it:
-
-```
-bd update <id> -s open
-```
-
-### Pause auto-dispatch
-
-```
-cd infra/stacks/beads-server
-scripts/tg apply -var=beads_dispatcher_enabled=false
-```
-
-This sets `spec.suspend: true` on both CronJobs. Existing running jobs
-continue; no new ticks fire. Re-enable by re-applying with
-`beads_dispatcher_enabled=true` (the default). Manual BeadBoard Dispatch
-remains available while paused.
-
-### Read the logs
-
-```
-# Recent dispatcher runs
-kubectl -n beads-server get jobs --selector=job-name --sort-by=.metadata.creationTimestamp | grep beads-dispatcher | tail
-kubectl -n beads-server logs job/<dispatcher-job-name>
-
-# Tail the underlying agent once a bead dispatches
-kubectl -n claude-agent logs -l app=claude-agent-service -f
-
-# Inspect reaper decisions
-kubectl -n beads-server get jobs | grep beads-reaper | tail
-kubectl -n beads-server logs job/<reaper-job-name>
-```
-
-### Inspect a specific bead's dispatch history
-
-```
-bd show <id> --json | jq '{status, assignee, notes, updated_at}'
-```
-
-Both the dispatcher and reaper write dated notes (`auto-dispatcher claimed
-at…`, `dispatched: job=…`, `reaper: no progress for…`) so the audit trail
-lives on the bead itself.
-
-## Reaper semantics — when a bead becomes `blocked`
-
-The reaper flips a bead to `blocked` if:
-- `assignee = agent`, AND
-- `status = in_progress`, AND
-- `updated_at` is more than **30 minutes** in the past.
-
-Every `bd note` bumps `updated_at`, so a well-behaved `beads-task-runner`
-agent never trips the reaper — it notes progress as it works. A `blocked`
-bead is a signal that:
-- the agent pod crashed mid-run (`kubectl -n claude-agent delete pod` test),
-- the job hit its 15-minute budget timeout inside `claude-agent-service`
-  without notes (rare — the agent usually notes failure before exiting),
-- `claude-agent-service` was restarted during the run (in-memory job state
-  is lost; see [known risks](#known-risks)).
-
-Recovery: read the reaper note, reopen manually if appropriate:
-
-```
-bd update <id> -s open
-bd assign <id> agent     # re-arm for next dispatcher tick
-```
-
-## Design choices
-
-- **Sentinel assignee `agent`** — free-form, no Beads schema change. Any bd
-  client can set it (`bd assign <id> agent`).
-- **Sequential dispatch** — matches `claude-agent-service`'s single-slot
-  `asyncio.Lock`. With a 2-min poll cadence and ~5-min average run,
-  throughput is ~12 beads/hour. Parallelism is a separate plan.
-- **Fixed agent (`beads-task-runner`)** — read-only rails, matches BeadBoard's
-  manual Dispatch button. Broader-privilege agents stay manual.
-- **CronJob (not in-service polling, not n8n)** — matches existing infra
-  pattern (OpenClaw task-processor, certbot-renewal, backups), TF-managed,
-  easy to pause.
-- **ConfigMap-mounted `metadata.json`** — declarative TF rather than reusing
-  the image-seeded file. The CronJob's init step copies it into `/tmp/.beads/`
-  because `bd` may touch the parent directory and ConfigMap mounts are
-  read-only.
-
-## Known risks
-
-- **In-memory job state in `claude-agent-service`** — if the pod restarts
-  mid-run, the job record is lost. The reaper catches this after 30 min.
-  Persistent job store is deferred.
-- **Prompt injection via bead fields** — a malicious bead description could
-  try to steer the agent. The `beads-task-runner` rails + token budget +
-  timeout are the defense. Identical exposure as the manual Dispatch button.
-- **Image tag drift** — `claude_agent_service_image_tag` in
-  `stacks/beads-server/main.tf` mirrors `local.image_tag` in
-  `stacks/claude-agent-service/main.tf`. Bump both when the image rebuilds,
-  or the dispatcher/reaper will run on an older layer. (They only need
-  `bd`, `curl`, `jq` — stable across rebuilds — so the drift is low-risk.)
-- **`bd` JSON schema changes** — the reaper's `jq` reads `.id` and
-  `.updated_at`. If a future `bd` upgrade renames these, the reaper breaks
-  silently (no reaping, no alert). `BD_VERSION` is pinned in the image
-  Dockerfile.
-
-## Verification after change
-
-```
-# Both CronJobs exist with the right schedule / SUSPEND state
-kubectl -n beads-server get cronjob
-
-# End-to-end smoke test
-bd create "auto-dispatch smoke test" \
-    -d "Read /etc/hostname inside the agent sandbox and close." \
-    --acceptance "bd note includes 'hostname=' and bead is closed."
-bd assign <new-id> agent
-# within 2 min:
-bd show <new-id> --json | jq '.notes'
-# → contains 'auto-dispatcher claimed' + 'dispatched: job=<uuid>'
-```
diff --git a/docs/runbooks/forgejo-registry-breakglass.md b/docs/runbooks/forgejo-registry-breakglass.md
deleted file mode 100644
index 664893d5..00000000
--- a/docs/runbooks/forgejo-registry-breakglass.md
+++ /dev/null
@@ -1,126 +0,0 @@
-# Runbook: Forgejo registry break-glass — recovering infra-ci
-
-Last updated: 2026-05-07
-
-## When to use this runbook
-
-When **all** of the following are true:
-
-1. Forgejo (`forgejo.viktorbarzin.me`) is unreachable.
-2. `registry-private` is also gone (post-Phase 4 of the consolidation),
-   so you can't fall back to `registry.viktorbarzin.me:5050/infra-ci`.
-3. You need to run an infra Woodpecker pipeline (apply, build-cli,
-   drift-detection, etc.) — but those pipelines pull `infra-ci` and
-   crash because the registry is down.
-
-If only Forgejo is down but `registry-private` is still alive, the
-pipelines work — `image:` references in `infra/.woodpecker/*.yml`
-still hit `registry.viktorbarzin.me:5050/infra-ci` until Phase 3
-flips them. Skip this runbook entirely.
-
-## What's available
-
-The `build-ci-image.yml` Woodpecker pipeline saves a tarball after
-each successful push:
-
-| Location | Path |
-|---|---|
-| Registry VM disk (10.0.20.10) | `/opt/registry/data/private/_breakglass/infra-ci-<sha>.tar.gz` |
-| Registry VM disk (latest symlink) | `/opt/registry/data/private/_breakglass/infra-ci-latest.tar.gz` |
-| Synology NAS (offsite copy via daily-backup sync) | `/volume1/Backup/Viki/pve-backup/_forgejo-breakglass/` |
-
-The registry VM keeps the last 5 tarballs. Synology mirrors them
-through the existing offsite-sync-backup job (`/usr/local/bin/
-offsite-sync-backup`).
-
-## Recovery procedure
-
-The goal is to get a working `infra-ci` image onto a k8s node so
-Woodpecker pods can run it. Then run a Woodpecker pipeline that
-restores Forgejo from PVC backup or rebuilds it.
-
-### Step 1 — copy the tarball to a node
-
-From your workstation (the registry VM is reachable but Forgejo is
-not — the rest of the cluster might be in a similar partial state):
-
-```bash
-ssh wizard@10.0.20.103  # any responsive k8s node
-sudo mkdir -p /var/breakglass
-sudo scp root@10.0.20.10:/opt/registry/data/private/_breakglass/infra-ci-latest.tar.gz \
-  /var/breakglass/
-```
-
-If the registry VM is also down, fall back to Synology:
-
-```bash
-sudo scp 192.168.1.13:/volume1/Backup/Viki/pve-backup/_forgejo-breakglass/infra-ci-latest.tar.gz \
-  /var/breakglass/
-```
-
-### Step 2 — load into containerd
-
-`docker load` won't help on a k8s node — it loads into the docker
-daemon, which kubelet/containerd doesn't see. Use `ctr`:
-
-```bash
-sudo ctr -n k8s.io images import /var/breakglass/infra-ci-latest.tar.gz
-sudo ctr -n k8s.io images list | grep infra-ci
-```
-
-Confirm the image is tagged with the original repository name
-(`registry.viktorbarzin.me:5050/infra-ci:<sha>` — the tarball was
-saved with that tag, NOT the Forgejo name).
-
-### Step 3 — pin pods to this node
-
-Add a node selector or taint-toleration to whatever pipeline you
-need to run. Simplest: cordon the other nodes briefly so Woodpecker
-schedules onto this one.
-
-```bash
-for n in $(kubectl get nodes -o name | grep -v $(hostname)); do
-  kubectl cordon ${n#node/}
-done
-```
-
-Run the pipeline. After it completes:
-
-```bash
-for n in $(kubectl get nodes -o name); do
-  kubectl uncordon ${n#node/}
-done
-```
-
-### Step 4 — fix the underlying problem
-
-The pipeline you just ran was meant to restore Forgejo. Common
-options:
-
-- **Forgejo PVC corrupt** — `docs/runbooks/forgejo-registry-rebuild-image.md`
-  walks through PVC restore from LVM snapshot or PVE backup.
-- **Forgejo OOM-loop** — bump memory request+limit in
-  `infra/stacks/forgejo/main.tf` and apply.
-- **Forgejo unreachable due to network** — check Traefik, MetalLB,
-  pfSense.
-
-Once Forgejo is back, run `build-ci-image.yml` manually so the
-tarball regenerates with the latest commit.
-
-## Why this exists
-
-The 2026-04-19 post-mortem on the registry-orphan-index incident
-showed that a single registry going corrupt could block ALL infra
-pipelines (because every pipeline pulls `infra-ci` from that
-registry). The dual-push to Forgejo + registry-private removes that
-single-point-of-failure during the bake. After Phase 4
-decommissions registry-private, the tarball is the last line of
-defense.
-
-## Why on the registry VM and not in-cluster
-
-The Forgejo pod and registry-private pod both depend on cluster
-networking + storage. The registry VM is an independent
-non-clustered VM with local storage. If the cluster is in a bad
-state, the VM's disk is still readable from any other host on the
-LAN.
diff --git a/docs/runbooks/forgejo-registry-rebuild-image.md b/docs/runbooks/forgejo-registry-rebuild-image.md
deleted file mode 100644
index fc917b8c..00000000
--- a/docs/runbooks/forgejo-registry-rebuild-image.md
+++ /dev/null
@@ -1,128 +0,0 @@
-# Runbook: Rebuild an Image on the Forgejo OCI Registry
-
-Last updated: 2026-05-07
-
-## When to use this
-
-Pipelines pulling from `forgejo.viktorbarzin.me/viktor/<image>` fail with:
-
-- `failed to resolve reference … : not found`
-- `manifest unknown`
-- HEAD on a manifest/blob digest returns 404
-- `forgejo-integrity-probe` CronJob in `monitoring` reports
-  `registry_manifest_integrity_failures > 0` for
-  `instance="forgejo.viktorbarzin.me"`
-
-This is the Forgejo equivalent of the registry-private orphan-index
-failure mode (`docs/post-mortems/2026-04-19-registry-orphan-index.md`).
-Cause is usually package-version delete races with an in-flight pull,
-or PVC corruption. Fix is to rebuild the image from source and
-re-push, so Forgejo receives a complete, fresh upload.
-
-If the symptom is different (Forgejo unreachable, PVC OOM,
-authentication failure), use:
-- `docs/runbooks/forgejo-registry-setup.md` for auth + token issues
-- `docs/runbooks/forgejo-registry-breakglass.md` if Forgejo + the
-  cluster are both unreachable
-- `docs/runbooks/restore-pvc-from-backup.md` for PVC corruption
-
-## Phase 1 — Confirm the diagnosis
-
-From any host:
-
-```sh
-REG=forgejo.viktorbarzin.me
-USER=cluster-puller
-PASS="$(vault kv get -field=forgejo_pull_token secret/viktor)"
-IMAGE=viktor/payslip-ingest
-TAG=latest
-
-# 1. Confirm the manifest exists at all.
-curl -sk -u "$USER:$PASS" \
-  -H 'Accept: application/vnd.oci.image.index.v1+json,application/vnd.oci.image.manifest.v1+json' \
-  "https://$REG/v2/$IMAGE/manifests/$TAG" | jq '.mediaType, .manifests[].digest // .config.digest'
-
-# 2. HEAD each child / config / layer digest. Any non-200 = confirmed.
-for d in $(curl -sk -u "$USER:$PASS" -H 'Accept: application/vnd.oci.image.index.v1+json' \
-             "https://$REG/v2/$IMAGE/manifests/$TAG" | jq -r '.manifests[].digest // empty'); do
-  code=$(curl -sk -u "$USER:$PASS" -o /dev/null -w '%{http_code}' \
-         -I "https://$REG/v2/$IMAGE/manifests/$d")
-  echo "$d → $code"
-done
-```
-
-The probe's last log run is also a fast way to see what's affected:
-
-```sh
-kubectl -n monitoring logs \
-  $(kubectl -n monitoring get pods -l job-name -o name \
-     | grep forgejo-integrity-probe | head -1)
-```
-
-## Phase 2 — Rebuild and re-push
-
-Forgejo lets you delete a specific package version through the API.
-Doing this **before** the rebuild ensures the new push doesn't
-collide with the half-broken existing entry.
-
-```sh
-# Delete the broken version (replace TAG with the actual tag).
-curl -X DELETE -H "Authorization: token $(vault kv get -field=forgejo_cleanup_token secret/viktor)" \
-  "https://$REG/api/v1/packages/viktor/container/$(basename $IMAGE)/$TAG"
-```
-
-Rebuild via Woodpecker (manual run if the pipeline isn't triggered
-by a code change):
-
-1. Open `https://ci.viktorbarzin.me/repos/<repo>/manual` for the
-   project.
-2. Click **Run pipeline** with `branch=master`.
-3. Wait for the build-and-push step to complete.
-4. Confirm the new version is visible in Forgejo Web UI under
-   `viktor/<image>` → Packages → Container.
-
-## Phase 3 — Restart consumers
-
-Pods that already cached the broken digest may continue using it.
-Force a fresh pull:
-
-```sh
-kubectl rollout restart deploy/<service> -n <ns>
-```
-
-If the pod still fails, the new manifest digest may not have
-propagated through containerd's cache. Drain + restart containerd on
-the affected node:
-
-```sh
-kubectl drain <node> --ignore-daemonsets --delete-emptydir-data
-ssh wizard@<node> sudo systemctl restart containerd
-kubectl uncordon <node>
-```
-
-## Phase 4 — Verify integrity recovery
-
-The next probe run (every 15 min) will report:
-
-```
-registry_manifest_integrity_failures{instance="forgejo.viktorbarzin.me"} 0
-```
-
-The `RegistryManifestIntegrityFailure` alert resolves automatically
-30 minutes after the metric goes back to 0.
-
-## Why this happens
-
-Forgejo's OCI registry stores blobs in its own DB+filesystem. Unlike
-`registry:2` + `distribution`, it doesn't have the
-[`distribution#3324`](https://github.com/distribution/distribution/issues/3324)
-GC-vs-tag-delete race. But it can still reach a broken state if:
-
-- The retention CronJob deletes a version while a pull is in flight
-  on the same digest.
-- The PVC fills up mid-push (`docs/runbooks/restore-pvc-from-backup.md`).
-- A Forgejo upgrade migrates the package schema and a row is dropped.
-
-In all cases the recovery procedure is identical: delete the broken
-version through the API, rebuild from source, force consumers to
-re-pull.
diff --git a/docs/runbooks/forgejo-registry-setup.md b/docs/runbooks/forgejo-registry-setup.md
deleted file mode 100644
index 16637c6d..00000000
--- a/docs/runbooks/forgejo-registry-setup.md
+++ /dev/null
@@ -1,163 +0,0 @@
-# Runbook: Forgejo OCI registry — initial setup
-
-Last updated: 2026-05-07
-
-This runbook covers the **one-time** bootstrap of Forgejo's container
-registry, executed during Phase 0 of the registry consolidation plan
-(`docs/plans/2026-05-07-forgejo-registry-consolidation-plan.md`).
-
-After this runbook is complete, the Forgejo OCI registry at
-`forgejo.viktorbarzin.me` accepts pushes from CI and pulls from the
-cluster, with retention and integrity monitoring in place.
-
-## Order of operations
-
-The Terraform stacks reference Vault keys that don't exist on a fresh
-cluster. Create the keys **before** running `scripts/tg apply`.
-
-1. Apply the resource bumps (memory, PVC, ingress body size,
-   packages env vars) — these don't depend on the new Vault keys.
-2. Create the service-account users + PATs in Forgejo.
-3. Push the PATs to Vault.
-4. Apply the rest of Phase 0 (registry-credentials extension,
-   monitoring probe, retention CronJob).
-
-### Step 1 — apply Forgejo deployment bumps
-
-```bash
-cd infra/stacks/forgejo
-scripts/tg apply
-```
-
-Wait for the new pod to come up at the bumped 1Gi memory request and
-the resized 15Gi PVC. Verify packages are enabled:
-
-```bash
-kubectl exec -n forgejo deploy/forgejo -- forgejo manager flush-queues
-kubectl exec -n forgejo deploy/forgejo -- env | grep PACKAGES
-```
-
-### Step 2 — create service-account users
-
-`forgejo admin user create` is idempotent only with
-`--must-change-password=false`. Re-running it on an existing user
-errors out — that's fine; skip on rerun.
-
-```bash
-# cluster-puller — read:package PAT for in-cluster pulls.
-kubectl exec -n forgejo deploy/forgejo -- \
-  forgejo admin user create \
-  --username cluster-puller \
-  --email cluster-puller@viktorbarzin.me \
-  --password "$(openssl rand -base64 24)" \
-  --must-change-password=false
-
-# ci-pusher — write:package PAT for CI dual-push, also reused as the
-# cleanup CronJob credential (write:package includes delete).
-kubectl exec -n forgejo deploy/forgejo -- \
-  forgejo admin user create \
-  --username ci-pusher \
-  --email ci-pusher@viktorbarzin.me \
-  --password "$(openssl rand -base64 24)" \
-  --must-change-password=false
-```
-
-The user passwords are throwaway — we only ever auth via PAT. Forgejo
-admin can reset them at any time from the Web UI.
-
-### Step 3 — generate the PATs
-
-PATs **must** be generated through the Web UI logged in as the
-respective user (the CLI doesn't expose token creation). To log in
-without OAuth (registration is disabled for everyone except `viktor`,
-the admin), use the per-user temporary password from step 2.
-
-For each of `cluster-puller` and `ci-pusher`:
-
-1. Sign out of `viktor`.
-2. Go to `https://forgejo.viktorbarzin.me/user/login` and sign in
-   with the throwaway password.
-3. Settings → Applications → Generate new token.
-4. Name: `cluster-pull` / `ci-push`. **Expiration: never.**
-5. Scopes:
-   - `cluster-puller`: `read:package`
-   - `ci-pusher`: `write:package` (covers read+write+delete)
-6. Save the token shown on the next page — it is **not** displayed again.
-
-For the cleanup CronJob, generate a third PAT on `ci-pusher`:
-
-7. Repeat steps 4-6 with name `cleanup`, scope `write:package`.
-
-### Step 4 — push PATs to Vault
-
-```bash
-vault login -method=oidc
-
-# Read-only, used by the cluster-wide registry-credentials Secret and
-# by the Forgejo integrity probe.
-vault kv patch secret/viktor \
-  forgejo_pull_token=<paste cluster-puller PAT>
-
-# Write+delete, used by the retention CronJob inside Forgejo's
-# namespace.
-vault kv patch secret/viktor \
-  forgejo_cleanup_token=<paste ci-pusher cleanup PAT>
-
-# Write, propagated by vault-woodpecker-sync to all Woodpecker repos.
-vault kv patch secret/ci/global \
-  forgejo_user=ci-pusher \
-  forgejo_push_token=<paste ci-pusher push PAT>
-```
-
-### Step 5 — apply the rest of Phase 0
-
-```bash
-# Registry credential Secret (now reads forgejo_pull_token).
-cd infra/stacks/kyverno && scripts/tg apply
-
-# Monitoring probe + retention CronJob.
-cd infra/stacks/monitoring && scripts/tg apply
-cd infra/stacks/forgejo && scripts/tg apply
-
-# Containerd hosts.toml on each existing k8s node — VM cloud-init
-# only fires on first boot.
-infra/scripts/setup-forgejo-containerd-mirror.sh
-```
-
-## Verification
-
-```bash
-# Login from a workstation with docker.
-echo "<ci-pusher PAT>" | docker login forgejo.viktorbarzin.me -u ci-pusher --password-stdin
-
-# Push a smoketest image.
-docker pull alpine:3.20
-docker tag alpine:3.20 forgejo.viktorbarzin.me/viktor/smoketest:1
-docker push forgejo.viktorbarzin.me/viktor/smoketest:1
-
-# Pull from a k8s node.
-ssh wizard@<node> sudo crictl pull forgejo.viktorbarzin.me/viktor/smoketest:1
-
-# Confirm the cluster-wide Secret was synced into a fresh namespace.
-kubectl create namespace forgejo-smoketest
-kubectl get secret -n forgejo-smoketest registry-credentials \
-  -o jsonpath='{.data.\.dockerconfigjson}' | base64 -d | jq '.auths | keys'
-# Expect: ["10.0.20.10:5050", "forgejo.viktorbarzin.me",
-#         "registry.viktorbarzin.me", "registry.viktorbarzin.me:5050"]
-kubectl delete namespace forgejo-smoketest
-
-# Delete the smoketest package via API.
-curl -X DELETE -H "Authorization: token <ci-pusher cleanup PAT>" \
-  https://forgejo.viktorbarzin.me/api/v1/packages/viktor/container/smoketest/1
-```
-
-## When to revisit
-
-- **PAT rotation**: PATs created here have no expiry by design. If a
-  PAT leaks, regenerate via the Web UI and `vault kv patch` the new
-  value into the same key — the next `terragrunt apply` will sync it
-  to all consumers within minutes (Kyverno ClusterPolicy clones the
-  Secret, vault-woodpecker-sync runs every 6h).
-- **New service account**: if a future workload needs different
-  scopes, add a parallel user/PAT here rather than expanding existing
-  PAT scope. Principle of least privilege.
diff --git a/docs/runbooks/mailserver-pfsense-haproxy.md b/docs/runbooks/mailserver-pfsense-haproxy.md
deleted file mode 100644
index 329be214..00000000
--- a/docs/runbooks/mailserver-pfsense-haproxy.md
+++ /dev/null
@@ -1,222 +0,0 @@
-# pfSense HAProxy for Mailserver — Runbook
-
-Last updated: 2026-04-19 (Phase 6 complete)
-
-## What & why
-
-External mail traffic (SMTP/IMAP) requires **real client IP visibility** for
-CrowdSec + Postfix rate-limiting. MetalLB cannot inject PROXY-protocol
-headers (see [`mailserver-proxy-protocol.md`](./mailserver-proxy-protocol.md)),
-so pfSense runs a small HAProxy that:
-
-1. Listens on the pfSense VLAN20 IP (`10.0.20.1`) on all 4 mail ports,
-2. Forwards each connection to a k8s node's NodePort with `send-proxy-v2`,
-3. Injects PROXY v2 framing so Postfix/Dovecot see the original client IP,
-4. TCP-checks every k8s worker via dedicated **non-PROXY healthcheck NodePorts**
-   (30145/30146/30147 → pod stock 25/465/587 listeners, no PROXY required).
-   This split path avoids the `smtpd_peer_hostaddr_to_sockaddr` fatal that
-   used to fire on every PROXY-aware health probe and throttled real client
-   connections.
-
-Corresponding k8s-side setup (`stacks/mailserver/modules/mailserver/`):
-
-- ConfigMap `mailserver-user-patches` → `user-patches.sh` appends 3 alt
-  `master.cf` services to Postfix:
-  - `:2525` postscreen (alt :25) with `postscreen_upstream_proxy_protocol=haproxy`
-  - `:4465` smtpd (alt :465 SMTPS) with `smtpd_upstream_proxy_protocol=haproxy`
-  - `:5587` smtpd (alt :587 submission) with `smtpd_upstream_proxy_protocol=haproxy`
-- ConfigMap `mailserver.config` adds Dovecot `inet_listener imaps_proxy` on
-  port 10993 with `haproxy = yes` and `haproxy_trusted_networks = 10.0.20.0/24`.
-- Service `mailserver-proxy` (NodePort, ETP:Cluster) — 4 PROXY data ports +
-  3 non-PROXY healthcheck ports:
-  - Data (PROXY v2):
-    - `port 25 → targetPort 2525 → nodePort 30125`
-    - `port 465 → targetPort 4465 → nodePort 30126`
-    - `port 587 → targetPort 5587 → nodePort 30127`
-    - `port 993 → targetPort 10993 → nodePort 30128`
-  - Healthcheck (no PROXY, stock SMTP/SMTPS/Submission listeners):
-    - `port 2500 → targetPort 25 → nodePort 30145`  (smtp-check)
-    - `port 4650 → targetPort 465 → nodePort 30146` (smtps-check)
-    - `port 5870 → targetPort 587 → nodePort 30147` (sub-check)
-- Service `mailserver` (ClusterIP) — unchanged stock ports 25/465/587/993
-  for intra-cluster clients (Roundcube pod, `email-roundtrip-monitor`
-  CronJob, book-search). These listeners are PROXY-free.
-
-bd: `code-yiu`.
-
-## Steady-state architecture
-
-```
-External mail (WAN) path — PROXY v2
-┌─────────────────────────────────────────────────────────────────────┐
-│  Client (real IP)                                                   │
-│      │  SMTP/SMTPS/Sub/IMAPS                                        │
-│      ▼                                                              │
-│  pfSense WAN:{25,465,587,993}                                       │
-│      │  NAT rdr → 10.0.20.1:{same}                                  │
-│      ▼                                                              │
-│  pfSense HAProxy  (mode tcp, 4 frontends, 4 backend pools)          │
-│      │  data: send-proxy-v2 → :{30125..30128}  (PROXY-aware pod)   │
-│      │  health: TCP-check    → :{30145..30147}  (no-PROXY pod)     │
-│      │  inter 5000                                                  │
-│      ▼                                                              │
-│  k8s-node<1-4>:{30125..30128}   ← any node (ETP:Cluster)            │
-│      │  kube-proxy SNAT (source IP lost on the wire)                │
-│      ▼                                                              │
-│  mailserver pod :{2525,4465,5587,10993}                             │
-│      │  postscreen / smtpd / Dovecot parse PROXY v2 header          │
-│      │  → real client IP recovered despite kube-proxy SNAT          │
-│      ▼                                                              │
-│  CrowdSec + Postfix / Dovecot see the true source IP ✓              │
-└─────────────────────────────────────────────────────────────────────┘
-
-Intra-cluster path — no PROXY
-┌─────────────────────────────────────────────────────────────────────┐
-│  Roundcube pod / email-roundtrip-monitor CronJob                    │
-│      │  SMTP/IMAP                                                   │
-│      ▼                                                              │
-│  mailserver.mailserver.svc.cluster.local:{25,465,587,993}           │
-│      │  ClusterIP — bypasses LoadBalancer/NodePort layer entirely   │
-│      ▼                                                              │
-│  mailserver pod stock :{25,465,587,993}  (PROXY-free)               │
-└─────────────────────────────────────────────────────────────────────┘
-```
-
-## Validation
-
-```sh
-# All HAProxy frontends listening
-ssh admin@10.0.20.1 'sockstat -l | grep haproxy'
-# Expect: *:25, *:465, *:587, *:993, *:2525 (test port)
-
-# All backend pools healthy
-ssh admin@10.0.20.1 "echo 'show servers state' | socat /tmp/haproxy.socket stdio" \
-  | awk 'NR>1 {print $3, $4, $6}'
-# srv_op_state 2 = UP, 0 = DOWN
-
-# Container listens on all 8 ports
-kubectl exec -n mailserver -c docker-mailserver deployment/mailserver -- \
-  ss -ltn | grep -E ':(25|2525|465|4465|587|5587|993|10993)\b'
-
-# pf rdr points at pfSense (10.0.20.1), not <mailserver> alias
-ssh admin@10.0.20.1 'pfctl -sn' | grep -E 'port = (25|submission|imaps|smtps)'
-
-# E2E probe — Brevo → external MX :25 → IMAP fetch
-kubectl create job --from=cronjob/email-roundtrip-monitor probe-test -n mailserver
-kubectl wait --for=condition=complete --timeout=90s job/probe-test -n mailserver
-kubectl logs job/probe-test -n mailserver | grep SUCCESS
-kubectl delete job probe-test -n mailserver
-
-# Real client IP in maillog post-delivery
-kubectl logs -c docker-mailserver deployment/mailserver -n mailserver \
-  | grep 'smtpd-proxy25.*CONNECT from' | tail -5
-# Expect external source IPs (e.g., Brevo 77.32.148.x), NOT 10.0.20.x
-```
-
-## Bootstrap / restore from scratch
-
-pfSense HAProxy config lives in `/cf/conf/config.xml` under
-`<installedpackages><haproxy>`. That file is scp'd nightly to
-`/mnt/backup/pfsense/config-YYYYMMDD.xml` by `scripts/daily-backup.sh`, then
-synced to Synology. To rebuild from source of truth (git):
-
-```sh
-scp infra/scripts/pfsense-haproxy-bootstrap.php admin@10.0.20.1:/tmp/
-ssh admin@10.0.20.1 'php /tmp/pfsense-haproxy-bootstrap.php'
-```
-
-The script is idempotent — re-runs reset the mailserver frontends + backends
-to the declared state.
-
-Expected output:
-```
-haproxy_check_and_run rc=OK
-```
-
-## Operations
-
-### Change backend k8s node IPs / NodePorts
-
-Edit `infra/scripts/pfsense-haproxy-bootstrap.php` — `$NODES` array + the
-`build_pool()` port arguments. Re-run the bootstrap command above. Don't
-hand-edit `/var/etc/haproxy/haproxy.cfg` — it is regenerated from XML on
-every apply.
-
-### Check health of backends
-
-```sh
-ssh admin@10.0.20.1 "echo 'show servers state' | socat /tmp/haproxy.socket stdio"
-```
-`srv_op_state=2` means UP, `0` means DOWN.
-
-### View live HAProxy stats (WebUI)
-
-`https://pfsense.viktorbarzin.me` → Services → HAProxy → Stats.
-
-### Reload after config.xml edit
-
-```sh
-ssh admin@10.0.20.1 'pfSsh.php playback svc restart haproxy'
-```
-
-### Rollback (flip NAT back to MetalLB, post-Phase-6 only partial)
-
-There is no Phase-6 rollback one-liner. Phase 6 removed the MetalLB
-LoadBalancer 10.0.20.202 entirely, so un-flipping NAT now would send
-traffic to a dead alias. To regress:
-
-1. Re-add `metallb.io/loadBalancerIPs = "10.0.20.202"` + `type = "LoadBalancer"`
-   + `external_traffic_policy = "Local"` to `kubernetes_service.mailserver`,
-   apply.
-2. Re-add the `mailserver` host alias in pfSense pointing at 10.0.20.202
-   (Firewall → Aliases → Hosts).
-3. Run `infra/scripts/pfsense-nat-mailserver-haproxy-unflip.php` on pfSense.
-
-For rollback of just the NAT (Phase 4) without touching the Service, only
-the third step is needed — but only meaningful BEFORE Phase 6.
-
-### Restore from backup
-
-pfSense config backup is a plain XML file:
-```
-/mnt/backup/pfsense/config-YYYYMMDD.xml        # sda host copy (1.1TB RAID1)
-/volume1/Backup/Viki/pve-backup/pfsense/...    # Synology offsite
-```
-
-Full restore: pfSense WebUI → Diagnostics → Backup & Restore → Upload that
-`config.xml`. The `<installedpackages><haproxy>` section is included.
-
-## Phase history (bd code-yiu)
-
-| Phase | Status | Description |
-|---|---|---|
-| 1a | ✅ commit `ef75c02f` | k8s alt :2525 listener + NodePort Service |
-| 2  | ✅ 2026-04-19 | pfSense HAProxy pkg installed (`pfSense-pkg-haproxy-devel-0.63_2`, HAProxy 2.9-dev6) |
-| 3  | ✅ commit `ba697b02` | HAProxy config persisted in pfSense XML (bootstrap script + this runbook) |
-| 4+5| ✅ commit `9806d515` | 4-port alt listeners + HAProxy frontends for 25/465/587/993 + NAT flip |
-| 6  | ✅ this commit | Mailserver Service downgraded LoadBalancer → ClusterIP; `10.0.20.202` released back to MetalLB pool; orphan `mailserver` pfSense alias removed; monitors retargeted |
-
-## Known warts
-
-- ~~HAProxy TCP health-check with `send-proxy-v2` generates `getpeername:
-  Transport endpoint not connected` warnings on postscreen every check cycle.~~
-  **Resolved 2026-05-05**: dedicated non-PROXY healthcheck NodePorts
-  (30145/30146/30147 → stock pod 25/465/587) added; HAProxy now checks
-  those, eliminating both the `getpeername` postscreen warnings and the
-  `smtpd_peer_hostaddr_to_sockaddr: ... Servname not supported` fatals
-  that were throttling smtpd respawns and causing ~50% client timeouts on
-  the public 587 path. `inter` dropped 120000 → 5000 (fast failover, no
-  log-spam concern). `option smtpchk` was tried but flapped against
-  postscreen (multi-line greet + DNSBL silence + anti-pre-greet detection
-  trip HAProxy's parser → L7RSP). Plain TCP check on the no-PROXY ports
-  is sufficient.
-- Frontend binds on all pfSense interfaces (`bind :25` instead of
-  `10.0.20.1:25`). `<extaddr>` is set in XML but pfSense templates it
-  port-only. Low concern in practice because WAN firewall rules plus the
-  NAT rdr gate external access; internal VLAN clients SHOULD be able to
-  reach HAProxy on any pfSense-local IP.
-- k8s-node5 doesn't exist — cluster has master + 4 workers. Backend pool
-  capped at 4 servers.
-- Postscreen still logs `improper command pipelining` for legitimate
-  clients that send `EHLO\r\nQUIT\r\n` as a single TCP write. This is
-  unchanged pre/post-migration — postscreen's anti-bot heuristic.
diff --git a/docs/runbooks/mailserver-proxy-protocol.md b/docs/runbooks/mailserver-proxy-protocol.md
deleted file mode 100644
index f00e2000..00000000
--- a/docs/runbooks/mailserver-proxy-protocol.md
+++ /dev/null
@@ -1,181 +0,0 @@
-# Mailserver PROXY protocol — research & decision
-
-Last updated: 2026-04-18 (original research). **Outcome implemented 2026-04-19 — see [UPDATE](#update-2026-04-19) below.**
-
-> ## UPDATE (2026-04-19)
->
-> This doc describes the research that led to the Phase-6 rollout. **Option C
-> (pfSense HAProxy + PROXY v2)** was chosen and is now live. Operational
-> state, cutover history, bootstrap, and rollback procedures live in
-> [`mailserver-pfsense-haproxy.md`](mailserver-pfsense-haproxy.md).
->
-> This file is retained as a decision record — it explains *why* Option A
-> (pod-pinning via nodeSelector) was rejected mid-session in favour of
-> Option C, and documents the MetalLB upstream limitation (PROXY injection
-> is explicitly won't-implement). Future debates of "why don't we just pin
-> the pod?" should land here first.
-
-## TL;DR
-
-**MetalLB does not and will not inject PROXY protocol headers.** The original plan
-(`/home/wizard/.claude/plans/let-s-work-on-linking-temporal-valiant.md`, task
-`code-rtb`) assumed MetalLB could be configured to emit PROXY v1/v2 on behalf of
-the `mailserver` LoadBalancer Service. That assumption is wrong at the product
-level. MetalLB is a control-plane-only announcer (ARP/NDP for L2 mode, BGP for
-L3 mode); it never touches the L4 payload.
-
-As a result, there is no single Terraform change that can flip
-`externalTrafficPolicy: Local` → `Cluster` on the `mailserver` Service while
-preserving the real client IP for Postfix/postscreen and Dovecot. Three
-alternative paths exist (see below); none is trivial.
-
-## Environment (verified 2026-04-18)
-
-- **MetalLB version**: `quay.io/metallb/controller:v0.15.3` /
-  `quay.io/metallb/speaker:v0.15.3` (5 speakers).
-- **Advertisement type**: L2Advertisement `default` bound to IPAddressPool
-  `default` (10.0.20.200–10.0.20.220). No BGPAdvertisements.
-- **Service**: `mailserver/mailserver` — type `LoadBalancer`, `loadBalancerIPs:
-  10.0.20.202`, `externalTrafficPolicy: Local`,
-  `healthCheckNodePort: 30234`, 5 ports (25, 465, 587, 993, 9166/dovecot-metrics).
-- **Pod**: single replica today, RWO PVCs prevent horizontal scale without
-  further work (`mailserver-data-encrypted`, `mailserver-letsencrypt-encrypted`).
-
-## Why the original plan fails
-
-### MetalLB never touches packets
-
-> *"MetalLB is controlplane only, making it part of the dataplane means we
-> would be responsible for the performance of the system, so more bugs to
-> fight, I personally don't see that happening."*
-> — MetalLB maintainer `champtar`, 2021-01-06
-> (issue [#797 — Feature Request: Supporting Proxy Protocol v2](https://github.com/metallb/metallb/issues/797))
-
-Issue #797 is closed as "won't implement". Repeat asks in 2022–2023 got the
-same answer. The v0.15.3 API surface confirms this: no
-`proxyProtocol`/`haproxy`/`protocol: proxy` field exists on `IPAddressPool`,
-`L2Advertisement`, `BGPAdvertisement`, or as a Service annotation.
-
-Only managed-cloud LBs (AWS NLB, Azure LB, OCI, DO, OVH, Scaleway, etc.) offer
-PROXY protocol as a tick-box. MetalLB's equivalents are:
-
-| MetalLB feature | Does it preserve client IP? | Comment |
-|---|---|---|
-| `externalTrafficPolicy: Local` (current) | Yes, via iptables DNAT on the speaker node | Forces pod↔speaker colocation on L2 mode. This is the pain we wanted to avoid. |
-| `externalTrafficPolicy: Cluster` | No — kube-proxy SNATs to the node IP | The problem we would re-introduce if we flipped without PROXY injection. |
-| PROXY protocol injection | N/A — not implemented | Dead end. |
-
-### The `Local` trap is real, but narrower than it seems
-
-Today's `Local` policy means the ARP announcer node must also host the mailserver
-pod. MetalLB always picks a single speaker to advertise the VIP (leader
-election per IP), so in practice exactly one node matters at any moment. A pod
-rescheduled to a different node silently drops inbound SMTP/IMAP until a GARP
-flip or node cordon.
-
-The only pods on our cluster that see this same class of risk are Traefik
-(3 replicas + PDB `minAvailable=2`, so 2 of 3 nodes always have a pod) and
-mailserver (1 replica). Traefik survives because the pods outnumber the nodes
-that could be the speaker at once; the mailserver cannot.
-
-## Alternative paths (ranked by effort)
-
-### Option A — Pin the mailserver pod to a specific node (SIMPLEST)
-
-Add `nodeSelector` on the mailserver Deployment pointing at a label that's also
-stamped on the MetalLB speaker we want to advertise the VIP from, and use
-MetalLB's [node selector](https://metallb.io/configuration/_advanced_l2_configuration/#specify-network-interfaces-that-lb-ip-can-be-announced-from)
-on `L2Advertisement.spec.nodeSelectors` to pin the announcer to the same node.
-
-Trade-offs:
-
-- Zero changes to Postfix/Dovecot configs.
-- Keeps `externalTrafficPolicy: Local` — real client IP keeps arriving.
-- Loses HA (the whole point of the MetalLB layer) but reflects reality — one
-  replica, one PVC, no HA today anyway.
-- Drain of that node requires a planned cutover, but that's no worse than
-  today's silent failure mode.
-
-Implementation (~10 lines of Terraform):
-
-```hcl
-# In stacks/mailserver/modules/mailserver/main.tf, on the Deployment:
-node_selector = { "viktorbarzin.me/mailserver-anchor" = "true" }
-
-# In stacks/platform (or wherever the MetalLB CRs live):
-resource "kubernetes_manifest" "mailserver_l2ad" {
-  manifest = {
-    apiVersion = "metallb.io/v1beta1"
-    kind       = "L2Advertisement"
-    metadata   = { name = "mailserver", namespace = "metallb-system" }
-    spec = {
-      ipAddressPools = ["default"]
-      nodeSelectors  = [{ matchLabels = { "viktorbarzin.me/mailserver-anchor" = "true" } }]
-    }
-  }
-}
-```
-
-Plus a node label via `kubectl label node k8s-node3 viktorbarzin.me/mailserver-anchor=true`.
-
-**Recommendation: this is the shortest path to eliminating the silent-drop
-failure mode** without taking on a new proxy tier.
-
-### Option B — Put a HAProxy sidecar in front of Postfix/Dovecot
-
-Stand up an in-cluster HAProxy with PROXY v2 enabled on the frontend and
-`send-proxy-v2` on the backend to `mailserver:25/465/587/993`. Expose HAProxy
-via a new MetalLB Service with `externalTrafficPolicy: Cluster` + kube-proxy
-DSR workaround (still loses client IP at that layer), or run HAProxy on the
-host-network of the same node (back to Option A's colocation).
-
-Trade-offs:
-
-- Introduces one more network hop and TLS-termination decision for every
-  SMTP connect.
-- HAProxy needs its own cert rotation (or `tls-passthrough`) — adds moving
-  parts to an already crowded mailserver module.
-- Doesn't actually solve the colocation problem on its own — HAProxy itself
-  needs to receive the client IP, so we are back to externalTrafficPolicy
-  constraints for HAProxy.
-
-**Recommendation: avoid unless we also get HA for mailserver itself, which
-needs RWX storage + DB split-brain work — out of scope.**
-
-### Option C — Replace MetalLB with a different LB for this Service
-
-Candidates: [kube-vip](https://kube-vip.io/) (supports eBPF-based DSR but not
-PROXY injection either), [Cilium LB](https://docs.cilium.io/en/stable/network/lb-ipam/)
-(preserves client IP via DSR in hybrid mode), or a dedicated HAProxy running on
-pfSense and NAT-forwarding 25/465/587/993 with PROXY headers to a
-ClusterIP-exposed mailserver. Cilium requires a CNI migration (we run Calico
-today); pfSense HAProxy is genuinely feasible but belongs in a different bd
-task.
-
-**Recommendation: track as P3 follow-up under a new bd task if Option A proves
-insufficient.**
-
-## Decision
-
-Do nothing in this session beyond this runbook + the bd note. The `code-rtb`
-task as written is not executable — MetalLB cannot inject PROXY headers, and
-the Postfix/Dovecot config changes the plan proposed would not receive the
-header they expect, they would hang waiting for it and then timeout (5s per
-connection).
-
-Follow-up work filed as bd child tasks (if user wants to pursue):
-
-- **Option A — pin mailserver + L2Advertisement nodeSelectors** (new bd task)
-- **Option C — HAProxy on pfSense with PROXY v2 to a ClusterIP** (new bd task)
-
-## References
-
-- [MetalLB issue #797 — Feature Request: Supporting Proxy Protocol v2](https://github.com/metallb/metallb/issues/797) (closed, won't implement)
-- [MetalLB PR #796 — Source IP Preservation discussion](https://github.com/metallb/metallb/issues/796)
-- Postfix [postscreen_upstream_proxy_protocol](https://www.postfix.org/postconf.5.html#postscreen_upstream_proxy_protocol) — expects the PROXY header *on every incoming connection*; if absent, postscreen drops after `postscreen_upstream_proxy_timeout`.
-- Dovecot [haproxy_trusted_networks](https://doc.dovecot.org/settings/core/#core_setting-haproxy_trusted_networks) — treats the header as mandatory for listed source networks.
-- Cluster state verified against: `kubectl -n metallb-system get pods`,
-  `kubectl get ipaddresspools.metallb.io -A`,
-  `kubectl get l2advertisements.metallb.io -A`,
-  `kubectl get bgpadvertisements.metallb.io -A`,
-  `kubectl -n mailserver get svc mailserver -o yaml`.
diff --git a/docs/runbooks/nfs-prerequisites.md b/docs/runbooks/nfs-prerequisites.md
deleted file mode 100644
index f746315c..00000000
--- a/docs/runbooks/nfs-prerequisites.md
+++ /dev/null
@@ -1,66 +0,0 @@
-# NFS Prerequisites for `modules/kubernetes/nfs_volume`
-
-The `nfs_volume` Terraform module creates a `PersistentVolume` pointing at a
-path on the Proxmox NFS server (`192.168.1.127`). It does **not** create the
-underlying directory on the server.
-
-If the path does not exist, the first pod that tries to mount the resulting
-PVC gets stuck in `ContainerCreating` with the kubelet event:
-
-```
-MountVolume.SetUp failed for volume "<name>" : mount failed: exit status 32
-mount.nfs: mounting 192.168.1.127:/srv/nfs/<path> failed, reason given by
-server: No such file or directory
-```
-
-## Bootstrap before first apply
-
-Before adding a new `nfs_volume` consumer (backup CronJob, data PV, etc.),
-create the export root on the PVE host:
-
-```sh
-# Replace <app> with the backup stack name, e.g. mailserver-backup,
-# roundcube-backup, immich-backup, etc.
-ssh root@192.168.1.127 'mkdir -p /srv/nfs/<app> && chmod 755 /srv/nfs/<app>'
-
-# Confirm exports are live (no change to /etc/exports needed — `/srv/nfs`
-# is already exported via the root entry in pve-nfs-exports).
-ssh root@192.168.1.127 exportfs -v | grep '/srv/nfs\b'
-```
-
-`/srv/nfs` is exported with the root entry. Subdirectories inherit the
-export automatically; they just have to exist on disk.
-
-## Known consumers
-
-| Consumer                       | NFS path                        | Owning stack            |
-|--------------------------------|---------------------------------|--------------------------|
-| `mailserver-backup`            | `/srv/nfs/mailserver-backup`    | `stacks/mailserver/`    |
-| `roundcube-backup`             | `/srv/nfs/roundcube-backup`     | `stacks/mailserver/`    |
-| `mysql-backup`                 | `/srv/nfs/mysql-backup`         | `stacks/dbaas/`         |
-| `postgresql-backup`            | `/srv/nfs/postgresql-backup`    | `stacks/dbaas/`         |
-| `vaultwarden-backup`           | `/srv/nfs/vaultwarden-backup`   | `stacks/vaultwarden/`   |
-
-Use `grep -rn 'nfs_volume' infra/stacks/` to find all active consumers.
-
-## Why not auto-create?
-
-Two options were considered for automating this:
-
-1. `null_resource` + `local-exec` SSH `mkdir` in the `nfs_volume` module —
-   works but adds an SSH dependency to every Terraform run, makes the
-   module non-hermetic, and fails if the operator does not have SSH to
-   the PVE host.
-2. `nfs-subdir-external-provisioner` — handles subdirs automatically but
-   changes the PV/PVC shape and would require migrating all existing
-   consumers.
-
-Neither is worth the churn for a one-time operation per new backup stack.
-Document + checklist is the current call; re-evaluate if we start adding
-one NFS consumer per week.
-
-## Related tasks
-
-- `code-yo4` — this runbook
-- `code-z26` — mailserver backup CronJob (first-time setup hit this)
-- `code-1f6` — Roundcube backup CronJob (also hit this)
diff --git a/docs/runbooks/pfsense-unbound.md b/docs/runbooks/pfsense-unbound.md
deleted file mode 100644
index 19e0e5dc..00000000
--- a/docs/runbooks/pfsense-unbound.md
+++ /dev/null
@@ -1,281 +0,0 @@
-# pfSense Unbound DNS Resolver
-
-Last updated: 2026-04-19
-
-## Overview
-
-pfSense runs **Unbound** (DNS Resolver) as its sole DNS service, replacing
-dnsmasq (DNS Forwarder) as of 2026-04-19 (DNS hardening Workstream D,
-bd `code-k0d`).
-
-Unbound AXFR-slaves the `viktorbarzin.lan` zone from the Technitium primary
-via the `10.0.20.201` LoadBalancer, so LAN-side `.lan` resolution survives
-a full Kubernetes outage. Public queries go to Cloudflare via DNS-over-TLS
-(`1.1.1.1` + `1.0.0.1` on port 853, SNI `cloudflare-dns.com`).
-
-## Listeners
-
-Unbound binds on:
-
-| Interface | IP | Purpose |
-|-----------|-----|---------|
-| WAN       | `192.168.1.2:53` | LAN (192.168.1.0/24) clients querying via pfSense WAN |
-| LAN       | `10.0.10.1:53`   | Management VLAN clients |
-| OPT1      | `10.0.20.1:53`   | K8s VLAN clients (CoreDNS upstream) |
-| lo0       | `127.0.0.1:53`   | pfSense itself |
-
-The prior WAN NAT `rdr` rule (`192.168.1.2:53 → 10.0.20.201`) was removed in
-the same change — Unbound now answers directly on WAN.
-
-## Config Summary
-
-Relevant `<unbound>` keys in `/cf/conf/config.xml`:
-
-| Key | Value | Meaning |
-|-----|-------|---------|
-| `enable` | flag | Enable Unbound |
-| `dnssec` | flag | DNSSEC validation on |
-| `forwarding` | flag | Forwarding mode (send recursive queries to upstream) |
-| `forward_tls_upstream` | flag | Use DoT for upstream forwarders |
-| `prefetch` | flag | Prefetch records near expiry |
-| `prefetchkey` | flag | Prefetch DNSKEY records |
-| `dnsrecordcache` | flag | `serve-expired: yes` |
-| `active_interface` | `lan,opt1,wan,lo0` | Listen interfaces |
-| `msgcachesize` | `256` (MB) | Message cache (rrset-cache auto-doubles to 512MB) |
-| `cache_max_ttl` | `604800` | 7 days |
-| `cache_min_ttl` | `60` | 60 seconds |
-| `custom_options` | base64 | Contains `serve-expired-ttl: 259200` + `auth-zone:` block |
-
-Upstream DoT forwarders live in `<system>`:
-
-- `dnsserver[0] = 1.1.1.1`
-- `dnsserver[1] = 1.0.0.1`
-- `dns1host = cloudflare-dns.com`
-- `dns2host = cloudflare-dns.com`
-
-## Auth-Zone for viktorbarzin.lan
-
-The custom_options block declares:
-
-```
-server:
-  serve-expired-ttl: 259200
-
-auth-zone:
-  name: "viktorbarzin.lan"
-  master: 10.0.20.201
-  fallback-enabled: yes
-  for-downstream: yes
-  for-upstream: yes
-  zonefile: "viktorbarzin.lan.zone"
-  allow-notify: 10.0.20.201
-```
-
-- `master: 10.0.20.201` — AXFR source (Technitium LoadBalancer)
-- `fallback-enabled: yes` — if the zone can't refresh from master, fall back to normal recursion for this name (prevents hard-fail if AXFR breaks)
-- `for-downstream: yes` — answer queries for this zone with AA flag
-- `for-upstream: yes` — Unbound's internal iterator also uses this zone
-- `zonefile` is relative to the chroot (`/var/unbound/viktorbarzin.lan.zone`)
-- `allow-notify: 10.0.20.201` — accept NOTIFY from Technitium
-
-## Technitium-side ACL
-
-Zone `viktorbarzin.lan` on Technitium has `zoneTransfer = UseSpecifiedNetworkACL`
-with ACL entries:
-
-- `10.0.20.1` (pfSense OPT1)
-- `10.0.10.1` (pfSense LAN)
-- `192.168.1.2` (pfSense WAN)
-
-Verify via the Technitium API:
-
-```
-curl -sk "http://127.0.0.1:5380/api/zones/options/get?token=$TOK&zone=viktorbarzin.lan" | jq .response.zoneTransfer
-```
-
-## Operational Checks
-
-```bash
-# Is Unbound listening?
-ssh admin@10.0.20.1 "sockstat -l -4 -p 53"
-
-# Auth-zone loaded?
-ssh admin@10.0.20.1 "unbound-control -c /var/unbound/unbound.conf list_auth_zones"
-# Expected: viktorbarzin.lan.      serial NNNNN
-
-# LAN record via auth-zone? (aa flag = authoritative / from auth-zone)
-dig @192.168.1.2 idrac.viktorbarzin.lan +norec
-
-# Public record via DoT? (ad flag = DNSSEC validated, via 1.1.1.1/1.0.0.1)
-dig @192.168.1.2 example.com +dnssec
-
-# Zonefile has all records?
-ssh admin@10.0.20.1 "wc -l /var/unbound/viktorbarzin.lan.zone"
-```
-
-## K8s Outage Drill
-
-Tests that `.lan` resolution survives a full Technitium outage:
-
-```bash
-# Scale Technitium primary to 0
-kubectl -n technitium scale deploy/technitium --replicas=0
-
-# Wait ~5 seconds, then test from a LAN client
-ssh devvm.viktorbarzin.lan "dig @192.168.1.2 idrac.viktorbarzin.lan +short"
-# Expected: 192.168.1.4 (served from Unbound's cached auth-zone)
-
-# Restore immediately
-kubectl -n technitium scale deploy/technitium --replicas=1
-```
-
-Completed successfully on 2026-04-19 initial deployment.
-
-Note: secondary/tertiary Technitium pods remain up and continue to serve
-queries via the `10.0.20.201` LoadBalancer even when the primary is down —
-so the strongest proof that Unbound's auth-zone serves locally is to also
-scale those down (optional, not part of the routine drill).
-
-## Backup & Rollback
-
-### Backups
-
-- **On-box**: `/cf/conf/config.xml.2026-04-19-pre-unbound` (created before this
-  workstream ran — keep for 30 days, then delete)
-- **Daily**: PVE `daily-backup` script copies `/cf/conf/config.xml` and a full
-  pfSense config tar to `/mnt/backup/pfsense/` on the Proxmox host at 05:00
-- **Offsite**: Synology `pve-backup/pfsense/` (synced daily by
-  `offsite-sync-backup`)
-
-### Rollback to dnsmasq
-
-If Unbound misbehaves, revert to dnsmasq + NAT rdr:
-
-```bash
-# On pfSense
-cp /cf/conf/config.xml.2026-04-19-pre-unbound /cf/conf/config.xml
-
-# Tell pfSense to re-read config and reload services
-php -r 'require_once("config.inc"); require_once("config.lib.inc"); disable_path_cache();'
-/etc/rc.restart_webgui            # reloads PHP config caches
-# Restart services
-php -r 'require_once("config.inc"); require_once("services.inc"); services_dnsmasq_configure(); services_unbound_configure(); filter_configure();'
-/etc/rc.filter_configure          # re-applies NAT rules (brings back rdr)
-```
-
-Verify:
-
-```bash
-sockstat -l -4 -p 53 | grep dnsmasq   # expect dnsmasq on 10.0.10.1 and 10.0.20.1
-pfctl -sn | grep '53'                 # expect rdr on wan UDP 53 → 10.0.20.201
-```
-
-### Rollback without wiping new changes
-
-If you only want to stop Unbound without restoring the whole config, edit
-config.xml and remove `<enable/>` from `<unbound>` + add it back to `<dnsmasq>`,
-then re-run `services_unbound_configure()` + `services_dnsmasq_configure()`.
-You also need to re-add the WAN NAT rdr in `<nat><rule>` (see the backup XML
-for the exact shape — tracker `1775670025`).
-
-## Known Gotchas
-
-1. **pfSense regenerates `/var/unbound/unbound.conf`** on every service reload
-   from `<unbound>` in `config.xml`. Edits to unbound.conf are NOT durable.
-2. **`unbound-control` default config path is wrong**. Always use
-   `unbound-control -c /var/unbound/unbound.conf <cmd>`.
-3. **`custom_options` is base64-encoded** in config.xml. Use `base64 -d` to
-   decode in a shell, or `base64_decode()` in PHP.
-4. **`interface-automatic: yes` is NOT used** when `active_interface` is
-   explicitly set to a list — pfSense emits explicit `interface: <ip>` lines.
-5. **`auth-zone`'s `zonefile` path is relative to the Unbound chroot**
-   (`/var/unbound`), NOT absolute. Using an absolute path silently fails.
-6. **DoT forwarders need `forward_tls_upstream`** flag AND `dns1host` /
-   `dns2host` set in `<system>` for SNI — without the hostname, pfSense emits
-   `forward-addr: 1.1.1.1@853` (no `#`) which Cloudflare rejects with
-   certificate hostname mismatch.
-
-## Kea DHCP-DDNS TSIG (WS E, 2026-04-19)
-
-Kea DHCP-DDNS on pfSense signs its RFC 2136 dynamic updates with an
-HMAC-SHA256 TSIG key (`kea-ddns`). Technitium's `viktorbarzin.lan` zone
-and reverse zones (`10.0.10.in-addr.arpa`, `20.0.10.in-addr.arpa`,
-`1.168.192.in-addr.arpa`) require both a pfSense-source IP (10.0.20.1 /
-10.0.10.1 / 192.168.1.2) AND a valid TSIG signature.
-
-### Config locations
-
-| Side | File | Notes |
-|------|------|-------|
-| pfSense | `/usr/local/etc/kea/kea-dhcp-ddns.conf` | Hand-managed. Pre-WS-E backup: `.2026-04-19-pre-tsig`. Daemon: `kea-dhcp-ddns` (`pkill -x kea-dhcp-ddns && /usr/local/sbin/kea-dhcp-ddns -c /usr/local/etc/kea/kea-dhcp-ddns.conf -d &`) |
-| Technitium | Zone options API: `POST /api/zones/options/set?zone=<z>&updateSecurityPolicies=kea-ddns\|*.<z>\|ANY&updateNetworkACL=10.0.20.1,10.0.10.1,192.168.1.2&update=UseSpecifiedNetworkACL` | Set on primary; replicates to secondary/tertiary via AXFR |
-| Technitium settings | TSIG keys array: `POST /api/settings/set` with `tsigKeys: [{keyName: "kea-ddns", sharedSecret: <b64>, algorithmName: "hmac-sha256"}]` | Must be set on all 3 Technitium instances (primary, secondary, tertiary) |
-| Vault | `secret/viktor/kea_ddns_tsig_secret` | Authoritative copy of the base64 secret |
-
-### Rotating the TSIG key
-
-1. Generate a new base64 32-byte secret: `openssl rand -base64 32` (any base64-encoded blob of reasonable length works; HMAC-SHA256 truncates/pads internally).
-2. Write it to Vault: `vault kv patch secret/viktor kea_ddns_tsig_secret=<new-secret>`.
-3. Add the new key under a **new name** (e.g., `kea-ddns-v2`) via the Technitium settings API on all 3 instances. Do NOT overwrite `kea-ddns` while Kea still uses it — you'd orphan in-flight updates.
-4. Update `/usr/local/etc/kea/kea-dhcp-ddns.conf` on pfSense to reference both keys in `tsig-keys`, set `key-name: kea-ddns-v2` on each `forward-ddns` / `reverse-ddns` domain, restart `kea-dhcp-ddns`.
-5. Update each affected zone's `updateSecurityPolicies` to use the new key name.
-6. After a lease-renewal cycle (default Kea lease = 7200s / 2h), verify with `kubectl -n technitium exec <primary-pod> -- grep "TSIG KeyName: kea-ddns-v2" /etc/dns/logs/<today>.log`.
-7. Remove the old `kea-ddns` key from Technitium settings + Kea config.
-
-### Emergency TSIG bypass (if rotation breaks DDNS)
-
-If DDNS updates are failing and you cannot quickly fix the key, temporarily
-downgrade the zone policy to IP-ACL only (pfSense source IPs) without
-TSIG:
-
-```bash
-kubectl -n technitium port-forward pod/<primary-pod> 5380:5380 &
-TOKEN=$(curl -s -X POST http://127.0.0.1:5380/api/user/login \
-  -d "user=admin&pass=$(vault kv get -field=technitium_password secret/platform)&includeInfo=false" | jq -r .token)
-
-for Z in viktorbarzin.lan 10.0.10.in-addr.arpa 20.0.10.in-addr.arpa 1.168.192.in-addr.arpa; do
-  curl -s -X POST "http://127.0.0.1:5380/api/zones/options/set?token=$TOKEN&zone=$Z&update=UseSpecifiedNetworkACL&updateNetworkACL=10.0.20.1,10.0.10.1,192.168.1.2&updateSecurityPolicies="
-done
-```
-
-This clears `updateSecurityPolicies` while keeping the IP ACL. Updates
-now flow unsigned from pfSense IPs — **weaker** than TSIG but restores
-service. Re-enable TSIG as soon as the key issue is resolved.
-
-### Verify TSIG is enforced
-
-```bash
-# Unsigned update should fail
-nsupdate <<EOF
-server 10.0.20.201 53
-zone viktorbarzin.lan
-update delete tsig-test.viktorbarzin.lan.
-update add tsig-test.viktorbarzin.lan. 300 A 10.99.99.99
-send
-EOF
-# Expected: "update failed: REFUSED"
-
-# Signed update should succeed
-cat > /tmp/kea-ddns.key <<EOF
-key "kea-ddns" {
-    algorithm hmac-sha256;
-    secret "$(vault kv get -field=kea_ddns_tsig_secret secret/viktor)";
-};
-EOF
-nsupdate -k /tmp/kea-ddns.key <<EOF
-server 10.0.20.201 53
-zone viktorbarzin.lan
-update delete tsig-test.viktorbarzin.lan.
-update add tsig-test.viktorbarzin.lan. 300 A 10.99.99.99
-send
-EOF
-dig @10.0.20.201 +short tsig-test.viktorbarzin.lan
-# Expected: 10.99.99.99
-rm -f /tmp/kea-ddns.key
-```
-
-## Related Docs
-
-- `docs/architecture/dns.md` — overall DNS architecture (K8s side, Technitium, CoreDNS)
-- `docs/architecture/networking.md` — VLAN layout, pfSense interface mapping
-- `.claude/skills/pfsense/skill.md` — SSH / CLI patterns for pfSense management
diff --git a/docs/runbooks/proxmox-host.md b/docs/runbooks/proxmox-host.md
deleted file mode 100644
index 449ab772..00000000
--- a/docs/runbooks/proxmox-host.md
+++ /dev/null
@@ -1,103 +0,0 @@
-# Runbook: Proxmox host (pve, 192.168.1.127)
-
-Last updated: 2026-04-19
-
-The Proxmox host is a baremetal hypervisor on the storage LAN
-(192.168.1.0/24) with a single IP `192.168.1.127`. It hosts every
-Kubernetes node VM and the NFS exports that back PVCs. It does **not**
-receive DHCP — its network config is static in
-`/etc/network/interfaces` (ifupdown). Because of that, DNS must be
-configured manually and stays out of the scope of Kea/DHCP-DDNS.
-
-## DNS configuration
-
-The host uses a plain `/etc/resolv.conf` with two nameservers. No
-`systemd-resolved`, no `resolvconf`, no NetworkManager — nothing
-manages `/etc/resolv.conf`; it is a regular file owned by root.
-
-### Why plain `/etc/resolv.conf` and not systemd-resolved
-
-1. Installing `systemd-resolved` on an active Proxmox node during
-   business hours is the kind of change that risks breaking the NFS
-   server or VM networking. PVE's Debian base does not ship
-   `systemd-resolved` by default.
-2. The ifupdown `/etc/network/interfaces` file does not manage
-   `/etc/resolv.conf` here — ifupdown's resolvconf integration is
-   only active if the `resolvconf` package is installed, which it is
-   not (`dpkg -l resolvconf` returns `un`).
-3. A plain file is the simplest mental model and avoids a second
-   layer of "which tool is running now" confusion during an incident.
-
-If you ever want to migrate to `systemd-resolved`, install the
-package, enable the service, symlink `/etc/resolv.conf` to
-`/run/systemd/resolve/stub-resolv.conf`, and drop the config in
-`/etc/systemd/resolved.conf.d/10-internal-dns.conf` — but do this
-during a maintenance window, not reactively.
-
-### Current state
-
-```
-# /etc/resolv.conf
-search viktorbarzin.lan
-nameserver 192.168.1.2
-nameserver 94.140.14.14
-options timeout:2 attempts:2
-```
-
-| Field | Value | Purpose |
-|---|---|---|
-| Primary | `192.168.1.2` | pfSense LAN interface (dnsmasq forwarder → Technitium LB) — resolves `.viktorbarzin.lan` |
-| Fallback | `94.140.14.14` | AdGuard public DNS — recursive only, used if pfSense LAN IP unreachable |
-| `search` | `viktorbarzin.lan` | Unqualified names (`technitium`, `idrac`, etc.) resolve against the internal zone |
-| `timeout:2 attempts:2` | — | Cap glibc resolver at 2s per server, 2 tries — reasonable fallback latency |
-
-### Verification commands
-
-```sh
-ssh root@192.168.1.127 '
-  cat /etc/resolv.conf                           # should show the two nameservers
-  dig +short idrac.viktorbarzin.lan              # expect an A record (192.168.1.4)
-  dig +short github.com                          # expect an A record
-'
-```
-
-Simulated failover — force the primary unreachable and verify the
-fallback answers:
-
-```sh
-ssh root@192.168.1.127 '
-  ip route add blackhole 192.168.1.2
-  dig +short +time=3 github.com      # glibc times out on primary, tries 94.140.14.14 → A record returned
-  ip route del blackhole 192.168.1.2 # cleanup
-'
-```
-
-Expected behaviour: the first `dig` prints a warning about the UDP
-setup failing for 192.168.1.2 and then prints the GitHub A record
-(answered by 94.140.14.14).
-
-## Rollback
-
-A pre-change backup of `/etc/resolv.conf`, `/etc/network/interfaces`,
-and `/etc/network/interfaces.d/` lives at
-`/root/dns-backups/dns-config-backup-YYYYMMDD-HHMMSS.tar.gz` on the
-host. To roll back:
-
-```sh
-ssh root@192.168.1.127 '
-  # pick the backup you want (there may be multiple if this runbook has been applied more than once)
-  BACKUP=$(ls -t /root/dns-backups/dns-config-backup-*.tar.gz | head -1)
-  tar -xzf "$BACKUP" -C /
-  cat /etc/resolv.conf
-'
-```
-
-No service restart is needed — glibc re-reads `/etc/resolv.conf` per
-lookup.
-
-## Related docs
-
-- `docs/architecture/dns.md` — where each resolver IP lives and which
-  subnet it serves.
-- `docs/runbooks/nfs-prerequisites.md` — other operations on this
-  host; read before adding new NFS exports.
diff --git a/docs/runbooks/r730-ram-upgrade-272gb.md b/docs/runbooks/r730-ram-upgrade-272gb.md
index 0a40cccf..bd0f9a33 100644
--- a/docs/runbooks/r730-ram-upgrade-272gb.md
+++ b/docs/runbooks/r730-ram-upgrade-272gb.md
@@ -146,8 +146,8 @@ qm shutdown 220; sleep 10
 for VMID in 102 300 103; do qm shutdown $VMID; done
 sleep 20
 
-# TrueNAS (decommissioned 2026-04-13 — VM 9000 should already be stopped; skip if absent)
-qm shutdown 9000 2>/dev/null || true
+# TrueNAS (wait for ZFS flush)
+qm shutdown 9000; sleep 60
 
 # pfSense (last — network gateway)
 qm shutdown 101; sleep 15
diff --git a/docs/runbooks/registry-rebuild-image.md b/docs/runbooks/registry-rebuild-image.md
deleted file mode 100644
index c1feb34f..00000000
--- a/docs/runbooks/registry-rebuild-image.md
+++ /dev/null
@@ -1,170 +0,0 @@
-# Runbook: Rebuild an Image After a Registry Orphan-Index Incident
-
-Last updated: 2026-04-19
-
-## When to use this
-
-Pipelines that pull from `registry.viktorbarzin.me:5050` are failing with
-messages like:
-
-- `failed to resolve reference … : not found`
-- `manifest unknown`
-- `image can't be pulled` (Woodpecker exit 126)
-- `error pulling image`: HEAD on a child manifest digest returns 404
-
-…and `skopeo inspect --tls-verify --creds "$USER:$PASS" docker://registry.viktorbarzin.me:5050/<image>:<tag>`
-returns an OCI image index whose `manifests[].digest` references are 404
-on the registry.
-
-This is the **orphan OCI-index** failure mode documented in
-`docs/post-mortems/2026-04-19-registry-orphan-index.md`. The fix is to
-rebuild the affected image from source so the registry receives a fresh,
-complete push.
-
-If the symptom is different (e.g., registry container down, TLS expiry,
-auth failure), use `docs/runbooks/registry-vm.md` instead.
-
-## Phase 1 — Confirm the diagnosis
-
-From any host with `skopeo`:
-
-```sh
-REG=registry.viktorbarzin.me:5050
-IMAGE=infra-ci
-TAG=latest
-
-# 1. Confirm the index exists.
-skopeo inspect --tls-verify --creds "$USER:$PASS" \
-  --raw "docker://$REG/$IMAGE:$TAG" | jq '.mediaType, .manifests[].digest'
-
-# 2. HEAD each child. Any non-200 = confirmed orphan.
-for d in $(skopeo inspect --tls-verify --creds "$USER:$PASS" --raw \
-           "docker://$REG/$IMAGE:$TAG" | jq -r '.manifests[].digest'); do
-  code=$(curl -sk -u "$USER:$PASS" -o /dev/null -w '%{http_code}' \
-         -I "https://$REG/v2/$IMAGE/manifests/$d")
-  echo "$d → $code"
-done
-```
-
-If every child is 200, the problem is elsewhere — stop here and check
-the registry VM, TLS, or auth.
-
-The `registry-integrity-probe` CronJob in the `monitoring` namespace
-runs this same check every 15 minutes across every tag in the catalog;
-its last run is also a fast way to see which image(s) are affected:
-
-```sh
-kubectl -n monitoring logs \
-  $(kubectl -n monitoring get pods -l job-name -o name \
-     | grep registry-integrity-probe | head -1)
-```
-
-## Phase 2 — Rebuild
-
-### Option A (preferred): rebuild via CI
-
-Find the `build-*.yml` pipeline that produces the image:
-
-| Image | Pipeline | Repo ID |
-|---|---|---|
-| `infra-ci` | `.woodpecker/build-ci-image.yml` | 1 (infra) |
-| `infra` (cli) | `.woodpecker/build-cli.yml` | 1 (infra) |
-| `k8s-portal` | `.woodpecker/k8s-portal.yml` | 1 (infra) |
-
-Trigger a manual build. The Woodpecker API expects a numeric repo ID
-(paths with `owner/name` return HTML):
-
-```sh
-WOODPECKER_TOKEN=$(vault kv get -field=woodpecker_admin_token secret/viktor)
-
-# Kick off a manual build against master.
-curl -s -X POST \
-  -H "Authorization: Bearer $WOODPECKER_TOKEN" \
-  -H "Content-Type: application/json" \
-  "https://ci.viktorbarzin.me/api/repos/1/pipelines" \
-  -d '{"branch":"master"}' | jq .number
-
-# Follow the pipeline at https://ci.viktorbarzin.me/repos/1/pipeline/<number>
-```
-
-The pipeline's `verify-integrity` step walks every blob the push
-references. If it passes, the registry now has a clean index; pull
-consumers will recover on next attempt.
-
-### Option B (fallback): build on the registry VM
-
-Only use this if Woodpecker itself is broken (its own pipeline runs
-from the same `infra-ci` image, so a corrupted `infra-ci:latest` can
-prevent Option A from recovering).
-
-```sh
-ssh root@10.0.20.10 '
-  cd /tmp
-  git clone --depth 1 https://github.com/ViktorBarzin/infra
-  cd infra/ci
-  docker build -t registry.viktorbarzin.me:5050/infra-ci:manual -t registry.viktorbarzin.me:5050/infra-ci:latest .
-  docker login -u "$USER" -p "$PASS" registry.viktorbarzin.me:5050
-  docker push registry.viktorbarzin.me:5050/infra-ci:manual
-  docker push registry.viktorbarzin.me:5050/infra-ci:latest
-'
-```
-
-Then re-run any pipelines that failed — Woodpecker UI → Restart, or:
-
-```sh
-curl -s -X POST \
-  -H "Authorization: Bearer $WOODPECKER_TOKEN" \
-  "https://ci.viktorbarzin.me/api/repos/1/pipelines/<failed-pipeline-number>"
-```
-
-## Phase 3 — Verify
-
-```sh
-# 1. Pull the image fresh (bypassing containerd cache) and check its index.
-REG=registry.viktorbarzin.me:5050
-skopeo inspect --tls-verify --creds "$USER:$PASS" \
-  --raw "docker://$REG/infra-ci:latest" \
-  | jq '.manifests[] | {digest, platform}'
-
-# 2. HEAD every child digest — all should be 200.
-for d in $(skopeo inspect --tls-verify --creds "$USER:$PASS" --raw \
-           "docker://$REG/infra-ci:latest" | jq -r '.manifests[].digest'); do
-  code=$(curl -sk -u "$USER:$PASS" -o /dev/null -w '%{http_code}' \
-         -I "https://$REG/v2/infra-ci/manifests/$d")
-  [ "$code" = "200" ] || echo "STILL BROKEN: $d → $code"
-done
-echo "verified"
-
-# 3. Kick off the next scheduled probe for good measure.
-kubectl -n monitoring create job --from=cronjob/registry-integrity-probe \
-  registry-integrity-probe-verify-$(date +%s)
-kubectl -n monitoring logs -f -l job-name=registry-integrity-probe-verify-$(date +%s)
-```
-
-The `RegistryManifestIntegrityFailure` alert clears automatically when
-the probe's next run returns zero failures.
-
-## Phase 4 — Investigate orphans
-
-Once the immediate fix is in, check whether any OTHER images on the
-registry have orphan children:
-
-```sh
-ssh root@10.0.20.10 'python3 /opt/registry/fix-broken-blobs.sh --dry-run 2>&1 | grep "ORPHAN INDEX"'
-```
-
-Each hit is a separate image that will eventually fail to pull. Rebuild
-them in the same way (Option A preferred). If the list is long, open a
-beads task — do NOT batch-delete the indexes; that's a destructive
-registry operation outside this runbook's scope.
-
-## Related
-
-- `docs/post-mortems/2026-04-19-registry-orphan-index.md` — why this
-  happens.
-- `docs/runbooks/registry-vm.md` — VM-level operations (DNS,
-  `docker compose` restarts).
-- `modules/docker-registry/fix-broken-blobs.sh` — the scanner cron
-  itself, runs nightly and after each GC.
-- `stacks/monitoring/modules/monitoring/main.tf` —
-  `registry_integrity_probe` CronJob definition.
diff --git a/docs/runbooks/registry-vm.md b/docs/runbooks/registry-vm.md
deleted file mode 100644
index 95f7b637..00000000
--- a/docs/runbooks/registry-vm.md
+++ /dev/null
@@ -1,227 +0,0 @@
-# Runbook: Registry VM (docker-registry, 10.0.20.10)
-
-Last updated: 2026-05-07
-
-The registry VM is an Ubuntu 24.04 VM on the cluster LAN subnet
-`10.0.20.0/24`, with a static netplan config (no DHCP). Because it
-sits on a subnet that only has pfSense as its gateway, its DNS must
-be statically configured.
-
-**As of Phase 4 of forgejo-registry-consolidation 2026-05-07** the VM
-no longer hosts the private R/W registry. It hosts pull-through
-caches only:
-
-| Port | Upstream |
-|---|---|
-| 5000 | docker.io (Docker Hub) — auth via dockerhub_registry_password |
-| 5010 | ghcr.io |
-| 5020 | quay.io |
-| 5030 | registry.k8s.io |
-| 5040 | reg.kyverno.io |
-
-The decommissioned private registry (port 5050) is now hosted on
-Forgejo at `forgejo.viktorbarzin.me/viktor/<image>`. See
-`docs/plans/2026-05-07-forgejo-registry-consolidation-plan.md` for the
-migration. Break-glass tarballs of `infra-ci` are still produced on
-each build to `/opt/registry/data/private/_breakglass/` — see
-`docs/runbooks/forgejo-registry-breakglass.md`.
-
-## DNS configuration
-
-Ubuntu ships `systemd-resolved` and uses netplan to declare per-link
-`nameservers`. Netplan writes systemd-networkd or NetworkManager
-configs that resolved reads at runtime. There is **no automatic
-merging** of netplan DNS with the `[Resolve]` section of
-`/etc/systemd/resolved.conf` — per-link settings override the global
-ones. So both layers must be in sync:
-
-| Layer | File | Role |
-|---|---|---|
-| Netplan | `/etc/netplan/50-cloud-init.yaml` | Per-link DNS servers that resolved reports on `Link 2 (eth0)` |
-| Resolved global | `/etc/systemd/resolved.conf.d/10-internal-dns.conf` | `Global` scope `DNS=` / `FallbackDNS=` — also shown in `resolvectl status` |
-
-### Current state
-
-`/etc/systemd/resolved.conf.d/10-internal-dns.conf`:
-
-```ini
-[Resolve]
-DNS=10.0.20.1
-FallbackDNS=94.140.14.14
-Domains=viktorbarzin.lan
-```
-
-`/etc/netplan/50-cloud-init.yaml` (eth0 block, simplified):
-
-```yaml
-nameservers:
-  addresses:
-  - 10.0.20.1
-  - 94.140.14.14
-  search:
-  - viktorbarzin.lan
-```
-
-`resolvectl status` output after the change:
-
-```
-Global
-  resolv.conf mode: stub
-  Current DNS Server: 10.0.20.1
-  DNS Servers: 10.0.20.1
-  Fallback DNS Servers: 94.140.14.14
-  DNS Domain: viktorbarzin.lan
-
-Link 2 (eth0)
-  Current Scopes: DNS
-  Current DNS Server: 10.0.20.1
-  DNS Servers: 10.0.20.1 94.140.14.14
-  DNS Domain: viktorbarzin.lan
-```
-
-| Field | Value | Purpose |
-|---|---|---|
-| Primary | `10.0.20.1` | pfSense OPT1 interface (dnsmasq forwarder → Technitium LB) — resolves `.viktorbarzin.lan` |
-| Fallback | `94.140.14.14` | AdGuard public DNS — used if pfSense unreachable (e.g., OPT1 flap) |
-| Search | `viktorbarzin.lan` | Unqualified names resolve against the internal zone |
-
-### Why this matters for the registry
-
-Container builds on this VM reference `.lan` hostnames (Technitium,
-NFS, etc.) and external hostnames (Docker Hub, GHCR). Before the
-hardening the netplan had `1.1.1.1` / `8.8.8.8` only, which meant:
-
-1. Internal hostname lookups silently failed (slow timeout) — the
-   VM could not resolve `idrac.viktorbarzin.lan` or any internal
-   helper.
-2. If Cloudflare's 1.1.1.1 had an outage, the VM would lose DNS
-   entirely.
-
-With the new config the VM can resolve both zones and keeps working
-if the primary DNS server is unreachable.
-
-## Apply / re-apply
-
-```sh
-ssh root@10.0.20.10 '
-  netplan generate
-  netplan apply
-  systemctl restart systemd-resolved
-  resolvectl status | head -20
-'
-```
-
-`netplan apply` is not disruptive when only `nameservers` change — it
-does not bounce the link.
-
-## Verification
-
-```sh
-ssh root@10.0.20.10 '
-  dig +short idrac.viktorbarzin.lan       # 192.168.1.4
-  dig +short github.com                   # GitHub A record
-  dig +short registry.viktorbarzin.me     # 10.0.20.10 + external A
-'
-```
-
-Fallback test — blackhole the primary and confirm external lookups
-still succeed through 94.140.14.14:
-
-```sh
-ssh root@10.0.20.10 '
-  ip route add blackhole 10.0.20.1
-  dig +short +time=5 +tries=2 github.com   # should still answer
-  ip route del blackhole 10.0.20.1
-'
-```
-
-Internal lookups do fail during the blackhole (the fallback is a
-public resolver and does not know about the internal zone), which is
-expected — the fallback buys availability for external pulls, not
-internal hostnames.
-
-## Rollback
-
-A pre-change backup of `/etc/resolv.conf`, `/etc/systemd/resolved.conf`,
-and `/etc/netplan/` lives at
-`/root/dns-backups/dns-config-backup-YYYYMMDD-HHMMSS.tar.gz` on the
-VM. To roll back:
-
-```sh
-ssh root@10.0.20.10 '
-  BACKUP=$(ls -t /root/dns-backups/dns-config-backup-*.tar.gz | head -1)
-  tar -xzf "$BACKUP" -C /
-  rm -f /etc/systemd/resolved.conf.d/10-internal-dns.conf
-  netplan apply
-  systemctl restart systemd-resolved
-  resolvectl status | head -10
-'
-```
-
-## Auto-sync pipeline
-
-Changes to `modules/docker-registry/{docker-compose.yml, fix-broken-blobs.sh,
-cleanup-tags.sh, nginx_registry.conf, config-private.yml}` deploy
-automatically via `.woodpecker/registry-config-sync.yml`:
-
-- Fires on `push` to master touching any of those paths, or via `manual`
-  event (Woodpecker UI / API).
-- SCPs every managed file to `/opt/registry/` on `10.0.20.10`.
-- Bounces containers + nginx when a compose-visible file changed; leaves
-  them alone when only scripts changed (cron picks up automatically).
-- Runs a dry-run `fix-broken-blobs.sh` at the end to verify the registry
-  is still coherent.
-
-SSH credentials: Woodpecker repo-secret `registry_ssh_key` (ed25519,
-provisioned 2026-04-19). Public key at `/root/.ssh/authorized_keys` on
-`10.0.20.10`. Private key mirrored at `secret/woodpecker/registry_ssh_key`
-in Vault (subkeys `private_key` / `public_key` / `known_hosts_entry`).
-
-Manual override if you need to sync right now:
-
-```sh
-curl -sf -X POST \
-  -H "Authorization: Bearer $WOODPECKER_TOKEN" \
-  "https://ci.viktorbarzin.me/api/repos/1/pipelines" \
-  -d '{"branch":"master"}' | jq .number
-```
-
-## Bouncing registry containers — the nginx DNS trap
-
-`docker compose up -d` on `/opt/registry/docker-compose.yml` recreates
-`registry-*` containers when their image tag changes, which assigns them
-new IPs on the `registry` bridge network. **`registry-nginx` resolves its
-upstream DNS names (`registry-private`, `registry-dockerhub`, …) ONCE at
-startup and caches the results** — it does not re-resolve after a
-recreate.
-
-Symptom if you forget: `/v2/_catalog` on `:5050` returns
-`{"repositories": []}`, `/v2/` returns 200 without auth, pulls return
-the wrong image. nginx is forwarding to a stale IP that now belongs to a
-different registry-* backend (commonly the pull-through ghcr or
-dockerhub cache, which have empty catalogs from the htpasswd-auth user's
-perspective).
-
-**Always follow a registry-* bounce with `docker restart registry-nginx`.**
-Or prevent the problem by setting a `resolver` directive in
-`nginx_registry.conf` so upstream names are re-resolved per request.
-
-```sh
-ssh root@10.0.20.10 '
-  cd /opt/registry && docker compose up -d
-  docker restart registry-nginx
-  sleep 3
-  docker ps --format "{{.Names}}\t{{.Image}}\t{{.Status}}" \
-    | grep -E "registry-"
-'
-```
-
-## Related docs
-
-- `docs/architecture/dns.md` — resolver IP assignments per subnet.
-- `.claude/CLAUDE.md` (at repo root) — notes on the private registry
-  and `containerd` `hosts.toml` redirects.
-- `docs/runbooks/registry-rebuild-image.md` — rebuild an image after an
-  orphan OCI-index incident (different class of problem than DNS).
-- `docs/post-mortems/2026-04-19-registry-orphan-index.md` — root cause
-  + detection gaps behind the recurring missing-blob incidents.
diff --git a/docs/runbooks/restore-etcd.md b/docs/runbooks/restore-etcd.md
index 11277ca6..3d366e77 100644
--- a/docs/runbooks/restore-etcd.md
+++ b/docs/runbooks/restore-etcd.md
@@ -7,7 +7,7 @@
 
 ## Backup Location
 - NFS: `/mnt/main/etcd-backup/etcd-snapshot-YYYYMMDD-HHMMSS.db`
-- Replicated to Synology NAS (192.168.1.13) via Proxmox host offsite-sync-backup (inotify-driven rsync)
+- Replicated to Synology NAS (192.168.1.13) via TrueNAS ZFS replication
 - Retention: 30 days
 - Schedule: Daily at 00:00
 
diff --git a/docs/runbooks/restore-full-cluster.md b/docs/runbooks/restore-full-cluster.md
index 7bd41dc6..56f6adfd 100644
--- a/docs/runbooks/restore-full-cluster.md
+++ b/docs/runbooks/restore-full-cluster.md
@@ -8,8 +8,8 @@ Last updated: 2026-04-06
 - Proxmox host failure requiring fresh VM provisioning
 
 ## Prerequisites
-- Proxmox host (192.168.1.127) accessible, with NFS exports on `/srv/nfs` and `/srv/nfs-ssd`
-- Synology NAS (192.168.1.13) accessible for offsite backup restore if the PVE host backup disk is also lost
+- Proxmox host (192.168.1.127) accessible
+- TrueNAS NFS server (10.0.10.15) accessible — or Synology NAS (192.168.1.13) for backups
 - sda backup disk mounted at `/mnt/backup` on PVE host (or restore from Synology first)
 - Git repo with infra code
 - SOPS age keys for state decryption (`~/.config/sops/age/keys.txt`)
diff --git a/docs/runbooks/restore-mysql.md b/docs/runbooks/restore-mysql.md
index 2cae130e..353cb68d 100644
--- a/docs/runbooks/restore-mysql.md
+++ b/docs/runbooks/restore-mysql.md
@@ -130,7 +130,7 @@ kubectl rollout restart deployment -n <namespace>
 
 ## Alternative: Restore from sda Backup
 
-If the Proxmox host NFS mount is unavailable but the PVE host itself is accessible:
+If TrueNAS NFS is unavailable but the PVE host is accessible:
 
 ```bash
 # 1. SSH to PVE host
@@ -148,17 +148,17 @@ kubectl run mysql-restore --rm -it --image=mysql \
 
 ## Alternative: Restore from Synology (if PVE host is down)
 
-If the PVE host itself is unavailable:
+If both TrueNAS and PVE host are unavailable:
 
 ```bash
 # 1. SSH to Synology NAS
 ssh Administrator@192.168.1.13
 
 # 2. Navigate to backup directory
-cd /volume1/Backup/Viki/nfs/mysql-backup/
+cd /volume1/Backup/Viki/pve-backup/nfs-mirror/mysql-backup/
 
 # 3. Copy dump to a temporary location accessible from cluster
-# (e.g., via rsync to a surviving node, or restore PVE host first)
+# (e.g., via rsync to a surviving node, or restore TrueNAS first)
 ```
 
 ## Estimated Time
diff --git a/docs/runbooks/restore-postgresql.md b/docs/runbooks/restore-postgresql.md
index b32ffaeb..f656fefc 100644
--- a/docs/runbooks/restore-postgresql.md
+++ b/docs/runbooks/restore-postgresql.md
@@ -123,7 +123,7 @@ kubectl rollout restart deployment -n <namespace>
 
 ## Alternative: Restore from sda Backup
 
-If the Proxmox host NFS mount is unavailable but the PVE host itself is accessible:
+If TrueNAS NFS is unavailable but the PVE host is accessible:
 
 ```bash
 # 1. SSH to PVE host
@@ -142,17 +142,17 @@ kubectl run pg-restore --rm -it --image=postgres:16.4-bullseye \
 
 ## Alternative: Restore from Synology (if PVE host is down)
 
-If the PVE host itself is unavailable:
+If both TrueNAS and PVE host are unavailable:
 
 ```bash
 # 1. SSH to Synology NAS
 ssh Administrator@192.168.1.13
 
 # 2. Navigate to backup directory
-cd /volume1/Backup/Viki/nfs/postgresql-backup/
+cd /volume1/Backup/Viki/pve-backup/nfs-mirror/postgresql-backup/
 
 # 3. Copy dump to a temporary location accessible from cluster
-# (e.g., via rsync to a surviving node, or restore PVE host first)
+# (e.g., via rsync to a surviving node, or restore TrueNAS first)
 ```
 
 ## Estimated Time
diff --git a/docs/runbooks/restore-vault.md b/docs/runbooks/restore-vault.md
index 87766fd2..55abd27c 100644
--- a/docs/runbooks/restore-vault.md
+++ b/docs/runbooks/restore-vault.md
@@ -93,7 +93,7 @@ kubectl get externalsecrets -A | grep -v "SecretSynced"
 
 ## Alternative: Restore from sda Backup
 
-If the Proxmox host NFS mount is unavailable but the PVE host itself is accessible:
+If TrueNAS NFS is unavailable but the PVE host is accessible:
 
 ```bash
 # 1. SSH to PVE host
@@ -115,17 +115,17 @@ vault operator raft snapshot restore -force ./vault-raft-YYYYMMDD-HHMMSS.db
 
 ## Alternative: Restore from Synology (if PVE host is down)
 
-If the PVE host itself is unavailable:
+If both TrueNAS and PVE host are unavailable:
 
 ```bash
 # 1. SSH to Synology NAS
 ssh Administrator@192.168.1.13
 
 # 2. Navigate to backup directory
-cd /volume1/Backup/Viki/nfs/vault-backup/
+cd /volume1/Backup/Viki/pve-backup/nfs-mirror/vault-backup/
 
 # 3. Copy snapshot to local workstation
-scp Administrator@192.168.1.13:/volume1/Backup/Viki/nfs/vault-backup/vault-raft-YYYYMMDD-HHMMSS.db ./
+scp Administrator@192.168.1.13:/volume1/Backup/Viki/pve-backup/nfs-mirror/vault-backup/vault-raft-YYYYMMDD-HHMMSS.db ./
 
 # 4. Restore via port-forward (same as above)
 ```
diff --git a/docs/runbooks/restore-vaultwarden.md b/docs/runbooks/restore-vaultwarden.md
index bcfa7c18..d46504ae 100644
--- a/docs/runbooks/restore-vaultwarden.md
+++ b/docs/runbooks/restore-vaultwarden.md
@@ -104,9 +104,9 @@ lvchange -an pve/$LV_NAME
 kubectl scale deployment vaultwarden -n vaultwarden --replicas=1
 ```
 
-## Alternative: Restore from sda Backup Mirror
+## Alternative: Restore from sda NFS Mirror
 
-If the Proxmox host NFS mount is unavailable but the PVE host itself is accessible:
+If TrueNAS NFS is unavailable but PVE host is accessible:
 
 ```bash
 # 1. SSH to PVE host
diff --git a/docs/runbooks/technitium-apply.md b/docs/runbooks/technitium-apply.md
deleted file mode 100644
index a560452e..00000000
--- a/docs/runbooks/technitium-apply.md
+++ /dev/null
@@ -1,51 +0,0 @@
-# Runbook: Applying the Technitium Terraform stack
-
-Last updated: 2026-04-19
-
-The `stacks/technitium/` apply has a **post-apply readiness gate** that asserts all three DNS instances are healthy before the apply is allowed to finish. This runbook explains what it checks, how to interpret failures, and how to override it for emergency maintenance.
-
-## What the gate checks
-
-`stacks/technitium/modules/technitium/readiness.tf` defines `null_resource.technitium_readiness_gate`. It runs after the three Technitium deployments, the DNS LoadBalancer service, and the PDB are applied, and performs:
-
-1. **Rollout status** — `kubectl rollout status deploy/<name> --timeout=180s` for `technitium`, `technitium-secondary`, `technitium-tertiary`. Fails if any deployment has not reached its desired pod count within 180s.
-2. **Per-pod API health** — for every pod with label `dns-server=true`, executes `wget http://127.0.0.1:5380/api/stats/get` inside the pod and asserts the response contains `"status":"ok"`. Catches Technitium process hangs that TCP probes miss.
-3. **Zone-count parity** — queries `technitium-web`, `technitium-secondary-web`, `technitium-tertiary-web` and counts the zones returned. Fails if the three counts differ, which would mean `technitium-zone-sync` has drifted or a replica has lost state.
-
-The gate is re-run whenever any of the deployment container spec, the CoreDNS Corefile, or the apply timestamp changes (see `triggers` in `readiness.tf`).
-
-## Emergency override
-
-Set `skip_readiness=true` via terragrunt inputs or pass it directly to the Terraform apply:
-
-```bash
-cd infra/stacks/technitium
-scripts/tg apply -var skip_readiness=true
-```
-
-Only use this when you need to land a Terraform change while one Technitium instance is intentionally offline (e.g., you are replacing its PVC, migrating storage, or recovering a corrupted config DB). Re-apply without the flag once the instance is back.
-
-You can also target around the gate during emergency work:
-
-```bash
-scripts/tg apply -target=kubernetes_config_map.coredns
-```
-
-`-target` bypasses the `depends_on` chain feeding the gate, so a single-resource push does not need the gate to pass.
-
-## Failure modes and responses
-
-| Symptom | Likely cause | Fix |
-|---------|--------------|-----|
-| `rollout status` times out on one deployment | Pod stuck `Pending` (node pressure / anti-affinity with other dns-server pods) or `ImagePullBackOff` | `kubectl describe pod` for events. If anti-affinity is blocking, confirm 3 nodes are Ready. |
-| API check fails on a pod but readiness probe passes | Technitium process hung but port 53 still accepting TCP (liveness probe is `tcp_socket` on :53) | `kubectl delete pod <name>` — deployment will recreate it. |
-| Zone count differs between instances | `technitium-zone-sync` CronJob is failing or AXFR is blocked | `kubectl logs -n technitium -l job-name=<latest-zone-sync-job>`. Check `TechnitiumZoneSyncFailed` alert. |
-| Gate passes but external clients still cannot resolve | Gate only checks in-pod API and intra-cluster zone parity — external path (LoadBalancer → Technitium pod) is not tested | Run the LAN-client drill in `docs/architecture/dns.md` troubleshooting section. |
-
-## What the gate does NOT check
-
-- External reachability through the LoadBalancer IP `10.0.20.201` (that would require a LAN-side probe).
-- CoreDNS health (CoreDNS is patched by `coredns.tf`, not this module's deployments — alerts `CoreDNSErrors` / `CoreDNSForwardFailureRate` catch regressions post-apply).
-- Upstream resolver health (covered by `CoreDNSForwardFailureRate`).
-
-For broader end-to-end verification, see `docs/architecture/dns.md` → "Verification" section, or run the Uptime Kuma external DNS probe.
diff --git a/docs/runbooks/vault-raft-leader-deadlock.md b/docs/runbooks/vault-raft-leader-deadlock.md
deleted file mode 100644
index 5b4f1ece..00000000
--- a/docs/runbooks/vault-raft-leader-deadlock.md
+++ /dev/null
@@ -1,217 +0,0 @@
-# Runbook: Vault Raft Leader Deadlock + Safe Pod Restart
-
-Captures the 2026-04-22 incident pattern. When a Vault raft leader enters a
-stuck goroutine state (port 8201 accepts TCP but RPCs never return), the
-recovery is *not* `kubectl delete --force`. Force-deleting a Vault pod that
-holds a stuck NFS mount leaves kernel NFS client state corrupted, which
-blocks all subsequent NFS mounts from the node and usually requires a VM
-hard-reset to clear.
-
-**Related**: [post-mortems/2026-04-22-vault-raft-leader-deadlock.md](../post-mortems/2026-04-22-vault-raft-leader-deadlock.md).
-
-## Symptoms
-
-- `https://vault.viktorbarzin.me/v1/sys/health` returns HTTP 503.
-- Standbys log `msgpack decode error [pos 0]: i/o timeout` every 2s.
-- `kubectl exec` into a standby shows raft thinks the leader is alive
-  (peers list all `Voter`, leader address populated) but `vault operator
-  raft autopilot state` stalls or errors.
-- The "leader" pod's logs go silent — no heartbeats, no audit writes,
-  nothing. TCP on 8201 still accepts connections.
-- ESO-backed secrets stop refreshing (ExternalSecret `SecretSyncedError`).
-- Woodpecker CI pipelines that read from Vault at plan time hang.
-
-## 0. Confirm the diagnosis (before touching anything)
-
-Don't jump to force-delete. Verify the leader is actually stuck, not just
-slow:
-
-```sh
-# 1. Who does raft think the leader is?
-kubectl exec -n vault vault-0 -c vault -- vault status 2>&1 | \
-  grep -E 'HA Mode|Active Node|Leader|Raft'
-
-# 2. Is the leader's port open but unresponsive?
-LEADER_POD=vault-2   # or whichever vault status reports
-kubectl exec -n vault $LEADER_POD -c vault -- sh -c \
-  'timeout 3 nc -zv 127.0.0.1 8200 2>&1; echo; timeout 3 vault status'
-
-# 3. Is the active vault service pointing at a real pod?
-kubectl get endpoints -n vault vault-active -o yaml | \
-  grep -E 'addresses|notReadyAddresses' -A2
-
-# 4. What do standby logs say?
-kubectl logs -n vault vault-0 -c vault --tail=40 | grep -iE 'msgpack|decode|rpc'
-```
-
-If (2) hangs and (4) shows repeated msgpack errors → stuck leader.
-
-## 1. Identify the stuck pod precisely
-
-```sh
-# Find the pod whose vault_core_active would be 1 if it were scraping
-# (currently no telemetry — use logs as proxy until telemetry is enabled).
-for p in vault-0 vault-1 vault-2; do
-  echo "=== $p ==="
-  kubectl logs -n vault $p -c vault --tail=5 2>&1 | head -5
-done | grep -B1 'no recent output'
-```
-
-The pod whose logs have been silent for minutes while the others are
-actively erroring is the stuck leader.
-
-## 2. The safe restart sequence (avoids zombie containers)
-
-**DO NOT** `kubectl delete pod --force --grace-period=0` as the first
-step. On NFS-backed Vault that's the exact move that leaves the kernel
-NFS client corrupted on the node where the stuck pod ran.
-
-Instead:
-
-### 2a. Graceful delete first (30s grace)
-
-```sh
-kubectl delete pod -n vault vault-2
-```
-
-Wait 30 seconds. Most of the time the TERM → SIGKILL path works and the
-new pod schedules cleanly. The remaining leaders re-elect and the external
-endpoint recovers.
-
-### 2b. If the pod is Terminating after 60s, find the stuck process
-
-```sh
-NODE=$(kubectl get pod -n vault vault-2-<suffix> -o jsonpath='{.spec.nodeName}')
-POD_UID=$(kubectl get pod -n vault vault-2-<suffix> -o jsonpath='{.metadata.uid}')
-
-ssh $NODE "sudo ps auxf | grep -A2 $POD_UID | head -20"
-# Look for: mount.nfs (D-state), vault (Z-state), or the sh wrapper in do_wait
-```
-
-### 2c. Unmount stale NFS before force-deleting
-
-If the old pod's NFS mount is still present, lazy-unmount it FIRST so
-the kernel can release NFS session state cleanly:
-
-```sh
-ssh $NODE "sudo mount | grep $POD_UID | awk '{print \$3}' | xargs -I{} sudo umount -l {}"
-```
-
-Verify no mount.nfs processes are in D-state on the node:
-
-```sh
-ssh $NODE "ps -eo state,pid,comm | grep '^D' | head -5"
-```
-
-### 2d. Only NOW force-delete if needed
-
-```sh
-kubectl delete pod -n vault vault-2-<suffix> --force --grace-period=0
-```
-
-## 3. Recovery when the node is already stuck
-
-If you force-deleted before reading this runbook and NFS is now broken
-on the node:
-
-**Diagnostic — confirm NFS client state is corrupted:**
-
-```sh
-NODE=k8s-node2   # node where the force-delete happened
-ssh $NODE "sudo mkdir -p /tmp/nfstest && sudo timeout 30 \
-  mount -t nfs 192.168.1.127:/srv/nfs /tmp/nfstest && echo MOUNT_OK"
-```
-
-If the mount times out at 30-110s, kernel NFS client state is stuck.
-No userspace recovery exists — only a VM reboot clears it.
-
-**Workaround before rebooting**: mounting with `nfsvers=4.1` succeeds
-on broken nodes (the corruption is NFSv4.2 session-state specific).
-This is useful for diagnostic mounts, but does NOT fix CSI pods —
-their mount options come from the `nfs-proxmox` StorageClass and can't
-be overridden per-pod.
-
-**Reboot the affected node VM:**
-
-```sh
-# Find PVE VM ID — nodes numbered 201-204 for k8s-node1..4
-ssh root@192.168.1.127 "qm reset 20<N>"
-
-# If qm reset leaves the VM PID unchanged (it didn't actually reboot),
-# use qm stop/start:
-ssh root@192.168.1.127 "qm stop 20<N> && qm start 20<N>"
-```
-
-Wait for the node to become Ready (`kubectl get node k8s-node<N> -w`)
-and CSI driver to register (`kubectl get pods -n nfs-csi -o wide`).
-
-**Gotcha — `qm reset` can be a no-op.** On the 2026-04-22 incident,
-`qm reset 201` returned exit 0 but did NOT restart the VM (same QEMU PID
-before and after). `qm status` reported "running" throughout. Always
-verify by checking the QEMU PID or VM uptime post-reset. If uptime is
-unchanged, escalate to `qm stop && qm start`.
-
-**Gotcha — check boot order before stop/start.** Long-running VMs
-(630+ day uptime) may have stale `bootdisk:` config that's been hidden
-by never rebooting. On 2026-04-22, k8s-node1's config had `bootdisk:
-scsi0` but the actual OS disk was on `scsi1`, so the first boot after
-stop attempted iPXE and failed. Before stopping, verify:
-
-```sh
-ssh root@192.168.1.127 "grep -E 'boot|scsi[0-9]+:' /etc/pve/qemu-server/20<N>.conf"
-```
-
-If `bootdisk` references a disk ID that doesn't exist, fix it first
-with `qm set 20<N> --boot "order=scsi<ID>"` (use the ID of the main
-OS disk).
-
-## 4. Prevent re-infection — the chown loop
-
-After the node comes back, the vault pod's PV chown walk can still
-peg kubelet. The durable fix is in `stacks/vault/main.tf`:
-
-```hcl
-statefulSet = {
-  securityContext = {
-    pod = {
-      fsGroupChangePolicy = "OnRootMismatch"
-    }
-  }
-}
-```
-
-This was applied in commit `2f1f9107` (2026-04-22). If you find
-yourself editing this in a kubectl patch for live recovery, follow
-up with a Terraform apply the same session — leaving the cluster
-ahead of Terraform state is technical debt that re-triggers on the
-next apply.
-
-## 5. Verify end-to-end
-
-```sh
-# External endpoint — the user-facing health check
-curl -sk -o /dev/null -w "%{http_code}\n" https://vault.viktorbarzin.me/v1/sys/health
-# expect: 200
-
-# Raft peers (needs VAULT_TOKEN with operator capability)
-kubectl exec -n vault vault-0 -c vault -- vault operator raft list-peers
-
-# All pods 2/2
-kubectl get pods -n vault -l app.kubernetes.io/name=vault -o wide
-
-# No alerts fired (once VaultRaftLeaderStuck + VaultHAStatusUnavailable are live)
-curl -s https://alertmanager.viktorbarzin.me/api/v2/alerts | \
-  jq '.[] | select(.labels.alertname | test("Vault"))'
-```
-
-## Known limitations
-
-- **No alert for stuck leaders yet.** `VaultRaftLeaderStuck` and
-  `VaultHAStatusUnavailable` require Vault telemetry enabled
-  (`telemetry { unauthenticated_metrics_access = true }`) and a
-  scrape job. Alerts are defined in `prometheus_chart_values.tpl`
-  but stay silent until telemetry lands — tracked as a beads task.
-- **Vault on NFS violates the documented rule.** `infra/.claude/CLAUDE.md`
-  says critical services must use `proxmox-lvm-encrypted`. The
-  `dataStorage`/`auditStorage` still use `nfs-proxmox`. Migration
-  tracked as an epic-level beads task.
diff --git a/docs/runbooks/woodpecker-onboard-forgejo-repo.md b/docs/runbooks/woodpecker-onboard-forgejo-repo.md
deleted file mode 100644
index 0a4de682..00000000
--- a/docs/runbooks/woodpecker-onboard-forgejo-repo.md
+++ /dev/null
@@ -1,73 +0,0 @@
-# Runbook: Onboarding a new Forgejo repo to Woodpecker
-
-Last updated: 2026-05-07
-
-When you create a new repo on `forgejo.viktorbarzin.me`, Woodpecker
-does NOT auto-discover it via the cluster's existing OAuth session.
-The `forgejo` user inside Woodpecker (Forgejo-OAuth'd) needs to:
-
-1. Open `https://ci.viktorbarzin.me/` in a browser.
-2. Log in via Forgejo OAuth (the "Sign in with Forgejo" button).
-3. Click "Add Repository" — your new repo should appear.
-4. Click the toggle to activate it. Woodpecker will:
-   - Add a webhook on the Forgejo repo (push, PR, release events).
-   - Register the repo's `forge_remote_id` in its DB so subsequent
-     hooks deserialize correctly.
-5. Push a commit (or hit "Run pipeline" in Woodpecker UI) — first
-   build fires.
-
-## Why API-only doesn't work
-
-The webhook URL contains a JWT signed with a per-server key that's
-stored in the DB and only accessible at OAuth-flow time. POST'ing
-`/api/repos` as the admin (`ViktorBarzin` GitHub user) returns 500
-because the lookup queries forge-side OAuth state for THAT user,
-which doesn't exist for the Forgejo `viktor` user. We confirmed:
-
-- Direct `POST /api/repos?forge_remote_id=N` → HTTP 500 server-side.
-- Generating a JWT with the agent secret → "token is unverifiable"
-  on hook delivery (the signing key is repo-specific, not the
-  global agent secret).
-
-There's no admin endpoint that side-steps the OAuth flow.
-
-## Bootstrap when UI access isn't available
-
-If you absolutely need to bootstrap a new image without UI access
-(e.g., during an outage), the workaround is:
-
-1. Build locally:
-   ```bash
-   docker build -t forgejo.viktorbarzin.me/viktor/<name>:<tag> /path/to/source
-   docker push forgejo.viktorbarzin.me/viktor/<name>:<tag>
-   ```
-2. Or pull from another already-built source and retag:
-   ```bash
-   docker pull viktorbarzin/<name>:<tag>          # DockerHub
-   docker tag  viktorbarzin/<name>:<tag>     forgejo.viktorbarzin.me/viktor/<name>:<tag>
-   docker push forgejo.viktorbarzin.me/viktor/<name>:<tag>
-   ```
-3. Flip the cluster `image=` reference and restart deployments.
-
-Document the bootstrap in the relevant stack so future maintainers
-know the image was put there by hand. After Woodpecker UI onboarding,
-the next pipeline run replaces the bootstrap image with a CI-built one.
-
-## Repos onboarded in flight 2026-05-07
-
-These were created during the forgejo-registry-consolidation but the
-UI step above hasn't been done yet — their `.woodpecker.yml` /
-`.woodpecker/build.yml` exists on Forgejo but no pipeline fires:
-
-- `viktor/broker-sync` — image bootstrapped via DockerHub (see
-  `infra/stacks/wealthfolio/main.tf` comment).
-- `viktor/fire-planner` — image bootstrapped via local docker build.
-- `viktor/hmrc-sync`
-- `viktor/freedify`
-- `viktor/claude-agent-service`
-- `viktor/beadboard` — image bootstrapped via local docker build.
-- `viktor/claude-memory-mcp`
-
-Walk through each in the Woodpecker UI to enable. Pipelines for
-already-onboarded repos (payslip-ingest, job-hunter, infra) fired
-correctly after the v3.13 → v3.14 upgrade.
diff --git a/modules/docker-registry/docker-compose.yml b/modules/docker-registry/docker-compose.yml
index 2a2b88c4..3f3537b6 100644
--- a/modules/docker-registry/docker-compose.yml
+++ b/modules/docker-registry/docker-compose.yml
@@ -3,12 +3,8 @@ networks:
     driver: bridge
 
 services:
-  # registry:2 is pinned after the 2026-04-13 + 2026-04-19 orphan-index incidents.
-  # Floating tags were swapping to regressed versions between GC runs. Upgrade
-  # path: bump all six registry-* services in lockstep and bounce via
-  # `systemctl restart docker-compose-registry.service`.
   registry-dockerhub:
-    image: registry:2.8.3
+    image: registry:2
     container_name: registry-dockerhub
     restart: always
     volumes:
@@ -26,7 +22,7 @@ services:
       start_period: 10s
 
   registry-ghcr:
-    image: registry:2.8.3
+    image: registry:2
     container_name: registry-ghcr
     restart: always
     volumes:
@@ -42,7 +38,7 @@ services:
       start_period: 10s
 
   registry-quay:
-    image: registry:2.8.3
+    image: registry:2
     container_name: registry-quay
     restart: always
     volumes:
@@ -58,7 +54,7 @@ services:
       start_period: 10s
 
   registry-k8s:
-    image: registry:2.8.3
+    image: registry:2
     container_name: registry-k8s
     restart: always
     volumes:
@@ -74,7 +70,7 @@ services:
       start_period: 10s
 
   registry-kyverno:
-    image: registry:2.8.3
+    image: registry:2
     container_name: registry-kyverno
     restart: always
     volumes:
@@ -89,26 +85,35 @@ services:
       retries: 3
       start_period: 10s
 
-  # registry-private decommissioned in Phase 4 of
-  # forgejo-registry-consolidation 2026-05-07 — image migration completed,
-  # cluster flipped to forgejo.viktorbarzin.me/viktor/<image>. The remaining
-  # five services on this VM are pull-through caches for upstream registries.
-  # After 1 week of no incidents, `rm -rf /opt/registry/data/private/` on the
-  # VM frees ~2.6 GB. The tarball break-glass under
-  # /opt/registry/data/private/_breakglass/ stays — it's how we recover
-  # infra-ci if Forgejo ever goes fully down.
+  registry-private:
+    image: registry:2
+    container_name: registry-private
+    restart: always
+    volumes:
+      - /opt/registry/data/private:/var/lib/registry
+      - /opt/registry/config-private.yml:/etc/docker/registry/config.yml:ro
+      - /opt/registry/htpasswd:/auth/htpasswd:ro
+    networks:
+      - registry
+    healthcheck:
+      # 401 is expected (auth required) — any HTTP response means the registry is healthy
+      test: ["CMD", "sh", "-c", "wget -qS -O /dev/null http://127.0.0.1:5000/v2/ 2>&1 | grep -q 'HTTP/'"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+      start_period: 10s
 
   nginx:
     image: nginx:alpine
     container_name: registry-nginx
     restart: always
-    # 5050 dropped Phase 4 of forgejo-registry-consolidation 2026-05-07.
     ports:
       - "5000:5000"
       - "5010:5010"
       - "5020:5020"
       - "5030:5030"
       - "5040:5040"
+      - "5050:5050"
     volumes:
       - /opt/registry/nginx.conf:/etc/nginx/nginx.conf:ro
       - /opt/registry/tls:/etc/nginx/tls:ro
@@ -126,6 +131,8 @@ services:
         condition: service_healthy
       registry-kyverno:
         condition: service_healthy
+      registry-private:
+        condition: service_healthy
     healthcheck:
       test: ["CMD", "sh", "-c", "wget -qO- http://127.0.0.1:5000/v2/ >/dev/null 2>&1"]
       interval: 30s
diff --git a/modules/docker-registry/fix-broken-blobs.sh b/modules/docker-registry/fix-broken-blobs.sh
index dfc21a22..84d35bdb 100644
--- a/modules/docker-registry/fix-broken-blobs.sh
+++ b/modules/docker-registry/fix-broken-blobs.sh
@@ -1,33 +1,25 @@
 #!/usr/bin/env python3
-"""Registry integrity scanner — two classes of brokenness.
+"""Finds and removes layer links that point to non-existent blobs.
 
-1. Orphaned layer links: the cleanup-tags.sh + garbage-collect cycle can delete
-   blob data while leaving _layers/ link files intact. The registry then returns
-   HTTP 200 with 0 bytes for those layers (it finds the link, trusts the blob
-   exists, but the data is gone). Containerd sees "unexpected EOF".
-   Action: delete the orphan link so the next pull re-fetches cleanly.
+When the cleanup-tags.sh + garbage-collect cycle runs, it can delete blob data
+while leaving _layers/ link files intact. The registry then returns HTTP 200
+with 0 bytes for those layers (it finds the link, trusts the blob exists, but
+the data is gone). This causes containerd to fail with "unexpected EOF".
 
-2. Orphaned OCI-index children: an image index (multi-platform manifest list)
-   references child manifests by digest. If a child's blob has been deleted —
-   by a cleanup-tags.sh tag rmtree followed by garbage-collect walking the
-   children wrong (distribution/distribution#3324 class), or by an incomplete
-   `buildx --push` whose partial blob was later purged by `uploadpurging` —
-   the index survives but pulls fail with `manifest unknown`.
-   Action: log loudly. Deleting an index is a conscious decision (the image
-   was published; removing it breaks downstream consumers), so we surface
-   the problem and leave repair to a human or to the rebuild runbook.
+This script walks all repositories, checks each layer link against the actual
+blobs directory, and removes any orphaned links. On next pull, the registry
+will re-fetch the missing blobs from the upstream registry.
 
-Run after garbage-collect (Sunday 03:30) and daily (Mon-Sat 02:30).
+Run after garbage-collect (e.g., 3:15 AM Sunday) or daily.
 """
 
 import argparse
-import json
 import os
 import sys
 
 sys.stdout.reconfigure(line_buffering=True)
 
-parser = argparse.ArgumentParser(description="Scan registry for orphaned blobs and indexes")
+parser = argparse.ArgumentParser(description="Remove orphaned registry layer links")
 parser.add_argument("base", nargs="?", default="/opt/registry/data", help="Registry data directory")
 parser.add_argument("--dry-run", action="store_true", help="Report but don't delete")
 args = parser.parse_args()
@@ -35,124 +27,39 @@ args = parser.parse_args()
 BASE = args.base
 DRY_RUN = args.dry_run
 
-INDEX_MEDIA_TYPES = (
-    "application/vnd.oci.image.index.v1+json",
-    "application/vnd.docker.distribution.manifest.list.v2+json",
-)
-
-# Only the private R/W registry is authoritative for every child of every
-# index it stores — we pushed those indexes ourselves, so a missing child is
-# always a bug (the 2026-04-13 + 2026-04-19 failure mode).
-#
-# Pull-through caches (dockerhub, ghcr, quay, k8s, kyverno) are ALLOWED to
-# have missing children: they only fetch what someone actually pulls.
-# Uncached arm64 / arm / attestation variants of a multi-platform index are
-# normal partial state, not orphans. Scanning them generates hundreds of
-# false-positive warnings — noise that would mask the real signal from the
-# private registry. Scan 2 is therefore private-only.
-INDEX_SCAN_REGISTRIES = ("private",)
-
-total_layer_removed = 0
-total_layer_checked = 0
-total_index_scanned = 0
-total_index_orphans = 0
-
-
-def load_manifest_blob(blobs_root, digest_hex):
-    blob_path = os.path.join(blobs_root, digest_hex[:2], digest_hex, "data")
-    if not os.path.isfile(blob_path):
-        return None
-    try:
-        with open(blob_path, "rb") as f:
-            raw = f.read(1024 * 1024)
-    except OSError:
-        return None
-    try:
-        return json.loads(raw)
-    except (json.JSONDecodeError, UnicodeDecodeError):
-        return None
-
+total_removed = 0
+total_checked = 0
 
 for registry_name in sorted(os.listdir(BASE)):
     repos_dir = os.path.join(BASE, registry_name, "docker/registry/v2/repositories")
-    blobs_root = os.path.join(BASE, registry_name, "docker/registry/v2/blobs/sha256")
+    blobs_dir = os.path.join(BASE, registry_name, "docker/registry/v2/blobs")
 
     if not os.path.isdir(repos_dir):
         continue
 
-    for root, _, _ in os.walk(repos_dir):
-        # --- Scan 1: orphan layer links ----------------------------------------
-        if root.endswith("/_layers/sha256"):
-            repo = root.replace(repos_dir + "/", "").replace("/_layers/sha256", "")
+    for root, dirs, files in os.walk(repos_dir):
+        if not root.endswith("/_layers/sha256"):
+            continue
 
-            for digest_dir in os.listdir(root):
-                link_file = os.path.join(root, digest_dir, "link")
-                if not os.path.isfile(link_file):
-                    continue
+        repo = root.replace(repos_dir + "/", "").replace("/_layers/sha256", "")
 
-                total_layer_checked += 1
-                blob_data = os.path.join(blobs_root, digest_dir[:2], digest_dir, "data")
-                if os.path.isfile(blob_data):
-                    continue
+        for digest_dir in os.listdir(root):
+            link_file = os.path.join(root, digest_dir, "link")
+            if not os.path.isfile(link_file):
+                continue
 
+            total_checked += 1
+
+            # Check if the actual blob data exists
+            blob_data = os.path.join(blobs_dir, "sha256", digest_dir[:2], digest_dir, "data")
+            if not os.path.isfile(blob_data):
                 prefix = "[DRY RUN] " if DRY_RUN else ""
                 print(f"{prefix}[{registry_name}/{repo}] removing orphaned layer link: {digest_dir[:12]}...")
                 if not DRY_RUN:
+                    # Remove the entire digest directory (contains the link file)
                     import shutil
                     shutil.rmtree(os.path.join(root, digest_dir))
-                total_layer_removed += 1
-
-        # --- Scan 2: orphan OCI-index children (private registry only) --------
-        elif root.endswith("/_manifests/revisions/sha256") and registry_name in INDEX_SCAN_REGISTRIES:
-            repo = root.replace(repos_dir + "/", "").replace("/_manifests/revisions/sha256", "")
-
-            for digest_dir in os.listdir(root):
-                # Manifest revision entry. Load the blob it points to.
-                manifest = load_manifest_blob(blobs_root, digest_dir)
-                if manifest is None:
-                    continue
-
-                media_type = manifest.get("mediaType", "")
-                if media_type not in INDEX_MEDIA_TYPES:
-                    continue
-
-                total_index_scanned += 1
-
-                # Per-repo revision links — serving a child manifest via the API
-                # requires <repo>/_manifests/revisions/sha256/<child-digest>/link
-                # to exist. The blob data alone is not enough: cleanup-tags.sh
-                # rmtrees tag dirs (which on 2.8.x also orphans the per-repo
-                # revision links for index children), while the upstream blob
-                # data survives in /blobs/. That's exactly the 2026-04-19
-                # failure mode — the probe sees 404 even though the blob file
-                # is still on disk.
-                revisions_root = os.path.dirname(root)  # …/_manifests/revisions
-                for child in manifest.get("manifests", []):
-                    child_digest = child.get("digest", "")
-                    if not child_digest.startswith("sha256:"):
-                        continue
-                    child_hex = child_digest[len("sha256:"):]
-                    child_link = os.path.join(revisions_root, "sha256", child_hex, "link")
-                    if os.path.isfile(child_link):
-                        continue
-
-                    platform = child.get("platform", {})
-                    arch = platform.get("architecture", "?")
-                    os_ = platform.get("os", "?")
-                    child_blob = os.path.join(blobs_root, child_hex[:2], child_hex, "data")
-                    blob_state = "blob-data-present" if os.path.isfile(child_blob) else "blob-data-gone"
-                    print(
-                        f"WARNING [{registry_name}/{repo}] ORPHAN INDEX: "
-                        f"{digest_dir[:12]} references missing child {child_hex[:12]} "
-                        f"({arch}/{os_}, {blob_state}) — registry returns 404, rebuild required"
-                    )
-                    total_index_orphans += 1
-
+                total_removed += 1
 
 mode = "DRY RUN — " if DRY_RUN else ""
-print(f"\n{mode}Layer scan: checked {total_layer_checked} links, removed {total_layer_removed} orphaned.")
-print(f"{mode}Index scan: inspected {total_index_scanned} image indexes, found {total_index_orphans} orphaned children.")
-if total_index_orphans > 0:
-    print(f"\nACTION REQUIRED: {total_index_orphans} orphan index child(ren) detected. "
-          "See docs/runbooks/registry-rebuild-image.md — the affected image must be rebuilt "
-          "(a registry DELETE on an index is a conscious decision, not an automated repair).")
+print(f"\n{mode}Checked {total_checked} layer links, removed {total_removed} orphaned.")
diff --git a/modules/docker-registry/nginx_registry.conf b/modules/docker-registry/nginx_registry.conf
index 46d7c16a..ec433340 100644
--- a/modules/docker-registry/nginx_registry.conf
+++ b/modules/docker-registry/nginx_registry.conf
@@ -33,9 +33,10 @@ http {
         keepalive 32;
     }
 
-    # `upstream private` removed in Phase 4 of forgejo-registry-consolidation
-    # 2026-05-07. The /v2/ private registry is now Forgejo at
-    # forgejo.viktorbarzin.me/viktor/.
+    upstream private {
+        server registry-private:5000;
+        keepalive 32;
+    }
 
     # --- Docker Hub (port 5000) ---
 
@@ -167,8 +168,37 @@ http {
         }
     }
 
-    # --- Private R/W Registry (port 5050) decommissioned Phase 4 2026-05-07 ---
-    # The TLS port 5050 server block previously fronted `registry-private`.
-    # Migrated to Forgejo at forgejo.viktorbarzin.me/viktor/. Both
-    # docker-compose.yml and this nginx config no longer reference port 5050.
+    # --- Private R/W Registry (port 5050, TLS) ---
+
+    server {
+        listen 5050 ssl;
+        server_name registry.viktorbarzin.me;
+
+        ssl_certificate /etc/nginx/tls/fullchain.pem;
+        ssl_certificate_key /etc/nginx/tls/privkey.pem;
+        ssl_protocols TLSv1.2 TLSv1.3;
+
+        client_max_body_size 0;
+        proxy_request_buffering off;
+        proxy_buffering off;
+        chunked_transfer_encoding on;
+
+        location /v2/ {
+            proxy_pass http://private;
+            proxy_http_version 1.1;
+            proxy_set_header Host $http_host;
+            proxy_set_header Connection "";
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+            proxy_set_header X-Forwarded-Proto $scheme;
+
+            proxy_read_timeout 900;
+            proxy_send_timeout 900;
+        }
+
+        location / {
+            return 200 'ok';
+            add_header Content-Type text/plain;
+        }
+    }
 }
diff --git a/modules/kubernetes/ingress_factory/main.tf b/modules/kubernetes/ingress_factory/main.tf
index 1975658e..72367979 100644
--- a/modules/kubernetes/ingress_factory/main.tf
+++ b/modules/kubernetes/ingress_factory/main.tf
@@ -40,9 +40,8 @@ variable "ingress_path" {
   default = ["/"]
 }
 variable "max_body_size" {
-  type        = string
-  default     = null
-  description = "Maximum request body size, e.g. '5g'. null = no limit (Traefik default). When set, a per-ingress Buffering middleware is created and attached."
+  type    = string
+  default = "50m"
 }
 variable "extra_annotations" {
   default = {}
@@ -149,19 +148,10 @@ locals {
   # record (either CF-proxied or direct A/AAAA). Explicit bool overrides.
   effective_external_monitor = var.external_monitor != null ? var.external_monitor : (var.dns_type != "none")
 
-  # Emit the annotation when effective is true (positive signal), or when the
-  # caller explicitly set external_monitor=false (opt-out). When the caller
-  # leaves it null AND dns_type="none", emit nothing — the sync script's
-  # default opt-in (any *.viktorbarzin.me ingress) keeps monitoring services
-  # that are publicly reachable via routes we don't manage here (e.g.
-  # helm-provisioned ingresses, services behind cloudflared tunnel with DNS
-  # set elsewhere).
   external_monitor_annotations = local.effective_external_monitor ? merge(
     { "uptime.viktorbarzin.me/external-monitor" = "true" },
     var.external_monitor_name != null ? { "uptime.viktorbarzin.me/external-monitor-name" = var.external_monitor_name } : {},
-    ) : (var.external_monitor == false ?
-    { "uptime.viktorbarzin.me/external-monitor" = "false" } : {}
-  )
+  ) : {}
 
   ns_to_group = {
     monitoring      = "Infrastructure"
@@ -204,17 +194,6 @@ locals {
     "gethomepage.dev/href"    = "https://${local.effective_host}"
     "gethomepage.dev/icon"    = "${replace(var.name, "-", "")}.png"
   } : {}
-
-  # Parse "5g"/"50m"/"1024k"/"42" into bytes. Traefik's Buffering middleware
-  # takes maxRequestBodyBytes as an integer. Empty unit = bytes.
-  body_size_match = var.max_body_size == null ? null : regex("^([0-9]+)([kmgKMG]?)$", var.max_body_size)
-  body_size_unit_multiplier = var.max_body_size == null ? 0 : (
-    lower(local.body_size_match[1]) == "g" ? 1073741824 :
-    lower(local.body_size_match[1]) == "m" ? 1048576 :
-    lower(local.body_size_match[1]) == "k" ? 1024 :
-    1
-  )
-  max_body_size_bytes = var.max_body_size == null ? 0 : tonumber(local.body_size_match[0]) * local.body_size_unit_multiplier
 }
 
 
@@ -257,7 +236,6 @@ resource "kubernetes_ingress_v1" "proxied-ingress" {
         var.protected ? "traefik-authentik-forward-auth@kubernetescrd" : null,
         var.allow_local_access_only ? "traefik-local-only@kubernetescrd" : null,
         var.custom_content_security_policy != null ? "${var.namespace}-custom-csp-${var.name}@kubernetescrd" : null,
-        var.max_body_size != null ? "${var.namespace}-buffering-${var.name}@kubernetescrd" : null,
       ], var.extra_middlewares)))
       "traefik.ingress.kubernetes.io/router.entrypoints" = "websecure"
       }, local.homepage_defaults, var.extra_annotations,
@@ -315,27 +293,6 @@ resource "kubernetes_manifest" "custom_csp" {
   }
 }
 
-# Buffering middleware - created per service when max_body_size is set.
-# Traefik default is unlimited; setting maxRequestBodyBytes enforces a limit
-# (e.g. Forgejo container pushes can ship multi-GB layer blobs).
-resource "kubernetes_manifest" "buffering" {
-  count = var.max_body_size != null ? 1 : 0
-
-  manifest = {
-    apiVersion = "traefik.io/v1alpha1"
-    kind       = "Middleware"
-    metadata = {
-      name      = "buffering-${var.name}"
-      namespace = var.namespace
-    }
-    spec = {
-      buffering = {
-        maxRequestBodyBytes = local.max_body_size_bytes
-      }
-    }
-  }
-}
-
 # Cloudflare DNS records — created automatically when dns_type is set.
 # Proxied: CNAME to Cloudflare tunnel. Non-proxied: A + AAAA to public IP.
 resource "cloudflare_record" "proxied" {
diff --git a/modules/kubernetes/setup_tls_secret/main.tf b/modules/kubernetes/setup_tls_secret/main.tf
index 85c06bc8..c03cc13c 100644
--- a/modules/kubernetes/setup_tls_secret/main.tf
+++ b/modules/kubernetes/setup_tls_secret/main.tf
@@ -18,8 +18,4 @@ resource "kubernetes_secret" "tls_secret" {
     "tls.key" = var.tls_key == "" ? file("${path.root}/secrets/privkey.pem") : var.tls_key
   }
   type = "kubernetes.io/tls"
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: the sync-tls-secret policy stamps generate.kyverno.io/* + app.kubernetes.io/managed-by labels on this generated Secret
-    ignore_changes = [metadata[0].labels]
-  }
 }
diff --git a/scripts/cluster_healthcheck.sh b/scripts/cluster_healthcheck.sh
index b5237378..8a65839a 100755
--- a/scripts/cluster_healthcheck.sh
+++ b/scripts/cluster_healthcheck.sh
@@ -1,7 +1,7 @@
 #!/usr/bin/env bash
 
 # Cluster health check script.
-# Runs 42 diagnostic checks against the Kubernetes cluster and prints
+# Runs 24 diagnostic checks against the Kubernetes cluster and prints
 # a colour-coded report with PASS / WARN / FAIL for each section.
 #
 # Usage: ./scripts/cluster_healthcheck.sh [--fix] [--quiet|-q] [--json] [--kubeconfig <path>]
@@ -26,7 +26,7 @@ JSON=false
 KUBECONFIG_PATH="$(pwd)/config"
 KUBECTL=""
 JSON_RESULTS=()
-TOTAL_CHECKS=42
+TOTAL_CHECKS=30
 
 # --- Helpers ---
 info()  { [[ "$JSON" == true ]] && return 0; echo -e "${BLUE}[INFO]${NC} $*"; }
@@ -71,16 +71,14 @@ parse_args() {
     while [[ $# -gt 0 ]]; do
         case "$1" in
             --fix)        FIX=true; shift ;;
-            --no-fix)     FIX=false; shift ;;
             --quiet|-q)   QUIET=true; shift ;;
             --json)       JSON=true; shift ;;
             --kubeconfig) KUBECONFIG_PATH="$2"; shift 2 ;;
             -h|--help)
-                echo "Usage: $0 [--fix|--no-fix] [--quiet|-q] [--json] [--kubeconfig <path>]"
+                echo "Usage: $0 [--fix] [--quiet|-q] [--json] [--kubeconfig <path>]"
                 echo ""
                 echo "Flags:"
                 echo "  --fix              Auto-remediate safe issues (delete evicted pods)"
-                echo "  --no-fix           Disable auto-remediation (default)"
                 echo "  --quiet, -q        Only show WARN and FAIL sections"
                 echo "  --json             Machine-readable JSON output"
                 echo "  --kubeconfig PATH  Override kubeconfig (default: \$(pwd)/config)"
@@ -1242,17 +1240,9 @@ check_overcommit() {
 HA_CACHE_DIR=""
 
 ha_sofia_available() {
-    if [[ -z "${HOME_ASSISTANT_SOFIA_URL:-}" ]]; then
-        export HOME_ASSISTANT_SOFIA_URL="https://ha-sofia.viktorbarzin.me"
+    if [[ -z "${HOME_ASSISTANT_SOFIA_URL:-}" ]] || [[ -z "${HOME_ASSISTANT_SOFIA_TOKEN:-}" ]]; then
+        return 1
     fi
-    if [[ -z "${HOME_ASSISTANT_SOFIA_TOKEN:-}" ]]; then
-        if command -v vault >/dev/null 2>&1 && [[ -n "${VAULT_TOKEN:-}${HOME:-}" ]]; then
-            local t
-            t=$(vault kv get -field=haos_api_token secret/viktor 2>/dev/null || true)
-            [[ -n "$t" ]] && export HOME_ASSISTANT_SOFIA_TOKEN="$t"
-        fi
-    fi
-    [[ -n "${HOME_ASSISTANT_SOFIA_TOKEN:-}" ]] || return 1
     return 0
 }
 
@@ -1760,616 +1750,6 @@ else:
     json_add "hardware_exporters" "$status" "${detail:-All healthy}"
 }
 
-# Returns 0 if cert-manager CRDs are installed, 1 otherwise.
-cert_manager_installed() {
-    $KUBECTL get crd certificates.cert-manager.io -o name >/dev/null 2>&1
-}
-
-# --- 31. cert-manager: Certificate Readiness ---
-check_cert_manager_certificates() {
-    section 31 "cert-manager — Certificate Readiness"
-    local certs not_ready detail="" status="PASS"
-
-    if ! cert_manager_installed; then
-        pass "cert-manager not installed — N/A"
-        json_add "certmanager_certificates" "PASS" "N/A (cert-manager not installed)"
-        return 0
-    fi
-
-    certs=$($KUBECTL get certificates.cert-manager.io -A -o json 2>/dev/null) || {
-        warn "cert-manager CRDs installed but API query failed"
-        json_add "certmanager_certificates" "WARN" "API query failed"
-        return 0
-    }
-
-    not_ready=$(echo "$certs" | python3 -c '
-import json, sys
-data = json.load(sys.stdin)
-for item in data.get("items", []):
-    ns = item["metadata"]["namespace"]
-    name = item["metadata"]["name"]
-    conds = item.get("status", {}).get("conditions", [])
-    ready = next((c for c in conds if c.get("type") == "Ready"), None)
-    if not ready or ready.get("status") != "True":
-        reason = ready.get("reason", "NoCondition") if ready else "NoCondition"
-        print(f"{ns}/{name}:{reason}")
-' 2>/dev/null) || true
-
-    if [[ -z "$not_ready" ]]; then
-        pass "All Certificate CRs Ready"
-        json_add "certmanager_certificates" "PASS" "All Ready"
-    else
-        [[ "$QUIET" == true ]] && section_always 31 "cert-manager — Certificate Readiness"
-        local count
-        count=$(count_lines "$not_ready")
-        while IFS= read -r line; do
-            fail "Certificate not Ready: $line"
-            detail+="$line; "
-        done <<< "$not_ready"
-        status="FAIL"
-        json_add "certmanager_certificates" "$status" "$count not Ready: $detail"
-    fi
-}
-
-# --- 32. cert-manager: Certificate Expiry (<14d) ---
-check_cert_manager_expiry() {
-    section 32 "cert-manager — Certificate Expiry (<14d)"
-    local certs expiring detail="" status="PASS"
-
-    if ! cert_manager_installed; then
-        pass "cert-manager not installed — N/A"
-        json_add "certmanager_expiry" "PASS" "N/A (cert-manager not installed)"
-        return 0
-    fi
-
-    certs=$($KUBECTL get certificates.cert-manager.io -A -o json 2>/dev/null) || {
-        warn "cert-manager CRDs installed but API query failed"
-        json_add "certmanager_expiry" "WARN" "API query failed"
-        return 0
-    }
-
-    expiring=$(echo "$certs" | python3 -c '
-import json, sys
-from datetime import datetime, timezone, timedelta
-data = json.load(sys.stdin)
-cutoff = datetime.now(timezone.utc) + timedelta(days=14)
-for item in data.get("items", []):
-    ns = item["metadata"]["namespace"]
-    name = item["metadata"]["name"]
-    not_after = item.get("status", {}).get("notAfter")
-    if not not_after:
-        continue
-    try:
-        expiry = datetime.fromisoformat(not_after.replace("Z", "+00:00"))
-        if expiry < cutoff:
-            days = (expiry - datetime.now(timezone.utc)).days
-            level = "FAIL" if days <= 3 else "WARN"
-            print(f"{level}:{ns}/{name}:{days}")
-    except ValueError:
-        pass
-' 2>/dev/null) || true
-
-    if [[ -z "$expiring" ]]; then
-        pass "No Certificate CRs expiring within 14 days"
-        json_add "certmanager_expiry" "PASS" "None expiring <14d"
-    else
-        [[ "$QUIET" == true ]] && section_always 32 "cert-manager — Certificate Expiry (<14d)"
-        while IFS= read -r line; do
-            local level cert_name days
-            level=$(echo "$line" | cut -d: -f1)
-            cert_name=$(echo "$line" | cut -d: -f2)
-            days=$(echo "$line" | cut -d: -f3)
-            if [[ "$level" == "FAIL" ]]; then
-                fail "Certificate $cert_name expires in ${days}d"
-                status="FAIL"
-            else
-                warn "Certificate $cert_name expires in ${days}d"
-                [[ "$status" != "FAIL" ]] && status="WARN"
-            fi
-            detail+="$cert_name=${days}d; "
-        done <<< "$expiring"
-        json_add "certmanager_expiry" "$status" "$detail"
-    fi
-}
-
-# --- 33. cert-manager: Failed CertificateRequests ---
-check_cert_manager_requests() {
-    section 33 "cert-manager — Failed CertificateRequests"
-    local requests failed detail="" status="PASS"
-
-    if ! cert_manager_installed; then
-        pass "cert-manager not installed — N/A"
-        json_add "certmanager_requests" "PASS" "N/A (cert-manager not installed)"
-        return 0
-    fi
-
-    requests=$($KUBECTL get certificaterequests.cert-manager.io -A -o json 2>/dev/null) || {
-        warn "cert-manager CRDs installed but API query failed"
-        json_add "certmanager_requests" "WARN" "API query failed"
-        return 0
-    }
-
-    failed=$(echo "$requests" | python3 -c '
-import json, sys
-data = json.load(sys.stdin)
-for item in data.get("items", []):
-    ns = item["metadata"]["namespace"]
-    name = item["metadata"]["name"]
-    conds = item.get("status", {}).get("conditions", [])
-    for c in conds:
-        if c.get("type") == "Ready" and c.get("status") == "False" and c.get("reason") == "Failed":
-            print(f"{ns}/{name}:{c.get(\"message\", \"\")[:80]}")
-            break
-' 2>/dev/null) || true
-
-    if [[ -z "$failed" ]]; then
-        pass "No failed CertificateRequests"
-        json_add "certmanager_requests" "PASS" "None failed"
-    else
-        [[ "$QUIET" == true ]] && section_always 33 "cert-manager — Failed CertificateRequests"
-        local count
-        count=$(count_lines "$failed")
-        while IFS= read -r line; do
-            fail "CertificateRequest failed: $line"
-            detail+="$line; "
-        done <<< "$failed"
-        status="FAIL"
-        json_add "certmanager_requests" "$status" "$count failed: $detail"
-    fi
-}
-
-# --- 34. Backup Freshness: Per-DB Dumps ---
-check_backup_per_db() {
-    section 34 "Backup Freshness — Per-DB Dumps"
-    local detail="" had_issue=false status="PASS"
-
-    # Freshness threshold: 25 hours
-    local now_epoch max_age_sec
-    now_epoch=$(date -u +%s)
-    max_age_sec=$((25 * 3600))
-
-    _check_cronjob_fresh() {
-        local ns="$1" cj="$2" label="$3"
-        local ts age_sec
-        ts=$($KUBECTL get cronjob -n "$ns" "$cj" -o jsonpath='{.status.lastSuccessfulTime}' 2>/dev/null || true)
-        if [[ -z "$ts" ]]; then
-            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 34 "Backup Freshness — Per-DB Dumps"
-            fail "$label: CronJob $ns/$cj has no lastSuccessfulTime"
-            detail+="${label}=no-success; "
-            had_issue=true
-            status="FAIL"
-            return 0
-        fi
-        local ts_epoch
-        ts_epoch=$(date -u -d "$ts" +%s 2>/dev/null || echo 0)
-        age_sec=$((now_epoch - ts_epoch))
-        if [[ "$age_sec" -gt "$max_age_sec" ]]; then
-            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 34 "Backup Freshness — Per-DB Dumps"
-            local age_h=$((age_sec / 3600))
-            fail "$label: last success ${age_h}h ago (>25h)"
-            detail+="${label}=${age_h}h; "
-            had_issue=true
-            status="FAIL"
-        else
-            local age_h=$((age_sec / 3600))
-            detail+="${label}=${age_h}h; "
-        fi
-    }
-
-    _check_cronjob_fresh dbaas mysql-backup-per-db mysql
-    _check_cronjob_fresh dbaas postgresql-backup-per-db pg
-
-    [[ "$had_issue" == false ]] && pass "Per-DB dumps fresh — $detail"
-    json_add "backup_per_db" "$status" "$detail"
-}
-
-# --- 35. Backup Freshness: Offsite Sync ---
-check_backup_offsite_sync() {
-    section 35 "Backup Freshness — Offsite Sync"
-    local metrics detail="" status="PASS"
-
-    metrics=$($KUBECTL exec -n monitoring deploy/prometheus-server -- \
-        wget -qO- "http://prometheus-prometheus-pushgateway:9091/metrics" 2>/dev/null || true)
-
-    if [[ -z "$metrics" ]]; then
-        [[ "$QUIET" == true ]] && section_always 35 "Backup Freshness — Offsite Sync"
-        warn "Cannot query Pushgateway"
-        json_add "backup_offsite_sync" "WARN" "Pushgateway unreachable"
-        return 0
-    fi
-
-    local age_hours
-    age_hours=$(echo "$metrics" | python3 -c '
-import sys, re, time
-ts = None
-for line in sys.stdin:
-    if line.startswith("#"):
-        continue
-    if "backup_last_success_timestamp" in line and "offsite-backup-sync" in line:
-        m = re.search(r"\s([0-9.eE+]+)\s*$", line.strip())
-        if m:
-            try:
-                ts = float(m.group(1))
-                break
-            except ValueError:
-                pass
-if ts is None:
-    print("missing")
-else:
-    age = (time.time() - ts) / 3600
-    print(f"{age:.1f}")
-' 2>/dev/null) || age_hours="error"
-
-    if [[ "$age_hours" == "missing" ]]; then
-        [[ "$QUIET" == true ]] && section_always 35 "Backup Freshness — Offsite Sync"
-        fail "backup_last_success_timestamp metric missing for offsite-backup-sync"
-        json_add "backup_offsite_sync" "FAIL" "Metric missing"
-    elif [[ "$age_hours" == "error" ]]; then
-        [[ "$QUIET" == true ]] && section_always 35 "Backup Freshness — Offsite Sync"
-        warn "Failed to parse Pushgateway metric"
-        json_add "backup_offsite_sync" "WARN" "Parse error"
-    else
-        local age_int
-        age_int=$(printf '%.0f' "$age_hours")
-        if [[ "$age_int" -gt 27 ]]; then
-            [[ "$QUIET" == true ]] && section_always 35 "Backup Freshness — Offsite Sync"
-            fail "Offsite sync last success ${age_hours}h ago (>27h)"
-            status="FAIL"
-        else
-            pass "Offsite sync last success ${age_hours}h ago"
-        fi
-        detail="age=${age_hours}h"
-        json_add "backup_offsite_sync" "$status" "$detail"
-    fi
-}
-
-# --- 36. Backup Freshness: LVM PVC Snapshots ---
-check_backup_lvm_snapshots() {
-    section 36 "Backup Freshness — LVM PVC Snapshots"
-    local snap_output detail="" status="PASS"
-
-    snap_output=$(ssh -o BatchMode=yes -o ConnectTimeout=5 -o StrictHostKeyChecking=no \
-        root@192.168.1.127 "lvs -o lv_name,lv_time --noheadings 2>/dev/null | grep _snap" 2>/dev/null || true)
-
-    if [[ -z "$snap_output" ]]; then
-        [[ "$QUIET" == true ]] && section_always 36 "Backup Freshness — LVM PVC Snapshots"
-        warn "No LVM PVC snapshots found or SSH to 192.168.1.127 failed (BatchMode)"
-        json_add "backup_lvm_snapshots" "WARN" "SSH failed or no snapshots"
-        return 0
-    fi
-
-    local newest_age_hours
-    newest_age_hours=$(echo "$snap_output" | python3 -c '
-import sys, re, time
-from datetime import datetime
-newest = None
-for line in sys.stdin:
-    line = line.strip()
-    if not line:
-        continue
-    parts = line.split(None, 1)
-    if len(parts) < 2:
-        continue
-    date_str = parts[1].strip()
-    # lv_time format: "2026-04-19 03:00:01 +0000" or similar
-    for fmt in ("%Y-%m-%d %H:%M:%S %z", "%Y-%m-%d %H:%M:%S"):
-        try:
-            dt = datetime.strptime(date_str, fmt)
-            ts = dt.timestamp()
-            if newest is None or ts > newest:
-                newest = ts
-            break
-        except ValueError:
-            continue
-if newest is None:
-    print("parse_error")
-else:
-    age = (time.time() - newest) / 3600
-    print(f"{age:.1f}")
-' 2>/dev/null) || newest_age_hours="error"
-
-    if [[ "$newest_age_hours" == "parse_error" || "$newest_age_hours" == "error" ]]; then
-        [[ "$QUIET" == true ]] && section_always 36 "Backup Freshness — LVM PVC Snapshots"
-        warn "Could not parse LVM snapshot timestamps"
-        json_add "backup_lvm_snapshots" "WARN" "Parse error"
-    else
-        local count age_int
-        count=$(count_lines "$snap_output")
-        age_int=$(printf '%.0f' "$newest_age_hours")
-        if [[ "$age_int" -gt 25 ]]; then
-            [[ "$QUIET" == true ]] && section_always 36 "Backup Freshness — LVM PVC Snapshots"
-            fail "Newest LVM snapshot ${newest_age_hours}h old (>25h); $count total"
-            status="FAIL"
-        else
-            pass "LVM snapshots fresh — $count total, newest ${newest_age_hours}h old"
-        fi
-        detail="count=$count newest=${newest_age_hours}h"
-        json_add "backup_lvm_snapshots" "$status" "$detail"
-    fi
-}
-
-# --- 37. Monitoring: Prometheus + Alertmanager ---
-check_monitoring_prom_am() {
-    section 37 "Monitoring — Prometheus + Alertmanager"
-    local detail="" had_issue=false status="PASS"
-
-    # Prometheus /-/ready
-    local prom_ready
-    prom_ready=$($KUBECTL exec -n monitoring deploy/prometheus-server -- \
-        wget -qO- "http://localhost:9090/-/ready" 2>/dev/null || true)
-    if echo "$prom_ready" | grep -qi "ready"; then
-        detail+="prometheus=ready; "
-    else
-        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 37 "Monitoring — Prometheus + Alertmanager"
-        fail "Prometheus /-/ready returned no Ready response"
-        detail+="prometheus=not-ready; "
-        had_issue=true
-        status="FAIL"
-    fi
-
-    # Alertmanager running pod count
-    local am_running
-    am_running=$($KUBECTL get pods -n monitoring --no-headers 2>/dev/null | \
-        grep alertmanager | awk '$3 == "Running"' | wc -l | tr -d ' ')
-    if [[ "$am_running" -gt 0 ]]; then
-        detail+="alertmanager=${am_running} running; "
-    else
-        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 37 "Monitoring — Prometheus + Alertmanager"
-        fail "Alertmanager: 0 Running pods"
-        detail+="alertmanager=none-running; "
-        had_issue=true
-        status="FAIL"
-    fi
-
-    [[ "$had_issue" == false ]] && pass "Prometheus Ready, $am_running Alertmanager pod(s) Running"
-    json_add "monitoring_prom_am" "$status" "$detail"
-}
-
-# --- 38. Monitoring: Vault Sealed Status ---
-check_monitoring_vault() {
-    section 38 "Monitoring — Vault Sealed Status"
-    local output detail="" status="PASS"
-
-    output=$($KUBECTL exec -n vault vault-0 -- \
-        sh -c 'VAULT_ADDR=http://127.0.0.1:8200 vault status' 2>&1 || true)
-
-    if [[ -z "$output" ]]; then
-        [[ "$QUIET" == true ]] && section_always 38 "Monitoring — Vault Sealed Status"
-        fail "Cannot exec vault status on vault-0"
-        json_add "monitoring_vault" "FAIL" "Exec failed"
-        return 0
-    fi
-
-    if echo "$output" | grep -qi "^Sealed[[:space:]]*false"; then
-        pass "Vault unsealed"
-        detail="sealed=false"
-        json_add "monitoring_vault" "PASS" "$detail"
-    elif echo "$output" | grep -qi "^Sealed[[:space:]]*true"; then
-        [[ "$QUIET" == true ]] && section_always 38 "Monitoring — Vault Sealed Status"
-        fail "Vault is SEALED — secrets unavailable"
-        detail="sealed=true"
-        status="FAIL"
-        json_add "monitoring_vault" "$status" "$detail"
-    else
-        [[ "$QUIET" == true ]] && section_always 38 "Monitoring — Vault Sealed Status"
-        warn "Cannot parse vault status output"
-        json_add "monitoring_vault" "WARN" "Parse error"
-    fi
-}
-
-# --- 39. Monitoring: ClusterSecretStore Ready ---
-check_monitoring_css() {
-    section 39 "Monitoring — ClusterSecretStore Ready"
-    local css not_ready detail="" status="PASS"
-
-    css=$($KUBECTL get clustersecretstore -o json 2>/dev/null) || {
-        [[ "$QUIET" == true ]] && section_always 39 "Monitoring — ClusterSecretStore Ready"
-        warn "ClusterSecretStore CRD not installed"
-        json_add "monitoring_css" "WARN" "CRD missing"
-        return 0
-    }
-
-    not_ready=$(echo "$css" | python3 -c '
-import json, sys
-data = json.load(sys.stdin)
-for item in data.get("items", []):
-    name = item["metadata"]["name"]
-    conds = item.get("status", {}).get("conditions", [])
-    ready = next((c for c in conds if c.get("type") == "Ready"), None)
-    if not ready or ready.get("status") != "True":
-        print(f"{name}:{ready.get(\"reason\", \"NoCondition\") if ready else \"NoCondition\"}")
-' 2>/dev/null) || true
-
-    if [[ -z "$not_ready" ]]; then
-        local total
-        total=$(echo "$css" | python3 -c 'import json,sys; print(len(json.load(sys.stdin).get("items",[])))' 2>/dev/null || echo "?")
-        pass "All $total ClusterSecretStores Ready"
-        json_add "monitoring_css" "PASS" "$total Ready"
-    else
-        [[ "$QUIET" == true ]] && section_always 39 "Monitoring — ClusterSecretStore Ready"
-        while IFS= read -r line; do
-            fail "ClusterSecretStore not Ready: $line"
-            detail+="$line; "
-        done <<< "$not_ready"
-        status="FAIL"
-        json_add "monitoring_css" "$status" "$detail"
-    fi
-}
-
-# --- 40. External Reachability: Cloudflared + Authentik Replicas ---
-check_external_replicas() {
-    section 40 "External — Cloudflared + Authentik Replicas"
-    local detail="" had_issue=false status="PASS"
-
-    # Cloudflared
-    local cf_json cf_ready cf_desired
-    cf_json=$($KUBECTL get deployment cloudflared -n cloudflared -o json 2>/dev/null || true)
-    if [[ -z "$cf_json" ]]; then
-        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 40 "External — Cloudflared + Authentik Replicas"
-        fail "Cloudflared deployment not found"
-        detail+="cloudflared=missing; "
-        had_issue=true
-        status="FAIL"
-    else
-        cf_ready=$(echo "$cf_json" | python3 -c 'import json,sys; print(json.load(sys.stdin).get("status",{}).get("readyReplicas",0) or 0)' 2>/dev/null || echo "0")
-        cf_desired=$(echo "$cf_json" | python3 -c 'import json,sys; print(json.load(sys.stdin).get("spec",{}).get("replicas",0) or 0)' 2>/dev/null || echo "0")
-        if [[ "$cf_ready" != "$cf_desired" ]]; then
-            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 40 "External — Cloudflared + Authentik Replicas"
-            fail "Cloudflared: $cf_ready/$cf_desired ready (external access degraded)"
-            detail+="cloudflared=${cf_ready}/${cf_desired}; "
-            had_issue=true
-            status="FAIL"
-        else
-            detail+="cloudflared=${cf_ready}/${cf_desired}; "
-        fi
-    fi
-
-    # Authentik server (Helm chart names the deployment goauthentik-server)
-    local auth_json auth_ready auth_desired
-    auth_json=$($KUBECTL get deployment goauthentik-server -n authentik -o json 2>/dev/null || true)
-    if [[ -z "$auth_json" ]]; then
-        [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 40 "External — Cloudflared + Authentik Replicas"
-        warn "goauthentik-server deployment not found in authentik namespace"
-        detail+="authentik=missing; "
-        had_issue=true
-        [[ "$status" != "FAIL" ]] && status="WARN"
-    else
-        auth_ready=$(echo "$auth_json" | python3 -c 'import json,sys; print(json.load(sys.stdin).get("status",{}).get("readyReplicas",0) or 0)' 2>/dev/null || echo "0")
-        auth_desired=$(echo "$auth_json" | python3 -c 'import json,sys; print(json.load(sys.stdin).get("spec",{}).get("replicas",0) or 0)' 2>/dev/null || echo "0")
-        if [[ "$auth_ready" != "$auth_desired" ]]; then
-            [[ "$had_issue" == false && "$QUIET" == true ]] && section_always 40 "External — Cloudflared + Authentik Replicas"
-            fail "goauthentik-server: $auth_ready/$auth_desired ready (auth degraded)"
-            detail+="authentik=${auth_ready}/${auth_desired}; "
-            had_issue=true
-            status="FAIL"
-        else
-            detail+="authentik=${auth_ready}/${auth_desired}; "
-        fi
-    fi
-
-    [[ "$had_issue" == false ]] && pass "Cloudflared + authentik-server at full replicas ($detail)"
-    json_add "external_replicas" "$status" "$detail"
-}
-
-# --- 41. External Reachability: ExternalAccessDivergence Alert ---
-check_external_divergence() {
-    section 41 "External — ExternalAccessDivergence Alert"
-    local alerts result detail="" status="PASS"
-
-    alerts=$($KUBECTL exec -n monitoring deploy/prometheus-server -- \
-        wget -qO- "http://localhost:9090/api/v1/alerts" 2>/dev/null || true)
-
-    if [[ -z "$alerts" ]]; then
-        [[ "$QUIET" == true ]] && section_always 41 "External — ExternalAccessDivergence Alert"
-        warn "Cannot query Prometheus alerts"
-        json_add "external_divergence" "WARN" "Cannot query"
-        return 0
-    fi
-
-    result=$(echo "$alerts" | python3 -c '
-import json, sys
-try:
-    data = json.load(sys.stdin)
-    alerts = data.get("data", {}).get("alerts", []) if isinstance(data, dict) else data
-    firing = [a for a in alerts
-              if a.get("labels", {}).get("alertname") == "ExternalAccessDivergence"
-              and a.get("state") == "firing"]
-    if firing:
-        hosts = [a.get("labels", {}).get("host") or a.get("labels", {}).get("service") or "?" for a in firing]
-        print(f"{len(firing)}:" + ",".join(hosts))
-    else:
-        print("0:")
-except Exception as e:
-    print(f"error:{e}")
-' 2>/dev/null) || result="error:parse"
-
-    if [[ "$result" == error:* ]]; then
-        [[ "$QUIET" == true ]] && section_always 41 "External — ExternalAccessDivergence Alert"
-        warn "Failed to parse alerts JSON: ${result#error:}"
-        json_add "external_divergence" "WARN" "Parse error"
-        return 0
-    fi
-
-    local count names
-    count=$(echo "$result" | cut -d: -f1)
-    names=$(echo "$result" | cut -d: -f2-)
-
-    if [[ "$count" -eq 0 ]]; then
-        pass "ExternalAccessDivergence not firing"
-        json_add "external_divergence" "PASS" "Not firing"
-    else
-        [[ "$QUIET" == true ]] && section_always 41 "External — ExternalAccessDivergence Alert"
-        fail "ExternalAccessDivergence firing for $count target(s): $names"
-        status="FAIL"
-        detail="$count firing: $names"
-        json_add "external_divergence" "$status" "$detail"
-    fi
-}
-
-# --- 42. External Reachability: Traefik 5xx Rate ---
-check_external_traefik_5xx() {
-    section 42 "External — Traefik 5xx Rate (15m)"
-    local query_result detail="" status="PASS"
-
-    query_result=$($KUBECTL exec -n monitoring deploy/prometheus-server -- \
-        wget -qO- 'http://localhost:9090/api/v1/query?query=topk(10,rate(traefik_service_requests_total{code=~%225..%22}%5B15m%5D))' 2>/dev/null || true)
-
-    if [[ -z "$query_result" ]]; then
-        [[ "$QUIET" == true ]] && section_always 42 "External — Traefik 5xx Rate (15m)"
-        warn "Cannot query Prometheus for traefik 5xx rate"
-        json_add "external_traefik_5xx" "WARN" "Query failed"
-        return 0
-    fi
-
-    local parsed
-    parsed=$(echo "$query_result" | python3 -c '
-import json, sys
-try:
-    data = json.load(sys.stdin)
-    results = data.get("data", {}).get("result", [])
-    hot = [(r.get("metric", {}).get("service", "?"), float(r.get("value", [0, "0"])[1])) for r in results]
-    hot = [(s, v) for s, v in hot if v > 0.01]  # 1% req/s threshold
-    hot.sort(key=lambda x: -x[1])
-    if not hot:
-        print("0:")
-    else:
-        top = [f"{s}={v:.2f}/s" for s, v in hot[:5]]
-        print(f"{len(hot)}:" + "; ".join(top))
-except Exception as e:
-    print(f"error:{e}")
-' 2>/dev/null) || parsed="error:parse"
-
-    if [[ "$parsed" == error:* ]]; then
-        [[ "$QUIET" == true ]] && section_always 42 "External — Traefik 5xx Rate (15m)"
-        warn "Parse failed: ${parsed#error:}"
-        json_add "external_traefik_5xx" "WARN" "Parse error"
-        return 0
-    fi
-
-    local count top
-    count=$(echo "$parsed" | cut -d: -f1)
-    top=$(echo "$parsed" | cut -d: -f2-)
-
-    if [[ "$count" -eq 0 ]]; then
-        pass "No Traefik services with 5xx rate >0.01 req/s (last 15m)"
-        json_add "external_traefik_5xx" "PASS" "None above threshold"
-    else
-        [[ "$QUIET" == true ]] && section_always 42 "External — Traefik 5xx Rate (15m)"
-        # WARN at any 5xx; FAIL if top service >1 req/s
-        local top_rate
-        top_rate=$(echo "$top" | grep -oE '[0-9.]+/s' | head -1 | tr -d '/s')
-        if awk "BEGIN{exit !($top_rate > 1.0)}" 2>/dev/null; then
-            fail "$count Traefik service(s) with elevated 5xx: $top"
-            status="FAIL"
-        else
-            warn "$count Traefik service(s) emitting 5xx: $top"
-            status="WARN"
-        fi
-        detail="$count services: $top"
-        json_add "external_traefik_5xx" "$status" "$detail"
-    fi
-}
-
 # --- Summary ---
 print_summary() {
     if [[ "$JSON" == true ]]; then
@@ -2452,18 +1832,6 @@ main() {
     check_ha_automations
     check_ha_system
     check_hardware_exporters
-    check_cert_manager_certificates
-    check_cert_manager_expiry
-    check_cert_manager_requests
-    check_backup_per_db
-    check_backup_offsite_sync
-    check_backup_lvm_snapshots
-    check_monitoring_prom_am
-    check_monitoring_vault
-    check_monitoring_css
-    check_external_replicas
-    check_external_divergence
-    check_external_traefik_5xx
     print_summary
 
     # Exit code: 2 for failures, 1 for warnings, 0 for clean
diff --git a/scripts/forgejo-migrate-orphan-images.sh b/scripts/forgejo-migrate-orphan-images.sh
deleted file mode 100755
index 2bd77e35..00000000
--- a/scripts/forgejo-migrate-orphan-images.sh
+++ /dev/null
@@ -1,76 +0,0 @@
-#!/usr/bin/env bash
-# One-shot migration of every private image on registry.viktorbarzin.me to
-# Forgejo. Used as a stop-gap when the dual-push CI pipelines aren't
-# producing Forgejo images on their own (Forgejo-Woodpecker forge driver
-# context-deadline-exceeded issue, see bd code-d3y / 2026-05-07).
-#
-# Pulls each image from registry.viktorbarzin.me, retags, pushes to
-# forgejo.viktorbarzin.me/viktor/<name>:<tag> — preserving the blob bytes
-# verbatim so the cluster can flip image= without a rebuild.
-#
-# Run from any host with docker + network reach to BOTH registries. Auth
-# from `docker login` (~/.docker/config.json) — make sure both registries
-# are logged in:
-#   docker login registry.viktorbarzin.me -u viktorbarzin
-#   docker login forgejo.viktorbarzin.me -u viktor   # use viktor PAT, not ci-pusher
-#
-# (ci-pusher CANNOT push to viktor/<image> — Forgejo container packages
-# are scoped to the pushing user. Only viktor's PAT can write to viktor/*.)
-#
-# After the script, the new image lives at
-#   forgejo.viktorbarzin.me/viktor/<name>:<tag>
-# Phase 3 of the consolidation flips infra/stacks/<svc>/main.tf image=
-# to that path.
-
-set -euo pipefail
-
-OLD_REG=registry.viktorbarzin.me
-NEW_REG=forgejo.viktorbarzin.me/viktor
-
-# Image list: <name>:<tag>. Generated 2026-05-07 from `grep -rEn 'image\s*=\s*
-# "registry\.viktorbarzin\.me'` across infra/stacks/.
-#
-# Excluded:
-# - wealthfolio-sync: registry repo exists but has 0 tags (CronJob has been
-#   broken for 36+ days, separate decision needed). User to triage before
-#   migration.
-# - fire-planner: registry repo exists but has 0 tags. Dockerfile + CI added
-#   in this session (commit 8b53d99e); rebuild via Woodpecker before flipping.
-IMAGES=(
-  "chrome-service-novnc:v4"
-  "chrome-service-novnc:latest"
-  "payslip-ingest:latest"
-  "job-hunter:latest"
-  "claude-agent-service:latest"
-  "freedify:latest"
-  "beadboard:latest"
-  "infra-ci:latest"
-)
-
-for img in "${IMAGES[@]}"; do
-  echo "=== $img ==="
-  src="$OLD_REG/$img"
-  dst="$NEW_REG/$img"
-
-  if ! docker pull "$src" 2>&1 | tee /tmp/pull-$$ | grep -q 'Status: '; then
-    if grep -q 'not found' /tmp/pull-$$; then
-      echo "  SKIP — image not present in source registry"
-      rm -f /tmp/pull-$$
-      continue
-    fi
-  fi
-  rm -f /tmp/pull-$$
-
-  echo "  tag → $dst"
-  docker tag "$src" "$dst"
-
-  echo "  push $dst"
-  docker push "$dst" 2>&1 | tail -2
-
-  echo "  cleanup local copy"
-  docker rmi "$src" "$dst" 2>&1 | tail -1 || true
-done
-
-echo ""
-echo "Done. Verify in Forgejo Web UI: https://forgejo.viktorbarzin.me/viktor/-/packages?type=container"
-echo "Phase 3 of the plan flips infra/stacks/{wealthfolio,fire-planner}/main.tf image= references."
diff --git a/scripts/lvm-pvc-snapshot.sh b/scripts/lvm-pvc-snapshot.sh
deleted file mode 100755
index 6ec5dc34..00000000
--- a/scripts/lvm-pvc-snapshot.sh
+++ /dev/null
@@ -1,469 +0,0 @@
-#!/usr/bin/env bash
-# lvm-pvc-snapshot — LVM thin snapshot management for Proxmox CSI PVCs
-# Deploy to PVE host at /usr/local/bin/lvm-pvc-snapshot
-set -euo pipefail
-
-# --- Configuration ---
-VG="pve"
-THINPOOL="data"
-SNAP_SUFFIX_FORMAT="%Y%m%d_%H%M"
-RETENTION_DAYS=7
-MIN_FREE_PCT=10
-PUSHGATEWAY="${LVM_SNAP_PUSHGATEWAY:-http://10.0.20.100:30091}"
-PUSHGATEWAY_JOB="lvm-pvc-snapshot"
-LOCKFILE="/run/lvm-pvc-snapshot.lock"
-KUBECONFIG="${KUBECONFIG:-/root/.kube/config}"
-export KUBECONFIG
-
-# Namespaces to exclude from snapshots (high-churn, have app-level dumps)
-# These PVCs cause significant CoW write amplification (~36% overhead)
-EXCLUDE_NAMESPACES="${LVM_SNAP_EXCLUDE_NS:-dbaas,monitoring}"
-
-# --- Logging ---
-log()  { echo "[$(date '+%Y-%m-%d %H:%M:%S')] $*"; }
-warn() { log "WARN: $*" >&2; }
-die()  { log "FATAL: $*" >&2; exit 1; }
-
-# --- Helpers ---
-
-get_thinpool_free_pct() {
-    local data_pct
-    data_pct=$(lvs --noheadings --nosuffix -o data_percent "${VG}/${THINPOOL}" 2>/dev/null | tr -d ' ')
-    echo "scale=2; 100 - ${data_pct}" | bc
-}
-
-build_exclude_lv_list() {
-    # Query K8s for PVs in excluded namespaces, extract their LV names
-    if [[ -z "${EXCLUDE_NAMESPACES}" ]] || ! command -v kubectl &>/dev/null; then
-        return
-    fi
-    kubectl get pv -o json 2>/dev/null | jq -r --arg ns "${EXCLUDE_NAMESPACES}" '
-        ($ns | split(",")) as $excl |
-        .items[] |
-        select(.spec.csi.driver == "csi.proxmox.sinextra.dev") |
-        select(.spec.claimRef.namespace as $n | $excl | index($n)) |
-        .spec.csi.volumeHandle | split("/") | last
-    ' 2>/dev/null || true
-}
-
-discover_pvc_lvs() {
-    # List thin LVs matching PVC pattern, excluding snapshots, pre-restore backups,
-    # and LVs belonging to excluded namespaces (high-churn databases/metrics)
-    local all_lvs exclude_lvs
-    all_lvs=$(lvs --noheadings -o lv_name,pool_lv "${VG}" 2>/dev/null \
-        | awk -v pool="${THINPOOL}" '$2 == pool { print $1 }' \
-        | grep -E '^vm-[0-9]+-pvc-' \
-        | grep -v '_snap_' \
-        | grep -v '_pre_restore_')
-
-    exclude_lvs=$(build_exclude_lv_list)
-
-    if [[ -n "${exclude_lvs}" ]]; then
-        # Filter out excluded LVs
-        local exclude_pattern
-        exclude_pattern=$(echo "${exclude_lvs}" | paste -sd'|' -)
-        echo "${all_lvs}" | grep -vE "(${exclude_pattern})" || true
-    else
-        echo "${all_lvs}"
-    fi
-}
-
-list_snapshots() {
-    lvs --noheadings -o lv_name,pool_lv "${VG}" 2>/dev/null \
-        | awk -v pool="${THINPOOL}" '$2 == pool { print $1 }' \
-        | grep '_snap_' || true
-}
-
-parse_snap_timestamp() {
-    # Extract YYYYMMDD_HHMM from snapshot name, convert to epoch
-    local snap_name="$1"
-    local ts_str
-    ts_str=$(echo "${snap_name}" | grep -oE '[0-9]{8}_[0-9]{4}$')
-    if [[ -z "${ts_str}" ]]; then
-        echo "0"
-        return
-    fi
-    local ymd="${ts_str:0:8}"
-    local hm="${ts_str:9:4}"
-    date -d "${ymd:0:4}-${ymd:4:2}-${ymd:6:2} ${hm:0:2}:${hm:2:2}" +%s 2>/dev/null || echo "0"
-}
-
-get_original_lv_from_snap() {
-    # vm-200-pvc-abc_snap_20260403_1200 -> vm-200-pvc-abc
-    echo "$1" | sed 's/_snap_[0-9]\{8\}_[0-9]\{4\}$//'
-}
-
-push_metrics() {
-    local status="$1" created="$2" failed="$3" pruned="$4"
-    local free_pct
-    free_pct=$(get_thinpool_free_pct)
-
-    cat <<METRICS | curl -sf --connect-timeout 5 --max-time 10 --data-binary @- \
-        "${PUSHGATEWAY}/metrics/job/${PUSHGATEWAY_JOB}" 2>/dev/null || warn "Failed to push metrics to Pushgateway"
-# HELP lvm_snapshot_last_run_timestamp Unix timestamp of last snapshot run
-# TYPE lvm_snapshot_last_run_timestamp gauge
-lvm_snapshot_last_run_timestamp $(date +%s)
-# HELP lvm_snapshot_last_status Exit status (0=success, 1=partial failure, 2=aborted)
-# TYPE lvm_snapshot_last_status gauge
-lvm_snapshot_last_status ${status}
-# HELP lvm_snapshot_created_total Number of snapshots created in last run
-# TYPE lvm_snapshot_created_total gauge
-lvm_snapshot_created_total ${created}
-# HELP lvm_snapshot_failed_total Number of snapshot failures in last run
-# TYPE lvm_snapshot_failed_total gauge
-lvm_snapshot_failed_total ${failed}
-# HELP lvm_snapshot_pruned_total Number of snapshots pruned in last run
-# TYPE lvm_snapshot_pruned_total gauge
-lvm_snapshot_pruned_total ${pruned}
-# HELP lvm_snapshot_thinpool_free_pct Thin pool free percentage
-# TYPE lvm_snapshot_thinpool_free_pct gauge
-lvm_snapshot_thinpool_free_pct ${free_pct}
-METRICS
-}
-
-# --- Subcommands ---
-
-cmd_snapshot() {
-    log "Starting PVC LVM thin snapshot run"
-
-    # Check thin pool free space
-    local free_pct
-    free_pct=$(get_thinpool_free_pct)
-    log "Thin pool free space: ${free_pct}%"
-    if (( $(echo "${free_pct} < ${MIN_FREE_PCT}" | bc -l) )); then
-        warn "Thin pool has only ${free_pct}% free (minimum: ${MIN_FREE_PCT}%). Aborting."
-        push_metrics 2 0 0 0
-        exit 1
-    fi
-
-    # Discover PVC LVs
-    local lvs_list
-    lvs_list=$(discover_pvc_lvs)
-    if [[ -z "${lvs_list}" ]]; then
-        warn "No PVC LVs found matching pattern"
-        push_metrics 2 0 0 0
-        exit 1
-    fi
-
-    local count=0 failed=0 total
-    total=$(echo "${lvs_list}" | wc -l | tr -d ' ')
-    local snap_ts
-    snap_ts=$(date +"${SNAP_SUFFIX_FORMAT}")
-
-    log "Found ${total} PVC LVs to snapshot"
-
-    while IFS= read -r lv; do
-        local snap_name="${lv}_snap_${snap_ts}"
-        if lvcreate -s -kn -n "${snap_name}" "${VG}/${lv}" >/dev/null 2>&1; then
-            log "  Created: ${snap_name}"
-            count=$((count + 1))
-        else
-            warn "  Failed to create snapshot for ${lv}"
-            failed=$((failed + 1))
-        fi
-    done <<< "${lvs_list}"
-
-    log "Snapshot run complete: ${count} created, ${failed} failed out of ${total}"
-
-    # Auto-prune
-    log "Running auto-prune..."
-    local pruned
-    pruned=$(cmd_prune_count)
-
-    # Determine status
-    local status=0
-    if (( failed > 0 && count > 0 )); then
-        status=1  # partial
-    elif (( failed > 0 && count == 0 )); then
-        status=2  # all failed
-    fi
-
-    push_metrics "${status}" "${count}" "${failed}" "${pruned}"
-    log "Done"
-}
-
-cmd_list() {
-    printf "%-45s %-50s %8s %8s\n" "ORIGINAL LV" "SNAPSHOT" "AGE" "DATA%"
-    printf "%-45s %-50s %8s %8s\n" "-----------" "--------" "---" "-----"
-
-    local now
-    now=$(date +%s)
-
-    local snap_lines
-    snap_lines=$(lvs --noheadings --nosuffix -o lv_name,lv_size,data_percent "${VG}" 2>/dev/null \
-        | grep -E '_snap_|_pre_restore_' || true)
-
-    if [[ -z "${snap_lines}" ]]; then
-        echo "(no snapshots found)"
-        return
-    fi
-
-    echo "${snap_lines}" | while read -r name size data_pct; do
-            local original age_str ts epoch
-            if [[ "${name}" == *"_pre_restore_"* ]]; then
-                original=$(echo "${name}" | sed 's/_pre_restore_[0-9]\{8\}_[0-9]\{4\}$//')
-                ts=$(echo "${name}" | grep -oE '[0-9]{8}_[0-9]{4}$')
-            else
-                original=$(get_original_lv_from_snap "${name}")
-                ts=$(echo "${name}" | grep -oE '[0-9]{8}_[0-9]{4}$')
-            fi
-            epoch=$(parse_snap_timestamp "${name}")
-            if (( epoch > 0 )); then
-                local age_s=$(( now - epoch ))
-                local days=$(( age_s / 86400 ))
-                local hours=$(( (age_s % 86400) / 3600 ))
-                age_str="${days}d${hours}h"
-            else
-                age_str="unknown"
-            fi
-            printf "%-45s %-50s %8s %7s%%\n" "${original}" "${name}" "${age_str}" "${data_pct}"
-        done
-}
-
-cmd_prune() {
-    local pruned
-    pruned=$(cmd_prune_count)
-    log "Pruned ${pruned} expired snapshots"
-}
-
-cmd_prune_count() {
-    # NOTE: stdout of this function is captured by callers (`pruned=$(cmd_prune_count)`),
-    # so all log/warn output must go to stderr — the only thing on stdout is the count.
-    local now cutoff pruned=0
-    now=$(date +%s)
-    cutoff=$(( now - RETENTION_DAYS * 86400 ))
-
-    local snaps
-    snaps=$(lvs --noheadings -o lv_name,pool_lv "${VG}" 2>/dev/null \
-        | awk -v pool="${THINPOOL}" '$2 == pool { print $1 }' \
-        | grep -E '_snap_|_pre_restore_' || true)
-
-    if [[ -z "${snaps}" ]]; then
-        echo "0"
-        return
-    fi
-
-    while IFS= read -r snap; do
-        local epoch
-        epoch=$(parse_snap_timestamp "${snap}")
-        if (( epoch > 0 && epoch < cutoff )); then
-            if lvremove -f "${VG}/${snap}" >/dev/null 2>&1; then
-                log "  Pruned: ${snap}" >&2
-                pruned=$((pruned + 1))
-            else
-                warn "  Failed to prune: ${snap}"
-            fi
-        fi
-    done <<< "${snaps}"
-
-    echo "${pruned}"
-}
-
-cmd_restore() {
-    local pvc_lv="${1:-}" snapshot_lv="${2:-}"
-
-    if [[ -z "${pvc_lv}" || -z "${snapshot_lv}" ]]; then
-        die "Usage: $0 restore <pvc-lv-name> <snapshot-lv-name>"
-    fi
-
-    # Validate LVs exist
-    if ! lvs "${VG}/${pvc_lv}" >/dev/null 2>&1; then
-        die "PVC LV '${pvc_lv}' not found in VG '${VG}'"
-    fi
-    if ! lvs "${VG}/${snapshot_lv}" >/dev/null 2>&1; then
-        die "Snapshot LV '${snapshot_lv}' not found in VG '${VG}'"
-    fi
-
-    # Discover K8s context
-    log "Discovering Kubernetes context for LV '${pvc_lv}'..."
-
-    local volume_handle="local-lvm:${pvc_lv}"
-    local pv_info
-    pv_info=$(kubectl get pv -o json 2>/dev/null | jq -r \
-        --arg vh "${volume_handle}" \
-        '.items[] | select(.spec.csi.volumeHandle == $vh) | "\(.metadata.name) \(.spec.claimRef.namespace) \(.spec.claimRef.name)"' \
-    ) || die "Failed to query PVs (is kubectl configured?)"
-
-    if [[ -z "${pv_info}" ]]; then
-        die "No PV found with volumeHandle '${volume_handle}'"
-    fi
-
-    local pv_name pvc_ns pvc_name
-    read -r pv_name pvc_ns pvc_name <<< "${pv_info}"
-    log "Found: PV=${pv_name}, PVC=${pvc_ns}/${pvc_name}"
-
-    # Find the workload (Deployment or StatefulSet) that uses this PVC
-    local workload_type="" workload_name="" original_replicas=""
-
-    # Check StatefulSets first (databases use these)
-    local sts_info
-    sts_info=$(kubectl get statefulset -n "${pvc_ns}" -o json 2>/dev/null | jq -r \
-        --arg pvc "${pvc_name}" \
-        '.items[] | select(
-            (.spec.template.spec.volumes // [] | .[].persistentVolumeClaim.claimName == $pvc) or
-            (.spec.volumeClaimTemplates // [] | .[].metadata.name as $vct |
-                .spec.replicas as $r | range($r) | "\($vct)-\(.metadata.name)-\(.)" ) == $pvc
-        ) | "\(.metadata.name) \(.spec.replicas)"' 2>/dev/null \
-    ) || true
-
-    # If not found via simple volume check, try matching VCT naming pattern
-    if [[ -z "${sts_info}" ]]; then
-        sts_info=$(kubectl get statefulset -n "${pvc_ns}" -o json 2>/dev/null | jq -r \
-            --arg pvc "${pvc_name}" \
-            '.items[] | .metadata.name as $sts | .spec.replicas as $r |
-            select(.spec.volumeClaimTemplates != null) |
-            .spec.volumeClaimTemplates[].metadata.name as $vct |
-            [range($r)] | map("\($vct)-\($sts)-\(.)") |
-            if any(. == $pvc) then "\($sts) \($r)" else empty end' 2>/dev/null \
-        ) || true
-    fi
-
-    if [[ -n "${sts_info}" ]]; then
-        read -r workload_name original_replicas <<< "${sts_info}"
-        workload_type="statefulset"
-    else
-        # Check Deployments
-        local deploy_info
-        deploy_info=$(kubectl get deployment -n "${pvc_ns}" -o json 2>/dev/null | jq -r \
-            --arg pvc "${pvc_name}" \
-            '.items[] | select(
-                .spec.template.spec.volumes // [] | .[].persistentVolumeClaim.claimName == $pvc
-            ) | "\(.metadata.name) \(.spec.replicas)"' 2>/dev/null \
-        ) || true
-
-        if [[ -n "${deploy_info}" ]]; then
-            read -r workload_name original_replicas <<< "${deploy_info}"
-            workload_type="deployment"
-        fi
-    fi
-
-    if [[ -z "${workload_type}" ]]; then
-        warn "Could not auto-discover workload for PVC '${pvc_name}' in namespace '${pvc_ns}'."
-        warn "You may need to scale down the pod manually."
-        echo ""
-        read -rp "Continue with LV swap anyway? (yes/no): " confirm
-        [[ "${confirm}" == "yes" ]] || die "Aborted by user"
-        workload_type="manual"
-    fi
-
-    # Dry-run output
-    local backup_name="${pvc_lv}_pre_restore_$(date +"${SNAP_SUFFIX_FORMAT}")"
-    echo ""
-    echo "╔══════════════════════════════════════════════════════════════╗"
-    echo "║                    RESTORE DRY-RUN                         ║"
-    echo "╠══════════════════════════════════════════════════════════════╣"
-    echo "║ PVC:       ${pvc_ns}/${pvc_name}"
-    echo "║ PV:        ${pv_name}"
-    if [[ "${workload_type}" != "manual" ]]; then
-        echo "║ Workload:  ${workload_type}/${workload_name} (replicas: ${original_replicas}→0→${original_replicas})"
-    fi
-    echo "║"
-    echo "║ Actions:"
-    if [[ "${workload_type}" != "manual" ]]; then
-        echo "║   1. Scale ${workload_type}/${workload_name} to 0 replicas"
-        echo "║   2. Wait for pod termination"
-    fi
-    echo "║   3. Rename ${pvc_lv} → ${backup_name}"
-    echo "║   4. Rename ${snapshot_lv} → ${pvc_lv}"
-    if [[ "${workload_type}" != "manual" ]]; then
-        echo "║   5. Scale ${workload_type}/${workload_name} back to ${original_replicas} replicas"
-    fi
-    echo "╚══════════════════════════════════════════════════════════════╝"
-    echo ""
-
-    # Interactive confirmation
-    read -rp "Type 'yes' to proceed with restore: " confirm
-    if [[ "${confirm}" != "yes" ]]; then
-        die "Aborted by user"
-    fi
-
-    # Scale down
-    if [[ "${workload_type}" != "manual" ]]; then
-        log "Scaling ${workload_type}/${workload_name} to 0 replicas..."
-        kubectl scale "${workload_type}/${workload_name}" -n "${pvc_ns}" --replicas=0
-
-        log "Waiting for pod termination (timeout: 120s)..."
-        kubectl wait --for=delete pod -l "app.kubernetes.io/name=${workload_name}" -n "${pvc_ns}" --timeout=120s 2>/dev/null || \
-        kubectl wait --for=delete pod -l "app=${workload_name}" -n "${pvc_ns}" --timeout=120s 2>/dev/null || \
-            warn "Timeout waiting for pods — continuing anyway (LV may still be in use)"
-        sleep 5  # extra grace period for device detach
-    fi
-
-    # Verify LV is not active
-    local lv_active
-    lv_active=$(lvs --noheadings -o lv_active "${VG}/${pvc_lv}" 2>/dev/null | tr -d ' ')
-    if [[ "${lv_active}" == "active" ]]; then
-        warn "LV ${pvc_lv} is still active. Attempting to deactivate..."
-        # Close any LUKS mapper on the LV before deactivation
-        if dmsetup ls 2>/dev/null | grep -q "${pvc_lv}"; then
-            log "Closing LUKS mapper for ${pvc_lv}..."
-            cryptsetup luksClose "${pvc_lv}" 2>/dev/null || true
-        fi
-        lvchange -an "${VG}/${pvc_lv}" 2>/dev/null || warn "Could not deactivate — proceeding with caution"
-    fi
-
-    # LV swap
-    log "Renaming ${pvc_lv} → ${backup_name}"
-    lvrename "${VG}" "${pvc_lv}" "${backup_name}" || die "Failed to rename original LV"
-
-    log "Renaming ${snapshot_lv} → ${pvc_lv}"
-    lvrename "${VG}" "${snapshot_lv}" "${pvc_lv}" || die "Failed to rename snapshot LV"
-
-    # Scale back up
-    if [[ "${workload_type}" != "manual" ]]; then
-        log "Scaling ${workload_type}/${workload_name} back to ${original_replicas} replicas..."
-        kubectl scale "${workload_type}/${workload_name}" -n "${pvc_ns}" --replicas="${original_replicas}"
-
-        log "Waiting for pod to become Ready (timeout: 300s)..."
-        kubectl wait --for=condition=Ready pod -l "app.kubernetes.io/name=${workload_name}" -n "${pvc_ns}" --timeout=300s 2>/dev/null || \
-        kubectl wait --for=condition=Ready pod -l "app=${workload_name}" -n "${pvc_ns}" --timeout=300s 2>/dev/null || \
-            warn "Timeout waiting for pod Ready — check manually"
-    fi
-
-    echo ""
-    log "Restore complete!"
-    log "Old data preserved as: ${backup_name}"
-    log "To delete old data after verification: lvremove -f ${VG}/${backup_name}"
-}
-
-# --- Main ---
-
-usage() {
-    cat <<EOF
-Usage: $(basename "$0") <command> [args]
-
-Commands:
-  snapshot              Create thin snapshots of all PVC LVs
-  list                  List existing snapshots with age and data%
-  prune                 Remove snapshots older than ${RETENTION_DAYS} days
-  restore <lv> <snap>   Restore a PVC from a snapshot (interactive)
-
-Environment:
-  LVM_SNAP_PUSHGATEWAY  Pushgateway URL (default: ${PUSHGATEWAY})
-  KUBECONFIG            Kubeconfig path (default: /root/.kube/config)
-EOF
-}
-
-main() {
-    local cmd="${1:-}"
-    shift || true
-
-    # Acquire lock (except for list which is read-only)
-    if [[ "${cmd}" != "list" && "${cmd}" != "" && "${cmd}" != "help" && "${cmd}" != "--help" && "${cmd}" != "-h" ]]; then
-        exec 200>"${LOCKFILE}"
-        if ! flock -n 200; then
-            die "Another instance is already running (lockfile: ${LOCKFILE})"
-        fi
-    fi
-
-    case "${cmd}" in
-        snapshot) cmd_snapshot ;;
-        list)     cmd_list ;;
-        prune)    cmd_prune ;;
-        restore)  cmd_restore "$@" ;;
-        help|--help|-h|"") usage ;;
-        *) die "Unknown command: ${cmd}. Run '$0 help' for usage." ;;
-    esac
-}
-
-main "$@"
diff --git a/scripts/pfsense-haproxy-bootstrap.php b/scripts/pfsense-haproxy-bootstrap.php
deleted file mode 100644
index 5452b198..00000000
--- a/scripts/pfsense-haproxy-bootstrap.php
+++ /dev/null
@@ -1,236 +0,0 @@
-<?php
-// pfSense HAProxy bootstrap — configures the mailserver PROXY-v2 path
-// (bd code-yiu, Phases 2/3 + 5).
-//
-// WHY THIS EXISTS
-//   pfSense HAProxy config is stored XML-in-`/cf/conf/config.xml` under
-//   `<installedpackages><haproxy>`. That file IS picked up by the nightly
-//   `daily-backup` on the PVE host (see `scripts/daily-backup.sh` → `scp
-//   root@10.0.20.1:/cf/conf/config.xml`) and synced to Synology. This script
-//   is the canonical reproducer: run it to rebuild the pfSense HAProxy config
-//   from scratch (DR restore, fresh pfSense install, etc.).
-//
-// WHAT IT BUILDS
-//   4 backend pools — one per mail port:
-//     mailserver_nodes_smtp  → k8s-node1..4:30125 (container :2525 postscreen)
-//     mailserver_nodes_smtps → k8s-node1..4:30126 (container :4465 smtps)
-//     mailserver_nodes_sub   → k8s-node1..4:30127 (container :5587 submission)
-//     mailserver_nodes_imaps → k8s-node1..4:30128 (container :10993 IMAPS)
-//   Each server uses `send-proxy-v2` and TCP health-check every 120s.
-//   4 frontends on pfSense 10.0.20.1:{25,465,587,993} TCP mode.
-//   + 1 legacy test frontend on :2525 (kept for validation; safe to remove later).
-//
-// USAGE (on pfSense host, via SSH as admin)
-//   scp infra/scripts/pfsense-haproxy-bootstrap.php admin@10.0.20.1:/tmp/
-//   ssh admin@10.0.20.1 'php /tmp/pfsense-haproxy-bootstrap.php'
-//
-// IDEMPOTENCY
-//   Removes any existing entries named mailserver_* before re-adding, so
-//   repeat runs are safe and behave as reset-to-declared.
-
-require_once('/etc/inc/config.inc');
-require_once('/usr/local/pkg/haproxy/haproxy.inc');
-require_once('/usr/local/pkg/haproxy/haproxy_utils.inc');
-
-global $config;
-parse_config(true);
-
-if (!is_array($config['installedpackages']['haproxy'])) {
-    $config['installedpackages']['haproxy'] = [];
-}
-$h = &$config['installedpackages']['haproxy'];
-
-$h['enable']  = 'yes';
-$h['maxconn'] = '1000';
-
-// Our declared object names (anything starting with mailserver_ is ours)
-$POOL_NAMES = [
-    'mailserver_nodes',          // legacy (Phase 2/3 test)
-    'mailserver_nodes_smtp',
-    'mailserver_nodes_smtps',
-    'mailserver_nodes_sub',
-    'mailserver_nodes_imaps',
-];
-$FRONTEND_NAMES = [
-    'mailserver_proxy_test',     // legacy (Phase 2/3 test, :2525)
-    'mailserver_proxy_25',
-    'mailserver_proxy_465',
-    'mailserver_proxy_587',
-    'mailserver_proxy_993',
-];
-
-// k8s workers. Not in the cluster: master (control-plane) and node5
-// (doesn't exist in this topology).
-$NODES = [
-    ['k8s-node1', '10.0.20.101'],
-    ['k8s-node2', '10.0.20.102'],
-    ['k8s-node3', '10.0.20.103'],
-    ['k8s-node4', '10.0.20.104'],
-];
-
-// Build a pool with optional split healthcheck path.
-//
-// $check_port: if non-null, HAProxy sends health probes to that NodePort
-//   (which Service `mailserver-proxy` maps to the pod's stock no-PROXY
-//   listener — see infra/stacks/mailserver/.../mailserver_proxy ports
-//   30145/30146/30147). Real client traffic still goes to $nodeport with
-//   PROXY v2 framing.
-// $check_type: 'TCP' for plain accept-on-port checks, 'ESMTP' for
-//   `option smtpchk EHLO <monitor_domain>` (real SMTP banner+EHLO+250).
-//
-// Why split: smtpd-proxy587/4465 fatal on every PROXY-v2-aware health
-// probe with `smtpd_peer_hostaddr_to_sockaddr: ... Servname not supported`
-// — the daemon respawns get throttled by Postfix master and real clients
-// land mid-respawn → 6s TCP timeout. Routing health probes to the stock
-// no-PROXY port sidesteps the bug entirely while data path still gets
-// PROXY v2 for CrowdSec/Postfix client-IP visibility. The HAProxy package
-// has no `checkport` field, so `port N` is appended via the server's
-// `advanced` string (HAProxy parses server keywords in any order).
-function build_pool(
-    string $name,
-    string $nodeport,
-    array $nodes,
-    string $check_type = 'TCP',
-    ?string $check_port = null,
-    string $monitor_domain = ''
-): array {
-    $advanced_check = $check_port !== null
-        ? "send-proxy-v2 port {$check_port}"
-        : 'send-proxy-v2';
-    $servers = [];
-    foreach ($nodes as $n) {
-        $servers[] = [
-            'name'       => $n[0],
-            'address'    => $n[1],
-            'port'       => $nodeport,
-            'weight'     => '10',
-            'ssl'        => '',
-            // 5s = sub-block-window failover when a NodePort goes sour.
-            // Safe to be aggressive once health probes don't fatal smtpd.
-            'checkinter' => '5000',
-            'advanced'   => $advanced_check,
-            'status'     => 'active',
-        ];
-    }
-    return [
-        'name'                   => $name,
-        'balance'                => 'roundrobin',
-        'check_type'             => $check_type,
-        'monitor_domain'         => $monitor_domain,
-        'checkinter'             => '5000',
-        'retries'                => '3',
-        'ha_servers'             => ['item' => $servers],
-        'advanced_bind'          => '',
-        'persist_cookie_enabled' => '',
-        'transparent_clientip'   => '',
-        'advanced'               => '',
-    ];
-}
-
-function build_frontend(string $name, string $descr, string $extaddr, string $port, string $pool): array {
-    return [
-        'name'      => $name,
-        'descr'     => $descr,
-        'status'    => 'active',
-        'secondary' => '',
-        'type'      => 'tcp',
-        'a_extaddr' => ['item' => [[
-            'extaddr'          => $extaddr,
-            'extaddr_port'     => $port,
-            'extaddr_ssl'      => '',
-            'extaddr_advanced' => '',
-        ]]],
-        'backend_serverpool' => $pool,
-        'ha_acls'    => '',
-        'dontlognull'=> '',
-        'httpclose'  => '',
-        'forwardfor' => '',
-        'advanced'   => '',
-    ];
-}
-
-// ── Backend pools ───────────────────────────────────────────────────────
-if (!is_array($h['ha_pools']))         $h['ha_pools']         = ['item' => []];
-if (!is_array($h['ha_pools']['item'])) $h['ha_pools']['item'] = [];
-$h['ha_pools']['item'] = array_values(array_filter(
-    $h['ha_pools']['item'],
-    fn($p) => !in_array($p['name'] ?? '', $POOL_NAMES, true)
-));
-
-// Legacy test pool (still used by the :2525 test frontend for manual SMTP roundtrip).
-$h['ha_pools']['item'][] = build_pool('mailserver_nodes',       '30125', $NODES);
-
-// Production pools — one per mail port.
-//
-// All SMTP/SMTPS/Submission backends use plain TCP checks against
-// dedicated non-PROXY healthcheck NodePorts (30145/30146/30147 → pod
-// stock 25/465/587) so probes hit the no-PROXY listeners and avoid
-// the smtpd_peer_hostaddr_to_sockaddr fatal that fires on PROXY-v2
-// LOCAL frames. Real client traffic still goes to 30125-30128 with
-// PROXY v2 for client-IP visibility.
-//
-// We tried `option smtpchk EHLO` initially — it works on the plain
-// `submission` daemon (587) but flaps the `postscreen` listener on
-// port 25 (multi-line greet + DNSBL silence + anti-pre-greet
-// detection makes HAProxy's simple smtpchk parser hit L7RSP). A
-// plain TCP accept-on-port check is enough for both: HAProxy still
-// gets fast failover when the listener actually goes away, and we
-// stop triggering the Postfix fatal entirely.
-//
-// IMAPS stays on its existing TCP-check-with-PROXY-frame for now —
-// Dovecot's PROXY parser doesn't show the same fatal pattern; adding
-// a separate IMAP healthcheck path would require another svc port.
-$h['ha_pools']['item'][] = build_pool('mailserver_nodes_smtp',  '30125', $NODES, 'TCP', '30145');
-$h['ha_pools']['item'][] = build_pool('mailserver_nodes_smtps', '30126', $NODES, 'TCP', '30146');
-$h['ha_pools']['item'][] = build_pool('mailserver_nodes_sub',   '30127', $NODES, 'TCP', '30147');
-$h['ha_pools']['item'][] = build_pool('mailserver_nodes_imaps', '30128', $NODES);
-
-// ── Frontends ───────────────────────────────────────────────────────────
-if (!is_array($h['ha_backends']))         $h['ha_backends']         = ['item' => []];
-if (!is_array($h['ha_backends']['item'])) $h['ha_backends']['item'] = [];
-$h['ha_backends']['item'] = array_values(array_filter(
-    $h['ha_backends']['item'],
-    fn($f) => !in_array($f['name'] ?? '', $FRONTEND_NAMES, true)
-));
-
-// Legacy test frontend — :2525 — retained so SMTP roundtrip tests keep working
-// without touching the real :25. Safe to remove once fully validated.
-$h['ha_backends']['item'][] = build_frontend(
-    'mailserver_proxy_test',
-    'code-yiu Phase 2/3 test — PROXY v2 to k8s mailserver NodePort 30125 (alt port :2525)',
-    '10.0.20.1', '2525',
-    'mailserver_nodes'
-);
-
-// Production frontends — 4 ports listening on pfSense VLAN20 IP 10.0.20.1.
-$h['ha_backends']['item'][] = build_frontend(
-    'mailserver_proxy_25',
-    'code-yiu Phase 4/5 — external SMTP (:25) via PROXY v2 → pod :2525 postscreen',
-    '10.0.20.1', '25',
-    'mailserver_nodes_smtp'
-);
-$h['ha_backends']['item'][] = build_frontend(
-    'mailserver_proxy_465',
-    'code-yiu Phase 4/5 — external SMTPS (:465) via PROXY v2 → pod :4465 smtpd',
-    '10.0.20.1', '465',
-    'mailserver_nodes_smtps'
-);
-$h['ha_backends']['item'][] = build_frontend(
-    'mailserver_proxy_587',
-    'code-yiu Phase 4/5 — external submission (:587) via PROXY v2 → pod :5587 smtpd',
-    '10.0.20.1', '587',
-    'mailserver_nodes_sub'
-);
-$h['ha_backends']['item'][] = build_frontend(
-    'mailserver_proxy_993',
-    'code-yiu Phase 4/5 — external IMAPS (:993) via PROXY v2 → pod :10993 Dovecot',
-    '10.0.20.1', '993',
-    'mailserver_nodes_imaps'
-);
-
-write_config('code-yiu: mailserver HAProxy — 4 production frontends + legacy :2525 test');
-
-$messages = '';
-$rc = haproxy_check_and_run($messages, true);
-echo 'haproxy_check_and_run rc=' . ($rc ? 'OK' : 'FAIL') . "\n";
-echo "messages: $messages\n";
diff --git a/scripts/pfsense-nat-mailserver-haproxy-flip.php b/scripts/pfsense-nat-mailserver-haproxy-flip.php
deleted file mode 100644
index da41bce9..00000000
--- a/scripts/pfsense-nat-mailserver-haproxy-flip.php
+++ /dev/null
@@ -1,68 +0,0 @@
-<?php
-// pfSense NAT redirect flip — mail ports 25/465/587/993 from
-// <mailserver> alias (10.0.20.202 MetalLB LB) to pfSense's own HAProxy
-// listener (10.0.20.1). bd code-yiu.
-//
-// THIS IS THE CUTOVER. After this script:
-//   Internet → pfSense WAN:{25,465,587,993} → rdr → 10.0.20.1:{...}
-//   (pfSense HAProxy) → send-proxy-v2 → k8s-node:{30125..30128} NodePort
-//   → kube-proxy → mailserver pod alt listeners (2525/4465/5587/10993)
-//   → Postfix/Dovecot parse PROXY v2 → real client IP recovered.
-//
-// Internal clients (Roundcube, email-roundtrip-monitor CronJob) continue
-// using the existing mailserver ClusterIP Service on the stock ports
-// (25/465/587/993) which hit container stock listeners WITHOUT PROXY.
-// No change to internal traffic paths.
-//
-// USAGE
-//   scp infra/scripts/pfsense-nat-mailserver-haproxy-flip.php admin@10.0.20.1:/tmp/
-//   ssh admin@10.0.20.1 'php /tmp/pfsense-nat-mailserver-haproxy-flip.php'
-//
-// REVERT — run pfsense-nat-mailserver-haproxy-unflip.php (companion script).
-//
-// IDEMPOTENT — re-runs converge. Flips nothing if already pointed at 10.0.20.1.
-
-require_once('/etc/inc/config.inc');
-require_once('/etc/inc/filter.inc');
-
-global $config;
-parse_config(true);
-
-$PORTS_TO_FLIP = ['25', '465', '587', '993'];
-$OLD_TARGET    = 'mailserver';
-$NEW_TARGET    = '10.0.20.1';
-
-$changed = 0;
-foreach ($config['nat']['rule'] as $i => &$r) {
-    $iface = $r['interface'] ?? '';
-    $lport = $r['local-port'] ?? '';
-    $tgt   = $r['target'] ?? '';
-
-    if ($iface !== 'wan') continue;
-    if (!in_array($lport, $PORTS_TO_FLIP, true)) continue;
-    if ($tgt !== $OLD_TARGET) {
-        printf("rule %d (dport=%s) target=%s — not flipping (already %s or unexpected)\n",
-               $i, $lport, $tgt, $NEW_TARGET);
-        continue;
-    }
-
-    $r['target'] = $NEW_TARGET;
-    // Also unset the 'associated-rule-id' linked filter rule target if any —
-    // actually pfSense regenerates the associated rule from NAT rule on apply,
-    // so leaving associated-rule-id intact is fine.
-    $changed++;
-    printf("rule %d (dport=%s): target %s → %s\n", $i, $lport, $OLD_TARGET, $NEW_TARGET);
-}
-unset($r);
-
-if ($changed === 0) {
-    echo "No changes. (Already flipped? Run unflip script to revert.)\n";
-    exit(0);
-}
-
-write_config("code-yiu: NAT rdr — mail ports {$changed} flipped to HAProxy (10.0.20.1)");
-
-// Rebuild pf rules & reload.
-$rc = filter_configure();
-printf("filter_configure rc=%s\n", var_export($rc, true));
-echo "done.\n";
diff --git a/scripts/pfsense-nat-mailserver-haproxy-unflip.php b/scripts/pfsense-nat-mailserver-haproxy-unflip.php
deleted file mode 100644
index f35870c5..00000000
--- a/scripts/pfsense-nat-mailserver-haproxy-unflip.php
+++ /dev/null
@@ -1,48 +0,0 @@
-<?php
-// REVERT of pfsense-nat-mailserver-haproxy-flip.php.
-// Moves mail-port NAT rdr target from 10.0.20.1 (pfSense HAProxy) back to
-// <mailserver> alias (10.0.20.202 MetalLB LB IP). bd code-yiu rollback.
-//
-// USE THIS IF: external mail breaks after the flip, any postscreen
-// PROXY timeouts show up in logs, or you need to back out before Phase 6.
-
-require_once('/etc/inc/config.inc');
-require_once('/etc/inc/filter.inc');
-
-global $config;
-parse_config(true);
-
-$PORTS_TO_REVERT = ['25', '465', '587', '993'];
-$OLD_TARGET      = '10.0.20.1';
-$NEW_TARGET      = 'mailserver';
-
-$changed = 0;
-foreach ($config['nat']['rule'] as $i => &$r) {
-    $iface = $r['interface'] ?? '';
-    $lport = $r['local-port'] ?? '';
-    $tgt   = $r['target'] ?? '';
-
-    if ($iface !== 'wan') continue;
-    if (!in_array($lport, $PORTS_TO_REVERT, true)) continue;
-    if ($tgt !== $OLD_TARGET) {
-        printf("rule %d (dport=%s) target=%s — not reverting (already %s or unexpected)\n",
-               $i, $lport, $tgt, $NEW_TARGET);
-        continue;
-    }
-
-    $r['target'] = $NEW_TARGET;
-    $changed++;
-    printf("rule %d (dport=%s): target %s → %s\n", $i, $lport, $OLD_TARGET, $NEW_TARGET);
-}
-unset($r);
-
-if ($changed === 0) {
-    echo "No changes. (Already reverted.)\n";
-    exit(0);
-}
-
-write_config("code-yiu: NAT rdr — mail ports {$changed} reverted to <mailserver> alias");
-
-$rc = filter_configure();
-printf("filter_configure rc=%s\n", var_export($rc, true));
-echo "done.\n";
diff --git a/scripts/postmortem-pipeline.sh b/scripts/postmortem-pipeline.sh
index 4b2cf45f..913394c2 100755
--- a/scripts/postmortem-pipeline.sh
+++ b/scripts/postmortem-pipeline.sh
@@ -39,43 +39,26 @@ if [ -z "$VAULT_TOKEN" ] || [ "$VAULT_TOKEN" = "null" ]; then
 fi
 echo "Vault authenticated"
 
-# 5. Fetch API token for claude-agent-service
-AGENT_TOKEN=$(curl -sf -H "X-Vault-Token: $VAULT_TOKEN" \
-  http://vault-active.vault.svc.cluster.local:8200/v1/secret/data/claude-agent-service | \
-  jq -r '.data.data.api_bearer_token')
-if [ -z "$AGENT_TOKEN" ] || [ "$AGENT_TOKEN" = "null" ]; then
-  echo "ERROR: Failed to fetch agent API token"
+# 5. Fetch DevVM SSH key from Vault
+curl -sf -H "X-Vault-Token: $VAULT_TOKEN" \
+  http://vault-active.vault.svc.cluster.local:8200/v1/secret/data/ci/infra | \
+  jq -r '.data.data.devvm_ssh_key' > /tmp/devvm-key
+chmod 600 /tmp/devvm-key
+if [ ! -s /tmp/devvm-key ]; then
+  echo "ERROR: Failed to fetch DevVM SSH key"
   exit 1
 fi
-echo "Agent token fetched"
+echo "SSH key fetched"
 
-# 6. Submit to claude-agent-service
+# 6. SSH to DevVM and run Claude Code headless
 TODOS=$(cat /tmp/todos.json)
-PAYLOAD=$(jq -n \
-  --arg prompt "Implement the auto-implementable TODOs from $PM_FILE. Parsed TODO list: $TODOS" \
-  --arg agent ".claude/agents/postmortem-todo-resolver" \
-  '{prompt: $prompt, agent: $agent, max_budget_usd: 5, timeout_seconds: 900}')
+ssh -i /tmp/devvm-key -o StrictHostKeyChecking=no wizard@10.0.10.10 \
+  "cd ~/code && git -C infra stash && git -C infra pull && git -C infra stash pop 2>/dev/null; ~/.local/bin/claude -p \
+    --agent infra/.claude/agents/postmortem-todo-resolver \
+    --dangerously-skip-permissions \
+    --max-budget-usd 5 \
+    'Implement the auto-implementable TODOs from $PM_FILE. Parsed TODO list: $TODOS'"
 
-RESP=$(curl -sf -X POST \
-  -H "Authorization: Bearer $AGENT_TOKEN" \
-  -H "Content-Type: application/json" \
-  -d "$PAYLOAD" \
-  http://claude-agent-service.claude-agent.svc.cluster.local:8080/execute)
-JOB_ID=$(echo "$RESP" | jq -r '.job_id')
-echo "Job submitted: $JOB_ID"
-
-# 7. Poll for completion (15min max)
-for i in $(seq 1 60); do
-  sleep 15
-  RESULT=$(curl -sf \
-    -H "Authorization: Bearer $AGENT_TOKEN" \
-    http://claude-agent-service.claude-agent.svc.cluster.local:8080/jobs/$JOB_ID)
-  STATUS=$(echo "$RESULT" | jq -r '.status')
-  echo "[$i/60] Status: $STATUS"
-  if [ "$STATUS" != "running" ]; then
-    echo "$RESULT" | jq .
-    if [ "$STATUS" = "completed" ]; then exit 0; else exit 1; fi
-  fi
-done
-echo "ERROR: Job timed out after 15 minutes"
-exit 1
+# 7. Cleanup
+rm -f /tmp/devvm-key
+echo "Pipeline complete"
diff --git a/scripts/setup-forgejo-containerd-mirror.sh b/scripts/setup-forgejo-containerd-mirror.sh
deleted file mode 100755
index 1e4625fd..00000000
--- a/scripts/setup-forgejo-containerd-mirror.sh
+++ /dev/null
@@ -1,59 +0,0 @@
-#!/usr/bin/env bash
-# One-shot deployment of the forgejo.viktorbarzin.me containerd hosts.toml
-# entry across every k8s node. Cloud-init only fires on VM provision, so
-# existing nodes need this manual rollout.
-#
-# What it does, per node:
-#   1. drain (ignore-daemonsets, delete-emptydir-data)
-#   2. ssh in: mkdir + write /etc/containerd/certs.d/forgejo.viktorbarzin.me/hosts.toml
-#   3. systemctl restart containerd
-#   4. uncordon
-#
-# hosts.toml is documented as hot-reloaded but the post-2026-04-19
-# containerd corruption playbook calls for an explicit restart so the
-# config is unambiguously in effect. Running drain/uncordon around it
-# avoids pulling against an in-flight containerd restart.
-#
-# Re-run is safe: writes are idempotent.
-
-set -euo pipefail
-
-CERTS_DIR=/etc/containerd/certs.d/forgejo.viktorbarzin.me
-HOSTS_TOML='server = "https://forgejo.viktorbarzin.me"
-
-[host."https://10.0.20.200"]
-  capabilities = ["pull", "resolve"]
-'
-
-NODES=$(kubectl get nodes -o name | sed 's|^node/||')
-if [[ -z "$NODES" ]]; then
-  echo "ERROR: no nodes returned from kubectl get nodes" >&2
-  exit 1
-fi
-
-for n in $NODES; do
-  echo "=== $n ==="
-  kubectl drain "$n" --ignore-daemonsets --delete-emptydir-data --force --grace-period=60
-
-  ssh -o StrictHostKeyChecking=accept-new "wizard@$n" sudo bash <<EOF
-set -euo pipefail
-mkdir -p "$CERTS_DIR"
-cat > "$CERTS_DIR/hosts.toml" <<'TOML'
-$HOSTS_TOML
-TOML
-systemctl restart containerd
-EOF
-
-  kubectl uncordon "$n"
-
-  # Wait for the node to report Ready before moving to the next one.
-  for i in {1..30}; do
-    if kubectl get node "$n" -o jsonpath='{.status.conditions[?(@.type=="Ready")].status}' | grep -q True; then
-      echo "    node Ready"
-      break
-    fi
-    sleep 2
-  done
-done
-
-echo "All nodes updated."
diff --git a/scripts/tg b/scripts/tg
index 15cea845..8cb38e20 100755
--- a/scripts/tg
+++ b/scripts/tg
@@ -72,23 +72,12 @@ if [ -n "$STACK_NAME" ]; then
   else
     # Tier 1: PG backend — fetch credentials from Vault
     if [ -z "${PG_CONN_STR:-}" ]; then
-      # Pre-flight: vault CLI must be available. Previously CI failed with a
-      # misleading "Cannot read PG credentials" message because the Alpine CI
-      # image lacked the vault binary — the 2>/dev/null below swallowed the
-      # real "vault: not found" error. Fail fast with a clear message instead.
-      if ! command -v vault >/dev/null 2>&1; then
-        echo "ERROR: vault CLI not found on PATH. Install it or use an image that includes it (ci/Dockerfile)." >&2
-        exit 1
-      fi
-      VAULT_OUT=$(vault read -format=json database/static-creds/pg-terraform-state 2>&1) || {
-        echo "ERROR: Cannot read PG credentials from Vault. Vault output follows:" >&2
-        echo "$VAULT_OUT" >&2
-        echo "" >&2
-        echo "Hint: humans run 'vault login -method=oidc'; CI auths via K8s SA (role=ci)." >&2
+      PG_CREDS=$(vault read -format=json database/static-creds/pg-terraform-state 2>/dev/null) || {
+        echo "ERROR: Cannot read PG credentials from Vault. Run: vault login -method=oidc" >&2
         exit 1
       }
-      PG_USER=$(echo "$VAULT_OUT" | jq -r .data.username)
-      PG_PASS=$(echo "$VAULT_OUT" | jq -r .data.password)
+      PG_USER=$(echo "$PG_CREDS" | jq -r .data.username)
+      PG_PASS=$(echo "$PG_CREDS" | jq -r .data.password)
       export PG_CONN_STR="postgres://${PG_USER}:${PG_PASS}@10.0.20.200:5432/terraform_state?sslmode=disable"
     fi
   fi
diff --git a/secrets/fullchain.pem b/secrets/fullchain.pem
index 435a3239..53a36b2f 100644
Binary files a/secrets/fullchain.pem and b/secrets/fullchain.pem differ
diff --git a/secrets/nfs_directories.txt b/secrets/nfs_directories.txt
index 51e11aad..0961a4c0 100644
Binary files a/secrets/nfs_directories.txt and b/secrets/nfs_directories.txt differ
diff --git a/secrets/privkey.pem b/secrets/privkey.pem
index b6cf256c..e00cfb93 100644
Binary files a/secrets/privkey.pem and b/secrets/privkey.pem differ
diff --git a/setup-monitoring.sh b/setup-monitoring.sh
new file mode 100755
index 00000000..a7e3caf7
--- /dev/null
+++ b/setup-monitoring.sh
@@ -0,0 +1,29 @@
+#!/bin/bash
+# Setup script for automated monitoring environment
+# Ensures health check scripts have access to kubeconfig
+
+echo "=== Setting up automated monitoring environment ==="
+
+# Copy kubeconfig to location expected by health check scripts
+if [ -f /home/node/.openclaw/kubeconfig ]; then
+    cp /home/node/.openclaw/kubeconfig /workspace/infra/config
+    echo "✅ Kubeconfig copied to /workspace/infra/config"
+else
+    echo "❌ Source kubeconfig not found at /home/node/.openclaw/kubeconfig"
+    exit 1
+fi
+
+# Test health check access
+echo ""
+echo "Testing health check script access..."
+cd /workspace/infra
+if KUBECONFIG="" timeout 30 bash .claude/cluster-health.sh --quiet > /dev/null 2>&1; then
+    echo "✅ Health check script can access cluster"
+else
+    echo "❌ Health check script cannot access cluster"
+    exit 1
+fi
+
+echo ""
+echo "✅ Automated monitoring environment setup complete"
+echo "📊 Cron health checks will now work properly"
\ No newline at end of file
diff --git a/stacks/_template/main.tf.example b/stacks/_template/main.tf.example
index 6f52337a..c668292e 100644
--- a/stacks/_template/main.tf.example
+++ b/stacks/_template/main.tf.example
@@ -63,7 +63,7 @@ resource "kubernetes_deployment" "app" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/actualbudget/factory/main.tf b/stacks/actualbudget/factory/main.tf
index 820f3117..dda5816a 100644
--- a/stacks/actualbudget/factory/main.tf
+++ b/stacks/actualbudget/factory/main.tf
@@ -116,10 +116,6 @@ resource "kubernetes_deployment" "actualbudget" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "actualbudget" {
@@ -218,10 +214,6 @@ resource "kubernetes_deployment" "actualbudget-http-api" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "actualbudget-http-api" {
@@ -312,8 +304,4 @@ resource "kubernetes_cron_job_v1" "bank-sync" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/actualbudget/main.tf b/stacks/actualbudget/main.tf
index b6f61467..4260c9e9 100644
--- a/stacks/actualbudget/main.tf
+++ b/stacks/actualbudget/main.tf
@@ -46,7 +46,7 @@ locals {
 
 # To create a new deployment:
 /**
-  1. Create a subdirectory for {name} under /srv/nfs on the Proxmox host (192.168.1.127)
+  1. Export a new nfs share with {name} in truenas
   2. Add {name} as proxied cloudflare route (tfvars)
   3. Add module here
 */
@@ -59,10 +59,6 @@ resource "kubernetes_namespace" "actualbudget" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -76,14 +72,13 @@ module "tls_secret" {
 module "viktor" {
   source                     = "./factory"
   name                       = "viktor"
-  tag                        = "26.4.0"
+  tag                        = "26.3.0"
   tls_secret_name            = var.tls_secret_name
   nfs_server                 = var.nfs_server
   depends_on                 = [kubernetes_namespace.actualbudget]
   tier                       = local.tiers.edge
   enable_http_api            = true
   enable_bank_sync           = true
-  storage_size               = "4Gi"
   budget_encryption_password = lookup(local.credentials["viktor"], "password", null)
   sync_id                    = lookup(local.credentials["viktor"], "sync_id", null)
   homepage_annotations = {
@@ -100,7 +95,7 @@ module "viktor" {
 module "anca" {
   source                     = "./factory"
   name                       = "anca"
-  tag                        = "26.4.0"
+  tag                        = "26.3.0"
   tls_secret_name            = var.tls_secret_name
   nfs_server                 = var.nfs_server
   depends_on                 = [kubernetes_namespace.actualbudget]
@@ -123,7 +118,7 @@ module "anca" {
 module "emo" {
   source                     = "./factory"
   name                       = "emo"
-  tag                        = "26.4.0"
+  tag                        = "26.3.0"
   tls_secret_name            = var.tls_secret_name
   nfs_server                 = var.nfs_server
   depends_on                 = [kubernetes_namespace.actualbudget]
diff --git a/stacks/affine/main.tf b/stacks/affine/main.tf
index a80381ce..dcfe31ed 100644
--- a/stacks/affine/main.tf
+++ b/stacks/affine/main.tf
@@ -90,10 +90,6 @@ resource "kubernetes_namespace" "affine" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -201,7 +197,7 @@ resource "kubernetes_deployment" "affine" {
         annotations = {
           "diun.enable"                    = "true"
           "diun.include_tags"              = "^\\d+\\.\\d+\\.\\d+$"
-          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis.redis:6379"
         }
       }
       spec {
@@ -323,10 +319,6 @@ resource "kubernetes_deployment" "affine" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "affine" {
diff --git a/stacks/authentik/authentik_provider.tf b/stacks/authentik/authentik_provider.tf
deleted file mode 100644
index f34214fe..00000000
--- a/stacks/authentik/authentik_provider.tf
+++ /dev/null
@@ -1,81 +0,0 @@
-# goauthentik/authentik Terraform provider.
-#
-# Adopted 2026-04-18 (Wave 6a of the state-drift consolidation plan) to bring
-# the catch-all Proxy Provider — previously managed only via the Authentik UI
-# — under Terraform management. API token lives in Vault
-# `secret/authentik/tf_api_token` (token identifier `terraform-infra-stack`,
-# intent API, user akadmin, no expiry). Required-providers declaration sits
-# in the central terragrunt.hcl so every stack has it available; only this
-# stack configures a provider block.
-
-data "vault_kv_secret_v2" "authentik_tf" {
-  mount = "secret"
-  name  = "authentik"
-}
-
-provider "authentik" {
-  url   = "https://authentik.viktorbarzin.me"
-  token = data.vault_kv_secret_v2.authentik_tf.data["tf_api_token"]
-}
-
-data "authentik_flow" "default_authorization_implicit_consent" {
-  slug = "default-provider-authorization-implicit-consent"
-}
-
-data "authentik_flow" "default_provider_invalidation" {
-  slug = "default-provider-invalidation-flow"
-}
-
-# -----------------------------------------------------------------------------
-# Catch-all Proxy Provider + Application.
-#
-# Created via the Authentik UI ~a year ago; adopted into Terraform 2026-04-18
-# (Wave 6a). The proxy provider is consumed by the embedded outpost
-# (uuid 0eecac07-97c7-443c-8925-05f2f4fe3e47) via an outpost-level binding
-# that stays in the UI — it's a single toggle with no drift risk.
-# -----------------------------------------------------------------------------
-
-resource "authentik_application" "catchall" {
-  name              = "Domain wide catch all"
-  slug              = "domain-wide-catch-all"
-  protocol_provider = authentik_provider_proxy.catchall.id
-  lifecycle {
-    ignore_changes = [meta_description, meta_launch_url, meta_icon, group, backchannel_providers, policy_engine_mode, open_in_new_tab]
-  }
-}
-
-resource "authentik_provider_proxy" "catchall" {
-  name          = "Provider for Domain wide catch all"
-  mode          = "forward_domain"
-  external_host = "https://authentik.viktorbarzin.me"
-  cookie_domain = "viktorbarzin.me"
-  # Flow UUIDs resolved dynamically so a flow re-creation (keeping the slug)
-  # doesn't require an HCL edit.
-  authorization_flow = data.authentik_flow.default_authorization_implicit_consent.id
-  invalidation_flow  = data.authentik_flow.default_provider_invalidation.id
-  lifecycle {
-    ignore_changes = [property_mappings, jwt_federation_sources, skip_path_regex, internal_host, basic_auth_enabled, basic_auth_password_attribute, basic_auth_username_attribute, intercept_header_auth, access_token_validity]
-  }
-}
-
-# -----------------------------------------------------------------------------
-# Default User Login stage — bound to default-authentication-flow.
-# Adopted into Terraform 2026-05-01 to set session_duration=weeks=4 so users
-# stay logged in across browser restarts. There is no Brand.session_duration
-# in authentik 2026.2.x — UserLoginStage is the correct knob.
-# -----------------------------------------------------------------------------
-
-resource "authentik_stage_user_login" "default_login" {
-  name             = "default-authentication-login"
-  session_duration = "weeks=4"
-  lifecycle {
-    # Pin only session_duration; everything else stays UI-managed so the
-    # plan doesn't churn unrelated knobs (e.g. remember_me_offset toggles).
-    ignore_changes = [
-      remember_me_offset,
-      terminate_other_sessions,
-      geoip_binding,
-      network_binding,
-    ]
-  }
-}
diff --git a/stacks/authentik/modules/authentik/main.tf b/stacks/authentik/modules/authentik/main.tf
index 19a0ffc9..c053239e 100644
--- a/stacks/authentik/modules/authentik/main.tf
+++ b/stacks/authentik/modules/authentik/main.tf
@@ -31,10 +31,6 @@ resource "kubernetes_namespace" "authentik" {
       "resource-governance/custom-quota" = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_resource_quota" "authentik" {
diff --git a/stacks/authentik/modules/authentik/pgbouncer.tf b/stacks/authentik/modules/authentik/pgbouncer.tf
index bea34a4d..16126a16 100644
--- a/stacks/authentik/modules/authentik/pgbouncer.tf
+++ b/stacks/authentik/modules/authentik/pgbouncer.tf
@@ -74,36 +74,6 @@ resource "kubernetes_deployment" "pgbouncer" {
             container_port = 6432
           }
 
-          resources {
-            requests = {
-              cpu    = "50m"
-              memory = "128Mi"
-            }
-            limits = {
-              memory = "512Mi"
-            }
-          }
-
-          readiness_probe {
-            tcp_socket {
-              port = 6432
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-            timeout_seconds       = 3
-            failure_threshold     = 3
-          }
-
-          liveness_probe {
-            tcp_socket {
-              port = 6432
-            }
-            initial_delay_seconds = 30
-            period_seconds        = 30
-            timeout_seconds       = 5
-            failure_threshold     = 3
-          }
-
           volume_mount {
             name       = "config"
             mount_path = "/etc/pgbouncer/pgbouncer.ini"
@@ -145,29 +115,6 @@ resource "kubernetes_deployment" "pgbouncer" {
     }
   }
   depends_on = [kubernetes_secret.pgbouncer_auth]
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# --- 3b️⃣ PodDisruptionBudget ---
-# Protects auth against simultaneous node drains. With 3 replicas and
-# minAvailable=2, a single drain rolls cleanly; a simultaneous two-node
-# outage is correctly blocked.
-resource "kubernetes_pod_disruption_budget_v1" "pgbouncer" {
-  metadata {
-    name      = "pgbouncer"
-    namespace = "authentik"
-  }
-  spec {
-    min_available = 2
-    selector {
-      match_labels = {
-        app = "pgbouncer"
-      }
-    }
-  }
 }
 
 # --- 4️⃣ Service ---
diff --git a/stacks/authentik/modules/authentik/values.yaml b/stacks/authentik/modules/authentik/values.yaml
index 9822516c..2827a5a2 100644
--- a/stacks/authentik/modules/authentik/values.yaml
+++ b/stacks/authentik/modules/authentik/values.yaml
@@ -14,38 +14,9 @@ authentik:
     port: 6432
     user: authentik
     password: ""
-    # Persistent client-side connections (safe with PgBouncer session mode;
-    # must be < pgbouncer server_idle_timeout=600s). Cuts Django connection
-    # setup overhead off the ~70 sequential ORM ops per flow stage.
-    conn_max_age: 60
-    conn_health_checks: true
-  cache:
-    # Cache flow plans for 30m and policy evaluations for 15m. Authentik 2026.2
-    # moved cache storage from Redis to Postgres, so a TTL hit is still a
-    # SELECT — but a single indexed lookup beats re-evaluating PolicyBindings.
-    timeout_flows: 1800
-    timeout_policies: 900
-  web:
-    # Gunicorn: 3 workers × 4 threads per server pod (default 2×4).
-    # Pairs with the server memory bump to 2Gi (each worker preloads Django ~500Mi).
-    workers: 3
-    threads: 4
-  worker:
-    # Celery-equivalent worker threads per pod (default 2, renamed from
-    # AUTHENTIK_WORKER__CONCURRENCY in 2025.8).
-    threads: 4
 
 server:
-  replicas: 3
-  # Anonymous Django sessions (no completed login: bots, healthcheckers,
-  # partial flows) expire in 2h. Default is days=1. Once login completes,
-  # UserLoginStage.session_duration takes over via request.session.set_expiry.
-  # Injected via server.env (not authentik.sessions.*) because we use
-  # authentik.existingSecret.secretName, which makes the chart skip
-  # rendering the AUTHENTIK_* secret — so the values block doesn't reach env.
-  env:
-    - name: AUTHENTIK_SESSIONS__UNAUTHENTICATED_AGE
-      value: "hours=2"
+  replicas: 2
   strategy:
     type: RollingUpdate
     rollingUpdate:
@@ -56,7 +27,7 @@ server:
       cpu: 100m
       memory: 1.5Gi
     limits:
-      memory: 2Gi
+      memory: 1.5Gi
   topologySpreadConstraints:
     - maxSkew: 1
       topologyKey: kubernetes.io/hostname
@@ -73,17 +44,12 @@ server:
     diun.include_tags: "^202[0-9].[0-9]+.*$" # no need to annotate the worker as it uses the same image
   pdb:
     enabled: true
-    minAvailable: 2
+    minAvailable: 1
 global:
   addPrometheusAnnotations: true
 
 worker:
-  replicas: 3
-  # Same unauthenticated_age cap as server — both the server (Django session
-  # middleware) and worker (cleanup tasks) need to see the value.
-  env:
-    - name: AUTHENTIK_SESSIONS__UNAUTHENTICATED_AGE
-      value: "hours=2"
+  replicas: 2
   strategy:
     type: RollingUpdate
     rollingUpdate:
@@ -94,7 +60,7 @@ worker:
       cpu: 100m
       memory: 1.5Gi
     limits:
-      memory: 2Gi
+      memory: 1.5Gi
   topologySpreadConstraints:
     - maxSkew: 1
       topologyKey: kubernetes.io/hostname
diff --git a/stacks/beads-server/main.tf b/stacks/beads-server/main.tf
index 006b9db6..bd3ce735 100644
--- a/stacks/beads-server/main.tf
+++ b/stacks/beads-server/main.tf
@@ -3,27 +3,6 @@ variable "tls_secret_name" {
   sensitive = true
 }
 
-variable "beadboard_image_tag" {
-  type    = string
-  default = "17a38e43"
-}
-
-# Mirrors `local.image_tag` in stacks/claude-agent-service/main.tf — keep in
-# sync when the claude-agent-service image is rebuilt. Reused here because the
-# dispatcher + reaper CronJobs only need bd, curl, and jq, which that image
-# already ships.
-variable "claude_agent_service_image_tag" {
-  type    = string
-  default = "2fd7670d"
-}
-
-# Kill switch for auto-dispatch. When false, both CronJobs are suspended. The
-# manual BeadBoard Dispatch button keeps working either way.
-variable "beads_dispatcher_enabled" {
-  type    = bool
-  default = true
-}
-
 resource "kubernetes_namespace" "beads" {
   metadata {
     name = "beads-server"
@@ -31,10 +10,6 @@ resource "kubernetes_namespace" "beads" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_persistent_volume_claim" "dolt_data" {
@@ -170,7 +145,7 @@ resource "kubernetes_deployment" "dolt" {
   }
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].dns_config # KYVERNO_LIFECYCLE_V1
+      spec[0].template[0].spec[0].dns_config
     ]
   }
 }
@@ -374,7 +349,7 @@ resource "kubernetes_deployment" "workbench" {
   }
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].dns_config # KYVERNO_LIFECYCLE_V1
+      spec[0].template[0].spec[0].dns_config
     ]
   }
 }
@@ -411,13 +386,13 @@ module "tls_secret" {
 }
 
 module "ingress" {
-  source           = "../../modules/kubernetes/ingress_factory"
-  dns_type         = "proxied"
-  namespace        = kubernetes_namespace.beads.metadata[0].name
-  name             = "dolt-workbench"
-  tls_secret_name  = var.tls_secret_name
-  protected        = false
-  exclude_crowdsec = true
+  source            = "../../modules/kubernetes/ingress_factory"
+  dns_type          = "proxied"
+  namespace         = kubernetes_namespace.beads.metadata[0].name
+  name              = "dolt-workbench"
+  tls_secret_name   = var.tls_secret_name
+  protected         = false
+  exclude_crowdsec  = true
   extra_annotations = {
     "gethomepage.dev/enabled"      = "true"
     "gethomepage.dev/name"         = "Dolt Workbench"
@@ -488,38 +463,6 @@ resource "kubernetes_config_map" "beadboard_config" {
   }
 }
 
-# Pulls the claude-agent-service bearer token from Vault so BeadBoard can
-# dispatch agent jobs via the in-cluster HTTP API.
-resource "kubernetes_manifest" "beadboard_agent_service_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "beadboard-agent-service"
-      namespace = kubernetes_namespace.beads.metadata[0].name
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "beadboard-agent-service"
-      }
-      data = [
-        {
-          secretKey = "api_bearer_token"
-          remoteRef = {
-            key      = "claude-agent-service"
-            property = "api_bearer_token"
-          }
-        },
-      ]
-    }
-  }
-}
-
 resource "kubernetes_deployment" "beadboard" {
   metadata {
     name      = "beadboard"
@@ -528,9 +471,6 @@ resource "kubernetes_deployment" "beadboard" {
       app  = "beadboard"
       tier = local.tiers.aux
     }
-    annotations = {
-      "reloader.stakater.com/auto" = "true"
-    }
   }
   spec {
     replicas = 1
@@ -567,29 +507,13 @@ resource "kubernetes_deployment" "beadboard" {
 
         container {
           name  = "beadboard"
-          # Phase 3 cutover 2026-05-07 — Forgejo registry consolidation.
-          image = "forgejo.viktorbarzin.me/viktor/beadboard:${var.beadboard_image_tag}"
+          image = "registry.viktorbarzin.me:5050/beadboard:latest"
 
           port {
             name           = "http"
             container_port = 3000
           }
 
-          env {
-            name  = "CLAUDE_AGENT_SERVICE_URL"
-            value = "http://claude-agent-service.claude-agent.svc.cluster.local:8080"
-          }
-
-          env {
-            name = "CLAUDE_AGENT_BEARER_TOKEN"
-            value_from {
-              secret_key_ref {
-                name = "beadboard-agent-service"
-                key  = "api_bearer_token"
-              }
-            }
-          }
-
           volume_mount {
             name       = "beads-writable"
             mount_path = "/app/.beads"
@@ -646,7 +570,7 @@ resource "kubernetes_deployment" "beadboard" {
   }
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].dns_config # KYVERNO_LIFECYCLE_V1
+      spec[0].template[0].spec[0].dns_config
     ]
   }
 }
@@ -672,13 +596,13 @@ resource "kubernetes_service" "beadboard" {
 }
 
 module "beadboard_ingress" {
-  source           = "../../modules/kubernetes/ingress_factory"
-  dns_type         = "proxied"
-  namespace        = kubernetes_namespace.beads.metadata[0].name
-  name             = "beadboard"
-  tls_secret_name  = var.tls_secret_name
-  protected        = true
-  exclude_crowdsec = true
+  source            = "../../modules/kubernetes/ingress_factory"
+  dns_type          = "proxied"
+  namespace         = kubernetes_namespace.beads.metadata[0].name
+  name              = "beadboard"
+  tls_secret_name   = var.tls_secret_name
+  protected         = true
+  exclude_crowdsec  = true
   extra_annotations = {
     "gethomepage.dev/enabled"      = "true"
     "gethomepage.dev/name"         = "BeadBoard"
@@ -688,275 +612,3 @@ module "beadboard_ingress" {
     "gethomepage.dev/pod-selector" = ""
   }
 }
-
-# ── Beads auto-dispatch (dispatcher + reaper CronJobs) ──
-#
-# Flow:
-#   user: bd assign <id> agent
-#     └──> CronJob: beads-dispatcher (every 2 min)
-#            1. GET BeadBoard /api/agent-status — skip if claude-agent-service busy
-#            2. bd query 'assignee=agent AND status=open' — pick highest priority
-#            3. bd update -s in_progress  (claim; next tick won't re-pick)
-#            4. POST BeadBoard /api/agent-dispatch — reuses prompt-build + bearer flow
-#            5. bd note "dispatched: job=<id>"  (or rollback + note on failure)
-#
-#   CronJob: beads-reaper (every 10 min)
-#     └── for bead (assignee=agent, status=in_progress, updated_at > 30m):
-#           bd update -s blocked + bd note  (recover from pod crashes mid-run)
-#
-# The claude-agent-service image ships bd + jq + curl — no separate image built.
-
-resource "kubernetes_config_map" "beads_metadata" {
-  metadata {
-    name      = "beads-metadata"
-    namespace = kubernetes_namespace.beads.metadata[0].name
-  }
-  data = {
-    "metadata.json" = jsonencode({
-      database         = "dolt"
-      backend          = "dolt"
-      dolt_mode        = "server"
-      dolt_server_host = "${kubernetes_service.dolt.metadata[0].name}.${kubernetes_namespace.beads.metadata[0].name}.svc.cluster.local"
-      dolt_server_port = 3306
-      dolt_server_user = "beads"
-      dolt_database    = "code"
-      project_id       = "a8f8bae7-ce65-4145-a5db-a13d11d297da"
-    })
-  }
-}
-
-locals {
-  # Phase 3 cutover 2026-05-07 — Forgejo registry consolidation.
-  claude_agent_service_image = "forgejo.viktorbarzin.me/viktor/claude-agent-service:${var.claude_agent_service_image_tag}"
-  beadboard_internal_url     = "http://${kubernetes_service.beadboard.metadata[0].name}.${kubernetes_namespace.beads.metadata[0].name}.svc.cluster.local"
-
-  beads_script_prelude = <<-EOT
-    set -euo pipefail
-    # bd with Dolt server mode needs metadata.json in a directory it can walk.
-    # ConfigMap mounts are read-only — copy to a writable location before use.
-    mkdir -p /tmp/.beads
-    cp /etc/beads-metadata/metadata.json /tmp/.beads/metadata.json
-  EOT
-}
-
-resource "kubernetes_cron_job_v1" "beads_dispatcher" {
-  metadata {
-    name      = "beads-dispatcher"
-    namespace = kubernetes_namespace.beads.metadata[0].name
-  }
-  spec {
-    schedule                      = "*/2 * * * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 3
-    starting_deadline_seconds     = 60
-    suspend                       = !var.beads_dispatcher_enabled
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 0
-        ttl_seconds_after_finished = 600
-        template {
-          metadata {
-            labels = {
-              app = "beads-dispatcher"
-            }
-          }
-          spec {
-            restart_policy = "Never"
-            image_pull_secrets {
-              name = "registry-credentials"
-            }
-            container {
-              name  = "dispatcher"
-              image = local.claude_agent_service_image
-              command = ["/bin/sh", "-c", <<-EOT
-                ${local.beads_script_prelude}
-
-                BUSY=$(curl -sf "$${BEADBOARD_URL}/api/agent-status" | jq -r '.busy // false')
-                if [ "$BUSY" != "false" ]; then
-                  echo "claude-agent-service is busy — skipping tick"
-                  exit 0
-                fi
-
-                BEAD=$(bd --db /tmp/.beads query 'assignee=agent AND status=open' --json \
-                  | jq -r '[.[] | select(.acceptance_criteria and (.acceptance_criteria | length) > 0)]
-                           | sort_by(.priority, .updated_at)[0].id // empty')
-
-                if [ -z "$BEAD" ]; then
-                  echo "no eligible beads (assignee=agent, status=open, has acceptance_criteria)"
-                  exit 0
-                fi
-
-                echo "picked bead: $BEAD"
-
-                bd --db /tmp/.beads update "$BEAD" -s in_progress
-                bd --db /tmp/.beads note   "$BEAD" "auto-dispatcher claimed at $(date -u +%Y-%m-%dT%H:%M:%SZ)"
-
-                RESP=$(curl -sS -w '\n%%{http_code}' -X POST \
-                  -H 'Content-Type: application/json' \
-                  -d "{\"taskId\":\"$BEAD\"}" \
-                  "$${BEADBOARD_URL}/api/agent-dispatch")
-                CODE=$(printf '%s' "$RESP" | tail -n1)
-                BODY=$(printf '%s' "$RESP" | sed '$d')
-
-                if [ "$CODE" = "200" ]; then
-                  JOB_ID=$(printf '%s' "$BODY" | jq -r '.job_id // "unknown"')
-                  bd --db /tmp/.beads note "$BEAD" "dispatched: job=$JOB_ID"
-                  echo "dispatched $BEAD as job $JOB_ID"
-                else
-                  # Roll the claim back so the next tick can retry.
-                  bd --db /tmp/.beads update "$BEAD" -s open
-                  bd --db /tmp/.beads note   "$BEAD" "dispatch failed HTTP $CODE: $BODY"
-                  echo "dispatch FAILED for $BEAD: HTTP $CODE — $BODY" >&2
-                  exit 1
-                fi
-              EOT
-              ]
-              env {
-                name  = "BEADBOARD_URL"
-                value = local.beadboard_internal_url
-              }
-              env {
-                name = "API_BEARER_TOKEN"
-                value_from {
-                  secret_key_ref {
-                    name = "beadboard-agent-service"
-                    key  = "api_bearer_token"
-                  }
-                }
-              }
-              env {
-                name  = "BEADS_ACTOR"
-                value = "beads-dispatcher"
-              }
-              env {
-                name  = "HOME"
-                value = "/tmp"
-              }
-              volume_mount {
-                name       = "beads-metadata"
-                mount_path = "/etc/beads-metadata"
-                read_only  = true
-              }
-              resources {
-                requests = {
-                  cpu    = "50m"
-                  memory = "128Mi"
-                }
-                limits = {
-                  memory = "256Mi"
-                }
-              }
-            }
-            volume {
-              name = "beads-metadata"
-              config_map {
-                name = kubernetes_config_map.beads_metadata.metadata[0].name
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-resource "kubernetes_cron_job_v1" "beads_reaper" {
-  metadata {
-    name      = "beads-reaper"
-    namespace = kubernetes_namespace.beads.metadata[0].name
-  }
-  spec {
-    schedule                      = "*/10 * * * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 3
-    starting_deadline_seconds     = 60
-    suspend                       = !var.beads_dispatcher_enabled
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 0
-        ttl_seconds_after_finished = 600
-        template {
-          metadata {
-            labels = {
-              app = "beads-reaper"
-            }
-          }
-          spec {
-            restart_policy = "Never"
-            image_pull_secrets {
-              name = "registry-credentials"
-            }
-            container {
-              name  = "reaper"
-              image = local.claude_agent_service_image
-              command = ["/bin/sh", "-c", <<-EOT
-                ${local.beads_script_prelude}
-
-                THRESHOLD_MIN=30
-                NOW=$(date -u +%s)
-
-                bd --db /tmp/.beads query 'assignee=agent AND status=in_progress' --json \
-                  | jq -c '.[]' \
-                  | while read -r BEAD_JSON; do
-                      ID=$(printf '%s' "$BEAD_JSON" | jq -r '.id')
-                      LAST_UPDATE=$(printf '%s' "$BEAD_JSON" | jq -r '.updated_at')
-                      # Alpine's busybox date lacks GNU -d; parse ISO-8601 with python3.
-                      LAST_TS=$(python3 -c "from datetime import datetime; print(int(datetime.fromisoformat('$LAST_UPDATE'.replace('Z','+00:00')).timestamp()))")
-                      AGE_MIN=$(( (NOW - LAST_TS) / 60 ))
-                      if [ "$AGE_MIN" -gt "$THRESHOLD_MIN" ]; then
-                        bd --db /tmp/.beads note   "$ID" "reaper: no progress for $${AGE_MIN}m (threshold $${THRESHOLD_MIN}m) — blocking"
-                        bd --db /tmp/.beads update "$ID" -s blocked
-                        echo "REAPED $ID (stale $${AGE_MIN}m)"
-                      else
-                        echo "keeping $ID (age $${AGE_MIN}m < $${THRESHOLD_MIN}m)"
-                      fi
-                    done
-              EOT
-              ]
-              env {
-                name  = "BEADS_ACTOR"
-                value = "beads-reaper"
-              }
-              env {
-                name  = "HOME"
-                value = "/tmp"
-              }
-              volume_mount {
-                name       = "beads-metadata"
-                mount_path = "/etc/beads-metadata"
-                read_only  = true
-              }
-              resources {
-                requests = {
-                  cpu    = "50m"
-                  memory = "128Mi"
-                }
-                limits = {
-                  memory = "256Mi"
-                }
-              }
-            }
-            volume {
-              name = "beads-metadata"
-              config_map {
-                name = kubernetes_config_map.beads_metadata.metadata[0].name
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/blog/main.tf b/stacks/blog/main.tf
index bf5e2699..e044f4d7 100644
--- a/stacks/blog/main.tf
+++ b/stacks/blog/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "website" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -75,10 +71,6 @@ resource "kubernetes_deployment" "blog" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "blog" {
diff --git a/stacks/broker-sync/main.tf b/stacks/broker-sync/main.tf
index 7c99a916..30112b91 100644
--- a/stacks/broker-sync/main.tf
+++ b/stacks/broker-sync/main.tf
@@ -14,10 +14,6 @@ resource "kubernetes_namespace" "broker_sync" {
       tier              = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 # Secrets for all providers. Seeded in Vault at `secret/broker-sync`:
@@ -105,7 +101,7 @@ resource "kubernetes_cron_job_v1" "version_probe" {
       metadata {}
       spec {
         backoff_limit              = 1
-        ttl_seconds_after_finished = 86400
+        ttl_seconds_after_finished = 300
         template {
           metadata {
             labels = { app = "broker-sync", component = "version-probe" }
@@ -126,10 +122,6 @@ resource "kubernetes_cron_job_v1" "version_probe" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Trading212 steady-state daily sync. Phase 1 deliverable.
@@ -226,10 +218,6 @@ resource "kubernetes_cron_job_v1" "trading212" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # IMAP ingest — InvestEngine + Schwab email parsers, one combined pod.
@@ -246,12 +234,7 @@ resource "kubernetes_cron_job_v1" "imap" {
     concurrency_policy            = "Forbid"
     successful_jobs_history_limit = 3
     failed_jobs_history_limit     = 5
-    # Unsuspended 2026-04-19 for RSU vest ground-truth ingestion — the parser
-    # now detects Schwab Release Confirmations and scaffolds VestEvents; the
-    # postgres sink that persists them into payslip_ingest.rsu_vest_events is
-    # pending a real-email fixture and cross-service DB grant (see
-    # follow-up beads task filed under the RSU tax spike fix epic).
-    suspend = false
+    suspend                       = true # enable in Phase 2
     job_template {
       metadata {}
       spec {
@@ -360,10 +343,6 @@ resource "kubernetes_cron_job_v1" "imap" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # CSV drop-folder processor — Scottish Widows, Fidelity quarterly, Freetrade, etc.
@@ -452,10 +431,6 @@ resource "kubernetes_cron_job_v1" "csv_drop" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Monthly HMRC FX reconciliation — rewrites last-month activities with official
@@ -544,10 +519,6 @@ resource "kubernetes_cron_job_v1" "fx_reconcile" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Backup: snapshot sync.db / fx.db / csv-archive into NFS daily, keep 30 days.
@@ -625,170 +596,4 @@ resource "kubernetes_cron_job_v1" "backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# -----------------------------------------------------------------------------
-# Fidelity UK PlanViewer — monthly pension contribution sync
-#
-# Architecture notes:
-# - The CLI (`broker-sync fidelity-ingest`) loads storage_state.json, boots
-#   headless Chromium, scrapes the transaction history + valuation JSON, and
-#   posts DEPOSIT activities to Wealthfolio. See
-#   broker-sync/docs/providers/fidelity-planviewer.md for the seed workflow.
-# - Storage_state is staged to Vault (`secret/broker-sync` →
-#   `fidelity_storage_state`). ESO projects all broker-sync keys into the
-#   shared `broker-sync-secrets` K8s Secret; an init container writes the
-#   JSON blob to the PVC so the main container can load it.
-# - Image needs Chromium baked in — add the `fidelity-capable: "true"` label
-#   so the Dockerfile/CI treats this CronJob's pod spec as the Playwright
-#   variant. Until the Playwright image ships, keep `suspend = true`.
-# - Schedule: 05:00 UK on the 20th of each month — well after Viktor's mid-
-#   month payroll contribution has settled (finance history shows credits
-#   landing 13th-18th).
-resource "kubernetes_cron_job_v1" "fidelity" {
-  metadata {
-    name      = "broker-sync-fidelity"
-    namespace = kubernetes_namespace.broker_sync.metadata[0].name
-    labels    = { app = "broker-sync", component = "fidelity" }
-  }
-  spec {
-    schedule                      = "0 5 20 * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 5
-    # Suspended until the broker-sync image ships with Playwright + Chromium.
-    suspend = true
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 86400
-        template {
-          metadata {
-            labels = { app = "broker-sync", component = "fidelity" }
-          }
-          spec {
-            restart_policy = "OnFailure"
-            # Materialise the JSON storage_state from the projected Secret
-            # onto the PVC where Playwright expects to read it. Init container
-            # runs as root; the main broker-sync container runs as uid 10001,
-            # so we chown+chmod 600 to grant read access to the broker user.
-            init_container {
-              name  = "stage-storage-state"
-              image = "busybox:1.36"
-              command = ["/bin/sh", "-c", <<-EOT
-              set -eu
-              mkdir -p /data
-              cp /secrets/fidelity_storage_state /data/fidelity_storage_state.json
-              chown 10001:10001 /data/fidelity_storage_state.json
-              chmod 600 /data/fidelity_storage_state.json
-              EOT
-              ]
-              volume_mount {
-                name       = "secrets"
-                mount_path = "/secrets"
-                read_only  = true
-              }
-              volume_mount {
-                name       = "data"
-                mount_path = "/data"
-              }
-              resources {
-                requests = { cpu = "5m", memory = "8Mi" }
-                limits   = { memory = "32Mi" }
-              }
-            }
-            container {
-              name    = "broker-sync"
-              image   = local.broker_sync_image
-              command = ["broker-sync", "fidelity-ingest"]
-
-              env {
-                name  = "BROKER_SYNC_DATA_DIR"
-                value = "/data"
-              }
-              env {
-                name  = "WF_SESSION_PATH"
-                value = "/data/wealthfolio_session.json"
-              }
-              env {
-                name  = "FIDELITY_STORAGE_STATE_PATH"
-                value = "/data/fidelity_storage_state.json"
-              }
-              env {
-                name = "FIDELITY_PLAN_ID"
-                value_from {
-                  secret_key_ref {
-                    name = "broker-sync-secrets"
-                    key  = "fidelity_plan_id"
-                  }
-                }
-              }
-              env {
-                name = "WF_BASE_URL"
-                value_from {
-                  secret_key_ref {
-                    name = "broker-sync-secrets"
-                    key  = "wf_base_url"
-                  }
-                }
-              }
-              env {
-                name = "WF_USERNAME"
-                value_from {
-                  secret_key_ref {
-                    name = "broker-sync-secrets"
-                    key  = "wf_username"
-                  }
-                }
-              }
-              env {
-                name = "WF_PASSWORD"
-                value_from {
-                  secret_key_ref {
-                    name = "broker-sync-secrets"
-                    key  = "wf_password"
-                  }
-                }
-              }
-              volume_mount {
-                name       = "data"
-                mount_path = "/data"
-              }
-              resources {
-                # Chromium is hungry — headless shell + page rendering
-                # comfortably under 1Gi, spike up to 1.2Gi during full-page
-                # screenshots.
-                requests = { cpu = "50m", memory = "512Mi" }
-                limits   = { memory = "1280Mi" }
-              }
-            }
-            volume {
-              name = "secrets"
-              secret {
-                secret_name = "broker-sync-secrets"
-                items {
-                  key  = "fidelity_storage_state"
-                  path = "fidelity_storage_state"
-                }
-              }
-            }
-            volume {
-              name = "data"
-              persistent_volume_claim {
-                claim_name = kubernetes_persistent_volume_claim.data_encrypted.metadata[0].name
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
 }
diff --git a/stacks/calico/main.tf b/stacks/calico/main.tf
deleted file mode 100644
index 79bc756b..00000000
--- a/stacks/calico/main.tf
+++ /dev/null
@@ -1,67 +0,0 @@
-# Calico CNI
-#
-# Calico has underpinned this cluster's pod networking since 2024-07-30, installed
-# as raw kubectl manifests (tigera-operator Deployment + CRDs + Installation CR).
-# Bringing the full stack under Terraform is high-blast — the operator and its
-# Deployment must never flap during node pressure or during any apply, because
-# new pod scheduling breaks within ~seconds of a CNI outage.
-#
-# This stack (created 2026-04-18 Wave 5b) adopts the three namespaces only:
-# calico-system, calico-apiserver, tigera-operator. The `tigera-operator`
-# Deployment, the 20+ CRDs it manages, and the `Installation` CR itself are
-# intentionally *not* adopted yet — they require a low-traffic window and a
-# careful ignore_changes set to cover operator-generated defaults on the
-# Installation CR. Follow-up tracked in beads code-3ad.
-#
-# The namespaces are safe to adopt (no networking impact — they're just label
-# containers) and give TF an audit trail entry for the labels/tier Kyverno
-# cares about.
-
-resource "kubernetes_namespace" "calico_system" {
-  metadata {
-    name = "calico-system"
-    labels = {
-      name = "calico-system"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode label on every namespace.
-    # pod-security.kubernetes.io/* labels are applied by the tigera-operator
-    # reconciler on calico-system + calico-apiserver for PSA 'privileged'.
-    ignore_changes = [
-      metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"],
-      metadata[0].labels["pod-security.kubernetes.io/enforce"],
-      metadata[0].labels["pod-security.kubernetes.io/enforce-version"],
-    ]
-  }
-}
-
-resource "kubernetes_namespace" "calico_apiserver" {
-  metadata {
-    name = "calico-apiserver"
-    labels = {
-      name = "calico-apiserver"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1 + PSA labels applied by tigera-operator (see calico_system).
-    ignore_changes = [
-      metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"],
-      metadata[0].labels["pod-security.kubernetes.io/enforce"],
-      metadata[0].labels["pod-security.kubernetes.io/enforce-version"],
-    ]
-  }
-}
-
-resource "kubernetes_namespace" "tigera_operator" {
-  metadata {
-    name = "tigera-operator"
-    labels = {
-      name = "tigera-operator"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
diff --git a/stacks/calico/terragrunt.hcl b/stacks/calico/terragrunt.hcl
deleted file mode 100644
index eb956424..00000000
--- a/stacks/calico/terragrunt.hcl
+++ /dev/null
@@ -1,6 +0,0 @@
-include "root" {
-  path = find_in_parent_folders()
-}
-
-# No platform dependency — Calico provides the cluster network the rest
-# of the platform runs on. This stack must not introduce a dep cycle.
diff --git a/stacks/changedetection/main.tf b/stacks/changedetection/main.tf
index 63db05ba..d2113f4d 100644
--- a/stacks/changedetection/main.tf
+++ b/stacks/changedetection/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "changedetection" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -186,10 +182,6 @@ resource "kubernetes_deployment" "changedetection" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "changedetection" {
diff --git a/stacks/chrome-service/README.md b/stacks/chrome-service/README.md
deleted file mode 100644
index b18e9116..00000000
--- a/stacks/chrome-service/README.md
+++ /dev/null
@@ -1,90 +0,0 @@
-# chrome-service
-
-In-cluster headed Chromium exposed over Playwright's WebSocket protocol.
-Sibling services drive it instead of running their own in-process browser
-— useful when the upstream tries to detect headless mode (e.g. hmembeds'
-`disable-devtool.js` redirect-to-google trap).
-
-## Connect
-
-```python
-from playwright.async_api import async_playwright
-
-WS_URL   = "ws://chrome-service.chrome-service.svc.cluster.local:3000"
-WS_TOKEN = os.environ["CHROME_WS_TOKEN"]   # 32-byte URL-safe random
-
-async with async_playwright() as p:
-    browser = await p.chromium.connect(f"{WS_URL}/{WS_TOKEN}", timeout=15_000)
-    context = await browser.new_context()
-    await context.add_init_script(STEALTH_JS)   # see files/stealth.js
-    page = await context.new_page()
-    ...
-    await browser.close()
-```
-
-The token comes from Vault KV `secret/chrome-service.api_bearer_token`,
-which ESO syncs into a per-namespace K8s Secret in each caller stack
-(see f1-stream's `chrome-service-client-secrets`).
-
-## Add a new caller
-
-1. **Label the caller's namespace** so the chrome-service NetworkPolicy
-   admits it:
-   ```hcl
-   resource "kubernetes_namespace" "<ns>" {
-     metadata {
-       labels = {
-         "chrome-service.viktorbarzin.me/client" = "true"
-       }
-     }
-   }
-   ```
-2. **Add an ExternalSecret** in the caller stack pulling the token:
-   ```hcl
-   resource "kubernetes_manifest" "chrome_token" {
-     manifest = {
-       apiVersion = "external-secrets.io/v1beta1"
-       kind       = "ExternalSecret"
-       metadata = { name = "chrome-service-client-secrets", namespace = "<ns>" }
-       spec = {
-         refreshInterval = "15m"
-         secretStoreRef  = { name = "vault-kv", kind = "ClusterSecretStore" }
-         target          = { name = "chrome-service-client-secrets" }
-         dataFrom        = [{ extract = { key = "chrome-service" } }]
-       }
-     }
-   }
-   ```
-3. **Inject `CHROME_WS_URL` + `CHROME_WS_TOKEN`** into the caller's pod env.
-   Use `secret_key_ref` for the token; the URL is a plain value.
-4. **Vendor `stealth.js`** into the caller (or just paste — it's ~40 lines)
-   and apply via `await context.add_init_script(STEALTH_JS)` after every
-   `new_context()`. Without it, hmembeds-class anti-bot still trips.
-
-## Image pin
-
-Both the server image (`mcr.microsoft.com/playwright:v1.48.0-noble` in
-`main.tf`) and the client (`playwright==1.48.0` in callers' requirements)
-must match minor-versions. Bump in lockstep — Playwright protocol changes
-between minors.
-
-## Operations
-
-- **Storage**: encrypted PVC at `/profile` for cookies + npm cache. Ephemeral
-  contexts (`browser.new_context()`) bypass the profile; persistent contexts
-  share it. Backed up tar+gzip every 6h to `/srv/nfs/chrome-service-backup/`,
-  30-day retention.
-- **Probes**: TCP/3000. Playwright run-server has no HTTP `/health`; a TCP
-  open is the only liveness signal available without spinning a browser.
-- **Health page**: visit `https://chrome.viktorbarzin.me` (Authentik-gated)
-  to confirm the pod is up. The WS port stays internal-only.
-- **Token rotation**: `vault kv put secret/chrome-service api_bearer_token=$(python3 -c 'import secrets; print(secrets.token_urlsafe(32))')`.
-  Reloader cascades the rotation to both the server pod and any caller
-  whose secret has the `reloader.stakater.com/auto = "true"` annotation.
-
-## Why headed (Xvfb) instead of headless?
-
-`disable-devtool.js` and similar libraries detect `navigator.webdriver`,
-console-clear timing, and the `HeadlessChromium/...` user-agent suffix.
-Running headed inside `Xvfb :99` reports as a normal Chromium, and the
-stealth init script handles the JS-visible giveaways.
diff --git a/stacks/chrome-service/files/novnc/Dockerfile b/stacks/chrome-service/files/novnc/Dockerfile
deleted file mode 100644
index e447a6da..00000000
--- a/stacks/chrome-service/files/novnc/Dockerfile
+++ /dev/null
@@ -1,19 +0,0 @@
-FROM docker.io/library/ubuntu:24.04
-
-RUN apt-get update \
- && apt-get install -y --no-install-recommends \
-      x11vnc \
-      novnc \
-      websockify \
-      ca-certificates \
- && rm -rf /var/lib/apt/lists/*
-
-# noVNC ships /usr/share/novnc/vnc.html; alias to index.html so / works.
-RUN ln -sf /usr/share/novnc/vnc.html /usr/share/novnc/index.html
-
-EXPOSE 6080
-
-COPY entrypoint.sh /entrypoint.sh
-RUN chmod +x /entrypoint.sh
-
-CMD ["/entrypoint.sh"]
diff --git a/stacks/chrome-service/files/novnc/entrypoint.sh b/stacks/chrome-service/files/novnc/entrypoint.sh
deleted file mode 100644
index 1ec6657f..00000000
--- a/stacks/chrome-service/files/novnc/entrypoint.sh
+++ /dev/null
@@ -1,39 +0,0 @@
-#!/usr/bin/env bash
-# Connect to the chrome-service container's Xvfb (shared pod network, TCP)
-# and serve the noVNC HTML5 client + websockify bridge on :6080.
-set -e
-
-for i in 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15; do
-  if echo > /dev/tcp/127.0.0.1/6099 2>/dev/null; then
-    echo "Xvfb TCP up after attempt $i"
-    break
-  fi
-  echo "waiting for Xvfb TCP 6099 attempt=$i"
-  sleep 2
-done
-
-# websockify runs as PID 1; x11vnc is a child so its logs land on container stdout
-# `-noshm` skips MIT-SHM probes that fail across container boundaries (each
-# container has its own /dev/shm); `-noxdamage` skips XDAMAGE which Xvfb
-# doesn't expose; `-quiet` keeps the polling chatter out of pod logs.
-echo "starting x11vnc -> :5900"
-x11vnc -display localhost:99 -nopw -listen 0.0.0.0 -rfbport 5900 \
-       -forever -shared -noshm -noxdamage -quiet 2>&1 &
-X11VNC_PID=$!
-
-for i in 1 2 3 4 5 6 7 8 9 10; do
-  if echo > /dev/tcp/127.0.0.1/5900 2>/dev/null; then
-    echo "x11vnc bound 5900 after attempt $i"
-    break
-  fi
-  echo "waiting for x11vnc :5900 attempt=$i"
-  sleep 2
-done
-
-if ! echo > /dev/tcp/127.0.0.1/5900 2>/dev/null; then
-  echo "ERROR: x11vnc did not bind 5900"
-  exit 1
-fi
-
-echo "starting websockify -> :6080"
-exec websockify --web=/usr/share/novnc 6080 localhost:5900
diff --git a/stacks/chrome-service/files/stealth.js b/stacks/chrome-service/files/stealth.js
deleted file mode 100644
index dfae98a8..00000000
--- a/stacks/chrome-service/files/stealth.js
+++ /dev/null
@@ -1,54 +0,0 @@
-// Minimal stealth init script for Playwright-driven Chromium.
-// Vendored from puppeteer-extra-plugin-stealth/evasions/* (MIT) — covers:
-//   webdriver, chrome.runtime, navigator.plugins, navigator.languages,
-//   Permissions.query, WebGL getParameter (vendor + renderer spoof).
-// Run via context.add_init_script() so it executes before any page script.
-(() => {
-  // navigator.webdriver — most common detection, removed entirely.
-  Object.defineProperty(Navigator.prototype, 'webdriver', { get: () => undefined });
-
-  // window.chrome.runtime — many sites check that real Chrome exposes this.
-  if (!window.chrome) window.chrome = {};
-  window.chrome.runtime = window.chrome.runtime || {};
-
-  // navigator.plugins — headless reports zero; spoof a plausible PDF viewer.
-  Object.defineProperty(navigator, 'plugins', {
-    get: () => [{ name: 'Chrome PDF Plugin' }, { name: 'Chrome PDF Viewer' }, { name: 'Native Client' }],
-  });
-
-  // navigator.languages — headless returns empty array.
-  Object.defineProperty(navigator, 'languages', { get: () => ['en-US', 'en'] });
-
-  // Permissions.query — headless returns 'denied' for notifications instead of 'default'.
-  const origQuery = window.navigator.permissions && window.navigator.permissions.query;
-  if (origQuery) {
-    window.navigator.permissions.query = (parameters) =>
-      parameters && parameters.name === 'notifications'
-        ? Promise.resolve({ state: Notification.permission })
-        : origQuery(parameters);
-  }
-
-  // WebGL getParameter — spoof vendor + renderer strings to a real GPU.
-  const spoofGl = (proto) => {
-    if (!proto) return;
-    const orig = proto.getParameter;
-    proto.getParameter = function (parameter) {
-      if (parameter === 37445) return 'Intel Inc.';                   // UNMASKED_VENDOR_WEBGL
-      if (parameter === 37446) return 'Intel Iris OpenGL Engine';     // UNMASKED_RENDERER_WEBGL
-      return orig.apply(this, arguments);
-    };
-  };
-  spoofGl(window.WebGLRenderingContext && window.WebGLRenderingContext.prototype);
-  spoofGl(window.WebGL2RenderingContext && window.WebGL2RenderingContext.prototype);
-
-  // disable-devtool.js (theajack/disable-devtool) auto-inits via a script
-  // tag with `disable-devtool-auto`. Its Performance detector trips under
-  // Playwright (CDP adds console.log latency vs console.table) and the
-  // redirect URL is hard-coded — for hmembeds that's google.com.
-  // Hide the auto-init marker so the library's IIFE exits early.
-  const origQS = Document.prototype.querySelector;
-  Document.prototype.querySelector = function (sel) {
-    if (typeof sel === 'string' && sel.indexOf('disable-devtool-auto') !== -1) return null;
-    return origQS.apply(this, arguments);
-  };
-})();
diff --git a/stacks/chrome-service/main.tf b/stacks/chrome-service/main.tf
deleted file mode 100644
index 13ab49ee..00000000
--- a/stacks/chrome-service/main.tf
+++ /dev/null
@@ -1,504 +0,0 @@
-variable "tls_secret_name" {
-  type      = string
-  sensitive = true
-}
-variable "nfs_server" { type = string }
-
-locals {
-  namespace = "chrome-service"
-  labels = {
-    app = "chrome-service"
-  }
-  # Pin to the same Playwright minor that the Python client requires.
-  # If you bump this image, also bump `playwright==X.Y.Z` in the client
-  # (currently f1-stream) and re-run the connect smoke test.
-  image = "mcr.microsoft.com/playwright:v1.48.0-noble"
-}
-
-# --- Namespace ---
-
-resource "kubernetes_namespace" "chrome_service" {
-  metadata {
-    name = local.namespace
-    labels = {
-      "istio-injection"                       = "disabled"
-      tier                                    = local.tiers.aux
-      "chrome-service.viktorbarzin.me/server" = "true"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-# --- Secrets (single-key extract: api_bearer_token) ---
-
-resource "kubernetes_manifest" "external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "chrome-service-secrets"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "chrome-service-secrets"
-      }
-      dataFrom = [{
-        extract = {
-          key = "chrome-service"
-        }
-      }]
-    }
-  }
-  depends_on = [kubernetes_namespace.chrome_service]
-}
-
-# tls-secret for the chrome.viktorbarzin.me ingress is auto-cloned into
-# every namespace by Kyverno's `sync-tls-secret` ClusterPolicy — no local
-# module call needed.
-
-# --- Encrypted profile PVC ---
-# Holds Chromium user data: cookies, localStorage, IndexedDB. Sites we
-# drive may set auth tokens or session cookies — encrypted is correct.
-resource "kubernetes_persistent_volume_claim" "profile_encrypted" {
-  wait_until_bound = false
-  metadata {
-    name      = "chrome-service-profile-encrypted"
-    namespace = kubernetes_namespace.chrome_service.metadata[0].name
-    annotations = {
-      "resize.topolvm.io/threshold"     = "80%"
-      "resize.topolvm.io/increase"      = "100%"
-      "resize.topolvm.io/storage_limit" = "10Gi"
-    }
-  }
-  spec {
-    access_modes       = ["ReadWriteOnce"]
-    storage_class_name = "proxmox-lvm-encrypted"
-    resources {
-      requests = {
-        storage = "2Gi"
-      }
-    }
-  }
-}
-
-# --- NFS backup target ---
-module "nfs_chrome_service_backup_host" {
-  source     = "../../modules/kubernetes/nfs_volume"
-  name       = "chrome-service-backup-host"
-  namespace  = kubernetes_namespace.chrome_service.metadata[0].name
-  nfs_server = "192.168.1.127"
-  nfs_path   = "/srv/nfs/chrome-service-backup"
-}
-
-# --- Deployment ---
-
-resource "kubernetes_deployment" "chrome_service" {
-  metadata {
-    name      = "chrome-service"
-    namespace = kubernetes_namespace.chrome_service.metadata[0].name
-    labels = merge(local.labels, {
-      tier = local.tiers.aux
-    })
-    annotations = {
-      "reloader.stakater.com/auto" = "true"
-    }
-  }
-  spec {
-    replicas = 1
-    strategy {
-      type = "Recreate"
-    }
-    selector {
-      match_labels = local.labels
-    }
-    template {
-      metadata {
-        labels = local.labels
-      }
-      spec {
-        # The noVNC sidecar pulls from registry.viktorbarzin.me which needs
-        # auth. Kyverno's `sync-registry-credentials` ClusterPolicy syncs
-        # the secret into every namespace.
-        image_pull_secrets {
-          name = "registry-credentials"
-        }
-        security_context {
-          run_as_user  = 1000
-          run_as_group = 1000
-          fs_group     = 1000
-          seccomp_profile {
-            type = "RuntimeDefault"
-          }
-        }
-
-        # Fix profile dir ownership (PVC may have root-owned files from prior run).
-        init_container {
-          name    = "fix-perms"
-          image   = "busybox:1.37"
-          command = ["sh", "-c", "chown -R 1000:1000 /profile"]
-          security_context {
-            run_as_user = 0
-          }
-          volume_mount {
-            name       = "profile"
-            mount_path = "/profile"
-          }
-          resources {
-            requests = { memory = "32Mi" }
-            limits   = { memory = "64Mi" }
-          }
-        }
-
-        container {
-          name              = "chrome-service"
-          image             = local.image
-          image_pull_policy = "IfNotPresent"
-
-          # `launch-server` (not `run-server`) lets us pin headed mode +
-          # specific args. `run-server` defaults to headless, which the
-          # disable-devtool.js Performance detector trips under Playwright
-          # (CDP adds latency to console.log; lib detects + redirects).
-          # The Microsoft image ships only the browsers, not the playwright
-          # npm package itself — `npx -y playwright@<ver>` downloads it on
-          # first start (cached under $HOME/.npm via the PVC) and pins to
-          # the same minor as the Python client. Bump in lockstep.
-          command = ["bash", "-c"]
-          args = [
-            <<-EOT
-            set -e
-            # `-listen tcp` enables localhost:6099 so the noVNC sidecar can
-            # connect over the pod's shared network namespace (Ubuntu 24.04
-            # defaults Xvfb to -nolisten tcp).
-            # `-ac` disables X access control so the noVNC sidecar can
-            # attach without an MIT-MAGIC-COOKIE; safe because Xvfb only
-            # listens on localhost (pod's lo).
-            Xvfb :99 -screen 0 1280x720x24 -listen tcp -ac &
-            sleep 1
-            cat > /tmp/launch.json <<JSON
-            {
-              "headless": false,
-              "port": 3000,
-              "host": "0.0.0.0",
-              "wsPath": "/$${PW_TOKEN}",
-              "args": [
-                "--no-sandbox",
-                "--disable-blink-features=AutomationControlled",
-                "--disable-features=IsolateOrigins,site-per-process",
-                "--autoplay-policy=no-user-gesture-required",
-                "--disable-dev-shm-usage"
-              ]
-            }
-            JSON
-            exec npx -y playwright@1.48.0 launch-server --browser chromium --config /tmp/launch.json
-            EOT
-          ]
-
-          env {
-            name  = "DISPLAY"
-            value = ":99"
-          }
-          env {
-            name  = "HOME"
-            value = "/profile"
-          }
-          env {
-            name = "PW_TOKEN"
-            value_from {
-              secret_key_ref {
-                name = "chrome-service-secrets"
-                key  = "api_bearer_token"
-              }
-            }
-          }
-
-          port {
-            name           = "ws"
-            container_port = 3000
-            protocol       = "TCP"
-          }
-
-          # Playwright run-server exposes only the WS endpoint; no /health.
-          liveness_probe {
-            tcp_socket { port = 3000 }
-            initial_delay_seconds = 30
-            period_seconds        = 30
-            failure_threshold     = 3
-          }
-          readiness_probe {
-            tcp_socket { port = 3000 }
-            initial_delay_seconds = 10
-            period_seconds        = 10
-          }
-          startup_probe {
-            tcp_socket { port = 3000 }
-            period_seconds    = 5
-            failure_threshold = 24 # up to 2 minutes
-          }
-
-          volume_mount {
-            name       = "profile"
-            mount_path = "/profile"
-          }
-          volume_mount {
-            name       = "dshm"
-            mount_path = "/dev/shm"
-          }
-
-          resources {
-            requests = {
-              cpu    = "200m"
-              memory = "1500Mi"
-            }
-            limits = {
-              memory = "2Gi"
-            }
-          }
-        }
-
-        # noVNC sidecar — exposes a live HTML5 view of the headed Chromium
-        # session via x11vnc + websockify, gated by the Authentik-protected
-        # ingress at chrome.viktorbarzin.me. WS port 3000 (the Playwright
-        # endpoint) stays internal-only.
-        container {
-          name = "novnc"
-          # Phase 3 cutover 2026-05-07 — Forgejo registry consolidation.
-          image             = "forgejo.viktorbarzin.me/viktor/chrome-service-novnc:v4"
-          image_pull_policy = "IfNotPresent"
-          port {
-            name           = "http"
-            container_port = 6080
-            protocol       = "TCP"
-          }
-          # x11vnc connects to the chrome-service container's Xvfb over
-          # localhost TCP (shared pod network). Same uid 1000 as chrome
-          # container so we can read MIT-MAGIC-COOKIE if Xvfb adds one.
-          resources {
-            requests = { cpu = "10m", memory = "32Mi" }
-            limits   = { memory = "96Mi" }
-          }
-        }
-
-        volume {
-          name = "profile"
-          persistent_volume_claim {
-            claim_name = kubernetes_persistent_volume_claim.profile_encrypted.metadata[0].name
-          }
-        }
-        volume {
-          name = "dshm"
-          empty_dir {
-            medium     = "Memory"
-            size_limit = "256Mi"
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# --- Services ---
-# WS endpoint (internal only, gated by NetworkPolicy + token).
-resource "kubernetes_service" "chrome_service" {
-  metadata {
-    name      = "chrome-service"
-    namespace = kubernetes_namespace.chrome_service.metadata[0].name
-    labels    = local.labels
-  }
-
-  spec {
-    selector = local.labels
-    port {
-      name        = "ws"
-      port        = 3000
-      target_port = 3000
-      protocol    = "TCP"
-    }
-  }
-}
-
-# noVNC view (Authentik-gated, exposed via ingress).
-resource "kubernetes_service" "chrome_novnc" {
-  metadata {
-    name      = "chrome"
-    namespace = kubernetes_namespace.chrome_service.metadata[0].name
-    labels    = local.labels
-  }
-
-  spec {
-    selector = local.labels
-    port {
-      name        = "http"
-      port        = 80
-      target_port = 6080
-      protocol    = "TCP"
-    }
-  }
-}
-
-module "ingress" {
-  source          = "../../modules/kubernetes/ingress_factory"
-  dns_type        = "proxied"
-  namespace       = kubernetes_namespace.chrome_service.metadata[0].name
-  name            = "chrome"
-  tls_secret_name = var.tls_secret_name
-  protected       = true
-  # noVNC defaults to /vnc.html — auto-redirect / there.
-  ingress_path = ["/"]
-  extra_annotations = {
-    "gethomepage.dev/enabled"     = "true"
-    "gethomepage.dev/name"        = "Chrome Service"
-    "gethomepage.dev/description" = "Live noVNC view of headed Chromium"
-    "gethomepage.dev/icon"        = "chromium.png"
-    "gethomepage.dev/group"       = "Infrastructure"
-  }
-}
-
-# --- NetworkPolicy: scoped ingress.
-# - TCP/3000 (Playwright WS): only from labelled client namespaces.
-# - TCP/6080 (noVNC HTTP+WS): only from the traefik namespace, since the
-#   public-facing path is `chrome.viktorbarzin.me` ingress → Traefik →
-#   sidecar. Authentik forward-auth still gates external access at the
-#   Traefik layer.
-# The cluster has no default-deny, so this NP only takes effect inside
-# chrome-service ns — pods elsewhere remain unaffected.
-resource "kubernetes_network_policy_v1" "ws_ingress" {
-  metadata {
-    name      = "chrome-service-ws-ingress"
-    namespace = kubernetes_namespace.chrome_service.metadata[0].name
-  }
-  spec {
-    pod_selector {
-      match_labels = local.labels
-    }
-    policy_types = ["Ingress"]
-    ingress {
-      from {
-        namespace_selector {
-          match_labels = {
-            "chrome-service.viktorbarzin.me/client" = "true"
-          }
-        }
-      }
-      # Explicit fallback list — admit f1-stream by name in case the label
-      # is removed by accident. Keep this in sync with the labels above.
-      from {
-        namespace_selector {
-          match_labels = {
-            "kubernetes.io/metadata.name" = "f1-stream"
-          }
-        }
-      }
-      ports {
-        port     = "3000"
-        protocol = "TCP"
-      }
-    }
-    ingress {
-      from {
-        namespace_selector {
-          match_labels = {
-            "kubernetes.io/metadata.name" = "traefik"
-          }
-        }
-      }
-      ports {
-        port     = "6080"
-        protocol = "TCP"
-      }
-    }
-  }
-}
-
-# --- Backup CronJob: tar+gzip the profile every 6h, 30-day retention. ---
-resource "kubernetes_cron_job_v1" "chrome_service_backup" {
-  metadata {
-    name      = "chrome-service-backup"
-    namespace = kubernetes_namespace.chrome_service.metadata[0].name
-  }
-  spec {
-    concurrency_policy            = "Replace"
-    failed_jobs_history_limit     = 3
-    successful_jobs_history_limit = 1
-    schedule                      = "47 */6 * * *"
-    starting_deadline_seconds     = 60
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 2
-        ttl_seconds_after_finished = 300
-        template {
-          metadata {}
-          spec {
-            # PVC is RWO — colocate the backup pod with the chrome-service
-            # pod so both can mount the volume on the same node.
-            affinity {
-              pod_affinity {
-                required_during_scheduling_ignored_during_execution {
-                  label_selector {
-                    match_labels = local.labels
-                  }
-                  topology_key = "kubernetes.io/hostname"
-                }
-              }
-            }
-            container {
-              name  = "backup"
-              image = "docker.io/library/alpine:3.20"
-              command = ["/bin/sh", "-c", <<-EOT
-                set -euxo pipefail
-                ts=$(date +"%Y_%m_%d_%H")
-                tar -czf /backup/$${ts}.tar.gz -C /profile .
-                find /backup -maxdepth 1 -type f -name '*.tar.gz' -mtime +30 -delete
-                echo "Backup complete: $${ts}.tar.gz"
-              EOT
-              ]
-              volume_mount {
-                name       = "profile"
-                mount_path = "/profile"
-                read_only  = true
-              }
-              volume_mount {
-                name       = "backup"
-                mount_path = "/backup"
-              }
-              resources {
-                requests = { cpu = "10m", memory = "32Mi" }
-                limits   = { memory = "64Mi" }
-              }
-            }
-            volume {
-              name = "profile"
-              persistent_volume_claim {
-                claim_name = kubernetes_persistent_volume_claim.profile_encrypted.metadata[0].name
-              }
-            }
-            volume {
-              name = "backup"
-              persistent_volume_claim {
-                claim_name = module.nfs_chrome_service_backup_host.claim_name
-              }
-            }
-            restart_policy = "OnFailure"
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/city-guesser/main.tf b/stacks/city-guesser/main.tf
index afcd9938..748871f3 100644
--- a/stacks/city-guesser/main.tf
+++ b/stacks/city-guesser/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "city-guesser" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -66,10 +62,6 @@ resource "kubernetes_deployment" "city-guesser" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "city-guesser" {
diff --git a/stacks/claude-agent-service/main.tf b/stacks/claude-agent-service/main.tf
deleted file mode 100644
index 71ea0d7d..00000000
--- a/stacks/claude-agent-service/main.tf
+++ /dev/null
@@ -1,617 +0,0 @@
-data "vault_kv_secret_v2" "secrets" {
-  mount = "secret"
-  name  = "claude-agent-service"
-}
-
-data "vault_kv_secret_v2" "viktor_secrets" {
-  mount = "secret"
-  name  = "viktor"
-}
-
-locals {
-  namespace = "claude-agent"
-  # Phase 3 cutover 2026-05-07 — see infra/docs/plans/2026-05-07-forgejo-registry-consolidation-plan.md.
-  image     = "forgejo.viktorbarzin.me/viktor/claude-agent-service"
-  image_tag = "2fd7670d"
-  labels = {
-    app = "claude-agent-service"
-  }
-}
-
-# --- Namespace ---
-
-resource "kubernetes_namespace" "claude_agent" {
-  metadata {
-    name = local.namespace
-    labels = {
-      tier                                    = local.tiers.aux
-      "resource-governance/custom-limitrange" = "true"
-      "resource-governance/custom-quota"      = "true"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-# --- Secrets ---
-
-resource "kubernetes_manifest" "external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "claude-agent-secrets"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "claude-agent-secrets"
-      }
-      data = [
-        {
-          secretKey = "GITHUB_TOKEN"
-          remoteRef = {
-            key      = "viktor"
-            property = "github_pat"
-          }
-        },
-        {
-          secretKey = "API_BEARER_TOKEN"
-          remoteRef = {
-            key      = "claude-agent-service"
-            property = "api_bearer_token"
-          }
-        },
-        {
-          # Long-lived OAuth token (1-year) from `claude setup-token`.
-          # Preferred over the short-lived .credentials.json — CLI picks this up and
-          # skips the refresh flow entirely. Rotate yearly; alert 30d before expiry.
-          secretKey = "CLAUDE_CODE_OAUTH_TOKEN"
-          remoteRef = {
-            key      = "claude-agent-service"
-            property = "claude_oauth_token"
-          }
-        },
-        {
-          # Consumed by service-upgrade agent to poll ci.viktorbarzin.me
-          # per-workflow status. Pod has no Vault CLI auth, so the old
-          # `vault kv get` path is dead — see bd code-3o3.
-          secretKey = "WOODPECKER_API_TOKEN"
-          remoteRef = {
-            key      = "ci/global"
-            property = "woodpecker_api_token"
-          }
-        },
-        {
-          # Consumed by service-upgrade agent for Start/Success/Failure
-          # notifications. Same shared webhook as alertmanager.
-          secretKey = "SLACK_WEBHOOK_URL"
-          remoteRef = {
-            key      = "viktor"
-            property = "alertmanager_slack_api_url"
-          }
-        },
-      ]
-    }
-  }
-  depends_on = [kubernetes_namespace.claude_agent]
-}
-
-# SOPS age key for terraform state decryption
-resource "kubernetes_secret" "sops_age_key" {
-  metadata {
-    name      = "sops-age-key"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-  }
-  data = {
-    "keys.txt" = data.vault_kv_secret_v2.viktor_secrets.data["sops_age_key_devvm"]
-  }
-  type = "Opaque"
-}
-
-# Claude OAuth credentials (for claude -p)
-resource "kubernetes_secret" "claude_credentials" {
-  metadata {
-    name      = "claude-credentials"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-  }
-  data = {
-    ".credentials.json" = data.vault_kv_secret_v2.secrets.data["claude_credentials_json"]
-  }
-  type = "Opaque"
-}
-
-# git-crypt key for repo decryption
-resource "kubernetes_config_map" "git_crypt_key" {
-  metadata {
-    name      = "git-crypt-key"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-  }
-  binary_data = {
-    "key" = filebase64("${path.root}/../../.git/git-crypt/keys/default")
-  }
-}
-
-# --- RBAC ---
-
-resource "kubernetes_service_account" "claude_agent" {
-  metadata {
-    name      = "claude-agent"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-  }
-}
-
-resource "kubernetes_cluster_role" "claude_agent" {
-  metadata {
-    name = "claude-agent"
-  }
-
-  rule {
-    verbs      = ["get", "list", "watch"]
-    api_groups = ["", "apps", "batch"]
-    resources  = ["pods", "pods/log", "nodes", "events", "deployments", "services", "namespaces", "jobs", "cronjobs", "configmaps", "replicasets", "statefulsets", "daemonsets"]
-  }
-
-  rule {
-    verbs      = ["patch", "update"]
-    api_groups = ["apps"]
-    resources  = ["deployments"]
-  }
-
-  rule {
-    verbs      = ["create"]
-    api_groups = [""]
-    resources  = ["pods/exec"]
-  }
-}
-
-resource "kubernetes_cluster_role_binding" "claude_agent" {
-  metadata {
-    name = "claude-agent"
-  }
-
-  subject {
-    kind      = "ServiceAccount"
-    name      = kubernetes_service_account.claude_agent.metadata[0].name
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-  }
-
-  role_ref {
-    api_group = "rbac.authorization.k8s.io"
-    kind      = "ClusterRole"
-    name      = kubernetes_cluster_role.claude_agent.metadata[0].name
-  }
-}
-
-# --- Storage ---
-
-resource "kubernetes_persistent_volume_claim" "workspace" {
-  wait_until_bound = false
-  metadata {
-    name      = "claude-agent-workspace-encrypted"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-    annotations = {
-      "resize.topolvm.io/threshold"     = "80%"
-      "resize.topolvm.io/increase"      = "100%"
-      "resize.topolvm.io/storage_limit" = "20Gi"
-    }
-  }
-  spec {
-    access_modes       = ["ReadWriteOnce"]
-    storage_class_name = "proxmox-lvm-encrypted"
-    resources {
-      requests = {
-        storage = "10Gi"
-      }
-    }
-  }
-}
-
-# --- Deployment ---
-
-resource "kubernetes_deployment" "claude_agent" {
-  metadata {
-    name      = "claude-agent-service"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-    labels    = local.labels
-  }
-
-  spec {
-    replicas = 1
-    strategy {
-      type = "Recreate"
-    }
-
-    selector {
-      match_labels = local.labels
-    }
-
-    template {
-      metadata {
-        labels = local.labels
-      }
-
-      spec {
-        service_account_name = kubernetes_service_account.claude_agent.metadata[0].name
-
-        image_pull_secrets {
-          name = "registry-credentials"
-        }
-
-        security_context {
-          run_as_user  = 1000
-          run_as_group = 1000
-          fs_group     = 1000
-        }
-
-        # Fix workspace ownership (PVC may have root-owned files from prior run)
-        init_container {
-          name    = "fix-perms"
-          image   = "busybox:1.37"
-          command = ["sh", "-c", "chown -R 1000:1000 /workspace"]
-          security_context {
-            run_as_user = 0
-          }
-          volume_mount {
-            name       = "workspace"
-            mount_path = "/workspace"
-          }
-          resources {
-            requests = {
-              memory = "32Mi"
-            }
-            limits = {
-              memory = "64Mi"
-            }
-          }
-        }
-
-        # Copy Claude credentials to writable volume (CLI needs to refresh OAuth tokens)
-        init_container {
-          name    = "copy-claude-creds"
-          image   = "busybox:1.37"
-          command = ["sh", "-c", "cp /secrets/claude/.credentials.json /home/agent/.claude/.credentials.json && chown 1000:1000 /home/agent/.claude/.credentials.json"]
-          security_context {
-            run_as_user = 0
-          }
-          volume_mount {
-            name       = "claude-credentials-secret"
-            mount_path = "/secrets/claude"
-          }
-          volume_mount {
-            name       = "claude-home"
-            mount_path = "/home/agent/.claude"
-          }
-          resources {
-            requests = {
-              memory = "32Mi"
-            }
-            limits = {
-              memory = "64Mi"
-            }
-          }
-        }
-
-        # Init: clone repo + unlock git-crypt on first run
-        init_container {
-          name  = "git-init"
-          image = "${local.image}:${local.image_tag}"
-          command = ["sh", "-c", <<-EOF
-            set -e
-
-            # Configure git with HTTPS + PAT
-            git config --global user.name "Claude Agent Service"
-            git config --global user.email "claude-agent@viktorbarzin.me"
-            git config --global --add safe.directory /workspace/infra
-            git config --global url."https://$${GITHUB_TOKEN}@github.com/".insteadOf "git@github.com:"
-            git config --global url."https://$${GITHUB_TOKEN}@github.com/".insteadOf "https://github.com/"
-
-            # Clone or update repo
-            if [ ! -d /workspace/infra/.git ]; then
-              git clone https://$${GITHUB_TOKEN}@github.com/ViktorBarzin/infra.git /workspace/infra
-            else
-              cd /workspace/infra
-              git fetch origin
-              git reset --hard origin/master
-            fi
-
-            # Unlock git-crypt
-            cd /workspace/infra
-            git-crypt unlock /secrets/git-crypt/key || true
-          EOF
-          ]
-
-          env_from {
-            secret_ref {
-              name = "claude-agent-secrets"
-            }
-          }
-
-          volume_mount {
-            name       = "workspace"
-            mount_path = "/workspace"
-          }
-          volume_mount {
-            name       = "git-crypt-key"
-            mount_path = "/secrets/git-crypt"
-          }
-
-          resources {
-            requests = {
-              cpu    = "100m"
-              memory = "256Mi"
-            }
-            limits = {
-              memory = "512Mi"
-            }
-          }
-        }
-
-        # Seed beads metadata + beads-task-runner agent into runtime volumes.
-        # The Dockerfile stages these files at /usr/share/agent-seed/ (image
-        # layer, never mounted). Both /workspace (PVC) and /home/agent/.claude
-        # (emptyDir) are volume mounts that hide any image-layer content, so
-        # the files have to be copied in at pod start. Also creates the
-        # scratch directory the beads-task-runner rails expect.
-        init_container {
-          name  = "seed-beads-agent"
-          image = "${local.image}:${local.image_tag}"
-          command = ["sh", "-c", <<-EOT
-            set -e
-            mkdir -p /workspace/.beads /workspace/scratch /home/agent/.claude/agents
-            cp /usr/share/agent-seed/beads-metadata.json /workspace/.beads/metadata.json
-            cp /usr/share/agent-seed/beads-task-runner.md /home/agent/.claude/agents/beads-task-runner.md
-          EOT
-          ]
-
-          volume_mount {
-            name       = "workspace"
-            mount_path = "/workspace"
-          }
-          volume_mount {
-            name       = "claude-home"
-            mount_path = "/home/agent/.claude"
-          }
-
-          resources {
-            requests = {
-              memory = "32Mi"
-            }
-            limits = {
-              memory = "64Mi"
-            }
-          }
-        }
-
-        container {
-          name  = "claude-agent-service"
-          image = "${local.image}:${local.image_tag}"
-
-          port {
-            container_port = 8080
-          }
-
-          env_from {
-            secret_ref {
-              name = "claude-agent-secrets"
-            }
-          }
-
-          env {
-            name  = "WORKSPACE_DIR"
-            value = "/workspace/infra"
-          }
-
-          liveness_probe {
-            http_get {
-              path = "/health"
-              port = 8080
-            }
-            initial_delay_seconds = 10
-            period_seconds        = 30
-          }
-
-          readiness_probe {
-            http_get {
-              path = "/health"
-              port = 8080
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-          }
-
-          volume_mount {
-            name       = "workspace"
-            mount_path = "/workspace"
-          }
-          volume_mount {
-            name       = "sops-age-key"
-            mount_path = "/home/agent/.config/sops/age"
-          }
-          volume_mount {
-            name       = "claude-home"
-            mount_path = "/home/agent/.claude"
-          }
-
-          resources {
-            requests = {
-              cpu    = "500m"
-              memory = "2Gi"
-            }
-            limits = {
-              memory = "4Gi"
-            }
-          }
-        }
-
-        volume {
-          name = "workspace"
-          persistent_volume_claim {
-            claim_name = kubernetes_persistent_volume_claim.workspace.metadata[0].name
-          }
-        }
-
-        volume {
-          name = "sops-age-key"
-          secret {
-            secret_name  = kubernetes_secret.sops_age_key.metadata[0].name
-            default_mode = "0600"
-          }
-        }
-
-        volume {
-          name = "git-crypt-key"
-          config_map {
-            name = kubernetes_config_map.git_crypt_key.metadata[0].name
-          }
-        }
-
-        volume {
-          name = "claude-credentials-secret"
-          secret {
-            secret_name  = kubernetes_secret.claude_credentials.metadata[0].name
-            default_mode = "0600"
-          }
-        }
-
-        volume {
-          name = "claude-home"
-          empty_dir {}
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
-}
-
-# --- Service ---
-
-resource "kubernetes_service" "claude_agent" {
-  metadata {
-    name      = "claude-agent-service"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-    labels    = local.labels
-  }
-
-  spec {
-    selector = local.labels
-
-    port {
-      port        = 8080
-      target_port = 8080
-    }
-
-    type = "ClusterIP"
-  }
-}
-
-# =============================================================================
-# Token expiry monitor
-# Long-lived CLAUDE_CODE_OAUTH_TOKEN values expire 1y after mint. We track
-# mint timestamps here — on rotation, update the map below. A CronJob pushes
-# the computed expiry_timestamp to Pushgateway, Prometheus alerts 30d out.
-# =============================================================================
-locals {
-  claude_oauth_token_mint_epochs = {
-    # unix seconds (UTC) — when `claude setup-token` finished minting
-    "primary" = 1776528429 # 2026-04-18T12:07:09Z  (TOKEN2)
-    "spare-1" = 1776528280 # 2026-04-18T12:04:40Z  (TOKEN1)
-    "spare-2" = 1776528429 # 2026-04-18T12:07:09Z  (TOKEN2 — redundant w/ primary)
-  }
-  claude_oauth_token_ttl_seconds = 365 * 24 * 60 * 60
-}
-
-resource "kubernetes_config_map" "claude_oauth_expiry" {
-  metadata {
-    name      = "claude-oauth-expiry"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-  }
-  data = {
-    for path, mint in local.claude_oauth_token_mint_epochs :
-    path => tostring(mint + local.claude_oauth_token_ttl_seconds)
-  }
-}
-
-resource "kubernetes_cron_job_v1" "claude_oauth_expiry_monitor" {
-  metadata {
-    name      = "claude-oauth-expiry-monitor"
-    namespace = kubernetes_namespace.claude_agent.metadata[0].name
-  }
-  spec {
-    concurrency_policy            = "Replace"
-    failed_jobs_history_limit     = 3
-    successful_jobs_history_limit = 1
-    schedule                      = "17 */6 * * *" # every 6h at :17 past
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 300
-        template {
-          metadata {}
-          spec {
-            restart_policy = "OnFailure"
-            container {
-              name  = "push-expiry"
-              image = "docker.io/curlimages/curl:8.11.0"
-              command = ["/bin/sh", "-c", <<-EOT
-                set -e
-                PG='http://prometheus-prometheus-pushgateway.monitoring:9091/metrics/job/claude-oauth-expiry-monitor'
-                NOW=$(date +%s)
-                PAYLOAD=''
-                PAYLOAD="$${PAYLOAD}# HELP claude_oauth_token_expiry_timestamp Unix epoch when the CLAUDE_CODE_OAUTH_TOKEN for this path expires
-                "
-                PAYLOAD="$${PAYLOAD}# TYPE claude_oauth_token_expiry_timestamp gauge
-                "
-                for path in /mnt/expiry/*; do
-                  name=$(basename "$path")
-                  exp=$(cat "$path")
-                  PAYLOAD="$${PAYLOAD}claude_oauth_token_expiry_timestamp{path=\"$name\"} $exp
-                "
-                done
-                PAYLOAD="$${PAYLOAD}# HELP claude_oauth_expiry_monitor_last_push_timestamp Last time the expiry monitor pushed metrics
-                "
-                PAYLOAD="$${PAYLOAD}# TYPE claude_oauth_expiry_monitor_last_push_timestamp gauge
-                "
-                PAYLOAD="$${PAYLOAD}claude_oauth_expiry_monitor_last_push_timestamp $NOW
-                "
-                echo "$PAYLOAD"
-                echo "$PAYLOAD" | curl -sS --data-binary @- "$PG"
-                echo "pushed at $NOW"
-              EOT
-              ]
-              volume_mount {
-                name       = "expiry"
-                mount_path = "/mnt/expiry"
-              }
-              resources {
-                requests = { cpu = "10m", memory = "32Mi" }
-                limits   = { memory = "64Mi" }
-              }
-            }
-            volume {
-              name = "expiry"
-              config_map {
-                name = kubernetes_config_map.claude_oauth_expiry.metadata[0].name
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/claude-memory/main.tf b/stacks/claude-memory/main.tf
index 1224d496..e0f0078e 100644
--- a/stacks/claude-memory/main.tf
+++ b/stacks/claude-memory/main.tf
@@ -20,10 +20,6 @@ resource "kubernetes_namespace" "claude-memory" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -175,10 +171,8 @@ resource "kubernetes_deployment" "claude-memory" {
           }
         }
         container {
-          name = "claude-memory"
-          # Phase 3 cutover 2026-05-07 — moved off DockerHub to Forgejo as
-          # part of the registry consolidation. Old: viktorbarzin/claude-memory-mcp:17
-          image = "forgejo.viktorbarzin.me/viktor/claude-memory-mcp:17"
+          name  = "claude-memory"
+          image = "viktorbarzin/claude-memory-mcp:17"
 
           port {
             container_port = 8000
@@ -242,10 +236,8 @@ resource "kubernetes_deployment" "claude-memory" {
     }
   }
   lifecycle {
-    # DRIFT_WORKAROUND: CI pipeline owns image tag (kubectl set image from Woodpecker/GHA). Reviewed 2026-04-18.
     ignore_changes = [
-      spec[0].template[0].spec[0].container[0].image,
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
+      spec[0].template[0].spec[0].container[0].image
     ]
   }
 }
diff --git a/stacks/cloudflared/modules/cloudflared/cloudflare.tf b/stacks/cloudflared/modules/cloudflared/cloudflare.tf
index 80b0fe8d..88d1c77d 100644
--- a/stacks/cloudflared/modules/cloudflared/cloudflare.tf
+++ b/stacks/cloudflared/modules/cloudflared/cloudflare.tf
@@ -140,9 +140,7 @@ resource "cloudflare_record" "mail_domainkey" {
 }
 
 resource "cloudflare_record" "mail_spf" {
-  # Brevo replaced Mailgun as the outbound relay on 2026-04-12 (see docs/architecture/mailserver.md).
-  # Soft-fail (~all) is intentional during cutover — revisit once relay delivery is stable.
-  content  = "\"v=spf1 include:spf.brevo.com ~all\""
+  content  = "\"v=spf1 include:mailgun.org -all\""
   name     = "viktorbarzin.me"
   proxied  = false
   ttl      = 1
@@ -206,7 +204,7 @@ resource "cloudflare_record" "mail_tlsrpt" {
 }
 
 resource "cloudflare_record" "mail_dmarc" {
-  content  = "\"v=DMARC1; p=quarantine; pct=100; fo=1; ri=3600; sp=quarantine; adkim=r; aspf=r; rua=mailto:dmarc@viktorbarzin.me,mailto:adb84997@inbox.ondmarc.com; ruf=mailto:dmarc@viktorbarzin.me,mailto:adb84997@inbox.ondmarc.com,mailto:postmaster@viktorbarzin.me;\""
+  content  = "\"v=DMARC1; p=quarantine; pct=100; fo=1; ri=3600; sp=quarantine; adkim=r; aspf=r; rua=mailto:e21c0ff8@dmarc.mailgun.org,mailto:adb84997@inbox.ondmarc.com; ruf=mailto:e21c0ff8@dmarc.mailgun.org,mailto:adb84997@inbox.ondmarc.com,mailto:postmaster@viktorbarzin.me;\""
   name     = "_dmarc.viktorbarzin.me"
   proxied  = false
   ttl      = 1
diff --git a/stacks/cloudflared/modules/cloudflared/main.tf b/stacks/cloudflared/modules/cloudflared/main.tf
index 5095f31b..8cee6da1 100644
--- a/stacks/cloudflared/modules/cloudflared/main.tf
+++ b/stacks/cloudflared/modules/cloudflared/main.tf
@@ -9,10 +9,6 @@ resource "kubernetes_namespace" "cloudflared" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 variable "tier" { type = string }
 
@@ -93,10 +89,6 @@ resource "kubernetes_deployment" "cloudflared" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_pod_disruption_budget_v1" "cloudflared" {
diff --git a/stacks/cnpg/modules/cnpg/main.tf b/stacks/cnpg/modules/cnpg/main.tf
index 8f16262f..64a1d730 100644
--- a/stacks/cnpg/modules/cnpg/main.tf
+++ b/stacks/cnpg/modules/cnpg/main.tf
@@ -10,10 +10,6 @@ resource "kubernetes_namespace" "cnpg_system" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 # -----------------------------------------------------------------------------
diff --git a/stacks/coturn/main.tf b/stacks/coturn/main.tf
index e127d979..0c1167a0 100644
--- a/stacks/coturn/main.tf
+++ b/stacks/coturn/main.tf
@@ -54,10 +54,6 @@ resource "kubernetes_namespace" "coturn" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -193,10 +189,6 @@ resource "kubernetes_deployment" "coturn" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # LoadBalancer service with MetalLB — exposes STUN/TURN signaling + relay ports
diff --git a/stacks/crowdsec/modules/crowdsec/main.tf b/stacks/crowdsec/modules/crowdsec/main.tf
index ca7b1998..0969d383 100644
--- a/stacks/crowdsec/modules/crowdsec/main.tf
+++ b/stacks/crowdsec/modules/crowdsec/main.tf
@@ -31,10 +31,6 @@ resource "kubernetes_namespace" "crowdsec" {
       "resource-governance/custom-quota" = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_config_map" "crowdsec_custom_scenarios" {
@@ -96,21 +92,6 @@ resource "kubernetes_config_map" "crowdsec_whitelist" {
         reason: "Trusted IP - never block"
         ip:
           - "176.12.22.76"
-      ---
-      name: viktor/immich-asset-paths-whitelist
-      description: "Don't penalise legit Immich timeline bursts (mobile scrub, web grid)"
-      whitelist:
-        reason: "Immich asset endpoints are auth-gated; mobile scrub legitimately bursts"
-        expression:
-          - >
-            evt.Parsed.target_fqdn == "immich.viktorbarzin.me" &&
-            (evt.Parsed.request startsWith "/api/assets/" ||
-             evt.Parsed.request startsWith "/api/timeline/" ||
-             evt.Parsed.request startsWith "/api/asset/" ||
-             evt.Parsed.request startsWith "/api/search/" ||
-             evt.Parsed.request startsWith "/api/memories" ||
-             evt.Parsed.request startsWith "/api/albums" ||
-             evt.Parsed.request startsWith "/api/activities")
     YAML
   }
 }
@@ -252,10 +233,6 @@ resource "kubernetes_deployment" "crowdsec-web" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "crowdsec-web" {
@@ -381,10 +358,6 @@ resource "kubernetes_cron_job_v1" "crowdsec_blocklist_import" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Service account for the blocklist import job (needs kubectl exec permissions)
diff --git a/stacks/cyberchef/main.tf b/stacks/cyberchef/main.tf
index 916b513b..9462393d 100644
--- a/stacks/cyberchef/main.tf
+++ b/stacks/cyberchef/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "cyberchef" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -76,10 +72,6 @@ resource "kubernetes_deployment" "cyberchef" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "cyberchef" {
diff --git a/stacks/dashy/conf.yml b/stacks/dashy/conf.yml
index 21f69a70..bbd6307f 100644
--- a/stacks/dashy/conf.yml
+++ b/stacks/dashy/conf.yml
@@ -265,6 +265,12 @@ sections:
         url: https://redis.viktorbarzin.me/
         target: newtab
         id: 6_1364_redis
+      - &ref_28
+        title: Truenas
+        description: Network Storage VM
+        icon: si-truenas
+        url: http://truenas.viktorbarzin.me/ui/dashboard
+        id: 7_1364_truenas
     icon: si-adminer
     filteredItems:
       - *ref_21
@@ -274,6 +280,7 @@ sections:
       - *ref_25
       - *ref_26
       - *ref_27
+      - *ref_28
   - name: Public Services
     displayData:
       sortBy: alphabetical
@@ -375,6 +382,13 @@ sections:
         url: https://audiobookshelf.viktorbarzin.me/
         target: newtab
         id: 12_1475_audiobookshelf
+      - &ref_42
+        title: Ollama
+        description: Self-hosted ChatGPT (using llama3)
+        icon: si-openai
+        url: https://ollama.viktorbarzin.me/
+        target: newtab
+        id: 13_1475_ollama
       - &ref_43
         title: Paperless-ngx
         description: Document index
@@ -397,6 +411,7 @@ sections:
       - *ref_39
       - *ref_40
       - *ref_41
+      - *ref_42
       - *ref_43
   - name: Under Construction
     displayData:
diff --git a/stacks/dashy/main.tf b/stacks/dashy/main.tf
index f773d64f..3b489f0a 100644
--- a/stacks/dashy/main.tf
+++ b/stacks/dashy/main.tf
@@ -18,10 +18,6 @@ resource "kubernetes_namespace" "dashy" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_config_map" "config" {
@@ -99,10 +95,6 @@ resource "kubernetes_deployment" "dashy" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "dashy" {
diff --git a/stacks/dawarich/main.tf b/stacks/dawarich/main.tf
index 392b9d82..15ca12dd 100644
--- a/stacks/dawarich/main.tf
+++ b/stacks/dawarich/main.tf
@@ -84,11 +84,10 @@ resource "kubernetes_deployment" "dawarich" {
         annotations = {
           "diun.enable"                    = "true"
           "diun.include_tags"              = "^v?\\d+\\.\\d+\\.\\d+$"
-          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis.redis:6379"
         }
       }
       spec {
-        termination_grace_period_seconds = 60
 
         container {
           image = "freikin/dawarich:${var.image_version}"
@@ -201,132 +200,81 @@ resource "kubernetes_deployment" "dawarich" {
             }
           }
         }
-        container {
-          image   = "freikin/dawarich:${var.image_version}"
-          name    = "dawarich-sidekiq"
-          command = ["sidekiq-entrypoint.sh"]
-          args    = ["bundle exec sidekiq"]
-          env {
-            name  = "REDIS_URL"
-            value = "redis://${var.redis_host}:6379"
-          }
-          env {
-            name  = "DATABASE_HOST"
-            value = var.postgresql_host
-          }
-          env {
-            name  = "DATABASE_USERNAME"
-            value = "dawarich"
-          }
-          env {
-            name = "DATABASE_PASSWORD"
-            value_from {
-              secret_key_ref {
-                name = "dawarich-secrets"
-                key  = "db_password"
-              }
-            }
-          }
-          env {
-            name  = "DATABASE_NAME"
-            value = "dawarich"
-          }
-          env {
-            name  = "MIN_MINUTES_SPENT_IN_CITY"
-            value = "60"
-          }
-          env {
-            name  = "TIME_ZONE"
-            value = "Europe/London"
-          }
-          env {
-            name  = "DISTANCE_UNIT"
-            value = "km"
-          }
-          env {
-            name  = "BACKGROUND_PROCESSING_CONCURRENCY"
-            value = "2"
-          }
-          env {
-            name  = "ENABLE_TELEMETRY"
-            value = "true"
-          }
-          env {
-            name  = "APPLICATION_HOSTS"
-            value = "dawarich.viktorbarzin.me"
-          }
-          # Prometheus exporter disabled until a standalone `prometheus_exporter`
-          # server sidecar is added — see follow-up bead. The client middleware
-          # pushes over TCP to PROMETHEUS_EXPORTER_HOST:PORT, it does not start
-          # a listener itself. Keeping ENABLED=false silences the reconnect
-          # log spam (~2/sec) from PrometheusExporter::Client.
-          env {
-            name  = "PROMETHEUS_EXPORTER_ENABLED"
-            value = "false"
-          }
-          env {
-            name  = "RAILS_ENV"
-            value = "production"
-          }
-          env {
-            name = "SECRET_KEY_BASE"
-            value_from {
-              secret_key_ref {
-                name = "dawarich-secrets"
-                key  = "secret_key_base"
-              }
-            }
-          }
-          env {
-            name  = "RAILS_LOG_TO_STDOUT"
-            value = "true"
-          }
-          env {
-            name  = "SELF_HOSTED"
-            value = "true"
-          }
-          env {
-            name = "GEOAPIFY_API_KEY"
-            value_from {
-              secret_key_ref {
-                name = "dawarich-secrets"
-                key  = "geoapify_api_key"
-              }
-            }
-          }
-          resources {
-            requests = {
-              cpu    = "50m"
-              memory = "768Mi"
-            }
-            limits = {
-              memory = "1Gi"
-            }
-          }
-          liveness_probe {
-            exec {
-              command = ["/bin/sh", "-c", "pgrep -f 'bundle exec sidekiq' >/dev/null"]
-            }
-            initial_delay_seconds = 90
-            period_seconds        = 30
-            timeout_seconds       = 5
-            failure_threshold     = 3
-          }
-          readiness_probe {
-            exec {
-              command = ["/bin/sh", "-c", "pgrep -f 'bundle exec sidekiq' >/dev/null"]
-            }
-            initial_delay_seconds = 30
-            period_seconds        = 15
-            timeout_seconds       = 5
-          }
-        }
+        # container {
+        #   image   = "freikin/dawarich:${var.image_version}"
+        #   name    = "dawarich-sidekiq"
+        #   command = ["sidekiq-entrypoint.sh"]
+        #   args    = ["bundle exec sidekiq"]
+        #   env {
+        #     name  = "REDIS_URL"
+        #     value = "redis://redis.redis.svc.cluster.local:6379"
+        #   }
+        #   env {
+        #     name  = "DATABASE_HOST"
+        #     value = "postgresql.dbaas"
+        #   }
+        #   env {
+        #     name  = "DATABASE_USERNAME"
+        #     value = "dawarich"
+        #   }
+        #   env {
+        #     name  = "DATABASE_PASSWORD"
+        #     value = data.vault_kv_secret_v2.secrets.data["db_password"]
+        #   }
+        #   env {
+        #     name  = "DATABASE_NAME"
+        #     value = "dawarich"
+        #   }
+        #   env {
+        #     name  = "MIN_MINUTES_SPENT_IN_CITY"
+        #     value = "60"
+        #   }
+        #   env {
+        #     name  = "BACKGROUND_PROCESSING_CONCURRENCY"
+        #     value = "10"
+        #   }
+        #   env {
+        #     name  = "ENABLE_TELEMETRY"
+        #     value = "true"
+        #   }
+        #   env {
+        #     name  = "APPLICATION_HOST"
+        #     value = "dawarich.viktorbarzin.me"
+        #   }
+        #   # env {
+        #   #   name  = "PROMETHEUS_EXPORTER_ENABLED"
+        #   #   value = "false"
+        #   # }
+        #   # env {
+        #   #   name  = "PROMETHEUS_EXPORTER_HOST"
+        #   #   value = "dawarich.dawarich"
+        #   # }
+        #   # env {
+        #   #   name  = "PHOTON_API_HOST"
+        #   #   value = "photon.dawarich:2322"
+        #   #   # value = "photon.komoot.io"
+        #   # }
+        #   # env {
+        #   #   name  = "PHOTON_API_USE_HTTPS"
+        #   #   value = "false"
+        #   # }
+        #   env {
+        #     name  = "GEOAPIFY_API_KEY"
+        #     value = data.vault_kv_secret_v2.secrets.data["geoapify_api_key"]
+        #   }
+        #   env {
+        #     name  = "SELF_HOSTED"
+        #     value = "true"
+        #   }
+
+        #   #   volume_mount {
+        #   #     name       = "watched"
+        #   #     mount_path = "/var/app/tmp/imports/watched"
+        #   #   }
+        # }
       }
     }
   }
-  lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
 }
 
 
@@ -446,71 +394,3 @@ module "ingress" {
     "gethomepage.dev/pod-selector" = ""
   }
 }
-
-# Paired with DawarichIngestionStale alert in monitoring/prometheus_chart_values.tpl.
-resource "kubernetes_cron_job_v1" "ingestion_freshness_monitor" {
-  metadata {
-    name      = "ingestion-freshness-monitor"
-    namespace = kubernetes_namespace.dawarich.metadata[0].name
-  }
-  spec {
-    concurrency_policy            = "Forbid"
-    failed_jobs_history_limit     = 3
-    schedule                      = "30 6 * * *"
-    starting_deadline_seconds     = 300
-    successful_jobs_history_limit = 1
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 2
-        ttl_seconds_after_finished = 3600
-        template {
-          metadata {}
-          spec {
-            restart_policy = "OnFailure"
-            container {
-              name  = "ingestion-freshness-monitor"
-              image = "docker.io/library/postgres:16-alpine"
-              env {
-                name = "PGPASSWORD"
-                value_from {
-                  secret_key_ref {
-                    name = "dawarich-secrets"
-                    key  = "db_password"
-                  }
-                }
-              }
-              command = ["/bin/sh", "-c", <<-EOT
-                set -eu
-                apk add --no-cache curl >/dev/null 2>&1 || true
-
-                TS=$(PGPASSWORD=$PGPASSWORD psql -h ${var.postgresql_host} -U dawarich -d dawarich -t -A -c \
-                  "SELECT COALESCE(EXTRACT(epoch FROM MAX(created_at))::bigint, 0) FROM points WHERE user_id = 1;")
-                NOW=$(date +%s)
-
-                if [ -z "$TS" ] || [ "$TS" = "0" ]; then
-                  echo "ERROR: no points found for user_id=1"
-                  exit 1
-                fi
-
-                AGE_H=$(( (NOW - TS) / 3600 ))
-                echo "last_point_ts=$TS now=$NOW age_hours=$AGE_H"
-
-                curl -sf --data-binary @- "http://prometheus-prometheus-pushgateway.monitoring:9091/metrics/job/dawarich-ingestion-freshness/user/viktor" <<METRICS
-                # TYPE dawarich_last_point_ingested_timestamp gauge
-                dawarich_last_point_ingested_timestamp $TS
-                # TYPE dawarich_ingestion_monitor_last_push_timestamp gauge
-                dawarich_ingestion_monitor_last_push_timestamp $NOW
-                METRICS
-              EOT
-              ]
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
-}
diff --git a/stacks/dbaas/main.tf b/stacks/dbaas/main.tf
index 2902a48c..9825da78 100644
--- a/stacks/dbaas/main.tf
+++ b/stacks/dbaas/main.tf
@@ -14,24 +14,14 @@ data "vault_kv_secret_v2" "secrets" {
   name  = "platform"
 }
 
-# Personal/app-user secrets (forgejo + roundcubemail MySQL passwords live here,
-# not under secret/platform, to match the "secret/viktor as the go-to personal
-# vault" convention documented in .claude/CLAUDE.md).
-data "vault_kv_secret_v2" "viktor" {
-  mount = "secret"
-  name  = "viktor"
-}
-
 module "dbaas" {
-  source                       = "./modules/dbaas"
-  prod                         = var.prod
-  tls_secret_name              = var.tls_secret_name
-  nfs_server                   = var.nfs_server
-  dbaas_root_password          = data.vault_kv_secret_v2.secrets.data["dbaas_root_password"]
-  postgresql_root_password     = data.vault_kv_secret_v2.secrets.data["dbaas_postgresql_root_password"]
-  pgadmin_password             = data.vault_kv_secret_v2.secrets.data["dbaas_pgadmin_password"]
-  mysql_forgejo_password       = data.vault_kv_secret_v2.viktor.data["mysql_forgejo_password"]
-  mysql_roundcubemail_password = data.vault_kv_secret_v2.viktor.data["mysql_roundcubemail_password"]
-  kube_config_path             = var.kube_config_path
-  tier                         = local.tiers.cluster
+  source                   = "./modules/dbaas"
+  prod                     = var.prod
+  tls_secret_name          = var.tls_secret_name
+  nfs_server               = var.nfs_server
+  dbaas_root_password      = data.vault_kv_secret_v2.secrets.data["dbaas_root_password"]
+  postgresql_root_password = data.vault_kv_secret_v2.secrets.data["dbaas_postgresql_root_password"]
+  pgadmin_password         = data.vault_kv_secret_v2.secrets.data["dbaas_pgadmin_password"]
+  kube_config_path         = var.kube_config_path
+  tier                     = local.tiers.cluster
 }
diff --git a/stacks/dbaas/modules/dbaas/main.tf b/stacks/dbaas/modules/dbaas/main.tf
index 1ae6f415..df68afbd 100644
--- a/stacks/dbaas/modules/dbaas/main.tf
+++ b/stacks/dbaas/modules/dbaas/main.tf
@@ -17,18 +17,6 @@ variable "kube_config_path" {
   sensitive = true
 }
 
-# MySQL static application users (not rotated by Vault DB engine; baked into
-# each app's config). Codified here so future MySQL rebuilds cannot silently
-# drop them.
-variable "mysql_forgejo_password" {
-  type      = string
-  sensitive = true
-}
-variable "mysql_roundcubemail_password" {
-  type      = string
-  sensitive = true
-}
-
 resource "kubernetes_namespace" "dbaas" {
   metadata {
     name = "dbaas"
@@ -37,10 +25,6 @@ resource "kubernetes_namespace" "dbaas" {
       "resource-governance/custom-quota" = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 # Override Kyverno tier-1-cluster LimitRange (max 4Gi) to allow MySQL 6Gi limit
@@ -87,6 +71,301 @@ module "tls_secret" {
   tls_secret_name = var.tls_secret_name
 }
 
+
+#### MYSQL — InnoDB Cluster via MySQL Operator
+#
+# 3 MySQL servers with Group Replication + 1 MySQL Router for auto-failover.
+# Operator installed in mysql-operator namespace (toleration for control-plane).
+# Init containers are slow (~20 min each) due to mysqlsh plugin loading.
+
+resource "kubernetes_namespace" "mysql_operator" {
+  metadata {
+    name = "mysql-operator"
+    labels = {
+      tier = "1-cluster"
+    }
+  }
+}
+
+resource "helm_release" "mysql_operator" {
+  namespace        = kubernetes_namespace.mysql_operator.metadata[0].name
+  create_namespace = false
+  name             = "mysql-operator"
+  timeout          = 300
+
+  repository = "https://mysql.github.io/mysql-operator/"
+  chart      = "mysql-operator"
+  version    = "2.2.7"
+
+  # NOTE: The mysql-operator chart (2.2.7) does NOT expose a resources values key.
+  # The resources block below is ignored by the chart. Without explicit resources
+  # on the deployment, the LimitRange default (256Mi) applies silently.
+  # Fix: kubectl patch deployment mysql-operator -n mysql-operator --type=json \
+  #   -p='[{"op":"replace","path":"/spec/template/spec/containers/0/resources","value":{"requests":{"cpu":"100m","memory":"256Mi"},"limits":{"memory":"512Mi"}}}]'
+  values = [yamlencode({
+    resources = {
+      requests = {
+        cpu    = "100m"
+        memory = "256Mi"
+      }
+      limits = {
+        memory = "512Mi"
+      }
+    }
+  })]
+}
+
+# The mysql-sidecar ClusterRole created by the Helm chart is missing
+# namespace and CRD list/watch permissions needed by the kopf framework
+# in the sidecar container. Without these, the sidecar enters degraded
+# mode and never completes InnoDB cluster join operations.
+resource "kubernetes_cluster_role" "mysql_sidecar_extra" {
+  metadata {
+    name = "mysql-sidecar-extra"
+  }
+  rule {
+    api_groups = [""]
+    resources  = ["namespaces"]
+    verbs      = ["list", "watch"]
+  }
+  rule {
+    api_groups = ["apiextensions.k8s.io"]
+    resources  = ["customresourcedefinitions"]
+    verbs      = ["list", "watch"]
+  }
+}
+
+resource "kubernetes_cluster_role_binding" "mysql_sidecar_extra" {
+  metadata {
+    name = "mysql-sidecar-extra"
+  }
+  role_ref {
+    api_group = "rbac.authorization.k8s.io"
+    kind      = "ClusterRole"
+    name      = kubernetes_cluster_role.mysql_sidecar_extra.metadata[0].name
+  }
+  subject {
+    kind      = "ServiceAccount"
+    name      = "mysql-cluster-sa"
+    namespace = kubernetes_namespace.dbaas.metadata[0].name
+  }
+}
+
+# ConfigMap for MySQL extra config — mounted as subPath over 99-extra.cnf
+# This is the only reliable way to persist innodb_doublewrite=OFF because:
+# - spec.mycnf only applies on initial cluster creation
+# - The operator's initconf container overwrites 99-extra.cnf on every pod start
+# - SET PERSIST doesn't support innodb_doublewrite (static variable)
+resource "kubernetes_config_map" "mysql_extra_cnf" {
+  metadata {
+    name      = "mysql-extra-cnf"
+    namespace = kubernetes_namespace.dbaas.metadata[0].name
+  }
+  data = {
+    "99-extra.cnf" = <<-EOT
+      [mysqld]
+      innodb_doublewrite=OFF
+    EOT
+  }
+}
+
+resource "helm_release" "mysql_cluster" {
+  namespace        = kubernetes_namespace.dbaas.metadata[0].name
+  create_namespace = false
+  name             = "mysql-cluster"
+  timeout          = 900
+
+  repository = "https://mysql.github.io/mysql-operator/"
+  chart      = "mysql-innodbcluster"
+  version    = "2.2.7"
+
+  values = [yamlencode({
+    serverInstances = 1
+    routerInstances = 1
+    serverVersion   = "8.4.4"
+
+    credentials = {
+      root = {
+        user     = "root"
+        password = var.dbaas_root_password
+        host     = "%"
+      }
+    }
+
+    tls = {
+      useSelfSigned = true
+    }
+
+    datadirVolumeClaimTemplate = {
+      storageClassName = "proxmox-lvm-encrypted"
+      metadata = {
+        annotations = {
+          "resize.topolvm.io/threshold"     = "80%"
+          "resize.topolvm.io/increase"      = "20%"
+          "resize.topolvm.io/storage_limit" = "100Gi"
+        }
+      }
+      resources = {
+        requests = {
+          storage = "30Gi"
+        }
+      }
+    }
+
+    serverConfig = {
+      mycnf = <<-EOT
+        [mysqld]
+        skip-name-resolve
+        mysql-native-password=ON
+        # Auto-recovery after crashes: rejoin group without manual intervention
+        group_replication_autorejoin_tries=2016
+        group_replication_exit_state_action=OFFLINE_MODE
+        group_replication_member_expel_timeout=30
+        group_replication_unreachable_majority_timeout=60
+        group_replication_start_on_boot=ON
+        # Cap XCom cache to prevent unbounded growth (default 1GB causes OOM)
+        group_replication_message_cache_size=134217728
+        # Reduce log buffer (16MB sufficient for this workload, was 64MB)
+        innodb_log_buffer_size=16777216
+        # Limit connections (peak usage ~40, no need for 151)
+        max_connections=80
+        # --- Disk write reduction (HDD/LVM thin) ---
+        # Flush redo log once per second, not per commit. Up to 1s data loss on MySQL crash,
+        # but group replication provides redundancy across 3 nodes.
+        innodb_flush_log_at_trx_commit=0
+        # OS decides when to flush binlog (not per commit)
+        sync_binlog=0
+        # HDD-tuned I/O capacity (default 200/2000 is for SSD)
+        innodb_io_capacity=100
+        innodb_io_capacity_max=200
+        # 1GB redo log capacity — larger log means less frequent checkpoint flushes
+        innodb_redo_log_capacity=1073741824
+        # 1GB buffer pool
+        innodb_buffer_pool_size=1073741824
+        # Disable doublewrite — halves write amplification. Safe with group replication
+        # (crashed node can re-clone from healthy replica rather than relying on local recovery)
+        innodb_doublewrite=OFF
+        # Flush neighbors on HDD (coalesce adjacent dirty pages into single I/O)
+        innodb_flush_neighbors=1
+        # Reduce page cleaner aggressiveness
+        innodb_lru_scan_depth=256
+        innodb_page_cleaners=1
+        # Reduce adaptive flushing — let dirty pages accumulate longer before background flush
+        innodb_adaptive_flushing_lwm=10
+        innodb_max_dirty_pages_pct=90
+        innodb_max_dirty_pages_pct_lwm=10
+      EOT
+    }
+
+    # Top-level resources apply to SIDECAR container
+    # VPA shows sidecar needs only 248Mi target / 334Mi upper bound
+    # Setting to 350Mi (was 2Gi/4Gi - 17× over-provisioned)
+    resources = {
+      requests = {
+        cpu    = "250m"
+        memory = "350Mi"
+      }
+      limits = {
+        memory = "350Mi"
+      }
+    }
+
+    podSpec = {
+      affinity = {
+        nodeAffinity = {
+          requiredDuringSchedulingIgnoredDuringExecution = {
+            nodeSelectorTerms = [{
+              matchExpressions = [{
+                key      = "kubernetes.io/hostname"
+                operator = "NotIn"
+                values   = ["k8s-node1"]
+              }]
+            }]
+          }
+        }
+        podAntiAffinity = {
+          preferredDuringSchedulingIgnoredDuringExecution = [{
+            weight = 100
+            podAffinityTerm = {
+              labelSelector = {
+                matchLabels = {
+                  "component" = "mysqld"
+                }
+              }
+              topologyKey = "kubernetes.io/hostname"
+            }
+          }]
+        }
+      }
+      # Container-specific resources for MYSQL container
+      # VPA shows 2.98Gi target / 5.26Gi upper bound
+      # Current usage ~1.8Gi peak. Reducing limit from 4Gi to 3Gi
+      containers = [
+        {
+          name = "mysql"
+          resources = {
+            requests = {
+              memory = "2Gi"
+              cpu    = "250m"
+            }
+            limits = {
+              memory = "3Gi"
+            }
+          }
+        },
+        {
+          # MySQL operator sidecar (kopf Python control loop)
+          # VPA upper bound: 334Mi. Was 6Gi limit — 17× over-provisioned.
+          name = "sidecar"
+          resources = {
+            requests = {
+              memory = "350Mi"
+              cpu    = "50m"
+            }
+            limits = {
+              memory = "512Mi"
+            }
+          }
+        }
+      ]
+      initContainers = [
+        {
+          name = "fixdatadir"
+          resources = {
+            requests = { memory = "64Mi", cpu = "25m" }
+            limits   = { memory = "64Mi" }
+          }
+        },
+        {
+          name = "initconf"
+          resources = {
+            requests = { memory = "256Mi", cpu = "50m" }
+            limits   = { memory = "256Mi" }
+          }
+        },
+        {
+          name = "initmysql"
+          resources = {
+            requests = { memory = "512Mi", cpu = "250m" }
+            limits   = { memory = "512Mi" }
+          }
+        }
+      ]
+    }
+
+    # MySQL Router - explicitly set resources (chart does not expose router.resources)
+    # VPA shows 100Mi upper bound, setting to 128Mi
+    # Note: This requires manual kubectl patch after helm release:
+    #   kubectl patch deployment mysql-cluster-router -n dbaas --type=json -p='[
+    #     {"op": "replace", "path": "/spec/template/spec/containers/0/resources",
+    #      "value": {"requests": {"cpu": "25m", "memory": "128Mi"}, "limits": {"memory": "128Mi"}}}]'
+    # TODO: migrate to mysql-operator fork or wait for upstream router.resources support
+
+  })]
+
+  depends_on = [helm_release.mysql_operator]
+}
+
 #### MYSQL — Standalone (migration target)
 #
 # Standalone MySQL without Group Replication. Eliminates ~95 GB/day of GR
@@ -157,9 +436,9 @@ resource "kubernetes_stateful_set_v1" "mysql_standalone" {
             required_during_scheduling_ignored_during_execution {
               node_selector_term {
                 match_expressions {
-                  key      = "nvidia.com/gpu.present"
+                  key      = "kubernetes.io/hostname"
                   operator = "NotIn"
-                  values   = ["true"]
+                  values   = ["k8s-node1"]
                 }
               }
             }
@@ -258,7 +537,7 @@ resource "kubernetes_stateful_set_v1" "mysql_standalone" {
   }
 
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
@@ -283,55 +562,6 @@ resource "kubernetes_service" "mysql" {
   depends_on = [kubernetes_stateful_set_v1.mysql_standalone]
 }
 
-# MySQL static application users — not rotated by Vault DB engine.
-# Each app stores its password in its own config (forgejo app.ini, roundcube
-# ROUNDCUBEMAIL_DB_PASSWORD env). During the 2026-04-16 InnoDB Cluster →
-# standalone migration these users were accidentally dropped and recreated with
-# mismatched passwords; this block codifies them so a future rebuild cannot
-# silently break the apps.
-#
-# Pattern matches `null_resource.pg_terraform_state_db` below (local-exec into
-# the DB pod). We CREATE IF NOT EXISTS + ALTER USER on every apply so a
-# password rotation in Vault is re-synced on the next `scripts/tg apply`. The
-# `password_hash` trigger re-runs the provisioner when the Vault password
-# changes; the namespace/user triggers re-run if identifiers change.
-locals {
-  mysql_static_users = {
-    forgejo = {
-      database = "forgejo"
-      password = var.mysql_forgejo_password
-    }
-    roundcubemail = {
-      database = "roundcubemail"
-      password = var.mysql_roundcubemail_password
-    }
-  }
-}
-
-resource "null_resource" "mysql_static_user" {
-  for_each = local.mysql_static_users
-
-  depends_on = [kubernetes_stateful_set_v1.mysql_standalone]
-
-  triggers = {
-    username      = each.key
-    database      = each.value.database
-    password_hash = sha256(each.value.password)
-  }
-
-  provisioner "local-exec" {
-    command = <<EOT
-kubectl --kubeconfig ${var.kube_config_path} exec -i -n dbaas mysql-standalone-0 -c mysql -- sh -c 'exec mysql -uroot -p"$MYSQL_ROOT_PASSWORD"' <<'SQL'
-CREATE DATABASE IF NOT EXISTS `${each.value.database}`;
-CREATE USER IF NOT EXISTS '${each.key}'@'%' IDENTIFIED WITH caching_sha2_password BY '${each.value.password}';
-ALTER USER '${each.key}'@'%' IDENTIFIED WITH caching_sha2_password BY '${each.value.password}';
-GRANT ALL PRIVILEGES ON `${each.value.database}`.* TO '${each.key}'@'%';
-FLUSH PRIVILEGES;
-SQL
-EOT
-  }
-}
-
 module "nfs_mysql_backup_host" {
   source     = "../../../../modules/kubernetes/nfs_volume"
   name       = "dbaas-mysql-backup-host"
@@ -456,10 +686,6 @@ resource "kubernetes_cron_job_v1" "mysql-backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Per-database MySQL backups (enables single-database restore without affecting others)
@@ -555,10 +781,6 @@ resource "kubernetes_cron_job_v1" "mysql-backup-per-db" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # resource "kubernetes_persistent_volume" "mysql" {
@@ -764,10 +986,6 @@ resource "kubernetes_deployment" "phpmyadmin" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "phpmyadmin" {
@@ -1161,109 +1379,6 @@ resource "null_resource" "pg_terraform_state_db" {
   }
 }
 
-# Create payslip_ingest database for the payslip-ingest webhook service.
-# Role password is managed by Vault Database Secrets Engine (static role `pg-payslip-ingest`, 7d rotation).
-resource "null_resource" "pg_payslip_ingest_db" {
-  depends_on = [null_resource.pg_cluster]
-
-  triggers = {
-    db_name  = "payslip_ingest"
-    username = "payslip_ingest"
-  }
-
-  provisioner "local-exec" {
-    command = <<-EOT
-      kubectl --kubeconfig ${var.kube_config_path} exec -n dbaas pg-cluster-1 -c postgres -- \
-        bash -c '
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_roles WHERE rolname = '"'"'payslip_ingest'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE ROLE payslip_ingest WITH LOGIN PASSWORD '"'"'changeme-vault-will-rotate'"'"'"
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_database WHERE datname = '"'"'payslip_ingest'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE DATABASE payslip_ingest OWNER payslip_ingest"
-          psql -U postgres -c "GRANT ALL PRIVILEGES ON DATABASE payslip_ingest TO payslip_ingest"
-        '
-    EOT
-  }
-}
-
-# Create job_hunter database for the job-hunter scraper service.
-# Role password is managed by Vault Database Secrets Engine (static role `pg-job-hunter`, 7d rotation).
-resource "null_resource" "pg_job_hunter_db" {
-  depends_on = [null_resource.pg_cluster]
-
-  triggers = {
-    db_name  = "job_hunter"
-    username = "job_hunter"
-  }
-
-  provisioner "local-exec" {
-    command = <<-EOT
-      kubectl --kubeconfig ${var.kube_config_path} exec -n dbaas pg-cluster-1 -c postgres -- \
-        bash -c '
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_roles WHERE rolname = '"'"'job_hunter'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE ROLE job_hunter WITH LOGIN PASSWORD '"'"'changeme-vault-will-rotate'"'"'"
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_database WHERE datname = '"'"'job_hunter'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE DATABASE job_hunter OWNER job_hunter"
-          psql -U postgres -c "GRANT ALL PRIVILEGES ON DATABASE job_hunter TO job_hunter"
-        '
-    EOT
-  }
-}
-
-# Create wealthfolio_sync database for the SQLite→PG ETL sidecar that mirrors
-# Wealthfolio's daily_account_valuation/accounts/activities into PG so Grafana
-# can chart net worth, contributions, and growth.
-# Role password is managed by Vault Database Secrets Engine (static role `pg-wealthfolio-sync`, 7d rotation).
-resource "null_resource" "pg_wealthfolio_sync_db" {
-  depends_on = [null_resource.pg_cluster]
-
-  triggers = {
-    db_name  = "wealthfolio_sync"
-    username = "wealthfolio_sync"
-  }
-
-  provisioner "local-exec" {
-    command = <<-EOT
-      PRIMARY=$(kubectl --kubeconfig ${var.kube_config_path} get cluster -n dbaas pg-cluster -o jsonpath='{.status.currentPrimary}')
-      kubectl --kubeconfig ${var.kube_config_path} exec -n dbaas $PRIMARY -c postgres -- \
-        bash -c '
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_roles WHERE rolname = '"'"'wealthfolio_sync'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE ROLE wealthfolio_sync WITH LOGIN PASSWORD '"'"'changeme-vault-will-rotate'"'"'"
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_database WHERE datname = '"'"'wealthfolio_sync'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE DATABASE wealthfolio_sync OWNER wealthfolio_sync"
-          psql -U postgres -c "GRANT ALL PRIVILEGES ON DATABASE wealthfolio_sync TO wealthfolio_sync"
-        '
-    EOT
-  }
-}
-
-# Create fire_planner database for the FIRE retirement-planning service.
-# Role password is managed by Vault Database Secrets Engine
-# (static role `pg-fire-planner`, 7d rotation).
-# fire_planner reads from payslip_ingest + wealthfolio_sync (read-only)
-# and writes its own MC results into schema fire_planner.
-resource "null_resource" "pg_fire_planner_db" {
-  depends_on = [null_resource.pg_cluster]
-
-  triggers = {
-    db_name  = "fire_planner"
-    username = "fire_planner"
-  }
-
-  provisioner "local-exec" {
-    command = <<-EOT
-      PRIMARY=$(kubectl --kubeconfig ${var.kube_config_path} get cluster -n dbaas pg-cluster -o jsonpath='{.status.currentPrimary}')
-      kubectl --kubeconfig ${var.kube_config_path} exec -n dbaas $PRIMARY -c postgres -- \
-        bash -c '
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_roles WHERE rolname = '"'"'fire_planner'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE ROLE fire_planner WITH LOGIN PASSWORD '"'"'changeme-vault-will-rotate'"'"'"
-          psql -U postgres -tc "SELECT 1 FROM pg_catalog.pg_database WHERE datname = '"'"'fire_planner'"'"'" | grep -q 1 || \
-            psql -U postgres -c "CREATE DATABASE fire_planner OWNER fire_planner"
-          psql -U postgres -c "GRANT ALL PRIVILEGES ON DATABASE fire_planner TO fire_planner"
-        '
-    EOT
-  }
-}
-
 # Old PostgreSQL deployment — kept commented for rollback reference
 # resource "kubernetes_deployment" "postgres" {
 #   metadata {
@@ -1374,10 +1489,6 @@ resource "kubernetes_deployment" "pgadmin" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 resource "kubernetes_service" "pgadmin" {
   metadata {
@@ -1486,10 +1597,6 @@ resource "kubernetes_cron_job_v1" "postgresql-backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Per-database PostgreSQL backups (enables single-database restore without affecting others)
@@ -1597,8 +1704,4 @@ resource "kubernetes_cron_job_v1" "postgresql-backup-per-db" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/descheduler/main.tf b/stacks/descheduler/main.tf
index c334e072..4a0e7f09 100644
--- a/stacks/descheduler/main.tf
+++ b/stacks/descheduler/main.tf
@@ -7,10 +7,6 @@ resource "kubernetes_namespace" "descheduler" {
       tier = local.tiers.cluster
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_cluster_role" "descheduler" {
diff --git a/stacks/diun/main.tf b/stacks/diun/main.tf
index e017f1f2..04af08e6 100644
--- a/stacks/diun/main.tf
+++ b/stacks/diun/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "diun" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -230,6 +226,6 @@ resource "kubernetes_deployment" "diun" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
diff --git a/stacks/ebook2audiobook/main.tf b/stacks/ebook2audiobook/main.tf
index 8492991f..e6f43005 100644
--- a/stacks/ebook2audiobook/main.tf
+++ b/stacks/ebook2audiobook/main.tf
@@ -19,10 +19,6 @@ resource "kubernetes_namespace" "ebook2audiobook" {
       tier = local.tiers.gpu
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 
@@ -72,7 +68,7 @@ resource "kubernetes_deployment" "ebook2audiobook" {
 
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -119,10 +115,6 @@ resource "kubernetes_deployment" "ebook2audiobook" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 
@@ -290,7 +282,7 @@ resource "kubernetes_deployment" "audiblez" {
       }
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -321,10 +313,6 @@ resource "kubernetes_deployment" "audiblez" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 
@@ -356,7 +344,7 @@ resource "kubernetes_deployment" "audiblez-web" {
       }
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -411,10 +399,6 @@ resource "kubernetes_deployment" "audiblez-web" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "audiblez-web" {
diff --git a/stacks/ebooks/main.tf b/stacks/ebooks/main.tf
index c6978a05..31858dd2 100644
--- a/stacks/ebooks/main.tf
+++ b/stacks/ebooks/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "ebooks" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 # ExternalSecrets for all three sources
@@ -350,7 +346,7 @@ resource "kubernetes_deployment" "calibre-web-automated" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
@@ -470,7 +466,7 @@ resource "kubernetes_deployment" "annas-archive-stacks" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
@@ -619,7 +615,7 @@ resource "kubernetes_deployment" "audiobookshelf" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
@@ -785,18 +781,8 @@ resource "kubernetes_deployment" "book_search" {
             }
           }
           env {
-            name = "SMTP_HOST"
-            # Use intra-cluster ClusterIP path — bypasses pfSense HAProxy +
-            # PROXY v2 (the public path hairpins through HAProxy:587 →
-            # NodePort → pod :5587 where Postfix's smtpd-proxy587 daemon
-            # crashes ~50% of HAProxy healthchecks with
-            # `smtpd_peer_hostaddr_to_sockaddr: ... Servname not supported`,
-            # producing intermittent 6s TCP timeouts for clients that land
-            # mid-respawn). The ClusterIP service points to pod port 587
-            # (stock submission daemon, no PROXY) and is rock-solid (12/12
-            # in <31ms vs 6/12 timeouts on the public path).
-            # See docs/runbooks/mailserver-pfsense-haproxy.md.
-            value = "mailserver.mailserver.svc.cluster.local"
+            name  = "SMTP_HOST"
+            value = "mail.viktorbarzin.me"
           }
           env {
             name  = "SMTP_PORT"
@@ -890,7 +876,7 @@ resource "kubernetes_deployment" "book_search" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/echo/main.tf b/stacks/echo/main.tf
index 7c31e2f1..bf4de105 100644
--- a/stacks/echo/main.tf
+++ b/stacks/echo/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "echo" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -73,10 +69,6 @@ resource "kubernetes_deployment" "echo" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "echo" {
diff --git a/stacks/excalidraw/main.tf b/stacks/excalidraw/main.tf
index c7b1f013..f6d0c19b 100644
--- a/stacks/excalidraw/main.tf
+++ b/stacks/excalidraw/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "excalidraw" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 
@@ -116,10 +112,6 @@ resource "kubernetes_deployment" "excalidraw" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "draw" {
diff --git a/stacks/excalidraw/project/README.md b/stacks/excalidraw/project/README.md
index 0f017e85..7eda1260 100644
--- a/stacks/excalidraw/project/README.md
+++ b/stacks/excalidraw/project/README.md
@@ -84,8 +84,8 @@ spec:
       volumes:
         - name: data
           nfs:
-            server: 192.168.1.127
-            path: /srv/nfs/excalidraw
+            server: 10.0.10.15
+            path: /mnt/main/excalidraw
 ```
 
 ### With Authentik SSO
diff --git a/stacks/external-secrets/main.tf b/stacks/external-secrets/main.tf
index 308ea98a..b4477e38 100644
--- a/stacks/external-secrets/main.tf
+++ b/stacks/external-secrets/main.tf
@@ -5,10 +5,6 @@ resource "kubernetes_namespace" "external_secrets" {
       tier = local.tiers.cluster
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "external_secrets" {
diff --git a/stacks/f1-stream/files/Dockerfile b/stacks/f1-stream/files/Dockerfile
index 80dd20e4..7bac86be 100644
--- a/stacks/f1-stream/files/Dockerfile
+++ b/stacks/f1-stream/files/Dockerfile
@@ -14,26 +14,9 @@ FROM python:3.13-slim-bookworm
 
 WORKDIR /app
 
-# Headless Chromium runtime libs for the playback verifier. Listed inline
-# (instead of running `playwright install-deps`) so the image build doesn't
-# need root-network apt fetches at runtime.
-RUN apt-get update && apt-get install -y --no-install-recommends \
-    ca-certificates \
-    libnss3 libnspr4 \
-    libatk1.0-0 libatk-bridge2.0-0 libcups2 \
-    libdrm2 libxkbcommon0 libxcomposite1 libxdamage1 \
-    libxfixes3 libxrandr2 libgbm1 libpango-1.0-0 libcairo2 \
-    libasound2 libatspi2.0-0 \
-    fonts-liberation fonts-noto-color-emoji \
- && rm -rf /var/lib/apt/lists/*
-
 COPY backend/requirements.txt .
 RUN pip install --no-cache-dir -r requirements.txt
 
-# Install the Chromium browser binary used by the verifier. Skip
-# --with-deps because we already installed the system libs above.
-RUN playwright install chromium
-
 COPY backend/ ./backend/
 
 # Copy built frontend into the image
diff --git a/stacks/f1-stream/files/backend/embed_proxy.py b/stacks/f1-stream/files/backend/embed_proxy.py
deleted file mode 100644
index 34ccb28c..00000000
--- a/stacks/f1-stream/files/backend/embed_proxy.py
+++ /dev/null
@@ -1,359 +0,0 @@
-"""Embed iframe-stripping reverse proxy.
-
-Serves third-party embed pages (e.g. https://hmembeds.one/embed/{hash},
-https://pooembed.eu/embed/{slug}) through our origin so we can:
-
-1. Strip X-Frame-Options and Content-Security-Policy: frame-ancestors headers,
-   so the embed loads in our <iframe> regardless of upstream policy.
-2. Inject <base> + a frame-buster-defeat <script> at the top of <head> so
-   the embed's JS sees `window.top === window` and a plausible
-   `document.referrer` pointing at the upstream origin.
-3. Forward Referer / User-Agent matching the upstream's own pages so
-   the upstream's hotlink / origin-allowlist checks pass.
-
-Two endpoints:
-- GET /embed?url=<base64url> — the embed HTML page (rewritten).
-- GET /embed-asset?url=<base64url> — fallback for any subresource the
-  upstream blocks based on hotlink protection. Most assets load directly
-  via the injected <base> tag and bypass our proxy.
-"""
-
-import logging
-import re
-from typing import AsyncGenerator
-from urllib.parse import urlparse
-
-import httpx
-from fastapi import HTTPException
-
-from backend.m3u8_rewriter import decode_url
-
-logger = logging.getLogger(__name__)
-
-EMBED_TIMEOUT = 20.0
-ASSET_TIMEOUT = 30.0
-RELAY_CHUNK_SIZE = 65536
-
-USER_AGENT = (
-    "Mozilla/5.0 (Windows NT 10.0; Win64; x64) "
-    "AppleWebKit/537.36 (KHTML, like Gecko) "
-    "Chrome/120.0.0.0 Safari/537.36"
-)
-
-# Response headers we never forward (they break frame embedding or leak upstream policy).
-STRIP_RESPONSE_HEADERS = {
-    "x-frame-options",
-    "content-security-policy",
-    "content-security-policy-report-only",
-    "set-cookie",
-    "report-to",
-    "nel",
-    "permissions-policy",
-    "cross-origin-opener-policy",
-    "cross-origin-embedder-policy",
-    "cross-origin-resource-policy",
-    # let httpx/uvicorn re-set these
-    "transfer-encoding",
-    "content-encoding",
-    "content-length",
-    "connection",
-}
-
-# Inject this <script> at the top of <head> to defeat JS frame-busters.
-# - Locks window.top, window.parent, and window.self to the embed window
-#   itself, so `self !== window.top` checks pass.
-# - Forces document.referrer to the upstream origin so allowlist checks
-#   like `document.referrer.includes("timstreams.net")` keep working.
-# - No-ops anything that would call window.parent.location or attempt to
-#   reload the top frame.
-_FRAME_BUSTER_DEFEAT_TEMPLATE = """
-<script>(function(){{
-  try {{
-    var fakeWindow = window;
-    Object.defineProperty(window, 'top', {{get: function(){{return fakeWindow;}}, configurable: false}});
-    Object.defineProperty(window, 'parent', {{get: function(){{return fakeWindow;}}, configurable: false}});
-    Object.defineProperty(window, 'frameElement', {{get: function(){{return null;}}, configurable: false}});
-    Object.defineProperty(document, 'referrer', {{get: function(){{return {referrer!r};}}, configurable: false}});
-  }} catch (e) {{}}
-  // Defeat the `disable-devtool.js` redirect trap that hmembeds and similar
-  // embed hosts use. The trap fires `console.clear`/`console.table` in a
-  // tight loop, then if it thinks DevTools is open, calls
-  // `window.location = "https://www.google.com"`. We block those redirect
-  // sinks while leaving normal playback unaffected.
-  try {{
-    var noop = function(){{}};
-    console.clear = noop;
-    console.table = noop;
-    console.dir = noop;
-    var loc = window.location;
-    Object.defineProperty(window, 'location', {{
-      get: function(){{ return loc; }},
-      set: function(v){{ /* swallow assignment */ }},
-      configurable: false,
-    }});
-    var origAssign = loc.assign && loc.assign.bind(loc);
-    var origReplace = loc.replace && loc.replace.bind(loc);
-    loc.assign = function(u){{ if (typeof u === 'string' && u.indexOf('google.com') !== -1) return; if (origAssign) origAssign(u); }};
-    loc.replace = function(u){{ if (typeof u === 'string' && u.indexOf('google.com') !== -1) return; if (origReplace) origReplace(u); }};
-  }} catch (e) {{}}
-
-  // Route all cross-origin fetch/XHR requests through our /embed-asset
-  // proxy. The hmembeds player calls a token-binding endpoint
-  // (hghndasw.gbgdhdffhf.shop/sec/<JWT>) that CORS-rejects requests from
-  // any origin other than hmembeds.one. By rewriting the URL to
-  // /embed-asset?url=..., the browser fetches our same-origin endpoint
-  // (no CORS issue), and our backend fetches the upstream with the
-  // correct Referer/Origin server-side (no CORS issue there either).
-  try {{
-    var b64url = function(s) {{
-      return btoa(unescape(encodeURIComponent(s)))
-        .replace(/\\+/g, '-').replace(/\\//g, '_').replace(/=+$/, '');
-    }};
-    var sameOrigin = function(u) {{
-      try {{ return (new URL(u, document.baseURI || location.href)).origin === location.origin; }}
-      catch (_) {{ return true; }}
-    }};
-    var toAbsolute = function(u) {{
-      try {{ return (new URL(u, document.baseURI || location.href)).toString(); }}
-      catch (_) {{ return u; }}
-    }};
-    var proxify = function(u) {{
-      var abs = toAbsolute(u);
-      if (sameOrigin(abs)) return u;
-      // Don't double-proxy.
-      if (abs.indexOf('/embed-asset?') !== -1 || abs.indexOf('/embed?') !== -1) return u;
-      return location.origin + '/embed-asset?url=' + b64url(abs);
-    }};
-
-    var _fetch = window.fetch && window.fetch.bind(window);
-    if (_fetch) {{
-      window.fetch = function(input, init) {{
-        try {{
-          if (typeof input === 'string') {{
-            return _fetch(proxify(input), init);
-          }} else if (input && input.url) {{
-            var newUrl = proxify(input.url);
-            if (newUrl !== input.url) {{
-              return _fetch(new Request(newUrl, input), init);
-            }}
-          }}
-        }} catch (e) {{}}
-        return _fetch(input, init);
-      }};
-    }}
-
-    var XHR = window.XMLHttpRequest;
-    if (XHR && XHR.prototype && XHR.prototype.open) {{
-      var _open = XHR.prototype.open;
-      XHR.prototype.open = function(method, url) {{
-        try {{ url = proxify(url); }} catch (e) {{}}
-        var args = Array.prototype.slice.call(arguments);
-        args[1] = url;
-        return _open.apply(this, args);
-      }};
-    }}
-  }} catch (e) {{}}
-}})();</script>
-"""
-
-
-def _decode(encoded_url: str) -> str:
-    try:
-        return decode_url(encoded_url)
-    except Exception as e:
-        raise HTTPException(status_code=400, detail=f"Invalid encoded URL: {e}")
-
-
-def _filter_headers(upstream_headers: httpx.Headers) -> dict[str, str]:
-    """Forward upstream headers minus the ones we strip."""
-    out: dict[str, str] = {}
-    for k, v in upstream_headers.items():
-        if k.lower() in STRIP_RESPONSE_HEADERS:
-            continue
-        out[k] = v
-    # Always allow our domain to embed and load cross-origin
-    out["Access-Control-Allow-Origin"] = "*"
-    out["X-Frame-Options-Stripped"] = "by-f1-embed-proxy"
-    return out
-
-
-def _make_referer(upstream_url: str) -> str:
-    """Build a plausible Referer header — the upstream's own root."""
-    parsed = urlparse(upstream_url)
-    return f"{parsed.scheme}://{parsed.netloc}/"
-
-
-def _make_origin(upstream_url: str) -> str:
-    parsed = urlparse(upstream_url)
-    return f"{parsed.scheme}://{parsed.netloc}"
-
-
-def _inject_into_head(html: str, upstream_url: str) -> str:
-    """Inject <base> tag + frame-buster defeat script into the response HTML."""
-    parsed = urlparse(upstream_url)
-    base_href = f"{parsed.scheme}://{parsed.netloc}/"
-
-    # The frame-buster-defeat script. Use the upstream's own URL as the spoofed referrer.
-    busted = _FRAME_BUSTER_DEFEAT_TEMPLATE.format(referrer=upstream_url)
-
-    base_tag = f'<base href="{base_href}">'
-
-    injection = base_tag + busted
-
-    # Drop any inline CSP <meta> tags first so they can't override our header strip.
-    html = re.sub(
-        r'<meta[^>]+http-equiv=[\'"]?Content-Security-Policy[\'"]?[^>]*>',
-        "",
-        html,
-        flags=re.IGNORECASE,
-    )
-
-    # Strip disable-devtool.js script tags. The library runs detection heuristics
-    # and redirects on match. Removing it reduces attack surface even with our
-    # location-setter lockdown — saves redundant work and one fewer thing to
-    # bypass in case the lockdown misses an edge case.
-    html = re.sub(
-        r'<script[^>]+(?:disable-devtool|devtool|disabledevtool)[^<]*</script>',
-        "",
-        html,
-        flags=re.IGNORECASE,
-    )
-    html = re.sub(
-        r'<script[^>]+src=["\'][^"\']*disable-devtool[^"\']*["\'][^>]*></script>',
-        "",
-        html,
-        flags=re.IGNORECASE,
-    )
-
-    # Insert immediately after the opening <head> (case-insensitive).
-    head_match = re.search(r"<head[^>]*>", html, flags=re.IGNORECASE)
-    if head_match:
-        idx = head_match.end()
-        return html[:idx] + injection + html[idx:]
-
-    # No <head> — prepend at the start of the document so the script runs first.
-    return injection + html
-
-
-def _looks_blocked_by_anti_bot(content: str) -> bool:
-    """Detect Cloudflare-style challenge interstitials in the upstream body."""
-    sample = content[:4096].lower()
-    markers = (
-        "cf-chl-bypass",
-        "checking your browser",
-        "just a moment",
-        "attention required",
-        "cf-browser-verification",
-    )
-    return any(m in sample for m in markers)
-
-
-async def fetch_embed(encoded_url: str) -> tuple[bytes, dict[str, str], int]:
-    """Fetch an upstream embed page, rewrite the HTML, and return the response.
-
-    Returns: (body_bytes, headers_dict, status_code).
-    Raises HTTPException on transport errors.
-    """
-    url = _decode(encoded_url)
-    logger.info("Embed-proxying: %s", url)
-
-    upstream_headers = {
-        "User-Agent": USER_AGENT,
-        "Referer": _make_referer(url),
-        "Origin": _make_origin(url),
-        "Accept": (
-            "text/html,application/xhtml+xml,application/xml;q=0.9,"
-            "image/avif,image/webp,*/*;q=0.8"
-        ),
-        "Accept-Language": "en-US,en;q=0.9",
-    }
-
-    try:
-        async with httpx.AsyncClient(
-            timeout=EMBED_TIMEOUT,
-            follow_redirects=True,
-        ) as client:
-            response = await client.get(url, headers=upstream_headers)
-    except httpx.TimeoutException:
-        raise HTTPException(status_code=504, detail="Upstream embed timeout")
-    except httpx.HTTPError as e:
-        raise HTTPException(status_code=502, detail=f"Upstream embed error: {e}")
-
-    status_code = response.status_code
-    upstream_ct = response.headers.get("content-type", "")
-    headers_out = _filter_headers(response.headers)
-
-    body = response.content
-
-    # Detect Cloudflare-style challenge so the frontend can show a clear error.
-    if "html" in upstream_ct.lower():
-        text = response.text
-        if _looks_blocked_by_anti_bot(text):
-            logger.warning("Upstream returned anti-bot challenge: %s", url)
-            raise HTTPException(
-                status_code=502,
-                detail="Upstream returned anti-bot challenge — proxy cannot bypass",
-            )
-
-        rewritten = _inject_into_head(text, url)
-        body = rewritten.encode("utf-8")
-        headers_out["Content-Type"] = "text/html; charset=utf-8"
-
-    return body, headers_out, status_code
-
-
-async def relay_asset(
-    encoded_url: str, range_header: str | None
-) -> tuple[AsyncGenerator[bytes, None], dict[str, str], int]:
-    """Relay an upstream subresource (JS/CSS/image/font) as a chunked stream.
-
-    Used as a fallback when an upstream blocks hotlinked assets via Referer
-    or Origin checks. The injected <base> tag handles most of these cases
-    by letting the browser hit upstream directly — the relay is only for
-    the awkward few that need a proxied origin.
-    """
-    url = _decode(encoded_url)
-    logger.debug("Embed-asset relay: %s", url)
-
-    headers = {
-        "User-Agent": USER_AGENT,
-        "Referer": _make_referer(url),
-        "Origin": _make_origin(url),
-        "Accept": "*/*",
-    }
-    if range_header:
-        headers["Range"] = range_header
-
-    client = httpx.AsyncClient(timeout=ASSET_TIMEOUT, follow_redirects=True)
-
-    try:
-        response = await client.send(
-            client.build_request("GET", url, headers=headers),
-            stream=True,
-        )
-    except httpx.TimeoutException:
-        await client.aclose()
-        raise HTTPException(status_code=504, detail="Upstream asset timeout")
-    except httpx.HTTPError as e:
-        await client.aclose()
-        raise HTTPException(status_code=502, detail=f"Upstream asset error: {e}")
-
-    if response.status_code >= 400:
-        await response.aclose()
-        await client.aclose()
-        raise HTTPException(
-            status_code=502,
-            detail=f"Upstream asset returned HTTP {response.status_code}",
-        )
-
-    headers_out = _filter_headers(response.headers)
-
-    async def _stream() -> AsyncGenerator[bytes, None]:
-        try:
-            async for chunk in response.aiter_bytes(chunk_size=RELAY_CHUNK_SIZE):
-                yield chunk
-        finally:
-            await response.aclose()
-            await client.aclose()
-
-    return _stream(), headers_out, response.status_code
diff --git a/stacks/f1-stream/files/backend/extractors/__init__.py b/stacks/f1-stream/files/backend/extractors/__init__.py
index 72e4d667..49b5c4d7 100644
--- a/stacks/f1-stream/files/backend/extractors/__init__.py
+++ b/stacks/f1-stream/files/backend/extractors/__init__.py
@@ -12,20 +12,12 @@ Example:
 """
 
 from backend.extractors.aceztrims import AceztrimsExtractor
-from backend.extractors.chrome_browser import ChromeBrowserExtractor
-from backend.extractors.curated import CuratedExtractor
-from backend.extractors.dd12 import DD12Extractor
-from backend.extractors.stremio import StremioAddonExtractor
-from backend.extractors.subreddit import SubredditExtractor
 from backend.extractors.daddylive import DaddyLiveExtractor
-from backend.extractors.discord_source import DiscordExtractor
+from backend.extractors.demo import DemoExtractor
 from backend.extractors.models import ExtractedStream
-from backend.extractors.pitsport import PitsportExtractor
-from backend.extractors.ppv import PPVExtractor
 from backend.extractors.registry import ExtractorRegistry
 from backend.extractors.service import ExtractionService
 from backend.extractors.streamed import StreamedExtractor
-from backend.extractors.timstreams import TimStreamsExtractor
 
 __all__ = [
     "ExtractedStream",
@@ -44,36 +36,10 @@ def create_registry() -> ExtractorRegistry:
     registry = ExtractorRegistry()
 
     # --- Register extractors below ---
-    # CuratedExtractor previously surfaced two hmembeds 24/7 channels (Sky
-    # Sports F1, DAZN F1) but their JW Player decoder produces an empty
-    # playlist in our environment (error 102630) regardless of headed mode,
-    # IP, or fingerprint we tried. The streams loaded the upstream's ad
-    # overlay but never produced a video element, so they confused users —
-    # disabled until/unless we find a working bypass.
-    # registry.register(CuratedExtractor())
+    registry.register(DemoExtractor())
     registry.register(StreamedExtractor())
-    # ChromeBrowserExtractor drives the in-cluster chrome-service via the
-    # CHROME_WS_URL / CHROME_WS_TOKEN env vars to scrape JS-rendered
-    # pages whose m3u8 is computed at runtime.
-    registry.register(ChromeBrowserExtractor())
-    # SubredditExtractor pulls live-stream posts from motorsport subreddits.
-    # Returns embed-type streams; the verifier will visit each via
-    # chrome-service to confirm playability.
-    registry.register(SubredditExtractor())
-    # DD12Extractor scrapes DD12Streams' per-channel pages for the inline
-    # JW Player file URL. The site embeds the m3u8 in HTML so curl-based
-    # parsing is enough — no browser needed.
-    registry.register(DD12Extractor())
-    # StremioAddonExtractor calls Stremio addon HTTP APIs (TvVoo, StremVerse)
-    # which already index Sky F1 / DAZN F1 / Vavoo IPTV channels. No
-    # Stremio client needed — just /stream/<type>/<id>.json calls.
-    registry.register(StremioAddonExtractor())
     registry.register(DaddyLiveExtractor())
     registry.register(AceztrimsExtractor())
-    registry.register(PitsportExtractor())
-    registry.register(PPVExtractor())
-    registry.register(TimStreamsExtractor())
-    registry.register(DiscordExtractor())
 
     return registry
 
diff --git a/stacks/f1-stream/files/backend/extractors/chrome_browser.py b/stacks/f1-stream/files/backend/extractors/chrome_browser.py
deleted file mode 100644
index 299790d4..00000000
--- a/stacks/f1-stream/files/backend/extractors/chrome_browser.py
+++ /dev/null
@@ -1,243 +0,0 @@
-"""Generic chrome-service-driven extractor.
-
-Drives the in-cluster headed Chromium pool (chrome-service) to load a list
-of stream/aggregator pages, captures any HLS playlist URL the page fetches
-at runtime, and returns one ExtractedStream per discovered playlist.
-
-Unlike the API-based extractors (pitsport/streamed/ppv) this one handles
-sites where the m3u8 is computed by JavaScript at page load time — the
-URL only exists after the page evaluates an obfuscated decoder, fetches a
-token, etc. Curl can't see it; a real browser can.
-
-Add new targets via the `TARGETS` constant below. Each entry is a (label,
-title, page_url) tuple. The extractor visits each URL with a stealthed
-context, waits for the JS to settle, and yields any captured HLS URL.
-"""
-
-import asyncio
-import logging
-import os
-import re
-import urllib.parse
-from dataclasses import dataclass
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-# Best-effort pause between navigation and capture. The decoder usually
-# fires within 5s; 12s gives slow JS time to settle without dragging the
-# extraction round.
-DEFAULT_SETTLE_SECONDS = 12
-
-USER_AGENT = (
-    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) "
-    "AppleWebKit/605.1.15 (KHTML, like Gecko) "
-    "Version/17.4 Safari/605.1.15"
-)
-
-
-@dataclass(frozen=True)
-class _Target:
-    label: str         # site_name (homepage label in the UI)
-    title: str         # human-readable stream title
-    url: str           # page to navigate
-    settle: int = DEFAULT_SETTLE_SECONDS
-
-
-# ---------------------------------------------------------------------------
-# Target list. F1-relevant 24/7 channels and motorsport aggregator pages
-# whose m3u8 is JS-computed. Add freely — each one takes ~12s to scrape.
-# ---------------------------------------------------------------------------
-TARGETS: tuple[_Target, ...] = (
-    # MotoMundo embed pages — the community-curated WordPress site for
-    # MotoGP. Each /e/<id> URL is one of the iframes their "Watch Online"
-    # post lists for the active session (FP/Q/Race). The m3u8 is
-    # JS-computed at load time so a real browser is required to capture
-    # it. Update IDs each weekend to match the current race; subreddit.py
-    # discovers them from the Reddit "[Watch / Download]" thread.
-    _Target(
-        label="MotoMundo",
-        title="MotoGP Live (MotoMundo) — French GP / Le Mans",
-        url="https://motomundo.top/e/9yzn08jk9py4",
-        settle=15,
-    ),
-    _Target(
-        label="MotoMundo",
-        title="MotoGP Live (MotoMundo upns) — French GP / Le Mans",
-        url="https://motomundo.upns.xyz/#kqasde",
-        settle=15,
-    ),
-)
-
-
-# Heuristic to recognise an HLS playlist URL from network capture. Most CDNs
-# use `.m3u8`; some (pushembdz/oe1.ossfeed) disguise the playlist as `.css`
-# under a /out/v… or /hls/ path. Filter out obvious junk (.css for actual
-# stylesheets, .ts segments — we only want the playlist).
-_HLS_URL_RE = re.compile(r"\.m3u8(\?|$)|/out/v[0-9]+/.+\.css(\?|$)|/hls/.+/master\.css(\?|$)")
-_SEGMENT_EXT_RE = re.compile(r"\.(ts|m4s|aac|key)(\?|$)")
-
-
-def _looks_like_hls_playlist(url: str) -> bool:
-    if _SEGMENT_EXT_RE.search(url):
-        return False
-    return bool(_HLS_URL_RE.search(url))
-
-
-def _resolve_chrome_ws() -> str | None:
-    base = os.getenv("CHROME_WS_URL")
-    token = os.getenv("CHROME_WS_TOKEN")
-    if not base or not token:
-        return None
-    return f"{base.rstrip('/')}/{token}"
-
-
-class ChromeBrowserExtractor(BaseExtractor):
-    """Drive chrome-service to capture m3u8 URLs from JS-heavy pages."""
-
-    @property
-    def site_key(self) -> str:
-        return "chrome-browser"
-
-    @property
-    def site_name(self) -> str:
-        return "Chrome Browser"
-
-    async def extract(self) -> list[ExtractedStream]:
-        ws_url = _resolve_chrome_ws()
-        if not ws_url:
-            logger.warning(
-                "[chrome-browser] CHROME_WS_URL/TOKEN not set — extractor disabled"
-            )
-            return []
-
-        try:
-            from playwright.async_api import async_playwright
-        except ImportError:
-            logger.warning("[chrome-browser] playwright not installed — disabled")
-            return []
-
-        # One Playwright instance + one browser connection per extraction
-        # round. Contexts are cheap; the browser is shared.
-        async with async_playwright() as p:
-            try:
-                browser = await p.chromium.connect(ws_url, timeout=15_000)
-            except Exception:
-                logger.exception("[chrome-browser] connect to chrome-service failed")
-                return []
-
-            results: list[ExtractedStream] = []
-            for target in TARGETS:
-                try:
-                    stream = await self._scrape(browser, target)
-                    if stream:
-                        results.append(stream)
-                except Exception:
-                    logger.exception(
-                        "[chrome-browser] failed to scrape %s", target.url
-                    )
-
-            try:
-                await browser.close()
-            except Exception:
-                pass
-
-        logger.info("[chrome-browser] returned %d stream(s)", len(results))
-        return results
-
-    async def _scrape(self, browser, target: _Target) -> ExtractedStream | None:
-        ctx = await browser.new_context(
-            user_agent=USER_AGENT,
-            viewport={"width": 1280, "height": 720},
-            bypass_csp=True,
-        )
-        # Inject the same stealth script the verifier uses so anti-bot
-        # checks don't trip the page before its decoder runs.
-        try:
-            from backend.stealth import STEALTH_JS
-            await ctx.add_init_script(STEALTH_JS)
-        except Exception:
-            pass
-
-        page = await ctx.new_page()
-        captured: list[str] = []
-
-        def on_response(resp):
-            try:
-                if _looks_like_hls_playlist(resp.url):
-                    captured.append(resp.url)
-            except Exception:
-                pass
-
-        page.on("response", on_response)
-        # Some pages (DD12 variants) load the player in a child iframe;
-        # frame events catch nested navigations.
-        page.on(
-            "framenavigated",
-            lambda fr: captured.append(fr.url) if _looks_like_hls_playlist(fr.url) else None,
-        )
-
-        try:
-            await page.goto(target.url, wait_until="domcontentloaded", timeout=20_000)
-        except Exception as e:
-            logger.debug("[chrome-browser] %s goto failed: %s", target.url, e)
-            await ctx.close()
-            return None
-
-        # Let the page's JS settle.
-        await asyncio.sleep(target.settle)
-
-        # Also probe child iframes — `pushembdz`, `pooembed`, `embedsports`
-        # all live behind one. Collect any HLS URL the iframes loaded.
-        for fr in page.frames:
-            if fr is page.main_frame:
-                continue
-            try:
-                # JW Player and Clappr both expose the playing source via
-                # a <video>/`<source>` element after setup completes.
-                sources = await fr.evaluate(
-                    "() => Array.from(document.querySelectorAll('video, source')).map(e => e.currentSrc || e.src || '').filter(s => s.includes('.m3u8') || s.includes('.css'))"
-                )
-                for s in sources:
-                    if _looks_like_hls_playlist(s):
-                        captured.append(s)
-            except Exception:
-                pass
-
-        await ctx.close()
-
-        # Pick the first plausible URL (any subsequent are usually variant
-        # playlists referenced from the master). Prefer URLs that look like
-        # full master playlists.
-        unique = list(dict.fromkeys(captured))
-        if not unique:
-            logger.debug("[chrome-browser] %s yielded no HLS URL", target.url)
-            return None
-
-        # Prefer URLs that look like a master/index playlist over variant
-        # playlists when both are captured.
-        master = next(
-            (u for u in unique if "master" in u.lower() or "index" in u.lower()),
-            unique[0],
-        )
-        # Strip query strings on URLs that include short-lived tokens —
-        # the verifier and frontend re-resolve them per request.
-        # (Some CDNs require the query though; only strip when obvious.)
-        m3u8 = master
-        # Decode URL-encoded characters so the proxy gets a clean URL.
-        m3u8 = urllib.parse.unquote(m3u8)
-
-        logger.info(
-            "[chrome-browser] %s -> %s",
-            target.url, m3u8[:120],
-        )
-        return ExtractedStream(
-            url=m3u8,
-            site_key=self.site_key,
-            site_name=target.label,
-            quality="",
-            title=target.title,
-            stream_type="m3u8",
-        )
diff --git a/stacks/f1-stream/files/backend/extractors/curated.py b/stacks/f1-stream/files/backend/extractors/curated.py
deleted file mode 100644
index 8522154c..00000000
--- a/stacks/f1-stream/files/backend/extractors/curated.py
+++ /dev/null
@@ -1,61 +0,0 @@
-"""Curated extractor — known-good 24/7 F1 channels via direct embed URLs.
-
-Returns a small, hand-picked list of embed URLs that are reliable enough to
-be served as fallback "always-on" streams when the dynamic extractors find
-nothing (e.g. between race weekends, when API providers are down).
-
-These are direct embed URLs. The frontend routes them through /embed so the
-iframe-stripping proxy bypasses any frame-buster JS in the upstream player.
-"""
-
-import logging
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-
-# Curated list. Each entry is a known direct embed URL. These were sourced
-# from the timstreams.py ALWAYS_INCLUDE_HASHES list (Sky Sports F1, DAZN F1)
-# and are documented as 24/7 channels that play F1 content year-round.
-_CURATED_STREAMS = [
-    {
-        "url": "https://hmembeds.one/embed/888520f36cd94c5da4c71fddc1a5fc9b",
-        "title": "Sky Sports F1 (24/7)",
-        "quality": "HD",
-    },
-    {
-        "url": "https://hmembeds.one/embed/fc3a54634d0867b0c02ee3223292e7c6",
-        "title": "DAZN F1 (24/7)",
-        "quality": "HD",
-    },
-]
-
-
-class CuratedExtractor(BaseExtractor):
-    """Returns curated known-good 24/7 F1 channel embed URLs."""
-
-    @property
-    def site_key(self) -> str:
-        return "curated"
-
-    @property
-    def site_name(self) -> str:
-        return "Curated 24/7 Channels"
-
-    async def extract(self) -> list[ExtractedStream]:
-        streams = [
-            ExtractedStream(
-                url=entry["url"],
-                site_key=self.site_key,
-                site_name=self.site_name,
-                quality=entry["quality"],
-                title=entry["title"],
-                stream_type="embed",
-                embed_url=entry["url"],
-            )
-            for entry in _CURATED_STREAMS
-        ]
-        logger.info("[curated] Returning %d curated stream(s)", len(streams))
-        return streams
diff --git a/stacks/f1-stream/files/backend/extractors/dd12.py b/stacks/f1-stream/files/backend/extractors/dd12.py
deleted file mode 100644
index 603eb273..00000000
--- a/stacks/f1-stream/files/backend/extractors/dd12.py
+++ /dev/null
@@ -1,111 +0,0 @@
-"""DD12Streams extractor — scrapes inline m3u8 URLs from per-channel pages.
-
-Each DD12 sport page (`/nas`, `/f1`, `/sky`, etc.) renders an iframe to
-`/<channel>c1` which 302-redirects to `/new-<channel>/jwplayer`. That
-page contains a JW Player setup with the m3u8 URL hard-coded inline:
-
-    playerInstance.setup({
-      file: "https://...b-cdn.net/.../master.m3u8",
-      ...
-    });
-
-The JW Player runtime fails in our cluster (same fingerprint trap as
-hmembeds), but we don't need it — the file URL is in the HTML and any
-browser with H.264 codecs can play it directly via hls.js.
-
-Channel discovery: probe a known list. New ones can be added by checking
-DD12's own homepage / nav.
-"""
-
-import logging
-import re
-
-import httpx
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-BASE = "https://dd12streams.com"
-USER_AGENT = (
-    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) "
-    "AppleWebKit/605.1.15 (KHTML, like Gecko) "
-    "Version/17.4 Safari/605.1.15"
-)
-
-# (path, channel_label, title). Add as DD12 surfaces new channels.
-CHANNELS = (
-    ("nas", "DD12Streams", "NASCAR Cup Series (24/7) — DD12"),
-)
-
-_FILE_URL_RE = re.compile(r"""file\s*:\s*["']([^"']+\.m3u8[^"']*)["']""")
-
-
-class DD12Extractor(BaseExtractor):
-    @property
-    def site_key(self) -> str:
-        return "dd12"
-
-    @property
-    def site_name(self) -> str:
-        return "DD12Streams"
-
-    async def extract(self) -> list[ExtractedStream]:
-        results: list[ExtractedStream] = []
-        async with httpx.AsyncClient(
-            timeout=15.0,
-            follow_redirects=True,
-            headers={"User-Agent": USER_AGENT},
-        ) as client:
-            for path, label, title in CHANNELS:
-                try:
-                    page_url = f"{BASE}/{path}"
-                    resp = await client.get(page_url)
-                    if resp.status_code != 200:
-                        continue
-                    iframe_path = self._extract_iframe(resp.text)
-                    if not iframe_path:
-                        continue
-                    iframe_url = (
-                        iframe_path
-                        if iframe_path.startswith("http")
-                        else f"{BASE}{iframe_path}"
-                    )
-                    iframe_resp = await client.get(
-                        iframe_url, headers={"Referer": page_url}
-                    )
-                    if iframe_resp.status_code != 200:
-                        continue
-                    m3u8 = self._find_m3u8(iframe_resp.text)
-                    if not m3u8:
-                        continue
-                    results.append(
-                        ExtractedStream(
-                            url=m3u8,
-                            site_key=self.site_key,
-                            site_name=label,
-                            quality="",
-                            title=title,
-                            stream_type="m3u8",
-                        )
-                    )
-                except Exception:
-                    logger.debug(
-                        "[dd12] /%s extraction failed", path, exc_info=True
-                    )
-        logger.info("[dd12] Extracted %d stream(s)", len(results))
-        return results
-
-    @staticmethod
-    def _extract_iframe(html: str) -> str | None:
-        m = re.search(
-            r'<iframe[^>]+id=["\']vplayer["\'][^>]+src=["\']([^"\']+)["\']',
-            html,
-        )
-        return m.group(1) if m else None
-
-    @staticmethod
-    def _find_m3u8(html: str) -> str | None:
-        m = _FILE_URL_RE.search(html)
-        return m.group(1) if m else None
diff --git a/stacks/f1-stream/files/backend/extractors/discord_source.py b/stacks/f1-stream/files/backend/extractors/discord_source.py
deleted file mode 100644
index 2bb806b6..00000000
--- a/stacks/f1-stream/files/backend/extractors/discord_source.py
+++ /dev/null
@@ -1,203 +0,0 @@
-"""Discord extractor - monitors Discord channels for F1 stream links.
-
-Reads recent messages from configured Discord channels using a user token,
-extracts URLs that look like stream links, and returns them as embed streams.
-"""
-
-import logging
-import os
-import re
-
-import httpx
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-DISCORD_API = "https://discord.com/api/v9"
-DISCORD_TOKEN = os.getenv("DISCORD_TOKEN", "")
-# Comma-separated channel IDs to monitor
-DISCORD_CHANNELS = os.getenv("DISCORD_CHANNELS", "").split(",")
-# How many messages to fetch per channel
-MESSAGE_LIMIT = 50
-
-USER_AGENT = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
-
-# URL pattern to match stream links (exclude Discord CDN, images, etc.)
-URL_PATTERN = re.compile(r"https?://[^\s<>\)\]\"']+", re.IGNORECASE)
-
-# Domains that publish news/articles, not playable streams. Discord users share
-# these links during race weekends; they are NOT streams and pollute the list.
-EXCLUDED_DOMAINS = {
-    "discord.com", "discord.gg", "cdn.discordapp.com",
-    "tenor.com", "giphy.com", "imgur.com",
-    "youtube.com", "youtu.be", "twitter.com", "x.com",
-    "reddit.com", "instagram.com", "tiktok.com",
-    "fmhy.net", "github.com", "freemotorsports.com",
-    # News / official sites — never playable embeds
-    "formula1.com", "fia.com", "skysports.com", "motorsport.com",
-    "driverdb.com", "autosport.com", "the-race.com", "racefans.net",
-    "wikipedia.org", "fantasy.formula1.com",
-}
-
-# A URL is treated as a candidate stream embed only if its path looks like
-# a *direct* player/embed page — `/embed/{id}`, `/player/{...}`, `*.m3u8`,
-# `*.php` (legacy iframe1.php style). Aggregator landing pages
-# (`/event/...`, `/watch?session=...`, etc.) are rejected because they
-# show a list of links instead of playing automatically — those produce
-# verifier-passing UI without actual playback.
-_PATH_KEYWORDS = (
-    "/embed/", "/player/", ".m3u8", ".php",
-)
-
-
-def _is_stream_url(url: str) -> bool:
-    """Heuristic: does this URL look like an actual stream/embed/player link?
-
-    Discord users share lots of news links during race weekends. The old
-    filter only blocked specific domains and let everything else through,
-    which produced a stream list dominated by formula1.com news articles.
-    The new filter is positive-match: a URL must contain at least one
-    stream-shaped path keyword to be included.
-    """
-    from urllib.parse import urlparse
-
-    try:
-        parsed = urlparse(url)
-        domain = parsed.netloc.lower()
-        path = parsed.path.lower()
-    except Exception:
-        return False
-
-    if not domain:
-        return False
-
-    for excluded in EXCLUDED_DOMAINS:
-        if excluded in domain:
-            return False
-
-    if any(path.endswith(ext) for ext in (".png", ".jpg", ".jpeg", ".gif", ".webp", ".mp4", ".webm", ".svg", ".css", ".js")):
-        return False
-
-    full = path + ("?" + parsed.query if parsed.query else "")
-    if not any(kw in full for kw in _PATH_KEYWORDS):
-        return False
-
-    return True
-
-
-class DiscordExtractor(BaseExtractor):
-    """Extracts stream links from Discord channel messages.
-
-    Monitors configured Discord channels for URLs shared by users,
-    filters to likely stream links, and returns them as embed streams.
-    """
-
-    @property
-    def site_key(self) -> str:
-        return "discord"
-
-    @property
-    def site_name(self) -> str:
-        return "Discord Community"
-
-    async def extract(self) -> list[ExtractedStream]:
-        """Fetch recent messages from Discord channels and extract URLs."""
-        if not DISCORD_TOKEN:
-            logger.info("[discord] No DISCORD_TOKEN set, skipping")
-            return []
-
-        channels = [c.strip() for c in DISCORD_CHANNELS if c.strip()]
-        if not channels:
-            logger.info("[discord] No DISCORD_CHANNELS configured, skipping")
-            return []
-
-        streams: list[ExtractedStream] = []
-        seen_urls: set[str] = set()
-
-        try:
-            async with httpx.AsyncClient(
-                timeout=15.0,
-                follow_redirects=True,
-                headers={
-                    "Authorization": DISCORD_TOKEN,
-                    "User-Agent": USER_AGENT,
-                },
-            ) as client:
-                for channel_id in channels:
-                    try:
-                        channel_streams = await self._fetch_channel(
-                            client, channel_id, seen_urls
-                        )
-                        streams.extend(channel_streams)
-                    except Exception:
-                        logger.debug(
-                            "[discord] Failed to fetch channel %s",
-                            channel_id,
-                            exc_info=True,
-                        )
-        except Exception:
-            logger.exception("[discord] Failed to connect to Discord API")
-
-        logger.info("[discord] Extracted %d stream(s) from %d channel(s)", len(streams), len(channels))
-        return streams
-
-    async def _fetch_channel(
-        self,
-        client: httpx.AsyncClient,
-        channel_id: str,
-        seen_urls: set[str],
-    ) -> list[ExtractedStream]:
-        """Fetch messages from a single channel and extract stream URLs."""
-        resp = await client.get(
-            f"{DISCORD_API}/channels/{channel_id}/messages",
-            params={"limit": MESSAGE_LIMIT},
-        )
-        if resp.status_code != 200:
-            logger.warning(
-                "[discord] Channel %s returned HTTP %d", channel_id, resp.status_code
-            )
-            return []
-
-        messages = resp.json()
-        if not isinstance(messages, list):
-            return []
-
-        streams: list[ExtractedStream] = []
-
-        for msg in messages:
-            content = msg.get("content", "")
-            author = msg.get("author", {}).get("username", "unknown")
-
-            # Extract URLs from message content
-            urls = URL_PATTERN.findall(content)
-
-            # Also check embeds
-            for embed in msg.get("embeds", []):
-                if embed.get("url"):
-                    urls.append(embed["url"])
-
-            for url in urls:
-                # Clean trailing punctuation
-                url = url.rstrip(".,;:!?)")
-
-                if url in seen_urls:
-                    continue
-                if not _is_stream_url(url):
-                    continue
-
-                seen_urls.add(url)
-                streams.append(
-                    ExtractedStream(
-                        url=url,
-                        site_key=self.site_key,
-                        site_name=self.site_name,
-                        quality="",
-                        title=f"Shared by {author}",
-                        stream_type="embed",
-                        embed_url=url,
-                    )
-                )
-
-        return streams
diff --git a/stacks/f1-stream/files/backend/extractors/pitsport.py b/stacks/f1-stream/files/backend/extractors/pitsport.py
deleted file mode 100644
index 60fb622d..00000000
--- a/stacks/f1-stream/files/backend/extractors/pitsport.py
+++ /dev/null
@@ -1,544 +0,0 @@
-"""Pitsport.xyz extractor - fetches F1 streams from the Next.js RSC payload.
-
-Architecture:
-- Main page (pitsport.xyz) has a "Live Now" section with event cards containing
-  category, title, time, imageUrl props and /watch/{UUID} links.
-- Schedule page (pitsport.xyz/schedule) lists all events grouped by category
-  (h2 headings) with /watch/{UUID} links and event titles.
-- Watch pages (/watch/{UUID}) embed iframes from pushembdz.store/embed/{EMBED_UUID}.
-- Embed pages contain an RSC payload with a stream config: {title, link, method}.
-- When method is "player" or "hls", the link field points to a serveplay.site
-  m3u8 playlist. Otherwise we return the embed URL for iframe playback.
-"""
-
-import logging
-import re
-from dataclasses import dataclass
-
-import httpx
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-PITSPORT_BASE = "https://pitsport.xyz"
-EMBED_BASE = "https://pushembdz.store"
-USER_AGENT = (
-    "Mozilla/5.0 (Windows NT 10.0; Win64; x64) "
-    "AppleWebKit/537.36 (KHTML, like Gecko) "
-    "Chrome/120.0.0.0 Safari/537.36"
-)
-
-# Categories to include (case-insensitive match). Broadened beyond F1
-# to also surface MotoGP and adjacent motorsports — keeps the f1-stream
-# UI useful between race weekends and during the off-season.
-MOTORSPORT_CATEGORIES = {
-    "formula 1", "formula 2", "formula 3",
-    "motogp", "moto gp", "moto2", "moto3", "motoe",
-    "world rally championship", "wrc",
-    "world endurance championship", "wec",
-    "indycar series", "indycar", "indynxt",
-    "nascar cup series", "nascar truck series", "nascar o'reilly auto parts series",
-    "nascar xfinity series", "nascar",
-}
-
-# Title keywords that are strong positives even when the category text
-# is missing (live-now cards sometimes elide it).
-MOTORSPORT_KEYWORDS = {
-    "formula 1", "formula one", "f1",
-    "motogp", "moto gp", "moto2", "moto3",
-    "rally", "wrc",
-    "indycar", "indy car",
-    "nascar",
-    "le mans", "lemans", "wec", "endurance",
-}
-GP_KEYWORD = "grand prix"
-
-
-@dataclass
-class _PitsportEvent:
-    """An event discovered from the Pitsport site."""
-
-    category: str
-    title: str
-    watch_uuid: str
-
-
-def _is_motorsport_category(category: str) -> bool:
-    """Check if a category string matches an included motorsport series."""
-    return category.strip().lower() in MOTORSPORT_CATEGORIES
-
-
-def _is_motorsport_event(category: str, title: str) -> bool:
-    """Accept anything pitsport.xyz lists. Pitsport curates sports
-    broadcasts (WRC, MotoGP, IndyCar, NASCAR, Premier League Darts,
-    Premier League football, etc.) — the site's own selection is the
-    filter we want. Empty/garbage events still get filtered downstream
-    when `_resolve_event_streams` produces no playable URL."""
-    return bool(category or title)
-
-
-# Aliases kept so older call-sites stay compiling. Both now point at the
-# broadened motorsport filter.
-_is_f1_category = _is_motorsport_category
-_is_f1_event = _is_motorsport_event
-
-
-def _parse_live_events(html: str) -> list[_PitsportEvent]:
-    """Parse live events from the main page RSC payload.
-
-    The main page contains event cards with props:
-        category, title, time, imageUrl
-    wrapped in <a href="/watch/{UUID}"> links.
-    """
-    events: list[_PitsportEvent] = []
-
-    # Match event cards in the RSC payload - they appear as JSON-like structures
-    # Pattern: href="/watch/UUID" ... category":"...", "title":"..."
-    # In the RSC payload, the data is in the format:
-    #   ["$","$L2","/watch/UUID",{"href":"/watch/UUID","children":["$","$L10",null,
-    #     {"category":"...","title":"...","time":...,"imageUrl":"..."}]}]
-    pattern = re.compile(
-        r'"href":"(/watch/([0-9a-f-]{36}))"[^}]*?"category":"([^"]+)","title":"([^"]+)"',
-    )
-    for match in pattern.finditer(html):
-        _, uuid, category, title = match.groups()
-        events.append(_PitsportEvent(category=category, title=title, watch_uuid=uuid))
-
-    return events
-
-
-def _parse_schedule_events(html: str) -> list[_PitsportEvent]:
-    """Parse events from the schedule page.
-
-    The schedule page groups events under category headers (h2 elements).
-    In the rendered HTML:
-        <h2 ...>Formula 1</h2>
-        <div ...>
-            <a href="/watch/UUID">...</a>
-            ...
-        </div>
-
-    In the RSC payload, similar structure with section divs containing
-    a category h2 and child event links with titles.
-    """
-    events: list[_PitsportEvent] = []
-
-    # Strategy 1: Parse from rendered HTML
-    # Find category sections: >CategoryName</h2> followed by watch links
-    # Split HTML at each category header
-    section_pattern = re.compile(
-        r'>([^<]+)</h2>\s*<div[^>]*class="flex flex-wrap gap-6">(.*?)(?=</div>\s*</div>\s*(?:<div|</div>|$))',
-        re.DOTALL,
-    )
-    for section_match in section_pattern.finditer(html):
-        category = section_match.group(1).strip()
-        section_html = section_match.group(2)
-
-        # Find all watch links in this section
-        link_pattern = re.compile(
-            r'href="/watch/([0-9a-f-]{36})".*?<h1[^>]*>([^<]+)</h1>',
-            re.DOTALL,
-        )
-        for link_match in link_pattern.finditer(section_html):
-            uuid = link_match.group(1)
-            title = link_match.group(2).strip()
-            events.append(
-                _PitsportEvent(category=category, title=title, watch_uuid=uuid)
-            )
-
-    # Strategy 2: Parse from RSC payload if rendered HTML didn't yield results
-    # The RSC payload has patterns like:
-    #   "children":"Formula 1"}] ... "/watch/UUID" ... "title":"EventTitle"
-    if not events:
-        events = _parse_schedule_rsc(html)
-
-    return events
-
-
-def _parse_schedule_rsc(html: str) -> list[_PitsportEvent]:
-    """Parse events from schedule page RSC payload as fallback.
-
-    Extracts category section divs from the RSC JSON structure.
-    """
-    events: list[_PitsportEvent] = []
-
-    # Find the RSC payload chunks
-    rsc_chunks = re.findall(
-        r'self\.__next_f\.push\(\[1,"(.*?)"\]\)', html, re.DOTALL
-    )
-    if not rsc_chunks:
-        return events
-
-    # Concatenate and unescape
-    full_payload = ""
-    for chunk in rsc_chunks:
-        try:
-            full_payload += chunk.encode().decode("unicode_escape")
-        except Exception:
-            full_payload += chunk
-
-    # Find category sections in the RSC data
-    # Pattern: "children":"CategoryName"}],["$","div",...watch links...
-    # Each section div contains an h2 with the category name and watch links
-    cat_pattern = re.compile(
-        r'border-gray-700 pb-2","children":"([^"]+)"\}.*?'
-        r'(?=border-gray-700 pb-2","children"|$)',
-        re.DOTALL,
-    )
-    for cat_match in cat_pattern.finditer(full_payload):
-        category = cat_match.group(1)
-        section_text = cat_match.group(0)
-
-        # Find watch UUIDs and titles in this section
-        # Pattern: "/watch/UUID" ... "title":"EventTitle"
-        event_pattern = re.compile(
-            r'/watch/([0-9a-f-]{36}).*?"title":"([^"]+)"',
-        )
-        for ev_match in event_pattern.finditer(section_text):
-            uuid = ev_match.group(1)
-            title = ev_match.group(2)
-            events.append(
-                _PitsportEvent(category=category, title=title, watch_uuid=uuid)
-            )
-
-    return events
-
-
-def _parse_embed_uuids(html: str) -> list[str]:
-    """Extract embed UUIDs from a watch page.
-
-    Watch pages contain iframes like:
-        <iframe src="https://pushembdz.store/embed/{EMBED_UUID}" ...>
-
-    And in the RSC payload:
-        "iframe":"https://pushembdz.store/embed/{EMBED_UUID}"
-    """
-    uuids: list[str] = []
-
-    # From rendered HTML
-    iframe_pattern = re.compile(
-        r'pushembdz\.store/embed/([0-9a-f-]{36})',
-    )
-    for match in iframe_pattern.finditer(html):
-        uuid = match.group(1)
-        if uuid not in uuids:
-            uuids.append(uuid)
-
-    return uuids
-
-
-@dataclass
-class _StreamConfig:
-    """Stream configuration extracted from an embed page."""
-
-    title: str
-    link: str
-    method: str
-
-
-def _parse_stream_config(html: str) -> _StreamConfig | None:
-    """Extract stream config from an embed page RSC payload.
-
-    The embed page now uses a `safeStream` payload that elides the link:
-        4:["$","$Ld",null,{"safeStream":{"title":"Rally TV","method":"jwp"},
-           "error":null,"slug":"..."}]
-    The actual stream URL is fetched at runtime via
-    pushembdz.store/api/stream/<slug>. Older payloads used "stream" with
-    inline title+link+method — kept as fallback.
-    """
-    # Current format: safeStream with title + method only (link via API).
-    pattern_safe = re.compile(
-        r'\\?"safeStream\\?"\s*:\s*\{'
-        r'\\?"title\\?"\s*:\s*\\?"([^"\\]+)\\?"\s*,\s*'
-        r'\\?"method\\?"\s*:\s*\\?"([^"\\]+)\\?"',
-    )
-    match = pattern_safe.search(html)
-    if match:
-        return _StreamConfig(
-            title=match.group(1),
-            link="",  # filled in by the caller via the api/stream endpoint
-            method=match.group(2),
-        )
-
-    # Legacy: escaped RSC payload with inline link.
-    pattern = re.compile(
-        r'"stream":\{["\']?\\?"title\\?"["\']?:["\']?\\?"([^"\\]+)\\?"["\']?,'
-        r'["\']?\\?"link\\?"["\']?:["\']?\\?"([^"\\]+)\\?"["\']?,'
-        r'["\']?\\?"method\\?"["\']?:["\']?\\?"([^"\\]+)\\?"',
-    )
-    match = pattern.search(html)
-    if match:
-        return _StreamConfig(title=match.group(1), link=match.group(2), method=match.group(3))
-
-    pattern2 = re.compile(
-        r'\\?"stream\\?":\{\\?"title\\?":\\?"([^\\]+)\\?",'
-        r'\\?"link\\?":\\?"([^\\]+)\\?",'
-        r'\\?"method\\?":\\?"([^\\]+)\\?"',
-    )
-    match = pattern2.search(html)
-    if match:
-        return _StreamConfig(title=match.group(1), link=match.group(2), method=match.group(3))
-
-    pattern3 = re.compile(
-        r'"stream"\s*:\s*\{\s*"title"\s*:\s*"([^"]+)"\s*,'
-        r'\s*"link"\s*:\s*"([^"]+)"\s*,'
-        r'\s*"method"\s*:\s*"([^"]+)"',
-    )
-    match = pattern3.search(html)
-    if match:
-        return _StreamConfig(title=match.group(1), link=match.group(2), method=match.group(3))
-
-    return None
-
-
-def _is_m3u8_method(method: str) -> bool:
-    """Check if the stream method indicates a direct HLS stream."""
-    # `jwp` (current pushembdz format) returns an m3u8 from the api/stream
-    # endpoint regardless of player UI; treat it as HLS.
-    return method.lower() in ("player", "hls", "jwp")
-
-
-def _extract_m3u8_url(link: str) -> str:
-    """Convert a serveplay.site player URL to an m3u8 playlist URL.
-
-    Input:  https://dash.serveplay.site/{channel}/index.html
-    Output: https://dash.serveplay.site/{channel}/index.html
-
-    The index.html IS the m3u8 playlist (served with proper content-type
-    when fetched with the correct Referer header).
-    """
-    return link
-
-
-class PitsportExtractor(BaseExtractor):
-    """Extracts F1 streams from Pitsport.xyz.
-
-    Scrapes the Next.js RSC payload from the main page and schedule page
-    to find F1 events, then resolves embed UUIDs to stream configurations.
-    """
-
-    @property
-    def site_key(self) -> str:
-        return "pitsport"
-
-    @property
-    def site_name(self) -> str:
-        return "Pitsport"
-
-    async def extract(self) -> list[ExtractedStream]:
-        """Fetch F1 events and return stream URLs or embed URLs."""
-        streams: list[ExtractedStream] = []
-
-        try:
-            async with httpx.AsyncClient(
-                timeout=20.0,
-                follow_redirects=True,
-                headers={"User-Agent": USER_AGENT},
-            ) as client:
-                # Fetch both pages to get comprehensive event data
-                events = await self._discover_events(client)
-                logger.info(
-                    "[pitsport] Found %d F1 event(s) to process", len(events)
-                )
-
-                # Deduplicate by watch UUID
-                seen_uuids: set[str] = set()
-                unique_events: list[_PitsportEvent] = []
-                for ev in events:
-                    if ev.watch_uuid not in seen_uuids:
-                        seen_uuids.add(ev.watch_uuid)
-                        unique_events.append(ev)
-
-                # For each event, resolve streams
-                for event in unique_events:
-                    event_streams = await self._resolve_event_streams(
-                        client, event
-                    )
-                    streams.extend(event_streams)
-
-        except Exception:
-            logger.exception("[pitsport] Failed to extract streams")
-
-        logger.info("[pitsport] Extracted %d stream(s)", len(streams))
-        return streams
-
-    async def _discover_events(
-        self, client: httpx.AsyncClient
-    ) -> list[_PitsportEvent]:
-        """Discover F1 events from both main page and schedule page."""
-        all_events: list[_PitsportEvent] = []
-
-        # Fetch main page for live events
-        try:
-            resp = await client.get(PITSPORT_BASE)
-            if resp.status_code == 200:
-                live_events = _parse_live_events(resp.text)
-                logger.info(
-                    "[pitsport] Main page: %d live event(s)", len(live_events)
-                )
-                for ev in live_events:
-                    if _is_f1_event(ev.category, ev.title):
-                        all_events.append(ev)
-            else:
-                logger.warning(
-                    "[pitsport] Main page returned HTTP %d", resp.status_code
-                )
-        except Exception:
-            logger.exception("[pitsport] Failed to fetch main page")
-
-        # Fetch schedule page for upcoming events
-        try:
-            resp = await client.get(f"{PITSPORT_BASE}/schedule")
-            if resp.status_code == 200:
-                schedule_events = _parse_schedule_events(resp.text)
-                logger.info(
-                    "[pitsport] Schedule page: %d total event(s)",
-                    len(schedule_events),
-                )
-                for ev in schedule_events:
-                    if _is_f1_event(ev.category, ev.title):
-                        all_events.append(ev)
-            else:
-                logger.warning(
-                    "[pitsport] Schedule page returned HTTP %d",
-                    resp.status_code,
-                )
-        except Exception:
-            logger.exception("[pitsport] Failed to fetch schedule page")
-
-        return all_events
-
-    async def _resolve_event_streams(
-        self, client: httpx.AsyncClient, event: _PitsportEvent
-    ) -> list[ExtractedStream]:
-        """Resolve an event's watch page to actual stream URLs."""
-        streams: list[ExtractedStream] = []
-
-        try:
-            # Fetch the watch page to get embed UUIDs
-            watch_url = f"{PITSPORT_BASE}/watch/{event.watch_uuid}"
-            resp = await client.get(watch_url)
-            if resp.status_code != 200:
-                logger.debug(
-                    "[pitsport] Watch page %s returned HTTP %d",
-                    event.watch_uuid,
-                    resp.status_code,
-                )
-                return []
-
-            embed_uuids = _parse_embed_uuids(resp.text)
-            if not embed_uuids:
-                logger.debug(
-                    "[pitsport] No embed UUIDs found for %s", event.watch_uuid
-                )
-                return []
-
-            logger.debug(
-                "[pitsport] Event '%s' has %d embed(s)",
-                event.title,
-                len(embed_uuids),
-            )
-
-            # Resolve each embed to a stream config
-            for i, embed_uuid in enumerate(embed_uuids):
-                stream = await self._resolve_embed(
-                    client, embed_uuid, event, stream_num=i + 1
-                )
-                if stream:
-                    streams.append(stream)
-
-        except Exception:
-            logger.debug(
-                "[pitsport] Failed to resolve event %s",
-                event.watch_uuid,
-                exc_info=True,
-            )
-
-        return streams
-
-    async def _resolve_embed(
-        self,
-        client: httpx.AsyncClient,
-        embed_uuid: str,
-        event: _PitsportEvent,
-        stream_num: int,
-    ) -> ExtractedStream | None:
-        """Resolve an embed UUID to a stream configuration."""
-        try:
-            embed_url = f"{EMBED_BASE}/embed/{embed_uuid}"
-            resp = await client.get(embed_url)
-            if resp.status_code != 200:
-                logger.debug(
-                    "[pitsport] Embed page %s returned HTTP %d",
-                    embed_uuid,
-                    resp.status_code,
-                )
-                return None
-
-            config = _parse_stream_config(resp.text)
-            if not config:
-                logger.debug(
-                    "[pitsport] No stream config found in embed %s",
-                    embed_uuid,
-                )
-                return None
-
-            # Build the stream title
-            stream_title = f"{event.category} - {event.title}"
-            if config.title:
-                stream_title += f" ({config.title})"
-            if stream_num > 1:
-                stream_title += f" #{stream_num}"
-
-            # `safeStream` payload elides the link — fetch it from the
-            # pushembdz.store/api/stream/<slug> endpoint. Older `stream`
-            # payloads provided the link inline.
-            link = config.link
-            if not link and _is_m3u8_method(config.method):
-                api_url = f"{EMBED_BASE}/api/stream/{embed_uuid}"
-                try:
-                    api_resp = await client.get(
-                        api_url,
-                        headers={"Referer": embed_url, "Accept": "application/json"},
-                    )
-                    if api_resp.status_code == 200:
-                        link = (api_resp.json() or {}).get("link", "")
-                except Exception:
-                    logger.debug(
-                        "[pitsport] api/stream lookup failed for %s",
-                        embed_uuid,
-                        exc_info=True,
-                    )
-
-            # Treat any HLS-ish URL (m3u8, or pushembdz's .css disguise) as m3u8.
-            looks_hls = link and (".m3u8" in link or link.endswith(".css") or "serveplay.site" in link)
-            if _is_m3u8_method(config.method) and looks_hls:
-                return ExtractedStream(
-                    url=link,
-                    site_key=self.site_key,
-                    site_name=self.site_name,
-                    quality="",
-                    title=stream_title,
-                    stream_type="m3u8",
-                )
-            else:
-                # Iframe embed fallback
-                return ExtractedStream(
-                    url=embed_url,
-                    site_key=self.site_key,
-                    site_name=self.site_name,
-                    quality="",
-                    title=stream_title,
-                    stream_type="embed",
-                    embed_url=embed_url,
-                )
-
-        except Exception:
-            logger.debug(
-                "[pitsport] Failed to resolve embed %s",
-                embed_uuid,
-                exc_info=True,
-            )
-            return None
diff --git a/stacks/f1-stream/files/backend/extractors/ppv.py b/stacks/f1-stream/files/backend/extractors/ppv.py
deleted file mode 100644
index c38bf1df..00000000
--- a/stacks/f1-stream/files/backend/extractors/ppv.py
+++ /dev/null
@@ -1,270 +0,0 @@
-"""PPV.to extractor - fetches F1 streams via the public PPV API.
-
-Returns embed URLs (pooembed.eu) for iframe playback.
-The API at api.ppv.to/api/streams requires no authentication.
-Falls back to api.ppv.st if the primary API is unreachable.
-"""
-
-import logging
-
-import httpx
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-PRIMARY_API = "https://api.ppv.to/api/streams"
-FALLBACK_API = "https://api.ppv.st/api/streams"
-EMBED_BASE = "https://pooembed.eu/embed"
-
-USER_AGENT = (
-    "Mozilla/5.0 (Windows NT 10.0; Win64; x64) "
-    "AppleWebKit/537.36 (KHTML, like Gecko) "
-    "Chrome/120.0.0.0 Safari/537.36"
-)
-
-# Category name for motorsport on PPV.to
-MOTORSPORT_CATEGORY = "motorsports"
-
-# Only include events matching these keywords (case-insensitive)
-F1_KEYWORDS = {"formula 1", "formula one", "f1", "sky sports f1"}
-# Grand Prix is shared with MotoGP/IndyCar — only match if no other series keywords
-GP_KEYWORD = "grand prix"
-NON_F1_KEYWORDS = {
-    "motogp", "moto gp", "moto2", "moto3", "motoe",
-    "indycar", "indy car", "firestone", "nascar",
-    "rally", "wrc", "wec", "lemans", "le mans",
-    "superbike", "dtm", "supercars",
-}
-
-
-def _is_f1_stream(name: str, category_name: str = "") -> bool:
-    """Check if a stream is Formula 1 related.
-
-    Checks both the stream name and the category name.
-    A stream qualifies if:
-    - It is in the motorsport category AND matches F1 keywords, OR
-    - It matches F1 keywords regardless of category.
-    """
-    lower_name = name.lower()
-    lower_cat = category_name.lower()
-
-    # Reject if it contains non-F1 motorsport keywords
-    if any(kw in lower_name for kw in NON_F1_KEYWORDS):
-        return False
-
-    # Direct F1 keyword match in the stream name
-    if any(kw in lower_name for kw in F1_KEYWORDS):
-        return True
-
-    # "grand prix" in the name, only if in motorsports category and no non-F1 keywords
-    if GP_KEYWORD in lower_name and MOTORSPORT_CATEGORY in lower_cat:
-        return True
-
-    # If the category is motorsport, also check category-level keywords
-    if MOTORSPORT_CATEGORY in lower_cat and any(kw in lower_cat for kw in F1_KEYWORDS):
-        return True
-
-    return False
-
-
-class PPVExtractor(BaseExtractor):
-    """Extracts embed URLs from PPV.to's public JSON API.
-
-    Uses the endpoint:
-    - GET https://api.ppv.to/api/streams -> all streams grouped by category
-    - Fallback: https://api.ppv.st/api/streams
-
-    Each stream object contains an `iframe` field with the embed URL,
-    or a `uri_name` from which the embed URL can be constructed.
-    """
-
-    @property
-    def site_key(self) -> str:
-        return "ppv"
-
-    @property
-    def site_name(self) -> str:
-        return "PPV.to"
-
-    async def _fetch_streams(self, client: httpx.AsyncClient) -> dict | None:
-        """Try primary and fallback APIs, return parsed JSON or None."""
-        for api_url in (PRIMARY_API, FALLBACK_API):
-            try:
-                resp = await client.get(api_url)
-                if resp.status_code == 200:
-                    data = resp.json()
-                    logger.info("[ppv] Fetched streams from %s", api_url)
-                    return data
-                logger.warning(
-                    "[ppv] %s returned HTTP %d", api_url, resp.status_code
-                )
-            except Exception:
-                logger.debug(
-                    "[ppv] Failed to reach %s", api_url, exc_info=True
-                )
-        return None
-
-    async def extract(self) -> list[ExtractedStream]:
-        """Fetch F1 streams and return embed URLs for iframe playback."""
-        streams: list[ExtractedStream] = []
-
-        try:
-            async with httpx.AsyncClient(
-                timeout=15.0,
-                follow_redirects=True,
-                headers={"User-Agent": USER_AGENT, "Accept": "application/json"},
-            ) as client:
-                data = await self._fetch_streams(client)
-                if data is None:
-                    logger.warning("[ppv] Could not fetch streams from any API")
-                    return []
-
-                # The API returns:
-                # { "streams": [ { "category": "Name", "id": N, "streams": [...] }, ... ] }
-                # Flatten into (category_name, stream_obj) tuples.
-                all_streams = self._normalize_streams(data)
-
-                logger.info(
-                    "[ppv] Found %d total stream(s) across all categories",
-                    len(all_streams),
-                )
-
-                for category_name, stream_obj in all_streams:
-                    name = stream_obj.get("name", "") or stream_obj.get("title", "")
-
-                    if not _is_f1_stream(name, category_name):
-                        continue
-
-                    # Build the embed URL
-                    embed_url = self._get_embed_url(stream_obj)
-                    if not embed_url:
-                        logger.debug("[ppv] No embed URL for stream: %s", name)
-                        continue
-
-                    # Extract quality from tag if present
-                    tag = stream_obj.get("tag", "")
-                    quality = tag if tag else ""
-
-                    # Build descriptive title
-                    title = name
-                    viewers = stream_obj.get("viewers")
-                    if viewers and int(viewers) > 0:
-                        title += f" ({viewers} viewers)"
-
-                    # Check for substreams (multiple quality/language options)
-                    substreams = stream_obj.get("substreams")
-                    if isinstance(substreams, list) and substreams:
-                        for i, sub in enumerate(substreams):
-                            sub_embed = sub.get("iframe", "") or sub.get("embed_url", "")
-                            if not sub_embed:
-                                # Fall back to the parent embed URL
-                                sub_embed = embed_url
-                            sub_name = sub.get("name", "") or sub.get("label", "")
-                            sub_quality = sub.get("tag", "") or sub.get("quality", "") or quality
-                            sub_title = f"{name}"
-                            if sub_name:
-                                sub_title += f" - {sub_name}"
-                            elif i > 0:
-                                sub_title += f" #{i + 1}"
-
-                            streams.append(
-                                ExtractedStream(
-                                    url=sub_embed,
-                                    site_key=self.site_key,
-                                    site_name=self.site_name,
-                                    quality=sub_quality,
-                                    title=sub_title,
-                                    stream_type="embed",
-                                    embed_url=sub_embed,
-                                )
-                            )
-                    else:
-                        # Single stream, no substreams
-                        streams.append(
-                            ExtractedStream(
-                                url=embed_url,
-                                site_key=self.site_key,
-                                site_name=self.site_name,
-                                quality=quality,
-                                title=title,
-                                stream_type="embed",
-                                embed_url=embed_url,
-                            )
-                        )
-
-        except Exception:
-            logger.exception("[ppv] Failed to extract streams")
-
-        logger.info("[ppv] Extracted %d F1 stream(s)", len(streams))
-        return streams
-
-    @staticmethod
-    def _normalize_streams(data: dict | list) -> list[tuple[str, dict]]:
-        """Normalize the API response into a flat list of (category_name, stream_dict) tuples.
-
-        The PPV API returns data in this shape:
-        {
-            "streams": [
-                {
-                    "category": "Motorsports",
-                    "id": 35,
-                    "streams": [ { stream objects... } ]
-                },
-                ...
-            ]
-        }
-
-        Each category group has a "category" string and a nested "streams" list.
-        """
-        result: list[tuple[str, dict]] = []
-
-        # Handle the top-level wrapper
-        if isinstance(data, dict):
-            categories = data.get("streams", [])
-        elif isinstance(data, list):
-            categories = data
-        else:
-            return result
-
-        for category_group in categories:
-            if not isinstance(category_group, dict):
-                continue
-
-            category_name = category_group.get("category", "")
-
-            # The nested streams within this category
-            inner_streams = category_group.get("streams", [])
-            if isinstance(inner_streams, list):
-                for stream_obj in inner_streams:
-                    if isinstance(stream_obj, dict):
-                        # Attach category_name to each stream for filtering
-                        result.append((category_name, stream_obj))
-            elif isinstance(category_group, dict) and "name" in category_group:
-                # Fallback: the item itself is a stream (flat list format)
-                result.append((category_name, category_group))
-
-        return result
-
-    @staticmethod
-    def _get_embed_url(stream: dict) -> str:
-        """Extract or construct the embed URL for a stream."""
-        # Prefer the iframe field directly
-        iframe = stream.get("iframe", "")
-        if iframe:
-            return iframe
-
-        # Construct from uri_name
-        uri_name = stream.get("uri_name", "") or stream.get("uri", "")
-        if uri_name:
-            # Strip leading slash if present
-            uri_name = uri_name.lstrip("/")
-            return f"{EMBED_BASE}/{uri_name}"
-
-        # Last resort: use the stream id
-        stream_id = stream.get("id")
-        if stream_id:
-            return f"{EMBED_BASE}/{stream_id}"
-
-        return ""
diff --git a/stacks/f1-stream/files/backend/extractors/service.py b/stacks/f1-stream/files/backend/extractors/service.py
index 801b9143..79fbfbd9 100644
--- a/stacks/f1-stream/files/backend/extractors/service.py
+++ b/stacks/f1-stream/files/backend/extractors/service.py
@@ -6,7 +6,6 @@ from datetime import datetime, timezone
 from backend.extractors.models import ExtractedStream
 from backend.extractors.registry import ExtractorRegistry
 from backend.health import StreamHealthChecker
-from backend.playback_verifier import PlaybackVerifier
 
 logger = logging.getLogger(__name__)
 
@@ -30,11 +29,6 @@ class ExtractionService:
         self._last_run: str | None = None
         self._last_run_stream_count: int = 0
         self._health_checker = StreamHealthChecker()
-        self._playback_verifier = PlaybackVerifier()
-
-    async def shutdown(self) -> None:
-        """Release the headless browser instance owned by the verifier."""
-        await self._playback_verifier.shutdown()
 
     async def run_extraction(self) -> None:
         """Run all extractors, health-check results, and cache them.
@@ -49,93 +43,31 @@ class ExtractionService:
 
         streams = await self._registry.extract_all()
 
-        # Dedupe by canonical URL — pitsport surfaces every WRC stage as a
-        # separate event but they all point at the same RallyTV master.m3u8
-        # (and similar for MotoGP weekend sessions). Keep the first
-        # occurrence so the user sees one entry per actual stream.
-        deduped: list[ExtractedStream] = []
-        seen_urls: set[str] = set()
-        for stream in streams:
-            key = (stream.embed_url or "").strip() or (stream.url or "").strip()
-            if not key or key in seen_urls:
-                continue
-            seen_urls.add(key)
-            deduped.append(stream)
-        if len(deduped) < len(streams):
-            logger.info(
-                "Deduped streams: %d -> %d (collapsed %d duplicate URL(s))",
-                len(streams), len(deduped), len(streams) - len(deduped),
-            )
-        streams = deduped
-
-        # Run health checks + headless-browser playback verification.
-        # Both stream types are now verified end-to-end so the user only
-        # ever sees streams that actually play in a browser.
+        # Run health checks on all extracted streams
         if streams:
+            # Separate m3u8 streams (need health check) from embed streams (skip)
             m3u8_streams = [s for s in streams if s.stream_type != "embed"]
             embed_streams = [s for s in streams if s.stream_type == "embed"]
 
-            # m3u8 streams: cheap structural health check (validates manifest,
-            # checks first variant playlist), then a headless-browser test
-            # to confirm hls.js can decode and render frames.
+            # Mark embed streams as live (no health check possible for iframes)
+            for stream in embed_streams:
+                stream.is_live = True
+                stream.response_time_ms = 0
+                stream.checked_at = start.isoformat()
+
+            # Health-check only m3u8 streams
             if m3u8_streams:
                 stream_dicts = [s.to_dict() for s in m3u8_streams]
                 health_map = await self._health_checker.check_all(stream_dicts)
+
                 for stream in m3u8_streams:
                     health = health_map.get(stream.url)
                     if health:
+                        stream.is_live = health.is_live
                         stream.response_time_ms = health.response_time_ms
                         stream.checked_at = health.checked_at
                         if health.bitrate > 0:
                             stream.bitrate = health.bitrate
-                        # tentatively mark live; final word comes from the verifier
-                        stream.is_live = health.is_live
-
-            # Browser verification: applies to both m3u8 (only those that
-            # passed structural health) and embed (always — they have no
-            # other way to verify).
-            verify_items: list[tuple[str, str]] = []
-            for stream in m3u8_streams:
-                if stream.is_live:
-                    verify_items.append((stream.url, "m3u8"))
-            for stream in embed_streams:
-                verify_items.append((stream.embed_url or stream.url, "embed"))
-
-            verdicts = await self._playback_verifier.verify_many(verify_items)
-
-            now_iso = datetime.now(timezone.utc).isoformat()
-            for stream in m3u8_streams:
-                if not stream.is_live:
-                    continue  # already failed health check
-                verdict = verdicts.get(stream.url)
-                if verdict is None:
-                    continue  # verifier disabled or unavailable
-                stream.is_live = verdict.is_playable
-                stream.checked_at = now_iso
-
-            # Curated streams skip the verifier — they are hand-picked
-            # 24/7 channels whose embed pages aggressively detect headless
-            # automation. We can't reliably confirm playback server-side,
-            # but we trust the curator. The user's real browser does NOT
-            # trigger the same anti-bot heuristics (real plugins, real
-            # mouse movements, etc.).
-            CURATED_BYPASS = {"curated"}
-            for stream in embed_streams:
-                stream.checked_at = now_iso
-                if stream.site_key in CURATED_BYPASS:
-                    stream.is_live = True
-                    stream.response_time_ms = 0
-                    continue
-                key = stream.embed_url or stream.url
-                verdict = verdicts.get(key)
-                if verdict is None:
-                    # Verifier unavailable — fall back to "trust extractor".
-                    # This keeps the service usable even without playwright.
-                    stream.is_live = True
-                    stream.response_time_ms = 0
-                else:
-                    stream.is_live = verdict.is_playable
-                    stream.response_time_ms = verdict.elapsed_ms
 
         # Group streams by site_key and update cache
         new_cache: dict[str, list[ExtractedStream]] = {}
diff --git a/stacks/f1-stream/files/backend/extractors/streamed.py b/stacks/f1-stream/files/backend/extractors/streamed.py
index 92bb01b2..1e5f0b0e 100644
--- a/stacks/f1-stream/files/backend/extractors/streamed.py
+++ b/stacks/f1-stream/files/backend/extractors/streamed.py
@@ -9,9 +9,7 @@ from backend.extractors.models import ExtractedStream
 
 logger = logging.getLogger(__name__)
 
-# Site renamed from streamed.su → streamed.pk in 2026; the .su domain
-# stopped resolving the API host (only the marketing page is left).
-BASE_URL = "https://streamed.pk"
+BASE_URL = "https://streamed.su"
 USER_AGENT = (
     "Mozilla/5.0 (Windows NT 10.0; Win64; x64) "
     "AppleWebKit/537.36 (KHTML, like Gecko) "
diff --git a/stacks/f1-stream/files/backend/extractors/stremio.py b/stacks/f1-stream/files/backend/extractors/stremio.py
deleted file mode 100644
index 3d046677..00000000
--- a/stacks/f1-stream/files/backend/extractors/stremio.py
+++ /dev/null
@@ -1,161 +0,0 @@
-"""Stremio-addon-driven extractor.
-
-Stremio addons expose a public HTTP API: each addon has a manifest at
-`<base>/manifest.json` and per-resource endpoints like
-`<base>/stream/<type>/<id>.json` returning `{streams:[{url,name,...}]}`.
-
-This extractor calls a curated set of live-TV addons that surface F1
-and Sky-Sports-class motorsport channels. We treat each returned URL as
-an ExtractedStream and let the playback verifier confirm playability.
-We don't need a Stremio client — we just call the documented HTTP API.
-
-Findings from initial research (2026-05-07):
-- **TvVoo** (`tvvoo.hayd.uk`) — wraps the Vavoo IPTV network, lists
-  Sky Sports F1 (UK + IT + DE), DAZN F1, Movistar F1, Canal+ F1,
-  Viaplay F1. The returned m3u8 URLs are IP-bound at the Vavoo CDN
-  (`*.ngolpdkyoctjcddxshli469r.org/sunshine/...`); they're tokenised
-  to whichever IP fetched the manifest. Currently their SSL certs have
-  expired which fails most clients — the addon framework is right but
-  delivery is degraded today.
-- **StremVerse** (`stremverse.onrender.com`) — returns 11+ streams per
-  catalog id (`stremevent_591`=F1, `stremevent_866`=MotoGP). Mix of
-  DRM-walled DASH, JW-Player-broken-chain JWT, and apar151 HuggingFace
-  proxy URLs. Master playlists parse; variant URLs sometimes return 404
-  if they're meant to be resolved by the addon's player rather than
-  directly.
-
-Adding a new addon = one entry in `_ADDONS`. Each addon's resolver only
-needs the manifest + stream endpoints; the addon does the heavy lifting.
-"""
-
-import asyncio
-import logging
-from dataclasses import dataclass
-from typing import Iterable
-
-import httpx
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-USER_AGENT = (
-    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) "
-    "AppleWebKit/605.1.15 (KHTML, like Gecko) "
-    "Version/17.4 Safari/605.1.15"
-)
-
-
-@dataclass(frozen=True)
-class _Addon:
-    name: str
-    base: str               # e.g. "https://tvvoo.hayd.uk"
-    stream_ids: tuple[tuple[str, str, str], ...]
-    """(stream_type, stream_id, label) per F1/motorsport entry."""
-
-
-# Curated addon list — see module docstring. These IDs are documented in
-# the addons' manifests / channel lists. Update when channel names/IDs
-# rotate.
-_ADDONS: tuple[_Addon, ...] = (
-    _Addon(
-        name="TvVoo",
-        base="https://tvvoo.hayd.uk",
-        stream_ids=(
-            ("tv", "vavoo_SKY%20SPORTS%20F1|group:uk", "Sky Sports F1 UK (Vavoo)"),
-            ("tv", "vavoo_SKY%20SPORTS%20F1%20HD|group:uk", "Sky Sports F1 HD UK (Vavoo)"),
-            ("tv", "vavoo_SKY%20SPORT%20F1|group:it", "Sky Sport F1 IT (Vavoo)"),
-            ("tv", "vavoo_SKY%20SPORT%20F1%20HD|group:de", "Sky Sport F1 DE (Vavoo)"),
-            ("tv", "vavoo_DAZN%20F1|group:es", "DAZN F1 ES (Vavoo)"),
-        ),
-    ),
-    _Addon(
-        name="StremVerse",
-        base="https://stremverse.onrender.com",
-        stream_ids=(
-            ("tv", "stremevent_591", "Formula 1 (StremVerse)"),
-            ("tv", "stremevent_866", "MotoGP (StremVerse)"),
-        ),
-    ),
-)
-
-
-class StremioAddonExtractor(BaseExtractor):
-    """Pull F1 + Sky-class motorsport URLs from public Stremio addons."""
-
-    @property
-    def site_key(self) -> str:
-        return "stremio"
-
-    @property
-    def site_name(self) -> str:
-        return "Stremio Addon"
-
-    async def extract(self) -> list[ExtractedStream]:
-        async with httpx.AsyncClient(
-            timeout=15.0,
-            follow_redirects=True,
-            headers={"User-Agent": USER_AGENT},
-            # Some addons (TvVoo→Vavoo) hand back URLs whose origin certs
-            # are expired; honest-default verify=True is preserved here so
-            # the verifier sees the same TLS errors a browser would.
-        ) as client:
-            tasks = []
-            for addon in _ADDONS:
-                for stype, sid, label in addon.stream_ids:
-                    tasks.append(self._resolve(client, addon, stype, sid, label))
-            results = await asyncio.gather(*tasks, return_exceptions=True)
-
-        streams: list[ExtractedStream] = []
-        for r in results:
-            if isinstance(r, Exception):
-                logger.debug("[stremio] resolve failed: %s", r)
-                continue
-            streams.extend(r)
-
-        logger.info("[stremio] surfaced %d candidate stream URL(s) across %d addon(s)",
-                    len(streams), len(_ADDONS))
-        return streams
-
-    async def _resolve(
-        self, client: httpx.AsyncClient, addon: _Addon,
-        stype: str, sid: str, label: str,
-    ) -> list[ExtractedStream]:
-        url = f"{addon.base}/stream/{stype}/{sid}.json"
-        try:
-            resp = await client.get(url)
-        except Exception as e:
-            logger.debug("[stremio] %s fetch failed: %s", url, e)
-            return []
-        if resp.status_code != 200:
-            logger.debug("[stremio] %s -> HTTP %d", url, resp.status_code)
-            return []
-        try:
-            data = resp.json()
-        except Exception:
-            return []
-
-        out: list[ExtractedStream] = []
-        for idx, s in enumerate(data.get("streams") or []):
-            stream_url = (s.get("url") or "").strip()
-            if not stream_url:
-                continue
-            # Skip DRM-tagged entries — they need Widevine which neither
-            # our verifier nor a clean hls.js path can play.
-            if "DRM" in (s.get("name") or "").upper():
-                continue
-            title = label
-            if idx > 0:
-                title = f"{label} #{idx + 1}"
-            out.append(
-                ExtractedStream(
-                    url=stream_url,
-                    site_key=self.site_key,
-                    site_name=f"{addon.name}",
-                    quality="",
-                    title=title,
-                    stream_type="m3u8",
-                )
-            )
-        return out
diff --git a/stacks/f1-stream/files/backend/extractors/subreddit.py b/stacks/f1-stream/files/backend/extractors/subreddit.py
deleted file mode 100644
index 7790eb5e..00000000
--- a/stacks/f1-stream/files/backend/extractors/subreddit.py
+++ /dev/null
@@ -1,249 +0,0 @@
-"""Subreddit extractor — pulls community-curated live-stream URLs from
-the *MotorsportsReplays* subreddit (and a few siblings).
-
-The community follows a stable pattern: a single mod-curated post titled
-`[Watch / Download] <Series> <Year> - <Round> | <Event>` goes up on or
-near each race weekend with a `**Watch Online:**` link in the selftext,
-pointing at an admin-run WordPress site (motomundo.net for MotoGP, the
-F1 equivalent has rotated over the years). That WordPress page hosts
-iframe embeds whose m3u8 is JS-computed at load time — ideal target for
-the chrome-service pipeline downstream.
-
-This extractor:
-- Hits Reddit with a real-browser User-Agent (httpx default UA + cluster
-  IP combo gets HTTP 403'd on r/motogp; a Safari UA does not).
-- Searches for the `[Watch` thread pattern AND scans `/new.json` for
-  any flair set to LIVE.
-- Pulls selftext URLs and returns each candidate as an `embed`-type
-  ExtractedStream. The verifier already drives chrome-service for embed
-  streams, so the m3u8 capture happens there.
-"""
-
-import asyncio
-import logging
-import re
-import urllib.parse
-from typing import NamedTuple
-
-import httpx
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-USER_AGENT = (
-    "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) "
-    "AppleWebKit/605.1.15 (KHTML, like Gecko) "
-    "Version/17.4 Safari/605.1.15"
-)
-
-# Subreddits to scan.
-# - r/motorsportsstreams2 is the active 12.5k-sub successor to the banned
-#   r/motorsportstreams; race-weekend "[F1 STREAM]" posts include
-#   `boxboxbox.pro/stream-1` URLs and similar fresh aggregator links.
-# - r/MotorsportsReplays runs the [Watch / Download] mod-post pattern
-#   linking to motomundo.net (MotoGP) and sister sites.
-# - The rest are low-yield but cost nothing.
-SUBREDDITS: tuple[str, ...] = (
-    "motorsportsstreams2",
-    "MotorsportsReplays",
-    "f1streams",
-    "motorsports",
-    "formula1",
-    "motogp",
-)
-
-# Search queries fired against r/motorsportsstreams2 + r/MotorsportsReplays.
-# The first set captures the [Watch / Download] mod posts; the second set
-# catches race-weekend live discussion threads.
-SEARCH_QUERIES: tuple[str, ...] = (
-    "Watch Download F1 2026",
-    "Watch Download MotoGP 2026",
-    "Watch Online F1 2026",
-    "F1 STREAM live",
-    "Sky Sports F1 live",
-    "Sky F1 stream",
-)
-
-# Hosts we accept as "interesting" stream-page URLs. These are the
-# admin-curated WordPress / aggregator sites the community links to.
-# Anchored to what r/motorsportsstreams2 currently posts (May 2026 sweep).
-_INTERESTING_HOSTS = (
-    # WordPress wrappers / community-run sites
-    "motomundo.net",        # MotoGP — admin-curated WP
-    "motomundo.top",        # MotoMundo embed host
-    "motomundo.upns.xyz",   # MotoMundo embed host (newer)
-    "freemotorsports.com",  # WAC successor curated link list
-    "boxboxbox.pro",        # F1 race-weekend aggregator (community fav)
-    "boxboxbox.live",       # boxboxbox sister
-    "boxboxbox.lol",
-    # Aggregators we already have direct extractors for, but Reddit may
-    # surface event-specific deeplinks (e.g. /watch/<UUID>) we'd miss
-    # otherwise.
-    "pitsport.xyz",
-    "pitsport.live",
-    "rerace.io",
-    "dd12streams.com",
-    "ppv.to",
-    "streamed.pk",
-    "acestrlms.pages.dev",
-    "aceztrims.pages.dev",
-    # Sport-specific direct CDNs that occasionally appear in posts
-    "racelive.jp",          # Super Formula
-    "cdn.sfgo.jp",          # Super Formula CDN
-    # Speculative F1 sister sites — pattern likely if motomundo for MotoGP
-    "f1mundo.net",
-    "f1.live",
-    "f1live",
-    "skystreams",
-    "raceon",
-    "watchf1",
-)
-
-# URLs we actively never try to scrape (auth-walled, social media,
-# direct downloads with no live stream).
-_REJECT_HOSTS = (
-    "discord.gg", "discord.com",
-    "twitter.com", "x.com",
-    "youtube.com", "youtu.be",
-    "instagram.com", "tiktok.com",
-    "f1tv.formula1.com",
-    "viktorbarzin.me",
-    "gofile.io",
-    "mega.nz", "drive.google.com",
-    "1fichier.com", "rapidgator", "uploaded.net",
-    "magnet:",
-)
-
-_URL_RE = re.compile(r"https?://[^\s\)\]\>\"']+")
-
-
-class _Candidate(NamedTuple):
-    title: str
-    url: str
-    subreddit: str
-    flair: str
-
-
-def _is_interesting(url: str) -> bool:
-    low = url.lower()
-    if any(host in low for host in _REJECT_HOSTS):
-        return False
-    return any(host in low for host in _INTERESTING_HOSTS)
-
-
-def _has_live_marker(post: dict) -> bool:
-    title = (post.get("title") or "").lower()
-    flair = (post.get("link_flair_text") or "").lower()
-    if "[watch" in title or "watch online" in title or "live" in flair:
-        return True
-    return False
-
-
-class SubredditExtractor(BaseExtractor):
-    """Scan motorsport subreddits for community-curated live-stream URLs."""
-
-    @property
-    def site_key(self) -> str:
-        return "subreddit"
-
-    @property
-    def site_name(self) -> str:
-        return "Subreddit"
-
-    async def extract(self) -> list[ExtractedStream]:
-        # NB: do NOT send `Accept: application/json` — Reddit's anti-bot
-        # fingerprint flags that header from datacenter IPs and returns
-        # HTTP 403 with HTML. Default Accept (`*/*`) gets through fine
-        # and `.json` URLs always return JSON regardless.
-        async with httpx.AsyncClient(
-            timeout=15.0,
-            follow_redirects=True,
-            headers={"User-Agent": USER_AGENT},
-        ) as client:
-            tasks = [self._fetch_new(client, sub) for sub in SUBREDDITS]
-            tasks.extend(self._search(client, q) for q in SEARCH_QUERIES)
-            results = await asyncio.gather(*tasks, return_exceptions=True)
-
-        candidates: list[_Candidate] = []
-        for r in results:
-            if isinstance(r, Exception):
-                logger.debug("[subreddit] fetch failed: %s", r)
-                continue
-            candidates.extend(r)
-
-        # Dedupe by URL, keep first occurrence.
-        seen: set[str] = set()
-        picks: list[_Candidate] = []
-        for c in candidates:
-            if c.url in seen:
-                continue
-            seen.add(c.url)
-            picks.append(c)
-
-        logger.info(
-            "[subreddit] scanned %d source(s) — %d unique candidate URL(s)",
-            len(SUBREDDITS) + len(SEARCH_QUERIES), len(picks),
-        )
-        return [
-            ExtractedStream(
-                url=c.url,
-                site_key=self.site_key,
-                site_name=f"r/{c.subreddit}",
-                quality="",
-                title=c.title[:100],
-                stream_type="embed",
-                embed_url=c.url,
-            )
-            for c in picks
-        ]
-
-    async def _fetch_new(self, client: httpx.AsyncClient, sub: str) -> list[_Candidate]:
-        return await self._collect(
-            client,
-            f"https://www.reddit.com/r/{sub}/new.json?limit=25",
-            sub,
-        )
-
-    async def _search(self, client: httpx.AsyncClient, query: str) -> list[_Candidate]:
-        q = urllib.parse.quote_plus(query)
-        return await self._collect(
-            client,
-            f"https://www.reddit.com/r/MotorsportsReplays/search.json?q={q}&restrict_sr=on&sort=new&limit=10",
-            "MotorsportsReplays",
-        )
-
-    async def _collect(
-        self, client: httpx.AsyncClient, url: str, sub: str
-    ) -> list[_Candidate]:
-        try:
-            resp = await client.get(url)
-        except Exception as e:
-            logger.debug("[subreddit] fetch %s failed: %s", url, e)
-            return []
-        if resp.status_code != 200:
-            logger.debug("[subreddit] %s -> HTTP %d", url, resp.status_code)
-            return []
-        try:
-            data = resp.json()
-        except Exception:
-            return []
-        out: list[_Candidate] = []
-        for child in (data.get("data", {}) or {}).get("children", []):
-            d = child.get("data", {}) or {}
-            if not _has_live_marker(d):
-                continue
-            text = (d.get("selftext") or "")
-            title = d.get("title") or ""
-            flair = d.get("link_flair_text") or ""
-            # First, the linked URL itself (if it's a recognised live site).
-            top = d.get("url") or ""
-            if top and _is_interesting(top):
-                out.append(_Candidate(title, top, sub, flair))
-            # Then any URL embedded in the selftext that points at a
-            # community-curated live page.
-            for u in _URL_RE.findall(text):
-                if _is_interesting(u):
-                    out.append(_Candidate(title, u, sub, flair))
-        return out
diff --git a/stacks/f1-stream/files/backend/extractors/timstreams.py b/stacks/f1-stream/files/backend/extractors/timstreams.py
deleted file mode 100644
index f89889f3..00000000
--- a/stacks/f1-stream/files/backend/extractors/timstreams.py
+++ /dev/null
@@ -1,190 +0,0 @@
-"""TimStreams extractor - fetches F1 streams from the TimStreams JSON API.
-
-Returns embed URLs from hmembeds.one for iframe playback.
-The public API at stra.viaplus.site/main requires no authentication
-and returns all events/channels across Events, Replays, and 24/7 categories.
-"""
-
-import logging
-
-import httpx
-
-from backend.extractors.base import BaseExtractor
-from backend.extractors.models import ExtractedStream
-
-logger = logging.getLogger(__name__)
-
-API_URL = "https://stra.viaplus.site/main"
-USER_AGENT = (
-    "Mozilla/5.0 (Windows NT 10.0; Win64; x64) "
-    "AppleWebKit/537.36 (KHTML, like Gecko) "
-    "Chrome/120.0.0.0 Safari/537.36"
-)
-
-# Direct F1 keyword matches (case-insensitive)
-F1_KEYWORDS = {"formula 1", "formula one", "f1", "sky sports f1", "dazn f1"}
-# "Grand prix" is F1-related only if non-F1 motorsport keywords are absent
-GP_KEYWORD = "grand prix"
-# Exclude these motorsport series when matching on "grand prix"
-NON_F1_KEYWORDS = {
-    "motogp", "moto gp", "moto2", "moto3", "motoe",
-    "indycar", "indy car", "nascar",
-    "rally", "wrc", "wec", "lemans", "le mans",
-    "superbike", "dtm", "supercars",
-}
-
-# 24/7 channels that should always be included (embed hashes on hmembeds.one)
-ALWAYS_INCLUDE_HASHES = {
-    "888520f36cd94c5da4c71fddc1a5fc9b",  # Sky Sports F1
-    "fc3a54634d0867b0c02ee3223292e7c6",  # DAZN F1
-}
-
-
-def _is_f1_event(name: str) -> bool:
-    """Check if an event/channel is Formula 1 related by name.
-
-    Returns True when the name contains a direct F1 keyword, or contains
-    "grand prix" without non-F1 series keywords.
-
-    Note: The TimStreams API genre field (genre=2) covers ALL sports channels,
-    not just motorsport, so we rely solely on name-based matching.
-    """
-    lower = name.lower()
-
-    # Direct F1 keyword match
-    if any(kw in lower for kw in F1_KEYWORDS):
-        return True
-
-    # Grand prix without competing series
-    if GP_KEYWORD in lower and not any(kw in lower for kw in NON_F1_KEYWORDS):
-        return True
-
-    return False
-
-
-def _extract_embed_hash(url: str) -> str | None:
-    """Extract the hash from an hmembeds.one embed URL.
-
-    Expected format: https://hmembeds.one/embed/{hash}
-    Returns the hash string, or None if the URL is not in the expected format.
-    """
-    if not url:
-        return None
-    # Handle both with and without trailing slash
-    url = url.rstrip("/")
-    prefix = "https://hmembeds.one/embed/"
-    alt_prefix = "http://hmembeds.one/embed/"
-    if url.startswith(prefix):
-        return url[len(prefix):] or None
-    if url.startswith(alt_prefix):
-        return url[len(alt_prefix):] or None
-    return None
-
-
-def _is_always_include(url: str) -> bool:
-    """Check if a stream URL is one of the always-include 24/7 channels."""
-    embed_hash = _extract_embed_hash(url)
-    return embed_hash in ALWAYS_INCLUDE_HASHES if embed_hash else False
-
-
-class TimStreamsExtractor(BaseExtractor):
-    """Extracts embed URLs from TimStreams' public JSON API.
-
-    The API at stra.viaplus.site/main returns a JSON array of categories,
-    each containing events with stream URLs pointing to hmembeds.one embeds.
-    """
-
-    @property
-    def site_key(self) -> str:
-        return "timstreams"
-
-    @property
-    def site_name(self) -> str:
-        return "TimStreams"
-
-    async def extract(self) -> list[ExtractedStream]:
-        """Fetch F1 events/channels and return embed URLs for iframe playback."""
-        streams: list[ExtractedStream] = []
-        seen_urls: set[str] = set()
-
-        try:
-            async with httpx.AsyncClient(
-                timeout=15.0,
-                follow_redirects=True,
-                headers={"User-Agent": USER_AGENT, "Accept": "application/json"},
-            ) as client:
-                resp = await client.get(API_URL)
-                if resp.status_code != 200:
-                    logger.warning(
-                        "[timstreams] API returned HTTP %d", resp.status_code
-                    )
-                    return []
-
-                data = resp.json()
-                if not isinstance(data, list):
-                    logger.warning("[timstreams] Unexpected API response type: %s", type(data).__name__)
-                    return []
-
-                logger.info("[timstreams] API returned %d categorie(s)", len(data))
-
-                for category in data:
-                    category_name = category.get("category", "Unknown")
-                    events = category.get("events", [])
-                    if not isinstance(events, list):
-                        continue
-
-                    for event in events:
-                        event_name = event.get("name", "Unknown")
-                        event_streams = event.get("streams", [])
-
-                        if not isinstance(event_streams, list) or not event_streams:
-                            continue
-
-                        # Check if any stream URL matches an always-include channel
-                        always_include = any(
-                            _is_always_include(s.get("url", ""))
-                            for s in event_streams
-                        )
-
-                        # Filter: must be F1-related or an always-include channel
-                        if not always_include and not _is_f1_event(event_name):
-                            continue
-
-                        for stream_info in event_streams:
-                            stream_name = stream_info.get("name", "")
-                            stream_url = stream_info.get("url", "")
-
-                            if not stream_url:
-                                continue
-
-                            # Deduplicate by URL
-                            if stream_url in seen_urls:
-                                continue
-                            seen_urls.add(stream_url)
-
-                            # Build a descriptive title
-                            title = event_name
-                            if stream_name and stream_name.lower() != event_name.lower():
-                                title = f"{event_name} - {stream_name}"
-                            if category_name:
-                                title = f"[{category_name}] {title}"
-
-                            streams.append(
-                                ExtractedStream(
-                                    url=stream_url,
-                                    site_key=self.site_key,
-                                    site_name=self.site_name,
-                                    quality="",
-                                    title=title,
-                                    stream_type="embed",
-                                    embed_url=stream_url,
-                                )
-                            )
-
-        except httpx.TimeoutException:
-            logger.warning("[timstreams] API request timed out")
-        except Exception:
-            logger.exception("[timstreams] Failed to fetch from API")
-
-        logger.info("[timstreams] Extracted %d stream(s)", len(streams))
-        return streams
diff --git a/stacks/f1-stream/files/backend/main.py b/stacks/f1-stream/files/backend/main.py
index c179dc53..2a17d4d9 100644
--- a/stacks/f1-stream/files/backend/main.py
+++ b/stacks/f1-stream/files/backend/main.py
@@ -3,7 +3,6 @@
 import logging
 import os
 from contextlib import asynccontextmanager
-from datetime import datetime, timedelta, timezone
 
 from apscheduler.schedulers.asyncio import AsyncIOScheduler
 from apscheduler.triggers.cron import CronTrigger
@@ -14,7 +13,6 @@ from fastapi.staticfiles import StaticFiles
 from pydantic import BaseModel
 from starlette.responses import Response, StreamingResponse
 
-from backend.embed_proxy import fetch_embed, relay_asset
 from backend.extractors import create_extraction_service
 from backend.proxy import proxy_playlist, relay_stream
 from backend.schedule import ScheduleService
@@ -119,6 +117,10 @@ async def lifespan(app: FastAPI):
     # Startup: load schedule and start background scheduler
     await schedule_service.initialize()
 
+    # Run initial extraction
+    logger.info("Running initial stream extraction...")
+    await extraction_service.run_extraction()
+
     # Schedule daily schedule refresh
     scheduler.add_job(
         _scheduled_refresh,
@@ -128,18 +130,13 @@ async def lifespan(app: FastAPI):
         replace_existing=True,
     )
 
-    # Schedule periodic stream extraction (default: every 30 minutes).
-    # next_run_time fires the first run 8s after startup. We don't run
-    # extraction inline here because it calls the playback verifier,
-    # which hits http://127.0.0.1:8000/embed for embed streams — uvicorn
-    # isn't listening yet inside the lifespan startup phase.
+    # Schedule periodic stream extraction (default: every 30 minutes)
     scheduler.add_job(
         _scheduled_extraction,
         trigger=IntervalTrigger(minutes=30),
         id="stream_extraction",
         name="Extract streams from all registered sites",
         replace_existing=True,
-        next_run_time=datetime.now(timezone.utc) + timedelta(seconds=8),
     )
 
     # Schedule token refresh every 4 minutes (safe margin for 5-min CDN tokens).
@@ -162,10 +159,6 @@ async def lifespan(app: FastAPI):
     # Shutdown
     scheduler.shutdown(wait=False)
     logger.info("APScheduler shut down")
-    try:
-        await extraction_service.shutdown()
-    except Exception:
-        logger.exception("extraction_service shutdown failed")
 
 
 app = FastAPI(title="F1 Streams", lifespan=lifespan)
@@ -416,37 +409,6 @@ async def relay_endpoint(
     )
 
 
-# --- Embed iframe-stripping proxy ---
-
-
-@app.get("/embed")
-async def embed_proxy(url: str = Query(..., description="Base64url-encoded embed URL")):
-    """Proxy a third-party embed page so it can be iframed in our origin.
-
-    Strips X-Frame-Options and CSP frame-ancestors from the upstream
-    response, injects a base href + frame-buster-defeat script, and
-    forwards a plausible Referer/Origin to bypass upstream allowlists.
-    """
-    body, headers, status_code = await fetch_embed(url)
-    return Response(content=body, headers=headers, status_code=status_code)
-
-
-@app.get("/embed-asset")
-async def embed_asset(
-    request: Request,
-    url: str = Query(..., description="Base64url-encoded subresource URL"),
-):
-    """Relay an upstream subresource (JS/CSS/image/etc.) for the embed proxy.
-
-    Used as a fallback when an upstream blocks hotlinked assets via Origin
-    or Referer checks. Most assets load directly via the injected <base>
-    tag without going through this endpoint.
-    """
-    range_header = request.headers.get("range")
-    stream_gen, headers, status_code = await relay_asset(url, range_header)
-    return StreamingResponse(stream_gen, headers=headers, status_code=status_code)
-
-
 # --- Frontend Static Files ---
 # Mount the SvelteKit static build AFTER all API routes so API endpoints take priority.
 # SvelteKit adapter-static with ssr=false produces {page}.html files and a fallback index.html.
diff --git a/stacks/f1-stream/files/backend/playback_verifier.py b/stacks/f1-stream/files/backend/playback_verifier.py
deleted file mode 100644
index bb239f70..00000000
--- a/stacks/f1-stream/files/backend/playback_verifier.py
+++ /dev/null
@@ -1,449 +0,0 @@
-"""Headless-browser playback verification for extracted streams.
-
-The basic health checker (backend/health.py) only validates m3u8 syntax.
-For embed/iframe streams it has nothing to check — the previous code blindly
-marked every embed `is_live=True`, which meant the stream list was full of
-news articles and aggregator landing pages that never actually played.
-
-This module loads each candidate stream URL in headless Chromium (via
-Playwright) and looks for *codec-independent* signals that the upstream
-serves a playable stream:
-
-- For m3u8: hls.js receives MANIFEST_PARSED + at least one FRAG_LOADED
-  event. We don't wait for `<video>` to gain dimensions, because Playwright's
-  chromium build doesn't include the H.264/AAC codecs. The user's real
-  browser does, so confirming "manifest + segment fetch succeed" is the
-  right server-side signal.
-- For embed: a `<video>` element appears at top level OR inside the iframe
-  (the embed proxy strips X-Frame-Options + frame-buster JS so we can
-  introspect the iframe content), OR the player has set up a MediaSource.
-
-Designed to be called from the extraction service's run_extraction()
-hook, with bounded concurrency. Each verification typically takes
-4-12 seconds.
-"""
-
-import asyncio
-import base64
-import logging
-import os
-import time
-from dataclasses import dataclass
-
-logger = logging.getLogger(__name__)
-
-# Toggle off in development by setting PLAYBACK_VERIFY_ENABLED=false.
-VERIFY_ENABLED = os.getenv("PLAYBACK_VERIFY_ENABLED", "true").lower() in ("true", "1", "yes")
-
-# Maximum number of concurrent browser pages.
-MAX_CONCURRENCY = int(os.getenv("PLAYBACK_VERIFY_CONCURRENCY", "2"))
-
-# Per-stream verification budget (seconds). Beyond this we declare unplayable.
-PER_STREAM_TIMEOUT = float(os.getenv("PLAYBACK_VERIFY_TIMEOUT", "20"))
-
-# Where the embed proxy lives, used to wrap embed URLs so they bypass
-# X-Frame-Options/CSP/JS frame-busters during verification. Defaults to
-# loopback because verification runs inside the same FastAPI process.
-PROXY_BASE = os.getenv("PLAYBACK_VERIFY_PROXY_BASE", "http://127.0.0.1:8000")
-
-USER_AGENT = (
-    "Mozilla/5.0 (Windows NT 10.0; Win64; x64) "
-    "AppleWebKit/537.36 (KHTML, like Gecko) "
-    "Chrome/120.0.0.0 Safari/537.36"
-)
-
-
-@dataclass
-class PlaybackVerdict:
-    is_playable: bool
-    signal: str = ""  # which check triggered the positive verdict
-    elapsed_ms: int = 0
-    error: str = ""
-
-
-def _b64url(s: str) -> str:
-    """URL-safe base64 with padding stripped — matches m3u8_rewriter.encode_url."""
-    return base64.urlsafe_b64encode(s.encode()).decode().rstrip("=")
-
-
-def _hls_test_html(m3u8_url: str) -> str:
-    """A self-contained HTML page that loads an m3u8 via hls.js into a <video>.
-
-    The page exposes window._verifier with manifest_parsed / frag_loaded
-    booleans the verifier polls. It also marks media-error or fatal-error
-    so we can distinguish 'upstream is unreachable' from 'codec missing'.
-    """
-    return f"""<!doctype html>
-<html><head><meta charset="utf-8"><title>verify</title>
-<script src="https://cdn.jsdelivr.net/npm/hls.js@1.5/dist/hls.min.js"></script>
-</head><body>
-<video id="v" muted playsinline width="640" height="360"></video>
-<script>
-window._verifier = {{
-  manifest_parsed: false,
-  frag_loaded: false,
-  media_loaded: false,  // true when MSE has appended any buffer
-  fatal_network_error: false,  // upstream truly unreachable
-  manifest_incompatible: false,  // codec missing — separate from network reachability
-  hls_error_details: ""
-}};
-const v = document.getElementById('v');
-const url = {m3u8_url!r};
-function start() {{
-  if (window.Hls && Hls.isSupported()) {{
-    const hls = new Hls({{enableWorker: true}});
-    hls.on(Hls.Events.MANIFEST_PARSED, () => {{ window._verifier.manifest_parsed = true; }});
-    hls.on(Hls.Events.FRAG_LOADED, () => {{ window._verifier.frag_loaded = true; }});
-    hls.on(Hls.Events.BUFFER_APPENDED, () => {{ window._verifier.media_loaded = true; }});
-    hls.on(Hls.Events.ERROR, (_, d) => {{
-      window._verifier.hls_error_details = d.details || "";
-      if (d.fatal && d.type === Hls.ErrorTypes.NETWORK_ERROR) {{
-        window._verifier.fatal_network_error = true;
-      }}
-      if (d.details === Hls.ErrorDetails.MANIFEST_INCOMPATIBLE_CODECS_ERROR) {{
-        window._verifier.manifest_incompatible = true;
-      }}
-    }});
-    hls.loadSource(url);
-    hls.attachMedia(v);
-  }} else if (v.canPlayType('application/vnd.apple.mpegurl')) {{
-    v.src = url;
-    v.addEventListener('loadedmetadata', () => {{ window._verifier.manifest_parsed = true; window._verifier.frag_loaded = true; }});
-    v.addEventListener('error', () => {{ window._verifier.fatal_network_error = true; }});
-  }} else {{
-    window._verifier.hls_error_details = "no hls support";
-  }}
-}}
-window.addEventListener('load', start);
-</script></body></html>"""
-
-
-def _embed_test_html(_proxied_embed_url: str) -> str:
-    """No longer used — verifier navigates the page directly to the proxy URL.
-
-    The earlier iframe-wrapper approach hit same-origin policy when inspecting
-    the iframe's contentDocument (the wrapper page was a data: URL, the iframe
-    was http://127.0.0.1:8000), so we couldn't read the embed's DOM.
-    """
-    return ""
-
-
-_M3U8_POLL_JS = """
-() => {
-  const v = window._verifier || {};
-  const vid = document.querySelector('video');
-  return {
-    manifest_parsed: !!v.manifest_parsed,
-    frag_loaded: !!v.frag_loaded,
-    media_loaded: !!v.media_loaded,
-    fatal_network_error: !!v.fatal_network_error,
-    manifest_incompatible: !!v.manifest_incompatible,
-    hls_error_details: v.hls_error_details || "",
-    video_width: vid ? vid.videoWidth : 0,
-    video_ready: vid ? vid.readyState : 0,
-  };
-}
-"""
-
-
-_EMBED_POLL_JS = """
-() => {
-  try {
-    const vids = document.querySelectorAll('video');
-    if (vids.length > 0) {
-      const v = vids[0];
-      return {
-        has_video: true,
-        src: v.currentSrc || v.src || "",
-        width: v.videoWidth,
-        ready: v.readyState,
-        duration: isFinite(v.duration) ? v.duration : 0,
-        media_keys: !!v.mediaKeys,
-        sources: v.querySelectorAll('source').length,
-      };
-    }
-    return {has_video: false};
-  } catch (e) {
-    return {has_video: false, err: String(e)};
-  }
-}
-"""
-
-
-async def _verify_m3u8(page, m3u8_url: str, deadline: float) -> PlaybackVerdict:
-    """Confirm an m3u8 URL is fetchable via hls.js end-to-end.
-
-    Positive signal hierarchy:
-      1. media_loaded (MSE buffer appended) — strongest, codec-supported.
-      2. frag_loaded (hls.js fetched at least one segment) — upstream is OK
-         even if the local browser lacks codecs.
-      3. manifest_parsed without media_loaded but with manifest_incompatible
-         — indicates upstream playlist is valid; player can't decode here
-         but a real user's browser will.
-    Negative signal:
-      - fatal_network_error: upstream is unreachable.
-      - timeout with no manifest_parsed: upstream did not respond.
-    """
-    start = time.monotonic()
-    html = _hls_test_html(m3u8_url)
-    data_url = "data:text/html;base64," + base64.b64encode(html.encode()).decode()
-
-    try:
-        await page.goto(data_url, wait_until="domcontentloaded", timeout=10_000)
-    except Exception as e:
-        return PlaybackVerdict(
-            is_playable=False, error=f"goto failed: {e}",
-            elapsed_ms=int((time.monotonic() - start) * 1000),
-        )
-
-    last_state: dict = {}
-    while time.monotonic() < deadline:
-        try:
-            state = await page.evaluate(_M3U8_POLL_JS)
-        except Exception as e:
-            return PlaybackVerdict(
-                is_playable=False, error=f"evaluate failed: {e}",
-                elapsed_ms=int((time.monotonic() - start) * 1000),
-            )
-        last_state = state
-        if state.get("media_loaded"):
-            return PlaybackVerdict(
-                is_playable=True, signal="media_loaded",
-                elapsed_ms=int((time.monotonic() - start) * 1000),
-            )
-        if state.get("frag_loaded"):
-            return PlaybackVerdict(
-                is_playable=True, signal="frag_loaded",
-                elapsed_ms=int((time.monotonic() - start) * 1000),
-            )
-        # MANIFEST_INCOMPATIBLE_CODECS_ERROR fires after hls.js successfully
-        # fetched and parsed the manifest — the failure is purely local
-        # (chromium lacks H.264). The user's real browser has codecs, so
-        # this URL is playable from the user's perspective.
-        if state.get("manifest_incompatible"):
-            return PlaybackVerdict(
-                is_playable=True, signal="manifest_parsed_codec_missing_in_verifier",
-                elapsed_ms=int((time.monotonic() - start) * 1000),
-            )
-        if state.get("manifest_parsed"):
-            return PlaybackVerdict(
-                is_playable=True, signal="manifest_parsed",
-                elapsed_ms=int((time.monotonic() - start) * 1000),
-            )
-        if state.get("fatal_network_error"):
-            return PlaybackVerdict(
-                is_playable=False, error="upstream network error",
-                elapsed_ms=int((time.monotonic() - start) * 1000),
-            )
-        await asyncio.sleep(0.25)
-
-    err = "no playback signal"
-    if last_state.get("hls_error_details"):
-        err = f"hls.js error: {last_state['hls_error_details']}"
-    return PlaybackVerdict(
-        is_playable=False, error=err,
-        elapsed_ms=int((time.monotonic() - start) * 1000),
-    )
-
-
-async def _verify_embed(page, proxied_url: str, deadline: float) -> PlaybackVerdict:
-    """Navigate directly to the proxied embed and confirm a player rendered.
-
-    Positive signals (in priority order):
-      - <video> with src/sources/mediaKeys set (player wired up).
-      - <video> element exists with any state (script ran, player attaching).
-      - A player container div (jwplayer, video-js, [id*=player], etc.).
-
-    Loading the embed page directly (not via iframe wrapper) avoids the
-    same-origin policy that prevented earlier iframe-introspection runs
-    from seeing the embed DOM.
-    """
-    start = time.monotonic()
-    try:
-        await page.goto(proxied_url, wait_until="domcontentloaded", timeout=15_000)
-    except Exception as e:
-        return PlaybackVerdict(
-            is_playable=False, error=f"goto failed: {e}",
-            elapsed_ms=int((time.monotonic() - start) * 1000),
-        )
-
-    # Track the best state seen across all polls. Some embeds load a player
-    # briefly then anti-bot JS tears the DOM down (hmembeds redirects to
-    # google.com if its devtool-detection trips). We accept any positive
-    # signal observed during the window, even if it's gone by timeout.
-    #
-    # We require an actual <video> element — a "player container div"
-    # is too weak (sportsurge has player-class divs but no real player).
-    seen_video_wired = False
-    seen_video_tag = False
-    last_err = ""
-
-    while time.monotonic() < deadline:
-        try:
-            r = await page.evaluate(_EMBED_POLL_JS)
-        except Exception as e:
-            return PlaybackVerdict(
-                is_playable=False, error=f"evaluate failed: {e}",
-                elapsed_ms=int((time.monotonic() - start) * 1000),
-            )
-        if r.get("has_video"):
-            seen_video_tag = True
-            if r.get("src") or r.get("width", 0) > 0 or r.get("media_keys") or r.get("sources", 0) > 0:
-                seen_video_wired = True
-                return PlaybackVerdict(
-                    is_playable=True, signal="video.wired",
-                    elapsed_ms=int((time.monotonic() - start) * 1000),
-                )
-        last_err = r.get("err", "")
-        await asyncio.sleep(0.5)
-
-    if seen_video_wired:
-        return PlaybackVerdict(is_playable=True, signal="video.wired",
-                               elapsed_ms=int((time.monotonic() - start) * 1000))
-    if seen_video_tag:
-        return PlaybackVerdict(is_playable=True, signal="video.tag_only",
-                               elapsed_ms=int((time.monotonic() - start) * 1000))
-
-    err = "no <video> element rendered"
-    if last_err:
-        err += f"; last_err: {last_err}"
-    return PlaybackVerdict(is_playable=False, error=err,
-                           elapsed_ms=int((time.monotonic() - start) * 1000))
-
-
-class PlaybackVerifier:
-    """Verifies playability of m3u8 and embed URLs via headless Chromium.
-
-    Manages a single browser instance for the process lifetime (cheap per-page
-    contexts) and bounds concurrency with a semaphore.
-    """
-
-    def __init__(self) -> None:
-        self._browser = None
-        self._playwright = None
-        self._sem = asyncio.Semaphore(MAX_CONCURRENCY)
-        self._lock = asyncio.Lock()
-
-    async def _ensure_browser(self):
-        if self._browser is not None:
-            return self._browser
-        async with self._lock:
-            if self._browser is not None:
-                return self._browser
-            try:
-                from playwright.async_api import async_playwright
-            except ImportError:
-                logger.error("playwright not installed — playback verification disabled")
-                return None
-            self._playwright = await async_playwright().start()
-            ws_base = os.getenv("CHROME_WS_URL")
-            ws_token = os.getenv("CHROME_WS_TOKEN")
-            if ws_base and ws_token:
-                self._browser = await self._playwright.chromium.connect(
-                    f"{ws_base.rstrip('/')}/{ws_token}", timeout=15_000,
-                )
-                logger.info("connected to remote chrome-service (concurrency=%d)", MAX_CONCURRENCY)
-            else:
-                self._browser = await self._playwright.chromium.launch(
-                    headless=True,
-                    args=[
-                        "--disable-dev-shm-usage",
-                        "--disable-web-security",
-                        "--no-sandbox",
-                        "--disable-setuid-sandbox",
-                        "--disable-features=IsolateOrigins,site-per-process",
-                        "--autoplay-policy=no-user-gesture-required",
-                    ],
-                )
-                logger.warning("CHROME_WS_URL not set — using in-process Chromium (concurrency=%d)", MAX_CONCURRENCY)
-            return self._browser
-
-    async def shutdown(self) -> None:
-        if self._browser is not None:
-            try:
-                await self._browser.close()
-            except Exception:
-                logger.exception("error closing browser")
-        if self._playwright is not None:
-            try:
-                await self._playwright.stop()
-            except Exception:
-                logger.exception("error stopping playwright")
-        self._browser = None
-        self._playwright = None
-
-    async def verify(self, url: str, stream_type: str) -> PlaybackVerdict:
-        if not VERIFY_ENABLED:
-            return PlaybackVerdict(is_playable=True, error="disabled")
-
-        browser = await self._ensure_browser()
-        if browser is None:
-            return PlaybackVerdict(is_playable=False, error="playwright unavailable")
-
-        is_m3u8 = stream_type == "m3u8"
-        if not is_m3u8:
-            url = f"{PROXY_BASE}/embed?url={_b64url(url)}"
-
-        async with self._sem:
-            # Set the per-stream deadline AFTER acquiring the semaphore.
-            # Otherwise queued streams that wait behind earlier ones
-            # would have already-expired deadlines when they start.
-            deadline = time.monotonic() + PER_STREAM_TIMEOUT
-            try:
-                context = await browser.new_context(
-                    user_agent=USER_AGENT,
-                    viewport={"width": 1280, "height": 720},
-                    bypass_csp=True,
-                )
-                from backend.stealth import STEALTH_JS
-                await context.add_init_script(STEALTH_JS)
-                page = await context.new_page()
-            except Exception as e:
-                return PlaybackVerdict(
-                    is_playable=False, error=f"context create failed: {e}",
-                )
-            try:
-                if is_m3u8:
-                    verdict = await _verify_m3u8(page, url, deadline)
-                else:
-                    verdict = await _verify_embed(page, url, deadline)
-            except asyncio.TimeoutError:
-                verdict = PlaybackVerdict(is_playable=False, error="overall timeout")
-            except Exception as e:
-                verdict = PlaybackVerdict(
-                    is_playable=False, error=f"verify exception: {e}",
-                )
-            finally:
-                try:
-                    await page.close()
-                    await context.close()
-                except Exception:
-                    pass
-            logger.info(
-                "[verify] %s -> playable=%s signal=%s err=%s elapsed=%dms",
-                url[:120], verdict.is_playable, verdict.signal,
-                verdict.error, verdict.elapsed_ms,
-            )
-            return verdict
-
-    async def verify_many(self, items: list[tuple[str, str]]) -> dict[str, PlaybackVerdict]:
-        if not items:
-            return {}
-        if not VERIFY_ENABLED:
-            return {url: PlaybackVerdict(is_playable=True, error="disabled") for url, _ in items}
-
-        async def _run(url: str, stream_type: str):
-            verdict = await self.verify(url, stream_type)
-            return url, verdict
-
-        results = await asyncio.gather(
-            *[_run(url, st) for url, st in items], return_exceptions=True
-        )
-        out: dict[str, PlaybackVerdict] = {}
-        for r in results:
-            if isinstance(r, Exception):
-                logger.exception("verify task crashed: %s", r)
-                continue
-            url, verdict = r
-            out[url] = verdict
-        return out
diff --git a/stacks/f1-stream/files/backend/requirements.txt b/stacks/f1-stream/files/backend/requirements.txt
index 852d6497..15882990 100644
--- a/stacks/f1-stream/files/backend/requirements.txt
+++ b/stacks/f1-stream/files/backend/requirements.txt
@@ -3,4 +3,3 @@ uvicorn[standard]
 httpx>=0.27.0
 apscheduler>=3.10.0,<4.0
 pydantic>=2.0.0
-playwright==1.48.0
diff --git a/stacks/f1-stream/files/backend/stealth.py b/stacks/f1-stream/files/backend/stealth.py
deleted file mode 100644
index a5dfb5b7..00000000
--- a/stacks/f1-stream/files/backend/stealth.py
+++ /dev/null
@@ -1,43 +0,0 @@
-"""Vendored Playwright stealth init script.
-
-Mirror of `stacks/chrome-service/files/stealth.js`. Kept in sync by hand
-— update both files together if the JS is changed.
-"""
-
-STEALTH_JS = r"""
-(() => {
-  Object.defineProperty(Navigator.prototype, 'webdriver', { get: () => undefined });
-  if (!window.chrome) window.chrome = {};
-  window.chrome.runtime = window.chrome.runtime || {};
-  Object.defineProperty(navigator, 'plugins', {
-    get: () => [{ name: 'Chrome PDF Plugin' }, { name: 'Chrome PDF Viewer' }, { name: 'Native Client' }],
-  });
-  Object.defineProperty(navigator, 'languages', { get: () => ['en-US', 'en'] });
-  const origQuery = window.navigator.permissions && window.navigator.permissions.query;
-  if (origQuery) {
-    window.navigator.permissions.query = (parameters) =>
-      parameters && parameters.name === 'notifications'
-        ? Promise.resolve({ state: Notification.permission })
-        : origQuery(parameters);
-  }
-  const spoofGl = (proto) => {
-    if (!proto) return;
-    const orig = proto.getParameter;
-    proto.getParameter = function (parameter) {
-      if (parameter === 37445) return 'Intel Inc.';
-      if (parameter === 37446) return 'Intel Iris OpenGL Engine';
-      return orig.apply(this, arguments);
-    };
-  };
-  spoofGl(window.WebGLRenderingContext && window.WebGLRenderingContext.prototype);
-  spoofGl(window.WebGL2RenderingContext && window.WebGL2RenderingContext.prototype);
-  // disable-devtool.js auto-init evasion: hide the marker attribute so the
-  // library's IIFE exits early. Without this, hmembeds-class players redirect
-  // to google.com when the Performance detector trips under Playwright.
-  const origQS = Document.prototype.querySelector;
-  Document.prototype.querySelector = function (sel) {
-    if (typeof sel === 'string' && sel.indexOf('disable-devtool-auto') !== -1) return null;
-    return origQS.apply(this, arguments);
-  };
-})();
-"""
diff --git a/stacks/f1-stream/files/frontend/src/lib/api.js b/stacks/f1-stream/files/frontend/src/lib/api.js
index e945a952..9567b32d 100644
--- a/stacks/f1-stream/files/frontend/src/lib/api.js
+++ b/stacks/f1-stream/files/frontend/src/lib/api.js
@@ -44,20 +44,6 @@ export function getProxyUrl(m3u8Url) {
 	return `${API_BASE}/proxy?url=${encoded}`;
 }
 
-/**
- * Get the embed-proxy URL for an upstream iframe embed page.
- *
- * The proxy strips X-Frame-Options / CSP frame-ancestors and injects a
- * frame-buster-defeat script so the embed renders inside our iframe even
- * when the upstream tries to block it.
- * @param {string} embedUrl - The original embed page URL
- * @returns {string} URL pointing at our /embed proxy
- */
-export function getEmbedProxyUrl(embedUrl) {
-	const encoded = toBase64Url(embedUrl);
-	return `${API_BASE}/embed?url=${encoded}`;
-}
-
 /**
  * Mark a stream as actively being watched (enables token refresh).
  * @param {string} url - The stream URL
diff --git a/stacks/f1-stream/files/frontend/src/routes/watch/+page.svelte b/stacks/f1-stream/files/frontend/src/routes/watch/+page.svelte
index 90369d7e..b34bc0b8 100644
--- a/stacks/f1-stream/files/frontend/src/routes/watch/+page.svelte
+++ b/stacks/f1-stream/files/frontend/src/routes/watch/+page.svelte
@@ -1,5 +1,5 @@
 <script>
-	import { fetchStreams, fetchSchedule, getProxyUrl, getEmbedProxyUrl, activateStream, deactivateStream } from '$lib/api.js';
+	import { fetchStreams, fetchSchedule, getProxyUrl, activateStream, deactivateStream } from '$lib/api.js';
 	import { onMount, onDestroy } from 'svelte';
 	import { page } from '$app/state';
 
@@ -107,14 +107,12 @@
 		}
 
 		if (stream.stream_type === 'embed') {
-			// Embed/iframe player — route through our /embed proxy so the
-			// upstream's X-Frame-Options / CSP / JS frame-busters can't
-			// block the iframe.
+			// Embed/iframe player — no hls.js needed
 			const newPlayer = {
 				id: Date.now(),
 				proxyUrl: '',
 				originalUrl: stream.embed_url,
-				embedUrl: getEmbedProxyUrl(stream.embed_url),
+				embedUrl: stream.embed_url,
 				streamType: 'embed',
 				siteKey: stream.site_key || '',
 				siteName: stream.site_name || stream.site_key || 'Unknown',
@@ -175,13 +173,9 @@
 		if (!player || !player.videoEl) return;
 
 		if (Hls.isSupported()) {
-			// `lowLatencyMode` previously broke playback on regular (non-LL-HLS)
-			// providers like RallyTV — they don't ship the LL-HLS extensions
-			// hls.js needs in that mode. Default off; explicit per-stream flag
-			// can re-enable later.
 			const hlsInstance = new Hls({
 				enableWorker: true,
-				lowLatencyMode: false,
+				lowLatencyMode: true,
 				backBufferLength: 90
 			});
 
diff --git a/stacks/f1-stream/main.tf b/stacks/f1-stream/main.tf
index cfa1cd60..e03113be 100644
--- a/stacks/f1-stream/main.tf
+++ b/stacks/f1-stream/main.tf
@@ -11,14 +11,9 @@ resource "kubernetes_namespace" "f1-stream" {
     name = "f1-stream"
     labels = {
       "istio-injection" : "disabled"
-      tier                                    = local.tiers.aux
-      "chrome-service.viktorbarzin.me/client" = "true"
+      tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -48,35 +43,6 @@ resource "kubernetes_manifest" "external_secret" {
   depends_on = [kubernetes_namespace.f1-stream]
 }
 
-# Pull the chrome-service bearer token into this namespace as a separate
-# Secret so the verifier can reach the in-cluster Playwright pool.
-resource "kubernetes_manifest" "chrome_service_client_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "chrome-service-client-secrets"
-      namespace = "f1-stream"
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "chrome-service-client-secrets"
-      }
-      dataFrom = [{
-        extract = {
-          key = "chrome-service"
-        }
-      }]
-    }
-  }
-  depends_on = [kubernetes_namespace.f1-stream]
-}
-
 resource "kubernetes_persistent_volume_claim" "data_proxmox" {
   wait_until_bound = false
   metadata {
@@ -134,11 +100,11 @@ resource "kubernetes_deployment" "f1-stream" {
           name              = "f1-stream"
           resources {
             limits = {
-              memory = "1Gi"
+              memory = "256Mi"
             }
             requests = {
-              cpu    = "100m"
-              memory = "1Gi"
+              cpu    = "25m"
+              memory = "256Mi"
             }
           }
           port {
@@ -157,29 +123,6 @@ resource "kubernetes_deployment" "f1-stream" {
             name  = "DISCORD_CHANNELS"
             value = var.discord_f1_channel_ids
           }
-          # Verifier connects to in-cluster headed Chromium pool — see
-          # stacks/chrome-service/. Falls back to in-process headless if unset.
-          env {
-            name  = "CHROME_WS_URL"
-            value = "ws://chrome-service.chrome-service.svc.cluster.local:3000"
-          }
-          env {
-            name = "CHROME_WS_TOKEN"
-            value_from {
-              secret_key_ref {
-                name = "chrome-service-client-secrets"
-                key  = "api_bearer_token"
-              }
-            }
-          }
-          # The embed proxy (this pod's /embed?url=…) must be reachable from
-          # the remote chrome-service pod. Default 127.0.0.1 only works for
-          # in-process Chromium — for the remote browser we point it at our
-          # own ClusterIP service.
-          env {
-            name  = "PLAYBACK_VERIFY_PROXY_BASE"
-            value = "http://f1.f1-stream.svc.cluster.local"
-          }
           volume_mount {
             name       = "data"
             mount_path = "/data"
@@ -194,10 +137,6 @@ resource "kubernetes_deployment" "f1-stream" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 
diff --git a/stacks/fire-planner/main.tf b/stacks/fire-planner/main.tf
deleted file mode 100644
index 784427de..00000000
--- a/stacks/fire-planner/main.tf
+++ /dev/null
@@ -1,387 +0,0 @@
-variable "image_tag" {
-  type        = string
-  default     = "latest"
-  description = "fire-planner image tag. Use 8-char git SHA in CI; :latest only for local trials."
-}
-
-variable "postgresql_host" { type = string }
-
-locals {
-  namespace = "fire-planner"
-  # Phase 3 cutover 2026-05-07. NOTE: the registry-private repo for
-  # fire-planner has 0 tags — first build via Woodpecker on the new Forgejo
-  # repo (viktor/fire-planner, Dockerfile + .woodpecker.yml added 2026-05-07)
-  # must succeed BEFORE the next pod restart, otherwise pulls will 404.
-  image = "forgejo.viktorbarzin.me/viktor/fire-planner:${var.image_tag}"
-  labels = {
-    app = "fire-planner"
-  }
-}
-
-resource "kubernetes_namespace" "fire_planner" {
-  metadata {
-    name = local.namespace
-    labels = {
-      tier              = local.tiers.aux
-      "istio-injection" = "disabled"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps
-    # this label on every namespace.
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-# App secrets — the recompute-API bearer token (manual seed in Vault).
-# Seed before applying:
-#   secret/fire-planner -> property `recompute_bearer_token`
-resource "kubernetes_manifest" "external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "fire-planner-secrets"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "fire-planner-secrets"
-        template = {
-          metadata = {
-            annotations = {
-              "reloader.stakater.com/match" = "true"
-            }
-          }
-        }
-      }
-      data = [
-        {
-          secretKey = "RECOMPUTE_BEARER_TOKEN"
-          remoteRef = {
-            key      = "fire-planner"
-            property = "recompute_bearer_token"
-          }
-        },
-      ]
-    }
-  }
-  depends_on = [kubernetes_namespace.fire_planner]
-}
-
-# DB credentials from Vault database engine (rotated every 7 days).
-# Template builds the asyncpg DSN consumed by the FastAPI app + CronJob
-# as DB_CONNECTION_STRING.
-resource "kubernetes_manifest" "db_external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "fire-planner-db-creds"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-database"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "fire-planner-db-creds"
-        template = {
-          metadata = {
-            annotations = {
-              "reloader.stakater.com/match" = "true"
-            }
-          }
-          data = {
-            DB_CONNECTION_STRING = "postgresql+asyncpg://fire_planner:{{ .password }}@${var.postgresql_host}:5432/fire_planner"
-            DB_PASSWORD          = "{{ .password }}"
-          }
-        }
-      }
-      data = [{
-        secretKey = "password"
-        remoteRef = {
-          key      = "static-creds/pg-fire-planner"
-          property = "password"
-        }
-      }]
-    }
-  }
-  depends_on = [kubernetes_namespace.fire_planner]
-}
-
-resource "kubernetes_deployment" "fire_planner" {
-  metadata {
-    name      = "fire-planner"
-    namespace = kubernetes_namespace.fire_planner.metadata[0].name
-    labels = merge(local.labels, {
-      tier = local.tiers.aux
-    })
-    annotations = {
-      "reloader.stakater.com/search" = "true"
-    }
-  }
-
-  spec {
-    replicas = 1
-    strategy {
-      type = "Recreate"
-    }
-
-    selector {
-      match_labels = local.labels
-    }
-
-    template {
-      metadata {
-        labels = local.labels
-        annotations = {
-          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432"
-        }
-      }
-
-      spec {
-        image_pull_secrets {
-          name = "registry-credentials"
-        }
-
-        init_container {
-          name    = "alembic-migrate"
-          image   = local.image
-          command = ["python", "-m", "fire_planner", "migrate"]
-
-          env_from {
-            secret_ref {
-              name = "fire-planner-db-creds"
-            }
-          }
-
-          resources {
-            requests = {
-              cpu    = "50m"
-              memory = "256Mi"
-            }
-            limits = {
-              memory = "512Mi"
-            }
-          }
-        }
-
-        container {
-          name  = "fire-planner"
-          image = local.image
-
-          command = ["python", "-m", "fire_planner", "serve"]
-
-          port {
-            container_port = 8080
-          }
-
-          env_from {
-            secret_ref {
-              name = "fire-planner-secrets"
-            }
-          }
-          env_from {
-            secret_ref {
-              name = "fire-planner-db-creds"
-            }
-          }
-
-          readiness_probe {
-            http_get {
-              path = "/healthz"
-              port = 8080
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-          }
-
-          liveness_probe {
-            http_get {
-              path = "/healthz"
-              port = 8080
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-          }
-
-          resources {
-            requests = {
-              cpu    = "100m"
-              memory = "512Mi"
-            }
-            limits = {
-              memory = "1024Mi"
-            }
-          }
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
-
-  depends_on = [
-    kubernetes_manifest.external_secret,
-    kubernetes_manifest.db_external_secret,
-  ]
-}
-
-# ClusterIP-only — /recompute is cluster-internal (operator triggers
-# via kubectl port-forward or ad-hoc CronJob).
-resource "kubernetes_service" "fire_planner" {
-  metadata {
-    name      = "fire-planner"
-    namespace = kubernetes_namespace.fire_planner.metadata[0].name
-    labels    = local.labels
-  }
-
-  spec {
-    type     = "ClusterIP"
-    selector = local.labels
-
-    port {
-      name        = "http"
-      port        = 8080
-      target_port = 8080
-    }
-  }
-}
-
-# Monthly recompute on the 2nd at 09:00 UTC. Wealthfolio-sync runs on
-# the 1st at 08:00, so account_snapshot is fresh by the time the
-# planner picks up.
-resource "kubernetes_cron_job_v1" "fire_planner_recompute" {
-  metadata {
-    name      = "fire-planner-recompute"
-    namespace = kubernetes_namespace.fire_planner.metadata[0].name
-  }
-  spec {
-    schedule                      = "0 9 2 * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 5
-    starting_deadline_seconds     = 600
-
-    job_template {
-      metadata {
-        labels = local.labels
-      }
-      spec {
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 86400
-        template {
-          metadata {
-            labels = local.labels
-          }
-          spec {
-            restart_policy = "OnFailure"
-            image_pull_secrets {
-              name = "registry-credentials"
-            }
-            container {
-              name    = "recompute"
-              image   = local.image
-              command = ["python", "-m", "fire_planner", "recompute-all"]
-
-              env_from {
-                secret_ref {
-                  name = "fire-planner-secrets"
-                }
-              }
-              env_from {
-                secret_ref {
-                  name = "fire-planner-db-creds"
-                }
-              }
-
-              resources {
-                requests = {
-                  cpu    = "200m"
-                  memory = "1Gi"
-                }
-                limits = {
-                  memory = "2Gi"
-                }
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-
-  depends_on = [
-    kubernetes_manifest.external_secret,
-    kubernetes_manifest.db_external_secret,
-  ]
-}
-
-# Plan-time read of the ESO-created K8s Secret for Grafana datasource
-# password. First-apply gotcha: must
-# `terragrunt apply -target=kubernetes_manifest.db_external_secret` so
-# the Secret exists before this data source plans.
-data "kubernetes_secret" "fire_planner_db_creds" {
-  metadata {
-    name      = "fire-planner-db-creds"
-    namespace = kubernetes_namespace.fire_planner.metadata[0].name
-  }
-  depends_on = [kubernetes_manifest.db_external_secret]
-}
-
-# Grafana datasource for fire_planner PostgreSQL DB.
-# Lives in the monitoring namespace so the grafana sidecar
-# (label grafana_datasource=1) picks it up.
-#
-# Grafana 11.2+ Postgres plugin reads the DB name from jsonData.database;
-# the top-level `database` field is silently ignored by the frontend and
-# triggers "you do not have default database" on every panel.
-# See github.com/grafana/grafana#112418 — same fix as the payslip-ingest
-# datasource (commit cc56ba29).
-resource "kubernetes_config_map" "grafana_fire_planner_datasource" {
-  metadata {
-    name      = "grafana-fire-planner-datasource"
-    namespace = "monitoring"
-    labels = {
-      grafana_datasource = "1"
-    }
-  }
-  data = {
-    "fire-planner-datasource.yaml" = yamlencode({
-      apiVersion = 1
-      datasources = [{
-        name   = "FirePlanner"
-        type   = "postgres"
-        access = "proxy"
-        url    = "${var.postgresql_host}:5432"
-        user   = "fire_planner"
-        uid    = "fire-planner-pg"
-        jsonData = {
-          database        = "fire_planner"
-          sslmode         = "disable"
-          postgresVersion = 1600
-          timescaledb     = false
-        }
-        secureJsonData = {
-          password = data.kubernetes_secret.fire_planner_db_creds.data["DB_PASSWORD"]
-        }
-        editable = true
-      }]
-    })
-  }
-}
diff --git a/stacks/fire-planner/terragrunt.hcl b/stacks/fire-planner/terragrunt.hcl
deleted file mode 100644
index c1d2e468..00000000
--- a/stacks/fire-planner/terragrunt.hcl
+++ /dev/null
@@ -1,28 +0,0 @@
-include "root" {
-  path = find_in_parent_folders()
-}
-
-dependency "platform" {
-  config_path  = "../platform"
-  skip_outputs = true
-}
-
-dependency "vault" {
-  config_path  = "../vault"
-  skip_outputs = true
-}
-
-dependency "external-secrets" {
-  config_path  = "../external-secrets"
-  skip_outputs = true
-}
-
-dependency "dbaas" {
-  config_path  = "../dbaas"
-  skip_outputs = true
-}
-
-inputs = {
-  # fire-planner repo HEAD — bump on every deploy.
-  image_tag = "latest"
-}
diff --git a/stacks/foolery/main.tf b/stacks/foolery/main.tf
index f54ec8ed..fd2e519a 100644
--- a/stacks/foolery/main.tf
+++ b/stacks/foolery/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "foolery" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
diff --git a/stacks/forgejo/cleanup.tf b/stacks/forgejo/cleanup.tf
deleted file mode 100644
index add332d3..00000000
--- a/stacks/forgejo/cleanup.tf
+++ /dev/null
@@ -1,123 +0,0 @@
-# Forgejo container-package retention CronJob.
-#
-# Forgejo's per-package "Cleanup Rules" UI is not exposed via Terraform —
-# it's per-user runtime state inside the Forgejo DB. Driving retention from
-# a CronJob hitting the public API keeps the policy versioned in this repo.
-#
-# Auth: a write:package PAT belonging to ci-pusher (same user that pushes
-# from CI). DELETE on packages requires write:package scope. PAT lives in
-# Vault at secret/viktor/forgejo_cleanup_token.
-
-data "vault_kv_secret_v2" "forgejo_viktor" {
-  mount = "secret"
-  name  = "viktor"
-}
-
-locals {
-  # Flip to false after first 7 days of dry-run logs look correct.
-  forgejo_cleanup_dry_run = true
-}
-
-resource "kubernetes_config_map" "forgejo_cleanup_script" {
-  metadata {
-    name      = "forgejo-cleanup-script"
-    namespace = kubernetes_namespace.forgejo.metadata[0].name
-  }
-  data = {
-    "cleanup.sh" = file("${path.module}/files/cleanup.sh")
-  }
-}
-
-resource "kubernetes_secret" "forgejo_cleanup_token" {
-  metadata {
-    name      = "forgejo-cleanup-token"
-    namespace = kubernetes_namespace.forgejo.metadata[0].name
-  }
-  type = "Opaque"
-  data = {
-    # try() so the apply succeeds before the Vault key is populated during
-    # Phase 0 bootstrap (see docs/runbooks/forgejo-registry-setup.md). Empty
-    # token causes the cleanup CronJob to fail visibly — that's intended.
-    FORGEJO_TOKEN = try(data.vault_kv_secret_v2.forgejo_viktor.data["forgejo_cleanup_token"], "")
-  }
-}
-
-resource "kubernetes_cron_job_v1" "forgejo_cleanup" {
-  metadata {
-    name      = "forgejo-cleanup"
-    namespace = kubernetes_namespace.forgejo.metadata[0].name
-  }
-  spec {
-    concurrency_policy            = "Forbid"
-    schedule                      = "0 4 * * *"
-    failed_jobs_history_limit     = 3
-    successful_jobs_history_limit = 3
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 3600
-        template {
-          metadata {}
-          spec {
-            container {
-              name    = "cleanup"
-              image   = "docker.io/library/alpine:3.20"
-              command = ["/bin/sh", "/scripts/cleanup.sh"]
-              env {
-                name = "FORGEJO_TOKEN"
-                value_from {
-                  secret_key_ref {
-                    name = kubernetes_secret.forgejo_cleanup_token.metadata[0].name
-                    key  = "FORGEJO_TOKEN"
-                  }
-                }
-              }
-              env {
-                name  = "FORGEJO_HOST"
-                value = "http://forgejo.forgejo.svc.cluster.local"
-              }
-              env {
-                name  = "FORGEJO_OWNER"
-                value = "viktor"
-              }
-              env {
-                name  = "KEEP_LAST_N"
-                value = "10"
-              }
-              env {
-                name  = "DRY_RUN"
-                value = local.forgejo_cleanup_dry_run ? "true" : "false"
-              }
-              volume_mount {
-                name       = "scripts"
-                mount_path = "/scripts"
-              }
-              resources {
-                requests = {
-                  cpu    = "10m"
-                  memory = "32Mi"
-                }
-                limits = {
-                  memory = "96Mi"
-                }
-              }
-            }
-            volume {
-              name = "scripts"
-              config_map {
-                name         = kubernetes_config_map.forgejo_cleanup_script.metadata[0].name
-                default_mode = "0755"
-              }
-            }
-            restart_policy = "OnFailure"
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/forgejo/files/cleanup.sh b/stacks/forgejo/files/cleanup.sh
deleted file mode 100644
index 61bb7a96..00000000
--- a/stacks/forgejo/files/cleanup.sh
+++ /dev/null
@@ -1,109 +0,0 @@
-#!/bin/sh
-# Forgejo container-package retention.
-#
-# For each container package owned by ${FORGEJO_OWNER}, keep newest
-# ${KEEP_LAST_N} versions + always keep tag "latest". Deletes the rest via
-# DELETE /api/v1/packages/{owner}/container/{name}/{version}.
-#
-# DRY_RUN=true logs what would be deleted but issues no DELETE calls.
-#
-# Required env:
-#   FORGEJO_HOST   e.g. http://forgejo.forgejo.svc.cluster.local
-#   FORGEJO_OWNER  e.g. viktor
-#   FORGEJO_USER   PAT owner (write:package scope)
-#   FORGEJO_TOKEN  PAT
-#   KEEP_LAST_N    integer (default 10)
-#   DRY_RUN        true|false (default true)
-
-set -eu
-
-apk add --no-cache curl jq >/dev/null
-
-OWNER="${FORGEJO_OWNER}"
-KEEP="${KEEP_LAST_N:-10}"
-DRY="${DRY_RUN:-true}"
-BASE="${FORGEJO_HOST%/}/api/v1"
-
-AUTH_HEADER="Authorization: token $FORGEJO_TOKEN"
-
-echo "Forgejo cleanup: owner=$OWNER keep_last=$KEEP dry_run=$DRY"
-echo "API base: $BASE"
-
-# Page through ALL container packages.
-TMPDIR=$(mktemp -d)
-trap 'rm -rf "$TMPDIR"' EXIT
-ALL="$TMPDIR/all.json"
-echo "[]" > "$ALL"
-
-PAGE=1
-while :; do
-  RESP=$(curl -sf -H "$AUTH_HEADER" \
-    "$BASE/packages/$OWNER?type=container&limit=50&page=$PAGE")
-  COUNT=$(echo "$RESP" | jq 'length')
-  if [ "$COUNT" = "0" ]; then break; fi
-  jq -s '.[0] + .[1]' "$ALL" <(echo "$RESP") > "$TMPDIR/merged.json"
-  mv "$TMPDIR/merged.json" "$ALL"
-  PAGE=$((PAGE + 1))
-  # Safety: never run away.
-  if [ "$PAGE" -gt 100 ]; then break; fi
-done
-
-TOTAL=$(jq 'length' "$ALL")
-echo "Found $TOTAL package version(s)."
-
-if [ "$TOTAL" = "0" ]; then
-  echo "Nothing to do."
-  exit 0
-fi
-
-# Group by name and process each group.
-NAMES=$(jq -r '.[].name' "$ALL" | sort -u)
-
-DEL=0
-KEPT=0
-
-for NAME in $NAMES; do
-  # All versions of this name, sorted by created_at descending.
-  jq --arg n "$NAME" '
-    [.[] | select(.name == $n)]
-    | sort_by(.created_at) | reverse
-  ' "$ALL" > "$TMPDIR/$NAME.json"
-
-  N_VERSIONS=$(jq 'length' "$TMPDIR/$NAME.json")
-  echo "[$NAME] $N_VERSIONS version(s)"
-
-  # Build the keep set: top $KEEP + anything tagged 'latest'.
-  jq -r --argjson keep "$KEEP" '
-    [.[0:$keep][].version] + [.[] | select(.version == "latest") | .version]
-    | unique
-    | .[]
-  ' "$TMPDIR/$NAME.json" > "$TMPDIR/$NAME.keep"
-
-  # Build the delete set.
-  jq -r '.[].version' "$TMPDIR/$NAME.json" \
-    | grep -vxFf "$TMPDIR/$NAME.keep" > "$TMPDIR/$NAME.delete" || true
-
-  D_COUNT=$(wc -l < "$TMPDIR/$NAME.delete" | tr -d ' ')
-  K_COUNT=$(wc -l < "$TMPDIR/$NAME.keep" | tr -d ' ')
-  echo "  keep=$K_COUNT delete=$D_COUNT"
-  KEPT=$((KEPT + K_COUNT))
-
-  while IFS= read -r VER; do
-    [ -z "$VER" ] && continue
-    URL="$BASE/packages/$OWNER/container/$NAME/$VER"
-    if [ "$DRY" = "true" ]; then
-      echo "  DRY_RUN would DELETE $URL"
-    else
-      HTTP=$(curl -s -o /dev/null -w '%{http_code}' \
-        -X DELETE -H "$AUTH_HEADER" "$URL" || echo "000")
-      if [ "$HTTP" = "204" ] || [ "$HTTP" = "200" ]; then
-        echo "  deleted $NAME:$VER"
-      else
-        echo "  FAIL $NAME:$VER HTTP $HTTP"
-      fi
-    fi
-    DEL=$((DEL + 1))
-  done < "$TMPDIR/$NAME.delete"
-done
-
-echo "Summary: kept=$KEPT to_delete=$DEL dry_run=$DRY"
diff --git a/stacks/forgejo/main.tf b/stacks/forgejo/main.tf
index fdd2fadf..1ae871a4 100644
--- a/stacks/forgejo/main.tf
+++ b/stacks/forgejo/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "forgejo" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -32,7 +28,7 @@ resource "kubernetes_persistent_volume_claim" "data_encrypted" {
     annotations = {
       "resize.topolvm.io/threshold"     = "80%"
       "resize.topolvm.io/increase"      = "50%"
-      "resize.topolvm.io/storage_limit" = "50Gi"
+      "resize.topolvm.io/storage_limit" = "20Gi"
     }
   }
   spec {
@@ -40,7 +36,7 @@ resource "kubernetes_persistent_volume_claim" "data_encrypted" {
     storage_class_name = "proxmox-lvm-encrypted"
     resources {
       requests = {
-        storage = "15Gi"
+        storage = "5Gi"
       }
     }
   }
@@ -72,14 +68,6 @@ resource "kubernetes_deployment" "forgejo" {
         }
       }
       spec {
-        # fsGroup chowns the mounted PVC to GID 1000 (the forgejo user) on
-        # mount. Without this, /data is owned by root and the
-        # `[packages].CHUNKED_UPLOAD_PATH` default at /data/tmp is not
-        # writable, crashlooping the pod when packages is enabled. Pre-23-day
-        # Forgejo ran without packages on so this never surfaced.
-        security_context {
-          fs_group = 1000
-        }
         container {
           name  = "forgejo"
           image = "codeberg.org/forgejo/forgejo:11"
@@ -109,30 +97,10 @@ resource "kubernetes_deployment" "forgejo" {
             name  = "FORGEJO__openid__ENABLE_OPENID_SIGNIN"
             value = "false"
           }
-          # Allow webhook delivery to internal k8s services AND to the public
-          # ingress hostnames Forgejo's own webhooks point to (ci.viktorbarzin.me
-          # for Woodpecker pipelines).
+          # Allow webhook delivery to internal k8s services
           env {
             name  = "FORGEJO__webhook__ALLOWED_HOST_LIST"
-            value = "*.svc.cluster.local,ci.viktorbarzin.me,*.viktorbarzin.me"
-          }
-          # Default DELIVER_TIMEOUT is 5s — too tight for the Cloudflare-tunnel
-          # round-trip on first request after pod restart (cold TLS handshake
-          # can hit 6-8s). 30s comfortably covers retries.
-          env {
-            name  = "FORGEJO__webhook__DELIVER_TIMEOUT"
-            value = "30"
-          }
-          # OCI registry (container packages). Default-on in Forgejo v11 but
-          # explicit so it can't be silently disabled by an upstream config
-          # change. CHUNKED_UPLOAD_PATH defaults to `data/tmp/package-upload`
-          # under Forgejo's AppDataPath (resolves to a writable subdir of
-          # /data/gitea/) — overriding to /data/tmp directly hits a perms
-          # issue because /data is the volume mount root and is not chowned
-          # to the forgejo user.
-          env {
-            name  = "FORGEJO__packages__ENABLED"
-            value = "true"
+            value = "*.svc.cluster.local"
           }
           volume_mount {
             name       = "data"
@@ -141,10 +109,10 @@ resource "kubernetes_deployment" "forgejo" {
           resources {
             requests = {
               cpu    = "15m"
-              memory = "1Gi"
+              memory = "384Mi"
             }
             limits = {
-              memory = "1Gi"
+              memory = "384Mi"
             }
           }
           port {
@@ -162,10 +130,6 @@ resource "kubernetes_deployment" "forgejo" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "forgejo" {
@@ -193,16 +157,12 @@ module "ingress" {
   namespace       = kubernetes_namespace.forgejo.metadata[0].name
   name            = "forgejo"
   tls_secret_name = var.tls_secret_name
-  # OCI registry pushes ship full image layer blobs in one request; default
-  # Traefik buffering chokes on anything past a few hundred MB.
-  max_body_size = "5g"
   extra_annotations = {
-    "gethomepage.dev/enabled"                      = "true"
-    "gethomepage.dev/name"                         = "Forgejo"
-    "gethomepage.dev/description"                  = "Git hosting"
-    "gethomepage.dev/icon"                         = "forgejo.png"
-    "gethomepage.dev/group"                        = "Development & CI"
-    "gethomepage.dev/pod-selector"                 = ""
-    "uptime.viktorbarzin.me/external-monitor-path" = "/api/healthz"
+    "gethomepage.dev/enabled"      = "true"
+    "gethomepage.dev/name"         = "Forgejo"
+    "gethomepage.dev/description"  = "Git hosting"
+    "gethomepage.dev/icon"         = "forgejo.png"
+    "gethomepage.dev/group"        = "Development & CI"
+    "gethomepage.dev/pod-selector" = ""
   }
 }
diff --git a/stacks/freedify/factory/main.tf b/stacks/freedify/factory/main.tf
index e2158d4c..353646e0 100755
--- a/stacks/freedify/factory/main.tf
+++ b/stacks/freedify/factory/main.tf
@@ -105,8 +105,7 @@ resource "kubernetes_deployment" "freedify" {
           name = "registry-credentials"
         }
         container {
-          # Phase 3 cutover 2026-05-07 — Forgejo registry consolidation.
-          image = "forgejo.viktorbarzin.me/viktor/freedify:${var.tag}"
+          image = "registry.viktorbarzin.me/freedify:${var.tag}"
           name  = "freedify"
 
           port {
@@ -194,7 +193,7 @@ resource "kubernetes_deployment" "freedify" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/freedify/main.tf b/stacks/freedify/main.tf
index 0c37bab8..4ba778df 100644
--- a/stacks/freedify/main.tf
+++ b/stacks/freedify/main.tf
@@ -44,7 +44,7 @@ locals {
 
 # To create a new deployment:
 /**
-  1. Create a subdirectory {name} under /srv/nfs/freedify on the Proxmox host (192.168.1.127)
+  1. Export a new nfs share with {name} in truenas at /mnt/main/freedify/{name}
   2. Add {name} as proxied cloudflare route (tfvars)
   3. Add module here
 */
@@ -57,10 +57,6 @@ resource "kubernetes_namespace" "freedify" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
diff --git a/stacks/freshrss/main.tf b/stacks/freshrss/main.tf
index dca27cd7..2a839baf 100644
--- a/stacks/freshrss/main.tf
+++ b/stacks/freshrss/main.tf
@@ -10,10 +10,6 @@ resource "kubernetes_namespace" "immich" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -188,10 +184,6 @@ resource "kubernetes_deployment" "freshrss" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "freshrss" {
diff --git a/stacks/frigate/main.tf b/stacks/frigate/main.tf
index 489daa63..d9966913 100644
--- a/stacks/frigate/main.tf
+++ b/stacks/frigate/main.tf
@@ -15,10 +15,6 @@ resource "kubernetes_namespace" "frigate" {
     #   "istio-injection" : "enabled"
     # }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -87,7 +83,7 @@ resource "kubernetes_deployment" "frigate" {
       }
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : true
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -223,10 +219,6 @@ for name, det in stats.get('detectors', {}).items():
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "frigate" {
diff --git a/stacks/grampsweb/main.tf b/stacks/grampsweb/main.tf
index 874d3b81..5d2d0abd 100644
--- a/stacks/grampsweb/main.tf
+++ b/stacks/grampsweb/main.tf
@@ -43,6 +43,7 @@ locals {
   mailserver_accounts = jsondecode(data.kubernetes_secret.eso_secrets.data["mailserver_accounts"])
 }
 variable "redis_host" { type = string }
+variable "ollama_host" { type = string }
 variable "mail_host" { type = string }
 
 
@@ -53,10 +54,6 @@ resource "kubernetes_namespace" "grampsweb" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -65,10 +62,10 @@ module "tls_secret" {
   tls_secret_name = var.tls_secret_name
 }
 
-resource "kubernetes_persistent_volume_claim" "data_encrypted" {
+resource "kubernetes_persistent_volume_claim" "data_proxmox" {
   wait_until_bound = false
   metadata {
-    name      = "grampsweb-data-encrypted"
+    name      = "grampsweb-data-proxmox"
     namespace = kubernetes_namespace.grampsweb.metadata[0].name
     annotations = {
       "resize.topolvm.io/threshold"     = "80%"
@@ -78,7 +75,7 @@ resource "kubernetes_persistent_volume_claim" "data_encrypted" {
   }
   spec {
     access_modes       = ["ReadWriteOnce"]
-    storage_class_name = "proxmox-lvm-encrypted"
+    storage_class_name = "proxmox-lvm"
     resources {
       requests = {
         storage = "1Gi"
@@ -150,6 +147,14 @@ locals {
       name  = "GRAMPSWEB_DEFAULT_FROM_EMAIL"
       value = "info@viktorbarzin.me"
     },
+    {
+      name  = "GRAMPSWEB_LLM_BASE_URL"
+      value = "http://${var.ollama_host}:11434/v1"
+    },
+    {
+      name  = "GRAMPSWEB_LLM_MODEL"
+      value = "llama3.1"
+    },
   ]
 }
 
@@ -180,7 +185,7 @@ resource "kubernetes_deployment" "grampsweb" {
           app = "grampsweb"
         }
         annotations = {
-          "dependency.kyverno.io/wait-for" = "redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "redis.redis:6379"
         }
       }
       spec {
@@ -320,16 +325,12 @@ resource "kubernetes_deployment" "grampsweb" {
         volume {
           name = "data"
           persistent_volume_claim {
-            claim_name = kubernetes_persistent_volume_claim.data_encrypted.metadata[0].name
+            claim_name = kubernetes_persistent_volume_claim.data_proxmox.metadata[0].name
           }
         }
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "grampsweb" {
@@ -354,14 +355,13 @@ resource "kubernetes_service" "grampsweb" {
 }
 
 module "ingress" {
-  source           = "../../modules/kubernetes/ingress_factory"
-  namespace        = kubernetes_namespace.grampsweb.metadata[0].name
-  name             = "family"
-  service_name     = "grampsweb"
-  tls_secret_name  = var.tls_secret_name
-  max_body_size    = "500m"
-  protected        = true
-  external_monitor = false
+  source          = "../../modules/kubernetes/ingress_factory"
+  namespace       = kubernetes_namespace.grampsweb.metadata[0].name
+  name            = "family"
+  service_name    = "grampsweb"
+  tls_secret_name = var.tls_secret_name
+  max_body_size   = "500m"
+  protected       = true
   extra_annotations = {
     "gethomepage.dev/enabled"      = "true"
     "gethomepage.dev/name"         = "GrampsWeb"
diff --git a/stacks/hackmd/main.tf b/stacks/hackmd/main.tf
index 2eb31cdd..a6e2ffc7 100644
--- a/stacks/hackmd/main.tf
+++ b/stacks/hackmd/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "hackmd" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -164,10 +160,6 @@ resource "kubernetes_deployment" "hackmd" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "hackmd" {
diff --git a/stacks/headscale/modules/headscale/main.tf b/stacks/headscale/modules/headscale/main.tf
index a628085d..ab78f7b9 100644
--- a/stacks/headscale/modules/headscale/main.tf
+++ b/stacks/headscale/modules/headscale/main.tf
@@ -28,10 +28,6 @@ resource "kubernetes_namespace" "headscale" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -249,10 +245,6 @@ resource "kubernetes_deployment" "headscale" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 resource "kubernetes_service" "headscale" {
   metadata {
@@ -490,10 +482,6 @@ resource "kubernetes_cron_job_v1" "headscale_backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Grafana dashboard
diff --git a/stacks/health/main.tf b/stacks/health/main.tf
index 494236f3..0b1c7758 100644
--- a/stacks/health/main.tf
+++ b/stacks/health/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "health" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -145,10 +141,6 @@ resource "kubernetes_deployment" "health" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "health" {
diff --git a/stacks/hermes-agent/main.tf b/stacks/hermes-agent/main.tf
index 0881932f..cd8e840a 100644
--- a/stacks/hermes-agent/main.tf
+++ b/stacks/hermes-agent/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "hermes_agent" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -220,8 +216,7 @@ resource "kubernetes_deployment" "hermes_agent" {
     strategy {
       type = "Recreate"
     }
-    # Disabled 2026-04-22 — main container fails with "mkdir: cannot create directory '/opt/data': Permission denied" (fsGroup/runAsUser mismatch vs init container). Re-enable after fixing PVC permissions.
-    replicas = 0
+    replicas = 1
     selector {
       match_labels = {
         app = "hermes-agent"
@@ -379,7 +374,7 @@ resource "kubernetes_deployment" "hermes_agent" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/homepage/INGRESS_WIDGET_MAPPING.md b/stacks/homepage/INGRESS_WIDGET_MAPPING.md
index 923aa4fc..8d61e7e0 100644
--- a/stacks/homepage/INGRESS_WIDGET_MAPPING.md
+++ b/stacks/homepage/INGRESS_WIDGET_MAPPING.md
@@ -62,6 +62,9 @@ Widget-capable matches (candidate): **27**
 | `nextcloud` | `whiteboard` | `https://whiteboard.viktorbarzin.me` | `nextcloud` |
 | `ntfy` | `ntfy` | `https://ntfy.viktorbarzin.me` | `link-only` |
 | `nvidia` | `nvidia-exporter` | `https://nvidia-exporter.viktorbarzin.lan` | `link-only` |
+| `ollama` | `ollama` | `https://ollama.viktorbarzin.me` | `link-only` |
+| `ollama` | `ollama-api` | `https://ollama-api.viktorbarzin.me` | `link-only` |
+| `ollama` | `ollama-server` | `https://ollama-server.viktorbarzin.lan` | `link-only` |
 | `onlyoffice` | `onlyoffice` | `https://onlyoffice.viktorbarzin.me` | `link-only` |
 | `openclaw` | `openclaw` | `https://openclaw.viktorbarzin.me` | `link-only` |
 | `owntracks` | `owntracks` | `https://owntracks.viktorbarzin.me` | `link-only` |
@@ -85,6 +88,7 @@ Widget-capable matches (candidate): **27**
 | `reverse-proxy` | `proxmox` | `https://proxmox.viktorbarzin.me` | `link-only` |
 | `reverse-proxy` | `r730` | `https://r730.viktorbarzin.me` | `link-only` |
 | `reverse-proxy` | `registry` | `https://registry.viktorbarzin.me` | `link-only` |
+| `reverse-proxy` | `truenas` | `https://truenas.viktorbarzin.me` | `truenas` |
 | `reverse-proxy` | `valchedrym` | `https://valchedrym.viktorbarzin.me` | `link-only` |
 | `rybbit` | `rybbit` | `https://rybbit.viktorbarzin.me` | `link-only` |
 | `send` | `send` | `https://send.viktorbarzin.me` | `link-only` |
diff --git a/stacks/homepage/main.tf b/stacks/homepage/main.tf
index 007f7533..3cd4d633 100644
--- a/stacks/homepage/main.tf
+++ b/stacks/homepage/main.tf
@@ -18,10 +18,6 @@ resource "kubernetes_namespace" "homepage" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "homepage" {
@@ -117,10 +113,6 @@ resource "kubernetes_deployment" "cache_proxy" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "cache_proxy" {
diff --git a/stacks/immich/chart_values.tpl b/stacks/immich/chart_values.tpl
index f46def86..882cada4 100644
--- a/stacks/immich/chart_values.tpl
+++ b/stacks/immich/chart_values.tpl
@@ -9,7 +9,7 @@ defaultPodOptions:
 
 env:
   # REDIS_HOSTNAME: '{{ printf "%s-redis-master" .Release.Name }}'
-  REDIS_HOSTNAME: "redis-master.redis.svc.cluster.local"
+  REDIS_HOSTNAME: "redis.redis.svc.cluster.local"
   # DB_HOSTNAME: "postgresql.dbaas"
   # DB_USERNAME: "immich"
   # DB_DATABASE_NAME: "immich"
diff --git a/stacks/immich/frame.tf b/stacks/immich/frame.tf
index acd5fdbe..5e3ea8ca 100644
--- a/stacks/immich/frame.tf
+++ b/stacks/immich/frame.tf
@@ -95,10 +95,6 @@ resource "kubernetes_deployment" "immich-frame" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 
diff --git a/stacks/immich/main.tf b/stacks/immich/main.tf
index 0555b653..2cd804d2 100644
--- a/stacks/immich/main.tf
+++ b/stacks/immich/main.tf
@@ -85,30 +85,6 @@ module "nfs_postgresql_host" {
   nfs_path   = "/srv/nfs/immich/postgresql"
 }
 
-# Migrated 2026-04-25: PG live data moved off NFS to LUKS-encrypted block.
-# WAL fsync per commit on NFS contributed to the 2026-04-22 NFS writeback storm
-# (see post-mortems/2026-04-22-vault-raft-leader-deadlock.md).
-# Backup CronJob still writes to module.nfs_postgresql_host (NFS append-only).
-resource "kubernetes_persistent_volume_claim" "immich_postgresql_encrypted" {
-  wait_until_bound = false
-  metadata {
-    name      = "immich-postgresql-data-encrypted"
-    namespace = kubernetes_namespace.immich.metadata[0].name
-    annotations = {
-      "resize.topolvm.io/threshold"     = "80%"
-      "resize.topolvm.io/increase"      = "100%"
-      "resize.topolvm.io/storage_limit" = "20Gi"
-    }
-  }
-  spec {
-    access_modes       = ["ReadWriteOnce"]
-    storage_class_name = "proxmox-lvm-encrypted"
-    resources {
-      requests = { storage = "10Gi" }
-    }
-  }
-}
-
 module "nfs_ml_cache_host" {
   source     = "../../modules/kubernetes/nfs_volume"
   name       = "immich-ml-cache-host"
@@ -121,33 +97,7 @@ resource "kubernetes_namespace" "immich" {
   metadata {
     name = "immich"
     labels = {
-      # Opts immich out of kyverno's `quota-tier-2-gpu` generation rule
-      # so this stack can own the tier-quota with a higher memory cap.
-      "resource-governance/custom-quota" = "true"
-      tier                               = local.tiers.gpu
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-# Override the kyverno-generated tier-2-gpu quota (12Gi requests.memory).
-# Immich-server needs 8Gi to absorb face-detection burst spikes (OOM 2026-04-26)
-# without OOM. Plus immich-machine-learning (3.5Gi) + immich-postgresql (3Gi) +
-# backup CronJobs ≈ 15.5Gi. 20Gi gives ~4.5Gi headroom.
-resource "kubernetes_resource_quota" "immich" {
-  metadata {
-    name      = "tier-quota"
-    namespace = kubernetes_namespace.immich.metadata[0].name
-  }
-  spec {
-    hard = {
-      "requests.cpu"    = "8"
-      "requests.memory" = "20Gi"
-      "limits.memory"   = "32Gi"
-      pods              = "40"
+      tier = local.tiers.gpu
     }
   }
 }
@@ -195,7 +145,7 @@ resource "kubernetes_deployment" "immich_server" {
 
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1
+      spec[0].template[0].spec[0].dns_config,
     ]
   }
 
@@ -210,7 +160,7 @@ resource "kubernetes_deployment" "immich_server" {
     }
 
     strategy {
-      type = "Recreate"
+      type = "RollingUpdate"
     }
 
     template {
@@ -333,10 +283,10 @@ resource "kubernetes_deployment" "immich_server" {
           resources {
             requests = {
               cpu    = "100m"
-              memory = "8Gi"
+              memory = "2000Mi"
             }
             limits = {
-              memory = "8Gi"
+              memory = "3500Mi"
             }
           }
         }
@@ -423,7 +373,7 @@ resource "kubernetes_deployment" "immich-postgres" {
 
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1
+      spec[0].template[0].spec[0].dns_config,
     ]
   }
 
@@ -508,13 +458,6 @@ resource "kubernetes_deployment" "immich-postgres" {
           name  = "write-pg-override-conf"
           image = "busybox:1.36"
           command = ["sh", "-c", <<-EOT
-            # Skip write on uninitialised PGDATA — initdb refuses non-empty dirs.
-            # On first boot the override is absent; trigger a pod restart after
-            # initdb completes so the override is applied before extension load.
-            if [ ! -f /data/PG_VERSION ]; then
-              echo "PGDATA uninitialised, skipping override conf (will write on next pod start)"
-              exit 0
-            fi
             cat > /data/postgresql.override.conf <<'PGCONF'
             # Immich vector search performance tuning
             shared_buffers = 2048MB
@@ -534,7 +477,7 @@ resource "kubernetes_deployment" "immich-postgres" {
         volume {
           name = "postgresql-persistent-storage"
           persistent_volume_claim {
-            claim_name = kubernetes_persistent_volume_claim.immich_postgresql_encrypted.metadata[0].name
+            claim_name = module.nfs_postgresql_host.claim_name
           }
         }
       }
@@ -589,7 +532,7 @@ resource "kubernetes_deployment" "immich-machine-learning" {
 
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1
+      spec[0].template[0].spec[0].dns_config,
     ]
   }
 
@@ -601,7 +544,7 @@ resource "kubernetes_deployment" "immich-machine-learning" {
       }
     }
     strategy {
-      type = "Recreate"
+      type = "RollingUpdate"
     }
     template {
       metadata {
@@ -612,7 +555,7 @@ resource "kubernetes_deployment" "immich-machine-learning" {
       spec {
         priority_class_name = "gpu-workload"
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -835,10 +778,6 @@ resource "kubernetes_cron_job_v1" "postgresql-backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # POWER TOOLS
diff --git a/stacks/infra-maintenance/modules/infra-maintenance/main.tf b/stacks/infra-maintenance/modules/infra-maintenance/main.tf
index 3f794a06..ca4605df 100644
--- a/stacks/infra-maintenance/modules/infra-maintenance/main.tf
+++ b/stacks/infra-maintenance/modules/infra-maintenance/main.tf
@@ -188,10 +188,6 @@ resource "kubernetes_cron_job_v1" "backup-etcd" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Weekly etcd defragmentation — prevents fragmentation buildup that causes slow requests
@@ -246,10 +242,6 @@ resource "kubernetes_cron_job_v1" "defrag-etcd" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Clean up evicted/failed pods cluster-wide daily
@@ -285,10 +277,6 @@ resource "kubernetes_cron_job_v1" "cleanup-failed-pods" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service_account" "cleanup_sa" {
diff --git a/stacks/infra/main.tf b/stacks/infra/main.tf
index 5b2d8876..ef404685 100644
--- a/stacks/infra/main.tf
+++ b/stacks/infra/main.tf
@@ -75,13 +75,13 @@ module "k8s-node-template" {
   mkdir -p /etc/containerd/certs.d/ghcr.io
   printf 'server = "https://ghcr.io"\n\n[host."http://10.0.20.10:5010"]\n  capabilities = ["pull", "resolve"]\n\n[host."https://ghcr.io"]\n  capabilities = ["pull", "resolve"]\n' > /etc/containerd/certs.d/ghcr.io/hosts.toml
 
-  # Forgejo OCI registry: redirect to in-cluster Traefik LB (10.0.20.200) so
-  # pulls don't hairpin out through the WAN gateway. Traefik serves the
-  # *.viktorbarzin.me wildcard so SNI verification still passes.
-  # registry.viktorbarzin.me / 10.0.20.10:5050 entries removed in Phase 4 of
-  # the forgejo-registry-consolidation 2026-05-07 — registry-private is gone.
-  mkdir -p /etc/containerd/certs.d/forgejo.viktorbarzin.me
-  printf 'server = "https://forgejo.viktorbarzin.me"\n\n[host."https://10.0.20.200"]\n  capabilities = ["pull", "resolve"]\n' > /etc/containerd/certs.d/forgejo.viktorbarzin.me/hosts.toml
+  # Create hosts.toml for private registry — both IP and hostname entries
+  # IP-based (10.0.20.10:5050): direct access, skip TLS verify (wildcard cert, no IP SAN)
+  mkdir -p /etc/containerd/certs.d/10.0.20.10:5050
+  printf 'server = "https://10.0.20.10:5050"\n\n[host."https://10.0.20.10:5050"]\n  capabilities = ["pull", "resolve", "push"]\n  skip_verify = true\n' > /etc/containerd/certs.d/10.0.20.10:5050/hosts.toml
+  # Hostname-based (registry.viktorbarzin.me): redirects to LAN IP to avoid Traefik round-trip
+  mkdir -p /etc/containerd/certs.d/registry.viktorbarzin.me
+  printf 'server = "https://registry.viktorbarzin.me"\n\n[host."https://10.0.20.10:5050"]\n  capabilities = ["pull", "resolve", "push"]\n  skip_verify = true\n' > /etc/containerd/certs.d/registry.viktorbarzin.me/hosts.toml
 
   # Low-traffic registries (registry.k8s.io, quay.io, reg.kyverno.io) pull directly.
   # Pull-through cache removed: caused corrupted images (truncated downloads)
diff --git a/stacks/insta2spotify/main.tf b/stacks/insta2spotify/main.tf
index 88ba7e2e..9dd86586 100644
--- a/stacks/insta2spotify/main.tf
+++ b/stacks/insta2spotify/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "insta2spotify" {
       tier              = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -202,7 +198,7 @@ resource "kubernetes_deployment" "insta2spotify" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/iscsi-csi/main.tf b/stacks/iscsi-csi/main.tf
new file mode 100644
index 00000000..0cbc798d
--- /dev/null
+++ b/stacks/iscsi-csi/main.tf
@@ -0,0 +1,14 @@
+variable "nfs_server" { type = string }
+
+data "vault_kv_secret_v2" "secrets" {
+  mount = "secret"
+  name  = "platform"
+}
+
+module "iscsi-csi" {
+  source                  = "./modules/iscsi-csi"
+  tier                    = local.tiers.cluster
+  truenas_host            = var.nfs_server
+  truenas_api_key         = data.vault_kv_secret_v2.secrets.data["truenas_api_key"]
+  truenas_ssh_private_key = data.vault_kv_secret_v2.secrets.data["truenas_ssh_private_key"]
+}
diff --git a/stacks/iscsi-csi/modules/iscsi-csi/main.tf b/stacks/iscsi-csi/modules/iscsi-csi/main.tf
new file mode 100644
index 00000000..4c4a8d59
--- /dev/null
+++ b/stacks/iscsi-csi/modules/iscsi-csi/main.tf
@@ -0,0 +1,148 @@
+resource "kubernetes_namespace" "iscsi_csi" {
+  metadata {
+    name = "iscsi-csi"
+    labels = {
+      tier                                  = var.tier
+      "resource-governance/custom-quota"     = "true"
+    }
+  }
+}
+
+resource "helm_release" "democratic_csi" {
+  namespace        = kubernetes_namespace.iscsi_csi.metadata[0].name
+  create_namespace = false
+  name             = "democratic-csi-iscsi"
+  atomic           = true
+  timeout          = 300
+
+  repository = "https://democratic-csi.github.io/charts/"
+  chart      = "democratic-csi"
+
+  values = [yamlencode({
+    csiDriver = {
+      name = "org.democratic-csi.iscsi"
+    }
+
+    storageClasses = [{
+      name                 = "iscsi-truenas"
+      defaultClass         = false
+      reclaimPolicy        = "Retain"
+      volumeBindingMode    = "Immediate"
+      allowVolumeExpansion = true
+      parameters = {
+        fsType = "ext4"
+      }
+      mountOptions = []
+    }]
+
+    controller = {
+      replicas = 2
+      driver = {
+        resources = {
+          requests = { cpu = "25m", memory = "192Mi" }
+          limits   = { memory = "192Mi" }
+        }
+      }
+      externalProvisioner = {
+        resources = {
+          requests = { cpu = "5m", memory = "64Mi" }
+          limits   = { memory = "64Mi" }
+        }
+      }
+      externalAttacher = {
+        resources = {
+          requests = { cpu = "5m", memory = "64Mi" }
+          limits   = { memory = "64Mi" }
+        }
+      }
+      externalResizer = {
+        resources = {
+          requests = { cpu = "5m", memory = "64Mi" }
+          limits   = { memory = "64Mi" }
+        }
+      }
+      externalSnapshotter = {
+        resources = {
+          requests = { cpu = "5m", memory = "80Mi" }
+          limits   = { memory = "80Mi" }
+        }
+      }
+    }
+
+    # csiProxy is a top-level chart key, NOT nested under controller/node
+    csiProxy = {
+      resources = {
+        requests = { cpu = "5m", memory = "32Mi" }
+        limits   = { memory = "32Mi" }
+      }
+    }
+
+    node = {
+      driver = {
+        resources = {
+          requests = { cpu = "25m", memory = "192Mi" }
+          limits   = { memory = "192Mi" }
+        }
+      }
+      driverRegistrar = {
+        resources = {
+          requests = { cpu = "5m", memory = "32Mi" }
+          limits   = { memory = "32Mi" }
+        }
+      }
+      cleanup = {
+        resources = {
+          requests = { cpu = "5m", memory = "32Mi" }
+          limits   = { memory = "32Mi" }
+        }
+      }
+
+      hostPID  = true
+      hostPath = "/lib/modules"
+    }
+
+    driver = {
+      config = {
+        driver = "freenas-iscsi"
+
+        instance_id = "truenas-iscsi"
+
+        httpConnection = {
+          protocol = "http"
+          host     = var.truenas_host
+          port     = 80
+          apiKey   = var.truenas_api_key
+        }
+
+        sshConnection = {
+          host       = var.truenas_host
+          port       = 22
+          username   = "root"
+          privateKey = var.truenas_ssh_private_key
+        }
+
+        zfs = {
+          datasetParentName                  = "main/iscsi"
+          detachedSnapshotsDatasetParentName = "main/iscsi-snaps"
+        }
+
+        iscsi = {
+          targetPortal = "${var.truenas_host}:3260"
+          namePrefix   = "csi-"
+          nameSuffix   = ""
+          targetGroups = [{
+            targetGroupPortalGroup    = 1
+            targetGroupInitiatorGroup = 1
+            targetGroupAuthType       = "None"
+          }]
+          extentInsecureTpc              = true
+          extentXenCompat                = false
+          extentDisablePhysicalBlocksize = true
+          extentBlocksize                = 512
+          extentRpm                      = "SSD"
+          extentAvailThreshold           = 0
+        }
+      }
+    }
+  })]
+}
diff --git a/stacks/iscsi-csi/modules/iscsi-csi/variables.tf b/stacks/iscsi-csi/modules/iscsi-csi/variables.tf
new file mode 100644
index 00000000..893fe396
--- /dev/null
+++ b/stacks/iscsi-csi/modules/iscsi-csi/variables.tf
@@ -0,0 +1,10 @@
+variable "tier" { type = string }
+variable "truenas_host" { type = string }
+variable "truenas_api_key" {
+  type      = string
+  sensitive = true
+}
+variable "truenas_ssh_private_key" {
+  type      = string
+  sensitive = true
+}
diff --git a/stacks/calico/secrets b/stacks/iscsi-csi/secrets
similarity index 100%
rename from stacks/calico/secrets
rename to stacks/iscsi-csi/secrets
diff --git a/stacks/kured/terragrunt.hcl b/stacks/iscsi-csi/terragrunt.hcl
similarity index 58%
rename from stacks/kured/terragrunt.hcl
rename to stacks/iscsi-csi/terragrunt.hcl
index 0d1c8e53..4f16dddf 100644
--- a/stacks/kured/terragrunt.hcl
+++ b/stacks/iscsi-csi/terragrunt.hcl
@@ -2,7 +2,7 @@ include "root" {
   path = find_in_parent_folders()
 }
 
-dependency "platform" {
-  config_path  = "../platform"
+dependency "infra" {
+  config_path  = "../infra"
   skip_outputs = true
 }
diff --git a/stacks/isponsorblocktv/main.tf b/stacks/isponsorblocktv/main.tf
index da440bc4..606b2b66 100644
--- a/stacks/isponsorblocktv/main.tf
+++ b/stacks/isponsorblocktv/main.tf
@@ -8,10 +8,6 @@ resource "kubernetes_namespace" "isponsorblocktv" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 # Before running, setup config using 
 # docker run --rm -it -v ./youtube:/app/data -e TERM=$TERM -e COLORTERM=$COLORTERM ghcr.io/dmunozv04/isponsorblocktv --setup
@@ -91,8 +87,4 @@ resource "kubernetes_deployment" "isponsorblocktv-vermont" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/job-hunter/main.tf b/stacks/job-hunter/main.tf
deleted file mode 100644
index 8f849c33..00000000
--- a/stacks/job-hunter/main.tf
+++ /dev/null
@@ -1,342 +0,0 @@
-variable "image_tag" {
-  type        = string
-  default     = "latest"
-  description = "job-hunter image tag. Use 8-char git SHA in CI; :latest only for local trials."
-}
-
-variable "postgresql_host" { type = string }
-
-locals {
-  namespace = "job-hunter"
-  # Phase 3 cutover 2026-05-07 — see infra/docs/plans/2026-05-07-forgejo-registry-consolidation-plan.md.
-  image = "forgejo.viktorbarzin.me/viktor/job-hunter:${var.image_tag}"
-  labels = {
-    app = "job-hunter"
-  }
-}
-
-resource "kubernetes_namespace" "job_hunter" {
-  metadata {
-    name = local.namespace
-    labels = {
-      tier              = local.tiers.aux
-      "istio-injection" = "disabled"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-# App secrets — seed these in Vault before applying:
-#   secret/job-hunter
-#     webhook_bearer_token  — bearer for /webhook/cdio, /digest/generate, /refresh
-#     cdio_api_key          — changedetection.io x-api-key (copy from
-#                             `jsondecode(secret/changedetection.homepage_credentials).changedetection.api_key`)
-#     smtp_username         — SMTP sender account (mailserver)
-#     smtp_password         — SMTP password (mailserver)
-#     digest_to_address     — where the weekly digest goes
-#     digest_from_address   — From: header for the digest
-resource "kubernetes_manifest" "external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "job-hunter-secrets"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "job-hunter-secrets"
-        template = {
-          metadata = {
-            annotations = {
-              "reloader.stakater.com/match" = "true"
-            }
-          }
-        }
-      }
-      data = [
-        {
-          secretKey = "WEBHOOK_BEARER_TOKEN"
-          remoteRef = { key = "job-hunter", property = "webhook_bearer_token" }
-        },
-        {
-          secretKey = "CDIO_API_KEY"
-          remoteRef = { key = "job-hunter", property = "cdio_api_key" }
-        },
-        {
-          secretKey = "SMTP_USERNAME"
-          remoteRef = { key = "job-hunter", property = "smtp_username" }
-        },
-        {
-          secretKey = "SMTP_PASSWORD"
-          remoteRef = { key = "job-hunter", property = "smtp_password" }
-        },
-        {
-          secretKey = "DIGEST_TO_ADDRESS"
-          remoteRef = { key = "job-hunter", property = "digest_to_address" }
-        },
-        {
-          secretKey = "DIGEST_FROM_ADDRESS"
-          remoteRef = { key = "job-hunter", property = "digest_from_address" }
-        },
-      ]
-    }
-  }
-  depends_on = [kubernetes_namespace.job_hunter]
-}
-
-# DB credentials from Vault database engine (7-day rotation).
-# Template builds the asyncpg DSN consumed by the FastAPI app as DB_CONNECTION_STRING.
-resource "kubernetes_manifest" "db_external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "job-hunter-db-creds"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-database"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "job-hunter-db-creds"
-        template = {
-          metadata = {
-            annotations = {
-              "reloader.stakater.com/match" = "true"
-            }
-          }
-          data = {
-            DB_CONNECTION_STRING = "postgresql+asyncpg://job_hunter:{{ .password }}@${var.postgresql_host}:5432/job_hunter"
-            DB_PASSWORD          = "{{ .password }}"
-          }
-        }
-      }
-      data = [{
-        secretKey = "password"
-        remoteRef = {
-          key      = "static-creds/pg-job-hunter"
-          property = "password"
-        }
-      }]
-    }
-  }
-  depends_on = [kubernetes_namespace.job_hunter]
-}
-
-resource "kubernetes_deployment" "job_hunter" {
-  metadata {
-    name      = "job-hunter"
-    namespace = kubernetes_namespace.job_hunter.metadata[0].name
-    labels = merge(local.labels, {
-      tier = local.tiers.aux
-    })
-    annotations = {
-      "reloader.stakater.com/search" = "true"
-    }
-  }
-
-  spec {
-    replicas = 1
-    strategy {
-      type = "Recreate"
-    }
-
-    selector {
-      match_labels = local.labels
-    }
-
-    template {
-      metadata {
-        labels = local.labels
-      }
-
-      spec {
-        image_pull_secrets {
-          name = "registry-credentials"
-        }
-
-        init_container {
-          name    = "alembic-migrate"
-          image   = local.image
-          command = ["python", "-m", "job_hunter", "migrate"]
-
-          env_from {
-            secret_ref {
-              name = "job-hunter-secrets"
-            }
-          }
-          env_from {
-            secret_ref {
-              name = "job-hunter-db-creds"
-            }
-          }
-
-          resources {
-            requests = {
-              cpu    = "50m"
-              memory = "256Mi"
-            }
-            limits = {
-              memory = "512Mi"
-            }
-          }
-        }
-
-        container {
-          name  = "job-hunter"
-          image = local.image
-
-          port {
-            container_port = 8080
-          }
-
-          env_from {
-            secret_ref {
-              name = "job-hunter-secrets"
-            }
-          }
-          env_from {
-            secret_ref {
-              name = "job-hunter-db-creds"
-            }
-          }
-
-          env {
-            name  = "CDIO_BASE_URL"
-            value = "http://changedetection.changedetection.svc.cluster.local"
-          }
-          env {
-            name  = "SMTP_HOST"
-            value = "mailserver.mailserver.svc.cluster.local"
-          }
-          env {
-            name  = "SMTP_PORT"
-            value = "587"
-          }
-          env {
-            name  = "JOB_HUNTER_WEBHOOK_URL"
-            value = "http://job-hunter.job-hunter.svc.cluster.local:8080/webhook/cdio"
-          }
-
-          readiness_probe {
-            http_get {
-              path = "/healthz"
-              port = 8080
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-          }
-
-          liveness_probe {
-            http_get {
-              path = "/healthz"
-              port = 8080
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-          }
-
-          resources {
-            requests = {
-              cpu    = "100m"
-              memory = "512Mi"
-            }
-            # Chromium baseline ~1Gi — matches broker-sync precedent.
-            limits = {
-              memory = "1280Mi"
-            }
-          }
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
-
-  depends_on = [
-    kubernetes_manifest.external_secret,
-    kubernetes_manifest.db_external_secret,
-  ]
-}
-
-# ClusterIP-only — job-hunter has no public UI. Webhook, digest, and refresh
-# endpoints are cluster-internal (n8n / CDIO / CronJob triggers).
-resource "kubernetes_service" "job_hunter" {
-  metadata {
-    name      = "job-hunter"
-    namespace = kubernetes_namespace.job_hunter.metadata[0].name
-    labels    = local.labels
-  }
-
-  spec {
-    type     = "ClusterIP"
-    selector = local.labels
-
-    port {
-      name        = "http"
-      port        = 8080
-      target_port = 8080
-    }
-  }
-}
-
-# Plan-time read of the ESO-created DB creds Secret for Grafana datasource.
-# First apply: -target=kubernetes_manifest.db_external_secret first so the Secret exists.
-data "kubernetes_secret" "job_hunter_db_creds" {
-  metadata {
-    name      = "job-hunter-db-creds"
-    namespace = kubernetes_namespace.job_hunter.metadata[0].name
-  }
-  depends_on = [kubernetes_manifest.db_external_secret]
-}
-
-# Grafana datasource for the job_hunter Postgres DB. Lives in the monitoring
-# namespace so the grafana sidecar (label grafana_datasource=1) picks it up.
-resource "kubernetes_config_map" "grafana_job_hunter_datasource" {
-  metadata {
-    name      = "grafana-job-hunter-datasource"
-    namespace = "monitoring"
-    labels = {
-      grafana_datasource = "1"
-    }
-  }
-  data = {
-    "job-hunter-datasource.yaml" = yamlencode({
-      apiVersion = 1
-      datasources = [{
-        name   = "Job Hunter"
-        type   = "postgres"
-        access = "proxy"
-        url    = "${var.postgresql_host}:5432"
-        user   = "job_hunter"
-        uid    = "job-hunter-pg"
-        # Grafana 11.2+ Postgres plugin reads the DB name from jsonData.database;
-        # the top-level `database` field is silently ignored by the frontend.
-        jsonData = {
-          database        = "job_hunter"
-          sslmode         = "disable"
-          postgresVersion = 1600
-          timescaledb     = false
-        }
-        secureJsonData = {
-          password = data.kubernetes_secret.job_hunter_db_creds.data["DB_PASSWORD"]
-        }
-        editable = true
-      }]
-    })
-  }
-}
diff --git a/stacks/job-hunter/terragrunt.hcl b/stacks/job-hunter/terragrunt.hcl
deleted file mode 100644
index 8f4a32fb..00000000
--- a/stacks/job-hunter/terragrunt.hcl
+++ /dev/null
@@ -1,26 +0,0 @@
-include "root" {
-  path = find_in_parent_folders()
-}
-
-dependency "platform" {
-  config_path  = "../platform"
-  skip_outputs = true
-}
-
-dependency "vault" {
-  config_path  = "../vault"
-  skip_outputs = true
-}
-
-dependency "external-secrets" {
-  config_path  = "../external-secrets"
-  skip_outputs = true
-}
-
-inputs = {
-  # 92afc38d = master HEAD with levels.fyi scraper + comp_table COALESCE
-  # fix + Frankfurter FX backend (exchangerate.host free tier deprecated
-  # in 2026). Built + pushed locally 2026-04-19 while the Woodpecker
-  # Forgejo webhook remains broken.
-  image_tag = "92afc38d"
-}
diff --git a/stacks/jsoncrack/main.tf b/stacks/jsoncrack/main.tf
index 1e1a1de8..c0b2bc5c 100644
--- a/stacks/jsoncrack/main.tf
+++ b/stacks/jsoncrack/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "jsoncrack" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 module "tls_secret" {
   source          = "../../modules/kubernetes/setup_tls_secret"
@@ -56,10 +52,6 @@ resource "kubernetes_deployment" "jsoncrack" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "jsoncrack" {
diff --git a/stacks/k8s-dashboard/main.tf b/stacks/k8s-dashboard/main.tf
index bdb82f75..954a47e5 100644
--- a/stacks/k8s-dashboard/main.tf
+++ b/stacks/k8s-dashboard/main.tf
@@ -34,10 +34,6 @@ resource "kubernetes_namespace" "k8s-dashboard" {
       tier = local.tiers.cluster
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 # }
 
diff --git a/stacks/k8s-portal/modules/k8s-portal/files/src/routes/agent/+server.ts b/stacks/k8s-portal/modules/k8s-portal/files/src/routes/agent/+server.ts
index 21405a94..3d0fa891 100644
--- a/stacks/k8s-portal/modules/k8s-portal/files/src/routes/agent/+server.ts
+++ b/stacks/k8s-portal/modules/k8s-portal/files/src/routes/agent/+server.ts
@@ -83,7 +83,7 @@ For secrets requiring admin access (shared infra passwords, API keys):
 | \`modules/kubernetes/nfs_volume/\` | NFS volume module (CSI-backed, soft mount) |
 | \`config.tfvars\` | Non-secret configuration (plaintext) |
 | \`secrets.sops.json\` | All secrets (SOPS-encrypted JSON) |
-| \`scripts/cluster_healthcheck.sh\` | 42-check cluster health script |
+| \`scripts/cluster_healthcheck.sh\` | 25-check cluster health script |
 | \`AGENTS.md\` | Full AI agent instructions (auto-loaded by most agents) |
 
 ### Tier System
@@ -138,7 +138,7 @@ Kyverno auto-generates LimitRange + ResourceQuota per namespace based on tier la
 
 - **Proxmox**: 192.168.1.127 (Dell R730, 22c/44t, 142GB RAM)
 - **Nodes**: k8s-master (10.0.20.100), node1 (GPU, Tesla T4), node2-4
-- **GPU workloads**: \`node_selector = { "nvidia.com/gpu.present" : "true" }\` + toleration \`nvidia.com/gpu\` (label auto-applied by gpu-feature-discovery, no hostname pins)
+- **GPU workloads**: \`node_selector = { "gpu": "true" }\` + toleration \`nvidia.com/gpu\`
 - **Pull-through cache**: 10.0.20.10 — use versioned image tags (cache serves stale :latest manifests)
 - **MySQL InnoDB Cluster**: 3 instances on iSCSI
 - **SMTP**: \`var.mail_host\` port 587 STARTTLS
diff --git a/stacks/k8s-portal/modules/k8s-portal/main.tf b/stacks/k8s-portal/modules/k8s-portal/main.tf
index 741fb443..7413d2bd 100644
--- a/stacks/k8s-portal/modules/k8s-portal/main.tf
+++ b/stacks/k8s-portal/modules/k8s-portal/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "k8s_portal" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -117,9 +113,8 @@ resource "kubernetes_deployment" "k8s_portal" {
     }
   }
   lifecycle {
-    # DRIFT_WORKAROUND: CI pipeline owns image tag (kubectl set image from Woodpecker/GHA); Kyverno mutates dns_config for ndots. Reviewed 2026-04-18.
     ignore_changes = [
-      spec[0].template[0].spec[0].dns_config,         # KYVERNO_LIFECYCLE_V1
+      spec[0].template[0].spec[0].dns_config,
       spec[0].template[0].spec[0].container[0].image, # CI updates image tag
     ]
   }
diff --git a/stacks/kms/.terraform.lock.hcl b/stacks/kms/.terraform.lock.hcl
index fabbc047..a1ca7484 100644
--- a/stacks/kms/.terraform.lock.hcl
+++ b/stacks/kms/.terraform.lock.hcl
@@ -24,14 +24,6 @@ provider "registry.terraform.io/cloudflare/cloudflare" {
   ]
 }
 
-provider "registry.terraform.io/goauthentik/authentik" {
-  version     = "2024.12.1"
-  constraints = "~> 2024.10"
-  hashes = [
-    "h1:roBMd+gi+TGgikH/bMzEI8JfvJiMAQWt+8FmokCrQIs=",
-  ]
-}
-
 provider "registry.terraform.io/hashicorp/helm" {
   version = "3.1.1"
   hashes = [
diff --git a/stacks/kms/main.tf b/stacks/kms/main.tf
index e628ecfc..8d74b558 100644
--- a/stacks/kms/main.tf
+++ b/stacks/kms/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "kms" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -24,6 +20,16 @@ module "tls_secret" {
   tls_secret_name = var.tls_secret_name
 }
 
+resource "kubernetes_config_map" "kms-web-page" {
+  metadata {
+    name      = "kms-web-page-config"
+    namespace = kubernetes_namespace.kms.metadata[0].name
+  }
+  data = {
+    "index.html" = var.index_html
+  }
+}
+
 resource "kubernetes_deployment" "kms-web-page" {
   metadata {
     name      = "kms-web-page"
@@ -49,11 +55,8 @@ resource "kubernetes_deployment" "kms-web-page" {
         }
       }
       spec {
-        image_pull_secrets {
-          name = "registry-credentials"
-        }
         container {
-          image             = "forgejo.viktorbarzin.me/viktor/kms-website:${var.image_tag}"
+          image             = "nginx"
           name              = "kms-web-page"
           image_pull_policy = "IfNotPresent"
           resources {
@@ -69,18 +72,26 @@ resource "kubernetes_deployment" "kms-web-page" {
             container_port = 80
             protocol       = "TCP"
           }
+          volume_mount {
+            name       = "config"
+            mount_path = "/usr/share/nginx/html/"
+          }
+        }
+
+        volume {
+          name = "config"
+          config_map {
+            name = "kms-web-page-config"
+            items {
+              key  = "index.html"
+              path = "index.html"
+            }
+          }
         }
       }
     }
   }
-  lifecycle {
-    ignore_changes = [
-      # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-      spec[0].template[0].spec[0].dns_config,
-      # CI (Woodpecker) manages the live image tag via `kubectl set image`
-      spec[0].template[0].spec[0].container[0].image,
-    ]
-  }
+  depends_on = [kubernetes_config_map.kms-web-page]
 }
 
 resource "kubernetes_service" "kms-web-page" {
@@ -105,7 +116,7 @@ resource "kubernetes_service" "kms-web-page" {
 
 module "ingress" {
   source          = "../../modules/kubernetes/ingress_factory"
-  dns_type        = "non-proxied"
+  dns_type        = "proxied"
   namespace       = kubernetes_namespace.kms.metadata[0].name
   name            = "kms"
   tls_secret_name = var.tls_secret_name
@@ -161,10 +172,6 @@ resource "kubernetes_deployment" "windows_kms" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "windows_kms" {
diff --git a/stacks/kms/variables.tf b/stacks/kms/variables.tf
index d36ff6c7..6baa99a9 100644
--- a/stacks/kms/variables.tf
+++ b/stacks/kms/variables.tf
@@ -1,5 +1,68 @@
-variable "image_tag" {
-  type        = string
-  default     = "latest"
-  description = "kms-website image tag pushed to forgejo.viktorbarzin.me/viktor/kms-website. Use 8-char git SHA in CI."
+variable "index_html" {
+
+  default = <<EOT
+<h1>How to activate windows</h1>
+Open the following link and find a key for you version of windows: </br>
+<b><a href="https://goo.gl/BcrPjW" target="_blank">https://goo.gl/BcrPjW</a></b>
+</br>
+</br>
+Open cmd as <b>Administrator</b> and run the following: </br>
+</br>
+<b>slmgr.vbs /ipk key_for_your_windows</b>
+</br>
+<b>slmgr.vbs /skms kms.viktorbarzin.me </b>
+<br>
+<b>
+    slmgr /ato
+</b>
+<br>
+<p>
+<h3> If you have an evaluation windows, you need to change it to retail one. This is how:</h3>
+<br>
+From an elevated command prompt, determine the current edition name with the command <br>
+<strong>DISM /online /Get-CurrentEdition</strong>.
+<br>Make note of the edition ID, an abbreviated form of the edition name. Then run
+<br>
+<strong>DISM /online /Set-Edition:<edition ID> /ProductKey:XXXXX-XXXXX-XXXXX-XXXXX-XXXXX /AcceptEula</strong>
+<br> providing the edition ID and a retail product key. The server will restart
+</p>
+<hr>
+
+
+<h1>How to activate Microsoft Office</h1>
+<br>
+<b>
+    CD \Program Files\Microsoft Office\Office16 </b> OR <b>CD \Program Files (x86)\Microsoft Office\Office16
+</b>
+<br>
+<b>
+    cscript ospp.vbs /sethst:kms.viktorbarzin.me
+</b>
+<br>
+<b>
+    cscript ospp.vbs /inpkey:xxxxx-xxxxx-xxxxx-xxxxx-xxxxx
+</b>
+<br>
+where 'xxxx' is a key for your office. Some examples for office 2016 - <a
+    href="https://www.techdee.com/microsoft-office-2016-product-key/">https://www.techdee.com/microsoft-office-2016-product-key/</a>
+<br>
+<b>
+    cscript ospp.vbs /act
+</b>
+
+<br>
+<br>
+If you messed up activation settings reset them using
+<br>
+slmgr /upk
+
+<br>
+slmgr /cpky
+<br>
+and
+<br>
+slmgr /rearm
+
+<h3>Buy me a beer :P</h3>
+EOT
 }
diff --git a/stacks/kured/main.tf b/stacks/kured/main.tf
deleted file mode 100644
index 183974ea..00000000
--- a/stacks/kured/main.tf
+++ /dev/null
@@ -1,252 +0,0 @@
-# kured — Kubernetes Reboot Daemon
-#
-# Auto-reboots nodes when /var/run/reboot-required exists on the host (set by
-# unattended-upgrades). The reboot process is gated by a custom sentinel file
-# (kured-sentinel-gate DaemonSet below) so reboots only happen when:
-#   - all nodes Ready
-#   - all calico-node pods Running
-#   - no node has transitioned Ready in the last 30 minutes (cool-down)
-#
-# History:
-#   - 2026-03 post-mortem (memory 390): 26h cluster outage triggered by kured
-#     rebooting nodes while containerd's overlayfs snapshotter was corrupted.
-#     Remediation included the sentinel gate and a tight reboot window
-#     (Mon-Fri 02:00-06:00 London).
-#   - 2026-04-18: adopted into Terraform (Wave 5a). Previously helm-installed
-#     manually + kubectl-applied sentinel gate.
-
-resource "kubernetes_namespace" "kured" {
-  metadata {
-    name = "kured"
-    labels = {
-      "istio-injection" = "disabled"
-      tier              = local.tiers.cluster
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-# -----------------------------------------------------------------------------
-# kured Helm release
-# -----------------------------------------------------------------------------
-
-resource "helm_release" "kured" {
-  namespace        = kubernetes_namespace.kured.metadata[0].name
-  create_namespace = false
-  name             = "kured"
-  chart            = "kured"
-  repository       = "https://kubereboot.github.io/charts/"
-  version          = "5.11.0"
-
-  values = [yamlencode({
-    configuration = {
-      period         = "1h0m0s"
-      timeZone       = "Europe/London"
-      startTime      = "02:00"
-      endTime        = "06:00"
-      rebootDays     = ["mo", "tu", "we", "th", "fr"]
-      rebootSentinel = "/sentinel/gated-reboot-required"
-      notifyUrl      = data.vault_kv_secret_v2.secrets.data["slack_kured_webhook"]
-    }
-    reboot_days  = "mon,tue,wed,thu,fri"
-    window_end   = "06:00"
-    window_start = "22:00"
-    service = {
-      annotations = {
-        "prometheus.io/scrape" = "true"
-        "prometheus.io/port"   = "8080"
-        "prometheus.io/path"   = "/metrics"
-      }
-    }
-  })]
-}
-
-data "vault_kv_secret_v2" "secrets" {
-  mount = "secret"
-  name  = "kured"
-}
-
-# -----------------------------------------------------------------------------
-# kured-sentinel-gate
-#
-# Runs a DaemonSet that creates /var/run/gated-reboot-required ONLY when all
-# safety preconditions are met (see script). kured's rebootSentinel points at
-# this file, so reboots are effectively blocked unless every check passes.
-# -----------------------------------------------------------------------------
-
-resource "kubernetes_service_account" "kured_sentinel_gate" {
-  metadata {
-    name      = "kured-sentinel-gate"
-    namespace = kubernetes_namespace.kured.metadata[0].name
-  }
-  automount_service_account_token = false
-}
-
-resource "kubernetes_cluster_role" "kured_sentinel_gate" {
-  metadata {
-    name = "kured-sentinel-gate"
-  }
-  rule {
-    api_groups = [""]
-    resources  = ["nodes"]
-    verbs      = ["list"]
-  }
-  rule {
-    api_groups = [""]
-    resources  = ["pods"]
-    verbs      = ["list"]
-  }
-}
-
-resource "kubernetes_cluster_role_binding" "kured_sentinel_gate" {
-  metadata {
-    name = "kured-sentinel-gate"
-  }
-  role_ref {
-    api_group = "rbac.authorization.k8s.io"
-    kind      = "ClusterRole"
-    name      = kubernetes_cluster_role.kured_sentinel_gate.metadata[0].name
-  }
-  subject {
-    kind      = "ServiceAccount"
-    name      = kubernetes_service_account.kured_sentinel_gate.metadata[0].name
-    namespace = kubernetes_namespace.kured.metadata[0].name
-  }
-}
-
-resource "kubernetes_daemon_set_v1" "kured_sentinel_gate" {
-  metadata {
-    name      = "kured-sentinel-gate"
-    namespace = kubernetes_namespace.kured.metadata[0].name
-    labels = {
-      app  = "kured-sentinel-gate"
-      tier = local.tiers.cluster
-    }
-  }
-  spec {
-    selector {
-      match_labels = {
-        app = "kured-sentinel-gate"
-      }
-    }
-    template {
-      metadata {
-        labels = {
-          app = "kured-sentinel-gate"
-        }
-      }
-      spec {
-        service_account_name            = kubernetes_service_account.kured_sentinel_gate.metadata[0].name
-        automount_service_account_token = false
-        enable_service_links            = false
-        toleration {
-          effect   = "NoSchedule"
-          key      = "node-role.kubernetes.io/control-plane"
-          operator = "Equal"
-        }
-        toleration {
-          effect   = "NoSchedule"
-          key      = "node-role.kubernetes.io/master"
-          operator = "Equal"
-        }
-        container {
-          name              = "gate"
-          image             = "bitnami/kubectl:latest"
-          image_pull_policy = "Always"
-          command = [
-            "/bin/bash",
-            "-c",
-            <<-EOT
-              while true; do
-                echo "[$(date)] Checking reboot gate conditions..."
-
-                # Check 1: Does the host need a reboot?
-                if [ ! -f /host/var-run/reboot-required ]; then
-                  echo "  No reboot required on this host"
-                  rm -f /host/var-run/gated-reboot-required
-                  sleep 300
-                  continue
-                fi
-                echo "  Host has /var/run/reboot-required"
-
-                # Check 2: Are ALL nodes Ready?
-                NOT_READY=$(kubectl get nodes --no-headers | grep -v ' Ready' | wc -l | tr -d ' ')
-                if [ "$NOT_READY" -gt 0 ]; then
-                  echo "  BLOCKED: $NOT_READY node(s) not Ready"
-                  rm -f /host/var-run/gated-reboot-required
-                  sleep 300
-                  continue
-                fi
-                echo "  All nodes Ready"
-
-                # Check 3: Are ALL calico-node pods Running?
-                CALICO_NOT_RUNNING=$(kubectl get pods -n calico-system -l k8s-app=calico-node --no-headers 2>/dev/null | grep -v Running | wc -l | tr -d ' ')
-                if [ "$CALICO_NOT_RUNNING" -gt 0 ]; then
-                  echo "  BLOCKED: $CALICO_NOT_RUNNING calico-node pod(s) not Running"
-                  rm -f /host/var-run/gated-reboot-required
-                  sleep 300
-                  continue
-                fi
-                echo "  All calico-node pods Running"
-
-                # Check 4: No node rebooted in last 30 minutes (cool-down)
-                RECENT_REBOOT=0
-                while IFS= read -r transition_time; do
-                  if [ -n "$transition_time" ]; then
-                    transition_epoch=$(date -d "$transition_time" +%s 2>/dev/null || date -j -f "%Y-%m-%dT%H:%M:%SZ" "$transition_time" +%s 2>/dev/null)
-                    now_epoch=$(date +%s)
-                    diff=$(( now_epoch - transition_epoch ))
-                    if [ "$diff" -lt 1800 ]; then
-                      RECENT_REBOOT=1
-                      break
-                    fi
-                  fi
-                done < <(kubectl get nodes -o jsonpath='{range .items[*]}{range .status.conditions[?(@.type=="Ready")]}{.lastTransitionTime}{"\n"}{end}{end}')
-
-                if [ "$RECENT_REBOOT" -eq 1 ]; then
-                  echo "  BLOCKED: A node transitioned Ready within the last 30 minutes (cool-down)"
-                  rm -f /host/var-run/gated-reboot-required
-                  sleep 300
-                  continue
-                fi
-                echo "  No recent node reboots (30m cool-down clear)"
-
-                # All checks passed — create gated sentinel
-                echo "  ALL CHECKS PASSED — creating /var/run/gated-reboot-required"
-                touch /host/var-run/gated-reboot-required
-                sleep 300
-              done
-            EOT
-          ]
-          resources {
-            requests = {
-              cpu    = "10m"
-              memory = "32Mi"
-            }
-            limits = {
-              memory = "64Mi"
-            }
-          }
-          volume_mount {
-            name       = "var-run"
-            mount_path = "/host/var-run"
-          }
-        }
-        volume {
-          name = "var-run"
-          host_path {
-            path = "/var/run"
-            type = "Directory"
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/kyverno/modules/kyverno/dependency-init-containers.tf b/stacks/kyverno/modules/kyverno/dependency-init-containers.tf
index 27d9c02b..ffe24780 100644
--- a/stacks/kyverno/modules/kyverno/dependency-init-containers.tf
+++ b/stacks/kyverno/modules/kyverno/dependency-init-containers.tf
@@ -7,7 +7,7 @@
 #
 # Usage:
 #   annotations:
-#     dependency.kyverno.io/wait-for: "postgresql.dbaas:5432,redis-master.redis:6379"
+#     dependency.kyverno.io/wait-for: "postgresql.dbaas:5432,redis.redis:6379"
 #
 # Each comma-separated entry becomes a busybox init container that runs
 # `nc -z <host> <port>` in a loop until the dependency is reachable.
diff --git a/stacks/kyverno/modules/kyverno/main.tf b/stacks/kyverno/modules/kyverno/main.tf
index 4e64c89d..bdd152ca 100644
--- a/stacks/kyverno/modules/kyverno/main.tf
+++ b/stacks/kyverno/modules/kyverno/main.tf
@@ -6,10 +6,6 @@ resource "kubernetes_namespace" "kyverno" {
       "istio-injection" : "disabled"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "kyverno" {
diff --git a/stacks/kyverno/modules/kyverno/registry-credentials.tf b/stacks/kyverno/modules/kyverno/registry-credentials.tf
index c9cae9fd..2a9fc7c5 100644
--- a/stacks/kyverno/modules/kyverno/registry-credentials.tf
+++ b/stacks/kyverno/modules/kyverno/registry-credentials.tf
@@ -20,14 +20,14 @@ resource "kubernetes_secret" "registry_credentials" {
   data = {
     ".dockerconfigjson" = jsonencode({
       auths = {
-        # Phase 4 of forgejo-registry-consolidation 2026-05-07 — registry-
-        # private decommissioned. Old auths entries (registry.viktorbarzin.me,
-        # registry.viktorbarzin.me:5050, 10.0.20.10:5050) removed to prevent
-        # silent fallback. If a pod somehow references the old hostname now,
-        # it will visibly fail with auth missing rather than silently pulling
-        # potentially-stale blobs.
-        "forgejo.viktorbarzin.me" = {
-          auth = base64encode("cluster-puller:${try(data.vault_kv_secret_v2.viktor.data["forgejo_pull_token"], "")}")
+        "registry.viktorbarzin.me" = {
+          auth = base64encode("${data.vault_kv_secret_v2.viktor.data["registry_user"]}:${data.vault_kv_secret_v2.viktor.data["registry_password"]}")
+        }
+        "registry.viktorbarzin.me:5050" = {
+          auth = base64encode("${data.vault_kv_secret_v2.viktor.data["registry_user"]}:${data.vault_kv_secret_v2.viktor.data["registry_password"]}")
+        }
+        "10.0.20.10:5050" = {
+          auth = base64encode("${data.vault_kv_secret_v2.viktor.data["registry_user"]}:${data.vault_kv_secret_v2.viktor.data["registry_password"]}")
         }
       }
     })
diff --git a/stacks/kyverno/modules/kyverno/resource-governance.tf b/stacks/kyverno/modules/kyverno/resource-governance.tf
index 53337f83..f6f96940 100644
--- a/stacks/kyverno/modules/kyverno/resource-governance.tf
+++ b/stacks/kyverno/modules/kyverno/resource-governance.tf
@@ -1025,131 +1025,3 @@ resource "kubernetes_manifest" "cleanup_failed_pods" {
     }
   }
 }
-
-# -----------------------------------------------------------------------------
-# Strip CPU Limits (Kyverno Mutate)
-# -----------------------------------------------------------------------------
-# Removes resources.limits.cpu from every container and initContainer at pod
-# admission. Memory limits are preserved. Cluster policy: CFS throttling causes
-# more harm than good for bursty single-threaded workloads (Node.js, Python
-# apps). Upstream Helm charts (CrowdSec, descheduler, kubernetes-dashboard,
-# nvidia gpu-operator) still ship CPU limits — this strips them declaratively
-# so we don't have to fork values.yaml per chart.
-#
-# Scope: admission-time only. Existing pods keep their limits until restarted
-# naturally (Helm upgrade, node drain, rollout). No mutateExistingOnPolicyUpdate.
-#
-# JSON6902 remove op fails on missing paths — per-element precondition gates
-# the mutation so pods without CPU limits pass through untouched.
-
-resource "kubernetes_manifest" "mutate_strip_cpu_limits" {
-  manifest = {
-    apiVersion = "kyverno.io/v1"
-    kind       = "ClusterPolicy"
-    metadata = {
-      name = "strip-cpu-limits"
-      annotations = {
-        "policies.kyverno.io/title" = "Strip CPU Limits"
-        "policies.kyverno.io/description" = join("", [
-          "Removes resources.limits.cpu from every container and initContainer ",
-          "at pod admission. Memory limits are preserved. Cluster policy: CFS ",
-          "throttling causes more harm than good for bursty single-threaded ",
-          "workloads (Node.js, Python apps).",
-        ])
-      }
-    }
-    spec = {
-      background = false
-      rules = [
-        {
-          name = "strip-container-cpu-limit"
-          match = {
-            any = [
-              {
-                resources = {
-                  kinds      = ["Pod"]
-                  operations = ["CREATE"]
-                }
-              }
-            ]
-          }
-          preconditions = {
-            all = [
-              {
-                key      = "{{ request.object.spec.containers[?resources.limits.cpu != null] | length(@) }}"
-                operator = "GreaterThan"
-                value    = 0
-              }
-            ]
-          }
-          mutate = {
-            foreach = [
-              {
-                list = "request.object.spec.containers"
-                preconditions = {
-                  all = [
-                    {
-                      key      = "{{ element.resources.limits.cpu || '' }}"
-                      operator = "NotEquals"
-                      value    = ""
-                    }
-                  ]
-                }
-                patchesJson6902 = yamlencode([
-                  {
-                    op   = "remove"
-                    path = "/spec/containers/{{ elementIndex }}/resources/limits/cpu"
-                  }
-                ])
-              }
-            ]
-          }
-        },
-        {
-          name = "strip-initcontainer-cpu-limit"
-          match = {
-            any = [
-              {
-                resources = {
-                  kinds      = ["Pod"]
-                  operations = ["CREATE"]
-                }
-              }
-            ]
-          }
-          preconditions = {
-            all = [
-              {
-                key      = "{{ request.object.spec.initContainers[?resources.limits.cpu != null] || `[]` | length(@) }}"
-                operator = "GreaterThan"
-                value    = 0
-              }
-            ]
-          }
-          mutate = {
-            foreach = [
-              {
-                list = "request.object.spec.initContainers"
-                preconditions = {
-                  all = [
-                    {
-                      key      = "{{ element.resources.limits.cpu || '' }}"
-                      operator = "NotEquals"
-                      value    = ""
-                    }
-                  ]
-                }
-                patchesJson6902 = yamlencode([
-                  {
-                    op   = "remove"
-                    path = "/spec/initContainers/{{ elementIndex }}/resources/limits/cpu"
-                  }
-                ])
-              }
-            ]
-          }
-        },
-      ]
-    }
-  }
-}
diff --git a/stacks/linkwarden/main.tf b/stacks/linkwarden/main.tf
index c4fe89e0..352e01cf 100644
--- a/stacks/linkwarden/main.tf
+++ b/stacks/linkwarden/main.tf
@@ -21,10 +21,6 @@ resource "kubernetes_namespace" "linkwarden" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -201,10 +197,6 @@ resource "kubernetes_deployment" "linkwarden" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 resource "kubernetes_service" "linkwarden" {
   metadata {
diff --git a/stacks/local-path/main.tf b/stacks/local-path/main.tf
deleted file mode 100644
index fd24de35..00000000
--- a/stacks/local-path/main.tf
+++ /dev/null
@@ -1,198 +0,0 @@
-# local-path-provisioner
-#
-# Rancher's local-path provisioner — backs PVCs with node-local
-# /opt/local-path-provisioner directories. Currently serves as the default
-# StorageClass. Deployed via raw kubectl apply 55d ago; adopted into TF
-# (Wave 5c) on 2026-04-18.
-#
-# Upstream: https://github.com/rancher/local-path-provisioner
-# Version pinned to rancher/local-path-provisioner:v0.0.31
-
-resource "kubernetes_namespace" "local_path_storage" {
-  metadata {
-    name = "local-path-storage"
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-resource "kubernetes_service_account" "local_path_provisioner" {
-  metadata {
-    name      = "local-path-provisioner-service-account"
-    namespace = kubernetes_namespace.local_path_storage.metadata[0].name
-  }
-  automount_service_account_token = false
-}
-
-resource "kubernetes_cluster_role" "local_path_provisioner" {
-  metadata {
-    name = "local-path-provisioner-role"
-  }
-  rule {
-    api_groups = [""]
-    resources  = ["nodes", "persistentvolumeclaims", "configmaps", "pods", "pods/log"]
-    verbs      = ["get", "list", "watch"]
-  }
-  rule {
-    api_groups = [""]
-    resources  = ["persistentvolumes"]
-    verbs      = ["get", "list", "watch", "create", "patch", "update", "delete"]
-  }
-  rule {
-    api_groups = [""]
-    resources  = ["events"]
-    verbs      = ["create", "patch"]
-  }
-  rule {
-    api_groups = ["storage.k8s.io"]
-    resources  = ["storageclasses"]
-    verbs      = ["get", "list", "watch"]
-  }
-}
-
-resource "kubernetes_cluster_role_binding" "local_path_provisioner" {
-  metadata {
-    name = "local-path-provisioner-bind"
-  }
-  role_ref {
-    api_group = "rbac.authorization.k8s.io"
-    kind      = "ClusterRole"
-    name      = kubernetes_cluster_role.local_path_provisioner.metadata[0].name
-  }
-  subject {
-    kind      = "ServiceAccount"
-    name      = kubernetes_service_account.local_path_provisioner.metadata[0].name
-    namespace = kubernetes_namespace.local_path_storage.metadata[0].name
-  }
-}
-
-resource "kubernetes_config_map" "local_path_config" {
-  metadata {
-    name      = "local-path-config"
-    namespace = kubernetes_namespace.local_path_storage.metadata[0].name
-  }
-  data = {
-    "config.json" = jsonencode({
-      nodePathMap = [{
-        node  = "DEFAULT_PATH_FOR_NON_LISTED_NODES"
-        paths = ["/opt/local-path-provisioner"]
-      }]
-    })
-    "helperPod.yaml" = <<-EOT
-      apiVersion: v1
-      kind: Pod
-      metadata:
-        name: helper-pod
-      spec:
-        priorityClassName: system-node-critical
-        tolerations:
-          - key: node.kubernetes.io/disk-pressure
-            operator: Exists
-            effect: NoSchedule
-        containers:
-        - name: helper-pod
-          image: busybox
-          imagePullPolicy: IfNotPresent
-    EOT
-    "setup"          = <<-EOT
-      #!/bin/sh
-      set -eu
-      mkdir -m 0777 -p "$VOL_DIR"
-    EOT
-    "teardown"       = <<-EOT
-      #!/bin/sh
-      set -eu
-      rm -rf "$VOL_DIR"
-    EOT
-  }
-}
-
-resource "kubernetes_storage_class_v1" "local_path" {
-  metadata {
-    name = "local-path"
-    annotations = {
-      "storageclass.kubernetes.io/is-default-class" = "true"
-    }
-  }
-  storage_provisioner    = "rancher.io/local-path"
-  reclaim_policy         = "Delete"
-  volume_binding_mode    = "WaitForFirstConsumer"
-  allow_volume_expansion = false
-}
-
-resource "kubernetes_deployment" "local_path_provisioner" {
-  metadata {
-    name      = "local-path-provisioner"
-    namespace = kubernetes_namespace.local_path_storage.metadata[0].name
-    labels = {
-      tier = "default"
-    }
-  }
-  spec {
-    replicas = 1
-    selector {
-      match_labels = {
-        app = "local-path-provisioner"
-      }
-    }
-    template {
-      metadata {
-        labels = {
-          app = "local-path-provisioner"
-        }
-      }
-      spec {
-        service_account_name            = kubernetes_service_account.local_path_provisioner.metadata[0].name
-        automount_service_account_token = false
-        enable_service_links            = false
-        container {
-          name              = "local-path-provisioner"
-          image             = "rancher/local-path-provisioner:v0.0.31"
-          image_pull_policy = "IfNotPresent"
-          command = [
-            "local-path-provisioner",
-            "--debug",
-            "start",
-            "--config",
-            "/etc/config/config.json",
-          ]
-          env {
-            name = "POD_NAMESPACE"
-            value_from {
-              field_ref {
-                field_path = "metadata.namespace"
-              }
-            }
-          }
-          env {
-            name  = "CONFIG_MOUNT_PATH"
-            value = "/etc/config/"
-          }
-          volume_mount {
-            name       = "config-volume"
-            mount_path = "/etc/config/"
-          }
-        }
-        volume {
-          name = "config-volume"
-          config_map {
-            name = kubernetes_config_map.local_path_config.metadata[0].name
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-
-
-
-
-
-
diff --git a/stacks/local-path/secrets b/stacks/local-path/secrets
deleted file mode 120000
index ca54a7cf..00000000
--- a/stacks/local-path/secrets
+++ /dev/null
@@ -1 +0,0 @@
-../../secrets
\ No newline at end of file
diff --git a/stacks/local-path/terragrunt.hcl b/stacks/local-path/terragrunt.hcl
deleted file mode 100644
index 0d1c8e53..00000000
--- a/stacks/local-path/terragrunt.hcl
+++ /dev/null
@@ -1,8 +0,0 @@
-include "root" {
-  path = find_in_parent_folders()
-}
-
-dependency "platform" {
-  config_path  = "../platform"
-  skip_outputs = true
-}
diff --git a/stacks/mailserver/main.tf b/stacks/mailserver/main.tf
index bff786cc..da131f8d 100644
--- a/stacks/mailserver/main.tf
+++ b/stacks/mailserver/main.tf
@@ -11,6 +11,11 @@ data "vault_kv_secret_v2" "secrets" {
   name  = "platform"
 }
 
+data "vault_kv_secret_v2" "viktor" {
+  mount = "secret"
+  name  = "viktor"
+}
+
 locals {
   mailserver_accounts     = jsondecode(data.vault_kv_secret_v2.secrets.data["mailserver_accounts"])
   mailserver_aliases      = jsondecode(data.vault_kv_secret_v2.secrets.data["mailserver_aliases"])
@@ -19,14 +24,16 @@ locals {
 }
 
 module "mailserver" {
-  source                  = "./modules/mailserver"
-  tls_secret_name         = var.tls_secret_name
-  nfs_server              = var.nfs_server
-  mysql_host              = var.mysql_host
-  mailserver_accounts     = local.mailserver_accounts
-  postfix_account_aliases = local.mailserver_aliases
-  opendkim_key            = local.mailserver_opendkim_key
-  sasl_passwd             = local.mailserver_sasl_passwd
-  roundcube_db_password   = data.vault_kv_secret_v2.secrets.data["mailserver_roundcubemail_db_password"]
-  tier                    = local.tiers.edge
+  source                      = "./modules/mailserver"
+  tls_secret_name             = var.tls_secret_name
+  nfs_server                  = var.nfs_server
+  mysql_host                  = var.mysql_host
+  mailserver_accounts         = local.mailserver_accounts
+  postfix_account_aliases     = local.mailserver_aliases
+  opendkim_key                = local.mailserver_opendkim_key
+  sasl_passwd                 = local.mailserver_sasl_passwd
+  roundcube_db_password       = data.vault_kv_secret_v2.secrets.data["mailserver_roundcubemail_db_password"]
+  tier                        = local.tiers.edge
+  brevo_api_key               = jsondecode(base64decode(data.vault_kv_secret_v2.viktor.data["brevo_api_key"]))["api_key"]
+  email_monitor_imap_password = local.mailserver_accounts["spam@viktorbarzin.me"]
 }
diff --git a/stacks/mailserver/modules/mailserver/main.tf b/stacks/mailserver/modules/mailserver/main.tf
index c3c33d26..cf75d9ab 100644
--- a/stacks/mailserver/modules/mailserver/main.tf
+++ b/stacks/mailserver/modules/mailserver/main.tf
@@ -5,24 +5,13 @@ variable "postfix_account_aliases" {}
 variable "opendkim_key" {}
 variable "sasl_passwd" {} # For sendgrid i.e relayhost
 variable "nfs_server" { type = string }
-# Build the virtual-alias map, dropping aliases where BOTH the source and
-# target are real mailboxes in var.mailserver_accounts (and are different).
-# Without this filter, docker-mailserver emits two passwd-file userdb lines
-# for the source address — its own mailbox home plus the alias target's home
-# — and Dovecot logs 'exists more than once' on every auth lookup. Aliases
-# that forward to external addresses (gmail etc.) or to self are safe.
-locals {
-  _account_set   = keys(var.mailserver_accounts)
-  _virtual_lines = split("\n", format("%s%s", var.postfix_account_aliases, file("${path.module}/extra/aliases.txt")))
-  postfix_virtual = join("\n", [
-    for line in local._virtual_lines : line
-    if !(
-      length(split(" ", line)) == 2 &&
-      contains(local._account_set, split(" ", line)[0]) &&
-      contains(local._account_set, split(" ", line)[1]) &&
-      split(" ", line)[0] != split(" ", line)[1]
-    )
-  ])
+variable "brevo_api_key" {
+  type      = string
+  sensitive = true
+}
+variable "email_monitor_imap_password" {
+  type      = string
+  sensitive = true
 }
 
 resource "kubernetes_namespace" "mailserver" {
@@ -36,10 +25,6 @@ resource "kubernetes_namespace" "mailserver" {
     #   "istio-injection" : "enabled"
     # }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -108,7 +93,7 @@ resource "kubernetes_config_map" "mailserver_config" {
     # Actual mail settings
     "postfix-accounts.cf" = join("\n", [for user, pass in var.mailserver_accounts : "${user}|${bcrypt(pass, 6)}"])
     "postfix-main.cf"     = var.postfix_cf
-    "postfix-virtual.cf"  = local.postfix_virtual
+    "postfix-virtual.cf"  = format("%s%s", var.postfix_account_aliases, file("${path.module}/extra/aliases.txt"))
 
     KeyTable      = "mail._domainkey.viktorbarzin.me viktorbarzin.me:mail:/etc/opendkim/keys/viktorbarzin.me-mail.key\n"
     SigningTable  = "*@viktorbarzin.me mail._domainkey.viktorbarzin.me\n"
@@ -134,29 +119,6 @@ resource "kubernetes_config_map" "mailserver_config" {
     # Increase max IMAP connections per user+IP - all Roundcube connections come from same pod IP
     "dovecot.cf"  = <<-EOF
     mail_max_userip_connections = 50
-    # Throttle IMAP auth brute-force. CrowdSec handles the network-level
-    # ban, this adds defense in depth at the auth layer — each failed
-    # attempt waits 5s before responding, stretching a 1000-password
-    # dictionary attack from <1s to ~85min. Addresses code-9mi.
-    auth_failure_delay = 5s
-
-    # code-yiu Phase 5: alt IMAPS listener on :10993 that REQUIRES the
-    # HAProxy PROXY v2 wire format. pfSense HAProxy injects the header
-    # on backend connects via k8s-node:30128 → kube-proxy → pod :10993.
-    # Real client IP recovered from header despite kube-proxy SNAT.
-    # The stock :993 listener stays PROXY-free for internal clients
-    # (Roundcube, email-roundtrip-monitor) on the mailserver ClusterIP.
-    # haproxy_trusted_networks = source IPs allowed to *send* PROXY v2.
-    # Post kube-proxy SNAT the source is the k8s node IP (10.0.20.101-104);
-    # allow-list the whole VLAN 20 node subnet.
-    haproxy_trusted_networks = 10.0.20.0/24
-    service imap-login {
-      inet_listener imaps_proxy {
-        port = 10993
-        ssl = yes
-        haproxy = yes
-      }
-    }
     EOF
     fail2ban_conf = <<-EOF
     [DEFAULT]
@@ -165,110 +127,30 @@ resource "kubernetes_config_map" "mailserver_config" {
     logtarget = SYSOUT
     EOF
   }
-  # bcrypt() generates a fresh salt on every evaluation, so the hash line
-  # differs each plan run. ignore_changes is the pragmatic workaround.
-  #
-  # INVARIANT (code-7ns, decision 2026-04-19): if a password in Vault
-  # (secret/platform.mailserver_accounts) is rotated, ignore_changes WILL
-  # mask that rotation — TF will not re-render the ConfigMap and the pod
-  # will keep accepting the old password until the ConfigMap is force-
-  # taintned (`terraform taint module.mailserver.kubernetes_config_map
-  # .postfix-accounts-cf`) or the resource is addressed explicitly on
-  # apply (`-replace=...`). Currently there is NO automatic Vault
-  # rotation for mailserver_accounts, so this is acceptable. If automatic
-  # rotation is ever added, replace this ignore_changes with either:
-  #   (a) deterministic hashing (bcrypt with a stable salt derived from
-  #       the user string — loses per-user salt uniqueness but keeps TF
-  #       convergent), or
-  #   (b) render postfix-accounts.cf from a K8s Secret synced by ESO
-  #       (CRD consumed by a dedicated volume mount; docker-mailserver
-  #       loads it at pod start).
+  # Password hashes are different each time and avoid changing secret constantly. 
+  # Either 1.Create consistent hashes or 2.Find a way to ignore_changes on per password
   lifecycle {
-    # DRIFT_WORKAROUND: postfix-accounts.cf password hashes non-deterministic; would flap on every apply. Reviewed 2026-04-18.
     ignore_changes = [data["postfix-accounts.cf"]]
   }
 }
 
-# code-yiu Phase 1a: user-patches.sh appends alt PROXY-speaking listeners to
-# Postfix master.cf at container startup. docker-mailserver runs
-# /tmp/docker-mailserver/user-patches.sh after initial config generation, so
-# our append lands on every fresh pod. Idempotent guard prevents double-append
-# on in-place container restarts. Dovecot extensions are in the dovecot.cf
-# ConfigMap entry (no patches.sh entry needed).
-resource "kubernetes_config_map" "mailserver_user_patches" {
-  metadata {
-    name      = "mailserver-user-patches"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-    labels = {
-      app = "mailserver"
-    }
-    annotations = {
-      "reloader.stakater.com/match" = "true"
-    }
-  }
+# resource "kubernetes_config_map" "user_patches" {
+#   metadata {
+#     name      = "user-patches"
+#    namespace = kubernetes_namespace.mailserver.metadata[0].name
+#     labels = {
+#       "app" = "mailserver"
+#     }
+#   }
 
-  data = {
-    "user-patches.sh" = <<-EOT
-      #!/bin/bash
-      # code-yiu Phase 5: append PROXY-speaking alt listeners to Postfix master.cf:
-      #   :2525  postscreen (alt :25)   — injected with PROXY v2 by pfSense HAProxy
-      #   :4465  smtpd (alt :465 SMTPS) — ditto, wrappermode TLS
-      #   :5587  smtpd (alt :587 submission) — ditto
-      # Stock :25/:465/:587 stay in parallel (no PROXY required) so internal
-      # Roundcube/probe traffic on mailserver.svc ClusterIP keeps working.
-      # Dovecot alt IMAPS listener on :10993 is configured via dovecot.cf
-      # (not here) because that's a Dovecot config, not a Postfix master.cf.
-      set -euxo pipefail
-      MASTER_CF=/etc/postfix/master.cf
-      SENTINEL='# code-yiu:alt-proxy'
-      if ! grep -qF "$SENTINEL" "$MASTER_CF"; then
-        cat >> "$MASTER_CF" <<'PFXEOF'
-
-      # code-yiu:alt-proxy — PROXY-speaking alt listeners for pfSense HAProxy backend pool.
-      # Mirrors stock docker-mailserver submission/submissions options (incl. SASL via
-      # Dovecot's /dev/shm/sasl-auth.sock) but with PROXY v2 upstream. chroot=n so the
-      # SASL path is readable from the smtpd process (sockets live outside /var/spool).
-      2525      inet  n       -       n       -       1       postscreen
-        -o syslog_name=postfix/smtpd-proxy25
-        -o postscreen_upstream_proxy_protocol=haproxy
-        -o postscreen_upstream_proxy_timeout=5s
-      4465      inet  n       -       n       -       -       smtpd
-        -o syslog_name=postfix/smtpd-proxy465
-        -o smtpd_tls_wrappermode=yes
-        -o smtpd_sasl_auth_enable=yes
-        -o smtpd_sasl_type=dovecot
-        -o smtpd_tls_auth_only=yes
-        -o smtpd_reject_unlisted_recipient=no
-        -o smtpd_sasl_authenticated_header=yes
-        -o smtpd_client_restrictions=permit_sasl_authenticated,reject
-        -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-        -o smtpd_sender_restrictions=$mua_sender_restrictions
-        -o smtpd_discard_ehlo_keywords=
-        -o milter_macro_daemon_name=ORIGINATING
-        -o cleanup_service_name=sender-cleanup
-        -o smtpd_upstream_proxy_protocol=haproxy
-        -o smtpd_upstream_proxy_timeout=5s
-      5587      inet  n       -       n       -       -       smtpd
-        -o syslog_name=postfix/smtpd-proxy587
-        -o smtpd_tls_security_level=encrypt
-        -o smtpd_sasl_auth_enable=yes
-        -o smtpd_sasl_type=dovecot
-        -o smtpd_tls_auth_only=yes
-        -o smtpd_reject_unlisted_recipient=no
-        -o smtpd_sasl_authenticated_header=yes
-        -o smtpd_client_restrictions=permit_sasl_authenticated,reject
-        -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-        -o smtpd_sender_restrictions=$mua_sender_restrictions
-        -o smtpd_discard_ehlo_keywords=
-        -o milter_macro_daemon_name=ORIGINATING
-        -o cleanup_service_name=sender-cleanup
-        -o smtpd_upstream_proxy_protocol=haproxy
-        -o smtpd_upstream_proxy_timeout=5s
-      PFXEOF
-      fi
-    EOT
-  }
-}
+#   data = {
+#     user_patches = <<EOF
+# #!/bin/bash
+# cp -f /tmp/dovecot.key /etc/dovecot/ssl/dovecot.key
+# cp -f /tmp/dovecot.crt /etc/dovecot/ssl/dovecot.pem 
+#     EOF
+#   }
+# }
 
 resource "kubernetes_secret" "opendkim_key" {
   metadata {
@@ -332,8 +214,7 @@ resource "kubernetes_deployment" "mailserver" {
     template {
       metadata {
         annotations = {
-          "diun.enable"       = "true"
-          "diun.include_tags" = "^latest$"
+          # "diun.enable" = "true"
         }
         labels = {
           "app"  = "mailserver"
@@ -345,14 +226,11 @@ resource "kubernetes_deployment" "mailserver" {
           name              = "docker-mailserver"
           image             = "docker.io/mailserver/docker-mailserver:15.0.0"
           image_pull_policy = "IfNotPresent"
-          # NET_ADMIN was originally required by docker-mailserver's
-          # Fail2ban (iptables ban actions). Fail2ban is DISABLED in this
-          # stack (ENABLE_FAIL2BAN=0, see above) — CrowdSec owns the
-          # brute-force policy. The capability is therefore unnecessary.
-          # Dropping it 2026-04-19 (code-4mu). If mail flow regresses,
-          # `kubectl logs -n mailserver -l app=mailserver -c docker-mailserver`
-          # will show permission-denied errors — revert if observed.
-          security_context {}
+          security_context {
+            capabilities {
+              add = ["NET_ADMIN"]
+            }
+          }
 
           lifecycle {
             post_start {
@@ -482,15 +360,6 @@ resource "kubernetes_deployment" "mailserver" {
             sub_path   = "fail2ban_conf"
             read_only  = true
           }
-          # code-yiu Phase 1a: user-patches.sh runs at container startup to
-          # append PROXY-speaking listeners to master.cf (see
-          # kubernetes_config_map.mailserver_user_patches).
-          volume_mount {
-            name       = "user-patches"
-            mount_path = "/tmp/docker-mailserver/user-patches.sh"
-            sub_path   = "user-patches.sh"
-            read_only  = true
-          }
           port {
             name           = "smtp"
             container_port = 25
@@ -511,29 +380,6 @@ resource "kubernetes_deployment" "mailserver" {
             container_port = 993
             protocol       = "TCP"
           }
-          # code-yiu Phase 5: alt PROXY-speaking listeners.
-          # Postfix: 2525 (postscreen), 4465 (smtps), 5587 (submission).
-          # Dovecot: 10993 (imaps). All require PROXY v2 from pfSense HAProxy.
-          port {
-            name           = "smtp-proxy"
-            container_port = 2525
-            protocol       = "TCP"
-          }
-          port {
-            name           = "smtps-proxy"
-            container_port = 4465
-            protocol       = "TCP"
-          }
-          port {
-            name           = "sub-proxy"
-            container_port = 5587
-            protocol       = "TCP"
-          }
-          port {
-            name           = "imaps-proxy"
-            container_port = 10993
-            protocol       = "TCP"
-          }
           env_from {
             config_map_ref {
               name = "mailserver.env.config"
@@ -550,25 +396,35 @@ resource "kubernetes_deployment" "mailserver" {
             }
           }
 
-          readiness_probe {
-            tcp_socket {
-              port = 25
-            }
-            initial_delay_seconds = 30
-            period_seconds        = 10
-          }
-
-          liveness_probe {
-            tcp_socket {
-              port = 993
-            }
-            initial_delay_seconds = 60
-            period_seconds        = 60
-            timeout_seconds       = 15
-          }
-
         }
 
+        container {
+          name  = "dovecot-exporter"
+          image = "viktorbarzin/dovecot_exporter:latest"
+          command = [
+            "/dovecot_exporter/exporter",
+            "--dovecot.socket-path=/var/run/dovecot/stats-reader"
+          ]
+          image_pull_policy = "IfNotPresent"
+          port {
+            name           = "dovecotexporter"
+            container_port = 9166
+            protocol       = "TCP"
+          }
+          volume_mount {
+            name       = "var-run-dovecot"
+            mount_path = "/var/run/dovecot"
+          }
+          resources {
+            requests = {
+              cpu    = "10m"
+              memory = "32Mi"
+            }
+            limits = {
+              memory = "32Mi"
+            }
+          }
+        }
 
         volume {
           name = "config"
@@ -600,14 +456,12 @@ resource "kubernetes_deployment" "mailserver" {
           #   fs_type       = "ext4"
           # }
         }
-        # code-yiu Phase 1a
-        volume {
-          name = "user-patches"
-          config_map {
-            name         = kubernetes_config_map.mailserver_user_patches.metadata[0].name
-            default_mode = "0755"
-          }
-        }
+        # volume {
+        #   name = "user-patches"
+        #   config_map {
+        #     name = "user-patches"
+        #   }
+        # }
         volume {
           name = "var-run-dovecot"
           empty_dir {}
@@ -624,13 +478,6 @@ resource "kubernetes_deployment" "mailserver" {
 }
 
 resource "kubernetes_service" "mailserver" {
-  # code-yiu Phase 6: downgraded from LoadBalancer (MetalLB 10.0.20.202,
-  # ETP: Local) to ClusterIP on 2026-04-19. External mail now enters via
-  # pfSense HAProxy → kubernetes_service.mailserver_proxy NodePort → alt
-  # PROXY-speaking listeners. This Service exists only for intra-cluster
-  # clients (Roundcube pod, email-roundtrip-monitor CronJob) that talk to
-  # `mailserver.mailserver.svc.cluster.local:{25,465,587,993}` on the
-  # stock (PROXY-free) container listeners.
   metadata {
     name      = "mailserver"
     namespace = kubernetes_namespace.mailserver.metadata[0].name
@@ -638,10 +485,15 @@ resource "kubernetes_service" "mailserver" {
     labels = {
       app = "mailserver"
     }
+
+    annotations = {
+      "metallb.io/loadBalancerIPs" = "10.0.20.202"
+    }
   }
 
   spec {
-    type = "ClusterIP"
+    type                    = "LoadBalancer"
+    external_traffic_policy = "Local"
     selector = {
       app = "mailserver"
     }
@@ -673,94 +525,12 @@ resource "kubernetes_service" "mailserver" {
       port        = 993
       target_port = "imap-secure"
     }
-  }
-}
 
-# The `mailserver-metrics` ClusterIP Service (formerly split from the
-# main LB in code-izl) was retired in code-1ik when the Dovecot
-# exporter was removed — the exporter spoke the pre-Dovecot-2.3
-# old_stats protocol which docker-mailserver 15.0.0 no longer
-# emits, so the scrape was a no-op. If a working exporter is ever
-# re-introduced, add back: ClusterIP Service exposing port 9166
-# with selector app=mailserver.
-
-# code-yiu Phase 1a: NodePort Service for pfSense HAProxy backend connections.
-# External SMTP flow post-cutover:
-#   Client → pfSense WAN:25 → pfSense HAProxy → k8s-node:30125 (NodePort
-#   targeting container :2525 on any node, ETP: Cluster) → pod postscreen
-#   with PROXY v2 parsing → real client IP in maillog.
-# Internal flow (Roundcube, probe) stays on the mailserver ClusterIP Service
-# hitting container :25 without PROXY — unchanged.
-resource "kubernetes_service" "mailserver_proxy" {
-  metadata {
-    name      = "mailserver-proxy"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-    labels = {
-      app = "mailserver"
-    }
-  }
-  spec {
-    type                    = "NodePort"
-    external_traffic_policy = "Cluster"
-    selector = {
-      app = "mailserver"
-    }
     port {
-      name        = "smtp-proxy"
+      name        = "dovecot-metrics"
       protocol    = "TCP"
-      port        = 25
-      target_port = 2525
-      node_port   = 30125
-    }
-    port {
-      name        = "smtps-proxy"
-      protocol    = "TCP"
-      port        = 465
-      target_port = 4465
-      node_port   = 30126
-    }
-    port {
-      name        = "sub-proxy"
-      protocol    = "TCP"
-      port        = 587
-      target_port = 5587
-      node_port   = 30127
-    }
-    port {
-      name        = "imaps-proxy"
-      protocol    = "TCP"
-      port        = 993
-      target_port = 10993
-      node_port   = 30128
-    }
-    # Dedicated non-PROXY healthcheck NodePorts. HAProxy on pfSense uses
-    # `option smtpchk` against these stock pod ports (25/465/587, no PROXY)
-    # so health probes don't hit the smtpd_peer_hostaddr_to_sockaddr fatal
-    # that fires on PROXY-v2 LOCAL/AF_UNSPEC frames sent during checks. The
-    # data path (30125-30128 → 2525/4465/5587/10993) still gets PROXY v2 for
-    # real client IP visibility — only the healthcheck path is split off.
-    # See infra/scripts/pfsense-haproxy-bootstrap.php (`check port` directive)
-    # and docs/runbooks/mailserver-pfsense-haproxy.md.
-    port {
-      name        = "smtp-check"
-      protocol    = "TCP"
-      port        = 2500
-      target_port = 25
-      node_port   = 30145
-    }
-    port {
-      name        = "smtps-check"
-      protocol    = "TCP"
-      port        = 4650
-      target_port = 465
-      node_port   = 30146
-    }
-    port {
-      name        = "sub-check"
-      protocol    = "TCP"
-      port        = 5870
-      target_port = 587
-      node_port   = 30147
+      port        = 9166
+      target_port = 9166
     }
   }
 }
@@ -769,61 +539,6 @@ resource "kubernetes_service" "mailserver_proxy" {
 # E2E Email Roundtrip Monitor
 # Sends test email via Brevo API, verifies delivery via IMAP, pushes metrics
 # =============================================================================
-# ExternalSecret syncing the probe's Vault inputs into a K8s Secret, so
-# `kubectl describe cronjob email-roundtrip-monitor` no longer leaks the
-# Brevo API key and IMAP password via `env[].value`. The two upstream Vault
-# entries both wrap the effective secret:
-#   - secret/viktor  → brevo_api_key     = base64(JSON({"api_key": "..."}))
-#   - secret/platform → mailserver_accounts = JSON({"spam@viktorbarzin.me": "<pw>", ...})
-# ESO's `target.template` (engineVersion v2) runs sprig on the raw remote
-# values so the rendered K8s Secret contains ONLY the two env vars the probe
-# actually needs, under the exact keys `BREVO_API_KEY` and
-# `EMAIL_MONITOR_IMAP_PASSWORD` so the CronJob can consume them via a single
-# `env_from { secret_ref {} }` block.
-resource "kubernetes_manifest" "email_roundtrip_monitor_secrets" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "mailserver-probe-secrets"
-      namespace = kubernetes_namespace.mailserver.metadata[0].name
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "mailserver-probe-secrets"
-        template = {
-          engineVersion = "v2"
-          data = {
-            BREVO_API_KEY               = "{{ .brevo_api_key_wrapped | b64dec | fromJson | dig \"api_key\" \"\" }}"
-            EMAIL_MONITOR_IMAP_PASSWORD = "{{ .mailserver_accounts | fromJson | dig \"spam@viktorbarzin.me\" \"\" }}"
-          }
-        }
-      }
-      data = [
-        {
-          secretKey = "brevo_api_key_wrapped"
-          remoteRef = {
-            key      = "viktor"
-            property = "brevo_api_key"
-          }
-        },
-        {
-          secretKey = "mailserver_accounts"
-          remoteRef = {
-            key      = "platform"
-            property = "mailserver_accounts"
-          }
-        },
-      ]
-    }
-  }
-}
-
 resource "kubernetes_cron_job_v1" "email_roundtrip_monitor" {
   metadata {
     name      = "email-roundtrip-monitor"
@@ -858,32 +573,11 @@ DOMAIN = "viktorbarzin.me"
 
 marker = f"e2e-probe-{uuid.uuid4().hex[:12]}"
 subject = f"[E2E Monitor] {marker}"
-recipient = f"smoke-test@{DOMAIN}"
 start = time.time()
 success = 0
 duration = 0
 
 try:
-    # Step 0: Defensive unblock. Brevo permanently blocks a recipient after a
-    # single hardBounce — once blocked, every subsequent /smtp/email request
-    # returns 201 but the message is silently dropped (event=blocked).
-    # Single transient pod outage → permanent probe outage. Idempotent: 204 if
-    # the recipient was blocked, 404 if not blocked — both are fine.
-    # NOTE: this script is wrapped in shell single quotes (see the python3 -c
-    # invocation above). Do NOT use apostrophes anywhere here, including in
-    # comments — a stray apostrophe terminates the shell string and Python
-    # only sees the prefix, raising IndentationError on this try block.
-    try:
-        unblock = requests.delete(
-            f"https://api.brevo.com/v3/smtp/blockedContacts/{recipient}",
-            headers={"api-key": BREVO_API_KEY, "Accept": "application/json"},
-            timeout=10,
-        )
-        if unblock.status_code == 204:
-            print(f"WARN: {recipient} was blocked at Brevo, unblocked")
-    except Exception as ue:
-        print(f"Unblock attempt failed (non-critical): {ue}")
-
     # Step 1: Send via Brevo Transactional Email API to smoke-test@ (hits catch-all -> spam@)
     resp = requests.post(
         "https://api.brevo.com/v3/smtp/email",
@@ -894,7 +588,7 @@ try:
         },
         json={
             "sender": {"name": "Monitoring", "email": f"monitoring@{DOMAIN}"},
-            "to": [{"email": recipient}],
+            "to": [{"email": f"smoke-test@{DOMAIN}"}],
             "subject": subject,
             "textContent": f"E2E email monitoring probe {marker}. Auto-generated, will be deleted.",
         },
@@ -903,15 +597,15 @@ try:
     resp.raise_for_status()
     print(f"Sent test email via Brevo: {resp.status_code} marker={marker}")
 
-    # Step 2: Wait for delivery, retry IMAP up to 5 min (15 x 20s)
+    # Step 2: Wait for delivery, retry IMAP up to 3 min
     ctx = ssl.create_default_context()
     ctx.check_hostname = False
     ctx.verify_mode = ssl.CERT_NONE
     found = False
-    for attempt in range(15):
+    for attempt in range(9):
         time.sleep(20)
         try:
-            imap = imaplib.IMAP4_SSL(IMAP_HOST, 993, ssl_context=ctx, timeout=10)
+            imap = imaplib.IMAP4_SSL(IMAP_HOST, 993, ssl_context=ctx)
             imap.login(IMAP_USER, IMAP_PASS)
             imap.select("INBOX")
             _, msg_ids = imap.search(None, "SUBJECT", marker)
@@ -947,75 +641,42 @@ except Exception as e:
     duration = time.time() - start
     print(f"ERROR: {e}")
 
-# Push metrics to Pushgateway. On failure we omit email_roundtrip_last_success_timestamp
-# and POST (not PUT) so the prior successful timestamp is preserved — otherwise pushing 0
-# makes EmailRoundtripStale fire immediately alongside EmailRoundtripFailing.
-metric_lines = [
-    "# HELP email_roundtrip_success Whether the last e2e email probe succeeded",
-    "# TYPE email_roundtrip_success gauge",
-    f"email_roundtrip_success {success}",
-    "# HELP email_roundtrip_duration_seconds Duration of the last e2e email probe",
-    "# TYPE email_roundtrip_duration_seconds gauge",
-    f"email_roundtrip_duration_seconds {duration:.2f}",
-]
-if success:
-    metric_lines += [
-        "# HELP email_roundtrip_last_success_timestamp Unix timestamp of last successful probe",
-        "# TYPE email_roundtrip_last_success_timestamp gauge",
-        f"email_roundtrip_last_success_timestamp {int(time.time())}",
-    ]
-metrics = "\n".join(metric_lines) + "\n"
-UPTIME_KUMA_URL = "http://uptime-kuma.uptime-kuma.svc.cluster.local/api/push/hLtyRKgeZO?status=up&msg=OK&ping=" + str(int(duration))
-
-def push_with_retry(label, func, url):
-    # 3 attempts with exponential backoff (1s, 2s, 4s). Returns True on success, False otherwise.
-    # Final failure logs ERROR with URL + status code (or exception) so the pod log surfaces the drop.
-    last_status = None
-    last_exc = None
-    for attempt in range(3):
-        try:
-            resp = func()
-            last_status = resp.status_code
-            if 200 <= resp.status_code < 300:
-                print(f"Pushed to {label} (attempt {attempt+1}, status {resp.status_code})")
-                return True
-            last_exc = None
-        except Exception as e:
-            last_exc = e
-            last_status = None
-        if attempt < 2:
-            time.sleep(2 ** attempt)
-    detail = f"status={last_status}" if last_exc is None else f"exception={last_exc!r}"
-    print(f"ERROR: Failed to push to {label} after 3 attempts: url={url} {detail}", file=sys.stderr)
-    return False
-
-pushgateway_ok = push_with_retry(
-    "Pushgateway",
-    lambda: requests.post(PUSHGATEWAY, data=metrics, timeout=10),
-    PUSHGATEWAY,
-)
+# Push metrics to Pushgateway
+metrics = f"""# HELP email_roundtrip_success Whether the last e2e email probe succeeded
+# TYPE email_roundtrip_success gauge
+email_roundtrip_success {success}
+# HELP email_roundtrip_duration_seconds Duration of the last e2e email probe
+# TYPE email_roundtrip_duration_seconds gauge
+email_roundtrip_duration_seconds {duration:.2f}
+# HELP email_roundtrip_last_success_timestamp Unix timestamp of last successful probe
+# TYPE email_roundtrip_last_success_timestamp gauge
+email_roundtrip_last_success_timestamp {int(time.time()) if success else 0}
+"""
+try:
+    requests.put(PUSHGATEWAY, data=metrics, timeout=10)
+    print("Pushed metrics to Pushgateway")
+except Exception as e:
+    print(f"Failed to push metrics: {e}")
 
 # Push to Uptime Kuma on success
-uptime_kuma_ok = True
 if success:
-    uptime_kuma_ok = push_with_retry(
-        "Uptime Kuma",
-        lambda: requests.get(UPTIME_KUMA_URL, timeout=10),
-        UPTIME_KUMA_URL,
-    )
+    try:
+        requests.get("http://uptime-kuma.uptime-kuma.svc.cluster.local/api/push/hLtyRKgeZO?status=up&msg=OK&ping=" + str(int(duration)), timeout=10)
+        print("Pushed to Uptime Kuma")
+    except Exception as e:
+        print(f"Failed to push to Uptime Kuma: {e}")
 
-# Exit non-zero when the round-trip itself failed, OR when BOTH push endpoints
-# failed after all retries (only possible on the success path — on failure we
-# only attempt Pushgateway, and the round-trip failure already dominates exit).
-both_pushes_failed = success and (not pushgateway_ok) and (not uptime_kuma_ok)
-sys.exit(0 if (success and not both_pushes_failed) else 1)
+sys.exit(0 if success else 1)
 '
               EOT
               ]
-              env_from {
-                secret_ref {
-                  name = "mailserver-probe-secrets"
-                }
+              env {
+                name  = "BREVO_API_KEY"
+                value = var.brevo_api_key
+              }
+              env {
+                name  = "EMAIL_MONITOR_IMAP_PASSWORD"
+                value = var.email_monitor_imap_password
               }
               resources {
                 requests = {
@@ -1038,542 +699,5 @@ sys.exit(0 if (success and not both_pushes_failed) else 1)
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
-# =============================================================================
-# Mailserver Backup — Daily rsync of maildirs, mail-state, and log
-# Pattern mirrors vaultwarden-backup (pod_affinity for RWO co-location, /backup
-# write to NFS, Pushgateway metrics). Runs at 03:00 to avoid overlap with
-# mysql-backup (00:30), vaultwarden-backup (*/6h), email-roundtrip (*/20m).
-# Total loss of this PVC = all maildirs + DKIM keys gone; regenerating DKIM
-# requires DNS changes, hence backup is critical.
-# =============================================================================
-module "nfs_mailserver_backup_host" {
-  source     = "../../../../modules/kubernetes/nfs_volume"
-  name       = "mailserver-backup-host"
-  namespace  = kubernetes_namespace.mailserver.metadata[0].name
-  nfs_server = var.nfs_server
-  nfs_path   = "/srv/nfs/mailserver-backup"
-}
-
-resource "kubernetes_cron_job_v1" "mailserver-backup" {
-  metadata {
-    name      = "mailserver-backup"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-  }
-  spec {
-    concurrency_policy            = "Replace"
-    failed_jobs_history_limit     = 5
-    schedule                      = "0 3 * * *"
-    starting_deadline_seconds     = 10
-    successful_jobs_history_limit = 10
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 3
-        ttl_seconds_after_finished = 10
-        template {
-          metadata {}
-          spec {
-            # RWO co-location: backup pod must land on the same node as the
-            # mailserver pod because mailserver-data-encrypted is ReadWriteOnce.
-            affinity {
-              pod_affinity {
-                required_during_scheduling_ignored_during_execution {
-                  label_selector {
-                    match_labels = {
-                      app = "mailserver"
-                    }
-                  }
-                  topology_key = "kubernetes.io/hostname"
-                }
-              }
-            }
-            container {
-              name  = "mailserver-backup"
-              image = "docker.io/library/alpine"
-              command = ["/bin/sh", "-c", <<-EOT
-                set -euxo pipefail
-                apk add --no-cache rsync
-                _t0=$(date +%s)
-                _rb0=$(awk '/^read_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-                _wb0=$(awk '/^write_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-
-                week=$(date +"%Y-%W")
-                prev_week=$(date -d "-7 days" +"%Y-%W" 2>/dev/null || echo "")
-                dst=/backup/$week
-                mkdir -p "$dst"
-
-                # Use --link-dest against previous week for space-efficient
-                # incrementals (unchanged files are hardlinked, not re-copied).
-                link_dest_arg=""
-                if [ -n "$prev_week" ] && [ -d "/backup/$prev_week" ]; then
-                  link_dest_arg="--link-dest=/backup/$prev_week"
-                fi
-
-                # Mailserver data layout (from deployment subPath mounts):
-                #   /var/mail       -> data (maildirs)
-                #   /var/mail-state -> state (postfix, dovecot, rspamd, dkim keys)
-                #   /var/log/mail   -> log  (mail logs)
-                for src in /var/mail /var/mail-state /var/log/mail; do
-                  [ -d "$src" ] || { echo "SKIP missing $src"; continue; }
-                  name=$(basename "$src")
-                  rsync -aH --delete $link_dest_arg "$src/" "$dst/$name/"
-                done
-
-                # Rotate — keep 8 weekly snapshots (~2 months)
-                find /backup -maxdepth 1 -mindepth 1 -type d -regex '.*/[0-9]+-[0-9]+$' | sort | head -n -8 | xargs -r rm -rf
-
-                _dur=$(($(date +%s) - _t0))
-                _rb1=$(awk '/^read_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-                _wb1=$(awk '/^write_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-                echo "=== Backup IO Stats ==="
-                echo "duration: $${_dur}s"
-                echo "read:    $(( (_rb1 - _rb0) / 1048576 )) MiB"
-                echo "written: $(( (_wb1 - _wb0) / 1048576 )) MiB"
-                echo "output:  $(du -sh "$dst" | awk '{print $1}')"
-
-                _out_bytes=$(du -sb "$dst" | awk '{print $1}')
-                wget -qO- --post-data "backup_duration_seconds $${_dur}
-                backup_read_bytes $(( _rb1 - _rb0 ))
-                backup_written_bytes $(( _wb1 - _wb0 ))
-                backup_output_bytes $${_out_bytes}
-                backup_last_success_timestamp $(date +%s)
-                " "http://prometheus-prometheus-pushgateway.monitoring:9091/metrics/job/mailserver-backup" || true
-              EOT
-              ]
-              volume_mount {
-                name       = "data"
-                mount_path = "/var/mail"
-                sub_path   = "data"
-                read_only  = true
-              }
-              volume_mount {
-                name       = "data"
-                mount_path = "/var/mail-state"
-                sub_path   = "state"
-                read_only  = true
-              }
-              volume_mount {
-                name       = "data"
-                mount_path = "/var/log/mail"
-                sub_path   = "log"
-                read_only  = true
-              }
-              volume_mount {
-                name       = "backup"
-                mount_path = "/backup"
-              }
-            }
-            volume {
-              name = "data"
-              persistent_volume_claim {
-                claim_name = kubernetes_persistent_volume_claim.data_encrypted.metadata[0].name
-                read_only  = true
-              }
-            }
-            volume {
-              name = "backup"
-              persistent_volume_claim {
-                claim_name = module.nfs_mailserver_backup_host.claim_name
-              }
-            }
-            dns_config {
-              option {
-                name  = "ndots"
-                value = "2"
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# =============================================================================
-# Roundcube Backup — Daily rsync of html + enigma PVCs to NFS
-# Roundcube uses two encrypted RWO PVCs (see roundcubemail.tf):
-#   - roundcubemail-html-encrypted   → /var/www/html (plugins, user sessions, skin overrides)
-#   - roundcubemail-enigma-encrypted → /var/roundcube/enigma (user-uploaded PGP keys)
-# Losing either one = users lose plugin state + have to re-import PGP keys.
-# Mirrors the mailserver-backup pattern but:
-#   - pod_affinity targets app=roundcubemail (both PVCs attach to the
-#     Roundcube pod, not mailserver)
-#   - schedule offset by +10m (03:10) so two NFS-writers don't overlap
-#   - writes to /srv/nfs/roundcube-backup/<YYYY-WW>/{html,enigma}/
-# =============================================================================
-module "nfs_roundcube_backup_host" {
-  source     = "../../../../modules/kubernetes/nfs_volume"
-  name       = "roundcube-backup-host"
-  namespace  = kubernetes_namespace.mailserver.metadata[0].name
-  nfs_server = var.nfs_server
-  nfs_path   = "/srv/nfs/roundcube-backup"
-}
-
-resource "kubernetes_cron_job_v1" "roundcube-backup" {
-  metadata {
-    name      = "roundcube-backup"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-  }
-  spec {
-    concurrency_policy        = "Replace"
-    failed_jobs_history_limit = 5
-    # +10 min offset vs mailserver-backup (03:00) to avoid NFS contention.
-    schedule                      = "10 3 * * *"
-    starting_deadline_seconds     = 10
-    successful_jobs_history_limit = 10
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 3
-        ttl_seconds_after_finished = 10
-        template {
-          metadata {}
-          spec {
-            # RWO co-location: Roundcube PVCs are ReadWriteOnce; the backup
-            # pod must land on the same node as the Roundcube pod (single
-            # replica, Recreate strategy — see roundcubemail.tf).
-            affinity {
-              pod_affinity {
-                required_during_scheduling_ignored_during_execution {
-                  label_selector {
-                    match_labels = {
-                      app = "roundcubemail"
-                    }
-                  }
-                  topology_key = "kubernetes.io/hostname"
-                }
-              }
-            }
-            container {
-              name  = "roundcube-backup"
-              image = "docker.io/library/alpine"
-              command = ["/bin/sh", "-c", <<-EOT
-                set -euxo pipefail
-                apk add --no-cache rsync
-                _t0=$(date +%s)
-                _rb0=$(awk '/^read_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-                _wb0=$(awk '/^write_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-
-                week=$(date +"%Y-%W")
-                prev_week=$(date -d "-7 days" +"%Y-%W" 2>/dev/null || echo "")
-                dst=/backup/$week
-                mkdir -p "$dst"
-
-                # Use --link-dest against previous week for space-efficient
-                # incrementals (unchanged files are hardlinked, not re-copied).
-                link_dest_arg=""
-                if [ -n "$prev_week" ] && [ -d "/backup/$prev_week" ]; then
-                  link_dest_arg="--link-dest=/backup/$prev_week"
-                fi
-
-                # Roundcube data layout (from deployment volume mounts in roundcubemail.tf):
-                #   /src/html   -> roundcubemail-html-encrypted   (html PVC)
-                #   /src/enigma -> roundcubemail-enigma-encrypted (enigma PVC, PGP keys)
-                for src in /src/html /src/enigma; do
-                  [ -d "$src" ] || { echo "SKIP missing $src"; continue; }
-                  name=$(basename "$src")
-                  rsync -aH --delete $link_dest_arg "$src/" "$dst/$name/"
-                done
-
-                # Rotate — keep 8 weekly snapshots (~2 months)
-                find /backup -maxdepth 1 -mindepth 1 -type d -regex '.*/[0-9]+-[0-9]+$' | sort | head -n -8 | xargs -r rm -rf
-
-                _dur=$(($(date +%s) - _t0))
-                _rb1=$(awk '/^read_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-                _wb1=$(awk '/^write_bytes/{print $2}' /proc/$$/io 2>/dev/null || echo 0)
-                echo "=== Backup IO Stats ==="
-                echo "duration: $${_dur}s"
-                echo "read:    $(( (_rb1 - _rb0) / 1048576 )) MiB"
-                echo "written: $(( (_wb1 - _wb0) / 1048576 )) MiB"
-                echo "output:  $(du -sh "$dst" | awk '{print $1}')"
-
-                _out_bytes=$(du -sb "$dst" | awk '{print $1}')
-                wget -qO- --post-data "backup_duration_seconds $${_dur}
-                backup_read_bytes $(( _rb1 - _rb0 ))
-                backup_written_bytes $(( _wb1 - _wb0 ))
-                backup_output_bytes $${_out_bytes}
-                backup_last_success_timestamp $(date +%s)
-                " "http://prometheus-prometheus-pushgateway.monitoring:9091/metrics/job/roundcube-backup" || true
-              EOT
-              ]
-              volume_mount {
-                name       = "html"
-                mount_path = "/src/html"
-                read_only  = true
-              }
-              volume_mount {
-                name       = "enigma"
-                mount_path = "/src/enigma"
-                read_only  = true
-              }
-              volume_mount {
-                name       = "backup"
-                mount_path = "/backup"
-              }
-            }
-            volume {
-              name = "html"
-              persistent_volume_claim {
-                claim_name = kubernetes_persistent_volume_claim.roundcube_html_encrypted.metadata[0].name
-                read_only  = true
-              }
-            }
-            volume {
-              name = "enigma"
-              persistent_volume_claim {
-                claim_name = kubernetes_persistent_volume_claim.roundcube_enigma_encrypted.metadata[0].name
-                read_only  = true
-              }
-            }
-            volume {
-              name = "backup"
-              persistent_volume_claim {
-                claim_name = module.nfs_roundcube_backup_host.claim_name
-              }
-            }
-            dns_config {
-              option {
-                name  = "ndots"
-                value = "2"
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-
-# =============================================================================
-# Spam mailbox targeted retention (code-oy4)
-#
-# The @viktorbarzin.me catch-all routes to spam@viktorbarzin.me. Unbounded
-# growth (~43 MiB baseline on 2026-04-18, 519 messages, top sender
-# tldrnewsletter.com = 138 msgs / 8.2 MiB) makes it painful to triage.
-# Profile (2026-04-18):
-#   - 502/519 messages older than 14 days (97 %)
-#   - 342/519 carry List-Unsubscribe:     (66 %)
-#   -  21/519 carry Precedence: bulk      ( 4 %)
-#   - 177/519 carry neither marker (= human-ish, 34 %)
-#
-# Strategy (user-signed-off 2026-04-18, do NOT blind-age-expunge):
-#   - Messages older than 14 days carrying List-Unsubscribe OR
-#     Precedence: bulk|list|junk OR Auto-Submitted: auto-* -> DELETE
-#   - Messages older than 90 days with no automated-sender marker
-#     -> DELETE (long-tail human forwards)
-#   - Everything else -> KEEP
-#
-# Implementation: kubectl exec into the mailserver pod because the
-# Maildir lives on a RWO encrypted PVC; a sibling CronJob would fail to
-# attach the volume while the mailserver pod holds it. Pattern mirrors
-# the `nextcloud-watchdog` in stacks/nextcloud/main.tf.
-# =============================================================================
-resource "kubernetes_service_account" "spam_retention" {
-  metadata {
-    name      = "spam-retention"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-  }
-}
-
-resource "kubernetes_role" "spam_retention" {
-  metadata {
-    name      = "spam-retention"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-  }
-  rule {
-    api_groups = [""]
-    resources  = ["pods"]
-    verbs      = ["list", "get"]
-  }
-  rule {
-    api_groups = [""]
-    resources  = ["pods/exec"]
-    verbs      = ["create"]
-  }
-}
-
-resource "kubernetes_role_binding" "spam_retention" {
-  metadata {
-    name      = "spam-retention"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-  }
-  role_ref {
-    api_group = "rbac.authorization.k8s.io"
-    kind      = "Role"
-    name      = kubernetes_role.spam_retention.metadata[0].name
-  }
-  subject {
-    kind      = "ServiceAccount"
-    name      = kubernetes_service_account.spam_retention.metadata[0].name
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-  }
-}
-
-resource "kubernetes_cron_job_v1" "spam_retention" {
-  metadata {
-    name      = "spam-retention"
-    namespace = kubernetes_namespace.mailserver.metadata[0].name
-  }
-  spec {
-    schedule                      = "17 */4 * * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 2
-    failed_jobs_history_limit     = 3
-    starting_deadline_seconds     = 300
-    job_template {
-      metadata {}
-      spec {
-        active_deadline_seconds    = 600
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 600
-        template {
-          metadata {}
-          spec {
-            service_account_name = kubernetes_service_account.spam_retention.metadata[0].name
-            restart_policy       = "Never"
-            container {
-              name  = "spam-retention"
-              image = "bitnami/kubectl:latest"
-              command = ["/bin/bash", "-c", <<-EOF
-                set -euo pipefail
-
-                POD=$(kubectl -n mailserver get pods -l app=mailserver -o jsonpath='{.items[0].metadata.name}')
-                if [ -z "$POD" ]; then
-                  echo "ERROR: no mailserver pod found" >&2
-                  exit 1
-                fi
-                echo "Targeting pod $POD"
-
-                # Stream the retention script to python3 inside the mailserver
-                # container via stdin. Keeping the logic in Python avoids the
-                # POSIX-sh/awk fragility around stat(1) differences and header
-                # matching.
-                kubectl -n mailserver exec -i "$POD" -c docker-mailserver -- python3 - <<'PYEOF'
-                import os
-                import re
-                import sys
-                import time
-
-                SPAM = "/var/mail/viktorbarzin.me/spam/cur"
-                # Retention thresholds, in days, one per rule.
-                AUTOMATED_MAX_AGE_DAYS = 14
-                HUMAN_MAX_AGE_DAYS     = 90
-                HEADER_SCAN_BYTES      = 65536
-
-                AUTO_PATTERNS = (
-                    re.compile(rb"^list-unsubscribe:", re.IGNORECASE),
-                    re.compile(rb"^precedence:\s*(bulk|list|junk)", re.IGNORECASE),
-                    re.compile(rb"^auto-submitted:\s*auto-", re.IGNORECASE),
-                )
-
-                def is_automated(path):
-                    try:
-                        with open(path, "rb") as fh:
-                            head = fh.read(HEADER_SCAN_BYTES)
-                    except OSError:
-                        return False
-                    hdr, _, _ = head.partition(b"\r\n\r\n")
-                    if hdr == head:
-                        hdr, _, _ = head.partition(b"\n\n")
-                    for line in hdr.splitlines():
-                        for pat in AUTO_PATTERNS:
-                            if pat.search(line):
-                                return True
-                    return False
-
-                if not os.path.isdir(SPAM):
-                    print(f"SKIP: {SPAM} does not exist")
-                    sys.exit(0)
-
-                now = time.time()
-                scanned = auto_deleted = human_deleted = kept = errors = 0
-
-                for entry in sorted(os.listdir(SPAM)):
-                    path = os.path.join(SPAM, entry)
-                    try:
-                        st = os.stat(path)
-                    except OSError:
-                        errors += 1
-                        continue
-                    if not os.path.isfile(path):
-                        continue
-                    scanned += 1
-                    age_days = (now - st.st_mtime) / 86400
-                    automated = is_automated(path)
-
-                    if automated and age_days > AUTOMATED_MAX_AGE_DAYS:
-                        try:
-                            os.unlink(path)
-                            auto_deleted += 1
-                        except OSError:
-                            errors += 1
-                        continue
-                    if (not automated) and age_days > HUMAN_MAX_AGE_DAYS:
-                        try:
-                            os.unlink(path)
-                            human_deleted += 1
-                        except OSError:
-                            errors += 1
-                        continue
-                    kept += 1
-
-                # Metric lines (Pushgateway-compatible format). The parent
-                # kubectl wrapper logs them for now; Pushgateway integration
-                # is a follow-up.
-                print(f"spam_retention_scanned_total {scanned}")
-                print(f"spam_retention_auto_deleted_total {auto_deleted}")
-                print(f"spam_retention_human_deleted_total {human_deleted}")
-                print(f"spam_retention_kept_total {kept}")
-                print(f"spam_retention_errors_total {errors}")
-
-                sys.exit(1 if errors else 0)
-                PYEOF
-
-                # Refresh Dovecot index so IMAP sees the deletions immediately.
-                kubectl -n mailserver exec "$POD" -c docker-mailserver -- \
-                  doveadm force-resync -u spam@viktorbarzin.me INBOX/spam || true
-
-                echo "Retention pass complete"
-              EOF
-              ]
-              resources {
-                requests = {
-                  cpu    = "10m"
-                  memory = "32Mi"
-                }
-                limits = {
-                  memory = "128Mi"
-                }
-              }
-            }
-            dns_config {
-              option {
-                name  = "ndots"
-                value = "2"
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/mailserver/modules/mailserver/roundcubemail.tf b/stacks/mailserver/modules/mailserver/roundcubemail.tf
index d1e4c623..4ddf7892 100644
--- a/stacks/mailserver/modules/mailserver/roundcubemail.tf
+++ b/stacks/mailserver/modules/mailserver/roundcubemail.tf
@@ -231,10 +231,6 @@ resource "kubernetes_deployment" "roundcubemail" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "roundcubemail" {
@@ -267,7 +263,6 @@ module "ingress" {
   name            = "mail"
   service_name    = "roundcubemail"
   tls_secret_name = var.tls_secret_name
-  protected       = true
   extra_annotations = {
     "gethomepage.dev/enabled"      = "true"
     "gethomepage.dev/name"         = "Roundcube Mail"
diff --git a/stacks/mailserver/modules/mailserver/variables.tf b/stacks/mailserver/modules/mailserver/variables.tf
index 72d8f308..d63b278c 100644
--- a/stacks/mailserver/modules/mailserver/variables.tf
+++ b/stacks/mailserver/modules/mailserver/variables.tf
@@ -12,13 +12,6 @@ smtp_tls_security_level = encrypt
 smtpd_tls_cert_file=/tmp/ssl/tls.crt
 smtpd_tls_key_file=/tmp/ssl/tls.key
 smtpd_use_tls=yes
-# Require STARTTLS before any AUTH command on the SMTPD listener.
-# Without this, a misconfigured client that skips STARTTLS would send
-# PLAIN/LOGIN creds in the clear. docker-mailserver's default does NOT
-# enforce this at the main.cf level for submission (587).
-# Note: smtpd_sasl_auth_only (sometimes cited) is NOT a real Postfix
-# parameter — only smtpd_tls_auth_only is. Addresses code-vnw.
-smtpd_tls_auth_only = yes
 header_size_limit = 4096000
 
 # Debug mail tls
@@ -30,17 +23,141 @@ smtpd_tls_loglevel = 1
 smtpd_client_connection_rate_limit = 10
 smtpd_client_message_rate_limit = 30
 anvil_rate_time_unit = 60s
-
-# Disable the postscreen decision cache. The default (btree) driver
-# requires an exclusive file lock for every access, and with postscreen
-# re-spawning per connection (master.cf: maxproc=1) that produces thousands
-# of 'unable to get exclusive lock' fatals per day — stalling SMTP
-# acceptance and starving inbound delivery. lmdb would avoid the lock but
-# isn't compiled into docker-mailserver 15.0.0's Postfix build
-# (postconf -m → no lmdb). Proxy:btree is unsafe because postscreen does
-# its own locking. An empty value disables the cache entirely — legitimate
-# clients pay the greet/bare-newline re-check on every new TCP session,
-# which is trivial at our volume (~100 deliveries/day).
-postscreen_cache_map =
 EOT
 }
+
+variable "postfix_cf_reference_DO_NOT_USE" {
+  default = <<EOT
+# See /usr/share/postfix/main.cf.dist for a commented, more complete version
+
+smtpd_banner = $myhostname ESMTP $mail_name (Debian)
+biff = no
+append_dot_mydomain = no
+readme_directory = no
+
+# Basic configuration
+# myhostname =
+alias_maps = hash:/etc/aliases
+alias_database = hash:/etc/aliases
+mydestination = $myhostname, localhost.$mydomain, localhost
+mynetworks = 127.0.0.0/8 [::1]/128 [fe80::]/64 
+mailbox_size_limit = 0
+recipient_delimiter = +
+inet_interfaces = all
+inet_protocols = ipv4
+
+# TLS parameters
+smtpd_tls_cert_file=/tmp/ssl/tls.crt
+smtpd_tls_key_file=/tmp/ssl/tls.key
+#smtpd_tls_CAfile=
+#smtp_tls_CAfile=
+smtpd_tls_security_level = may
+smtpd_use_tls=yes
+smtpd_tls_loglevel = 1
+smtp_tls_loglevel = 1
+tls_ssl_options = NO_COMPRESSION
+tls_high_cipherlist = ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
+tls_preempt_cipherlist = yes
+smtpd_tls_protocols = !SSLv2,!SSLv3
+smtp_tls_protocols = !SSLv2,!SSLv3
+smtpd_tls_mandatory_ciphers = high
+smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3
+smtpd_tls_exclude_ciphers = aNULL, LOW, EXP, MEDIUM, ADH, AECDH, MD5, DSS, ECDSA, CAMELLIA128, 3DES, CAMELLIA256, RSA+AES, eNULL
+smtpd_tls_dh1024_param_file = /etc/postfix/dhparams.pem
+smtpd_tls_CApath = /etc/ssl/certs
+smtp_tls_CApath = /etc/ssl/certs
+
+# Settings to prevent SPAM early
+smtpd_helo_required = yes
+smtpd_delay_reject = yes
+smtpd_helo_restrictions = permit_mynetworks, reject_invalid_helo_hostname, permit
+#smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
+#smtpd_relay_restrictions = reject_sender_login_mismatch permit_sasl_authenticated permit_mynetworks defer_unauth_destination
+smtpd_relay_restrictions = reject_sender_login_mismatch permit_sasl_authenticated permit_mynetworks defer_unauth_destination
+smtpd_recipient_restrictions = permit_sasl_authenticated, reject_unauth_destination, reject_unauth_pipelining, reject_invalid_helo_hostname, reject_non_fqdn_helo_hostname, reject_unknown_recipient_domain, reject_rbl_client bl.spamcop.net, permit_mynetworks
+smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_unauth_pipelining
+#smtpd_sender_restrictions = reject_sender_login_mismatch, permit_sasl_authenticated, permit_mynetworks, reject_unknown_sender_domain 
+smtpd_sender_restrictions = reject_sender_login_mismatch, reject_authenticated_sender_login_mismatch,  reject_unknown_sender_domain, permit_sasl_authenticated, permit_mynetworks
+disable_vrfy_command = yes
+
+# Postscreen settings to drop zombies/open relays/spam early
+#postscreen_dnsbl_action = enforce
+postscreen_dnsbl_action = ignore
+postscreen_dnsbl_sites = zen.spamhaus.org*2
+        bl.mailspike.net
+        b.barracudacentral.org*2
+        bl.spameatingmonkey.net
+        bl.spamcop.net
+        dnsbl.sorbs.net
+        psbl.surriel.com
+        list.dnswl.org=127.0.[0..255].0*-2
+        list.dnswl.org=127.0.[0..255].1*-3
+        list.dnswl.org=127.0.[0..255].[2..3]*-4
+postscreen_dnsbl_threshold = 3
+postscreen_dnsbl_whitelist_threshold = -1
+postscreen_greet_action = enforce
+postscreen_bare_newline_action = enforce
+
+# SASL
+smtpd_sasl_auth_enable = no
+#smtpd_sasl_auth_enable = yes
+##smtpd_sasl_path = /var/spool/postfix/private/auth
+#smtpd_sasl_path = /var/spool/postfix/private/smtpd
+##smtpd_sasl_type = dovecot
+#smtpd_sasl_type = dovecot
+##smtpd_sasl_security_options = noanonymous
+#smtpd_sasl_security_options = noanonymous
+##smtpd_sasl_local_domain = $mydomain
+##broken_sasl_auth_clients = yes
+#broken_sasl_auth_clients = yes
+
+# SMTP configuration
+smtp_sasl_auth_enable = yes
+smtp_sasl_password_maps = hash:/etc/postfix/sasl/passwd
+smtp_sasl_security_options = noanonymous
+smtp_sasl_tls_security_options = noanonymous
+smtp_tls_security_level = encrypt
+header_size_limit = 4096000
+relayhost = [smtp.sendgrid.net]:587
+
+# Mail directory
+virtual_transport = lmtp:unix:/var/run/dovecot/lmtp
+virtual_mailbox_domains = /etc/postfix/vhost
+virtual_mailbox_maps = texthash:/etc/postfix/vmailbox
+virtual_alias_maps = texthash:/etc/postfix/virtual
+
+# Additional option for filtering
+content_filter = smtp-amavis:[127.0.0.1]:10024
+
+# Milters used by DKIM
+milter_protocol = 6
+milter_default_action = accept
+dkim_milter = inet:localhost:8891
+dmarc_milter = inet:localhost:8893
+smtpd_milters = $dkim_milter,$dmarc_milter
+non_smtpd_milters = $dkim_milter
+
+# SPF policy settings
+policyd-spf_time_limit = 3600
+
+# Header checks for content inspection on receiving
+header_checks = pcre:/etc/postfix/maps/header_checks.pcre
+
+# Remove unwanted headers that reveail our privacy
+smtp_header_checks = pcre:/etc/postfix/maps/sender_header_filter.pcre
+myhostname = mail.viktorbarzin.me
+mydomain = viktorbarzin.me
+smtputf8_enable = no
+message_size_limit = 20480000
+sender_canonical_maps = tcp:localhost:10001
+sender_canonical_classes = envelope_sender
+recipient_canonical_maps = tcp:localhost:10002
+recipient_canonical_classes = envelope_recipient,header_recipient
+compatibility_level = 2
+# enable_original_recipient = no  # b4 uncommenting see https://serverfault.com/questions/661615/how-to-drop-orig-to-using-postfix-virtual-domains
+always_add_missing_headers = yes
+
+anvil_status_update_time = 5s
+EOT
+}
+
diff --git a/stacks/matrix/main.tf b/stacks/matrix/main.tf
index 79a23f4c..049c66eb 100644
--- a/stacks/matrix/main.tf
+++ b/stacks/matrix/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "matrix" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 # DB credentials from Vault database engine (rotated every 24h)
@@ -196,10 +192,6 @@ resource "kubernetes_deployment" "matrix" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "matrix" {
diff --git a/stacks/meshcentral/main.tf b/stacks/meshcentral/main.tf
index 7103a64c..66dfc9cc 100644
--- a/stacks/meshcentral/main.tf
+++ b/stacks/meshcentral/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "meshcentral" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -235,10 +231,6 @@ EOT
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 
@@ -265,14 +257,14 @@ resource "kubernetes_service" "meshcentral" {
 }
 
 module "ingress" {
-  source           = "../../modules/kubernetes/ingress_factory"
-  dns_type         = "proxied"
-  namespace        = kubernetes_namespace.meshcentral.metadata[0].name
-  name             = "meshcentral"
-  tls_secret_name  = var.tls_secret_name
-  port             = 80
-  protected        = true
-  anti_ai_scraping = false
+  source          = "../../modules/kubernetes/ingress_factory"
+  dns_type        = "proxied"
+  namespace       = kubernetes_namespace.meshcentral.metadata[0].name
+  name            = "meshcentral"
+  tls_secret_name = var.tls_secret_name
+  port            = 80
+  protected         = true
+  anti_ai_scraping  = false
   extra_annotations = {
     "gethomepage.dev/enabled"      = "true"
     "gethomepage.dev/name"         = "MeshCentral"
diff --git a/stacks/metallb/modules/metallb/main.tf b/stacks/metallb/modules/metallb/main.tf
index 18955bd3..2c8d0078 100644
--- a/stacks/metallb/modules/metallb/main.tf
+++ b/stacks/metallb/modules/metallb/main.tf
@@ -7,10 +7,6 @@ resource "kubernetes_namespace" "metallb" {
       app = "metallb"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "metallb" {
diff --git a/stacks/metrics-server/modules/metrics-server/main.tf b/stacks/metrics-server/modules/metrics-server/main.tf
index 6c90f551..73065f87 100644
--- a/stacks/metrics-server/modules/metrics-server/main.tf
+++ b/stacks/metrics-server/modules/metrics-server/main.tf
@@ -8,10 +8,6 @@ resource "kubernetes_namespace" "metrics-server" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
diff --git a/stacks/monitoring/main.tf b/stacks/monitoring/main.tf
index 3951e4e5..ddf77022 100644
--- a/stacks/monitoring/main.tf
+++ b/stacks/monitoring/main.tf
@@ -30,13 +30,5 @@ module "monitoring" {
   haos_api_token                = data.vault_kv_secret_v2.secrets.data["haos_api_token"]
   pve_password                  = data.vault_kv_secret_v2.secrets.data["pve_password"]
   grafana_admin_password        = data.vault_kv_secret_v2.secrets.data["grafana_admin_password"]
-  kube_config_path              = var.kube_config_path
-  registry_user                 = data.vault_kv_secret_v2.viktor.data["registry_user"]
-  registry_password             = data.vault_kv_secret_v2.viktor.data["registry_password"]
-  # try() so apply succeeds before the Vault key is populated during Phase 0
-  # bootstrap (see docs/runbooks/forgejo-registry-setup.md). Empty token =
-  # probe will report an auth failure and fire RegistryCatalogInaccessible —
-  # that's the intended visible-broken state until the PAT is created.
-  forgejo_pull_token = try(data.vault_kv_secret_v2.viktor.data["forgejo_pull_token"], "")
-  tier               = local.tiers.cluster
+  tier                          = local.tiers.cluster
 }
diff --git a/stacks/monitoring/modules/monitoring/dashboards/fire-planner.json b/stacks/monitoring/modules/monitoring/dashboards/fire-planner.json
deleted file mode 100644
index 9dba9e11..00000000
--- a/stacks/monitoring/modules/monitoring/dashboards/fire-planner.json
+++ /dev/null
@@ -1,226 +0,0 @@
-{
-  "annotations": {
-    "list": [
-      {
-        "builtIn": 1,
-        "datasource": {"type": "datasource", "uid": "grafana"},
-        "enable": true,
-        "hide": true,
-        "iconColor": "rgba(0, 211, 255, 1)",
-        "name": "Annotations & Alerts",
-        "type": "dashboard"
-      }
-    ]
-  },
-  "description": "FIRE Retirement Planner — risk-adjusted, tax-minimised Monte Carlo over jurisdictions, withdrawal strategies, and UK-departure years. Backed by fire_planner schema on pg-cluster-rw.",
-  "editable": true,
-  "fiscalYearStartMonth": 0,
-  "id": null,
-  "templating": {
-    "list": [
-      {
-        "name": "scenario",
-        "type": "query",
-        "label": "Scenario",
-        "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-        "query": "SELECT external_id FROM fire_planner.scenario ORDER BY external_id",
-        "refresh": 1,
-        "includeAll": false,
-        "multi": false,
-        "current": {"selected": false, "text": "cyprus-vpw-leave-y3-glide-rising", "value": "cyprus-vpw-leave-y3-glide-rising"}
-      }
-    ]
-  },
-  "links": [],
-  "panels": [
-    {
-      "id": 1,
-      "title": "Net worth over time (real + nominal)",
-      "type": "timeseries",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 8, "w": 24, "x": 0, "y": 0},
-      "fieldConfig": {
-        "defaults": {"unit": "currencyGBP", "decimals": 0},
-        "overrides": []
-      },
-      "options": {"legend": {"displayMode": "table", "showLegend": true}, "tooltip": {"mode": "multi"}},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "SELECT snapshot_date AS time, account_name AS metric, SUM(market_value_gbp) AS value FROM fire_planner.account_snapshot WHERE snapshot_date >= NOW() - INTERVAL '10 years' GROUP BY snapshot_date, account_name ORDER BY snapshot_date"
-        }
-      ]
-    },
-    {
-      "id": 2,
-      "title": "Monte Carlo fan chart — selected scenario",
-      "type": "timeseries",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 10, "w": 24, "x": 0, "y": 8},
-      "description": "P10/p25/p50/p75/p90 portfolio value across MC paths, for the scenario picked in the selector at the top.",
-      "fieldConfig": {"defaults": {"unit": "currencyGBP", "decimals": 0}, "overrides": []},
-      "options": {"legend": {"displayMode": "table", "showLegend": true}, "tooltip": {"mode": "multi"}},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "SELECT (DATE_TRUNC('year', NOW()) + (year_idx || ' years')::interval) AS time, 'p10' AS metric, p10_portfolio_gbp AS value FROM fire_planner.projection_yearly p JOIN fire_planner.mc_run r ON r.id = p.mc_run_id JOIN fire_planner.scenario s ON s.id = r.scenario_id WHERE s.external_id = '$scenario' UNION ALL SELECT (DATE_TRUNC('year', NOW()) + (year_idx || ' years')::interval), 'p25', p25_portfolio_gbp FROM fire_planner.projection_yearly p JOIN fire_planner.mc_run r ON r.id = p.mc_run_id JOIN fire_planner.scenario s ON s.id = r.scenario_id WHERE s.external_id = '$scenario' UNION ALL SELECT (DATE_TRUNC('year', NOW()) + (year_idx || ' years')::interval), 'p50', p50_portfolio_gbp FROM fire_planner.projection_yearly p JOIN fire_planner.mc_run r ON r.id = p.mc_run_id JOIN fire_planner.scenario s ON s.id = r.scenario_id WHERE s.external_id = '$scenario' UNION ALL SELECT (DATE_TRUNC('year', NOW()) + (year_idx || ' years')::interval), 'p75', p75_portfolio_gbp FROM fire_planner.projection_yearly p JOIN fire_planner.mc_run r ON r.id = p.mc_run_id JOIN fire_planner.scenario s ON s.id = r.scenario_id WHERE s.external_id = '$scenario' UNION ALL SELECT (DATE_TRUNC('year', NOW()) + (year_idx || ' years')::interval), 'p90', p90_portfolio_gbp FROM fire_planner.projection_yearly p JOIN fire_planner.mc_run r ON r.id = p.mc_run_id JOIN fire_planner.scenario s ON s.id = r.scenario_id WHERE s.external_id = '$scenario' ORDER BY time"
-        }
-      ]
-    },
-    {
-      "id": 3,
-      "title": "Confidence heatmap — jurisdiction × strategy",
-      "type": "table",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 8, "w": 12, "x": 0, "y": 18},
-      "description": "Median success rate by (jurisdiction, strategy), averaged across leave-UK years and glide paths.",
-      "fieldConfig": {
-        "defaults": {"custom": {"align": "left", "displayMode": "auto"}, "unit": "percentunit", "decimals": 2},
-        "overrides": []
-      },
-      "options": {"showHeader": true},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT jurisdiction, strategy, AVG(success_rate) AS avg_success FROM fire_planner.scenario_summary GROUP BY jurisdiction, strategy ORDER BY jurisdiction, strategy"
-        }
-      ]
-    },
-    {
-      "id": 4,
-      "title": "Median lifetime tax — by jurisdiction",
-      "type": "barchart",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 8, "w": 12, "x": 12, "y": 18},
-      "fieldConfig": {"defaults": {"unit": "currencyGBP", "decimals": 0}, "overrides": []},
-      "options": {"orientation": "horizontal", "showValue": "auto", "stacking": "none", "legend": {"displayMode": "list"}},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT jurisdiction, AVG(median_lifetime_tax_gbp) AS lifetime_tax FROM fire_planner.scenario_summary GROUP BY jurisdiction ORDER BY lifetime_tax DESC"
-        }
-      ]
-    },
-    {
-      "id": 5,
-      "title": "Withdrawal runway — years to ruin (failing paths)",
-      "type": "table",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 8, "w": 12, "x": 0, "y": 26},
-      "description": "Among scenarios where some MC paths failed, the median year-to-ruin. Empty where every path survives.",
-      "fieldConfig": {"defaults": {"unit": "y", "decimals": 1}, "overrides": []},
-      "options": {"showHeader": true},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT jurisdiction, strategy, leave_uk_year, glide_path, median_years_to_ruin FROM fire_planner.scenario_summary WHERE median_years_to_ruin IS NOT NULL ORDER BY median_years_to_ruin ASC LIMIT 20"
-        }
-      ]
-    },
-    {
-      "id": 6,
-      "title": "Optimal leave-UK year",
-      "type": "stat",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 4, "w": 6, "x": 12, "y": 26},
-      "description": "leave_uk_year that maximises success_rate − lifetime_tax (tax in £M; small weighting).",
-      "fieldConfig": {"defaults": {"unit": "none"}, "overrides": []},
-      "options": {"colorMode": "value", "reduceOptions": {"calcs": ["lastNotNull"]}},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT leave_uk_year FROM fire_planner.scenario_summary WHERE jurisdiction <> 'uk' ORDER BY (success_rate - median_lifetime_tax_gbp / 1000000.0) DESC LIMIT 1"
-        }
-      ]
-    },
-    {
-      "id": 7,
-      "title": "Median ending wealth — selected scenario",
-      "type": "stat",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 4, "w": 6, "x": 18, "y": 26},
-      "fieldConfig": {"defaults": {"unit": "currencyGBP", "decimals": 0}, "overrides": []},
-      "options": {"colorMode": "value", "reduceOptions": {"calcs": ["lastNotNull"]}},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT p50_ending_gbp FROM fire_planner.scenario_summary WHERE scenario_id = (SELECT id FROM fire_planner.scenario WHERE external_id = '$scenario')"
-        }
-      ]
-    },
-    {
-      "id": 8,
-      "title": "Success rate vs spend (UK-stay)",
-      "type": "barchart",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 8, "w": 12, "x": 0, "y": 30},
-      "description": "Sanity gauge — UK success rate by strategy, helps anchor expectations against published cFIREsim numbers.",
-      "fieldConfig": {"defaults": {"unit": "percentunit", "decimals": 2}, "overrides": []},
-      "options": {"orientation": "horizontal", "showValue": "auto", "legend": {"displayMode": "list"}},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT strategy, AVG(success_rate) AS success FROM fire_planner.scenario_summary WHERE jurisdiction = 'uk' GROUP BY strategy ORDER BY success DESC"
-        }
-      ]
-    },
-    {
-      "id": 9,
-      "title": "Sequence-of-returns sensitivity (top failing scenarios)",
-      "type": "table",
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-      "gridPos": {"h": 8, "w": 12, "x": 12, "y": 30},
-      "description": "Pearson correlation between year-1 portfolio drawdown and overall success — strongly negative ⇒ scenario is sequence-of-returns sensitive (case for the rising-equity glide).",
-      "fieldConfig": {"defaults": {"unit": "none", "decimals": 4}, "overrides": []},
-      "options": {"showHeader": true},
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "fire-planner-pg"},
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT s.external_id, r.sequence_risk_correlation, r.success_rate FROM fire_planner.mc_run r JOIN fire_planner.scenario s ON s.id = r.scenario_id WHERE r.id IN (SELECT MAX(id) FROM fire_planner.mc_run GROUP BY scenario_id) ORDER BY r.sequence_risk_correlation ASC LIMIT 15"
-        }
-      ]
-    }
-  ],
-  "schemaVersion": 39,
-  "tags": ["finance", "fire", "retirement", "monte-carlo"],
-  "title": "FIRE Planner",
-  "uid": "fire-planner",
-  "version": 1,
-  "weekStart": ""
-}
diff --git a/stacks/monitoring/modules/monitoring/dashboards/job-hunter.json b/stacks/monitoring/modules/monitoring/dashboards/job-hunter.json
deleted file mode 100644
index 526e2fe0..00000000
--- a/stacks/monitoring/modules/monitoring/dashboards/job-hunter.json
+++ /dev/null
@@ -1,393 +0,0 @@
-{
-  "annotations": {"list": []},
-  "editable": true,
-  "fiscalYearStartMonth": 0,
-  "graphTooltip": 0,
-  "id": null,
-  "links": [],
-  "liveNow": false,
-  "panels": [
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "Newly-ingested roles (by fetched_at).",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {
-            "drawStyle": "bars",
-            "fillOpacity": 60,
-            "lineInterpolation": "linear",
-            "lineWidth": 1,
-            "pointSize": 5,
-            "showPoints": "auto",
-            "spanNulls": false,
-            "stacking": {"mode": "none"}
-          },
-          "thresholds": {"mode": "absolute", "steps": []}
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 8, "w": 12, "x": 0, "y": 0},
-      "id": 1,
-      "options": {
-        "legend": {"displayMode": "list", "placement": "bottom", "showLegend": true},
-        "tooltip": {"mode": "single", "sort": "none"}
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "time_series",
-          "rawQuery": true,
-          "rawSql": "SELECT date_trunc('day', fetched_at) AT TIME ZONE 'UTC' AS time, source, COUNT(*) AS value FROM job_hunter.roles WHERE $__timeFilter(fetched_at) GROUP BY 1, 2 ORDER BY 1",
-          "refId": "A"
-        }
-      ],
-      "title": "New roles per day by source",
-      "type": "timeseries"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "Distinct open roles by source over the time window.",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {"hideFrom": {"legend": false, "tooltip": false, "viz": false}},
-          "mappings": []
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 8, "w": 12, "x": 12, "y": 0},
-      "id": 2,
-      "options": {
-        "legend": {"displayMode": "table", "placement": "right", "showLegend": true, "values": ["value"]},
-        "pieType": "donut",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false},
-        "tooltip": {"mode": "single", "sort": "none"}
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "table",
-          "rawQuery": true,
-          "rawSql": "SELECT source AS metric, COUNT(DISTINCT dedup_key) AS value FROM job_hunter.roles WHERE $__timeFilter(fetched_at) GROUP BY source ORDER BY value DESC",
-          "refId": "A"
-        }
-      ],
-      "title": "Roles by source (deduplicated)",
-      "type": "piechart"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "Top 20 companies by recent role volume.",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {
-            "axisPlacement": "auto",
-            "fillOpacity": 80,
-            "gradientMode": "none",
-            "lineWidth": 1
-          },
-          "mappings": [],
-          "thresholds": {"mode": "absolute", "steps": []}
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 9, "w": 12, "x": 0, "y": 8},
-      "id": 3,
-      "options": {
-        "barRadius": 0,
-        "barWidth": 0.85,
-        "fullHighlight": false,
-        "groupWidth": 0.7,
-        "legend": {"displayMode": "hidden", "placement": "bottom", "showLegend": false},
-        "orientation": "horizontal",
-        "showValue": "auto",
-        "stacking": "none",
-        "tooltip": {"mode": "single", "sort": "none"},
-        "xTickLabelRotation": 0,
-        "xTickLabelSpacing": 0
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "table",
-          "rawQuery": true,
-          "rawSql": "SELECT c.display_name, COUNT(*) AS roles FROM job_hunter.roles r JOIN job_hunter.companies c ON r.company_id = c.id WHERE $__timeFilter(r.fetched_at) GROUP BY c.display_name ORDER BY roles DESC LIMIT 20",
-          "refId": "A"
-        }
-      ],
-      "title": "Top companies by role volume",
-      "type": "barchart"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "Normalised base salary distribution (£) for roles with explicit comp.",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {"fillOpacity": 80, "lineWidth": 1},
-          "mappings": []
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 9, "w": 12, "x": 12, "y": 8},
-      "id": 4,
-      "options": {
-        "bucketOffset": 0,
-        "combine": false,
-        "legend": {"displayMode": "list", "placement": "bottom", "showLegend": true}
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "table",
-          "rawQuery": true,
-          "rawSql": "SELECT parsed_base_gbp::float AS base_gbp FROM job_hunter.roles WHERE parsed_base_gbp IS NOT NULL AND $__timeFilter(fetched_at)",
-          "refId": "A"
-        }
-      ],
-      "title": "Salary distribution (GBP)",
-      "type": "histogram"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "Recent roles, ranked by salary-parse confidence then parsed base.",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "thresholds"},
-          "custom": {
-            "align": "auto",
-            "cellOptions": {"type": "auto"},
-            "filterable": true,
-            "inspect": false
-          },
-          "mappings": [],
-          "thresholds": {"mode": "absolute", "steps": []}
-        },
-        "overrides": [
-          {
-            "matcher": {"id": "byName", "options": "apply_url"},
-            "properties": [
-              {"id": "custom.cellOptions", "value": {"type": "auto"}},
-              {"id": "links", "value": [{"targetBlank": true, "title": "Open", "url": "${__value.raw}"}]}
-            ]
-          },
-          {
-            "matcher": {"id": "byName", "options": "base_gbp"},
-            "properties": [{"id": "unit", "value": "currencyGBP"}]
-          }
-        ]
-      },
-      "gridPos": {"h": 12, "w": 24, "x": 0, "y": 17},
-      "id": 5,
-      "options": {
-        "cellHeight": "sm",
-        "footer": {"countRows": false, "fields": "", "reducer": ["sum"], "show": false},
-        "showHeader": true
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "table",
-          "rawQuery": true,
-          "rawSql": "SELECT r.posted_at, c.display_name AS company, r.title, r.location, r.remote_policy, r.parsed_base_gbp::float AS base_gbp, r.salary_parse_confidence, r.source, r.apply_url FROM job_hunter.roles r JOIN job_hunter.companies c ON r.company_id = c.id WHERE $__timeFilter(r.fetched_at) ORDER BY r.salary_parse_confidence DESC NULLS LAST, r.parsed_base_gbp DESC NULLS LAST, r.posted_at DESC NULLS LAST LIMIT 100",
-          "refId": "A"
-        }
-      ],
-      "title": "Top roles",
-      "type": "table"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "Per-company median base salary broken out by seniority level (comp_points, GBP).",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "thresholds"},
-          "custom": {
-            "align": "auto",
-            "cellOptions": {"type": "auto"},
-            "filterable": true,
-            "inspect": false
-          },
-          "mappings": [],
-          "thresholds": {"mode": "absolute", "steps": []},
-          "unit": "currencyGBP"
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 10, "w": 24, "x": 0, "y": 29},
-      "id": 6,
-      "options": {
-        "cellHeight": "sm",
-        "footer": {"countRows": false, "fields": "", "reducer": ["sum"], "show": false},
-        "showHeader": true
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "table",
-          "rawQuery": true,
-          "rawSql": "SELECT c.display_name AS company, l.slug AS level, percentile_cont(0.5) WITHIN GROUP (ORDER BY cp.base_gbp) AS p50_base_gbp, COUNT(*) AS n FROM job_hunter.comp_points cp JOIN job_hunter.companies c ON cp.company_id = c.id LEFT JOIN job_hunter.levels l ON cp.level_id = l.id WHERE cp.base_gbp IS NOT NULL AND cp.location_bucket IN (${location:sqlstring}) AND (c.slug = ANY(string_to_array(${company:sqlstring}, ',')) OR ${company:sqlstring} = 'all') GROUP BY c.display_name, l.slug ORDER BY c.display_name, l.rank NULLS LAST",
-          "refId": "A"
-        }
-      ],
-      "title": "Per-company salary by level (p50 base)",
-      "type": "table"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "p50 total comp (base + bonus + RSU/year + sign-on/year) per (company, level).",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "continuous-GrYlRd"},
-          "custom": {"align": "center", "cellOptions": {"type": "color-background"}},
-          "unit": "currencyGBP"
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 10, "w": 12, "x": 0, "y": 39},
-      "id": 7,
-      "options": {
-        "cellHeight": "sm",
-        "footer": {"countRows": false, "fields": "", "reducer": ["sum"], "show": false},
-        "showHeader": true
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "table",
-          "rawQuery": true,
-          "rawSql": "SELECT c.display_name AS company, l.slug AS level, percentile_cont(0.5) WITHIN GROUP (ORDER BY COALESCE(cp.base_gbp, 0) + COALESCE(cp.bonus_gbp, 0) + COALESCE(cp.rsu_annual_gbp, 0) + COALESCE(cp.signon_gbp, 0)) AS p50_total_gbp FROM job_hunter.comp_points cp JOIN job_hunter.companies c ON cp.company_id = c.id LEFT JOIN job_hunter.levels l ON cp.level_id = l.id WHERE cp.base_gbp IS NOT NULL AND cp.location_bucket IN (${location:sqlstring}) GROUP BY c.display_name, l.slug ORDER BY c.display_name",
-          "refId": "A"
-        }
-      ],
-      "title": "Total comp heatmap (p50, GBP)",
-      "type": "table"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "Comp-datapoint ingestion volume by source.",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {
-            "drawStyle": "bars",
-            "fillOpacity": 60,
-            "lineWidth": 1,
-            "stacking": {"mode": "normal"}
-          }
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 10, "w": 12, "x": 12, "y": 39},
-      "id": 8,
-      "options": {
-        "legend": {"displayMode": "list", "placement": "bottom", "showLegend": true},
-        "tooltip": {"mode": "single", "sort": "none"}
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "time_series",
-          "rawQuery": true,
-          "rawSql": "SELECT date_trunc('day', fetched_at) AT TIME ZONE 'UTC' AS time, source, COUNT(*) AS value FROM job_hunter.comp_points WHERE $__timeFilter(fetched_at) GROUP BY 1, 2 ORDER BY 1",
-          "refId": "A"
-        }
-      ],
-      "title": "Comp-point volume by source",
-      "type": "timeseries"
-    },
-    {
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "description": "p50 base salary trend by (company, level) for top 5 companies.",
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {
-            "drawStyle": "line",
-            "lineInterpolation": "linear",
-            "lineWidth": 2,
-            "pointSize": 6,
-            "showPoints": "auto"
-          },
-          "unit": "currencyGBP"
-        },
-        "overrides": []
-      },
-      "gridPos": {"h": 10, "w": 24, "x": 0, "y": 49},
-      "id": 9,
-      "options": {
-        "legend": {"displayMode": "table", "placement": "right", "showLegend": true},
-        "tooltip": {"mode": "multi", "sort": "desc"}
-      },
-      "targets": [
-        {
-          "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-          "format": "time_series",
-          "rawQuery": true,
-          "rawSql": "WITH ranked AS (SELECT c.slug AS company_slug, COUNT(*) AS n FROM job_hunter.comp_points cp JOIN job_hunter.companies c ON cp.company_id = c.id WHERE cp.base_gbp IS NOT NULL AND cp.location_bucket IN (${location:sqlstring}) GROUP BY c.slug ORDER BY n DESC LIMIT 5) SELECT date_trunc('month', cp.effective_date)::timestamp AS time, c.display_name || ' / ' || COALESCE(l.slug, 'unknown') AS metric, percentile_cont(0.5) WITHIN GROUP (ORDER BY cp.base_gbp) AS value FROM job_hunter.comp_points cp JOIN job_hunter.companies c ON cp.company_id = c.id LEFT JOIN job_hunter.levels l ON cp.level_id = l.id WHERE cp.base_gbp IS NOT NULL AND cp.effective_date IS NOT NULL AND cp.location_bucket IN (${location:sqlstring}) AND c.slug IN (SELECT company_slug FROM ranked) AND (l.slug = ${level:sqlstring} OR ${level:sqlstring} = 'all') GROUP BY 1, 2 ORDER BY 1",
-          "refId": "A"
-        }
-      ],
-      "title": "Base-salary trend (p50) — top 5 companies",
-      "type": "timeseries"
-    }
-  ],
-  "refresh": "",
-  "schemaVersion": 39,
-  "tags": ["job-hunter", "jobs", "careers"],
-  "templating": {"list": [
-    {
-      "current": {"selected": true, "text": ["london"], "value": ["london"]},
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "definition": "SELECT DISTINCT location_bucket FROM job_hunter.comp_points ORDER BY 1",
-      "includeAll": false,
-      "label": "Location",
-      "multi": true,
-      "name": "location",
-      "options": [],
-      "query": "SELECT DISTINCT location_bucket FROM job_hunter.comp_points ORDER BY 1",
-      "refresh": 1,
-      "regex": "",
-      "type": "query"
-    },
-    {
-      "current": {"selected": true, "text": "senior", "value": "senior"},
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "definition": "SELECT slug FROM job_hunter.levels WHERE company_id IS NULL ORDER BY rank",
-      "includeAll": true,
-      "allValue": "all",
-      "label": "Level",
-      "multi": false,
-      "name": "level",
-      "options": [],
-      "query": "SELECT slug FROM job_hunter.levels WHERE company_id IS NULL ORDER BY rank",
-      "refresh": 1,
-      "regex": "",
-      "type": "query"
-    },
-    {
-      "current": {"selected": true, "text": "all", "value": "all"},
-      "datasource": {"type": "grafana-postgresql-datasource", "uid": "job-hunter-pg"},
-      "definition": "SELECT slug FROM job_hunter.companies ORDER BY slug",
-      "includeAll": true,
-      "allValue": "all",
-      "label": "Company",
-      "multi": true,
-      "name": "company",
-      "options": [],
-      "query": "SELECT slug FROM job_hunter.companies ORDER BY slug",
-      "refresh": 1,
-      "regex": "",
-      "type": "query"
-    }
-  ]},
-  "time": {"from": "now-30d", "to": "now"},
-  "timepicker": {},
-  "timezone": "browser",
-  "title": "Job Hunter",
-  "uid": "job-hunter",
-  "version": 1,
-  "weekStart": ""
-}
diff --git a/stacks/monitoring/modules/monitoring/dashboards/openclaw.json b/stacks/monitoring/modules/monitoring/dashboards/openclaw.json
deleted file mode 100644
index 47657279..00000000
--- a/stacks/monitoring/modules/monitoring/dashboards/openclaw.json
+++ /dev/null
@@ -1,476 +0,0 @@
-{
-  "annotations": {"list": []},
-  "editable": true,
-  "fiscalYearStartMonth": 0,
-  "graphTooltip": 0,
-  "id": null,
-  "links": [],
-  "liveNow": false,
-  "refresh": "30s",
-  "schemaVersion": 38,
-  "tags": ["openclaw", "ai", "codex"],
-  "time": {"from": "now-6h", "to": "now"},
-  "timepicker": {},
-  "timezone": "",
-  "title": "OpenClaw — Codex Usage",
-  "uid": "openclaw-codex",
-  "version": 1,
-  "panels": [
-    {
-      "type": "row",
-      "id": 100,
-      "title": "Now",
-      "gridPos": {"h": 1, "w": 24, "x": 0, "y": 0},
-      "collapsed": false,
-      "panels": []
-    },
-    {
-      "type": "stat",
-      "id": 1,
-      "title": "Messages last 5h — gpt-5.4-mini",
-      "description": "Plus rate-card lower bound: 1,200 / 5h. Hard cap at the upper bound: 7,000 / 5h.",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 0, "y": 1},
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "auto",
-        "orientation": "auto",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false},
-        "textMode": "auto"
-      },
-      "fieldConfig": {
-        "defaults": {
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {"color": "green", "value": null},
-              {"color": "yellow", "value": 960},
-              {"color": "orange", "value": 1500},
-              {"color": "red", "value": 5600}
-            ]
-          },
-          "unit": "short"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum(increase(openclaw_codex_messages_total{provider=\"openai-codex\",model=\"gpt-5.4-mini\"}[5h]))",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "gauge",
-      "id": 2,
-      "title": "% of Plus 5h floor (1,200 cap)",
-      "description": "Conservative gauge against the lower bound of the published rate-card. Real ceiling depends on dynamic allocation (1,200–7,000). Re-baseline if you observe throttling at <80%.",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 6, "y": 1},
-      "options": {
-        "orientation": "auto",
-        "showThresholdLabels": false,
-        "showThresholdMarkers": true,
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false}
-      },
-      "fieldConfig": {
-        "defaults": {
-          "min": 0,
-          "max": 100,
-          "decimals": 1,
-          "unit": "percent",
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {"color": "green", "value": null},
-              {"color": "yellow", "value": 60},
-              {"color": "orange", "value": 80},
-              {"color": "red", "value": 95}
-            ]
-          }
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "100 * sum(increase(openclaw_codex_messages_total{provider=\"openai-codex\",model=\"gpt-5.4-mini\"}[5h])) / 1200",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "stat",
-      "id": 3,
-      "title": "Tokens last 5h (input + output, codex)",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 12, "y": 1},
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false}
-      },
-      "fieldConfig": {
-        "defaults": {
-          "decimals": 0,
-          "unit": "short",
-          "thresholds": {"mode": "absolute", "steps": [{"color": "blue", "value": null}]}
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum(increase(openclaw_codex_input_tokens_total{provider=\"openai-codex\"}[5h])) + sum(increase(openclaw_codex_output_tokens_total{provider=\"openai-codex\"}[5h]))",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "stat",
-      "id": 4,
-      "title": "Cache hit ratio (codex, 5h)",
-      "description": "cacheRead / (cacheRead + input). Higher is better — caching cuts effective Plus quota burn.",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 18, "y": 1},
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false}
-      },
-      "fieldConfig": {
-        "defaults": {
-          "min": 0,
-          "max": 100,
-          "decimals": 1,
-          "unit": "percent",
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {"color": "red", "value": null},
-              {"color": "yellow", "value": 30},
-              {"color": "green", "value": 60}
-            ]
-          }
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "100 * sum(increase(openclaw_codex_cache_read_tokens_total{provider=\"openai-codex\"}[5h])) / clamp_min(sum(increase(openclaw_codex_input_tokens_total{provider=\"openai-codex\"}[5h])) + sum(increase(openclaw_codex_cache_read_tokens_total{provider=\"openai-codex\"}[5h])), 1)",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "stat",
-      "id": 5,
-      "title": "OAuth token expiry",
-      "description": "Days until the openai-codex OAuth token expires. Re-run `openclaw models auth login --provider openai-codex` before this hits 0.",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 0, "y": 6},
-      "options": {
-        "colorMode": "background",
-        "graphMode": "none",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false}
-      },
-      "fieldConfig": {
-        "defaults": {
-          "decimals": 1,
-          "unit": "d",
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {"color": "red", "value": null},
-              {"color": "orange", "value": 1},
-              {"color": "yellow", "value": 3},
-              {"color": "green", "value": 5}
-            ]
-          }
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "max(openclaw_codex_oauth_expiry_seconds{provider=\"openai-codex\"}) / 86400",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "stat",
-      "id": 6,
-      "title": "Active sessions",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 6, "y": 6},
-      "options": {
-        "colorMode": "value",
-        "graphMode": "none",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": true},
-        "textMode": "value_and_name"
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "short",
-          "thresholds": {"mode": "absolute", "steps": [{"color": "blue", "value": null}]}
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "openclaw_codex_active_sessions",
-          "legendFormat": "{{kind}}",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "stat",
-      "id": 7,
-      "title": "Last assistant turn",
-      "description": "Time since the latest assistant message landed in any session.",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 12, "y": 6},
-      "options": {
-        "colorMode": "background",
-        "graphMode": "none",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false}
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "s",
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {"color": "green", "value": null},
-              {"color": "yellow", "value": 1800},
-              {"color": "orange", "value": 7200},
-              {"color": "red", "value": 86400}
-            ]
-          }
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "time() - openclaw_codex_last_run_timestamp",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "stat",
-      "id": 8,
-      "title": "Errors last 24h",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 5, "w": 6, "x": 18, "y": 6},
-      "options": {
-        "colorMode": "background",
-        "graphMode": "area",
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false}
-      },
-      "fieldConfig": {
-        "defaults": {
-          "decimals": 0,
-          "unit": "short",
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {"color": "green", "value": null},
-              {"color": "yellow", "value": 1},
-              {"color": "red", "value": 10}
-            ]
-          }
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum(increase(openclaw_codex_message_errors_total[24h]))",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "row",
-      "id": 200,
-      "title": "Over time",
-      "gridPos": {"h": 1, "w": 24, "x": 0, "y": 11},
-      "collapsed": false,
-      "panels": []
-    },
-    {
-      "type": "timeseries",
-      "id": 10,
-      "title": "Messages / min by model",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 8, "w": 24, "x": 0, "y": 12},
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {
-            "drawStyle": "bars",
-            "fillOpacity": 60,
-            "lineWidth": 1,
-            "stacking": {"mode": "normal"}
-          },
-          "unit": "short"
-        }
-      },
-      "options": {
-        "legend": {"displayMode": "table", "placement": "right", "showLegend": true, "calcs": ["sum"]},
-        "tooltip": {"mode": "multi", "sort": "desc"}
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum by (provider, model) (rate(openclaw_codex_messages_total[1m])) * 60",
-          "legendFormat": "{{provider}}/{{model}}",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "timeseries",
-      "id": 11,
-      "title": "Tokens / min by type (codex)",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 8, "w": 12, "x": 0, "y": 20},
-      "fieldConfig": {
-        "defaults": {
-          "color": {"mode": "palette-classic"},
-          "custom": {
-            "drawStyle": "line",
-            "fillOpacity": 25,
-            "lineWidth": 2,
-            "stacking": {"mode": "none"}
-          },
-          "unit": "short"
-        }
-      },
-      "options": {
-        "legend": {"displayMode": "list", "placement": "bottom", "showLegend": true},
-        "tooltip": {"mode": "multi", "sort": "desc"}
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum(rate(openclaw_codex_input_tokens_total{provider=\"openai-codex\"}[5m])) * 60",
-          "legendFormat": "input",
-          "refId": "A"
-        },
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum(rate(openclaw_codex_output_tokens_total{provider=\"openai-codex\"}[5m])) * 60",
-          "legendFormat": "output",
-          "refId": "B"
-        },
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum(rate(openclaw_codex_cache_read_tokens_total{provider=\"openai-codex\"}[5m])) * 60",
-          "legendFormat": "cache_read",
-          "refId": "C"
-        }
-      ]
-    },
-    {
-      "type": "bargauge",
-      "id": 12,
-      "title": "Messages / 5h by model",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 8, "w": 12, "x": 12, "y": 20},
-      "options": {
-        "displayMode": "gradient",
-        "orientation": "horizontal",
-        "showUnfilled": true,
-        "reduceOptions": {"calcs": ["lastNotNull"], "fields": "", "values": false}
-      },
-      "fieldConfig": {
-        "defaults": {
-          "min": 0,
-          "decimals": 0,
-          "unit": "short",
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {"color": "green", "value": null},
-              {"color": "yellow", "value": 100},
-              {"color": "orange", "value": 500},
-              {"color": "red", "value": 1000}
-            ]
-          }
-        }
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum by (provider, model) (increase(openclaw_codex_messages_total[5h]))",
-          "legendFormat": "{{provider}}/{{model}}",
-          "refId": "A"
-        }
-      ]
-    },
-    {
-      "type": "row",
-      "id": 300,
-      "title": "Errors",
-      "gridPos": {"h": 1, "w": 24, "x": 0, "y": 28},
-      "collapsed": false,
-      "panels": []
-    },
-    {
-      "type": "table",
-      "id": 20,
-      "title": "Recent errors by model and reason",
-      "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-      "gridPos": {"h": 8, "w": 24, "x": 0, "y": 29},
-      "options": {
-        "showHeader": true
-      },
-      "fieldConfig": {
-        "defaults": {
-          "custom": {"align": "auto", "displayMode": "auto"}
-        },
-        "overrides": [
-          {
-            "matcher": {"id": "byName", "options": "Value"},
-            "properties": [
-              {"id": "displayName", "value": "Errors (24h)"},
-              {"id": "custom.displayMode", "value": "color-background"},
-              {
-                "id": "thresholds",
-                "value": {
-                  "mode": "absolute",
-                  "steps": [
-                    {"color": "green", "value": null},
-                    {"color": "yellow", "value": 1},
-                    {"color": "red", "value": 10}
-                  ]
-                }
-              }
-            ]
-          }
-        ]
-      },
-      "targets": [
-        {
-          "datasource": {"type": "prometheus", "uid": "PBFA97CFB590B2093"},
-          "expr": "sum by (provider, model, reason) (increase(openclaw_codex_message_errors_total[24h])) > 0",
-          "format": "table",
-          "instant": true,
-          "refId": "A"
-        }
-      ],
-      "transformations": [
-        {
-          "id": "organize",
-          "options": {
-            "excludeByName": {"Time": true, "__name__": true, "instance": true, "job": true, "namespace": true, "pod": true, "app": true},
-            "indexByName": {"provider": 0, "model": 1, "reason": 2, "Value": 3},
-            "renameByName": {}
-          }
-        }
-      ]
-    }
-  ]
-}
diff --git a/stacks/monitoring/modules/monitoring/dashboards/qbittorrent.json b/stacks/monitoring/modules/monitoring/dashboards/qbittorrent.json
index a52f7d07..673df7bb 100644
--- a/stacks/monitoring/modules/monitoring/dashboards/qbittorrent.json
+++ b/stacks/monitoring/modules/monitoring/dashboards/qbittorrent.json
@@ -434,223 +434,6 @@
       ],
       "title": "Transfer Speed (Global)",
       "type": "timeseries"
-    },
-    {
-      "collapsed": false,
-      "gridPos": { "h": 1, "w": 24, "x": 0, "y": 39 },
-      "id": 103,
-      "title": "MAM Profile (from jsonLoad.php)",
-      "type": "row"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": {
-        "defaults": {
-          "mappings": [
-            { "type": "value", "options": {
-              "0": { "color": "red",    "text": "Mouse" },
-              "1": { "color": "orange", "text": "Vole" },
-              "2": { "color": "yellow", "text": "User" },
-              "3": { "color": "green",  "text": "Power User" },
-              "4": { "color": "green",  "text": "Elite" },
-              "5": { "color": "blue",   "text": "Torrent Master" },
-              "6": { "color": "blue",   "text": "Power TM" },
-              "7": { "color": "purple", "text": "Elite TM" },
-              "8": { "color": "purple", "text": "VIP" }
-            } }
-          ],
-          "thresholds": { "mode": "absolute", "steps": [
-            { "color": "red", "value": null },
-            { "color": "green", "value": 2 }
-          ] }
-        }
-      },
-      "gridPos": { "h": 6, "w": 4, "x": 0, "y": 40 },
-      "id": 20,
-      "options": {
-        "colorMode": "background",
-        "graphMode": "none",
-        "justifyMode": "center",
-        "textMode": "value",
-        "reduceOptions": { "calcs": ["lastNotNull"] }
-      },
-      "targets": [{ "expr": "mam_class_code", "legendFormat": "Class" }],
-      "title": "MAM Class",
-      "type": "stat"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": {
-        "defaults": {
-          "thresholds": { "mode": "absolute", "steps": [
-            { "color": "red", "value": null },
-            { "color": "orange", "value": 0.8 },
-            { "color": "green", "value": 1.2 }
-          ] },
-          "decimals": 3
-        }
-      },
-      "gridPos": { "h": 6, "w": 4, "x": 4, "y": 40 },
-      "id": 21,
-      "options": {
-        "colorMode": "background",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "textMode": "value",
-        "reduceOptions": { "calcs": ["lastNotNull"] }
-      },
-      "targets": [{ "expr": "mam_ratio", "legendFormat": "Ratio" }],
-      "title": "MAM Ratio (profile)",
-      "type": "stat"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "short",
-          "thresholds": { "mode": "absolute", "steps": [
-            { "color": "red", "value": null },
-            { "color": "green", "value": 5000 }
-          ] }
-        }
-      },
-      "gridPos": { "h": 6, "w": 4, "x": 8, "y": 40 },
-      "id": 22,
-      "options": {
-        "colorMode": "background",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "textMode": "value",
-        "reduceOptions": { "calcs": ["lastNotNull"] }
-      },
-      "targets": [{ "expr": "mam_bp_balance", "legendFormat": "BP" }],
-      "title": "MAM Bonus Points",
-      "type": "stat"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": { "defaults": { "unit": "decbytes" } },
-      "gridPos": { "h": 6, "w": 12, "x": 12, "y": 40 },
-      "id": 23,
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "textMode": "value_and_name",
-        "reduceOptions": { "calcs": ["lastNotNull"] }
-      },
-      "targets": [
-        { "expr": "mam_downloaded_bytes", "legendFormat": "Downloaded" },
-        { "expr": "mam_uploaded_bytes", "legendFormat": "Uploaded" }
-      ],
-      "title": "MAM Transfer (profile)",
-      "type": "stat"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": {
-        "defaults": {
-          "color": { "mode": "palette-classic" },
-          "custom": {
-            "drawStyle": "line",
-            "fillOpacity": 10,
-            "lineWidth": 2,
-            "showPoints": "never",
-            "spanNulls": true,
-            "thresholdsStyle": { "mode": "line" }
-          },
-          "thresholds": { "mode": "absolute", "steps": [
-            { "color": "transparent", "value": null },
-            { "color": "orange", "value": 500 }
-          ] },
-          "unit": "short"
-        }
-      },
-      "gridPos": { "h": 8, "w": 12, "x": 0, "y": 46 },
-      "id": 24,
-      "options": {
-        "legend": { "calcs": ["lastNotNull", "min"], "displayMode": "table", "placement": "bottom" },
-        "tooltip": { "mode": "multi" }
-      },
-      "targets": [
-        { "expr": "mam_bp_balance", "legendFormat": "BP Balance" },
-        { "expr": "mam_bp_needed_gib * 500", "legendFormat": "Next-run cost (BP)" }
-      ],
-      "title": "BP Balance vs Reserve",
-      "type": "timeseries"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": {
-        "defaults": {
-          "color": { "mode": "palette-classic" },
-          "custom": {
-            "drawStyle": "bars",
-            "fillOpacity": 80,
-            "lineWidth": 1,
-            "stacking": { "mode": "normal" }
-          },
-          "unit": "short"
-        }
-      },
-      "gridPos": { "h": 8, "w": 12, "x": 12, "y": 46 },
-      "id": 25,
-      "options": {
-        "legend": { "calcs": ["lastNotNull", "sum"], "displayMode": "table", "placement": "bottom" },
-        "tooltip": { "mode": "multi" }
-      },
-      "targets": [
-        {
-          "expr": "mam_janitor_deleted_per_run",
-          "legendFormat": "{{reason}}"
-        }
-      ],
-      "title": "Janitor Deletions per Run (by reason)",
-      "type": "timeseries"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": {
-        "defaults": { "unit": "short" }
-      },
-      "gridPos": { "h": 6, "w": 12, "x": 0, "y": 54 },
-      "id": 26,
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "textMode": "value_and_name",
-        "reduceOptions": { "calcs": ["lastNotNull"] }
-      },
-      "targets": [
-        { "expr": "mam_janitor_preserved_hnr", "legendFormat": "Preserved (H&R <72h)" },
-        { "expr": "mam_janitor_skipped_active", "legendFormat": "Skipped (in-progress)" },
-        { "expr": "mam_janitor_dry_run", "legendFormat": "Dry-run mode" }
-      ],
-      "title": "Janitor State",
-      "type": "stat"
-    },
-    {
-      "datasource": { "type": "prometheus", "uid": "${datasource}" },
-      "fieldConfig": {
-        "defaults": { "unit": "short" }
-      },
-      "gridPos": { "h": 6, "w": 12, "x": 12, "y": 54 },
-      "id": 27,
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "textMode": "value_and_name",
-        "reduceOptions": { "calcs": ["lastNotNull"] }
-      },
-      "targets": [
-        { "expr": "mam_farming_grabbed", "legendFormat": "Last run grabbed" },
-        { "expr": "mam_farming_total_seeding", "legendFormat": "Total in farming" },
-        { "expr": "sum by (reason) (mam_grabber_skipped_reason)", "legendFormat": "Grabber skipped: {{reason}}" }
-      ],
-      "title": "Grabber State",
-      "type": "stat"
     }
   ],
   "refresh": "1m",
diff --git a/stacks/monitoring/modules/monitoring/dashboards/uk-payslip.json b/stacks/monitoring/modules/monitoring/dashboards/uk-payslip.json
deleted file mode 100644
index 226a3c43..00000000
--- a/stacks/monitoring/modules/monitoring/dashboards/uk-payslip.json
+++ /dev/null
@@ -1,2172 +0,0 @@
-{
-  "annotations": {
-    "list": [
-      {
-        "builtIn": 1,
-        "datasource": {
-          "type": "datasource",
-          "uid": "grafana"
-        },
-        "enable": true,
-        "hide": true,
-        "iconColor": "rgba(0, 211, 255, 1)",
-        "name": "Annotations & Alerts",
-        "type": "dashboard"
-      }
-    ]
-  },
-  "description": "UK payslip breakdown \u2014 tax-year YTD hero, monthly cash flow, effective-rate trend, data-integrity flags, and full payslip table.",
-  "editable": true,
-  "fiscalYearStartMonth": 0,
-  "graphTooltip": 1,
-  "id": null,
-  "links": [],
-  "panels": [
-    {
-      "id": 1,
-      "title": "YTD sources \u2014 income composition",
-      "description": "Year-to-date cumulative breakdown of gross pay by source. Stacked \u2014 top of the stack equals gross_pay. Reset at each tax-year boundary.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 0,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "custom": {
-            "axisPlacement": "auto",
-            "drawStyle": "line",
-            "fillOpacity": 70,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "lineWidth": 1,
-            "pointSize": 4,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "auto",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "normal"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_salary"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "green"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Salary"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_bonus"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "yellow"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Bonus"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_rsu"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "blue"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "RSU (notional)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_other"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "text"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Other / residual"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawSql": "SELECT pay_date AS \"time\", SUM(salary) OVER w AS ytd_salary, SUM(bonus) OVER w AS ytd_bonus, SUM(rsu_vest) OVER w AS ytd_rsu, SUM(GREATEST(gross_pay - salary - bonus - rsu_vest, 0)) OVER w AS ytd_other FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date) WINDOW w AS (PARTITION BY tax_year ORDER BY pay_date) ORDER BY pay_date",
-          "format": "time_series",
-          "refId": "A",
-          "rawQuery": true,
-          "editorMode": "code"
-        }
-      ]
-    },
-    {
-      "id": 7,
-      "title": "YTD uses \u2014 where gross went",
-      "description": "Year-to-date cumulative breakdown of where the gross went. Stacked \u2014 top equals gross_pay minus student loan and RSU offset (both small; shown on Panel 8 Sankey). RSU vest tax broken out at the exact band-aware marginal (PA-taper aware: 60% in the \u00a3100k\u2013\u00a3125,140 zone, 47% additional-rate, etc.) \u2014 see SQL for full bands. Green = take-home; red = cash income tax; orange = tax on RSU vest; orange = cash NI; purple = pension.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 12,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "custom": {
-            "axisPlacement": "auto",
-            "drawStyle": "line",
-            "fillOpacity": 70,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "lineWidth": 1,
-            "pointSize": 4,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "auto",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "normal"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_net"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "green"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Net (take-home)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_cash_income_tax"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#C4162A"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Income Tax (cash)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_rsu_tax_marginal"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#E0652E"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Tax on RSU vest (band-aware marginal)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_cash_ni"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "orange"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "National Insurance (cash)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_pension_employee"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "purple"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Pension (employee)"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawSql": "WITH r AS (SELECT * FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date)), ani AS (SELECT *, COALESCE(SUM(gross_pay - COALESCE(pension_sacrifice, 0)) OVER (PARTITION BY tax_year ORDER BY pay_date ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING), 0) AS ani_prior FROM r), slice AS (SELECT *, ani_prior + gross_pay - COALESCE(rsu_vest, 0) - COALESCE(pension_sacrifice, 0) AS ani_pre, ani_prior + gross_pay - COALESCE(pension_sacrifice, 0) AS ani_post FROM ani), m AS (SELECT *, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.20 + GREATEST(0, LEAST(ani_post, 100000) - GREATEST(ani_pre, 50270)) * 0.40 + GREATEST(0, LEAST(ani_post, 125140) - GREATEST(ani_pre, 100000)) * 0.60 + GREATEST(0, ani_post - GREATEST(ani_pre, 125140)) * 0.45 AS rsu_paye_marginal, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.08 + GREATEST(0, ani_post - GREATEST(ani_pre, 50270)) * 0.02 AS rsu_ni_marginal FROM slice) SELECT pay_date AS \"time\", SUM(net_pay) OVER w AS ytd_net, SUM(GREATEST(0, income_tax - rsu_paye_marginal)) OVER w AS ytd_cash_income_tax, SUM(rsu_paye_marginal + rsu_ni_marginal) OVER w AS ytd_rsu_tax_marginal, SUM(GREATEST(0, national_insurance - rsu_ni_marginal)) OVER w AS ytd_cash_ni, SUM(pension_employee) OVER w AS ytd_pension_employee FROM m WINDOW w AS (PARTITION BY tax_year ORDER BY pay_date) ORDER BY pay_date",
-          "format": "time_series",
-          "refId": "A",
-          "rawQuery": true,
-          "editorMode": "code"
-        }
-      ]
-    },
-    {
-      "id": 2,
-      "title": "Monthly cash flow (RSU stripped)",
-      "description": "Cash-only view: gross pay minus the RSU vest (cash_gross) and the bank-deposited net_pay. Tax and NI are not shown here because UK cumulative PAYE genuinely takes a YTD true-up chunk in vest months on top of the marginal RSU PAYE \u2014 see Panel 11 for the full tax breakdown with the band-aware RSU split.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 9,
-        "w": 12,
-        "x": 0,
-        "y": 10
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "custom": {
-            "axisBorderShow": false,
-            "axisCenteredZero": false,
-            "axisColorMode": "text",
-            "axisLabel": "",
-            "axisPlacement": "auto",
-            "barAlignment": 0,
-            "drawStyle": "line",
-            "fillOpacity": 10,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "lineWidth": 2,
-            "pointSize": 5,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "auto",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "mean"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawSql": "SELECT pay_date AS \"time\", (gross_pay - rsu_vest) AS cash_gross, net_pay FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date) ORDER BY pay_date",
-          "format": "time_series",
-          "refId": "A",
-          "rawQuery": true,
-          "editorMode": "code"
-        }
-      ]
-    },
-    {
-      "id": 3,
-      "title": "Effective rate & take-home % (YTD cumulative)",
-      "description": "YTD-cumulative rates \u2014 three angles on take-home. (1) PAYE rate = SUM(income_tax) / SUM(taxable_pay): the audit number HMRC uses, converges to ~marginal in the additional-rate band. (2) Cash take-home % = SUM(net_pay) / SUM(gross_pay - rsu_vest): what fraction of cash earnings becomes a bank deposit; useful for cash-flow planning. (3) Total keep % = (SUM(net_pay) + SUM(rsu_vest - rsu_paye_marginal - rsu_ni_marginal)) / SUM(gross_pay): true 'what I actually keep' including post-tax RSU shares with the exact band-aware marginal (PA-taper aware). Resets on 6-April tax year boundary.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 9,
-        "w": 12,
-        "x": 12,
-        "y": 10
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "percent",
-          "min": 0,
-          "max": 100,
-          "custom": {
-            "axisBorderShow": false,
-            "axisCenteredZero": false,
-            "axisColorMode": "text",
-            "axisLabel": "",
-            "axisPlacement": "auto",
-            "barAlignment": 0,
-            "drawStyle": "line",
-            "fillOpacity": 10,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "lineWidth": 2,
-            "pointSize": 5,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "auto",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_paye_rate_pct"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#C4162A"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "PAYE rate (HMRC, on taxable_pay)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_cash_take_home_pct"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "green"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Cash take-home % (net / cash_gross)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_total_keep_pct"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "blue"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Total keep % (cash + post-tax shares)"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "mean"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawSql": "WITH r AS (SELECT * FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date)), ani AS (SELECT *, COALESCE(SUM(gross_pay - COALESCE(pension_sacrifice, 0)) OVER (PARTITION BY tax_year ORDER BY pay_date ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING), 0) AS ani_prior FROM r), slice AS (SELECT *, ani_prior + gross_pay - COALESCE(rsu_vest, 0) - COALESCE(pension_sacrifice, 0) AS ani_pre, ani_prior + gross_pay - COALESCE(pension_sacrifice, 0) AS ani_post FROM ani), m AS (SELECT *, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.20 + GREATEST(0, LEAST(ani_post, 100000) - GREATEST(ani_pre, 50270)) * 0.40 + GREATEST(0, LEAST(ani_post, 125140) - GREATEST(ani_pre, 100000)) * 0.60 + GREATEST(0, ani_post - GREATEST(ani_pre, 125140)) * 0.45 AS rsu_paye_marginal, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.08 + GREATEST(0, ani_post - GREATEST(ani_pre, 50270)) * 0.02 AS rsu_ni_marginal FROM slice) SELECT pay_date AS \"time\", ROUND(((SUM(income_tax) OVER w)::numeric / NULLIF(SUM(COALESCE(taxable_pay, gross_pay)) OVER w, 0)) * 100, 2) AS \"ytd_paye_rate_pct\", ROUND(((SUM(net_pay) OVER w)::numeric / NULLIF(SUM(gross_pay - rsu_vest) OVER w, 0)) * 100, 2) AS \"ytd_cash_take_home_pct\", ROUND((((SUM(net_pay) OVER w) + (SUM(rsu_vest - rsu_paye_marginal - rsu_ni_marginal) OVER w))::numeric / NULLIF(SUM(gross_pay) OVER w, 0)) * 100, 2) AS \"ytd_total_keep_pct\" FROM m WINDOW w AS (PARTITION BY tax_year ORDER BY pay_date) ORDER BY pay_date",
-          "format": "time_series",
-          "refId": "A",
-          "rawQuery": true,
-          "editorMode": "code"
-        }
-      ]
-    },
-    {
-      "id": 11,
-      "title": "Tax & pension \u2014 monthly",
-      "description": "Per-month RSU vest tax + recurring deductions. Cash-side PAYE/NI hidden because UK cumulative PAYE makes them inherently bumpy in vest months despite the marginal RSU strip \u2014 see Panel 12 (YTD cumulative) for the smoothed totals or Panel 3 for the effective rate. Orange = tax on RSU vest at the exact band-aware marginal (PA-taper aware: 60% in \u00a3100k\u2013\u00a3125,140 zone); brown = student loan; purple = employee pension; light purple = employer pension (paid on top of salary).",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 0,
-        "y": 19
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "custom": {
-            "axisPlacement": "auto",
-            "drawStyle": "line",
-            "fillOpacity": 70,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "lineWidth": 1,
-            "pointSize": 4,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "auto",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "normal"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "rsu_tax_marginal"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#E0652E"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Tax on RSU vest (band-aware marginal)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "student_loan"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#8B4513"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Student Loan"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "pension_employee"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "purple"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Pension (employee)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "pension_employer"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#CE96D8"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Pension (employer)"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawSql": "WITH r AS (SELECT * FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date)), ani AS (SELECT *, COALESCE(SUM(gross_pay - COALESCE(pension_sacrifice, 0)) OVER (PARTITION BY tax_year ORDER BY pay_date ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING), 0) AS ani_prior FROM r), slice AS (SELECT *, ani_prior + gross_pay - COALESCE(rsu_vest, 0) - COALESCE(pension_sacrifice, 0) AS ani_pre, ani_prior + gross_pay - COALESCE(pension_sacrifice, 0) AS ani_post FROM ani), m AS (SELECT *, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.20 + GREATEST(0, LEAST(ani_post, 100000) - GREATEST(ani_pre, 50270)) * 0.40 + GREATEST(0, LEAST(ani_post, 125140) - GREATEST(ani_pre, 100000)) * 0.60 + GREATEST(0, ani_post - GREATEST(ani_pre, 125140)) * 0.45 AS rsu_paye_marginal, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.08 + GREATEST(0, ani_post - GREATEST(ani_pre, 50270)) * 0.02 AS rsu_ni_marginal FROM slice) SELECT pay_date AS \"time\", (rsu_paye_marginal + rsu_ni_marginal) AS rsu_tax_marginal, student_loan, pension_employee, pension_employer FROM m ORDER BY pay_date",
-          "format": "time_series",
-          "refId": "A",
-          "rawQuery": true,
-          "editorMode": "code"
-        }
-      ]
-    },
-    {
-      "id": 12,
-      "title": "Tax & pension \u2014 YTD cumulative",
-      "description": "Year-to-date cumulative tax and pension. Same series and colors as the monthly panel \u2014 RSU vest tax broken out at the exact band-aware marginal (PA-taper aware: 60% in \u00a3100k\u2013\u00a3125,140 zone, 47% additional-rate, etc.). Resets on 6-April tax year boundary.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 12,
-        "y": 19
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "custom": {
-            "axisPlacement": "auto",
-            "drawStyle": "line",
-            "fillOpacity": 70,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "lineWidth": 1,
-            "pointSize": 4,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "auto",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "normal"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_cash_income_tax"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#C4162A"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Income Tax (cash)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_rsu_tax_marginal"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#E0652E"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Tax on RSU vest (band-aware marginal)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_cash_ni"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "orange"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "National Insurance (cash)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_student_loan"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#8B4513"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Student Loan"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_pension_employee"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "purple"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Pension (employee)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_pension_employer"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#CE96D8"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Pension (employer)"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawSql": "WITH r AS (SELECT * FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date)), ani AS (SELECT *, COALESCE(SUM(gross_pay - COALESCE(pension_sacrifice, 0)) OVER (PARTITION BY tax_year ORDER BY pay_date ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING), 0) AS ani_prior FROM r), slice AS (SELECT *, ani_prior + gross_pay - COALESCE(rsu_vest, 0) - COALESCE(pension_sacrifice, 0) AS ani_pre, ani_prior + gross_pay - COALESCE(pension_sacrifice, 0) AS ani_post FROM ani), m AS (SELECT *, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.20 + GREATEST(0, LEAST(ani_post, 100000) - GREATEST(ani_pre, 50270)) * 0.40 + GREATEST(0, LEAST(ani_post, 125140) - GREATEST(ani_pre, 100000)) * 0.60 + GREATEST(0, ani_post - GREATEST(ani_pre, 125140)) * 0.45 AS rsu_paye_marginal, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.08 + GREATEST(0, ani_post - GREATEST(ani_pre, 50270)) * 0.02 AS rsu_ni_marginal FROM slice) SELECT pay_date AS \"time\", SUM(GREATEST(0, income_tax - rsu_paye_marginal)) OVER w AS ytd_cash_income_tax, SUM(rsu_paye_marginal + rsu_ni_marginal) OVER w AS ytd_rsu_tax_marginal, SUM(GREATEST(0, national_insurance - rsu_ni_marginal)) OVER w AS ytd_cash_ni, SUM(student_loan) OVER w AS ytd_student_loan, SUM(pension_employee) OVER w AS ytd_pension_employee, SUM(pension_employer) OVER w AS ytd_pension_employer FROM m WINDOW w AS (PARTITION BY tax_year ORDER BY pay_date) ORDER BY pay_date",
-          "format": "time_series",
-          "refId": "A",
-          "rawQuery": true,
-          "editorMode": "code"
-        }
-      ]
-    },
-    {
-      "id": 13,
-      "title": "Monthly cash flow \u2014 tax impact (RSU excluded)",
-      "description": "Cash-only deductions. RSU PAYE excluded \u2014 it's withheld at source via sell-to-cover and never hits the bank account. See Panel 11 for the full PAYE view including RSU-attributed tax.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 9,
-        "w": 24,
-        "x": 0,
-        "y": 39
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "custom": {
-            "axisPlacement": "auto",
-            "drawStyle": "bars",
-            "fillOpacity": 100,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "lineWidth": 0,
-            "pointSize": 4,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "never",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "normal"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "cash_income_tax"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#C4162A"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Income Tax (cash pay)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ni"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "orange"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "National Insurance"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "student_loan"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#8B4513"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Student Loan"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "pension_employee"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "purple"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Pension (employee)"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max",
-            "sum"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawSql": "SELECT pay_date AS \"time\", COALESCE(cash_income_tax, income_tax) AS cash_income_tax, national_insurance AS ni, student_loan, pension_employee FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date) ORDER BY pay_date",
-          "format": "time_series",
-          "refId": "A",
-          "rawQuery": true,
-          "editorMode": "code"
-        }
-      ]
-    },
-    {
-      "id": 4,
-      "title": "Data integrity \u2014 missing months & parser flags",
-      "type": "table",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 6,
-        "w": 24,
-        "x": 0,
-        "y": 62
-      },
-      "fieldConfig": {
-        "defaults": {
-          "custom": {
-            "align": "right",
-            "cellOptions": {
-              "type": "auto"
-            },
-            "inspect": false
-          },
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "green",
-                "value": null
-              }
-            ]
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "month_start"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 120
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "status"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 140
-              },
-              {
-                "id": "custom.align",
-                "value": "center"
-              },
-              {
-                "id": "custom.cellOptions",
-                "value": {
-                  "type": "color-background",
-                  "mode": "basic"
-                }
-              },
-              {
-                "id": "mappings",
-                "value": [
-                  {
-                    "type": "value",
-                    "options": {
-                      "MISSING": {
-                        "color": "red",
-                        "index": 0,
-                        "text": "MISSING"
-                      },
-                      "ZERO_SALARY": {
-                        "color": "red",
-                        "index": 1,
-                        "text": "ZERO_SALARY"
-                      },
-                      "RSU_NO_SALARY": {
-                        "color": "red",
-                        "index": 2,
-                        "text": "RSU_NO_SALARY"
-                      },
-                      "NULL_CASH_TAX": {
-                        "color": "orange",
-                        "index": 3,
-                        "text": "NULL_CASH_TAX"
-                      },
-                      "ok": {
-                        "color": "green",
-                        "index": 4,
-                        "text": "ok"
-                      }
-                    }
-                  }
-                ]
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "pay_date"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 120
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byType",
-              "options": "number"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "paperless_doc_id"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "none"
-              },
-              {
-                "id": "custom.width",
-                "value": 100
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "cellHeight": "sm",
-        "footer": {
-          "show": false
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH expected AS (SELECT generate_series(DATE '2019-07-01', DATE_TRUNC('month', CURRENT_DATE), '1 month'::interval)::date AS month_start), actual AS (SELECT DATE_TRUNC('month', pay_date)::date AS month_start, pay_date, salary, gross_pay, rsu_vest, cash_income_tax, income_tax, paperless_doc_id FROM payslip_ingest.payslip) SELECT e.month_start, CASE WHEN a.pay_date IS NULL THEN 'MISSING' WHEN a.salary = 0 AND a.gross_pay > 5000 THEN 'ZERO_SALARY' WHEN a.rsu_vest > 0 AND a.salary = 0 THEN 'RSU_NO_SALARY' WHEN a.rsu_vest > 0 AND a.cash_income_tax IS NULL THEN 'NULL_CASH_TAX' ELSE 'ok' END AS status, a.pay_date, a.salary, a.gross_pay, a.rsu_vest, a.cash_income_tax, a.paperless_doc_id FROM expected e LEFT JOIN actual a ON a.month_start = e.month_start WHERE e.month_start >= DATE '2019-07-01' ORDER BY e.month_start DESC"
-        }
-      ]
-    },
-    {
-      "id": 5,
-      "title": "All payslips \u2014 detailed breakdown",
-      "type": "table",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 14,
-        "w": 24,
-        "x": 0,
-        "y": 68
-      },
-      "fieldConfig": {
-        "defaults": {
-          "custom": {
-            "align": "right",
-            "cellOptions": {
-              "type": "auto"
-            },
-            "inspect": true
-          },
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "green",
-                "value": null
-              }
-            ]
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "pay_date"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 110
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "employer"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 150
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "tax_year"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 80
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "validated"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 80
-              },
-              {
-                "id": "custom.cellOptions",
-                "value": {
-                  "type": "color-text"
-                }
-              },
-              {
-                "id": "mappings",
-                "value": [
-                  {
-                    "type": "value",
-                    "options": {
-                      "true": {
-                        "color": "green",
-                        "text": "\u2713"
-                      },
-                      "false": {
-                        "color": "red",
-                        "text": "\u26a0"
-                      }
-                    }
-                  }
-                ]
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byType",
-              "options": "number"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "paperless_doc_id"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "none"
-              },
-              {
-                "id": "custom.width",
-                "value": 80
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "footer": {
-          "show": true,
-          "reducer": [
-            "sum"
-          ],
-          "fields": [
-            "gross_pay",
-            "net_pay",
-            "income_tax",
-            "national_insurance",
-            "pension_employee",
-            "pension_employer",
-            "student_loan"
-          ]
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT pay_date, employer, tax_year, gross_pay, (gross_pay - rsu_vest) AS cash_gross, salary, bonus, rsu_vest, rsu_offset, pension_sacrifice, taxable_pay, income_tax, national_insurance, pension_employee, pension_employer, student_loan, COALESCE(other_deductions, '{}'::jsonb) AS other_deductions, net_pay, validated, paperless_doc_id FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date) ORDER BY pay_date DESC"
-        }
-      ]
-    },
-    {
-      "id": 6,
-      "title": "YTD reconciliation \u2014 reported vs computed",
-      "description": "Reconciles each payslip's reported YTD summary block against the cumulative sum of extracted per-payslip values within the same tax year. Any \u0394 > \u00a30.02 is a parser regression, a missing slip, or a duplicate ingest. Variant A payslips (pre-mid-2022) have no YTD block and are excluded.",
-      "type": "table",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 12,
-        "w": 24,
-        "x": 0,
-        "y": 82
-      },
-      "fieldConfig": {
-        "defaults": {
-          "custom": {
-            "align": "right",
-            "cellOptions": {
-              "type": "auto"
-            },
-            "inspect": false
-          },
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "green",
-                "value": null
-              }
-            ]
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "pay_date"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 110
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "tax_year"
-            },
-            "properties": [
-              {
-                "id": "custom.width",
-                "value": 80
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "gross_pay"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_gross_reported"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_gross_computed"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "delta_gross"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              },
-              {
-                "id": "custom.cellOptions",
-                "value": {
-                  "type": "color-background",
-                  "mode": "basic"
-                }
-              },
-              {
-                "id": "thresholds",
-                "value": {
-                  "mode": "absolute",
-                  "steps": [
-                    {
-                      "color": "red",
-                      "value": null
-                    },
-                    {
-                      "color": "green",
-                      "value": -0.02
-                    },
-                    {
-                      "color": "red",
-                      "value": 0.02
-                    }
-                  ]
-                }
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "taxable_pay"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_taxable_reported"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_taxable_computed"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "delta_taxable"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              },
-              {
-                "id": "custom.cellOptions",
-                "value": {
-                  "type": "color-background",
-                  "mode": "basic"
-                }
-              },
-              {
-                "id": "thresholds",
-                "value": {
-                  "mode": "absolute",
-                  "steps": [
-                    {
-                      "color": "red",
-                      "value": null
-                    },
-                    {
-                      "color": "green",
-                      "value": -0.02
-                    },
-                    {
-                      "color": "red",
-                      "value": 0.02
-                    }
-                  ]
-                }
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "income_tax"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_tax_reported"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "ytd_tax_computed"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "delta_tax"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              },
-              {
-                "id": "custom.cellOptions",
-                "value": {
-                  "type": "color-background",
-                  "mode": "basic"
-                }
-              },
-              {
-                "id": "thresholds",
-                "value": {
-                  "mode": "absolute",
-                  "steps": [
-                    {
-                      "color": "red",
-                      "value": null
-                    },
-                    {
-                      "color": "green",
-                      "value": -0.02
-                    },
-                    {
-                      "color": "red",
-                      "value": 0.02
-                    }
-                  ]
-                }
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "cellHeight": "sm",
-        "footer": {
-          "show": false
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT pay_date, tax_year, gross_pay, ytd_gross AS ytd_gross_reported, SUM(gross_pay) OVER w AS ytd_gross_computed, (ytd_gross - SUM(gross_pay) OVER w) AS delta_gross, taxable_pay, ytd_taxable_pay AS ytd_taxable_reported, SUM(taxable_pay) OVER w AS ytd_taxable_computed, (ytd_taxable_pay - SUM(taxable_pay) OVER w) AS delta_taxable, income_tax, ytd_tax_paid AS ytd_tax_reported, SUM(income_tax) OVER w AS ytd_tax_computed, (ytd_tax_paid - SUM(income_tax) OVER w) AS delta_tax FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date) AND ytd_gross IS NOT NULL WINDOW w AS (PARTITION BY tax_year ORDER BY pay_date) ORDER BY pay_date DESC"
-        }
-      ]
-    },
-    {
-      "id": 8,
-      "title": "Sankey \u2014 where the money went",
-      "description": "Income sources flow into gross, then out to deductions and take-home. Aggregated over the selected time range (use the time picker to scope to a single tax year).",
-      "type": "netsage-sankey-panel",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 14,
-        "w": 24,
-        "x": 0,
-        "y": 48
-      },
-      "options": {
-        "monochrome": false,
-        "monochromeColor": "#7294d4",
-        "showHeader": true,
-        "displayValues": "show",
-        "valueFormat": "currencyGBP",
-        "nodeWidth": 20,
-        "nodePadding": 15
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH r AS (SELECT * FROM payslip_ingest.payslip WHERE $__timeFilter(pay_date)), ani AS (SELECT *, COALESCE(SUM(gross_pay - COALESCE(pension_sacrifice, 0)) OVER (PARTITION BY tax_year ORDER BY pay_date ROWS BETWEEN UNBOUNDED PRECEDING AND 1 PRECEDING), 0) AS ani_prior FROM r), slice AS (SELECT *, ani_prior + gross_pay - COALESCE(rsu_vest, 0) - COALESCE(pension_sacrifice, 0) AS ani_pre, ani_prior + gross_pay - COALESCE(pension_sacrifice, 0) AS ani_post FROM ani), m AS (SELECT *, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.20 + GREATEST(0, LEAST(ani_post, 100000) - GREATEST(ani_pre, 50270)) * 0.40 + GREATEST(0, LEAST(ani_post, 125140) - GREATEST(ani_pre, 100000)) * 0.60 + GREATEST(0, ani_post - GREATEST(ani_pre, 125140)) * 0.45 AS rsu_paye_marginal, GREATEST(0, LEAST(ani_post, 12570) - GREATEST(ani_pre, 0)) * 0.00 + GREATEST(0, LEAST(ani_post, 50270) - GREATEST(ani_pre, 12570)) * 0.08 + GREATEST(0, ani_post - GREATEST(ani_pre, 50270)) * 0.02 AS rsu_ni_marginal FROM slice), agg AS (SELECT COALESCE(SUM(salary), 0) AS salary, COALESCE(SUM(bonus), 0) AS bonus, COALESCE(SUM(rsu_vest), 0) AS rsu_vest, COALESCE(SUM(GREATEST(gross_pay - salary - bonus - rsu_vest, 0)), 0) AS other_income, COALESCE(SUM(net_pay), 0) AS net_pay, COALESCE(SUM(GREATEST(0, income_tax - rsu_paye_marginal)), 0) AS cash_income_tax, COALESCE(SUM(rsu_paye_marginal + rsu_ni_marginal), 0) AS rsu_tax_marginal, COALESCE(SUM(GREATEST(0, national_insurance - rsu_ni_marginal)), 0) AS cash_ni, COALESCE(SUM(pension_employee), 0) AS pension, COALESCE(SUM(student_loan), 0) AS student_loan, COALESCE(SUM(rsu_offset), 0) AS rsu_offset FROM m) SELECT 'Salary' AS source, 'Gross' AS target, salary AS value FROM agg WHERE salary > 0 UNION ALL SELECT 'Bonus', 'Gross', bonus FROM agg WHERE bonus > 0 UNION ALL SELECT 'RSU', 'Gross', rsu_vest FROM agg WHERE rsu_vest > 0 UNION ALL SELECT 'Other income', 'Gross', other_income FROM agg WHERE other_income > 0 UNION ALL SELECT 'Gross', 'Net pay', net_pay FROM agg WHERE net_pay > 0 UNION ALL SELECT 'Gross', 'Income Tax (cash)', cash_income_tax FROM agg WHERE cash_income_tax > 0 UNION ALL SELECT 'Gross', 'Tax on RSU vest', rsu_tax_marginal FROM agg WHERE rsu_tax_marginal > 0 UNION ALL SELECT 'Gross', 'National Insurance (cash)', cash_ni FROM agg WHERE cash_ni > 0 UNION ALL SELECT 'Gross', 'Pension', pension FROM agg WHERE pension > 0 UNION ALL SELECT 'Gross', 'Student Loan', student_loan FROM agg WHERE student_loan > 0 UNION ALL SELECT 'Gross', 'RSU Offset', rsu_offset FROM agg WHERE rsu_offset > 0"
-        }
-      ]
-    },
-    {
-      "id": 9,
-      "title": "P60 reconciliation \u2014 HMRC annual vs summed payslips",
-      "description": "Per-tax-year comparison of the figures HMRC printed on the P60 vs what we summed from individual payslips. Delta columns: |\u0394|<1 green (exact match), 1-50 yellow (rounding), >50 red (missing month or parser drift). Always shows all years \u2014 ignores the time picker.",
-      "type": "table",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 24,
-        "x": 0,
-        "y": 94
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "custom": {
-            "align": "right",
-            "displayMode": "auto"
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byRegexp",
-              "options": "^delta_"
-            },
-            "properties": [
-              {
-                "id": "custom.displayMode",
-                "value": "color-background"
-              },
-              {
-                "id": "custom.cellOptions",
-                "value": {
-                  "type": "color-background",
-                  "mode": "gradient"
-                }
-              },
-              {
-                "id": "thresholds",
-                "value": {
-                  "mode": "absolute",
-                  "steps": [
-                    {
-                      "color": "green",
-                      "value": null
-                    },
-                    {
-                      "color": "green",
-                      "value": -1
-                    },
-                    {
-                      "color": "yellow",
-                      "value": 1
-                    },
-                    {
-                      "color": "red",
-                      "value": 50
-                    },
-                    {
-                      "color": "red",
-                      "value": -50
-                    }
-                  ]
-                }
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "tax_year"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "string"
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "employer"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "string"
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "tax_code"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "string"
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "paperless_doc_id"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "none"
-              },
-              {
-                "id": "custom.align",
-                "value": "left"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "showHeader": true,
-        "cellHeight": "sm",
-        "footer": {
-          "show": false
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT p.tax_year, p.employer, p.gross_pay AS p60_gross, c.sum_gross AS computed_gross, (p.gross_pay - c.sum_gross) AS delta_gross, p.income_tax AS p60_tax, c.sum_tax AS computed_tax, (p.income_tax - c.sum_tax) AS delta_tax, p.national_insurance AS p60_ni, c.sum_ni AS computed_ni, (p.national_insurance - c.sum_ni) AS delta_ni, p.tax_code, p.paperless_doc_id FROM payslip_ingest.p60_reference p LEFT JOIN LATERAL (SELECT COALESCE(SUM(gross_pay), 0) AS sum_gross, COALESCE(SUM(income_tax), 0) AS sum_tax, COALESCE(SUM(national_insurance), 0) AS sum_ni FROM payslip_ingest.payslip WHERE tax_year = p.tax_year) c ON true ORDER BY p.tax_year DESC"
-        }
-      ]
-    },
-    {
-      "id": 16,
-      "title": "Yearly receipt \u2014 gross income per tax year",
-      "description": "One stacked bar per tax year showing all gross income components: salary (cash, post-pension-sacrifice), pension (salary-sacrifice \u2014 untaxed but real income), bonus, and RSU vest gross. Bar total = pre-sacrifice gross compensation. Aligns with P60: bar \u2212 pension_sacrifice \u2248 ytd_gross reported on the final March payslip / P60. Where the parser correctly captured bonus into gross_pay (every year except 2023/24 and 2024/25 \u2014 March payslip parsing bug), the match is exact.",
-      "type": "barchart",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 0,
-        "y": 29
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "custom": {
-            "axisPlacement": "auto",
-            "axisLabel": "",
-            "axisCenteredZero": false,
-            "fillOpacity": 80,
-            "gradientMode": "none",
-            "lineWidth": 1,
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "salary_cash"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "green"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Salary (cash, post-sacrifice)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "pension_sacrifice"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#CE96D8"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Pension (salary sacrifice, untaxed)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "bonus"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#FADE2A"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Bonus (gross)"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "rsu_gross"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#3274D9"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "RSU vest (gross)"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "barRadius": 0,
-        "barWidth": 0.6,
-        "groupWidth": 0.7,
-        "orientation": "auto",
-        "showValue": "auto",
-        "stacking": "normal",
-        "xField": "tax_year",
-        "xTickLabelRotation": 0,
-        "xTickLabelSpacing": 0,
-        "legend": {
-          "calcs": [
-            "sum"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT tax_year, SUM(salary - COALESCE(pension_sacrifice, 0)) AS salary_cash, SUM(COALESCE(pension_sacrifice, 0)) AS pension_sacrifice, SUM(bonus) AS bonus, SUM(rsu_vest) AS rsu_gross FROM payslip_ingest.payslip GROUP BY tax_year ORDER BY tax_year"
-        }
-      ]
-    },
-    {
-      "id": 17,
-      "title": "YTD gross salary \u2014 year-over-year comparison",
-      "description": "Cumulative gross pay built up month by month within each UK tax year (April \u2192 March). One line per tax year. Pay dates are projected onto a sliding 12-month window ending now, so years overlay cleanly without falling outside the dashboard's time range. X-axis shows month-of-tax-year (April first, March last).",
-      "type": "timeseries",
-      "timeFrom": "13M",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "payslips-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 12,
-        "y": 29
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "decimals": 0,
-          "custom": {
-            "drawStyle": "line",
-            "lineWidth": 2,
-            "fillOpacity": 0,
-            "pointSize": 5,
-            "showPoints": "auto",
-            "spanNulls": true,
-            "axisPlacement": "auto",
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            }
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "payslips-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "WITH projected AS (SELECT ((CURRENT_DATE - INTERVAL '12 months')::date + (pay_date - MAKE_DATE(SUBSTRING(tax_year, 1, 4)::int, 4, 6)))::timestamp AS t, tax_year, SUM(gross_pay) OVER (PARTITION BY tax_year ORDER BY pay_date) AS ytd FROM payslip_ingest.payslip) SELECT t AS \"time\", tax_year AS metric, ytd AS ytd_gross FROM projected ORDER BY t, tax_year"
-        }
-      ]
-    }
-  ],
-  "refresh": "5m",
-  "schemaVersion": 39,
-  "tags": [
-    "finance",
-    "personal",
-    "uk-tax"
-  ],
-  "templating": {
-    "list": []
-  },
-  "time": {
-    "from": "now-10y",
-    "to": "now"
-  },
-  "timepicker": {},
-  "timezone": "browser",
-  "title": "UK Payslip",
-  "uid": "uk-payslip",
-  "version": 1
-}
\ No newline at end of file
diff --git a/stacks/monitoring/modules/monitoring/dashboards/wealth.json b/stacks/monitoring/modules/monitoring/dashboards/wealth.json
deleted file mode 100644
index 65da044b..00000000
--- a/stacks/monitoring/modules/monitoring/dashboards/wealth.json
+++ /dev/null
@@ -1,1910 +0,0 @@
-{
-  "annotations": {
-    "list": [
-      {
-        "builtIn": 1,
-        "datasource": {
-          "type": "datasource",
-          "uid": "grafana"
-        },
-        "enable": true,
-        "hide": true,
-        "iconColor": "rgba(0, 211, 255, 1)",
-        "name": "Annotations & Alerts",
-        "type": "dashboard"
-      },
-      {
-        "datasource": {
-          "type": "grafana-postgresql-datasource",
-          "uid": "wealth-pg"
-        },
-        "enable": true,
-        "hide": false,
-        "iconColor": "purple",
-        "name": "Milestones",
-        "target": {
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "refId": "Anno",
-          "rawSql": "WITH daily AS (SELECT d.valuation_date, SUM(d.total_value) AS nw FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date), crossings AS (SELECT t, (SELECT MIN(valuation_date) FROM daily WHERE nw >= t::numeric) AS d FROM unnest(ARRAY[100000, 250000, 500000, 750000, 1000000]) AS t) SELECT d::timestamptz AS time, '£' || CASE WHEN t >= 1000000 THEN (t/1000000)::int::text || 'M' ELSE (t/1000)::int::text || 'k' END AS text FROM crossings WHERE d IS NOT NULL ORDER BY d"
-        }
-      }
-    ]
-  },
-  "description": "Wealth — net worth, contributions, and growth over time. Backed by the wealthfolio_sync PG mirror of Wealthfolio's SQLite, refreshed hourly by the pg-sync sidecar.",
-  "editable": true,
-  "fiscalYearStartMonth": 0,
-  "id": null,
-  "links": [],
-  "panels": [
-    {
-      "id": 1,
-      "title": "Net worth (current)",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 4,
-        "x": 0,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "fixed",
-            "fixedColor": "green"
-          },
-          "decimals": 2
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) d.account_id, d.total_value, d.net_contribution, d.cash_balance, d.investment_market_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC) SELECT SUM(total_value) AS net_worth FROM latest"
-        }
-      ]
-    },
-    {
-      "id": 2,
-      "title": "Net contribution (cumulative)",
-      "description": "Total deposits minus withdrawals across all accounts.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 4,
-        "x": 4,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "fixed",
-            "fixedColor": "blue"
-          },
-          "decimals": 2
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) d.account_id, d.total_value, d.net_contribution, d.cash_balance, d.investment_market_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC) SELECT SUM(net_contribution) AS contribution FROM latest"
-        }
-      ]
-    },
-    {
-      "id": 3,
-      "title": "Growth (unrealised)",
-      "description": "Net worth minus net contribution — the gain on everything you've put in.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 4,
-        "x": 8,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 2,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) d.account_id, d.total_value, d.net_contribution, d.cash_balance, d.investment_market_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC) SELECT (SUM(total_value) - SUM(net_contribution)) AS growth FROM latest"
-        }
-      ]
-    },
-    {
-      "id": 4,
-      "title": "ROI %",
-      "description": "Growth / net contribution × 100. Excludes accounts with zero/negative contribution (Schwab) to avoid distortion.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 3,
-        "x": 12,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "percent",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 2,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "yellow",
-                "value": 0
-              },
-              {
-                "color": "green",
-                "value": 5
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) d.account_id, d.total_value, d.net_contribution, d.cash_balance, d.investment_market_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC) SELECT (SUM(total_value - net_contribution) / NULLIF(SUM(net_contribution), 0) * 100) AS roi_pct FROM latest WHERE net_contribution > 0"
-        }
-      ]
-    },
-    {
-      "id": 5,
-      "title": "Net worth — total over time",
-      "description": "Daily total_value summed across all accounts (base GBP).",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 24,
-        "x": 0,
-        "y": 12
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "fixed",
-            "fixedColor": "green"
-          },
-          "unit": "currencyGBP",
-          "decimals": 2,
-          "custom": {
-            "drawStyle": "line",
-            "lineWidth": 2,
-            "fillOpacity": 20,
-            "pointSize": 4,
-            "showPoints": "never",
-            "spanNulls": true,
-            "axisPlacement": "auto",
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "net_worth"
-            },
-            "properties": [
-              {
-                "id": "displayName",
-                "value": "Net worth"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)) SELECT valuation_date::timestamp AS \"time\", SUM(total_value) AS net_worth FROM daily_account_valuation WHERE $__timeFilter(valuation_date) AND valuation_date <= (SELECT d FROM max_complete) GROUP BY valuation_date ORDER BY valuation_date"
-        }
-      ]
-    },
-    {
-      "id": 6,
-      "title": "Net contribution vs market value",
-      "description": "Net contribution = cumulative deposits − withdrawals. Market value = total_value (cash + investments). Gap between the two = unrealised growth.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 0,
-        "y": 22
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "decimals": 2,
-          "custom": {
-            "drawStyle": "line",
-            "lineWidth": 2,
-            "fillOpacity": 0,
-            "pointSize": 4,
-            "showPoints": "never",
-            "spanNulls": true,
-            "axisPlacement": "auto",
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "market_value"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "green"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Market value"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "net_contribution"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "blue"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Net contribution"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)) SELECT valuation_date::timestamp AS \"time\", SUM(net_contribution) AS net_contribution, SUM(total_value) AS market_value FROM daily_account_valuation WHERE $__timeFilter(valuation_date) AND valuation_date <= (SELECT d FROM max_complete) GROUP BY valuation_date ORDER BY valuation_date"
-        }
-      ]
-    },
-    {
-      "id": 7,
-      "title": "Growth (market value − contribution) over time",
-      "description": "Unrealised gain across all accounts. Filled area to emphasise the wealth created above the contributed capital.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 12,
-        "x": 12,
-        "y": 22
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "fixed",
-            "fixedColor": "#56A64B"
-          },
-          "unit": "currencyGBP",
-          "decimals": 2,
-          "custom": {
-            "drawStyle": "line",
-            "lineWidth": 2,
-            "fillOpacity": 50,
-            "gradientMode": "opacity",
-            "pointSize": 4,
-            "showPoints": "never",
-            "spanNulls": true,
-            "axisPlacement": "auto",
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "growth"
-            },
-            "properties": [
-              {
-                "id": "displayName",
-                "value": "Growth"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "max"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)) SELECT valuation_date::timestamp AS \"time\", (SUM(total_value) - SUM(net_contribution)) AS growth FROM daily_account_valuation WHERE $__timeFilter(valuation_date) AND valuation_date <= (SELECT d FROM max_complete) GROUP BY valuation_date ORDER BY valuation_date"
-        }
-      ]
-    },
-    {
-      "id": 8,
-      "title": "Per-account stacked — total value",
-      "description": "Stacked area showing each account's contribution to total net worth over time. Useful for spotting which account drives the trajectory.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 11,
-        "w": 24,
-        "x": 0,
-        "y": 32
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "decimals": 2,
-          "custom": {
-            "drawStyle": "line",
-            "lineWidth": 1,
-            "fillOpacity": 70,
-            "pointSize": 3,
-            "showPoints": "never",
-            "spanNulls": true,
-            "axisPlacement": "auto",
-            "stacking": {
-              "group": "A",
-              "mode": "normal"
-            }
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)) SELECT d.valuation_date::timestamp AS \"time\", a.name AS metric, d.total_value AS value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE $__timeFilter(d.valuation_date) AND d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.valuation_date, a.name"
-        }
-      ]
-    },
-    {
-      "id": 9,
-      "title": "Cash vs invested (stacked)",
-      "description": "Daily breakdown of uninvested broker cash vs market value of investments. WORKPLACE_PENSION accounts (Fidelity) are reclassified entirely as invested — Wealthfolio dumps pension wrappers into cash_balance because it doesn't track the underlying fund holdings, but they are not actually cash.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 24,
-        "x": 0,
-        "y": 43
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "decimals": 2,
-          "custom": {
-            "drawStyle": "line",
-            "lineWidth": 1,
-            "fillOpacity": 70,
-            "pointSize": 3,
-            "showPoints": "never",
-            "spanNulls": true,
-            "axisPlacement": "auto",
-            "stacking": {
-              "group": "A",
-              "mode": "normal"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "cash"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#FADE2A"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Cash"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "invested"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#56A64B"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Invested"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)) SELECT d.valuation_date::timestamp AS \"time\", SUM(CASE WHEN a.account_type = 'WORKPLACE_PENSION' THEN 0 ELSE d.cash_balance END) AS cash, SUM(CASE WHEN a.account_type = 'WORKPLACE_PENSION' THEN d.cash_balance + d.investment_market_value ELSE d.investment_market_value END) AS invested FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE $__timeFilter(d.valuation_date) AND d.valuation_date <= (SELECT d FROM max_complete) GROUP BY d.valuation_date ORDER BY d.valuation_date"
-        }
-      ]
-    },
-    {
-      "id": 10,
-      "title": "Activity log",
-      "description": "Recent activities (BUY / SELL / DEPOSIT / WITHDRAWAL / DIVIDEND / etc.) across all accounts. Limited to 100 most recent.",
-      "type": "table",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 14,
-        "w": 24,
-        "x": 0,
-        "y": 96
-      },
-      "fieldConfig": {
-        "defaults": {
-          "custom": {
-            "align": "auto",
-            "displayMode": "auto"
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "amount"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "currencyGBP"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "cellHeight": "sm",
-        "footer": {
-          "show": false
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "SELECT a.activity_date AS \"date\", acc.name AS \"account\", a.activity_type AS \"type\", a.asset_id AS \"asset\", a.quantity AS \"qty\", a.unit_price AS \"unit_price\", a.amount AS \"amount\", a.currency AS \"ccy\", a.notes AS \"notes\" FROM activities a LEFT JOIN accounts acc ON acc.id = a.account_id WHERE $__timeFilter(a.activity_date) ORDER BY a.activity_date DESC LIMIT 100"
-        }
-      ]
-    },
-    {
-      "id": 11,
-      "title": "12mo return",
-      "description": "Modified-Dietz return over the trailing 12 months: market_gain / (nw_12mo_ago + 0.5 × contributions_12mo). Excludes new money in — answers 'how did my investments perform' rather than 'how much did my net worth change'.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 3,
-        "x": 15,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "percent",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 2,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "yellow",
-                "value": 0
-              },
-              {
-                "color": "green",
-                "value": 5
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) d.account_id, d.valuation_date AS d_now, d.total_value AS nw_now, d.net_contribution AS contrib_now FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC), ago AS (SELECT DISTINCT ON (l.account_id) l.account_id, d.total_value AS nw_ago, d.net_contribution AS contrib_ago FROM latest l JOIN daily_account_valuation d ON d.account_id = l.account_id AND d.valuation_date <= l.d_now - INTERVAL '12 months' ORDER BY l.account_id, d.valuation_date DESC), agg AS (SELECT (SELECT SUM(nw_now) FROM latest) AS nw_now, (SELECT SUM(contrib_now) FROM latest) AS contrib_now, (SELECT SUM(nw_ago) FROM ago) AS nw_ago, (SELECT SUM(contrib_ago) FROM ago) AS contrib_ago) SELECT ROUND((((nw_now - nw_ago - (contrib_now - contrib_ago)) / NULLIF(nw_ago + 0.5 * (contrib_now - contrib_ago), 0)) * 100)::numeric, 2) AS pct_12mo FROM agg"
-        }
-      ]
-    },
-    {
-      "id": 15,
-      "title": "12mo contrib",
-      "description": "Net contributions (deposits − withdrawals) over the trailing 12 months. How much new money you put in — independent of market movement.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 3,
-        "x": 18,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "fixed",
-            "fixedColor": "blue"
-          },
-          "decimals": 2
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) d.account_id, d.valuation_date AS d_now, d.total_value AS nw_now, d.net_contribution AS contrib_now FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC), ago AS (SELECT DISTINCT ON (l.account_id) l.account_id, d.total_value AS nw_ago, d.net_contribution AS contrib_ago FROM latest l JOIN daily_account_valuation d ON d.account_id = l.account_id AND d.valuation_date <= l.d_now - INTERVAL '12 months' ORDER BY l.account_id, d.valuation_date DESC), agg AS (SELECT (SELECT SUM(nw_now) FROM latest) AS nw_now, (SELECT SUM(contrib_now) FROM latest) AS contrib_now, (SELECT SUM(nw_ago) FROM ago) AS nw_ago, (SELECT SUM(contrib_ago) FROM ago) AS contrib_ago) SELECT (contrib_now - contrib_ago) AS contrib_12mo FROM agg"
-        }
-      ]
-    },
-    {
-      "id": 16,
-      "title": "12mo gain",
-      "description": "Trailing 12-month market gain in £ — the change in net worth minus net contributions. What the markets gave you, separate from money you added in.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 3,
-        "x": 21,
-        "y": 0
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 2,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) d.account_id, d.valuation_date AS d_now, d.total_value AS nw_now, d.net_contribution AS contrib_now FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC), ago AS (SELECT DISTINCT ON (l.account_id) l.account_id, d.total_value AS nw_ago, d.net_contribution AS contrib_ago FROM latest l JOIN daily_account_valuation d ON d.account_id = l.account_id AND d.valuation_date <= l.d_now - INTERVAL '12 months' ORDER BY l.account_id, d.valuation_date DESC), agg AS (SELECT (SELECT SUM(nw_now) FROM latest) AS nw_now, (SELECT SUM(contrib_now) FROM latest) AS contrib_now, (SELECT SUM(nw_ago) FROM ago) AS nw_ago, (SELECT SUM(contrib_ago) FROM ago) AS contrib_ago) SELECT ((nw_now - nw_ago) - (contrib_now - contrib_ago)) AS gain_12mo FROM agg"
-        }
-      ]
-    },
-    {
-      "id": 17,
-      "title": "Δ 1d (all)",
-      "description": "Net worth delta over the trailing window (latest snapshot minus snapshot from N days ago). Includes new money paid in (salary, vests, deposits) AND market gains.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 0,
-        "y": 4
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '1 day' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT (SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap) AS delta"
-        }
-      ]
-    },
-    {
-      "id": 21,
-      "title": "Δ 1d (mkt)",
-      "description": "Pure market gain over the trailing window — net-worth delta minus net-contribution delta. Excludes new money paid in. Apples-to-apples with the Growth panel.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 0,
-        "y": 8
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '1 day' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT ((SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap)) - ((SELECT SUM(net_contribution) FROM now_snap) - (SELECT SUM(net_contribution) FROM past_snap)) AS market_delta"
-        }
-      ]
-    },
-    {
-      "id": 18,
-      "title": "Δ 7d (all)",
-      "description": "Net worth delta over the trailing window (latest snapshot minus snapshot from N days ago). Includes new money paid in (salary, vests, deposits) AND market gains.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 6,
-        "y": 4
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '7 days' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT (SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap) AS delta"
-        }
-      ]
-    },
-    {
-      "id": 22,
-      "title": "Δ 7d (mkt)",
-      "description": "Pure market gain over the trailing window — net-worth delta minus net-contribution delta. Excludes new money paid in. Apples-to-apples with the Growth panel.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 6,
-        "y": 8
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '7 days' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT ((SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap)) - ((SELECT SUM(net_contribution) FROM now_snap) - (SELECT SUM(net_contribution) FROM past_snap)) AS market_delta"
-        }
-      ]
-    },
-    {
-      "id": 19,
-      "title": "Δ 30d (all)",
-      "description": "Net worth delta over the trailing window (latest snapshot minus snapshot from N days ago). Includes new money paid in (salary, vests, deposits) AND market gains.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 12,
-        "y": 4
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '30 days' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT (SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap) AS delta"
-        }
-      ]
-    },
-    {
-      "id": 23,
-      "title": "Δ 30d (mkt)",
-      "description": "Pure market gain over the trailing window — net-worth delta minus net-contribution delta. Excludes new money paid in. Apples-to-apples with the Growth panel.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 12,
-        "y": 8
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '30 days' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT ((SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap)) - ((SELECT SUM(net_contribution) FROM now_snap) - (SELECT SUM(net_contribution) FROM past_snap)) AS market_delta"
-        }
-      ]
-    },
-    {
-      "id": 20,
-      "title": "Δ 90d (all)",
-      "description": "Net worth delta over the trailing window (latest snapshot minus snapshot from N days ago). Includes new money paid in (salary, vests, deposits) AND market gains.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 18,
-        "y": 4
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '90 days' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT (SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap) AS delta"
-        }
-      ]
-    },
-    {
-      "id": 24,
-      "title": "Δ 90d (mkt)",
-      "description": "Pure market gain over the trailing window — net-worth delta minus net-contribution delta. Excludes new money paid in. Apples-to-apples with the Growth panel.",
-      "type": "stat",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 4,
-        "w": 6,
-        "x": 18,
-        "y": 8
-      },
-      "fieldConfig": {
-        "defaults": {
-          "unit": "currencyGBP",
-          "color": {
-            "mode": "thresholds"
-          },
-          "decimals": 0,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "green",
-                "value": 0
-              }
-            ]
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "colorMode": "value",
-        "graphMode": "area",
-        "justifyMode": "center",
-        "orientation": "auto",
-        "reduceOptions": {
-          "calcs": [
-            "lastNotNull"
-          ],
-          "fields": "",
-          "values": false
-        },
-        "textMode": "auto"
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), now_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC), past_snap AS (SELECT DISTINCT ON (d.account_id) d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id WHERE d.valuation_date <= (SELECT d - INTERVAL '90 days' FROM max_complete) ORDER BY d.account_id, d.valuation_date DESC) SELECT ((SELECT SUM(total_value) FROM now_snap) - (SELECT SUM(total_value) FROM past_snap)) - ((SELECT SUM(net_contribution) FROM now_snap) - (SELECT SUM(net_contribution) FROM past_snap)) AS market_delta"
-        }
-      ]
-    },
-    {
-      "id": 12,
-      "title": "Yearly investment return %",
-      "description": "Modified-Dietz return per calendar year: market_gain / (nw_start + 0.5 × contributions). Pure investment performance — excludes new contributions, so a £100k vest doesn't show as 100% growth. Negative bars = market losses (e.g., 2022 bear market).",
-      "type": "barchart",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 11,
-        "w": 24,
-        "x": 0,
-        "y": 53
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "thresholds"
-          },
-          "unit": "percent",
-          "decimals": 1,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "yellow",
-                "value": 0
-              },
-              {
-                "color": "green",
-                "value": 5
-              }
-            ]
-          },
-          "custom": {
-            "axisPlacement": "auto",
-            "axisLabel": "",
-            "fillOpacity": 80,
-            "gradientMode": "none",
-            "lineWidth": 1
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "year"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "string"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "barRadius": 0,
-        "barWidth": 0.6,
-        "groupWidth": 0.7,
-        "orientation": "auto",
-        "showValue": "always",
-        "stacking": "none",
-        "xField": "year",
-        "xTickLabelRotation": 0,
-        "legend": {
-          "displayMode": "list",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "single",
-          "sort": "none"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), yearly AS (SELECT EXTRACT(YEAR FROM valuation_date)::int AS yr, valuation_date, SUM(total_value) AS nw, SUM(net_contribution) AS contrib FROM daily_account_valuation WHERE valuation_date <= (SELECT d FROM max_complete) GROUP BY valuation_date), endpoints AS (SELECT yr, (array_agg(nw ORDER BY valuation_date ASC))[1] AS nw_start, (array_agg(nw ORDER BY valuation_date DESC))[1] AS nw_end, (array_agg(contrib ORDER BY valuation_date ASC))[1] AS contrib_start, (array_agg(contrib ORDER BY valuation_date DESC))[1] AS contrib_end FROM yearly GROUP BY yr) SELECT yr::text AS year, ROUND((((nw_end - nw_start - (contrib_end - contrib_start)) / NULLIF(nw_start + 0.5 * (contrib_end - contrib_start), 0)) * 100)::numeric, 2) AS return_pct FROM endpoints WHERE (nw_start + 0.5 * (contrib_end - contrib_start)) > 0 ORDER BY yr"
-        }
-      ]
-    },
-    {
-      "id": 13,
-      "title": "Annual change decomposition — contributions vs market gain",
-      "description": "Each calendar year's net worth change split into 'new money in' (contributions − withdrawals) and 'market gain' (everything else: price appreciation, dividends, etc.). Shows whether you grew because you saved or because the market did the work. Negative bars = withdrawals or market losses.",
-      "type": "barchart",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 11,
-        "w": 24,
-        "x": 0,
-        "y": 64
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "decimals": 2,
-          "custom": {
-            "axisPlacement": "auto",
-            "axisLabel": "",
-            "fillOpacity": 80,
-            "gradientMode": "none",
-            "lineWidth": 1
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "year"
-            },
-            "properties": [
-              {
-                "id": "unit",
-                "value": "string"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "contributions"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "blue"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Net contributions"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "market_gain"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#56A64B"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Market gain"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "barRadius": 0,
-        "barWidth": 0.6,
-        "groupWidth": 0.7,
-        "orientation": "auto",
-        "showValue": "auto",
-        "stacking": "normal",
-        "xField": "year",
-        "xTickLabelRotation": 0,
-        "legend": {
-          "calcs": [
-            "sum"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), yearly AS (SELECT EXTRACT(YEAR FROM valuation_date)::int AS yr, valuation_date, SUM(total_value) AS nw, SUM(net_contribution) AS contrib FROM daily_account_valuation WHERE valuation_date <= (SELECT d FROM max_complete) GROUP BY valuation_date), endpoints AS (SELECT yr, (array_agg(nw ORDER BY valuation_date ASC))[1] AS nw_start, (array_agg(nw ORDER BY valuation_date DESC))[1] AS nw_end, (array_agg(contrib ORDER BY valuation_date ASC))[1] AS contrib_start, (array_agg(contrib ORDER BY valuation_date DESC))[1] AS contrib_end FROM yearly GROUP BY yr) SELECT yr::text AS year, ROUND((contrib_end - contrib_start)::numeric, 0) AS contributions, ROUND((nw_end - nw_start - (contrib_end - contrib_start))::numeric, 0) AS market_gain FROM endpoints ORDER BY yr"
-        }
-      ]
-    },
-    {
-      "id": 25,
-      "title": "Monthly contributions vs market gain",
-      "description": "Each month's net contributions vs market gain as two lines. Where the green (market) line crosses above the blue (contributions) line is when investments out-earn savings for that month. Months below zero on the green line = market drawdowns.",
-      "type": "timeseries",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 11,
-        "w": 24,
-        "x": 0,
-        "y": 75
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "unit": "currencyGBP",
-          "decimals": 0,
-          "custom": {
-            "drawStyle": "line",
-            "lineWidth": 2,
-            "fillOpacity": 0,
-            "pointSize": 5,
-            "showPoints": "auto",
-            "spanNulls": true,
-            "axisPlacement": "auto",
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            }
-          }
-        },
-        "overrides": [
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "contributions"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "blue"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Net contributions"
-              }
-            ]
-          },
-          {
-            "matcher": {
-              "id": "byName",
-              "options": "market_gain"
-            },
-            "properties": [
-              {
-                "id": "color",
-                "value": {
-                  "mode": "fixed",
-                  "fixedColor": "#56A64B"
-                }
-              },
-              {
-                "id": "displayName",
-                "value": "Market gain"
-              }
-            ]
-          }
-        ]
-      },
-      "options": {
-        "legend": {
-          "calcs": [
-            "last",
-            "sum"
-          ],
-          "displayMode": "table",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "time_series",
-          "rawSql": "WITH active_count AS (SELECT COUNT(*) AS n FROM accounts), max_complete AS (SELECT MAX(valuation_date) AS d FROM (SELECT d.valuation_date, COUNT(*) AS c FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id GROUP BY d.valuation_date) x WHERE c >= (SELECT n FROM active_count)), monthly AS (SELECT date_trunc('month', valuation_date)::date AS month, valuation_date, SUM(total_value) AS nw, SUM(net_contribution) AS contrib FROM daily_account_valuation WHERE valuation_date <= (SELECT d FROM max_complete) GROUP BY valuation_date), endpoints AS (SELECT month, (array_agg(nw ORDER BY valuation_date ASC))[1] AS nw_start, (array_agg(nw ORDER BY valuation_date DESC))[1] AS nw_end, (array_agg(contrib ORDER BY valuation_date ASC))[1] AS contrib_start, (array_agg(contrib ORDER BY valuation_date DESC))[1] AS contrib_end FROM monthly GROUP BY month) SELECT month::timestamp AS time, ROUND((contrib_end - contrib_start)::numeric, 0) AS contributions, ROUND((nw_end - nw_start - (contrib_end - contrib_start))::numeric, 0) AS market_gain FROM endpoints ORDER BY month"
-        }
-      ]
-    },
-    {
-      "id": 14,
-      "title": "Per-account ROI %",
-      "description": "(market value − net contribution) / net contribution × 100, latest snapshot. Excludes accounts with zero/negative net contribution (Schwab — RSU vests sold = negative contribution distorts the ratio). Pension shows 0% because Wealthfolio doesn't track underlying fund holdings, so cost_basis = 0 and 'growth' is just the cash balance reported.",
-      "type": "barchart",
-      "datasource": {
-        "type": "grafana-postgresql-datasource",
-        "uid": "wealth-pg"
-      },
-      "gridPos": {
-        "h": 10,
-        "w": 24,
-        "x": 0,
-        "y": 86
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "thresholds"
-          },
-          "unit": "percent",
-          "decimals": 2,
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "red",
-                "value": null
-              },
-              {
-                "color": "yellow",
-                "value": 0
-              },
-              {
-                "color": "green",
-                "value": 10
-              }
-            ]
-          },
-          "custom": {
-            "axisPlacement": "auto",
-            "axisLabel": "",
-            "fillOpacity": 80,
-            "gradientMode": "none",
-            "lineWidth": 1
-          }
-        },
-        "overrides": []
-      },
-      "options": {
-        "barRadius": 0,
-        "barWidth": 0.6,
-        "groupWidth": 0.7,
-        "orientation": "horizontal",
-        "showValue": "always",
-        "stacking": "none",
-        "xField": "account",
-        "legend": {
-          "displayMode": "list",
-          "placement": "bottom"
-        },
-        "tooltip": {
-          "mode": "single",
-          "sort": "none"
-        }
-      },
-      "targets": [
-        {
-          "refId": "A",
-          "datasource": {
-            "type": "grafana-postgresql-datasource",
-            "uid": "wealth-pg"
-          },
-          "rawQuery": true,
-          "editorMode": "code",
-          "format": "table",
-          "rawSql": "WITH latest AS (SELECT DISTINCT ON (d.account_id) a.name, d.total_value, d.net_contribution FROM daily_account_valuation d JOIN accounts a ON a.id = d.account_id ORDER BY d.account_id, d.valuation_date DESC) SELECT name AS account, ROUND(((total_value - net_contribution) / NULLIF(net_contribution, 0) * 100)::numeric, 2) AS roi_pct FROM latest WHERE net_contribution > 0 ORDER BY roi_pct DESC"
-        }
-      ]
-    }
-  ],
-  "refresh": "5m",
-  "schemaVersion": 39,
-  "tags": [
-    "finance",
-    "personal",
-    "wealth"
-  ],
-  "templating": {
-    "list": []
-  },
-  "time": {
-    "from": "now-180d",
-    "to": "now"
-  },
-  "timepicker": {},
-  "timezone": "browser",
-  "title": "Wealth",
-  "uid": "wealth",
-  "version": 1
-}
diff --git a/stacks/monitoring/modules/monitoring/goflow2.tf b/stacks/monitoring/modules/monitoring/goflow2.tf
index 96b10e8d..1eba5392 100644
--- a/stacks/monitoring/modules/monitoring/goflow2.tf
+++ b/stacks/monitoring/modules/monitoring/goflow2.tf
@@ -50,10 +50,6 @@ resource "kubernetes_deployment" "goflow2" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "goflow2" {
diff --git a/stacks/monitoring/modules/monitoring/grafana.tf b/stacks/monitoring/modules/monitoring/grafana.tf
index e7abd8c6..a3b61556 100644
--- a/stacks/monitoring/modules/monitoring/grafana.tf
+++ b/stacks/monitoring/modules/monitoring/grafana.tf
@@ -107,16 +107,16 @@ locals {
   # Dashboard folder assignments
   dashboard_folders = {
     # Cluster & Kubernetes
-    "api_server.json"         = "Cluster"
-    "cluster_health.json"     = "Cluster"
-    "nodes.json"              = "Cluster"
-    "pods.json"               = "Cluster"
-    "kube-state-metrics.json" = "Cluster"
+    "api_server.json"            = "Cluster"
+    "cluster_health.json"        = "Cluster"
+    "nodes.json"                 = "Cluster"
+    "pods.json"                  = "Cluster"
+    "kube-state-metrics.json"    = "Cluster"
     # Networking & DNS
-    "core_dns.json"        = "Networking"
-    "technitium-dns.json"  = "Networking"
-    "nginx_ingress.json"   = "Networking"
-    "network_traffic.json" = "Networking"
+    "core_dns.json"              = "Networking"
+    "technitium-dns.json"        = "Networking"
+    "nginx_ingress.json"         = "Networking"
+    "network_traffic.json"       = "Networking"
 
     # Hardware & Host
     "node_exporter_full.json"    = "Hardware"
@@ -126,28 +126,15 @@ locals {
     "nvidia.json"                = "Hardware"
 
     # Operations
-    "backup_health.json" = "Operations"
-    "registry.json"      = "Operations"
-    "loki.json"          = "Operations"
-    "k8s-audit.json"     = "Operations"
+    "backup_health.json"         = "Operations"
+    "registry.json"              = "Operations"
+    "loki.json"                  = "Operations"
+    "k8s-audit.json"             = "Operations"
 
     # Applications
-    "qbittorrent.json"        = "Applications"
-    "realestate-crawler.json" = "Applications"
-    "openclaw.json"           = "Applications"
-    "uk-payslip.json"         = "Finance (Personal)"
-    "wealth.json"             = "Finance (Personal)"
-    "job-hunter.json"         = "Finance"
-    "fire-planner.json"       = "Finance"
+    "qbittorrent.json"           = "Applications"
+    "realestate-crawler.json"    = "Applications"
   }
-
-  # Folders restricted to the Grafana admin user (anonymous Viewer + any future
-  # non-admin users are denied). Permission set by null_resource below via the
-  # Grafana folder permissions API after the dashboard sidecar auto-creates the
-  # folder. Server-admin always retains access regardless of folder ACL.
-  admin_only_folders = [
-    "Finance (Personal)",
-  ]
 }
 
 resource "kubernetes_config_map" "grafana_dashboards" {
@@ -168,60 +155,6 @@ resource "kubernetes_config_map" "grafana_dashboards" {
   }
 }
 
-# Lock down "admin only" folders via Grafana folder permissions API.
-# Default org-role inheritance gives Viewer + Editor read access to every
-# folder; explicitly setting the folder ACL to {Admin: 4} overrides that
-# inheritance so Viewer/Editor (incl. anonymous-Viewer) get no access.
-# The Grafana super-admin (`admin` user) always retains access regardless.
-resource "null_resource" "grafana_admin_only_folder_acl" {
-  for_each = toset(local.admin_only_folders)
-
-  # Re-runs on tg apply (cheap, idempotent API call). Catches drift if anyone
-  # edits permissions via the UI or the folder is rebuilt.
-  triggers = {
-    folder    = each.value
-    always    = timestamp()
-  }
-
-  provisioner "local-exec" {
-    interpreter = ["/bin/bash", "-c"]
-    command = <<-EOT
-      set -euo pipefail
-      FOLDER='${each.value}'
-      KUBECONFIG_FLAG='--kubeconfig ${var.kube_config_path}'
-      POD=$(kubectl $KUBECONFIG_FLAG get pod -n monitoring -l app.kubernetes.io/name=grafana -o jsonpath='{.items[0].metadata.name}')
-      ADMIN_PW=$(kubectl $KUBECONFIG_FLAG get secret -n monitoring grafana -o jsonpath='{.data.admin-password}' | base64 -d)
-
-      # Wait up to 60s for the dashboard sidecar to materialise the folder.
-      for i in $(seq 1 12); do
-        FOLDER_UID=$(kubectl $KUBECONFIG_FLAG exec -n monitoring "$POD" -c grafana -- \
-          curl -sf -u "admin:$ADMIN_PW" "http://localhost:3000/api/folders" \
-          | python3 -c "import json,sys; folders=json.load(sys.stdin); print(next((f['uid'] for f in folders if f['title']==sys.argv[1]), ''))" "$FOLDER" || true)
-        if [ -n "$FOLDER_UID" ]; then break; fi
-        sleep 5
-      done
-
-      if [ -z "$FOLDER_UID" ]; then
-        echo "ERROR: folder '$FOLDER' not found in Grafana after 60s"
-        exit 1
-      fi
-
-      # Admin-only ACL. permission codes: 1=View, 2=Edit, 4=Admin.
-      kubectl $KUBECONFIG_FLAG exec -n monitoring "$POD" -c grafana -- \
-        curl -sf -u "admin:$ADMIN_PW" -X POST \
-          -H "Content-Type: application/json" \
-          -d '{"items":[{"role":"Admin","permission":4}]}' \
-          "http://localhost:3000/api/folders/$FOLDER_UID/permissions" >/dev/null
-      echo "set admin-only ACL on folder '$FOLDER' (uid=$FOLDER_UID)"
-    EOT
-  }
-
-  depends_on = [
-    helm_release.grafana,
-    kubernetes_config_map.grafana_dashboards,
-  ]
-}
-
 resource "helm_release" "grafana" {
   namespace        = kubernetes_namespace.monitoring.metadata[0].name
   create_namespace = true
diff --git a/stacks/monitoring/modules/monitoring/grafana_chart_values.yaml b/stacks/monitoring/modules/monitoring/grafana_chart_values.yaml
index 6bd8d8f4..48d88c63 100644
--- a/stacks/monitoring/modules/monitoring/grafana_chart_values.yaml
+++ b/stacks/monitoring/modules/monitoring/grafana_chart_values.yaml
@@ -5,8 +5,6 @@ deploymentStrategy:
     maxUnavailable: 1
 replicas: 1
 adminPassword: "${grafana_admin_password}"
-plugins:
-  - netsage-sankey-panel
 resources:
   requests:
     cpu: 50m
diff --git a/stacks/monitoring/modules/monitoring/idrac.tf b/stacks/monitoring/modules/monitoring/idrac.tf
index 5112457a..a61b2f9a 100644
--- a/stacks/monitoring/modules/monitoring/idrac.tf
+++ b/stacks/monitoring/modules/monitoring/idrac.tf
@@ -91,10 +91,6 @@ resource "kubernetes_deployment" "idrac-redfish" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "idrac-redfish-exporter" {
diff --git a/stacks/monitoring/modules/monitoring/loki.tf b/stacks/monitoring/modules/monitoring/loki.tf
index 5f6ceaa3..41c9699a 100644
--- a/stacks/monitoring/modules/monitoring/loki.tf
+++ b/stacks/monitoring/modules/monitoring/loki.tf
@@ -100,10 +100,6 @@ resource "kubernetes_daemon_set_v1" "sysctl-inotify" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 */
 
diff --git a/stacks/monitoring/modules/monitoring/loki.yaml b/stacks/monitoring/modules/monitoring/loki.yaml
index cfa9597f..333efc6a 100644
--- a/stacks/monitoring/modules/monitoring/loki.yaml
+++ b/stacks/monitoring/modules/monitoring/loki.yaml
@@ -53,7 +53,7 @@ singleBinary:
   persistence:
     enabled: true
     size: 50Gi
-    storageClass: "proxmox-lvm"
+    storageClass: "iscsi-truenas"
   extraVolumes:
     - name: wal
       emptyDir:
diff --git a/stacks/monitoring/modules/monitoring/main.tf b/stacks/monitoring/modules/monitoring/main.tf
index 481112c1..f6ebc2d5 100644
--- a/stacks/monitoring/modules/monitoring/main.tf
+++ b/stacks/monitoring/modules/monitoring/main.tf
@@ -27,25 +27,8 @@ variable "grafana_admin_password" {
   type      = string
   sensitive = true
 }
-variable "kube_config_path" {
-  type      = string
-  sensitive = true
-}
 variable "tier" { type = string }
 variable "mysql_host" { type = string }
-variable "registry_user" {
-  type      = string
-  sensitive = true
-}
-variable "registry_password" {
-  type      = string
-  sensitive = true
-}
-variable "forgejo_pull_token" {
-  type        = string
-  sensitive   = true
-  description = "PAT for the cluster-puller user, used by the Forgejo registry integrity probe."
-}
 
 resource "kubernetes_namespace" "monitoring" {
   metadata {
@@ -56,10 +39,6 @@ resource "kubernetes_namespace" "monitoring" {
       "resource-governance/custom-quota" = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -109,10 +88,6 @@ resource "kubernetes_cron_job_v1" "monitor_prom" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # -----------------------------------------------------------------------------
@@ -236,218 +211,6 @@ resource "kubernetes_cron_job_v1" "dns_anomaly_monitor" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# -----------------------------------------------------------------------------
-# Phase 4 of forgejo-registry-consolidation 2026-05-07: registry-private
-# decommissioned. The integrity probe below caught the orphan-index failure
-# mode in `registry:2.8.3` (post-mortem 2026-04-19). With that engine
-# retired, the probe is replaced by `forgejo_integrity_probe` below.
-#
-# Resource definitions stripped wholesale — terragrunt apply destroys the
-# in-cluster CronJob + Secret on the next run.
-# See: docs/post-mortems/2026-04-19-registry-orphan-index.md
-# -----------------------------------------------------------------------------
-
-# -----------------------------------------------------------------------------
-# Forgejo registry integrity probe — same algorithm as registry-integrity-probe
-# above, but targets the Forgejo OCI registry instead of registry-private. Runs
-# in parallel with the existing probe during the dual-push bake; once Phase 4
-# decommissions registry-private, the registry-integrity-probe CronJob is
-# deleted and only this one remains.
-#
-# Auth: HTTP Basic with cluster-puller PAT (read:package scope is enough to
-# walk catalog + manifests). Reaches Forgejo via the in-cluster service so we
-# don't hairpin out through Traefik for every probe run.
-# -----------------------------------------------------------------------------
-resource "kubernetes_secret" "forgejo_probe_credentials" {
-  metadata {
-    name      = "forgejo-probe-credentials"
-    namespace = kubernetes_namespace.monitoring.metadata[0].name
-  }
-  type = "Opaque"
-  data = {
-    REG_USER = "cluster-puller"
-    REG_PASS = var.forgejo_pull_token
-  }
-}
-
-resource "kubernetes_cron_job_v1" "forgejo_integrity_probe" {
-  metadata {
-    name      = "forgejo-integrity-probe"
-    namespace = kubernetes_namespace.monitoring.metadata[0].name
-  }
-  spec {
-    concurrency_policy            = "Forbid"
-    failed_jobs_history_limit     = 3
-    successful_jobs_history_limit = 3
-    schedule                      = "*/15 * * * *"
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 600
-        template {
-          metadata {}
-          spec {
-            container {
-              name  = "forgejo-integrity-probe"
-              image = "docker.io/library/alpine:3.20"
-              env {
-                name = "REG_USER"
-                value_from {
-                  secret_key_ref {
-                    name = kubernetes_secret.forgejo_probe_credentials.metadata[0].name
-                    key  = "REG_USER"
-                  }
-                }
-              }
-              env {
-                name = "REG_PASS"
-                value_from {
-                  secret_key_ref {
-                    name = kubernetes_secret.forgejo_probe_credentials.metadata[0].name
-                    key  = "REG_PASS"
-                  }
-                }
-              }
-              env {
-                name  = "REGISTRY_HOST"
-                value = "forgejo.forgejo.svc.cluster.local"
-              }
-              env {
-                name  = "REGISTRY_SCHEME"
-                value = "http"
-              }
-              env {
-                name  = "REGISTRY_INSTANCE"
-                value = "forgejo.viktorbarzin.me"
-              }
-              env {
-                name  = "PUSHGATEWAY"
-                value = "http://prometheus-prometheus-pushgateway.monitoring:9091/metrics/job/forgejo-integrity-probe"
-              }
-              env {
-                name  = "TAGS_PER_REPO"
-                value = "5"
-              }
-              command = ["/bin/sh", "-c", <<-EOT
-                set -eu
-                apk add --no-cache curl jq >/dev/null
-
-                REG="$REGISTRY_HOST"
-                SCHEME="$${REGISTRY_SCHEME:-https}"
-                INSTANCE="$REGISTRY_INSTANCE"
-                AUTH="$REG_USER:$REG_PASS"
-                ACCEPT='application/vnd.oci.image.index.v1+json,application/vnd.oci.image.manifest.v1+json,application/vnd.docker.distribution.manifest.list.v2+json,application/vnd.docker.distribution.manifest.v2+json'
-
-                push() {
-                  curl -sf --max-time 10 --data-binary @- "$PUSHGATEWAY" >/dev/null 2>&1 || true
-                }
-
-                CATALOG=$(curl -sk -u "$AUTH" --max-time 30 "$SCHEME://$REG/v2/_catalog?n=1000" || echo "")
-                REPOS=$(echo "$CATALOG" | jq -r '.repositories[]?' 2>/dev/null || echo "")
-
-                if [ -z "$REPOS" ]; then
-                  echo "ERROR: empty catalog or auth failure — cannot probe"
-                  NOW=$(date +%s)
-                  push <<METRICS
-                # TYPE registry_manifest_integrity_catalog_accessible gauge
-                registry_manifest_integrity_catalog_accessible{instance="$INSTANCE"} 0
-                # TYPE registry_manifest_integrity_last_run_timestamp gauge
-                registry_manifest_integrity_last_run_timestamp{instance="$INSTANCE"} $NOW
-                METRICS
-                  exit 1
-                fi
-
-                FAIL=0
-                REPOS_N=0
-                TAGS_N=0
-                INDEXES_N=0
-
-                printf '%s\n' $REPOS > /tmp/repos.txt
-                while IFS= read -r repo; do
-                  [ -z "$repo" ] && continue
-                  REPOS_N=$((REPOS_N + 1))
-
-                  TAGS_JSON=$(curl -sk -u "$AUTH" --max-time 15 "$SCHEME://$REG/v2/$repo/tags/list" || echo "")
-                  echo "$TAGS_JSON" | jq -r '.tags[]?' 2>/dev/null | tail -n "$TAGS_PER_REPO" > /tmp/tags.txt || true
-
-                  while IFS= read -r tag; do
-                    [ -z "$tag" ] && continue
-                    TAGS_N=$((TAGS_N + 1))
-
-                    HTTP=$(curl -sk -u "$AUTH" -o /tmp/m.json -w '%%{http_code}' \
-                      -H "Accept: $ACCEPT" --max-time 15 \
-                      "$SCHEME://$REG/v2/$repo/manifests/$tag")
-                    if [ "$HTTP" != "200" ]; then
-                      echo "FAIL: $repo:$tag manifest HTTP $HTTP"
-                      FAIL=$((FAIL + 1))
-                      continue
-                    fi
-
-                    MT=$(jq -r '.mediaType // empty' /tmp/m.json 2>/dev/null || echo "")
-                    if echo "$MT" | grep -Eq 'manifest\.list|image\.index'; then
-                      INDEXES_N=$((INDEXES_N + 1))
-                      jq -r '.manifests[].digest' /tmp/m.json > /tmp/children.txt 2>/dev/null || true
-                      while IFS= read -r d; do
-                        [ -z "$d" ] && continue
-                        CH=$(curl -sk -u "$AUTH" -o /dev/null -w '%%{http_code}' \
-                          -H "Accept: $ACCEPT" --max-time 10 -I \
-                          "$SCHEME://$REG/v2/$repo/manifests/$d")
-                        if [ "$CH" != "200" ]; then
-                          echo "FAIL: $repo:$tag index child $d HTTP $CH"
-                          FAIL=$((FAIL + 1))
-                        fi
-                      done < /tmp/children.txt
-                    fi
-                  done < /tmp/tags.txt
-                done < /tmp/repos.txt
-
-                NOW=$(date +%s)
-                push <<METRICS
-                # TYPE registry_manifest_integrity_failures gauge
-                registry_manifest_integrity_failures{instance="$INSTANCE"} $FAIL
-                # TYPE registry_manifest_integrity_catalog_accessible gauge
-                registry_manifest_integrity_catalog_accessible{instance="$INSTANCE"} 1
-                # TYPE registry_manifest_integrity_repos_checked gauge
-                registry_manifest_integrity_repos_checked{instance="$INSTANCE"} $REPOS_N
-                # TYPE registry_manifest_integrity_tags_checked gauge
-                registry_manifest_integrity_tags_checked{instance="$INSTANCE"} $TAGS_N
-                # TYPE registry_manifest_integrity_indexes_checked gauge
-                registry_manifest_integrity_indexes_checked{instance="$INSTANCE"} $INDEXES_N
-                # TYPE registry_manifest_integrity_last_run_timestamp gauge
-                registry_manifest_integrity_last_run_timestamp{instance="$INSTANCE"} $NOW
-                METRICS
-
-                echo "Probe complete: $FAIL failures across $REPOS_N repos / $TAGS_N tags / $INDEXES_N indexes"
-                if [ "$FAIL" -gt 0 ]; then exit 1; fi
-              EOT
-              ]
-              resources {
-                requests = {
-                  cpu    = "10m"
-                  memory = "48Mi"
-                }
-                limits = {
-                  memory = "96Mi"
-                }
-              }
-            }
-            restart_policy = "OnFailure"
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Expose Pushgateway via NodePort so the PVE host can push LVM snapshot metrics
diff --git a/stacks/monitoring/modules/monitoring/prometheus.tf b/stacks/monitoring/modules/monitoring/prometheus.tf
index c317775e..7e998b91 100644
--- a/stacks/monitoring/modules/monitoring/prometheus.tf
+++ b/stacks/monitoring/modules/monitoring/prometheus.tf
@@ -40,11 +40,8 @@ resource "helm_release" "prometheus" {
   # version    = "15.0.2"
   version = "25.8.2"
 
-  timeout = 900 # 15 min — Recreate strategy + iSCSI reattach is slow
-  # force_update disabled 2026-04-23: caused Helm to try replacing the bound
-  # pushgateway PVC (added in rev 188, see commit e51c104), which is immutable.
-  # Re-enable temporarily only when a StatefulSet volumeClaimTemplate change needs --force.
-  force_update = false
+  timeout      = 900 # 15 min — Recreate strategy + iSCSI reattach is slow
+  force_update = true # Required for StatefulSet volumeClaimTemplate changes (immutable field)
 
   values = [templatefile("${path.module}/prometheus_chart_values.tpl", { alertmanager_mail_pass = var.alertmanager_account_password, alertmanager_slack_api_url = var.alertmanager_slack_api_url, tuya_api_key = var.tiny_tuya_service_secret, haos_api_token = var.haos_api_token })]
 }
diff --git a/stacks/monitoring/modules/monitoring/prometheus_chart_values.tpl b/stacks/monitoring/modules/monitoring/prometheus_chart_values.tpl
index 406a19c9..a1724da6 100755
--- a/stacks/monitoring/modules/monitoring/prometheus_chart_values.tpl
+++ b/stacks/monitoring/modules/monitoring/prometheus_chart_values.tpl
@@ -73,12 +73,12 @@ alertmanager:
       - source_matchers:
           - alertname = NodeDown
         target_matchers:
-          - alertname =~ "NodeNotReady|NodeConditionBad|PodCrashLooping|ContainerOOMKilled|DeploymentReplicasMismatch|StatefulSetReplicasMismatch|DaemonSetMissingPods|ScrapeTargetDown|NodeLowFreeMemory|PostgreSQLDown|RedisDown|HeadscaleDown|HeadscaleReplicasMismatch|AuthentikDown|PoisonFountainDown|HackmdDown|PrivatebinDown|MailServerDown|EmailRoundtripFailing|EmailRoundtripStale|NodeExporterDown|DockerRegistryDown|HomeAssistantDown|CloudflaredDown|TechnitiumDNSDown|iDRACRedfishMetricsMissing|iDRACSNMPMetricsMissing|HomeAssistantMetricsMissing"
+          - alertname =~ "NodeNotReady|NodeConditionBad|PodCrashLooping|ContainerOOMKilled|DeploymentReplicasMismatch|StatefulSetReplicasMismatch|DaemonSetMissingPods|ScrapeTargetDown|NodeLowFreeMemory|PostgreSQLDown|MySQLDown|RedisDown|HeadscaleDown|AuthentikDown|PoisonFountainDown|HackmdDown|PrivatebinDown|MailServerDown|EmailRoundtripFailing|EmailRoundtripStale|NodeExporterDown|DockerRegistryDown|HomeAssistantDown|CloudflaredDown|TechnitiumDNSDown|iDRACRedfishMetricsMissing|iDRACSNMPMetricsMissing|HomeAssistantMetricsMissing"
       # NFS down causes mass pod failures and NFS-dependent service outages
       - source_matchers:
           - alertname = NFSServerUnresponsive
         target_matchers:
-          - alertname =~ "PodCrashLooping|ContainerOOMKilled|DeploymentReplicasMismatch|StatefulSetReplicasMismatch|DaemonSetMissingPods|ScrapeTargetDown|PostgreSQLDown|RedisDown|AuthentikDown|PoisonFountainDown|HackmdDown|PrivatebinDown|MailServerDown|EmailRoundtripFailing|EmailRoundtripStale|HomeAssistantDown"
+          - alertname =~ "PodCrashLooping|ContainerOOMKilled|DeploymentReplicasMismatch|StatefulSetReplicasMismatch|DaemonSetMissingPods|ScrapeTargetDown|PostgreSQLDown|MySQLDown|RedisDown|AuthentikDown|PoisonFountainDown|HackmdDown|PrivatebinDown|MailServerDown|EmailRoundtripFailing|EmailRoundtripStale|HomeAssistantDown"
       # Traefik down makes service-level alerts noise
       - source_matchers:
           - alertname = TraefikDown
@@ -98,7 +98,7 @@ alertmanager:
       - source_matchers:
           - alertname = PowerOutage
         target_matchers:
-          - alertname =~ "NodeDown|NFSServerUnresponsive|NodeExporterDown|CloudflaredDown|MetalLBSpeakerDown|MetalLBControllerDown|UPSMetricsMissing|iDRACRedfishMetricsMissing|iDRACSNMPMetricsMissing|ATSMetricsMissing|HomeAssistantMetricsMissing|FuseMainMetricsMissing|FuseGarageMetricsMissing|ThermostatHolMetricsMissing|ThermostatMasterBedroomMetricsMissing|ThermostatOfficeMetricsMissing|ThermostatKidsRoomMetricsMissing|ProxmoxMetricsMissing|iDRACSystemUnhealthy|iDRACServerPoweredOff|ProxmoxExporterDown"
+          - alertname =~ "NodeDown|NFSServerUnresponsive|NodeExporterDown|CloudflaredDown|MetalLBSpeakerDown|MetalLBControllerDown|UPSMetricsMissing|iDRACRedfishMetricsMissing|iDRACSNMPMetricsMissing|ATSMetricsMissing|HomeAssistantMetricsMissing|FuseMainMetricsMissing|FuseGarageMetricsMissing|ProxmoxMetricsMissing|iDRACSystemUnhealthy|iDRACServerPoweredOff|ProxmoxExporterDown"
       # iDRAC system-level unhealthy suppresses component-level alerts
       - source_matchers:
           - alertname = iDRACSystemUnhealthy
@@ -113,11 +113,6 @@ alertmanager:
           - alertname = FuseGarageFault
         target_matchers:
           - alertname = FuseGarageMetricsMissing
-      # Tuya Cloud API down suppresses all per-device metrics-missing alerts
-      - source_matchers:
-          - alertname = TuyaCloudDown
-        target_matchers:
-          - alertname =~ "ATSMetricsMissing|FuseMainMetricsMissing|FuseGarageMetricsMissing|ThermostatHolMetricsMissing|ThermostatMasterBedroomMetricsMissing|ThermostatOfficeMetricsMissing|ThermostatKidsRoomMetricsMissing"
       # Containerd broken suppresses downstream pod alerts
       - source_matchers:
           - alertname = KubeletImagePullErrors
@@ -165,27 +160,6 @@ prometheus-node-exporter:
       memory: 100Mi
     limits:
       memory: 100Mi
-# NOTE: The parent chart forwards subchart values under `prometheus-pushgateway:`,
-# not `pushgateway:` — using the wrong key silently no-ops.
-prometheus-pushgateway:
-  # Without persistence the pushgateway's in-memory metrics are lost on restart.
-  # Once-per-day pushers (offsite-backup-sync) stay invisible until their next run,
-  # which is why backup_last_success_timestamp{job="offsite-backup-sync"} vanished
-  # after the 2026-04-22 node3 kubelet hiccup.
-  persistentVolume:
-    enabled: true
-    size: 2Gi
-    storageClass: proxmox-lvm-encrypted
-    mountPath: /data
-  extraArgs:
-    - --persistence.file=/data/pushgateway.bin
-    - --persistence.interval=1m
-  resources:
-    requests:
-      cpu: 10m
-      memory: 64Mi
-    limits:
-      memory: 256Mi
 server:
   # Enable me to delete metrics
   extraFlags:
@@ -752,7 +726,6 @@ serverFiles:
             for: 30m
             labels:
               severity: info
-              subsystem: gpu
             annotations:
               summary: "GPU power: {{ $value | printf \"%.0f\" }}W (threshold: 50W)"
           - alert: HighUtilization
@@ -776,14 +749,6 @@ serverFiles:
               severity: critical
             annotations:
               summary: "NVIDIA GPU exporter is down - no GPU metrics available"
-          - alert: GPUNodeUnschedulable
-            expr: kube_node_spec_unschedulable{node="k8s-node1"} == 1
-            for: 5m
-            labels:
-              severity: critical
-              subsystem: gpu
-            annotations:
-              summary: "GPU node {{ $labels.node }} is cordoned — Frigate and GPU workloads cannot schedule"
       - name: Power
         rules:
           - alert: OnBattery
@@ -812,7 +777,6 @@ serverFiles:
             for: 60m
             labels:
               severity: info
-              subsystem: r730
             annotations:
               summary: "Server power: {{ $value | printf \"%.0f\" }}W (threshold: 300W)"
           - alert: UsingInverterEnergyForTooLong
@@ -950,83 +914,6 @@ serverFiles:
               severity: critical
             annotations:
               summary: "Garage fuse panel fault detected"
-          - alert: FuseMainHighLeakage
-            expr: fuse_main_leakage_current > 30
-            for: 5m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Main fuse leakage current: {{ $value }}mA (threshold: 30mA)"
-          - alert: FuseGarageHighLeakage
-            expr: fuse_garage_leakage_current > 30
-            for: 5m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Garage fuse leakage current: {{ $value }}mA (threshold: 30mA)"
-          - alert: FuseMainOvertemperature
-            expr: fuse_main_temperature > 70
-            for: 5m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Main fuse temperature: {{ $value }}°C (threshold: 70°C)"
-          - alert: FuseGarageOvertemperature
-            expr: fuse_garage_temperature > 70
-            for: 5m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Garage fuse temperature: {{ $value }}°C (threshold: 70°C)"
-          - alert: FuseMainVoltageAbnormal
-            expr: fuse_main_voltage / 10 < 200 or fuse_main_voltage / 10 > 260
-            for: 5m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Main fuse voltage: {{ $value }}V (expected 200-260V)"
-          - alert: FuseGarageVoltageAbnormal
-            expr: fuse_garage_voltage / 10 < 200 or fuse_garage_voltage / 10 > 260
-            for: 5m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Garage fuse voltage: {{ $value }}V (expected 200-260V)"
-      - name: Thermostats
-        rules:
-          - alert: ThermostatOverheating
-            expr: >
-              thermostat_hol_temp_current > 400
-              or thermostat_master_bedroom_temp_current > 400
-              or thermostat_office_temp_current > 400
-              or thermostat_kids_room_temp_current > 400
-            for: 10m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Thermostat temperature {{ $value | printf \"%.1f\" }} (x10 °C) exceeds 40°C"
-          - alert: ThermostatFreezing
-            expr: >
-              thermostat_hol_temp_current < 50
-              or thermostat_master_bedroom_temp_current < 50
-              or thermostat_office_temp_current < 50
-              or thermostat_kids_room_temp_current < 50
-            for: 15m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Thermostat temperature {{ $value | printf \"%.1f\" }} (x10 °C) below 5°C — risk of freezing"
-          - alert: ThermostatHumidityHigh
-            expr: >
-              thermostat_hol_humidity > 80
-              or thermostat_master_bedroom_humidity > 80
-              or thermostat_office_humidity > 80
-              or thermostat_kids_room_humidity > 80
-            for: 30m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Thermostat humidity {{ $value }}% exceeds 80%"
       - name: Metric Staleness
         rules:
           - alert: UPSMetricsMissing
@@ -1071,41 +958,6 @@ serverFiles:
               severity: warning
             annotations:
               summary: "Fuse garage panel metrics missing for 15m - check tuya-bridge pod"
-          - alert: ThermostatHolMetricsMissing
-            expr: absent(thermostat_hol_temp_current)
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Thermostat hol metrics missing for 15m - check tuya-bridge pod"
-          - alert: ThermostatMasterBedroomMetricsMissing
-            expr: absent(thermostat_master_bedroom_temp_current)
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Thermostat master bedroom metrics missing for 15m - check tuya-bridge pod"
-          - alert: ThermostatOfficeMetricsMissing
-            expr: absent(thermostat_office_temp_current)
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Thermostat office metrics missing for 15m - check tuya-bridge pod"
-          - alert: ThermostatKidsRoomMetricsMissing
-            expr: absent(thermostat_kids_room_temp_current)
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Thermostat kids room metrics missing for 15m - check tuya-bridge pod"
-          - alert: TuyaCloudDown
-            expr: count(({__name__=~".*_tuya_cloud_up"}) == 0) > 0
-            for: 5m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Tuya Cloud API rejecting calls ({{ $value }} devices affected) — renew subscription at iot.tuya.com (code 28841002 = expired trial) or rotate TINYTUYA_API_KEY"
           - alert: ProxmoxMetricsMissing
             expr: absent(pve_up)
             for: 10m
@@ -1219,14 +1071,6 @@ serverFiles:
               severity: warning
             annotations:
               summary: "Home Assistant down: {{ $labels.instance }}"
-          - alert: HomeAssistantCriticalSensorUnavailable
-            expr: haos_entity_available{entity=~"sensor\\.(tesla_t4_gpu_(temperature|power_usage|utilization|memory_used)|r730_(cpu_temperature|power_consumption|power_supply_input_voltage_[12]|system_board_(exhaust|inlet)_temperature)|ups_(input_voltage|output_voltage|load|battery_remaining|output_source))"} == 0
-            for: 15m
-            labels:
-              severity: critical
-            annotations:
-              summary: "HA sensor unavailable: {{ $labels.friendly_name }} ({{ $labels.entity }})"
-              description: "{{ $labels.entity }} on {{ $labels.instance }} has been unavailable for 15+ minutes. Common cause: REST sensor needs HA restart (reload_all doesn't rebuild rest: platform). Verify exporter endpoint from HA: `ssh vbarzin@192.168.1.8` → `curl -sk <exporter-url>`. Fix: `curl -X POST -H \"Authorization: Bearer $HOME_ASSISTANT_SOFIA_TOKEN\" $HOME_ASSISTANT_SOFIA_URL/api/services/homeassistant/restart`."
           - alert: CoreDNSErrors
             expr: rate(coredns_dns_responses_total{rcode="SERVFAIL"}[5m]) > 1 and on() (time() - process_start_time_seconds{job="prometheus"}) > 900
             for: 10m
@@ -1311,28 +1155,6 @@ serverFiles:
               severity: critical
             annotations:
               summary: "Vault backup CronJob has never completed successfully"
-          - alert: VaultRaftLeaderStuck
-            expr: |
-              (vault_core_active == 1)
-              and on(instance)
-              (rate(vault_raft_last_index_gauge[5m]) == 0)
-            for: 2m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Vault raft leader {{ $labels.instance }} is active but commit index has not advanced for >2m"
-              description: "The raft leader is reachable on TCP but its commit index has stalled — likely a stuck goroutine hang (see 2026-04-22 post-mortem). External /v1/sys/health will be 503. Recovery: graceful delete of the stuck pod (see docs/runbooks/vault-raft-leader-deadlock.md). NOTE: silent until vault telemetry + scrape job are enabled."
-          - alert: VaultHAStatusUnavailable
-            expr: |
-              (count(up{job="vault"} == 1) > 0)
-              and
-              (count(vault_core_active == 1) == 0)
-            for: 5m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Vault pods are Up but no pod reports HA active leader"
-              description: "At least one Vault pod is scraping healthy, but no pod has vault_core_active=1. HA layer is broken — external endpoint will be 503 even though the pods themselves are alive. See docs/runbooks/vault-raft-leader-deadlock.md. NOTE: silent until vault telemetry + scrape job are enabled."
           - alert: VaultwardenBackupStale
             expr: (time() - kube_cronjob_status_last_successful_time{cronjob="vaultwarden-backup", namespace="vaultwarden"}) > 86400
             for: 30m
@@ -1347,20 +1169,6 @@ serverFiles:
               severity: critical
             annotations:
               summary: "Vaultwarden backup CronJob has never completed successfully"
-          - alert: MailserverBackupStale
-            expr: (time() - kube_cronjob_status_last_successful_time{cronjob="mailserver-backup", namespace="mailserver"}) > 129600
-            for: 30m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Mailserver backup is {{ $value | humanizeDuration }} old (threshold: 36h, runs daily 03:00)"
-          - alert: MailserverBackupNeverSucceeded
-            expr: kube_cronjob_status_last_successful_time{cronjob="mailserver-backup", namespace="mailserver"} == 0
-            for: 1h
-            labels:
-              severity: critical
-            annotations:
-              summary: "Mailserver backup CronJob has never completed successfully"
           - alert: VaultwardenDown
             expr: (kube_deployment_status_replicas_available{namespace="vaultwarden", deployment="vaultwarden"} or on() vector(0)) < 1
             for: 5m
@@ -1425,13 +1233,12 @@ serverFiles:
             annotations:
               summary: "Backup job failed: {{ $labels.namespace }}/{{ $labels.job_name }}"
           - alert: LVMSnapshotStale
-            expr: (time() - lvm_snapshot_last_run_timestamp{job="lvm-pvc-snapshot"}) > 108000
+            expr: (time() - lvm_snapshot_last_run_timestamp{job="lvm-pvc-snapshot"}) > 172800
             for: 30m
             labels:
               severity: critical
             annotations:
               summary: "LVM PVC snapshots are {{ $value | humanizeDuration }} old (expected daily)"
-              description: "Timer lvm-pvc-snapshot.timer on 192.168.1.127 hasn't pushed fresh metrics. Runbook: docs/runbooks/restore-lvm-snapshot.md"
           - alert: LVMSnapshotNeverRun
             expr: absent(lvm_snapshot_last_run_timestamp{job="lvm-pvc-snapshot"})
             for: 48h
@@ -1533,64 +1340,21 @@ serverFiles:
               severity: critical
             annotations:
               summary: "PostgreSQL pod {{ $labels.pod }} is not ready"
+          - alert: MySQLDown
+            expr: kube_statefulset_status_replicas_ready{namespace="dbaas", statefulset="mysql-cluster"} < 1
+            for: 5m
+            labels:
+              severity: critical
+            annotations:
+              summary: "MySQL InnoDB Cluster has no ready replicas"
           - alert: RedisDown
-            expr: (kube_statefulset_status_replicas_ready{namespace="redis", statefulset="redis-v2"} or on() vector(0)) < 1
+            expr: kube_statefulset_status_replicas_ready{namespace="redis", statefulset="redis-node"} < 1
             for: 5m
             labels:
               severity: critical
             annotations:
               summary: "Redis has no ready replicas"
-          - alert: RedisMemoryPressure
-            expr: redis_memory_used_bytes{namespace="redis"} / redis_memory_max_bytes{namespace="redis"} > 0.85
-            for: 5m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Redis pod {{ $labels.pod }} using {{ $value | humanizePercentage }} of maxmemory — eviction imminent"
-          - alert: RedisEvictions
-            # allkeys-lru is configured so evictions under cache pressure are
-            # expected, but sustained evictions mean we're thrashing — raise it.
-            expr: rate(redis_evicted_keys_total{namespace="redis"}[5m]) > 0
-            for: 5m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Redis pod {{ $labels.pod }} evicting keys ({{ $value }} keys/s)"
-          - alert: RedisReplicationLagHigh
-            expr: redis_connected_slave_lag_seconds{namespace="redis"} > 30
-            for: 3m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Redis replica {{ $labels.slave_ip }} lagging {{ $value }}s behind master"
-          - alert: RedisForkLatencyHigh
-            # latest_fork_usec > 500ms means BGSAVE fork is stalling the main
-            # thread long enough to drop client requests. COW pressure or
-            # constrained memory headroom are the usual causes.
-            expr: redis_latest_fork_usec{namespace="redis"} > 500000
-            for: 0m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Redis pod {{ $labels.pod }} fork took {{ $value }}us (>500ms) — investigate memory headroom"
-          - alert: RedisAOFRewriteLong
-            expr: redis_aof_rewrite_in_progress{namespace="redis"} == 1
-            for: 10m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Redis pod {{ $labels.pod }} AOF rewrite running >10m — COW memory risk, investigate"
-          - alert: RedisReplicasMissing
-            # redis-v2 StatefulSet should always have 3 replicas connected to
-            # the master (2 replicas + itself). <2 connected_slaves means one
-            # replica is unreachable or still syncing.
-            expr: redis_connected_slaves{namespace="redis", pod=~"redis-v2-.*"} < 2 and redis_instance_info{namespace="redis", pod=~"redis-v2-.*", role="master"} == 1
-            for: 10m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Redis master {{ $labels.pod }} has only {{ $value }} connected replicas (expected 2)"
-          - alert: HeadscaleReplicasMismatch
+          - alert: HeadscaleDown
             expr: (kube_deployment_status_replicas_available{namespace="headscale"} or on() vector(0)) < 1
             for: 5m
             labels:
@@ -1627,6 +1391,13 @@ serverFiles:
               severity: warning
             annotations:
               summary: "CNPG operator down — PostgreSQL failover/management degraded"
+          - alert: MySQLOperatorDown
+            expr: (kube_deployment_status_replicas_available{namespace="mysql-operator", deployment="mysql-operator"} or on() vector(0)) < 1
+            for: 10m
+            labels:
+              severity: warning
+            annotations:
+              summary: "MySQL operator down — InnoDB Cluster management degraded"
       - name: Cluster
         rules:
           - alert: NodeDown
@@ -1650,28 +1421,6 @@ serverFiles:
               severity: info
             annotations:
               summary: "Registry cache hit rate: {{ $value | printf \"%.0f\" }}% (threshold: 25%)"
-          - alert: RegistryManifestIntegrityFailure
-            expr: registry_manifest_integrity_failures > 0
-            for: 30m
-            labels:
-              severity: critical
-            annotations:
-              summary: "{{ $labels.instance }}: {{ $value }} broken manifest reference(s) — orphan index or missing blob"
-              description: "The forgejo-integrity-probe CronJob found {{ $value }} manifest/blob references that return non-200 on {{ $labels.instance }}. Rebuild the affected image per docs/runbooks/forgejo-registry-rebuild-image.md. (registry.viktorbarzin.me retired Phase 4 of forgejo-registry-consolidation 2026-05-07 — only forgejo.viktorbarzin.me remains.)"
-          - alert: RegistryIntegrityProbeStale
-            expr: time() - registry_manifest_integrity_last_run_timestamp > 3600
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "{{ $labels.instance }} integrity probe has not reported in >1h — CronJob may be broken"
-          - alert: RegistryCatalogInaccessible
-            expr: registry_manifest_integrity_catalog_accessible == 0
-            for: 15m
-            labels:
-              severity: critical
-            annotations:
-              summary: "{{ $labels.instance }} probe cannot fetch /v2/_catalog — auth failure or registry down"
           - alert: NodeHighCPUUsage
             expr: pve_cpu_usage_ratio * 100 > 60
             for: 6h
@@ -1994,7 +1743,7 @@ serverFiles:
               summary: "Email round-trip probe failing. Check MX DNS, Postfix, Mailgun API, and IMAP."
           - alert: EmailRoundtripStale
             expr: (time() - email_roundtrip_last_success_timestamp{job="email-roundtrip-monitor"}) > 3600
-            for: 20m
+            for: 10m
             labels:
               severity: warning
             annotations:
@@ -2006,38 +1755,6 @@ serverFiles:
               severity: warning
             annotations:
               summary: "Email round-trip monitor never reported - check CronJob in mailserver namespace"
-          - alert: ClaudeOAuthTokenExpiringSoon
-            expr: (claude_oauth_token_expiry_timestamp{job="claude-oauth-expiry-monitor"} - time()) < (30 * 86400)
-            for: 1h
-            labels:
-              severity: warning
-            annotations:
-              summary: "Claude OAuth token {{ $labels.path }} expires in <30 days"
-              description: "Run `claude setup-token` to mint a new 1-year token and update the corresponding Vault path + mint_epoch in stacks/claude-agent-service/main.tf."
-          - alert: ClaudeOAuthTokenCritical
-            expr: (claude_oauth_token_expiry_timestamp{job="claude-oauth-expiry-monitor"} - time()) < (7 * 86400)
-            for: 10m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Claude OAuth token {{ $labels.path }} expires in <7 days — rotate NOW"
-              description: "The long-lived CLAUDE_CODE_OAUTH_TOKEN is within 1 week of expiry. Automated upgrades will break when it expires. Harvest via `claude setup-token` and update Vault + TF."
-          - alert: ClaudeOAuthTokenMonitorStale
-            expr: (time() - claude_oauth_expiry_monitor_last_push_timestamp) > (48 * 3600)
-            for: 10m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Claude OAuth expiry monitor hasn't pushed in >48h"
-              description: "CronJob claude-oauth-expiry-monitor in claude-agent ns isn't running. Check `kubectl -n claude-agent get cronjob claude-oauth-expiry-monitor`."
-          - alert: ClaudeOAuthTokenMonitorNeverRun
-            expr: absent(claude_oauth_expiry_monitor_last_push_timestamp)
-            for: 2h
-            labels:
-              severity: warning
-            annotations:
-              summary: "Claude OAuth expiry monitor has never pushed — CronJob not running"
-              description: "Expected `claude_oauth_expiry_monitor_last_push_timestamp` to appear once the CronJob runs. Check the CronJob in claude-agent namespace."
           - alert: HackmdDown
             expr: (kube_deployment_status_replicas_available{namespace="hackmd"} or on() vector(0)) < 1
             for: 5m
@@ -2052,30 +1769,6 @@ serverFiles:
               severity: warning
             annotations:
               summary: "Privatebin has no available replicas"
-          - alert: DawarichIngestionStale
-            expr: (time() - dawarich_last_point_ingested_timestamp{user="viktor"}) > 172800
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Dawarich: no points from viktor in >2 days"
-              description: "The iOS Dawarich app likely stopped sending location points. Open the app, verify it's running, and check background location permissions. Server-side is healthy when this alert fires — the issue is client-side."
-          - alert: DawarichIngestionMonitorStale
-            expr: (time() - dawarich_ingestion_monitor_last_push_timestamp{user="viktor"}) > 129600
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Dawarich ingestion freshness monitor hasn't pushed in >36h"
-              description: "CronJob ingestion-freshness-monitor in dawarich ns isn't running or failing. Check `kubectl -n dawarich get cronjob ingestion-freshness-monitor` and recent Job logs."
-          - alert: DawarichIngestionMonitorNeverRun
-            expr: absent(dawarich_ingestion_monitor_last_push_timestamp{user="viktor"})
-            for: 2h
-            labels:
-              severity: warning
-            annotations:
-              summary: "Dawarich ingestion freshness monitor has never pushed"
-              description: "Expected `dawarich_ingestion_monitor_last_push_timestamp` to appear once the daily CronJob runs. Check the CronJob in dawarich namespace."
       - name: "Network Traffic (GoFlow2)"
         rules:
           - alert: GoFlow2Down
@@ -2119,24 +1812,13 @@ serverFiles:
               summary: "NetFlow processing delay p50: {{ $value | printf \"%.0f\" }}s — softflowd may be overloaded"
       - name: "DNS Anomaly Detection"
         rules:
-          # Spike detection: compare current value against its own 1h history via
-          # avg_over_time. Previous version compared against dns_anomaly_avg_queries
-          # which was computed from a per-pod /tmp file and always equalled the
-          # current value (fresh /tmp each run), so the alert could never fire.
           - alert: DNSQuerySpike
-            expr: dns_anomaly_total_queries > 2 * avg_over_time(dns_anomaly_total_queries[1h] offset 15m) and dns_anomaly_total_queries > 1000
+            expr: dns_anomaly_total_queries > 2 * dns_anomaly_avg_queries and dns_anomaly_total_queries > 1000
             for: 0m
             labels:
               severity: warning
             annotations:
-              summary: "DNS query spike: {{ $value | printf \"%.0f\" }} queries (>2x 1h avg)"
-          - alert: DNSQueryRateDropped
-            expr: dns_anomaly_total_queries < 0.5 * avg_over_time(dns_anomaly_total_queries[1h] offset 15m) and avg_over_time(dns_anomaly_total_queries[1h] offset 15m) > 1000
-            for: 10m
-            labels:
-              severity: warning
-            annotations:
-              summary: "DNS query volume dropped: {{ $value | printf \"%.0f\" }} queries (<50% of 1h avg) — upstream clients may be failing to reach Technitium"
+              summary: "DNS query spike: {{ $value | printf \"%.0f\" }} queries (>2x average)"
           - alert: DNSHighErrorRate
             expr: dns_anomaly_server_failure > 100
             for: 0m
@@ -2144,74 +1826,29 @@ serverFiles:
               severity: warning
             annotations:
               summary: "High DNS SERVFAIL rate: {{ $value | printf \"%.0f\" }} failures detected"
-          - alert: TechnitiumZoneSyncFailed
-            expr: technitium_zone_sync_status != 0
-            for: 30m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Technitium zone-sync CronJob has reported failure for 30m — replicas may be missing zones"
-          - alert: TechnitiumZoneSyncStale
-            expr: (time() - technitium_zone_sync_last_run) > 3600
-            for: 10m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Technitium zone-sync has not run successfully in >1h (last: {{ $value | humanizeDuration }} ago)"
-          - alert: TechnitiumZoneCountMismatch
-            expr: (max(technitium_zone_count{instance!="primary"}) - min(technitium_zone_count{instance!="primary"})) > 0
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Technitium zone counts differ across instances (max-min delta: {{ $value | printf \"%.0f\" }}) — replica has drifted from primary"
-          - alert: CoreDNSForwardFailureRate
-            expr: sum(rate(coredns_forward_responses_total{rcode=~"SERVFAIL|REFUSED"}[5m])) > 0.1
-            for: 5m
-            labels:
-              severity: warning
-            annotations:
-              summary: "CoreDNS forward SERVFAIL/REFUSED rate: {{ $value | printf \"%.2f\" }}/s — upstream DNS (pfSense/public) may be unhealthy"
       - name: qbittorrent
         rules:
-          - alert: MAMCookieExpired
-            expr: mam_farming_cookie_expired > 0
-            for: 0m
-            labels:
-              severity: critical
-            annotations:
-              summary: "MAM session cookie has expired — refresh `mam_id` in Vault servarr/mam_id"
-          - alert: MAMRatioBelowOne
-            expr: mam_ratio < 1.0
-            for: 24h
+          - alert: QBittorrentMAMRatioLow
+            expr: qbt_tracker_ratio{tracker="mam"} < 1.0
+            for: 1h
             labels:
               severity: warning
             annotations:
-              summary: "MAM ratio is {{ $value | printf \"%.2f\" }} for 24h (target: >= 1.0)"
-          - alert: MAMFarmingStuck
-            expr: |
-              increase(mam_farming_grabbed[4h]) == 0
-              and mam_farming_total_seeding < 150
-              and mam_ratio >= 1.2
-            for: 4h
-            labels:
-              severity: warning
-            annotations:
-              summary: "Grabber has added 0 torrents in 4h despite healthy ratio ({{ $value | printf \"%.2f\" }})"
-          - alert: MAMJanitorStuckBacklog
-            expr: mam_janitor_skipped_active > 400
-            for: 6h
-            labels:
-              severity: warning
-            annotations:
-              summary: "Janitor is skipping {{ $value | printf \"%.0f\" }} in-progress torrents — queue not draining"
+              summary: "MAM ratio is {{ $value | printf \"%.2f\" }} (must be >= 1.0)"
           - alert: QBittorrentDisconnected
             expr: qbt_connected == 0
-            for: 10m
+            for: 5m
             labels:
               severity: critical
             annotations:
               summary: "qBittorrent is disconnected from the network"
+          - alert: QBittorrentMAMUnsatisfied
+            expr: qbt_tracker_unsatisfied{tracker="mam"} > 15
+            for: 10m
+            labels:
+              severity: warning
+            annotations:
+              summary: "{{ $value | printf \"%.0f\" }} MAM torrents not yet seeded 72h (limit: 20 for new members)"
 
       - name: Headscale VPN
         rules:
@@ -2252,112 +1889,8 @@ serverFiles:
               severity: warning
             annotations:
               summary: "{{ $value | printf \"%.0f\" }} service(s) externally unreachable but internally healthy — check Cloudflare tunnel, DNS, or Traefik routing"
-      - name: "Authentik Outpost"
-        # Guards against the 2026-04-18 incident where /dev/shm filled with
-        # gorilla/sessions FileStore files (~44k files at ~1.5KB each) and the
-        # outpost returned HTTP 400 on every forward-auth request.
-        # See docs/post-mortems/2026-04-18-authentik-outpost-shm-full.md.
-        rules:
-          - alert: AuthentikOutpostMemoryHigh
-            # Working set includes /dev/shm tmpfs contents (session files).
-            # sizeLimit on the outpost emptyDir is 2Gi; warn at 75% to leave
-            # plenty of headroom for mitigation before ENOSPC.
-            expr: container_memory_working_set_bytes{namespace="authentik", pod=~"ak-outpost-.*", container="proxy"} > 1.5 * 1024 * 1024 * 1024
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Authentik outpost working set {{ $value | humanize1024 }} — /dev/shm may be filling with session files (threshold 1.5 GiB of 2 GiB sizeLimit)"
-          - alert: AuthentikOutpostMemoryCritical
-            expr: container_memory_working_set_bytes{namespace="authentik", pod=~"ak-outpost-.*", container="proxy"} > 1.8 * 1024 * 1024 * 1024
-            for: 5m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Authentik outpost near /dev/shm fill ({{ $value | humanize1024 }}) — imminent forward-auth failure. Restart pod: kubectl -n authentik delete pod -l goauthentik.io/outpost-name=authentik-embedded-outpost"
-          - alert: AuthentikOutpostRestarts
-            # Pod restarts on a stateless outpost usually mean OOM or crash.
-            # Normal is 0; we expect one manual rollout per incident/upgrade.
-            expr: increase(kube_pod_container_status_restarts_total{namespace="authentik", pod=~"ak-outpost-.*"}[30m]) > 2
-            for: 5m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Authentik outpost restarted {{ $value | printf \"%.0f\" }} times in 30m — check for OOM or crash loop"
-          - alert: AuthentikOutpostDevShmFull
-            # Direct filesystem measure of the /dev/shm emptyDir sizeLimit.
-            # The 2026-04-18 incident went undetected for 40h because working-set
-            # memory lags tmpfs fill (files count against memory but not always
-            # against working set). This rule catches the underlying cause.
-            # See docs/post-mortems/2026-04-18-authentik-outpost-shm-full.md.
-            expr: container_fs_usage_bytes{namespace="authentik", pod=~"ak-outpost-.*"} / container_fs_limit_bytes{namespace="authentik", pod=~"ak-outpost-.*"} > 0.8
-            for: 5m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Authentik outpost filesystem at {{ $value | humanizePercentage }} on {{ $labels.pod }} — session files filling tmpfs, forward-auth imminent failure"
-          - alert: AuthentikOutpostForwardAuth400Spike
-            # Sudden 400 spike from the outpost means forward-auth is broken
-            # for all protected services. The /dev/shm ENOSPC class of failures
-            # manifests as the outpost returning 400 on /outpost.goauthentik.io/auth/traefik.
-            expr: sum by (service) (increase(traefik_service_requests_total{code="400", service=~"authentik-authentik-outpost.*"}[5m])) > 10
-            for: 2m
-            labels:
-              severity: critical
-            annotations:
-              summary: "Authentik outpost returning {{ $value | printf \"%.0f\" }} 400s in 5m on {{ $labels.service }} — forward-auth broken for all 43 protected services"
-          - alert: AuthentikServerReplicasMismatch
-            # With 3 replicas + PDB minAvailable=2, a sustained drop to <3
-            # means a node is unschedulable, image pull failing, or quota hit.
-            expr: (kube_deployment_spec_replicas{namespace="authentik", deployment="goauthentik-server"} - kube_deployment_status_replicas_available{namespace="authentik", deployment="goauthentik-server"}) > 0
-            for: 15m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Authentik server has {{ $value }} unavailable replica(s) for 15m — check pod events"
-      # Mailserver Dovecot alerts were removed with the exporter in
-      # code-1ik (viktorbarzin/dovecot_exporter incompatible with
-      # Dovecot 2.3 stats architecture). Re-add the rule group if a
-      # working exporter is introduced.
-      - name: Infrastructure Drift
-        # Metrics pushed by .woodpecker/drift-detection.yml after each cron run.
-        # See Wave 7 of the state-drift consolidation plan.
-        rules:
-          - alert: DriftDetectionStale
-            # Drift detection pipeline hasn't reported in 26h. Either the cron
-            # didn't fire, or the job is failing before the push step.
-            expr: time() - max(drift_detection_last_run_timestamp) > 26 * 3600
-            for: 30m
-            labels:
-              severity: warning
-            annotations:
-              summary: "Drift detection hasn't reported in {{ $value | humanizeDuration }} — check Woodpecker pipeline 'drift-detection'"
-          - alert: DriftUnaddressed
-            # Any stack drifted for >72h without being reconciled. Either apply
-            # to bring config in line, or update HCL to match desired state.
-            expr: max(drift_stack_age_hours) > 72
-            for: 1h
-            labels:
-              severity: warning
-            annotations:
-              summary: "A stack has been drifted for {{ $value | printf \"%.0f\" }}h — run scripts/tg plan across stacks to identify and reconcile"
-          - alert: DriftStacksMany
-            # More than 10 stacks drifting simultaneously usually means a
-            # systemic issue (cluster upgrade, new admission controller,
-            # provider version bump) rather than individual misconfigurations.
-            expr: drift_stack_count > 10
-            for: 30m
-            labels:
-              severity: warning
-            annotations:
-              summary: "{{ $value | printf \"%.0f\" }} stacks drifting — likely a systemic cause (new admission webhook, provider upgrade). Check the most recent drift-detection run in Woodpecker."
 
 extraScrapeConfigs: |
-  # The `mailserver-dovecot` scrape job was retired in code-1ik together
-  # with the Dovecot exporter. docker-mailserver 15.0.0's Dovecot 2.3
-  # doesn't emit the old_stats protocol the exporter expected, so the
-  # scrape only ever returned `dovecot_up{scope="user"} 0`. Re-add here
-  # if a working exporter is introduced.
   - job_name: 'proxmox-host'
     static_configs:
       - targets:
@@ -2526,58 +2059,6 @@ extraScrapeConfigs: |
         action: replace
         regex: '(.*)'
         replacement: 'fuse_main_$${1}'
-  - job_name: 'thermostat-hol'
-    static_configs:
-        - targets:
-          - "tuya-bridge.tuya-bridge.svc.cluster.local:80"
-    metrics_path: '/metrics/bf7efce9519bd508df431s'
-    params:
-      api-key: ['${tuya_api_key}']
-    metric_relabel_configs:
-      - source_labels: [ __name__ ]
-        target_label: '__name__'
-        action: replace
-        regex: '(.*)'
-        replacement: 'thermostat_hol_$${1}'
-  - job_name: 'thermostat-master-bedroom'
-    static_configs:
-        - targets:
-          - "tuya-bridge.tuya-bridge.svc.cluster.local:80"
-    metrics_path: '/metrics/bf70e80159641f61a5lzho'
-    params:
-      api-key: ['${tuya_api_key}']
-    metric_relabel_configs:
-      - source_labels: [ __name__ ]
-        target_label: '__name__'
-        action: replace
-        regex: '(.*)'
-        replacement: 'thermostat_master_bedroom_$${1}'
-  - job_name: 'thermostat-office'
-    static_configs:
-        - targets:
-          - "tuya-bridge.tuya-bridge.svc.cluster.local:80"
-    metrics_path: '/metrics/bf9597a0064f0349d4b09x'
-    params:
-      api-key: ['${tuya_api_key}']
-    metric_relabel_configs:
-      - source_labels: [ __name__ ]
-        target_label: '__name__'
-        action: replace
-        regex: '(.*)'
-        replacement: 'thermostat_office_$${1}'
-  - job_name: 'thermostat-kids-room'
-    static_configs:
-        - targets:
-          - "tuya-bridge.tuya-bridge.svc.cluster.local:80"
-    metrics_path: '/metrics/bfe64da91577117e0annt5'
-    params:
-      api-key: ['${tuya_api_key}']
-    metric_relabel_configs:
-      - source_labels: [ __name__ ]
-        target_label: '__name__'
-        action: replace
-        regex: '(.*)'
-        replacement: 'thermostat_kids_room_$${1}'
   - job_name: 'haos'
     static_configs:
         - targets:
diff --git a/stacks/monitoring/modules/monitoring/pve_exporter.tf b/stacks/monitoring/modules/monitoring/pve_exporter.tf
index 2c24dd42..4c103297 100644
--- a/stacks/monitoring/modules/monitoring/pve_exporter.tf
+++ b/stacks/monitoring/modules/monitoring/pve_exporter.tf
@@ -86,10 +86,6 @@ resource "kubernetes_deployment" "pve_exporter" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "proxmox-exporter" {
diff --git a/stacks/monitoring/modules/monitoring/snmp_exporter.tf b/stacks/monitoring/modules/monitoring/snmp_exporter.tf
index 232b1c28..07eaf39a 100644
--- a/stacks/monitoring/modules/monitoring/snmp_exporter.tf
+++ b/stacks/monitoring/modules/monitoring/snmp_exporter.tf
@@ -90,10 +90,6 @@ resource "kubernetes_deployment" "snmp-exporter" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "snmp-exporter" {
diff --git a/stacks/n8n/main.tf b/stacks/n8n/main.tf
index 62e9a528..4e4f8de1 100644
--- a/stacks/n8n/main.tf
+++ b/stacks/n8n/main.tf
@@ -18,10 +18,6 @@ resource "kubernetes_namespace" "n8n" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -51,35 +47,6 @@ resource "kubernetes_manifest" "external_secret" {
   depends_on = [kubernetes_namespace.n8n]
 }
 
-resource "kubernetes_manifest" "external_secret_claude_agent" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "claude-agent-token"
-      namespace = "n8n"
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "claude-agent-token"
-      }
-      data = [{
-        secretKey = "api_bearer_token"
-        remoteRef = {
-          key      = "claude-agent-service"
-          property = "api_bearer_token"
-        }
-      }]
-    }
-  }
-  depends_on = [kubernetes_namespace.n8n]
-}
-
 resource "kubernetes_persistent_volume_claim" "data_encrypted" {
   wait_until_bound = false
   metadata {
@@ -240,19 +207,6 @@ resource "kubernetes_deployment" "n8n" {
             name  = "WEBHOOK_URL"
             value = "https://n8n.viktorbarzin.me"
           }
-          env {
-            name = "CLAUDE_AGENT_API_TOKEN"
-            value_from {
-              secret_key_ref {
-                name = "claude-agent-token"
-                key  = "api_bearer_token"
-              }
-            }
-          }
-          env {
-            name  = "N8N_BLOCK_ENV_ACCESS_IN_NODE"
-            value = "false"
-          }
           volume_mount {
             name       = "data"
             mount_path = "/home/node/.n8n"
@@ -281,10 +235,6 @@ resource "kubernetes_deployment" "n8n" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "n8n" {
diff --git a/stacks/n8n/workflows/diun-upgrade.json b/stacks/n8n/workflows/diun-upgrade.json
index 3a3e852d..9246e339 100644
--- a/stacks/n8n/workflows/diun-upgrade.json
+++ b/stacks/n8n/workflows/diun-upgrade.json
@@ -38,25 +38,15 @@
     },
     {
       "parameters": {
-        "method": "POST",
-        "url": "http://claude-agent-service.claude-agent.svc.cluster.local:8080/execute",
-        "sendHeaders": true,
-        "headerParameters": {
-          "parameters": [
-            {"name": "Authorization", "value": "=Bearer {{ $env.CLAUDE_AGENT_API_TOKEN }}"},
-            {"name": "Content-Type", "value": "application/json"}
-          ]
-        },
-        "sendBody": true,
-        "specifyBody": "json",
-        "jsonBody": "={{ JSON.stringify({ prompt: 'You are the service-upgrade agent. Read .claude/agents/service-upgrade.md for full instructions.\\n\\nUpgrade task:\\n- Image: ' + $json.body.diun_entry_image + '\\n- New tag: ' + $json.body.diun_entry_imagetag + '\\n- Hub link: ' + ($json.body.diun_entry_hublink || 'none') + '\\n\\nExecute the upgrade workflow now.', agent: '.claude/agents/service-upgrade', max_budget_usd: 10, timeout_seconds: 1800 }) }}",
-        "options": {}
+        "command": "='claude -p \"You are the service-upgrade agent. Read /home/wizard/code/infra/.claude/agents/service-upgrade.md for full instructions.\\n\\nUpgrade task:\\n- Image: ' + $json.body.diun_entry_image + '\\n- New tag: ' + $json.body.diun_entry_imagetag + '\\n- Hub link: ' + ($json.body.diun_entry_hublink || 'none') + '\\n\\nExecute the upgrade workflow now.\"'",
+        "cwd": "/home/wizard/code/infra"
       },
-      "id": "http-execute",
+      "id": "ssh-execute",
       "name": "Run Upgrade Agent",
-      "type": "n8n-nodes-base.httpRequest",
-      "typeVersion": 4.2,
-      "position": [910, 300]
+      "type": "n8n-nodes-base.ssh",
+      "typeVersion": 1,
+      "position": [910, 300],
+      "credentials": {"sshPassword": {"id": "REPLACE_WITH_SSH_CRED_ID", "name": "Dev VM SSH"}}
     }
   ],
   "connections": {
diff --git a/stacks/n8n/workflows/job-hunter-weekly-digest.json b/stacks/n8n/workflows/job-hunter-weekly-digest.json
deleted file mode 100644
index 40c6b3cd..00000000
--- a/stacks/n8n/workflows/job-hunter-weekly-digest.json
+++ /dev/null
@@ -1,49 +0,0 @@
-{
-  "name": "Job Hunter Weekly Digest",
-  "active": false,
-  "nodes": [
-    {
-      "parameters": {
-        "rule": {
-          "interval": [{"field": "weeks", "triggerAtDay": [1], "triggerAtHour": 7, "triggerAtMinute": 0}]
-        }
-      },
-      "id": "cron-weekly",
-      "name": "Weekly Monday 07:00 London",
-      "type": "n8n-nodes-base.scheduleTrigger",
-      "typeVersion": 1.1,
-      "position": [250, 300]
-    },
-    {
-      "parameters": {
-        "method": "POST",
-        "url": "http://job-hunter.job-hunter.svc.cluster.local:8080/digest/generate",
-        "sendHeaders": true,
-        "headerParameters": {
-          "parameters": [
-            {"name": "Authorization", "value": "=Bearer {{ $env.JOB_HUNTER_WEBHOOK_TOKEN }}"},
-            {"name": "Content-Type", "value": "application/json"}
-          ]
-        },
-        "sendBody": true,
-        "contentType": "json",
-        "jsonBody": "={\"window_days\":7,\"limit\":50,\"dry_run\":false}",
-        "options": {"timeout": 120000}
-      },
-      "id": "digest-generate",
-      "name": "Call /digest/generate",
-      "type": "n8n-nodes-base.httpRequest",
-      "typeVersion": 4.2,
-      "position": [500, 300]
-    }
-  ],
-  "connections": {
-    "Weekly Monday 07:00 London": {
-      "main": [[{"node": "Call /digest/generate", "type": "main", "index": 0}]]
-    }
-  },
-  "settings": {"executionOrder": "v1", "saveExecutionProgress": false, "saveManualExecutions": true},
-  "staticData": null,
-  "meta": {"templateCredsSetupCompleted": false},
-  "pinData": {}
-}
diff --git a/stacks/navidrome/main.tf b/stacks/navidrome/main.tf
index 9e170e0c..dff0fff0 100644
--- a/stacks/navidrome/main.tf
+++ b/stacks/navidrome/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "navidrome" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -202,10 +198,6 @@ resource "kubernetes_deployment" "navidrome" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "navidrome" {
diff --git a/stacks/netbox/main.tf b/stacks/netbox/main.tf
index b95f9e49..e0612945 100644
--- a/stacks/netbox/main.tf
+++ b/stacks/netbox/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "netbox" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -200,10 +196,6 @@ resource "kubernetes_deployment" "netbox" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 resource "kubernetes_service" "netbox" {
   metadata {
diff --git a/stacks/networking-toolbox/main.tf b/stacks/networking-toolbox/main.tf
index 720db4b4..a5c691c9 100644
--- a/stacks/networking-toolbox/main.tf
+++ b/stacks/networking-toolbox/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "networking-toolbox" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -70,10 +66,6 @@ resource "kubernetes_deployment" "networking-toolbox" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "networking-toolbox" {
diff --git a/stacks/nextcloud/chart_values.yaml b/stacks/nextcloud/chart_values.yaml
index f7eb302c..30a9c45f 100644
--- a/stacks/nextcloud/chart_values.yaml
+++ b/stacks/nextcloud/chart_values.yaml
@@ -29,19 +29,35 @@ nextcloud:
   configs:
     zzz-redis.config.php: |
       <?php
-      // Redis via HAProxy master-only service. HAProxy (3 replicas, PDB
-      // minAvailable=2) health-checks all v2 pods via `INFO replication` and
-      // routes to the current role:master. Sentinel failover takes <30s, and
-      // HAProxy detects the new master via its 1s tcp-check interval and
-      // starts routing within ~3s of detection. Removed the old in-process
-      // sentinel-query loop on 2026-04-19 after the Redis rework — see
-      // beads code-v2b and infra/docs/architecture/databases.md.
+      // Redis with Sentinel-based master discovery
+      // Queries Sentinel to find the current master, falls back to HAProxy service
+      // which health-checks Redis nodes and routes only to the master.
+      $sentinels = [
+        ['redis-node-0.redis-headless.redis.svc.cluster.local', 26379],
+        ['redis-node-1.redis-headless.redis.svc.cluster.local', 26379],
+      ];
+      // Fallback: HAProxy master-only service (safe even if Sentinel is unavailable)
+      $redisHost = 'redis-master.redis.svc.cluster.local';
+      $redisPort = 6379;
+      foreach ($sentinels as [$sHost, $sPort]) {
+        try {
+          $s = new Redis();
+          if ($s->connect($sHost, $sPort, 0.5)) {
+            $master = $s->rawCommand('SENTINEL', 'get-master-addr-by-name', 'mymaster');
+            if ($master) {
+              $redisHost = $master[0];
+              $redisPort = (int)$master[1];
+              break;
+            }
+          }
+        } catch (\Exception $e) {}
+      }
       $CONFIG = array(
         'memcache.distributed' => '\\OC\\Memcache\\Redis',
         'memcache.locking' => '\\OC\\Memcache\\Redis',
         'redis' => array(
-          'host' => 'redis-master.redis.svc.cluster.local',
-          'port' => 6379,
+          'host' => $redisHost,
+          'port' => $redisPort,
           'password' => '',
           'timeout' => 1.5,
           'read_timeout' => 1.5,
diff --git a/stacks/nextcloud/main.tf b/stacks/nextcloud/main.tf
index d737fa5c..ad17e141 100644
--- a/stacks/nextcloud/main.tf
+++ b/stacks/nextcloud/main.tf
@@ -32,10 +32,6 @@ resource "kubernetes_namespace" "nextcloud" {
       "resource-governance/custom-quota"      = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -467,10 +463,6 @@ resource "kubernetes_cron_job_v1" "nextcloud_watchdog" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_cron_job_v1" "nextcloud-backup" {
@@ -493,25 +485,6 @@ resource "kubernetes_cron_job_v1" "nextcloud-backup" {
           spec {
             restart_policy = "OnFailure"
 
-            # Backup mounts the same RWO PVC (proxmox-lvm-encrypted) as the
-            # main nextcloud pod, so it MUST schedule on the same node — the
-            # volume cannot attach to two nodes simultaneously. Without this
-            # the backup pod is stuck in ContainerCreating until cron retries.
-            affinity {
-              pod_affinity {
-                required_during_scheduling_ignored_during_execution {
-                  label_selector {
-                    match_labels = {
-                      "app.kubernetes.io/name"     = "nextcloud"
-                      "app.kubernetes.io/instance" = "nextcloud"
-                    }
-                  }
-                  topology_key = "kubernetes.io/hostname"
-                  namespaces   = [kubernetes_namespace.nextcloud.metadata[0].name]
-                }
-              }
-            }
-
             container {
               name  = "backup"
               image = "alpine:latest"
@@ -560,8 +533,4 @@ resource "kubernetes_cron_job_v1" "nextcloud-backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/nfs-csi/modules/nfs-csi/main.tf b/stacks/nfs-csi/modules/nfs-csi/main.tf
index 22fd6a27..ebe10dc7 100644
--- a/stacks/nfs-csi/modules/nfs-csi/main.tf
+++ b/stacks/nfs-csi/modules/nfs-csi/main.tf
@@ -8,10 +8,6 @@ resource "kubernetes_namespace" "nfs_csi" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "nfs_csi_driver" {
@@ -75,11 +71,6 @@ resource "helm_release" "nfs_csi_driver" {
   })]
 }
 
-# Historical name retained for PV compatibility — 48 bound PVs reference
-# storageClassName: nfs-truenas. The actual backend is the Proxmox host NFS
-# (var.nfs_server = 192.168.1.127) since TrueNAS was decommissioned
-# 2026-04-13. SC names are immutable on PVs, so renaming would require
-# migrating every PV. Not worth the churn for a cosmetic change.
 resource "kubernetes_storage_class" "nfs_truenas" {
   metadata {
     name = "nfs-truenas"
diff --git a/stacks/nodelocal-dns/main.tf b/stacks/nodelocal-dns/main.tf
deleted file mode 100644
index 93626347..00000000
--- a/stacks/nodelocal-dns/main.tf
+++ /dev/null
@@ -1,16 +0,0 @@
-module "nodelocal_dns" {
-  source = "./modules/nodelocal-dns"
-
-  # Canonical link-local IP from upstream NodeLocal DNSCache docs.
-  link_local_ip = "169.254.20.10"
-
-  # kube-dns ClusterIP — co-listened so transparent interception works
-  # without mutating kubelet clusterDNS on every node.
-  kube_dns_ip = "10.96.0.10"
-
-  # Technitium ClusterIP — upstream for .viktorbarzin.lan.
-  technitium_ip = "10.96.0.53"
-
-  image = "registry.k8s.io/dns/k8s-dns-node-cache:1.23.1"
-  tier  = local.tiers.core
-}
diff --git a/stacks/nodelocal-dns/modules/nodelocal-dns/main.tf b/stacks/nodelocal-dns/modules/nodelocal-dns/main.tf
deleted file mode 100644
index 3dce76bc..00000000
--- a/stacks/nodelocal-dns/modules/nodelocal-dns/main.tf
+++ /dev/null
@@ -1,359 +0,0 @@
-// NodeLocal DNSCache — per-node DNS cache as a DaemonSet.
-//
-// Why: insulates pods from transient CoreDNS / pfSense issues. Each node
-// runs a CoreDNS-based cache listening on the link-local IP (169.254.20.10)
-// AND on the kube-dns ClusterIP (10.96.0.10) via hostNetwork + NET_ADMIN
-// iptables NOTRACK rules. Pods already use 10.96.0.10 as their resolver
-// (verified in /etc/resolv.conf), so traffic is transparently intercepted
-// on the node and served from the local cache — no kubelet clusterDNS
-// change required.
-//
-// Upstream CoreDNS is reached via a separate headless service
-// `kube-dns-upstream` that selects the CoreDNS pods directly (distinct
-// ClusterIP from kube-dns so we can forward without looping back to
-// ourselves).
-//
-// Sources:
-//   https://kubernetes.io/docs/tasks/administer-cluster/nodelocaldns/
-//   https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml
-
-variable "link_local_ip" {
-  type    = string
-  default = "169.254.20.10"
-}
-
-variable "kube_dns_ip" {
-  type    = string
-  default = "10.96.0.10"
-}
-
-variable "technitium_ip" {
-  type    = string
-  default = "10.96.0.53"
-}
-
-variable "image" {
-  type    = string
-  default = "registry.k8s.io/dns/k8s-dns-node-cache:1.23.1"
-}
-
-variable "tier" {
-  type    = string
-  default = "0-core"
-}
-
-locals {
-  namespace = "kube-system"
-  app_label = "node-local-dns"
-}
-
-// ---------------------------------------------------------------------------
-// ServiceAccount + RBAC
-// ---------------------------------------------------------------------------
-
-resource "kubernetes_service_account" "node_local_dns" {
-  metadata {
-    name      = "node-local-dns"
-    namespace = local.namespace
-    labels = {
-      "k8s-app" = local.app_label
-    }
-  }
-}
-
-// ---------------------------------------------------------------------------
-// Upstream service — routes cache misses to CoreDNS pods (not the kube-dns
-// ClusterIP, because we're co-listening on that IP ourselves).
-// ---------------------------------------------------------------------------
-
-resource "kubernetes_service" "kube_dns_upstream" {
-  metadata {
-    name      = "kube-dns-upstream"
-    namespace = local.namespace
-    labels = {
-      "k8s-app"                       = "kube-dns"
-      "kubernetes.io/cluster-service" = "true"
-      "kubernetes.io/name"            = "KubeDNSUpstream"
-    }
-  }
-  spec {
-    selector = {
-      "k8s-app" = "kube-dns"
-    }
-    port {
-      name        = "dns"
-      port        = 53
-      protocol    = "UDP"
-      target_port = "53"
-    }
-    port {
-      name        = "dns-tcp"
-      port        = 53
-      protocol    = "TCP"
-      target_port = "53"
-    }
-  }
-}
-
-// ---------------------------------------------------------------------------
-// Headless service — Prometheus metrics scrape target (one endpoint per node).
-// ---------------------------------------------------------------------------
-
-resource "kubernetes_service" "node_local_dns" {
-  metadata {
-    name      = "node-local-dns"
-    namespace = local.namespace
-    labels = {
-      "k8s-app"                       = local.app_label
-      "kubernetes.io/cluster-service" = "true"
-    }
-    annotations = {
-      "prometheus.io/port"   = "9253"
-      "prometheus.io/scrape" = "true"
-    }
-  }
-  spec {
-    cluster_ip = "None"
-    selector = {
-      "k8s-app" = local.app_label
-    }
-    port {
-      name        = "metrics"
-      port        = 9253
-      target_port = "9253"
-    }
-  }
-}
-
-// ---------------------------------------------------------------------------
-// Corefile — inline here so changes are reviewable via Terraform plan.
-// The node-cache binary does string replacement for __PILLAR__ tokens at
-// startup; we pre-fill LOCAL/DNS_SERVER with our real IPs and leave
-// __PILLAR__CLUSTER__DNS__ for the runtime substitution from
-// kube-dns-upstream endpoints.
-// ---------------------------------------------------------------------------
-
-resource "kubernetes_config_map" "node_local_dns" {
-  metadata {
-    name      = "node-local-dns"
-    namespace = local.namespace
-    labels = {
-      "k8s-app" = local.app_label
-    }
-  }
-  data = {
-    "Corefile" = <<-EOF
-      cluster.local:53 {
-          errors
-          cache {
-              success 9984 30
-              denial 9984 5
-          }
-          reload
-          loop
-          bind ${var.link_local_ip} ${var.kube_dns_ip}
-          forward . __PILLAR__CLUSTER__DNS__ {
-              force_tcp
-          }
-          prometheus :9253
-          health ${var.link_local_ip}:8080
-      }
-      in-addr.arpa:53 {
-          errors
-          cache 30
-          reload
-          loop
-          bind ${var.link_local_ip} ${var.kube_dns_ip}
-          forward . __PILLAR__CLUSTER__DNS__ {
-              force_tcp
-          }
-          prometheus :9253
-      }
-      ip6.arpa:53 {
-          errors
-          cache 30
-          reload
-          loop
-          bind ${var.link_local_ip} ${var.kube_dns_ip}
-          forward . __PILLAR__CLUSTER__DNS__ {
-              force_tcp
-          }
-          prometheus :9253
-      }
-      viktorbarzin.lan:53 {
-          errors
-          cache 30
-          reload
-          loop
-          bind ${var.link_local_ip} ${var.kube_dns_ip}
-          forward . ${var.technitium_ip}
-          prometheus :9253
-      }
-      .:53 {
-          errors
-          cache 30
-          reload
-          loop
-          bind ${var.link_local_ip} ${var.kube_dns_ip}
-          forward . __PILLAR__CLUSTER__DNS__
-          prometheus :9253
-      }
-      EOF
-  }
-}
-
-// ---------------------------------------------------------------------------
-// DaemonSet
-// ---------------------------------------------------------------------------
-
-resource "kubernetes_daemon_set_v1" "node_local_dns" {
-  metadata {
-    name      = "node-local-dns"
-    namespace = local.namespace
-    labels = {
-      "k8s-app" = local.app_label
-      tier      = var.tier
-    }
-  }
-  spec {
-    selector {
-      match_labels = {
-        "k8s-app" = local.app_label
-      }
-    }
-    strategy {
-      type = "RollingUpdate"
-      rolling_update {
-        max_unavailable = "10%"
-      }
-    }
-    template {
-      metadata {
-        labels = {
-          "k8s-app" = local.app_label
-        }
-        annotations = {
-          # Ensure pods pick up Corefile changes without waiting for a
-          # reload (CoreDNS reload plugin picks up changes within 30s,
-          # but a hash annotation forces an immediate rollout).
-          "node-local-dns/corefile-hash" = sha256(kubernetes_config_map.node_local_dns.data["Corefile"])
-        }
-      }
-      spec {
-        priority_class_name              = "system-node-critical"
-        service_account_name             = kubernetes_service_account.node_local_dns.metadata[0].name
-        host_network                     = true
-        dns_policy                       = "Default"
-        termination_grace_period_seconds = 0
-
-        toleration {
-          operator = "Exists"
-        }
-
-        container {
-          name              = "node-cache"
-          image             = var.image
-          image_pull_policy = "IfNotPresent"
-
-          resources {
-            # Per cluster CPU-limits-removed policy: requests only, no limit.
-            requests = {
-              cpu    = "25m"
-              memory = "32Mi"
-            }
-            limits = {
-              memory = "128Mi"
-            }
-          }
-
-          args = [
-            "-localip",
-            "${var.link_local_ip},${var.kube_dns_ip}",
-            "-conf",
-            "/etc/Corefile",
-            "-upstreamsvc",
-            kubernetes_service.kube_dns_upstream.metadata[0].name,
-            "-skipteardown=true",
-          ]
-
-          security_context {
-            capabilities {
-              add = ["NET_ADMIN"]
-            }
-          }
-
-          port {
-            name           = "dns"
-            container_port = 53
-            protocol       = "UDP"
-          }
-          port {
-            name           = "dns-tcp"
-            container_port = 53
-            protocol       = "TCP"
-          }
-          port {
-            name           = "metrics"
-            container_port = 9253
-            protocol       = "TCP"
-          }
-
-          liveness_probe {
-            http_get {
-              host = var.link_local_ip
-              path = "/health"
-              port = "8080"
-            }
-            initial_delay_seconds = 60
-            timeout_seconds       = 5
-          }
-
-          volume_mount {
-            name       = "xtables-lock"
-            mount_path = "/run/xtables.lock"
-            read_only  = false
-          }
-          volume_mount {
-            name       = "config-volume"
-            mount_path = "/etc/coredns"
-          }
-          volume_mount {
-            name       = "kube-dns-config"
-            mount_path = "/etc/kube-dns"
-          }
-        }
-
-        volume {
-          name = "xtables-lock"
-          host_path {
-            path = "/run/xtables.lock"
-            type = "FileOrCreate"
-          }
-        }
-        volume {
-          name = "kube-dns-config"
-          config_map {
-            name     = "kube-dns"
-            optional = true
-          }
-        }
-        volume {
-          name = "config-volume"
-          config_map {
-            name = kubernetes_config_map.node_local_dns.metadata[0].name
-            items {
-              key  = "Corefile"
-              path = "Corefile.base"
-            }
-          }
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with
-    # ndots=2 on every pod; ignoring avoids spurious plan drift.
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/nodelocal-dns/terragrunt.hcl b/stacks/nodelocal-dns/terragrunt.hcl
deleted file mode 100644
index ac8dda28..00000000
--- a/stacks/nodelocal-dns/terragrunt.hcl
+++ /dev/null
@@ -1,11 +0,0 @@
-include "root" {
-  path = find_in_parent_folders()
-}
-
-# CoreDNS ConfigMap + kube-dns Service live in the technitium stack.
-# NodeLocal DNSCache co-listens on the kube-dns ClusterIP (10.96.0.10)
-# via hostNetwork + iptables NOTRACK — no kubelet clusterDNS change needed.
-dependency "technitium" {
-  config_path  = "../technitium"
-  skip_outputs = true
-}
diff --git a/stacks/novelapp/main.tf b/stacks/novelapp/main.tf
index 6dab8e35..e5420752 100644
--- a/stacks/novelapp/main.tf
+++ b/stacks/novelapp/main.tf
@@ -38,10 +38,6 @@ resource "kubernetes_namespace" "novelapp" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -84,10 +80,8 @@ resource "kubernetes_deployment" "novelapp" {
     }
   }
   lifecycle {
-    # DRIFT_WORKAROUND: CI pipeline owns image tag (kubectl set image from Woodpecker/GHA). Reviewed 2026-04-18.
     ignore_changes = [
       spec[0].template[0].spec[0].container[0].image,
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
     ]
   }
   spec {
diff --git a/stacks/ntfy/main.tf b/stacks/ntfy/main.tf
index e69c3bd3..d29251cd 100644
--- a/stacks/ntfy/main.tf
+++ b/stacks/ntfy/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "ntfy" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -155,10 +151,6 @@ resource "kubernetes_deployment" "ntfy" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "ntfy" {
diff --git a/stacks/nvidia/modules/nvidia/main.tf b/stacks/nvidia/modules/nvidia/main.tf
index 720f6daf..eb7cae52 100644
--- a/stacks/nvidia/modules/nvidia/main.tf
+++ b/stacks/nvidia/modules/nvidia/main.tf
@@ -13,14 +13,10 @@ resource "kubernetes_namespace" "nvidia" {
     labels = {
       "istio-injection" : "disabled"
       tier                                    = var.tier
-      "resource-governance/custom-quota"      = "true"
+      "resource-governance/custom-quota"       = "true"
       "resource-governance/custom-limitrange" = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 # Custom LimitRange — overrides Kyverno tier-2-gpu default (1Gi per container)
@@ -63,25 +59,18 @@ resource "kubernetes_resource_quota" "nvidia_quota" {
   }
 }
 
-# Apply GPU taint dynamically based on NFD-discovered GPU nodes. The
-# NFD label `feature.node.kubernetes.io/pci-10de.present=true` is
-# auto-applied on any node with an NVIDIA PCI device (vendor 0x10de),
-# so the taint follows the card if it moves between nodes. Workload
-# nodeSelectors key off `nvidia.com/gpu.present=true` (applied by
-# gpu-feature-discovery once the operator is up).
+# Apply GPU taint and label to ensure only GPU workloads run on GPU node
 resource "null_resource" "gpu_node_config" {
   provisioner "local-exec" {
     command = <<-EOT
-      set -euo pipefail
-      for node in $(kubectl get nodes -l feature.node.kubernetes.io/pci-10de.present=true -o jsonpath='{.items[*].metadata.name}'); do
-        kubectl taint nodes "$node" nvidia.com/gpu=true:PreferNoSchedule --overwrite
-      done
+      kubectl taint nodes k8s-node1 nvidia.com/gpu=true:PreferNoSchedule --overwrite
+      kubectl label nodes k8s-node1 gpu=true --overwrite
     EOT
   }
 
+  # Re-run if namespace changes (proxy for cluster changes)
   triggers = {
-    namespace    = kubernetes_namespace.nvidia.metadata[0].name
-    command_hash = "dynamic-taint-v1"
+    namespace = kubernetes_namespace.nvidia.metadata[0].name
   }
 }
 
@@ -148,7 +137,7 @@ resource "kubernetes_deployment" "nvidia-exporter" {
       }
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -188,10 +177,6 @@ resource "kubernetes_deployment" "nvidia-exporter" {
     }
   }
   depends_on = [helm_release.nvidia-gpu-operator]
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "nvidia-exporter" {
@@ -611,7 +596,7 @@ resource "kubernetes_daemonset" "gpu_pod_exporter" {
         service_account_name = kubernetes_service_account.gpu_pod_exporter.metadata[0].name
 
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
 
         toleration {
diff --git a/stacks/ollama/.terraform.lock.hcl b/stacks/ollama/.terraform.lock.hcl
new file mode 100644
index 00000000..a1ca7484
--- /dev/null
+++ b/stacks/ollama/.terraform.lock.hcl
@@ -0,0 +1,73 @@
+# This file is maintained automatically by "terraform init".
+# Manual edits may be lost in future updates.
+
+provider "registry.terraform.io/cloudflare/cloudflare" {
+  version     = "4.52.7"
+  constraints = "~> 4.0"
+  hashes = [
+    "h1:pPItIWii5oymR+geZB219ROSPuSODPLTlM4S/u8xLvM=",
+    "zh:0c904ce31a4c6c4a5b3bf7ff1560e77c0cc7e2450c8553ded8e8c90398e1418b",
+    "zh:36183d310c36373fe4cb936b83c595c6fd3b0a94bc7827f28e5789ccbf59752e",
+    "zh:556a568a6f0235e8f41647de9e4d3a1e7b1d6502df8b19b54ec441f1c653ea10",
+    "zh:633ebbd5b0245e75e500ef9be4d9e62288f97e8da3baaa51323892a786d90285",
+    "zh:6acfe60cf52a65ba8f044f748548d2119e7f4fd7f8ebcb14698960d87c68f529",
+    "zh:890df766e9b839623b1f0437355032a3c006226a6c200cd911e15ee1a9014e9f",
+    "zh:904acc31ebb9d6ef68c792074b30532ee61bf515f19e0a3c75b46f126cca1f13",
+    "zh:a1d0a81246afc8750286d3f6fe7a8fbe6460dd2662407b28dbfbabb612e5fa9d",
+    "zh:a41a36fe253fc365fe2b7ffc749624688b2693b4634862fda161179ab100029f",
+    "zh:a7ef269e77ffa8715c8945a2c14322c7ff159ea44c15f62505f3cbb2cae3b32d",
+    "zh:b01aa3bed30610633b762df64332b26f8844a68c3960cebcb30f04918efc67fe",
+    "zh:b069cc2cd18cae10757df3ae030508eac8d55de7e49eda7a5e3e11f2f7fe6455",
+    "zh:b2d2c6313729ebb7465dceece374049e2d08bda34473901be9ff46a8836d42b2",
+    "zh:db0e114edaf4bc2f3d4769958807c83022bfbc619a00bdf4c4bd17faa4ab2d8b",
+    "zh:ecc0aa8b9044f664fd2aaf8fa992d976578f78478980555b4b8f6148e8d1a5fe",
+  ]
+}
+
+provider "registry.terraform.io/hashicorp/helm" {
+  version = "3.1.1"
+  hashes = [
+    "h1:47CqNwkxctJtL/N/JuEj+8QMg8mRNI/NWeKO5/ydfZU=",
+    "h1:5b2ojWKT0noujHiweCds37ZreRFRQLNaErdJLusJN88=",
+    "zh:1a6d5ce931708aec29d1f3d9e360c2a0c35ba5a54d03eeaff0ce3ca597cd0275",
+    "zh:3411919ba2a5941801e677f0fea08bdd0ae22ba3c9ce3309f55554699e06524a",
+    "zh:81b36138b8f2320dc7f877b50f9e38f4bc614affe68de885d322629dd0d16a29",
+    "zh:95a2a0a497a6082ee06f95b38bd0f0d6924a65722892a856cfd914c0d117f104",
+    "zh:9d3e78c2d1bb46508b972210ad706dd8c8b106f8b206ecf096cd211c54f46990",
+    "zh:a79139abf687387a6efdbbb04289a0a8e7eaca2bd91cdc0ce68ea4f3286c2c34",
+    "zh:aaa8784be125fbd50c48d84d6e171d3fb6ef84a221dbc5165c067ce05faab4c8",
+    "zh:afecd301f469975c9d8f350cc482fe656e082b6ab0f677d1a816c3c615837cc1",
+    "zh:c54c22b18d48ff9053d899d178d9ffef7d9d19785d9bf310a07d648b7aac075b",
+    "zh:db2eefd55aea48e73384a555c72bac3f7d428e24147bedb64e1a039398e5b903",
+    "zh:ee61666a233533fd2be971091cecc01650561f1585783c381b6f6e8a390198a4",
+    "zh:f569b65999264a9416862bca5cd2a6177d94ccb0424f3a4ef424428912b9cb3c",
+  ]
+}
+
+provider "registry.terraform.io/hashicorp/kubernetes" {
+  version = "3.1.0"
+  hashes = [
+    "h1:oodIAuFMikXNmEtil5MQgP4dfSctUBYQiGJfjbsF3NY=",
+  ]
+}
+
+provider "registry.terraform.io/hashicorp/vault" {
+  version     = "4.8.0"
+  constraints = "~> 4.0"
+  hashes = [
+    "h1:GPfhH6dr1LY0foPBDYv9bEGifx7eSwYqFcEAOWOUxLk=",
+    "h1:aHqgWQhDBMeZO9iUKwJYMlh4q+xNMUlMIcjRbF4d02Y=",
+    "zh:269ab13433f67684012ae7e15876532b0312f5d0d2002a9cf9febb1279ce5ea6",
+    "zh:4babc95bf0c40eb85005db1dc2ca403c46be4a71dd3e409db3711a56f7a5ca0e",
+    "zh:78d5eefdd9e494defcb3c68d282b8f96630502cac21d1ea161f53cfe9bb483b3",
+    "zh:86e27c1c625ecc24446a11eeffc3ac319b36c2b4e51251db8579256a0dbcf136",
+    "zh:a32f31da94824009e26b077374440b52098aecb93c92ff55dc3d31dd37c4ea25",
+    "zh:be0a18c6c0425518bab4fbffd82078b82036a88503b5d76064de551c9f646cbf",
+    "zh:be5a77fdfd36863ebeec79cd12b1d13322ffad6821d157a0b279789fa06b5937",
+    "zh:be8317d142a3caad74c7d936039ae27076a1b2b8312ef5208e2871a5f525977c",
+    "zh:c94a84895a3d9954b80e983eed4603330a5cdbbd8eef5b3c99278c2d1402ef3c",
+    "zh:de1fb712784dd8415f011ca5346a34f87fab6046c730557615247e511dbc7d98",
+    "zh:e3eafae7da550f86cae395d6660b2a0e93ec8d2b0e0e5ef982ec762e961fc952",
+    "zh:ff35fb1ab6add288f0f368981e56f780b50405accd1937131cba1137999c8d83",
+  ]
+}
diff --git a/stacks/ollama/backend.tf b/stacks/ollama/backend.tf
new file mode 100644
index 00000000..3c61d7a6
--- /dev/null
+++ b/stacks/ollama/backend.tf
@@ -0,0 +1,7 @@
+# Generated by Terragrunt. Sig: nIlQXj57tbuaRZEa
+terraform {
+  backend "pg" {
+    conn_str    = "postgres://terraform_state:SBlzGxotNUN6HH9d0S-m@10.0.20.200:5432/terraform_state?sslmode=disable"
+    schema_name = "ollama"
+  }
+}
diff --git a/stacks/ollama/main.tf b/stacks/ollama/main.tf
new file mode 100644
index 00000000..51aaf2b7
--- /dev/null
+++ b/stacks/ollama/main.tf
@@ -0,0 +1,380 @@
+variable "tls_secret_name" {
+  type      = string
+  sensitive = true
+}
+variable "nfs_server" { type = string }
+variable "ollama_host" { type = string }
+
+resource "kubernetes_manifest" "external_secret" {
+  manifest = {
+    apiVersion = "external-secrets.io/v1beta1"
+    kind       = "ExternalSecret"
+    metadata = {
+      name      = "ollama-secrets"
+      namespace = "ollama"
+    }
+    spec = {
+      refreshInterval = "15m"
+      secretStoreRef = {
+        name = "vault-kv"
+        kind = "ClusterSecretStore"
+      }
+      target = {
+        name = "ollama-secrets"
+      }
+      dataFrom = [{
+        extract = {
+          key = "ollama"
+        }
+      }]
+    }
+  }
+  depends_on = [kubernetes_namespace.ollama]
+}
+
+data "kubernetes_secret" "eso_secrets" {
+  metadata {
+    name      = "ollama-secrets"
+    namespace = kubernetes_namespace.ollama.metadata[0].name
+  }
+  depends_on = [kubernetes_manifest.external_secret]
+}
+
+locals {
+  api_credentials = jsondecode(data.kubernetes_secret.eso_secrets.data["api_credentials"])
+}
+
+
+resource "kubernetes_namespace" "ollama" {
+  metadata {
+    name = "ollama"
+    labels = {
+      tier = local.tiers.gpu
+    }
+  }
+}
+
+module "tls_secret" {
+  source          = "../../modules/kubernetes/setup_tls_secret"
+  namespace       = kubernetes_namespace.ollama.metadata[0].name
+  tls_secret_name = var.tls_secret_name
+}
+
+module "nfs_ollama_data_host" {
+  source     = "../../modules/kubernetes/nfs_volume"
+  name       = "ollama-data-host"
+  namespace  = kubernetes_namespace.ollama.metadata[0].name
+  nfs_server = "192.168.1.127"
+  nfs_path   = "/srv/nfs-ssd/ollama"
+}
+
+resource "kubernetes_persistent_volume_claim" "ollama_ui_data_proxmox" {
+  wait_until_bound = false
+  metadata {
+    name      = "ollama-ui-data-proxmox"
+    namespace = kubernetes_namespace.ollama.metadata[0].name
+    annotations = {
+      "resize.topolvm.io/threshold"     = "80%"
+      "resize.topolvm.io/increase"      = "100%"
+      "resize.topolvm.io/storage_limit" = "5Gi"
+    }
+  }
+  spec {
+    access_modes       = ["ReadWriteOnce"]
+    storage_class_name = "proxmox-lvm"
+    resources {
+      requests = {
+        storage = "1Gi"
+      }
+    }
+  }
+}
+
+# resource "helm_release" "ollama" {
+#  namespace = kubernetes_namespace.ollama.metadata[0].name
+#   name      = "ollama"
+
+#   repository = "https://otwld.github.io/ollama-helm/"
+#   chart      = "ollama"
+#   atomic     = true
+
+#   values  = [templatefile("${path.module}/values.yaml", {})]
+#   timeout = 2400
+# }
+
+
+resource "kubernetes_deployment" "ollama" {
+  metadata {
+    name      = "ollama"
+    namespace = kubernetes_namespace.ollama.metadata[0].name
+    labels = {
+      app  = "ollama"
+      tier = local.tiers.gpu
+    }
+  }
+  spec {
+    replicas = 0 # Scaled down — low usage, saves resources + clears ExternalAccessDivergence alert
+    selector {
+      match_labels = {
+        app = "ollama"
+      }
+    }
+    template {
+      metadata {
+        labels = {
+          app = "ollama"
+        }
+        annotations = {
+          "diun.enable"       = "true"
+          "diun.include_tags" = "^\\d+\\.\\d+\\.\\d+$"
+        }
+      }
+      spec {
+        node_selector = {
+          "gpu" = "true"
+        }
+        toleration {
+          key    = "nvidia.com/gpu"
+          value  = "true"
+          effect = "NoSchedule"
+        }
+        container {
+          image = "ollama/ollama:0.6.8"
+          name  = "ollama"
+          env {
+            name  = "OLLAMA_HOST"
+            value = "0.0.0.0:11434"
+          }
+          env {
+            name  = "PATH"
+            value = "/usr/local/nvidia/bin:/usr/local/cuda/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
+          }
+          env {
+            name  = "OLLAMA_KEEP_ALIVE"
+            value = "1h"
+          }
+
+          port {
+            container_port = 11434
+          }
+          volume_mount {
+            name       = "ollama-data"
+            mount_path = "/root/.ollama"
+          }
+          resources {
+            requests = {
+              cpu    = "100m"
+              memory = "256Mi"
+            }
+            limits = {
+              memory           = "256Mi"
+              "nvidia.com/gpu" = "1"
+            }
+          }
+        }
+        volume {
+          name = "ollama-data"
+          persistent_volume_claim {
+            claim_name = module.nfs_ollama_data_host.claim_name
+          }
+        }
+      }
+    }
+  }
+}
+
+resource "kubernetes_service" "ollama" {
+  metadata {
+    name      = "ollama"
+    namespace = kubernetes_namespace.ollama.metadata[0].name
+    labels = {
+      app = "ollama"
+    }
+  }
+
+  spec {
+    selector = {
+      app = "ollama"
+    }
+    port {
+      name = "http"
+      port = 11434
+    }
+  }
+}
+
+# Allow ollama to be connected to from external apps (internal LAN only)
+module "ollama-ingress" {
+  source                  = "../../modules/kubernetes/ingress_factory"
+  namespace               = kubernetes_namespace.ollama.metadata[0].name
+  name                    = "ollama-server"
+  service_name            = "ollama"
+  root_domain             = "viktorbarzin.lan"
+  tls_secret_name         = var.tls_secret_name
+  allow_local_access_only = true
+  ssl_redirect            = false
+  port                    = 11434
+  extra_annotations = {
+    "gethomepage.dev/enabled" = "false"
+  }
+}
+
+# Ollama API ingress for external access (basicAuth protected)
+locals {
+  ollama_api_htpasswd = join("\n", [for name, pass in local.api_credentials : "${name}:${bcrypt(pass, 10)}"])
+}
+
+resource "kubernetes_secret" "ollama_api_basic_auth" {
+  metadata {
+    name      = "ollama-api-basic-auth-secret"
+    namespace = kubernetes_namespace.ollama.metadata[0].name
+  }
+
+  data = {
+    auth = local.ollama_api_htpasswd
+  }
+
+  type = "Opaque"
+  lifecycle {
+    ignore_changes = [data]
+  }
+}
+
+resource "kubernetes_manifest" "ollama_api_basic_auth_middleware" {
+  manifest = {
+    apiVersion = "traefik.io/v1alpha1"
+    kind       = "Middleware"
+    metadata = {
+      name      = "ollama-api-basic-auth"
+      namespace = kubernetes_namespace.ollama.metadata[0].name
+    }
+    spec = {
+      basicAuth = {
+        secret = kubernetes_secret.ollama_api_basic_auth.metadata[0].name
+      }
+    }
+  }
+}
+
+module "ollama-api-ingress" {
+  source          = "../../modules/kubernetes/ingress_factory"
+  dns_type        = "non-proxied"
+  namespace       = kubernetes_namespace.ollama.metadata[0].name
+  name            = "ollama-api"
+  service_name    = "ollama"
+  root_domain     = "viktorbarzin.me"
+  tls_secret_name = var.tls_secret_name
+  ssl_redirect    = true
+  port            = 11434
+  extra_annotations = {
+    "traefik.ingress.kubernetes.io/router.middlewares" = "ollama-ollama-api-basic-auth@kubernetescrd,traefik-rate-limit@kubernetescrd,traefik-crowdsec@kubernetescrd"
+    "gethomepage.dev/enabled"                          = "false"
+  }
+}
+
+# Web UI
+resource "kubernetes_deployment" "ollama-ui" {
+  metadata {
+    name      = "ollama-ui"
+    namespace = kubernetes_namespace.ollama.metadata[0].name
+    labels = {
+      app  = "ollama-ui"
+      tier = local.tiers.gpu
+    }
+  }
+  spec {
+    # Disabled: reduce cluster memory pressure (2026-03-14 OOM incident)
+    replicas = 0
+    strategy {
+      type = "Recreate"
+    }
+    selector {
+      match_labels = {
+        app = "ollama-ui"
+      }
+    }
+    template {
+      metadata {
+        labels = {
+          app = "ollama-ui"
+        }
+        annotations = {
+          "dependency.kyverno.io/wait-for" = "ollama.ollama:11434"
+        }
+      }
+      spec {
+        container {
+          # image = "ghcr.io/open-webui/open-webui:main"
+          image = "ghcr.io/open-webui/open-webui:v0.8.12"
+          name  = "ollama-ui"
+          env {
+            name  = "OLLAMA_BASE_URL"
+            value = "http://${var.ollama_host}:11434"
+          }
+
+          port {
+            container_port = 8080
+          }
+          volume_mount {
+            name       = "data"
+            mount_path = "/app/backend/data"
+          }
+          resources {
+            requests = {
+              cpu    = "25m"
+              memory = "256Mi"
+            }
+            limits = {
+              memory = "256Mi"
+            }
+          }
+        }
+        volume {
+          name = "data"
+          persistent_volume_claim {
+            claim_name = kubernetes_persistent_volume_claim.ollama_ui_data_proxmox.metadata[0].name
+          }
+        }
+      }
+    }
+  }
+}
+
+resource "kubernetes_service" "ollama-ui" {
+  metadata {
+    name      = "ollama-ui"
+    namespace = kubernetes_namespace.ollama.metadata[0].name
+    labels = {
+      app = "dashy"
+    }
+  }
+
+  spec {
+    selector = {
+      app = "ollama-ui"
+    }
+    port {
+      name        = "http"
+      port        = 80
+      target_port = 8080
+    }
+  }
+}
+
+module "ingress" {
+  source          = "../../modules/kubernetes/ingress_factory"
+  dns_type        = "proxied"
+  namespace       = kubernetes_namespace.ollama.metadata[0].name
+  name            = "ollama"
+  service_name    = "ollama-ui"
+  tls_secret_name = var.tls_secret_name
+  port            = 80
+  extra_annotations = {
+    "gethomepage.dev/enabled"      = "true"
+    "gethomepage.dev/name"         = "Ollama"
+    "gethomepage.dev/description"  = "Local LLM inference"
+    "gethomepage.dev/icon"         = "ollama.png"
+    "gethomepage.dev/group"        = "AI & Data"
+    "gethomepage.dev/pod-selector" = ""
+  }
+}
diff --git a/stacks/ollama/providers.tf b/stacks/ollama/providers.tf
new file mode 100644
index 00000000..b337a2e9
--- /dev/null
+++ b/stacks/ollama/providers.tf
@@ -0,0 +1,33 @@
+# Generated by Terragrunt. Sig: nIlQXj57tbuaRZEa
+terraform {
+  required_providers {
+    vault = {
+      source  = "hashicorp/vault"
+      version = "~> 4.0"
+    }
+    cloudflare = {
+      source  = "cloudflare/cloudflare"
+      version = "~> 4"
+    }
+  }
+}
+
+variable "kube_config_path" {
+  type    = string
+  default = "~/.kube/config"
+}
+
+provider "kubernetes" {
+  config_path = var.kube_config_path
+}
+
+provider "helm" {
+  kubernetes = {
+    config_path = var.kube_config_path
+  }
+}
+
+provider "vault" {
+  address          = "https://vault.viktorbarzin.me"
+  skip_child_token = true
+}
diff --git a/stacks/kured/secrets b/stacks/ollama/secrets
similarity index 100%
rename from stacks/kured/secrets
rename to stacks/ollama/secrets
diff --git a/stacks/chrome-service/terragrunt.hcl b/stacks/ollama/terragrunt.hcl
similarity index 64%
rename from stacks/chrome-service/terragrunt.hcl
rename to stacks/ollama/terragrunt.hcl
index 0d1c8e53..f4c920ab 100644
--- a/stacks/chrome-service/terragrunt.hcl
+++ b/stacks/ollama/terragrunt.hcl
@@ -6,3 +6,8 @@ dependency "platform" {
   config_path  = "../platform"
   skip_outputs = true
 }
+
+dependency "vault" {
+  config_path  = "../vault"
+  skip_outputs = true
+}
diff --git a/stacks/ollama/values.yaml b/stacks/ollama/values.yaml
new file mode 100644
index 00000000..fe92927a
--- /dev/null
+++ b/stacks/ollama/values.yaml
@@ -0,0 +1,28 @@
+ollama:
+  gpu:
+    # -- Enable GPU integration
+    enabled: true
+
+    # -- GPU type: 'nvidia' or 'amd'
+    type: "nvidia"
+
+    # -- Specify the number of GPU to 1
+    number: 1
+
+  # -- List of models to pull at container startup
+  models:
+    pull:
+      - llama3
+
+persistentVolume:
+  enabled: true
+  existingClaim: "ollama-pvc"
+
+nodeSelector:
+  gpu: "true"
+
+tolerations:
+  - key: "nvidia.com/gpu"
+    operator: "Equal"
+    value: "true"
+    effect: "NoSchedule"
diff --git a/stacks/onlyoffice/main.tf b/stacks/onlyoffice/main.tf
index a81bbed9..190525f0 100644
--- a/stacks/onlyoffice/main.tf
+++ b/stacks/onlyoffice/main.tf
@@ -16,10 +16,6 @@ resource "kubernetes_namespace" "onlyoffice" {
       "resource-governance/custom-quota"      = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -142,7 +138,7 @@ resource "kubernetes_deployment" "onlyoffice-document-server" {
           app = "onlyoffice-document-server"
         }
         annotations = {
-          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis.redis:6379"
         }
       }
       spec {
@@ -224,10 +220,6 @@ resource "kubernetes_deployment" "onlyoffice-document-server" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "onlyoffice" {
diff --git a/stacks/openclaw/files/exporter.py b/stacks/openclaw/files/exporter.py
deleted file mode 100644
index e8d06191..00000000
--- a/stacks/openclaw/files/exporter.py
+++ /dev/null
@@ -1,264 +0,0 @@
-#!/usr/bin/env python3
-"""OpenClaw / Codex usage exporter.
-
-Reads ~/.openclaw/agents/*/sessions/*.jsonl (assistant messages with usage)
-and ~/.openclaw/agents/*/agent/auth-state.json (OAuth profiles), then exposes
-Prometheus text-format metrics on :9099/metrics. Stdlib only — no pip install
-needed at startup.
-
-Metrics (all cumulative-since-session-start; use Prometheus increase()/rate()
-for windowed views):
-
-  openclaw_codex_messages_total{provider,model,session_kind}    counter
-  openclaw_codex_input_tokens_total{provider,model}             counter
-  openclaw_codex_output_tokens_total{provider,model}            counter
-  openclaw_codex_cache_read_tokens_total{provider,model}        counter
-  openclaw_codex_cache_write_tokens_total{provider,model}       counter
-  openclaw_codex_message_errors_total{provider,model,reason}    counter
-  openclaw_codex_active_sessions{kind}                          gauge
-  openclaw_codex_oauth_expiry_seconds{provider,account}         gauge
-  openclaw_codex_last_run_timestamp                             gauge
-  openclaw_codex_exporter_scrape_duration_ms                    gauge
-"""
-import glob
-import json
-import os
-import re
-import time
-from datetime import datetime
-from http.server import BaseHTTPRequestHandler, HTTPServer
-from threading import Lock
-
-OPENCLAW_HOME = os.environ.get("OPENCLAW_HOME", "/home/node/.openclaw")
-PORT = int(os.environ.get("METRICS_PORT", "9099"))
-CACHE_SEC = float(os.environ.get("CACHE_SEC", "5"))
-SKIP_FRAGMENTS = (".broken.", ".reset.", ".deleted.", ".bak.")
-SESSION_RE = re.compile(r"^([0-9a-f-]{36})\.jsonl$")
-
-_lock = Lock()
-_cache = {"text": "", "ts": 0.0}
-
-
-def _esc(value: str) -> str:
-    return str(value).replace("\\", "\\\\").replace('"', '\\"').replace("\n", "\\n")
-
-
-def _line(name: str, labels: dict, value) -> str:
-    if labels:
-        rendered = ",".join(f'{k}="{_esc(v)}"' for k, v in sorted(labels.items()))
-        return f"{name}{{{rendered}}} {value}"
-    return f"{name} {value}"
-
-
-def _kind_for(session_id: str, sessions_index: dict) -> str:
-    for key, val in sessions_index.items():
-        if val.get("sessionId") != session_id:
-            continue
-        if key.startswith("agent:main:cron:"):
-            return "cron"
-        if key.startswith("telegram:slash:"):
-            return "telegram-slash"
-        if key.startswith("agent:main:"):
-            return "main"
-        surface = (val.get("origin") or {}).get("surface")
-        if surface:
-            return surface
-        return key.split(":", 1)[0]
-    return "unknown"
-
-
-def _parse_ts(value):
-    if isinstance(value, (int, float)):
-        return float(value)
-    if isinstance(value, str):
-        try:
-            return datetime.fromisoformat(value.replace("Z", "+00:00")).timestamp()
-        except ValueError:
-            return 0.0
-    return 0.0
-
-
-def _build_text() -> str:
-    start = time.monotonic()
-    out = []
-
-    sessions_index: dict = {}
-    for sp in glob.glob(os.path.join(OPENCLAW_HOME, "agents/*/sessions/sessions.json")):
-        try:
-            with open(sp) as f:
-                sessions_index.update(json.load(f))
-        except Exception:
-            pass
-
-    msg_count: dict = {}
-    in_tok: dict = {}
-    out_tok: dict = {}
-    cr_tok: dict = {}
-    cw_tok: dict = {}
-    err_count: dict = {}
-    latest_ts = 0.0
-
-    for jsonl in glob.glob(os.path.join(OPENCLAW_HOME, "agents/*/sessions/*.jsonl")):
-        bn = os.path.basename(jsonl)
-        if any(s in bn for s in SKIP_FRAGMENTS):
-            continue
-        m = SESSION_RE.match(bn)
-        if not m:
-            continue
-        sid = m.group(1)
-        kind = _kind_for(sid, sessions_index)
-        try:
-            with open(jsonl) as f:
-                for line in f:
-                    line = line.strip()
-                    if not line:
-                        continue
-                    try:
-                        obj = json.loads(line)
-                    except Exception:
-                        continue
-                    if obj.get("type") != "message":
-                        continue
-                    msg = obj.get("message") or {}
-                    if msg.get("role") != "assistant":
-                        continue
-                    provider = msg.get("provider") or "unknown"
-                    model = msg.get("model") or "unknown"
-                    usage = msg.get("usage") or {}
-                    ts = _parse_ts(obj.get("timestamp"))
-                    if ts > latest_ts:
-                        latest_ts = ts
-                    if msg.get("stopReason") == "error":
-                        reason = (msg.get("errorMessage") or "unknown")[:80]
-                        ek = (provider, model, reason)
-                        err_count[ek] = err_count.get(ek, 0) + 1
-                        continue
-                    mk = (provider, model, kind)
-                    msg_count[mk] = msg_count.get(mk, 0) + 1
-                    pm = (provider, model)
-                    in_tok[pm] = in_tok.get(pm, 0) + (usage.get("input") or 0)
-                    out_tok[pm] = out_tok.get(pm, 0) + (usage.get("output") or 0)
-                    cr_tok[pm] = cr_tok.get(pm, 0) + (usage.get("cacheRead") or 0)
-                    cw_tok[pm] = cw_tok.get(pm, 0) + (usage.get("cacheWrite") or 0)
-        except Exception:
-            pass
-
-    out.append("# HELP openclaw_codex_messages_total Cumulative assistant messages")
-    out.append("# TYPE openclaw_codex_messages_total counter")
-    for (p, mdl, k), c in msg_count.items():
-        out.append(_line("openclaw_codex_messages_total",
-                         {"provider": p, "model": mdl, "session_kind": k}, c))
-
-    for name, src, hlp in [
-        ("openclaw_codex_input_tokens_total", in_tok, "Cumulative input tokens"),
-        ("openclaw_codex_output_tokens_total", out_tok, "Cumulative output tokens"),
-        ("openclaw_codex_cache_read_tokens_total", cr_tok, "Cumulative cache-read tokens"),
-        ("openclaw_codex_cache_write_tokens_total", cw_tok, "Cumulative cache-write tokens"),
-    ]:
-        out.append(f"# HELP {name} {hlp}")
-        out.append(f"# TYPE {name} counter")
-        for (p, mdl), c in src.items():
-            out.append(_line(name, {"provider": p, "model": mdl}, c))
-
-    out.append("# HELP openclaw_codex_message_errors_total Cumulative assistant errors")
-    out.append("# TYPE openclaw_codex_message_errors_total counter")
-    for (p, mdl, r), c in err_count.items():
-        out.append(_line("openclaw_codex_message_errors_total",
-                         {"provider": p, "model": mdl, "reason": r}, c))
-
-    out.append("# HELP openclaw_codex_active_sessions Active sessions in sessions.json")
-    out.append("# TYPE openclaw_codex_active_sessions gauge")
-    kc: dict = {}
-    for k in sessions_index:
-        if k.startswith("agent:main:cron:"):
-            kk = "cron"
-        elif k.startswith("telegram:slash:"):
-            kk = "telegram-slash"
-        elif k.startswith("agent:main:"):
-            kk = "main"
-        else:
-            kk = k.split(":", 1)[0]
-        kc[kk] = kc.get(kk, 0) + 1
-    for k, c in kc.items():
-        out.append(_line("openclaw_codex_active_sessions", {"kind": k}, c))
-
-    if latest_ts:
-        out.append("# HELP openclaw_codex_last_run_timestamp Unix ts of newest assistant message")
-        out.append("# TYPE openclaw_codex_last_run_timestamp gauge")
-        out.append(_line("openclaw_codex_last_run_timestamp", {}, latest_ts))
-
-    out.append("# HELP openclaw_codex_oauth_expiry_seconds Seconds until OAuth token expires")
-    out.append("# TYPE openclaw_codex_oauth_expiry_seconds gauge")
-    now = time.time()
-    for af in glob.glob(os.path.join(OPENCLAW_HOME, "agents/*/agent/auth-profiles.json")):
-        try:
-            with open(af) as f:
-                data = json.load(f)
-        except Exception:
-            continue
-        # Schema: {"version": 1, "profiles": {"<id>": {...}}}.
-        # `expires` is Unix milliseconds.
-        for profile in (data.get("profiles") or {}).values():
-            exp_ms = profile.get("expires")
-            if not isinstance(exp_ms, (int, float)):
-                continue
-            exp_ts = exp_ms / 1000.0
-            out.append(_line(
-                "openclaw_codex_oauth_expiry_seconds",
-                {
-                    "provider": profile.get("provider", "unknown"),
-                    "account": profile.get("email") or profile.get("account") or "unknown",
-                    "plan": profile.get("chatgptPlanType") or "unknown",
-                },
-                max(0, exp_ts - now),
-            ))
-
-    out.append("# HELP openclaw_codex_exporter_scrape_duration_ms Last scrape duration ms")
-    out.append("# TYPE openclaw_codex_exporter_scrape_duration_ms gauge")
-    out.append(_line("openclaw_codex_exporter_scrape_duration_ms", {},
-                     (time.monotonic() - start) * 1000))
-
-    return "\n".join(out) + "\n"
-
-
-class Handler(BaseHTTPRequestHandler):
-    def do_GET(self):
-        if self.path == "/healthz":
-            self.send_response(200)
-            self.send_header("Content-Type", "text/plain")
-            self.end_headers()
-            self.wfile.write(b"ok\n")
-            return
-        if self.path != "/metrics":
-            self.send_response(404)
-            self.end_headers()
-            return
-        with _lock:
-            now = time.time()
-            if now - _cache["ts"] > CACHE_SEC:
-                try:
-                    _cache["text"] = _build_text()
-                except Exception as exc:  # noqa: BLE001
-                    _cache["text"] = (
-                        f'openclaw_codex_exporter_errors_total{{kind="scrape"}} 1\n'
-                        f'# scrape error: {_esc(str(exc))[:200]}\n'
-                    )
-                _cache["ts"] = now
-            body = _cache["text"].encode()
-        self.send_response(200)
-        self.send_header("Content-Type", "text/plain; version=0.0.4; charset=utf-8")
-        self.send_header("Content-Length", str(len(body)))
-        self.end_headers()
-        self.wfile.write(body)
-
-    def log_message(self, *args, **kwargs):
-        pass
-
-
-def main():
-    print(f"openclaw exporter listening on :{PORT}", flush=True)
-    HTTPServer(("0.0.0.0", PORT), Handler).serve_forever()
-
-
-if __name__ == "__main__":
-    main()
diff --git a/stacks/openclaw/main.tf b/stacks/openclaw/main.tf
index 665b86eb..ae26459b 100644
--- a/stacks/openclaw/main.tf
+++ b/stacks/openclaw/main.tf
@@ -23,10 +23,6 @@ resource "kubernetes_namespace" "openclaw" {
       "resource-governance/custom-quota"      = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -131,12 +127,8 @@ resource "kubernetes_config_map" "openclaw_config" {
             mode = "off"
           }
           model = {
-            # ChatGPT Plus OAuth via openai-codex plugin (account: ancaelena98@gmail.com).
-            # gpt-5.4-mini is the only mini variant the Codex backend accepts for Plus tier;
-            # gpt-5-mini / gpt-5.1-codex-mini return model_not_found / "not supported with
-            # ChatGPT account". Plus rate-card: 1,200–7,000 local msgs / 5h on gpt-5.4-mini.
-            primary   = "openai-codex/gpt-5.4-mini"
-            fallbacks = ["openai-codex/gpt-5.5", "nim/qwen/qwen3-coder-480b-a35b-instruct", "modelrelay/auto-fastest"]
+            primary   = "nim/qwen/qwen3.5-397b-a17b"
+            fallbacks = ["nim/mistralai/mistral-large-3-675b-instruct-2512", "nim/nvidia/llama-3.1-nemotron-ultra-253b-v1", "modelrelay/auto-fastest"]
           }
           models = {
             "modelrelay/auto-fastest"                                = {}
@@ -150,8 +142,6 @@ resource "kubernetes_config_map" "openclaw_config" {
             "llama-as-openai/Llama-4-Scout-17B-16E-Instruct-FP8"     = {}
             "openrouter/stepfun/step-3.5-flash:free"                 = {}
             "openrouter/arcee-ai/trinity-large-preview:free"         = {}
-            "openai-codex/gpt-5.4-mini"                              = {}
-            "openai-codex/gpt-5.5"                                   = {}
           }
         }
       }
@@ -261,19 +251,6 @@ resource "random_password" "gateway_token" {
   special = false
 }
 
-# Prometheus exporter script — read by the openclaw-exporter sidecar.
-# Stdlib-only Python so no pip install at startup. Reads sessions JSONL +
-# auth-profiles.json from the NFS-backed openclaw home volume (mounted ro).
-resource "kubernetes_config_map" "openclaw_exporter" {
-  metadata {
-    name      = "openclaw-exporter"
-    namespace = kubernetes_namespace.openclaw.metadata[0].name
-  }
-  data = {
-    "exporter.py" = file("${path.module}/files/exporter.py")
-  }
-}
-
 module "nfs_tools_host" {
   source     = "../../modules/kubernetes/nfs_volume"
   name       = "openclaw-tools-host"
@@ -363,11 +340,6 @@ resource "kubernetes_deployment" "openclaw" {
         }
         annotations = {
           "reloader.stakater.com/search" = "true"
-          # Prometheus auto-discovers pods with these annotations.
-          # Scraped by the openclaw-exporter sidecar — exposes /metrics on :9099.
-          "prometheus.io/scrape" = "true"
-          "prometheus.io/port"   = "9099"
-          "prometheus.io/path"   = "/metrics"
         }
       }
       spec {
@@ -407,10 +379,8 @@ resource "kubernetes_deployment" "openclaw" {
         # Main container: OpenClaw
         container {
           name    = "openclaw"
-          image   = "ghcr.io/openclaw/openclaw:2026.5.4"
-          # Doctor --fix auto-promotes the highest-tier codex model (gpt-5-pro) after
-          # auth-profile-based model discovery; pin gpt-5.4-mini back to default after it.
-          command = ["sh", "-c", "node openclaw.mjs doctor --fix 2>/dev/null; node openclaw.mjs models set openai-codex/gpt-5.4-mini 2>/dev/null; exec node openclaw.mjs gateway --allow-unconfigured --bind lan"]
+          image   = "ghcr.io/openclaw/openclaw:2026.2.26"
+          command = ["sh", "-c", "node openclaw.mjs doctor --fix 2>/dev/null; exec node openclaw.mjs gateway --allow-unconfigured --bind lan"]
           port {
             container_port = 18789
           }
@@ -467,6 +437,11 @@ resource "kubernetes_deployment" "openclaw" {
             name  = "UPTIME_KUMA_PASSWORD"
             value = local.skill_secrets["uptime_kuma_password"]
           }
+          # Skill secrets - Slack
+          env {
+            name  = "SLACK_WEBHOOK_URL"
+            value = local.skill_secrets["slack_webhook"]
+          }
           # Memory API
           env {
             name  = "MEMORY_API_URL"
@@ -536,54 +511,6 @@ resource "kubernetes_deployment" "openclaw" {
           }
         }
 
-        # Sidecar: openclaw-exporter — Prometheus exporter for Codex/OAuth usage.
-        # Reads sessions JSONL files + auth-profiles.json, exposes /metrics on :9099.
-        # Stdlib-only Python; no pip install at startup.
-        container {
-          name    = "openclaw-exporter"
-          image   = "docker.io/library/python:3.12-slim"
-          command = ["python3", "/scripts/exporter.py"]
-          port {
-            container_port = 9099
-            name           = "metrics"
-          }
-          env {
-            name  = "OPENCLAW_HOME"
-            value = "/home/node/.openclaw"
-          }
-          env {
-            name  = "METRICS_PORT"
-            value = "9099"
-          }
-          volume_mount {
-            name       = "openclaw-exporter-script"
-            mount_path = "/scripts"
-            read_only  = true
-          }
-          volume_mount {
-            name       = "openclaw-home"
-            mount_path = "/home/node/.openclaw"
-            read_only  = true
-          }
-          readiness_probe {
-            http_get {
-              path = "/healthz"
-              port = 9099
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 30
-          }
-          resources {
-            requests = {
-              cpu    = "10m"
-              memory = "64Mi"
-            }
-            limits = {
-              memory = "128Mi"
-            }
-          }
-        }
-
         # Sidecar: modelrelay — auto-routes to fastest healthy free model
         container {
           name  = "modelrelay"
@@ -672,20 +599,9 @@ resource "kubernetes_deployment" "openclaw" {
             name = kubernetes_config_map.openclaw_config.metadata[0].name
           }
         }
-        volume {
-          name = "openclaw-exporter-script"
-          config_map {
-            name         = kubernetes_config_map.openclaw_exporter.metadata[0].name
-            default_mode = "0555"
-          }
-        }
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "openclaw" {
@@ -887,10 +803,6 @@ resource "kubernetes_deployment" "task_webhook" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "task_webhook" {
@@ -913,19 +825,15 @@ resource "kubernetes_service" "task_webhook" {
 }
 
 module "task_webhook_ingress" {
-  source           = "../../modules/kubernetes/ingress_factory"
-  namespace        = kubernetes_namespace.openclaw.metadata[0].name
-  name             = "task-webhook"
-  tls_secret_name  = var.tls_secret_name
-  host             = "task-webhook"
-  port             = 80
-  external_monitor = false
+  source          = "../../modules/kubernetes/ingress_factory"
+  namespace       = kubernetes_namespace.openclaw.metadata[0].name
+  name            = "task-webhook"
+  tls_secret_name = var.tls_secret_name
+  host            = "task-webhook"
+  port            = 80
 }
 
-# --- Shared ServiceAccount: grants pod-exec into the openclaw pod ---
-# Used by the task_processor CronJob (below). Previously also used by the
-# cluster_healthcheck CronJob, which has been decommissioned — the local
-# `scripts/cluster_healthcheck.sh` is now the single authoritative runner.
+# --- CronJob: Scheduled cluster health check ---
 
 resource "kubernetes_service_account" "healthcheck" {
   metadata {
@@ -968,6 +876,72 @@ resource "kubernetes_role_binding" "healthcheck_exec" {
   }
 }
 
+resource "kubernetes_cron_job_v1" "cluster_healthcheck" {
+  metadata {
+    name      = "cluster-healthcheck"
+    namespace = kubernetes_namespace.openclaw.metadata[0].name
+    labels = {
+      app  = "cluster-healthcheck"
+      tier = local.tiers.aux
+    }
+  }
+  spec {
+    schedule                      = "0 */8 * * *"
+    concurrency_policy            = "Forbid"
+    failed_jobs_history_limit     = 3
+    successful_jobs_history_limit = 3
+
+    job_template {
+      metadata {
+        labels = {
+          app = "cluster-healthcheck"
+        }
+      }
+      spec {
+        active_deadline_seconds = 300
+        backoff_limit           = 0
+        template {
+          metadata {
+            labels = {
+              app = "cluster-healthcheck"
+            }
+          }
+          spec {
+            service_account_name = kubernetes_service_account.healthcheck.metadata[0].name
+            restart_policy       = "Never"
+
+            container {
+              name  = "healthcheck"
+              image = "bitnami/kubectl:latest"
+              command = ["bash", "-c", <<-EOF
+                # Find the openclaw pod
+                POD=$(kubectl get pods -n openclaw -l app=openclaw -o jsonpath='{.items[0].metadata.name}' 2>/dev/null)
+                if [ -z "$POD" ]; then
+                  echo "ERROR: OpenClaw pod not found"
+                  exit 1
+                fi
+                echo "Executing health check in pod $POD..."
+                kubectl exec -n openclaw "$POD" -c openclaw -- bash /workspace/infra/.claude/cluster-health.sh
+              EOF
+              ]
+
+              resources {
+                requests = {
+                  cpu    = "50m"
+                  memory = "64Mi"
+                }
+                limits = {
+                  memory = "64Mi"
+                }
+              }
+            }
+          }
+        }
+      }
+    }
+  }
+}
+
 # --- CronJob: Task processor — polls Forgejo issues and triggers OpenClaw ---
 
 resource "kubernetes_cron_job_v1" "task_processor" {
@@ -992,9 +966,8 @@ resource "kubernetes_cron_job_v1" "task_processor" {
         }
       }
       spec {
-        active_deadline_seconds    = 600
-        backoff_limit              = 0
-        ttl_seconds_after_finished = 86400
+        active_deadline_seconds = 600
+        backoff_limit           = 0
         template {
           metadata {
             labels = {
@@ -1059,10 +1032,6 @@ resource "kubernetes_cron_job_v1" "task_processor" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # --- OpenLobster: Multi-user Telegram AI assistant (trial) ---
@@ -1206,7 +1175,7 @@ resource "kubernetes_deployment" "openlobster" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/osm_routing/main.tf b/stacks/osm_routing/main.tf
index 9e031980..760d4deb 100644
--- a/stacks/osm_routing/main.tf
+++ b/stacks/osm_routing/main.tf
@@ -14,10 +14,6 @@ resource "kubernetes_namespace" "osm-routing" {
       "resource-governance/custom-quota" = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_resource_quota_v1" "osm_routing" {
@@ -112,10 +108,6 @@ resource "kubernetes_deployment" "osrm-foot" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "osrm-foot" {
@@ -197,10 +189,6 @@ resource "kubernetes_deployment" "osrm-bicycle" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "osrm-bicycle" {
@@ -286,10 +274,6 @@ resource "kubernetes_deployment" "otp" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "otp" {
diff --git a/stacks/owntracks/.terraform.lock.hcl b/stacks/owntracks/.terraform.lock.hcl
index fabbc047..a1ca7484 100644
--- a/stacks/owntracks/.terraform.lock.hcl
+++ b/stacks/owntracks/.terraform.lock.hcl
@@ -24,14 +24,6 @@ provider "registry.terraform.io/cloudflare/cloudflare" {
   ]
 }
 
-provider "registry.terraform.io/goauthentik/authentik" {
-  version     = "2024.12.1"
-  constraints = "~> 2024.10"
-  hashes = [
-    "h1:roBMd+gi+TGgikH/bMzEI8JfvJiMAQWt+8FmokCrQIs=",
-  ]
-}
-
 provider "registry.terraform.io/hashicorp/helm" {
   version = "3.1.1"
   hashes = [
diff --git a/stacks/owntracks/dawarich-hook.lua b/stacks/owntracks/dawarich-hook.lua
deleted file mode 100644
index 8238dedc..00000000
--- a/stacks/owntracks/dawarich-hook.lua
+++ /dev/null
@@ -1,82 +0,0 @@
--- ot-recorder Lua hook: forward every location publish to Dawarich.
--- Loaded by ot-recorder via `--lua-script`. The hook() function is invoked
--- synchronously per publish; we fork curl with `&` to keep it fire-and-forget.
--- Dawarich's points table has UNIQUE (lonlat, timestamp, user_id) — duplicates
--- are safely dropped. The .rec file is always written regardless of hook result,
--- so a Dawarich 5xx loses nothing long-term (re-playable via backfill Job).
-
-local function escape_shell_single(s)
-  return "'" .. tostring(s):gsub("'", "'\\''") .. "'"
-end
-
-local function json_escape_string(s)
-  return (s:gsub("\\", "\\\\")
-           :gsub('"', '\\"')
-           :gsub("\n", "\\n")
-           :gsub("\r", "\\r")
-           :gsub("\t", "\\t"))
-end
-
--- Minimal JSON serializer — scalars, arrays, maps. Owntracks payloads are
--- all primitive/flat; no bignum or cyclic-ref concerns.
-local function to_json(v)
-  local t = type(v)
-  if t == "nil" then return "null" end
-  if t == "number" then return tostring(v) end
-  if t == "boolean" then return tostring(v) end
-  if t == "string" then return '"' .. json_escape_string(v) .. '"' end
-  if t == "table" then
-    if #v > 0 or next(v) == nil then
-      local parts = {}
-      for i, x in ipairs(v) do parts[i] = to_json(x) end
-      return "[" .. table.concat(parts, ",") .. "]"
-    end
-    local parts = {}
-    for k, x in pairs(v) do
-      parts[#parts + 1] = '"' .. json_escape_string(tostring(k)) .. '":' .. to_json(x)
-    end
-    return "{" .. table.concat(parts, ",") .. "}"
-  end
-  return "null"
-end
-
-function otr_init()
-  otr.log("dawarich-bridge: init")
-  if not os.getenv("DAWARICH_API_KEY") then
-    otr.log("dawarich-bridge: WARN DAWARICH_API_KEY unset — hook will skip")
-  end
-end
-
-function otr_exit()
-  otr.log("dawarich-bridge: exit")
-end
-
-function otr_hook(topic, _type, data)
-  if _type ~= "location" then return end
-  local api_key = os.getenv("DAWARICH_API_KEY")
-  if not api_key or api_key == "" then
-    otr.log("dawarich-bridge: DAWARICH_API_KEY missing — dropping point")
-    return
-  end
-  -- Strip the base64 user avatar: ot-recorder appends a ~120KB `face` field
-  -- to enriched payloads which pushes the curl command past ARG_MAX (code=7
-  -- "Argument list too long"). Dawarich doesn't need it.
-  data.face = nil
-  local url = "https://dawarich.viktorbarzin.me/api/v1/owntracks/points?api_key=" .. api_key
-  local payload = to_json(data)
-  local cmd = table.concat({
-    "curl -sS -o /dev/null --max-time 5 -X POST",
-    "-H 'Content-Type: application/json'",
-    "-d", escape_shell_single(payload),
-    escape_shell_single(url),
-    "&",
-  }, " ")
-  local ok, reason, code = os.execute(cmd)
-  if not ok then
-    otr.log("dawarich-bridge: FAIL tst=" .. tostring(data.tst) ..
-            " reason=" .. tostring(reason) .. " code=" .. tostring(code) ..
-            " cmd=" .. cmd)
-  else
-    otr.log("dawarich-bridge: ok tst=" .. tostring(data.tst))
-  end
-end
diff --git a/stacks/owntracks/main.tf b/stacks/owntracks/main.tf
index 38608ebf..a38909be 100644
--- a/stacks/owntracks/main.tf
+++ b/stacks/owntracks/main.tf
@@ -52,10 +52,6 @@ resource "kubernetes_namespace" "owntracks" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -81,18 +77,29 @@ resource "kubernetes_secret" "basic_auth" {
 
   type = "Opaque"
   lifecycle {
-    # DRIFT_WORKAROUND: htpasswd bcrypt hashes are non-deterministic per apply; would cause perpetual diff. Reviewed 2026-04-18.
     ignore_changes = [data]
   }
 }
 
-resource "kubernetes_config_map" "dawarich_hook" {
+resource "kubernetes_persistent_volume_claim" "data_proxmox" {
+  wait_until_bound = false
   metadata {
-    name      = "dawarich-hook"
+    name      = "owntracks-data-proxmox"
     namespace = kubernetes_namespace.owntracks.metadata[0].name
+    annotations = {
+      "resize.topolvm.io/threshold"     = "80%"
+      "resize.topolvm.io/increase"      = "100%"
+      "resize.topolvm.io/storage_limit" = "5Gi"
+    }
   }
-  data = {
-    "dawarich-hook.lua" = file("${path.module}/dawarich-hook.lua")
+  spec {
+    access_modes       = ["ReadWriteOnce"]
+    storage_class_name = "proxmox-lvm"
+    resources {
+      requests = {
+        storage = "1Gi"
+      }
+    }
   }
 }
 
@@ -134,26 +141,13 @@ resource "kubernetes_deployment" "owntracks" {
           image = "owntracks/recorder:1.0.1"
           name  = "owntracks"
           port {
-            name           = "http"
+            name           = "https"
             container_port = 8083
           }
-          # ot-recorder 1.0.1 has no OTR_HTTPHOOK; forwarding to Dawarich is
-          # done via a Lua hook script loaded with --lua-script. The script
-          # reads DAWARICH_API_KEY from env and fires curl fire-and-forget.
-          args = ["--lua-script", "/hook/dawarich-hook.lua", "owntracks/#"]
           env {
             name  = "OTR_PORT"
             value = "0"
           }
-          env {
-            name = "DAWARICH_API_KEY"
-            value_from {
-              secret_key_ref {
-                name = "owntracks-secrets"
-                key  = "dawarich_api_key"
-              }
-            }
-          }
 
           volume_mount {
             name       = "data"
@@ -163,11 +157,6 @@ resource "kubernetes_deployment" "owntracks" {
             name       = "data"
             mount_path = "/config"
           }
-          volume_mount {
-            name       = "hook"
-            mount_path = "/hook"
-            read_only  = true
-          }
           resources {
             requests = {
               cpu    = "10m"
@@ -181,22 +170,12 @@ resource "kubernetes_deployment" "owntracks" {
         volume {
           name = "data"
           persistent_volume_claim {
-            claim_name = "owntracks-data-encrypted"
-          }
-        }
-        volume {
-          name = "hook"
-          config_map {
-            name = kubernetes_config_map.dawarich_hook.metadata[0].name
+            claim_name = kubernetes_persistent_volume_claim.data_proxmox.metadata[0].name
           }
         }
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 
@@ -214,11 +193,8 @@ resource "kubernetes_service" "owntracks" {
       app = "owntracks"
     }
     port {
-      # Recorder listens plain HTTP on 8083 (OTR_PORT=0 disables HTTPS).
-      # Port name/number drive Traefik's backend-scheme inference — must be
-      # http/80 so it doesn't try TLS against a plain socket (previous 500s).
-      name        = "http"
-      port        = 80
+      name        = "https"
+      port        = 443
       target_port = 8083
       protocol    = "TCP"
     }
@@ -231,7 +207,7 @@ module "ingress" {
   namespace       = kubernetes_namespace.owntracks.metadata[0].name
   name            = "owntracks"
   tls_secret_name = var.tls_secret_name
-  port            = 80
+  port            = 443
   extra_annotations = {
     "traefik.ingress.kubernetes.io/router.middlewares" = "owntracks-basic-auth@kubernetescrd,traefik-rate-limit@kubernetescrd,traefik-csp-headers@kubernetescrd,traefik-crowdsec@kubernetescrd"
     "gethomepage.dev/enabled"                          = "true"
diff --git a/stacks/owntracks/providers.tf b/stacks/owntracks/providers.tf
index 012af700..b337a2e9 100644
--- a/stacks/owntracks/providers.tf
+++ b/stacks/owntracks/providers.tf
@@ -9,10 +9,6 @@ terraform {
       source  = "cloudflare/cloudflare"
       version = "~> 4"
     }
-    authentik = {
-      source  = "goauthentik/authentik"
-      version = "~> 2024.10"
-    }
   }
 }
 
diff --git a/stacks/paperless-ngx/main.tf b/stacks/paperless-ngx/main.tf
index 4bafe6ce..b64139c7 100644
--- a/stacks/paperless-ngx/main.tf
+++ b/stacks/paperless-ngx/main.tf
@@ -26,10 +26,6 @@ resource "kubernetes_namespace" "paperless-ngx" {
     #   "istio-injection" : "enabled"
     # }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -86,28 +82,6 @@ resource "kubernetes_persistent_volume_claim" "data_proxmox" {
   }
 }
 
-resource "kubernetes_persistent_volume_claim" "data_encrypted" {
-  wait_until_bound = false
-  metadata {
-    name      = "paperless-ngx-data-encrypted"
-    namespace = kubernetes_namespace.paperless-ngx.metadata[0].name
-    annotations = {
-      "resize.topolvm.io/threshold"     = "80%"
-      "resize.topolvm.io/increase"      = "100%"
-      "resize.topolvm.io/storage_limit" = "5Gi"
-    }
-  }
-  spec {
-    access_modes       = ["ReadWriteOnce"]
-    storage_class_name = "proxmox-lvm-encrypted"
-    resources {
-      requests = {
-        storage = "1Gi"
-      }
-    }
-  }
-}
-
 
 resource "kubernetes_deployment" "paperless-ngx" {
   metadata {
@@ -139,7 +113,7 @@ resource "kubernetes_deployment" "paperless-ngx" {
         annotations = {
           "diun.enable"                    = "true"
           "diun.include_tags"              = "^\\d+(?:\\.\\d+)?(?:\\.\\d+)?$"
-          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis.redis:6379"
         }
       }
       spec {
@@ -218,16 +192,12 @@ resource "kubernetes_deployment" "paperless-ngx" {
         volume {
           name = "data"
           persistent_volume_claim {
-            claim_name = kubernetes_persistent_volume_claim.data_encrypted.metadata[0].name
+            claim_name = kubernetes_persistent_volume_claim.data_proxmox.metadata[0].name
           }
         }
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "paperless-ngx" {
diff --git a/stacks/payslip-ingest/main.tf b/stacks/payslip-ingest/main.tf
deleted file mode 100644
index 82fc3543..00000000
--- a/stacks/payslip-ingest/main.tf
+++ /dev/null
@@ -1,454 +0,0 @@
-variable "image_tag" {
-  type        = string
-  default     = "latest"
-  description = "payslip-ingest image tag. Use 8-char git SHA in CI; :latest only for local trials."
-}
-
-variable "postgresql_host" { type = string }
-
-locals {
-  namespace = "payslip-ingest"
-  # Phase 3 of forgejo-registry-consolidation — image= flipped to Forgejo
-  # 2026-05-07. registry-private kept image at the same path, so the new
-  # Forgejo URL is `viktor/<name>` under forgejo.viktorbarzin.me.
-  image = "forgejo.viktorbarzin.me/viktor/payslip-ingest:${var.image_tag}"
-  labels = {
-    app = "payslip-ingest"
-  }
-}
-
-resource "kubernetes_namespace" "payslip_ingest" {
-  metadata {
-    name = local.namespace
-    labels = {
-      tier              = local.tiers.aux
-      "istio-injection" = "disabled"
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
-}
-
-# App secrets sourced from multiple Vault KV keys.
-# Seed these manually in Vault before applying:
-#   secret/paperless-ngx          -> property `api_token`
-#   secret/claude-agent-service   -> property `api_bearer_token`
-#   secret/payslip-ingest         -> properties:
-#                                     - `webhook_bearer_token`
-#                                     - `actualbudget_api_key` (same value as
-#                                       actualbudget-http-api-viktor random
-#                                       api-key — fetch via `kubectl get pods
-#                                       -n actualbudget -l
-#                                       app=actualbudget-http-api-viktor -o
-#                                       jsonpath={.items[0].spec.containers[0].env}`
-#                                       and grep API_KEY)
-#                                     - `actualbudget_encryption_password`
-#                                       (same as Viktor's budget password in
-#                                       secret/actualbudget/credentials[viktor])
-#                                     - `actualbudget_budget_sync_id`
-#                                       (same as Viktor's sync_id)
-resource "kubernetes_manifest" "external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "payslip-ingest-secrets"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-kv"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "payslip-ingest-secrets"
-        template = {
-          metadata = {
-            annotations = {
-              "reloader.stakater.com/match" = "true"
-            }
-          }
-        }
-      }
-      data = [
-        {
-          secretKey = "PAPERLESS_API_TOKEN"
-          remoteRef = {
-            key      = "paperless-ngx"
-            property = "api_token"
-          }
-        },
-        {
-          secretKey = "CLAUDE_AGENT_BEARER_TOKEN"
-          remoteRef = {
-            key      = "claude-agent-service"
-            property = "api_bearer_token"
-          }
-        },
-        {
-          secretKey = "WEBHOOK_BEARER_TOKEN"
-          remoteRef = {
-            key      = "payslip-ingest"
-            property = "webhook_bearer_token"
-          }
-        },
-        {
-          secretKey = "ACTUALBUDGET_API_KEY"
-          remoteRef = {
-            key      = "payslip-ingest"
-            property = "actualbudget_api_key"
-          }
-        },
-        {
-          secretKey = "ACTUALBUDGET_ENCRYPTION_PASSWORD"
-          remoteRef = {
-            key      = "payslip-ingest"
-            property = "actualbudget_encryption_password"
-          }
-        },
-        {
-          secretKey = "ACTUALBUDGET_BUDGET_SYNC_ID"
-          remoteRef = {
-            key      = "payslip-ingest"
-            property = "actualbudget_budget_sync_id"
-          }
-        },
-      ]
-    }
-  }
-  depends_on = [kubernetes_namespace.payslip_ingest]
-}
-
-# DB credentials from Vault database engine (rotated every 7 days).
-# Template builds the asyncpg DSN consumed by the FastAPI app as DB_CONNECTION_STRING.
-resource "kubernetes_manifest" "db_external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "payslip-ingest-db-creds"
-      namespace = local.namespace
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-database"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "payslip-ingest-db-creds"
-        template = {
-          metadata = {
-            annotations = {
-              "reloader.stakater.com/match" = "true"
-            }
-          }
-          data = {
-            DB_CONNECTION_STRING = "postgresql+asyncpg://payslip_ingest:{{ .password }}@${var.postgresql_host}:5432/payslip_ingest"
-            DB_PASSWORD          = "{{ .password }}"
-          }
-        }
-      }
-      data = [{
-        secretKey = "password"
-        remoteRef = {
-          key      = "static-creds/pg-payslip-ingest"
-          property = "password"
-        }
-      }]
-    }
-  }
-  depends_on = [kubernetes_namespace.payslip_ingest]
-}
-
-resource "kubernetes_deployment" "payslip_ingest" {
-  metadata {
-    name      = "payslip-ingest"
-    namespace = kubernetes_namespace.payslip_ingest.metadata[0].name
-    labels = merge(local.labels, {
-      tier = local.tiers.aux
-    })
-    annotations = {
-      "reloader.stakater.com/search" = "true"
-    }
-  }
-
-  spec {
-    replicas = 1
-    strategy {
-      type = "Recreate"
-    }
-
-    selector {
-      match_labels = local.labels
-    }
-
-    template {
-      metadata {
-        labels = local.labels
-        annotations = {
-          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432"
-        }
-      }
-
-      spec {
-        image_pull_secrets {
-          name = "registry-credentials"
-        }
-
-        init_container {
-          name    = "alembic-migrate"
-          image   = local.image
-          command = ["python", "-m", "payslip_ingest", "migrate"]
-
-          env_from {
-            secret_ref {
-              name = "payslip-ingest-secrets"
-            }
-          }
-          env_from {
-            secret_ref {
-              name = "payslip-ingest-db-creds"
-            }
-          }
-
-          env {
-            name  = "PAPERLESS_URL"
-            value = "http://paperless-ngx.paperless-ngx.svc.cluster.local"
-          }
-          env {
-            name  = "CLAUDE_AGENT_URL"
-            value = "http://claude-agent-service.claude-agent.svc.cluster.local:8080"
-          }
-
-          resources {
-            requests = {
-              cpu    = "50m"
-              memory = "256Mi"
-            }
-            limits = {
-              memory = "512Mi"
-            }
-          }
-        }
-
-        container {
-          name  = "payslip-ingest"
-          image = local.image
-
-          port {
-            container_port = 8080
-          }
-
-          env_from {
-            secret_ref {
-              name = "payslip-ingest-secrets"
-            }
-          }
-          env_from {
-            secret_ref {
-              name = "payslip-ingest-db-creds"
-            }
-          }
-
-          env {
-            name  = "PAPERLESS_URL"
-            value = "http://paperless-ngx.paperless-ngx.svc.cluster.local"
-          }
-          env {
-            name  = "CLAUDE_AGENT_URL"
-            value = "http://claude-agent-service.claude-agent.svc.cluster.local:8080"
-          }
-
-          readiness_probe {
-            http_get {
-              path = "/healthz"
-              port = 8080
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-          }
-
-          liveness_probe {
-            http_get {
-              path = "/healthz"
-              port = 8080
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 10
-          }
-
-          resources {
-            requests = {
-              cpu    = "50m"
-              memory = "256Mi"
-            }
-            limits = {
-              memory = "512Mi"
-            }
-          }
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
-
-  depends_on = [
-    kubernetes_manifest.external_secret,
-    kubernetes_manifest.db_external_secret,
-  ]
-}
-
-# ClusterIP-only — webhook is cluster-internal (paperless-ngx -> payslip-ingest).
-resource "kubernetes_service" "payslip_ingest" {
-  metadata {
-    name      = "payslip-ingest"
-    namespace = kubernetes_namespace.payslip_ingest.metadata[0].name
-    labels    = local.labels
-  }
-
-  spec {
-    type     = "ClusterIP"
-    selector = local.labels
-
-    port {
-      name        = "http"
-      port        = 8080
-      target_port = 8080
-    }
-  }
-}
-
-# Daily sync of Meta payroll deposits from ActualBudget's http-api sidecar.
-# Populates payslip_ingest.external_meta_deposits so Panel 14 can overlay bank
-# deposits against payslip.net_pay — catches parser drift on net_pay.
-resource "kubernetes_cron_job_v1" "actualbudget_payroll_sync" {
-  metadata {
-    name      = "actualbudget-payroll-sync"
-    namespace = kubernetes_namespace.payslip_ingest.metadata[0].name
-  }
-  spec {
-    schedule                      = "0 2 * * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 5
-    starting_deadline_seconds     = 300
-
-    job_template {
-      metadata {
-        labels = local.labels
-      }
-      spec {
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 86400
-        template {
-          metadata {
-            labels = local.labels
-          }
-          spec {
-            restart_policy = "OnFailure"
-            image_pull_secrets {
-              name = "registry-credentials"
-            }
-            container {
-              name    = "sync"
-              image   = local.image
-              command = ["python", "-m", "payslip_ingest", "sync-meta-deposits"]
-
-              env_from {
-                secret_ref {
-                  name = "payslip-ingest-secrets"
-                }
-              }
-              env_from {
-                secret_ref {
-                  name = "payslip-ingest-db-creds"
-                }
-              }
-
-              env {
-                name  = "ACTUALBUDGET_HTTP_API_URL"
-                value = "http://budget-http-api-viktor.actualbudget.svc.cluster.local"
-              }
-
-              resources {
-                requests = {
-                  cpu    = "50m"
-                  memory = "128Mi"
-                }
-                limits = {
-                  memory = "256Mi"
-                }
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-
-  depends_on = [
-    kubernetes_manifest.external_secret,
-    kubernetes_manifest.db_external_secret,
-  ]
-}
-
-# Plan-time read of the ESO-created K8s Secret for Grafana datasource password.
-# First apply: -target=kubernetes_manifest.db_external_secret first so the Secret exists.
-data "kubernetes_secret" "payslip_ingest_db_creds" {
-  metadata {
-    name      = "payslip-ingest-db-creds"
-    namespace = kubernetes_namespace.payslip_ingest.metadata[0].name
-  }
-  depends_on = [kubernetes_manifest.db_external_secret]
-}
-
-# Grafana datasource for payslip_ingest PostgreSQL DB.
-# Lives in the monitoring namespace so the grafana sidecar (label grafana_datasource=1) picks it up.
-resource "kubernetes_config_map" "grafana_payslips_datasource" {
-  metadata {
-    name      = "grafana-payslips-datasource"
-    namespace = "monitoring"
-    labels = {
-      grafana_datasource = "1"
-    }
-  }
-  data = {
-    "payslips-datasource.yaml" = yamlencode({
-      apiVersion = 1
-      datasources = [{
-        name   = "Payslips"
-        type   = "postgres"
-        access = "proxy"
-        url    = "${var.postgresql_host}:5432"
-        user   = "payslip_ingest"
-        uid    = "payslips-pg"
-        # Grafana 11.2+ Postgres plugin reads the DB name from jsonData.database;
-        # the top-level `database` field is silently ignored by the frontend and
-        # triggers "you do not have default database" on every panel.
-        # See github.com/grafana/grafana#112418.
-        jsonData = {
-          database        = "payslip_ingest"
-          sslmode         = "disable"
-          postgresVersion = 1600
-          timescaledb     = false
-        }
-        secureJsonData = {
-          password = data.kubernetes_secret.payslip_ingest_db_creds.data["DB_PASSWORD"]
-        }
-        editable = true
-      }]
-    })
-  }
-}
diff --git a/stacks/payslip-ingest/terragrunt.hcl b/stacks/payslip-ingest/terragrunt.hcl
deleted file mode 100644
index 030b05f8..00000000
--- a/stacks/payslip-ingest/terragrunt.hcl
+++ /dev/null
@@ -1,24 +0,0 @@
-include "root" {
-  path = find_in_parent_folders()
-}
-
-dependency "platform" {
-  config_path  = "../platform"
-  skip_outputs = true
-}
-
-dependency "vault" {
-  config_path  = "../vault"
-  skip_outputs = true
-}
-
-dependency "external-secrets" {
-  config_path  = "../external-secrets"
-  skip_outputs = true
-}
-
-inputs = {
-  # payslip-ingest repo HEAD — includes migrations 0004 + 0005, bonus-dedup,
-  # and the Woodpecker path-filter fix. Bump on every deploy.
-  image_tag = "4f70681d"
-}
diff --git a/stacks/phpipam/main.tf b/stacks/phpipam/main.tf
index 9fce6c14..0bf0bc79 100644
--- a/stacks/phpipam/main.tf
+++ b/stacks/phpipam/main.tf
@@ -20,10 +20,6 @@ resource "kubernetes_namespace" "phpipam" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -201,7 +197,7 @@ resource "kubernetes_deployment" "phpipam_web" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
@@ -372,10 +368,6 @@ resource "kubernetes_cron_job_v1" "phpipam_dns_sync" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # CronJob: Import devices from pfSense (Kea DHCP leases + ARP table) into phpIPAM
@@ -386,7 +378,7 @@ resource "kubernetes_cron_job_v1" "phpipam_pfsense_import" {
     namespace = kubernetes_namespace.phpipam.metadata[0].name
   }
   spec {
-    schedule                      = "0 * * * *"
+    schedule                      = "*/5 * * * *"
     successful_jobs_history_limit = 1
     failed_jobs_history_limit     = 3
     concurrency_policy            = "Forbid"
@@ -572,10 +564,6 @@ PYEOF
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # CronJob: Import devices from remote sites (London + Valchedrym) via SSH
@@ -736,8 +724,4 @@ PYEOF
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/plotting-book/main.tf b/stacks/plotting-book/main.tf
index 07d116f2..f799badb 100644
--- a/stacks/plotting-book/main.tf
+++ b/stacks/plotting-book/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "plotting-book" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -84,10 +80,8 @@ resource "kubernetes_deployment" "plotting-book" {
     }
   }
   lifecycle {
-    # DRIFT_WORKAROUND: CI pipeline owns image tag (kubectl set image from Woodpecker/GHA). Reviewed 2026-04-18.
     ignore_changes = [
       spec[0].template[0].spec[0].container[0].image,
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
     ]
   }
   spec {
@@ -313,10 +307,6 @@ resource "kubernetes_cron_job_v1" "plotting_book_backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Sealed Secrets — encrypted secrets safe to commit to git
diff --git a/stacks/poison-fountain/main.tf b/stacks/poison-fountain/main.tf
index 870a1675..1a26e96a 100644
--- a/stacks/poison-fountain/main.tf
+++ b/stacks/poison-fountain/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "poison_fountain" {
       tier              = local.tiers.cluster
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -178,10 +174,6 @@ resource "kubernetes_deployment" "poison_fountain" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Internal service (for ForwardAuth from Traefik)
@@ -219,10 +211,6 @@ module "ingress" {
   skip_default_rate_limit = true
   exclude_crowdsec        = true
   anti_ai_scraping        = false
-  # Deployment is scaled to 0 (see replicas above). Opt the ingress out of
-  # Uptime Kuma external monitoring so the sync CronJob deletes the orphaned
-  # `[External] poison` monitor instead of flapping DOWN.
-  external_monitor = false
   extra_annotations = {
     "gethomepage.dev/enabled"      = "true"
     "gethomepage.dev/name"         = "Poison Fountain"
@@ -256,13 +244,6 @@ resource "kubernetes_cron_job_v1" "poison_fetcher" {
             name = "poison-fountain-fetcher"
           }
           spec {
-            security_context {
-              # curlimages/curl defaults to uid 100, but the NFS mount at /data is
-              # owned root:root 755 (writes from the main Deployment which runs as
-              # root). Align the CronJob with the Deployment so mkdir /data/cache
-              # succeeds. no_root_squash is set on the /srv/nfs export.
-              run_as_user = 0
-            }
             container {
               name    = "fetcher"
               image   = "curlimages/curl:latest"
@@ -312,8 +293,4 @@ resource "kubernetes_cron_job_v1" "poison_fetcher" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/poison-fountain/providers.tf b/stacks/poison-fountain/providers.tf
index 012af700..b337a2e9 100644
--- a/stacks/poison-fountain/providers.tf
+++ b/stacks/poison-fountain/providers.tf
@@ -9,10 +9,6 @@ terraform {
       source  = "cloudflare/cloudflare"
       version = "~> 4"
     }
-    authentik = {
-      source  = "goauthentik/authentik"
-      version = "~> 2024.10"
-    }
   }
 }
 
diff --git a/stacks/priority-pass/main.tf b/stacks/priority-pass/main.tf
index d02aa651..7e5aaded 100644
--- a/stacks/priority-pass/main.tf
+++ b/stacks/priority-pass/main.tf
@@ -1,19 +1,8 @@
-variable "image_tag" {
-  type        = string
-  default     = "7c01448d"
-  description = "priority-pass image tag (applies to both frontend + backend). Use 8-char git SHA in CI; :latest only for local trials."
-}
-
 variable "tls_secret_name" {
   type      = string
   sensitive = true
 }
 
-locals {
-  frontend_image = "docker.io/viktorbarzin/priority-pass-frontend:${var.image_tag}"
-  backend_image  = "docker.io/viktorbarzin/priority-pass-backend:${var.image_tag}"
-}
-
 resource "kubernetes_namespace" "priority-pass" {
   metadata {
     name = "priority-pass"
@@ -22,10 +11,6 @@ resource "kubernetes_namespace" "priority-pass" {
       tier              = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -34,26 +19,6 @@ module "tls_secret" {
   tls_secret_name = var.tls_secret_name
 }
 
-resource "kubernetes_persistent_volume_claim" "uploads" {
-  wait_until_bound = false
-  metadata {
-    name      = "priority-pass-uploads"
-    namespace = kubernetes_namespace.priority-pass.metadata[0].name
-    annotations = {
-      "resize.topolvm.io/threshold"     = "80%"
-      "resize.topolvm.io/increase"      = "100%"
-      "resize.topolvm.io/storage_limit" = "10Gi"
-    }
-  }
-  spec {
-    access_modes       = ["ReadWriteOnce"]
-    storage_class_name = "proxmox-lvm-encrypted"
-    resources {
-      requests = { storage = "1Gi" }
-    }
-  }
-}
-
 resource "kubernetes_deployment" "priority-pass" {
   metadata {
     name      = "priority-pass"
@@ -65,9 +30,6 @@ resource "kubernetes_deployment" "priority-pass" {
   }
   spec {
     replicas = 1
-    strategy {
-      type = "Recreate"
-    }
     selector {
       match_labels = {
         run = "priority-pass"
@@ -83,15 +45,9 @@ resource "kubernetes_deployment" "priority-pass" {
         image_pull_secrets {
           name = "registry-credentials"
         }
-        volume {
-          name = "uploads"
-          persistent_volume_claim {
-            claim_name = kubernetes_persistent_volume_claim.uploads.metadata[0].name
-          }
-        }
         container {
           name  = "frontend"
-          image = local.frontend_image
+          image = "registry.viktorbarzin.me/priority-pass-frontend:v5"
           port {
             container_port = 3000
           }
@@ -115,18 +71,10 @@ resource "kubernetes_deployment" "priority-pass" {
         }
         container {
           name  = "backend"
-          image = local.backend_image
+          image = "registry.viktorbarzin.me/priority-pass-backend:v8"
           port {
             container_port = 8000
           }
-          env {
-            name  = "UPLOAD_DIR"
-            value = "/data/uploads"
-          }
-          volume_mount {
-            name       = "uploads"
-            mount_path = "/data/uploads"
-          }
           resources {
             limits = {
               memory = "512Mi"
@@ -141,7 +89,7 @@ resource "kubernetes_deployment" "priority-pass" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/priority-pass/terragrunt.hcl b/stacks/priority-pass/terragrunt.hcl
deleted file mode 100644
index 42b52856..00000000
--- a/stacks/priority-pass/terragrunt.hcl
+++ /dev/null
@@ -1,25 +0,0 @@
-include "root" {
-  path = find_in_parent_folders()
-}
-
-dependency "platform" {
-  config_path  = "../platform"
-  skip_outputs = true
-}
-
-dependency "vault" {
-  config_path  = "../vault"
-  skip_outputs = true
-}
-
-dependency "external-secrets" {
-  config_path  = "../external-secrets"
-  skip_outputs = true
-}
-
-inputs = {
-  # priority-pass repo HEAD — auto-bumped by GHA `build-and-deploy.yml`
-  # on every successful build. Manual edits welcome for local trials,
-  # but CI will overwrite on the next push to main.
-  image_tag = "88f18e53"
-}
diff --git a/stacks/priority-pass/terragrunt.hcl b/stacks/priority-pass/terragrunt.hcl
new file mode 120000
index 00000000..af58a92e
--- /dev/null
+++ b/stacks/priority-pass/terragrunt.hcl
@@ -0,0 +1 @@
+../../terragrunt.hcl
\ No newline at end of file
diff --git a/stacks/privatebin/main.tf b/stacks/privatebin/main.tf
index dc3a94b6..5ed188e8 100644
--- a/stacks/privatebin/main.tf
+++ b/stacks/privatebin/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "privatebin" {
       tier = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -105,10 +101,6 @@ resource "kubernetes_deployment" "privatebin" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "privatebin" {
diff --git a/stacks/proxmox-csi/modules/proxmox-csi/main.tf b/stacks/proxmox-csi/modules/proxmox-csi/main.tf
index 139c3292..a94d5df6 100644
--- a/stacks/proxmox-csi/modules/proxmox-csi/main.tf
+++ b/stacks/proxmox-csi/modules/proxmox-csi/main.tf
@@ -6,10 +6,6 @@ resource "kubernetes_namespace" "proxmox_csi" {
       "resource-governance/custom-quota" = "true"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "proxmox_csi" {
diff --git a/stacks/pvc-autoresizer/modules/pvc-autoresizer/main.tf b/stacks/pvc-autoresizer/modules/pvc-autoresizer/main.tf
index 37170732..1728175d 100644
--- a/stacks/pvc-autoresizer/modules/pvc-autoresizer/main.tf
+++ b/stacks/pvc-autoresizer/modules/pvc-autoresizer/main.tf
@@ -7,10 +7,6 @@ resource "kubernetes_namespace" "pvc_autoresizer" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "pvc_autoresizer" {
diff --git a/stacks/real-estate-crawler/main.tf b/stacks/real-estate-crawler/main.tf
index 3a1d274e..168a1b19 100644
--- a/stacks/real-estate-crawler/main.tf
+++ b/stacks/real-estate-crawler/main.tf
@@ -90,10 +90,6 @@ resource "kubernetes_namespace" "realestate-crawler" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -158,8 +154,7 @@ resource "kubernetes_deployment" "realestate-crawler-ui" {
   }
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].container[0].image,
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
+      spec[0].template[0].spec[0].container[0].image
     ]
   }
 }
@@ -217,7 +212,7 @@ resource "kubernetes_deployment" "realestate-crawler-api" {
           "kubernetes.io/cluster-service" = "true"
         }
         annotations = {
-          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis.redis:6379"
         }
       }
       spec {
@@ -305,8 +300,7 @@ resource "kubernetes_deployment" "realestate-crawler-api" {
   }
   lifecycle {
     ignore_changes = [
-      spec[0].template[0].spec[0].container[0].image,
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
+      spec[0].template[0].spec[0].container[0].image
     ]
   }
 }
@@ -395,7 +389,7 @@ resource "kubernetes_deployment" "realestate-crawler-celery" {
           app = "realestate-crawler-celery"
         }
         annotations = {
-          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis.redis:6379"
         }
       }
       spec {
@@ -469,10 +463,6 @@ resource "kubernetes_deployment" "realestate-crawler-celery" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "realestate-crawler-celery-metrics" {
@@ -524,7 +514,7 @@ resource "kubernetes_deployment" "realestate-crawler-celery-beat" {
           app = "realestate-crawler-celery-beat"
         }
         annotations = {
-          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "mysql.dbaas:3306,redis.redis:6379"
         }
       }
       spec {
@@ -580,8 +570,4 @@ resource "kubernetes_deployment" "realestate-crawler-celery-beat" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/redis/modules/redis/main.tf b/stacks/redis/modules/redis/main.tf
index c7eb9245..702e62e2 100644
--- a/stacks/redis/modules/redis/main.tf
+++ b/stacks/redis/modules/redis/main.tf
@@ -9,10 +9,6 @@ resource "kubernetes_namespace" "redis" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -21,12 +17,111 @@ module "tls_secret" {
   tls_secret_name = var.tls_secret_name
 }
 
-# HAProxy-based master-only proxy for the 17 Redis consumers.
-# Health-checks each redis-v2 pod via `INFO replication` and only routes
-# to the current master. On Sentinel failover, HAProxy detects the new
-# master within ~3s via its 1s tcp-check interval. 3 replicas + PDB
-# minAvailable=2 — HAProxy is the sole client-facing path since the
-# 2026-04-19 redis rework (see beads code-v2b), so it needs its own HA.
+# Redis with Sentinel HA via Bitnami Helm chart
+# Architecture: 1 master + 1 replica + 2 sentinels (one per node)
+# Sentinel automatically promotes a replica if master fails
+# HAProxy sits in front and routes only to the current master (see below)
+resource "helm_release" "redis" {
+  namespace        = kubernetes_namespace.redis.metadata[0].name
+  create_namespace = false
+  name             = "redis"
+  atomic           = true
+  timeout          = 600
+
+  repository = "oci://10.0.20.10:5000/bitnamicharts"
+  chart      = "redis"
+  version    = "25.3.2"
+
+  values = [yamlencode({
+    architecture = "replication"
+
+    auth = {
+      enabled = false
+    }
+
+    sentinel = {
+      enabled         = true
+      quorum          = 2
+      masterSet       = "mymaster"
+      automateCluster = true
+
+      resources = {
+        requests = {
+          cpu    = "50m"
+          memory = "64Mi"
+        }
+        limits = {
+          memory = "64Mi"
+        }
+      }
+    }
+
+    master = {
+      persistence = {
+        enabled      = true
+        storageClass = "proxmox-lvm-encrypted"
+        size         = "2Gi"
+        annotations = {
+          "resize.topolvm.io/threshold"     = "80%"
+          "resize.topolvm.io/increase"      = "50%"
+          "resize.topolvm.io/storage_limit" = "10Gi"
+        }
+      }
+
+      resources = {
+        requests = {
+          cpu    = "100m"
+          memory = "64Mi"
+        }
+        limits = {
+          memory = "64Mi"
+        }
+      }
+    }
+
+    replica = {
+      replicaCount = 2
+
+      persistence = {
+        enabled      = true
+        storageClass = "proxmox-lvm-encrypted"
+        size         = "2Gi"
+        annotations = {
+          "resize.topolvm.io/threshold"     = "80%"
+          "resize.topolvm.io/increase"      = "50%"
+          "resize.topolvm.io/storage_limit" = "10Gi"
+        }
+      }
+
+      resources = {
+        requests = {
+          cpu    = "50m"
+          memory = "64Mi"
+        }
+        limits = {
+          memory = "64Mi"
+        }
+      }
+    }
+
+    # Metrics for Prometheus
+    metrics = {
+      enabled = false
+    }
+
+    # Disable the Helm chart's ClusterIP service — we manage our own
+    # that points to HAProxy (master-only routing). The headless service
+    # is still needed for StatefulSet pod DNS resolution.
+    nameOverride = "redis"
+  })]
+}
+
+# HAProxy-based master-only proxy for simple redis:// clients.
+# Health-checks each Redis node via INFO replication and only routes
+# to the current master. On Sentinel failover, HAProxy detects the
+# new master within seconds via its health check interval.
+# Previously this was a K8s Service that routed to all nodes, causing
+# READONLY errors when clients hit a replica.
 
 resource "kubernetes_config_map" "haproxy" {
   metadata {
@@ -43,25 +138,7 @@ resource "kubernetes_config_map" "haproxy" {
         timeout connect 5s
         timeout client  30s
         timeout server  30s
-        timeout check   5s
-
-      # Dynamic DNS resolution via cluster CoreDNS. Without this, haproxy
-      # resolves server hostnames once at startup and caches forever, so
-      # when redis-node-X pods restart and get new IPs, haproxy keeps
-      # connecting to the old (dead) IPs and returns "Connection refused"
-      # until haproxy itself is restarted. This caused an immich outage
-      # on 2026-04-19 after a redis pod cycle.
-      resolvers kubernetes
-        nameserver coredns kube-dns.kube-system.svc.cluster.local:53
-        resolve_retries 3
-        timeout resolve 1s
-        timeout retry   1s
-        hold other      10s
-        hold refused    10s
-        hold nx         10s
-        hold timeout    10s
-        hold valid      10s
-        hold obsolete   10s
+        timeout check   3s
 
       frontend redis_front
         bind *:6379
@@ -82,15 +159,13 @@ resource "kubernetes_config_map" "haproxy" {
         tcp-check expect rstring role:master
         tcp-check send "QUIT\r\n"
         tcp-check expect string +OK
-        server redis-v2-0 redis-v2-0.redis-v2-headless.redis.svc.cluster.local:6379 check inter 2s fall 3 rise 2 resolvers kubernetes init-addr last,libc,none
-        server redis-v2-1 redis-v2-1.redis-v2-headless.redis.svc.cluster.local:6379 check inter 2s fall 3 rise 2 resolvers kubernetes init-addr last,libc,none
-        server redis-v2-2 redis-v2-2.redis-v2-headless.redis.svc.cluster.local:6379 check inter 2s fall 3 rise 2 resolvers kubernetes init-addr last,libc,none
+        server redis-node-0 redis-node-0.redis-headless.redis.svc.cluster.local:6379 check inter 1s fall 2 rise 2
+        server redis-node-1 redis-node-1.redis-headless.redis.svc.cluster.local:6379 check inter 1s fall 2 rise 2
 
       backend redis_sentinel
         balance roundrobin
-        server redis-v2-0 redis-v2-0.redis-v2-headless.redis.svc.cluster.local:26379 check inter 5s resolvers kubernetes init-addr last,libc,none
-        server redis-v2-1 redis-v2-1.redis-v2-headless.redis.svc.cluster.local:26379 check inter 5s resolvers kubernetes init-addr last,libc,none
-        server redis-v2-2 redis-v2-2.redis-v2-headless.redis.svc.cluster.local:26379 check inter 5s resolvers kubernetes init-addr last,libc,none
+        server redis-node-0 redis-node-0.redis-headless.redis.svc.cluster.local:26379 check inter 5s
+        server redis-node-1 redis-node-1.redis-headless.redis.svc.cluster.local:26379 check inter 5s
     EOT
   }
 }
@@ -104,11 +179,7 @@ resource "kubernetes_deployment" "haproxy" {
     }
   }
   spec {
-    # 3 replicas + PDB minAvailable=2 (see kubernetes_pod_disruption_budget_v1.redis_haproxy).
-    # After Nextcloud drops its sentinel fallback in Phase 6 of the 2026-04-19 redis
-    # rework, HAProxy is the sole client-facing path for all 17 redis consumers, so
-    # it needs HA equivalent to other critical-path pods (Traefik, Authentik, PgBouncer).
-    replicas = 3
+    replicas = 2
     selector {
       match_labels = {
         app = "redis-haproxy"
@@ -119,11 +190,6 @@ resource "kubernetes_deployment" "haproxy" {
         labels = {
           app = "redis-haproxy"
         }
-        annotations = {
-          # Roll the deployment whenever haproxy.cfg content changes so a
-          # config update (e.g. DNS resolver tweaks) actually takes effect.
-          "checksum/config" = sha256(kubernetes_config_map.haproxy.data["haproxy.cfg"])
-        }
       }
       spec {
         container {
@@ -169,10 +235,7 @@ resource "kubernetes_deployment" "haproxy" {
     }
   }
 
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
+  depends_on = [helm_release.redis]
 }
 
 # Dedicated service for HAProxy master-only routing.
@@ -205,6 +268,26 @@ resource "kubernetes_service" "redis_master" {
   depends_on = [kubernetes_deployment.haproxy]
 }
 
+# The Helm chart creates a `redis` Service that selects all nodes (master + replica),
+# causing READONLY errors when clients hit the replica. We patch it post-Helm to
+# route through HAProxy instead, which health-checks and routes only to the master.
+# This runs on every apply to ensure the Helm chart's service is always corrected.
+resource "null_resource" "patch_redis_service" {
+  triggers = {
+    always = timestamp()
+  }
+
+  provisioner "local-exec" {
+    command = <<-EOT
+      kubectl --kubeconfig=${abspath("${path.module}/../../../../config")} \
+        patch svc redis -n redis --type='json' \
+        -p='[{"op":"replace","path":"/spec/selector","value":{"app":"redis-haproxy"}}]'
+    EOT
+  }
+
+  depends_on = [helm_release.redis, kubernetes_deployment.haproxy]
+}
+
 module "nfs_backup_host" {
   source     = "../../../../modules/kubernetes/nfs_volume"
   name       = "redis-backup-host"
@@ -213,496 +296,6 @@ module "nfs_backup_host" {
   nfs_path   = "/srv/nfs/redis-backup"
 }
 
-#### Redis — 3-node raw StatefulSet (MySQL standalone precedent)
-#
-# Pattern: raw `kubernetes_stateful_set_v1` + official image, no Bitnami Helm
-# chart (deprecated by Broadcom Aug 2025; the atomic-Helm trap broke the old
-# cluster's memory-bump roll during the 2026-04-19 AM incident).
-#
-# Design driven by three April 2026 incidents (see beads code-v2b):
-#   - 3 sentinels (odd count, quorum=2) — eliminates the split-brain class
-#     that caused the 2026-04-19 PM incident (2 sentinels, no majority).
-#   - Init container regenerates sentinel.conf on every boot by probing
-#     peers for role:master — no persistent sentinel runtime state, so stale
-#     entries can never resurface across pod restarts.
-#   - `sentinel resolve-hostnames yes` + `sentinel announce-hostnames yes`
-#     — without both set BEFORE the first MONITOR, sentinel stores resolved
-#     IPs and failover breaks when pod IPs churn on restart.
-#   - podManagementPolicy=Parallel — all 3 pods start together, avoiding the
-#     "sentinel-0 elects before -2 booted" ordering bug.
-#   - Memory 768Mi (up from the old 256→512Mi) — concurrent BGSAVE + AOF-rewrite
-#     fork can double RSS via COW. auto-aof-rewrite-percentage 200 + min-size
-#     128mb tune down rewrite frequency.
-#   - Persistence: RDB snapshots + AOF everysec. Measured <1 GB/day write
-#     volume (2026-04-19 disk-wear analysis) → 40+ year SSD runway.
-#   - Image `redis:8-alpine` (8.6.2) — must match what the Bitnami legacy
-#     cluster ran, otherwise PSYNC fails with "Can't handle RDB format 13".
-
-resource "kubernetes_config_map" "redis_v2_conf" {
-  metadata {
-    name      = "redis-v2-conf"
-    namespace = kubernetes_namespace.redis.metadata[0].name
-  }
-  data = {
-    "redis.conf" = <<-EOT
-      bind 0.0.0.0 -::*
-      port 6379
-      protected-mode no
-      dir /data
-
-      maxmemory 640mb
-      maxmemory-policy allkeys-lru
-
-      save 900 1
-      save 300 100
-      save 60 10000
-      rdbcompression yes
-      rdbchecksum yes
-      stop-writes-on-bgsave-error no
-
-      appendonly yes
-      appendfsync everysec
-      no-appendfsync-on-rewrite no
-      auto-aof-rewrite-percentage 200
-      auto-aof-rewrite-min-size 128mb
-      aof-load-truncated yes
-      aof-use-rdb-preamble yes
-
-      replica-read-only yes
-      replica-serve-stale-data yes
-
-      timeout 0
-      tcp-keepalive 300
-      tcp-backlog 511
-      databases 16
-
-      loglevel notice
-
-      # Included last so `replicaof` directive written by the init container
-      # overrides the "standalone master" default. Prevents the parallel-
-      # bootstrap race where all 3 pods claim role:master simultaneously.
-      include /shared/replica.conf
-    EOT
-  }
-}
-
-resource "kubernetes_config_map" "redis_v2_sentinel_bootstrap" {
-  metadata {
-    name      = "redis-v2-sentinel-bootstrap"
-    namespace = kubernetes_namespace.redis.metadata[0].name
-  }
-  data = {
-    "init.sh" = <<-EOT
-      #!/bin/sh
-      set -eu
-
-      HOSTNAME=$(hostname)
-      MY_NUM=$${HOSTNAME##*-}
-      MY_DNS="$HOSTNAME.redis-v2-headless.redis.svc.cluster.local"
-      MASTER_HOST=""
-
-      echo "=== Redis v2 bootstrap ==="
-      echo "hostname: $HOSTNAME (index $MY_NUM)"
-
-      # Priority 1: ask peer sentinels for the consensus master. Covers the
-      # "steady-state pod restart" case — sentinels already agree on reality
-      # and a restarting pod should join that topology.
-      votes_0=0; votes_1=0; votes_2=0; votes_total=0
-      for i in 0 1 2; do
-        if [ "$i" = "$MY_NUM" ]; then continue; fi
-        peer="redis-v2-$i.redis-v2-headless.redis.svc.cluster.local"
-        reply=$(redis-cli -h "$peer" -p 26379 -t 2 SENTINEL get-master-addr-by-name mymaster 2>/dev/null | head -n1 || true)
-        echo "sentinel probe $peer: master=$${reply:-unreachable}"
-        case "$reply" in
-          *redis-v2-0*) votes_0=$((votes_0 + 1)); votes_total=$((votes_total + 1)) ;;
-          *redis-v2-1*) votes_1=$((votes_1 + 1)); votes_total=$((votes_total + 1)) ;;
-          *redis-v2-2*) votes_2=$((votes_2 + 1)); votes_total=$((votes_total + 1)) ;;
-        esac
-      done
-      if [ "$votes_total" -gt 0 ]; then
-        if [ "$votes_0" -ge "$votes_1" ] && [ "$votes_0" -ge "$votes_2" ] && [ "$votes_0" -gt 0 ]; then
-          MASTER_HOST="redis-v2-0.redis-v2-headless.redis.svc.cluster.local"
-        elif [ "$votes_1" -ge "$votes_2" ] && [ "$votes_1" -gt 0 ]; then
-          MASTER_HOST="redis-v2-1.redis-v2-headless.redis.svc.cluster.local"
-        elif [ "$votes_2" -gt 0 ]; then
-          MASTER_HOST="redis-v2-2.redis-v2-headless.redis.svc.cluster.local"
-        fi
-        [ -n "$MASTER_HOST" ] && echo "sentinel vote winner: $MASTER_HOST"
-      fi
-
-      # Priority 2: look for a peer redis that's a master WITH at least one
-      # replica connected. "Standalone master" peers (bootstrap race) are
-      # skipped — connected_slaves=0 is ambiguous.
-      if [ -z "$MASTER_HOST" ]; then
-        for i in 0 1 2; do
-          if [ "$i" = "$MY_NUM" ]; then continue; fi
-          peer="redis-v2-$i.redis-v2-headless.redis.svc.cluster.local"
-          info=$(redis-cli -h "$peer" -t 2 INFO replication 2>/dev/null || true)
-          role=$(echo "$info" | awk -F: '/^role:/ {gsub(/\r/,""); print $2; exit}')
-          slaves=$(echo "$info" | awk -F: '/^connected_slaves:/ {gsub(/\r/,""); print $2; exit}')
-          echo "redis probe $peer: role=$${role:-unreachable} slaves=$${slaves:-0}"
-          if [ "$role" = "master" ] && [ "$${slaves:-0}" -gt 0 ]; then
-            MASTER_HOST="$peer"
-            break
-          fi
-        done
-      fi
-
-      # Priority 3: deterministic fallback — pod -0 is always the bootstrap
-      # master on a fresh cluster. All sentinels converge here, no race.
-      if [ -z "$MASTER_HOST" ]; then
-        MASTER_HOST="redis-v2-0.redis-v2-headless.redis.svc.cluster.local"
-        echo "no master found via probes — bootstrap default: $MASTER_HOST"
-      fi
-
-      cat > /shared/sentinel.conf <<EOF
-      port 26379
-      bind 0.0.0.0 -::*
-      dir /shared
-      sentinel resolve-hostnames yes
-      sentinel announce-hostnames yes
-      sentinel monitor mymaster $MASTER_HOST 6379 2
-      sentinel down-after-milliseconds mymaster 15000
-      sentinel failover-timeout mymaster 60000
-      sentinel parallel-syncs mymaster 1
-      EOF
-
-      # replica.conf is included by redis.conf (see ConfigMap redis_v2_conf).
-      # Master pod gets an empty file; replicas get `replicaof <master>`.
-      # This way pods come up already in the right role — no post-start race.
-      if [ "$MY_DNS" = "$MASTER_HOST" ]; then
-        : > /shared/replica.conf
-        echo "role: master"
-      else
-        echo "replicaof $MASTER_HOST 6379" > /shared/replica.conf
-        echo "role: replica of $MASTER_HOST"
-      fi
-
-      echo "=== bootstrap complete ==="
-      cat /shared/sentinel.conf
-      echo "--- replica.conf ---"
-      cat /shared/replica.conf
-    EOT
-  }
-}
-
-resource "kubernetes_service" "redis_v2_headless" {
-  metadata {
-    name      = "redis-v2-headless"
-    namespace = kubernetes_namespace.redis.metadata[0].name
-    labels = {
-      app = "redis-v2"
-    }
-  }
-  spec {
-    cluster_ip                  = "None"
-    publish_not_ready_addresses = false
-    selector = {
-      app = "redis-v2"
-    }
-    port {
-      name = "redis"
-      port = 6379
-    }
-    port {
-      name = "sentinel"
-      port = 26379
-    }
-    port {
-      name = "exporter"
-      port = 9121
-    }
-  }
-}
-
-resource "kubernetes_stateful_set_v1" "redis_v2" {
-  metadata {
-    name      = "redis-v2"
-    namespace = kubernetes_namespace.redis.metadata[0].name
-    labels = {
-      app = "redis-v2"
-    }
-  }
-  spec {
-    service_name          = kubernetes_service.redis_v2_headless.metadata[0].name
-    replicas              = 3
-    pod_management_policy = "Parallel"
-
-    selector {
-      match_labels = {
-        app = "redis-v2"
-      }
-    }
-
-    template {
-      metadata {
-        labels = {
-          app = "redis-v2"
-        }
-        annotations = {
-          "prometheus.io/scrape" = "true"
-          "prometheus.io/port"   = "9121"
-          "checksum/conf"        = sha256(kubernetes_config_map.redis_v2_conf.data["redis.conf"])
-          "checksum/bootstrap"   = sha256(kubernetes_config_map.redis_v2_sentinel_bootstrap.data["init.sh"])
-        }
-      }
-      spec {
-        termination_grace_period_seconds = 30
-
-        affinity {
-          pod_anti_affinity {
-            required_during_scheduling_ignored_during_execution {
-              label_selector {
-                match_expressions {
-                  key      = "app"
-                  operator = "In"
-                  values   = ["redis-v2"]
-                }
-              }
-              topology_key = "kubernetes.io/hostname"
-            }
-          }
-        }
-
-        init_container {
-          name    = "generate-sentinel-conf"
-          image   = "docker.io/library/redis:8-alpine"
-          command = ["/bin/sh", "/bootstrap/init.sh"]
-
-          resources {
-            requests = {
-              cpu    = "10m"
-              memory = "32Mi"
-            }
-            limits = {
-              memory = "32Mi"
-            }
-          }
-
-          volume_mount {
-            name       = "bootstrap"
-            mount_path = "/bootstrap"
-            read_only  = true
-          }
-          volume_mount {
-            name       = "shared"
-            mount_path = "/shared"
-          }
-        }
-
-        container {
-          name    = "redis"
-          image   = "docker.io/library/redis:8-alpine"
-          command = ["redis-server", "/etc/redis/redis.conf"]
-
-          port {
-            container_port = 6379
-            name           = "redis"
-          }
-
-          resources {
-            requests = {
-              cpu    = "100m"
-              memory = "768Mi"
-            }
-            limits = {
-              memory = "768Mi"
-            }
-          }
-
-          volume_mount {
-            name       = "data"
-            mount_path = "/data"
-          }
-          volume_mount {
-            name       = "conf"
-            mount_path = "/etc/redis"
-            read_only  = true
-          }
-          volume_mount {
-            # redis.conf `include /shared/replica.conf` — written by init container.
-            name       = "shared"
-            mount_path = "/shared"
-            read_only  = true
-          }
-
-          liveness_probe {
-            exec {
-              command = ["redis-cli", "PING"]
-            }
-            initial_delay_seconds = 15
-            period_seconds        = 10
-            timeout_seconds       = 10
-            failure_threshold     = 5
-          }
-          readiness_probe {
-            exec {
-              command = ["redis-cli", "PING"]
-            }
-            initial_delay_seconds = 5
-            period_seconds        = 5
-            timeout_seconds       = 3
-            failure_threshold     = 3
-          }
-        }
-
-        container {
-          name    = "sentinel"
-          image   = "docker.io/library/redis:8-alpine"
-          command = ["redis-sentinel", "/shared/sentinel.conf"]
-
-          port {
-            container_port = 26379
-            name           = "sentinel"
-          }
-
-          resources {
-            requests = {
-              cpu    = "20m"
-              memory = "64Mi"
-            }
-            limits = {
-              memory = "64Mi"
-            }
-          }
-
-          volume_mount {
-            name       = "shared"
-            mount_path = "/shared"
-          }
-
-          liveness_probe {
-            exec {
-              command = ["redis-cli", "-p", "26379", "PING"]
-            }
-            initial_delay_seconds = 20
-            period_seconds        = 10
-            timeout_seconds       = 10
-            failure_threshold     = 5
-          }
-          readiness_probe {
-            exec {
-              command = ["redis-cli", "-p", "26379", "PING"]
-            }
-            initial_delay_seconds = 10
-            period_seconds        = 5
-            timeout_seconds       = 3
-            failure_threshold     = 3
-          }
-        }
-
-        container {
-          name  = "exporter"
-          image = "docker.io/oliver006/redis_exporter:v1.62.0"
-
-          port {
-            container_port = 9121
-            name           = "exporter"
-          }
-
-          env {
-            name  = "REDIS_ADDR"
-            value = "redis://localhost:6379"
-          }
-
-          resources {
-            requests = {
-              cpu    = "10m"
-              memory = "32Mi"
-            }
-            limits = {
-              memory = "32Mi"
-            }
-          }
-
-          liveness_probe {
-            http_get {
-              path = "/"
-              port = 9121
-            }
-            initial_delay_seconds = 15
-            period_seconds        = 30
-            timeout_seconds       = 5
-          }
-        }
-
-        volume {
-          name = "conf"
-          config_map {
-            name = kubernetes_config_map.redis_v2_conf.metadata[0].name
-          }
-        }
-        volume {
-          name = "bootstrap"
-          config_map {
-            name         = kubernetes_config_map.redis_v2_sentinel_bootstrap.metadata[0].name
-            default_mode = "0755"
-          }
-        }
-        volume {
-          name = "shared"
-          empty_dir {}
-        }
-      }
-    }
-
-    volume_claim_template {
-      metadata {
-        name = "data"
-        annotations = {
-          "resize.topolvm.io/threshold"     = "80%"
-          "resize.topolvm.io/increase"      = "100%"
-          "resize.topolvm.io/storage_limit" = "20Gi"
-        }
-      }
-      spec {
-        access_modes       = ["ReadWriteOnce"]
-        storage_class_name = "proxmox-lvm-encrypted"
-        resources {
-          requests = {
-            storage = "5Gi"
-          }
-        }
-      }
-    }
-  }
-
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-resource "kubernetes_pod_disruption_budget_v1" "redis_v2" {
-  metadata {
-    name      = "redis-v2"
-    namespace = kubernetes_namespace.redis.metadata[0].name
-  }
-  spec {
-    min_available = 2
-    selector {
-      match_labels = {
-        app = "redis-v2"
-      }
-    }
-  }
-}
-
-resource "kubernetes_pod_disruption_budget_v1" "redis_haproxy" {
-  metadata {
-    name      = "redis-haproxy"
-    namespace = kubernetes_namespace.redis.metadata[0].name
-  }
-  spec {
-    min_available = 2
-    selector {
-      match_labels = {
-        app = "redis-haproxy"
-      }
-    }
-  }
-}
-
 # Hourly backup: copy RDB snapshot from master to NFS
 resource "kubernetes_cron_job_v1" "redis-backup" {
   metadata {
@@ -734,10 +327,10 @@ resource "kubernetes_cron_job_v1" "redis-backup" {
 
                 TIMESTAMP=$(date +%Y%m%d-%H%M)
                 # Trigger a fresh RDB save on the master
-                redis-cli -h redis-master.redis BGSAVE
+                redis-cli -h redis.redis BGSAVE
                 sleep 5
                 # Copy the RDB via redis-cli --rdb
-                redis-cli -h redis-master.redis --rdb /backup/redis-$TIMESTAMP.rdb
+                redis-cli -h redis.redis --rdb /backup/redis-$TIMESTAMP.rdb
                 # Rotate — 28-day retention
                 find /backup -name 'redis-*.rdb' -type f -mtime +28 -delete
 
@@ -775,8 +368,4 @@ resource "kubernetes_cron_job_v1" "redis-backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/reloader/main.tf b/stacks/reloader/main.tf
index 5e520ad5..3d9e03a8 100644
--- a/stacks/reloader/main.tf
+++ b/stacks/reloader/main.tf
@@ -5,10 +5,6 @@ resource "kubernetes_namespace" "crowdsec" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 resource "helm_release" "reloader" {
   namespace        = kubernetes_namespace.crowdsec.metadata[0].name
diff --git a/stacks/resume/main.tf b/stacks/resume/main.tf
index ddf82227..fcf7116c 100644
--- a/stacks/resume/main.tf
+++ b/stacks/resume/main.tf
@@ -24,10 +24,6 @@ resource "kubernetes_namespace" "resume" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -140,10 +136,6 @@ resource "kubernetes_deployment" "printer" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "printer" {
@@ -330,10 +322,6 @@ resource "kubernetes_deployment" "resume" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "resume" {
diff --git a/stacks/reverse-proxy/main.tf b/stacks/reverse-proxy/main.tf
index fcfecd5d..2416792a 100644
--- a/stacks/reverse-proxy/main.tf
+++ b/stacks/reverse-proxy/main.tf
@@ -12,6 +12,7 @@ locals {
 module "reverse-proxy" {
   source                 = "./modules/reverse_proxy"
   tls_secret_name        = var.tls_secret_name
+  truenas_homepage_token = local.homepage_credentials["reverse_proxy"]["truenas_token"]
   pfsense_homepage_token = local.homepage_credentials["reverse_proxy"]["pfsense_token"]
   haos_homepage_token    = try(local.homepage_credentials["home_assistant"]["token"], "")
 }
diff --git a/stacks/reverse-proxy/modules/reverse_proxy/factory/main.tf b/stacks/reverse-proxy/modules/reverse_proxy/factory/main.tf
index 850675d5..6f432225 100644
--- a/stacks/reverse-proxy/modules/reverse_proxy/factory/main.tf
+++ b/stacks/reverse-proxy/modules/reverse_proxy/factory/main.tf
@@ -14,16 +14,7 @@ variable "name" {}
 variable "namespace" {
   default = "reverse-proxy"
 }
-variable "external_name" {
-  type        = string
-  default     = null
-  description = "DNS name for ExternalName Service. Mutually exclusive with backend_ip."
-}
-variable "backend_ip" {
-  type        = string
-  default     = null
-  description = "IP address backend. When set, creates a selector-less Service + EndpointSlice pointing at this IP. Mutually exclusive with external_name — use for hosts that aren't in Technitium (e.g. upstream gateways)."
-}
+variable "external_name" {}
 variable "port" {
   default = "80"
 }
@@ -104,14 +95,7 @@ variable "public_ipv6" {
 }
 
 
-locals {
-  use_backend_ip = var.backend_ip != null
-  port_name      = var.backend_protocol == "HTTPS" ? "https-${var.name}" : "${var.name}-web"
-}
-
-# ExternalName flavor — used when the backend is addressable by DNS.
 resource "kubernetes_service" "proxied-service" {
-  count = local.use_backend_ip ? 0 : 1
   metadata {
     name      = var.name
     namespace = var.namespace
@@ -125,7 +109,7 @@ resource "kubernetes_service" "proxied-service" {
     external_name = var.external_name
 
     port {
-      name        = local.port_name
+      name        = var.backend_protocol == "HTTPS" ? "https-${var.name}" : "${var.name}-web"
       port        = var.port
       protocol    = "TCP"
       target_port = var.port
@@ -133,73 +117,14 @@ resource "kubernetes_service" "proxied-service" {
   }
 }
 
-# IP-backend flavor — selector-less Service + manually-managed EndpointSlice.
-# Used for upstreams that have no DNS entry in Technitium (e.g. 192.168.1.1).
-resource "kubernetes_service" "ip-backend-service" {
-  count = local.use_backend_ip ? 1 : 0
-  metadata {
-    name      = var.name
-    namespace = var.namespace
-    labels = {
-      "app" = var.name
-    }
-  }
-
-  spec {
-    type = "ClusterIP"
-    port {
-      name        = local.port_name
-      port        = var.port
-      protocol    = "TCP"
-      target_port = var.port
-    }
-  }
-}
-
-resource "kubernetes_manifest" "ip_backend_endpointslice" {
-  count = local.use_backend_ip ? 1 : 0
-  manifest = {
-    apiVersion = "discovery.k8s.io/v1"
-    kind       = "EndpointSlice"
-    metadata = {
-      name      = var.name
-      namespace = var.namespace
-      labels = {
-        "kubernetes.io/service-name" = var.name
-        "app"                        = var.name
-      }
-    }
-    addressType = "IPv4"
-    ports = [{
-      name     = local.port_name
-      port     = tonumber(var.port)
-      protocol = "TCP"
-    }]
-    endpoints = [{
-      addresses = [var.backend_ip]
-      conditions = {
-        ready = true
-      }
-    }]
-  }
-  depends_on = [kubernetes_service.ip-backend-service]
-}
-
 locals {
   # External monitor defaults: on when proxied, off otherwise. Explicit bool overrides.
   effective_external_monitor = var.external_monitor != null ? var.external_monitor : (var.dns_type == "proxied")
 
-  # Emit the annotation when effective is true (positive signal), or when the
-  # caller explicitly set external_monitor=false (opt-out). When the caller
-  # leaves it null AND dns_type != "proxied", emit nothing — the sync script's
-  # default opt-in (any *.viktorbarzin.me ingress) keeps monitoring services
-  # that are publicly reachable via routes we don't manage here.
   external_monitor_annotations = local.effective_external_monitor ? merge(
     { "uptime.viktorbarzin.me/external-monitor" = "true" },
     var.external_monitor_name != null ? { "uptime.viktorbarzin.me/external-monitor-name" = var.external_monitor_name } : {},
-    ) : (var.external_monitor == false ?
-    { "uptime.viktorbarzin.me/external-monitor" = "false" } : {}
-  )
+  ) : {}
 }
 
 resource "kubernetes_ingress_v1" "proxied-ingress" {
diff --git a/stacks/reverse-proxy/modules/reverse_proxy/main.tf b/stacks/reverse-proxy/modules/reverse_proxy/main.tf
index 83698d72..51e387f3 100644
--- a/stacks/reverse-proxy/modules/reverse_proxy/main.tf
+++ b/stacks/reverse-proxy/modules/reverse_proxy/main.tf
@@ -2,6 +2,7 @@
 # outside of K8S but would be nice to use the Nginx-ingress
 
 variable "tls_secret_name" {}
+variable "truenas_homepage_token" {}
 variable "pfsense_homepage_token" {}
 variable "haos_homepage_token" {
   type      = string
@@ -13,10 +14,6 @@ resource "kubernetes_namespace" "reverse-proxy" {
   metadata {
     name = "reverse-proxy"
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -111,11 +108,13 @@ module "idrac" {
   depends_on = [kubernetes_namespace.reverse-proxy]
 }
 
+# Can either listen on https or http; can't do both :/
+# TODO: Not working yet
 module "tp-link-gateway" {
   source             = "./factory"
   dns_type           = "proxied"
   name               = "gw"
-  backend_ip         = "192.168.1.1"
+  external_name      = "gw.viktorbarzin.lan"
   port               = 443
   tls_secret_name    = var.tls_secret_name
   backend_protocol   = "HTTPS"
@@ -125,6 +124,50 @@ module "tp-link-gateway" {
   extra_annotations  = { "gethomepage.dev/enabled" = "false" }
 }
 
+# https://truenas.viktorbarzin.me/
+module "truenas" {
+  source          = "./factory"
+  dns_type        = "proxied"
+  name            = "truenas"
+  external_name   = "truenas.viktorbarzin.lan"
+  port            = 80
+  tls_secret_name = var.tls_secret_name
+  max_body_size   = "0m"
+
+  extra_annotations = {
+    "gethomepage.dev/enabled" : "true"
+    "gethomepage.dev/description" : "TrueNAS"
+    "gethomepage.dev/group" : "Infrastructure"
+    "gethomepage.dev/icon" : "truenas.png"
+    "gethomepage.dev/name" : "TrueNAS"
+    "gethomepage.dev/widget.type" : "truenas"
+    "gethomepage.dev/widget.url" : "https://truenas.viktorbarzin.lan"
+    "gethomepage.dev/widget.key" : var.truenas_homepage_token
+    # "gethomepage.dev/widget.enablePools" : "true"
+    # "gethomepage.dev/pod-selector" : ""
+  }
+  depends_on = [kubernetes_namespace.reverse-proxy]
+}
+
+# https://r730.viktorbarzin.me/
+module "r730" {
+  source           = "./factory"
+  name             = "r730"
+  external_name    = "r730.viktorbarzin.lan"
+  port             = 443
+  tls_secret_name  = var.tls_secret_name
+  backend_protocol = "HTTPS"
+  depends_on       = [kubernetes_namespace.reverse-proxy]
+  extra_annotations = {
+    "gethomepage.dev/enabled"      = "true"
+    "gethomepage.dev/name"         = "R730"
+    "gethomepage.dev/description"  = "Dell PowerEdge server"
+    "gethomepage.dev/icon"         = "dell.png"
+    "gethomepage.dev/group"        = "Infrastructure"
+    "gethomepage.dev/pod-selector" = ""
+  }
+}
+
 # https://proxmox.viktorbarzin.me/
 module "proxmox" {
   source           = "./factory"
@@ -223,7 +266,6 @@ module "mladost3" {
   port              = 8080
   tls_secret_name   = var.tls_secret_name
   depends_on        = [kubernetes_namespace.reverse-proxy]
-  external_monitor  = false
   extra_annotations = { "gethomepage.dev/enabled" = "false" }
 }
 
@@ -255,101 +297,43 @@ resource "kubernetes_manifest" "ha_sofia_rate_limit" {
   }
 }
 
-# Per-service retry — bumps default (attempts=2) to 3 so transient DNS/connect
-# stalls on the ha-sofia.viktorbarzin.lan ExternalName are absorbed before
-# surfacing a 502. Drives bd code-rd1 Phase 2.2.
-resource "kubernetes_manifest" "ha_sofia_retry" {
-  manifest = {
-    apiVersion = "traefik.io/v1alpha1"
-    kind       = "Middleware"
-    metadata = {
-      name      = "ha-sofia-retry"
-      namespace = "reverse-proxy"
-    }
-    spec = {
-      retry = {
-        attempts        = 3
-        initialInterval = "100ms"
-      }
-    }
-  }
-}
-
-# Per-service ServersTransport — overrides the global 60s dialTimeout
-# (set for Immich) with 500ms so a stall fails fast and the retry middleware
-# kicks in instead of blocking the connection for seconds. Drives bd
-# code-rd1 Phase 2.3.
-resource "kubernetes_manifest" "ha_sofia_transport" {
-  manifest = {
-    apiVersion = "traefik.io/v1alpha1"
-    kind       = "ServersTransport"
-    metadata = {
-      name      = "ha-sofia-transport"
-      namespace = "reverse-proxy"
-    }
-    spec = {
-      forwardingTimeouts = {
-        dialTimeout           = "500ms"
-        responseHeaderTimeout = "30s"
-        idleConnTimeout       = "90s"
-      }
-    }
-  }
-}
-
 module "ha-sofia" {
-  source          = "./factory"
-  dns_type        = "non-proxied"
-  name            = "ha-sofia"
-  external_name   = "ha-sofia.viktorbarzin.lan"
-  port            = 8123
-  tls_secret_name = var.tls_secret_name
-  # depends_on on the retry/transport manifests avoids a dangling-reference
-  # window that would 404 ha-sofia traffic (memory 768: 2026-04-17 P0 outage).
-  depends_on = [
-    kubernetes_namespace.reverse-proxy,
-    kubernetes_manifest.ha_sofia_retry,
-    kubernetes_manifest.ha_sofia_transport,
-  ]
+  source                 = "./factory"
+  dns_type               = "non-proxied"
+  name                   = "ha-sofia"
+  external_name          = "ha-sofia.viktorbarzin.lan"
+  port                   = 8123
+  tls_secret_name        = var.tls_secret_name
+  depends_on             = [kubernetes_namespace.reverse-proxy]
   protected              = false
   skip_global_rate_limit = true
   extra_middlewares = [
     "reverse-proxy-ha-sofia-rate-limit@kubernetescrd",
-    "reverse-proxy-ha-sofia-retry@kubernetescrd",
   ]
   extra_annotations = {
-    "gethomepage.dev/enabled"                                = "true"
-    "gethomepage.dev/name"                                   = "Home Assistant Sofia"
-    "gethomepage.dev/description"                            = "Smart home hub"
-    "gethomepage.dev/icon"                                   = "home-assistant.png"
-    "gethomepage.dev/group"                                  = "Smart Home"
-    "gethomepage.dev/pod-selector"                           = ""
-    "traefik.ingress.kubernetes.io/service.serverstransport" = "reverse-proxy-ha-sofia-transport@kubernetescrd"
+    "gethomepage.dev/enabled"      = "true"
+    "gethomepage.dev/name"         = "Home Assistant Sofia"
+    "gethomepage.dev/description"  = "Smart home hub"
+    "gethomepage.dev/icon"         = "home-assistant.png"
+    "gethomepage.dev/group"        = "Smart Home"
+    "gethomepage.dev/pod-selector" = ""
   }
 }
 
 # https://music-assistant.viktorbarzin.me/
 module "music-assistant" {
-  source          = "./factory"
-  dns_type        = "non-proxied"
-  name            = "music-assistant"
-  external_name   = "ha-sofia.viktorbarzin.lan"
-  port            = 8095
-  tls_secret_name = var.tls_secret_name
-  depends_on = [
-    kubernetes_namespace.reverse-proxy,
-    kubernetes_manifest.ha_sofia_retry,
-    kubernetes_manifest.ha_sofia_transport,
-  ]
+  source                 = "./factory"
+  dns_type               = "non-proxied"
+  name                   = "music-assistant"
+  external_name          = "ha-sofia.viktorbarzin.lan"
+  port                   = 8095
+  tls_secret_name        = var.tls_secret_name
+  depends_on             = [kubernetes_namespace.reverse-proxy]
   protected              = false
   skip_global_rate_limit = true
   extra_middlewares = [
     "reverse-proxy-ha-sofia-rate-limit@kubernetescrd",
-    "reverse-proxy-ha-sofia-retry@kubernetescrd",
   ]
-  extra_annotations = {
-    "traefik.ingress.kubernetes.io/service.serverstransport" = "reverse-proxy-ha-sofia-transport@kubernetescrd"
-  }
 }
 
 # https://ha-london.viktorbarzin.me/
diff --git a/stacks/rybbit/main.tf b/stacks/rybbit/main.tf
index f386a338..3cdefbb9 100644
--- a/stacks/rybbit/main.tf
+++ b/stacks/rybbit/main.tf
@@ -17,10 +17,6 @@ resource "kubernetes_namespace" "rybbit" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -222,10 +218,6 @@ resource "kubernetes_deployment" "clickhouse" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "clickhouse" {
@@ -289,10 +281,6 @@ resource "kubernetes_cron_job_v1" "clickhouse_truncate_logs" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_deployment" "rybbit" {
@@ -432,10 +420,6 @@ resource "kubernetes_deployment" "rybbit" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "rybbit" {
@@ -534,10 +518,6 @@ resource "kubernetes_deployment" "rybbit-client" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "rybbit-client" {
diff --git a/stacks/rybbit/worker/index.js b/stacks/rybbit/worker/index.js
deleted file mode 100644
index 3eb4cfff..00000000
--- a/stacks/rybbit/worker/index.js
+++ /dev/null
@@ -1,76 +0,0 @@
-// Rybbit analytics injection via Cloudflare Worker
-// Injects the rybbit tracking script into HTML responses using HTMLRewriter.
-// Deployed as a route-based worker on *.viktorbarzin.me/*
-
-// Site ID mapping: hostname → rybbit site ID
-// These were previously injected via Traefik's rewrite-body plugin (broken on v3.6).
-const SITE_IDS = {
-  "viktorbarzin.me": "da853a2438d0",
-  "www.viktorbarzin.me": "da853a2438d0",
-  "actualbudget.viktorbarzin.me": "3e6b6b68088a",
-  "crowdsec.viktorbarzin.me": "d09137795ccc",
-  "cyberchef.viktorbarzin.me": "7c460afc68c4",
-  "dawarich.viktorbarzin.me": "0abfd409f2fb",
-  "pma.viktorbarzin.me": "942c76b8bd4d",
-  "pgadmin.viktorbarzin.me": "7cef78e30485",
-  "audiobookshelf.viktorbarzin.me": "17a5c7fbb077",
-  "calibre.viktorbarzin.me": "ce5f8aed6bbb",
-  "stacks.viktorbarzin.me": "b38fda4285df",
-  "f1.viktorbarzin.me": "7e69786f66d5",
-  "frigate.viktorbarzin.me": "0d4044069ff5",
-  "highlights-immich.viktorbarzin.me": "602167601c6b",
-  "immich.viktorbarzin.me": "35eedb7a3d2b",
-  "mail.viktorbarzin.me": "082f164faa7d",
-  "navidrome.viktorbarzin.me": "8a3844ff75ba",
-  "networking-toolbox.viktorbarzin.me": "50e38577e41c",
-  "nextcloud.viktorbarzin.me": "5a3bfe59a3fe",
-  "paperless-ngx.viktorbarzin.me": "be6d140cbed8",
-  "privatebin.viktorbarzin.me": "3ae810b0476d",
-  "wrongmove.viktorbarzin.me": "edee05de453d",
-  "rybbit.viktorbarzin.me": "3c476801a777",
-  "send.viktorbarzin.me": "c1b8f8aa831b",
-  "stirling-pdf.viktorbarzin.me": "a55ac54ec749",
-  "uptime-kuma.viktorbarzin.me": "8fef77b1f7fe",
-  "vaultwarden.viktorbarzin.me": "b8fc85e18683",
-};
-
-// Default site ID for any proxied host not in the map above.
-// Set to null to skip injection for unmapped hosts.
-const DEFAULT_SITE_ID = null;
-
-class HeadInjector {
-  constructor(siteId) {
-    this.siteId = siteId;
-  }
-
-  element(element) {
-    element.prepend(
-      `<script src="https://rybbit.viktorbarzin.me/api/script.js" data-site-id="${this.siteId}" defer></script>`,
-      { html: true }
-    );
-  }
-}
-
-export default {
-  async fetch(request) {
-    const url = new URL(request.url);
-    const hostname = url.hostname;
-
-    // Look up site ID for this hostname
-    const siteId = SITE_IDS[hostname] || DEFAULT_SITE_ID;
-
-    // Fetch the origin response
-    const response = await fetch(request);
-
-    // Only inject into HTML responses that have a site ID
-    const contentType = response.headers.get("content-type") || "";
-    if (!siteId || !contentType.includes("text/html")) {
-      return response;
-    }
-
-    // Use HTMLRewriter to inject the script before </head>
-    return new HTMLRewriter()
-      .on("head", new HeadInjector(siteId))
-      .transform(response);
-  },
-};
diff --git a/stacks/rybbit/worker/wrangler.toml b/stacks/rybbit/worker/wrangler.toml
deleted file mode 100644
index 68a5aa50..00000000
--- a/stacks/rybbit/worker/wrangler.toml
+++ /dev/null
@@ -1,44 +0,0 @@
-name = "rybbit-analytics"
-main = "index.js"
-compatibility_date = "2024-01-01"
-
-# Explicit per-host routes. Replaces the previous wildcard routes which hit all
-# ~119 proxied *.viktorbarzin.me hosts and burned the Workers free-tier quota
-# (100k/day). Only hostnames present in SITE_IDS (index.js) get a route; all
-# other proxied hosts bypass the Worker entirely.
-#
-# rybbit.viktorbarzin.me is INTENTIONALLY EXCLUDED even though it has a site ID
-# in index.js — it serves the tracker JS (/api/script.js) and event POSTs
-# (/api/track), which are JSON/JS not HTML, so the content-type guard in
-# index.js would no-op anyway. Leaving it routed would make every Rybbit event
-# spawn a Worker invocation for no value (self-amplification).
-#
-# When adding a new site to SITE_IDS in index.js, also add its route here.
-routes = [
-  { pattern = "viktorbarzin.me/*",                      zone_name = "viktorbarzin.me" },
-  { pattern = "www.viktorbarzin.me/*",                  zone_name = "viktorbarzin.me" },
-  { pattern = "actualbudget.viktorbarzin.me/*",         zone_name = "viktorbarzin.me" },
-  { pattern = "crowdsec.viktorbarzin.me/*",             zone_name = "viktorbarzin.me" },
-  { pattern = "cyberchef.viktorbarzin.me/*",            zone_name = "viktorbarzin.me" },
-  { pattern = "dawarich.viktorbarzin.me/*",             zone_name = "viktorbarzin.me" },
-  { pattern = "pma.viktorbarzin.me/*",                  zone_name = "viktorbarzin.me" },
-  { pattern = "pgadmin.viktorbarzin.me/*",              zone_name = "viktorbarzin.me" },
-  { pattern = "audiobookshelf.viktorbarzin.me/*",       zone_name = "viktorbarzin.me" },
-  { pattern = "calibre.viktorbarzin.me/*",              zone_name = "viktorbarzin.me" },
-  { pattern = "stacks.viktorbarzin.me/*",               zone_name = "viktorbarzin.me" },
-  { pattern = "f1.viktorbarzin.me/*",                   zone_name = "viktorbarzin.me" },
-  { pattern = "frigate.viktorbarzin.me/*",              zone_name = "viktorbarzin.me" },
-  { pattern = "highlights-immich.viktorbarzin.me/*",    zone_name = "viktorbarzin.me" },
-  { pattern = "immich.viktorbarzin.me/*",               zone_name = "viktorbarzin.me" },
-  { pattern = "mail.viktorbarzin.me/*",                 zone_name = "viktorbarzin.me" },
-  { pattern = "navidrome.viktorbarzin.me/*",            zone_name = "viktorbarzin.me" },
-  { pattern = "networking-toolbox.viktorbarzin.me/*",   zone_name = "viktorbarzin.me" },
-  { pattern = "nextcloud.viktorbarzin.me/*",            zone_name = "viktorbarzin.me" },
-  { pattern = "paperless-ngx.viktorbarzin.me/*",        zone_name = "viktorbarzin.me" },
-  { pattern = "privatebin.viktorbarzin.me/*",           zone_name = "viktorbarzin.me" },
-  { pattern = "wrongmove.viktorbarzin.me/*",            zone_name = "viktorbarzin.me" },
-  { pattern = "send.viktorbarzin.me/*",                 zone_name = "viktorbarzin.me" },
-  { pattern = "stirling-pdf.viktorbarzin.me/*",         zone_name = "viktorbarzin.me" },
-  { pattern = "uptime-kuma.viktorbarzin.me/*",          zone_name = "viktorbarzin.me" },
-  { pattern = "vaultwarden.viktorbarzin.me/*",          zone_name = "viktorbarzin.me" }
-]
diff --git a/stacks/sealed-secrets/modules/sealed-secrets/main.tf b/stacks/sealed-secrets/modules/sealed-secrets/main.tf
index d1ac8e4a..2175e5d8 100644
--- a/stacks/sealed-secrets/modules/sealed-secrets/main.tf
+++ b/stacks/sealed-secrets/modules/sealed-secrets/main.tf
@@ -10,10 +10,6 @@ resource "kubernetes_namespace" "sealed_secrets" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 # -----------------------------------------------------------------------------
diff --git a/stacks/send/main.tf b/stacks/send/main.tf
index fc333246..6d4c2821 100644
--- a/stacks/send/main.tf
+++ b/stacks/send/main.tf
@@ -14,10 +14,6 @@ resource "kubernetes_namespace" "send" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -140,10 +136,6 @@ resource "kubernetes_deployment" "send" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 resource "kubernetes_service" "send" {
   metadata {
diff --git a/stacks/servarr/aiostreams/main.tf b/stacks/servarr/aiostreams/main.tf
index 4ef69adc..8855de65 100644
--- a/stacks/servarr/aiostreams/main.tf
+++ b/stacks/servarr/aiostreams/main.tf
@@ -10,10 +10,6 @@ resource "kubernetes_namespace" "aiostreams" {
       "istio-injection" : "disabled"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "random_id" "secret_key" {
@@ -109,10 +105,6 @@ resource "kubernetes_deployment" "aiostreams" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "aiostreams" {
diff --git a/stacks/servarr/flaresolverr/main.tf b/stacks/servarr/flaresolverr/main.tf
index 2538fafe..9b8f3f63 100644
--- a/stacks/servarr/flaresolverr/main.tf
+++ b/stacks/servarr/flaresolverr/main.tf
@@ -47,10 +47,6 @@ resource "kubernetes_deployment" "flaresolverr" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "flaresolverr" {
diff --git a/stacks/servarr/lidarr/main.tf b/stacks/servarr/lidarr/main.tf
index c2dfa465..9cc1f219 100644
--- a/stacks/servarr/lidarr/main.tf
+++ b/stacks/servarr/lidarr/main.tf
@@ -115,10 +115,6 @@ resource "kubernetes_deployment" "lidarr" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "lidarr" {
diff --git a/stacks/servarr/listenarr/main.tf b/stacks/servarr/listenarr/main.tf
index e30d42d0..28a5afb3 100644
--- a/stacks/servarr/listenarr/main.tf
+++ b/stacks/servarr/listenarr/main.tf
@@ -98,10 +98,6 @@ resource "kubernetes_deployment" "listenarr" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "listenarr" {
diff --git a/stacks/servarr/main.tf b/stacks/servarr/main.tf
index bf2de065..e5349093 100644
--- a/stacks/servarr/main.tf
+++ b/stacks/servarr/main.tf
@@ -51,10 +51,6 @@ resource "kubernetes_namespace" "servarr" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -86,15 +82,6 @@ module "qbittorrent" {
   homepage_credentials = local.homepage_credentials
 }
 
-module "mam_farming" {
-  source    = "./mam-farming"
-  namespace = kubernetes_namespace.servarr.metadata[0].name
-  depends_on = [
-    kubernetes_manifest.external_secret,
-    module.qbittorrent,
-  ]
-}
-
 module "flaresolverr" {
   source          = "./flaresolverr"
   tls_secret_name = var.tls_secret_name
diff --git a/stacks/servarr/mam-farming/files/bp-spender.py b/stacks/servarr/mam-farming/files/bp-spender.py
deleted file mode 100644
index 284a629b..00000000
--- a/stacks/servarr/mam-farming/files/bp-spender.py
+++ /dev/null
@@ -1,163 +0,0 @@
-"""
-MAM bonus-point spender — tier-aware, pay-what-we-owe.
-
-MAM's bonusBuy.php API enforces a hard 50 GiB minimum per purchase
-("Automated spenders are limited to buying at least 50 GB... due to log
-spam"). Valid API tiers are 50, 100, 200, 500 GiB (@ 500 BP/GiB). That
-means the "pay exactly what we owe" approach from the recovery plan
-rounds UP to 50 GiB for the first purchase — small buys can only be done
-via the web UI, not the API.
-
-Logic: pick the smallest valid tier that both (a) satisfies the ratio
-deficit and (b) we can afford without burning the BP reserve. Skip if
-nothing fits; the cron will retry in 6 h once BP grows.
-"""
-import math
-import os
-import sys
-import tempfile
-import time
-
-import requests
-
-PUSHGW = "http://prometheus-prometheus-pushgateway.monitoring:9091"
-COOKIE_FILE = "/data/mam_id"
-
-TARGET_RATIO = float(os.environ.get("TARGET_RATIO", "2.0"))
-RESERVE_BP = int(os.environ.get("RESERVE_BP", "500"))
-BP_PER_GB = int(os.environ.get("BP_PER_GB", "500"))
-# MAM-enforced minimum purchase for API callers: 50 GiB.
-API_TIERS_GIB = (50, 100, 200, 500)
-
-CLASS_CODES = {
-    "Mouse": 0,
-    "Vole": 1,
-    "User": 2,
-    "Power User": 3,
-    "Elite": 4,
-    "Torrent Master": 5,
-    "Power TM": 6,
-    "Elite TM": 7,
-    "VIP": 8,
-}
-
-
-def save_cookie(resp):
-    for c in resp.cookies:
-        if c.name == "mam_id":
-            fd, tmp = tempfile.mkstemp(dir="/data")
-            os.write(fd, c.value.encode())
-            os.close(fd)
-            os.rename(tmp, COOKIE_FILE)
-            return
-
-
-def push(metrics):
-    try:
-        requests.post(
-            f"{PUSHGW}/metrics/job/mam-bp-spender", data=metrics, timeout=10
-        )
-    except Exception as e:
-        print(f"pushgateway error: {e}", file=sys.stderr)
-
-
-def load_cookie():
-    if os.path.exists(COOKIE_FILE):
-        return open(COOKIE_FILE).read().strip()
-    return os.environ.get("MAM_ID", "")
-
-
-def main():
-    mam_id = load_cookie()
-    if not mam_id:
-        print("No mam_id available", file=sys.stderr)
-        sys.exit(1)
-
-    s = requests.Session()
-    s.cookies.set("mam_id", mam_id, domain=".myanonamouse.net")
-
-    r = s.get("https://www.myanonamouse.net/jsonLoad.php", timeout=15)
-    if r.status_code != 200:
-        push("mam_farming_cookie_expired 1\n")
-        print(f"Cookie expired: {r.status_code}", file=sys.stderr)
-        sys.exit(1)
-    save_cookie(r)
-
-    profile = r.json()
-    ratio = float(profile.get("ratio", 0) or 0)
-    classname = profile.get("classname", "Mouse")
-    class_code = CLASS_CODES.get(classname, 0)
-    # MAM returns `downloaded`/`uploaded` as pretty strings ("715.55 MiB");
-    # `*_bytes` are the authoritative integer fields.
-    downloaded = int(profile.get("downloaded_bytes", 0) or 0)
-    uploaded = int(profile.get("uploaded_bytes", 0) or 0)
-    bp = int(float(profile.get("seedbonus", 0) or 0))
-
-    deficit_bytes = max(0, int(downloaded * TARGET_RATIO) - uploaded)
-    needed_gib = math.ceil(deficit_bytes / (1024**3)) + 1 if deficit_bytes > 0 else 0
-    affordable_gib = max(0, (bp - RESERVE_BP) // BP_PER_GB)
-
-    # Pick the smallest API tier that satisfies the deficit AND fits the
-    # budget. If even the smallest tier is too expensive, skip — the cron
-    # will retry in 6 h once BP has grown.
-    buy_gib = 0
-    for tier in API_TIERS_GIB:
-        if tier >= needed_gib and tier <= affordable_gib:
-            buy_gib = tier
-            break
-    if buy_gib == 0 and needed_gib > 0 and affordable_gib >= API_TIERS_GIB[0]:
-        # Deficit exceeds all tiers we can afford — buy the largest
-        # tier that fits to make progress.
-        for tier in reversed(API_TIERS_GIB):
-            if tier <= affordable_gib:
-                buy_gib = tier
-                break
-
-    print(
-        f"Profile: ratio={ratio} class={classname} "
-        f"DL={downloaded / 1024**3:.2f} GiB UL={uploaded / 1024**3:.2f} GiB "
-        f"BP={bp} | deficit={deficit_bytes / 1024**3:.2f} GiB "
-        f"needed={needed_gib} affordable={affordable_gib} buy={buy_gib}"
-    )
-
-    spent_gib = 0
-    if buy_gib >= API_TIERS_GIB[0]:
-        time.sleep(3)
-        url = (
-            "https://www.myanonamouse.net/json/bonusBuy.php"
-            f"?spendtype=upload&amount={buy_gib}"
-        )
-        r2 = s.get(url, timeout=15)
-        save_cookie(r2)
-        try:
-            body = r2.json()
-        except ValueError:
-            body = {}
-        ok = r2.status_code == 200 and body.get("success") is True
-        print(
-            f"Buy {buy_gib} GiB -> {r2.status_code} "
-            f"success={body.get('success')} {r2.text[:160]}"
-        )
-        if ok:
-            spent_gib = buy_gib
-
-    metrics = (
-        "mam_farming_cookie_expired 0\n"
-        f"mam_ratio {ratio}\n"
-        f'mam_class_code{{classname="{classname}"}} {class_code}\n'
-        f"mam_downloaded_bytes {downloaded}\n"
-        f"mam_uploaded_bytes {uploaded}\n"
-        f"mam_bp_balance {bp}\n"
-        f"mam_bp_spent_gb {spent_gib}\n"
-        f"mam_bp_needed_gib {needed_gib}\n"
-        f"mam_bp_affordable_gib {affordable_gib}\n"
-    )
-    push(metrics)
-    print(
-        f"Done: BP={bp}, spent={spent_gib} GiB (needed={needed_gib}, "
-        f"affordable={affordable_gib})"
-    )
-
-
-if __name__ == "__main__":
-    main()
diff --git a/stacks/servarr/mam-farming/files/freeleech-grabber.py b/stacks/servarr/mam-farming/files/freeleech-grabber.py
deleted file mode 100644
index 3c7064c7..00000000
--- a/stacks/servarr/mam-farming/files/freeleech-grabber.py
+++ /dev/null
@@ -1,273 +0,0 @@
-"""
-MAM freeleech grabber — demand-first, ratio-guarded.
-
-Selects small-but-popular freeleech titles to grow the account's upload
-credit. Refuses to grab while the account is in Mouse class or ratio is
-below 1.2, because MAM rejects peer-list announces under those conditions
-and new grabs only deepen the ratio hole.
-
-Cleanup is handled by `mam-farming-janitor.py`, which runs unconditionally.
-"""
-import json
-import math
-import os
-import random
-import sys
-import tempfile
-import time
-
-import requests
-
-QB_URL = "http://qbittorrent.servarr.svc.cluster.local"
-PUSHGW = "http://prometheus-prometheus-pushgateway.monitoring:9091"
-COOKIE_FILE = "/data/mam_id"
-GRABBED_IDS_FILE = "/data/grabbed_ids.txt"
-
-MIN_MB = int(os.environ.get("MIN_MB", "50"))
-MAX_MB = int(os.environ.get("MAX_MB", "1024"))
-LEECHER_FLOOR = int(os.environ.get("LEECHER_FLOOR", "1"))
-# MAM's catalogue is well-seeded by design — a ceiling of 50 rejected ~99%
-# of candidates in live testing. 200 still filters out truly oversupplied
-# swarms while keeping enough working-set to grab 3-5 titles per run.
-SEEDER_CEILING = int(os.environ.get("SEEDER_CEILING", "200"))
-GRAB_PER_RUN = int(os.environ.get("GRAB_PER_RUN", "5"))
-MAX_TORRENTS = int(os.environ.get("MAX_TORRENTS", "500"))
-# The guard's real job is to prevent the Mouse-class death spiral (see RC1
-# in the original recovery plan). Once class > Mouse, MAM serves peer
-# lists normally and demand-first filtering (leechers>=1) keeps new grabs
-# upload-positive. Keep a low floor as a tripwire for catastrophic dips
-# rather than a steady-state block.
-RATIO_FLOOR = float(os.environ.get("RATIO_FLOOR", "0.5"))
-REQUEST_SLEEP = float(os.environ.get("REQUEST_SLEEP", "3"))
-
-CLASS_CODES = {
-    "Mouse": 0,
-    "Vole": 1,
-    "User": 2,
-    "Power User": 3,
-    "Elite": 4,
-    "Torrent Master": 5,
-    "Power TM": 6,
-    "Elite TM": 7,
-    "VIP": 8,
-}
-
-
-def parse_size(s):
-    # MAM pretty-prints sizes with thousands separators (e.g. "1,002.9 MiB").
-    units = {"B": 1, "KiB": 1024, "MiB": 1024**2, "GiB": 1024**3, "TiB": 1024**4}
-    parts = s.replace(",", "").split()
-    if len(parts) != 2:
-        return 0
-    return int(float(parts[0]) * units.get(parts[1], 1))
-
-
-def save_cookie(resp):
-    for c in resp.cookies:
-        if c.name == "mam_id":
-            fd, tmp = tempfile.mkstemp(dir="/data")
-            os.write(fd, c.value.encode())
-            os.close(fd)
-            os.rename(tmp, COOKIE_FILE)
-            return
-
-
-def push(metrics):
-    try:
-        requests.post(
-            f"{PUSHGW}/metrics/job/mam-freeleech-grabber", data=metrics, timeout=10
-        )
-    except Exception as e:
-        print(f"pushgateway error: {e}", file=sys.stderr)
-
-
-def load_cookie():
-    if os.path.exists(COOKIE_FILE):
-        return open(COOKIE_FILE).read().strip()
-    return os.environ.get("MAM_ID", "")
-
-
-def exit_cookie_expired(status):
-    push("mam_farming_cookie_expired 1\n")
-    print(f"Cookie expired: {status}", file=sys.stderr)
-    sys.exit(1)
-
-
-def main():
-    mam_id = load_cookie()
-    if not mam_id:
-        print("No mam_id available", file=sys.stderr)
-        sys.exit(1)
-
-    s = requests.Session()
-    s.cookies.set("mam_id", mam_id, domain=".myanonamouse.net")
-
-    r = s.get("https://www.myanonamouse.net/jsonLoad.php", timeout=15)
-    if r.status_code != 200:
-        exit_cookie_expired(r.status_code)
-    save_cookie(r)
-
-    profile = r.json()
-    ratio = float(profile.get("ratio", 0) or 0)
-    classname = profile.get("classname", "Mouse")
-    # `*_bytes` are authoritative integers; `downloaded`/`uploaded` are
-    # pretty strings like "715.55 MiB".
-    downloaded = int(profile.get("downloaded_bytes", 0) or 0)
-    uploaded = int(profile.get("uploaded_bytes", 0) or 0)
-    class_code = CLASS_CODES.get(classname, 0)
-
-    profile_metrics = (
-        f"mam_farming_cookie_expired 0\n"
-        f"mam_ratio {ratio}\n"
-        f'mam_class_code{{classname="{classname}"}} {class_code}\n'
-        f"mam_downloaded_bytes {downloaded}\n"
-        f"mam_uploaded_bytes {uploaded}\n"
-    )
-
-    if ratio < RATIO_FLOOR or classname == "Mouse":
-        reason = "mouse_class" if classname == "Mouse" else "low_ratio"
-        print(
-            f"Skip grab: ratio={ratio} class={classname} (floor={RATIO_FLOOR}) "
-            f"reason={reason}"
-        )
-        push(
-            profile_metrics
-            + f'mam_grabber_skipped_reason{{reason="{reason}"}} 1\n'
-            + f"mam_farming_grabbed 0\n"
-        )
-        return
-
-    time.sleep(REQUEST_SLEEP)
-    r = s.get("https://t.myanonamouse.net/json/dynamicSeedbox.php", timeout=15)
-    save_cookie(r)
-    print(f"Seedbox: {r.text[:80]}")
-
-    grabbed_ids = set()
-    if os.path.exists(GRABBED_IDS_FILE):
-        raw = open(GRABBED_IDS_FILE).read().strip()
-        grabbed_ids = set(raw.split("\n")) if raw else set()
-
-    try:
-        all_torrents = requests.get(
-            f"{QB_URL}/api/v2/torrents/info", timeout=10
-        ).json()
-    except Exception as e:
-        print(f"qBittorrent unreachable: {e}", file=sys.stderr)
-        push(profile_metrics + "mam_farming_grabbed 0\n")
-        sys.exit(1)
-
-    farming = [t for t in all_torrents if t.get("category") == "mam-farming"]
-    all_names_lower = {t["name"].lower() for t in all_torrents}
-    total_size = sum(t.get("size", 0) for t in farming)
-
-    print(
-        f"Profile: ratio={ratio} class={classname} | "
-        f"Farming: {len(farming)}, {total_size / (1024**3):.1f} GiB, "
-        f"tracked IDs: {len(grabbed_ids)}"
-    )
-
-    grabbed = 0
-    if len(farming) >= MAX_TORRENTS:
-        print(f"At max torrents ({MAX_TORRENTS}), skipping grab")
-    else:
-        time.sleep(REQUEST_SLEEP)
-        offset = random.randint(0, 1400)
-        params = {
-            "tor[searchType]": "fl",
-            "tor[searchIn]": "torrents",
-            "tor[perpage]": "50",
-            "tor[startNumber]": str(offset),
-        }
-        r = s.get(
-            "https://www.myanonamouse.net/tor/js/loadSearchJSONbasic.php",
-            params=params,
-            timeout=15,
-        )
-        save_cookie(r)
-        data = r.json()
-        results = data.get("data", []) or []
-        print(
-            f"Search offset={offset}, found={data.get('found', 0)}, "
-            f"page_results={len(results)}"
-        )
-
-        candidates = []
-        for t in results:
-            tid = str(t.get("id", ""))
-            if tid in grabbed_ids:
-                continue
-            title = t.get("title", "")
-            if any(title.lower() in n for n in all_names_lower):
-                grabbed_ids.add(tid)
-                continue
-            size = parse_size(t.get("size", "0 B"))
-            if size < MIN_MB * 1024**2 or size > MAX_MB * 1024**2:
-                continue
-            seeders = int(t.get("seeders", 999) or 999)
-            leechers = int(t.get("leechers", 0) or 0)
-            if leechers < LEECHER_FLOOR:
-                continue
-            if seeders > SEEDER_CEILING:
-                continue
-            wedge_bonus = (
-                200 if (t.get("free") == 1 or t.get("personal_freeleech") == 1) else 0
-            )
-            score = leechers * 3 - seeders * 0.5 + wedge_bonus
-            candidates.append((score, t))
-
-        candidates.sort(key=lambda x: -x[0])
-
-        for score, t in candidates[:GRAB_PER_RUN]:
-            time.sleep(REQUEST_SLEEP)
-            tid = t["id"]
-            r = s.get(
-                f"https://www.myanonamouse.net/tor/download.php?tid={tid}", timeout=15
-            )
-            save_cookie(r)
-            if not r.content.startswith(b"d"):
-                print(f"Bad torrent body for tid={tid}")
-                grabbed_ids.add(str(tid))
-                continue
-            add_resp = requests.post(
-                f"{QB_URL}/api/v2/torrents/add",
-                files={
-                    "torrents": (
-                        f"{tid}.torrent",
-                        r.content,
-                        "application/x-bittorrent",
-                    )
-                },
-                data={
-                    "savepath": "/downloads/mam-farming",
-                    "category": "mam-farming",
-                    "tags": "mam,freeleech",
-                },
-                timeout=20,
-            )
-            ok = add_resp.status_code == 200 and add_resp.text.strip() != "Fails."
-            print(
-                f"{'Added' if ok else 'FAILED'} (score={score:.1f}): "
-                f"{t['title'][:60]} ({t['size']}, S:{t.get('seeders')} "
-                f"L:{t.get('leechers')}) -> {add_resp.status_code}"
-            )
-            grabbed_ids.add(str(tid))
-            if ok:
-                grabbed += 1
-
-        fd, tmp = tempfile.mkstemp(dir="/data")
-        os.write(fd, "\n".join(grabbed_ids).encode())
-        os.close(fd)
-        os.rename(tmp, GRABBED_IDS_FILE)
-
-    metrics = (
-        profile_metrics
-        + f"mam_farming_grabbed {grabbed}\n"
-        + f"mam_farming_total_seeding {len(farming) + grabbed}\n"
-        + f"mam_farming_size_bytes {total_size}\n"
-    )
-    push(metrics)
-    print(f"Done: grabbed={grabbed}")
-
-
-if __name__ == "__main__":
-    main()
diff --git a/stacks/servarr/mam-farming/files/mam-farming-janitor.py b/stacks/servarr/mam-farming/files/mam-farming-janitor.py
deleted file mode 100644
index 646b2959..00000000
--- a/stacks/servarr/mam-farming/files/mam-farming-janitor.py
+++ /dev/null
@@ -1,177 +0,0 @@
-"""
-MAM farming janitor — H&R-aware cleanup.
-
-Runs every 15 minutes independently of the grabber's ratio guard: stuck
-torrents accumulate fastest precisely when the grabber is skipping. Never
-deletes a torrent that's inside MAM's 72-hour Hit-and-Run window.
-
-Set DRY_RUN=1 to log candidates without deleting (used for the first
-24 hours after rollout to sanity-check the rules against live state).
-"""
-import json
-import os
-import sys
-import time
-
-import requests
-
-QB_URL = "http://qbittorrent.servarr.svc.cluster.local"
-PUSHGW = "http://prometheus-prometheus-pushgateway.monitoring:9091"
-
-DRY_RUN = os.environ.get("DRY_RUN", "0") == "1"
-HNR_SEED_SECONDS = int(os.environ.get("HNR_SEED_SECONDS", str(72 * 3600)))
-NEVER_STARTED_AGE = int(os.environ.get("NEVER_STARTED_AGE", str(24 * 3600)))
-STALLED_AGE = int(os.environ.get("STALLED_AGE", str(3 * 86400)))
-SATISFIED_SEED_AGE = int(os.environ.get("SATISFIED_SEED_AGE", str(3 * 86400)))
-SATISFIED_SEEDER_FLOOR = int(os.environ.get("SATISFIED_SEEDER_FLOOR", "5"))
-GRACEFUL_SEED_AGE = int(os.environ.get("GRACEFUL_SEED_AGE", str(14 * 86400)))
-ZERO_DEMAND_AGE = int(os.environ.get("ZERO_DEMAND_AGE", str(7 * 86400)))
-UNREG_KEYWORDS = ("unregistered", "torrent not found", "info hash not authorized")
-
-REASONS = (
-    "never_started",
-    "stalled_old",
-    "satisfied_redundant",
-    "graceful_retire",
-    "zero_demand",
-    "unregistered",
-)
-
-
-def classify(t, now, tracker_msg):
-    age = now - int(t.get("added_on", 0) or 0)
-    progress = float(t.get("progress", 0) or 0)
-    downloaded = int(t.get("downloaded", 0) or 0)
-    uploaded = int(t.get("uploaded", 0) or 0)
-    seed_time = int(t.get("seeding_time", 0) or 0)
-    state = t.get("state", "")
-    num_complete = int(t.get("num_complete", 0) or 0)
-
-    if tracker_msg and any(k in tracker_msg.lower() for k in UNREG_KEYWORDS):
-        return "unregistered"
-
-    if progress < 1.0:
-        if age > NEVER_STARTED_AGE and downloaded == 0:
-            return "never_started"
-        if state == "stalledDL" and age > STALLED_AGE:
-            return "stalled_old"
-        return None
-
-    if seed_time < HNR_SEED_SECONDS:
-        return "hnr_window"
-
-    if seed_time > GRACEFUL_SEED_AGE:
-        return "graceful_retire"
-    if (
-        seed_time >= HNR_SEED_SECONDS
-        and uploaded == 0
-        and age > ZERO_DEMAND_AGE
-    ):
-        return "zero_demand"
-    if seed_time > SATISFIED_SEED_AGE and num_complete > SATISFIED_SEEDER_FLOOR:
-        return "satisfied_redundant"
-    return None
-
-
-def fetch_tracker_msg(hash_):
-    try:
-        resp = requests.get(
-            f"{QB_URL}/api/v2/torrents/trackers",
-            params={"hash": hash_},
-            timeout=10,
-        )
-        trackers = resp.json() or []
-    except Exception:
-        return ""
-    for tr in trackers:
-        url = tr.get("url", "")
-        if url.startswith("** ["):
-            continue
-        msg = tr.get("msg", "")
-        if msg:
-            return msg
-    return ""
-
-
-def push(metrics):
-    try:
-        requests.post(
-            f"{PUSHGW}/metrics/job/mam-farming-janitor", data=metrics, timeout=10
-        )
-    except Exception as e:
-        print(f"pushgateway error: {e}", file=sys.stderr)
-
-
-def main():
-    try:
-        all_torrents = requests.get(
-            f"{QB_URL}/api/v2/torrents/info", timeout=15
-        ).json()
-    except Exception as e:
-        print(f"qBittorrent unreachable: {e}", file=sys.stderr)
-        sys.exit(1)
-
-    farming = [t for t in all_torrents if t.get("category") == "mam-farming"]
-    now = int(time.time())
-
-    deleted = {r: 0 for r in REASONS}
-    preserved_hnr = 0
-    skipped_active = 0
-    delete_hashes = []
-
-    # Only inspect tracker msg on torrents with a peer problem — avoids
-    # hundreds of extra API calls when things are healthy.
-    for t in farming:
-        state = t.get("state", "")
-        progress = float(t.get("progress", 0) or 0)
-        tracker_msg = ""
-        if progress < 1.0 and state in ("stalledDL", "metaDL", "missingFiles"):
-            tracker_msg = fetch_tracker_msg(t["hash"])
-
-        verdict = classify(t, now, tracker_msg)
-        if verdict is None:
-            skipped_active += 1
-        elif verdict == "hnr_window":
-            preserved_hnr += 1
-        else:
-            deleted[verdict] += 1
-            delete_hashes.append((t["hash"], verdict, t.get("name", "")[:60]))
-
-    for hash_, reason, name in delete_hashes:
-        if DRY_RUN:
-            print(f"[DRY_RUN] would delete ({reason}): {name}")
-            continue
-        try:
-            requests.post(
-                f"{QB_URL}/api/v2/torrents/delete",
-                data={"hashes": hash_, "deleteFiles": "true"},
-                timeout=20,
-            )
-            print(f"Deleted ({reason}): {name}")
-        except Exception as e:
-            print(f"Delete failed for {name}: {e}", file=sys.stderr)
-
-    for reason in REASONS:
-        push(
-            f'mam_janitor_deleted_per_run{{reason="{reason}"}} '
-            f"{deleted[reason] if not DRY_RUN else 0}\n"
-            f'mam_janitor_dry_run_candidates{{reason="{reason}"}} '
-            f"{deleted[reason] if DRY_RUN else 0}\n"
-        )
-    push(
-        f"mam_janitor_preserved_hnr {preserved_hnr}\n"
-        f"mam_janitor_skipped_active {skipped_active}\n"
-        f"mam_janitor_dry_run {1 if DRY_RUN else 0}\n"
-        f"mam_janitor_last_run_timestamp {now}\n"
-    )
-
-    total = sum(deleted.values())
-    print(
-        f"Done: deleted={total} preserved_hnr={preserved_hnr} "
-        f"skipped_active={skipped_active} dry_run={DRY_RUN}"
-    )
-    print(f"  per reason: {deleted}")
-
-
-if __name__ == "__main__":
-    main()
diff --git a/stacks/servarr/mam-farming/main.tf b/stacks/servarr/mam-farming/main.tf
deleted file mode 100644
index 363212d2..00000000
--- a/stacks/servarr/mam-farming/main.tf
+++ /dev/null
@@ -1,281 +0,0 @@
-variable "namespace" {
-  type    = string
-  default = "servarr"
-}
-
-locals {
-  python_image = "docker.io/library/python:3.12-alpine"
-  pip_prefix   = "pip install -q requests > /dev/null 2>&1; python3 /tmp/script.py"
-  data_pvc     = "mam-farming-data-proxmox"
-
-  # Dry-run window was satisfied by a one-shot test on 2026-04-19 that
-  # produced 466 `never_started` candidates and 0 matches in any other
-  # reason bucket — consistent with Phase B's expected 495 stuck torrents.
-  # Enforcing from here on.
-  janitor_dry_run = "0"
-}
-
-# ------------------------------- PVC -------------------------------
-# Shared scratch volume for cookie + grabbed-ID dedup list. The existing
-# in-cluster PVC (kubectl-applied 2026-04-14) is adopted via an `import {}`
-# block declared in the root module (servarr/main.tf) — Terraform 1.5+
-# rejects imports inside child modules.
-
-resource "kubernetes_persistent_volume_claim" "mam_data" {
-  wait_until_bound = false
-  metadata {
-    name      = local.data_pvc
-    namespace = var.namespace
-    annotations = {
-      "resize.topolvm.io/threshold"     = "80%"
-      "resize.topolvm.io/increase"      = "100%"
-      "resize.topolvm.io/storage_limit" = "5Gi"
-    }
-  }
-  spec {
-    access_modes       = ["ReadWriteOnce"]
-    storage_class_name = "proxmox-lvm"
-    resources {
-      requests = {
-        storage = "1Gi"
-      }
-    }
-  }
-}
-
-# --------------------------- Grabber ---------------------------------
-# Every 30 minutes: skip while ratio < 1.2 or class == Mouse; otherwise
-# grab up to 5 small-but-popular freeleech torrents. Existing ConfigMap
-# + CronJob are adopted via imports in the parent stack.
-
-resource "kubernetes_config_map" "grabber_script" {
-  metadata {
-    name      = "mam-freeleech-grabber-script"
-    namespace = var.namespace
-  }
-  data = {
-    "script.py" = file("${path.module}/files/freeleech-grabber.py")
-  }
-}
-
-resource "kubernetes_cron_job_v1" "grabber" {
-  metadata {
-    name      = "mam-freeleech-grabber"
-    namespace = var.namespace
-  }
-  spec {
-    schedule                      = "*/30 * * * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 3
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 2
-        ttl_seconds_after_finished = 300
-        template {
-          metadata {}
-          spec {
-            restart_policy = "Never"
-            container {
-              name    = "freeleech-grabber"
-              image   = local.python_image
-              command = ["/bin/sh", "-c", local.pip_prefix]
-              env {
-                name = "MAM_ID"
-                value_from {
-                  secret_key_ref {
-                    name = "servarr-secrets"
-                    key  = "mam_id"
-                  }
-                }
-              }
-              resources {
-                requests = { memory = "64Mi", cpu = "10m" }
-                limits   = { memory = "128Mi" }
-              }
-              volume_mount {
-                name       = "script"
-                mount_path = "/tmp/script.py"
-                sub_path   = "script.py"
-              }
-              volume_mount {
-                name       = "data"
-                mount_path = "/data"
-              }
-            }
-            volume {
-              name = "script"
-              config_map {
-                name = kubernetes_config_map.grabber_script.metadata[0].name
-              }
-            }
-            volume {
-              name = "data"
-              persistent_volume_claim {
-                claim_name = kubernetes_persistent_volume_claim.mam_data.metadata[0].name
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# --------------------------- BP Spender ------------------------------
-# Every 6 hours: compute the upload deficit against TARGET_RATIO and buy
-# exactly what we need (+1 GiB margin), capped by BP reserve. Existing
-# ConfigMap + CronJob are adopted via imports in the parent stack.
-
-resource "kubernetes_config_map" "bp_spender_script" {
-  metadata {
-    name      = "mam-bp-spender-script"
-    namespace = var.namespace
-  }
-  data = {
-    "script.py" = file("${path.module}/files/bp-spender.py")
-  }
-}
-
-resource "kubernetes_cron_job_v1" "bp_spender" {
-  metadata {
-    name      = "mam-bp-spender"
-    namespace = var.namespace
-  }
-  spec {
-    schedule                      = "0 */6 * * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 3
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 2
-        ttl_seconds_after_finished = 300
-        template {
-          metadata {}
-          spec {
-            restart_policy = "Never"
-            container {
-              name    = "bp-spender"
-              image   = local.python_image
-              command = ["/bin/sh", "-c", local.pip_prefix]
-              env {
-                name = "MAM_ID"
-                value_from {
-                  secret_key_ref {
-                    name = "servarr-secrets"
-                    key  = "mam_id"
-                  }
-                }
-              }
-              resources {
-                requests = { memory = "64Mi", cpu = "10m" }
-                limits   = { memory = "128Mi" }
-              }
-              volume_mount {
-                name       = "script"
-                mount_path = "/tmp/script.py"
-                sub_path   = "script.py"
-              }
-              volume_mount {
-                name       = "data"
-                mount_path = "/data"
-              }
-            }
-            volume {
-              name = "script"
-              config_map {
-                name = kubernetes_config_map.bp_spender_script.metadata[0].name
-              }
-            }
-            volume {
-              name = "data"
-              persistent_volume_claim {
-                claim_name = kubernetes_persistent_volume_claim.mam_data.metadata[0].name
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# ----------------------------- Janitor -------------------------------
-# New: every 15 minutes, independent of grabber ratio guard. Deletes
-# stuck/unregistered/redundant torrents in category=mam-farming while
-# preserving torrents inside the 72h H&R window.
-
-resource "kubernetes_config_map" "janitor_script" {
-  metadata {
-    name      = "mam-farming-janitor-script"
-    namespace = var.namespace
-  }
-  data = {
-    "script.py" = file("${path.module}/files/mam-farming-janitor.py")
-  }
-}
-
-resource "kubernetes_cron_job_v1" "janitor" {
-  metadata {
-    name      = "mam-farming-janitor"
-    namespace = var.namespace
-  }
-  spec {
-    schedule                      = "*/15 * * * *"
-    concurrency_policy            = "Forbid"
-    successful_jobs_history_limit = 3
-    failed_jobs_history_limit     = 3
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 2
-        ttl_seconds_after_finished = 300
-        template {
-          metadata {}
-          spec {
-            restart_policy = "Never"
-            container {
-              name    = "farming-janitor"
-              image   = local.python_image
-              command = ["/bin/sh", "-c", local.pip_prefix]
-              env {
-                name  = "DRY_RUN"
-                value = local.janitor_dry_run
-              }
-              resources {
-                requests = { memory = "64Mi", cpu = "10m" }
-                limits   = { memory = "128Mi" }
-              }
-              volume_mount {
-                name       = "script"
-                mount_path = "/tmp/script.py"
-                sub_path   = "script.py"
-              }
-            }
-            volume {
-              name = "script"
-              config_map {
-                name = kubernetes_config_map.janitor_script.metadata[0].name
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
diff --git a/stacks/servarr/prowlarr/main.tf b/stacks/servarr/prowlarr/main.tf
index fd8a94bd..e0eabba4 100644
--- a/stacks/servarr/prowlarr/main.tf
+++ b/stacks/servarr/prowlarr/main.tf
@@ -126,10 +126,6 @@ resource "kubernetes_deployment" "prowlarr" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "prowlarr" {
diff --git a/stacks/servarr/qbittorrent/main.tf b/stacks/servarr/qbittorrent/main.tf
index 11f97418..b32f28ca 100644
--- a/stacks/servarr/qbittorrent/main.tf
+++ b/stacks/servarr/qbittorrent/main.tf
@@ -79,11 +79,11 @@ resource "kubernetes_deployment" "qbittorrent" {
       }
       spec {
         container {
-          image = "lscr.io/linuxserver/qbittorrent:5.1.4"
+          image = "lscr.io/linuxserver/qbittorrent:5.0.4"
           name  = "qbittorrent"
 
           port {
-            container_port = 8080
+            container_port = 8787
           }
           env {
             name  = "PUID"
@@ -113,15 +113,6 @@ resource "kubernetes_deployment" "qbittorrent" {
             name       = "audiobooks"
             mount_path = "/audiobooks"
           }
-          resources {
-            requests = {
-              memory = "512Mi"
-              cpu    = "50m"
-            }
-            limits = {
-              memory = "1Gi"
-            }
-          }
         }
         volume {
           name = "data"
@@ -144,10 +135,6 @@ resource "kubernetes_deployment" "qbittorrent" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "qbittorrent" {
@@ -260,10 +247,6 @@ resource "kubernetes_cron_job_v1" "qbittorrent_ratio_monitor" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_config_map" "ratio_monitor_script" {
@@ -298,26 +281,21 @@ tracker_stats = defaultdict(lambda: {
 })
 
 for t in torrents:
-    category = (t.get("category") or "").lower()
     tracker_url = t.get("tracker", "")
-    domain = ""
-    if tracker_url:
-        try:
-            domain = (urlparse(tracker_url).hostname or "").lower()
-        except Exception:
-            domain = ""
-
-    # Category is the only signal for queuedDL torrents whose announces
-    # haven't happened yet (tracker field is empty). Map those first so
-    # hundreds of MAM torrents don't collect under "unknown".
-    if category == "mam-farming" or "myanonamouse" in domain or "mam" in domain:
-        label = "mam"
-    elif category.startswith("abb") or "audiobookbay" in domain or "abb" in domain:
-        label = "audiobookbay"
-    elif domain:
-        label = domain.replace(".", "_")
+    if not tracker_url:
+        domain = "unknown"
     else:
-        label = "unknown"
+        try:
+            domain = urlparse(tracker_url).hostname or "unknown"
+        except Exception:
+            domain = "unknown"
+
+    if "myanonamouse" in domain or "mam" in domain.lower():
+        label = "mam"
+    elif "audiobookbay" in domain or "abb" in domain.lower():
+        label = "audiobookbay"
+    else:
+        label = domain.replace(".", "_")
 
     s = tracker_stats[label]
     s["uploaded"] += t.get("uploaded", 0)
diff --git a/stacks/servarr/readarr/main.tf b/stacks/servarr/readarr/main.tf
index 8af766b0..b63e3264 100644
--- a/stacks/servarr/readarr/main.tf
+++ b/stacks/servarr/readarr/main.tf
@@ -8,10 +8,6 @@ resource "kubernetes_namespace" "readarr" {
     #   "istio-injection" : "enabled"
     # }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 
@@ -115,10 +111,6 @@ resource "kubernetes_deployment" "readarr" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "readarr" {
diff --git a/stacks/servarr/soulseek/main.tf b/stacks/servarr/soulseek/main.tf
index e402a218..80944191 100644
--- a/stacks/servarr/soulseek/main.tf
+++ b/stacks/servarr/soulseek/main.tf
@@ -79,10 +79,6 @@ resource "kubernetes_deployment" "soulseek" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "soulseek" {
diff --git a/stacks/shadowsocks/main.tf b/stacks/shadowsocks/main.tf
index e98db03e..04cb6905 100644
--- a/stacks/shadowsocks/main.tf
+++ b/stacks/shadowsocks/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "shadowsocks" {
     #   "istio-injection" : "enabled"
     # }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -114,10 +110,6 @@ resource "kubernetes_deployment" "shadowsocks" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "mailserver" { # rename me
diff --git a/stacks/speedtest/main.tf b/stacks/speedtest/main.tf
index c94f1fab..be84e414 100644
--- a/stacks/speedtest/main.tf
+++ b/stacks/speedtest/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "speedtest" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -200,10 +196,6 @@ resource "kubernetes_deployment" "speedtest" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "speedtest" {
diff --git a/stacks/status-page/main.tf b/stacks/status-page/main.tf
index 6c943d6c..49f062f7 100644
--- a/stacks/status-page/main.tf
+++ b/stacks/status-page/main.tf
@@ -611,6 +611,6 @@ PYEOF
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
   }
 }
diff --git a/stacks/stirling-pdf/main.tf b/stacks/stirling-pdf/main.tf
index fd8ff151..b8306f96 100644
--- a/stacks/stirling-pdf/main.tf
+++ b/stacks/stirling-pdf/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "stirling-pdf" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -103,10 +99,6 @@ resource "kubernetes_deployment" "stirling-pdf" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "stirling-pdf" {
diff --git a/stacks/tandoor/main.tf b/stacks/tandoor/main.tf
index cd9a6126..136cd6f4 100644
--- a/stacks/tandoor/main.tf
+++ b/stacks/tandoor/main.tf
@@ -14,10 +14,6 @@ resource "kubernetes_namespace" "tandoor" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -224,10 +220,6 @@ resource "kubernetes_deployment" "tandoor" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "tandoor" {
diff --git a/stacks/technitium/modules/technitium/coredns.tf b/stacks/technitium/modules/technitium/coredns.tf
deleted file mode 100644
index 4ae0ab17..00000000
--- a/stacks/technitium/modules/technitium/coredns.tf
+++ /dev/null
@@ -1,69 +0,0 @@
-# =============================================================================
-# CoreDNS — Scaling, Anti-Affinity, PDB
-# =============================================================================
-#
-# CoreDNS is kube-system / kubeadm-managed. We only patch replicas + affinity
-# here (the Corefile ConfigMap is in main.tf). The hashicorp/kubernetes v3
-# provider removed the *_patch resource family from v2, so we apply the
-# desired state via `kubectl patch` inside a null_resource. The patch is
-# idempotent — a no-op when the deployment already matches.
-#
-# Kubeadm upgrades preserve the replica count on the existing deployment but
-# reset the pod template (including affinity) from the ClusterConfiguration.
-# Re-running `terraform apply` re-asserts the affinity patch; the readiness
-# gate in `readiness.tf` catches regressions if the patch is reverted.
-
-resource "null_resource" "coredns_scale_and_affinity" {
-  triggers = {
-    replicas  = 3
-    spec_hash = sha256(file("${path.module}/coredns.tf"))
-  }
-
-  provisioner "local-exec" {
-    command     = <<-BASH
-      set -euo pipefail
-      # 1. Scale to 3 replicas.
-      kubectl -n kube-system scale deploy/coredns --replicas=3
-
-      # 2. Switch anti-affinity from preferred → required on hostname.
-      kubectl -n kube-system patch deploy/coredns --type=json -p='[
-        {
-          "op": "replace",
-          "path": "/spec/template/spec/affinity/podAntiAffinity",
-          "value": {
-            "requiredDuringSchedulingIgnoredDuringExecution": [
-              {
-                "labelSelector": {
-                  "matchExpressions": [
-                    {"key": "k8s-app", "operator": "In", "values": ["kube-dns"]}
-                  ]
-                },
-                "topologyKey": "kubernetes.io/hostname"
-              }
-            ]
-          }
-        }
-      ]' || true
-
-      # 3. Wait for rollout to settle.
-      kubectl -n kube-system rollout status deploy/coredns --timeout=120s
-    BASH
-    interpreter = ["/bin/bash", "-c"]
-  }
-}
-
-# PDB — keep at least 2 CoreDNS pods running during voluntary disruptions.
-resource "kubernetes_pod_disruption_budget_v1" "coredns" {
-  metadata {
-    name      = "coredns"
-    namespace = "kube-system"
-  }
-  spec {
-    min_available = "2"
-    selector {
-      match_labels = {
-        "k8s-app" = "kube-dns"
-      }
-    }
-  }
-}
diff --git a/stacks/technitium/modules/technitium/ha.tf b/stacks/technitium/modules/technitium/ha.tf
index 71097afe..fb841a49 100644
--- a/stacks/technitium/modules/technitium/ha.tf
+++ b/stacks/technitium/modules/technitium/ha.tf
@@ -115,11 +115,11 @@ resource "kubernetes_deployment" "technitium_secondary" {
           }
           resources {
             requests = {
-              cpu    = "100m"
-              memory = "2Gi"
+              cpu    = "25m"
+              memory = "512Mi"
             }
             limits = {
-              memory = "2Gi"
+              memory = "512Mi"
             }
           }
           port {
@@ -165,10 +165,6 @@ resource "kubernetes_deployment" "technitium_secondary" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # Secondary web service — internal only, used by setup Job
@@ -270,11 +266,11 @@ resource "kubernetes_deployment" "technitium_tertiary" {
           }
           resources {
             requests = {
-              cpu    = "100m"
-              memory = "2Gi"
+              cpu    = "25m"
+              memory = "512Mi"
             }
             limits = {
-              memory = "2Gi"
+              memory = "512Mi"
             }
           }
           port {
@@ -320,10 +316,6 @@ resource "kubernetes_deployment" "technitium_tertiary" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "technitium_tertiary_web" {
@@ -391,95 +383,44 @@ resource "kubernetes_cron_job_v1" "technitium_zone_sync" {
                 set -e
                 PRIMARY="http://technitium-primary.technitium.svc.cluster.local:5380"
                 REPLICAS="http://technitium-secondary-web.technitium.svc.cluster.local:5380 http://technitium-tertiary-web.technitium.svc.cluster.local:5380"
-                PUSHGW="http://prometheus-prometheus-pushgateway.monitoring:9091/metrics/job/technitium-zone-sync"
-
-                # Track overall status — non-zero if any zone fails to create
-                OVERALL_STATUS=0
-                FAIL_COUNT=0
-                SYNCED=0
 
                 # Login to primary
                 P_TOKEN=$(curl -sf "$PRIMARY/api/user/login?user=$TECH_USER&pass=$TECH_PASS" | sed -n 's/.*"token":"\([^"]*\)".*/\1/p')
-                if [ -z "$P_TOKEN" ]; then echo "ERROR: Cannot login to primary"; OVERALL_STATUS=1; fi
+                if [ -z "$P_TOKEN" ]; then echo "ERROR: Cannot login to primary"; exit 1; fi
 
-                if [ "$OVERALL_STATUS" -eq 0 ]; then
-                  # Get zones from primary (excluding default zones that don't need replication)
-                  curl -sf "$PRIMARY/api/zones/list?token=$P_TOKEN" | tr ',' '\n' | sed -n 's/.*"name":"\([^"]*\)".*/\1/p' | \
-                    grep -v -E '^(localhost|0\.in-addr\.arpa|127\.in-addr\.arpa|255\.in-addr\.arpa|1\.0\.0.*ip6\.arpa)$$' > /tmp/primary_zones.txt
-                  PRIMARY_COUNT=$(wc -l < /tmp/primary_zones.txt)
-                  echo "Primary has $PRIMARY_COUNT zones to replicate"
+                # Get zones from primary (excluding default zones that don't need replication)
+                curl -sf "$PRIMARY/api/zones/list?token=$P_TOKEN" | tr ',' '\n' | sed -n 's/.*"name":"\([^"]*\)".*/\1/p' | \
+                  grep -v -E '^(localhost|0\.in-addr\.arpa|127\.in-addr\.arpa|255\.in-addr\.arpa|1\.0\.0.*ip6\.arpa)$$' > /tmp/primary_zones.txt
+                echo "Primary has $(wc -l < /tmp/primary_zones.txt) zones to replicate"
+
+                # Enable zone transfers on primary for all zones
+                while read -r zone; do
+                  curl -sf "$PRIMARY/api/zones/options/set?token=$P_TOKEN&zone=$zone&zoneTransfer=Allow" > /dev/null || true
+                done < /tmp/primary_zones.txt
+
+                # Sync to each replica
+                SYNCED=0
+                for REPLICA in $REPLICAS; do
+                  R_TOKEN=$(curl -sf "$REPLICA/api/user/login?user=$TECH_USER&pass=$TECH_PASS" | sed -n 's/.*"token":"\([^"]*\)".*/\1/p')
+                  if [ -z "$R_TOKEN" ]; then echo "WARN: Cannot login to $REPLICA, skipping"; continue; fi
+
+                  # Get existing zones on this replica
+                  curl -sf "$REPLICA/api/zones/list?token=$R_TOKEN" | tr ',' '\n' | sed -n 's/.*"name":"\([^"]*\)".*/\1/p' > /tmp/replica_zones.txt
 
-                  # Enable zone transfers on primary for all zones
                   while read -r zone; do
-                    curl -sf "$PRIMARY/api/zones/options/set?token=$P_TOKEN&zone=$zone&zoneTransfer=Allow" > /dev/null || true
-                  done < /tmp/primary_zones.txt
-
-                  # Sync to each replica
-                  for REPLICA in $REPLICAS; do
-                    R_NAME=$(echo "$REPLICA" | sed 's|http://||; s|-web.*||')
-                    R_TOKEN=$(curl -sf "$REPLICA/api/user/login?user=$TECH_USER&pass=$TECH_PASS" | sed -n 's/.*"token":"\([^"]*\)".*/\1/p')
-                    if [ -z "$R_TOKEN" ]; then
-                      echo "ERROR: Cannot login to $REPLICA"
-                      OVERALL_STATUS=1
-                      FAIL_COUNT=$((FAIL_COUNT + 1))
-                      # Push replica zone_count=0 so divergence alert fires
-                      printf 'technitium_zone_count{instance="%s"} 0\n' "$R_NAME" | \
-                        curl -sf --data-binary @- "$PUSHGW/instance/$R_NAME" || true
-                      continue
+                    if grep -qx "$zone" /tmp/replica_zones.txt; then
+                      # Zone exists — just resync
+                      curl -sf "$REPLICA/api/zones/resync?token=$R_TOKEN&zone=$zone" > /dev/null || true
+                    else
+                      # New zone — create as Secondary and sync
+                      echo "NEW: Creating $zone on $REPLICA"
+                      curl -sf "$REPLICA/api/zones/create?token=$R_TOKEN&zone=$zone&type=Secondary&primaryNameServerAddresses=$PRIMARY_IP" > /dev/null || true
+                      SYNCED=$((SYNCED + 1))
                     fi
+                  done < /tmp/primary_zones.txt
+                done
 
-                    # Get existing zones on this replica
-                    curl -sf "$REPLICA/api/zones/list?token=$R_TOKEN" | tr ',' '\n' | sed -n 's/.*"name":"\([^"]*\)".*/\1/p' > /tmp/replica_zones.txt
-                    REPLICA_COUNT=$(wc -l < /tmp/replica_zones.txt)
-
-                    while read -r zone; do
-                      if grep -qx "$zone" /tmp/replica_zones.txt; then
-                        # Zone exists — reconcile primaryNameServerAddresses to the
-                        # stable FQDN before resync. Without this, a zone created
-                        # against an old pod IP (pre-service-ClusterIP era) stays
-                        # pinned to that dead IP forever and zone transfers fail
-                        # silently. Idempotent — Technitium accepts identical values.
-                        curl -sf "$REPLICA/api/zones/options/set?token=$R_TOKEN&zone=$zone&primaryNameServerAddresses=$PRIMARY_HOST" > /dev/null || true
-                        curl -sf "$REPLICA/api/zones/resync?token=$R_TOKEN&zone=$zone" > /dev/null || true
-                      else
-                        # New zone — create as Secondary and validate response
-                        echo "NEW: Creating $zone on $REPLICA"
-                        RESP=$(curl -sf "$REPLICA/api/zones/create?token=$R_TOKEN&zone=$zone&type=Secondary&primaryNameServerAddresses=$PRIMARY_HOST" || echo '{"status":"error"}')
-                        if echo "$RESP" | grep -q '"status":"ok"'; then
-                          SYNCED=$((SYNCED + 1))
-                        else
-                          echo "ERROR: Failed to create $zone on $REPLICA: $RESP"
-                          OVERALL_STATUS=1
-                          FAIL_COUNT=$((FAIL_COUNT + 1))
-                        fi
-                      fi
-                    done < /tmp/primary_zones.txt
-
-                    # Push per-replica zone count
-                    printf 'technitium_zone_count{instance="%s"} %s\n' "$R_NAME" "$REPLICA_COUNT" | \
-                      curl -sf --data-binary @- "$PUSHGW/instance/$R_NAME" || true
-                  done
-
-                  # Push primary zone count
-                  printf 'technitium_zone_count{instance="primary"} %s\n' "$PRIMARY_COUNT" | \
-                    curl -sf --data-binary @- "$PUSHGW/instance/primary" || true
-                fi
-
-                # Push overall status (0=ok, 1=fail) + last-run timestamp
-                cat <<METRICS | curl -sf --data-binary @- "$PUSHGW" || true
-                # HELP technitium_zone_sync_status Zone sync job status (0=ok, 1=fail)
-                # TYPE technitium_zone_sync_status gauge
-                technitium_zone_sync_status $OVERALL_STATUS
-                # HELP technitium_zone_sync_failures Zones that failed to create this run
-                # TYPE technitium_zone_sync_failures gauge
-                technitium_zone_sync_failures $FAIL_COUNT
-                # HELP technitium_zone_sync_last_run Timestamp of last zone-sync run
-                # TYPE technitium_zone_sync_last_run gauge
-                technitium_zone_sync_last_run $(date +%s)
-                METRICS
-
-                echo "Zone sync complete. $SYNCED new zone(s) created. $FAIL_COUNT failures. status=$OVERALL_STATUS"
-                exit $OVERALL_STATUS
+                echo "Zone sync complete. $$SYNCED new zone(s) created."
               SCRIPT
               ]
               env {
@@ -491,14 +432,7 @@ resource "kubernetes_cron_job_v1" "technitium_zone_sync" {
                 value = var.technitium_password
               }
               env {
-                # Service ClusterIP — Terraform tracks it on every apply, and the
-                # reconcile loop below re-applies it to every existing zone on
-                # every run (*/30m), so any drift (e.g. service recreate → new
-                # ClusterIP, or historical pod-IP values still pinned on replicas)
-                # self-heals within a sync cycle. Hostname form was tried but
-                # Technitium's own resolver doesn't forward svc.cluster.local,
-                # so `primaryNameServerAddresses` must be a literal IP.
-                name  = "PRIMARY_HOST"
+                name  = "PRIMARY_IP"
                 value = kubernetes_service.technitium_primary.spec[0].cluster_ip
               }
             }
@@ -513,8 +447,4 @@ resource "kubernetes_cron_job_v1" "technitium_zone_sync" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/technitium/modules/technitium/main.tf b/stacks/technitium/modules/technitium/main.tf
index 7f5e4463..fc6f8c6f 100644
--- a/stacks/technitium/modules/technitium/main.tf
+++ b/stacks/technitium/modules/technitium/main.tf
@@ -20,10 +20,6 @@ resource "kubernetes_namespace" "technitium" {
     #   "istio-injection" : "enabled"
     # }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -60,15 +56,10 @@ resource "kubernetes_config_map" "coredns" {
               ttl 30
           }
           prometheus :9153
-          forward . 10.0.20.1 8.8.8.8 1.1.1.1 {
-              policy sequential
-              health_check 5s
-              max_fails 2
-          }
+          forward . 10.0.20.1 8.8.8.8 1.1.1.1
           cache {
             success 10000 300 6
             denial 10000 300 60
-            serve_stale 86400s
           }
           loop
           reload
@@ -82,14 +73,10 @@ resource "kubernetes_config_map" "coredns" {
           rcode NXDOMAIN
           fallthrough
         }
-        forward . 10.96.0.53 {
-          health_check 5s
-          max_fails 2
-        }
+        forward . 10.96.0.53 # Technitium ClusterIP (technitium-dns-internal)
         cache {
           success 10000 300 6
           denial 10000 300 60
-          serve_stale 86400s
         }
       }
     EOF
@@ -170,11 +157,11 @@ resource "kubernetes_deployment" "technitium" {
           name  = "technitium"
           resources {
             requests = {
-              cpu    = "100m"
-              memory = "2Gi"
+              cpu    = "25m"
+              memory = "512Mi"
             }
             limits = {
-              memory = "2Gi"
+              memory = "512Mi"
             }
           }
           port {
@@ -230,10 +217,6 @@ resource "kubernetes_deployment" "technitium" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "technitium-web" {
diff --git a/stacks/technitium/modules/technitium/readiness.tf b/stacks/technitium/modules/technitium/readiness.tf
deleted file mode 100644
index a19dfb6a..00000000
--- a/stacks/technitium/modules/technitium/readiness.tf
+++ /dev/null
@@ -1,100 +0,0 @@
-# =============================================================================
-# Post-apply readiness gate
-# =============================================================================
-#
-# Runs after all three Technitium deployments + the DNS LB service have been
-# applied. Verifies that every instance is rolled out, the API responds, the
-# DNS pods answer queries, and zone counts agree. Fails the apply if any
-# check fails. No canary — this is a hard gate.
-#
-# Override for emergency maintenance: apply with `-var skip_readiness=true`
-# (set via terragrunt inputs when needed), or `terraform apply -target` the
-# resources needed without touching this module.
-
-variable "skip_readiness" {
-  type        = bool
-  default     = false
-  description = "Skip the Technitium readiness gate. Use only for emergency maintenance."
-}
-
-resource "null_resource" "technitium_readiness_gate" {
-  count = var.skip_readiness ? 0 : 1
-
-  # Re-run when any deployment image/resource changes, or on every apply
-  # (timestamp) so transient drift still gets exercised.
-  triggers = {
-    primary_digest   = sha256(jsonencode(kubernetes_deployment.technitium.spec[0].template[0].spec[0].container[0]))
-    secondary_digest = sha256(jsonencode(kubernetes_deployment.technitium_secondary.spec[0].template[0].spec[0].container[0]))
-    tertiary_digest  = sha256(jsonencode(kubernetes_deployment.technitium_tertiary.spec[0].template[0].spec[0].container[0]))
-    corefile         = sha256(kubernetes_config_map.coredns.data["Corefile"])
-    always           = timestamp()
-  }
-
-  provisioner "local-exec" {
-    command     = <<-BASH
-      set -euo pipefail
-      NS=technitium
-      echo "=== Technitium readiness gate ==="
-
-      # 1. Wait for rollout on all three deployments.
-      for d in technitium technitium-secondary technitium-tertiary; do
-        echo "-> rollout status deploy/$d"
-        kubectl -n $NS rollout status deploy/$d --timeout=180s
-      done
-
-      # 2. Per-pod DNS check + content parity. Technitium pods have `dig` but
-      #    no HTTP client, so we use DNS directly. Each pod must return an A
-      #    record for idrac.viktorbarzin.lan, AND the answer must match across
-      #    all three instances. This catches:
-      #    - Zone not loaded on an instance (NXDOMAIN / empty)
-      #    - Zone drift between primary and replicas (different A record)
-      #    The AXFR chain means all three should converge on the same value.
-      PODS=$(kubectl -n $NS get pod -l dns-server=true -o jsonpath='{range .items[*]}{.metadata.name}{"\n"}{end}')
-      if [ -z "$PODS" ]; then
-        echo "ERROR: no dns-server=true pods found"
-        exit 1
-      fi
-
-      # Zone load can take tens of seconds after a memory-bump rollout, so retry
-      # up to 6 times with 10s backoff before giving up.
-      ANSWERS=""
-      for POD in $PODS; do
-        echo "-> dig @127.0.0.1 idrac.viktorbarzin.lan on $POD"
-        ANSWER=""
-        for TRY in 1 2 3 4 5 6; do
-          ANSWER=$(kubectl -n $NS exec "$POD" -- dig +short +time=5 +tries=2 @127.0.0.1 idrac.viktorbarzin.lan A 2>&1 || true)
-          if echo "$ANSWER" | grep -qE '^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$'; then
-            break
-          fi
-          echo "   attempt $TRY: no A record yet, sleeping 10s"
-          sleep 10
-          ANSWER=""
-        done
-        if [ -z "$ANSWER" ]; then
-          echo "ERROR: pod $POD never returned an A record for idrac.viktorbarzin.lan"
-          exit 1
-        fi
-        echo "   $POD → $ANSWER"
-        ANSWERS="$ANSWERS $ANSWER"
-      done
-
-      # 3. Content parity — all three instances must agree on the A record.
-      UNIQ=$(echo "$ANSWERS" | tr ' ' '\n' | grep -v '^$' | sort -u | wc -l)
-      if [ "$UNIQ" -gt 1 ]; then
-        echo "ERROR: instances returned different A records for idrac.viktorbarzin.lan: $ANSWERS"
-        exit 1
-      fi
-
-      echo "=== Technitium readiness gate PASSED ==="
-    BASH
-    interpreter = ["/bin/bash", "-c"]
-  }
-
-  depends_on = [
-    kubernetes_deployment.technitium,
-    kubernetes_deployment.technitium_secondary,
-    kubernetes_deployment.technitium_tertiary,
-    kubernetes_service.technitium-dns,
-    kubernetes_pod_disruption_budget_v1.technitium_dns,
-  ]
-}
diff --git a/stacks/terminal/main.tf b/stacks/terminal/main.tf
index c3d894b2..6368fd42 100644
--- a/stacks/terminal/main.tf
+++ b/stacks/terminal/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "terminal" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
diff --git a/stacks/tor-proxy/main.tf b/stacks/tor-proxy/main.tf
index 407fba33..02a6be30 100644
--- a/stacks/tor-proxy/main.tf
+++ b/stacks/tor-proxy/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "tor-proxy" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -105,10 +101,6 @@ resource "kubernetes_deployment" "tor-proxy" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "tor-proxy" {
@@ -232,10 +224,6 @@ resource "kubernetes_deployment" "torrserver" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "torrserver" {
@@ -295,13 +283,12 @@ resource "kubernetes_service" "torrserver-bt" {
 }
 
 module "torrserver_ingress" {
-  source           = "../../modules/kubernetes/ingress_factory"
-  namespace        = kubernetes_namespace.tor-proxy.metadata[0].name
-  name             = "torrserver"
-  tls_secret_name  = var.tls_secret_name
-  port             = "8090"
-  protected        = true
-  external_monitor = false
+  source          = "../../modules/kubernetes/ingress_factory"
+  namespace       = kubernetes_namespace.tor-proxy.metadata[0].name
+  name            = "torrserver"
+  tls_secret_name = var.tls_secret_name
+  port            = "8090"
+  protected       = true
   extra_annotations = {
     "gethomepage.dev/enabled"      = "true"
     "gethomepage.dev/name"         = "TorrServer"
diff --git a/stacks/trading-bot/main.tf b/stacks/trading-bot/main.tf
index 3f941b0e..103f773b 100644
--- a/stacks/trading-bot/main.tf
+++ b/stacks/trading-bot/main.tf
@@ -10,6 +10,7 @@ variable "tls_secret_name" {
 variable "nfs_server" { type = string }
 variable "postgresql_host" { type = string }
 variable "redis_host" { type = string }
+variable "ollama_host" { type = string }
 locals {
   common_env = {
     TRADING_REDIS_URL                    = "redis://${var.redis_host}:6379/4"
@@ -17,6 +18,8 @@ locals {
     TRADING_ALPACA_BASE_URL              = "https://paper-api.alpaca.markets"
     TRADING_PAPER_TRADING                = "true"
     TRADING_REDDIT_USER_AGENT            = "trading-bot/0.1"
+    TRADING_OLLAMA_HOST                  = "http://${var.ollama_host}:11434"
+    TRADING_OLLAMA_MODEL                 = "gemma3"
     TRADING_WATCHLIST                    = "[\"AAPL\",\"TSLA\",\"NVDA\",\"MSFT\",\"GOOGL\"]"
     TRADING_BAR_TIMEFRAME                = "5Min"
     TRADING_POLL_INTERVAL_SECONDS        = "60"
@@ -252,7 +255,7 @@ resource "kubernetes_deployment" "trading-bot-frontend" {
           app = "trading-bot-frontend"
         }
         annotations = {
-          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis.redis:6379"
         }
       }
       spec {
@@ -314,11 +317,9 @@ resource "kubernetes_deployment" "trading-bot-frontend" {
     }
   }
   lifecycle {
-    # DRIFT_WORKAROUND: CI pipeline owns image tags for api + migrations containers. Reviewed 2026-04-18.
     ignore_changes = [
       spec[0].template[0].spec[0].container[0].image,
       spec[0].template[0].spec[0].container[1].image,
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
     ]
   }
   depends_on = [kubernetes_job.migrations]
@@ -353,7 +354,7 @@ resource "kubernetes_deployment" "trading-bot-workers" {
           app = "trading-bot-workers"
         }
         annotations = {
-          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis-master.redis:6379"
+          "dependency.kyverno.io/wait-for" = "postgresql.dbaas:5432,redis.redis:6379"
         }
       }
       spec {
@@ -577,7 +578,6 @@ resource "kubernetes_deployment" "trading-bot-workers" {
     }
   }
   lifecycle {
-    # DRIFT_WORKAROUND: CI pipeline owns image tags for all 6 worker containers. Reviewed 2026-04-18.
     ignore_changes = [
       spec[0].template[0].spec[0].container[0].image,
       spec[0].template[0].spec[0].container[1].image,
@@ -585,7 +585,6 @@ resource "kubernetes_deployment" "trading-bot-workers" {
       spec[0].template[0].spec[0].container[3].image,
       spec[0].template[0].spec[0].container[4].image,
       spec[0].template[0].spec[0].container[5].image,
-      spec[0].template[0].spec[0].dns_config, # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
     ]
   }
   depends_on = [kubernetes_job.migrations]
diff --git a/stacks/traefik/modules/traefik/error-pages.tf b/stacks/traefik/modules/traefik/error-pages.tf
index 54346a07..ff56e554 100644
--- a/stacks/traefik/modules/traefik/error-pages.tf
+++ b/stacks/traefik/modules/traefik/error-pages.tf
@@ -89,7 +89,7 @@ resource "kubernetes_deployment" "error_pages" {
   }
 
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/traefik/modules/traefik/main.tf b/stacks/traefik/modules/traefik/main.tf
index 8be8b10a..ceed9bdb 100644
--- a/stacks/traefik/modules/traefik/main.tf
+++ b/stacks/traefik/modules/traefik/main.tf
@@ -20,10 +20,6 @@ resource "kubernetes_namespace" "traefik" {
       tier                         = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "helm_release" "traefik" {
@@ -145,6 +141,12 @@ resource "helm_release" "traefik" {
         protocol    = "TCP"
         expose      = { default = true }
       }
+      ollama-tcp = {
+        port        = 11434
+        exposedPort = 11434
+        protocol    = "TCP"
+        expose      = { default = true }
+      }
     }
 
     service = {
@@ -200,7 +202,7 @@ resource "helm_release" "traefik" {
       # Explicit entrypoint timeouts to bound tail latency from slow clients
       "--entryPoints.websecure.transport.respondingTimeouts.readTimeout=60s",
       "--entryPoints.websecure.transport.respondingTimeouts.writeTimeout=60s",
-      "--entryPoints.websecure.transport.respondingTimeouts.idleTimeout=600s",
+      "--entryPoints.websecure.transport.respondingTimeouts.idleTimeout=180s",
       # Use forwarded headers from trusted proxies
       "--entryPoints.websecure.forwardedHeaders.insecure=false",
       "--entryPoints.web.forwardedHeaders.insecure=false",
@@ -307,12 +309,6 @@ resource "kubernetes_config_map" "bot_block_proxy_config" {
       server {
           listen 8080;
           location /auth {
-              access_by_lua_block {
-                  ngx.req.clear_header("If-Match")
-                  ngx.req.clear_header("If-None-Match")
-                  ngx.req.clear_header("If-Modified-Since")
-                  ngx.req.clear_header("If-Unmodified-Since")
-              }
               proxy_pass http://poison_fountain;
               proxy_connect_timeout 3s;
               proxy_read_timeout 5s;
@@ -379,7 +375,7 @@ resource "kubernetes_deployment" "bot_block_proxy" {
         }
         container {
           name  = "nginx"
-          image = "openresty/openresty:alpine"
+          image = "nginx:1-alpine"
 
           port {
             container_port = 8080
@@ -428,10 +424,6 @@ resource "kubernetes_deployment" "bot_block_proxy" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "bot_block_proxy" {
@@ -656,10 +648,6 @@ resource "kubernetes_deployment" "auth_proxy" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "auth_proxy" {
diff --git a/stacks/traefik/modules/traefik/middleware.tf b/stacks/traefik/modules/traefik/middleware.tf
index 2c8ae8c4..9cfac0a3 100644
--- a/stacks/traefik/modules/traefik/middleware.tf
+++ b/stacks/traefik/modules/traefik/middleware.tf
@@ -244,8 +244,8 @@ resource "kubernetes_manifest" "middleware_immich_rate_limit" {
     }
     spec = {
       rateLimit = {
-        average = 1000
-        burst   = 20000
+        average = 500
+        burst   = 5000
       }
     }
   }
diff --git a/stacks/travel_blog/main.tf b/stacks/travel_blog/main.tf
index 26c9ae67..a2b4eb13 100644
--- a/stacks/travel_blog/main.tf
+++ b/stacks/travel_blog/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "travel-blog" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -75,10 +71,6 @@ resource "kubernetes_deployment" "blog" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "travel-blog" {
diff --git a/stacks/tuya-bridge/main.tf b/stacks/tuya-bridge/main.tf
index 574ed95d..9f9d5c16 100644
--- a/stacks/tuya-bridge/main.tf
+++ b/stacks/tuya-bridge/main.tf
@@ -11,10 +11,6 @@ resource "kubernetes_namespace" "tuya-bridge" {
       tier = local.tiers.cluster
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -118,26 +114,6 @@ resource "kubernetes_deployment" "tuya-bridge" {
               }
             }
           }
-          liveness_probe {
-            http_get {
-              path = "/health"
-              port = 8080
-            }
-            initial_delay_seconds = 60
-            period_seconds        = 30
-            timeout_seconds       = 5
-            failure_threshold     = 6
-          }
-          readiness_probe {
-            http_get {
-              path = "/health"
-              port = 8080
-            }
-            initial_delay_seconds = 10
-            period_seconds        = 15
-            timeout_seconds       = 5
-            failure_threshold     = 2
-          }
           resources {
             requests = {
               cpu    = "10m"
@@ -151,10 +127,6 @@ resource "kubernetes_deployment" "tuya-bridge" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "tuya-bridge" {
diff --git a/stacks/uptime-kuma/modules/uptime-kuma/main.tf b/stacks/uptime-kuma/modules/uptime-kuma/main.tf
index 3572c2ce..f9bf3b35 100644
--- a/stacks/uptime-kuma/modules/uptime-kuma/main.tf
+++ b/stacks/uptime-kuma/modules/uptime-kuma/main.tf
@@ -32,10 +32,6 @@ resource "kubernetes_namespace" "uptime-kuma" {
     #   "istio-injection" : "enabled"
     # }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -105,8 +101,8 @@ resource "kubernetes_deployment" "uptime-kuma" {
 
           resources {
             requests = {
-              cpu    = "100m"
-              memory = "128Mi"
+              cpu    = "50m"
+              memory = "64Mi"
             }
             limits = {
               memory = "512Mi"
@@ -156,10 +152,6 @@ resource "kubernetes_deployment" "uptime-kuma" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 resource "kubernetes_service" "uptime-kuma" {
   metadata {
@@ -347,12 +339,6 @@ FALLBACK_FILE = "/config/targets.json"
 PREFIX = "[External] "
 ANNOTATION_ENABLE = "uptime.viktorbarzin.me/external-monitor"
 ANNOTATION_NAME = "uptime.viktorbarzin.me/external-monitor-name"
-ANNOTATION_PATH = "uptime.viktorbarzin.me/external-monitor-path"
-DEFAULT_PATH = "/"
-# Homepages often serve 200/30x/40x even when backends are degraded.
-# When an explicit probe path is set we expect a real healthz: tighten codes.
-STATUSCODES_LENIENT = ["200-299", "300-399", "400-499"]
-STATUSCODES_STRICT = ["200-299"]
 SA_DIR = "/var/run/secrets/kubernetes.io/serviceaccount"
 API_SERVER = f"https://{os.environ.get('KUBERNETES_SERVICE_HOST', 'kubernetes.default.svc.cluster.local')}:{os.environ.get('KUBERNETES_SERVICE_PORT', '443')}"
 
@@ -387,19 +373,11 @@ def load_from_api():
                 host = rules[0].get("host")
         if not host or not host.endswith(".viktorbarzin.me"):
             continue  # skip internal-only or non-public hosts
+        if host in seen:
+            continue
+        seen.add(host)
         label = anns.get(ANNOTATION_NAME) or host.split(".")[0]
-        monitor_name = f"{PREFIX}{label}"
-        if monitor_name in seen:
-            continue  # dedupe by final monitor name, not hostname (fixes duplicate creation)
-        seen.add(monitor_name)
-        path = anns.get(ANNOTATION_PATH, "").strip()
-        if path and not path.startswith("/"):
-            path = "/" + path
-        # Omit trailing slash when no explicit path — matches pre-existing monitor URLs
-        # and avoids every sync re-updating unchanged monitors.
-        url = f"https://{host}{path}" if path else f"https://{host}"
-        statuscodes = STATUSCODES_STRICT if path else STATUSCODES_LENIENT
-        targets.append({"name": label, "url": url, "statuscodes": statuscodes})
+        targets.append({"name": label, "url": f"https://{host}"})
     return targets
 
 
@@ -407,7 +385,7 @@ def load_from_configmap():
     """Legacy fallback: read the ConfigMap list."""
     with open(FALLBACK_FILE) as f:
         raw = json.load(f)
-    return [{"name": t["name"], "url": t["url"], "statuscodes": STATUSCODES_LENIENT} for t in raw]
+    return [{"name": t["name"], "url": t["url"]} for t in raw]
 
 
 try:
@@ -434,12 +412,10 @@ for m in monitors:
         existing_external[m["name"]] = m
 
 target_names = set()
-targets_by_name = {}
 created = 0
 for t in targets:
     monitor_name = f"{PREFIX}{t['name']}"
     target_names.add(monitor_name)
-    targets_by_name[monitor_name] = t
     if monitor_name not in existing_external:
         print(f"Creating monitor: {monitor_name} -> {t['url']}")
         api.add_monitor(
@@ -448,31 +424,11 @@ for t in targets:
             url=t["url"],
             interval=300,
             maxretries=3,
-            accepted_statuscodes=t["statuscodes"],
+            accepted_statuscodes=["200-299", "300-399", "400-499"],
         )
         created += 1
         time.sleep(0.3)
 
-# Update monitors whose target URL or accepted status codes drifted
-# (e.g., new probe-path annotation added on an existing ingress).
-updated = 0
-for monitor_name, t in targets_by_name.items():
-    existing = existing_external.get(monitor_name)
-    if not existing:
-        continue
-    current_url = existing.get("url")
-    current_codes = existing.get("accepted_statuscodes") or []
-    if current_url == t["url"] and current_codes == t["statuscodes"]:
-        continue
-    print(f"Updating monitor {monitor_name}: {current_url} -> {t['url']} (codes {current_codes} -> {t['statuscodes']})")
-    api.edit_monitor(
-        existing["id"],
-        url=t["url"],
-        accepted_statuscodes=t["statuscodes"],
-    )
-    updated += 1
-    time.sleep(0.3)
-
 # Remove monitors for services no longer in the list
 deleted = 0
 for name, m in existing_external.items():
@@ -483,8 +439,7 @@ for name, m in existing_external.items():
         time.sleep(0.3)
 
 api.disconnect()
-unchanged = len(target_names) - created - updated
-print(f"Sync complete: {created} created, {updated} updated, {deleted} deleted, {unchanged} unchanged")
+print(f"Sync complete: {created} created, {deleted} deleted, {len(target_names) - created} unchanged")
 PYEOF
               EOT
               ]
@@ -525,233 +480,6 @@ PYEOF
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
-  }
-}
-
-# =============================================================================
-# Internal Monitor Sync
-# Declaratively manages monitors for internal services (databases, non-HTTP
-# endpoints) that can't be discovered from ingress annotations. Idempotent:
-# looks up monitors by name, creates if missing, patches if drifted.
-#
-# Why a CronJob and not a one-shot Job:
-# - louislam/uptime-kuma has no Terraform provider (only a CLI tool).
-# - UK v2 stores monitors in MariaDB (`uptimekuma` on mysql.dbaas); if the DB
-#   is wiped/restored we must re-create them.
-# - CronJob self-heals drift (manual UI edits, UK restarts, DB restores).
-#
-# Managed monitors (name -> desired spec) are defined in local.internal_monitors
-# below. Add new internal-service monitors there.
-# =============================================================================
-
-locals {
-  internal_monitors = [
-    {
-      name                        = "MySQL Standalone (dbaas)"
-      type                        = "mysql"
-      database_connection_string  = "mysql://uptimekuma@mysql.dbaas.svc.cluster.local:3306"
-      database_password_vault_key = "uptimekuma_db_password"
-      hostname                    = null
-      port                        = null
-      interval                    = 60
-      retry_interval              = 60
-      max_retries                 = 2
-    },
-    {
-      # HAProxy service in redis ns health-checks INFO replication and
-      # only routes to the current Sentinel-elected master, so this
-      # survives failover. Bitnami chart has auth disabled, so no
-      # password_vault_key.
-      name                        = "Redis"
-      type                        = "redis"
-      database_connection_string  = "redis://redis-master.redis.svc.cluster.local:6379"
-      database_password_vault_key = null
-      hostname                    = null
-      port                        = null
-      interval                    = 60
-      retry_interval              = 30
-      max_retries                 = 3
-    },
-    {
-      # TP-Link home router upstream of pfSense. Complements the
-      # `[External] gw` HTTPS monitor: this one checks the router
-      # directly on 443, so we can tell a Cloudflare/tunnel outage
-      # apart from the router itself being unreachable.
-      name                        = "TP-Link Gateway (192.168.1.1)"
-      type                        = "port"
-      database_connection_string  = null
-      database_password_vault_key = null
-      hostname                    = "192.168.1.1"
-      port                        = 443
-      interval                    = 60
-      retry_interval              = 30
-      max_retries                 = 3
-    },
-  ]
-}
-
-resource "kubernetes_secret" "internal_monitor_sync" {
-  metadata {
-    name      = "internal-monitor-sync"
-    namespace = kubernetes_namespace.uptime-kuma.metadata[0].name
-  }
-  data = merge(
-    { UPTIME_KUMA_PASSWORD = data.vault_kv_secret_v2.viktor.data["uptime_kuma_admin_password"] },
-    {
-      for m in local.internal_monitors :
-      "DB_PASSWORD_${upper(replace(m.name, "/[^A-Za-z0-9]/", "_"))}" =>
-      data.vault_kv_secret_v2.viktor.data[m.database_password_vault_key]
-      if m.database_password_vault_key != null
-    },
-  )
-}
-
-resource "kubernetes_config_map_v1" "internal_monitor_targets" {
-  metadata {
-    name      = "internal-monitor-targets"
-    namespace = kubernetes_namespace.uptime-kuma.metadata[0].name
-  }
-  data = {
-    "targets.json" = jsonencode([
-      for m in local.internal_monitors : {
-        name                       = m.name
-        type                       = m.type
-        database_connection_string = m.database_connection_string
-        hostname                   = m.hostname
-        port                       = m.port
-        password_env               = m.database_password_vault_key != null ? "DB_PASSWORD_${upper(replace(m.name, "/[^A-Za-z0-9]/", "_"))}" : null
-        interval                   = m.interval
-        retry_interval             = m.retry_interval
-        max_retries                = m.max_retries
-      }
-    ])
-  }
-}
-
-resource "kubernetes_cron_job_v1" "internal_monitor_sync" {
-  metadata {
-    name      = "internal-monitor-sync"
-    namespace = kubernetes_namespace.uptime-kuma.metadata[0].name
-  }
-  spec {
-    concurrency_policy            = "Forbid"
-    failed_jobs_history_limit     = 3
-    successful_jobs_history_limit = 3
-    schedule                      = "*/10 * * * *"
-    job_template {
-      metadata {}
-      spec {
-        backoff_limit              = 1
-        ttl_seconds_after_finished = 300
-        template {
-          metadata {}
-          spec {
-            container {
-              name  = "sync"
-              image = "docker.io/library/python:3.12-alpine"
-              command = ["/bin/sh", "-c", <<-EOT
-                pip install --quiet --disable-pip-version-check uptime-kuma-api
-                python3 << 'PYEOF'
-import json, os, time
-from uptime_kuma_api import UptimeKumaApi, MonitorType
-
-UPTIME_KUMA_URL = "http://uptime-kuma.uptime-kuma.svc.cluster.local"
-UPTIME_KUMA_PASS = os.environ["UPTIME_KUMA_PASSWORD"]
-
-with open("/config/targets.json") as f:
-    targets = json.load(f)
-
-api = UptimeKumaApi(UPTIME_KUMA_URL, timeout=120, wait_events=0.2)
-api.login("admin", UPTIME_KUMA_PASS)
-
-existing = {m["name"]: m for m in api.get_monitors()}
-
-for t in targets:
-    name = t["name"]
-    mtype = MonitorType(t["type"])
-    # MYSQL uses `databaseConnectionString` + `radiusPassword` (UK v2 re-uses
-    # radiusPassword for mysql auth — backwards compat). Redis has auth
-    # disabled on the cluster, so password_env is null. PORT monitors use
-    # hostname + port directly.
-    desired = {
-        "type": mtype,
-        "name": name,
-        "interval": t["interval"],
-        "retryInterval": t["retry_interval"],
-        "maxretries": t["max_retries"],
-    }
-    if mtype == MonitorType.PORT:
-        desired["hostname"] = t["hostname"]
-        desired["port"] = t["port"]
-    else:
-        desired["databaseConnectionString"] = t["database_connection_string"]
-        if t.get("password_env"):
-            desired["radiusPassword"] = os.environ[t["password_env"]]
-    if name not in existing:
-        print(f"Creating monitor: {name}")
-        api.add_monitor(**desired)
-        continue
-    m = existing[name]
-    drift_fields = ["interval", "retryInterval", "maxretries"]
-    if mtype == MonitorType.PORT:
-        drift_fields += ["hostname", "port"]
-    else:
-        drift_fields += ["databaseConnectionString"]
-        if "radiusPassword" in desired:
-            drift_fields += ["radiusPassword"]
-    drifted = any(m.get(f) != desired.get(f) for f in drift_fields)
-    if drifted:
-        print(f"Updating monitor {name} (id={m['id']})")
-        edit_kwargs = {f: desired[f] for f in drift_fields if f in desired}
-        api.edit_monitor(m["id"], **edit_kwargs)
-    else:
-        print(f"Monitor {name} (id={m['id']}) already in desired state")
-    time.sleep(0.3)
-
-api.disconnect()
-print("Internal monitor sync complete")
-PYEOF
-              EOT
-              ]
-              env_from {
-                secret_ref {
-                  name = kubernetes_secret.internal_monitor_sync.metadata[0].name
-                }
-              }
-              volume_mount {
-                name       = "config"
-                mount_path = "/config"
-                read_only  = true
-              }
-              resources {
-                requests = {
-                  memory = "128Mi"
-                  cpu    = "10m"
-                }
-                limits = {
-                  memory = "256Mi"
-                }
-              }
-            }
-            volume {
-              name = "config"
-              config_map {
-                name = kubernetes_config_map_v1.internal_monitor_targets.metadata[0].name
-              }
-            }
-            dns_config {
-              option {
-                name  = "ndots"
-                value = "2"
-              }
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
   }
 }
diff --git a/stacks/url/main.tf b/stacks/url/main.tf
index 979b0aaa..b7157313 100644
--- a/stacks/url/main.tf
+++ b/stacks/url/main.tf
@@ -27,10 +27,6 @@ resource "kubernetes_namespace" "shlink" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -259,10 +255,6 @@ resource "kubernetes_deployment" "shlink" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "shlink" {
@@ -404,10 +396,6 @@ resource "kubernetes_deployment" "shlink-web" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "shlink-web" {
diff --git a/stacks/vault/main.tf b/stacks/vault/main.tf
index a47379ff..5c96a751 100644
--- a/stacks/vault/main.tf
+++ b/stacks/vault/main.tf
@@ -13,10 +13,6 @@ resource "kubernetes_namespace" "vault" {
       tier = local.tiers.core
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -25,6 +21,22 @@ module "tls_secret" {
   tls_secret_name = var.tls_secret_name
 }
 
+# NFS StorageClass pointing to Proxmox host (replaces nfs-truenas for vault)
+resource "kubernetes_storage_class" "nfs_proxmox" {
+  metadata {
+    name = "nfs-proxmox"
+  }
+  storage_provisioner    = "nfs.csi.k8s.io"
+  reclaim_policy         = "Retain"
+  volume_binding_mode    = "Immediate"
+  allow_volume_expansion = true
+  parameters = {
+    server = "192.168.1.127"
+    share  = "/srv/nfs"
+  }
+  mount_options = ["soft", "actimeo=5", "retrans=3", "timeo=30"]
+}
+
 resource "helm_release" "vault" {
   name             = "vault"
   namespace        = kubernetes_namespace.vault.metadata[0].name
@@ -56,13 +68,13 @@ resource "helm_release" "vault" {
       dataStorage = {
         enabled      = true
         size         = "2Gi"
-        storageClass = "proxmox-lvm-encrypted" # Migrated 2026-04-25 from nfs-proxmox; raft fsync is NFS-hostile (post-mortems/2026-04-22-vault-raft-leader-deadlock.md)
+        storageClass = "nfs-proxmox" # Proxmox host NFS (was nfs-truenas)
       }
 
       auditStorage = {
         enabled      = true
         size         = "2Gi"
-        storageClass = "proxmox-lvm-encrypted" # Migrated 2026-04-25 from nfs-proxmox
+        storageClass = "nfs-proxmox" # Proxmox host NFS (was nfs-truenas)
       }
 
       standalone = { enabled = false }
@@ -101,24 +113,6 @@ resource "helm_release" "vault" {
         }
       }
 
-      # fsGroupChangePolicy=OnRootMismatch skips recursive chown on restart.
-      # Without this, kubelet walks every file over NFS each restart; during
-      # 2026-04-22 outage this looped for 10m+ and blocked quorum recovery.
-      # The other four fields restore the chart defaults — providing pod{}
-      # replaces them, and missing fsGroup left vault unable to write to
-      # the freshly-formatted ext4 PVC during the 2026-04-25 migration.
-      statefulSet = {
-        securityContext = {
-          pod = {
-            fsGroupChangePolicy = "OnRootMismatch"
-            fsGroup             = 1000
-            runAsGroup          = 1000
-            runAsUser           = 100
-            runAsNonRoot        = true
-          }
-        }
-      }
-
       # Mount unseal key secret
       extraVolumes = [{
         type = "secret"
@@ -338,10 +332,6 @@ resource "kubernetes_cron_job_v1" "vault_backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # =============================================================================
@@ -396,14 +386,9 @@ resource "vault_kubernetes_auth_backend_role" "ci" {
   role_name                        = "ci"
   bound_service_account_names      = ["default"]
   bound_service_account_namespaces = ["woodpecker"]
-  # terraform_state policy grants `database/static-creds/pg-terraform-state`
-  # read — scripts/tg needs this to fetch the Tier-1 PG backend password.
-  # Without it, CI's per-stack `tg apply` dies with
-  # `ERROR: Cannot read PG credentials from Vault` and the default.yml
-  # apply-loop swallows the exit code (set +e) — fixed in bd code-e1x.
-  token_policies = [vault_policy.ci.name, vault_policy.terraform_state.name]
-  token_ttl      = 604800 # 7d
-  token_period   = 604800 # periodic: auto-renews indefinitely
+  token_policies                   = [vault_policy.ci.name]
+  token_ttl                        = 604800   # 7d
+  token_period                     = 604800   # periodic: auto-renews indefinitely
 }
 
 # --- ESO Policy & Role ---
@@ -431,8 +416,8 @@ resource "vault_kubernetes_auth_backend_role" "eso" {
   bound_service_account_names      = ["external-secrets"]
   bound_service_account_namespaces = ["external-secrets"]
   token_policies                   = [vault_policy.eso_reader.name]
-  token_ttl                        = 864000 # 10d (staggered from ci/openclaw)
-  token_period                     = 864000 # periodic: auto-renews indefinitely
+  token_ttl                        = 864000   # 10d (staggered from ci/openclaw)
+  token_period                     = 864000   # periodic: auto-renews indefinitely
 }
 
 # --- Woodpecker Secret Sync Policy & Role ---
@@ -452,8 +437,8 @@ resource "vault_kubernetes_auth_backend_role" "woodpecker_sync" {
   bound_service_account_names      = ["default"]
   bound_service_account_namespaces = ["woodpecker"]
   token_policies                   = [vault_policy.woodpecker_sync.name]
-  token_ttl                        = 691200 # 8d (staggered from others)
-  token_period                     = 691200 # periodic: auto-renews indefinitely
+  token_ttl                        = 691200   # 8d (staggered from others)
+  token_period                     = 691200   # periodic: auto-renews indefinitely
 }
 
 # --- OpenClaw Policy & Role ---
@@ -476,8 +461,8 @@ resource "vault_kubernetes_auth_backend_role" "openclaw" {
   bound_service_account_names      = ["openclaw"]
   bound_service_account_namespaces = ["openclaw"]
   token_policies                   = [vault_policy.openclaw_k8s.name]
-  token_ttl                        = 777600 # 9d (staggered from others)
-  token_period                     = 777600 # periodic: auto-renews indefinitely
+  token_ttl                        = 777600   # 9d (staggered from others)
+  token_period                     = 777600   # periodic: auto-renews indefinitely
 }
 
 # --- Terraform State Policy & Role (Claude Agent) ---
@@ -497,8 +482,8 @@ resource "vault_kubernetes_auth_backend_role" "terraform_state" {
   bound_service_account_names      = ["default"]
   bound_service_account_namespaces = ["claude-agent"]
   token_policies                   = [vault_policy.terraform_state.name]
-  token_ttl                        = 518400 # 6d (staggered from others: ci=7d, eso=10d, woodpecker=8d, openclaw=9d)
-  token_period                     = 518400 # periodic: auto-renews indefinitely
+  token_ttl                        = 518400   # 6d (staggered from others: ci=7d, eso=10d, woodpecker=8d, openclaw=9d)
+  token_period                     = 518400   # periodic: auto-renews indefinitely
 }
 
 # =============================================================================
@@ -514,8 +499,8 @@ resource "vault_mount" "database" {
 
 # MySQL connection — app user rotation only
 resource "vault_database_secret_backend_connection" "mysql" {
-  backend = vault_mount.database.path
-  name    = "mysql"
+  backend       = vault_mount.database.path
+  name          = "mysql"
   allowed_roles = [
     "mysql-speedtest", "mysql-wrongmove", "mysql-codimd",
     "mysql-nextcloud", "mysql-shlink", "mysql-grafana",
@@ -532,14 +517,13 @@ resource "vault_database_secret_backend_connection" "mysql" {
 
 # PostgreSQL connection — CNPG superuser
 resource "vault_database_secret_backend_connection" "postgresql" {
-  backend = vault_mount.database.path
-  name    = "postgresql"
+  backend       = vault_mount.database.path
+  name          = "postgresql"
   allowed_roles = [
     # "pg-trading",  # Commented out 2026-04-06 - trading-bot disabled
     "pg-health", "pg-linkwarden",
     "pg-affine", "pg-woodpecker", "pg-claude-memory",
-    "pg-terraform-state", "pg-payslip-ingest", "pg-job-hunter",
-    "pg-wealthfolio-sync", "pg-fire-planner"
+    "pg-terraform-state"
   ]
 
   postgresql {
@@ -677,38 +661,6 @@ resource "vault_database_secret_backend_static_role" "pg_terraform_state" {
   rotation_period = 604800
 }
 
-resource "vault_database_secret_backend_static_role" "pg_payslip_ingest" {
-  backend         = vault_mount.database.path
-  db_name         = vault_database_secret_backend_connection.postgresql.name
-  name            = "pg-payslip-ingest"
-  username        = "payslip_ingest"
-  rotation_period = 604800
-}
-
-resource "vault_database_secret_backend_static_role" "pg_job_hunter" {
-  backend         = vault_mount.database.path
-  db_name         = vault_database_secret_backend_connection.postgresql.name
-  name            = "pg-job-hunter"
-  username        = "job_hunter"
-  rotation_period = 604800
-}
-
-resource "vault_database_secret_backend_static_role" "pg_wealthfolio_sync" {
-  backend         = vault_mount.database.path
-  db_name         = vault_database_secret_backend_connection.postgresql.name
-  name            = "pg-wealthfolio-sync"
-  username        = "wealthfolio_sync"
-  rotation_period = 604800
-}
-
-resource "vault_database_secret_backend_static_role" "pg_fire_planner" {
-  backend         = vault_mount.database.path
-  db_name         = vault_database_secret_backend_connection.postgresql.name
-  name            = "pg-fire-planner"
-  username        = "fire_planner"
-  rotation_period = 604800
-}
-
 # =============================================================================
 # Kubernetes Secrets Engine — Dynamic K8s Credentials
 # =============================================================================
@@ -858,15 +810,11 @@ resource "kubernetes_namespace" "user_namespace" {
   metadata {
     name = each.value
     labels = {
-      tier                               = "4-aux"
+      tier                              = "4-aux"
       "resource-governance/custom-quota" = "true"
-      "managed-by"                       = "vault-user-onboarding"
+      "managed-by"                      = "vault-user-onboarding"
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "vault_policy" "namespace_owner" {
@@ -875,7 +823,7 @@ resource "vault_policy" "namespace_owner" {
     if user.role == "namespace-owner"
   })
 
-  name   = "namespace-owner-${each.key}"
+  name = "namespace-owner-${each.key}"
   policy = <<-EOT
     # Read/write own secrets
     path "secret/data/${each.key}" {
diff --git a/stacks/vault/providers.tf b/stacks/vault/providers.tf
index 012af700..b337a2e9 100644
--- a/stacks/vault/providers.tf
+++ b/stacks/vault/providers.tf
@@ -9,10 +9,6 @@ terraform {
       source  = "cloudflare/cloudflare"
       version = "~> 4"
     }
-    authentik = {
-      source  = "goauthentik/authentik"
-      version = "~> 2024.10"
-    }
   }
 }
 
diff --git a/stacks/vaultwarden/modules/vaultwarden/main.tf b/stacks/vaultwarden/modules/vaultwarden/main.tf
index b3d24983..b16ceb2e 100644
--- a/stacks/vaultwarden/modules/vaultwarden/main.tf
+++ b/stacks/vaultwarden/modules/vaultwarden/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "vaultwarden" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -168,10 +164,6 @@ resource "kubernetes_deployment" "vaultwarden" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "vaultwarden" {
@@ -338,10 +330,6 @@ resource "kubernetes_cron_job_v1" "vaultwarden-backup" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 # -----------------------------------------------------------------------------
@@ -426,8 +414,4 @@ METRICS
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/wealthfolio/main.tf b/stacks/wealthfolio/main.tf
index 4cbdb010..db2e4328 100644
--- a/stacks/wealthfolio/main.tf
+++ b/stacks/wealthfolio/main.tf
@@ -3,7 +3,6 @@ variable "tls_secret_name" {
   sensitive = true
 }
 variable "nfs_server" { type = string }
-variable "postgresql_host" { type = string }
 
 resource "kubernetes_namespace" "wealthfolio" {
   metadata {
@@ -13,10 +12,6 @@ resource "kubernetes_namespace" "wealthfolio" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_manifest" "external_secret" {
@@ -46,52 +41,6 @@ resource "kubernetes_manifest" "external_secret" {
   depends_on = [kubernetes_namespace.wealthfolio]
 }
 
-# DB credentials for the SQLite→PG ETL sidecar. Vault DB engine static role
-# `pg-wealthfolio-sync` rotates this every 7 days; ExternalSecret refreshes
-# the K8s Secret every 15m so the sidecar always has a valid password.
-resource "kubernetes_manifest" "wealthfolio_sync_db_external_secret" {
-  manifest = {
-    apiVersion = "external-secrets.io/v1beta1"
-    kind       = "ExternalSecret"
-    metadata = {
-      name      = "wealthfolio-sync-db-creds"
-      namespace = "wealthfolio"
-    }
-    spec = {
-      refreshInterval = "15m"
-      secretStoreRef = {
-        name = "vault-database"
-        kind = "ClusterSecretStore"
-      }
-      target = {
-        name = "wealthfolio-sync-db-creds"
-        template = {
-          metadata = {
-            annotations = {
-              "reloader.stakater.com/match" = "true"
-            }
-          }
-          data = {
-            PGHOST     = var.postgresql_host
-            PGPORT     = "5432"
-            PGDATABASE = "wealthfolio_sync"
-            PGUSER     = "wealthfolio_sync"
-            PGPASSWORD = "{{ .password }}"
-          }
-        }
-      }
-      data = [{
-        secretKey = "password"
-        remoteRef = {
-          key      = "static-creds/pg-wealthfolio-sync"
-          property = "password"
-        }
-      }]
-    }
-  }
-  depends_on = [kubernetes_namespace.wealthfolio]
-}
-
 module "tls_secret" {
   source          = "../../modules/kubernetes/setup_tls_secret"
   namespace       = kubernetes_namespace.wealthfolio.metadata[0].name
@@ -127,7 +76,7 @@ resource "kubernetes_persistent_volume_claim" "data_proxmox" {
 
 resource "kubernetes_deployment" "wealthfolio" {
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
   metadata {
     name      = "wealthfolio"
@@ -200,253 +149,20 @@ resource "kubernetes_deployment" "wealthfolio" {
             name       = "data"
             mount_path = "/data"
           }
-          # 2026-04-18 OOM after broker-sync Phase 3 landed (~700 activities
-          # across 6 accounts including Fidelity + matched cash flows). The
-          # /api/v1/net-worth + /valuations/history endpoints materialise the
-          # full history in memory for the chart; 64Mi was a Phase-0 guess
-          # that fit a 10-activity demo DB and nothing bigger.
           resources {
             requests = {
               cpu    = "10m"
-              memory = "256Mi"
+              memory = "64Mi"
             }
             limits = {
-              memory = "1Gi"
+              memory = "64Mi"
             }
           }
         }
-
-        # Backup sidecar — see the big comment further down. Shares the WF
-        # data PVC (read-only) + the NFS backup target. busybox crond fires
-        # a nightly sqlite3 .backup so we have an off-cluster copy.
-        container {
-          name  = "backup"
-          image = "alpine:3.20"
-          command = ["/bin/sh", "-c", <<-EOT
-          set -eu
-          apk add --no-cache --quiet sqlite busybox-suid
-          mkdir -p /etc/crontabs
-          cat >/etc/crontabs/root <<'CRON'
-          30 4 * * * /scripts/backup.sh >>/proc/1/fd/1 2>&1
-          CRON
-          mkdir -p /scripts
-          cat >/scripts/backup.sh <<'SCRIPT'
-          #!/bin/sh
-          set -eu
-          TS=$(date +%Y-%m-%dT%H-%M-%S)
-          DIR=/backup/$TS
-          mkdir -p "$DIR"
-          sqlite3 /data/wealthfolio.db ".backup $DIR/wealthfolio.db"
-          cp /data/secrets.json "$DIR/" 2>/dev/null || true
-          # Retention — keep 30 days.
-          find /backup -mindepth 1 -maxdepth 1 -type d -mtime +30 -exec rm -rf {} +
-          echo "wealthfolio-backup: $DIR ($(du -sh $DIR | cut -f1))"
-          SCRIPT
-          chmod +x /scripts/backup.sh
-          echo "wealthfolio-backup sidecar ready; next 04:30 UTC"
-          exec crond -f -l 8
-          EOT
-          ]
-          volume_mount {
-            name       = "data"
-            mount_path = "/data"
-            read_only  = true
-          }
-          volume_mount {
-            name       = "backup"
-            mount_path = "/backup"
-          }
-          resources {
-            requests = { cpu = "5m", memory = "16Mi" }
-            limits   = { memory = "64Mi" }
-          }
-        }
-
-        # pg-sync sidecar — mirrors a small subset of SQLite into PG every hour
-        # so Grafana can chart net worth / contributions / growth via the
-        # `wealthfolio_sync` database. Mounts /data RO; writes to a tmp dir
-        # for the sqlite3 .backup snapshot to avoid blocking writers. Bootstrap
-        # DDL runs each iteration (CREATE TABLE IF NOT EXISTS — idempotent).
-        # Truncate-and-reload pattern: tables are small (~10k DAV rows, ~500
-        # activities, 6 accounts), so a full reload each hour is simpler than
-        # incremental upserts and gives clean cold-start behaviour.
-        container {
-          name  = "pg-sync"
-          image = "alpine:3.20"
-          env {
-            name = "PGHOST"
-            value_from {
-              secret_key_ref {
-                name = "wealthfolio-sync-db-creds"
-                key  = "PGHOST"
-              }
-            }
-          }
-          env {
-            name = "PGPORT"
-            value_from {
-              secret_key_ref {
-                name = "wealthfolio-sync-db-creds"
-                key  = "PGPORT"
-              }
-            }
-          }
-          env {
-            name = "PGDATABASE"
-            value_from {
-              secret_key_ref {
-                name = "wealthfolio-sync-db-creds"
-                key  = "PGDATABASE"
-              }
-            }
-          }
-          env {
-            name = "PGUSER"
-            value_from {
-              secret_key_ref {
-                name = "wealthfolio-sync-db-creds"
-                key  = "PGUSER"
-              }
-            }
-          }
-          env {
-            name = "PGPASSWORD"
-            value_from {
-              secret_key_ref {
-                name = "wealthfolio-sync-db-creds"
-                key  = "PGPASSWORD"
-              }
-            }
-          }
-          command = ["/bin/sh", "-c", <<-EOT
-          set -eu
-          apk add --no-cache --quiet sqlite postgresql-client busybox-suid
-          mkdir -p /etc/crontabs /scripts /tmp/wf-sync
-          cat >/etc/crontabs/root <<'CRON'
-          # Hourly: snapshot SQLite, reload PG mirror.
-          7 * * * * /scripts/sync.sh >>/proc/1/fd/1 2>&1
-          CRON
-          cat >/scripts/sync.sh <<'SCRIPT'
-          #!/bin/sh
-          set -eu
-          TS=$(date -u +%Y-%m-%dT%H:%M:%SZ)
-          echo "[$TS] wealthfolio-pg-sync: starting"
-
-          # Bootstrap schema (idempotent).
-          psql -v ON_ERROR_STOP=1 <<'SQL'
-          CREATE TABLE IF NOT EXISTS accounts (
-            id TEXT PRIMARY KEY,
-            name TEXT,
-            account_type TEXT,
-            currency TEXT,
-            is_active BOOLEAN
-          );
-          CREATE TABLE IF NOT EXISTS daily_account_valuation (
-            id TEXT PRIMARY KEY,
-            account_id TEXT NOT NULL,
-            valuation_date DATE NOT NULL,
-            account_currency TEXT,
-            base_currency TEXT,
-            fx_rate_to_base NUMERIC,
-            cash_balance NUMERIC,
-            investment_market_value NUMERIC,
-            total_value NUMERIC,
-            cost_basis NUMERIC,
-            net_contribution NUMERIC
-          );
-          CREATE INDEX IF NOT EXISTS idx_dav_acct_date ON daily_account_valuation(account_id, valuation_date);
-          CREATE INDEX IF NOT EXISTS idx_dav_date ON daily_account_valuation(valuation_date);
-          CREATE TABLE IF NOT EXISTS activities (
-            id TEXT PRIMARY KEY,
-            account_id TEXT,
-            asset_id TEXT,
-            activity_type TEXT,
-            activity_date TIMESTAMPTZ,
-            quantity NUMERIC,
-            unit_price NUMERIC,
-            amount NUMERIC,
-            fee NUMERIC,
-            currency TEXT,
-            fx_rate NUMERIC,
-            notes TEXT
-          );
-          CREATE INDEX IF NOT EXISTS idx_act_date ON activities(activity_date);
-          SQL
-
-          # Snapshot SQLite (online backup — non-blocking).
-          rm -f /tmp/wf-sync/snapshot.db
-          sqlite3 /data/wealthfolio.db ".backup /tmp/wf-sync/snapshot.db"
-
-          # Dump source rows to TSV.
-          sqlite3 -separator $'\t' /tmp/wf-sync/snapshot.db \
-            "SELECT id, name, account_type, currency, is_active FROM accounts;" \
-            > /tmp/wf-sync/accounts.tsv
-
-          sqlite3 -separator $'\t' /tmp/wf-sync/snapshot.db <<'SQ' > /tmp/wf-sync/dav.tsv
-          SELECT id, account_id, valuation_date, account_currency, base_currency,
-                 CAST(fx_rate_to_base AS REAL),
-                 CAST(cash_balance AS REAL),
-                 CAST(investment_market_value AS REAL),
-                 CAST(total_value AS REAL),
-                 CAST(cost_basis AS REAL),
-                 CAST(net_contribution AS REAL)
-          FROM daily_account_valuation
-          WHERE account_id != 'TOTAL';  -- synthetic pre-aggregated row; would double-count when summed
-          SQ
-
-          sqlite3 -separator $'\t' /tmp/wf-sync/snapshot.db <<'SQ' > /tmp/wf-sync/activities.tsv
-          SELECT id, account_id, asset_id, activity_type, activity_date,
-                 CAST(quantity AS REAL),
-                 CAST(unit_price AS REAL),
-                 CAST(amount AS REAL),
-                 CAST(fee AS REAL),
-                 currency,
-                 CAST(fx_rate AS REAL),
-                 notes
-          FROM activities WHERE status='POSTED';
-          SQ
-
-          # Truncate-and-reload (small tables; simpler than upserts).
-          psql -v ON_ERROR_STOP=1 <<SQL
-          BEGIN;
-          TRUNCATE accounts, daily_account_valuation, activities;
-          \copy accounts FROM '/tmp/wf-sync/accounts.tsv' WITH (FORMAT csv, DELIMITER E'\t', NULL '');
-          \copy daily_account_valuation FROM '/tmp/wf-sync/dav.tsv' WITH (FORMAT csv, DELIMITER E'\t', NULL '');
-          \copy activities FROM '/tmp/wf-sync/activities.tsv' WITH (FORMAT csv, DELIMITER E'\t', NULL '');
-          COMMIT;
-          SQL
-
-          ROWS=$(psql -tAc "SELECT COUNT(*) FROM daily_account_valuation;")
-          echo "[$TS] wealthfolio-pg-sync: ok (daily_account_valuation rows=$ROWS)"
-          rm -f /tmp/wf-sync/*.tsv /tmp/wf-sync/snapshot.db
-          SCRIPT
-          chmod +x /scripts/sync.sh
-          echo "wealthfolio-pg-sync sidecar ready; running initial sync, then hourly at :07"
-          /scripts/sync.sh || echo "initial sync failed (will retry on next cron tick)"
-          exec crond -f -l 8
-          EOT
-          ]
-          volume_mount {
-            name       = "data"
-            mount_path = "/data"
-            read_only  = true
-          }
-          resources {
-            requests = { cpu = "10m", memory = "32Mi" }
-            limits   = { memory = "128Mi" }
-          }
-        }
         volume {
           name = "data"
           persistent_volume_claim {
-            claim_name = "wealthfolio-data-encrypted"
-          }
-        }
-        volume {
-          name = "backup"
-          nfs {
-            server = var.nfs_server
-            path   = "/srv/nfs/wealthfolio-backup"
+            claim_name = kubernetes_persistent_volume_claim.data_proxmox.metadata[0].name
           }
         }
       }
@@ -515,12 +231,7 @@ resource "kubernetes_cron_job_v1" "wealthfolio_sync" {
             }
             container {
               name  = "sync"
-              # Phase 4 of forgejo-registry-consolidation 2026-05-07 +
-              # post-cutover wealthfolio-sync rebuild: image is now
-              # produced by /home/wizard/code/broker-sync (Forgejo
-              # viktor/broker-sync, DockerHub viktorbarzin/broker-sync,
-              # Forgejo viktor/wealthfolio-sync as the cluster pull path).
-              image = "forgejo.viktorbarzin.me/viktor/wealthfolio-sync:latest"
+              image = "registry.viktorbarzin.me/wealthfolio-sync:latest"
               env {
                 name = "IMAP_HOST"
                 value_from {
@@ -587,7 +298,7 @@ resource "kubernetes_cron_job_v1" "wealthfolio_sync" {
             volume {
               name = "data"
               persistent_volume_claim {
-                claim_name = "wealthfolio-data-encrypted"
+                claim_name = kubernetes_persistent_volume_claim.data_proxmox.metadata[0].name
               }
             }
           }
@@ -595,171 +306,4 @@ resource "kubernetes_cron_job_v1" "wealthfolio_sync" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
-}
-
-# Plan-time read of the ESO-created K8s Secret for Grafana datasource password.
-# First apply: -target=kubernetes_manifest.wealthfolio_sync_db_external_secret first.
-data "kubernetes_secret" "wealthfolio_sync_db_creds" {
-  metadata {
-    name      = "wealthfolio-sync-db-creds"
-    namespace = kubernetes_namespace.wealthfolio.metadata[0].name
-  }
-  depends_on = [kubernetes_manifest.wealthfolio_sync_db_external_secret]
-}
-
-# Grafana datasource for wealthfolio_sync PostgreSQL DB.
-# Lives in the monitoring namespace so the Grafana sidecar (grafana_datasource=1) picks it up.
-resource "kubernetes_config_map" "grafana_wealth_datasource" {
-  metadata {
-    name      = "grafana-wealth-datasource"
-    namespace = "monitoring"
-    labels = {
-      grafana_datasource = "1"
-    }
-  }
-  data = {
-    "wealth-datasource.yaml" = yamlencode({
-      apiVersion = 1
-      datasources = [{
-        name   = "Wealth"
-        type   = "postgres"
-        access = "proxy"
-        url    = "${var.postgresql_host}:5432"
-        user   = "wealthfolio_sync"
-        uid    = "wealth-pg"
-        # Grafana 11.2+ Postgres plugin reads DB name from jsonData.database
-        # (top-level `database` is silently ignored).
-        jsonData = {
-          database        = "wealthfolio_sync"
-          sslmode         = "disable"
-          postgresVersion = 1600
-          timescaledb     = false
-        }
-        secureJsonData = {
-          password = data.kubernetes_secret.wealthfolio_sync_db_creds.data["PGPASSWORD"]
-        }
-        editable = true
-      }]
-    })
-  }
-}
-
-############################################################################
-# Backup — sidecar approach
-#
-# Wealthfolio has no PG/MySQL support (Diesel ORM hard-wired to SQLite per
-# upstream README). The data lives on an RWO PVC that's held 24/7 by the
-# main WF pod, so a separate backup CronJob would hit a Multi-Attach error
-# (confirmed 2026-04-18 test).
-#
-# Instead, the WF Deployment gets a backup sidecar:
-# - Shares the data PVC read-only + the NFS backup target.
-# - Runs busybox `crond` with a 04:30-daily entry.
-# - Uses `sqlite3 .backup` (WAL-safe, no downtime) to snapshot into an
-#   NFS dated folder + retains 30 days.
-#
-# See `resource "kubernetes_deployment" "wealthfolio"` above — the sidecar
-# is wired in via the deployment's container/volume blocks.
-############################################################################
-
-############################################################################
-# Daily portfolio-recalc CronJob — keeps the Grafana wealth dashboard fresh.
-#
-# Wealthfolio writes new `daily_account_valuation` rows ONLY when a
-# PortfolioJob fires with ValuationRecalcMode != None. None of its built-in
-# schedulers do that for our deployment:
-#   * Internal 6h quote scheduler — refreshes the `quotes` table only.
-#   * Internal 4h broker scheduler — short-circuits if `sync_refresh_token`
-#     is unset (it is — we route broker imports through the external
-#     wealthfolio-sync CronJob).
-# Result: valuations only update when the Tauri/web UI hits
-# /api/v1/market-data/sync — i.e. when someone opens the dashboard.
-#
-# This CronJob mimics that: login → POST /api/v1/market-data/sync. The
-# server runs the portfolio job (Incremental quote sync + IncrementalFromLast
-# valuation recalc), backfilling missing daily_account_valuation rows up to
-# today. The pg-sync sidecar's :07 hourly tick mirrors them to PG, and
-# Grafana auto-refreshes within 5 min.
-#
-# Schedule 16:00 UTC (= 17:00 BST in summer):
-#   - After UK market close (15:30 UTC BST), so EOD UK prices are settled
-#   - US market open ~2.5h (good intra-day US quotes)
-#   - pg-sync next tick at 16:07 → Grafana fresh by ~16:12 UTC ≈ 17:12 BST,
-#     well before the 18:00 BST "fresh data by 6pm" target.
-#
-# Plaintext password lives at Vault `secret/wealthfolio.web_password`,
-# pulled into the existing `wealthfolio-secrets` K8s Secret by the
-# `dataFrom.extract` ExternalSecret above (no extra ESO wiring needed —
-# the new key flows through automatically).
-############################################################################
-resource "kubernetes_cron_job_v1" "wealthfolio_daily_sync" {
-  metadata {
-    name      = "wealthfolio-daily-sync"
-    namespace = kubernetes_namespace.wealthfolio.metadata[0].name
-  }
-
-  spec {
-    schedule                      = "0 16 * * *"
-    successful_jobs_history_limit = 1
-    failed_jobs_history_limit     = 3
-    concurrency_policy            = "Forbid"
-
-    job_template {
-      metadata {}
-      spec {
-        active_deadline_seconds = 180
-        backoff_limit           = 1
-        template {
-          metadata {}
-          spec {
-            restart_policy = "Never"
-
-            container {
-              name  = "curl"
-              image = "curlimages/curl:8.11.1"
-              env {
-                name = "WF_PASSWORD"
-                value_from {
-                  secret_key_ref {
-                    name = "wealthfolio-secrets"
-                    key  = "web_password"
-                  }
-                }
-              }
-              command = ["/bin/sh", "-c"]
-              args = [
-                <<-EOT
-                set -eu
-                BASE=http://wealthfolio.wealthfolio.svc.cluster.local
-                JAR=$(mktemp)
-                trap 'rm -f "$JAR"' EXIT
-
-                echo "[$(date -u +%FT%TZ)] login"
-                curl -sS --max-time 15 --fail -X POST "$BASE/api/v1/auth/login" \
-                  -H "Content-Type: application/json" \
-                  -d "{\"password\":\"$WF_PASSWORD\"}" \
-                  -c "$JAR" -o /dev/null
-
-                echo "[$(date -u +%FT%TZ)] POST /api/v1/market-data/sync"
-                curl -sS --max-time 60 --fail -X POST "$BASE/api/v1/market-data/sync" \
-                  -H "Content-Type: application/json" \
-                  -b "$JAR" \
-                  -d '{"refetchAll":false}' -o /dev/null
-                echo "[$(date -u +%FT%TZ)] sync queued (204) — portfolio job runs async"
-                EOT
-              ]
-            }
-          }
-        }
-      }
-    }
-  }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
diff --git a/stacks/wealthfolio/terragrunt.hcl b/stacks/wealthfolio/terragrunt.hcl
index 6b746c65..f4c920ab 100644
--- a/stacks/wealthfolio/terragrunt.hcl
+++ b/stacks/wealthfolio/terragrunt.hcl
@@ -11,8 +11,3 @@ dependency "vault" {
   config_path  = "../vault"
   skip_outputs = true
 }
-
-dependency "external-secrets" {
-  config_path  = "../external-secrets"
-  skip_outputs = true
-}
diff --git a/stacks/webhook_handler/main.tf b/stacks/webhook_handler/main.tf
index 09996294..3c822780 100644
--- a/stacks/webhook_handler/main.tf
+++ b/stacks/webhook_handler/main.tf
@@ -15,10 +15,6 @@ resource "kubernetes_namespace" "webhook-handler" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -234,7 +230,7 @@ resource "kubernetes_deployment" "webhook_handler" {
     }
   }
   lifecycle {
-    ignore_changes = [spec[0].template[0].spec[0].dns_config] # KYVERNO_LIFECYCLE_V1
+    ignore_changes = [spec[0].template[0].spec[0].dns_config]
   }
 }
 
diff --git a/stacks/whisper/main.tf b/stacks/whisper/main.tf
index 27096f86..27fe5cb0 100644
--- a/stacks/whisper/main.tf
+++ b/stacks/whisper/main.tf
@@ -12,10 +12,6 @@ resource "kubernetes_namespace" "whisper" {
       tier = local.tiers.gpu
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -73,7 +69,7 @@ resource "kubernetes_deployment" "whisper" {
       }
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -116,10 +112,6 @@ resource "kubernetes_deployment" "whisper" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "whisper" {
@@ -195,7 +187,7 @@ resource "kubernetes_deployment" "piper" {
       }
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key      = "nvidia.com/gpu"
@@ -238,10 +230,6 @@ resource "kubernetes_deployment" "piper" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "piper" {
@@ -289,3 +277,25 @@ resource "kubernetes_manifest" "piper_tcp_ingressroute" {
   }
 }
 
+# TCP passthrough from Traefik to ollama service (for HA voice pipeline)
+resource "kubernetes_manifest" "ollama_tcp_ingressroute" {
+  manifest = {
+    apiVersion = "traefik.io/v1alpha1"
+    kind       = "IngressRouteTCP"
+    metadata = {
+      name      = "ollama-tcp"
+      namespace = "traefik"
+    }
+    spec = {
+      entryPoints = ["ollama-tcp"]
+      routes = [{
+        match = "HostSNI(`*`)"
+        services = [{
+          name      = "ollama"
+          namespace = "ollama"
+          port      = 11434
+        }]
+      }]
+    }
+  }
+}
diff --git a/stacks/wireguard/modules/wireguard/main.tf b/stacks/wireguard/modules/wireguard/main.tf
index aab1ac6f..1c098108 100644
--- a/stacks/wireguard/modules/wireguard/main.tf
+++ b/stacks/wireguard/modules/wireguard/main.tf
@@ -17,10 +17,6 @@ resource "kubernetes_namespace" "wireguard" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 resource "kubernetes_config_map" "wg_0_conf" {
   metadata {
diff --git a/stacks/woodpecker/main.tf b/stacks/woodpecker/main.tf
index 7ac2cfda..71cc6ee6 100644
--- a/stacks/woodpecker/main.tf
+++ b/stacks/woodpecker/main.tf
@@ -34,10 +34,6 @@ resource "kubernetes_namespace" "woodpecker" {
       tier                               = local.tiers.edge
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_resource_quota" "woodpecker" {
@@ -172,31 +168,6 @@ resource "helm_release" "woodpecker" {
   depends_on = [kubernetes_manifest.db_external_secret]
 }
 
-# Patch hostAliases onto the woodpecker-server StatefulSet — the chart 3.5.1
-# does NOT expose this field, so we have to do it after the helm release.
-# Keeps the OAuth/forge-API path off the WAN gateway (forgejo.viktorbarzin.me
-# resolves to the public IP via DNS, which round-trips through Cloudflare
-# and routinely tripped 30s context-deadline timeouts when fetching pipeline
-# config). 10.0.20.200 is the Traefik LB that fronts forgejo internally;
-# Traefik serves the *.viktorbarzin.me wildcard so SNI verification still
-# passes.
-resource "null_resource" "woodpecker_server_host_alias" {
-  triggers = {
-    helm_revision = helm_release.woodpecker.metadata[0].revision
-  }
-
-  provisioner "local-exec" {
-    command     = <<-BASH
-      set -euo pipefail
-      kubectl -n woodpecker patch statefulset/woodpecker-server --type=strategic --patch '{"spec":{"template":{"spec":{"hostAliases":[{"ip":"10.0.20.200","hostnames":["forgejo.viktorbarzin.me"]}]}}}}'
-      kubectl -n woodpecker rollout status statefulset/woodpecker-server --timeout=120s
-    BASH
-    interpreter = ["/bin/bash", "-c"]
-  }
-
-  depends_on = [helm_release.woodpecker]
-}
-
 # ClusterRoleBinding - build pods need cluster-admin to PATCH deployments across namespaces
 resource "kubernetes_cluster_role_binding" "woodpecker" {
   metadata {
@@ -342,10 +313,6 @@ resource "kubernetes_cron_job_v1" "vault_secret_sync" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].job_template[0].spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 module "ingress" {
diff --git a/stacks/woodpecker/values.yaml b/stacks/woodpecker/values.yaml
index efb7ca52..2a2f8615 100644
--- a/stacks/woodpecker/values.yaml
+++ b/stacks/woodpecker/values.yaml
@@ -4,19 +4,10 @@ server:
     reloader.stakater.com/search: "true"
   statefulSet:
     replicaCount: 1
-  # NOTE: hostAliases is NOT exposed by the woodpecker Helm chart (3.5.1 verified) —
-  # see main.tf null_resource.woodpecker_server_host_alias which applies the same
-  # via `kubectl patch` post-helm. Pinned to the in-cluster Traefik LB
-  # (10.0.20.200) so the forge-API fetch path never round-trips through
-  # Cloudflare ("context deadline exceeded" was failing every Forgejo
-  # pipeline trigger).
   image:
     registry: docker.io
     repository: woodpeckerci/woodpecker-server
-    # Bumped 2026-05-07 from v3.13.0 → v3.14.0 to fix the
-    # "could not load config from forge: context deadline exceeded"
-    # issue when fetching .woodpecker.yml from Forgejo.
-    tag: "v3.14.0"
+    tag: "v3.13.0"
   extraSecretNamesForEnvFrom:
     - woodpecker-db-creds
   env:
@@ -36,14 +27,6 @@ server:
     WOODPECKER_FORGEJO_CLIENT: "${forgejo_client_id}"
     WOODPECKER_FORGEJO_SECRET: "${forgejo_client_secret}"
     WOODPECKER_FORGEJO_URL: "${forgejo_url}"
-    # Default is 3s (cmd/server/flags.go @ default `--forge-timeout`).
-    # Forgejo responses on this cluster spike to 1-2s under load and the
-    # config-loader makes 4-6 sequential calls (.woodpecker dir, .woodpecker.yaml,
-    # .woodpecker.yml, raw .woodpecker/build.yml, etc.); occasionally the cumulative
-    # overhead trips the 3s deadline → "could not load config from forge: context
-    # deadline exceeded" on every pipeline. 30s removes the false-positive timeouts
-    # without regressing the legitimate-failure detection window meaningfully.
-    WOODPECKER_FORGE_TIMEOUT: "30s"
   service:
     type: ClusterIP
     port: 80
@@ -63,7 +46,7 @@ agent:
   image:
     registry: docker.io
     repository: woodpeckerci/woodpecker-agent
-    tag: "v3.14.0"
+    tag: "v3.13.0"
   env:
     WOODPECKER_BACKEND: "kubernetes"
     WOODPECKER_BACKEND_K8S_NAMESPACE: "woodpecker"
diff --git a/stacks/xray/modules/xray/main.tf b/stacks/xray/modules/xray/main.tf
index 358f3c58..2540d6a0 100644
--- a/stacks/xray/modules/xray/main.tf
+++ b/stacks/xray/modules/xray/main.tf
@@ -26,10 +26,6 @@ resource "kubernetes_namespace" "xray" {
       tier = var.tier
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 resource "kubernetes_config_map" "xray_config" {
@@ -153,10 +149,6 @@ resource "kubernetes_deployment" "xray" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "xray" {
diff --git a/stacks/ytdlp/main.tf b/stacks/ytdlp/main.tf
index d8dcfcc6..ee7f1d00 100644
--- a/stacks/ytdlp/main.tf
+++ b/stacks/ytdlp/main.tf
@@ -33,6 +33,7 @@ resource "kubernetes_manifest" "external_secret" {
 }
 
 variable "redis_host" { type = string }
+variable "ollama_host" { type = string }
 
 
 resource "kubernetes_namespace" "ytdlp" {
@@ -43,10 +44,6 @@ resource "kubernetes_namespace" "ytdlp" {
       tier = local.tiers.aux
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: goldilocks-vpa-auto-mode ClusterPolicy stamps this label on every namespace
-    ignore_changes = [metadata[0].labels["goldilocks.fairwinds.com/vpa-update-mode"]]
-  }
 }
 
 module "tls_secret" {
@@ -147,10 +144,6 @@ resource "kubernetes_deployment" "ytdlp" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "ytdlp" {
@@ -227,7 +220,7 @@ resource "kubernetes_deployment" "yt_highlights" {
       }
       spec {
         node_selector = {
-          "nvidia.com/gpu.present" : "true"
+          "gpu" : "true"
         }
         toleration {
           key    = "nvidia.com/gpu"
@@ -292,6 +285,15 @@ resource "kubernetes_deployment" "yt_highlights" {
             name  = "TORCH_HOME"
             value = "/data/cache/torch"
           }
+          # Ollama fallback for when OpenRouter models fail
+          env {
+            name  = "OLLAMA_URL"
+            value = "http://${var.ollama_host}:11434"
+          }
+          env {
+            name  = "OLLAMA_MODEL"
+            value = "qwen2.5:14b"
+          }
           volume_mount {
             name       = "data"
             mount_path = "/data"
@@ -321,10 +323,6 @@ resource "kubernetes_deployment" "yt_highlights" {
       }
     }
   }
-  lifecycle {
-    # KYVERNO_LIFECYCLE_V1: Kyverno admission webhook mutates dns_config with ndots=2
-    ignore_changes = [spec[0].template[0].spec[0].dns_config]
-  }
 }
 
 resource "kubernetes_service" "yt_highlights" {
diff --git a/stacks/ytdlp/yt-highlights/app/main.py b/stacks/ytdlp/yt-highlights/app/main.py
index c97aa280..57526978 100644
--- a/stacks/ytdlp/yt-highlights/app/main.py
+++ b/stacks/ytdlp/yt-highlights/app/main.py
@@ -133,7 +133,7 @@ SLACK_BOT_TOKEN = os.getenv("SLACK_BOT_TOKEN", "")
 SLACK_CHANNEL = os.getenv("SLACK_CHANNEL", "automation")
 
 # Redis configuration
-REDIS_URL = os.getenv("REDIS_URL", "redis://redis-master.redis.svc.cluster.local:6379/0")
+REDIS_URL = os.getenv("REDIS_URL", "redis://redis.redis.svc.cluster.local:6379/0")
 REDIS_PREFIX = "yt-highlights:"
 
 # Paths
diff --git a/state/stacks/dbaas/terraform.tfstate.enc b/state/stacks/dbaas/terraform.tfstate.enc
index 1658f077..c51e7f27 100644
--- a/state/stacks/dbaas/terraform.tfstate.enc
+++ b/state/stacks/dbaas/terraform.tfstate.enc
@@ -1,459 +1,628 @@
 {
-	"version": "ENC[AES256_GCM,data:3w==,iv:a1j5nEiC7kjr9nttqD9DsML2xnrDwrnOqG29xM3bwzk=,tag:fjb18ghQlpRJrTQPZesDfw==,type:float]",
-	"terraform_version": "ENC[AES256_GCM,data:8fu3MCNC,iv:zIEZU0RG2yyiB2abeL+/mtWEVRNdaX9fPbV0Z8UBx/Y=,tag:ntlAGUXUVASrFkCWHg6EDw==,type:str]",
-	"serial": "ENC[AES256_GCM,data:gYJb,iv:KNumexfO6smUUXrcgFC4hlmOizY01p+Wp1HsWQycXoA=,tag:5OsY4OLbwI2M5zuF7i0p7g==,type:float]",
-	"lineage": "ENC[AES256_GCM,data:yamOPd32YlYYM9U/4TMgL2pkv3GrgPVOpgJmrpl6euJjFrHk,iv:eTaUDycECm4+YchohZ4cGaiBToAIpsjaEaq8298i7FA=,tag:zEDlLvLG4d5hS3HAA3WJOA==,type:str]",
+	"version": "ENC[AES256_GCM,data:XA==,iv:lS1nTNAk6wyCb7aT/fDJW56eNe1JyDR9Rr7lBsTWwUs=,tag:EjjQ/hKsSOfm4y+OaOpc3w==,type:float]",
+	"terraform_version": "ENC[AES256_GCM,data:XAF7hviY,iv:fF6j7dvw4IqyvR72bt0fYxGimEpAeefLkOtoGQ+R1e8=,tag:Hd7me+jbFHhucd1iDA4lGQ==,type:str]",
+	"serial": "ENC[AES256_GCM,data:OIAl,iv:vukKc7mWonkwpg/bQEfC1ZW/CagiRFfulQIHCUS/cMY=,tag:3bAIGW0p1ngBZMClVg92wA==,type:float]",
+	"lineage": "ENC[AES256_GCM,data:Uue/3/4zyIQbJj24G3Zy/5yMmMdRT3YLE6EQMxGmypmQmEUc,iv:hJHV5Zyrs1JM9DriIQEfBtub1m9O05EeIFHWL94xHls=,tag:ibpJLtSiIjYGUvooa9UmlQ==,type:str]",
 	"outputs": {},
 	"resources": [
 		{
-			"mode": "ENC[AES256_GCM,data:se3tgA==,iv:D40cJVYqcXVN0Z7c8tFr2ftKa6V0HQG1S0O8vseUL+I=,tag:l/SsKG2s3i3xrKCZztiDTQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:4bRT0k5MPlI8ctqMNncST8VN,iv:W3ThpVIk47IAIves4RY4pR7BSTWhxjet8QN5H8JlTnQ=,tag:ho9dMJqSyuuqj5XnN5w9kw==,type:str]",
-			"name": "ENC[AES256_GCM,data:Nf621LnihXbBdUE=,iv:V9M5MLMMv67apGjPoVkw0q37jd5DOJW8iVxqOUxZfLg=,tag:ld8WQmnbCpKhSOmJT7L8ZQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:3VzlnRe6D45g+F0e065kLfwoYgG4wu++htXApv5GtH2jklue4lraZnLSnS21EE/b+g==,iv:gHhAhuNCJZsJW4nERkCo7jKA6UsVzmaFrDwekchSv9w=,tag:IIz4GHLeeV5dt70603dHRQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:Ink3MQ==,iv:Y2P3uD0fXRwdf0bJ+GynRhfXqAsRbtuqYB8aI/JLj38=,tag:B18gIoycbk/CPSExvLagNg==,type:str]",
+			"type": "ENC[AES256_GCM,data:G7VWiLJr4MgKUXukQ69aX9Gh,iv:TB8pR+QVEvbT1VZDWW3F6CA+afk/itqLI0EYL9bmZ2M=,tag:cN1nbVPBBIxg58bYjYkYKQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:l1IKNEgaZ5zKl9M=,iv:mI4OvJcXI6q4N44E/Wjxc9n3zp/qLj/Coz/M2y348E0=,tag:O3NdVLA7eAsDgu3k5dG/PQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:s19pwUXstpwTK49meLrXlqMqQr3H/9F9OpKpvONOakuQa6BK29D8FbO5QOlmvwUU6g==,iv:ndkIeE+JlGASTMYvLtfJvvbIbYhVloRS5OSf8kVyE0w=,tag:189xiwQQjaZrntaU2O7loQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:eA==,iv:ivFyXjUnfRVEpAtqrVFJnrkSn4nEJEPeaWyqGDpNwUk=,tag:BiAohrFKae6htHgp+tKceA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Wg==,iv:XSMp0zGeEnZRAs1nI0UcipX61YoxFdnTTN7QHGGHIUM=,tag:P7O9ylV/VRDZb9KNjy+edg==,type:float]",
 					"attributes": {
-						"created_time": "ENC[AES256_GCM,data:3Fo9QUl6ZFK4480coYRH1xZhAnnwXoIDJ4HLnSKm,iv:pvAaMYT+Xz5d3W778RscSkRBEPISgOxatXMNlEVITHU=,tag:JGp8JLPlD5fGMNxIIh/MfA==,type:str]",
+						"created_time": "ENC[AES256_GCM,data:1hHMB5UbguyB6iwpWJJcpm1w5vGsczsov89ih93+,iv:l2BgZkZ7xIB1hMMayPJOESc+ppKwoMKdwONIe8FwVms=,tag:so1xkyNRaPxB2ULcdJLf7A==,type:str]",
 						"custom_metadata": null,
 						"data": {
-							"alertmanager_account_password": "ENC[AES256_GCM,data:gNgx8gjcEzpxbmkYjJTxr5gVYpc=,iv:AJydxTv982OL6plGfTNXuj5mMyH7zlI+md1coWZTC/Y=,tag:Hepnx9FsJFflP3T1Bk8LAw==,type:str]",
-							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:3mttXosqzNjVqYxzXTKFy9ck8nI5NlObX/h92ulZ2JM38l4GOiNqEdcnyWw71p54j8UdQrDRt7w8yWsdPp/xELaVsqCyxBdx2hbLJUObPOSY,iv:FhEq1D/+R3kCrDk10umHNV+nry8jgJKgJX6baHr8FAA=,tag:2YQyf1D7MAzJ7S5ARpya8w==,type:str]",
-							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:eVwodpsk5IKX3zCY+yem34rbixMmwoAHdM9rBola69JnZpUNVeh1qDhkDIt3kHk80u9SutY4OZPpX1Tcy9h7X7uM,iv:YTArmKCDCgVpmHLjoiHPnEZ8gj7WzAw0YTvidClJODs=,tag:enyldXE+2WYjSTfRwoXScA==,type:str]",
-							"authentik_postgres_password": "ENC[AES256_GCM,data:GkNIi32yD/QIXnuQ2ypClw==,iv:U1ZXmWoKrER1SCFE0ccncF5C+VJ2qwotbaQHLfozs2k=,tag:g2zUOLrpYJuzc2U+QNJQOQ==,type:str]",
-							"authentik_secret_key": "ENC[AES256_GCM,data:HTvpe2S/zGmYIiIG7wqVYVZtGrhZxA/VuoomwHIcMWZyM5Pp9UMr07bznxW2bc6NBTEt,iv:XiKSzDkN6MWGZ8M9nZboxCbnsapbC8ReuuxTix+aihM=,tag:C/lyo4ODtGCSSNoIlSw+rw==,type:str]",
-							"cloudflare_api_key": "ENC[AES256_GCM,data:62O393qIegiZHbKGYprR62ga77GjR6KNe6QTdfmvZwMp6o7lrA==,iv:MLjoYlX+A/4P7P3cFMrBUgRj5M5nwjxQw/w0jdAZVDE=,tag:cEm+2FV5KSKnca29pWwRWw==,type:str]",
-							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:+RVdnbv9hV8g+ju+GGIg49x1w6UowyP0aCuvWVA5i8JKUKqmFp+BLNq8ZfYHjms2LvbIQFIZM4RvhpTxOBOcCfabfYqGhoaTTJjE2/HRTP0xIpjbwiw0vQFYmmx5I+wwzc0MgPSfW83SPgjw3xDroxQfqa3TxwTQPpPShBjZtYwFNndsETp6HfovGlh59yBQPUX26BzXHcZCXg6EvsWea0vw5VVKsCZI00KPeWC89A58fRx36mIu0A==,iv:osnIIdTmDCn7878H6nZsl/FnX2efDf8oHIm0MtfgfVI=,tag:vqj8wtt4JVayiRYoLMyDfg==,type:str]",
-							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:gzN7nLb9EECRlJq2UUxzLbaIdmf1sMekVQOv2y3uu0Vmkh41Px7FpHoh6A==,iv:1UFjTJ2upspGNOvBZOlHaut/2F1rUH8Tb8SA38WQrgg=,tag:WImrtPfCmD495WkHA/OQ+A==,type:str]",
-							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:Pi4FWC7BQgKZyjLRJF0M3W58aiKud3VcqSIZcwQ=,iv:yb6M+ap9iURf3/l+iTeXugpzIDZMMAKq/L2J2FxbKz0=,tag:0IvQrKcjZb+jkvzoH3ggfw==,type:str]",
-							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:6LGhLna80fFo7rGzI3eRnswFb6x5tJBwNYv6RGhqL4jCa0T4Hl6PtZxnHRGUaQNyN+uB8rp0VSRskNNQxYFrFg==,iv:dq0vJOd7o2qpmL//xxviUFMAA3bxUqTfIrkdT8TRk7k=,tag:03F5KKsawUOSlnkaotP6HA==,type:str]",
-							"crowdsec_db_password": "ENC[AES256_GCM,data:f6B2CK6RQLQoQZmhZUQ=,iv:D1MNqYG/E+FT4WkVvrPfQlDiYi8cLCFSDfWPBLicN0U=,tag:fIQvi217O9IzXJh+aD/0bw==,type:str]",
-							"crowdsec_enroll_key": "ENC[AES256_GCM,data:5dTRb3/c5lYW6uypBBfNn4q0gA8rjOk0UQ==,iv:Xq9xeGx1dZNyAb3SbJ/vxGw6LXvNvAxMkzdI2ROLR3c=,tag:A4rtLsW4H+OeTPDQ4qdFww==,type:str]",
-							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:l5g1/gPInAeuSCNPQu/5QtOkxdEFDUO1eLzuvUpTpg4=,iv:qaY0WFJaCQc/eLbCo3cXZZoqopFzrIKiDqedh/H8wM8=,tag:FS+l3+SyJ5bApVbYdnatDQ==,type:str]",
-							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:8DlLyUAzU7DGkLeRo2Yy8ZUSosuj4ro6LNc=,iv:P1d/j+6J8keBNQU6lLVQuJ1LFWGanYAPM17o8or5ZCs=,tag:IGlN3AHwECjEYAkdzp7D3Q==,type:str]",
-							"dbaas_root_password": "ENC[AES256_GCM,data:r/s5PgTtAXOVcBi6cd+HwjM5x4VcmZ33fVqmOw==,iv:AAl69bUGTZOAHWUD1nVhVvXyzWDy8t6hM1wo4eB0t2w=,tag:N3lWLMAoXc2rMW7ibg/Rcg==,type:str]",
-							"grafana_admin_password": "ENC[AES256_GCM,data:rc4yGG+xre5dKLOo6i78l8QADl4=,iv:Rq4gGGxdLhu1d4GjSNkYeU9z9ZaS9UZh7ls4f+9tmnU=,tag:QF1qGOaDJ613/af5ctSEDQ==,type:str]",
-							"grafana_db_password": "ENC[AES256_GCM,data:tTsDpoi3t6NZKMIS82lZsBsLqOmI,iv:u023c6y2AnJxE6HNLrE0fDzHOR0UbwqMwZHtZ7kEDQc=,tag:n+RKSrz3xw3Snbi/+GMJdQ==,type:str]",
-							"haos_api_token": "ENC[AES256_GCM,data:HxIG4V6Ks1SwEflOidpLNfxvuituy2EJQABiAhhZ75cCbHQfzlxTKzCEpWURFLMO/rMaE92f8YuG8l0q0Yoq+FQiW94HW8WurYFD07AR1tupceLhXXIGQ4LIVQBl3Jh/6GwEc1PORbmJl67Z2Iotuv/Cs9KNzQ15FNB/UZUG1Ww8YfvucBTmrUDpBRSkhTWAL9zlG8qLXUYpq6X6XKIeWUPmWuGtl+hiL4+YTN4qQ/aqhapCQZuK,iv:W8MtLk1jFMRP+SsbJ9KX1QwZBS8njSelPPaz0zgZCWo=,tag:f/6bGaPohoe8Gonk4Incvw==,type:str]",
-							"headscale_acl": "ENC[AES256_GCM,data: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,iv:wxwZgBDvUjf7rpz3iT5h1y9gWhxiJPXkb2uO7S26gZI=,tag:kbIiBoMFbsLBX2aLOULhvw==,type:str]",
-							"headscale_config": "ENC[AES256_GCM,data:zLIbXX5Nl1qW/Wj53nvFtkZq27t0jyAaJNQNVjHWWmk9HtwtLkaWVPK7YFwO59K4ve0BqqaN14f2Uwe7xRhnfdTCB2sk48E+wBx47YrQBvgktTLRHgHeu8CPx0ZKQ4ngNhDrvZLFQvEwYwM48fpLaWQUIBNRVFhNpgOmDFCXJqsYqGFQwnUkgqzfEqpe5Vq20pNeKovcgSNlhP/watxSDAJ/+pfWWGffRggeBH/Vf2wIXPN3ElmYH5vbNWiMQ3tkXTugx5y80cHSqL7T+ljadJIuisOsNW+5IrtED50FPW/Z1Fp6X2txBWnyUJR2hgQTmFl0w+wB1XftUQFOcIHiEAfWpEQkt98en3ZB/1Z49yMCg1ikCkF04Bhf82dQSnOPOxYpQi7750l405HeILVDODfWGPqgNKEaziXq46KkyJNBGbpHGhiPLl4cr1z3I5SynMhqLAhQBs6aNacHHVVnudCd+Ka7pvKBnmL+SZjRrgpK9Vi7TPy1UqwrNhfF7QxbV1VFYbtiLBVOQ4pXYNJCHP43NTT5BZK7oB1g5hvF7VOG639rZiR4+mg+NVU8hbnBOuEDbastZg1eyuqKnnzrUxqPb5KYVeoIxKP5v+43UJS9koa6H+6koT6vzBvSvo23tIbHGZMOtUO/UgVJN5Pt7yngvi9owfhLeIVQGI1iknVPKAWUZiQk25xTr9suzcr/4naT3bIouLP71SQ2bmp10adxPBwpZpsajjhM/qOngboo2eRQfRCT7qdn847Q2fqZB26jIgMaq7YX4TkTbwBCEOnDiGT60d4Soqy9k8eeERZXz2eJ7EUTmkh0FQyzipwb/boHzGs0wpw5ADubhlmwVSBDnLsC8b8wfeODiWw4uU+3HAVTAtsVgvLEsVPtrByuHZTSSvVpLG/sOTfRp7neEXUvqiAE6PqTOkB17iPGbNlhWltJYgVG8zldA5EslzToVP/TjrDDqOJvANEpvJ7pFSiTLITNn6+cmV9wTfgZFSycNVa6E6aXKgXlStb4ZeXfGv+Lt1wvAEnYWBx6Qa6sWMHddUomCTvkL/fbCPfPFp78C7ZheZwNTEvq6IS+T4LkWzR5AQ39r3kFZaZhPLCKdlW7nGysbjhO5dnADoQC7cQPcvfG++OLe9DzFhwmw2M6snZ+mgTOWP+/Jhg3gsTbGz2ngtvunkYsts7Am0W/AwszaBtDc5hZyWvBSyr3Qlgsr5Kap9W/05H68IcwE3WRvz6Y9zqa1iWO39JA2RoblysJVcP4RFeW5QXx6RZ/3hb1Gx1+3Zj1FIFK2YmY5zIKNOC3eFYMeZ5TQdd2vWV1i6DdJnP/ILLL5s/QBpiGigT6zd9AOQS5Eh668q5QWpRebZnUStvyL5XWcW4ZCY2U30HjwMHgB85U74Zz6/xcnbMQVREEP+pyC5HNnVVP1ZOVtMXEOP5lN1jy7yerQlkHBy+0/JBpDX4jev7wT5j1xyeuncESbDmj0wmqyPAtSBoWgp3NmSAZGzwM9diB0TpXww9eaTE8V5TlIa7pL4Ow+7QaZ8PJGGHa7CyVTv5XvEn951MWGVp0ZKdojes+pN2dprgCAwbq/hdukH+CT/eY0UwXjuOWLC+GmiT5N/4t+GAGWdQqLMkKnJE11EpFcebJX9nNHE1VvKo1fkuGGxVF4KsoN9mUxymENc8Pj/JHFVTJA3buy3BZEj80hhw8Sq8s0iMIta4Fyp+xJbRZ4W6wMAII1SizpzeqaTSmaQILTU5Wc9Gkc+tbaiGQ64tiniCMIUUrO2ZQPyBa2s8KlpNeFEXerkWFFQ3X5xK11VqRH2dxBlWGPgg/N5B+JCVg/VvKmeFBU+mZz2HPHQ/Ojngzi4ED/WCU3QJ+Efz2VC6tLA6Bm5QJtVImz3VugZ8vkZk4S413V+QIGdTiXTe4NA8FzrPrp2qfnYiuAtTjnNquHpRgdUNn6YhmCNvndEC+jFUix9TtosZAnW0DtLPg1Kk5KnNKTMLgE+9CvQYGdcO8A27KUOQ5DLdX7aJITPEfXdOfNRrfvc2PqC54RpROpASii8EAY6X7ZE1y1T5Zux942v82z/xtOWinPt7ABdt2Iwq71VgB9hRsZXtFETL7l9tJNKVbyM2pCQF6X221FJ5VE8GlXF+wz4se5nDIbL/3JaQtljb0fX3cqft0UbUNm/W8lpkaMsgk2aj0EJPK7gdhfg4yYeICpb//fqwf+S0j2dICUBZEirpbtCiIlyKlRyGv5qXfNnxMfh8gH93gyBHGd40Q0yNimKm9UMzV1Vmiy6IaWW7YZTShsjD3bSfhnmGy3wnYhNGQK6QDLWAFsMFrKl/Rx+JKvvmx6W2ICZl15kfK7kPmQKBi3S0WJfPJ5QowUv9r7QD8Y1uwUVsGPNPF/FnNM0pzKF581UCRIqyjD6IzBInwmd6/AJLzLDwi6yNHCzb2RbJty2W7C9vQ4KLQD01GLwMppagEZ/IYZkRuQcYhsyGdyGgIekd25ssC8x634ZQGwxQgl9Dgewf9hzdoCF37Trz2wpRKttw54kjg4M7v/AA1tSI9eURwRIXYpnrDJ7rneyv7YgvEPZgtbFuW+x474+m+o0xJAPlFr//JuO0qEFZX2NwIJullx9QdDhcewrnslXLmNIxDfHFEwLDk/jxhH3vHhtYj4WF9xDkunE8NziIMaSw5rD5AWqJHwufLyM2hmaAMoN6Xf9uxIbSrzDghN98JqF/tpODN6tF0HPJlxFGLVc54hTZ8u/KymwKyDb0gp07tBTmSl51WYufF5itfHS1GBiJKJG4xObsKDP2+/D8SwzkmgceibTpD9mex5frebcvp5/TyNp3cI3XoI37jfXBxBRBizTvMS58xKD0jfpR5GhtMqzW6wKBwDMWRMeCXU1698/K+EYsMMJkOqU6k5+ATCZhGMPUCBTVwKUbBBP95Tn47hadEUS2SKgw5Le/ulO8rCr2ZuqneWb7RrKA7ydGE7JJ4JR/kWEAigI2rD5JTDy6zIwFf5lRHLcWfTsAXsmG3hAPm84VIIBZTaittKKongdOcKt0klj1kD7WdtKCAOgc9Gq74PGYHO3OnberTJnTo8HKJa6kEuPP1Dx1qcoApj3i5CbBx4KWlxDzsYBCyoGLWeJ7BpT34+5WP572g+4aVV7OS1eenebEHNDILVu/Fn9/NvMdkH+8ihO/J0y3/jeDqIsBH7w/mydUXUv+egDROw7wDruBmkuJ/0sv0plT5fEoS2+Z8aTWT7t+wQ7tpuIqKBCfo0DfDDpDsZxo4wUsC+lY2HkVaI5JuoyIVf66RQ7sg9sYyS+UYMAs6dGBtOGj5ZlE0q/YuRr3OqQT7sG5PnJggxZF9h94Venpl4jLstVvz/DrWnFsVcNGxhQp25xS74xTWpn5DvRYbmPupm6lyC/xrSglu+ru798CtY9xQXmd9wnPgTPaC7Lw2HRUYBOYODTNj3mMagco4WwX78/Mr6vzEP3jWmBARBYhjsLC8dZZoTWu6UXz/ihUtu0wbkaEhfwCPxqUNSmUrXvqXPqNVNUbERk4sJbIGPGyKJFjtq0Ce7UlHIS9OHrj6JD7dNatuik+r7dOuyxiVk4hVai+adXC6FAwd2Sj79hHpQwGs48XFn23GtoXtbvDwSIT64jZxuFQmzw0slee6W3Ovm7I3hjUlSX2oZQK37dWk2oXrAzvPnA9wgb3YsvXiJHFF1ACqmwMlI9MuF1jyWptBJuxACGkoFQoMA6dH0TNNXM9QhRoWDbglnaA4JZnxSG/rw5WHwxwW5odNrejVViiq88bdJvYSv72H6FSICg4WyqFhxUO7Vlp+WyH6GtLBRsWtryHiG2J3+CvhG/zU9670j1h7qZgKkxFVmg6fmWx5oVrR5+P0Vxva0TxpuioTMU2opHZnMumV4W5H7vE2VaqiNkjJdA0v2xTHCnXKBVwggKy1uT2aIQsmvfhC7Odi+gbbE6lwjd8UYKP65iRuqG6NTKR1A5hje2EfxNMWVbVZx54DhkLY4cCSm7CwW2WF5raqsSJxgdP0r4gGHVkrppmRdcXfJr+5QnxODdLoTur2Zz1Ax1gwxBb8D8CEJ6xBADCTuVKhz2che215oGgA5MTXTr8y9yRk9vlbgQUQwqqCONR4PUVvafXo+NGzkSDEBVJ2nnY4Ou+zK4O1s5zYvMhHcpMC+mlCYsGGYK1uzdjY+L8F+Rn1p6g65gy/BCeaMYHrH4aUyONxttqtB/w2b7eCoKDY1nU+ACz5m/YHvAn3OipI/L3w6YQWZE/ppgh25b2FZTq8ywY94Nn80yrYAPDDh1I6KVs966HQmLevikKDZgKvdNNbju2OV+I5GZPODjVK/pgy5CrFHCU6Tv4mve0t48eCJbWk8hCqBtZjw9y+4RYJP6zMRWG3Oe6jath3IKDFXcuBR07pUVoJfyxJmH1njd3YDVrVR3R2pGCnRm9JZ6KfOYjK6PyLytqT4ufAsbCnVYL8ZsYM+o7aEsvKdSlhmUa6fbKgVLxh34nAtp0WImIjcnSCxT3ux+B+HJZfDEiyPVNAbZUKF+8CAudwpF3yagkcS8GO5qHRsWxdTQ+DZHcd+DXkt2lEEQgp6KtgL1u4OYE4Jn800S+bZDGMpy5ZDDdi9qNIjlNQaAbPMalLZtk1IYm3XA2/Agk0gkfTysAoN8QjHQdTOfe1TQVeMNfnMMvOYpuvpt6mF39JLVDPvzapCqTqzmK5nH87pfeOycbXdFeDfDUMC9LqhZSSftP9/Zo+yUJq2twGoV85YRV96w775sUczFOEP1bna20ZatXB+/ZlXDfL3RSTjYMau0kJcJISHswkVyOsqT6o3yFhh7cunij6YSrOTO17Bg8G2lGYyNgcTIQm38GhYCYYS2HkefumiTvxbUjtkz8sEARK+OGu0/gL/Ak+QvV4fjKBJhNWst+gZKIJVFDe3gIqKsAFXA/i4ulReMEQNpZlyieNLvWr8I20ZIQTVYCQ2qJ+h/6l5p1qITDtSv4iriHTADIcfKEW3KhuAShHdTojtfTDi2Fk57D5zD/0Sat1Xh2Qnod0rjEego23BgZ7hh5Koj8lMykBIz0/YPFaotX3naU6Y9qI9Rs/oEMAzJh898EXG2PPFOT0t8vkLoAZkYhjB1tF2N3V8rQpAs3VKN3z6/imNciVE27Tk+ZSpdsRtvG0ZOdaHp06j5VtMZNJmqymKjf7GZHis+LJC7tbOcq20z2IdynBKrsgxhqC3rlsJhBUaS7F+85OZoUUwGarF6l0oQCPRFgtkw7K+TbUezRWlZkbbZGOlmgDTtOgS/sKgDGxEQ3zhEbamFgUvAD9KpqLyHT1rCybdsXzNDiEiE9z7rOjT96z+GVrVt2dTAxhGQdY+EuitVUJUFI2IihA8QKzTJNNsmxsILmiDHmKuZkzd0ItbU7iqVnK+5vTxQbstk5IYicBNY0LRRoZYpgeRDjqDaVlwA7xDnFCijkQOjZkZn/Dc3JXzDUnQpmsteVFf6Ffbwbtyau266kWvs0sw08XvoXuF1v3kqdAlhvaa6md2hGrSxMZJkIeXKiBnLAOy0KwP+V+Suk6VOOsKCk7p3QN4b8xkxL/O6rxQnZHLZjTTtbDfpdldMKBBdH640vk++9meOguX+jrR0aEs6jgkNbnRr/MQoRnIwoPMNXsS8BKJX6ZE1+2ThkmOAAaSsxDq26t1qB5bAcFewpYeUe+tU9wW+qt4fY4zVRm6g5I/TlOwz5IjldAh94WElIENo+XvBOAlg/MIAqa57s92Zg9jI44A6Nv22EdNiLilWBf1Z63HUvNPxZdBltast4v4yOx3pKoq06gd6cUk1z7KOSrBx3s0Iha0HXTzxYPCFEJzE0R0lOPATr3UNPA8sJ+DZZcf1Yz28JcMUftfZrpRNLafI4nUA6C2CqsHgajtEd7e3YFcJ77VSL0c50/fenyhqqqbOHXutjwC+xH3cdCy8GPSgDsQWGCYX2SIFy2cHtymmFvcVvlEJD9zjUYZlM5WPXAuF8i1m5x1dyIBEHXLKrG5sQd+h2mpnR9Tf0JF4ZKWLn+Tn59aZTTe1wTqb4OHyQ9elFbMnlhJsSc4Z/SzGneFx/Q46sBBHl23I8pawmCTFOS+8fXr9GD9c8WMq2CgGrzTzCDYJDxDJPwpOdaTK19RLRRRQFLF2e2ORSFRDAeWoxLBplEqU4MVSZnkrxtk24m7FvsgI3Bbzl+WuzjmHEsu4Jg2LB3MvwjWARNatAGkFHZSMBxDKwwFJMT5PPtGaZyifaB2PAFyvDpjczJ+5rJcr/O+6mJcLGstB9q2VzWWG8ONUHdw5uOO3y9VFWAt0iNMHccBpfg83smFhtz2dD89PQ1UzxmbU2T1K0FuRP1O5DGLE1HjJxfdlKvMfa6is5SCikeTNrJRL2ThxUjC+J7X75nzW1+uAF0oHBGhlhlcIcWepAu4FUTjHjVgQHKet8mBVJ7JRXfz4FmETrXoJAy30Dg8YoFXm/4fFAtMZcYua/AhozXjtAeNa+r6um/dCyZqckCpwvFVW2/Ejtm2f0RbgpXJiR6d81s/EPm4HnnNTDsLUS4jNsF1vlhEJPXFRGcpnZh6EL5PG7d97T5+xnSAKZ04JjiRabdkfbltxUNc/XxLEo/nXJILfxwSHBpCH9AhoTPPbiCLGa29fhKy9sbtXdnBxWYorEANszs/FkRssDuIMpCEET8y30XzUPQlbIjwDWCFukoI+S9PTBhkFZb4dLMC8A2iYRGaohhmmGv1hnr/4XxAyV22YxP5+MAb5eB95UQw7xy78nfurad8ud6OOJXEOLqwcEaJfD5ovOBUNQyGIbWl8mem3h+nJfFLRrR/T0jUdTioYeeLh4fJuTUgc4jsW35t13Q2NkDOLov9s0RbQpTYxauy6pX6RdCqkweSybru5lngAp7C9NYGxqxme0Ru6kjFle/O577BdipfaxiKynkub6aDOEwHs5XJ1QPCO4T+EnnREml248vv22FZsktvdwwhmau8IE+nptEaQHAotSW+KVvHSgEkPDPzYkVb3i4QhADeT2nwMFksGXADoTX0vibHX1o79xkW7BU7Ev0r+BhxhcExoxktBNSkczA8oZYY9NaEp+QXCZd9T6SeQDLRgzCaoso5m4q6W7N3I0Q7JH8kz2CDFrlqBr6xjrkuCK7luDClEvKfHd8HhQ7aVBwJU+fLG4gbOSN9R+kxsjrhiap/ay8+PywFLmDm/QlCepTPyt52qrfrqJ8hAopd3Xsazeri43zeZvuFDW+fs+p/Z1NfiHEtSeU/9l+p+dyBbIqAlbs68aUrAVBfFgzvKBYYBroD0IWmrYXlFTx5bW6N+u+Tyemn8XS0jhcDVJTYo68wgcysuWw5pgYtiQky86frLHbAGlDWHB23FdF3zS7RPwGzFh1pmb/yuQKDuFewTnApfM4Yav0+Iv1QV67HJPv9a/t68V9h0JGtNFJuMiaJAR4LYIJM3u/NmEMW5N7JkyUI0HswJmLLRb/XOftZzoEW9WgMvDakQeXeKYXu2fVKT4eYyk7n6pXP6Nt7kigYkW+kjobhldMu1wgVl3TyQl3Ty3Ps5wfut09ElJz1AwpspPmjBHzJ6zjxprvd9wIaRo+PrKQUNZKO8CCbjp8DEfuCwpAPUkuB29YDdV1CXJA1ZGSURdV5ewjAVO+ZBkarYUOOQAgIstCThoqkdMAq6zBV8uERM6QaqK6Xb+T3WF6tnnVfCWxcZoR6MBgsDt8uGbMFe1xpd10+QxtagreY4rxJoT3vE7mK8HpHRgvqPDVipP5seZK+sclZfByPSA8ows/eDj1ISOem4uL0QDKEr5e2XrMj9c9MocXxWzBljLpnZ/3rhK9rHmPAVH7JTFJrWh+bUHwSYVT0zP8LT0MBGZ2I9zvcexlZ27hT4fjk6Nay8NGDCQI7DHc5da62slgeQbUVhcryXpa4VdfWNZWjrrMsD1m5kFTnv85tzlNtirXLW3C7J4EhiVde3dI+69TghvQhAKOZCAzeVMeEjBvCIfp4sDrJH2b4idcbA4JBf+vQ8jBI9nuvDi0RWZ84PmUjW0JiBqRbB+vTTgekyv6ZdW6OEZOQD55mIpruJdW3Mr0JaJuLNuUWw/ouXx1Bb0cS9IgivlBFR98hJ3OdAXAvJ00wRSNv8aoVF+Hy1V3djGBGk067yq9C1J9etdRQiED+PNmiws5XuttEo/eJiLo1059OCo1vn9nQm9lFu2GFw7GWUvZqK7RJurnVffFIZAfCg73fHUFUSWo3FQbe0nzpsCpB+h+ghGUcu8OChDVw5XJWBLxm+61bII/qZhlHavJ4k6fGAaemcbOjfsUDyChSqgwhFHmZta8oiAOqgXTNb0H2LteEpwyjCcVyAZbiBMTGmmAjdu3zYx4rdDPbDCO/c9xdA4TV0rTqc1JO2OQdwEczVojcfatzXEa9CGuvMD1UA5cvLmBShYCgwZDGerYgGOLkWCZL2KovZl9VQWVRDKFuUbZ1Xx/c+ZEdabBtuP0tD/kf/rYuMFnDYgO94VWfXHgKKjwiuECU/Xj6KQN39h8Dy8iYXtKJ97rBT1xHIn8etIWUrf4yiG1QdPGBWeufsHy/0WyzUB8dpqCmJO4D2kuPAqpaH4MZkRO9bMSFZsNtCoNla4VCKYnwUdWe6yUd6slM7j0zXEI9p7+xJFdDhBL1QSITv4hLCiseqxi8BHKQ1WZvz1yfaWWKGHr95Jp46ky2Bwo2xa1DMYPI05K/mTfh8a+zUht9SI+HTFIJhOWBSusAd+j1Xrf3J7VntI6ia4NG5kwaPLcg4Yr5B5nENMRjAYzfz91rjAqq8y1XPZwx2jkyo9icuTkpA8175lAyF0MHBKeHC+l+DCc3FYO21ZGis6bDhmmKwXiAHOmNaSf+ieELv2b8Ulp/07v32UPIQc6joi1eFaUAvnBGeKdJlhVAWzwsNcyJZsmfOLc70Z998z1XkCWfBnVRxDrQCiA3h6iAbe6W4EQq0ibjhG/cRCuhaDIlqYXDLo+HnJh1w/x0PtjFK4Guo5lgbrRku0484/VLuXqm0yrj1o2y//+tFLJu5FctNnuCWxK0YptP12AcnT2hgGb/TZLToY81tUluNkfk0muPFIp9G0C9yL520uW4w+jCNYKYAAEprF3aRNvPAqyBP4jnFzy0CMTjEB9vWxed1P0z7IA7l2dXN0YpP9v/UYsf03r/UDJyAvPFtm3NEtPPmQoloqN+H33Du0Z3f1MJsk+04LImWCgB50P5K3I80ev5nvfb0bkv993+zZ12MW5DS42zgkzfT6iiHUnyX0wgwxMcDyz8/btxQDmR99cq0cztVUWhvsP37GcmBkLSS+4VwlECeF/dNXmHgDbFKnvcPlS7m4qdblXS/+b+5G2jzQLlVmVRMheANV3jMvbu3VP62rWd16IlI/SWpAOYLVP31E8Sf2rVoqdSVte3zp9BrQDGmcvYA5Mxbq2U3/mMrd8oDD3c6PeDr8I1K/NgmAnvIddcNTDDjqlDpSkqWjddwFLD204v1pE1ONEuoY2xyCJzMuuXaRXoKBwRwvXAaoPe8votUxSKZYWMG5IWTpQkrVpKbFK4R83UZ7QZTG9T/jEJeJ1G5hEgdZWP/JDxrkvqZJ4CJoQG/PCcHNLPVgv1fCWRxU6gLCHEDQJ+OL+26lrMgruKjr3KBWC/RxtErNVKYGra274Rv2tSDdo7sWZSSW4E6bAf2s4/ZgBz7qIXY7WWkfUvUi2Ug9EclRqAraghBPIV/ExUZcrT7RHRP5GzDa3+V1ODh8XM3X0qIMTRKuUelvtpShPBBhQDljndXTzmZx1ajdLS95S8VojsTIxwbvmqWHHMpKVdfioc190RjPizOOQMxqT9ei3oLz5rhkxdD1Xc3+mLJ5AN7D14NAFXIgwhJg31aFPc9TdT3zUlaw7izLJyibjT5pcdT6bDFksFB4ayGGodg38hzEOM3h0JsUADp6GYMT6QpccEB235+zCU+HRvJyRhlpepNmWBq8Iz9rknPzQlJzBtHVpwhvKVMAx0QwWSCvYBMvSglJwSrXAw7MkoX0Enqj+M1olSGgn8yuojRQ1lTJmjNtJG0jkEk65i10r/GkXsYaePAIC3BayNN+MvDyQuxdeUHYduZZYwSL4WSIrwlpEDsBTLOnLDm9vsUeICi5Hz27yaMZ2qwEbxBsBgnJjVOtmKWe5sIWUuSl3JqskvavBSz62/cqr0d7ZwuDHY6ZIejgPN7TNwudRDeZ1hPTY+gSt8fFwbsqu4CHT4cmDSpuXFu60337QiggRaileS9ENnpxzyV8areDwUHIlzQawwP5Eb6pyy+NHFraJmqrwn1PU/zl4+GWKE5H0aJ/UQHZiJ30mjy08d7Do0LPjjEz667jwv5m0TzeBQl6jryaCLe1kZDmGnjYhZisncCAuUU3p4EpaseGezncI/X9dbclp5SwvXYAyvEw94vGjPVrcNNv6DgB2uWBZ27ICdgtPwqRjD1bySonQvjG+IXj4epVZPMjQXusCjSZHJbm4IIDKFLTZZeakDPGK5rmCF6Y4+f3npwgIk7wV2cqVipT3SaPHt2kQnDu6ENIbpQXw2gAMo766wYt2s8J7pIFxrOQr1NbLuX2yBxyuZTsweYBZcH5PtI/+czIRuDN2mWA9dV9dv3KE6B4/JzXeOfe2DMsSN8/YilU9P0zvqkW9K2Vz/H2KVeT7Bt0pVpF+AfBUMS3wqmcVfaPy5UFAccSaiQeOkQJTncMWr7sgaZxWiNJN/CdzIW3Po40FOOgYvhrkTWP210oyh/BwQUdrvQW7wFV/aYC0l2NibI9EauVdaT7ROci0HyAn+P2xVLDEPJ4qMjJGVyUxe18IxJRerZP8jJ+Mu86ax82pVTyQGhm2GEDPNOTr8Sw/4Y+n1O978Z2+mqECcmnqCpsrjZobE7l8EbjwQ8Q4wuetS9pXto8kGhGiDzEJAP5RbBTbiaGAQolVomSee7SKzuse3MjdfLad7fvOlBqXc6bZsgZZ32k73XrzRCrunJ6P5hYZ2Z/W4xL8zsDQcY/5MJ9ENcm0/iviiFKPXgFqurfV2itD9epwwwh6ckdlv9v5icpchEKNM4hG7v/3todZBa3geEjuwMlFopfOZZIW2H6deH1bLEwSxqx1cJ4ZE3BKZmjZenlmsu38opH/1LD7FQfK93YKKPURa9JO06ogntLuUCNN7RAJIlkChP4dFCrz1Ph5UZbb96IG2XSK8883HIDTTaqJqF9T+x49DnH/cxYLAucvJ4Yix9vP82I9RA8mEInfa1XJl3ClwUHQIIJ6w2SGO8a32Q+hMjngjriXxspfGIyNb0g+r1IcLD+QYiIlMR2XuAhma+zitAU8nJ6ny/p9L3M+hpkicI9uhsT5qea3/yjjXunGRG5sZr4GLUtKsS0NSlzs0qcUk2upAl349e15UXheCQB0ZIMbfYBWxpIxGLs1cgpmU9hcOfHneKCVKnabdTTjPWxJgRLwoOmEZCIik5px4P6ufu0G0d4gxhcB8YrNR/a5ULxJS99cL2moOd5Jg8QfalaLqEqigwr6/PFbPOm6+9XENkpqIlEgrbFJaYP8q2+8piqQJuZ/+fFNkXJzIg2ZSPRRWvgazq6IoxFf2F9EAjFXM5GMJoXZjESQadQ2EtoVFy35feb3p0vYeXRsEC2rrqKUjEmePWVOAOn0im7hQ5D14sGm7drGrcZZo6h+gKzGFYaIPitG8EkJeIN8TSO1FvuDQjI3WZBicj5RM7kEP1cm01oqyvDzm/pdo+4zzmNw2+TT8uElbGRzSt5Csz5qhDeYbUMwL54PWU/zRCqcbIfV1IYTjodi/+YwBc5snClqJnCwAN8D32ZWK1R/EOOccz79bWFMpu52ChRi8rnee/ztGCPgKLTzIl2e9Zf1/AgouOE4m4N7eX1fNHZRFk3DNWvMqzRMJY2YalLS3MALeh4b2hq0ZTfpE8WKhGcA3BFnsbhXsThVisc7nsi4EHwA//YrSrnB0GdFFvYYXqWiIGL3VlgKG7SMzegpOg2TQsc50igb1YygMiFgL23pGowG3s0k2pYMPibfM2Mm1wJBwqLIMxTBiS0G52+WGMelHtrwx2kZxT5XXLHI9I8Z7ecpn/GEhQbk982LtZN7GiBCtPOSq9C2csJZvfMQ4G5k40VBf14odJaVQwtWj89tmUQ/uNTklOisFXg+4suIbYcmD3I/TcJm732wkNuua1nbzbUikwwYafRfq8yVO/1jiloT44P/DfjPKXM9mWK+4U2WNUukAsXUF39RiDBnmNCDZ1eu5MseDaQb/ejFGcuWWrPxTyf5VI79qrPNjhCE0d6MRnhLJMZ/Nt282Le3N529lB3zy8IIvE3gB79pbXysxqaSQE7BwlKwDvSYRi1FFpQQ31DpulvPdzAujCXOBCHE8mnBAO03Q5BQ6o0HBaQwwjadkA+YUhFbE+rPFOkmVjBk4mDHw3BHggXmKiOmjGU+yFFtF3XigCTGT4e2umSmXSg5m9u+1Yx0UhTf3toivRzzbAOgv5QDEoplDMnmUjWsv5wR3Rwe/CQMWmZaqXatUmLQrnzCnASZlwrIYLrPqxeDEVnp+ajK+zjWJ+V0jPzjs2ZR346Q77gmSeArOiDHKYGwOPUy6sJbFVfwN36YFrkWJgVVjkB+Lp7h2upN4UdEgs82Nt7AI03MtMNTQELCrq05AfDOsQVaxJ8LAP9ESoNnQAplWLUNvvNzt2xiMAPsTHMzpQQmhxDNwBRYJv6ldKSYQlZpy27Oj5BVgF2h2GKCoJRHrW5Mi+cWZ32NGVt1GY9b57/52psy3QRGJ5GP25wVA8iV7udhy9I/LnCxF29TB49IAAFwN/iguZXCPcYuNvnQ/NZm6D/RsjqRlFxtXMpPr+gns8dUkQ6vEguLSpb7m4CUmXh70SOmnfLiwLL7UGEduBrZFdoxAc5mHBfedTQ/uJghrrf8ZwNvoxJZCbtcofeDWnO8xpBk4z6pkyYB2o18oPFVSbPsGZ3oCzhUa2A0JlJSU/F92EmATAM8CTgYzpp/x/6dj8o2DrBYM1KZr/FJJ2BYJjNgGzKMLKtVmEDl5HLS5VMTDfTC2bbECyZoL7Q+Cas0msxxIdUvIi+0qEvIO7SPOnub9XLQDUCJj4v4U1i0ziRIEw2TmU6D/Fy+0xrwLdo9flQM6sd+JeqYHmGvezepwziwpQppXPhBgheG5+MtVlOrjMVfG/w87AFNnkITRrRTuBHG4vqxUy9xrEfNpoGSpcedPEyppZ44rM/eMMv/GqJDFn5p/lFRR8wfsbxlzDNh/GCKcQ2DMVW3EfyhWI9ASnrV41kVRF9esFn8GRsYIkkz3PzfHJiT4FJhkP3A4cyYyT+orZdTLgYYJ0aCp3qmCpr2V7nNx6JWBeci3ku/RLKWaDmHjFvIGStPnzvfDa0vz6pckQJG4hdF9xHgc7/Gj6pCkOYSaAxEd9OpdMeb3+UNQ89AVx5sLlRPSqsvreHSmsHIB4LWFu1ZSBPM4nnnrUhZDhz1mjIOhEElWBmSHfrov/1/TbOl5u4l9Q43L0XPXHz2UfF+Li7dpLVqRuHE6+5QFmPiIxpXOW9n4aRjZZdfUNWSW+ohDwT4Ff/dcvsEmNnIA3dKkJNoANBRmv0lDKygNERjZfq9/MhUIlXeOXAtqeUouY/2YoFPd0orfB7c81GD0EngFXM3tPxBUY2eEFvkkScC+Vlk5wWuVXrtwqXRs1/hh7+NOKrjU9oKPPeH0i/q0VQvAn4FGjtlEG7iMMx0TQSSlPU4zJ0K5ZvaKKgn5oKRdQwEnTiFHmeH5c14l9mek5QYSZlMZM+YIfN0xl4F94Ye9QovydqjtOztCmSkQsEEyzSC47Ul3BuY2jrqA3olL5m2TCvfm4gOUDyHljsCOvyKsM7nRyKQkRdGAub8ow/XseODF5jprX/dKUJeqVtHcuHl14Lh6jN+Coh4tBwJJ7ZYrJatD3t0bkBoJM4TMPLqCI+SEeG00QWg7fiLUeq9xyXu8MKoMPKqTKBlfvuRSPyyZ8YM9QRrb/GEf8Eis6SHYvNCpnV1RYJKHaH09lKBLejEfnwhMKDi4EWkPiidtLcYU38OmJ5wwj63pWngCHGuJVoedH7eb0NARclsjve1pzeRL2wRjXnfn9SegqN7M8rU6zvdGMZ2F1jteGYLk9DygNa2QPjvomwVFtDpBJ1vVlzg5iRVYrthpMlFWkKtBtIhCDGfAp4aqD4tohzvwqNfeGnCR0Fy4SE2UgEm8mOiKTF/q92Bpj0J4LwG2nrPsoXtFIL1tLh8jQ/70/2JtCcq8ngPG0CQTKhf+AD5D7WS9OiHfPY27D2M2BthBBpmzDL2bXsoE/p6ua597wivsAVQJeC2WZj/znCgRRy6B5y6i/emg+wCSTkB08ECGVmXI56l8nPKAHfciw8bPDc+SJ1sGqit55Bz+aSIlEuC1Emno3MWG+LP4r8TKQo9EguszT2efiLSSgFtFJly29R3YblXi31t7Nr+i1boy1G///UVnVoYD9KKFsQi9MRwV/rw7SXr1wUBzTCi+ii6fyJhcXDO3kZMbjOnAmWV+jc+H17oKA76IEUPoPhtAX0xiWQTPLFxWHaGMRHlx8Sk+HMq0aAzR2KJWZAMJ1akfFDeqXymg60Nrs9EIBXfCWn3VOeppIwbBPFrRnD7qPz1Dm00uLxYOQ+IjufMGByezt0BL87eUDUb2R95W6wpUTkfL8pW9XqUuzA/m1k5+J0krFUWkYChEWo7N+xYROmTS2+0VSqNr/bYG8R26hjGtkm8olKRQ2bRw3wcYNwtMuidQNkny99SMQRcRkTsF9jHMo9OuhZyMCdZ57WDh0S7BRcJj0AMFyXGFZyuEfSkd8aI2l5vtDjWu9TQQbpAkXI8JgPsCFlj/h5KxToul5pgr5h8Fuq/HHlQjPivYk9qzw68BZ82tJOUAe75Ui5Qe4pprugdRNXB0Kbdqgj5qWdbjcdoyOlId8AC03lvJ9Umozh9Y08EI8l+xZ2AaRc36w48YhuQFoOlLYSj5AhAl7IE90isoiUZL6Vax10un0ATUGO2LtPlTm/ynnSJLVgYdh6IGvrL8rK2RCC9BEIVOlXA5IBqkk78yRpSh17AzY8/lh1q2XPzUD7rnqWTXeIJHk1Aqq4ZkYHV+RHiesPutA3alg8HT1tfEPnDskGqbaaYWWiHJs21FdK5es75uqdskWcVF7k+60h47sQeksEZtZzetCl8yFAITIzJUywDFOdAvUmt/aB+mq+7IolGg9pQZGAmGIPuaqTa2J80tpcfHK815xNYHHKZylW/+UR8Z315Zo8R5SQet+AD8SMLJ9on0CYwYkJ2wmGgpMyAPvqHKsDrUN8PB7REiZMjxgVFCpOyosje9UB65APyycqJeh4Jm0QHd2WTyWM2urPHX2MI7CPp09HEyTwKgJD/dAv5Hgc9cbKrvhuuCzmLw73+LZ9aYIDA4ZL9wdniYe4Sl3CXk2sew3PpTkfJ2LX0nHV7vElUN2AWNp50KZ/EQVXhowNevFofNAjHhLqbEG0deNZplNwoqqlPmlW/J4+6mBPeNWZuTIRLKsTJ0/pLZMwqlgVRNxCfKDWY2476sza76IQaKEA3TC3pDYmt+y/jWOebswwApz3tHhReN3/Cpm65pc5vHWKLb34eLzIh8zgQ+a+rzRQ7qgq6wFxStbBPBda8Dso1Dm2Ty91xY7Dkbb6Hh2IJNADU4snv6nxo4PuUZUzXhBr8gLQ/oxROobx1sVYWR/FJanuCNEeDBZaMHoQKNP3ZB0qMZ2OXKFv4NJd0xTM2n7+xlq6noWYgnNvl23/OvGb6dwiYPIT9x/HsZLRqxANc8+GI27iQ3AIY7XFO7Fikw0FOqWAz75ebYhAYpKL/SPG6p2UlPuQZ97YoAWpe9gn8O1kRqwWlOaevm+U7qYHlXvAIr4ZmkYKzYw8twlnq0k3SoMBCS84cUWZe+T4SL5QdOx+fyl6SFCUfAaTND/v84B+5WJESVG5CfprhzFuG/3nSFnbfMPs2UjC2eSD7+RPyuY3HwTaP0qrDh2FaA190CKClBuFPxsPE0b9RdiTIRVaOfGiDVdlwtIVgB+9N4z8GP0uZ7EgC/PkmJBLc9sTnRuTt7a6yMsJ+6v4WHV5Xh5pOukb7K9wKwC5SyloDM6buF5ci9eBLPdaOZfLCYBfaMFxtpjF9zvsFzopnoNUAGMNB/kk3p1Xd+88EbzQBq8mEq20pbAMeoCQTlcOjTV9DWP9QLGDOWgeGaRTVajxjOA+1Hk+kGxxThUSsNyaXzAWLtC/nRe/PzAOEzmXrrHzFZtuKY6l6/tpIDQGkeRgLfCure5+qWUpYhXISLA3KGPYckGw8sselKZ1NKrUR7GQIBMHXSpyq1JwuFXlpTSArVeoofVjkD4Fnoc8NTBJz9xtoISDb1zdEybqsjreYnSvOWm/yYiG98eufCJdLQYJ0gQ481fM/D87/emYBfsgxTXCtnEMtYnlpxUhcjbwxo69JHRzEz1uK1wOAGhpS+BTGq4SehM8EjfZslJQoavd73rjba/KqQ0I0ipLG4WNh5KbwIjsZdjMG70kC/u3fi9HfaXouL5OR0cRhPXv9wNRJbxfQsYxF/gXxqwj5T0mDKd+jczHxn1GU3CQnCOe81d9mWbtMup2IJkWPB6EFOxtLa/RRSVF8Z2hAAhd/8rgVCFJLkJldERUzxu3S/Alj/HRuSIKUgh2qFdv/bpRG5m5r1rGJau0XMUw05IOhzeP8blUwVDu8Z+0IdCGkNDNU76MwzR6GVhwvLQJbzQ/ZARXR0xB+SHTkjveEdqvRatu7+69IGA6r+0gkpqwhQulnYZDjab4m6+W80ZWcgnrYHP8DlOP+S7JBdqd0BTJFARzAy2d+C1Rup2LHz+3CfFI1EGL60O0N4bfd6oyoxqUkW1j1zLfDq1dufZ4simmYiPe7RB//Ed/9lq8DGjrrgE+snDMR3EZxSMkw+59799m9wUGa9edaLDhJnYl2JXLn629v55jwcNho5zzV2yZwJts0ckVenF5Y13VEy/avZ7epYBlnOtO1N2idHEtUJLpXy1EI45kledupKnctJfXAzbJ14+LFeNfIQTUi/hE+Q/la5cxgxUrvSf6IvY2cVnLR+kqjuSWPMtio0Baqw3lhcwLsi7WTfO4Gm5A5SHEejRE5iB5ek8q/7YWq6xrpHE68ZHCrUjSZoj0Q1+bABd3sjS4W6A10+cgg0VGn8SnsO4JKobaV31GfRWLhuetnjtVrcGYkQuhRs5HGGLJg9VFH+y5+la8vFyQI3g+79DyGPhEiiJUQWbkbuDLleUulPVC0GmNWnLgQ7DtJDyO1DVF4QtVFA4qECQ4I89iqVSUmXVFIfydCNK/HmuzAPEu3RdmIizwZtH5R6pr99tGdmM3DRUPPRntKl/RsSw==,iv:3Ytsh7z8dbCRuaE4NCCkIS7BYo5XcXNZ3ul++gNxlOY=,tag:TY0wFAMBhPW5ZpFR4WIvSw==,type:str]",
-							"headscale_derp_map": "ENC[AES256_GCM,data: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,iv:L2ibVG0YFxFyUjC4nWd57hQ64j/38e3eWvlY5SLtbys=,tag:1Yfjjep7G+PTxZHDf32NOg==,type:str]",
-							"headscale_ui_api_key": "ENC[AES256_GCM,data:YoSCpGM9VG03/9Yi0csPwS8iTJNpB3llI5MBMi+Z9GItwHf+joEGRmJBX4Ui+pyB9UCKrId1V3VukKhV5UpsfA==,iv:KDMS54kLklt3/XuwAaZbCe95uQkz54J9lWICzKr2+5c=,tag:S/r5XfX+koyU0kWz/DFgKw==,type:str]",
-							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:JiwPHC3zM1CGQjqwwA8hRAVkVYsoo0IpR81R4iKu8lp1eLvDIgf0h9Z8pBlRFpthisCkLJy1RRRH/5H/VhComw==,iv:FO13DjaYfuveg2PkeP6nkUlggiQ0nito9BUQhi1v4sE=,tag:mEKc6oDJOWkzPqqvISOkmQ==,type:str]",
-							"homepage_credentials": "ENC[AES256_GCM,data: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,iv:5gZlOCB38IBHGvtKjFyOGakrHEiE1tNWa6icvWoGlQI=,tag:gHJNXXYxci76O9GT83qE+w==,type:str]",
-							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:st7nWi9u62kc6Sbf0uGigBdmhMlbQjXsNiaiqeZszDZhkWqAwWRO2BeA0w==,iv:e9VfVMcDNInmnB/sb6jnyWba7ITx+rXzRRwhAvkwdZA=,tag:jqkyLAmp2QX7kNvd/J/Eng==,type:str]",
-							"k8s_users": "ENC[AES256_GCM,data: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,iv:ebDqlhsCa0jKeytTG5/yZM7bZaqoy7hvf7G5Tf9pwhU=,tag:NtBlNb2tyJegXvDOjcqCrQ==,type:str]",
-							"mailserver_accounts": "ENC[AES256_GCM,data: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,iv:BJCXHx9w+gt7oVClOq36ynjYz9dllkHW/cqxEny3OVs=,tag:KCVVJ/Mi3dj3NZDh2tQ3BQ==,type:str]",
-							"mailserver_aliases": "ENC[AES256_GCM,data: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,iv:GCZHtEFSUsEJ/uGvOhEM23eSPDjEHJBmojopjmIejl4=,tag:FoRHubNYzFm3GGJLZbUi8A==,type:str]",
-							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:CYkuFPM1C/SQ3EVWe8NiBnWZ8ebJNOqSRF27YJMv/MU=,tag:DvhMb8l1by+MMu1BHWu8Ig==,type:str]",
-							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:7fJa5Jgt35HbbFhPAUI=,iv:ZHd/oMfR2zoRQ5WmSSI5SHQEbnRmPd4LKLTFmfe4ALA=,tag:mhsN+pakFpKlUM+LEAPwNw==,type:str]",
-							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:wVDILqf1jLmA0cxHejxUkRdVMUleZcEtngr8pdaYXaJ5JbnRds+d+L4H48o6fQQxAfabzKbHqweOvjh06qtZ1oj7JujYxs+Wb49jPO8GGqjsdgih2GmdRVtlaGijEpWLOviQTTXSVAsq6453QWb2n199CtDwa86Syc+AKTie2nffLS+pJeKbW2kBa19sFwONvJc=,iv:l/3XKUoBINGSdC9RwmWqZ7L7R0XRC6V1HoE3Pt0rCVU=,tag:87ttq9uI+1jdsMeLNlYm2Q==,type:str]",
-							"monitoring_idrac_password": "ENC[AES256_GCM,data:92BWYwAu,iv:JwMw6/gWn6AJV+dUciOcy9VH9sOHEdLVljDpDnlCLgY=,tag:vASvo8NMMXgvzohXOfwYfg==,type:str]",
-							"pve_password": "ENC[AES256_GCM,data:ENPMuOdiHN3obPRBy6p2ibtAkbvE5ll3IghQ7w==,iv:biqN/0AsziRqaVtql2vYAHt+VCVzRtXCikJFuvruDIM=,tag:9YrqDsXXeF4+O6IDGgDX2g==,type:str]",
-							"technitium_db_password": "ENC[AES256_GCM,data:8nlkJy2ejbTjtmtb+1M=,iv:HQsTyNVQIrjEYQewtxOeDoSGu+TTUqU71NaSr+a8lls=,tag:7o1/h/FHKhiLf/UA5RXUSw==,type:str]",
-							"technitium_password": "ENC[AES256_GCM,data:6V9qgbE6NP7ZjEN6215kCyg+l17uCZs=,iv:s0OWM7gpJV1WrztEOBFWkMBDdW4H4M+N/L6c0wad8Y0=,tag:wCSEVFmas/tV4cB5CGTL0g==,type:str]",
-							"technitium_username": "ENC[AES256_GCM,data:2X5dUuw=,iv:JWo7ue870swqIh3RhFEz/SotWoxU2ZvIR6CnnGKTZAc=,tag:PhNmtFA1uW1RFIsB4SoOwg==,type:str]",
-							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:NbXcpgPYqSD4BAzs36Fr1k8sCcOHkw==,iv:zENCH9eRgCc9c3w753LelkvX6lcWv36dBF/M+zEtuE0=,tag:/k0qul9cX/hlPF0Yywdz6g==,type:str]",
-							"truenas_api_key": "ENC[AES256_GCM,data:T8JqrXFHbDu+JvboTmuJAJX7e+PpSphoaD2MIO7CmJCG4VSxKB+zHrqPUCvR1IG8BZ5hdoyc8YTDgEqtRci73pEG,iv:/omHldE0UTAeQ5hSsx1BMBhY+G6ayvoJsID2j1icdQ4=,tag:nOJPuPNOWbO0VzlArH8gKg==,type:str]",
-							"truenas_ssh_private_key": "ENC[AES256_GCM,data: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,iv:d03ItFANUjmulIWR1BLq+eJjDnkPT8ygDj/SzX62how=,tag:aa7jEeWUPVA/MwAORlvgZw==,type:str]",
-							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:CEK45S9xlm/rRaQXNyz5PKdj2vk=,iv:Wp8bCE4m4oZnDshGqVpNLYcZ62Jn0+r/g0+ESH2sqOc=,tag:iQjyUdK8V+vNSGwr++H5DA==,type:str]",
-							"webhook_handler_git_token": "ENC[AES256_GCM,data:Cdcr+iTFEohw/4rLeYLn3dkEE0BHrVJ5lanLQjBn1oni/rHvWCO9kQ==,iv:4ykWOK04meGDzA304j1bAJ+7XW2k39zICTCeQSWaLyk=,tag:i/JiFy1Jau7liwDcl+TsuA==,type:str]",
-							"webhook_handler_git_user": "ENC[AES256_GCM,data:rlo51/nn8qtDYsxi,iv:LOTUkZnYvW3PxB2USXSFK/5ltv5yrqevqltNYDWwkt8=,tag:UE9mJN3u6hyzxSNvI1z6qA==,type:str]",
-							"wireguard_firewall_sh": "ENC[AES256_GCM,data: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,iv:dghEQTgBpQzm69YoWWA2fVRgSkg5ytj3a30i3xpVTmw=,tag:fqAQMDuATTAFQPeCPKW2CQ==,type:str]",
-							"wireguard_wg_0_conf": "ENC[AES256_GCM,data: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,iv:E2dKw0sJQnwpf5zNgLyoFz2Y79Sar77Iyl11XUsAGm0=,tag:Kmkjxb79iw9UU4gwDp0vOQ==,type:str]",
-							"wireguard_wg_0_key": "ENC[AES256_GCM,data:R3wEb0y0R/czZnzCZCW70H7g1Vfy4MOdg9DB4hC3UDtW82M0e186SzmjQok=,iv:iygkIQ5e5StOuCRRC37cLUNKkI3ka6qI+tWwDe/jfVs=,tag:xNg2OTXjDcLVVQ2x3T0U9g==,type:str]",
-							"xray_reality_clients": "ENC[AES256_GCM,data:7abgafkZO1bOsf9ld3HHzGwK2uGWxVTju6cChLXGr8l5m8qXXm4IcvBoIQhKCKA=,iv:c4Uxpc5J+E8kfKs4AKHhYZWF//yQ6l9GwUQqqcy0JMA=,tag:jNKR6Tjd4Du1oGU2vGu6KQ==,type:str]",
-							"xray_reality_private_key": "ENC[AES256_GCM,data:FC52GZPz1FVcH4XC+9hfccLSlX6U1jmwiJ+/uPEjc6Yuk3u7TYiF3yRo8Q==,iv:HXszplHqWzBFEU8iJzPfj495fT23c0dE2gZN+Xz/KTg=,tag:9WJDN3aGC8yapGE0Bi//Cw==,type:str]",
-							"xray_reality_short_ids": "ENC[AES256_GCM,data:CvmsS10lgajazDKTSol5DiPnhO8611LoJrDuocuZJCbs21pxE7xBXZ9R+rK3HNN32D4Bd88WscbZnK1hcR0II3U=,iv:GnTknC0mPI7lOVMGFMljN8qW9YbM7IlE3Crv6tlO8xc=,tag:dfyr6HQYrt7W4/XNOGVTwg==,type:str]"
+							"alertmanager_account_password": "ENC[AES256_GCM,data:FfH53lxSUcFdcjtzavEPRFs9ovA=,iv:nLM5TRw8PZo03Fom4ZZeysBdUwBEJS4QP1OCwKxpRiU=,tag:ahcROLHGf/yAgMiqj1VP1A==,type:str]",
+							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:w5r4xDLOpvQWH84WNmkRXzR2IHc5kohtz7q0ET8tDZL53z6tON+DZ967UkRDxRfTE0+HJBI/85LfEPjBVzx81KiX+gCuAbAk1ZP6jTmE/dDz,iv:Howo4qalKVlSiAMUFNAUiYqJahheGjK0sNowNJHIHnY=,tag:d2BUQHL1ERnbFMPGv91h0A==,type:str]",
+							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:2ba0y4ZYb1OMsMnowr8XJ0zk056XPbiuEX/OwZZNVC80V0F+LpUiQMaPyiAr9XJUIoZKTI8hdXLFnPzpLo2fE/Pb,iv:HR4d6tfcpAGnHWhQ0pwMsiJZQGyW1EISuhMOxpkCEYo=,tag:6Zcwb8X0Dg9LUoPJUxZW/g==,type:str]",
+							"authentik_postgres_password": "ENC[AES256_GCM,data:7ZtWJ5NkLcXfyyAQU87/Lw==,iv:8ZE65bRdZ9KQNztbJG7J1bSy5sko/KG81axAh97R46Y=,tag:wz0rrJ80Y+pY3g1mB8pNLA==,type:str]",
+							"authentik_secret_key": "ENC[AES256_GCM,data:dant4ot46+68vukiMqFLPcHuKxvJvUPaqqGc4TNNXY6VxFt4IApY2az3hh4dXCDBNQl2,iv:zY/Ywf2mBVGkUvA4gEDyqu7mCuZmsVHl0Jyo/XHr5BY=,tag:4R1DSeSEWEfATvg8Mooo+g==,type:str]",
+							"cloudflare_api_key": "ENC[AES256_GCM,data:3ZBuppDDWMhxVn3SJi+xaKp45JohiUPH1wr50PQlFxQWIykcVA==,iv:4dY0/ctAGP8l25pH3kCACYvyGT1T12YZHeTjEqpUvm8=,tag:7vBaIABD+zS5u2GvkN4Vew==,type:str]",
+							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:YUZG8RwZnXx4TP4JAiE4+hEpjfkZhPgB8Gut1V+2U08aw2g1+r60+NVb9vTmaDLyYZoOWWJQdvRbX7l95qy+VeXf3Ahca/s/7fn4oqr8yLAfkAE7PeQ9KDYAEEvtx95pJL5j2jPoZxoAe2dNT5gPHBP+DBnBTD0dBcw/tzqWAE5wy/Vy49/GO6A8XaV1/J3A8TAa6LI2SvmEXa+ySZZcwo1pTqz6q8QuaE/VNDXaiVhop0pIUCoEFQ==,iv:IPOb7Zpi6xCj0LUaqzl/4rPfxV96rctUCu65b2OVj2Q=,tag:wLdDdFJOZVnb85OMvBRN3Q==,type:str]",
+							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:2F7OIClcS5MpCsbjjjw5QDw3Ed7QlzuBHoas/JvERYIY/v9pMAWQnL66yA==,iv:tmHDKzCrx62jCWEDXxHJ8/ggkyJgeLqyk9NHcH0f6hk=,tag:/AJXONR7WQMu2TvhGZx9Mw==,type:str]",
+							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:wdgFAref6+FEcatvJjJYe8lRydplPs+pceG8fsg=,iv:GPs0HWay3rbPY++/kPAH0vVj0/YJ8xT3k2QaQ0CnnYc=,tag:WnVSfJzzcAlxeOuT+TSAcQ==,type:str]",
+							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:y0NOKsGG+csNyzex9FsxCyD5+wVm/vtpTfoW8H6VzXSlPSmpHgaZQcfznZ49Q+7KnCFvbYw9DLHlgag+iqLsbQ==,iv:i9sCHqu7O30tzYowkdaycXOgf6y802IjduKxumOpTXQ=,tag:+dgQC3wEsYRrjkCGrNCcuA==,type:str]",
+							"crowdsec_db_password": "ENC[AES256_GCM,data:QaTINaYZF0Nb/M9dHsc=,iv:+BXgDVjGoOXhFCtKF5Kcq70uMU5DFqJ7zpX0O1aRJnw=,tag:LBM2XiHKD5aJyEMn4Ajmow==,type:str]",
+							"crowdsec_enroll_key": "ENC[AES256_GCM,data:LiICFiqR1Ljk0ymUA7dhUVkbasVYvRuAQg==,iv:aDKnvVC9xgQWlAQUdpIhLyd3WYHttDNR0BVBUgWu14U=,tag:m3LlYH2ih/4OHYO2U+zy3w==,type:str]",
+							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:2uHdgN+lD3onmFqHCmoQ5KEViWU6uXteakaYl+0xUcY=,iv:RGh4EiOFvkaBBQQJzhLmhn72560Y/o3qoZSOXmc9YJc=,tag:zygDzw3qd9BZy0iBMw6yfQ==,type:str]",
+							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:d5MNPEQFCfSLgcZYjFHsNaQunBElRVFtfPo=,iv:mh+7nJbpCkt/4c2sa0PNpT2TvihXqAWqoaqfuDyJ6c4=,tag:jCOja57Tu92HD2YzIu4NTQ==,type:str]",
+							"dbaas_root_password": "ENC[AES256_GCM,data:Y+uEXngUmYr05sOOZmPjx+YAI0LM/Hv5rMgrEg==,iv:4M1TkGHgoy348EJUUewljGM6AdMwApd9gslmI+2Qa88=,tag:EBJhsb/CoFol2YlQ0z2aHQ==,type:str]",
+							"grafana_admin_password": "ENC[AES256_GCM,data:V+7uf13yQppHLJKG9EApfsQud/8=,iv:3X842MDhZapADrMGsp2zs9VDqwcfDeXi21jaj07BIVk=,tag:LroXxCeXnjkr23HUY7S3Ag==,type:str]",
+							"grafana_db_password": "ENC[AES256_GCM,data:ehZx5SJZOlBLl8Ku1Ex74x8QhKWU,iv:vwSvKAYukfFHOoVEqYCkBkMqIhbLey3bXIq0kVPKNnU=,tag:EkbBqqFHaOgKWolwzXxBdQ==,type:str]",
+							"haos_api_token": "ENC[AES256_GCM,data:lTBrt7eWFzvABba2p+dqCMK7xWB2JDSw5Kkk2fuDFn0la4HLglA08T25xJQBpaMTZOQM5k/n41WjKSgQEFEfPqkfL/5acB3Ima2kz4IraEL5ltg4VAeuTeDjUKowK4LCF8JBx3tD7w9IBMd4YWxezD7csWlZvMkcUH+SbqNsNAPZbIb21QECEDjFcmdLgfjIgIrBbLrkVQcN6FBLqRE1tiRym0v8oie3WK5pscLEoxCXl7RsIyt5,iv:Q1epUzZGOuDKqYrqyxr8jvK71XJHz9utQAJur6zZXzc=,tag:CjZ8h4bzJdfPDJHA5sxm+g==,type:str]",
+							"headscale_acl": "ENC[AES256_GCM,data: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,iv:3yDRkyjh7xUagLfDjQ0Y/h4CFrp5VvRJJFtEmCs+fBU=,tag:3tSHGgiSamn+so1GYCaLeg==,type:str]",
+							"headscale_config": "ENC[AES256_GCM,data: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,iv:phpl6qUrnhX73VmI8ojd8A9lMrNsuruVJl44rIqoXGA=,tag:PzCDmgqi/65mAm8F8fC1+Q==,type:str]",
+							"headscale_derp_map": "ENC[AES256_GCM,data:MfJHtWcW8QA0Qch7+XAHtx5KytJLwRkwjCJ9xrmWug0u05QRvYSzMsXmeAnsSsfVM/aPtMsuUGwYaRc8MjbRMPPPDWe1Y+nAjEymTQUNvdeoAbeN9onFAC1/GPLGr6OzM7o3hukV5RjTBtb+T84FztcLHzI6rRo7nOF61y6CSNgSDImNCd7Xl/ar5QaXWDr/g6On0OKESmVtqsiCve47FjGGI22v5GXiCbxXMQGDPsy+OrKws0nA1sofedL4HK2A7YxufJbgLeCuIw9icZ26YN+3nf0RAoeWiSi+lDSTRbbNqptLizLd94j28IcS5uQwE1NaDn9vE9Uphgxj1TvHRx/oeifNoTX/DsxFkdAv6lYp/VYkV0pe8DcsovnSmYTQhbfO5dU/CgdQY1TbIv+7p8SnRQtPBwDJZ8nNiOt5C+1zgGoGD54l7Rq+M6CLYIqQiiW0NK0imXG+6rtkla5K7wQCDsYXDKYrAdeY0Vium+Qiy3P3u1RkKpTwjAyEe7LH8B4KMsuzVpE0YbIQKp7K3N1nNagBeJwwn1T8XoC4Cnmm78iycFmmG4W/0kBfjVFuQZPFJaHcS+bGYAkRUPcpVj9FhfXi4uwURL41HuOR1Rey0xcE63VMkKI/TiU5mpCbT4X7fckSUllT7+LDhnSmhwfEIUy1EgPzhJFB1pT5sU8NcMMxZjiw8WqzmoOicaiCK3PIHTpJ7zZmWoZSl+6YYee6s04pm7tIISLrlRvx18FEcldui0o0QNiW0dqXx3lol7389YAF4wnEjoomxn0AWJu/EQINPA3aWRc0VXWxYjnFGfWJI9M3rXHKXP7ifehffbnv8qpBFo3MwsdTdEVGHLSdIP8ixK6jkayUiFG5vMWCXHTF+6VL8lXOdCyi86ODLO6ntZP0WdfAN79/IBEcFYCXdhiSngLYXSP9zjFURabLeIZzTcsQoki2SxhnjfPqyh1WKzgzrAqjxg+F/sUytM206bhXK6XjDTOmZB7VS+l2O4jSKwOB3I3W39xR2nPA+5n8kaVk1GiXGlEqa88ANtEArIU3BFEcA8SUQT9f7UyBbpsaityZUNEVKL2x9r9T1bsrAui01COK9WjIz7YZq9wXMnc4Z7L3qw18cynQBJ6yUwiwuB707RcX/9bNUVPYFVu7m4IC0NX6GQLmfSRpxmf3QH++bt18vERwanB9CvMeWA40cTzttHf0pTVLhJb7UmXvdrDwdeiKJrg5DHTBiHHDHR/cKc6VqocLpsyTLJTVSJTIpycI3HCcOiy5SIElrqNk+EqEWVK7X4xWM8JpjiuUgOnF9k1xTQS9VwqBPYbEq7xoDQ6/5ixkvQrmui4JjyYmKIlH26SSesMxcucgY6uD5MNxmeTUZ1nFfVKz2i7TO1Jcl9zjlGU7KHN1qU+7IWSBAucwekC5eWlsWuNnCnK4lBQ2W64YkEFFZRvuwQuXfHQWNxkxozc2S0s/L6CQZVxD7CmbTDt+Tf0ZR9SeHKnlTeFUfXHnXTvQFwiiCHLNBLayVm6pMuAprK4A7cdKk6C0fYZW0SuscvLri0Uag9lubFuJ/mVL5RO2yto93HGzsZA41q4Y2I1iWygA8XHOMtQKvI2savvUtC0iSp25lp+08feOdL6yaxj5b/9ZJWJAZujuRckDj/Th0CUDLpIq2T+oAHLe5EN7z7p9PZBVOq9IO8UV9YTZNnqN58zOCiE6h/owCI70YmDcSL3l1ATNKVRw9sGumS+VmfU83HlImjN79cqcPHRwRJIa+jlGf5SVn0/doDF39x8conM2exPxaIU1vEg9Oe/XkEiAvpqdOIsj7TNVIhR0creRPKdoNTYq2MYqbKAzmp/zTGag0KjXhofKfTcczwSPYHkgTLowUzaFeEGNuL0dOyjsJdJEj2EwaiT4Y79KYMt2Oz2FSurGIF5P8hE9OpAjAsD0ka6uztg4TCuAy8JUl1B206oLPYzqwH8ODF5jxpfcB08ZuZHXiskwlZFdbWQGfgrYI/AEuy3IhDCEXuusQQoQGvCxYvN1UZ9SLurbGszODj8NJ6uYkBar5eRUqKtnbWLJ3CWn75Rt0W6h/Ix3fWsEOyzJ/hq3RauNVFh4ZbrJCQkZtkQarAjWDJEnAEQR4Un6qjE/pPb6/FG3vg2PDm/ch//I5fnEFIzFmp2uXp3RJGa/cXicY+Q5azkz9HpIfUsu+pE2vqCHQaWjLEx+uHSk0O9kDWuV6iAf9U1RqwlBalCLQ5kXnlC38fXz5iLXwrzj92xfgCxkUxKeYjqizJkGYzz5xzTk5cwwvKGae1NhKahDi8xWQasxkhD2gsx8IS2LHH2Y6gNQDxMbU8ZhYuUMb2Vvju+FMuz1OShwIZskQ3W1fETHfzJTZhKK4ubDwiOqwnAmGzRa/CMBC19eVRrGTbhJprf0BerggnGVCk+OupRpvyOGPVlKKopgyuPDUOFvPv4qZvunIX2Mfa2co2DRMteIzWZmcD398YJVqohlpsxpK3XAF1Tlbn9G3ZLgqy2ukTqqe0vp2H6AoDz8S1HiGvz6ByINicVSPW/OD2juEeutgwNj1z89YKVBZMc3HPWssraprtnRfDbrpbRD0h8oEv6syHmeZmKX+yYha58Y6tGQ5/Ad0dyGWiXVBxEP0a8rJTMRSKFZeyZQ8xbpkpEFBflYx6iTzl2wEc3Glk/TRpzJ5Ak89WHPvyDFSJlaZFUQ8cq5R/t6oJdB5x8YA6KO6HdGwq3vnKEEbpENmryWYSMFiS2KUBW7t4sU+pOI8mnFpGCFPmO930BkjT3f6XjBAa9vP7UoWF1IUKMQzdSf2TyF0J4Npcaem9Gdpd9B00cg4K5+NLEBFKHH7kky8+N7bgG2GL9MD7dlJ7/c+g/hMfGQ8oEtIewZzxwdLq6rlXzWceTOcvS+HVOatFG0DMV9O/dPye8O1KSLoRuF8oVbvO6fD/pO8dwWCK/oThBEQtkOPS56DBDCT/48ctx72hRL1pDU2lXrJ6NflKrLHmjJcWHa9XavU1xKtZrAv/Xvs9fAYAAxiCSBQFZBWPXsxq/PV8mujV2KNqYEZ1n1I9nbnnZycUiBEiFPMSr8eAH87/OxL4VxnUP9xH4ZfZSHo6Wvz+5Bue+EDwzvv/8Ujo6o5gncbsx6m7VuGH4GS4VNIPE11Q5PzlQmShxRuCftT//HNDDRpM2/Q0iH3u9j1fuZQibPkZ6dExWy0f6nOGT2ShYWiQ4KNFyH2jIZJqBPeSpEcqeLAOVRqBAlp2KhMnDrE04TOANCK/leavIAPTfvS//JaMiaBBODuL0llGz2mr8wiLgw+DeNyKteqBqC1GV8H7Iz0ysVUSostUTzl6i8NK9O19ARbDSw0FI13CJHyfFut9XUiZFme8vPivdjunJ/xbktrbUj4geOmJXupUgclAmKjBHO2dEbUYX1kOFxLDoeeL8qVgKxwRoNKXKXzLkms/B+FFrEQjis9g2JTE2lIB1veVjSMd/iaiN9ceJGZdKIbPIH9ObOh/pTB+vfmW6C2PmatEbQp20AHLjivTwkWO8j/kVSlQrGvGWZbBrRZH778inKb6fjY2le2sfSj1aCVdYsxPYMj8tjXygRA2D56FzFjRYHv8iTQHwlSYeKYulWc77kmD26RaQdSsgqSgWQvKkZi2WJs9YJATtYhcWnSalsftB7vfc9pParxJNQvtEf6VLZoX3nqb6g0ELwnS4/4LC7USrQFZbxxXCHzKZqBhhsPt56EC9ZewQ1G1mNmaisXh1F4BrivP9UCif2td9gkmpVWnDVjsDvcORpsIsaZHMdgk9Sdi2aO7rat/xHpviDgp/+DM+ceK15mMXAtX7go/AuRfaBgm3eWm0yqMup565yxGC9qj0bgXeMVeNMteq3Ak6+V7Polm9Ec+FBpSruIOz5/NT9+L4xwafPcvRVdWSXIjgYXAuPFURWvrPF9wpUdoJNcxrh6lBWL0rOFXHlrBWHjnz58kRNDt05/9hu8351A/omvpXGHa7iLR6AcaIECrR+asNv1S5YW6YPuYnASuarexf2E6Jr1CNzDp0KLdtTRw6Y56hBM27fQm+lLKnT3XsXeOMgqUHQuMw0cCsf1Guve1fMoz62UK2JwhqeF1tOroiiR8SE1fRIDiXbs+2uE5dDl66SgTpzwpIZyAhfyecg6PGtsu710iMftlRoJqzgoe8UBWrMyVZ7Tm/wsuQkrAz45H79lIqYxohnDR6n3wOhQPrM+BMOOBIeJSawTUO8NgOjU0FtZgmzcIAPJy1LjxDinWM2WWdmQERemlgJsDplibFBahMPCtzLnKugHjeelCosnKyIFJhfE19Ci7mt5YqanjdQnH1hi40gKNouXKU0I0udD9CrBRucFfOzX+C2p4zk8JYy+gTBFCcUp3iaXc5xAP5xd7L9sW6fEJHVnz6oie+/43jBAiYTRfBfFYyTL0TpL4b2gQ9TlYnQbxe+YJy2BH0Gj2Ud8zDZhOCgs/BrXsW96fGf7qQ1ApBybe/FWVn2TiuPMF+04PVhpBRUeg1nmaLUGziN2Zl74uU+ePg7cU9wTW2tIapl57Jd4XdIojRrGUYJWzHNj36A36W+HOA5+wwsxSnxJHeaijFxFd4ageAjOIIQMaHOasksLCe9F9u9tglDOiY2BVWXyhDKDvCA993VX/ozt716xckdeMYdXONLk3T9Gn2aKbbLsRAoAfTuTekWBr7mHBUKxvCRNFecYq2+d4L4Wuga13gmtCYcbF4Ur8n78CdjRLiXlJXbjaYqCF8gVMQyqnE+61OZDYjGG/LvhrH4pXxONjx5JLBMyH7O3+SLclfxz0KakCHu6L9ZTuwkChJY2j9o0/ikVzMbTtltrbtguMZOxFC34JdZvOxfEY7N07+M0d0E2sW9JUpKXBnBDglg2LHUqHvPhK3R4a3SSDazSPus4mJOYr9MRiEfwuzcSyjzxqwj/9QiZ7ZJb4IHTpHnVKyfAVrAiQ2Q22RhlZTPZCxnsR12Lv8jeI4mPHtJlQLwg7PgMKB+6n6nY329PbeR/j7bZ9fMa6E2r3vujs7wTiC8q937jknCHM/82FzHYadof+YNw0q67wNum4DBMb9w2bMjE9dhZ2jZEfQjIEBH1dQDe2r047/zXLG910BZxd7Jia+N/iKfS5WIlQ9s7ova/u9TzarbQE+yXvmKmN/krbgO6jANQlaBlbHPiAaf+a9sIi3Niy1vwUXXCiL5TO5ug+r85OTSIRvV1/JO1KWdsE8SLXNlYNNYYKgmeZpqZiKUmGVoel949dFrAWV4Uk5e9XBYkKKy46SE7PyJgfaOK7jw4AUutJQXsLDjW+wuiWfYA/CVm0wR4R7+hZG8CpjcWqJbeXsLVJfTyMcQ4lgIEytXLN+bF0gm5iiyMVZ/kM42CArmgY13t+TbnYPSAAe7FAsQ2mCEZ4YKHDy7qCQFTDOQH1lwn5rdfRQCXpgEuydZank/+pG7l5jIKhMst5j3Zttwd+m++oS5CzrDxRwRDBBLFOng0DGEPd0aXlVf01Fh/oojxP/Gk2t/WHUsfBUTgV37wLiLuFXa8gkVdpmsBCXp1SEPORq5saQXP1xZlKA/IEAZxwvd9I2XxRqPjC7tJ5nzYnK+D+4MJoyV3dlFgeilaHmskI2K+YT6UxlGEPx5JpFdk+d1bIE+zCjSvmmhXxaesFfF+9WqN/TdFxfX+aIlVVqM8cWuPO2Y/QUt8RsynkQGTkIw7/fPpyZsG9G+EmCabypSb/LjiquK9ALwVbcI4ieTJnqE7Augpz3U9M9y9qCIXCw6PTlU06dHCjwTD3cdiGkphSJirovEsj2YMcXgyI1WTNUSbcWlrZFkxLW5TqgltqzOCaw9NnDUOukm/HVeUP6fePSbBxafj/d0Y/VZVgu4aUMr3+GP33cJorqUDS/pULBSpzqiEQhPPBxIoWL3NI96Bke+bBH/0I3pnDiLgK17e1A8aXel/a9eowc7/08PGGhQk0V5pa3vv0jBEp1N4/mPuH+MlODYvoWeYFs+97r1CMgA6MUkO1xwDtixIodoVT4Gb1lljUNumMmSIDIXWPx2JsfuhZuuupWgTanBc4S6lx+lFsieBExiTL2Ddlwsblq06/HpCDo+GlTtz+CQNbg9EQ6D+I7HNLJTksZsrKopmW6VPKK1VncSXgKVqbeJb2qfO7OrZ/kdrOhrV6h7tvpLzdhiHrGIJsZSX2YM1nmHRbEDjmsCyPv/OnKdaJktdR3BeXTTNfEla0Lhg51v2pec4GAf34n0SzbalgabJ2Xfon1S9kTGDua/mLI/aSlIM/iPuv/EIYgSIAqDJPK3+YmByzogdW9/PHupkeHJgkAqt0EEdnhuxPbb+uyNEafA2/+7G1u+rQnGa9yyS/ZgTFC6fRFKSd4Qt5K9spzE+xDeJ7p/L/67Kz0eDOyc2DowrtyEZxUPIf0rwape/7aC2GBFMJL53mQtKKKrlqo0zjXO9hFMHrKx6YdMMBUh+M+HlB+CDJbYOg0VVWYK9+or1SuIcs4gfUKBvUfmmYd3Uwmp5SWslFxOhsVOhqdaML02ZOREg9BTpJz6mmSJTy75/L6PbNO8ofUbC8Lco5/v3Vlkz66HbAiW6C0hSC9lVu775HmtWLUwhXQguzBMHEyn+KM5BfjfdqRQY/1zc/SS4NEQcDzGS6jsjsRKHfXB+021C6Z44/deW24VomBzCZMKlJNvN81odB+46dJVF5TYdqIIdQAl1weRr/JbDlKxCthOX/rwZZ+u5llCxkzybKactP4Bz3Z0+AObBvJogFCLMTRuGJjhsyud5aXwP4ATZBaZQPgQDdjmBADpdBYemWsEIRF277JjX6k+bneycQ4zJ1tSEKA1RrzLeg9k9gVQ2VU9KgQneAa2vJOE4jBm3kEfF1fTBcBteyLRuo07rQ/WUJy3x9yhBZVDppIkp8gSZ0C7ItCMivLrB71GPDXSJh1In79JWglAa8cYsiXUqpeBULyJk8NGHS/DyCV07MImWaqUl6zoKZRreZXcnQsM9jH9v97cnPAKk6eyxASNz97RP28P3wDGEZ23sRQVQnhleF45m9EIkhiLUBQiDv4xTg+OV+MquRz/bfrg+b3y8wUMwd6GB//4iKMjGB/dD4Jv1XWU9LjFSEgHDxEzjk2Hmk0nqTueXnYhaV/XzmZspoW4KBPNnjMg1w3yhYfe8DirFCn5tP7DSFgvUXJunjnQcsyWDKrDRgUhJTgE+LGCgaMCnS7WwyqWJcDhoYTB9ZrCUpcxEn2vpTg34Nc6sqm0I922zrkPZgfpvd8I3bjMt6R6XmM1eo4fcs2f28HkCBs0MGyFlqT/m39QAKAW+PJgOMC2g7NJl1A9ktaGbm66SGLsmwbgavhXrldifSCjspTJnnbPf19E5EV489GdD3R+TQLDZC0+FTH6ZR1fNzaRYpJslPnW7QbMFOtGXqrANtzQOq1Hix+7MQ0eWyZ6MTvdrfOz82dDIwWUg14NO6wZ0rmIXvl4qXZdjWOLVJixOJTyY/wqLNrrFiW0Junb2D/pssWW/kHJZQwcLiynSbhGCbRZg0NTf74yomNYObMjUWC8eIdMz7o4imoMokE3dJO6bomimPOKsLjQpRn5rXH8FU5d975HZrR0UQaDG5YrwQmaQQE5GMteCRgMNaRRje2idlKUCymMtgyqr6wHN/Xob8SV4RJP8W1z3csVzeKzVtvb2BcsWP99CDfIUcYoZJwLDcn0ZJAaz1fgaJUeVp1wn99UqiebNxelIl3TRANpfRF1gEuCrKT61ZNatB0JXVZpsjrKndT/+2nUgtDT2nKK0TGWdzrEPVzppRQ9bJ5eQGtPmxG24qhcXmk842tslxQPXPTTlhSqrD0GVR/qXp/SQZQO8Nj1YkPH1gwFRCr6aDCZGluD4sD1MHFWmMsDor1NblmoZQVU9B/GCv3n5+N4SDf64z4dfp/IzlU4wzejYGkb72er39cxJcmV+Og+5uIJZ5gP++KHO9Q6Ygg9J6bGxGFdCkbmFeAn/3v8Y3mixUHfovCZ8cyF1MmuieqNlKpF2L8jbOMAKu+XbrkAH2UWQsZBeKqXMGQZUU5EOoOJBKAdu7tZQatoy7tHtlDiSXqFZYAVVa5n2rloxgf96a02SWChsA7lVm91uNENIm7VSkxCmf9vEoeVz+fEJAFaa+l3gGDFM0UXWpWkXvQAiANzIyTUkUwGCvnsAMUS9pbTh5Y0g3QCsIQv5d7buo2otT7XahxTP9ESIzrAtYqBkdYStbSivkSMPZ2ylmlfFfNmWpuCRB+LpC3pyFb4hq+E63swZbxuOJq2ZDojL9vDACtHLu45fL4wN1KgHWACPRiaJKYftM2YRnGeHVB1ntXse3DbE3UgHo0dgqhWM0k7A5bfuNUl0DUfplGh0zixyRasyn5z1/wRugfbc0p2aReh2/QnBpIgno2cbxX9L3u+6XjKZWhp1fIIPOaTnJsFXMmyGdogRS/YHlhfYYNsMViNibybBSnotBFpyWAzQHEgzgveWPHjsc3ThjZxu4KgWk9ouASsrwlGh1yAtV2sTYRXpkk3Rw1sRjH/2K6gWFAuRVwAfnb49NPYHRtANlzL24jxYhbNSEan5t1aa1WjdlAzQXGi+mBRhNY5pMMi2JYJqv8YOMSgptGx+4JjBBpO0NK9PYuckS7QRD/E3/dvw3WknrcCv3TY3VigGlqa79gBab+EnnFWEYTAkZyZLgZXhGTm6O0/QH9e8WEPujR6FO9Y+/GBTwqHRvnUGdbuO9ZyMzQRJycFldQ6DLHENHPvEcNEJkvFnBOzMBW+0GYYUSsVrORJdXRYEYdcdCkwmMLqsZAtvkOqXlOor6Y6MQdW58md66sPyK9xm141deDEv8PyHt5k9gOkl6uw8J+i1ywfFGmQ7cQf6EE9VcA3F/D1qY5F/fACvE7B70R2DRaSc31MJzhf+hzM26aAdaY49P5OWXvHzLexnLiBu6riDbyPCKrwH/GdrpeuXWgUGnB+L1Ec13LqeoOnI3fGrHJDiXaO+RBcqPPaLLmkzpXRbb3AIa2STOvFdlwObPykcnUcWvOiFiwdPNY6ZZWowLk5Ac1iOm7IrEAfc8lJojFqHlin51MG6kkqlZvDrIVMWZcyoi4KqSulDQTOFuYSCAFMXNA8KDpQ5aSBbhdB3f/3+jfZjXRXR0vhZVvfyLpcFtZsrQR09CWQGpCBKccqQL/4cZjK/o2S3vn4im5PyrFxQYQKaxaYvc989BnSA3vOWuFdmv4PzCEeerdM1yv6ilQm6vh8O6cyb1sA7RYSX8I/glxvhVkvJaig5rca998wKlkkQpn5v6FpKeHwlF8NNn4yXkjswVCi1n8pZEQudXQxv6nkKX35wPMswqOOX/dYhRkdAdH0OejzHk/sZz6mG4c2dgBc22ZXvunqNnOY45JdzMm0VqD+5G1nskwR2UYMThag6yyNEPejuhCn5PJWfeMw7KiA2PJ7MKiqpgoeeMVc/PerRHRatsuPnjZsx+1aoqhDuQPlU4K/gRNacrlgZnfGg7Z5hdN1G2EOaNYa247LhlTupPRZ/BWnXlXG3Y/ewFiOzm4eCc764+0Nz0gpfv+4GVIGG5IBymJDi5P5mm124rQu6DNkSSULL+AgG3AZ+CgMc03PJ0zSQDE6sUImlXbAVdo8AYSjOCejRyz0EQdgC0Po9MLQ0roWc8xsfBqMXvqIcF92T7ozWrrYA+TEL/jQJIaU19Utp+Za+iHUCjaM1AhKKfJ+rnAE7a5RsAcRmE788UY1QdpVVVRh5O6lT2jx3/EhO8SfBVtYn/YPMWStMAlB6tlfC0EKP43GqhbKPGkKpkTU8wLBY45Jf1aSepz3+yWGG0sunKBzyZDdNNtS6gL/oolVFJoi3jhgU+1L9xYs1a7BCwOdjNKR4ZD7JdOab3GF9kcv3MGo9gc=,iv:qXg/hdgVH+taPquEhjl4BklpKIrc0C67yXiOKyopfzE=,tag:MfS5iDr8ZsitEBk29P8cvw==,type:str]",
+							"headscale_ui_api_key": "ENC[AES256_GCM,data:klbwuKnqigRYaFvaeH5w7zSB20b0QRUoMfx+MW+G5v9Uqd7MN+BeAPHHbPWzsWpxo/1MvAnQmPiC1E/v90/AJw==,iv:kNNd7XgJOmsl0h1k6JF4KvkPmWWg7LBkRZMLsDpA3AI=,tag:JA1NAS84oAU2yqYrVutJHQ==,type:str]",
+							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:JyIkHkTkJYjWOxGNvjS8H4bAslGzZQkL64Twk/AJTaZGt39AvPzLGUyIyBLXQcjYZTd2jJHRFquGmk8QJVk8YA==,iv:2++sbwW3/5Y2MlBhAtYBnZ5/Yb0rPcDfO/IcM5T3S90=,tag:1DAxwcPZfJe7Wl8x5Sd1sg==,type:str]",
+							"homepage_credentials": "ENC[AES256_GCM,data:J4dS37LuopV56c7zoRhJVHzen2biRyijRbT+2NvIRFrpMv8E5OEDJgS67DLeiDMm2Gwye5AigQTFV70puFfKmeVwvpbo+cgHrQOs2/dhqrVmt2+va44n0it1MUuDfmmuB+AN6BiFckg32RyH+7t0m8BMK08D1MNWo5CmKIiebBElnYxk2bWV3df9gTpMBXLS/3XNP2HXk4njHR9mdbOQrhndiEGEoGJ27QWDOEyHa/RGAu8Cfbd0HSBPH+bL3BMRp/z515lzBabZPf90Z1700yvktpuP2n1fcA36SGYgTc2u4mSz4FAmSG8KgrogQ6tbWzXGoiWGd+4SVJ/JEQvc1ZITnvdH7Br5hx+Pi7U2akJKjpGCSRPRSAvYZcTZMyDhhfAQV7Xa2Ezl+INivjzhDrFxX8JVxjdO7uci9dISRFhonU3StEZHB5QYp8xAwEmHzqV5BzlIRyjw/wmCFxtaEJSOaVUDPqmvpQ1TOpAKBiAWDKcMrtp4eff6CEoBkF/U++NoVekXfMKDVjL6z05nEqry+m1KtMUpb5Pv8fd2LboUHiPAblMa6t9B2rmO5omtt1qg9T6LlFMK/SjQ7fK2F7GarwEicRQMCnW/73Hip1vN5oGXK2nsAJateWuK7eQ0VT9aAOUOL29hGZnsIBgcBuU3SSv2PIp6UgHHJbxilz+f4uhbH/61/8tduDTDDRFvy05VAJKf0VWA+9e+YP+oU3XO/MTWWqHxzmTKgMJW6V2f6dOT85e5DeaDdjAp1kLNWNUXJJznBkl2C5n1qCdjCZLVZXN4bZiNqyUOPbKDuw40IJeOkpyP6Ph2jjWrUzrwtJDsjSXv1+ksJxX1P2/mG29dOnmCOvvBAtdS9E5gimDKzoA1meatdj5brrJYvOLcRYt8J5pcgTEXLpadpw9G49vXxUXNTVsNrvHqQtNjQxzuEgmz9eiPlB5tNiSI5exx4N1VyB1hOOc8Gk/1VrF2+iINUdr53KvCClRm85u2L9hAplnMxARHOVTtPiXM20zEpYQwEsyCIuaen+J0z4/5uQ2/HeVv9aPKDdWZFmyOKk4Zdp0tfDml3muk5lilgx3cGu0NFTLTASwJA8HwebxxYPXknvCzLfyTfCiwXVSAgLer8avoEs11ag+uoOf41JfbPzjufaLd8UksAlPqniEbjFqK48EQ7FbUsGmBBaY429VIJiiK9LGoFstZ0m2HZDKxaWkla/AlOiAUwGrrqPnzFwWhksOADfru16vTF6yn151dLrNwBglFNJV7/NK1tG5jZywRE1MhDucUmwLEAtcl1GsaNWOEFsgfJ+E+skVtLMtKmTqEEXRQLfiNEhwDynRrhitKDE9q8JhI7JZAJW2aKoExgiPH6wuhvk/pi9IEUItdsFWvk+Po+NZFMjKBTWJyskka0eY8dPKtSble5MB9d4ntx+DQBPh0VZJKoDih8xpZ6DX0//UZoy+CujM1a3YkWEbk9YeWLHpcdvh8crLdpCnEHo7CKHoDq6lBXXeLYuJZbt1DFgX3vkRFdgTLhZOI63oVACU7NA9pnMJVy+1oj0pebbb1g7ILZfRQ2gCelI/FK9ZX3aYswq4hKOyh/aVEY/Y+ByfMCngJauHutuh+xzm+3CPF+bnz6VKljiAX1Tjadk0/s2hy3vyb/Dnj1+pD1a2SxrOWapU5g0zZ8jNDOIHF2E/SGMfexcITKrD2lgkQz0jl+jPr3YOt0wq9n3AsgVzp01P8YTFUz2loxtlRiGtNCpBbdCDVmeqGquNnKdDSWuOEW9JwqNlzsPh0F4Tt9EB20K8NCPqFdTUw8gEAzJOcNsbhi+snWcVpba9Pvd+UiNLNcJl6+tVTYT6FMizJn35Lyo54C2GzQ1tIGIh+ViYHkXJNmTxcuVM0kqZoUGToimJhnWuAMH2VzbfMah5X2Q70plwYct4X7KBIWdf8+HvAVB9JRQc32Rr2F2voihodejaCHurmntV0tC8l6QP3HTCVa26CqwosWPXflR/DFf4/h2PPechiNj/aW9Ztm/WasADdc2vMydQq4U3EtQQmvpQP61QPJpsDW5lxgoI3dzvCFpO7LK2nW9DxQCmhX7Os3lpmC6s9dVbP992pPIAbYC87aqmqg9yu0nxu4ygl73q1+miqRK3iuuU2AZt13YqN3kbMyaD9aKnFqeWCB1+kKCBIrBhn3dLhXKBY9vztAeUMel92J21kusVm6hsz8dKpIkyjPHvi55KqV38pIcHlHraFW2zcxnonCVH3ZolE3RTbPespmWFbMyKLVSIOCZaO2teIg6gZHS8papd9rJVXqTNp6YHcsTF6a2S6JxivFAqGGRwyzlecRpx139wO+Dd5OmgaimyUh8lByPIMVK0bCmoUF2Ba1poJTDfFXjUMrHGs4Ir4pbHaol9r/7vADPxKsVGryl2ICdNiMUL6jWL8sIBHijeiUzkkKAIhsrFfBLmOJn0N91FEMsZJgNKr4HdmCoYOjhJG7TQtUUR2W5vX4gK1/TkqgF+Lg0nPXUO5uonFd4y53IqDws3Xt0A2gPwTg9hap2+zTlgEOoksVuJO0DnDsq28r53liZExEU77p4zs193/4ffSGQCITL4nC8O/3NWMJABK9UZeKx47gD4RJ0StCWKNo7pcqEQMqJlwAvvZ5FHXzxwUg6iR+Jrf5zE4fU4RHf2RvajNyVo4P18xTrz9Z64AZQ3NHeuUzGFo+jBNBSP3C2MYhwYzWsJxScAmuLtz0dTMH+mlJ9/Ycu7WtFz17Q==,iv:p+PROMs6pWdh0OudLxwl1EQCb3cI4R8niQkfTTAX300=,tag:lZVgXcDreDhAtjepzT+h7Q==,type:str]",
+							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:qlT0y5HzyGmFjy9F/CdyOfHLv8QBp7Jm3jmUgXrxm+viDYJVfOahtw3qvg==,iv:AAt4fqG9fLPMlTGmxRxxLhah8XCkGfH+B3TNUhCeTNI=,tag:DL9yGpXRafAK5/eMdUD0JQ==,type:str]",
+							"k8s_users": "ENC[AES256_GCM,data:xg7SfqdrxOUVTpOZiUesMbp+HjuuBMwYCOTYU2U9I8ThsELCyjGWftu5lNjSEG/RvPA/Xtsp1awvLbdtAC0D44N2gCmdScBIX7UAlguxpEkCSN90od5+RbURgDPqQ3P1nLuBVC54pLf4B192EKBh1xluzj4Sc8b1BpFM2u66dUFoP9mVvh0NUbjZ3UkmoaJy+zoB5FPR5YtbDtX38tLHp186WnMnvFA8RBKeHXTQ3litp4tc1paJhLvslEajsMEDRpBaWvfShWOUc32XqvESB/xKg9h15t/go1ZxPrmVlF9IvmX48ag2CDE9UGjt4O7BRL71Njx7FqfKc8Ahm6js6WIADqWbAt5i0cRiYtI1+KiEpJxm0u1RuGZgZJCyxgJtqhSh1igWIbmqttssY935+sVXou8oXg94r5/QQurevdg07uQwyZO9zxALCu/4APCSGgK5nEB0EKSbPong8cQq+QNISqHfgyPHuG286bb80qN1DTOYsl0c1T3m93AS2o9mcEhkQCV3SIJdbsL5vnZK6THJET6rYCoMwCD4nummqVniMzVyAGJJ1EDvAl3itVfMv9AxxQMzydXMjxC4WMQh1QGxUTmTH32jkkDoPUurzvYh1oLAPJCaeIicLnIyTo4spKSN3wrPBLZp6LlHBl6SF5zL2X646hHX48eVlsJTyTtR1bI=,iv:QyfCbzULRzlGtcix/ULmkRsW4KOD0Qa6aeQfR7Zw48Y=,tag:GPnHPPepgMGwboJ/X/E7Gw==,type:str]",
+							"mailserver_accounts": "ENC[AES256_GCM,data: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,iv:u+a3bYGLhe3UofU1CabIEZzIoP5YtUjuq4xPBRiO9Us=,tag:WMK/oQSFMIELFQ7H0PG4OA==,type:str]",
+							"mailserver_aliases": "ENC[AES256_GCM,data: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,iv:h9IG1AW0Y8sNxyU2FYep5xwXybpK5crUNbrcQua5uWg=,tag:xN6IssYEYGHZ+e064aomnQ==,type:str]",
+							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:vxkgqe3uI2eaPz62SLRda93ERvM1LXVqD3jI1V5xs8s=,tag:FmiP91tmnbnOlrlScNoHCQ==,type:str]",
+							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:UZRhz85hO3chS19fmyA=,iv:J9iRb1ocChdCW6ESrdxWGhz9Kk8ezbXXovYbzhDys1M=,tag:KvVEH2aNFnJ8kQ0lAm2pJg==,type:str]",
+							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:TmCHnWQQa1Ux47JPh4OTjOYdZkcjeLmPy8mjmQiq+ketoaB6Wm5A0VlEqOupvyY/XU0rFwscEYmA0IWt2KFHMPmUkqTMKEuKStpvFJ7RKonTS6wKGglXHDJsGbHsJKd4qXlP6lWIvu+3tQhtUqZaWF+thkQc4vttkIYi3r3e7W43PHnfTpWgzAxXEyNwzE/w8R0=,iv:rD5Mx6H7sANs19UmaO80piaTzhAmxOkZiDzPB2W5LxU=,tag:Qw8UH/eA6bXc2Qy22pqOQQ==,type:str]",
+							"monitoring_idrac_password": "ENC[AES256_GCM,data:UaSvDJgk,iv:KR4hnSUMVph9+TEYwAkkLkuAIwe10ESX1kKlRwAlDEc=,tag:I5/FvH+DTV1H8CE04rvyDg==,type:str]",
+							"pve_password": "ENC[AES256_GCM,data:kw32Tc5KFwxCIUb5wV2wo4/ZF6xqkuN5dz/N1Q==,iv:BBWIJtrCZj8oJwKdBL7lzup7b8EJUgnNR8aoNtpAlYI=,tag:SRaZlRgkosh/4eh+2kJvEg==,type:str]",
+							"technitium_db_password": "ENC[AES256_GCM,data:7UQGBd2G9P00mOpcFx4=,iv:xYUYqE7h2R51lR9PZ/5UGEXtTE6FaKfawdZ3kNK4o9Q=,tag:Pw3V/HiXVHHmGbFAQgRSQw==,type:str]",
+							"technitium_password": "ENC[AES256_GCM,data:QgaBRhk7V7oIp51tp6q4cEfagpN464k=,iv:gGf6fihGDackaiXG5C+Yxn9Pmie0pnM04hsQrjrHyW4=,tag:ITcMpX05HHHDDV481J3T5A==,type:str]",
+							"technitium_username": "ENC[AES256_GCM,data:6A8SZZg=,iv:dbom4JjFSPJ7TtJGu/kSUHtzY5tfHGthtbL6t6//UuA=,tag:mCMd0dSJBf0e9Mj/fwAZpw==,type:str]",
+							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:/NZGBrZe3tmaQlY2NVG8BDuyPzqPvg==,iv:KbPUsmKWQjan6/QUwLqbwz5th0QQO4IKto6kNAZx9UQ=,tag:+em4VoWd1ouPfRY3mgy/uA==,type:str]",
+							"truenas_api_key": "ENC[AES256_GCM,data:f3LGrvGDZOS3xVEml2rZzG0NGpbiPgT9w+EuYSq5whd4if0I2MXJV0rA4tleTUG/Pq9azWRLsUkoTxPGN91ygNhh,iv:pksNOXqpNaRs/Lt8CP4iZTlojmXAn6fIqUI8RPlWb1M=,tag:eObL3F1SMtAFho/ErIVL1A==,type:str]",
+							"truenas_ssh_private_key": "ENC[AES256_GCM,data:Z2fxMdtVsddbyP654UxHhgNfZiu3Rek30LBEp8C1GnHhumAKI9+O6Xir+ph9yzWQEWBP5tzO/K9hEX67NjuXNmjq78HzKK5fmgwHbeQvczPlU4fpGnxWr2CTO4NrslmeBp2fFpgRtcOXRLIPNLEJ+/Qelhw3gMxg0gObj+/JeOQxMibnMAyGlk9ndMV1uAHbUB7Jy/JoNjBv2kk8mzPheNmDy0AKlGbEPB9yagaWiAuiuulVXRi3Cm5NcaYy7h8+lsVr+4n+W9GNJQ7nSLCgmih2QIuRyqNWETnVFRlY1kQSHwL3kIinF42Z8iNY7m7jymP89TUsEU9+0MNLTybbkVt1TU/9LIWGVBgoZLYPzevYF+0mH4uO3dd6yqWpSgikNvetharqdGDsY09wOng+abTmtfFKRin/dIlhvtF1iiKtRiVdjuyFjtuMT2dVR6zO/alQiToG2VBy5ELxmg8cHBxK3idkYsiXrBJZKs8YRh6+bh8426DF246bAlCBPY+Dd8TIt5isvW8yAAPAWGX2laTCvbWUQLpHUVS9,iv:rpu4K19ON1fcEjuQb7BlOl3CVCKMSDboo89TEstdLv8=,tag:f/WQHYrutp9sAQ1yAYEsCg==,type:str]",
+							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:HYGf1IlZcY/nnfKNu7r3X51AwfA=,iv:vccr1QWswSZ3MaSWcvkawPlQfpBWGH9Ka/X7E7X/0Fg=,tag:hG0fNRH+D2qA63VbU/DDYg==,type:str]",
+							"webhook_handler_git_token": "ENC[AES256_GCM,data:TNW4V0TPLuS2FjRJ9hNJ2CIgL4i2SfUN511t5bEcuPYgYrkv6KmBGg==,iv:fug0ZKgJufx1y6ayGmWnGzQV443345X12YNyddYfNas=,tag:AQKrSnIyj2ip4TX0aVMpCg==,type:str]",
+							"webhook_handler_git_user": "ENC[AES256_GCM,data:QJbKMGda9UJoNVr/,iv:3xqKR4cRnXM2xU8144CY3WfrwUFFyNbtBlwOmbAEiPA=,tag:GGL/wELzzgsWZ5DwsK4VBA==,type:str]",
+							"wireguard_firewall_sh": "ENC[AES256_GCM,data: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,iv:5K0/YtTlN5DdfSvCkqVkpS+jJLFmJTynZifDqTiQAC8=,tag:L1NALBxEu4hC1oX+mF5sOQ==,type:str]",
+							"wireguard_wg_0_conf": "ENC[AES256_GCM,data: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,iv:mWs6EOBu8CiiSNVijTOc8XpT778qX9NgZWRZripartw=,tag:emkrx1RTABkvV3TrVwf7MQ==,type:str]",
+							"wireguard_wg_0_key": "ENC[AES256_GCM,data:lUP+24D4MLCX5R+RroFO32MqngA2Fw++j5cAqJISQkCDNLbGJuzvSPlxBJ4=,iv:bIbK6zLHjTScx6189TupuRaNhCwD15+KZAYMohG/R1U=,tag:B+DToc7PoFgEJKqGjbdvfg==,type:str]",
+							"xray_reality_clients": "ENC[AES256_GCM,data:fftfMSA6rDDZ7DckZ3C6tSddwjCVKFQtQNdPRYsHDtm1kuaQeJF00Lujz59UM6c=,iv:dDlKW57WgKiZ/eCIfwwKeuaK5yvbutS84WgwfEjxlHI=,tag:vB+8/1rRrE6H5Bo+oo5Jtg==,type:str]",
+							"xray_reality_private_key": "ENC[AES256_GCM,data:Owo3hJZ/UZLpDnh7jCCOVvNi8G+wcSOQ1qxHU2jxPhktNiA27AGY3LjD1Q==,iv:Q4s609QFzvwTFbAZ3oNtSPOvO/Gc1e1pFoo/BNn/C80=,tag:Gu8QSpux8o89Bl20aZ3Qrg==,type:str]",
+							"xray_reality_short_ids": "ENC[AES256_GCM,data:vqfzxSJn/mJPMyFKrpH4ALoAR8TaCzl+hTKU0bZ+H2jdxLAe/VPGkpGa+SgyRn7ckDTIMIsXFk2esgTl9OXfzkw=,iv:MhmZ5UARnNZH2mBjqg+ugaGYWDzxLUIZoudboLMns6k=,tag:RDFed1+ETDISE4iHyW62Sw==,type:str]"
 						},
-						"data_json": "ENC[AES256_GCM,data:tb9xUzONq0sgMHVbn1ILbyCgE+exVooiJvE7rtla1UCTsNOluXcUcz7oMQdUZOLGDRYmIlqxeq+/6haAT2s0qNL5/dL1H0bA8Jg4xpN3ETnCLb7cC5nNtNKKd8oaAjaDf/fkG7kupMwIiZlFCToj4Fmfpi2Z4di13aD/fuFEjkCdFO9Esne2HdNqGXA1wtXm/0G/S2Y400pMN2ubxqnqN6sMysXh1PgjmxpGcjpcfG2abVv5yxD4+l/UypYN6zJhybRcO+yt7cRe/GdNq8/xF6eOFC9HfNaF7t19Ryys0xM2XgoTBqkptN7EyRx3kkC7NQ/dYDxGVHtTUZGDCedr8BhJfyxWUrCfIM2kbRFZB0YP7uyixQo1U/lZ7g2Szsi1/Dsv94bMT2BYEfRGzvkD85KhVhM1RvGJvdHCME2ZOymsx6LjpkKPoiFyu2nweX21UtSn6RNpmlGYjaFfQk8pMk1gOOGfAPDSCmWaqv8/FtdIYrhVd92nQy5cSKZraI0nz30gU4b55FUBF/oMIvU1Aik7tFJzRmA3rnH2+mE27RUoNy64bkBSzQd5cIdxVgJfEElS7dAF2pHIhafDWZt1uPYLNqKR0L8o5626XvLA62uYiNziR1bB1jfY8uDXISioAULGO492B/UlRKB/6oqV4ldl0IMHKUQ8Cdoa6K/d6IuOKZXL7Edgu+OjjgDneiriSRZJ43uerGJx/V3jNaYRYjmhXTKhSt/1u8xDgxGaIV+2o6IEdDSmAD6uMArSEVT60hTkBWsch+liecKZLq2KM0U9SRhlym6CcEamV0BELKaRX7JdPJW9RPVXDnyapjEmwQSvJv5zVXuRO4wyE0XXb0Ms2VAy6lCI4bwaHajdQj3oeEJu84yEj80gq2eYe+5vvcMk06MK+OqNlkrUIC9SefcikiwySe+HF3gSMMZ11YmnQM5UOa1U/9QCd9Zfkd7xunKsK83s55znJGJ4FBPS3zu2lKR0p84XvtVakGBIp2qLpUf9RQap0d19rMGw2SxbGiUoTg0lZpAEGgSaCV8Xje2zpnYSQ+ODXJ2o2VRVNEtLhtgWJW1ZiGhpu3IyhpjysiOntr8PklxetIeRYF6AZ5JBKVZULm+rlDJtv3ElEe0bIjw9L8Isrwrw7tBDFNwFH/9tN5eZZETNd7Izfy1R5R5+CFp3nBfXwZaeNxQXUoyI2C9WL5La9nwtrkEZfOiREwsnS+De0Xy++Tup4njh+EOauJgfsKGgouMA+hiagtwu9PTWXgJDH3bmvo5yFZHvIhZ1POSZfwRI4yU99rna1Bm2KCSEzWuFbgdnr27IBlLPm3N/3U1lLVA4JbEZ6pj5DD9Igg+x3Y6oeAFa6++d7H5Bp3F/2KxqKfOKo44AV8VqmvtHpsTZAjI3IuGMSwpmA3bJV6nZ9TABjsNgjJsTg0SM/GeD1I0syYohkI4EQUKUaaY+5uZeoN+zuMxf4ZcQRV2HDJoYa605kNiAsCbQx9K+N4140gLNd/nkttXKsunxZH76CXX5NU/bFAnkDyajaSxzMVNWeanEOK4YyHVAftoeW6V5kJUkqX82+P+MTWS55pwOk3FqE9+XNihNto4dbuC1HMpJyKnlvSfg9P0od9gq/Vuk6s+llS7PjRyuWkfr8lqSLKsPwGpWtne8agiGYZ2asfLwwzCQjuouTwqY995qevpFzi6+5kkznIy1UXYtSKeWpi66dbtHjbUWUOB4vAuG1BmjRpx9zEG5tTXbrsZRlwdD2HI3UyKwpfT8sqBdXYQp+GIVL2QMDV1/2HeyV7uvTqxQFOi3GiSwvRR7gNEKKhPsJKJJx23NRYyJhVLZ+EpAyokegeubx9SyCxLJLLagRgMbPnmD5FvmGFQLCybimuQdi4ary+NIRQbqEWYEDfd2qNoXzD03R4HXm6ZKot/4p1TkU0o2YSgOkwYDzsORLMy5eQkPB6CaVvy6p6Urw1LmE7NKuDYx9bcP+nz4TBsfLZsi05pIBpyLlFmbdNxmomzAStq8ZSr4K0G4fGGX3VKectqOU66OFDJsHQ06Z6WoJJcDKIzKUsyV+pv6wIPfhh4vM6Svp3Td0QKGdQgVritfjVSFO7+Zeu6X1rquls96qpNamxMedm8ozf0iWNHnRFMrT7r96ydi7XjBDuJ2ew7zKaDt3xob5Hh/l7LPeZq2dFKiKm9bGtOOlx/Cul1agxGOP2I50uIi35yUuo6M4zwxmLvGMn1L2vil4prNU4nJZEDPvmUisE8C0To8rsHdrWJkzajuXyCE5Bf/0nzPET9Lwv3bU9RF/YpaeteC3/XpzbFOZ3HVDmhAXlhiFP6LPUzIfmCjGkFELgCXcHuvJcug2FzLCUbXZgpGfawe7kmoABCz9hJw6wPPTAJADva+ruun5nKfKvWmtc2cQ8cy8cyvSxwRU5YIOqDNIIHMWnKEf4B8cWjaWz1BVY8ArJfWF4M2XyAkueWPl4Xi/Qh8gIxvf9xhYqwkt0J5s/c0v/Kh68NyQ6rzRzg7eXx/+ex6PLck37lh9F8cIleZs+9hCseFTL2OND9z2Otvk2TbnZfE1cLgINU0ch9qxpBkGq2p/sFGHL2kRbBVLoeszLRD3jLKnpRkSSN+Me2KY9fTxSEhUy0V5hAH6UVe4VkrT3DnXET65OiZDL6o2Iyi9NvDAcqlsBOdxWiRtTx+WCLEWqyE0JnCEjaXHJaAj93p2t6yQqWXC4VND/DOrlVP/SIbJbCuxgoZyqmcYUKABMiYVipo0a+O6Z4JRF3bst28AK7Ly8FJP9O9e8+CS3Mtpbp+yQbAslUIbZsrN3kwWXYQo8YfVIj/xzYSMeCPsTMLKjHpDfxyN6zWMpV0qzzgRmiJV5/d44T1O6Z8B4qebWdn5KAwIWKecXdojXPIiPvvgQ7jczloAxAOA8ixodl3f8tGsjBAbt8V9Sm1TtSO0eNfPeYGq/CR6+95rCk++4wJf2Kd0qj8aYAgWJgYpp3lK3sWD1ThBmI6wXrGdyrRNbuHMO4cKA2XEkrHezJnukQ/CKEdKtdM1wW7LeAvvo09zZoOSgJA0d3r5DbaMXHFoty9pZCWQwM6PpXuhSWIaBhaJLZmzkzRWHP7qzd05XLr3ZO325z/n0lFoZFtplcMp0qVxwlm+HJSW5a81tXvzPWroamGhndiQ/9RGY3VawJmGxaW3Yn9r2t86BDuikp6IqQlPTVYbV8S04dVWHZuokkIekRJXSmgRdTf9ThLdLEInCMK6tktDl6HGyTju4W2ZJ3djQQvRXYR2ZNYXNyuW25Gvas4cpabHD1JSImqIBwHS8bIlNA3BkYWZx+6HCqNA2UBsVMdgLE+oEIGgekmqQ/TCfGcwbP2MPZRpkEUq6dbjTg1ikjo50Jgxbh6zzV0oOC3D7Fdg2K4uooYshYiKJzIAwKK+fJrT55N3P1d4YskhwomkyhNJFn4GSlPDDqHXU9Ka4KIjWYwbx3+BYVFKxQ9gXG0FJaaR4UbfnGI9aRPkni+49msl0agNGgvN4dmAklp7P4prRZXZPMyXaVdvgPlAeYhT0UIy/EyaooQWz9xxNU/szdzpmurdI3Pq6OCNwikN8wzOLFSz1Y2p/gVaZKcCTXP+Rj0+R+ZG78xccw/TcPPZP+iSjOr5JZgIdtQmOr68z46JLWyU9N1f7vrO5C+cKORX6tmjuEqNw+22e+8Z5QdzDmFAli+w3moAcXod+9rCxau9tGWrkd0yO86kkASgAXTpsj8ol7g5lxs9CVeZ8umDZNk7hgTsGcKhgvkz++FVokOC4aH7UxzpHrp2dYiNSyUqxFknEOCAbEtbBSJhMQDVzzqbfhOyBpp/FXDVes7ERuuZ6FkjKXSduo/RqVa0kZu3Gdk4qTK/e0ZFTfHaghC8fdCPfwjaknK1Nc82LQhS2GIzr+7dxI+oPI9koNrXDd/PKq7XkrvZTtGkJpOMGO0XprIcTyy79drsrtzGt7uCmnRRnMWC9okLOfDVG9gkQ1YHH/wdHQJYrZ8F9TRj6E5sxIOedUtanxHA8uNZB+KinG79/IStK6enBC7M/H7PhiEykIxn12Gn0E2lyDvZQDL1PglCI6VvWG2kBS8nLC2Cre4dn4VK5CTEJtPTNTqeT8FVy21iBVbi3J8RoVuxuk/lXX6IBSKC8kJgKMnVrTt6310DtTD6PJi0RyW/0KJponurfbTrcqQmaQ7wMu6O3no7NS2LxbL8RSI8AvzZqsE6JeOIznL6jch2rAiE9fBkrDpcQj6+oK6LE6O8G2C5RXiJ/U5goePnO0vhUtWXD2W3FFZNm2cPb/2vCT/qMaH44qYFckv8mQ7WtN3XnyC4xMbjQcwW75Q35WPRMaCPzgrLPTjyaFRFpPdK3Wyu1SFevPHeeir+RT9QdRjKak1OwenTAUxbGKga7RCBguggvCkQzhRCrlZAI3KHTD9CezPVw+RuPQUI3I4CFqGZUTXJ7vY91KsFq2YpRCD6QGNntwZaXVTIRYumkTEJ3vfK43vtyX01a+/C01jrcw2vRww4VwbHb2LXXlS6D8fgWOxINFya14Uy1D3y3bXqP1W8kHgyHdID9/VzmTO1PtDASktcuwqZyzPqn6P8UI5PXReYvQ6Xw3vNPgbEQlL5LcSbZ1UkNziAAt2BHCSZEFgV6aDwzO4RLTitNwI+bF1vgrjtptXKxGhrGZm6tkeZAAnN4X/ZyOCToI8uio958CGwuToYpo0W8W1nVqCKee/1wQdFYpNgx6AOqurjbEdXLXPjPZmSvWka5CvWIDFl2t/47dGtDA/54l6CvSqeDYABMdB6lCv3+W/5l7VhPnqL/CslL33hr9Yeqq/CQu3ex7pUja6YgnlOfB8IeBZoafMfdsohfot4Id83sa6pAouLknexGWlv7ZJTnMRklAnT9gW0I6Zi3Opp7tlsS7r3ivorRcfW64iJpXxf67/Ksq23qeUSN6xXJGtPoA9ILYlXNBBgTxNpnTZ7ucmF1mfUA9b9OiZFuHu1NLo2ttuXXcjucF2UEyugi/mtan7Dc03jofs9wQpY/0SwzZ6D00XPa1KiMyOWRY1ovsMLybV3nplewTbFIVhfOA1e0dr7t78DbBFd7L/HpkEK4/UVqRt0d+wFypZhLBE4oB0Ob9f6f9ACB/f2eLDX4mtIr0DzhaQ3N4wT3qM2aajvduNJITaN4cmmfTrsNd/Boh8vR11oY0fHIslSpRzXVBblUA22WKLp5/o8xitLGozQad1XM8L9QAr7R0wZ1TAc12SI3YT65Q7xyRbSIL1r+owCYKhPwbG4QqHly7ONzy0KGxlShA+baVD/DLjR8VTayVZDA3MYvQdoeJOuIIRZKU7No4RBKuZzpIlZdc9CsG1z3s00gmGg+TDHYupozEo7hBcksXICB4YxzUHaIGVZrGzYS4z2BCAM+gRnPpy1H/Jbb2HSFWI7aGXtad0Q1R0u5I23uk90wkRQLQCG/2y0ZwWSCSXHl06oYZNcwLLHiAUSlCnm/vZY7UPnRNyADhiTaakPeYesiyO2QhBpHdeoq1iLqS+yw3UxQmQnfczFxFhUIvUEAhXNf5aRLw44WpEreThYSQDQN7iQw+g7nUJE9R1I/GCATX0SKYwXNWl6tk4ECrnhfubyF4N1/fCZkQpagP3OzQd9zjuy7WdPI/HhBaTI4m2uXcpOAJSnXtCFQg0H/5wyuHlAHOQRqtuqevViVT87sNIxlGDr+9BGVmSbXIa0mtPwJ0tr1a2NwPI7/lqJsqulMsypiUmpXBMos0A/bHw7PIwKl8tu6aYqJ5VT4Bvr2QqXSwG5FBYUWS8oskvcwFGoRdQ5GXdXGc4j9fKkNGK4ICp7Tzp/EjC7B+vgLSXTruGUPOrcJAUVwI4/YmMpOKRsWNaMyupzRcbZ/tUrty2OcFu9+MhBCuGsl7sHCvPJ2RPRTtzoq79wKqGX0DfmZvLbwNtS0A7Osns2uOFyS9F/d3uuN1I4qXm/TT8vcPzeRKIzyRHKcrx8OldEQDhZqPEwYkRXSdRCR9izDc4w/t2cYzE30pXVdyvCaNcnZtX91EJrlAmbmXH0LZzm3RvHYGV9sPvyaFJ4oE+a9PDa9BnFR1TsQvNNg6GQDLDiIm08Oa1Ju+5EwJs7atNewGXcxWzpOVtcoMaKwRSdvnro0Qw3c52jSaIJq3zoTSh+D5h1oSSFuMnwt7Ak9cHZ6rc0AKYmXZMwXbYuGoV/b8YgkmVmczocjnaYzDWOjpbfSEKz05y0Zht5hStVcyG/LNGt6Iwz9EqXG4xTdNDjerivAKUTFCcurhIl+Fe2wBkzmNidnaZx7nEQBNgmR5nC/EouDeLS7qYqWY9x5veJ6V3KB4IeVCAdC9Hqu1Fi6VfJQ1dI5LY3J3ACXY0zHT6rXGXO/ctEX204XrVj0HhL2+2X9zaL9WxGM/t74+rBwbkpXEEk/1un94PwlZu0e6/188NhJC6fPJkqGKjVOWTepXJhS0M9JXOHLbleYoOJDERCT4WhYtFH5EcaqHDL+mN7aIfelBf4BJloYqMowJJgHJF6qZcJAOeRXz1I5mp8KRFs5hcXlIMrVNDvvTdRnsKl24ckNX1kuI0WqYjhyyISzrIxjFRUctVFKrToXXUBZG5LVBc7vATxkG62JTgKNX9A+6fNV6Ny96/exA/6B1L6M9EyxrOTYyT412e1GQCJpfPPtsYvS7u5Gi3OkzPFSv9PbDUuyYvDBz2ksN8cPDCME8yxogiY39pHt7vD1wPEwDfMYm1uFeibxyGc7tib6BMJJvo5xmmgL69NGtei9NHb424yPLNUsMku7NTl46r9f1so3IGJbNpgohmlngkTfp/jIrw7Qag0NOzXQZyzYIYP3W+T/DBw3oUJpOzvrDPuva2Wa6pcYaGmQSt6YawLnffwZMVRodzUfhGiAllFK7XZNIEDoOvxtmM+f5xgxl4oFKfABNS60ZxsfEYqQcBtSlzqXPFw3MWEWgrM9q0k7pEvAO88pDv1Blc6YWiTzDes7RmJvYJj8Htd+2yF+p2qd1WyGJEtrMwTNhpofwi3ISm2RSYbvP0BY8lKnk5A+KFoLhFzYyMMdN/+K+iFWLmwLBKeryLn524DFnXZYaQ39SVbwFn8X455jCnLBUlymnJGsmN25IRJ7ZPg0cOy8YwYbIiHCWE47MqQyWChjNzBm0Wk8qm6jF1IthvP9ugc7927pqk40yNPYe+AW/tcNbzz+xVSj86guGvsjX5e6GDyJMaf7j23duL7CvulBbeSzAjSxzeSr6vd6sdHEOae8AD7GreqjPMw4oqJpO/OKjZN6bXpeYTLzDIaWhRUiwSqqOSS6d9HUGEfUYxJJP8OU6wcvcScXMUdGmr25JVI3iI/VmWkFWohy50WTX8U2Y0oV/2jA7WPnSacV+pC0PxHlzDCD+YIs0c+027zTiU9JgU/jrwTTcxt2u/kq66iuiu8FX2sEEPzE6AQZYsylsuMLO5kc8sTZ2OpHTBvDtNZMDtQ22c22taTyDFhMiBbw80MYVPAnl8WOT02tlk0hJpvnWb3IzLEeMUcgE+6PqpW2LTr5ohKWOc17sGHCQR9vd1pbR1P7wp89iCWzpDAi38KoSbqwqIbdwdQjtzhR+xp5yDkFpvaZuneds7a7awITS0PXR1J3nvkMfN5vnvl0yhqSuW4Ix7aXanf5+wnC8F1OQfcdNVWiRgfnm68oH1GW5z9NWNudaLX9wIoeDyIY2J3cnlTPm5jDIaW5E9zvWmWWHP/j3j77u4Sd6TsUCVTkwo3x2ZnYiDD6MfMqLhsltilLCEpxHC90bHRnr19RAx8vGBi9ngn7qrdt9cxbc4Qoqx0Ro+wmiH2+yv0mu0eBt8U7a+08R/n16Gn8OiKXVA37rBHyGLIwE4YqWAobyON+og5pcPvODS/Cef/4rsxJmV24mbe8QQCKZb17m7FXZcUV1qe0lqURzo8/z9gE5x8RfJAkBOa2mVsykoJnJnbBar7o1Y/JCysuVySUXPtfU3y361untT+SAD0EIgl5SZvNd3+l0P6cm6arxQio+xsbDlI4PMHEUU8OlyzFZUB8fPkOO8ux+5UlCh6XJTzoS2aoS2Kzglvb/M6Q0dCuFX+WsjWNPnVG8twildksLGDZ6oxwu5tXQBB5jkjHZUQgvzIEE7I9+EznejSOycyAdu5bDNgPoYgGulFnEsFLWLwV1o+6tx/PY4+Zh6TDngX4ZsJXRyGFWo20PuC3J+fnMkAeSNc/dYV+VgscNbYllCTEO/fFxgb5GuimaZqGgZw7lmIxeuB8bfSN+Kd8Jujo3g5cppAoTzaXhf+HnZ/ebsaLQQCvVGEDz1xQPqZAMzloEGHNkQBAGu1i9oQSankpRUeB4KzWx/v7eMGMG55Slghu7uWXMtU6iDvCIS/2OrajHgTNjJ/0S/2Jr82YIU6+B3fMTsukYOInU3HcXVAOe1wWFlux3jsIm41aCjs4SRQkZNJpxxjlrAukDN4R/sgVSztwIMmb4/WHK8/UoLtClfcN0JXqntnyNtzFtLgKZZoP7mRPbibwHfXV4xwrmOqo4nP7b4dHqF5t4OaLT+Qf8+QbBZ8qH8pKk+lJciBWs8lp/9Xq/sCs9uO3poWq3VGVVrlJtrsjHN8M68r4hrMGxFh2Y4q9i0lRr0h4sj5NPtKo8AvvnsoF4RFYW2UoGaepIcVVK0liAJRE/B5bcaM+4qX3lC9CIf1UY0MgocAbFV1s0xpsjB3xmQUgq2Wd8/ClD8QSEahgnnHorh/zpHXeDb6phaSobhzMcWoFdYvHcWvIWbPrs1b/czfhcw+TahBN3/fv2Gdk5eVeCpByn01g8yvxaEud4+FUxm8Ww62K9l8GfJlxEUAc5c3CsDFD4I532frPq6rndA+UBti0Xcwpu9jfHP2FBaFXrUUDfNkw/uRsSN0n34V4EgYAHtlWV00fgQidTCRKHGMho4xDuFkCm25uMnARrZPS9pCGXgkJTTcSiV2TnyGjperBOTCSnSKPo5naR9AIKGf79PnJ4+XfetlDhyoMHrjoqZMJfBWD63hw/VmV6bewDfZsLg+92pehMi+4OsfJJVoB+z2b3g+dReJRisngcMGULC9ovZoz3U+jo2GAbu3HrkpUZWU6raBVrk5WjERw9SnFcxaTxwf7wGw5/GbfLzyzuTh3YjsEVAtjhT2HE2sxdi1nBQ7d+Fbm5YsIJgHNEC+NJfxwnqMLZ/hfy9W6FgxJrwm4M/r7NKs2CicLYmtaVZh/lpS7ZgUV+F6dM53XBH4v36xzH+ZPzadKu+9kO049d4wW58OCEy3ucv1m8DBhy08nI2dXIIlAlwjj9cI+dSKX2IizNSavhmBASXGnZvwgdLzTxDSoLBjoQal6/4s3pqqqQpWRrp4m7wvOa0EcxuyW2Qc1YMsrbFk0QhZyvNHqEPpx0MzBepPBmfdwlClaixbso2ZIE1L0ImWPd3GpLp/5eNf1cgDRbY2OWCLGFIS5ijwGpA8mTyfTnv645cnyzuLexmvLf3G3lVZn55nrTDTd6G0zYCrob6IPVQcvw6r7GAmSW3svVJgfatLbtCJ1QdkzdO02h0jJz9MKvmJp3sbLVw+wUgLB4x59zf0exjpbsnfCc08ne6+WRuCt19gXlV0Qyx1EuzZmrOKStsdM3zcMXH633dcFvOxqS4nRBUrLQhcSC7ATfWQmztccaYbCcFTEK0jcFl5p5kYn7vmW6MDOfIhS85X/ZLueIFxl8X1WMsU8exiNXwepXID0NnAXzSfS/jMCCQXS95PymTpEO6bt2nwhytLFXtBn3ARgG/YHcjBU4IprqeE5ozT6k3L9mnkb4SwZb6c7fwTadwtawEIrTyPcZ0YmBPzooc/c66TsEYeFY7HVFWAw1Idyr+VcDp+egey44zmQVMyJzt08ASAJfPsaIppj2txSv5/ENxwnShkypfa9PKN4ntmEFbgH/x2PMz8lGWMRZ/J2OtAkWyiTzN9y1ogzAjPXhxzZ4myccZlrxLBDJ0tRKqnASa5iYbnZ/j5xpXe4EVcov7UChOdkMq9OeDRFzaxTMXVAc/Lrcd/SZ2VwZ6EcDZFmgpgClonN5aj0N5e5dL6kI3rbbjvhAp+OvjqaIbrkHuCoaGWmEliTkNrmMxJWIr9a99Xdqu9wG0tjqFtNPRHbDRls5w4W1722IZj6OxB2ndVKZwKR3bc/P7khv5NiJW2DNdg05utUZJJqjF6q6ThrHupOj3cvU3sE/BRN2xFufWRAfT+i2MpJVjfrDxLkd8UTZ/N7tokEYKSAXbLHiL8PVA+s9cF26NwCZutq8XhaJi9Zq1gbaPDUsN55/gGMLeOOCWnZNcuH5H0JS2Qht1pejUC6lfTSPSeEDFePaqK3FF5wiDUQDMrnnqEp2fmdwYwA5mIMoiyr3bOBLDeW12+OmA2616fmj6VEty+cURq54xMDqaG135fMjc7TF6rFNfFhN/sHbrUi/YRugrKvERyEhdawi9mc3Le0MNd48eEwxouqGH5MOEXeMsp8lI6DrZbc29uKyV7Nw/bsatuImc7RNXPkoT2dTZusp775abI/XRkqFHcfNdWqFW2ohJgBaXQ1jwtFiEJH5qk28PB0IvPN/ZLD3GqMQx3621iYGyAXJo048/4ecF1gnn34Ax4gm2Hnm2ULCAx0Cs+PZtOS/dSb/LJlERRIhD89PF9b8B0+nRiPgXz8ODrO2d+8HmSsr6m+m7+LuDcu4QKFb59joh3g3j208PHMiYyzVjN6l2juLECHH5EZdI8Fnx/vTZ9PoN2tjgAOINmLKOZImBvQAvT/rfOLvAcAvEGWEeJJq1RsKMMatEcW3YmPfuZXbsXQY2O/V3hbHpzfsyEQpkpMaL8ve+yZchK5xUCykFdSE4QgyHc291fB6Ik73uAE6D3KrRGFldaP2NxS+r/0WEFG7NBy6u4HF4RCqaa0W54cRJHb7B2Vopr2MRI0GVbk5r5NRWQpVnof5Ix5W8WGDkLij7XFM8FfyY8asXqXQDS8bvvunvbe3bEJkEod+rRXazNTx3SN5F+6gMHWK5v319hQF4TyyFEjo/y91dAjqDeyaQSIMygXjOy0Oo3lckfiQIfSNg0I/O6rBTzDqaNg9+B5+bATfw/Yn9IvO10g5W8cXPvRAbHvKM4O+P74bGqPJh7dZZAtWEt+01ibVEjOzVMmtkbItTOTPjB4j2NQu8mb+NdjOZSuRObqITY32HVZDvEKtHIJw350WSaFvnrwoHflAs3uMBhG0P3+sJjLjzQJpDDH7hj4w5DCuMRGoqXpVRi6f33UB6hzgMqGbemt7tSuYw+Stx/2ZVnlLfkIoGSu1lCDrIBPZKbqIjucKtU6vcsCDen7FfwlLNPPoff61zZ1WypWLTggHVMDv11Pz4y/INk9zqsfz2Hj2zoJQ3E2+Ilp8sdGcmIVigKh1uDKovZGuaUC/sm4CKSwW5Hljd5SzjltPbMZrKZ4G1mQipd3ljTbNJCoaxeZBXE29RhJld4o21WrRfwLhaOFhdhK85I2pEa1IXFBJLYOmguykEHOdOFKPfB4F/OOUkQpUJEHk6scB0Kmk9qSOx8rhgGIihweIKuvGa+PHwJEJC712SQ7z6wrzDPih7tfsp4V4pSNMrqCjn1jkl1qa3o63qz2b0YOInkdGwpXuhibfzi6snHr+FLhqdnBl1ZkUExCPuk5ReOAW6cYey1gFXI6xW08+2W9W7rtAu6WuAY1utcxTqBnLxv1Hai+qkR88p436riLTRellCQJwYCOoVquyIwyh2KuQyv2TgyhzuPi6Qt8itmo+3oPK4MxkXQ8aI8W7lj/n7p/zouZrWULBF4kNVGmto+AK9zWsflO8J5HEw27uzXD0Mcer2qPcUCnccxktKy0hjC6KGJgjUZ5rayGEcZMjSG1IXbVM5tVcBExAEwV36w/kt0rhN8XtGXw8D546QZ9GtTn/yfVGPxCIFCrAIVbWzmxRaAy3CNo5+TmfCzXK4cHEjEpRm/ZF95cmkbGAAy3HFON3/6j/5L2D6vnvU9tqV4grooVGCGUz91Sr1alAqCegKtKqPnLwrlCZ1M7oPijt7NRwgo2ftkn7u/U25fPzMYHjzCtIiVk8lL8pLsahvXgQvSelOqAHxBw1NkD6YDBi19CdU2RRnqzaI2RlSBMIrIJImqzhTuCvvuGvkBZi9vRWW8WwZzLWThtnXeuM4yPgkQ/DHi42VmlnBm2eFzcF5Tdsh8WplArokecoEdoDFN2+VlNMRJO4a74yLcaIQiilj6Uva+zxOtVtUh6pyps1cie03Fz9UARkjSaahNMP3PqPkaJcmb4QnqH+/OV+rM1I6/8Qy5TBT98olrsZ94LQMclpvC0sukh0Lvly7zB5stF9HxviR/y+uxvBdzOAFU36o7WGQ3SA1f6J56W2eF8a0bB5Xo+06Rg606tW1WzjGD02iGTWpeP8mtT17PD+7EiofaTMQk80nEjzz0GzrCk+pXXee4g9t/EqBYt82KKLHskUU6JvL5ds97V+wivL09a+xkV6gjWbvGyn40gIx5clwBgDawSviyXWsSAIsxa46GPaaj8DtVW9x0O0Nr1Ds8Ek5BWPLqrZmyfIYu5PSShRXycw6G2tNJ8Y3TOafj/I4d9W0d8aZyeGsWWrOup+bDhWvnUT2FW3mntWfLvXH4uUozJTHHj2wDP/7g/DLXw/ZhqCAVBZ27ELGtZgbXQAVc2KUwroP5V+lVIfyUfiF8nQielG0NXhZGOOU4qd6nKpRMI5DagbRqcfK/TiH7mP0p1lod1r45YtCJAf4z1xxIfztIYUPGjeCO+q62lA8xBhd8MRnTUXx4X2PTwYiwhifgp4Y3bpgsa967xxx0QDT5Ps/8BD82am/KkiEMlLi3QtxtDSvsUkohuIZ25DsPzgzyzAzNo7zv1Ky71qWJAFKS0jaabEkN3aPhOXptcH5GlCeM9adwOSLhAAGzLkky1GPoC6yrMha3VpEJkra9mEiLBa5h7oqSqOmO0y515dcFYfGYoxt2fYyIeEa6CK1UUxDTVDFUlrW5yP5ZLynCiIDA+NnVBkXLlK8/hfaMx/6atwnRmHX+0hY+DuFB6yXvD681VrW7yGK8kLvPELJmeqXCGV6xd/2MSb4o//jjhMDjaM5C63VZU+mm2YTMyWIJiPvDqQdrH5f+puNpE7lMMajo+zKQCVFVN16na5Ol2CtK74NqlxaQ0oIOCicG7eDjGagNdrIbZub7LduGLRJv1zE/hprHV64pRkQnNmhHB3pVsZXKjTNsPSM6khvn0nU5IOJxNwS/pRdfAqmH732yIHirxwKt8RH0zZ1GI5iyZCXpp+E2vU2JD4XVuXGIMs/C9uA15Z9n0sHUoBPcWkxDYG0xXaLU2/Y9LgYtYremubGbUBf9N+nkcAoC/LXvEV0kL4o1gw/QwEU0r0YaWmUTnDNmNJ+pUVha58eQtMiRwE5dRm2wvzTBw8Ti/ZENdXsYXdNYi67SDK2WUBJKWXYQvorvAumzKoRupNWWtIRNEG8NbvOUxuufJtyymy5/9QWy3g/DAzHlq2f3/OiAasyqaiBu+r74/RKOSrTdgl0aZgnMYcb+HlprjekONea6bNjS5rMoV/Yl0nOREVtY7yXSXbIrIrLQD8Wswqw7Dxzm28jqDunU3pis3yTZSG07MaYDMONjewMZCD/UENTY9qop8wYWkx0ai1Ubpswe7zW4eN66Yt+JX6y8BvwH0rO4gghcROYFlLbS03nwOFhNsZBnScgm9KOgQ7+DRoyMIAfbBElf2JHMnEllm9Vd3zC1StFeAIBEIrtUIojq5W3ipZIrvJqj+LsfziI0RNzYNdliKOxYL0D/wwISBrbhpMn8wQZPX6VxDlv1oESUOgtnoR4EmPX37Vox9KqHFbjlpMq8P02lNalJ9pW3alcusdy7qJ9qyaVnqG4uhELfV5lv9dAc3JQxE4bbFMueJp1fwta3YzfMh0AvpochZPJPetLb5Ucneh93tJPQ124lGXdBfsV7woeBtiMoFg7eoAuWnbjVUvk8VIVF41LqNLSDPCnkMHl/LaU3VHxLEuzpKr4c9LM8x4RKtIIlJDXJwMFfdPdcn3fkrx0kPw9xRO47IuGgWz7lUGhKxbjvtw19CTMofNki+4tjcARcR1alzSt8QADsnzbvJJnZIjt5jO1rRE99jPIz2HiAFwbOB9wVJp3v8ki+JGo6dHYlEz8imhQnHkACd9CcYQMVNksd6k0VU9lXUlCkCMDFf2F4901pflZlTcG8hZkK/SAo8c7axcYV3TMsqEhH3Cu+5U7a0QH1iGOOjuZPWlNK73loWD6jo+nWfwz+bnWswhVisUiYDEV61BRJeBNEakEPknKUxDaffSTGUGG0NhvEp9xQhX1wjdwhxhv3Dp8VY+aZY+Zo2BS/aaIG2livlidC/lPoACfCYBcUkAJGRyr9/emIoJ/Sl5bwkm/VGGU1AbIu/0T+I7Iigmc7S5VgUcHTjWnzmoCGC1NNOdqxK+zxrGXSXqewmRZVbd7DaEEJrEZYVpBniqgobCrgYRVHBgAQMiXJf+WkH023/eg5UFR553OPd8AIqNsGGeF84iPHP/bbm1c+q5jsqP/Z/TqC0kzhxsSCZ6EUse7oKfGtC33nEMVaedcswcWkJNju5NvRBfNxuwj7+ncZFiKPi1MJAP7LF2ZnCB5TETI263ZQGqzGFLh6wXmOnZCmwz6Tl5kaMj1N8cO/GavPcyOStl9KzNXtP6iQ7PUBrRefCHPc8w10lbiMvl9PS8qQEC6wYx+blnaxVfvjIO3xxFQw2ftCtOYhHOzStUzvLExA0p263TVBHVXc94W3NB6TMh0bIu6dSmh+Po94SfdaIXRzrsdzhzZoJyrLMWrjFc9jVbJsNwqUlQDP3Jwn5+yfMriFZv/6w21CNnAHaxKbJA2lHMQNEk4Xvexw6bP2t0/DCq1b+XPfoK4DU6O9FBDPGMGoHitfhI3S3t3Ql0vwVzV1fQZThtV99WncXgdKRq1E9OYKEVnSPzzfkI1PpNpLgBGLI06srgC69gzmP9iClvH9VoWjOkDCCBFn0Guh6Yzezfct5nD2k0eRDpaGcdeDqFP5mynbdge8q783MaZ5Yie4XWzfPd0ge04HUgNt7O9CQi8FyPZaAtPhVVS/fx9GGnI0UaZxLgV4pcEekATiw2/EzJe8HJXmMMfzJtH/k1NE8Toznxfgj52nAZAicwJR1XFnbWt7s0pWLCPWt5OefStQHxRWNbJ8BpBN+o/sAakIERozXP32y+shWtPqasdtTJ2hssmcYZCtmkxfoZu6vSVi0w+uYfCPR6GtsuYt3TnuvwYldEjC2JMiaL/2eyP11WyYeAvFlOZGr6u4eGaEZZp5/Zb2wRxVpfBBxjC3/mFUHVDMjGR6ew33iQAZW7um03mNg4aNgqO+kpj8fyEVQFyb1g5Vc3PQfXKdPewCAIru848Hb/soEF6kDyqGFFapowAc6VTuBBZudEsc98ZxQz5JfzIA/+/tvyNv0gz4VLvjf8lMO128gXCtPepHbtGMsM7OF8JCO78ZjAlXjDbQGnBaveM2P0ZRT8MWUhR1rzr+ObJNDj9COsUW87mB+fsusD2QDsX4+IS5n3QngTZakllAyfWsgfbDJscWgKNRIQFbboqO3DcZK5SmYGdUmPPOOBI2QZYGOSHJyiKEgMUrtZj0uUDSTLOVa3HlBWMlt6UG/025hHdJSo9bilVPJes7HNan/8k4nkfiIT6aKdQNw5rD47ZKlkOorFg4kR4ToP+vuhxaaufMj6LSH+I/yz8kvsucOJC3DU4eYWx0DmAQl5TGbsTy8oTTjSD4namq3U+TK/zRBQ+8FwViMgeIQ86xUzWQhaa/AMFO50UwLXQdV/L8uY6Dd0SFC9ZDtX+hV3Tmw/+ms8x+IHKbPhTV0ggqoQIvbkSvpqnHfETnbgeBFumu94AIrpbS9LDrpBBYoND0FLrCpwEHjgPEHV1Mk4txj8c43ebdO0YpFWVzkoVGADqMYAz2C63EiWVX2xUcw0ldX4sLHSoSfC3K1e9Nw0ksLnanD2gUHpyUOjHAleIeCl3sLLbMNszRZVJSDMOkhQB4qX88g7CB4NdJQSW3EctOHFgaQwXIaHs0FJkOVmEwQFK13z7d1v9XwKau97L72XYxgv3y/S07vgOIwKj0CviwPJeS5vjr3+KYf8zeFc4LFs9hLcugPD66oMGPuCh2ZencFB+lVa5912m3js1w3LltGPjoiRXnK/Q0g3TZKA8VcgiP4HycntTZ9idrEE/TnzYMQgesVbf6fHZXBOnNlEoC76uwS1fVmacia8R3CPwRPd0sx1/JwxgPpbLo/qd0DQB3Q9t3FTZjKPO5OQ2So8MypvtoHO1lyhm94VCaW1CuiWq49jDqNIjqGFDW0EflTgL/oqFmD36cc0QGSnL2Eg1BGUXzsLN2AzAw+R/K6O28+//PTIcCPRHMfs6vXzXbI5oNwCPdl9hViyBwSegJ4hj26sYpHMov9/uCOKKl28M3KFU7q2+RsAAWuWZEoqBAgkxB+lIYxiBDnpawLqmKmOCGKOTP2J1uV4AvWmg6BWbhL9szQAKfNUC0wXox5yv8yv0AEUrPboRw/nt10Sp8G2hRhCpnRQ+DkVDH+pHOzDWtY7+vtrThj+SrafwD5LKMLqs8OMOQ1pDqzJsGc3HEUsYlGKD924lX2ktFWmNAHfa+MB78smp+BBngfx+aPeZCNN4R48u00uoKGa/99xJa7jE6hSmY4F+vogUmLrTCD1HbQMg5wvmUw1ZqtRHYKSx7OYjfpkUgJF13sBwq4waVFOgqnOmxOibACBF3IqrVcreWvOezr8rEgxGDthZjavbQ+TrfwH1qP+z+VQdCe6oz943q6j/C+ua/CAVhnBwckzhEQevdvinrK8pmWtRDZSxmbGYJWRdjJE7vzyLNu/LBC3YkOoGLdkjqfgxGv8itgVyKJSbGxNauz0g4XUey7CGLz6x2JY3EFMMxsoqssVymHiNzZOPNeIP6WbI/slpiz3AQg46YuDy6vYhk+fA9QgdvKi0nr1IoeJyEHG9yOMC1MyOV/+rinLz5W9OrzEoaKP5RUhqtG21JmrBBuHyHqn/+xQT8mxSc9c1NiCcFHKCfGSTJjf3MbRPhCLUyvdwJ0p3O63KVwdVmudFT5lUJcBQHffxVDnyd0TV9ayoj3W9lM0KwurKYfq2f45HlsGU5o/CfGsfbdbCCZ4RvNoaCVAgAJdQcFLeqTquhfWCpXvXYObOB6zl27baeiR0VW9FmNYNPfDOnC9+PUo/UhoBUf4fkl1ku6pnTs7aRwmb4JNCk373VpYGMyyX1rErEoZ9mW2h9EWXWr96q1Yvt8w0MUY3xTRk9LYb98S91bjgW3gLc0yFZvBOYEes+NeRJ1fG3jO7/PfFTEmrOXMZI3mcqJ4DkIfqyWSUe3wvIdIwGJ9cVnOXlKuCLdCktfF6FDxoDIbsjToS5v7As7QBsMnK4rk4hJDF/uraVA7XQUAfOV5kGo+wPgZqHEPN8WH9JGo7H+wg5FiZwrTAV87dfiQVf+RWGNR57juAxXfWaMLJO/dJPf7dsprMI/vBIsMnBNuTwGY/3uWJYXezSXOvIOeyuXwyXsH+ntQ3pbZT/Ejz7s6fVVq1W/fGzdIHzU2mvKx/aVCz88ImB2TdDYZOk5ovDiI0tpv4KyDC/lgIk+ChjfqElxffGRM0hiEPyT6aenfpAZSv0oZBJHrLqGgOy7keKMlvzk6fcq4pCTh/Sb/oXySOHZ3K8CdU3l+waMF4aybhyHEWWz1BkvXEYULWf1h1eG0+5KVYjFstUPbbFn12mIbKfAlpl5O7JMNF7QY7koMjt4LjwiDRGTmea1XFiA8nFuV7NgVFo9mPyH2gg5X6CdFbc2q5XBEMW6c+SgzvKFzK52oWZWcd6V/GK5Ue1bOIKb5FExAJAccI/6TQO1zn/UkESiws/kmGqxdPlgMlO3m0EGYuH1c1sxYNLfrrxdjyuMGduWO54aSa4BEllhF4U954690ZYa7odW843LWWJASqqe+a9DzjA65T8mElHQNWYuFSgdziT/1dcGm3bh6JA0coMDclS2jqShAhgxLuI8ZPyZCu9wSCvaXOWq8c5wOb+jJ8JbEn6nhSBEx6u7ql2DpDJihINObr7s2GJkwMfg06enPzB+Ot1KpbmhGLKti4fU/QtlUORrsRz+dTaZw9Tf1kIlKt5v+i3NP9F86lW6snpY0OJ5qXd4IQe0xSFMo7d5Tq7l++LhrCesXnkafDMVVoyp6IIMv5u0EmzeNimeYBEnv2RnpgDGr3uRd3tax8EpXWxcRD3e0l/HYB3/3oxOm+J5mhNmQjvnrjchATF9MWvzFoE1WIi3H9B74P/zIl+hzNzrv8v+wbZ9xsfFxxiw/GkStd0qAs/kRI4Nor/XhpKggU6dxuItS5YtkG2S8sLvpGwdvDHG2t0ZpImw1ZW+0pJIq606An+XcS2ZubFz7uh0VkqmnaGC/GuLaWeJaXiMMDAcjv6RoN1LRnsLHIKpVb0AnM9l6snif8Vdr0Ck0gJiY38c8oMvvCDo3MBWqaULOPOP9KKC3uvrcA+MLyaxGZVyP6VhmDOgoCtaPLXyk5RU/IPJRhIvBLdX3oxGGTRY0Y8RbnMWkFuEKCM1sf3FLWAK+bYdCIi8ZRKyfxqwKremibuqELBpNtsuWB6ARqzgYtC25l72PCU4lHQxF8SyV0M07Sv8LjCBCE4rlnTD2kaOPrybCv+INCym9mz6FWl8E95J+iIr8PzpS8N7ykmNF39ea+0asXMC7s1Dbo5wgkvIY7qoyqlQSiagmfsSC2xFato7zhy4ANqTKgXnlV5GCoOFbD6T2rMmmDy72vvOTQxVazbKGgAISDmr/o2ShvEf9NQRitKlnWf5dpIEEPVxbaOfR+dTOthNxrUfv10YSBwRjCsvQ8VnemvBred14g75AttgiE2Rox2KsuitU2ucaXj9PsoBFdZ6sZD5sy1PbZn7mMMA6eEogmQCzZEhrv5Fn5jOZN+kOVNJ4tmvDTcQ8rqKRQjXbXJAzws4Mb7Wp8+HSMQtGjBn0Lk2vjOD1103xKngzsPfnszxO0S9nQg3MMfdcazFG3gqzLE1YROEnvIqC/PPY9cf7ab3q7mlBfOzaXhgOHG+7eL3JzwVgZcOe+5+Gg1+/T576J7uxRWvAoNVfEe7CvL7tdYTq6ry3ZtN3fWpLZJ0N/H7+YwLIuV81N3CyPFYQ56K6iXeC0LBzE8mwkrJ1BGKShUTy3tfbNQ/jaTKI7k2qaPQZsqxkIb9xQKn8ebSflasDc9q1/7s4S0uNjRBaOQIoLxPpQc7TI9lEehJRq/w7CXhs9WXOb+z8Ys7cpFYTnmEPSR/8BycaDqdOj+uOLDLJCCuHRqA+U76b5psfqa7mYU2I3snN0rF0jWuQWZFrrYxHkkykuCAzCjRLtU9SnzFYLiiXIo2YzEd8s9sUsqKa+Ue8HwtvrHWNMlV8mZeFlKzQ2JraveHl0lxTG0udDVGrrH+v+F11jJSUqjCdRXD5ycI6CJmmRxN7xLYQxxZOXLk92rpjE3EsmtyN+4nMAO1wdCMsHnRZCCdQmr+rdESffo9MI+6yWkZ4zPu/lmBKwzgj6dFAzoh9XfmhHRfDzWmSPgJl+48E3izKw0zl90GBTVd0K/KF/Q675EOdKrRqSGxjpCH+e61ZuoBxJOFxFEBRk+TAEpclmNyM6RmwX7s8cPK/mTVFyfuqa60GzgmUvE3DIIhtZvQIOkTmhocbMtFq2fHheh4g6zaX5ERlT4SpuWvJ6iOEu2+PmsLTInvBa9yrytHI/qntrwDp4NvHcemRp+3UiRocxjr00hC/nRcpq6amrs5pj6vTHRy+OBnSI7BAIZxuPG5LGkfEOzOe/cy0V2SD1ZdTsE9v8qG/xzS2Dlvh6PoIK5DDXTalKFz/hXbYe1BxIuR2AW6f5LyCkVNGwgRnIPuXlFt+Zb2SL1Np1yTuT7BaTt41NrpIEdISqf4qoZn4uFQ7PI/3/72OlZg7I3QHusEHiiNI9JUv3eP/S7c++jUomaxz2rOiz/B/XI7WjjdZx0i7AYMvXTO6wPLK7Whh7jmoxpjSrFyt/ugVGtV8YBheqi4bQtBD1dIOKWAaNA6WUraE+Fskjq0wN9hcVf9qOMirCuheMdGxG5YIId1Cczr2I6SIp+IT8J8mhLaD1e8WbF2yU7uqccqJ2f5oEoD5ZKIo/7y8FXr2ZZTJ6hh8/c72KnRA/IQeeNd97dwtVE1d2Ac/4u0Z8CZFECBhPCjoB7J5GkyiYlqTSZZmh1gUlqw2G7vTFV0eWKdUFFf6tDrtNQxUITwcfjHAn3j3N8R08mdOBBDHuMGIUTlKUMyP4r7angvqVaTY4znv3wRxpYPKZ/e5O7ASiOosQh9Nod3EFD1QmIYBgqozX1Vf59i9IvGEBxF76nfv0Kqfr2Dl5wc+XbPb8p+FkrEzoOFDB6KbhUSSU9NmG7AG3oy1cswIJdvVaa6ce3VtG0h9fl5y0pW9ifrUvLJaekT5UbBHAcyfLUV3I2/4bRyHPHQgvcn09+DMuAA9fBmLEAuSfsYXp+jo0pDWMoxvOj6xAdNIOHh2qvauv0iwy/mewLMeW0WYNY2rqkAAntC9hLuSvjYDvr/xvs4YELX2e6yQqEddCmRFXpP1ah2Jg3kE6fq6hL4188LAji1p+v02muOQHqj8JbmS/y4Ux+0Ka5H6NB0Uub7C6tNuLI+667436s6+cHa1PQIPE3+BR10p7bDPgZyWU95vfVa+TD2XgpEBs+uaktTWMOGDlhXOMjS7oolS07PQCB8btLlB+HBPg7NegZNoglQs/D/NHj6xFQVJccgB9maBjXPaFAWoxA4hexcbsFfvLn4y9E2i6uhoV1Kl8Sn1YbvJlzmcnValjpirM7Mfw309DwzCTa46P4Ha2mh4wGQ/MxQ/La627gn9wxCoiCOBAJ2AyqTrlDwWYhnI1XXOnGOyW0UY8c50oONW4R6aB/tEo320RU+lA2dtAkHEuW5I+7cDrFhjABCzJBNmkMwGqUYAUZQ/d9wyBbvM/CCOx3YdkOeXe2XmMjtipVgKCrNSwbF5tL6AlMmwyUfYH2ejUIOgXA3h3LpYZWeeLDV7ielY0ZYrWj03CSOfe5e/jpv5uhmmPHRDf/K+K0WbY/ALB0SyDbssvkTznzNuf1F2PY4GK7VoM96QsjQIzuzck9RTV8Q89sPMivOd1OdgHuHMgTGwcr/YBwFE3F3BpYqGCR4vByUUkrPqoE6ZvGeP9Ej28LGmAeJj6cVOzmU9gTe4ZlFzPBopBCrm0gKsejXi5Hvfutau7T6Vt6M1BYgYR8id3K2IPlkS45UBDuL5q2UtyEtv5AZJCyTjpTnpNvsRERq8ytg3yJnfxFkcaAxvLtWOtQF4c3CACBMU5w4l5k0WgfP46Egc+novuxwVFhIEVrmonxqiYEu3MP615v6FQo8LjHMjDr4RCNLgIwEYOdA+82f7x0oQ6hD5YaeX3V1OvS+cCcIendHAN4hbEkvIPBwFsVYfc7E96EheWskqVx9LMcsdWGSRObaKg34l+lG++BJlWzpl30wQTd1lUBc623Gg31jAx49MOdsrc/uUvwLb52uzJL8KP0ReydD4ErW/BpsD156BIYhrGR9K1tWnUkI9wANv5XwStKSjvLowrB+ofaUjfCvA6l0yIuc2nsvpgH6fCFWG+KDsQ6Nz8Ak5DCCBygaDlw2XdVhuGEhob1D41Il7jS2VcNVVDvKg0bYtQE/4iKU+lWBWDwCeSZaG0jJLaBAV1b3wROVg1a3zWvGuQoGWy/MaO4krI576KiVULbsC37/YKD07QPuzcVu8DX+4F9x/YQMaq0+rBsqKIGyih8dCRL/5TlGqZLGtqjTR5Dol5g36GJkfSivpr8LZLUEQpq5PO9XOQz+hX2+yWqGbs6XZgBy+fwFM4NM7BdBNTEIe9yzxUrYD0klMjoO+EIAI3Y0r0rhBotB2+/sBYSNlhK8QLOODXxQgUzrv6XXUtTzegwQu978QefW/ViCRKFcnY6ZRzKgvuoa8uNNE1yWvd8SioM2/TRof9crJgMSZ4Ts14AQqe0Qws1xO2M31xib2h9PlDsFsKf+raIawUKqRenHTYI/JetvhjMVCS0e3L5un2pL9YAh56Z+PY9hXd4th1nv08qX9/k4CSr0+CBO+JP/WviO+XHR6zuVeG0/XE7E55aDuOq6BRzeyast1q0s3atrNkQpXPMv/1I1Qh9J2f9UC2/CtTN5LRBlCylgtKCS3UiJWx28ZTMv/3cvdTHvfU76Dozozu/EjMNcWdbhfErC2yWEDrGkXdSL+YoUqA1LjgFMOuWQKlR9Pi+e3U2gFoxmL58cN7FBdlXKJksoNh/OZtqb+YE5Lt25Of9Jv1jtL25FQNSxdWm8bAv/t2BQqDS3DNIrZ3aSuXULo0R4sB3bolYxWkN3BJvfcaKhAx/5T8aHNGuE6AU/+RF3+n9kwWvqvwsd5bEvTXkYXvsN4ZfpphHz7auM5vLFwUAOtIRa7/JLLrljsD4XAqu5KoPwPAK0gDKR8p46pTVUWhcErFQO02PTBjrSr7EZRjblMr8qF5ycD6Squ1L/8aZOvyujjetuy+hrbLecLYl5ITYBL/GQ3aU9prpYu6aRxE67G5jlsqxOC9ZYIfPgwq/sSB87OS1f7VDOEqYEhia2ZOHFtWqMKyhTPYZJJ0wSTXZMRqsxe8vsRNkZGZGOsgPJbJznoB+wOA9ha3BBh030fh2P8WkqChgHry94PeNByhfAg1H++0rpm3HQTyCn4abzyo2id0tRPB/Gi2mhLPyS6d8Q6zEWb2yH1TTW4VlKiX/pdtPwjnztKmOVTkUjuP9q2IBvp+2cdVcaAqIyCdisvXZskR/kLTbOXI0dDaprNT0OLtlLyVqlG6uI/mT1+srNMB5jJZtvkf3cwODNLrNUDhZjpgcmh6SS/wBOY6VQF/UIh9RUux87qagGbr6CKKbU2NDiOES6dC2KskVLq+Y9aVYJXQclli9v5WiUE5NXhqrCsJcoCopb4UBQHHSdj/z79TTPDoB5jT1NgglKYX8EqaYFWvrMz5m5d10Rwzsga4AF2i6zh3cgqSv0/YbOn97s/PMtwtHb5RMV9U+jAjvqkaqEsVqeC2nViSTrAdA8WmxSPjjeT2ObAa3HrYqq6KUg8IJgdII+gK+DzQpWF1QYAOh5kPAhFXr6ZQTXM7Wh3mDP27FqrEp4CM7eYgLQsyygTi8sybuGattZJauKOTG2rGCXdxVJ1bHFrh4YtRHxtPu8VvBZSEUXEBG3KirEPJpejTq5N745m/EU4WtRpMXer6qcMnvNPma46qrAFInKgyAKtOyLlBdN26UZRW0xPvItRGvuuYQBgckPS5IusH3NH5G2dSNHSLCeYDxXVVKfVplL6EUqJ6h8ovEX7F7nHx3c5E+FXY1gkrlJbWp2ycDmpc86crxqv2SY8BGfX16GOGJc/3W0cD0n+4ktiVZtM102/v+Hok0i//eaZKDRGWm1HnEbucObRaKooF/zorn9tmcqypuK9Abwnryw6yFOkpK+3tuSl0yQ7Bpt8TqAckmXS2vYE6qKeb4lH02uuSsVpo/Bt37BFUoYoEQ8RudbFtqYr6qC1zyzm2pgs36Lg5hSaj5D8yAo0GPA6X7NlzBsQQ5YAcHaoI53n3Yy+cKryOIae60uq3cauSu70ujF+tV4SMmnArJ+Q0OsUX1dknFVc+5p+0Fitp4+vDhq0kKD7Y4/xDdZaSOA/cf3SXZXRoSh2UcVU2z6IH5chs1WJQQeO0jhnqEp1hjodLxJZTm2mYOpibwlrfruml9dwyCjdUUc/mqsl3jUT6W1adiqT55dLF0n/JbKKRY4airvS3w9wLjiICIpzt5rZd4ffIlaX/w/kzmNFFYC2q7o4BqLMMEwnjeQTbgd8bWed/P9AiOYbztTzl7zKXtHOwfbWUVQvvoT/rL1DAEa/szjJr9hZAOQe7Wymt0nHWXXWsuJtm5q3yXLv7w9Okl6e5fFxb+NOtgWphl4f2QL7xodyycIrwxITjnkslyURhcEz/IxW1SFmjpnAycaTfiTZWwazwTnjAlsSQO4S51xUdfZZBUhcvuvNqqYwhyVO5SuJ1zBwUH9oyPuRmKi2NqhHriks5E7+zrc61ya7VHpR/XRFW50jHXs0M5Kwy+/SpX0+5XfF3w2FLXAei1ofY1Ce4pr/CxU/BlWjhDNYE81gExRRMFIZ+vcOXnv332oiib1HAeRLsGos7XgZSHd7nzttp6qnWWK4y8F28YGIFJdM9gYfu6ZXMIC221ikoERFI1AJMromFiupD9Yj2W5v4xvGI3xlUzk7qKz0K83DCklEoACveI3XmlrB9l1A4zbPDfT7YrWDqRcNdIkAvrNXnkLXhhCBC3VadmoZzWtGsQZXCpDHKxRvPvO2IlcPQgXTF9pcY/VM781Uk3JOb29CkwPJfWU5roK4wiGrhwelFupWWWTNlcCMw8EWOGsP63NH0eo+5m0ZxZaqYOR5jk6CkSDs5aM3vXROhYIFoEpDvxE6tU2JAUG85hc6P+gY9RT8yTM8Jbs2ScTLrBjR9x+j8fX6nkNnGhRiLXeMC04W7S4RfFIdHvR8J80WDVcALm2Ll0hOhVDPiVXLxRHg92yyN6VbKWDJIDtkqIjAZms990TNaqJXSEJB9amSTtMLAM0K5lKF5ggFwGuK2DmpKqgmMVhpzrmAmddE6nRuonqxsx2W1NrKXxVmWcmpWOIEZqXpZOt1mFRa8umsvm1Drz+vEtTr0dSfju+0lf9Awc4feJ94XsFvZ0nuMW3614kPisZ6TvWw+YKM+scI2kdEzIksouTBoh53XX7iapy/4h8yiesjH87Y6UdYDfaorOfMpmHtPzklYJbjCiyZf7oLdL859c954Lk4W96M7HG1Nao6mukqdOWNEoRDS0k1+R7Xt7Dasw507m6zEj5vRAIWVL6f0lv8+LqdqBDjdYdZKTo4XFz+fXaPDbND9y9uRoJV2rGFuPLTtPd8W3houp9Dmbnh4g6+y6HLp4b16zYA+HQOzvPjengaDxomCpwdv5ZlSaXVD6tYIYharAzWVBAsZ9qvTVnsvhmSeyBXAu+KioebXZDaScO5hw5lZvLOJnLchSj7duATiRpZtcfenuSe/EsKpZa+iEIf8juDq30JaXWpy0z4awcmGFyLhpV0LhSr7cbBWnmwb8l4QKEFQhMR9XwFZ4p7llW3/haTXZY6FnMFw6XiZfVLnnhDkFWepIGM0hQ2AjMLUPTxa8moQ7xfOQh8uSV65lm1SX5Lj4Fe02wA+eH6MYffephqUBXV7m/pOADa09ApP+LI871dincwvVi9HwWyt0tfOWNbvHeVkv08UDYP9xwy31ob1KB+hCq0Uk6MZzAHtXHQoZGefSzveuzxkhm2W0AbVQVjL3jIjv8a4J+MRQxDAlZKP/g26sTZ2Xun0sYFIlWbhHnvWQ6prJ7Z0bI+XAiIx50NYoAyD/ah2s3da6PKp3qJ5eom0S/OguTOdpEoGV6JC5Kgxi6wKwzBuiA5AYDENtPkDUIFVtrSRU2xCjh7vspxYOaHgBeTImVjCQ09VGAQkD0QqYbJ7AT5KcTnD+I6bUupclpkX1ZjtquFZQhjtFBt6zmbwxqEBwoP+EFJLQsa+zL4oJ26I3ooSHQv44OS+PfApAzy5mtpOZmUTU69LL5BygQ56mIAKNL+/Mq6N9ZJB0vg620KHP7TMHOS6D9WOojR4XSPmzD7/NRpCdCMys5XGXbh5p2ZXrj84DJXMSgePPew8p/Gg4UgTTo9GWOQypEjbjcnPwyzQk24+ZjTckDppU0mek4zM4yLqzKkMj9Uo0C2CVsX8jXcJ2xA2UQWlsZwUDrVWtmJtI+KxYtVtjMpo4H2XSV6oC6vpgwL7TBTVO1ASE6EeoYLX/xgElzomcnOBSvkLIvMRh+1TAClZthUFCarmoxSSK3fr62AJWtjgox/9R9rf5sUmv1l1hWmmlqIiUU/1GLMbeFc4e1JrzT1Pa6EiEH9lARyT2RhDFAa4R7kOi6Z17dhhZ90705cFNxmrjgV57hfNHJK4oXtvj/hMa/Osl2dQ1PJuHU9XM/kLgSGyzidOOwdMnBNEqUhK5UqJx8suTbAjdi0CE2h//XSl72iSBJoLLlZoYqr2JefQlf/jZIuMn6LKCrFZRV6UYYep02fs07oQkXeokqC9AFGeOiKLuhCBWzwWz6RSxS4CcWYOTwn3wvSD7Wvtv/N6mgvdZ7MccBtKwljBSOi4wgSNXgP/y+ZIF8f4x5ybGTS0mQjCCnmpQHdJ2sF45lpZtG867d5FAFqXlzPdBdPVyHemQ4jh1jTMtaBQexQgYIbGmyuNw32CFtxvhiKT5eXJtUP3B8l2jwYpufAir5mGeJzXAC5J7JwwF3H+9Ikm29hilnU+/kdTg8YN/F7f2gQ3ZMgQuJK72bL0usSfA4xEe17nsuqqgxiXCY/1r6da43VpBsMdI1G0BlLslrtrQ97X3XKcu7lc8Jd74NjC3s9N+zmJuAvaHWD81pSG2TQgiiN2DiFxSn39CoOxwLyFbp2kQQxFXpXtm//mvklSWa162FdsmI5asEF/VwZfUM8L29gDstGxXZF25g15zb3X0qvVFrcxg7OB6jEWnKrNOYImzKz2z9uMbbpmN80dtLSo+dcAy7+A82dAqsc83LgFCdwPidxeBQlrl4eQw62XThaguSv5342F1patvGSPlieaUDP5AO54FTxuSeLJtN+hm6PEgdOa0YYnumfd6YKws32tgNQtnzmQYL61loLwB32XP/V9eai9OjSUapV0DMrUk8xGxuT3X3NhZy6n0uqwENNVqnEiCScna1IbRAfotEZCusXeVvqCZDWKOteQuprkEwmXbhff2pFzRY4YLAClVW6w0sQwx2oGEvVNbpiEEkLEOdFCaHjn74J0jlOXJ/Bf71IqpLQjnhtUccGoS/8IoA5TkwAwvY5w0DNToR36dk+I5CPMpRKUNa+8JNY+2u86P2az9vezWqWEbgUOALs+A/5Ow395SoQAcs5kb0WPiR//I+43erHQ7vWebdw8YeDFLge+klS0a6nsouPw6XrXv3syZeo2UMjp4y4Q+hoEY4EyIINPVzJLReBNrIUNbmTQr/uESkfezr4F7G7joAwHQ7wYJLS491Kvnu2nTY13Cky6GKNkxzXIduuWy4/mzCKi7nt6Ud5l2h0rmp4dd1BsidlPUf5ac0dvsPJaDH2Z3kRxyFzrQ/MVqUM3MLhl3is6vryflbviROoKdxLDsvYe+W+60wFdPIA9Z0YqXu/Eu5gqq6gChC4xFA6meCNdWWHRBpEXi/pUH8e8ff74um3uny+De4VX5Izv5K7fIkqIev/jpR+wUMp2LgBGU6e/F3LJ3b7Q9wpGhk9iqYIansRhoVqSVlPp4cKEtuF1vzpkX+2becsu0ysQ0vWRo2YsZm1g1x03l1eBVeazNz0eZdMvew2GLXSTB/rOGjKypHSMwO1uORUAgH1WrLjrLSlRt2pEg2gOT6Qv4SQ3G2DLbNKiZAm9JGXMQzGKRK+I2abmZcPjpyHGIHL65zenUzbJwKu3TK76Cxa3l5ZO0jsI3dx7MbrLra1QNHO8OR43YKWTFe2F/453pF4IeORUje28po8uPm3XOIh3VAugvPL5KLr+U6xd99QGFbeu09neckZd1atwmtZWX77W56vdDv2FLOPhSN6fs3cClU9HmX6zED+7XZ/GzD+ZnwvPJDH9x3FejEVVX1uW0bkgzP8axKOGmITPU8gVHM2bEGpSSf8H1xbfIDuVA1Bwl/qcEcGV77fXHKbumtazl8BnDysbPsML27lgKjQxTkkYUCidvQ38fQGo5yf7WLsOLmCJnpuidqrwS8JuIFFwfG4sex1GIcdt0uXDgrMdJY0w7Gqh0KgkFW2f9xK0CoYTlgCThBefgCpjhLnRbKYY4yBnom4MgTKljCR2QyHcz7z+xto8HkOeyFP1W+gf0CAMo0HgMYd9+jkNvSBRSBOsStfVCrUPS4NmtHjWndwE73byfGqhpTO1el6XZO6raWIEhEW7LkHpJ3iiILn33tISeK6Hd9EL82ZLw5CQaVW0x+fCB+92YUACbeErY8DUq2Ih7hiyHxBk64+Uw31Yt3aOi3mS4UkoM1SyRFWB7FufsFOwtgdvZhK26bH19hGInRuRXPUAW28o1n1K827mxenBCq41iswl2eRDTI+lgrYlDRNxnIBjERcVc2RyyxM3SciYSFaNFKgX1jd2I0jMWPuW52t9iGuXobnEqNDxug4IUcsfXrRlPgtVbPA++MUw64Mfsbcp8IPFVmP2yLRxNKtp7BM9h0RlghUr9Q/tlykh+aEaZvBIEMEqQNLtVvMI8yoVepuGt9bFMEgjFlAfXebJsR9iXjoLu/VT2deOU053tQ4oGVGlmSw91qrRY3K28mQZ/StCVT/8rFiqar+0JlN3mM7RgdF2A5uqedMLFlWQuWe08367IXaRl1DTXi1l1skFu9ewFngmmQrLRki2TWYmJSHFsaknMUuTpSvcBHQOQqjSkr1OHUpfcmTC86saTVTdSYq7Oq/Nk3CscRcS5LEKKUOt9eaW15+YhqJL2ALgn5/u1Mz5dv62vEKVLPtZu6skhAQe9tvu7sJ75FK8cTnKdDH6LDSEjE7a1pI1UHQFzV5osMD9aGPxtJcpG76ld2GZJGXKOQ6qzRLbRjfgfG7tVXXXHp4IQ6RCGaEwZlB5Miwnvy5W8zVrDJBRAK3kw2E6dQLLNoCXFQO/0olBQfOl+AQfZS5strQCzMFa4kURiM3c9uvpQhMkb//LcJ40NwJEB8ZQWXZ1z//JUii7foR8STtk7UarHKGcaV7Grq1V3oxRuP2csgMfWAr75dv3sxGeVW5fX8m2uFzLKc0eIdPP4vYftoblucJEJfCyUUigqURwoF8fq1TSoi+pgsRV7dhkhJeJIe8xLainUPg68LnJpa4S6uSlA44mAnJ4U8yvhFm1g4P7d4OqXJV2773LqNe7dz9Z6+auorekCAyWTrGjwjDaMUFzES23ZieFrmITco2cVvYwS/3i3gKTqO212aY/HQ3Ezi84Xqw9Zw1J5+uHy2/UvuH1ym4vZxqEwJOL1Mwd2J58L7bT/E4uk4lepLLOtwDiTW3VXvXj27nUtgFva5jw3qQUyVLZBVdvgmYavIKU4ULw+1GrNZ8aYCMXIv3EYoZ5s4vcWJVt08Zf9cMKzqH422kingobeNeSooPD8JPZKaq0sMIF+D2blNIAb3Bsb3dNAiB+y4kfMTxC3nkCP5G+QTYrgtQuEFb0CERt2UEhL9A+2ZPT9QxG2uSyeESKZeO44tuaSISlnzF+Yt/FARtX/M/iigM9s0eP7rEfJzV/9fFcgUVP4dVNgI14IowCIiCmLMCV+xqarg921vVNe4DHjckxXJq35mAhm1hkwvEPOe5bfznwEr7YKAfvr21AXRJOBEGJyBH16q19lDo9tScq9PS+xz0xpD8p2UeWpbbVgLHwxZqTrSFt9vScaSiNYhYViCxezSLQzY+I99ggDRHrqo7DxD+HpUWrzp/XC7CjaiRdUmxwXtf2LmTUhBMiXT2reWB/ln/8o9n+i87QNkCVQjsdFRtpjdwV4Ixdd/oLAe69TUWlj+441ND8Tqvv0mM40WkNjZBNhyePaDQ0PRgIEK0JPv+mrwdFyLRCiqHZc4BLazpnscYb/jrbgMZmoUFh0Tf2riN1zFze1Ak7lt8tX6yEbOCmffr5qmkgrdkvZPgPHEDH0pIP4sJrVpo5teqFdKL6C+Rgp9y4BVCmaXql5/PXaOfqGmJKvwi0TuxYohNZYugpNXjVIlm8RzzonzwlcUts/a4ptpnHYcrm/pilrnsLdfLnNuupu5PHPQZ+Z5EWEjmvAKFBFhMrR0JUgz73NozzycxADyGqgLKrQokjyHUQALc4245HKDBwVlH6wiNA3/oGhUtToo/r6otnRLj5vNRaEsn+chvy0hDXT+EYmB1gI5SwjztXlH8L2bbgyxGQ0BPJROHxkPu/yUfV0/+bXrYFYZAuun47WkOPDEHNEsESTzrsPUSpg39fjN0hE0xJdLwzTisxpUzXQWsbYazqKtKUDL+fIoeK0jPT57fKsjOJRYqjPcDmVEGF2WzBCj91Iu4vd9oveqLjTQ4ugWLBiOserjEgF/32yQX03ShsfeakfhzILjVscJGK5LKO+wjuZc607XT0jMPktyexcWw1pvvpONb03nxkNjQ62DC+yrP058iZkdei+haA/a2aMUXnEAdwkR9FYQj3plsD84aGYYlM5nQ7lOTv8UckWGakrZ5Udo6N8JrZEASwRVDzDOOjXZ+PCOr6fB45+4/XXAau3s/uGWCkk0AEoK4KB+Cym4Oyd2pIq1JmUVo52Xkabt9GPbqn/Zk8jbe8b8rH2JX0oqyeAKrSK1OgqeOoDULA5n//z18VI3k2g12EsIVBiE+a6+6+YzSNh3NuFaMjZM7GJxQIUJXxdcTvzo1Ib+9lmpwmaWTmR1yIUhU37fDocCop1Ua3WcCzxuKBPLicEMwS1OUEF02PD6zWqfDMlBZLwLCfpJ7XUzfMKJd7GqiN/rhgQ61jIP4kDeUZotlLyjqhnWqmNm0qvwLGshlYzC0Amm7SH7ScOMvqE9pClL9nfoDsLaRfsfuTWI+rXQnsnB2hUcWcE4xdSCHq7GI1Vi6B7LCA4/PZ9QbTYdpnEQrLyZ75ntduxx9iyEyYAMTBOCnHXXXl3sdA0YBaNiH41jNJtF3BJH3TDCjeY6u/8aiY5ukQdt9KI1piXZPY3TQlKUONsSoKoXu+W+VnPPIFPReWzBOH/4CE9mUclVyx00vd60oGSj+saWRXZr2rqBLTGLtcvNlhNQjwZALk8+mc6efXU+kGJpipaAJscSLJVv+LYs7TYjvvfT6ME6V0veH2Rx3vLtGTSCzc4jpNeZMSjIsarlKdyxBV6Qlt2K4it5+NN/7HNdq8hcDcmDOYGo2JKxYiiBcfkyaarGamsg/zeAsXGMMxd+kaIHMeb16Une+sW4N4VUBJM3jnJ+yqPltlv5Cvtl5TiTrXTbTyACyK/nezBmOJUbN84XaOlZdLMegUufAjC2/CEdxCIioBWeyL1X13TWefDh155xk/Xmx0XI2ZN9daZ3rRgL/MKtwLQVivoqIEr63KzOWKpN8Pm7CU2GlothuHsLtBRW34w6aGNuEXi8KSoxTuyLvJwIyU4EuCUNypNcQtDAJ98zq3gg+/DoB6SQg5n7CJLPJDTHoC+Lsa8Zc/Imv1X43CWO924YHMfz1KyUpE7ixDBSqZHH7qsueH3WuWg6IrvtzQe7OSuDeMgbOVHl1e8W2LYbJWIuPjR7nGa9I3pdLYoTmBpFjb8xKJuzS2/GgnNDRP19ST5SbwH6zZjrLhYe1+o4bEKzHsc2sw/DCe7ihWvd/9H4hGiwtnhl0+gbfhhdCKumFXBYIEZaMRZ/j/jjsjuCSk1icGJejfP4xd+6SM0rNQ204onDcNdAW5L22UDzQxhC3oYoTph4sVSQoMUogHbWeisgaolBR30vVui85odnIWiJYco1spDgibwsGXjbz8GAqYyetvQ7n1g/ElfSSxijqQj3/ee1lC/9lTNlmdvp2zLlVEcYabYaIX97le7k2vDS5Nh+Dd6p4UrFTC9k7bwcqifl2cNwJU1ZJlG4540GPxsWLt4cfSow2otcQ31ww8YvMNSJwoLUcrk/hjeAx9v3+PWc11v+f40L54nxqEiUNZm1eNhU2uSwk3d1TFSjAW8y8Ff+hSVuvaSVoSEGFxvvwnKj8UGjerHZVPjwYQj+ZmKk34Dsce/hAiOl4t39QcdsgvAQMCSviFHq7TrugrZbLbUaKLBG0Ar+ni5KVKywfpup4D/WVBwAFqhCC386Cf0ZznbLGfwmGKzm66y/7UPNnkVKtZf0JdsgWqNww4C2yBVH7C56vz4jILKvJ0LofF2fgcgiDbrb6bsZTHZiUJZBO+oNlPDntatiQr1WqXosq/icr6yk99nIXAKwsgrinmvUrZRCW28qiF6dKjvTzbEt7lcylJsNcfN5A4dqyl+lMdtuVj7dUcomtkZ6NqO0Si+qgxTNj3fq80rF59wdzpLDA9+08cGkqDWsi0VxNz2cifik+ER0z1dErSZquo7MOR0dgBpqj/LkoZUJynxsiQnrpHdzL9ooUIt1Ilpk/Bb5jiaUG1Y68v3xUjdaxqugPPsjAi70R3Ma2pBSPKi7DDzw4Q5FqGGMxyyTrnTPJRazVW39SVBc/oljpvhdI8lJYXYJvEIb3zJcZSVZwDmdhg1FU2+xBsnQW/7PVdqBUt9LbEVyDizAJzyApdqA6kxZjGWFFFvVJtrKOxxtVm03WkP2ldR1NgjUtry8WL7/jljsGoezLwuNxlkaUsxAeXNGQDSI4TynyUEkjhhjXG9xaYBOu1Wafd9ZDb12HauW2J/U1ukLixeQj4dKPaU6r8QZb9I/BjhrdxnlR/qxgKXCQgulzaY2WzFZvsnhfNu52tvTXVrbH5ea2Rt9RfT5xe43VPj6yKQ63cVVmVhh88ono19zPcW5LP/Vn666QqgEuA+RFt1hOZUfXWq8XE5iUvdLmXT7KyT+toAo/1HsyiRDzsMzhkOPUOUXGdvOYAuyMMMpZEHuuFooDMOu5j4ctF/IaOYFTyYH1O58el/0wkQ5JB89NIYal7ERP4Q2KyUvkUnCJJa336KGPIQARfPZ3tix3/zMFcWYCLxC9s071E3wKBcCeNkDPriJL+1UobfNkzErLUlTG69b89QTRcKFxTT284UtfIP0aG9wTu0lZluVpxsIB0e/FutaB49xIyk74Zcz1vahu0/+cvSlZ7UyUCSwH1swbXP8vopTcPwAgo3DVX9ImMYBygqRoT/VYXiQl6bZGnwYnSo+pwmsDLRSw1w7j2xKE48p+R2xHQzMD7W8qrKXtfgc7VWeXqMKq1JmBHOWwZ05eiXVNCEanThfAT0qq4gIfXg+Jlwz7wbvUxnuiGqYW7bvfoF+ydceUMAXaVfTsfJY2cvKSA/MurFUhkaW8t0ov3EEV4sgbl6w/8vjMrd8GmxU1voWkD5P2Oh+aqc100Kqgz1AQCuja87AX93918Lw4pMWdMcbhfDO9vS3euQWCikrUiR06MqkN1j7x/dEx31XViFH+qHBF0HcXRFw+IgHzoe43vGlK9Qq2V7kiHz+nA2flP4AC7g+fbXbFyO2/WAb0oueAkVZz2oLY3UzOMSoi+wCd2StEO9zJRm6kcivChU9yvwzbTQ3spZ5pJLbCIfin7S4NpBltCUBq+y2wOVuPRB1cXKpYaHwM3e8qRWWFJagr5tHDyVt1V9cLxvfY7HFwyuvtnXhNAfTQkIkW2Wc+LVzXhpaKyzYvQ8fiIobKtzoLwOSKTiMPVkVkTKXj3MWn1PhHS5ep2VYlNOFo2/lOEPPfisfFT4uEGloqLJBZ7DsotcGRzK96a9S4BBIeh1p0wj63xhlrVDHvnfObAMHz9zM/I4ETpV4hnJjPqsr5lJKZ62/AvrceNnq7TigAYOJuXFovx58d+iLRWZDy51WwrVNU1/mTtLG75m8nln9J9yYD2lnb8CdF7RytsI5ljsiRc5R0X4nG2o1esj35UWzlH9AetCRX3bo2DzFn6FeIywnRXIXfb6tjrSlJfN2zoKmlGYM98/W3CF4sAHC5G0HZcXOutg9PYEu6IKyZN7REb7exjr6X0oRe5uAA1yOwAvxdrhOmVUzVG0E/UV50hhUC/xrcRpLpX4Siwp+4loRPVLob7/ciLvN2UKRna3SiN2hMqoPF0U7HwAK3+BJf/EscdkiUQNQCvf2ZywIElOSTybH2We4NznNT4KLyv7SqKvKrg/v9LaHte+GlmXxx10jwFFFFHc5jG8810bWZlmgXhHoeMZhoZi/mBVvpoOon+HqpfbaA9cUYDTk9oWVG4FJGT6S77oFf1lIA2W3wEedpMYlR+jHVG+SrnvBLW0lvLhqHvzjwJtB8jJdTKAb6Hy6zQBKChrkQ+6RMgUWxusCp1ICtz5GHyz7r+W/ZqKwalITWm0DGNgOQEjFqMB4u8ZQkDzTkdD+agyktElwkyRyrWg2CnPYGHiYWWz9PgswvIVHnaAep1vqrKty/DDNsD03EGuiZudpW/wqd34MLDy/RKLiMB6MU6lnO9Mh1RgeUuHTFSU+BbL/ghzeU1U254WjWYPSx0V80h/Pp3DlVVENnyLz8oM/zw9h/hNKpYfE5JkviLLLi09DAqtT1dHDW21BSMt0gC4F8YmIjHUH4mcJWIYZCTAkovPf4RVYt4ikRQtggQ0ktNw89Ynj3BCOIYg8ZWSqSBZpRlgKfKzgEBPtXRsPVDGYVjviRrTn/DkykecWwst7i7wJN8rVwrXtf4bpNZyfdimdYwrQF/UFUxSZ8TI3bIsciossnPvAGPBT4JG9Yvc+TMBMK8mlWWmAhZhc/DY9JNj1D6AngwI1YoDvO8bNU1soShrF3fKyu1s1zmoQHVIfcDZUdetaCiJlsKYM3a2sP/bFSBsRjWNowjY0bf3X58/e7HFDJMFrU7vig4xQmuTcXQeWkdXc2uCEfJSFIWqqPLoZrIUyWnfi2JUP6weJcwOsoHwlBxQCeYU7/gTM/wQvhaetqfDAyhL2b7ifD2zNfm0AvWCJ99gt2zK0W2m1aelwpbRldNk762ZTXfWDp2Ms1HvTOfn66m3nO0gaGTrJJth7DNTaQEhXb9X/QhqgR9cSDSSfujakaQj76tai6GdbHuNBblhkB1GikMQhUwm7jqRiO2aWF/4mCBq49y3MtszEmZUTB5QAKbvjuGfcWzwGNFbBOnjcspvqaDZ1+kEB3IGBZgmUUdMfmIYCwomB0LhGlIcskbcjrak3taYPQY9+V2Ikoz91KURoLBzBu7T1ZrOGgFwAPhDg4hQFpgQEC8HMFUDIimBjOXcS8J28hWmAC8jlWhZb9i3o/iVUmUiRtsGChxwk4fX+K0yFH5b/rZ7/praihVMNpOR+RGjJzXWD370lyjQ37Bp9e3VCraiGpGKjF9h9gP8T9Ndz793/DnXA8BUEz++JcJ0MyKPNxBbYtrT+avc+sZzixb+xq3tJMzh1fdgf5avFbcWEyz7JAXP0o776c8C2yuc1mp9/Kw1jwN/chMucHIIRuXJaX1fSl9FM1ixg1i+gEBdnTe7+o1NkkOEnllcgj3sitbDZx8MVLbMUqiuWw9LUhoKbU/AC9kqlY5ebxFrXLGDiASy4A+76Nw3Di2iZCHaVceYjERUmUTCer9SwbD1L7FtFApDtG7hBvIUiNari4JcP1T/wxOdzT6tteWH6ShT460pTKeJJ2uG0QDMj0qGRFX9ftk9HPCtocwfaqJ3NVVnqCoID+VXLmHOo/otLLro9O5Zsa4o9y2FmkViMNFnMAswaDCIHNLHxjHVhZqPyWrLQGqWxRr7wXAWrNDxVO0XWYbLJXSkI8JIGZ6EnCAEYUbRtFR9E1rp63WjRrPFocv5d++YOGt8AF7z8C9zGKfgvMQPlRwBxUDnYCOVuQqdGVQg3uPvbQt/RTif5NNJvEzCEfQqYL7aZ0VtGzXauW9cs4BunPo0bCdTTQ4TQKAkhqhze/+JbBbl/m9NDhuSmLQ46vGFO8Lst9o6+CdgB9hNRuXIRT9lzHsRJsa1mIwUdXKLWctd8DF6wOo+70yatR4r5fK12COegkY0b8c25mGEszu+cbC12qT0fBpD/7wtKLJsrhVxrVau9ctxeE+ZP+V33HEa3mPtZfPWWkv6pv9X3JILD/Gd7wCTDGPsB5yTL6Uj/E8Gns1vthN0GYdFO/0yA1zxO0HoGqWpr5RrSqAhVVUSxTFBcUznG6zB1pjD+EHxF5zYObTIcetbaIEjQE8N6i+smqSOzgOMWXKTuQdRhRW9U9EeyupL2OwlJy+eGJ/WKL7zEzlmuJp62NGMPVEP8UQYCPuAesEA26KscAoiyZe0oSmHn4sSScldHmPo+JnzWCcZJbuDtAx7J1LP3rYotEIWNpWhWhWhqKWqljGqUknF8vW2GTIHJA1XDmwPFGkQFMuFGbDUsf0pD9R6SRMKK4Q0vQkOBOP58PP93f9wVeeaMClfreeH4sacvSQz4FgUwzQPUMvNXnHULob28mY6gQGAy9gk4Kbwz06HDwM6PM/k4BDHuQ8xta5+Yb3XM1MZRG3BAVdcslCmXq/sQ+GT/T70h1kVovyWTrxaaZ8JCGhRpYRASMVQlveo4/FXzGOrzVuZ3Qw5Qwb/vsSI6A7UyX0Cg4yrwXfmxl4F1wlsxV1sSGDBhj9aWx415Lx1VHb/La14cK6HkfJmyRzACdYNggcs/YkEn2CKMz69rCfthat/TFxA5v7uY64wLQf13BU+uoxc3hEUbt2dygWgzlfG/J4MdlQMbxVJUOBWMiemDwB0gTonUbkRmMNLGXZD9rKzar86W10IZXVUSozTEa/36ohvfVn4ah2QWo2dcZK27dnN6uBMyv0jB677WmFfjt37BBOGovcsfwnl8QGvbm9eyq29ZYWBSrfg5ijW5QzDEE17MzoNFCWJee3pATZTW/FOoNe8OVCxMLFdlRhqkkTqOb+XnUO01yRrQdQGzTbkrb3FPhjgVL5cyv/4vaxBFlFwtN5pRLrFgSZsJzRx9skOTZ+mvhnqv6CkEYG2J5id6rnrcXO13R4rY5Ow5EOyFQ4ZWG7iysdGwEYKLD486IosHzIhgfYUA10QMdqBGu2pov9ja/dFZVOHIYtmnpnYghT5wVYQ4n4/rvzKUNvRbpLpS7xx5sHSIxEUE0Nmu/7eyLK3aAeuXVTShCfLb8lf7PmB/t4/4zKywDBVa5a95hfMfQUZhXh6TJod051O1vTCEqIHai1rjaH/XqUpSWwJKEb478LaKXrT6PDYfZBVacO/qGJaw9W2IMVQ8lC105+45aZN5FydpFHbxCdMiV0CVUVyc4KQ7GyMMcZq47jCh562UgX3BipWNBUdBmOcV2ASBx9xF5fZgUvz9PizWIrq78DXf2vE8eELk7hbdRwe/VUwX1jbQ6RD+VhClqkv3wxb6m5wWX7HkJ9CXIcG8Qa+DJ5/ZrUXI/0hDi481jVYYgZSO2I2Iv3L+oSm00fqMFpkSmo7wcto+VkdN5EjYcfBrXMYAqrIGIAqS8jsBxl3l2y8t4pi6cT9HUaOCNNzkRXrXIrZDl7iugbyPHMQN5ATL9k/DSx1HNG9ERZWH1SDDXvzvIcRbMct+rDGrhEfNwucfqz2vbo+JEycsbMxwV7NvhTqwkG9+202LI2E4/yzwtiNbR+WQiLylXylG0uIRZmWcrKYT1JKO4E331eo6wS4S1jYPWXGtRM7s1mLGMUPqJcS+eR9i5adraCSvuKnuZ8BnnlJXt2ahQYTF9Io3Qm85aJCVwjANaaKcEO0k1QLIlno+NGNBUuDhAiSmtD+Af/B0QyvD+dsEbgdlZBr7x7kMbQCtMkY449DR8xPRx7DJaSk2eTeARUD7q2l2efaUbYHO6ZxlcUoyNG0pXGt0tMJ4i9TMzzsYsS7Hhd9LoRlMqiPGgKEJyqSYEoGae45jPAVPM3j9t3tYkO7oiJEeF8vb6O1fppfg+ePDvmUaUnm0lHZE8HKq7fPJ8hIzRdbCyskkKPgB+oJ3JoKcQG/7SE4ll3G7DEP3NuYwLPjAu4k35dIHOH2vMnJc0a7cS1msBfSjjV1wGGu+4L6f6fLKEvOY/QAddNciCbLhCp7rnA8mKA7MYYGuPezzFHNLbMxPZ6bbwXovFmzIujjXwot/ZmtVuWcanvsxhjGktwtWQqLF98EEmIbj3cN9j4ygGn6AfQXKAZbKDbAEZJzbowQWWgcU7M02fQ5iEzj6qr0sb0CJ8m+5NAL+AXq8piMiRY0XnQKta4rQyAAA7LK0ZBnRPilOOePVfaF8v1j0BMBZuCyQF5fiZyYg0UXC00EnbrHw91jH9v25Sg4jdfkgCdkWN5aO3PA5fGUWPxjFAHD6O16TnaiqTNmLLf0/daQWe6Tx53Tm+cRcdRALJm/abVdwc+sristp5DnVmXp5WAnRR2/0jvDq8S77AvG3JfGQgAp+tzz1Nm2OUqJLmnk24wkcIsquuRdY6vYYl/EM3+56ZumpTninQ2YQ1tA+IjXnYTn39Cv1T2W/HAePHxTAI2W/681hD1cQybwG2Zpz0n6Q9IUd6Ac9PTEx8aR/t6WNfpniyALBi3lMsebFGA4tsW0izcQxDGMzcG2ZlDR1GImSxpoTD4cEWDj1qA/GSPGWf2eZI8KrWmORV7BvBwj7DhqJgSYdkuR/CgBcY/7E+O6ILFTzOoLNnc8HE4mci817yxxUelcx8nKTEtAup0mw9N5+W3HAuINZHm98JhXKPakDjGyjsgfEIVsJeMtaZZAegT4S9GtJRDDi4z4JL6kbjCS98aUByTYtjip2iS7vs9qWNILP1ArgiVZbMbseXAjKBmsPyW8F549icrQSQyTe7bdPY8MV44h6LTfKPuDVpnsMav/bSnbCG23X6HD6Guc0JX6IYRJpyjhvl7GSI+NGEsPW2NheDP2YGdnNDBCkX02almrdpMS6TiU8vOHt1js/fchovxuD5CCVmPS2/boagGwL04hhZbLtzmcM1E7u4tR1xeby0C4KXiW5WGIL1Js2AgnB/iYMN9Ou7CNsCB7965YTL+WigrotV5azTdgiEWntaAC77iuAECfVkDUPDBY9VdOD9PcIyofwxVlZkQJIHhwi3ZVUxGTEWZcySJrAiVK0c6K68DubDvFNYGYAI71blyEt0Yqbg/5sW7FWuHlUzesoHr7ImEVkC7WB28TeofN7Sd8b/QJNH9Znfp6aHWFWko8fPe84VvIBRC+4n+ljRXYmU1ZdiIkjRAx52AcQljWdvuRjGab0vSo0lYqzswFmD5YFDyrXG4nP1feH9yb93HcFuvnji3xPUuTCYzywl7XtsN5TNgbxXyZGAuBqf0TNFYX+AstxRUVq+OExzuw9cpD4s+gOwdX6ru/Qs2k6WZpgVLQS/HYXmEG+g4+1T+eEyHDq4jy0SaS+0ZKRxprnnGowuzfaOu3fh+xTtmVYjE9Srl8W9w2+aUw1hZPzewvPenw2OsfCGkKCC6iUyjpWzr6kvhUsF7U+KDa3hvIL7qep0Mp3PKBLwrMIuJFHWvNKmx59njp8T4VPjeetjVILHszIfE7F3cEHoLQBACBmiXPLDJQtprcPXRAZVC2PGb1EzjoyGSZx0ucgcYdLQ6CY//s4Dz5FBMoOs+1/lDisipUQXZ6kw+mEhptCHp5ZZ57ea26HiA2NSTng7hpqj8wD0sU7xVZT93UDe4mdnO3vD1SL12zYXJq9qiZ+4z6LBpG1xY9qwEWXMnNMt5Z2S5ItfypreyEb94aBlERQ+x10gLBQBjgVgvISKzLsQvi31a/CxT8JTo8peA7RHGavp4IglcHw4n9VUZGoAz9ITcU+Gxb587nSDi+CAuMfxJjOZ/fkx+ZbTPasVOHFWNDp0m8ae9NmlyOthr/Tp4ZLG49r2dJyUCo8XuagGEivI93JYac5LJxHqJFJ5aPk8YX99P12J/hMrqpD43ZeFqPb2pjmTbxommJ+8sPJqSA28pJz+jZQJUxo+wXvCamIJxm7KdoqwimiLWiEfUwjorq0Ohe+vv2cXgAxiFzuvdjOTSurIP9MtOzLmGPWnytwmJlj98QhM7jRGoLW64G+93qWYNpD1CALw0L/2Vb0F3rTbKBjU1TsjMitBaF0A6x3dRjbZk8XoKTIlcbbi7lLA6XRZOzA3at1J6tpF+SL3bLVtXcZruUvdAelvwrllJXuSGCpfM+nFPdgTrrdnh36B2sDuzHMY4pLsCPmGX2IDWMu2nHeje0BdM7OxA6E5QIlgHM72ZegmWH6k/DO+UWmHsJuUa/M/juQVFsV3/4ovxbOD9jBcjHrT2D2TK8XXZCJmIPCQSC2G/cpx/j5nQQx4AHsEz4OZld1QHm8Q39SfHToSrtlGpce8CpKgZFtJjXYIeczpCzjQ15hfMCa4YITlNWa0oVaHCGInKqUvc9fkLqKi3KcbgVISWQeK5pLWam9wOS8klAEgDWPkbe/O6HOYWJwVoH7r9Y/1FqJRsdAOmsg2GGUy68IoeAyYzE9jkCueCsTWQ6s/HcFRdyUhlEguP6OPrFXCVZzapxuCKWAzADHUdeookfWwodg3RcwcMEPHmS4t79tudXi2qB6bDygMlmXQdsS1LtXRB0sow8s1SON9U4UZld1zp3VA2DSgHL2p4klPa1xdkjOKeFP6qlsNopEATEhjT6P6/w23Get6qUjrrxX2q92FFJCkam0dw6m8DEBqgnKoVV+GlsDzxa0B+IxyqxlGTy3AFFMTzA/iD2VJwc9IftjpKSmNgn7ywbljH/Vvcm34JTZcjItbgsVNpnvQvKofSEDeLzfwxCKyN35F/BW3x5Xl82pOAPnqWOyMfz/DTgWWZWrHxDsbTjNYE8UbcMAMDI1tYfWBr5NOWZvTQDKa79iCH+Yj3U259Ql0uSgxC3GRvInGTF1QVZ3YUtp8kpI2KwBG1kdeqbP0TRC8Ul7XCtneBkb1JYppow0mhO8+0KHUux0CZI9dbIcIWWj0BElQI8Ke5OVh+roWtvmPHZ5KE5cADKVcHH7jjLQunxQ9sVAtIKZ0EeuIW3VpVPt6q/7K8d6PLeDlHQTXvwTb9Fju3uAIvH9ZmfLBHh2Pvh1yttHT/RBD0yLgV3hK42QMrUYmCshIOHeGUO/a+wSyNzAVcovBPuKdANXcZHLU5WVgvzwNCGNt1d+TaPdXVkjpcSWphFhfwSLszJIVts32BWM6sATPLWbQcH5XvsNRKj830TChEeIzoyq6Y7Tj5ZnrhMAsL4UsFzMXFKl/qKETIqnxQkX/DCITzWrJDPzyg2o2F3jy1x/l7YjOREeapHhb7bS+NjNmo/vLW2rLLTNBsgDn9EMRFeraYbIZ2Km4OmXrO374HFpK0xFd+SRQFHzza/HNw9iH6mm4Zag2BCd53wZwN1U14HJITAvcKx/YaHc1MfBBNZe0CguHpms5cp6G7QLxZioyh8pLe/4YbNJBVe4YMHMRZghRUmbnkVU4H71qO0a24hqbvdYVNUYKZYGI5J9LiW5RgwmFLjjKTQe4zlZJI573q58N3dTXyVRTmapO12vi3ggOKiIWMKAehVIiu/NRl4vB/RcKuHKg/pcaxoUr91KbfRtoP02bIQvPHdA3J3HSiprWesh4lGKKKhpO4o1BOEFoIRkntzzHhOLJ/z3thwycpkiIWwzx3W9iEEnSZZUevl31iA05v6XL70M+bRKgMMI3PWUsAn7amQkuyng/xNum+LhWu37sH+CPZ5sZEWy9YdDvm3z3+VEySYWnhIJN9SiaNkLwmsQswEyuoH9DuIOd4rvOHQgx4ZntCJrxIWxaizrJSmKw2nJG47F9tLMCrQDIBLOpiuY4t+XvZvkSU4UPAAHiPO94BCBrj1CXE3uuKEvMqUsDqAJPJ6tpRwLvLwy2vIkavE+1sXBZhXoYzd5nx0jGlh7VSb7lApGtydkefMDb6I1bvp5tSR/1vi+XLEa3mnZrhCKtyvU7pV1/UwmPczLQGCc+Hnlc7zq/pBe8aQ8lR/n5yOAj/IJihng6ISDRi/13ZR3LrlJ4WC2swHbpn9czcs8nGn4Q9Tu+1DFZr3XBli2A9lXFcKO9UkIZKuBomcEXgDjZiotsJZSblyDNWF7d1JJXIq510fnR3PNUzufCIkU2CVLFnJGZW+c5V+7JbK0dqc9EvYQSsJiBSiV/XDvCgZLIVk4FbYELWdeP5lwUmM0Tdr9IS5ju5kmOtaRUpzkpgMjKfxvMAVFJ/AVg2TZeavh4YCcsk4INEPh9RPmIp22dWXfef+MufqfqQfnktJV0UxOIRXgBdduiCx6CVDx/psiUCY0Kq2Z8OPqjNO9Slsz7ORersDGPxGYwRxVwp0+Fgybj5kVLSELiFZEIC1veYRjI1i/RUOYQSmAiez+QsRCayPKCTy7+m9fozHKTni6dL0rHKSJxbrsi0ZDwEkmoaLooCbhGrrTy7mXDMtyBKtEWPldg5kmogXKid04qKO3oRXQbw0PtkLxd1MErt1OP0baU+iZ4zxqGA8eNxWuSquAbHk7triRFyS4sCkxwGZ8V1hkG8xDBHoQw0lInlKUS4Py0Q8MRE33U/b2BVDFIyEIuNQY3VUa7n3ousMNVzW/vpGPOIRWPfWBeCAI4Ao0ec0yvuiaYzxFi1qSZVM0nD1GGum+fY7OKG2JstEWvotYjSZcDqbH0hfsHiWb59614CI3zwJreRJeZZT8zqoLgOMMl21/vPzZS8v+vUlZnk3vRSbr3wJfbwRkv5c+Jq8NbedMDLffEIvWL7wLg7gHACEuaCrn8Yhz4Gk1MquM5t4cH4kJOXKQHyNyqBj9C4V0fOtk+fri8BTiSxtPsWePFYJIQfSSKTEx/BBs5NDWzhkf8hw7CXnAdxsHNlQ6IdBo7GCcm6pAIpHTCuDisBjJbusgtBrY327/eHeLtx9O6WW05Kiidk80cvIXN8cSGa2hKm7XavabFjzMh51jneB5++QOaoJv/3Zv/mVwdctkaTUxHXjSa5LyPYXfUzqRY4iE6JSWMZrLQk8/h8907OlMuhKHzldiESkJCE7JTkn1zLFCRRbTHkNhLzlxZTWOz29WYDD467ASOwQRIsywggK5njBX9A5nuBcfQOU2OKJRiCQrv3lAjlKHu1I0GxVlT3CnBE7Q+4hp6cPLLINHa0/f8BALUD8P7crBqvlW0mKw8TJ1TBVHngTNgGjlpzHlfUQpbcyOEONu7iFu3aPVCfQ2yqQmSSKGo+jVp0axs4XKBk2hdzLkeCytiSQhnLoXhaeZ6xXdgcaTUZtvpuDfWOqrxtJhsDgAttLkcQUz6LJTUOCEQXt1IggucnljsTnN4sYUGS/UMYQzcmibA3K+8VaF3CyFX3sejWq3prW+OY9Urk9pm8iDNFquXUVLmRA8vtU+r/7QSHWxKVZZr21stEoADc9HSjVlZx6zWRAPwxahQQzyFSpdmLoXZ7rMum2B+SpWqKhF4gfzoLjD/LZRTC6pFkSb8B3ZFqlW17z9LydD5ZdpQW0FEKhz4n4gS/WGXdgQxj5jirsWKMznPxzOmRIADyjqH7u770dcWHfN6z6L7kSvUTYUXTqiRMQaZrTUVI0iKWfApYuLTzw0UkhIkm7L6uYtgarT2NHB2eZeBmQIW0rILHPzbSFCDGzFEJNv11F7C50wVVcJnWCrxYXhUbCjbRUII7Y/TZdz9GtOfQ+KzS8t1yzwPwoTI4BHkzY0uk1S57HnGSWqIb9pchALwJbtCcJquRaCi6ITSpiM9Cvxkx6V5hl5FjpmUax8EJ6/oHsghpz6I+z4WBddF2rkiJ/BrepXYgivk5zr9/v48NFqI2bxW/Q7w3gjt91Nx9lfGS1X/NR+MBmKiweEdDCSfHSF7N/s+41wsoilMxnXRHgHXJzuPOLTzGp0ewyzBef1hUGJuTC+guemEOKf+2RofKApgX957GJLVlQwtHZY1QsepwIoU2iYiCjxJWvPuebj/06iIwY2UExfdQ8qX02mSEDVHSyYOCd1o00FheBOsblGAFm3pKlYx0LU2GODXiglLG7TDX1xqGchHV2xrvtiTpXbauL0QQiAXxoAqQgWph9jH/t54LAVHWWxLRXvm0dy/QTMtSb/TXlODrSwQzQQvVFd3Vl4GORQmO75FDSpCKr0f5ScFsaV12MnWNatZ4ddTA4g/1A/9wELIKsx8N7mHQnl8VPpY5xmSFfHYkTmj60ML7by9lxB8lShv5THkgz6QHQyQHHmf/U/+U7kloqIhr69ZvpW/GdQsV9ofnbxbJHSeB19jtHNUhdR9ko0F43BMdY08ZoKthHbMvYvnY/wgZ2tgVJYdUbxTONZUP5K52LH06lAnZqwR5VY4Wbx6iuTULGhiNI2EHTdfdzvkcvOUFM/e+8vDEgjNGaym9OPX1d3SsFtunJcl+A4x5DMhf2OgL0JiZ0xQHJ1x832GFQWTKEYE4N/59DF9M8mV08vUzxeQ34lM1d2l10elGgulB4hXMOcUi3w1VJOA9FppBWEoJh5qFkczxKOqMxjR2s2BRJxeUbbEAyU29TXxVhW2T361ZY2lvXhywmJSW1MQVenf5zpB7NHVcG9moQG+5lfjlPSbrCyDmmWyYRYa6shbFn5dFHbr/d/EHET3vhxevXMeX0eukmIDU/RUUfovTn9Jx2IPprU081iL3Su0pyAcHYQ78N8fpoBQ96TzUPPVQ/h7+CiGeEAbquhdMM1KsKRdUPpAgViMqtr2tJur6TlS9PbJHGRZFBwq//RTFSxTnDDBstb4dm6eP5lAnMSZc90//tCFs6Y/uhsVP3P8/bcBREzIEfY/r1/gIN7u3kEca0bOhxO/7YAhdNpI4mQehpul2kdgiBIU/q5fitJF/QSq/ksEUPcktsGXl947OoC8K28sf7hBb2c3DLhbmZ4EJWP8QctyQ+2PB2qmkEskI2xUuFuE/NZM9Zu97dH3Z1EqtEx8KgUY2+HjtBdIp/3CEonzdUUTbDNPFvrgefKpe82TEmo5/f0TvJrt7mxQz6SyguNdKva5zugYK4c7KQeIbwjNmDM2g34Dw6XOz2P/9cT/KvIKaQ1u8QMO/Klp04S9axmwZ9ctP35YSJ51WY0bgby6w0b7nC/ZS/PKJOaW9ZEpHn3fkG0nDN5worl/9OnrmiONyLrOecM4pOS+0R3bmzTOrHvJqljoLV2BrZdeFUh3yvuiVzBoaciQYLqS4dTNe8gyf1uvzSd0Uz6pgin0TQy2xfQIzHMmWbkSHTpmYKXMGM9IH50p2AHxnZwMPJa1WdzJaxCoAaXzfNQDDwhRges5SXvPMf4NtTgA3hdLJhqQ1sVPgL1OmHK0n1HNoKZk38U4E1GbRvI5Fo9gxlWORLY9g6Hks+6wE5gpHy0iOo+lQOHKtOAae75qr6XvXYnJrTljERW5klXtlK7pEE0Upqn00eVjCP2Qnbkqi16nVrqpRohzboRrcI9KLT/1nl1mQ+4AinCbgSsD61n34c5+bR36ND6Ojb10jcZcrSm9C1VL0+lrg4oqevIsEEMnSN3+YNRAc816KZJFCHpq60Tpw8l47UR+Xi5H9hJVzAzmjQ6vbpf8axwbJWakM/Jq6SSNhp8iZnAkETlHaNETgDHvda069MGa3K21eTeVBjXdtYSRqCoBdgz38TrNknlKMdCNotD4nZTMn+y65m76+pFZ1jBYfN0rL3VBBZYYrGgx3uffnqHmMOhEacFnZyxDTAlhgrzbrHvIA628Br58B3xnjITN+aOmNATMfMeJ/XyxvCtPWfwusfyQibuUWGlUxaIGKgayXIeFw7yn7z/PiPhauq5mYk1PYv5tvwhNxl2UVq0SMUnTN4ZlGEg3X93AhTmFcGvUw3oYJibWxcpTdnSCDkgJf267d8NwMD2XaSiyT7g422+hpvNLLufuMjUpi02nsiSHiTRNMV2sKclVG+B5TCasBjO32hXRMkJDM/aDdZRNtStROobCmxfdSXWSXC2nPhsBrMJloE0ZmeosxGRpy8znDpXSoIpY1A6cQt5EJ0vRErxL3gQX9goD86SvzfLILLunHpCulyMdSB7jcASf3VNuzVhMSi6wgLO6jBHIwpCHBm76mnA8cCkTlGBisgvbg9riWHhc5jxbAsvV5alRGGytZsbLslc85s5OyWDK9eLUhitTNieub5i2MDKFtuG199wUGw1kD3ips3HdVTQ218HA7y6y5wFlFlNDCc0jbo44+OYouLwasntLWngIbZO+Pcj14OTqOqskaDF9qo7hMWkXLJVp++qCt6WQ58gx4nzaApI9Dw+aB/GuW82mYVAC3QyEWUq8Ik+4XEi3lv2sUwQ+9QpX+pbHN03qrg02lQlWsi4DlInhIAV1/HlmHUFYErlXb2UUxkFH0FBZliMyOka2gHQdq9kruIJh71YRccjvqDd/vpFdUF4G59jqTjoLrzgYQd4tEkjafvQhf3WvFOI358GK2kgs69iQycXl/h7cwRRVNhtuIWZtjSPJlBfnud0a8DU4zfTHTzRb1vu3GQzTXY+Ufhv+adIZGWsvGLRCf0MdQkMuOYINeK7jvqchYJVTu2+ABC/wWJ+1E5IUbvREk9kNC3dPzlR82/wkoqMLXEI2q837ODV/GnUUx8z2flbwHbyK/8V6u9MygFSgJSEppCUf5mbTiM2yajLjc+HQPeDtH/KD7yx0nyEwqMrmxMwdiRFiW15WeZNtEw1NmRfPrKtnuF/G+nwNMzzD1Kj+PV9AFAkwQV9SuMnSgr9CVbALXBOS8NbLPHAJj8pHoyVyVCReUXktNhRGf9o6MJB17deTsk7JtYO09Y7/aPUM+VsPCALr11biXMW77YJ+aNWru9PRknAAxCbBFMWS+ISbd34NlZAFer5NVMRqGfk5vDfTpv6ahE0nifp/HBmB9mPupMvisgWIpjYn6Bk5+j0v17lSWA34pV19N4R3L2mpONsN/sKfG9uryJPQh1gHHtKaglH/+xx9mm1zQHgP8Ghw2r2NGkOapzglYIl6KJ8M99wW4Nw4iZsHPrYqoocuXJ52q5aUCq/MKNfe49DHmVThKJysKCBMhf51QclGOAPdOiZhUwDTJ28Mj5QtvLUW9H/JLi68mZ1SdUV6+YFvHBWF4fgE5hSA5jqrMGnvvv/YCykt7HpPj3oBxCpYyRbRNMAXQqg0Lbb7abERut1CPA3HkiEOfFqi078JCMIUwhU9se4cKbNKql4FWvWYq3zgveVTf1h/afzdA8kypV4p3vF25I62ZrPyfE1xSJipFUT+K9MsRnM8GGJ5eV45DWZiHL+ucayKvzG8/dGfv7CmdtMJOLD6nh9TTr2xla0Uu65k49yIkXnJA1EnCaOkUcwLrVZXTFwZDy4Tz11bUeraff9hWMoD6aa+mexDsI76Q8G0MlSaxYvUYXiIsRBfpiTODvoZVTPPeVnsgsLGrmiL6Dl+IL4lRuK2dCjIJJU//ub6LzP2oPcch6OSRPpYHUC3UJcXzP9+6J/craJzBlaKLC8h9oDMHp6gYIpr8lZib8f0egwP7r/w8WTaL7ljitcTMeEMuPP9d34gyAHpNgMS6vqwTLJukneXuAS6jlciGn05C05szUL6li9tGXGe3wSsWCdEMqQ1HP1+BrK4KVAqG4LQ4wfHbrH26XA6rN5sovTJ/7Ow458kLyCjFFomAZPa+N7E3WDkEmCQtPdpq8wPQJbRc36z4oafOREPGDSRhUNRKBePKrJ+64B6G4yVCAK1tuETLyKRDl9sV4fX8omVogT6S00w8OiIgqYgdT24tWODIMJRBKAbxp0bcEhgxDvQziI11G5ej2yUWouamD+mkM+n+ZL9HodLiksftrJn21wEqyjxFQF/9H5rye1nbUABtfbRyfBuJDg9IHB3noh0vB8HIG3AQ4C1GUjqAoPOe5cLl2wdJV+9mY3aD0z0rg3IVjQ72HXEIqU8SJ2Q5dx0nSqnbc1pAAbRyTpaJPbFoLyzWPovvd/r2vN6OZ6ynaBIQfy9PDqYJ13tUqh2a4aT8FPeqgcmdAtVfY3NXNtv+5ArJ/f1FnPSrPO7SFPFzmq/K5Kdx1/0ymJeJAwEnjNiiQBNeK8gBZ6r0M0qnMrA6F6D/li71qWs526crd624dNVX5a1+o7FicBKXMgnZjqqtoF27un8N2czKHSyipyFfWFVSj0zAQgrIAOPE7NIUfuGC8M71DJvv84xChaiDaYacRPps7QA3hRxTsgVvfFINhAkN72t2QXLmmcf0GIO2gTROF0DrXA1U/UfMJbgg7rLTEuXm47dPhqEWRWDnFYz2akatDR2zZy3Y4Bxo4riucqR8ar+vDWRdwwzogimyHHXfO3Z2GdZ1pOrAJxJiPrgtSSQCLldhfIEEPrSH3WqhgEFHded7Ulz6UGYbHh2zW0DHYQOgbJmh+ZlvdwV3gTK0Hv9UX6Z/fAyz/xpaaLmbWayyA4Xq5Hk+qzKK6H6MaNeW9JaHPFz6nQPBRqVJvljmI02jgUnQ7h1NEjO8HMXR5JvAA2JRBhOwiHPgW+gOY+Bo1Eb+pYBOIwqiT42GllFv3umzvEnklKq7D10I0Wo8qKtddK9lDaKV2ZsJGM1J4b4XJ2RhNVt7EC4GmIsoO9SrYJuJAkzoGleASWG/dA9MbDoGYXI5yqY02xWkzRqPDAM6l7yFenkT+ecakJxLZAmaSDOsYVHHjptX73OK2Ah7BFuADoSaBZHOLC9dLzNRnL4G612JQX94zCA/RJSicqcwtbqjIc0bycSTLYExWbFODYJ1du3R/T6eZAuFtk7JkZYyc4Q+6WmP/CqiYYqeukSPw/6DgNjb9uhWvtEwB+KnzoY9bo4NhyoZHVZyxONeKUCUq5Pn57jtNbhpEr9MRrGb2mkdesZ77v51jrhMmuwWdhXxCAd1YjOg8HmOad7kJrugjTtamd0WnKMlSZHeU4XB9MCRabUozoUeuRR3GuchCbv/OKvxuu15RrhkbSrl8rF8M1syhTZ9cz0CwKLVdu1sPkpZGriMmw5HzVBP2SMILxPxeF0ejVpfZyxZmB65fQ/7kBr+DgrMibsoDM5hwUB6n+nbY51uW1jR7wCWUjvPCJzcqNti04yIgMXvCoZnW4gYILitt3v5IZHsQuVPBxkrumKjRQ7DE0zUpzlpBDwqawM0qRWtY3e05ReE3RzHItB+mklcIlxubkbImvhKOWEOFmBVfI1ByptP4a0xKrqCP1aiQtrR3uekv9BMARUIym2PbRF44jIsHBEbTs+Edv/ahItQ9RItW1MzW50JGHiWvApzGnbqIhv+V5glegRzHJVahirL+BlnoCtmKANaSM92H5OunHSUKyP2QeLbVluSQw2xpd9fgaKqR9aU2Q1H9vOaNsyDJMzvxTPFMGYJq0qPjDBFObrdZicqtqN4pP5qF4oWp4yws+a54AycttqBa84lSn1aSrcXGa8M/yjTvxcrlYVILi0+udWwVn6HAQuthKWNdwKQj7qoSdSxyW9LQuTTy/hI4wsudN5VvoiFjOXGyg8wenPldY2zT42e81IX6RhA9zz1LE/KL9sudZR3kCHjjgXQcR7pJYcqrWIFG7F0Vrug49de7sgM7sbIerPUOJXM6u95Sw9xDWK3Gt/Y4E8xk07B6A5Z771+waFupemIQ02gOT89vU3lnoHtkhNHxAz6hZVINpzxJIytrC78JFr4Uzy3td5toUGUXmaOucdk4hOHfGbltBZQ4MAje7iDyq8P/YZp82ni/gltPwcVhJUsvdPmL4gWYRFpjEWK7HRpQAm9bDXODH8QxaG8LPN3VN29y3IIkLjzeC3Kd0DUguuV2WdIRSoeukozdt5mk8oMKyaZVKZbthsF/6EIl7oQferhE8Sqk2ii8qBQ99wz2AOpseq15cO3AKsWR/VtxjNSJAcx5r4VNI7UdCoDloZQwt/KtNYlHmfyu1v1d5dwG+VvkCCVwfG7smyGPA9HQ9q5cqlPT+RchoXL2b8qghdfEaWmO9Z0yjXjMjM7NZPKFLpe1FVqv6EjPcApO4E2W6gJqpE6dvYIf13XgjTUAKNdWdV/gTXpIxLR9cCrPy8zNU31Zxy5XAdozUdXHr/0ESlTSlAHgZ6ZEDDmdOCendg4SFvsCxjw/EytNmZxcXx68Phthh153hYDayEw5RNq2BNjz3kyUWg/grt0oa9yWCsmnG5TwIKwTFz//uJEJlMkdVm/YjXSEChtzxhuxCaFNwy7CFUE3t6sXQ6HEdx3HHf8BvMth08z2U6YnzLLIG72IrfjdZ6T8xXhj/itU9VGjjc1cUHilGxvA7TyIRuReuSdUponQ5/e8EWjK/bQd97boawPSIL7fn7zMh3DZaB9ctWJC8jZSVNX+/SDOc6P41d7MI33hyVxkisPJG4jyVEv3E126zDf+B9VDPxeVq6a5PVCdHdwf7ZrTIX43OtMoY0TnTZF9HUfjXPLmhpl2MamfAi/g8AdBTu6550xDUJFM2PCaXpS19PLDt5YU8nlDG7RQCth+lrsLEuDzitNAPgn5E4/MEw8cSrWa3vkjJufxhea7zUvsrsCeC2/6WTTSLbEvgsdYzOKgG/0tF3+Qdy0a4MLy+8KKCcM21fHFxZS2XliPUtIIt+MlZmHwo3W26aoVKO8R6cQA1LaoPTaZXSX1o56O6TZ5F7V3pZ/b9gI8+RKrrUI0LFpvBHf++A++/hgwE0UVse2fjlm/o7nwjU4ITdXVZQqSMwFzZKx+ESqg+09jDtnQcDHixlB8I5o1RlsBs2lWvF+QGl395918D9OUt+e/utunDFIp0vaOSyzxNAXcjwSlxxmtXtGK54dP90W+AvUcvt/wPGlOlycfyaD6jEm2TcLj/Syx9g/CN1qnKS25YQc5LYYhK5nSxnIMXiea73r9uLhkl1y142U4OViikFLcAFGL9P0d4FC19JCcse756v0UzAk0YX3uuMnBk2lTnR6GYx1IqPamVc1cn+RTJze9uzq2hvHD9cE1R0IbNomNBb5jo/i+LxmVBAA9BxJ7lx6RAFmHSZRfN32/WglYKPUIAWcWTg4Ru41Swr69Z32u1YoizzHWDEPoTbv+xwjcmDI7FgJ/0zb86QqpM/XrBNs2JOFw2pFmDFmgkEl0lRDS6NKqvXpxxg39eV5YlsxavkcGbfgTUcfeTNZQdXASeDMPiuEbPFMLU6w38Qaks92T6j97sPOUHrrAjssFjx2EUhqwaFKtDmVKV8hJTD0NgUjceF/1lC5GGYEJK/Lz7Xn0xgEM3zHgtfnmU0aoCujw89iRsa4saaWzN7rjiB8/CGiN+Kr/eeiw7x5gorQ3VBkCXhdT6bFcT9OTPABQ9kGO2YIoomG8oH+nzQxZEf69JZKoqIWg2CbMZ2GFwIL4CjbPVxTI1iG4qsGaTBgzHFRBL74DkTwQSQ2OW4+oB12HhzncANlfM/KjZ/c/8aNaBYQfuP6gjBemMG9Td09vJuaVvy006Vt3w95nQRcLAlklxGhXupgdgXfzy6MXqdTUvoxZGotqOJqhVP7RqIn/Y/RswYiaThSfxhCQM5N/dYEu51Yjuz36N1lnlPLylmueZR3OyH1lew74bZ03tLqqTZcNGxEiDGPkE6ZB7jx/OBpPXha2BZAf0GGn6HUyVJMwLbZ/YNSoZ50YUK/RWme9FgBkM81bXX33NuqDw8pV0P0EYyI25VXLHDe10eC4Gbif2eWiA1iScnLyJNxpNFcm4FZTZrMZst2+NcECtf6kWr5fo5wmFoxQkbTOM7xXhz96hAE2y1Z+uV+M9aAGyQ3NMtIF2txBkiP90o94ifsu8w1dBFXySI2j0sBuUtNLxu9RFEyxgUpOgzN6ZJ5k/Fs6fVRx19EbMm1i8j545+meyom3W2yth9Hix3KzvT8UdLXeyXKgsS0lPZpgS8Ub+/QNbBCzucHCZQCvMVktVVwX6ydYPzo9k58kQuvnqGwy+8ZAW7o4fuWMdWFFJWaymmJDb1Pn8y/C5TpBKZcSX3+CzlW/6z1/g==,iv:wF+Hztc0J3riq0FPTvi7Ftv2HE7+plNS8C1P1goQB3k=,tag:KeGfsLafEIYv5dUEvEgi8g==,type:str]",
+						"data_json": "ENC[AES256_GCM,data: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,iv:HXAM5ejten/bQ+BCC6coA7o/eSDDzCE5jXnBhhHQh+Q=,tag:3ZgcMss7iKo6TO9yk2TjGg==,type:str]",
 						"deletion_time": "",
-						"destroyed": "ENC[AES256_GCM,data:au7oODQ=,iv:aCLSMBswkC+yKZ6jhqf+zejqRZdhjHPd4kDyeHNV0+c=,tag:0zgTBqQd1odCtywDB4VaoA==,type:bool]",
-						"id": "ENC[AES256_GCM,data:6oA2k+ppATxhlR5hc/B+of+sKcs=,iv:s1f/Gc2ZOxaFma/a/G6LuDBAQVIGUYm49wQewMLLUzk=,tag:ZDZdaVrAJwNo2ll94fhZJw==,type:str]",
-						"mount": "ENC[AES256_GCM,data:/RQ9Qx24,iv:dMBBMQXnjv0L6Sp4371XBq9RGkRtd1NB6cfDlc48Gzw=,tag:s/ThzzhtsEOWkHxmeTQfjg==,type:str]",
-						"name": "ENC[AES256_GCM,data:yWqCPdYU6Q8=,iv:jZuzNNMlJJgsSbxhM62MYKSZdzoWXkWarLld/2eJ+OQ=,tag:6pIry4YVcl/AlmglIFhrdQ==,type:str]",
+						"destroyed": "ENC[AES256_GCM,data:fR3eIJI=,iv:naZdaZDhn33MxccMFtezRPOuwz5k/cjA2YJ6pDUFrYs=,tag:JmeljgJvUgK+V6IMrrzczQ==,type:bool]",
+						"id": "ENC[AES256_GCM,data:Hjj3+TYb9nx2lbvG8ytQ+eqGaGs=,iv:YYOmSHof4iOoPkA/dBbHF1pftLx2mF4KP79v+bt3LQs=,tag:eTZbEa7E1KkmEUCn2nMyFg==,type:str]",
+						"mount": "ENC[AES256_GCM,data:YeOhNGx8,iv:n8FOkL8z4sSnMLkTTV15UZkHhrFWRtc09+Uky12xWFg=,tag:q/3VXY1BobIQW6gJzWmjvw==,type:str]",
+						"name": "ENC[AES256_GCM,data:x0WnB3Xs1Dg=,iv:J9AxUf3VXS/KLLSIIZO+QTEDmbZB1WtWJtlUsBA8RcU=,tag:wDPO2CPlVE8aMsNIPrh/Wg==,type:str]",
 						"namespace": null,
-						"path": "ENC[AES256_GCM,data:7/qZKsA1a+9XhRnZJrwLypTZepI=,iv:qIZzhiXyH71CPdi5XL0Qu5oMgwKzJPgpOsxKs5lx4fw=,tag:tG1yHkQhv0d78ct4kJn9QQ==,type:str]",
-						"version": "ENC[AES256_GCM,data:cUs=,iv:JT8IXHrbuVzijct9zgug+eiiukBFJyWSUBe7eaSN0W0=,tag:bhoIfgvDFFS10ojMKyGZYQ==,type:float]"
+						"path": "ENC[AES256_GCM,data:6XFpjpBJhVOS8OxUY1ntXBoODrc=,iv:vE3QpoaKAVxAW/+5PCS/Bo6Is6EdcwEzEaxYzxZG1cM=,tag:c0UGZUzVzb0nSb2ppfZ+/A==,type:str]",
+						"version": "ENC[AES256_GCM,data:8Vo=,iv:ph3F4GaFTM9IwoNDTWxQjnNE9osULSO9PEcBGHFB2Vg=,tag:wqtwdu7Rxzrjleb6U8sY0g==,type:float]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:X3cyR7VlUKU=,iv:RpbLE1XTimuUEWHeh2uU7zjNp4TODtRUw5SD5jRg0vE=,tag:dr9yRU6fMJHR1Ug8+EK2aw==,type:str]",
-								"value": "ENC[AES256_GCM,data:mty/+Q==,iv:/Qq2K+aMhgi0/d6y1hUYgdBm3XtuLOiXnZ/0SuUUFpc=,tag:LzpBOAwXNiiBq06q+Qb2Kw==,type:str]"
+								"type": "ENC[AES256_GCM,data:Pgz1NgM1OOk=,iv:Z1k46ioptAYFCqcZm1ipmu6E6sBYN1mW+byToBYLJB0=,tag:pmzLC3azX0P02vCgAdH0tw==,type:str]",
+								"value": "ENC[AES256_GCM,data:Vcs7uw==,iv:1oyVZbNSbL9ZBJGwtqrwwhVqaadsKAjghjkj46p2qNQ=,tag:iOBDwChQRoajpvHbGi/roQ==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:u/HDKlMZ3Yk=,iv:+5gZZMI6Yx2WFvtMFuczX2lf/+XMkQFoORRc3AzS8Aw=,tag:Pog/m6xEHWcJmwtzTulmLQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:ygcUEXgPS9zg,iv:DxmCV1JGLEtxbnheQp5CRN3S92uYvt3mv4ifbYZoPOM=,tag:aqMjQ7oGxuqLYfJzZ1BwUw==,type:str]"
+								"type": "ENC[AES256_GCM,data:h0+9NFJY69w=,iv:xvtxSK6mDGw/z9DPX6yJTuZKiuAuZw88mDSxjvS6cZk=,tag:wiKqGb1Gvt5ax3BaOfFdGQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:2fHvmNnMYKXb,iv:EO7pxjhJgKGVQogRZc5taZZ+7KsFCsLeBMiiv2y82yY=,tag:CICEaGBnHMBwGj1QbJ1AkA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:ow==,iv:53gCjsTXfErfJXdAPoqTAGkkAtWee1B+lTY9jIgrZ2w=,tag:dc6I+EAlcYX+pehVz77r8g==,type:float]"
+					"identity_schema_version": "ENC[AES256_GCM,data:ow==,iv:OQY8wmvo2+2rXSRt1Y2NgiztNlICOSiAKfYSUyHBntg=,tag:cMopoH84eODye0tjNg3xfg==,type:float]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:u9uwJg==,iv:nk8lhHcrlufAly6MN4ezKFFEChxu/QAv1C0EVe0kMJk=,tag:u3B9ofVUwvYZVW90aFYjww==,type:str]",
-			"type": "ENC[AES256_GCM,data:EES6F6bS2I+pHYovqC0078lz,iv:Pb/qWfEWn7EGTgpvJ+OeU1NFJtk8POmK/Fg42C0/6JQ=,tag:ftHC2ydoJv0yrEr2ZraNnQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:/oGbdKBTyQ==,iv:Qedxo6KT2aRhfNhtzn2nbZagRtX1bqp+Aix/GSI91i0=,tag:WLT4fy53EKtjXhZtqBDjbw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:BmeBsbk1jCxU2RYBVLbBxNGzIDqIS7HpVkhrt7bwD6E1D/NQSlQrBdM7kawSDi21Dw==,iv:ETWRXi+C8QTlyEfwMgWRXRZJPhrntEvooN5hya4S6cM=,tag:2uWVh3qSL3T0I4H7sQrnEw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:XbTFRA==,iv:zednyrNdFtN+TjyPsvfbDTwECsAsPi7QnGRyN8gyspc=,tag:/hbbtKU4CIQFDMc6Fdb/MA==,type:str]",
+			"type": "ENC[AES256_GCM,data:wYxI2LJT9zxZkB7W5kKUYdkU,iv:e7bN3XumCYWEdjYp+/v0SP4WCqGPR9VGzllHc3DOToE=,tag:lCGwG2Dg4oUD9sDmOev6XQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:wCFsOF6NmQ==,iv:YUHq3l8NBO+edUFdD3I11hpE1rG45/pFMHlLeXrVFKA=,tag:oT40M4y9vXM0n5gIE8o/og==,type:str]",
+			"provider": "ENC[AES256_GCM,data:KFR5kR+8e7ob9edUAJtzd4S+okb9PtI8mURMTfAvLEEwQfwY2Ak6dblf2mxBNtRh8A==,iv:rdSmQes48cGDvW+aDUSqDKyDfrzbtUIcZJi9EMet39o=,tag:ihhtlsW3/KW4pIxLL5I5Qw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Vg==,iv:lurG36jEjGXeUo5qOwfARfhXMUHa1WKsDTVSXsAok+0=,tag:vgQnJ81BoybL9wjAsLIIyA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:ig==,iv:4PdmUi+F/1+D+KwX2ho1uFV8x/OovdcsQ++daf+ve5I=,tag:gvJMCwqoLe/x7RY0jcD3Tw==,type:float]",
 					"attributes": {
-						"created_time": "ENC[AES256_GCM,data:hhREVIYezzB/U8dN6JG/ATkXjamTa4Yj9qgV4XEQ,iv:AKcsHecs+9ObLDml65HBij/8z674fRrhUGQ203BD3ZI=,tag:3RR+EmkHfZjEcXVyIGKexw==,type:str]",
+						"created_time": "ENC[AES256_GCM,data:cGtnmv+qao5qccyiXr74Mm+oPgBX5CCkAN65fJMs,iv:0eSuFKYGXqaTP6LDPcCew4wBNLKIyHMsyNtYrXPuP20=,tag:L/wFquR5/k+otERWrj2qhg==,type:str]",
 						"custom_metadata": null,
 						"data": {
-							"alertmanager_account_password": "ENC[AES256_GCM,data:DjqFHhSNFre1q2r0xWbp8ds5vgA=,iv:RyrIJQhwB5yjFws9qR9HkW7O5Z/sdPOFnfu4o6AMvXI=,tag:L4Xb4iS85KXNnSWxBROOJQ==,type:str]",
-							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:Nc8KBIh62pW+6fgpqJnrRcxXNkqgfU8cfdI9hgLNE8lImFUmRl1wqLrDUWYy+LmXTlKABOq0g39b9PCcwNBEAfUVVlMrepk+ZUTkS5UczIH7,iv:QIlQSOEihMGk0xTPJez6eipsp11VoTammRzvMS5hPpY=,tag:Fvz3MgqPJdh2mpv++rMrDw==,type:str]",
-							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:WmQWZj5fsclCH4a+V7zMnd2AtaLiwZiCCKCYyy+zxb8DrtLwMThcRR99jP28rLt3R6GvCkGE8spWAvs/f3RaihYX,iv:e0oI7HdaYEx2TPOWSFQbNc+Mso/0yCULBN6nHMpTAas=,tag:VydOAagJMa3w2ZruQdYY9g==,type:str]",
-							"authentik_postgres_password": "ENC[AES256_GCM,data:p48jNvAOR7Iina5J1Y+yfw==,iv:HdFgOIwqArv2KhIMz2Da6m3snHGfC7/e/J+eJNQEXQo=,tag:ecfheTq9ZQFdyFMfdbfBvQ==,type:str]",
-							"authentik_secret_key": "ENC[AES256_GCM,data:jAVlr1pC6qGREiTRm7F434iix1wNhcinxLRlSMMJ8wjVMm10GeKIG/XqwIpJPFGp7ixd,iv:0JMKwuOs83JcIlaBcePZakoNBFOeQtGJt3Lv4VWBJl8=,tag:7OihWdWq8cU+ZFHkntcSSg==,type:str]",
-							"cloudflare_api_key": "ENC[AES256_GCM,data:mUQ8l8k1u/v8AYIASOBOldqYgKc2AzMqEh2PEo1CeGo0oIS19g==,iv:QbF+XLATjwsuUFssyMjZfO8Vf/6XE5S4fEXFZ4srwfg=,tag:UJqXg18GF2I9JxSPRvhPIA==,type:str]",
-							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:99KazI37dRIHB4eiF3eaA563JU+RbV0j4f2vWg/maSX1Gm0bdFWU8BaPMJarkgGAYrMUhm398q+WjqiyKlUdFGr0YJYMurAaMWJbBah5nGC4W7p6Eac1krqlhgev5pOZtL5fLwRD9yfmWLQK6rkJcvvU+2bvkV89AvEiveR/KqlqsM4jOCHyOxaVwuT9EGlDm/MsNzMQqSDHmNKMgjjkBkXaWSTTg3dTKN+P8aUVIo6wcoLwcQ1+gQ==,iv:IwrLgdhG22ePqhJv9YPMF+SRqnNdbRVI2jR5Bnj6KWs=,tag:glra/bTvEYAVps4MZ//k/g==,type:str]",
-							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:rizQcfr6k6cppSdasCpjtaWkX1xZmmDJFYYtc6Px+flLKAFh9CYBrroJbA==,iv:3ilVSLgDR4Y5OK+tZ5yczeJ6d7NwBs4jnfR4fTx0GyU=,tag:RiwAi75vaXeQGfi362pBGw==,type:str]",
-							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:R8/uJf140UQx8hhCxSvn6y/KcOqoxNWyAvdkEeQ=,iv:CWrpHfOxRxUUs7N0hxP6hM4MOPpDbyybhnl+pwJM9wQ=,tag:lFEIyNTqnyzAUwtpA4fUSg==,type:str]",
-							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:AmQlPQLS6u7Q1xBn0DZm5oafWVn94UcdLIJcWbAUdlw3NURcv4xbgGOzDZUiuBlXaX6zen2wfYb1NDQsmzKyFg==,iv:3P6v7gVziiMuYWu0UeAC48862Er1e6f/37gkjWuMVZk=,tag:4MQ/tG/w+BVmOaYbWuDRwA==,type:str]",
-							"crowdsec_db_password": "ENC[AES256_GCM,data:3F3Xrom7gS4Rawa+brY=,iv:GFDIqh8qA4rV8j9nzaM0Fj42Wi8eDYLQ51poYhOvfeM=,tag:KyQW0qPStt9QC8aDtNqrTg==,type:str]",
-							"crowdsec_enroll_key": "ENC[AES256_GCM,data:c7LVsASbkNgyUlpule4rV61NIICRUp0Mjw==,iv:AxZ6FVfxVngh0JkPTROVT7hSpZtRYn0ogMMkLe0/HBM=,tag:D+VkSAOGOcmXtAlVBsQoxA==,type:str]",
-							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:Vx9KbP4kjp9x+at80X0flVQxstLRLZnRmmhvBAfIe1Y=,iv:rAgIa3Wj/aWUd+svozlM7Zh34u9ZCf8vUz4BPns0K2Y=,tag:iLBkIyTfXFmHHGAu3gmN6Q==,type:str]",
-							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:f+P8A8peSvAo59+OUFsCwF6fFs1pHModGpY=,iv:vyMNARtTZkscw2FSe24p5MUkDuR6Ay4zEISjbIXGWoM=,tag:IrnHQTKE1LLUYCUKTUkh4Q==,type:str]",
-							"dbaas_root_password": "ENC[AES256_GCM,data:jA3YKyz6Pscl23AKdK/3PGl8enKx7eFBMLJwAQ==,iv:TUJLXpP2HcE9CuhMxpn8LhgGK7qXyn5My2TpTQznwLE=,tag:s2lh0eEuQCM/z9nzAKd/lw==,type:str]",
-							"grafana_admin_password": "ENC[AES256_GCM,data:XnQZRny75eKU/zRtVy2hJrDtdUs=,iv:sL9tk9V7at9i0ELrMv7IcyNTmVaiYba593xT/T9TLOs=,tag:03Y7nYdk9Vxk3alKetLAKw==,type:str]",
-							"grafana_db_password": "ENC[AES256_GCM,data:HlpYVb0WceLs8tQPkzLcL3ihOeyA,iv:Owl4CXJ58Y8ZLo6S6Iy2pKeXrynmFTFUsuI+PKAMUUA=,tag:LOunCfJXMjvZ8DFUbGFTIA==,type:str]",
-							"haos_api_token": "ENC[AES256_GCM,data:KRvl7XN7Nh6WR4UA7fEP9OywgRNwMay7XzZgCBS7YYoGQBHjDm4PCVbAEVcLhMaF6hWeKOtLMNQTTBXMMsc8K8a5cIVqc0TbFoyQEVctRFRn80JPzGMynODkro0RXhyk8yP3SgPqcC4bNdKBFwKjAKrGkumQ+sCeFCZXcntFpd51BtVYg+TRIEZNNp6bflomymX6r+Ynsf3Cvi94GbUSJQe0ylrlDwhpyhlopxS3fVERdL7h8nMi,iv:vX+W+gNiXxellIjwhPeDuJhp/JUcslX5P/2v0DlPodk=,tag:/p5FTZrGb7cFaTy1KlHoUA==,type:str]",
-							"headscale_acl": "ENC[AES256_GCM,data:/UccJBjBvl0S21FiLJ//Y0RlA179PruBD5KnS92FxE59bVcg/yYe8hy8nPHd3spimDb0ZgZ0FDcueQ7vbeLSoR7K8Z3X34xplidnwlU7tcq2dFTlK+pNtkMA9A4TLQmCS0O9HJpAY6i7QFuDG2LWAHYW/AQXhu8wE692YSR/xFKhN55FdzyRMuVONCyqgNMVxu3xQgrCNi540OXVx/3s+hqPJii8u/7N/SkXuO0W8cLSKH8TfIjGoDqbdrcteLEukMYNh0zXnTVJXKI9jWTso9+Vs6M0T4zPr6wP3Wr35pCuXpbMD4Fk1bTI8hoG87aTbrAH4h9OSTuSDUmDEC9vZ9yKI2s3Tco9esalJDce62VUEVeBnmhZfoN6RnPBgGXFLwYGcSCRsDDI83GFuXv1vNJeHNNcq905eUhR5xxG9Ao2nw4EK1/qp8LkKet7pRXzQxn9qJh87qEvMkk+qIRCjX/AU7bgegqDU4NE75Ls4ltb7vsjbUqNfTctJclWFNpx1BvUaPhtbaU+p8yH6jMFS/SxY6OemI6DlOi83dh0qyygvw9sUmaGimTIOmsYAm0f2H/W/R+sW/jYp8ibVKcbfRfvA6IXMa67FURa1rk7VUWtXoRGlfVj43gPPH4mV7nsDcvQjrcspwlnUrTzz0S/G5g0afG8rOd6zdRJJfhml31rxovUYlzX29hSac87AHWBn7ppU703JLVydpOEVPOKbBGWPcS3DoRceMXTDpnnvPC+R84sUYb1xkgFu/m+SY7V5xQLWLEoK1I6/kYiji9K6d7i0+4emQD7cWkHUj3IDS24k3K5YwSuSvXX2g5Icz8Jp1ffYN7Fm76v6y0pgGCs2N50kYcCy0oD/o2Yhj1s3kNhIH3qIcuZgYrIhHw66XcNbU9gqajMLehaJ4uZCBLNmTAF8ZE+dXxRI/rKSMfIRzuZYnyapZYZpEXV+N7PkO2dMCoipIw97zIOmKmtr6iwqtM/1Z/K0dotIdBDqlxy4DkHeFR0OAe5KfDraebD/glAUt0qGdsAEtSEWoD25SgSGbnCeHPPG0TfNhJGPZUwF2t0DerWFcfahwG6tY4vmWNNH0ORXNxFI5Zizu3mw+Z1CLR6LCxfSXNUOv/oZ4WE9SCiIys//irZUM7YhihIp1Ytt7EwayazoT0jyin2lWtxrfyyyXpQwAjkEi2kqYLaUTn4+HSMLJQ0mDkcFGy+ewFVQt6gRipNSVNpzXd0bWUzMVccaPPzvGv/N6AtSMJf62dPMW39R6pBiV9WryUO2gFrMIqm5uBaAjrhWfocQdHFVOPIgfpsfkrGb/jnbGbmZgiNao24sGx0bumKU5ZkBhmoea0Bz8uMbCwBMJWAILfjXGN/uM1HhGhkPCYbhH9sfoLwgADUPTc6fXcxHhf++VzfPgzLoBxbj/zvfbvOnm92I7MDSeycLIxLatH1DO4GVnBeiPDVp14rTkwn55Yc2jLJX8EhF59tfchIw1jJ//Hg/HqyMLw0lKX6RbkMtYK3bzEkOhGY9BEzqBahXM4Tn4xmK4Quvk/YJEDji1WHAIe4RoFMUMd3cyzTrj40IHXkNSbOzBZ+ojxoJAFL9Iuc64Te9OTI18U5LFMZwPt/6o0fje/w4Xeat+F/9dLTxNcjhjJM0taZN0l1Rvh05NhY3EjqGjGaMHgJw0J3U9Uu3ayMDUuOvvbP+oWmeoIg4y8sBROan3YtU+7SopQ1Y6V3/2cdv74RHc6bNMbHP4HRj6Kw9wEA1jvQSD17KOaNmK/GaYwvZ1W04Em5ItBXQgvKEQ77Dt/lolg077gPUZthPp+JzeHo9Qz5T9IAd54h+F8AINqSYcYXVVNYjXD6EaG28anlVk1xqr6WZFnbYuFmAm6v5jlgrpnQEqh2CsMBNWhRxfhTsiDAnRLZqcAWcqGzMmzpd9Yu0khyUslumKnUWAwueTKKB4cmIBi9J272SEf5oNgtlPRVKBRLl5JcZwfk71vPDG1586vQu0x8jId3vcYrma08AnQTjGmdHZRBgRISc3el+uFTnPOeMJgmM5SZRxAfVQqR4wkTWjPiLazWsud9KiR6RrrMyQUi0TK7k96IrJE6yYIJkv7WI2ubfxZBIbhddsx8m9WTI59ca4flgHqbCYSy6xX1PmP4e3Hg3RPw9IQ2f6S9EOdMrIWTlZF0RoBhWiAvIl9G9M7aVtu5zIZwTvCgcBLAay5VvebqT5EHcFDSdy3xx6blJoe9+H5A0FvPVlKJhpz0/yHCc6T0rzraVHp2s54qCGPcqXhzAbyqvhWXnVZRfNJoHgncF68MKP63nvFqqgxj7nUEOTT5+6CoT0qhiXtkRq/jRn8P67S5Lqwfn+0T8Si9vjROKoY2G8XkAOsitJyTNXNYbtfBHBhL4mG5NT49rulfodN6ikykEWdfvELERyeHbnZLQdKNiy55y4DZbhLMrQOJRAfxPhb2dWA2aBqdSWqtoTospCc9e1i6WQrF/17MP+bGeKr1N0LNFXlNRhr6L0q8fUlqbge5yMuSa6i9I8hnKIWxGWwx+gUflG2fCzZ9mNXXqEldnfPrfmXNZrjCZJnN4+xpTdbb0OHuKKdE9QEiT/PrE0KSk2ZOs19L2Dy6/GReHfxpmeJl36J21GgR2SDaJ1JfXBe1uMe+9tcxrKlUZb/+32eaN5yGDykFaCyWjmC9i7KuCe4Hr6Wg0sUQo3RiiZzAgBrDpmGXWShLGfMgnG3u3swtBId8wHt7fi4eCljps/2C+K0HoTWcJFAgfczy64EsVqZ7UQJMlvVKLATyFGRbucuMAktzRF9iDz2nFXn4HTxjIHjTbRoqe9l+gbM13laYjrYk9MQPbym0LCREec86IEebk1YViwG+LnqZq5kFrMTGhpJC1ATCb0zfGH0ydeucXLoTwSvRbBmPGeDBTFQPNCtbEM3ZQ2ToiYuPCv2pbSctQcaNhlCqDXAxDxfersEXlYv8WDQXNRoAND5YHBypMMcwstog3esrToF3fk829tr44D9BvXGRsVrXhVDMwTCgcBFYbfq1xnWUfjG4tjxRDdN+2gljDPm7D3ulAAV8Xvr6bZxwWp7DMpIYBb/KPeUPBLD3TvUHtw3P0u43/HMmkXgXtswCtUYnwXb6K9nt3yZPoSXj8fqYMIQpTACGYccIqI/f8DAUvUWCAC9Lcg21/6YAtD3TYf7WqzTPSQFIKNnVcbfUfoPjDgWwCyx98xc0UtxcEwkpwBPm1c30actvIOfL5YkW27+XfQY6ehzJNiOYtt1vrY32beEOBhJ20X3/4FrDHhQt9AA4XCkPL/tWp2/cEyIHfGxDskvHGrmjtPYxiV4TOnyNBNUDA0hBWENKqH/AR5MU5MFBM9qyL+ln2ptxr13t+ZLGdbQs7prNpdO452DxQ2yFzCLISM4bDDIhA4fly0EHITxI8wMY3MK1T/LLCufN0leDHsraJFqenhwW88PSx8GUMfUc4UznfzFUq/hUk7JKDqkp14Acn7k1DTzYEs1ZZC1T2gMQ1Mz42KCzwFJF5kOWChWZF8T3B1frMBgoM5zOSvUa4PVOpvMkRRySOOGvwnPhGkoqE4NQUPDkQRsyJj8w08iS3HRI4Ra8JIEhj/GrpE5JmQop4nVcgAhuh/4Zt4vjNxqQ3cVjPXHKk7JM9AP82nweR4sfHnnpsszESnoeRq4xqoQyKzix2Rd8N/jdd2lhujc7G/oIkH8T3WbJ/nXKIsgagt5vrX094ASELPACwyiDysOaAFHxi7tpzicriHJD75rMsAuQ+hzp+TKgq8Ss1XUkRoYFiTd/ni7i2AWUim+M2flyYYz7Ib4Zpueyp8KnxmYfmrJ0NwKvADn+tmwZ0e3z4TEnNKcvPPQuo6hWW9GAMAZVYV5zBpA8w6HDdiVBSgrRZC+aiVk5Wo6oWbuYR1JjH/xFMlLPj+7RBZxBQdZAVoC8vvNyv6896qOVCQhXXd6kMczNCnBPFkHW6DpECK3Y/jMDHP+chntfbQjGsB+LYrdvYkP/r6cv2Xdu6WLNYYt2N8oGf0CJyoGynZxeTptjAeQXm2xpUh9imFInkjtdLyTvC3adDsqIGb3FsBX+/pi3xdzvbgAr64lCka3w1g2slBgVyu9IGhhQBk15X3SWX7ZOVZUEPB90IIKQrU0j/b0NNnmiUW0K/XPi1xpAIsa/ELDDC8drW5hiMBS344zBegc0JNWv7wigqMD0rdVDe4lruwRilWI2dyM8tmlWSvp1C+65Yah2pkcie166RNBV9RZ02hrnELrpGRezHxoIas4s2z32bfleSmh3Q8FAZLDSPE/kbzgysuBdM2IMQmRMkz2uP0ijgTHK+kSio3Ki9NLPPH4napEKSe/LPCkqCHOUpInpBzg6Lv8goE9M5IwUQiZGSsxMeTKJ6xIgSCF2xo0kplDnwZXLpdQOgmIauYh2iwaOgkXYbamvTMRNX45J84d2Q7FVFZr01POKbmFRLPX91jJmLscPJ1HUrq2oxrPmmpRDcw/jD3iFsNjDvs5ylL47SEWeBqpPc/TSnhd0p8tjfe4Gh23Qe/5/MIvruSgJD1nDScBJj2UF6KzH8amh0bT6K/MEX4kkK7ynlfcogIhsXhoWmzaP855sbUJ5auDZfyYGmzE3gbKvRUqBO0DCgOK3RhPzBXj0Iyxkxsxx85Yjgtfi2Wt6ZZ9N/6ZdRejW+YqZDIkGlfvTiOiEZse+BQFGojoj0OCysjP6oqHpn2+u2J5FD3eMokMornNJc7Xzem4xNtV8QyAqgI+9KzaXblFx0rZFH3U6sB8NMrr3PzBvqcEUtM6GRHN9iaozi7dWKrOZ4i5DgBxpOtioiQViCJqUVgUaNmmPi0KWDA4U6e5SO02S2/HX8D9UCtiEz23fDFKyKwqjMK8X,iv:ApZXLRvbHUHybZiJNOPbixn+yoKXgIJReCc6nFOgRuA=,tag:j/AnuoNtpUuX5YGgS3knDw==,type:str]",
-							"headscale_config": "ENC[AES256_GCM,data:p8d2LkNfANMdfDyE//Hk/4JHqJruWp6A0Qhzv83ohH4Jlqm0ua60LJtz6mqYM9HmdOcWKtnLQ143NVHyspdSNGIe0CLVfpyKbqIer9B1//quf/O/Lejr+Jaj2v+GccipEKn3CrOF1Sc54iFFWEl3bDM0Xk0s94g/92DgCUlD8uSNdVQv/3GKApbzIkOZHVyTaxwZiBYWr6TBaXaXw5S7t7TIejr6YnoO6D6bgJnJHT5XaDbOL3zPGt2x9cBcRYmNVWQsKLhALo/YT3/tCAJ0UwFO+M6UutLFAg81MT78Qc7URRzEV5zrZXClq1nnOzh4HoS8/HM78IOcjxGyt2QfH6De59LT9zzQwGxjwCR0iycyJXvG7B0HNnwRgi3jFaWWNsR1G2USon5V8bU0Xs7VQzAHZYKliB8u4MRCs/R7FT06QbzHETysIgyyhLkm5m7LdcP5FfSQLcF0ac2O7Hei19CBIAMJzf5naC4lN3Q1eHQAG6rVYsGWWNyjIkAkMXkq7XlDmfNiiOAj0/smOk3A60QteTwrorYG3I+Dp5dZ1PgULd94NDjVIb3FiX17QM+UlbBWXD+ECNE50AZVQpzsX5PLzpdg/LWznAF5a/FD4FU2vZPvPlZdUhGZbzHO/2iEyDjFl+8MrMEcUUJh19iYndDgokLnlCdp7upK4gxPGK05g81IyEF6amod9xGi9JhYyfeOPP8fBBZCqLS6t8cGo1L0Es4GtWq83CvHWhKVfPnwLPa0brsrhNp/R+G4b6b5XuZsWOyVHDOkwb7UlZ2q7xfBv0MWtZTtiaIMcTX8wQadThWRdvYghqpG/LzFaS+hzl4Dq7f1LtSpH0UIYdm6Ce1EaZTbiT7KS9OLtPMxDp1mRkaydWJLWLd0DVuPP8Ai/Wdq8LOJE1pLWW/ykXosg+i2mNzeNzwtNxsjTtsR/14pPOX0AOkPSL7rwsyenwj4Qq5p+UMLRd2cM7PdcDXEKHB/ct9duoxsRrBr9xjtEjghofIaMHrJ9cFgGm52BjeiwnM+bTAh/ha8srg+Xi+nsHo+11sgTmDvl56MOEQ8CW6ej3cK/1EKZhF5O01um+dFtHRoXlQaH5GW98Src9uuLIXRG4Ey0qIZtprmuuM0bjWo5cp0+Ze3ZEJu82kq1h+kI1w53YC2uOYzTxOu2gy2J2e4KJINx/+NSb4/xaIp+oQSdxCq1r/wH9V5if5O4FDYjHsTcqLdCBqYreWJuDYOHJqd41tdW61/ZIXajjt73S5UDdQXnPPpTNL4/CXHijxTW9VCTFHzclBdNe/urkwzjoIuy4FNcAbsYf2YEZJZ6ObVYy7rgZpfd6QFXV/uEYkEZTogmVXmIIAPcPd8DBJb1qUtQi+uQsLAjDrSf10oXFJumRk+Z4WF0UGhieqImdFyes9iImF7UpXvUuN4PRCmVcACrRVPHqMzKdhX5fjmKwqu/Bf4y34UnJGwoDizT0r/TNAkqsOmIO4+ovGgdlv4DGe0AA8VZ9uB3HFf2xeSPqAn0rhgVGHNuAwUfXeeU1SMb3n4SWTCAH/Zgxw7daNVDhPJLGTzO3RwgLPSJXh0uQVec9mgj2udsCQXlsVmNKBmsfg84ut4pzNnEMiM5otp7j2MIjna1yzRkiuhA5M49tQFEDj3zJPUsso0Ool6heipsNALnU7kn+tDXuOjuJwiQXssEN73IpfGq7sBQAdajByaNqnkBXsoVoYyJLiSTACNDLKwxnE7km8sZRc59XQ1g9GkzrdMvA4wpbzW4AX6TmnV4kQByGps9XV95F76TKysxbg6Sa53wyOVlhBWrjuxxhCamf3lqQC50ErvaoADM7H7uu67GgGzA29QrbTV/2wKkdcr7BSAuhNEEGG4rU13bW1uOWCDJX/QycNZBTpg8tsstLxVcq1pgbHK2qYDgpWLiSO++t8tMQVleM0UDg5hkANAyc7W+A6mL31lZzt/GXdVRxC9VnOjm0kkVLWdwPCxeRs1Z1h7bhzCc0Ic5NlILQmwihi4LR+0DJGzhTuQwA3yMWS01JFkMsoI/v/lds5Z2B+KhXuGE5SyXM84qrCSKa6aJPhKFUYpv0hWtAiyUYjEjDAjRyVz19r4T2Te7DrVEjJ+sW9pPQ7XuM5YLjydIIE/QdeR3O/Nvh/3eUvj2xZ6n599liGxJi0GxU1pC5Yb4tUXcxlHIdXCYjQDZ6Ah4xrldoupkX0lZCqEmyrJ/t8l6bHJP1kUVOH/Cpf+92nvTgNDGW/oTlc/pNkrsFGASrY+JeDXExBfWhh7zm6BuB/HladnkNfi2jpQHM8u9z3p8AsfuwbPujzUKo02Wz8sP04vdTuP7MRaahPoJqU3NlbMicaJyex8c4MUyvszqjtBUWKFjwl0oebsTzVd1+i0COorrqciOBwSQ0dIgfyFm/2hoa90tFEpbuIfqZl0XXiPXcNK5zXF3WlEb1WlMiDemZWd5tF+1twywEVnhBOK17MYLht27t8t/qmXCFbF9LQW/PQ8C/VmGRhyWBAgQlBQBioWJ8IFD6NT7cfHeTpqBlTXcL99qAcuGiKZsrRAUx8zT9GGBKvrJ+8zuuH+QcbEiIc0N3L70cKBJ6Js+kuWGKF9QdbOTzFl1hOTq63cHraC/1Td6IbzN5qNTHJp6ISWnwacA8wEchxsifZWLJdDFRgli1X8p315THw0IgTUZZZfA/8UarEs0r947pU4Hudn9N1pcGG01nqzg0ggnciA6JVxVTChv5v9mc8RpU7edTD/TzAsYzlekypy3kcxKro5rg/iAyPvHC2AhEymlWO191j9W3aVlNzxIYWQTMTuiJAPbo3kD35YApJUx9ADqJgwu0W6OuLY1xqkyp5qVueEnInaSkZUcHvZEodWfDTU5Dat5nH86xS7ujIEd1qqNsDj0BodP/GdqUfpf1OFz37J+zgPeYhspmTQTR/vDKG6p4TIHNyVNM5v01NOI1PFQLdvGVdloOLfqoo16eKbjqwSAbpZLtfLENlHna5DiJp1/oJ+LBBXfgBuhlEVkOc5tNPKbU2n4dUmJCbJkA6HB9PW2fg2eZnGlIgTixrKUXk041um+rfYX2Ovnx/QqdvxwPaIFJlflncGgLQ09YiBrsf0U8qscndo/D7ONWLRzPBmpDN3M3S5sxJxuR7WbSX9hjUBVlFW3sLfWoqyyYshFKgMHqC9nBNUuveo6NQavhJO8rmvfM5g+UNXUqVNRkO03Kuvm80Bowxye1JzP5hsSD6PxeBPQrQOSTMJCn3GtcpdNDLfTn5BH3qnkrQrWKlk2epUEZiSNURQ+vIo5do3EkWeT3kUZNHExksU0mIVhDHV5tYmoC+qXVoOKXSDzI0+xWk/z31E55+WE4+1CgteIhPyxqukSpafZfFJTG/EymAjD8+UwWRXocTvCE2/8uouTar4c+8R2giuVwAoljj2DWRgHlJgB+pjpbXGZzzgMmGM2WC8nBbMaEtUP29Y036gC7vFE6jvBd9oufQC19i9LHj3FHtkLgPXIkDf0UhJe5PdwpcVhJT/p38La7w+2E7iolSTp+rjYur8kRo+2iFe2QUrOsbMJ/gGk3+waQvjgTwGzjWy5+++t9/zFFmC3kGrqEP6dUt6wBIrObgI/UjWBi4B8HzJI1U+D/mnI3VUyHxvHiaJ6Jar3BzMCyK1W+mXol8JyMatOHMOto+T5DgiQj6yiIfKVcyb9bS2np2iHoXjW1zis9yRNRNhlktvrHu8E04fOsA66r1wCWfmYWMAnMFdP/slvww74dKuq6zdod42ocv+Yboln/MyQEzDKxJWRJhloff3Uotb14eLi2deb8l74E+C8BcV3eIEgIiDs4s8hh7jvDZ97FHi25sSgNxOPyYBHkGdPZRMkVGCvSzWCtOb+w44uoR9K+5q/a+bLH9xFPeAsK/jBHy4xNQbw3Gzww3qQ7VUdBlrVFD8cUBEzI/QRoV47904M3kLD/9FQkuE5CbTOiIi5xbqP+Cc2ZBCY8OnmuzWINAbmAi7JIVh4RDaAwvLHIfdS5vuENoa+3GLugR32DS1rL1K+RGNqfRsTdtFEbDo8jwiUQ71MKqBB88BuvGDKR3DBSkLoRhAKS8gXw05jNA8h/5x7oxTOOYrEgsoh1QFcK0o2QE1PqYkN1nYFctBvWgzV0c0xCUYV8ho8WXQjrtj5f+o53E9YmuIAxJOnOiREYgXWTFQw6ropvfY116OnR0woEvmnOlo2pFe9iajV5sOxX4sCJjAWKV3SL6BL6wQiGQblOyOYVNxOfVW2xn4PBfAyGMJfK4Bi0aTxt0EMB4Xc0eSP30IsdYZbv3qTdPpDK9m7s25CDe5hrQUe54Hpzd1xyXeWmydE2fG07Z7K/E5m85vl54NXs5/7s6S39XGLgUMoQBARyWAfl+a0f2LZtCCe5zFntQj9GxYtcPWR3LOhfQPlpW6HwFgx+e0fG7dz0ChVX4JTSJ6p8KP/zIRaP5/FBNsdqWLivmLMtQj/I9x9UXr46ccOW6H6u+mGyojjMbRM1nkw2YpleQ/4WVKYpn6iaRsBSkIKguRy3GJUDCBobrveHVbz/HmPEtVR5EOOuHtXxipcOuBqR6xHrnPUgB/BDZnYoiC2Z5bbrtvkXpDns0pIon2yZld7t/bMqsZD3LldSC7PsTLperE05QfgCdBV+6uHXSa18sGOpcLUIF5TIkOzPOIK5v0eA6fDH7a95wmQ7dMjhIV0q/z6AFqhquVF/EXRKrGYl9YkzYNSju6veu4HF36Iozyb8nU3H5rwrDvZ52YB5U9Mcs0oSmxFYLYV2SjsaedyxjzlFJz1qPl7neR8oD/hH4kRLrjn5T6NycIMaA+nSwM5aTFTkgM3kv0XWeVSxmMc6JFHd4KnOrvRg+4JlL8RTvY4jUuxmcQ57rfXpp84mU9d8YyMP6cB1WTUAMw2PuuQq9n+xfujelx0/vGKiWYtjQyqF+LEQW5TrV9fAr4dSy76KhQ8+y+aXB2Yx+3dbFifjKD864FKzypMLAGISoI0j8OezhShQB0XRv7b7aIdNRGeB+RSTkdWcYG5VcVCL+B+sVLiFSR9BiSliksn5xa2MckO5NPDqQS2vNTPLC1ayDE2im9qHQTGAxoNu3sDuAbJ+xYSFYNEQDervq1E5GiO79hut8l9F3i+NtLShBqoEgO4U1NL6CD+47RdJhUGWoZV58kJe3EdSdB+qa+olOqwK6TS3eUF50LwNUvkGakzao/LnVoS9aYYwAl0foM37xn5Qsh4E+3EUjX3dkIyjafNz9TxxFJzMThDygJoCv7V99FaUPYywsv88BMOJGCtEAJll5YpC77ZmGfAsUln9bXP2VlssyRSfnZzFU0atMocrHagxoEaXszoSWR7GcVwLic94yabmTIQeMQslHuAP4ZgNpJJTCzPK3mLD8KafIcwwTNazIqIglnbfmEefaCEsIadjVaQR814FKoVgpA+DhuLH495txmoxaf3sEzWIMCIo57KCsiNZVp6h/gL1hhMssS3490Hi6lq+qzISjicSRA1I3k6wBziwJoD49G1rLNFs3Kz/SGiTm0Ze9Wq0AB0PH51I/OkNQ4T7vmQRtdVsj96bRl83voJNVAQZv6w2cS7gYpj5E8o4KuG31hzAcXc6iXbrpBtDRIGjQOkwsgstvY/CAl8b1odT8bXLSjnPj+6gBptH2N04zDLO9iJOO5DHzJ7Uz7mW8k1OIo4g3xnsltIQZaIZryZAJdott2VnESmvjhX8gIsq1bhLxNcTNX1IMt7YPrTXPp7diDnLT81VNFifoxBjQ3qdFFwwvAmf17RuJpppnvGiTBC6e7yxjIzlIAqkkX2lkPI7EB9cVMhdZUHK0Z/3j8bs/7dNcdbv8Ke30VaOLwKMqhAuz8dRV1FCTMyqYW39DiRkuLdc5zjNnVqDx57GQRs7m6KAtfWGibYsBo3BkAf/CnXvQonFBf+xfUpDQ4sWI/D2kIOybEGBVmeGIUyzOpS12SnOkL0JjVSFJfLChkHm4Ehp1TuFWXOz7nvxy5t55xFljf5OCO9Ttb+bYL2/M5MCYYlE6VYlkurZynQ1MFpHTE7+AUhzKAbbcKf/phSm2P1PIR+sKM/fYyuTYhP9svl2iD392jmaHOlrXg4ZNnfA9RG3Yylfcc6CEeHJ7IP7VA/pKX+2XKvyUlzX/66HTYtWz4cTUNkZIDgv6sar4HPsh6UUs7Q8ryNfq7oL1yA7CkPbMNL+RULJ2T6jAGekKrPGg0vZ/fT3mIvYIKa96S4ppoI4MOGElCy1NXVL9qfceXlkmuf0NzJE5NYyu0fD/j887L6Q4D4M9X4XqjNAxUvq7iUoy8XwrWMxFSP86Y53Q//AX5LxFI9eQtcgxy4xLn+2WWPI6tUQBod+qjv01U5lqvayJ2inKuJoBLZHe2ULGLVbuZ+emE3PL5U0dFLWAT0dd6FKstcV9sWYg6eQsFGT9LJYtqfwMwFl3+O3Mlivk4Q9DaBVSOSubDn/dgIOb4tgc3+HRTXe3mmvnLw5of6GFj1z7f9jkOdx02FCgZ93oxf7ALmbDUKWk7q1Ef4eHVjgDzNq4n1V0ITa8ttVGWfKKR4wdLOplwrXXXdEnLWd5Q5GKulmuIzzC04nAgQdehzsOlUvUnAPQDLkBD0qnDz8FK9wVS58I4D+zLvtsTWCnd9gZT5W3fJXRLx2NXsZowaoT/8tF3S5lZeEfE+Bfl636I8g6i7LV01VqxU3Sv0wOEPOz7SBBzC1h4IZLIxKkFpOaiYqucyVw2X4HKjVsFCHMUzGc9+NeMQh2xvBgENnhtc2Rx50lAYu9mmaxsgaUP1kktxtcpPSed3L4YdnyZcpPycKq2BHNqh6g4gFatnwShkyDkwwUCpelaaMqi3IuaOFsr7DpIjq+rs6lJj4gyh9+rPanDcI0VpMjYx7sOS7nScO5wHkkGzphQGqPuQPWQjDILDu3jO5G35mTgP3ggycvOI8o5lEZWJMFH2m1wnEIpCjlexdM4dEB6Mj6NKJO5XOn8pxfQf3/HoEVmuW10gIlPG0tv3lVaH6sJu+hPQLDmwBGMsn7XFkV9rrR7PlOHXwswv1QqA610cd7vVvyglK7L3n1nRc/tyoo3y9SK6aFqA9YgAKlQaXbrTHKRuetESnP/2PvdioZTE+RIM8Y+HUWXkauuBcp/uDhMf9FdXN+Fe6sKuPNTUEqA8o12aC5UYtC4IwEIO4gGyWB8HU7f9mkCMysgh81iNLQwhhr5m/5yzsVwmgx6zTAL/HuNVpAP8o4FxJIkOEtcXttz790nepri0dQtiNt75CTqbv9kHViSRr0GL+FbtmDCZgWyk/1GrQnB0p3p1YqHbtkoFj5Op8B5IVtw4Ysv8sZF5iyFVj2hKSWiIOOM1vXk9BlFS4r/O+QbRhnomejfbMnY+rHnNHi3qgLfNh7qwX6fnEhZwJCloMetGSJKNZQC57D0tLXHMBUVOombrBmFZo6HlrsdIX/dU++dvJ+NeoBltKy7zL69j9wIxOzWt1xdobvReehnwRnRVoYHnxLFTUBqqFRKbQ++vUG+DQcPk19hi8lpgJRz5dnUmqaV/s4LS6A7aoMPLWJjK+vVwMslrr2K+jvNgCvD+/nmBtGGLUjuancIjZBAqkx9BB4gnLFM+NIKmsCzlxPdYMSfN/XOcLy52Mpg7N3Jr9+n+SeRP/6QEwZGcyb8AV8n+53ikv5I5PQW9BHAecctGjsH0UwVlSpTR/Qq6glJLX586VsPmIoIcdHQ93XFqnwqdf8/FGLWkute0RpGp3k572FhNnnwBV9mRbf0gvlx+HYq1ozOO2KRWM6Wh7NZl7VBYt4A8aE0zullFbyvQ9crIUc1zc/l2IHgeimirHDc3cHoU1Nn27lIDYJVfOzNUP6nwedVvb51RgAvqzcE/YYU44uwgVDByhA7LrjYzk+Rth7b04Zn3x1vqx82vQvkVUKEZQ2KmM80ZjBAhTrVMKpJvQSWAvjYn+JQ7QaGUgyVrwV9T8xWTZbCo0nfy5/KJMj7O26sq1splbXs3FLAKIcQRS+PCGqInPBb+vMUA9SRSLaV33WsVkdV9UTNh9y9szeMI42tWVniUjIMDdsMjH+g+0TWUfroLZvJ/PZL83FoM93ouP6i8mA2AJrmSYC+spTfCz3hbLqwzUY11mVi5K2aQcQv07GoXoAzK3+gGdCXfB+wpRoT2jhqBiPuHTF0bNzr3w4ecyY0JdMD9+HZaWlgLPebxZCF/NT5Muz7mH8Dz4z4dM2raLASMwa8plCsaKHau5QLfQz0GgycCOojHBG2acDzeoRTfiw0dF9LmfehUlVI34MXOq0oHUyFA1bQAsdre3eELlm4SjCpiFubSjF+iUacfysG4lmrXe4JjF0Zs7euu8sByVExFMbcHwxKaxAKuHR/fHV/NNvgM2K55HMszhHNl1x2JlzZ3Z0XHOrQIZy+KAWmG+hhA7HnagiTcKR3Z9gpbPZHmxuHMB4D5ozOr25GK1Fntpu6b7kZE1OCPCGOKKMF28y6vLGbcaBA93eqwRY3fggm6p+1JouxLhLccym1rLwbFsg70THBTFiCf4zanKdHd5yBlDnI5Bx/IAH+2HcIXWwhZX+/t861WkCJo8xEMYx0QXiuUjc1hT80mF+xZiAb+5bU4dRjEQy2TXzuhHmyM2nckxE2NM22Hu953vYdtoRB28cdKWbew49XNnGRkk9uppVM72SL1SEMaW20p7WVzrZiF32hxFCCjIEsPeVHncT6p0rZ01tnwYHGHtrLGthlNrlMpZJVm15IvYSctYtcbuPMatTsJK3SjykcFZOfaXzuUqL8KxFCUpDK3ErU43Ws2mkY+vGK+kn1YS7arEnDdR/35jp+6bi5UwZUiDmdfjDW8EZMSK2rYL1De+JToP86V8ztKP9IhY3UAUH9+MHNr+1JAQOc/ZgjajTnJxCPD/DbiRVTyp5X87D7y2mm6BjQFqd+IdC5Sy9mBT2G67F6tbPsrEGnqe6yiMww32lJDWgKUYt9otpWkEEZcWKqEiXpaW2s8LOj1RcR7+LPTPmCWbKpTtRLveyqaYBZ0pQ5nTg8BqzwSnz2QQbSeiVSX6fgZqk4y+n0fSvnBSIc03f0DqeeQmViGTWwSx2NeMmXwJXFfCamXrdCHkp+nOqr38qxtKWW/sjqnILs4h9sbk6TDKrGNAYHxXBipWamlv48p5JvKCefTH8Ewu36YML0O223rweLQgJhg+40oHQMO3QDJYeZABmUUJHnNRogXLm/QAPvgssdl62c23bKn6COFc6QwJZ0Mi+Ibjo+PUHSwlEV3fXf1W4ZwLwLfjem+bx4QkG6Ujmo1rXI60UxZ4Y0dnFxkjmkVaRxy30+4pGYEBC1idXlH3qbXGEbFOPXaiKZcHfdPBxmAo4r+uF+34EeSAbFx2zJXrGiRYCbQyJoH6jOqRy19gTW74PGZs1o05PgUM/kBJHIiU4dXRTqBUqlpzZPxPpvCUdj6WwYpImo3ic97tMwrp7kWCHxL0B/Nr9zfBd4zy3idv/W58tlYLOoGCdwsSvTmxp2YVrWo2BjWMcGRUTfPPgPOJOzMsvfPhKdzzI+OFFHf6gQvF1oDPf2PdeZIFf15DpOysj7qmKraxRLTnuwjy1cU1j7TggojsoV9CQWN6/cAoCpekRn0aoIKfP4mv6KaexDWXv8ifxhYq0BpmBQ4KoFC2kB8WHF48tdaVL28Yy1UHEWz95//v/XiHbFRl2h0cg8RfBfOUnqMAPWqAPL09//YHSpZxbn77h1Zor2FW2p+4XX9KR65Na0nW1wTDi4waRzVbz+9zgsBwO28C9s0R5f+kMIt0/1bF3D+egAst4fACTVGP4yQtexTZRdOYqIfosd7YkRi6zairGhH9AWaSAZTIhbayCzVLppyQoXBYn3L3XZqqJa6kPzrA+Xw3dIoU70vlF2VgpRVR3Rm0sI3IUoLfz4Mz5ABjxtS+NHC5LN/wMg1BY/XFCW7u/hlkLQJZaibUCy7WoXjPBxaJKClG+TngzCAc2AgM0cc2VuIncAwNIM+6+agDq6+AnM5wLoOQoFuYYqhluNRJZdsqQWW4heATBBxKkKWSCNyV0q00bcsdorjdB+KcdBB+k+ul0JHiYrQ3KNGoYx9CqAZnXDCpI6B54eE9WWr4DIVvMENx/efTUdScYTmszBeZtgIvHVOjX1gu4oRbyL4yOfIqknPcv/nN4pEQ4jVSG4g4goVgZH7GhmXqj9qinPaSNB443q2+NN8lojELJ7os787xuddwUK5KCK1BrrSoJHpQF3xvcDJhd9nUq1n9LCxwNGkQeTvxa5t5gAOwoq7eDDRsLrGpyI9kvNfBSk1+z53otn6L54Jf1sb0Isv5a31FW1Te4utJh9EV7UFp4lL8I495Y7bWH2Fj4PB9xoKW/y6571w8QbbIfUejwWdapgJoHvV/ZDWRg8jt4OZEg/irt1EV8rJwxKR32FG8DbC0MYP/1RCbu0840UmXhfjpDusDPIxXeJZxn/c0DIMtMpfntVLywfD2vjOkChq4LHqXhzE7+Vd2nP1soDmsmuuCVexHZmje63ojIESHIy22HI0j6CRXxGS/cvh1cq8TO4hbPXOBG/Nq0N+pu7st1pekzUaWDEzJPlR6KQWnZgWzxu3jcFv7yNPNVa0pF9TRi/18jyQeUL1kb/rUHoNsgvzhnGOvOJHTyKwxqWfpWMifzML6N+E4oQzvwN6VzVQB1aa/9KA3k4xhqbZSjMgd3ON6XhjBwJD+bS+9A79p6k9t2wpJ4oKJlKiOpbAdGCIxl+CZRDblcOYdRX8Gfe0VxW/H9dhicdGap/ODZvt6/mk5hcrt/mzwNHDa1NXP/5RQzNlgythaUgsmhReUoYc+m6KaTT9v3exu2yJSNo2DMQTj6vJ4q+YKmBJa1ymo3MQ5HRpxQem+PyfqWAdj5jEB88jHenUKACI9lc1kIa5/+cwkGSF/2DOvr3afh7GZ4d7fU9rh+5NUum+uaGeINKZoq+ur5dEqvLbFeLjIMwS2I0hH4bau9oCofMizbrm5OhrPUl/sg/80dRTCXHw3Pw7qyG/qrhIRHP5XwSUTrit/OqSUQSYQAQ5l1h3nkC5BWMFnABCPALNNNwOWMypGDakiZRuy3nX2dW1zOZDCKxvrL6hDUvxnlkU9Vc7gubR5BBJtR6zX/OuCX0nArTKVtuHpPT+0etaQ+e2VF7FiUN60GwhcUvqtQEAgWJfW0N4CvYFB5qSQEMqmhi0EfbpVhRjN4/KT0MePuqX6+FdKXyMS41uLXJbBfd3N6zuxtAv0Q0ua5pdhVNJZvUUhUN8PA5dF7NhOSpgB64CaYZXfHCjM+3FM0PRd6JiPyKr+m+ZhiCYUkTx0kWoK9luz7w75DZ5peAt7vgcoQoPFBb9vTJl3OjjoG/bsSViKu3k+wSdjU52vUZ+1u0wo/DHxjrjzIHzgT4HN2zQ7HbMfzR80Sc/Xc8rCuCYJQAOxTpyAF1IL4reFas/XBD5PwMiiBxe7asVE1/vVp2nvNI1nY3nIAU01rbYDDJZPvi/JVvBpDIRW6qDdLaTlW2piGicOAwK+6UiGHuIG+q3Ba5epjSqkkWRMK/tvmwnYNQLg8IeXnjglqwdWsLQbmznxNwPYwLnaN6C8dI+9IRh4GK5fqFTHrXFCb8vu27N+9qkpGbVQr5MMczo6EYEJHEnYSKJRuf2jTsOTGgdRVt6bgY34Y6Luh8mqoub0iaygXQqbcyEJFXrrkulBvWbmbWnRK7CtUuky+TcMALvaMy1dAfoJQBVDNNjFXisr2Mkls2VkuQI/Npb3K4Iv9pQJT0iOCtf6V1k6TpQc+hGYY7tiT5eG8AvSOgMTw7reUTyZWAAbee65y4t1OOXPFTBhRWKK4KiK2a6Z4zqv1DATjMdC7akVxoTnoYLSFHi2s5Xzx/4DD2In991Lg5eZzmbsQ80otpwlCSwWJmI0wDjaEI2MCEuNQiDZV8tLdRpjFdyUKmX/kiL3SBkOEd+IgyJYj4hRFgsDvF2x/hmFKPAVQ3ZVRJcyenJQ81xo4z7QuJgBtEbXjvmnJby+/3gBlcSvQlQRzSzC4v3IWF4mVSxe9yjg7qv6bHGDnyiI7cqs9THJF1SNbnJYc7rsT6UKk7mUv3JPtlzxXs9ZHRAit8YTL9LtY/kEooZivLv4CWtZVIkuMb3imN6AVVntCUU4reFey76++Ib/7EcJwKmndnky31pHEIfTgrlvyHkmnfjrwfoPKPSXoQ0tnnalA9OSWrX243yzCHmCNHyseuc/BfLLrYHyf416MijsWetwZ797hHDcIRXWtdVYuyiognAfM/gDGdAUu7YYVNkeGOLZpQx8b94A9Y7IVN8wOepmDBdvtIDF3fDd902T+B51kiemH1rNyFwzxPwktTxZcrXXSnsqPMCxbOYr8p12zg3LhVsjcq1HReB1Qd/jUi08Sgr3J+tfcAt8SWld9/U6gqL3vY9mJWlmeWQ4zo/uU1n5K15H2bVj7FTCPXefA0VVN1kBo6PtHhLbTcJqlvzNz2TXhC3+4ix/NQUiPQ0C4ks9ogKEyv/vNOF/fwqsPV+CeqOg1WQRmSs7l9ssrQSzmT4nx0hCK+vKAvkIfEsfOVH2CHcZ85cuz185niZNRwK5e82WRGrc8RKF+7BpuErA/rq6hLv4SNy39sxt5L+J99S1bkyTgkgC8gJw/uS4Gul2v6Q2eXb4giFqCznZlajvSJwKLAVv7bMj6kTN5LFO9g0uwkm9F88oXXBkevSPhsdRMHc8vO/aH51Q6pNQvqmtc3v9SwkXgTeB6d0YTLtYIXzTgLbY6B3lnE7iWLnORiYUsWQh6cP99n94DkPkPk6h+DwBQ2a4ndRfsnJWHYQjg6JBdsHZo7hdKnY/nPNStiOyTpi+AJ6BNlMiyVFItAyV7xZKzsAypxekzaS/UZRllrpMRsrvnzRYaagSUq8P9T4fjuzs/HzV3LCBXFvKzEu52tDShdcHY2hEywhPBSWegF5M5Fw+40iIjj0o4vSvSyb8VQBeWah3qr7gxjWb9EaG8ix3nq74uigRC+MFWFWFPb4NIQuhKb71rZJBqRmxp3ruc2LLDLdHVP3Ykvmp/BJd/cX+srlZ30yep8P3xfSZDcKftVzWaN6r+pMxW/c8L0ikQl7tqBT3fJKFhoUNZuth9arzTpVqUoIS96S7uxwLi6PDnMZcwSFtnsBWi1zuDL8v9D9Al3+d/7NUUrmUCxC2TDsznh76MaXB24y74LK+BNNW9WMqbBcxElAn5QKt1XfnsGN919yMzWDkfizFXCtxXVNohYJk/G8S/SaNbtYsLzIMcV/5tn2Pfjexrz+OTw/0peqhZKxbmgsPtg0BZExFrG5eo4qwgr636H60qzumjXr7UmJeoRD1vsx/nHI6DTs30s0NqpOXNLxzoewM3xZMISVaU0WA5u7JmyGl1a6z8f3/BZqd8MNgYWzBih4JjNcSVz1/fUq1db9lcuc1Y3XsOt/QH3q3Wr7H9tH85wtGg8smCj/J1aYEAKSmDo1TKFKG3BK25CgAhbM72T2VftL1YR/E3sbYBAJEw1Az4h8qZaPhycGOLwug0yFOpZsVGfhx/2G8rZa6Mo/Ea6x+4ffLkVug/fAkr5oNgevcHZF0SRzEFK4FMgf5x9mTREWTpRr4AcM3aksRUIWbflFGFsCQX4DaaW2GmKUuUmAuP8kIYZLtkFZ6eHcBCkFuEHDnZLuFdSYaLtbNYJh1tMTS8Op8W5X8r68XCB7nfmeVCowDFVQN9LuPxtzQEeEtQW3q22vPeyJaLp5/5mBOkrbrTQa8tsJxhRLCEqDA9jqIH30D9PTHZZxQtLG4OqgWxgAplwdr2AERCZrNVk/vOWaP21nBCuzP/V//XnaugnVAp1hVLYJXnPXSOoA+zJa+xfR+4PLu9Q1k3LMEn7Wr3jSiz26Mv2E+zNWPVvkMrXpg7ThXLWLhav5kvPlnuwg8plybk5eqOPFu36n7NrpFk3HG3KIqTA23cDtF7iP+dFZjLRN9hY62tmy2cP7peYpaI7kSw2byUG+fVU2vYxsw6u1DmxqiFBOu4yRKjqqJ4quEzri4VojndR1DP6AbYaUyH+E7NuWsDlCv9tcG9gnvcwbYQfZsRbc2x+MHL3xsOwK+zvAZbRjeoMCc+hFmcPDYMHQGis1a2SOxve9HaU8/ESna2G3eqJg+F6d3vrffBdSBQ/Ppb8uA9fj5PubEj1yGzmSjITkf4dpfsGJgD0ywVhgMKrcLsmYq7aua9m9rKhmYr0F3hyaoy5rLZqMjKta4Qkrq4x6WLYosNl20TDR+0xRKM2u+K9brbNBfLhGdv0GWGmeE1nBXJDMscbxcBun3R0oHjl/nnyE3cIzUNBTCRzTkNkWoL0mJN9gdqFdYbQCf2vHQo1qdSE/ux+iP2X/jrljTx5Wtez3+wxcLsKNnMxx3iZf1gLbHJQ4gg5iosPn/HIzw5VwE6qXby3qtHAEFut4Q1YZJCuvUH49joinD7cWuFmFNX6oOVr9bXMqcTNYHBXyaICN9UMuVbVZLmsRoB1FoQsprvUJi+qRmoimQoRq/vxFZoX00OELOt4rCH6BsADUG4YHmFUE/uQ30deMQ77QOOgd7PhZJVEQbVYh5cbQxY8WLsIuGNf3eetp2ehbu7hFr9Nya/zbAQw0O+o7yDbwT66q9GD9lPskpiW5pB5gKD4qZFxGHl3WXSukftyYoSYBMa4yfCuDXNdYnh2ZEPvUhBjOd3sPA1IQSQcpXfTyQmAZ/lF+A+MfAsDJLn+Ea16IFckwW0TXzySkptU2V0d80NugGbkPkL0oPZyBP0m0JsUztmxsmUEw+xWsWa+g02duXQ5uY5afpWddq1G4Y9OsTy+Bt62x3WOEQ7LqU4XiZiOBW+WwIiYLG0Ks32dtxvzPT8BVcKcw7Ca4zMyCCpKVHtaQGdeXMbCZne69n/+8EvCpfPSQfxtO8lyoS9VS6rr3SFEGKqhZn+Z8O+yFv0Dlq0L9LfyCCmIP+mkGrc3V/ZuSrP74/4WpaVr/fQ+YBiLLX4ODPipMFXKgkgIg3Y9CaojdehXaaLTFUfwKUaeM3ttBXGRURRpNX9PAZ7XKDxm9hjl5QLBQgQj5rzXJ642QFCRRHWBscP2BJVrnfUxMBJLL8o4JZI+pQukDDZ+0xVMkiUeuSGLxO0NiwitTMCjologzq59TmV4POQuQvJpBGYSb2MAq3fNKGFtvTkyXHmCKj0bOWbsY3hWSw2Cy22IxOFQ92BSFzpeLCx5Igh+BtQV7lgcETPLgEACpyRFEDzk67r2aRIZx5UBVFdLIwCuugJA8FQBRz1AQ8jxnzIMGSlDXq6Zr6km4fL4jcgIZpD1Qin4l9ce41DfEpITwB9Pk8OvofaDfjloRSYbyAZ7E+V8E4G5YqJ1HbjbqanqJMLulwP+2FT8KDonALTtyUyD6YSkPURjUmmvrBOH0a9QymWrJROg9fAKg89HukDl3k9x+a9BOyxSUWgl3XBwN0RlPxorjbxH7Zgmdgco0vsaZI7MB9Czx58i1IBb5yblQs7UgkV1+AAyqN1UPLnSrEbW85GskxXRQvx5+FLRY+6Wcm3KtkANaCf2Yjrart2nF8ttPjdQTPbzucY5NkfCXwZiRajBAqlj5KvTHVJ4hfA5ndrgbMbZCk2oVosZiI4Ez9sY1KURcaGcGUE/Zem0I6EUoMH/4n1MlV4jOJqQS3EGcTuRAELJe3/JYB6HM23bAhtKB+XGKSyOP3T9YT69ydSdjhrlZS+s69MvI9/sKRWoao2u5MlM6RdzZM1bUU5hoCmvTb+EnPPJ5T+ljxKqCuGYpAcVs5soSZqhbJFqk+7OGXSoq6mhLIuSMdRk0KdRQTu2MMJIADr/1nshXj3Z1FDqAZmEbBFZPrC9eJUXFnZBgN5M58Fl6yNUUeyVmcegq8LR2V69FFTq5Dxyd6FQYw2az/UMwKkCP2ivT60tQmxjZiVXFFBMcnqslA2KEUtwA5bRpe8rle+X9uRacIvTa4NJQZu6A6BPypFwjI2btrC9lr86uGY1dvUozFQOOz3kqQaewd7tF/aRRC/pmBwfIJH/2FyAFdzOkYMTUx86kEaDcJ/crdvxLidp2JR+CiFUp0FED05f+Xkj7bWAqMUg+k7poo5l11a5QOAfk6dUqhN2Ksza1YzP1+DUt7MdUkc/uNrPzffNkXout6RJTxvIDmsHvo3uvoFafWrueZHei19M4ovtOmeB41Ys/A4NmocsaQ8QdwP5td8YsYZtmv/zV4C/enQd24ISVRCFVpyoyHO8O1mb/OP02gTx/vk7xkvZ+xhMZPTYEGYNXQfNjsPWwkxOPI2eF3N520fq0wNsPfBilkfcpRzzREvCHB9UqG/9w7rmm6f6PJosn2wmwntKlWThMuU5/W0exvj/b4aQsCcebL4Ja9yP1RxydAEyne2KsqIkU+zKTsOc1B4Rle0ZM5pZ7kgd3rgtFvmvQg/C5sDF+z5Al1IsIhrNYrQHAt3cds9JOpbzNrWqWTcYO0HLJzJnopo5bSgDEpUeTsI89Al6mBt5roV4wWcuQMGwM+uvG2G0aBP10Ibbx0pJZEMvCGK1McqxZeDHyWEdLNSC7INthMO7ZT5cce1fs0iilguF/vdDFfng1TyQrFrcByzcEV4dbmuFHPz0qhL/Fp83JM1H0LBxomfuKOyTHi/vkEK4fhzrP+qzEg7XI6ELDENHatgy+Lj/zx4QpWFMR+1oTird4G9lGT7iwwBSUXH7kFJUVq0M3zBsMY0amoosFaxVAvI6cSdMPxvjtnbFB30H5dDThIM/d71av1iM6PCCw1l8tH2Fly7tY+R9SZcoH7D0GRwfYqFZREKIqzGPxlAdGABjynE4qZ0i0/FtS9ovMEKpxIbZDadKzimIJBe21K/NEBTulVa+K8GGXG2KMa6F5bdGZrsZzdkPTe0vVVo9gakdsBhRBrYgJW5TptMYMmU7jcKYeRmBZPUrmMVjF15r82NzhlZg6Dj8c8XZctmmvmGs8F/NBZQUhQVeoGhicAUZ60IGiBkYZTJqHrGv8SZrJAfwi3gUReMjwH5jZyLGYdeXzOPiOpSsXohq1dJziPIPM54Thg7HS7UPWtr+zqNjPWf2AvrAU0FOkrtgfd8xdgMHT1JSml4OQ5WWYUw19cpUiBzhDwvXz0U9CQG06J/fkNBbIoP81eMa7irkiqt6nYPeovlW7SjpoZgiRkSMdwPftm5XIOfQKsEpFX/HI3t/kbsnYLDteCa9u3m0Z/qIxfuAhc+pLYAACR86Pebpvact+gen0Cf5K8FtPBGoPg3E6wSy/2slIFBsOFD4HzpOiT4h/K6oqTaD1zV8G2J2ghXJuQ/NH4I7zKOo+dpk1fDK99XWeQz8Z6edGYWbO0UTWL648XNBvp7VFA==,iv:6RU82/WJp9+D21qoGivBwqyzQVoxvsHDymfOQ5bCdkM=,tag:BjIQ3OKGP7kwhXOY+Ksatg==,type:str]",
-							"headscale_derp_map": "ENC[AES256_GCM,data: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,iv:DzbPzFYwcZ0I0ReSTpYwYG/QwOr7ZNl/0p3cXG9dVCU=,tag:wWqWuKlcF3bMT33X1MxM4Q==,type:str]",
-							"headscale_ui_api_key": "ENC[AES256_GCM,data:YrPHiwbH+boyHnUnPxpMXm7Gm9s0rVMKyHLk7Zyt5RdE1kRqtVW7fWEZzSM5JH1bgvjQPB+PrlwW8uW7RvTkMg==,iv:ArivEoRT6gnPjTlBvooSv/igttU/K1+EEKMWUnIIoK0=,tag:++o9/WQP7ClpW8is8t2Iog==,type:str]",
-							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:xQ0k3YRcvvT+y9HJqm/W13GUYM3mKdS7TpzkLqe1y6dEI3OowkZhqigSVZdpMik/inIfE9ViVWP62YMfTccFdQ==,iv:Rlucj46axbdQ2HFFIX6mKvy7S1Ty0JcqhKc9io/aWh4=,tag:Ehx4/NrBFnfvpK1lmOPpDA==,type:str]",
-							"homepage_credentials": "ENC[AES256_GCM,data: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,iv:nj1kOyHf/HJ/DRhfRRlXhpYYrU9zPGbDIxpjS8NiMuQ=,tag:T2co95d3YeB1uBajkBssdg==,type:str]",
-							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:AwfkFt7w8bSJAtJTUsH4ZBHLtwjlV/BL7/Kq/atp4PFRcjGCRwWLRP3sWw==,iv:P9Jd+uvD0baE+L2DWnOe6iQDcwpUGbst2XliOe0as1M=,tag:G43dVBelz7IwfX4JIEHA3A==,type:str]",
-							"k8s_users": "ENC[AES256_GCM,data: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,iv:nB2XtujD3Bp2Gx2OYXmgq3sW4hE6eXAvX/CmUcDRGeo=,tag:Ic46y1iUQKlkru3I/Pez4g==,type:str]",
-							"mailserver_accounts": "ENC[AES256_GCM,data:rpfVfhw4pRmwwGs0G9y0waMvfDwToqCh2qcqzilE9PENGYpan7RJKZTgU68KtOdBxPW7UcIP6VzJQM/2g9m0JnMoEhhrJvbnIGwwTq8k3WlO4P4J4vhYdmsp8PyKkn/rrLHzPR9z8fM+K13D7zlbbx/GRwYBnkZxxsDENU5tTxHG1m7Ygii8UEXXkG4nobxh86D2z/Ul5xL2kwLefgCAPGVriuaL+J5yzCC+XNirhNNUdmDD5quhbulXxPrPf+c65CndsFHDOaat6QrviqzMbJdAqUadYEMTWtCb7OaFT4/J2fK53yIV6feYY4xxPNIYqTL7NSHLyRinyWoTds0q1EVZjN9hc/R4sIfY9Odl2nMfawsH+/jHvqot0Gvx6xFW3QoJCUrP4ndn02AxzdsdXfQESm5EEOJtXDDVAUScKSScRrdVFHet/0YD6f/mW2eRdZdQplym83EUNxY6scHJE9Sik9LzwOeu9uXc2B4MTILyvMN2mexHT54FYjBYGWXRU7r+R40TX77oKF915ZR6B6k2Hi7Tpa2MNdHLrhSKy7P9ZkSsEdumriFOi0D9zxjlVc5fH8mNBD8/owPcldGXCdWWkNSG806v1k+XHWRYbgCJ6uzOW4ba8NIbQu4IHJ+E9u5QbMJ+tB31X/kseM9gxU4ztwREl8daApCCOaTQG52RUNXRLgJn5bvyacbBKwYQR2PKNzqaOl1KOMIQGyUFHqVX3DdJakCdQe79L3Dplgb/vDIz1YstYxtH2+GHqib5nAxQZzmkjbWaEoH/8hNh9/M7Vhji2kPckFo7EV2dn4/myNPnegVIYJgDeITNXq/9Wq22iYgiFefiF2i65v8PycBXRox4ieFv3BDWPQFIQicjD3GRWbXibs6XZUUtjp5mPEsnCTcFs3K3KIE83Nlg,iv:RO5wkUNhllkq491XwPhgql2F5q8vVa7eLzSq4L9sO4U=,tag:XggmmnPY72xIWuxVSjRV8w==,type:str]",
-							"mailserver_aliases": "ENC[AES256_GCM,data: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,iv:jC0dA+ODYGIe19xIqcmo0KYsD1SnY6IBXE0+Fu8CIrE=,tag:GyTXEOV0SAiWbGSWXh1A1A==,type:str]",
-							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:0K0aEtxq56ZnFFRObdArmg9+2JiSAGTXY8c9wfNaits=,tag:dzHjaiGXxd5z6+hCkm5SXQ==,type:str]",
-							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:epKUVRF6w8asgMY1ses=,iv:lHXq5VCGIGPT5YsqNpZ3SO9rJAG7cPhw3FmQ+fnpSss=,tag:LOQolvy9S3DzP09PcHwWog==,type:str]",
-							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:YtOTdbSx7NuRQKF2ppl18Mlm63Jk9LPcOhdzLPXt/KeK2qmLcTfKFYypUkEjabbCfHBs2Q1BjYGeSj+8ccj+ZYvbFaKqgLZPU7kFs9c6VoXPRrj0LcbrzzHTyQTDDJw5YljBRXyHlbjyHs2ooIvveVsvHOWrP2GSxN6d3hs2C+/QtAl02cnjQ46gXY9xuzXF3oc=,iv:fhKWtq/uF+4sY8Ja/OOiHFTp2e09IIM+66Hh/ERzexQ=,tag:vOHlSv8jO/Ec2Gc5iMSbcw==,type:str]",
-							"monitoring_idrac_password": "ENC[AES256_GCM,data:LqK7+r00,iv:NPlY+sI83G+WOURKTt+NLSV1PSe4vAyxQefT0aUrtGA=,tag:lpz99yDn0/S7ph2oI9qYbA==,type:str]",
-							"pve_password": "ENC[AES256_GCM,data:SMACn+GC6Lgp8aHvJmck5kkvaiwa0hPf0VhKJg==,iv:OuVSAPBdw3u8bTj04gfq+JuHh27s+uzg8S+PgEJ+d5o=,tag:kn11Qt4clZ6HZr+PeMhNAA==,type:str]",
-							"technitium_db_password": "ENC[AES256_GCM,data:gfZwg8Vz12vqa/q6gdo=,iv:zQ9ICBKeQLzOMaLtK4ICdbmaGJ687hbtynLoAvfjrvs=,tag:ggYn0a9ERGxZUfP8fimXwA==,type:str]",
-							"technitium_password": "ENC[AES256_GCM,data:8t3k9b3NMkn4CxQ3vXvTRbe58iHUAyI=,iv:67Ei24UwbNyeFQxoSnzLDW6OXO7hrlSde3hBLWXbuHc=,tag:cZMSMZecs5AxW5vT4dk+sw==,type:str]",
-							"technitium_username": "ENC[AES256_GCM,data:chOxh6M=,iv:VYsO0Ycy3tiWjZlRuZ0PF3GzlLE9SehcRAwVWKsaZgY=,tag:3fE3VVhqSpKWJ8PtWxT8Og==,type:str]",
-							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:/PbQoYZHcTwrIHGj/NNDb6IZ5V6XsQ==,iv:aKQtt3m2wL2VOsJjjSSnY4sqtxDGGGYdZmSGrIUiFUE=,tag:9t3NsQkliSeUDwIRwqJ5Gw==,type:str]",
-							"truenas_api_key": "ENC[AES256_GCM,data:kzAhCIhskn15CBZFc+kwaq5mvkKyuLcR6mto4u63YGyuLtsGTT2z3Fs3P/7zKZLupG2ce8B1Sz/6vW1OsgNDM59N,iv:xQQDALDsEvwotsugBRw+MGLSPTsGfa7G/q0HzPh1Rq8=,tag:60IDJYN1Q2JCyOqtCTysWA==,type:str]",
-							"truenas_ssh_private_key": "ENC[AES256_GCM,data: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,iv:RfjF+g4Pm1Odh3STvTPQFw+H7LJBHoIQIXxzcUDfI9k=,tag:oVOzlUHSviQbx6i29mTOwQ==,type:str]",
-							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:BQ5ctafzNRtAMXmTvfVw7RavSb4=,iv:UVofCv/uVA1k+qcP1+p/cUCq9c3ZMaY8OeA6oylM+c4=,tag:rdWlg3WcJEV9fhzD3a7Llw==,type:str]",
-							"webhook_handler_git_token": "ENC[AES256_GCM,data:B8804w5qDXQhVNAcMCwIHScbsA/rWvn1tTgLmjB6ddgTBtmT7I+eWQ==,iv:WvWRK2gL0XXMoXK1xWwtCF6mc57+Guy/BH7C1F+VgZs=,tag:BwAsibjstjb6MP8hOm3hcA==,type:str]",
-							"webhook_handler_git_user": "ENC[AES256_GCM,data:l1SryAzGOnoO6Iz9,iv:o8WnQJZJk0oPEyMNOkOGFX6AMQjjkoT9b5ZYwwsI0aA=,tag:xnGry4odLizKzVpw+I3s0Q==,type:str]",
-							"wireguard_firewall_sh": "ENC[AES256_GCM,data:bEA9gusn5hWpo7dzEXLGxxCwIEooez2+XdwSNI0DKLGrReKtJQAnykDudzZ4xxG8/t9BP/pv2y5JRzfqgxdmQPJprRv1LFnPvWLuG7Zb6PQrSX1vR0uT2Inylcuh1Wq4qNQFAEoKKxaterN443eVcwm8wD50vvQJq2zuB0Biqsgl9QstQ2Ake7lLpyuevFdltHhdDC+P/f40O0T3HqxFTcRVEvyavii2p53F5g17G0vZFFUNsmQBF6fgGJPKEe9BIs183CqMK/UFqA5CkEsHoACtUVKPAYJWE1gQxg4EQhSAPOaFAkS/RETs6ERQSw8Qx2sSDv0qcFp97bVA1jW5lTeQwf6MPFUs046bqVZx4gVxPstc/4Ds1TV2kNncaGzDqtSL/N65i6h7ocXFsWzkZmvCrMXL/ERUlaSC69M9t1lorVxe4JGqbN3M/+O0oVAywkBb6BK+Rn/w6g0et0TpzYwFUcGKwR9u34Fa4OgRZEygdtyOh69aafXVth+RIuNybxoiwYX/c3YyY+4EyeV8GAQGlVCTyAsNkEfGrg==,iv:o22k1rBU+tYYTxzlgx0ICPutGBhDzYe7QJe4/wpBqrs=,tag:HAMr6NcJA2mMIHF7GyA9dw==,type:str]",
-							"wireguard_wg_0_conf": "ENC[AES256_GCM,data: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,iv:t4/4SLdTd7PbPxbEQ1ZxSPZlcrXygfT+CqrFjqkuHuc=,tag:tolHqtx0OImyuQ9kHVuX6A==,type:str]",
-							"wireguard_wg_0_key": "ENC[AES256_GCM,data:c0bIfwbW441HnY7FFgFbjCDD12d30yGx8qtKLzJ6S7bnvSqbeOTCwFL0jC8=,iv:DvsrqxmpVf+ZFfVdVCYSCs+Oa0jmoIBqEiMdsYP/TUE=,tag:/vW3D2MXpgWNJtN1kU/usg==,type:str]",
-							"xray_reality_clients": "ENC[AES256_GCM,data:IwdWeS7DGr4syQOJ6lG3VPT1r0j8AGG1tKXZIx1CG9HA6n7CerHDGKQyYzBEpzc=,iv:pNXX1/RrMAd3V9HUqRsrb+4yYxYPEaZ3oiusmetnD4c=,tag:ZNzj4tRyQHwJmUAPCLvAcg==,type:str]",
-							"xray_reality_private_key": "ENC[AES256_GCM,data:vAS6Zo/dh0sx4EmHsU24WZJPtu4iU0U17jelFYWmjiV4McttOCwx9pV3Sg==,iv:j01bwu/pWfnvXeM4FaPnUki+QTF2DElPKiOZKgbetKQ=,tag:BjlMS2R/LWyjQN4ueDaqwQ==,type:str]",
-							"xray_reality_short_ids": "ENC[AES256_GCM,data:1gpSm9WXVM+Naln0koWyoW6EXfeT5hX2ya14HCZDd/Psj6fYA2SVK1slfEXQ/QCNfIofbuBifMz0QlQmNRMfFM4=,iv:/MNnypqrvRTSjbB9cUK02xKDjeAW23ZCvTfmNKRwDlk=,tag:uBOYVjpTzlveYcYtVK2LOQ==,type:str]"
+							"alertmanager_account_password": "ENC[AES256_GCM,data:iZEttFF4VwB2W8CpYKrNPhVm/eE=,iv:9FM8wyPdd1rAUbrSdqosKxCRaKcPtUI7DYucCsdIJwI=,tag:pZBuFUEKJULjnQHYyScqxw==,type:str]",
+							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:23WYcpV1iWAiKStSYvAls8iXlsvOYJ/vwAmlwreSc1fSzqPy7N3snjcznMUgdnTTPS3/IQ7mH7QjRDVmU+tD466yirWEP+BBaT1UPO0Ex1S+,iv:1eX9nQcqoIPTU/O3a4FVyBT9XlcpYKzc+6vXH9z6lbQ=,tag:JGd5aPzXzRs0WhwA3xMuCA==,type:str]",
+							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:XLnwpC8Ir3f6Gjfw0eCYlMqi3FYZwV+VGx4aAxWRDEs7rK0Ogn0QUbYSmePJxhEniA3waL4z5Xm/zwcOtZCvAsME,iv:1hpaAYpZLq+aaBLFM0qI+fIHm159aKd517SJGLs0sW4=,tag:K9WPk7j0Tpx/X9FcQ0+uGA==,type:str]",
+							"authentik_postgres_password": "ENC[AES256_GCM,data:cSdfApREq/zQcpsErVjb8w==,iv:fYtOXAf7lEs1dD53rO00PZkLtwBO4H+OZThoh8729Yk=,tag:6U3mB16ChXlxY+SX67uzvw==,type:str]",
+							"authentik_secret_key": "ENC[AES256_GCM,data:XwztWnSnh9dIIM1TntiAwtYxaSNkuFTkfOEem8CQNTYby3Me6osakn4K9IR0zpBxuqL4,iv:YCy5L/JWbr58we5xoXb7RDF+eUUEmn2MP9EG6CL0BsQ=,tag:wjs2BvurPCcxUQskE0j8NQ==,type:str]",
+							"cloudflare_api_key": "ENC[AES256_GCM,data:chvGdpJfsytX0B6+fXuMc8mTPRgNWkNGTCUDj92QE2XIQUvUVg==,iv:W99R3EvpltZyg27BvgC5e6jY7RxMfuqm/tEeYq9KqSw=,tag:+P4vE98sxAMz3PS11gvfxQ==,type:str]",
+							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:9FlDqvJHV2OB12VhQvxLykqz1f7YDh6910UyTlTT7jDX4JNPYXjERWLjEpXzs8zFaGrSdjjvWNOhZEkUuX7GjxLYtR4OZqaDwfp3MVUh9jzae/S8+J9N4uC3oL/JY8wWb8c7/NrmF8eQawPL/oZXt/6DYTLowD4yh1H3jdeQ78LU7VxXtjfK0A5QLCH1NIVRC2tbeC0AuKHpwLoCP7KHMNI/FRHS9BOQuJ9P/OA0iY7eCJrWbEhydg==,iv:8HT/2Tu6HVofxuNUITBJZT6+WgJDwMMVB1L26/xpP+s=,tag:BFtL+KoZ67G/DUrFctgLwQ==,type:str]",
+							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:YAb3TlIx1Hh4p9ZJ26tQDEr9IEIYrKuLjpWjWBjvTYD7tBls/c4eSW9Otw==,iv:N61H055BVtrZSxeGuAdnuiWKS8RFm819N+nxaVsMURQ=,tag:oIo4VFncWXaXMyL7suXqUA==,type:str]",
+							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:GLPsEuUqG2w/w9pSIX8oNw44YHFUa4hKVj1D9N4=,iv:27gvwMH5iQ1Zm/tGpZAGzWmcoLUCjrBbjAHEnHDdM2w=,tag:vTauUgim++EMfJW0EHa3yA==,type:str]",
+							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:swYlAvfNVYyjNaG0wKDs13a9DpKi11Ffj4lfROvV7VbxXWPriqz9kxr8UWfIaPqWEqp0/T4VFzTTjAHfjo9/3g==,iv:LqmczFRdArOZoi5BCMpIO5jVCDfBd0mwOBDrcCsNwGk=,tag:TZvzJMSiG4k53uAt/ecwUA==,type:str]",
+							"crowdsec_db_password": "ENC[AES256_GCM,data:BjIYmlOt5R0z5q0kn8s=,iv:IMd+vCHvsg+7UWq5n46QcpcOq4XmuNHMNZdRLmx/4+U=,tag:y/TBJmXY7chMUOf+HBMsJw==,type:str]",
+							"crowdsec_enroll_key": "ENC[AES256_GCM,data:/sxvKYvce+WcH0/FWRWARbujPkBtU6teAA==,iv:U5XqIWY8P4RKfAphCqhWZsAE2j2+Z6jRbU8qwyhYbiI=,tag:E5oP02cMzP3ffYaIbvjwPg==,type:str]",
+							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:soYp/bWDNtWwLS+ZdQJ52iRQaCatpHjqqIBoFGFybpc=,iv:XsreTNhdr2e+dMB+d6ZQRofH+knR0ZeIhJRKHrgmbBs=,tag:YnZOLfB6XOAOmGt80jVQCQ==,type:str]",
+							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:EHDc17ed9hDH9nknShMBvcxSuN55daHURzY=,iv:ofkzQOq5B8poGR5mTXmO/XYuILyLv/BS0SG0BhVO+Fc=,tag:xUh0eep0nw5r1pI/QkR9DA==,type:str]",
+							"dbaas_root_password": "ENC[AES256_GCM,data:lvEYeTaX7txFU4M/6YWYvfZTPS0QFjIlbxefog==,iv:GA17ZmcrE3Ep20hffoH6k0xbR50j41S1DThAzAYXvTk=,tag:n0L8UA19ZdJD0M1qR7GfsQ==,type:str]",
+							"grafana_admin_password": "ENC[AES256_GCM,data:O1fzUpYsvNR+Cyul5ZFVWvFknjQ=,iv:xP6ntI2jq92pUsZiq2647Xn9fjpx5gN0Z0+7dYjaS4I=,tag:D+UtSG0+ppMK4mPpMFDnuw==,type:str]",
+							"grafana_db_password": "ENC[AES256_GCM,data:1BQPGg1UAVqQZyAhMtwOdMhngaB3,iv:9BnThWFSnaikaTOgjZ4+OttFky/Wz8AzAuC/d9Ng47Q=,tag:cT0I933mRh0wyK962wLdmw==,type:str]",
+							"haos_api_token": "ENC[AES256_GCM,data:HNdR6+5Iw1/sTUWqz7gZPvQy+pxBBFgm4T5bSJuYc5t3yaZX0HIltBMGa7qWw8IrUS6i5IB0/VHBvUenVWdXepbYR+G+EorDusMcHAYsAZ/OS6Mg29Dt+Zl58HMx2ztxTDJpvMi1ZjrcC7Uui6WVHSEkXzeWKD3zQWWJKReCFtsEbq+Ix9IEoEjB8/ZXXDE8T5Xf6QwVONwpfiL/wCE7d2fXuzLE9MegKyg6bWU5J+n3oqCnnelI,iv:LyvDogVgZySCwrwuErBYLlr1LyL5lC9zUTYFaLMZCto=,tag:kOzvDOZKb7O/9oLsS1W8MQ==,type:str]",
+							"headscale_acl": "ENC[AES256_GCM,data:ei8rWsnC/T2UQ93SGr1d/x4FZuMlUMSm7ncrF7q4UI9xfWNDiikDU0IMqDQRU+TOcXBn9m0Qv+JIwehn0tYwGsGANKu0uw2KvmTZG/s4DJ9cUCx5PM4dUkpn4a5yOiCC3XHr0oB7FMMOXNIujNRLWnpcw5s6XcSxt5f687ca7m5dEYgv5SV9qltPTeyOzM9F9vVGrnc34jrDPdBUCBHGDL/FiCjQDPRCfJFzCcU1bIBVdv5cLFvC+w1P8MueKMl9CZp+tQOsFD+8a1BVRq7l0yOTKbcqkkD1oVf7vDCl9+rx2oQ/kW298mgW+7GethgAMyMqeL4dLvYWe3F9kHlPHqRr5GUZFhFQ3AZHSNmkSZgSe5I5NZuWA7gj9Jv8UA5SAU3DWWaCgcEhijzpST3NJTSdcFl7F25xPyjS3baKvvB34JKzXIWucEXKlFBSzmjC3l+FzJS2qPLxlhK3oZWQCSFRTvxdIdg5g9PSOYrPWAuVE/08hRzuiPtHK9mLY4lpoJ71DraIxw77c80fTELanmaYLVGbuJqBco/rzvgxBpALv7Kf/riMiKFcy4xuHQlwA50wWkgd0oLIjMKaUoA/Qz4tuuYuE6FXs8qemqNBbFssfC+dQhUrwOSuh9nLbkwqFyyZ6k9UpT8FDPaodv/INp/wkIgkoEBqayBYWAsiga7Xds2qbkLIlup13+xRHAlcfmAXjWxtK3eYt2MtAxAGikVfeQXMrvGocfpHQikmwiZcmNE9k8eCXNsblAKxAvW4N2et4yd6Z/gqmSpGXEcq1PvTl17TtXR4XXZ8gINPntT9sJvOYagnUb6DRmwDYqieGDjN5uDM+S1J5ftubbEXNkB2OIMR4WWgBnI98BEIlr6CBPjMmPqlXgcQcUjK38fpHQC+Szz0bsmGKeCO3Jd45pDpz2/lz2cal4WFxmCRemZ/PmXTOAhNbNK1Ku7lyeSpB/6n1WYBcsSSXi494lltkkKtm3oFZuYiP82Gvz1uLYZyor0uhRH11/V6wuYxNEARfKqc/aaM79VbLOAJgCPPV3ikB5YlQ2zg5MPhH6ok5ToCLpXCi6WNJPSWANzoo+wDVxva4eAMEH8xHqd2QFl8DTYob+9nBX69Qti6hybbvJJ6QftwFDVyClfr52rIyLNh+J4kGhASVFa32KmcVU0i03BZulwELksbdhZbS4fVevDeJHczoVtIm956tMnV8Iw8dQxM3QP9D76fxwufSYHGeMceyPHPP/I6pqnXL+/M55Sej649wpQDzsTOG/xE+mx1GN88Va461v7ALmxQPVMgHE6YuvhszApSOCuuaCi+l6xQH+I3jRrRXYbnFFvyRTpvJa9nQebVgCEXTUmdJMUG5O/FNyc/gzMJLMo6DJWUQ3b5PsdL0xWkvhsPdUsc0XVWpi8AyfQ/ZHbtvSY9OlxDnz6sjOB1nX+6t/i4lgMWH09ThNQ3CBJSn1hACnrZ9TLsoL1yOPz/Suvtqsju+av1Qf3o/jhWLhyS94s8OX8A63SiswHhLF8dUe3GM+UVaK+U7iB1xYCzKZdQNCKWwGvhHf2HVhL56TF/Z21Zgz9OXKoXsvIsHc7+ELQi+Ja9fvo/aNJROIOl6AxYf/LFvcjwKlsPX1eS/zdwBWros7EN3DiqDywYLSUhQtacwzKLGiHehI7H+Z1flUngWWM2V6q/tUe/zoxvbQGayhWLFDR5zNHplnTYHr/PzUzYg/Qu+Ain4snX9nJ4OCZ5ygCxxdQvLOrvQYv40f3/UokJQ/Kee88W3saUIMkbrwhzlnslG4NpfS6p9XUpbWDCxm63ZCYMeWhzlGN20isS9AJQW6dEhBv5p2Tk0stEoxWqGEDkk/gdzhCnle3N9Fb5+10r3/2HqDxb5XW4MRlGcdom6owfJ3b5D7NCybUptWxkHWNN/lL2BGs/8yBKlcgMWNFJzyniRhx9JOmhYNludG9RD8qJsuqhgUxbt38lZI8gBJJC5dlA+iPGGFuB/ixvFqgfC4GCR/hLNvIH2v80+MpH8xkJK9ksYejuEsOabXXXPSwLy6zRBvt5qFCYT4rKKfU6o90VrPT7JDS0UtZLFnqWPjcY78OWYfKZZC9nhgeguGZdxgJiYfUbJ/xy2az9Oi4DFTWjOhkRJUVjW+2nKX5uBmmDL5v5B2qcPncymmaeSVWqMr7TR9YaSla44rCCf35SRZ2bFREM5dLIZ69pBwSK9xhxE42QWE2/uLe3MhsOSUdedA1bWSyZyzy3y+XK5Bo95NJ6AiUKHEefHTF07ywPs//obUwvUtdw4+n66efrnxef4r5huAASIWCRJEjPedcoQkCoos6iN1ZJ1CLlJBtZm+BhEHic1bG7v6sbE6QZ7xMM9LW1IcOnqOEzKc3EPVCBHzvTOHCre1BXixDlD2p9y1sA10NulvGA0k10pz+ZuBP8c3jXJC8rmCnrCleLLfHm0t3DqF1rq0hb47OoXQGLW3HQH84vQzyZhYvcjxecBjOdY+Nd27DUMDGnw/A4CR2/M2Rbh2x8w+Ci1AhoX/ndjZ/ulnJRrJVC8hQKp5CuRwVO3GFlrPxzj4uJHsVQgdRJR7R6+z/Le9b4ZOW93SVndUeBkVd8RxPNClySc8jIMS9N127UKDhmcgVYZVhQBDm7E9nnHineYvpPou3/e3yH+Ijz6hE0hGlptpfKOWXQVQbm1GP00+XC7u+PrR9HuSt14P1VVJtjwxV3ql1TQnNywYJXQVZ+P/WZffyakLyEuYr5OORUVHkgyg+5/d9klADQfiyexuhHqPU03uE/fmfKnEo1dAman/HrHEkWZ0hmmKjE/Hny5xQy6K4FuRqUFE83cFuPMiOOWjREgT49S4dHRKmdlGN0eoxphQHlOi2jdJMa2q7YP1yfTRVl+G6wkqpqw4A/gExHeRjDqnkhDvlBDR4I3aIdEDdnqDboVPs/BZeLjuQYJijxAqfdE97kdhzIHo4F+IJ782Us1CrLGbKsVWlaUhG20Tf5pfdAQrD0VtNPyh5mq6Vg+QtnbQBWPm5wJ7Q19QkakCblME8awzPh5Ff85tEbDIYuURyv8iPqnuSyjeSREECgDbzwsphZMRdmDjaZbgkI3ApDBsyTDnOHt4d4RAAikabQ3yzLz/6U3i527xsGu+uCh/evBe21L1bGFrjJGVK5MKHxv3MtjbbOUDNhTDkEunkHfZ8n7J5Ad2koOx4YaQGSJRcm0RvF9gq4NbltMDo2LaV2auYRRMjKVy9gSKBmBq1Rs7IWfejCSAtQKLjAOnOKwBDtO//AH36TU8Lu9l9s8vxrTc1CDMhzv76gcojqv3DU1sBFDqBhzXQeyhlCoQUV6iKF+DdznUhr7LSpu+ttnwdTNNmm8bQLJvlaIcS5bt8RVWuMUAp/PAnX9FBZqJf5hT6fjcrNbhLGj1Gxhe4qEk57FfNcx12egjvEOpvK4EoGzu7vypJq39H8msnKeHJjO7Lol9B4rz2b0ECOrL6lN/9ZFW30AX0e8G7llLswqqmaa+37AA+APSollRRviP/ITH5RQCVqjQOBPKiTtzMm72XlI7woOGywgi85TCWNJH2zx93k8nw7VuWq4DlEhLnnIP8cB+7kE4qqLfJXgcyxn/WG8vHnbUjEPGMwqSfnKmddL7D8s68If+Zt3poCMbIe13MRjz24N4DqDa6BZuelfUytmy8fgWxwVd12kO9ihIJDkFSSjqp1At+IKZJHn+Cd4G+dQuPk7WTD/dbTpmXQLvIKVk8a4Ri4ZalVz+TYSTE+ZuzJtU6Y6bru77BBgu+UhB/WbFp/AsunytKhIGuuBBqnv+cpg5j0SCnsslrriJBedvyIIZcVqKQuaNFlhcUmCkmEowQFOQd/raT6tbVBMTU7T5ieFpXZLLfLDpBbt84ncBLPyj6VlmtY7uexRIu94jIoc8wjyeEkBw91Tqx4uZna9lxDswJCfp8VQIFh597JRdpwm43i9R5Vo8uE0/wXOOmzd6E3gl1jidrU2w40XDwN3qsUIDTQtwE7lwv4vEjPxXe7m0PoTVmsj4Q10CK6l9+OmxTOmCo7hBhmqW7oAyLOImez+EhTVj/RpVxNXIzyofBBkAVTuQ/zenV0VaQ+g1dcUDIGLrlntFChP+rjlEzRywM/fh6tlUqzNmkjd/ZltjvPIutPaRG/9C/CZvpPMjm/HkitOMgtx1o18to1BCTEwIMioP9D4tNzfH96aOenKsqRQY9aGyLqVqZgXfhzxQOyJ5DVLyoUntXJVX+glOgMD106jRQA1uVZctnL/C7oIfncjI2wyBoeKxms+mhbHCeiKScUjj1xGvBvTzDP3R3CbVvKrgxyctmGY8TGz0PPFG2rwVXev6CkDVvhzRRVlkce+QRXw9/JjfZYaFhi4vUnj+DBhN7ESFI69GnlMk25vVVFrykCjrigfNPTvPWmzmPJiKPyZFeRW5E8XXsFm7VLwkTSWUgZVNc0+9JBLU4q1wzjFlzRNAolc7SwwfWDe6rZNPnfZK9dR899bg+SS7nP+eWsSeGMOG9PHzLKjDLWd4XprUxaLLU4tpbOHjbXBBSFTJMLphdDk2+dUX+Qs/+J9uGK+jSmGXenoFFIQKnwerJ5cW+DHU6uKm+N54lBVp7yu4KkFc+Lt9rlZPvqhqhemgy72Qj2EnYu2DE3PSDGJOY4qBkhFNB2qxD9R+x5XMhUD0KiSfisnfEipwSveILtq9AFWsxQRsJWFONl+LnDyJh/+h9vJLXeIps5hzURQtIKOcK6n8Hsva02VARubHnwsEAkrXP3p0zpDRRrQZEoNBbwjzpXTtiVhha5z473wTFvmMLL9dSVp1hoXOQcBmRbEhIXJzddTLmdXnZiP1PlZ7uJukDqPb4AsKoJ3UzmGu+i4+SIr/DhuREa,iv:GeSjxapkCODON3UY5aeF5Ywyc2k2zAI2KHTaZFDOb+8=,tag:dYFxjn0o3XjR9ayQYtf+eA==,type:str]",
+							"headscale_config": "ENC[AES256_GCM,data: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,iv:DDCokH4ny4YRg2dJnkpU7BJwtPPNFfECqbOFQIErcw8=,tag:7UVqVzWbUg5tErpPs4zYOg==,type:str]",
+							"headscale_derp_map": "ENC[AES256_GCM,data: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,iv:M8jhLtFS/ktk8aEPPE34RG4qBA+1oiryaoxIwU5ntJE=,tag:UK97fj06CAtzzfKtvqj43Q==,type:str]",
+							"headscale_ui_api_key": "ENC[AES256_GCM,data:EKOOXojZIl9XE9kTQ68JSFDTfbZYnmCjz5rPudjrySGJBFR3dr1Gw9Bjgs8HVqEZssvJicjC6oUSJjJ/SYey3Q==,iv:6IxUdqrzpq4g8v/u9UsS9m4FN+2jVHX5Wcn20H4uTMY=,tag:F9g3uInx2Ghi6AyT7uTQ4w==,type:str]",
+							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:rG3n1cxe19DpXZTB3FI49WG3XXuc/EF5Wo782kCp2lzgVvzm7uDZ7RcukDM7lNEIe9w+0rxL7nLLO8I6oymfww==,iv:MlXZ75KvHaIw6jjQyEyTyGdmTn7SYJMloE1gK3/sEPU=,tag:2V6K63ppR8HIFTBvRG86OA==,type:str]",
+							"homepage_credentials": "ENC[AES256_GCM,data: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,iv:15auu3BL4tuO2PLxHHtUUsMg8R+S3haU3PRfUtK4S1A=,tag:22gILayo12mHOsriTAPcyw==,type:str]",
+							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:rNRDgzVF9qg+IZrHs6PYvkiTsfJ+K6+EQL38KvdOMQB9YK0HKdy2zr4HTg==,iv:qiZ0zMZU6b/6uUdWkPUKzPTs4D4hTfPznBVdZwyNDo8=,tag:Y77e1HmZaPzpVWFOVNotag==,type:str]",
+							"k8s_users": "ENC[AES256_GCM,data:MNANsT3le80oCSu9WQJi590lv1GUlNbcPEtnH6AyFNrzVn9OLjUxGtFuVBf3JxoubDKpuowMT3vLvMrTgh9Q5a+UDiGyRsBj3RMsRqZ9jeQM6ZZK2ScLDJGYxbHQr+xb42zrpUzKzk0rnR8WgoZcPaV0/nQPqGQD0dCzn7sdixcazly+fPzbZixoRGQ/xjnGU2E79T0NyMuHCZYBecR8RBNVCJeBqtic/ZqQJIzZxq0vroNnpcXTxhEBApYmvWrQ24Qz89i3qkXZfttxllhPFiLgly0sIcmjm/HU4p9xrxnHxM+Id3SD+3eQfOICUSwntx7hFZcWPHXGsKsRffNnv5B4lWKCkoBFOlM0NhYG7XM0CTEwS8YcZYlQ2wBzO++QtJ55Dm14SaSDww9MAsZCZhaTyP/hCyRuI2O9eB4iZ0YggZD0X+YAGf9raoW8LtiI87I2gv/en0xSFGvTYSzoGfhDSrp48S1wRhTWkvalqGrT8PaAG9MCh0EW3XQ2Fy43a3NWGEeCBhLCns1X0iGUGEdb+89rCcfW/Pvk4eQNko5nxAYReAZdhRENSTJY5JH362dnWeJrXi0/x0dEbqkgEPjJYi/EvDYcHR4VBP2Ej2xU1XDWcLpekT7WfP2IQBvgpinr2LMOnfLmcjMs8FsX6XV+QsTYxmoEck6wTgOsMJcJgZk=,iv:90vfQ9cBh7prR1rX9EemTho0vk9d6zUEHAf062VOzyM=,tag:HQdLK/MyEjjfajC+SK3ZPg==,type:str]",
+							"mailserver_accounts": "ENC[AES256_GCM,data:Fou4mRjjsvxgbmXwhuewiRKyeSc8dH2L7ofNYuGrU6GO2SBTVMWkGa8VB/uudtsMOB1SXrlCyj1cHHK0EPbd4TF2Hlor/g9c4iXpGSeUKx+UYqeM28/7NFrSc/shsb7M5XIZAdrTqkSzmeKXzPqBqyCMSbxnwHsIJw6FMX1bndbnU3IJiPZbcGLAX+d2LOCztnOAqvXRfeYK5vPnHGZFzqwefo2/8u/V6uFmyqZc1a2fIJXDc1Zwd3KVGdfwjumKg1luEKGGQaQGqBXvv8vD18r6P7P8PfaoZpUWHpND/uZwn7Xu1nF64TRoOqDYhNZ8F8eotbfcyuofafb1fNjaFTe4dQwQY9lra7KZKtdtSPl6kpSvb/IxDgSabb57+QB+dH0gcbTYLwC/frg2YD0JWeJWOsbIq9Kb38/e/gGTcV9rK07KWq6+9iXBfhoeNLetrvzupqntV3bR0suppB1C4Mjnip5icU1+njID9cVEVuEPi1n4q4NEBuq0pK3PbvxjN7rlul5QXInXFZiN5oTZMXw8R2EXQdiAocYl2YI98Qllgy8+1PS+vp+b52q8CLbtfojl5RBcVx5ICQ4kEIFoxJtF+/mDHI6E0whc78BPDKr+yY44zh+WvG5hA9Atwt6olEhTD+pYGZ9GQnprZz+Xw7zQG7Z4h9klfof2ARwNMB0zCxbm98Pdkn5JHnNcY7HW6CDu0S7hmasDno5u2x5Niu9t2j6xhlF6mziXziPrQ5ytEm9l4b2AvDpnMJQDl736xdH3NBy4f+RJvL2EH4P6TGYd0/1MXmmUkiDuvTLuz3LZ6Qpa49+K28kT/0SpzWDyByxJ2EuYnf8hqeVgck/LfRCRMc9wE8b69/2DP5iKZ9ApgjNGp86qiSWtfmpGgQpLYBHCr8tLTwyTB4h0x1dv,iv:mytdJb3FfonGKw36wFrVP8db9OMZuV8GkdTdXeDAiAc=,tag:9ClihEiQ8ZCC/zcHgc5DJA==,type:str]",
+							"mailserver_aliases": "ENC[AES256_GCM,data:nZn3DGNusP8pCeYRzy1cILthtVbIpwRHzt3SaiVWylKJtPHfc4MWEC0S1GK5d/Si9/FCa20VhhSPSUPKjLmMuC02PzZjwGoprmzF++WH4RfTNpWLo8Buq8JWl64QixLXbHa9qaCNU2n80UYDUtg8vLGjXL0xnAgll0HY4vOhULcB904Rq+Y9lLlrw6+JontiE+x2zf2gc5+NUzdOaV7ffaCU2Hl+d6RiqznY6wBRKctOSy3plLEX3BsuhKsyHEYmUFNtgS3qXEQjY2w9MlTwrT+Srej2awckBp8gukUx6jW07xZDe6PUDg9Oonm/rH7robY6DghIqPDQBsjxq1DMEwe9/9BVrhJ6tKhEC0c7uZ5U79X5DAJx+NCq2yJ761QoBWKtO3KhCNZxvvBv1qqVbQrsaztxAQXAhgU5rgb4uuCeqEtokdp3OF7+yQHJJjyhv7nswDv8bd711MspTVVDJ0yIu9viUVgD5HjbRgSaINsd0LltKnr3udIGl3U+XI2rYTA/QaLbqBCliSALmVQfw3dqQh9vVg5r/ovpwc3zHQ1n0S4fsqoEcmzI1buHtZcxKbJCMmuGzRL8HVfngpLeT/+xDT61,iv:Me4UkSpQAF3sBLMBg9yhsOCb8UfOGNkjGnV3vybXhEA=,tag:yd093FgfVQljeHsJ6Tp5zQ==,type:str]",
+							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:Q/09VyT7s0/OTH6tzdFOKiibiCIbAdgYvdY5CxFmlAc=,tag:QtwLaoCeJ4c12gfWvuaTCA==,type:str]",
+							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:uy+9uJwGso3VhQ+vYKM=,iv:TEF3CZP6DfpbxqrcVcT8dHOFc+HcFZ6NPS9oTy0TKvA=,tag:pLFPxqmM/u+vnAQ7k8QBNw==,type:str]",
+							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:d18NMBzczrKWstj1pI89+LXBUZZi3bfrnA7ckqdFojY6b1HNFp/OJaht7ED0VMU6e/yaov18AETKrtiVRhPbLJ01PLOYJtXF2nmqUXFKv/AEQrC1waVJuohHag1V+tS8Yn4XxQrh53b31JGQK0hQsMXW1vy4qwPAuPvVas31vOSF077MntfiZfg6mM3/1E/70xg=,iv:+SMzRheS28HnNgwxIt32Ezx3OvhWtGjXNW0NSKJqh5I=,tag:f7lhGlxuoiOpCEnfWmNk6w==,type:str]",
+							"monitoring_idrac_password": "ENC[AES256_GCM,data:dBG0J2s8,iv:/9nR6Y7TNfvHCgwUfnZdiMY9LsAKGs6rFHiO/W1sSfU=,tag:1CdKd1TXaxWK65udYMpMfQ==,type:str]",
+							"pve_password": "ENC[AES256_GCM,data:9Na1+DeSDX52NTI2jqihVIT9J9RovK8XTGVjlg==,iv:/GJtjk9DAEm4RGTxRuDgE1ulwHeWFz1XcpwX65+4qLw=,tag:t56l5hA5WrJ1vo/8xjeVcA==,type:str]",
+							"technitium_db_password": "ENC[AES256_GCM,data:S5hpwq0Fgnxbc5UYOxY=,iv:25x/0aoaYIjYaFP/0u6Wh3EKZcTOewYTS0f9fzHF970=,tag:tra3jKJIOdS+0Cw2vaI96g==,type:str]",
+							"technitium_password": "ENC[AES256_GCM,data:sbQK46rxDjQqC+p7qmhACy5zNb7aaVc=,iv:O3jRzNQvR+/t05EkPQijP6mCkxJBFhzBSSZ127SLrgA=,tag:1XRh375Jc35o1J/gLhXegQ==,type:str]",
+							"technitium_username": "ENC[AES256_GCM,data:cK8rAm4=,iv:uibWgA6YEtq/BCOLR2v3ZrxydgPwZuKGL4N4uUSGefA=,tag:dDFBqflR3nTwnEpx4/1DrA==,type:str]",
+							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:uAHngK+upSEFIcp8IDBBA8CsI37drA==,iv:6L5o/z/nLCvtGXubvZhLy/OyJZ5NpQEcwCZmhMDT5qc=,tag:FOqf9dAUdrh1YrcSDzPh5w==,type:str]",
+							"truenas_api_key": "ENC[AES256_GCM,data:8+UrTEBfOUWyGk8k2SzzKws0ecs4H6qYH1xq4ENmZfz6CVBimzA0DXdNKPKDvT6gc2hGwy/iAG3ylqqHfE+TevTS,iv:1fJnj9kx4hf0UGWgO5dXMk15T0sIDVlAd4f/9XWqvUo=,tag:PXjX+8fnpCUt0Gk33b9UgQ==,type:str]",
+							"truenas_ssh_private_key": "ENC[AES256_GCM,data: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,iv:9sF+iWW3rzEVPsETvZgBTg+oiyuvzT3KEUSjVsTqVbc=,tag:Igz0/imI2u/h4A/WjJvhFQ==,type:str]",
+							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:gi1rdy7nOh9wMlYqewfD4sN3VeA=,iv:xUiy+uFiRoFiHia7IJi2s+zp4itxyfrGDFprpiyed58=,tag:P7uRIUMowsZOCRB56lNW+g==,type:str]",
+							"webhook_handler_git_token": "ENC[AES256_GCM,data:lqo44UK9SgqG1OAyashr+0Cy94i6GeqoRpyM+MZedxiM9obsdIIX+A==,iv:uYY6EWz6+ftuZaj45PJZEwQk6UZSZ8GiR1TJ3ItyKYg=,tag:+DbnbN7KLZ4YPWCyWt5HeA==,type:str]",
+							"webhook_handler_git_user": "ENC[AES256_GCM,data:KWR1qAX0c0ATWeCA,iv:7/GbsGSnUlvwv7RoZBGFbZ5i/XEOpqKjqtLeTkRb3Lk=,tag:s00vPLjR4+QWQkQTPwliKA==,type:str]",
+							"wireguard_firewall_sh": "ENC[AES256_GCM,data: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,iv:wuJVZTPpWsKufDYkFSUWYNNf7K/NQ4KsnawZtGqCVhY=,tag:BF85Bf1dpfiw1GoIMJ1iZQ==,type:str]",
+							"wireguard_wg_0_conf": "ENC[AES256_GCM,data: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,iv:Pa62xCsMnwsDZ877T+qIH/yZEOVHpqQnZMkZEZgkcb4=,tag:B5dd6ofZ5FmOfmDY/WIYsQ==,type:str]",
+							"wireguard_wg_0_key": "ENC[AES256_GCM,data:jKtm4Vlv2glCsx59mZLfW96nc8bLnNvdZahkUaMRF++v+XOuU8IwdTPN3f0=,iv:2rdIy8fCVdx9LLJyQWKY/43h/Rn2WzAq7uDWWUrFsfg=,tag:KYBj4KzYbMdbgZ4VnT8SJg==,type:str]",
+							"xray_reality_clients": "ENC[AES256_GCM,data:btlarhd2LJQ1IsMdLzRbd8OT4oHJfn2+AfV29gVSs+i6Jm+pMWd+Gw4aVNGW+j0=,iv:LEeETA/dv+GwgBmDNyhQ1oYpN+uHSOemQhtW36/A4bU=,tag:M9q7aoJA9MyetlclQx8pRQ==,type:str]",
+							"xray_reality_private_key": "ENC[AES256_GCM,data:V9e84he2SSH4Tb5rvQm4LA4g1mGdPaQqmlOxw7ceGNhz5+LKmToklGe9Tw==,iv:5+hc0OdT3yT/mwiffwmHduvPV/EaPmJDH9peh9L9qpQ=,tag:ZNNnklo+ncku5N3kqx79Ag==,type:str]",
+							"xray_reality_short_ids": "ENC[AES256_GCM,data:ZNiTcC/MiSjxi2cMXb9Vk/H+qV13KIzdyM/MSIXaQfv0ud0IMP1pWGAntti5ejg10+y42NTQe53Vhzy4y7rZJUA=,iv:25I/2FIaNB0qftPt/mREY8uphSwwGch97CMqdoOUOrc=,tag:n97TpKOOoo37Cbk3Q2SsYA==,type:str]"
 						},
-						"data_json": "ENC[AES256_GCM,data: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,iv:P5Oq1T4VUncw1cTtPjEBlca5/LQwiTDFrinwjD2GI7M=,tag:oguaD6H6Z3sO7UEiiBgYCg==,type:str]",
+						"data_json": "ENC[AES256_GCM,data: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,iv:WJ1NnUIgNoT3dakOUMumpy00yx8mcHXjRNn9Km8VH+I=,tag:pMwX5yPynnDTGiDfMd25aQ==,type:str]",
 						"deletion_time": "",
-						"destroyed": "ENC[AES256_GCM,data:vhA6kBI=,iv:Da7L3MhM0hPyyPkK7PdJ4/0xCExNabuKCyTQvUg0XCc=,tag:AE6PMX1WOZ2rSqA3vlidfg==,type:bool]",
-						"id": "ENC[AES256_GCM,data:vKepMUX0RyZxWuxIKsr7RrChq1I=,iv:7BlXdiweXxDqbxTU0UcMLXQXrDnI8EQefIXF3Qf4/wE=,tag:Ng/Koi6rWMQS3Ly1UOXXiw==,type:str]",
-						"mount": "ENC[AES256_GCM,data:qzv04dQv,iv:fARVoeNzMrau1p7my5Rt/F2pzjPXQSlls28ldwHqwyQ=,tag:UCmJstAsZojHPx8kcP2Quw==,type:str]",
-						"name": "ENC[AES256_GCM,data:rdHHjc6JGXE=,iv:dZv2/EEK86sbA0T4ZK7Y3jSA6yQpUowPVZOywf7VZWo=,tag:dVaj7chp7Yrb5mdMiJ4CnA==,type:str]",
+						"destroyed": "ENC[AES256_GCM,data:Ctua8dU=,iv:JbxZADSFzc9PXVZm3Af4RmsiGCYb+qZkZQveAcG4NMM=,tag:g4DcGJ7w4JTWSBAu9bvD4Q==,type:bool]",
+						"id": "ENC[AES256_GCM,data:yjnVprZDgqIGPfnyq7G3fDlhitI=,iv:NS5KwpaTJUwQuL9VSsH3UFsE9HYl2v8OMIiejGX0Xi8=,tag:GzVHs8wYYDLDQ2OaOOfzOQ==,type:str]",
+						"mount": "ENC[AES256_GCM,data:JsqQE/XH,iv:9ZTnsJsdTQokJFL+kExSvDY1c2bbpc8Chv62ELpbYB4=,tag:0XXtQ89HTBhcpfSs3iMS1w==,type:str]",
+						"name": "ENC[AES256_GCM,data:vJPAslcglTA=,iv:sHdLg2JGOSUjLfYVGQKJkeWk4kp4UcSw10dH4iNl3Z8=,tag:Ioids2JprCsfKspCzGTNww==,type:str]",
 						"namespace": null,
-						"path": "ENC[AES256_GCM,data:vgFssZcrkewV7Jfwt9THuR4UUTs=,iv:r4wa/FKImhws0X7cYx2Bv6Z+hzgBL4npkpIqJ76og1M=,tag:h/SiuNVfVjYh2qvavvO8Ow==,type:str]",
-						"version": "ENC[AES256_GCM,data:snU=,iv:fj0XI4D8RspwjG/Fl85ViTCxm9SGd2goLDU36MCSQGA=,tag:IZ5WbYnvPNPXZK6aCmzV+Q==,type:float]"
+						"path": "ENC[AES256_GCM,data:QtQecLwujxys6juSIKA2sSwtG/U=,iv:bE9BZ++QAXRD+311RCed3epNIpWih/5bdojX7Wo/HWQ=,tag:SzCH2a2NARjx1PXrF3hNzg==,type:str]",
+						"version": "ENC[AES256_GCM,data:RJA=,iv:3ShUKN/ift1URFvZV2VQBn11HwqE4CdptHI1NacP9Y8=,tag:d1/SZoByJMkCsQ38OmDaiA==,type:float]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:nOexxxIkCY8=,iv:u918N4DpI0GjrzqDA2JnHYiicVzoykvK5lopNGG4aWc=,tag:kFt0+v3pkQWtnWygt0wjbw==,type:str]",
-								"value": "ENC[AES256_GCM,data:RqfQ1A==,iv:vDD6yrqC6IpujGD+8SU+LnzUGmcbToGxsvnneuhNNiE=,tag:oM/5Rt1Xhg8KnRgDRr+LZw==,type:str]"
+								"type": "ENC[AES256_GCM,data:2jA4XEpdntk=,iv:O/QApYYNaweL35L7ie9gEvxmI2mdcv//iI0lg2SoGWc=,tag:HntcKnE50HzukxduOSs/7A==,type:str]",
+								"value": "ENC[AES256_GCM,data:bG+xlA==,iv:iNW8MarxEnsX0HhqbpryROEPgj9fnzoLM5YiwPElOzI=,tag:NtHd4ZnHlVpYQKvQU0PmFw==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:aDgVfB++MYk=,iv:UrVDdX9rXoIXIz1eJWlKqX3PgldajdBpsvFy3Eo3QhM=,tag:MaymjYlieuPO9l1LMQCxiQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:kLswFWpTB4JG,iv:9ipicd3qyqsh7xDT7hsHmPx4EWpw/Fh+QM4NntLCxZQ=,tag:UEXo+AyQ9oGU1zPsOVo5oQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:7hY0d1k6XSo=,iv:5REnxAK/4wu85gTOD8kNTiIV5S3dioRAUdV8cpu4d4s=,tag:YVY3BEepr71CDzKSjlcwwA==,type:str]",
+								"value": "ENC[AES256_GCM,data:VDcd1rqlzgFl,iv:7+Lg27WTeOEsgm8UPhbK5hwg2Q2vr34zuFoHeDB5Kls=,tag:Lbg2RMux5qKmfJn8BF82Yg==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:7g==,iv:7EtP5p/HvmFIxLPYEODQpmUcJ7nhBLm5aoJd8aVwqYg=,tag:GUYL4wEPHj31QiziHEBqhQ==,type:float]"
+					"identity_schema_version": "ENC[AES256_GCM,data:fQ==,iv:bRkK0fUzsJ5pIRa4GLjIakps7FSo4yRNcdczlXcXS6E=,tag:pJ0R9T0rFSz4CWuoeS8+Dg==,type:float]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:pY7VdQ==,iv:Fuewrvr/Q+JR6FuzRDCBe6U3vztBsag+RHlZg8dUYCs=,tag:758I4J6W2hIspxdRcNQVEA==,type:str]",
-			"type": "ENC[AES256_GCM,data:k99VfftXAYewW8P9pk2uEzb3,iv:44SPrUAA4kkvDWe3grA6Ha1PU/CKMRLheYJxvL3YHPI=,tag:hDArGKJnHt4SFHEeEtPE6g==,type:str]",
-			"name": "ENC[AES256_GCM,data:gAa/wFcI,iv:yJ8k7nnNg6XGtOjM8Kp5lcLVjFNdgbXxpeLnGUqMrws=,tag:Gwm2YqXsx0gr/dkKMiakxA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:D2cUq56q5ALAoTook/UcK/SwpicqXxGn7VdQmHBpESKQ4R9d5S31jkP9Sw6VxcEGbQ==,iv:T1Z35mnSW1o6wBVSO460dInSxZY+eR3KNvvTJnMXf8Y=,tag:iwp54UP4amKkEzodSmyvng==,type:str]",
+			"module": "ENC[AES256_GCM,data:lfixYvF922GlQelO,iv:sx4AsC0gEajdb+SWC4+Te+qvQUqmnbkjhZ7FdTn3lK8=,tag:dFwxgMi0kghi+FxELz1GQQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:81UEUs42vw==,iv:YXi9PAeVRuxISqN0hlD+rWQVHsgu1pQhjkfWRz++31o=,tag:5aDGeV239BCx1fDXzVIrKA==,type:str]",
+			"type": "ENC[AES256_GCM,data:gqe4AA81dJOZSgud,iv:90hx3rbuJ+lIqSVyvy5NaZ35AKN2AU0Vi9HQj8ST+Og=,tag:kluhBCLAEwqZk1Hvh+AJ/A==,type:str]",
+			"name": "ENC[AES256_GCM,data:geA4sPAHFP0PtQpMkA==,iv:DrdPucbSS093410/AsWiYYrVNv7VpsNuk7LiINPPmko=,tag:aFHA5IdT18B8cg9qW+deZw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:f7Oof6IdUoNOPBwYkDSQpJievHa2JR20pBwSYw7G2Wk4LU2VHRMskbHRRMTEbU30,iv:lai+powG+u5wbgRJMfughJK0XGHLl1WB9wWTwWsi/V4=,tag:j6ICyunpXp19xQa0/jtFTg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:xg==,iv:hwG4NvzBxnUORb8s/x1KvWpQ8yN/wmWdwFeeckrSvoU=,tag:atfbbxIJGQvtEFozyDQcZg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:bw==,iv:Czd9lUyZufrrO1tBL4WAHnEzpvnoLWiPmO2ut0VK81c=,tag:R2nWegGhebk+jcQuKuouug==,type:float]",
 					"attributes": {
-						"created_time": "ENC[AES256_GCM,data:oIMsg9pn2Knl4IBw2AeNgwupNQxy/t6G0MwGEN4B,iv:S/y1C9buKJOp9+kMcOEKeFCGrgowXBxnW9kvQc39PRQ=,tag:Ey/tVj9UB044ivRjq73TZw==,type:str]",
-						"custom_metadata": null,
-						"data": {
-							"affine_postgresql_password": "ENC[AES256_GCM,data:GMNM+WQjkmknTY4GI+pTmUcUwdg=,iv:dUYPyrN06hyQLnRD+tMSasaaq/RX4vD13UAPG9MF5x4=,tag:sbK6DvXVE1UuVX1K13VEsw==,type:str]",
-							"aiostreams_database_connection_string": "ENC[AES256_GCM,data:vZt7M9tHIVpmrkkgu6JT3gZvZMVQFF9bxSoQVIMc2iR5ihDO11jfjcNSYVd9DNNq1KBfkdhEBCIqbitMhaFhIMDTD/SN9QlnmoyMeTnr9kzVTdCyJhepKQ==,iv:iLN/jHv7jJJNvYzrn64MCsxj+DdYa+NULY6F2sRH4bw=,tag:7OSQfZAcfShL75Ve4LQ1lA==,type:str]",
-							"alertmanager_account_password": "ENC[AES256_GCM,data:AoEt7Bw1PGNFhWz4pXZaYVux65A=,iv:q+JUGj7HR7pV8dbxFDScCCS6p+WA9O2vejWhCLXWsp4=,tag:23YrJlw8I3zkVsZbq9gOFw==,type:str]",
-							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:s/0R0BElQ+AmoI5JnwBbv2XqgO0ETTnVFa/EZALUVr1pUTGGURrhJpDyDFWBDN3+hE5f5h7V41PI0PUhPJELjujQ4D+V+kRx9Z889GR/dQ2t,iv:/TsZuYaBz3oYJwjni+00xxJNlU7r/Xnnl7SRn/ptlsY=,tag:zyaJ0auV3kGeNAEix5pHWA==,type:str]",
-							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:fet6i+rBk+xkM8fwltAdsC07WO2ITJY5CEl/BPvrSzjilFWXprcdl52OAiCpfsY6LQukb+atVusd2bzta9p5G5w5,iv:0ZLyGMzvqXCrT2QiQfp/hGatOD9nH3WeewqCOL+344k=,tag:lfx7YK2rvOyheGWsQ9t9WA==,type:str]",
-							"authentik_api_token": "ENC[AES256_GCM,data:UYB1C+U/KUJCFD76/PLLJHHIm2IbtL48ey18dP3vI49G+8H+81I3OWVZ+vvA7mEWhVrGah9rtxBaBdTy,iv:dVvJUa7g7nZ0Xd5qyR6GGwZHqKXMwMsewJVvaASC2PY=,tag:jaKtVTx+xaIlp7H16MAeYw==,type:str]",
-							"authentik_postgres_password": "ENC[AES256_GCM,data:arC4NjqO4RHl+nMqwSZonA==,iv:RL8v6tofKlYPH6tU1SaBxBDmG5t1uJKtqRIap6CDXpU=,tag:7RmBfiVVjNrIMd8twMmP1Q==,type:str]",
-							"authentik_secret_key": "ENC[AES256_GCM,data:TXXAkD2Wv911EGvByAlUryi6uHIBmYjquVS2XhqT22QiE9AlaCraq/Fvd/Er+pY42eEF,iv:j7RfeeXeY91ALwImLVP2MBMs33bfKKODz8J7zAhtUQQ=,tag:RaAH6a4CZvHviVy+QwyPdA==,type:str]",
-							"bind_db_viktorbarzin_lan": "ENC[AES256_GCM,data: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,iv:j+DpDruHevvgK3lg/UIg14S6NQvbpYwHAehxhGl86Nw=,tag:poZp0vGbHg5JNei+z8UaeA==,type:str]",
-							"bind_db_viktorbarzin_me": "ENC[AES256_GCM,data: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,iv:PEjk+omDsXwbocXoHcqbAHCJJeuKv3a4q55LYUgUuLw=,tag:bkki7XPaT/cICD+Paa1o3w==,type:str]",
-							"bind_named_conf_options": "ENC[AES256_GCM,data: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,iv:tD9lJ2wOu6EHrnB2Djtd9PMO2dG4BlWMFS1nttjedqo=,tag:Hsd5NEPdttpAbpyvFmdWHQ==,type:str]",
-							"brave_api_key": "ENC[AES256_GCM,data:0wqKQNci5qZ6yNZB9RRtXCDHPLKZfCnk6bVDOsCWZA==,iv:Ez5Uft2lw4Xxka4YsFRdzCAti+umFRhl0heXVZw5NB4=,tag:GeqK0/YKfOXHNU0CSG82sQ==,type:str]",
-							"brevo_api_key": "ENC[AES256_GCM,data:2Bn2fdjnszBE8jSUdw0DkrmjgKKC7/sHPJ359s6ELF5WQv6i0D55EImS9zfdWaGy15zu8g6dKfqOqIDDdJfCGP+/Nfei77Og36YP7bbuQT0xXYGNIcEabCzTCmBZ8rYD453+GJXF2vlrlI/gY420mfKhW6OeS2xX5AqgLrNEvIr+sBSuVk2JqF8Ykk0=,iv:fC3KoTZOX+//ltqi15hD+HCXtX0N8/AH1vjhC6exbpk=,tag:IwFKBmnByIAIUgbT6AroWw==,type:str]",
-							"claude_memory_api_key": "ENC[AES256_GCM,data:I9PoZCg6eIQcYCF+NOIJDJPlm/s+1J0HdH/kC1Rbr9ccTaBk1rwQaCq86xw=,iv:OHuzcnlwN04lP4HTb/UCL4OjFhds2JVBhqgYgQxjTJA=,tag:Ko2Aqc8Y+Gre4tGMPWfdUQ==,type:str]",
-							"claude_memory_db_password": "ENC[AES256_GCM,data:PV1XytDMaq3yZXOPK4OaKagAnPpkc4Yo53hdqPSObCM=,iv:5E3G17mcNa7DG/kxb5WurskEYmD1de78hxDSO1VugE4=,tag:pjM6axxSW4O7LE6pQ1ZyZA==,type:str]",
-							"clickhouse_password": "ENC[AES256_GCM,data:48UtPVkZBld63zZcKMk=,iv:EhbfdhTrIa0qcvxRue/Jft74Sv/u7+hzwosh74IzLWo=,tag:QYDWvdu84YjUZrXCfmrfrw==,type:str]",
-							"clickhouse_postgres_password": "ENC[AES256_GCM,data:eNdj/HSfUnSdQ0wO3vE=,iv:eF5ruSejdkSNlPcTkx2bCmBKolQi5qHCK+eLg8tkLZI=,tag:kx7cbeLd8Z5oDbeO+3mLTg==,type:str]",
-							"cloudflare_api_key": "ENC[AES256_GCM,data:UmpFn/20Ga8ov8IsgGz2NS20nGZNxbYF6DRPQjaOQ/vJ1TRvQg==,iv:tiaiE8x10KPmbGwaIvdM3Cw/N9BBqKrcP2QB8I5dK3g=,tag:G3lVZpcCwqvT7ju8LMkV7A==,type:str]",
-							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:IVSk7rVzLt7zys4iVvxhy4IAaTgYKk5GJsJYVDjs6Z+lKK7lN45e/lJUPwonCtGVvAdaxlGUy1g0Fkx5VGscelA6mVz0Ah6b3Id1o8qFh9wUkrWc6YjEBIJg969aJH/fhtx1y//TJMq5GsRxWIONe23RwFYxaxn0aePfHVgaCkWGSGd+szfxjEUFXLVJCwOj+VeF8poPMj+ODScUwqm4Iu/bvFw3MBWsnEzBjlTRqXIccrev9FsuDA==,iv:j/dNfAGSbTkX/9IdcNMa6U9P5kS4cO+VTRzRG9yc3Po=,tag:Yiajvk1AaDIwynTEqnIThA==,type:str]",
-							"coturn_turn_secret": "ENC[AES256_GCM,data:WPJDMec7DOdUTixdgxtJbBhW5CXrDf7K+D/iZjkVE611oJkN+nbrsE12LosXFjoASrY77WAFxF0zjPHL+t/vBw==,iv:Wcspab2uqIXeWPkADgSRJhPXKEBUkXla61IEWyl9S1w=,tag:H2N0WMb+rusOuDbCIyFGDA==,type:str]",
-							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:1Lm3IcVaH1x90UNeJQveNbByBld20WLtgH1nnANGNvtTtFdPcd7JaXh+Fw==,iv:FEnY0c24wknkGN2sTXXndqBQVt8dQRwffJ3R2bnEoek=,tag:xggE50/wgaQ+h2xpi8+eCg==,type:str]",
-							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:mu213pE9kNS3jCF5aQT4mSGMGygUrbJc3GoV5sE=,iv:FAWyT8ecNG/SSdd43s6lfBlbxLumRm3hHnzacCwrSlQ=,tag:XFJKxmewuATCyHGWxJDeyw==,type:str]",
-							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:1cu/3JNHyzpTJsvouwI2/8azxcd/i1YF3H0yOGysGRBifnstynmBhxui+339Dx7n8B+5KsAfYcPowvnMxiIgew==,iv:tM6PUef3L+xWya4eIQoVhG/YqdVpEdlBFRt5XsPEkXc=,tag:gnZB0O09aRp/MCDExzPmOQ==,type:str]",
-							"crowdsec_db_password": "ENC[AES256_GCM,data:cMjBwYj0Gp4XBUok+ak=,iv:PM1BEVmNGyvT7uSpkKt47c/qJNIAhF/5olvIhNWxC3w=,tag:TFGFc6p8x7slDghqb26FUA==,type:str]",
-							"crowdsec_enroll_key": "ENC[AES256_GCM,data:9EkNTHonuVrwNPGwlQg1gHHj/CXOoMZJ5w==,iv:SSN2Cpoxiqovi7g/shDWl66HmvHhxuFu/oUbCiwoNWU=,tag:UbYYKG2kwPuoh597W8+rNg==,type:str]",
-							"dawarich_database_password": "ENC[AES256_GCM,data:NX8z1fLxnRCUmN9LWSA89ZJK8SVFcBeXEg==,iv:3soMzixh7MmNDkjThoqDlJO7p/zudACrUsDWiN3tLvs=,tag:eXYqVfGdCEmzedbwYMuLNA==,type:str]",
-							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:6FuE7jeKB/nJtqV52DQlVLBQHsv1HzzErQYAv0lwge4=,iv:RIwNZMoLb567UgRdIz1oBQZy8VOzNMvfVEgQlIRs3EI=,tag:yCJrc0Z+RWbP0ZeXm8TBjA==,type:str]",
-							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:47N7OsXbxSWN1HZxHuBwSHCD1XGSa+nSB3w=,iv:WibCdJXW1efgzZHJGEpOCeGV3MqRaAsPO/+kKWgSNHI=,tag:LxA9eOka9gRUOu8RM3KCGA==,type:str]",
-							"dbaas_root_password": "ENC[AES256_GCM,data:sQtV26HvQ88ZPBGCGRY3jYubhC89pah79Yc3LA==,iv:3RJUYJYQSXf0aZwEXgAg3ZzcbZoKuqIuc4oMUM0So8U=,tag:EARKQVubdi2GQbRgs5YDXA==,type:str]",
-							"discord_user_token": "ENC[AES256_GCM,data:IEK4Cs77UAW0z4sbZyF0Xp1d+bqb6PsQW1Y8Upk9yqSeklDEn7exw1BqT9LtxJEjiFBNLpQTozfFRsZRuF3RUT7QtFbx5kT2,iv:gD6asbKXdcN+VHOzAU6YbQ2AXZUVLx4htCLdDSIWCEk=,tag:ilcJqdp7XAJt/fHPjUx1yg==,type:str]",
-							"diun_nfty_token": "ENC[AES256_GCM,data:x1x5jVLoFsh1Ft7fVbpM3Z5RiFLeRzPJ5YYB24w/Zqs=,iv:ObGR4qrx/FdxiK08moATmSbLE1qtkQwBGkb1wj0DVjg=,tag:kEBVkWcSdbu0C/wqB9RFGg==,type:str]",
-							"diun_slack_url": "ENC[AES256_GCM,data:FvCPvu9XFH6Xes9x9gU2eWbargFx7YS9q2nRlsKXemJhWOVs/VvDbXzKkcXRO1smPQtlK2FO3DTPoe7yPW0ViiRyGxwn4uDSSM0e3txjB0nB,iv:pJrphuCHMObdo/optDqdPt5BbJ+BQOIxKqWwQHsdsYA=,tag:f+LwunpLCOWT7bOCTZBrmA==,type:str]",
-							"dockerhub_registry_password": "ENC[AES256_GCM,data:DPszp+YkCeTBtKiF/wOdT6f3NmCPo+Y4L0WZfLTXW9Q2Rw0d,iv:ip0ayr1fY5W3dcNSE6JRpJ5WucuBnUUbn1oITYgVQrM=,tag:S587cftSdvB7p3z1L25Lcg==,type:str]",
-							"finance_app_currency_converter_api_key": "ENC[AES256_GCM,data:O+bVvdbT4B54CfDX4rBJxPrQ5gA1uiam,iv:baICcRBwFj4vfc3ZpSvlYUYk0Gtst81cdt3afWZjH4I=,tag:6S3l/ulDwhuhZkBjrXYOIg==,type:str]",
-							"finance_app_db_connection_string": "ENC[AES256_GCM,data:lv+uKtIUOxQVCH5lKkJRZC/Qne6WKebqK3gseunBtA6G8nRmH+roWyILeZEM4VtJYDJkhQilI3amYB5gYbQbqe3y6Sjmtb1a/ZvD4LJ7pi1IPUVJ+yIwdA==,iv:4SidZlLpcQ8975ghUBWVkVxvEpR/9qyuHgU6fHBw7+E=,tag:7pvHSu+1bGVzllck/4iNBA==,type:str]",
-							"finance_app_gocardless_secret_id": "ENC[AES256_GCM,data:c2V1j3ytxrh54jOJrEPGMlISqCFOcgeb5Y3+zjG0r6NJG9cH,iv:bgVDTlIbqDwo4uHUcSLX91VRjhw3HViPwj5i1Duk6pQ=,tag:WX3JeaAGWhPPUcdXeNWyqQ==,type:str]",
-							"finance_app_gocardless_secret_key": "ENC[AES256_GCM,data:8ZqmyuT/ZTfWzRwmXCXBxHJbdja+yGVDl6KlSxdCd5xWXwmfEQYKoCuv3ajie3uQC8YCXPdBA42Vgh5aw5l8FMEVN1PMPH/jktyLQQ30Zt8KWr7gNOksHr6LzP8VrKC+6ZEjhKjZ+f0zsNizWA8BkuvQyvBhi5fS1GWTPkaKu+w=,iv:NaB7ZbFtBQfGICLrO9izEshmKG1AqSLjivqQteHH1bw=,tag:cImo+jKJEYmHBmr2L/uhiA==,type:str]",
-							"finance_app_graphql_api_secret": "ENC[AES256_GCM,data:1e2jtEIO7bY5Lim62S/UUmkBtvnzGNnvN2o0X1vNd02p85StrTU=,iv:HpT1ZCNtchc3shtr98hQFa8cYWXBTXPEpoz0ZiNWHX8=,tag:ZAj+XtLOfWTkGK8Mj9tihA==,type:str]",
-							"frigate_valchedrym_camera_credentials": "ENC[AES256_GCM,data:AQ2fEekgIw1cNxHwSOivwaCFAAZ5GQ==,iv:NPjlBEg/EzOXgkaxSUFJU3yv57zI+15q3kZGAceFwN0=,tag:+bA91lce7yTwK3l/7pHWRA==,type:str]",
-							"gemini_api_key": "ENC[AES256_GCM,data:jiIGBQVMsFVXty4Yh6VnSOBaLxPy6AhnWM0GKdeUPoiuUZ3IzXsw,iv:dWMk7hkhFBDF33eVC9v/RZzfqulnJiqQ6l3Ah3RJ/Kg=,tag:JYvejqJvP4KzrEF34sJ+hw==,type:str]",
-							"geoapify_api_key": "ENC[AES256_GCM,data:agRdZDrF3ohqp0SJS/l9+kaNPiXKow1fnWSewgTsa5w=,iv:HMu8xOmlT8VgQ34sEXFaaXnafdVjO1lVqR5isfXF3aI=,tag:kWWRyvmwXe/ma77+hjb4bQ==,type:str]",
-							"github_pat": "ENC[AES256_GCM,data:3mEy63D8CbRgoT4tcTbrD20x3V32IfDKkMTQIQfqnAamDKz2tSWu6Q==,iv:LOMTUv+8DlHweCe6LoydhjKThu5GIX3D41u7cG6RNBg=,tag:pFwhz+jfcVTRatlmY6s2CA==,type:str]",
-							"grafana_admin_password": "ENC[AES256_GCM,data:6gIEJ92BODrKrN8ryiTi43Q5TjY=,iv:lHcESQ1Um6Ba+tTQnomuWpdeAD7CyDqnv0BIor7WReU=,tag:oEO2EeEKKZ8ADlMT41x51A==,type:str]",
-							"grafana_db_password": "ENC[AES256_GCM,data:AVbftmqniKOmpjxEoOvXafBXvoA9,iv:d+It3nnwYt2FQj9oqR5LRytsz+b7eUJWbvjvNsg7LHQ=,tag:mtQAQq4cYLMMjoVjHeoNpg==,type:str]",
-							"hackmd_db_password": "ENC[AES256_GCM,data:SYMFlyxO48/mUL5ziOQO,iv:w3AHG5zsy+XHWtDtVy9Q71uDbWNwOVWCSkHcIbwNLYs=,tag:3XEi4ZdUWAwa9hWDcL+tqA==,type:str]",
-							"haos_api_token": "ENC[AES256_GCM,data:CN27PNiSp+HhBen8LIxp2k9t6cF3haP9agIHA7VCsfEk3z2c7q1CNK5fVh5BJs0sFsxq9XqTF3QG0Sp343E2FThQNc1SowQ92S/8an4h5h5xYsULoTglhFsRumdtfAD6cKFdvwwKGh8B3wP6PdWRSfTjDHVwEAbN7SQgtrRuLbEWGgKGQ2xmccmwF/tHk1LfrmuhXEhef/XJc+WOUEIhnIA+dBYZs/GGqabeuMFK65Dv1coPv/Tc,iv:3bQjLvyad4maInIqdpkUco+icQjwpeR9vdtzy34N6ts=,tag:4JL3HTD1D1qlOIcHdr6GXw==,type:str]",
-							"headscale_acl": "ENC[AES256_GCM,data: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,iv:hMj7k9DzS/eQqsus3OWwCAjyYWZkVdp3noTCUNtIfGg=,tag:uhvgYaKq6pl07fGBF6M/fg==,type:str]",
-							"health_postgresql_password": "ENC[AES256_GCM,data:9fwEUTvWBqTerWJF17pFTxGTh0MsgjU7OKJ7ziae0ZA=,iv:rKgUoRIPj4W5bkpAa2ApNYoVo99OX9ddI6+odgvFqk8=,tag:j0qFb4WoBfBS6IPWMo1mOg==,type:str]",
-							"health_secret_key": "ENC[AES256_GCM,data:cI0wDSZ4wqsCifapTi/7/L02Pewa+KYrvyzJ6fS6PHAMS1vFYh1GRnHDC7nnPw/9XXOuDmd/rd4gsUVDC2VMCQ==,iv:b/M010SbMC7oIM8O2mZr3HCi55wO9BMea2lT1zBMV00=,tag:6qr2PcY6GBOChmYQPHOBEA==,type:str]",
-							"home_assistant_configuration": "ENC[AES256_GCM,data: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,iv:d+azNOceuIwvKi62YN/4mzhPoc/Fl7hJwcnIiRZ/nGo=,tag:VetKl4hQ5r5860Yak5QlNw==,type:str]",
-							"immich_frame_api_key": "ENC[AES256_GCM,data:9Qc+CMRxnjDuoHGHRfntKDinCFkhv+EOx4GbLXBURSKBbvOWRRjg,iv:vK6M+TWDtzucpzavh1s/roohdemuD/iooXJ9VyxFQ34=,tag:3PcWdlyOkM0INCAHrMQObg==,type:str]",
-							"immich_postgresql_password": "ENC[AES256_GCM,data:QqNe2nvV,iv:LWhCg+5XiGf/SXfacwaFWQwPmZ7fB27vnTd/ttatBSY=,tag:XuoGeD6yFN7oucftaceyMA==,type:str]",
-							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:XBT2zlQhpcW6xJAEZFP8FrU+NcitM6tRYJQQdBIYLZFWWH2LU4+3yZ/k5w==,iv:gQsvIUinlnFxxHsHly/RNrQOQ4YY7ITROkQbkgG7Ryo=,tag:gvEIIJOFqORbpsIjac+X+g==,type:str]",
-							"kured_notify_url": "ENC[AES256_GCM,data:Vx5YMh8UC08+O0+vw1hhZqXqLdAEjzECgUbybsY2CYRGbQhYJ//vW8aYf6ElFO4s7u6RBcYqKHGcl6nShpf7EOJQ2ZE1SVnipr0F3kO2CrRW,iv:/FiZC+HHJvtPXjVeTle3Jm4vskyDc+tQpz2aljim3dk=,tag:tmvyUFudKOeV9do4AP2aSA==,type:str]",
-							"linkwarden_authentik_client_id": "ENC[AES256_GCM,data:2kDDZgj3N1POISH68Hd1prMw/g/jDF7sC3AkX8rTYrU+Ff9DiNK0Gg==,iv:d3shgUq+3hdXHcEEakzaBgVBgFRvgb/n8+5KdcMzRRY=,tag:xeP/cFaWNbTxdO97uqLsWw==,type:str]",
-							"linkwarden_authentik_client_secret": "ENC[AES256_GCM,data:7qY4aAzENZheuITRE/O3lmFFW2k1DliVdAyKL1jUmON44JZlNg7p9TKtsQfHn4ZHi/+Gozu1b8P8l3Z41KyFP7jwugVeRtpz8fBigz089i/DbAWOp/pPa1cuNNyiomLSc1xUZIGnU33n/Xt31QoK0iFOA4LRr+Z/IwVEl6wIOyg=,iv:YYMIHUieNB1lJNz9s6Sc0UGaNwVqMosv1Ktoz6T9VB0=,tag:rUsO6xtFEpBF1dUphclnXA==,type:str]",
-							"linkwarden_postgresql_password": "ENC[AES256_GCM,data:sbEy3AR88odDoYxrlLP9ljwuzefPx3FPRQsmu+x4eyttmj3pdktikYPXRaNENjWVbGOi,iv:mgVTatPIWQACqF7Ot+9+xJYjR9S/wkKyi75EpKoOeko=,tag:lZ0vVs4LmdNlBMEy/FXEHQ==,type:str]",
-							"llama_api_key": "ENC[AES256_GCM,data:NsbD+PwsK3jiIjtfWsMCTpZphLiE2IvxdAILZuyR9vQ1CKe1a6CQcXUc/x1mhVaS,iv:UjCEvjSDGY49Ee1sfU1OA0OsCrbeiZPpp/MZQDe2r+I=,tag:r1PpQJo40T+Yg/zdChRBjg==,type:str]",
-							"mailgun_api_key": "ENC[AES256_GCM,data:viM24u2mwInwniiLBTO1dWbOIQwLKBDqacvMNDjcGEsMUF4tHSF2knz1LNcrxgxgoBs=,iv:k25ei4lB8xLB5JQsEy4Qj+MaU29D/fILFXi0OR3uKOI=,tag:G7tX/7Vwbenm2z5x7Vv6kg==,type:str]",
-							"mailserver_aliases": "ENC[AES256_GCM,data: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,iv:2AXENlLJmTf3wJ+rkdFvVY9ZkH0XFIRqeDEuGUZ3cUY=,tag:E06mtxoJtmCfhfD6/x4grw==,type:str]",
-							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:QjdligBavbKQ0zKSpqPNJg2BasH5fiOkg2OsaAUoJI4=,tag:A25YTm2Ijq6Bz7/t8MhBBg==,type:str]",
-							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:96kdbtiJ1cd7bpeEaWc=,iv:TkWoNX/tl49TtDOLmIXsy7r+lDngGIIxUQauJROb5yo=,tag:roWydUkbz+/wbDE+Vab8hQ==,type:str]",
-							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:CeF6S1YRsnlLBZcRCLb81n19T7Q3zRb0IvRH5mBoxQOGqxIloHR21kPN2KQYe5ZY+jTzEKYZSeTHqutYlxsRSGvGb3nTD2xRGK3DY+jEJEiQI7xFoV6K+Lc/ZwFkbeQ=,iv:zyT3HM+nQ2Tja8jarSqINdyLtYtWje/tB7x4Ancfc78=,tag:g6e1HjThO4BKw0O6FCKXRA==,type:str]",
-							"mcaptcha_captcha_salt": "ENC[AES256_GCM,data:kXJ9847BcajRFM/U10cNFbFj97vGr/+pQrfOKSDoOY/tTEo32APp4mEFZ+jpMQM4fg8o2vrn4DD79DAw9UWihA==,iv:719O12KaWOlJDS8TJuI7IFAZZycG1eKTGzLen2NhBmw=,tag:Is8ZmemUjMBwuSX1UF4k4w==,type:str]",
-							"mcaptcha_cookie_secret": "ENC[AES256_GCM,data:20DtjN9zsj6I6084VNM967yb4Ifyi7dNSRajyi6zhP+/IWoANI6QfS17sRojVBaXMH6/DTrOKd3s3jVjceiWYg==,iv:4GXboXqncClpI0pEBG9cL591CwXrGIwpaIdNpPp1w0s=,tag:flMliJ9T9Rj/avSocN7wWQ==,type:str]",
-							"mcaptcha_postgresql_password": "ENC[AES256_GCM,data:VLvHJXIdZkKn2/q8hxL6y0JSxAE=,iv:QuRfKmwPaLZn8NeIDdBDtnY3meLnoIwsqtbmWCXrUfA=,tag:ST8/QxkbXcWAgxftdGxPiw==,type:str]",
-							"modal_api_key": "ENC[AES256_GCM,data:JgTY1oFBxJeKqtJY/k1GBjOPGtvovpUZIAKjzFL5vU7a5O5XshYy11trTFqOaJ+dBn6F5B10gc5R,iv:zz7kN+1UxH7OnLcYAj1khwmUODyn8JibgVRsin3DKFw=,tag:hQ7CCbqJeThXY8EzeGw39g==,type:str]",
-							"monitoring_idrac_password": "ENC[AES256_GCM,data:BTWVoZl3,iv:vJggJef48M15SFsxUROHNyR2ghg1zpkDxNch0nB3GIo=,tag:o0ER/qtwUAmEIveBp16B4Q==,type:str]",
-							"mysql_forgejo_password": "ENC[AES256_GCM,data:tSZE3eVhdpjp0hS9cJo=,iv:4KXi+UGZTLYYapgasRUWQeZ7yVhGml7R0MgxEaDaVF0=,tag:0GZckb3zhagW2Lgw3fThcg==,type:str]",
-							"mysql_roundcubemail_password": "ENC[AES256_GCM,data:V0YF5qjwSiD8nXrn7Wg=,iv:7Ep3T4QVEDA6+oi2mPNzlcS3cD4mSiw5rHvejo/CYHg=,tag:PtkehlgRmdU3Fy8jHgZsgg==,type:str]",
-							"n8n_postgresql_password": "ENC[AES256_GCM,data:E20Z7ABVumUZAQB3EDI=,iv:tjBGGUv4c9GmQNnf19MkyTIv0rfAKYpk7d3MsTO55lw=,tag:8aCIo/UTutZmFTv8l0ROfQ==,type:str]",
-							"netbox_db_password": "ENC[AES256_GCM,data:POlns7rSeRmTA2JlnutCZhCSQKCVYA==,iv:4OfIT503oBPTnOJQtZBNYijWu+Q/LuTgbpwlewPaZJo=,tag:ATdtjYwio/ON3qoYZkUOiQ==,type:str]",
-							"netbox_superuser_password": "ENC[AES256_GCM,data:BTWaWKEStmDfjkjAioGw1tPN9UJpWDtVr8M=,iv:v3GgFDBK8NJDxBMMCFe5YapB520YbYfqpC6i839QjPw=,tag:bz0+MXrPICMmvQmogPU5fg==,type:str]",
-							"nextcloud_db_password": "ENC[AES256_GCM,data:Is4EbobJGwPwxkbRaaHl5A==,iv:MP7neYhb1lFymZYqABTqxC/e2qR/Z5IzomnMMb5162E=,tag:3rbUjlhhsj6M1m6V1TJ4/g==,type:str]",
-							"nvidia_api_key": "ENC[AES256_GCM,data:l+vI7tAFASi/WJbe+pzZ/1RxLatSSOnQuCmgma0KoTRMf5VuaDuFoaQNAFGqylbAcM4NY6cDbGeavqUMdetd0+GobZYm+g==,iv:O4Vpr9fvLTept1SlGliAjL6XK6IhFvVBD/dqWmszhc0=,tag:ITx1qXLV09SVtxsy6eMmeQ==,type:str]",
-							"oauth2_proxy_authenticated_emails": "ENC[AES256_GCM,data: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,iv:P53Mn2/GN2hgeRNw+gokvnuzKYJh25J65Xnwn+kizOc=,tag:GW7IRrkGf1IDopsq8TQmiw==,type:str]",
-							"oauth2_proxy_client_id": "ENC[AES256_GCM,data:/ehinneA/9AbhQ5e29xqwzbJXOlCVH+bdHNnsuwNDl33T2ujWx/U7q9ED4UNKJOi2FwvvwZY20bkKAhPu3QkY/kVGs2qdsAQ,iv:7pV5KIXz9w2C+WD5W2hvQa/2W0+F/cAmFf9hHXkG9e4=,tag:j0IypzWEtnp3rLZD50p47Q==,type:str]",
-							"oauth2_proxy_client_secret": "ENC[AES256_GCM,data:YXDcT11+nKGeEY3tqn4Nx9RJ5/ELfHSPcv4Rap7ZOXMWTlU=,iv:zOUCKlCg6k1W8i9z5N4FxTdWvP6er8lFr6UUm9wQ9Wo=,tag:RcK9P45tVKWA2lxvHBzeoQ==,type:str]",
-							"onlyoffice_db_password": "ENC[AES256_GCM,data:hSwJYcmqws4k/w6q72E0Z4QtVxqp,iv:YOVR/mCT1MRp+e6MioHk2vBWPz2+Jx+rV8u9x9CIABo=,tag:qEVV4/mSCRsjQbyuOd3hXA==,type:str]",
-							"onlyoffice_jwt_token": "ENC[AES256_GCM,data:ce+6AE2KbBR1PtDcIO37VQgoy+lf,iv:S2IBgDeFmsQpVZgjnEgdHqJRAgumxwNzhQDJkzNpSIw=,tag:a/AQAhMsIgWj1aVM2ZyE4Q==,type:str]",
-							"openclaw_ssh_key": "ENC[AES256_GCM,data:iXLUvjHC++nAWMPfqthYtmeo5FP4XP9+WhmxZ+r0CJZqTuk5Oe0QAhqYv5aB3jAQhpjORlAEUC3sIM8ML2+IejABY6pe4JgNZNHj8Ff8cPA7KeAm7Al4Sf8no+yrkgMP+jbZU4F3/RuBIyaSU5dcx0UD5K9wH00icJiT5kKfz7WhEc9wnzGVWXuKTBzWAUOVyk+VB2QC7w/+35o3Ot52bIa2RdI9Spdviw65UeA/j8sIuDahUJD5VrXpoTBpu26fnULHK0IQ9+5ExVBoriyZNSEQsRrh0QyNN8bTz407XMXWh9D9GwI9RJPapJHYSpYL/jsJWYkxQ0B2uPCxtlsV1hFC7dtWMiKb/q9vsadWhRt6UhZ0ZmqlFojMHBI0kupH+5xkh4n7qPU5YZQUyXDwc4CkdJf4DmUVL5niKcczoprXc27eivCo1GjN7EbBRhDJralV68Qioky4E5miPFArRxKJPSnBO4mRD2jJoB9XoCX/sl0nqH3ceESZ9h2XAe/5tkiiSn6ie5ee/3Y98udibG0TIVKCt32FX5ZG+Dpn7uCtgg==,iv:zVdZH0iWE7FsVFOcqlDh3reH1HAq6hFF+taxxGv5ZhA=,tag:pEo6eye8XWqbxL0D0k/zWg==,type:str]",
-							"openclaw_telegram_bot_token": "ENC[AES256_GCM,data:gRVT+Rm1wCz4tH5YZwgfQTgTwV7AvoxKq6nFAdKY5Nr0Kh08ALqz9GUGnPYdag==,iv:QUBjjT19bwMuNrnfN/foqFS+mbYbYVSBULWbl9P7dXw=,tag:vvrye0qQatE0kv1RCeB+Ww==,type:str]",
-							"openlobster_graphql_token": "ENC[AES256_GCM,data:LhqzFTWJVrsSa0laH0PPHF3JeklF97H5Eyg/oVwZqaU=,iv:KlrDc8kRgGz9r+0CN0Xw3TqIGz/OtvTQsxLOivnnGiQ=,tag:Zc0kbV1RGuZkSAab/bZUyQ==,type:str]",
-							"openrouter_api_key": "ENC[AES256_GCM,data:fVK2vEzJblQr4Cfd8eslueX+mOHmhUa2F6io7e/RXzcgSCxrgebuGVXsId0IEwSYs6keaqO0eI5bX1Kv3dU1/i5ZS8moKH6gLg==,iv:NQ7ec1zJihAIbZm6I3QNHxwVbGueCqd7AOCek531wKw=,tag:ruaUJdIEOICZ15sz9Ohu0Q==,type:str]",
-							"paperless_db_password": "ENC[AES256_GCM,data:6dVBndp/jpi+/hJlaEPm8CWJ/ANM2w==,iv:RCmGPrhgR/1YWJoS3MjSVzLR3xF/XRKU6HhOEDDq0xc=,tag:k3DT3bRfymdP9XZIgiVWgw==,type:str]",
-							"phpipam_admin_password": "ENC[AES256_GCM,data:P6B09sjZkIvaMMmCAgyjjWHlGQeFyomx,iv:NTbCKkTh4973Hww3Ui63f9YmQzSAU0fOYHGKvL8ldNg=,tag:opvV8pP6EdyhbWYscwOOIw==,type:str]",
-							"phpipam_api_code": "ENC[AES256_GCM,data:43BfvMUQo8bW2dVMF8Ch4Yq5Kv60eGXg00yN+W6Ls/Y=,iv:TaTK3ZOpaUQ9x4NaU2AvL5UZ+0DTqcp/S4deg95dJro=,tag:ELvGNpP2SO+s/KEo5aGK7w==,type:str]",
-							"phpipam_pfsense_ssh_key": "ENC[AES256_GCM,data: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,iv:1VdfaHokEF6TbsqweMHfF6Qen3FXEOOk7rXNjhdJd/c=,tag:U9eZlsfhMcLWShlaBlOqGQ==,type:str]",
-							"pihole_web_password": "ENC[AES256_GCM,data:vxn44yMWYeNi5of2m8rRErJCv8o=,iv:4gbCXbMmZpR9lomUANAkb/NNF2DAPRgTtz4IlRXJJCY=,tag:gCaLGv/9B5GGnEge/vzhtw==,type:str]",
-							"plotting_book_google_client_id": "ENC[AES256_GCM,data:APaf4ZLsKh0eIjsFf68IVHpJQ42UYGS6tVQNBqnSTQOvxVpA8HZWQYmtQPnPoNIOnL6ujPWUweQuxQHloJgNM3m9iqWNbHz4,iv:No0fhxnltnoEchR6tqYo8zNH4weQy/AgunEylAAIOTg=,tag:V9fCikxzQD5lARCyCTgRUw==,type:str]",
-							"plotting_book_google_client_secret": "ENC[AES256_GCM,data:Qf3QdcMJeMW0pM4Em3uM0qrACsOl87be1e6Vem/m6sXBB/Q=,iv:DkSXGKQrc9mLMjPEV6o35VHArVY/FGv6lv9P87h+WgU=,tag:7fjsZ4cXTohc5hN+G7uBLg==,type:str]",
-							"plotting_book_session_secret": "ENC[AES256_GCM,data:uw/UKLSL3FkES4vi9wnj0LeTwsjuvLtMAZaFm6R0/TS+Iws48xBD2/NPV3czB2rDD7WIlihweO99dwJcSeuMug==,iv:cIChc1PG9jo6Efc/4b7j1DSInFz70ZGAMZkpPygTLJY=,tag:IZ0/gdCj/pBk7/jUmBlylA==,type:str]",
-							"proxmox_csi_encryption_passphrase": "ENC[AES256_GCM,data:gbBSKl7pxEvdGyI/BcimcwrZ9jHSL8nxBAVsfwC573R0Eet0rXVFQ9g9Jero87vdKXmOQ/2IilqfQ3aa+Zkknw==,iv:Cd9onwAaNSP87XQ9U4HJBG2xl5j/ZceeAtGW8Ie6z5I=,tag:sfU85sD0a7BcmfHggTwX4g==,type:str]",
-							"proxmox_csi_token_id": "ENC[AES256_GCM,data:2Qq/GySuUZlGU5KJwOW3Gnc=,iv:BCOYHrEX/CoelsVsSWhYoudf7p4ZF9xHJb2NVfITp9M=,tag:hRyQ2+gr1A99wJhHgTR8uw==,type:str]",
-							"proxmox_csi_token_secret": "ENC[AES256_GCM,data:Dzq9EmnqdPc7B+/oiQoqlqqwYDHMwi9SoJXRkxFLgE8aWk7c,iv:6g3ycGNViyM0ENIoZDFhPOeTeytYob2MkfDWjo9Fouw=,tag:goux3yAtPNPk3h0+Gu+A+w==,type:str]",
-							"proxmox_pm_api_token_id": "ENC[AES256_GCM,data:YbAtzcfcwduy7gWDqXXF0gvo3Pk0wtg4ymheskLi+yY=,iv:TwouPCNNOwUiOVbii6FP0Hciy1TCvZEkh32O1XKK58E=,tag:cNJpBgnBa1IuE2/TWZwIPA==,type:str]",
-							"proxmox_pm_api_token_secret": "ENC[AES256_GCM,data:mcjT+nDg7kc80p2FZy2DqO0FZq74J0NwOcw3GcIqT3K54DiI,iv:LtxDdRTY7er6pRsmyUg6QBoh/Y0+kSlBMY6dmt7tbAc=,tag:vGe19CeJWoArLbjVu7jrow==,type:str]",
-							"pve_password": "ENC[AES256_GCM,data:0syuJmqyzE7+O4W4bM37j8FzLiMXSbyxRjwo8g==,iv:gxTQuOB9Ry7gjbQGatZFK/EvUU57cURFiYWS0x+gGQM=,tag:HR3pcfXG/9U00AKyUhpJYw==,type:str]",
-							"realestate_crawler_db_password": "ENC[AES256_GCM,data:FXJEvn0z97OY8nLFVcwzehWrq4K9,iv:Lpa9wKvjC+wcRkVMyNRk1HmFjAfZT7u+Wj6AOQTl/0s=,tag:H002NPwiLSYsY9zM1v0kSQ==,type:str]",
-							"registry_password": "ENC[AES256_GCM,data:RMaG1Mf5VyHJRWeL7XBT/W/5PazkKnfTzRHjtxA3QQ==,iv:cW46fdJ6z4RiNEK06hns6phOn74tr+5Tk8v5NfBMeLY=,tag:2VGHUnfTPf2J1HLC5aONzw==,type:str]",
-							"registry_user": "ENC[AES256_GCM,data:e7vZXPIS,iv:S/zijXamyFGYMR2wMLTgecD/Gl1E+eb6QwAI0lZd1Oo=,tag:GDGaIcY1WsYJG0y3D9MKRg==,type:str]",
-							"resume_auth_secret": "ENC[AES256_GCM,data:tQMQPxg1I3IhxEn9UO4z6kafb+hp26L+YzhCCFh51mV1EpF41NQ1YJKZq9Y=,iv:w1zbktg0Ob8KFXdzL6FfXUm6DyCntOCSy9r9ikRz+Aw=,tag:2LvjTDWUy0rZYCEWC1VwkA==,type:str]",
-							"resume_database_password": "ENC[AES256_GCM,data:9Qf5zJXxlqlu7Wn4x5Q=,iv:1j7RoZlgevdIrCWNpULmZEXYwxCod2RTqY8cd+4OhCk=,tag:U7JGJ7nxH0T+0crMTQI4Ow==,type:str]",
-							"resume_database_url": "ENC[AES256_GCM,data:vMbBhVc7+Sbs/zjK2RfRYK+tj7qPWdkulVT8vLJ7EuJzTwA5BOp5lDgLRq74JM2HMal1aa86JKrUuwFqFnRhEws3Q+wJFf/BYedj2S16SwPF,iv:dd9bOHGap+Oy/CFMvX13kD4HtduOnpEJJosK6eMwmbM=,tag:cRy/tC37MxtvLBxI1Wogyw==,type:str]",
-							"shadowsocks_password": "ENC[AES256_GCM,data:ybX49J6zMLp5R7IRcm7IDhYzvhQ=,iv:3K9H+Bei11LgjVzgtQFWoxjgtQ5btNHNbL9VqEF2Ago=,tag:GAx/h2XXf9l8D9HZcbWUNA==,type:str]",
-							"slack_bot_token": "ENC[AES256_GCM,data:1R4bfy45SJppguEemZt99pJRifSd6+HKQJF3elRCaz43oT4agwdFMd1aeWzPxigcglPiZUOCUaGnaA==,iv:GUXdJl4YbBO/QcfsOonmsBPOvmHz75/T8dlPyeKFFXU=,tag:blgbTZGhC2LWzXYq5VJhrg==,type:str]",
-							"sops_age_key_devvm": "ENC[AES256_GCM,data:gOLftKlGJhjN9K3oT9dEpqgdeY9ZmMdhFUhElSGfFcmPqlA8bCKB77NDbe6/D9xffhaVid7ts+eplDYJ0U5I63/v18tMOQBTEig=,iv:Wifqo5OU/ED9ksvJU8+P+gEqgGcj6lsRhuErBLmzrfc=,tag:gLYzzWyTa56Q9uchtFCslg==,type:str]",
-							"sops_age_key_laptop": "ENC[AES256_GCM,data:X91PfXyHYe+qvCDFNP9kWgehU+h5wW+FSNtC4oGP2FCOps/9Fbwaarsn+GrwegAzGAjbs4vdoDKGe4AukvNRQdzT2zG41DWe8I4=,iv:PcLAeFKgTQaFpXd2NW9nCQsBtblzGVQopXyUe62M0Mc=,tag:3WJZ9xmPKD0CrGm7aCSp7Q==,type:str]",
-							"speedtest_db_password": "ENC[AES256_GCM,data:sbCWUG9r+3xKSXGO3dI=,iv:NnPs4m3zG+CkLF1MqbK0nGWUxBeG/ALtkjXgfAL85QQ=,tag:aX0Ca8wLPfmLe/ptVZkL7w==,type:str]",
-							"tandoor_database_password": "ENC[AES256_GCM,data:9S/Z0cWoxP6enFI33qe2FkgouTFeSfDvSQ==,iv:44gm5NoVLqbDhq7A77XcOH04AXiO7ue1c/ZKZHYUOQM=,tag:tPsSD/6xKNIp7mYaFUomQw==,type:str]",
-							"technitium_db_password": "ENC[AES256_GCM,data:EXC67flu9qu8B3Vz6es=,iv:mFyCNZA3epxEf5HhSyzFX8Tm3RF+kqxLVEnadbSlxY8=,tag:0rlspfa384pbID8OZv6RJA==,type:str]",
-							"technitium_password": "ENC[AES256_GCM,data:kRVYgsdjKwxEtWxcNyyfltkiy1plvJI=,iv:Lv6XUQfxXPucEL/vPiNfjQUu3cMHGwqaYtdOE4kIbmk=,tag:cOCIQFt7o/7p3MNIkcrt7A==,type:str]",
-							"technitium_username": "ENC[AES256_GCM,data:4z8dWXs=,iv:Nm2l7e68UmMCSH0OcTNiStkrlE3UgbCZqj/x3sD/oJg=,tag:kCuM+iFaJFf/m3jodoH5pQ==,type:str]",
-							"tiny_tuya_api_key": "ENC[AES256_GCM,data:5/XH1TsD2Zs2XWp8393kKLO7sUE=,iv:YWRkoJSm6NLQkSoyIz24hZmhzpPnc4L29IGCqV75ZWY=,tag:WrviwpQtqQN7lB8/unAQoQ==,type:str]",
-							"tiny_tuya_api_secret": "ENC[AES256_GCM,data:0hmQJy9W4pADehx/I45x/rjbaMlVBeZ6YdVZGthAAZs=,iv:b3cHC682K6+kRsQyvtLMp+uHNDr86CByz7r5RvuS+zY=,tag:r22WCwL/Y13SrLW2qC1THA==,type:str]",
-							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:y80HiqH7uLX/8EPDatrPklHL2PPUIQ==,iv:91qMmgI8BgGw9UEw38yANspEm6RCeQAT72q1uf3n4ig=,tag:DqxMs65wA8RT4WBPCy8MRg==,type:str]",
-							"tiny_tuya_slack_url": "ENC[AES256_GCM,data:wIpIci8XSEFtmqTFT2ht6pPgb1Evofhvg24yAyIfGs7iiidCGMI6qm/775xn7/gPaafkpQgTVpwXeKsgPN3VwdRS0tYTxhBmIRkTVx4Vx/gn,iv:wPTU8hn9KFZMbe8dOLwtEh1Y+0+psPegYq7tToygIqk=,tag:WGHxDVzB80/XjoerxSstyw==,type:str]",
-							"trading_bot_alpaca_api_key": "ENC[AES256_GCM,data:afvyBxIjEBnCqitvXnmmiWTkRqtBh+IAA7c=,iv:TU5rFvY70LOgAq2wI6CLq3BEhOJA7Wp/CNKi/2/Gh3g=,tag:bQOzWqujOBIHneSM4ipn4w==,type:str]",
-							"trading_bot_alpaca_secret_key": "ENC[AES256_GCM,data:AoGigpokvSDWdYBDIHTIQlTVbgKrShCRBcGepmorx8xG1lgVYYUjAtYv2PY=,iv:e6ADDfLQsmvEbZgZuFQQpdAdj6rLB8UCBbDcPGC3HE0=,tag:fZNGEpereURdK9zyfzWOmw==,type:str]",
-							"trading_bot_alpha_vantage_api_key": "ENC[AES256_GCM,data:mtGRBd0HA0Ik/VUNyqHSMQ==,iv:9DH7GV7F0J/obUmwLCHqIQQTWN9uAK+jG+jsrxKHsXY=,tag:n3XXDca513w8dV+go4n96A==,type:str]",
-							"trading_bot_db_password": "ENC[AES256_GCM,data:PkghtvEnxp4dQ+A5LQsJO/TxaZAKMRkMX3EKPkKLdL0=,iv:2kHnSXU8Kh5egCKBP+GsKYGVhfQkKP/GVBSgT7c+0MU=,tag:2vcbucakAAK/PeaIgqtcFw==,type:str]",
-							"trading_bot_fmp_api_key": "ENC[AES256_GCM,data:MFQdTgonil59cN8s96cgeU0CIaAhDm6UTTmrs8bXP8g=,iv:BykPOVMiyj+SV9YLjdOoa5a/OI/vqavyBIXeLnH3YMY=,tag:YEijEMBnPDTMsvT7x6dTyg==,type:str]",
-							"trading_bot_jwt_secret": "ENC[AES256_GCM,data:4BTG0EHI4LFAkbr3XN0xsC2Fmp30BFTrWNU4SEFoLChRRgwm/Ah5+e1rJll/J4MsSK5E27nBXEGxJtiRmF46QQ==,iv:9DJzHa+w7GxXGWx1L8JiHAWsjxxpVpyt9E3i4Lf0B8g=,tag:mnynyYo6+S4lBrQDnh4M6Q==,type:str]",
-							"trading_bot_reddit_client_id": "ENC[AES256_GCM,data:j7kXb7jibpMU,iv:76VQmt5vmyg/Q+cvMzFBxyTtWYd5pN+MLrKCB+thSo0=,tag:SUcwsF6x5DFrVsW2KexniA==,type:str]",
-							"trading_bot_reddit_client_secret": "ENC[AES256_GCM,data:zcKvRy+gp0Tw,iv:xMLU3ciDII631jhC5au3L4iV4/YmH/1s8q5M81dH3k8=,tag:xEBp+0ur/+e43L3Tb5EtEQ==,type:str]",
-							"truenas_api_key": "ENC[AES256_GCM,data:52QSLkbWcmbMzZmWetcdGT/9Agu+QwlGbHnosMFK9NbrUzRu4+TvEVKzbSbt59vS5f9VX6c0pgCva59aP+u0UdsP,iv:3GnLec15mc9cSM8P5Yk1qEoDXs6euhTQRzCSaS0/Vxg=,tag:eLd8Y1d/bQuve14qp9xO7g==,type:str]",
-							"truenas_ssh_private_key": "ENC[AES256_GCM,data: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,iv:2eEh0RtwSUxQt32n+YlxhbbzofeaRyqSb2C0V4SVIKQ=,tag:e+YSmBrkBorNJEkdmympmA==,type:str]",
-							"uptime_kuma_admin_password": "ENC[AES256_GCM,data:1MTWKrzTz5yOM8uTHHBcLA==,iv:9ihMQw7fQkv03TuEpzmFD+g5oUM4sdsSS4LPIifYw18=,tag:dvEON6JX5xHUov5dZBrx9w==,type:str]",
-							"uptimekuma_db_password": "ENC[AES256_GCM,data:kWdbrYNABRigUraUhWBgpWZcyfhFJ1YU3Q==,iv:aps1fab9GnMeU5al8YSm8lIQrr1PRmy0/tP0RVnOKRA=,tag:iL9pm0SYMUEYNJLpurTiJA==,type:str]",
-							"url_shortener_api_key": "ENC[AES256_GCM,data:Qzpj9QhKvS+AgdswcpSMuw02hyQnotgRs0xeLv+p5WU/rDQh,iv:DR9mDtZTYTgHQA2ZEqNLq41v6yd/ZVWahPXFsXT4Dzs=,tag:mbuYAi5ylvhGU+3N1Q78MA==,type:str]",
-							"url_shortener_geolite_license_key": "ENC[AES256_GCM,data:cNfYF4R5DG4qxNq++4xJ8w==,iv:yUHKx8Vi/4ZnoAYI+n4qaKDvJa1sk2DI9FOULoYP5NQ=,tag:opVAeqBjXZAoPs9gSQzOOg==,type:str]",
-							"url_shortener_mysql_password": "ENC[AES256_GCM,data:KKuJoxSyRiII/mnZI6w/b/gcmwQ=,iv:TVOv3Vnk9Ln5z6IauYS1G2xthwF5Hn5h7kFKE67FghE=,tag:WxoMvQlUQMXUQBXawvD2hg==,type:str]",
-							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:L/SeAFp39TdO8kgpiFZxjq/gKZU=,iv:Thuf17zFpV3G44ObKjw52aZTlSgH+aQHciyJ2ckYOV0=,tag:e8UPCYwlThAHP5N018gdSg==,type:str]",
-							"vm_wizard_password": "ENC[AES256_GCM,data:0c4zGP4udxsif4L6uKE4svH3LQ0sUfCv+Q/YMEDXdh8EkOzKa21rljMPK6G+wWTIlcH+vK1B2V2IGc4nzeTOQynRwbacLY0ArQ==,iv:b2eW7a4wDAfghFMQBlyKxpDHd2FQrKQS/hTIKWFKyW8=,tag:WpMrLSoFyPaXnxlCNYpsXA==,type:str]",
-							"wealthfolio_password_hash": "ENC[AES256_GCM,data:eDRl4JndMYIpigEZGPED4qtBI98UrkXqlpfT00Mz0TnYMSy9p3mdSG5KvdWctTQC1HYudfus2DkB7H+PhZf3JFnG+l5h+BK0XH9KmYAAZQ6dzdAn,iv:H49rf7GbSBt/V6o0HRvK5lYgC95HbTy2JiuHgjXuGq0=,tag:iiGwNB/ImYdu2OcDJHklAg==,type:str]",
-							"webhook_handler_fb_app_secret": "ENC[AES256_GCM,data:4mjeWU1AoXSfQ6cYVqzBE3AQvVJPcmO4eDbRRfzdwHU=,iv:/igWkvSJ7y/7IlD2oFZodhzEwaeuZzlF/YZYnoRuBlY=,tag:lumuTS4m9SHw/6IzG5YUbQ==,type:str]",
-							"webhook_handler_fb_page_token": "ENC[AES256_GCM,data:7Ipl7WV5AGSR5rApi5DN6UfTrkV2aJOtwmM1JB3xZSkCEJVp7G4HMtlIzOUSxpG1nE20qSlbGOWGPSysDzxqZcMA+jkP/eTq0kOcpnDRB9UuQX+WmspA/8/QM9RTsmPBNJcVcsfcuj6X8sBAh/epu3lqmi/r6MeSRe1MWSRwgnQJ1CyzlNEmeiHrxTblarD9rx4wG/z+tCJBpeFjWhXNBi5TqMys6aMJdu0QmgLuo5PAjIPgMhVnDe4x6o2IGuexBWn8dNPz6Rc8+oqRsSoFBFe924du,iv:r6pbWyeTLA3h4Dq0H3zH2GWzSPxmJmJa2qVwCV5+who=,tag:3JMn8UUphQ0zcfJ/R+Y2gA==,type:str]",
-							"webhook_handler_fb_verify_token": "ENC[AES256_GCM,data:7e2IdtlNAQANrb/4SF6USOUqrmU=,iv:FiD4OtUZfSmHrybYC3fnlEQwTB2XW+/AvncNKn9fQOQ=,tag:D4WVaY+WA/V4i30H8WEjjA==,type:str]",
-							"webhook_handler_git_token": "ENC[AES256_GCM,data:vSlneQ2d9OFch5OUfM8/w046+FVvsBwUqWryErk+PM3j4viJ25Up0g==,iv:G3ZDPccjnujDTQQMMjS80An3o/Fvj8uhzdJiOHY+3S0=,tag:3zYfGDTymtLV4ouvCqF6sg==,type:str]",
-							"webhook_handler_git_user": "ENC[AES256_GCM,data:Nxqw3pBkm6l+I0Kn,iv:M8niV8+0ZbAhWYEIyGQOTRNmzoxqmhOd4eYlPcuM3Jc=,tag:yy6dSI44LLRnlWVwtWmqwg==,type:str]",
-							"webhook_handler_secret": "ENC[AES256_GCM,data:ho8+mPHAwTzrIKUlx6u60r9tzHw=,iv:QXr9wRtu2hmQZD8qxlAvNy6S+D+JTUJut6c8LZoxZjw=,tag:dDIFhkwj80inKG8alCXFdA==,type:str]",
-							"webhook_handler_ssh_key": "ENC[AES256_GCM,data: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,iv:TUAFFdo2tyF7L9YqEHyZbEdmkzaeLdQti4aEwR3vkXA=,tag:oK3j+7sE2GcQKE1fTKeUHQ==,type:str]",
-							"wireguard_firewall_sh": "ENC[AES256_GCM,data:3aqxjj2+fQ9uvq5Y9737JAe5ZbTOxAUpnPqfn4OjlYOK+Bzlb/eKR6G77vsNFrEz4Zr45VTCfeDD1qULp0TchRYk9quUAnt1Ry1fEko75E6VLsGI9hslSiLswyb7oSf2eGzR92bDD7Sd/C9c8Ho1jSJs7flrz1/7zL9yWGxyLuneUxBF8OsVvVZ/sfxtQZkYtV9Bw7+oziF2pQBfJmBaAFtseQWGi4mMhXfm9rRCHHIRqqsgFEEuixt+fo92A5F2HiHCPLgm7HLqBTIJ2YhOafC3FUtbhVgWpnGOPfkDct7BZvgexaXbR2hITd17z4rN8pWcsc1AIQYXHjsBdj8ABntqSLVuSqtTC34sX9ESAiDLX2xb2KLb9STDxDRdlYNfe5Is/emeijT8Akgn+u9XcMMPxnLqd+IsFFavqA8vMw50jXqm4DYnO4zxL+r5brR2KJtSEms9mma4OeOSzkFn/mRNcX6+zAq+bEZkFn1xO42uqshTbhORP4BZwBxfbkW15MI/NE6KoKPF2ZSCeZSdppFJU1VKWUGd/Y8=,iv:GRRsoJnJPWuUCo66FB7ZW49s3OEF5CYTpEucWt2mNYI=,tag:JkdaKpf57jff49JY+lXfMw==,type:str]",
-							"wireguard_wg_0_conf": "ENC[AES256_GCM,data:0vUWxZoGVk27+1lBj/0fdKdMKMp2SuO4GpTBvEsxg1l5AVIEBzRf4YBunePKW/c2EC4EOXkHeQsvQguYk2A8nnopnVXgluaAY9L/Iza8gA3E2QDkV8/G4xzpmM8Ws2PyWVzr6T8AUVMu9KDLWwEzOQrqaYWZpaQLsd/ZHsPu1dJj162/RNbopX8d6wJHMAGhjzcFMhojxAGvQ4bO7/aqEYatvJV2a91nEvD8PJSVhvVkbvPgu1aZ0M/I9SRR5Az3/ySBE7D/PwcGA6+eb8nfB/AD8D4zUqvt1JGnZH9nWvLWX0Vjh4mgEmP9VomiNsMEGuK6QveFY4ZQU6y4vQu7TyXr9T8uvmNACs2GVTSf+LN/NigEAIHI10HsXLlzvRh888ptZBGl/4MnDDsXgiCuOn9+jFP1AVvXS/1TliVzGg8G/OXT6vIDm3QzkbfXVQwqidRGgmzoBsvexGXzMWcDm3Rsmu3eeu6p9qbmaChgqLMofP/K+Ieaz7jA1qeZRqsLtjM9Ptf6TJFStJcxPB9B75WY91NtOC2TkOHL81Fb2CtYyikTfWZuqENBtvvpkJYIyiD/dR4i/06QFFTU9udd/s8dBGLD+EzV0kmco+6R6J5UCkfyczIgD/JhBIhBie7OsX8k+N0Olp5t3or8DD/ptSeIw6o3iqJrn//bHv8dcCYnuHQwFX/pOirlUlQPq0DQcclTLWvDjW6eMFJ8CB3cGcL6Tiipp6Ytma78tlsFReEZc5/w6sLQxMJWzaZtCUL9ykRE8G4Ir/MxIFJJUl/KfL2zgqEFPvRjvxIY/7aq3HF08uUpQ/Vrd2YlUGt+P7ZTzaFRdR+Vsz59GMT0zYveq0BhrY7X7wVaEG84MmfNlqGIqyYz824NZOnIPXllVClzgSul2tG/egRVvP+jD0n+3Ku3JvoPaXqzyOTOX9SDdvZPDLmx7RequdI/6QlBvVcW7wUOy8ZR7zXSRj2pFvgeZ1tBJ4WbP0mYf6JLBdmhIdbIQjiiJq0ieU4g1bU9v4VFaCayIWwSnW3hQ2PGdScp/J6hcvcYWEN/pB7QStQaeugaPOx0J65wkLOi5lSyQlxAa2LHxM5tMjKw5tweJEnWGLG2thpn0IjOON2wJWPBlVY9xwu1lzbJAo1/1oY1Zy1AArl51xk+65wJhAmMWPQd/cK75ZIgoHLmnsGptlnP7NRAw8Dcxtsn4VCBFP4+U4n8oQmdHe0qq2QUFrWMjEGx41Og8mFj0wi5W8W+4dfxBxGF6QGNzfoWMSNpv+7XTWtwOfbtRhYMfllCyX9Af7P/F9JTfRDHhH19u4lN9I0D8rEi3FK9MDWBrbSK8QDF7R8gM9v5397ysNwDKsDXYP4g+tMDcCWPfkXni6GkHXVyPVWI9/TN6Ymiw5cq3uM7Ymk3Y1SJrbLKd4iYTT21kzSvSFRjopeYBo91yW0O3IbSWyuND8Eu8LU7R4fBfzSAn0Fharlr2NdDRdhhT9Avx4k+ZvEv52rgKbOsjV+mfLad3bfYLI5GbiedA6rb2HM1CVKwV0jLTazCCnXmKp3h6VohOCSksUG5WtqbBsR32ecXX/IW0mXHYy5Hw+ohM6NrRgguyfa5jZEdduHeFXpOk0dZogbOCeFeJQX1K2S3A0rRLnKNVDdCiuPMLJV2btsp8P58UWJG8pzny9U9T64Mdcl/UPH/72OknltbaCeh14IjrABoESf+mGMYdTPKZVSY3FzwC/OOMKh3jrTaT+Dd2EZdc/EtCQoyonRUBbBunJl7EQ5pMnDXeB9d5NzSeFSMQaUdWRJS4KtyfWUaAtjlF24J/Srj75z4pGgwqOQfiVjUvQhC7xMWkN0J7my6oSYh8sDJPIrJJRe8vP7ka4LwnIOvxVjBNEweDmtl2UPysRAhT68DiV+TUvTgBFIDur6Q/0NykW6MIdeWZUweZEfgFSE8Yr4KbzlAQtO9pnfzowF7X3oY6Dd2Slh0esXQedLy3OW+frzGE7srdHmcLhC7pBhUHctfuV9dkBRdCkNau1+GuoXk48L/LrBcZNMe0tF4IiFUXzHtkJT8AuilJIhIrN6LvRzKnx1I/1nd2SHfXcqnGpCE/SJGSQ4uoUtkzwzCwVDfbGQ0b5qw5cpmjFV/t1bwbJiXWxpKjELGgHd7OTsxAsr8mVQAW93m3F3bMdQK5B7m01n+g4uDTw/RWi/tWCGVyRfkRGTsL+eJMweTHPQNoW+ZZu0g05XdpWzJ/sA89By+umaw/19/u3jNYZ+aQOau7BC3Ly7r7urQKL7rC6lLRPk6fK6TgjsZSqv0RnFYgrovSiP4yzcFE9u5qwTmffg+5WNDPKXY/lmwN/ktellw4nm3oUHfT6IE7ma+3LrwwOmwuhFD0wfP71gob1FUGBc0wCQ1+5o1fYrAf4g37UpzwIVzjHgeRnz/fGPhOKAviScbVfI9/zeHaWbpzu4DLRScb+dRaTRMqzCMrKMY7JRK15wI7HFxOWJwCyzntdeLqNk74u6Y0GBXjrhs/tX3Rz4qygshb1fb3l/QZsYUAtGSvI/xfqfvDfx82PVCgGYKG+XI7yYhtKZbsMgQUiQYoyZTQ7BTtthtQtBQstex61/kJsz9fEkQHDJ0ZuvQxG7YFBkuodtcqqau5omilEQ2MhtHJYNoVs2clVh8jcdOHAuSaZvSdLpp4JGUK3yC4y+w3yQuli7DBsNIN+gqUrMI0dc3zG2FNlVDBgW5Y53L5qQ8OeJM3cF0WzB0vBNvPBjI5G+jvIpwFgVRb57BIFgJcH46fLJ/Jl00sZkrk+a1F7S1ZuGTIjFDJaW+IuTVjx8mVRpb9UuE+VFHmg4+wpEyzvKwwjFNdM6Igao7SZ+RPH05BMzSV5TRNHr9ZE44EWBsuZaVvbPgZvfDQyeBUE168uPkLoszeqTDH5h/EflAvr5gh1kza9VdxlNGB8Lwo5AB/OKlVP/d8sVFQT8FzNR64IsJfeq86OADbdaLOjf0+wXhz6sBdXFTxmkUlz9Jl3J0E/Lnx5yyehkcTHxI5dlX1BqT4C60aS7CfAEQqIM0nMtNUMYM6GO8Dd7u7oGcjqUxD4GZq1iVWQU48zxEi3+uWeEdwxrJ0cyUcApbUMPGKphxK7PXROa4I/E52xhJT9mINTX3O1XC2dK0JLQE7pk8avLueQNNOYgeC3AEI48dN2eXMyhOVy11LrhqSYRrqjtJqyutiwrJGBKK2v1n/229GUzXv1S1ciAUK5wrLTlkyHwiD3JkYAsbQnzqHBNoVZW0XUroiZcUfDEBCE5Qu5i49YWYKuwhGxZos1PEMAAc5xJLi5gUo/UxdhZYNkD2Bo8ju0Lyx+E3hsDxTYpjrChfMJq6/XuYQ2RkWAs7/Pa6h/1cvDm/3j0jmsXLRQYjMqu5oXxPcB0/Rn+ZTGFKtvLZ/PPcsWwnejyMCgupi9kxpil2rgpYPSv7QE9RrVrliYGB9FEnfGUU0ZAYvAuI,iv:gudCoyGtExsTfFtKLTjs9gOFDBK7tf7aDTqK13QZu28=,tag:PrEnQjzKUANlpE6OvayGmg==,type:str]",
-							"wireguard_wg_0_key": "ENC[AES256_GCM,data:iKA41Rhu3DpN7bI3PjEi1FiONDlPZTNdNp99H91yiKZnI5bg2NkwGbY8lVk=,iv:k2T1jjiLjZA6MElE8xYV4NtjewIclAaSvW1/y/LjuEE=,tag:261buIDfFv1o38rxZJkAqw==,type:str]",
-							"woodpecker_agent_secret": "ENC[AES256_GCM,data:c36z57qd3eBFFwgZdoCimj+1QAt4+0+AwCgj+McQZHhlv4eZpL/3AYv3/5t5moQA8xSCMNZBABOZgyg3LrkcUw==,iv:+T9YvkfVIPp1YKcgtOgsMA0KCjidjO7naw8tl54GTlk=,tag:u3XYaosZf31WsgXgjkMhtA==,type:str]",
-							"woodpecker_db_password": "ENC[AES256_GCM,data:t8npTdQGqMppYe4CvpNsUMtmgKQ0JvHmHiijH3ZiJks=,iv:A1r7Qg3Wa5iehsKvGyNT7QXnHsphfEM7unCPT0O0lTE=,tag:s2LcRdcQt11o2KAH9AmolA==,type:str]",
-							"woodpecker_forgejo_client_id": "ENC[AES256_GCM,data:7eUGnrk9ygwnoFDbb1AeQ2LkHM+9+vCKTPBV0/9Arumt3i3s,iv:E+PaFDF/kV5jFkA/6xHN5J2/QE6cwaaYTfj/et4XWjc=,tag:UtkWSRqawx+l3HB+tGZZrA==,type:str]",
-							"woodpecker_forgejo_client_secret": "ENC[AES256_GCM,data:oU7eGl97h/Io7kTYrEpJGeP8qC5ZpexdqWNF+JO5XGMfJ3T+4tVYoo7kJS1xXafAc4uHwTzhAsg=,iv:l4Tbb6D5WAR0Bnr645mTVLG9oyvquPEUHr2uT53R1+s=,tag:jk/lnUEQ3vfLFJ7MEzOHHg==,type:str]",
-							"woodpecker_github_client_id": "ENC[AES256_GCM,data:M3Up2UNTICy/JGLzZX+DDLM8KFU=,iv:WTDtlux82FNTND+lwCQJyyqBT9KtpZFHhn8SgiCk1ng=,tag:V13Gvq0i3MLM37PmK+bjPg==,type:str]",
-							"woodpecker_github_client_secret": "ENC[AES256_GCM,data:xMxf1LBuELwkPDOdAxp5vbkIurOivPwVGHeC1A9pikBa5T7tn0K4eQ==,iv:IHrJ0KjgzbP9F3/vfyjOmt17BqFBQoYnUQs1slIK6Q8=,tag:xe94dZFIJ5lq0exmbZmgHA==,type:str]",
-							"xray_reality_private_key": "ENC[AES256_GCM,data:wnOdpuUxOOcBAs3PPBkUW8T+psEcyakPGvtIbT1OoG1Xh7krmO/z+Smerw==,iv:RMWt7b6b1PhipMJJTl2tryDGVk23v0vkBj8TYvXKRGA=,tag:7rfuddt38y2A9GkKMr844w==,type:str]"
+						"atomic": "ENC[AES256_GCM,data:ztFwj5Q=,iv:YAGAuzpdyF7mcIi879MsTyXXjO/MuOWjGDtUjLCX6Sg=,tag:2W8UIeBSW1lRCxkFbSfZrg==,type:bool]",
+						"chart": "ENC[AES256_GCM,data:dzfs5LqByPAJV4b9haltYxmBcw==,iv:w1aLTjpnPFTUwSs5lm30HrGp0fjV2qzyOVTI+3TuAYk=,tag:ydFAmp2kHAONDJY4iCvXFw==,type:str]",
+						"cleanup_on_fail": "ENC[AES256_GCM,data:slpSEHo=,iv:8OsDQUlkFPxURHd7bCFbRysXx9nvs4i4vrKvI/POUAE=,tag:mBoG8JIbo2hoaUcaM2aCsQ==,type:bool]",
+						"create_namespace": "ENC[AES256_GCM,data:828Tfms=,iv:TvV+6q4iGB/a8Nm91RouFOFTr+N2oHw+h3LO1G1dOuE=,tag:sMHTJdjYizhL5vq3/p9Klw==,type:bool]",
+						"dependency_update": "ENC[AES256_GCM,data:PVnHMbM=,iv:0+upQRlPI0fBjvrYAyngTto/tWwe+I/5DB35VmHGO5Q=,tag:xQwYhRiJ+kp+NZ/wq+jB/A==,type:bool]",
+						"description": "ENC[AES256_GCM,data:9faSQ0zyQ9/fC5WkeuntuQ==,iv:e5zT8dGDZF0Nq5LrpUbzlUDPOx/991xF8jXMxSqnvVw=,tag:7Puqj2a2QFkY8hV0xiwNEQ==,type:str]",
+						"devel": null,
+						"disable_crd_hooks": "ENC[AES256_GCM,data:pPgwZiI=,iv:4dh4zlC57A2P/UzBkiTMEsI288yW/xbXRvf7AUMySM4=,tag:whbOzILfrkSwm89zWRPEkw==,type:bool]",
+						"disable_openapi_validation": "ENC[AES256_GCM,data:dDcq/NU=,iv:vRY11jcqroYHLFNCGhVqK6zFxOmeaA8YMENBrOT6Rjw=,tag:BbL30E7e3SvLAlo6e9+xIw==,type:bool]",
+						"disable_webhooks": "ENC[AES256_GCM,data:DbkGOfM=,iv:Qzy2zBbM5Gm5U1ZzdBTrlDlGqF79rlcgeUuJ7ZLMtNY=,tag:3zSyAwMTlZr9kz9pqb8cXQ==,type:bool]",
+						"force_update": "ENC[AES256_GCM,data:n4b1UUY=,iv:ztmZZHLIJu2oQs9fZWPRvz1ewCN4RcOKgocTVzB482c=,tag:R/+4FKsGagvEJkg+op388A==,type:bool]",
+						"id": "ENC[AES256_GCM,data:L71JixhUMC2r/LNo9A==,iv:ux8o+5wQ08uYnkkE98RCainuPZby+xEPgqHO7w70hWw=,tag:OouaUFCMyRBGv5tPI52SDQ==,type:str]",
+						"keyring": null,
+						"lint": "ENC[AES256_GCM,data:dIke894=,iv:vqEp65rYCdH+J9mK1uWHcPaDPb7v5ON7eYYVoZ63sAI=,tag:jb7iD13nzfYMoD1J1ZRMKw==,type:bool]",
+						"manifest": null,
+						"max_history": "ENC[AES256_GCM,data:4w==,iv:pJH2jm+UkJ+0nR04IK345NnQUme2Y6v03/2IM4vp484=,tag:UHoB3SjCrhX1ebk0QDn25Q==,type:float]",
+						"metadata": {
+							"app_version": "ENC[AES256_GCM,data:doT9+Co=,iv:pwJSkTnK7u9x3pb9kXTtNRgO6xQoizdPunyx2mmPz0Q=,tag:9wppeafnfwQDnHBB8GXTOQ==,type:str]",
+							"chart": "ENC[AES256_GCM,data:le4pzZYO+GLvKzC3wk+I8Rnbag==,iv:vERyIJH9BUSwrnoDDdUTvX3osmvDMxZM3znR/msJYic=,tag:3FRBss7sqb1Jmd2N5DARTg==,type:str]",
+							"first_deployed": "ENC[AES256_GCM,data:77SLzEG9XXBoLg==,iv:NBvo1N3NLEHN4nr/Nvrcj+5AagjD8IK8xXj5wR1TSrY=,tag:5fumc0LEoZ8uHBs6OzjinA==,type:float]",
+							"last_deployed": "ENC[AES256_GCM,data:tcwVfHDJeU6KTg==,iv:PUYIqa1Sjlq4qeJKBtW619uslYylpDgP5aeZDqRJ5Xg=,tag:k4ZuJqfqeGnWvtAYUXD4Gw==,type:float]",
+							"name": "ENC[AES256_GCM,data:sztWu+p6WUuTLQDn+g==,iv:c9Z0OIr6bLn6FybJnpdfwkgpXLQptwkZxk7h2T50NjM=,tag:2GJpyaJS6R55ZVXvEL3RuA==,type:str]",
+							"namespace": "ENC[AES256_GCM,data:Y9HyU8c=,iv:vGbdD2sOFjAfLJti4sovmAmQKjCRirfG7azlxPtdJmM=,tag:M+0gDCKB9bxdUphEBLxD6Q==,type:str]",
+							"notes": "",
+							"revision": "ENC[AES256_GCM,data:wg==,iv:3l+KKtb/A+b+svKDpRGwuoBraSY/coZHPKYYDJ7rWWg=,tag:CblroQRshzJE9uWMD8QtWA==,type:float]",
+							"values": "ENC[AES256_GCM,data:GfOiHuNZRcYSp2viDwInZ9zi7FwXNqbl6L76eVbNSlFClBAdilk0egy0yp4syHfFCUfjLZDVC/wTKQz5MpQ/nM2d3QMemEe+gDBAqsp83zG2rFtAMDCj0fW+qCeDoAF08AzqDyc+tgP7DwfN8epqkaWy7vNxodh4ELDd9rsWC8dF/OLjVa1eXhdrzFpuKdNRW9Xehsk1DFRgGHNhIlAgtkdyMBVPopghINcO/bVS2dL454kBY8VwL77Vdeo+jY6GCfHCsHJ3JHe9ZChuRu6m1Ik/zd5YoAvvPJxeuyemYgXTms2u14jdlHLG14jKvaOWdX9UMPYkP7xgeBFJmjX4MlH6SKCV9WfSM/bs79tgsYlZqIwab4L24XD53CsmKVLeShexZubUb2wWV/dmclrSU3GEQNeEqd4HKemVx3Ex3fGrZ8OlNgF5wJ7jrd8XCzWe1nAMhazIeo4By+2vn47i6sUaj8mgHkjyyoGCpMj/FsiBz1O6CLF2fxs4ARepwql7vv8fWpLUWo+M7z6+gYgb5ZTI7D/v/KGvnG+rLWJG8hnt/Hsue/sJLTgmIUkiORnSnGsuaWQ+IxPX/39TJzJrttHAOYn+/Xaqo5tUH2p+XXapbQcNllvwrYkQR3LD4PVBYu5bmYfCcFJOz4v0pIDR2FOnGIWTg1ulJG0XAWXjlwQX9vBmX+2KF1QfIQTa4m1523rLJpXNQ5WSzpfvZ8ok2iE37FVZFBptOztOD+bBC5YA6hh7l4JH+vIaZlfyk1Hpmnb8oxMGeyR896wXotaJKmX3cuiC5fuT88Zg7GGYYmp63BwKOXz4an2Ocr0Uopa+z9wCXqzxPe49Y6nyEX1S+6ronwZX41OGq9Q2+5LxY7wB7EpMn7x2qLL99pVfaCRPspbG52J5Q+QDk5FgLt0EZgeNOP8BUtu90KlPFXbiAnicyjevsre1ohQfOx09Nepxdw9tiMiO55OZB7ofQae/GNucPVFu1dVRKtf3wER50n72SWQ5jVgH/aL0XcKLFLVcCB5/ydoOLiAbQaCouSliAuJMH9zIHBGoRaMTlDQ8+Z+UGgMGwX/upLzMeVx2sJ1gi/QKfZdZGbuZ6vYACuRP3pP6x2yggVQUGChaFw3PN/DNz4A/5aZ6IFRuayaDwya63qQAPI3KA0qImyAhKnD/aLGabIZIeYHS9AUZod/DGgJ6pZv4NyB7ZzOvBatWLHjfaGXhbdEf8oufneBqn23beEJAhta+x5IT4+JOnBqWTgFI2DJqGHRWI4yrCe5InD7N+wf6RswCH4O+lUSyzj26FjxgZEtJ5F13V0sqRXLI7/GdWZcKFpB/WqV1e3D6zWNUYlMwzJOjkI7N1L13Lp5isP3Zg9ofOrlWAggb4dCVsJIo5gx2vRwrKN2+u+u9XbceUQ3lFKZ19/T+6d2dzBT+yegWPgYM58QiJFGygGDiPgpy0a9KGVnMV2131NLb6rhZ+AC4gU908v3UFuvLVyXEldHz8ZM+DHFP+NGy5XHtFcFY1sizGrWNolVynWhRLAz0MI4kJO+DOBb0QTZ5HwKjBnFuXK076xXgBGvGlCllMnSTWd9VM/dM+ujcuuPhYGJ+GAzFEKiZS96xkueMUJFsX3tTyzbmAT8zmT91H6OoAESA0GxEQe59VjjoAEku6HzEReGA/jESYvos/7W2KRtmt4VlNujfiRm1C8koCeI/JDxJS6XrAbuoo1EFOYf22bg2qGUjpHglkd9XG33EAgTTJ7eyDRdYqJbfopRUjmDpg2hY5JxBlX6uJzccBhnLNGzeRP4gPKkZONK/+z20FzHGL/gnuznJk80j0ARnJrlgBF/6IWDLDvjdjfYP9yOYmDvCW85Vcf+77K6qr4xLhoo4u9Pi1sB6a/zn5Q4JZC9Z9ZrEzKKJNsFNwUO9YTWZNwC244OEUziE2edxKf/rjCcb7kwiIgf+lXj4r7+376iW+VGuaJ+nwhybQXSGKC8RO5zB/qHT0/KG6BrXFXHK4sMocSCHGXFtRWSBlV8sLSTnPiUiBaTwJ8Ts7SjmHyTaMRKdugb5gjy6kYPOIta+Q1OxFP4sm7uyhuFNBCiEMrRyNyg+WE+4KXqqF5LzJ1obUbwaUrRXJjybI/rKDi9gbB/sImrL9p4DefoLAB7Wd0bn0HWxDgLEtS9tK0J4LooIjZoqd1QvlunsaOHMRpXC5ny5uLE1qz9rEdPA4MlaafnSeC6RFLsNQTZAzbq8d62dhzZpfVea48JhflrPpiulKUY++xgyfsxHwlitfjpvUM2NlJcM8EF9X+TMzjG7Hel2uoOVsxLIm/7+JVzLL+n/n5RXzaASNx1Y7/kEWANK2OkFT34ePfOuqe+bRdlzt6mlLDGTfOEZfPIK3j/jQS1Fh/eh6dWUW3iFXENZXR027EG3hsP3OsQsX7jS1mweAK6Iq9pLcBw8FGe32o17NEjS2Vl6oZFe1HzXuHnW+N1i8dWeR7I/OwuLkMhg6W/jBLc6XSvt7k6TJUgJT5xlarR7oaP4ujdZpjyg8sknUptsDnQJPhXwc4VkY/ZKQoNk7Nx1YhR2+qfvq0wuWVSCG+GZqIAWnw2omDMwtpXLdNW7zxW8Cpi39QlWIC5opG84wbKeXk/ufuoAihB3QzvlN68mljan4EtYSbpV05pzwqnNYHFbc4nBeO94qUP9jhgjPq4im0V5Sl0qkR+ugOLWBN64GLn1Au1EfZ8+E2lmEu3YbUunbY6v78/ftMCouzD8QhUGLtgBgOUIIm7BKtjBMQ78nV04Ir8QcerA8UsGTnoHft93TILxmpZEoiH+p8NVgSvapxKLSq5UBGec/PVdqQn77HkPXn3HJw4YYCUvayLFYyFssvMkTaJ1SG3O8XiZSZlQvgmU8A+YeZeIcTSFb0ra8NhHnUZqtx0I+QWCq2uJ0VMLLYestHw4NyKj+O4ngYu73BmgVMzKlP4ZHBGCNcKN/3y/71myG8eFzkNrWpYzCxc/ya5Xvi7McU9kQ8AJJ9bpr0R6SXHKS61b63HfB6opbNAOawkyzwISq37ldrAVDn3pewZ7HQpJmGOvSL2ofaI6bfLXOkNX6azBwV6sFPAkWxqQb32Syb8aQdsnchcfoxHh/tK4epTit3ysv3M8VBI4cJyq2wFRmlgsnAUDKUdOu/8/2xuhyiyXEaJynKw0DoLeUpWdxqol1CLZzkZcElFKFqavRHvUCiUtux6DlAX3vZONwtTOEr03U+ApyB06wOqjfBeomkUfFe1Ax5/yMVvt77q2nmURPukW89fYeWUc151YmnrvGKMVRTxPAkQf6XxD/7ke+qYTNtjo21ZQe9GFXwInogW1wLWFNDg7OtJyudDL3Ak+cjKKFlereOPrDddjSXGLFgzni8Sysw0IaKHZewBITvi1irgsd+03HlWL5Hxy70rXEaaSpl05Be6y5bKzjJzljHnCVS13ajTw+aU9Mf9EBjIy8sU/bLJnh1kU88/MkNhhoLkvu6optZx4QjlNFFpUclERqUfJgFEiFZEY7uOLxwGgQqVc6/pfyO+uQQJa0i4wtrqx/k18dulNLr9IRatJtU+a+TucgSin3cd5vZcgV5Xo1g9DzLOUW6fKZC5RPzaxhcAML/7b3E9ZJQglj35jZKmoCC+tDe5yxuCrU8NsUigfH+xszOOy5IAmIuMnCZcWHDL4mNd898yDQjEvsSRZoAvOECZqWQB0ZxJV9SAhA+7sBe2DMDn5nJ2m/k4/C48kq5WEt9SN5GQYkwWhS6yCZhhspUqRK7tnMqyW/qQmayaHx9eXYwqymzyIF/cSWRd2R84Y4VwJTyGnW+ojWZ47hIkAiMJTI2DHLJNn8G5xykSw0+9sm9sh/VVmU3k39prLyj27BLRegCq+fPD6fwXnbbAjGhFkMREnkhYEtZhkYn2tZUGqCc9Ibe8LAWSM9vtH/jl9WgUCOkgipjaEjwDYwxkrarPaJbv6gsyWRCDRSL6zHg+fh1mfbpgwIrKBq0e5b9jqhAYhdGJwBQjqRm0jwUslxQknkyp9xxauzL6r24RGXnwJDPS35ojULLZSkx93xsJe+YEfmLrF4Zty7fqKY2R0uvSDIYnXy7MB/L27ySnPoKMCKZPtREO0exmM+L7Y1kvvRbq29X2x0e+/S1r5xcviily6tweSL0T1H8G3jbfr4K+xSloBgpjHmTafKIY16u+GxuegjTgcGOC/ajc5289lNSYkQMLDwxy6CWKEzgUa9Vsslc1QeK992rrR0/+PHVMZjsE1VONmGyvZtVc1AQHwH4M786dqhz6e+zdCDCJdXUq/1cliaFqfcVOyevqcmyv3xZNO3TJU3aZ02OT89dd/AEIdvN2+EI05HlvCgwnSEzJr0hpqaXcqp/wpKv8xzFkL2doU3Ezo10WzQe0rIhWDrBaxPartzR62T+5uP50=,iv:T0PmEAsFwi0hiE5hsWJmMx7lkfmWBjNzfXR3hT3sbkk=,tag:kY4/i7yZJ5qXNt7p3QIwJA==,type:str]",
+							"version": "ENC[AES256_GCM,data:nInuRag=,iv:NkilIpbj/Yg/qUu8cEeF8lLUFOYnorrRm2VJ2117hE0=,tag:D+KlVeAb6Vk5IA//bYKq3w==,type:str]"
 						},
-						"data_json": "ENC[AES256_GCM,data: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,iv:DClBfh19lhCmgnvlEiIREemL7gHyWap0eyGCwjucdJQ=,tag:rBS+GGt2kDJ8KfLGUe/vbQ==,type:str]",
-						"deletion_time": "",
-						"destroyed": "ENC[AES256_GCM,data:RQa7bSo=,iv:CjxuNyu7050N+aRUpsWoJTbBr2pQn/FOrcYMBYM0zs0=,tag:moFKD9wgQyKNSgJU23fTXg==,type:bool]",
-						"id": "ENC[AES256_GCM,data:qSw7Xwnjc/HrwzGLJYkaKpjT,iv:HEW4NWvGuza4AIi3iDUrBK/VUQLb/dRO9c1gv8RZZbU=,tag:aqHFzaFvRtxjKUZ5FriS3g==,type:str]",
-						"mount": "ENC[AES256_GCM,data:wEE0mOw6,iv:P8pkoDTQwGwBUOnugaiYUTZjV2I+4iF0AhIvq34a5gE=,tag:Xv7onmo/DUlDISYnt1wAoQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:peUCjoSu,iv:L/KPwkKWv2Hh8Mk9DYcOnyF9/J++AJdUEWQdpAKnES0=,tag:G8FJqUozfGDxmj3CxfQnZQ==,type:str]",
-						"namespace": null,
-						"path": "ENC[AES256_GCM,data:hZjGlB5bD4Knenp8yxkzwr3v,iv:q023YVyX4yd0bV9Y3qE+OF5AAdVCwXVZhtCkZ7Di4mI=,tag:PWMLxRGkPU35eozPIbu1wQ==,type:str]",
-						"version": "ENC[AES256_GCM,data:p9M=,iv:UE6D56MEi46FlMfkPOoTzHLRQbhdph6yShYAUThZVzk=,tag:AT177rGaC0oI91b9Gyn/6w==,type:float]"
+						"name": "ENC[AES256_GCM,data:IFhbSZcwdiShcEnFbw==,iv:agPtU6vRa58CZl6+9WHwbdzcS2NdM2ZBosfCN7I2L1g=,tag:NayiVChbuclqDbThPIqxMg==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:/z+22es=,iv:b3GaH/ISBpwIgYRONcD99FPqTojr9O1HlCQDYd3Ad3s=,tag:1KiXRmhtVy1nRxc+z+0ooA==,type:str]",
+						"pass_credentials": "ENC[AES256_GCM,data:P0QHbPA=,iv:CgvKx9EqfingC0X/wr5BonbOQ33ZwUcDeGbWu4/3Ab4=,tag:FE7Wjx7oC59nEiPjUjZbzg==,type:bool]",
+						"postrender": null,
+						"recreate_pods": "ENC[AES256_GCM,data:9tJmMPM=,iv:8MeKKxhZDe3k0NegP9UJLT6CJ72yIt1B2eZveN26JoI=,tag:HyS2UP26+eAr/iooBubzAA==,type:bool]",
+						"render_subchart_notes": "ENC[AES256_GCM,data:N/v9kA==,iv:hcGUY6oHEaLEu819V7sNAK0W2XGy7Uz9BNQ0fbag4tI=,tag:bu85xOiczNWH0Z3WuNe3Og==,type:bool]",
+						"replace": "ENC[AES256_GCM,data:c36Fp2M=,iv:GbgCSgxgskiVPlosOEXZCVgWO2zTw3TMrxkwVS7GmSs=,tag:6twsQ5wiyKQQjR3H/NVcxg==,type:bool]",
+						"repository": "ENC[AES256_GCM,data:nIGymydVOnLrwstX7sUqo0rmhnxSArJJ8eExZhByo1rmakBNlZTG,iv:cc2Qm9ioVhm/Qbqg6i1L8h6ylDhF9tsUXTpjm9oeACA=,tag:FAo6Cpa7Ci8+frUmrcSD3Q==,type:str]",
+						"repository_ca_file": null,
+						"repository_cert_file": null,
+						"repository_key_file": null,
+						"repository_password": null,
+						"repository_username": null,
+						"reset_values": "ENC[AES256_GCM,data:yjnUpuw=,iv:Jzv2WnQg5cEh6BeUTaJmOs3XLGugK6aeWTyHAYD3qGw=,tag:EXTEOlk6ovveF1ZNjjXTlw==,type:bool]",
+						"resources": null,
+						"reuse_values": "ENC[AES256_GCM,data:WQQwaJQ=,iv:w9/pCZJ6D+fTEmYinbygk9strv+9G80K9jpmhCStWJU=,tag:+CUjA8WFJBn1SgQagFkJ1w==,type:bool]",
+						"set": null,
+						"set_list": null,
+						"set_sensitive": null,
+						"set_wo": null,
+						"set_wo_revision": null,
+						"skip_crds": "ENC[AES256_GCM,data:glCYeSo=,iv:PexJ2xk7Trn1p+8bRVb+S7dkSR6AVzGq5LZ/63Qg90M=,tag:pL88AL2mBrO2RpduP6NlJA==,type:bool]",
+						"status": "ENC[AES256_GCM,data:aXgXLW+r34s=,iv:OHyD76OpMGbH4/BId9YNGBNnNxA+1Olem7eKdrH8YUg=,tag:XXdSMnaHWq0lIqUPrcpBHg==,type:str]",
+						"take_ownership": "ENC[AES256_GCM,data:O5an7us=,iv:z9pG/vykJR1b1DpVFkwCjlxakGUvt1prJv5xfskpxs4=,tag:Pi0vLC4UWyKHzi1IWlj+Ug==,type:bool]",
+						"timeout": "ENC[AES256_GCM,data:zLW3,iv:lk3HawCJB00V0KyMpZRypDzoNA5RvI4oqAOGzenjby4=,tag:mn+qF5J7pye0kPjAYw9t9A==,type:float]",
+						"timeouts": null,
+						"upgrade_install": "ENC[AES256_GCM,data:SIM64Z8=,iv:ikEzPAUBaW86a1aHVRjrDamEth8UHOG+r6HK+XmuGis=,tag:ub+Mk3u8Cn0oNNs1MJIPDg==,type:bool]",
+						"values": [
+							"ENC[AES256_GCM,data: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,iv:ppJfSbtW1GARgLNLxukhPEXiiJ2rn0puTwoZk7jJf/c=,tag:T6kKgpEfZroHsjs6n5Y5ww==,type:str]"
+						],
+						"verify": "ENC[AES256_GCM,data:XHWy5Xs=,iv:dXLKDC/cL5X46Mfdnv4Us0uT8Ti+dZmM2fy1wr//kaQ=,tag:If9/xt2cOUdX56lnBrmOvw==,type:bool]",
+						"version": "ENC[AES256_GCM,data:P6CxjHs=,iv:mzhiQhEAXU65/tVZ2/fcUngi8nn/+wQFDa4P6SX3Su0=,tag:J7oq9Jsg+N/sQMxW/f/0zg==,type:str]",
+						"wait": "ENC[AES256_GCM,data:rH2mlA==,iv:BvcaHbocxSYRffhTjRG/6Rx71PdhPqngK83fxoFEbvw=,tag:AT4KR79ed6kjB1mUTX0Hhg==,type:bool]",
+						"wait_for_jobs": "ENC[AES256_GCM,data:+hdq28E=,iv:0ZBG0pmn4uL0knARpTTjJQjNIxiKLl6QP62qQw4Ascw=,tag:5twE8iWLMfN5jaw4yX3VGw==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:WDkmlfsm09s=,iv:JCHt8nA9MBDICcUKmT5l2tiIg9S/QNsdupYLEL35dqs=,tag:2NuK0Ahde+5R5DGzIrln8A==,type:str]",
-								"value": "ENC[AES256_GCM,data:gt2Bcw==,iv:eKZUzJBJDI3hptU3DJ1+fUhxb4a1eyY65QWbwxO5sbI=,tag:d59EJmAI5KjjB/p1GGwSFw==,type:str]"
+								"type": "ENC[AES256_GCM,data:XvW8ScrtVy4=,iv:oneOqNjxln55SpT7KF+7dljnGhqJkDor0kmh/lj448M=,tag:6aHpqV1A07YDfoxO/aTKLQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:uDXlKSN5CrCxXY5n6MJ6WVpbAw==,iv:KWFXwSroR8BLmxqtmRd2+RNGSRXNM+PVfOoMVNuPrpY=,tag:Inq1Y7nhKdUz200MD8ieRg==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:Q3Fw7hYJ7B4=,iv:6kzjIPpFm8AJRsBtswXexSWKCAep3LeDSoy3g5L1nJM=,tag:pO5erRSF4Jt/qAWB1Biqng==,type:str]",
-								"value": "ENC[AES256_GCM,data:UvgMbonDrhyW,iv:B4zBxCm01a7+dBv+Qi+hktKAyB8u9v+sC8x1F4dwLGE=,tag:d9VA5NxiNZCNN1VBO41cMw==,type:str]"
+								"type": "ENC[AES256_GCM,data:fF4kaKEBXhA=,iv:e5l6I25GCG36wlNnZ8FilDXRje4eU0DIiasu8YzOjhE=,tag:MEFBFa5X0I0T89qKjBnCDA==,type:str]",
+								"value": "ENC[AES256_GCM,data:yldzNVt1,iv:fFgxl7oNQWTiZJkv+VpwQU0K0Wji3VW8ECBU2PIeD/c=,tag:BX+qGIgk7bl9XP1diYW/DA==,type:str]"
+							},
+							{
+								"type": "ENC[AES256_GCM,data:HM4MdjQ=,iv:uPoynj9zA4cMDJK5v7strO3+bgscI8CCMZKDDs2YH5A=,tag:YwCGgrIcFWdXmw+jLrGwkQ==,type:str]",
+								"value": {
+									"value": "ENC[AES256_GCM,data:1w==,iv:qf+0GYDZfd3d8AfCicng5ENLhs1d+pHS8nLbwtkskCg=,tag:PZx9UCl2sR33RmTtes+8aQ==,type:float]",
+									"type": "ENC[AES256_GCM,data:37aMbnxh,iv:xIj3Tas7J8XqDyt4qVf3q4RzoXSPzsLl/OLEzAF8cTE=,tag:XAYeeJ14XE/vLkc+11fung==,type:str]"
+								}
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:fg==,iv:GCAlF+GrQ0XjiykTZlF1ByNO4kJikZNrpbnQH7wp+m4=,tag:Y7rgsaGrG/JqMRQH2pQpYQ==,type:float]"
+					"identity_schema_version": "ENC[AES256_GCM,data:Pw==,iv:PJzMlaw5deE8uDlLw//6RXvwvQbVND1HdkXAgJvaB4g=,tag:Z7rQ91Wf5eP9APgG9hp3FQ==,type:float]",
+					"identity": {
+						"namespace": "ENC[AES256_GCM,data:c8jP/PM=,iv:2L/l7w8hzkEnAZKq/3UY1inCCwKpSB1uoMr2wVKW0IE=,tag:5B4Mv9tk9W7ea/Kd2clcQw==,type:str]",
+						"release_name": "ENC[AES256_GCM,data:ki/asHnsOZ4oLXNtLw==,iv:BpWCNCqXQbfOVhSMQr6WL4e77O3Jhq2tyBx0iMmXp8E=,tag:XLcYVaROZSqeZy4NWRl2Zg==,type:str]"
+					},
+					"dependencies": [
+						"ENC[AES256_GCM,data:aLaKPDFJUF6tEGB1TSvonDPkmd0JcYVa1VErgCTTnA==,iv:X5yOfTd4dQ6Tr2mjglhFk+cCnpTo6BCS1xp3utc7brg=,tag:WdNhkiGrQN1tEZsBcAF9tA==,type:str]",
+						"ENC[AES256_GCM,data:5emIaWBYl6zv7M0u4ARArptD7pLWHLnDhCbMKifAcrl0Z5n+SSLA+g==,iv:A4iMeNIo6NFd9jUH6ofWYBqgzpg2Ej2Q1oJ8REhwT+M=,tag:mG0eZgWRjC5W1q8/r0RxzA==,type:str]",
+						"ENC[AES256_GCM,data:wVHbqznmLyU0snnY5SKwJbUev0qmJFGjjWDtEYFLJKewKiTLoQQB,iv:Nbtv9bWWO1r0LS+WjImxvFPoDIhhIc0XbCNJTEmwpBw=,tag:wxkMYuYMsMhMXd1EgAmiKA==,type:str]",
+						"ENC[AES256_GCM,data:D/Uc1F7Cg3LnnOBmo8jGk0bCGWxtyha6ru7G6lHNUZCUt6ZumwNQuHqxtAFoyUue,iv:wiwcIZTFK2c8aqMr7aqGrJkHY7BcgaijhCZ0Qf17aXQ=,tag:cJ9PmAJA2au/pYCi9Pch2A==,type:str]"
+					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:OsRCYxlkUDHaoUbG,iv:/Yi9hpQZ1vup4Df9SE8YeU1CJj2239RUFmYsBQBSrXw=,tag:0R4mW3OZkuknNt0owquY5w==,type:str]",
-			"mode": "ENC[AES256_GCM,data:kevsTA0CJg==,iv:05jrra2d94n70NG1P7apsBre+tGuiqhrkOYGKXOdBcg=,tag:JpFl0tCzTgfuMfzuOQr6kw==,type:str]",
-			"type": "ENC[AES256_GCM,data:kRaWZj0DkoqBi2fJSMuihsOTjUfF,iv:DfQ3SvjQiNf883qsksvQsR8tIX+hq2XCLamXccRSLX8=,tag:TM2A276bdRpdt5rBnt7Y4Q==,type:str]",
-			"name": "ENC[AES256_GCM,data:5FtFDhBnveaTcC7PxFL/Dl+9rm0=,iv:gCot+cVt3kfnX4xe8uAZIqobdFlZsNWpQv0mo8s3cYg=,tag:cerFIHgL/fELrwN4OjyewA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:5KXBRSbf6P0SE8lfVKZfRiUlWeFKMK/CmLnyPtzMFnTg5kFmRRevSpXLGTa2iW32U3hOAa9f,iv:E+NvYdDzMgbL2gKeNcsXJMLAmhDAV+yWN8xGVolv7KE=,tag:HMsZ8zr4uEOGGxP8Q1m95w==,type:str]",
+			"module": "ENC[AES256_GCM,data:mNNkBN/He9HkkEMT,iv:AG2OyFffgw8M973qLreD/DtkwZ8+qflWslt/Ub8jJO0=,tag:9KMOdsziOz2GyDIOFWjF+g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:gYcQaPAx7g==,iv:wP5NqbUXiaJ7BTO+Fom5K1jVg6AxSRlRzZdKA5Wmy+o=,tag:l5DZ6VXaUieG9CyXYcNObA==,type:str]",
+			"type": "ENC[AES256_GCM,data:4NIvGYv/dfvAh6UM,iv:r8bxhqgqAxd/FYxauC1dKt1rysmfyhkeCn+VO07ROw0=,tag:jTvayqX7SUcJvfTIsa/12Q==,type:str]",
+			"name": "ENC[AES256_GCM,data:Cw1cii2sgMdfawKm60s=,iv:CsNizhtOCO/l8JQiGf2Rvow440Yhbt7Xuv34eIMkAgE=,tag:PtdV1q2L0z8t+IFHUFS7VA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:r50/hnouqwnWMXD7aOVrRZsmFoIw3lhHqLBDjDKQ5viTOuVw2xma6kyEU7VoO0N7,iv:aIl8ruVqCP76mGr1JarczNGfr+cUORGoKCgX+ypbWbs=,tag:UpXzTeRefQsy9rVyMu81yw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:bQ==,iv:gt8GKfhfH1hkySy0fOyZkkdeYG8tyb6r6Ez+HQ5CeoA=,tag:yvnwSk/kKSSAQs5r68VYQQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Pw==,iv:hqhY/Wv1eZb8ShKMDqbBfjQpikX4vLJXcugJMz19Ngw=,tag:nWwbcCE5GHsbJeVVPPvw/A==,type:float]",
+					"attributes": {
+						"atomic": "ENC[AES256_GCM,data:kKrYCQw=,iv:Z8RMU3tSR4tQjdOrgFASQ2QJTmXuqZg8nR4yJCId02g=,tag:rFLBPtgFTHtvmWDeyJ9afg==,type:bool]",
+						"chart": "ENC[AES256_GCM,data:x/TCKqBAOL8FBGOlILk=,iv:2uLf/UJb5HnG3oq6TbTR8SLo5vkn+hHDlVSvG3AVbzo=,tag:f3Oi2Ab5JvMv6UEPtzjTWQ==,type:str]",
+						"cleanup_on_fail": "ENC[AES256_GCM,data:BAea73k=,iv:HZufhQvIHBtQA4KVmBjyNUGnUMgmjQUFpkvwi7wRgYM=,tag:3ed+0oGUhtExU4H1Mx/v1Q==,type:bool]",
+						"create_namespace": "ENC[AES256_GCM,data:J4ynIsM=,iv:4LMd4k9tkDWH0wMKiMeplRC2ltk5xKmeIIHiM6dQeiw=,tag:25Fmyi0DcEtcXDqg6NpquQ==,type:bool]",
+						"dependency_update": "ENC[AES256_GCM,data:phO9TYU=,iv:LrIucMy2ftvgseY6MjmTlSMpthxgr0IGgMGro+5aV3w=,tag:3kTYihE85dc83Um3vQE1Nw==,type:bool]",
+						"description": "ENC[AES256_GCM,data:FWN4gOL6FALLh+eqMuqxAw==,iv:P0pYXKEhDcc3dXQMBgoWc+jfpCCROnsFKd6LtsBdmD4=,tag:GTfp9aTFjD1N9v69RkILrg==,type:str]",
+						"devel": null,
+						"disable_crd_hooks": "ENC[AES256_GCM,data:Lp/LJps=,iv:fQea06hPkOIrpwhh/9AKpg1M4bw2ASSDPsPYJitymkk=,tag:UVozO0cXBf3wTxImd8/zRg==,type:bool]",
+						"disable_openapi_validation": "ENC[AES256_GCM,data:oj0DvqY=,iv:bcnEnmT1YjP20zC0SNLFntHbfMDbBOcehaQgEfYFdTo=,tag:AeiaQlwht1mu78ZleM6ltg==,type:bool]",
+						"disable_webhooks": "ENC[AES256_GCM,data:EINdq0g=,iv:txhEdlM9A0bhI69uAFAm37fKPjColgNjRGl2ikdqW2A=,tag:9c6+1QmCWU79EaEcCzKyuw==,type:bool]",
+						"force_update": "ENC[AES256_GCM,data:/ehZMIk=,iv:aaLdl6a+op6m3dSRcim93NbAB3u8c12IyOs8GOuYSjw=,tag:vYj1Leck8I9FGKKT2RIeag==,type:bool]",
+						"id": "ENC[AES256_GCM,data:R4u3JZIgLwS8n7tPQoE=,iv:KXc6idqrjyqEJA0Gfz/RYcrPwEYLQ9d3REffM/2H2Ns=,tag:lNa/ogGh6F5SLdpW/oJJiQ==,type:str]",
+						"keyring": null,
+						"lint": "ENC[AES256_GCM,data:4uI6oRg=,iv:rdADxBrkBPf2hEmEE1FG4zGCW1iisANcQmhPP0JVvio=,tag:BgjQCVwrA34pUFfxTVM6+A==,type:bool]",
+						"manifest": null,
+						"max_history": "ENC[AES256_GCM,data:VQ==,iv:pJL1835iBU+uucjA0g2M9O6CErupqiaeVgXyDTK+vI0=,tag:wJfZKI/E6/CSjhTuHogwrQ==,type:float]",
+						"metadata": {
+							"app_version": "ENC[AES256_GCM,data:o/J/3SnXKAi4Ji8=,iv:N3be86IGJtgYUusvLs8pGuHUhr1uSwzFOjlDB6K52UM=,tag:AOiXAx3djH/WyDytoxGtng==,type:str]",
+							"chart": "ENC[AES256_GCM,data:NWpm7gzIRGdb4kk2rCg=,iv:IfE26ZL1bWUtbNl8vGmi+G3+gsh9dpxusBc8jv1c84Q=,tag:6JCBfO1I+BAmGucc7OMRQw==,type:str]",
+							"first_deployed": "ENC[AES256_GCM,data:yeKs/XZPebUKbg==,iv:lMwySBJPzUi9rsn68N7wqnVRfldzjniDZ+RrWbzT/VA=,tag:IzjdJbXGCZ8c3m4+smhLnw==,type:float]",
+							"last_deployed": "ENC[AES256_GCM,data:D9Tqx+TVVwEsOA==,iv:HyCEQ0SRObuXR5PEWF+wbuBdlEkJjNV2vawESR9jhPs=,tag:esbtn6HA4E6UhWP+sYHRnQ==,type:float]",
+							"name": "ENC[AES256_GCM,data:s4klPSm7xtsyiweio0Q=,iv:fnBgY5Bb+PcU+Hb3QAp+u3Av8HqihKiAIWpsyJF+JTs=,tag:nr6uLo9o3Y41XjVRDEa2Aw==,type:str]",
+							"namespace": "ENC[AES256_GCM,data:bl2GEvCX8rbblN4BwUw=,iv:X6Xkk5n933pteV61AqspV1NO9z82Ob78sqNosbVgMI0=,tag:sIG850X+w+9HfZ9EoUE+WQ==,type:str]",
+							"notes": "ENC[AES256_GCM,data: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,iv:AqWviRd3LpjdwFg49ExLyJnYwuKyWE0Ddt6bBu4PDGY=,tag:LzElVKNAJsqUbAYG013Dgw==,type:str]",
+							"revision": "ENC[AES256_GCM,data:1lw=,iv:7jyyrMulrAVkPuUYZlki8XwNMNtsnbB2VlMsz+i4Enw=,tag:gOAq6guyrFKCtCdJGPLV/g==,type:float]",
+							"values": "ENC[AES256_GCM,data:R4bypBOLG3MvnoNfrfkBbA4mRjKqsVH7/cpV3DTbodEY5jkIKNxvka5havls/1GaYBEd/IzbWgZkCRVH697sn1DmuU5Ef++AsS497k2KtQ/2zmnldPQ=,iv:nyh2L6SE6vfB5oUGXzZpzYzsa8LwXZaF6aLogvSwj7A=,tag:en7t6jyMaQ7SaTNGIYsVyA==,type:str]",
+							"version": "ENC[AES256_GCM,data:iUru/WY=,iv:J+MaBDnR8FR0BygW7o7qj5gkisYXSnkd45Z1eHau++U=,tag:niTjJjHKw6mm6gzW3qhhuQ==,type:str]"
+						},
+						"name": "ENC[AES256_GCM,data:fB9Tv1GquDXTCD4HCzY=,iv:NUBP9obaDs7aB771XtosWy22ezqrl4p5woIy6O1N/C4=,tag:4Uidemm69CaH50t3Bpm/xg==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:AVnKCEN3gXeg+3Waepg=,iv:tvsXRFtwOSURw1McEHgywPydpY75Zkw8iSyX+nVimc8=,tag:3dMS2uURpOwoCTZeWifZ+A==,type:str]",
+						"pass_credentials": "ENC[AES256_GCM,data:Sx8re2c=,iv:VkVYvqxhebkU9OtT4VH0EufW/eS9r4fAAZK6f7gPFjc=,tag:dnv80NHz+LZmhuMtmEAjsw==,type:bool]",
+						"postrender": null,
+						"recreate_pods": "ENC[AES256_GCM,data:GW//lmk=,iv:UuyqTJn2poOe8IX/TYDnznA2apB3++yFQd0E8yUS09A=,tag:KZzNsOvLLnJ4PIh4JBRT3w==,type:bool]",
+						"render_subchart_notes": "ENC[AES256_GCM,data:RGsyzg==,iv:rGOeEGYHfWohC2XWRmI9ZL7kaFEdZfIoziCFUoq9sms=,tag:uAj1uzz6aZflA9Kfx/Fdpw==,type:bool]",
+						"replace": "ENC[AES256_GCM,data:lywEdSw=,iv:xkyV3oMYt0jJqrxEzroZU8hCFWwvufEX0BGkrX9UYIQ=,tag:KaPx/B+H1YcyVekt5vYbbA==,type:bool]",
+						"repository": "ENC[AES256_GCM,data:GUoXuicoTKqzHBGDIco0UnD75zuJbpPn0i1O9giC0Ypl9AIOpE9/,iv:ppMz/+5lMgpvoEy58zAGNZZ+AIrIpjHO401ANRMu2/A=,tag:oY1dpp2dXYR2VO+8lqNtCQ==,type:str]",
+						"repository_ca_file": null,
+						"repository_cert_file": null,
+						"repository_key_file": null,
+						"repository_password": null,
+						"repository_username": null,
+						"reset_values": "ENC[AES256_GCM,data:bCyzQxk=,iv:NmQa5F+LEZ+QGMY1qJIrPjuqwFMerCj/ciwBtTpiFdE=,tag:2F59Pn31Czt8UYOczbsO0Q==,type:bool]",
+						"resources": null,
+						"reuse_values": "ENC[AES256_GCM,data:mJ3/Re8=,iv:QKSGj6CP98Y6C20ABj+gc7Ihzwjbagklw6CLzIevkZ0=,tag:Mv/CjttMBy9A488ThuYcog==,type:bool]",
+						"set": null,
+						"set_list": null,
+						"set_sensitive": null,
+						"set_wo": null,
+						"set_wo_revision": null,
+						"skip_crds": "ENC[AES256_GCM,data:Qn8IKOA=,iv:PqVcgF99r3byAd8WYhPBS4gBzmD89eYWtzkjZ3VliWE=,tag:5NhO6uxMe/fTnSoXqRj0Cg==,type:bool]",
+						"status": "ENC[AES256_GCM,data:P5KepWcS9Po=,iv:K2RG07t5os2O0VlDvkg1XRYw090xpZ0TafmESKCDaxk=,tag:/vnBlaAsvj/G9l9FOo5aqg==,type:str]",
+						"take_ownership": "ENC[AES256_GCM,data:/CPWl6Y=,iv:K6dPWI0KadvNTcGCYzJ0/Is+LNnWleIkmEAlZCVibV0=,tag:kFmrhzVcdoMrIzIVCNPlaw==,type:bool]",
+						"timeout": "ENC[AES256_GCM,data:Vihh,iv:/EqpXxghUOOK4o8NZe9jxTzuw322svwVH2WhX5wWtYk=,tag:BTVpmgM1IdIQFo7nplypaA==,type:float]",
+						"timeouts": null,
+						"upgrade_install": "ENC[AES256_GCM,data:YEZJR/k=,iv:Dn+cVaVoud7J1CVGmWAO50CgciWhHQtWjMFXvZPVtus=,tag:e4PxaS7Bg3Cg13ixjXIf7A==,type:bool]",
+						"values": [
+							"ENC[AES256_GCM,data:7NWu0C76aPmsfSoVcVXjvONB3VJGQyd3BHNebFN93tCp4tgbwScs2XzzQGwYffLXG37Q4NKXSMhYUO313Qu9k1mXFnOST1/JTMeu8VK3KwzYFZpmvEXiD20B4y6giSZzXjsRX5E=,iv:xce9ieix0p499VaS6wzzXvJizRahdD6Vw+3okV0Mvo0=,tag:2iSDIvuGaVym9ly+mjm5tA==,type:str]"
+						],
+						"verify": "ENC[AES256_GCM,data:PFD6Bbs=,iv:zXB9cRlDY0MQrTnYjN71YSk3LzEinL1dULGAnVvUPUw=,tag:0wb9I/JK8udSOE2oE+oV+w==,type:bool]",
+						"version": "ENC[AES256_GCM,data:W34JKNo=,iv:GfHFtbz+lz8XzrPvCmWXujIEF/ahtUi1Wpdbtsi8mOc=,tag:cXULlC7h7ugQYH2A4rQEzg==,type:str]",
+						"wait": "ENC[AES256_GCM,data:4U4HXg==,iv:mDJY1qralj9PA3ELMKIC21gcbCs9zOQJuemEE6DLqss=,tag:6Epmooi2bH6iZ55Uf2u1sw==,type:bool]",
+						"wait_for_jobs": "ENC[AES256_GCM,data:YvPeam8=,iv:THCJg4eOc2b0t1c+BeoZdS2F26obspgMEUg4IqAMlfA=,tag:ipjPnctMTMmcE0tLQr2CHQ==,type:bool]"
+					},
+					"sensitive_attributes": [
+						[
+							{
+								"type": "ENC[AES256_GCM,data:a2DyvYT1ZzQ=,iv:reGDK6iV3411rcB3wiyS/Z9iEbF4w6Eovuly+wHw7aw=,tag:inVlRgFDNNdvpcvGeKPEmg==,type:str]",
+								"value": "ENC[AES256_GCM,data:VGZOPgIuVdR9JeYHsAIDW4Bw8w==,iv:OLxP8UITIe5a8H2D87p4Xu21DK0dvRcS2sBIwJ6u928=,tag:JKtE31x1AOj0sw5GMHue2Q==,type:str]"
+							}
+						]
+					],
+					"identity_schema_version": "ENC[AES256_GCM,data:uw==,iv:lPvwFg0JusOQD3MYodYT8aTYHWesemTxSpk4Mr60N5A=,tag:4/CF8BcXzpFeOu+L0xulvQ==,type:float]",
+					"identity": {
+						"namespace": "ENC[AES256_GCM,data:T8P3VifP44SwaXFkrKQ=,iv:Y1eIq02bBEDqh3wvq0HDa61sJ4/1RU4FgdnEciewHJc=,tag:gLselY+h6uC7fKPhyg8XsA==,type:str]",
+						"release_name": "ENC[AES256_GCM,data:aq6S4vZsknSZSclkNPQ=,iv:RWwu0xcRl3kyKIsjrN2syxz0iMSG4OBMRautQQ9sOzQ=,tag:aXJrUWo0A+lVNo/0shhKZQ==,type:str]"
+					},
+					"dependencies": [
+						"ENC[AES256_GCM,data:oJEEcst2gXm6YwJ0lUU32ExdFY9xkTmG3jCbtt0kgTS/yx6RbwC4759C4gTAS4JA,iv:FqTRWcRU1pOfl/7wovFxeZOMYGWw9yHf6DD0sYbFOrM=,tag:nkyrgMWQonjJL5OiB36Ldw==,type:str]"
+					]
+				}
+			]
+		},
+		{
+			"module": "ENC[AES256_GCM,data:MeDv3OJdHhwKbgb/,iv:ONsVq22ZhHxmAEz2E+trBpyBBklPqqLFbHWpEfDhvv0=,tag:Z5KA96xxJFJUke98zYsJTA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:M2Kx0HZ6qA==,iv:Wg5bqN4SYqYjm68ZUV4b+vG/SavHh1WNAyQk656lXps=,tag:tJeduLiiL8T27I9uiikXBQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:2kXfwmoROwC/ta9Bh3jsC4oBWwb6AL4=,iv:LujPy6IfpuAnRnjZmdfn10h/jGAfGnpuHabrk1Nkqd4=,tag:Ox0oJwrBZDJ3Z815NbJXGw==,type:str]",
+			"name": "ENC[AES256_GCM,data:6M270326t50pw1QYAQlKpjKkoA==,iv:UuJ9aoZkExVfS/cNyg4UTDra59SXzylwHMoomrGOWps=,tag:3eOyqHyQpFgTKuM+yWGHHw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:RzxG5Zk6VYFWmx89vGpJ2jb7mVQeuBo/Sv5L38oGgeE1PGl56vdiCvanhtFDV/kRYkvyL9mm,iv:lSX6aB5vJgmcXb4N+San2m9LUPzCNvCRDaN0sAK6HU0=,tag:VwJhQ9NWGMJFwdi5KgiJsQ==,type:str]",
+			"instances": [
+				{
+					"schema_version": "ENC[AES256_GCM,data:Lw==,iv:RoCfz4mWcNfqdebWT35+GaW786I4X46GDOd+bEWtavY=,tag:ozVqxbFgpVXSMMdVnwXENg==,type:float]",
+					"attributes": {
+						"aggregation_rule": [],
+						"id": "ENC[AES256_GCM,data:u9r3kwEuTYQ1/vwpvRKCGnDRLg==,iv:xEGNJq4Qn988Ll0/ow9G/KDvU8Lk9UDbSDqQZj51hlo=,tag:4Rm1m7MN4/MZUhwzM0VfjA==,type:str]",
+						"metadata": [
+							{
+								"annotations": {},
+								"generate_name": "",
+								"generation": "ENC[AES256_GCM,data:tA==,iv:eBzzh22tOifctbHLGTA5L8CsSooECQrSUd3H9XrUMz4=,tag:D9YgXQH/GLWJtGVRLjK30A==,type:float]",
+								"labels": {},
+								"name": "ENC[AES256_GCM,data:KIin5ZBl5WcB4FiXtnXHh9gZcg==,iv:W7YNcMORlGlM3cGTVjRIjzzxgQ0iJnIUEsiN5PoXMXU=,tag:/q1vq5LqDtAIm+x+moKLjQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:SHY8AyqNQ5KJ,iv:5wxezKGyPBnOVxrX/Xj5SU8LVGqskFppLbEtEMr1qUo=,tag:K0vzMIpzuIBWM+rNxEVRCQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:OnbqGrJc5+/odToeH1taBR9F5XwtV3urnJlQUKj8LJHtLp++,iv:8e9UxAEnUVwrzHXF+0uOW1wL9cS6f0X3ldaTHU49klo=,tag:/2yB8yL7s/ROv+gz0YWqVQ==,type:str]"
+							}
+						],
+						"rule": [
+							{
+								"api_groups": [
+									""
+								],
+								"non_resource_urls": [],
+								"resource_names": [],
+								"resources": [
+									"ENC[AES256_GCM,data:ux9VeODxT2r9nA==,iv:3uF7Wn8be82DsP1UEhph+zSalsgq4QTHCncgqQWUgz0=,tag:hUH6geDB8RtR1PSdITnBCg==,type:str]"
+								],
+								"verbs": [
+									"ENC[AES256_GCM,data:CWFwDQ==,iv:m95g1PL0ubZdCfiHlo/pmXfCzqqhmwW2ijD0+f14ExA=,tag:vsxGAp2U7r3KLiOFkIniQg==,type:str]",
+									"ENC[AES256_GCM,data:7tXenw0=,iv:wYlVLMwvMBhJ1YVb9ZJs0vrcDkeLyAzazpEhOFvZuiU=,tag:baujV39rKN0ZDePTS46pAA==,type:str]"
+								]
+							},
+							{
+								"api_groups": [
+									"ENC[AES256_GCM,data:JGWTU6B76lZ0YQYgRwe0Dp/9GHc=,iv:7V8zZEHPvVtsqzJcte70G+R35BwTHlJSunHsqFC6Z6g=,tag:yVVMj8DoSuG4LniYf4dSXA==,type:str]"
+								],
+								"non_resource_urls": [],
+								"resource_names": [],
+								"resources": [
+									"ENC[AES256_GCM,data:LB1SL4V5htlRJOjic5VOW/gKFR17caVLpA==,iv:/PH6eVRJJGFP3EXgz3JZlVFoaeVhODJZMK8ioPHgQWE=,tag:3oo2blJL+mQq72Dg7TStqQ==,type:str]"
+								],
+								"verbs": [
+									"ENC[AES256_GCM,data:kK7Obw==,iv:Nbc9XmPxMPQotE60dQJRUkUZBeGmnWVDChTstxB8Xy4=,tag:vIm7OYPZp89qG4Bunk14mA==,type:str]",
+									"ENC[AES256_GCM,data:NEa5lkM=,iv:Ue8u9OUHHxWbeCyNiAwdFfQisp/mrgCe4am31sGEhJs=,tag:fUDsbrjWLbd3LTHNzXG9Cw==,type:str]"
+								]
+							}
+						]
+					},
+					"sensitive_attributes": [],
+					"identity_schema_version": "ENC[AES256_GCM,data:Cg==,iv:gilpUQ4q03dGxuQqe5IjHcX0aVGL5zDtB0ZV0DP4vKQ=,tag:JfHJIEHAKeWG88TuXz///Q==,type:float]",
+					"identity": {
+						"api_version": "ENC[AES256_GCM,data:/pbJ63AgHRYtJ64U2fZ+1MESko8qUGzTU6F6gA==,iv:9t5FN/Ada0Rsfni6eghQo5eBKqThkEJwK/v7jbZ+Kco=,tag:7eClqb89oRZzXGMUR/7I3A==,type:str]",
+						"kind": "ENC[AES256_GCM,data:zAuJ95Olav7aQAE=,iv:D1tEAZdUs0CVU163R3RchGFfq6eREi5OW8EkjHQZtoM=,tag:pSNrIZThxulB0TiczVFWeQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:hv+6GgNN1w1AqpOQUxPJDttHVQ==,iv:4kqYv1oaR4ClEcZO/le2BNGNHUsWh1QpmBr7dFJkC7A=,tag:o1oAfsrreMrqVXa8ejU+Fw==,type:str]"
+					},
+					"private": "ENC[AES256_GCM,data:vBZaRf5j4xg=,iv:PX6845Vu25VzOdTA4GKMPqHJmM2+qXMePnbuLFIDRbc=,tag:AYfWivSeQv+2PCJobT8IsQ==,type:str]"
+				}
+			]
+		},
+		{
+			"module": "ENC[AES256_GCM,data:dRwU+wJEbYuc7o/J,iv:KNGTRZI+I0dkrcAm286wQatYlIwMrwlIkjePjJWG74M=,tag:2tYNwQoZeaypecjpH4/rFA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:UCgSo3tMxQ==,iv:4jbMKPqsiqmFJzz9Mnuo7XdGTzjJVJssjFTaUnenmhE=,tag:3x8kqDvdD+94GHJM3xIE9A==,type:str]",
+			"type": "ENC[AES256_GCM,data:Xr1rDKhbAcstD942yFvnRKOYL9Zy8Awpipd2fbZELw==,iv:nj6StzTHs3KBaKFLy1UC2IcxW5N80BimmzVFOqbt1Jk=,tag:Qaj69GnSMAIGaO82glpbxQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:0bXTzTdhxG5j8QbWoQEwGw6i2g==,iv:fI73sCJShIRQN+9dTaRdLtNjQaiobFLs/GR3JaVMRkg=,tag:zisDA5Gkq1eeFJbEsAiunA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:XaopUpUE7lykPPqefvEZvAFwMk+qzG9s0RCz7hybAIYvnsPEnhVnzHsSGKUGZUDbogYeP3P0,iv:gTDS3OLGAYr7MHIls4FiaHwmxyy3SfEa+6cQng4wkDA=,tag:I7m8Ol5+HbJ70f6snQwmcw==,type:str]",
+			"instances": [
+				{
+					"schema_version": "ENC[AES256_GCM,data:Rw==,iv:mwMPUnz+Wz+kHEtiOdlUMLyWOFrw5GkPHNTylBZkPOM=,tag:4o/R3RaFAkyalipnerUBKA==,type:float]",
+					"attributes": {
+						"id": "ENC[AES256_GCM,data:BV+R3rhnlUlpWxPET4HOQRKbIQ==,iv:WVFp7Ki2EQTVy306Ws+bQLP10P1a83uzw5WJwM74BuA=,tag:5YMMYCS6KEtQXDenbUDoPw==,type:str]",
+						"metadata": [
+							{
+								"annotations": {},
+								"generate_name": "",
+								"generation": "ENC[AES256_GCM,data:0w==,iv:x9vqKtkmkd3W6OjVVGoN1YG27Q31Gkzfh3j/mthY54k=,tag:MGGVNKuhUSLHn6AvAxoTtA==,type:float]",
+								"labels": {},
+								"name": "ENC[AES256_GCM,data:6cskXmIHNFJq7fVo0SQWgP0h8A==,iv:2YhR6amGh6pnnLot05rkFsJjDlUPSyhPU9FVCEZniUE=,tag:FWemnDcFRNhAGghG2yy3kg==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:0kVvmSZTxJtZ,iv:j4pk7aKdfMLqYsWpMC4y4LMkc59HKtckJ1pjT9xiSyg=,tag:e+z7k1vhJp7ccjLkws2ERA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:DB+AidHeYkM/4iBcpMaEeHvFT2DDRU51FGW8IQgIrwcs+NvI,iv:9pSxYr956vIjDbzrbmQukICGPwRtgOWo+dVYh+MpWmI=,tag:FtXCh0sLzZzc7kd+VqRAjA==,type:str]"
+							}
+						],
+						"role_ref": [
+							{
+								"api_group": "ENC[AES256_GCM,data:7NnQGOyQ7KB3sr/Lx9v0QsBY9ttGtLsHqw==,iv:Q9tleC9wgdCz2JjcByrVFIlmz/8wk0Ezp3Bfyp4cKrA=,tag:0yzZZk5RmnByQ1vgilCQ7w==,type:str]",
+								"kind": "ENC[AES256_GCM,data:WBlimCx7B0gveMg=,iv:uFVmXF0zMzvaFMZGLsK9zvwqPs83GoGd6AvOif2fZcI=,tag:I2FixRPWZ3gyNvu8mKckMQ==,type:str]",
+								"name": "ENC[AES256_GCM,data:L8s+5EtleZJYhGmtGyVp/d66wQ==,iv:d3ITekhtrSU9G1LjOEVjUxJynmgGirmjJzD3YlDCHfw=,tag:Pf+gMoYsu5sFfKmhi5OiEQ==,type:str]"
+							}
+						],
+						"subject": [
+							{
+								"api_group": "",
+								"kind": "ENC[AES256_GCM,data:0hOQRvvDDTmtEy96GF0=,iv:Qna9wF6Z++golMCP98oIPJ7Ox8u7/N+QGHAmxzIwetg=,tag:2tIYx1bslD2Jr9T3iNOnxw==,type:str]",
+								"name": "ENC[AES256_GCM,data:TZ5RygdRQJv/amEQ/uaoTQ==,iv:leAV81SyRGleBdQBsE1qEYvqjqCxYUuYyVwwTASkNVQ=,tag:FYz4eeEhKLdwcKC5+8JVDA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:72Ydk78=,iv:Jipw9uH4/RFMFgdqYFJbFeOKMjS25xDBzXKFryWZUcE=,tag:kCuRJeuiwr/bKsMcrVjuZQ==,type:str]"
+							}
+						]
+					},
+					"sensitive_attributes": [],
+					"identity_schema_version": "ENC[AES256_GCM,data:DA==,iv:/P2eva5wQW7wAaKq1oA/6QhgczcJ4RuooLQt8WvT9L8=,tag:0A2w211cyh5xr9eHindY2Q==,type:float]",
+					"identity": {
+						"api_version": "ENC[AES256_GCM,data:4UgBlEat/ITugNr+RDQQlSyDvrTKNcW+M4wtlA==,iv:8e7JmtvJ4CQLBD+1KiG2yKcmNflHIQKecvEfM2EoKeo=,tag:a6/k6KegCeBUuyjcCqMDmA==,type:str]",
+						"kind": "ENC[AES256_GCM,data:j3h8OjwR5+I2YvgTnMpY1joC,iv:ivQINTqHPBdOgDc4sx8cFeASfohBjOTnmdHrEbDd4GU=,tag:iS+OivPXaW4ShRIdyQRw7A==,type:str]",
+						"name": "ENC[AES256_GCM,data:MQD4Jjpk2t7zZ1k09bH9JwqAoQ==,iv:6pOmKzjCHCVtinRYVT9JBHjWU715cStYJEUNB1SCMvE=,tag:tG1MFqNkQje3xm58pfi5rg==,type:str]"
+					},
+					"private": "ENC[AES256_GCM,data:ujSae/kN70Q=,iv:EtKajmw9nyxhpk3qKO+9XVZk/S4r5O5JwqtrY2z7SUg=,tag:EXZ2r6feEonowCQB/vHNfg==,type:str]",
+					"dependencies": [
+						"ENC[AES256_GCM,data:hM1yr1Pa4rrWDYaWSs7zrrJk1XtlIylUknH4p8tWceJhDSOUHSg9g8ZuTCy5Qo2A25J1xr+RMJM=,iv:A7NRraNuLuQpg/nKNqFtdvEIB5WbZvk01bTodxAaMh4=,tag:s9YBKZwBKy2hJVmINiYE0w==,type:str]",
+						"ENC[AES256_GCM,data:HTJFx2t+JLDl4CQNjSflVVrmVVy6+VFpbQP4uFAlCzbXzaQmf5mq,iv:6pa7TfiZHvmMZe9qed1RAKgYGsKGN6C8ejDMzAL2XjA=,tag:C9lQPWsepYx5u+fPX+udSg==,type:str]"
+					]
+				}
+			]
+		},
+		{
+			"module": "ENC[AES256_GCM,data:vAPVDQdlDmzlIag8,iv:y65XcaZSd1+ER/IVg019+v8wnT4CceBToyGaroyS0pE=,tag:uvvGLQ3xIaVZNObiJ3L91g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:WbcxFRA1bg==,iv:U77SMFyfPE3MnmOwDVjZdXJs55tF9IE4OyGnlCNY5XQ=,tag:NFGPid9uNf4sGTGJSXGhPQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:8yF+9mYaPbOLJdmIiGE+v+JH7Yy+,iv:PkBPmO0C/neL9uud5Lyx5O059Vn3PulE4hQSfmxARU0=,tag:2ojORRTHU2yqU0GFv0qMjg==,type:str]",
+			"name": "ENC[AES256_GCM,data:OI45IoK3dOR8NLczJrKV,iv:HFxhHNXqfCUl/P6uTJBh9tEMq7ZmqnYCsNG1/Uh2FAE=,tag:1Lv3kCIzC+INdp5tX2mC+g==,type:str]",
+			"provider": "ENC[AES256_GCM,data:Ccmqa+6pu4oQsNwrS+OsD4sz1/H4nHfd3oE+Mc9ssqjqqdFDDgoGIUEGUGNTM6tz0jPyUJF9,iv:S7TBtO863qOoMX7vvO8pP2RBp9n9J9cYSFXUK+gx9+U=,tag:4pu8LBYAjiJlo/NM4Jk00Q==,type:str]",
+			"instances": [
+				{
+					"schema_version": "ENC[AES256_GCM,data:hA==,iv:d7mHcL7vvs4l6NuppseWY7N2AfrvUHZ9oP1D024Um6w=,tag:NtdkS8B0SqGxzAKGbDTlLA==,type:float]",
 					"attributes": {
 						"binary_data": {},
 						"data": {
-							"standalone.cnf": "ENC[AES256_GCM,data:un6o0fEh58NVzZ0TlCklj+iYN8X4guk57HaSP4/qF8IR60ikzx7KivxMKCbR7hUCNI5IUBhE+wC4uhUk9rcnvoLscbHmGAbiwxDLTga8c40Rdlu5eywhTNuJjvdfHyh/zr98eKjDUJEc+9iKsackPLdesjUmeQgb/s17PDNMO6jyxYleoTq2M9GMIsT1BRH4TzQUh5W+AlxaF89FonAVjomTo6ekYLP665SviBcTOMfGlNN6LyWT+vqMkWoo6n0sOX1EbQlKPekMuKtgS4S+la1Cw7rDxcKqpBLWSKOtQ49/EIWirtQd6yaZkblyVg6HUdCZBFZCOL3PiKmqZCLun4li4pPPYeN18hrD4C7C4wIMN1pS6/PNmfCEUEXlOUR9v/kQFadjUfjw9W0Iyncy53WuhzEqGrDHrhPFFs3Jl7SBq8+OlrKNEOE9d5BeJLkvtEGa/r88XD8Q7OmAhSMgvJeuE60szRpbSCXiYrDH8PNVblep9TG2hMWDVzH3om4ayLbnhSGD6C82UeiGe52LioU6BihboydWP9zx8ZXpAsJBERLSKHSiZHbunhysmKYRzsqCSPx52wc=,iv:FqdPV8/FCS6JmQdwfA0dud2nT47XNRXv83mam8aqwek=,tag:VfYK8Y8g4AL/JKp3FcrOxQ==,type:str]"
+							"99-extra.cnf": "ENC[AES256_GCM,data:C1Bapc0fmjMRQ5Wc6SmoLhOJcq6ynMnYHh7ND6528Qk=,iv:V2Wu2Eeqhu81FJJisR8bIPwz6Z0suGeGN6bKMiwAE5w=,tag:jCzYKx3W28gVt8erLWWL8w==,type:str]"
 						},
-						"id": "ENC[AES256_GCM,data:7TQzfOz5h8uOCwSIotGDtCx/axElAe1hpRo=,iv:miyaWa4VtHyMLH29qu42UbSco9yxYSXAIWA8VxCvx2M=,tag:xzFXJOxL/7aZyLr3yhxHVQ==,type:str]",
-						"immutable": "ENC[AES256_GCM,data:A/ee3J4=,iv:VDFGF5w5aKq2YTaKRWsq6JzVexXNY9i6h/zwrYUpfVA=,tag:BYDsoMUcakDruTz9hPA+DA==,type:bool]",
+						"id": "ENC[AES256_GCM,data:5E04IgpMiLpoO9K9Yik6CTMSrA9R,iv:azmi28dHRhzgLO/FLrgWgfqsXdxHMD4qKSQ41m1evX4=,tag:31PakxUXwi7dOWWrsoWCEQ==,type:str]",
+						"immutable": "ENC[AES256_GCM,data:3ex2VhY=,iv:HHh7empp6drkydZS8LxJAeconYzncN8y6h5hIsSvlCU=,tag:l0KKWzr009nhGOPy5Qrs4Q==,type:bool]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:8g==,iv:n6nzmSGeegaX4JsjozygNV2xwcCz6fuNfZdaJij0iR4=,tag:abK+/y70PgWPzayHCV95dQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:Lg==,iv:7RfkxQgnvxEmNJS9aYLXvCZxF0sxFgPDSTrKC9NFHy0=,tag:hIwaEhhxqcgj7S5kxllfOQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:FZQv7z+gbsmTYsSpnMdr/lBBa0A=,iv:tfw4osZOGMWPF3j2Wh2hqIhgq9kuHzLn4Vt0A0ulBFY=,tag:TPsy+JtiYraXd8yfLGa19g==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:7DXlC+4=,iv:9m/l18MSfB/7MohZwAyXael7ieytpO1ygAu9QShKKC8=,tag:y8IBRcX3XbHdg885F5uwlA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:Yuduy10xS8un,iv:4brpEeE+TW82mBsgakedYJNi8fjyQJMz83JqjhqGL3c=,tag:afh3R3p2mXxH4G7Pg1/K8Q==,type:str]",
-								"uid": "ENC[AES256_GCM,data:cfhuhdYaalh3JHGSGWR0nU5PaTNVwFkwQUnyDafeukS8JwA1,iv:Kglw95SRFVnzrJXCj9L/yeit5eY2hY7tK+igqGyn72U=,tag:nZMgurepmu5zPQOlrSq3fw==,type:str]"
+								"name": "ENC[AES256_GCM,data:Tfxk7FhQ8KSZTkDfhIES,iv:ZTQYpuMDczd6xcX3dSe7y/zNol/xwS20pRgsyDLX9OE=,tag:fWxgmjQ4ROnMAoIXEmi/SQ==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:Q92DmkY=,iv:YRrnZ05hHdlo4L+Zxp9T/BVz2VMdIO8M2SPNcohLJNE=,tag:l74Sym3ILbDb6dcRsxBe/Q==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:q6DlchzI45OR,iv:ng1PBbqC/H9HTmWj6xWhiZfzM2RUvlqIivJh6mlRuME=,tag:aMQuXHS43erLFzdAm89lJA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:Sd6nh3EOYW22xVTfLvdYaDkPwlLuzSVB0LfgA9GyzZM35yhQ,iv:kGAbMOLbbRUdpSbZDzlFsJcUhot6z/QLelgOh7Q47dA=,tag:eY2fLWgM6aI/5oWgkGUh+g==,type:str]"
 							}
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Tg==,iv:+07qrwiVjKi4ABDkeDcVOaLs9GUe8OJMgVT5JFpA2o0=,tag:Vk6b6MIjWmNw/bsHmQ9KSw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Ew==,iv:tZGxGLjWTb1Ovwdr9bFQ/MWCXrre+ES/BxK90YnJIgE=,tag:xGrXvtK6GDBEdou6Bbn+PQ==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:4Dc=,iv:r6tAdoT7QgEFXxn6KhLSN1/9egMJ90NibCzNN6q+7m0=,tag:WY/3XW5TlVDx+ztvBi2Gjg==,type:str]",
-						"kind": "ENC[AES256_GCM,data:xXltSB0CVVao,iv:DYupg7NsmMxQWFxOAAJZ+YKaB5Bedc880wPWzosKLHs=,tag:kfCI815nKpEVDxjM5THzBQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:WwoqIt/q8hCgeBIR162TfDS/IyY=,iv:ni7qoo8Hs8/mwDrjLnroVnKfouN2iZgvabU7whwoMwI=,tag:aDgfJE/09lhlXIIo4A/pgw==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:FXXsoKo=,iv:Mt/jUowFLyH/3DT3NsignlQ4Oz5U1jLR6SXhPEz9zII=,tag:6bY7YPT7CNKG00OeA86ncg==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:j60=,iv:aEl+EH1fN4JGsfsK3ZvivcQZqYEZpS1zyjJ9N/cNZ3E=,tag:7gRVJ48qbII6PZyo662nIg==,type:str]",
+						"kind": "ENC[AES256_GCM,data:s+6tCMScP+Tl,iv:vTZ+I2YXbTGX6UC59vP65IeygJzJK3e390/Y8OWWuYA=,tag:WD8tADUh5mS7yLZYiyO0UQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:idrB4LyWMP2nlAr2wBm5,iv:xRk1p2gF1sw+pARTvBRFNzlwT1JIqG1UVpNvINpbI7w=,tag:tCIw3McASkl1RHdA6OgU+Q==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:ELOHQic=,iv:hZBZAz/jlYjQTmQ2wWFzBSvBDYuiPzqRxJwQBnWbeaE=,tag:RmHxBKSbJENZs8BUxffoEg==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:pHxDrn3qP67LURLWx9IqZhFADLx+oDCYc1Z5z4e3rTY=,iv:GVQ493uLtx79UqmO3FQezi4OWfrGQ9SbOE/D8tgysUw=,tag:fe8DUxVFuWqMkvZIzhxG7w==,type:str]",
+					"private": "ENC[AES256_GCM,data:tQITaUgY734=,iv:eP0+DuU69NfZdCxx8dayyDCXaST96d4iXnCwXszC0Aw=,tag:3IT5+m9TWFEl93Jt9tfU/Q==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:bNANDC6HWFvxFz2Nsg8voIoUWZMNnAYC9wpsNcHKHuhvMMzcvO7R,iv:4n1Y9J3+KFD4cfRoSfgN1/vST9MPNMBKsPOzso9uTaU=,tag:PE9Hz4aoiHfQb4bVO495kA==,type:str]"
+						"ENC[AES256_GCM,data:0mIwq12p83mffJlvZgol/l5V86xiWliNFIEIVmrwk5RbUhMHPiwj,iv:z+xv161N0eR7sxrOv5guqTIzMDxwdWLmDf/8Lsrgv2I=,tag:Zj/xokJe95Z4rKoX8l72gg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:3pIWk0HpLVsDXm73,iv:HwCm9Cy7fCvDHpfiR/R1bDMWPh+oxG/Nw6sHNzX/e7w=,tag:VQFyfyqNCf8k7Y0ue5N7GA==,type:str]",
-			"mode": "ENC[AES256_GCM,data:rRg3oU5hGQ==,iv:Gf4SFUB3vzBtZ1JIU2U5XK5dugX4rMpJVbofaVzWZ2U=,tag:n8aK6WINPZCgDGYyoVRSTA==,type:str]",
-			"type": "ENC[AES256_GCM,data:3B0J7fmumUDyqtnVhvv/nBHodWcQfA==,iv:JYvVTZtArT6S4pjhP9CCb4gXIVzIJ3WGWAQVCvvNkC8=,tag:orftnlOaTJHVoWM7lQcx1A==,type:str]",
-			"name": "ENC[AES256_GCM,data:n2/j9a85sLpPBBLz,iv:/gpFrwkuY4QOY7CPwHeuUuggh/GNyargBW0zUZr9lFI=,tag:PITGUbtd+9cvYULXEdVj9g==,type:str]",
-			"provider": "ENC[AES256_GCM,data:849sG4FioviP87VS85vTFOsGxDufaKQv+0t3qn8KR/KdlvQWE95FHXtQ+eQJPD0/ZJ8ImlS4,iv:emOKPz+awZD4fcBU2P0E+2iPp5F58FJMm0056MFvVDs=,tag:rWqNR3Da1FcnSQegFwnkFw==,type:str]",
+			"module": "ENC[AES256_GCM,data:hwXYw4g/stBZdvSz,iv:kGMZX2QmVHeMsJfYXM5JA2d7dj+3DPs7LE4bN+mzxoI=,tag:FX816Kcbvikn+iGn8jMD4A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:U/uXN61hgw==,iv:K1FPBM8wzHJWLDZHbGMdqkOoK4lH9iWuPQnnF9NQcw0=,tag:aY0nrEDdjdeBczHnmHBzXQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:2AfCPN/RrjzaQnPMNMgqzJoLgIlU,iv:WzU3KFJAqAJekJVtDjdgs7GBNrC+QJlAmt9B1zmXyMk=,tag:Wf7iNUzzKGD4a9x5yW32Jg==,type:str]",
+			"name": "ENC[AES256_GCM,data:lu3pMZfFp6V0uYUqNj8raoFHHTE=,iv:ag93VEEzV9XLA8qan2okbqJ8PkWMDtAKwuTwxU+ShvA=,tag:Mn26+0BYouxY6KMIr7JCDA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:ERdudRVzL2PMixJdB4kzSFqmAvjLjX8vY/oMIfBLA+ou6o5Mkdlp9fn1IDcmEqohTQEa+cox,iv:Lwa2jIOMfppl18T10M+N6VJh/0j0WDuNjThcnBFPMHs=,tag:GSuDlzXnwV8DQH0ji6IraQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:3g==,iv:IrkEG9HXcFyG7jjgiTF4LUiCBMgNM1r9q31eJzvb7SI=,tag:w+Tq/UnqUOSKI6AroxpTrA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:0g==,iv:vcoFzrgxBaFFLoHXn8fHnZgQaBqTKk72IL2w6tikNns=,tag:+RrIdILaie3HSppbO5EnYg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:HBgl8HDqvAnck9puvRRvEAdH,iv:PSZKMKbqL6VvOjAtKf6chNw5nvKvGWztwnwxvh8jBBY=,tag:1pkBr3beqMhrG2iXjzYDNw==,type:str]",
+						"binary_data": {},
+						"data": {
+							"standalone.cnf": "ENC[AES256_GCM,data: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,iv:lCKScmgWLMO93WXPH3RD1B1Eolj+EcuYNmeHZ2g3o2M=,tag:BYyHuzWPtLWx7bSMbIab2w==,type:str]"
+						},
+						"id": "ENC[AES256_GCM,data:ubSDL1TeZ6qZamdpnTiWw+efil7QbbS8vlg=,iv:3QVu0QFvC79/+ugZcbXsWsbFquhj8f9Y5B17J55mD+A=,tag:WDTTXAmcJ6JnQivuHx/dpQ==,type:str]",
+						"immutable": "ENC[AES256_GCM,data:yjfiHL0=,iv:96vV7YAgvUcJ9yrueAaMmZB3+f/QWK5+KdR518Y25To=,tag:HvPhUzym341yDJkZVlDflg==,type:bool]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:dSQ=,iv:TtovnyZ4zRO7j6AkOsX2K5/mljwpOpDHS8UrvUKvulU=,tag:uZqr43H2olR+WaZ7XJFJOQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:ZA==,iv:deni3iR3E3yjQbDI1i/b6ozh4Pc8GreGxXIhM5efpfU=,tag:PBlQzlZnrwRJlsEa2P6YQw==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:ImtsDOtwQDt+yp0R,iv:oiRwoIRp0xvPK9PxZ0QBhMqZresA8/71DvTb0sMP0gs=,tag:bHRgew55oBpncrlpkuRNgQ==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:nWvEgV8=,iv:+AboyDpxrjrOvdNUr33/Hx2UA/A6B0WM2oDPvyxDTng=,tag:BSVM17FkiQerlXojLGmQQg==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:qRto1vyMrj9u,iv:kN0BmlWxDvO8dq1GTHyRp+gU5uv+003DD2Q/wRJeYDE=,tag:EQWMteJCXX7E3NWu7qbmlA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:5cEOS+CtoVJULRcRbZyyfseK+UbbNHmHSRCKFeyiAL+fDQ5n,iv:Dod/qFtpKwdVgdHTuZwfWuVgXeO7/yfFISVcJ6PvRpo=,tag:RU+OCALtZX7pbGwL8PZ+ZQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:V8qkxGouBfJpVscx+dFuwEI8YZQ=,iv:/gIU51BqEmyEnH5/X78KzcN+B9RjgYKULxPSsEWFn1U=,tag:BYPum/dp0/VqiHircIRBnA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:tn3ciM8=,iv:8sFoKLcElfvqtCFJhczhejdLHRRvb0p4Lods7gdsVMI=,tag:uccFqHFKaffcKibrkTSHkw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:fHM/+281xcH1,iv:YAKp1PLqjAlo4IUbLfbPn3CEPMfH1rTQL95OUwxUR4A=,tag:1LDt4PUWcRiirBH/5vL6FQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:UQKXtYGV6XPAeWD7fgOJ624tmhmc2ZytUU4qHDS+EDq5wm8/,iv:bpGq5rstAibo4hYxJq7LXS/qZkY2SXtPquxe7EyEznw=,tag:vl8LLaCzm+jsI+PGo7G0ng==,type:str]"
+							}
+						]
+					},
+					"sensitive_attributes": [],
+					"identity_schema_version": "ENC[AES256_GCM,data:Zw==,iv:VHM2zuKsUDsHyUd169/X6oLvH0Mug7m0kE+9Y6gPRE8=,tag:Y7AtiAWZpskwSCPeMfg6Nw==,type:float]",
+					"identity": {
+						"api_version": "ENC[AES256_GCM,data:CW0=,iv:tq3S0ZuxYpeL+ZLQiJl7ZwI+GVzYRjVeTwgBZjz+uac=,tag:sMuwHn2OGNCVZgxrSR8/qQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:ssDfJk0L2Ptw,iv:Z4vwt6vzFxS0P7+AY5FhkutJsKBC9FmnCtKNfez//is=,tag:u1zg6OE5PTNqWHYwdEwtnA==,type:str]",
+						"name": "ENC[AES256_GCM,data:dDmTDZQlFlDEXaNoBAjujfgbBow=,iv:358f4/KrG5cEpi17FaYn7/ZPqReEXJutDk1oBNv42M8=,tag:0b+iNUQC5pywD08imVo5yA==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:sT0TmjU=,iv:wc7MVLFOCqQ4WDD3BP4XPCZLhAaC0EevR3E+qjD4pYA=,tag:pOcTOzfSywTwvsan7jZutA==,type:str]"
+					},
+					"private": "ENC[AES256_GCM,data:QLusgeCKZEa5shViSGO9qXP3kLTxfiZmkG4Gwes0N04=,iv:CWIXYR1hn/b0FANhkIoio4/n+l5xWarQMZnLoaaHL0U=,tag:3CVVdwOQTH4ONBblam8yRA==,type:str]",
+					"dependencies": [
+						"ENC[AES256_GCM,data:ADSb3XktbuLxTWhgRMc7JZozWlahF8e9t7dVk5tWDAHsmFL+rxsb,iv:J4+Av4IFK+4gkfgwscP5CvwPlyPm77/Qv3aEZ4LH2Bg=,tag:jNvAXhvwRwRcPFIfNa3ivg==,type:str]"
+					]
+				}
+			]
+		},
+		{
+			"module": "ENC[AES256_GCM,data:aE2vjuwtWt0e7sOy,iv:04SBDpu4S3H0NAMVWscVTNmtWMuA5MWg36g46qK/yGA=,tag:KluR3Gq4JucfYz0PiiAYhw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:mJRKfaf8Gw==,iv:TTd3EiJBKGHwUzkcwpZiHcsu0P2lyeF5UesTqKjMb6g=,tag:FfaWASet/tl6j9B+Bfl7sA==,type:str]",
+			"type": "ENC[AES256_GCM,data:JSdhWNjCyUzxmLj2cGY5odwNzFwj8Q==,iv:WtNJhVginYzhntx5v13Rrsvpz/56oKaKr3fasGgXPCQ=,tag:4Y2UtuDQBel4d91YNPr3+g==,type:str]",
+			"name": "ENC[AES256_GCM,data:iUOThp1JMuFmQjdU,iv:4kw4jFh6TAqeBPzxmg8SDH5ALvmmFSgo52fGdiWG6m4=,tag:PzeGsn7vEl1TAex1MP3vLA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:7YStd2dfNxjIfJhQ39/IsoYUurlVoPNgiH/GTFVWYie1dAbFSa0Uma77icLf9hbgiB3wmfVi,iv:fgCZ0oemJm2qF33M2smr+F2JezXVurYqWgH1Q8ZXil8=,tag:FcTr2GDV6Hpaxj1+sD/R+A==,type:str]",
+			"instances": [
+				{
+					"schema_version": "ENC[AES256_GCM,data:hQ==,iv:YMdhLbIMvbPJhUA5T1s2M0bgG/uOUtEwwlL9+rskwYk=,tag:RPkQXuw3xdCbV38wkaYunw==,type:float]",
+					"attributes": {
+						"id": "ENC[AES256_GCM,data:mWdPMPILzpiAjqFyCghqTuw2,iv:6PoKbRgMYgbwekh8lERetFGJlN5yxsjcysBd44jWH1o=,tag:xjwfrnWU3qmD2S/tfhZGMA==,type:str]",
+						"metadata": [
+							{
+								"annotations": {},
+								"generate_name": "",
+								"generation": "ENC[AES256_GCM,data:Vpo=,iv:xHWEdMRhiXIiH4rjxD39Emylf/7uYBxIZbWMKXvw0v0=,tag:17fG4eJWj9sLo7gxdn5O4w==,type:float]",
+								"labels": {},
+								"name": "ENC[AES256_GCM,data:6Pg7wr1uJhlKftxa,iv:8Cyqv/waB7eyo2qslFxsH0BjobZ2ZRKND+Bbb6jP5bE=,tag:9zg8GJo8HWvgusUhZvN/8w==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:CoYC/TI=,iv:ZJZSaV/+v8teOyKEgAeL3L552LDWgThW/NP2xaYo+Qg=,tag:FnDSahNh4fyujEYzi9gCFg==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:mUXqwW24zkIx,iv:ekJZhvCFKIk7n4XjfP6NVuXBZRMLs+w1/jYdV1Adn5U=,tag:hg0eIc3Zg93TIX+qjFXT9Q==,type:str]",
+								"uid": "ENC[AES256_GCM,data:xHKnyJrukGUbo6GjowOazSFHELKCv1/Tp28oQlnC/5wAK9NH,iv:pneBoYT9MGVPawuxPLfxfy7aCbJS93ZHBvdAEW+lUt8=,tag:Ce5b0H/N1fnlOKnfGHGUaQ==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"concurrency_policy": "ENC[AES256_GCM,data:PNX2CkC+PA==,iv:Oeo3ftfHj0mF2nd62G36SeklqTFUtRoY+TGj5WAsuRY=,tag:pq7VIKO7qy4s22bUbbdRfw==,type:str]",
-								"failed_jobs_history_limit": "ENC[AES256_GCM,data:Pw==,iv:0Dihp/2XK6HY8UWTOiW5JMvHtUBTcGwOgbZG53YhwjU=,tag:q82rR5IkxoBFwHYmXukPZg==,type:float]",
+								"concurrency_policy": "ENC[AES256_GCM,data:A/kyS/z0Ow==,iv:abAlAJTVZGayM4mJYAbO+03Qle2BWJ25PMp0lqTBJEI=,tag:3zGqY7F+0GqlS1Z1HK4WkA==,type:str]",
+								"failed_jobs_history_limit": "ENC[AES256_GCM,data:Mw==,iv:iAUo9zaIxoI20oAeNoO4FDbGf5GozPnKLRCI8E2fUC8=,tag:sFm5hTsukE8Jk6/b1zcdFQ==,type:float]",
 								"job_template": [
 									{
 										"metadata": [
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:AA==,iv:kx0F8joDk8aZ48lGVSZdVL2mnGj6I5wqiI3r/RgVQYc=,tag:1UIWMkbqP4T3pWZalzbtUw==,type:float]",
+												"generation": "ENC[AES256_GCM,data:aQ==,iv:sNruFaESZtXfdPxoNgZqYGCNqXSLtYTw+N2CXSoF2A4=,tag:SQs+Uog3w2b/VyU9K+Ee4w==,type:float]",
 												"labels": {},
 												"name": "",
 												"namespace": "",
@@ -463,14 +632,14 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:wg==,iv:NPTJQ+DkZMaHOOwKbVhzHrqPoI1Pp6tF33m1pEzP9zk=,tag:y3s/ezZFjphFSFfLnkHsHg==,type:float]",
-												"backoff_limit": "ENC[AES256_GCM,data:bA==,iv:ZlRR15ZbLvTm85rMEiD+BQLG7aUI+Xzk7Wq4FsCuvgY=,tag:qd6pYdV3QkFnDfabm45i+Q==,type:float]",
-												"backoff_limit_per_index": "ENC[AES256_GCM,data:MQ==,iv:ITXbvt0AOpk6Q5qt1h39+4iFC9oP1XzliM18lczTY8o=,tag:buHMxY0uyN/YzRt2J7+e9g==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:aA==,iv:Rf72uoHQBgEDYWJm99b6LZLuv8An8u7Mj87KAJtFDO4=,tag:Zzh/itoi1XNftbEmMIR04g==,type:float]",
+												"backoff_limit": "ENC[AES256_GCM,data:0w==,iv:F8+4Cq3982LX9577V2o+vUKVnz2PYZjEpVVoYtW4bCA=,tag:SIMb+zBTfMZJgG5zeytegg==,type:float]",
+												"backoff_limit_per_index": "ENC[AES256_GCM,data:ow==,iv:rMXUgA/gGbeQ50vW80+TZD+Y6c8zwnkaWenH8M22gpk=,tag:qy02I2x86c4WrLBBRDFH5A==,type:float]",
 												"completion_mode": "",
-												"completions": "ENC[AES256_GCM,data:IA==,iv:orcIoFGLuEDE25I3eT11LedRKzFai84easgLQSGw0yU=,tag:blixH0gruWHBz3I0ySePTw==,type:float]",
-												"manual_selector": "ENC[AES256_GCM,data:6HZvDbU=,iv:W3InuvD4QswJp/8UdIYwoyJ0ZJIHMvPOZ3CO6Xpy6oU=,tag:vCPYfgGYItvVrzqTl4aEag==,type:bool]",
-												"max_failed_indexes": "ENC[AES256_GCM,data:Yg==,iv:dV/LcLe0HDoRv9xkE0Kea+Dlh4OEPVxbMMbyHRku/QI=,tag:rYBFXBOqaTcC1N2QaysInQ==,type:float]",
-												"parallelism": "ENC[AES256_GCM,data:+g==,iv:rBSgCaVIH751MqlbzenOjvv7GdvLF7XW0j7/9wbmgw0=,tag:i7pbyJ5WwgcTBf7OxHsIjA==,type:float]",
+												"completions": "ENC[AES256_GCM,data:jQ==,iv:TQFmdVOkK79RvcIGx0RK+D0SdvK8buZ7YqbNLdu+XF8=,tag:XEnDVK0fPHe9aWdFFKLD3A==,type:float]",
+												"manual_selector": "ENC[AES256_GCM,data:SV13zzQ=,iv:IIVAwalQCYqZ/2spkEgmhmh4QVQm3LHTAueqko/Kcc8=,tag:nbXA28zu+OkQfwgt5jC1/A==,type:bool]",
+												"max_failed_indexes": "ENC[AES256_GCM,data:cg==,iv:OZf32rfD2SV1nX5A3uxKiSmU2JFyxjk0o0VTftasVIE=,tag:FC2SHVwt6GtHqOToXN0WOA==,type:float]",
+												"parallelism": "ENC[AES256_GCM,data:aQ==,iv:eBXH29hnFiasZFFEV7v50lkGsaqV/D/1NAATNNobwAk=,tag:y1PMZreTqqB6edtSybmKYQ==,type:float]",
 												"pod_failure_policy": [],
 												"selector": [],
 												"template": [
@@ -479,7 +648,7 @@
 															{
 																"annotations": {},
 																"generate_name": "",
-																"generation": "ENC[AES256_GCM,data:vw==,iv:urJfBV0tIXGoFv2XtPtMQ1vyBlUU6Mzh5VSZESZZJQ4=,tag:R75n9pCx9W1MrizIYybj7g==,type:float]",
+																"generation": "ENC[AES256_GCM,data:0Q==,iv:rEfvAmYeR8qTiiwOKTE494q5FScfsc/dsYIQ/njK7p8=,tag:PeJi6LtaOgMHJCPgI8+Xdg==,type:float]",
 																"labels": {},
 																"name": "",
 																"resource_version": "",
@@ -488,20 +657,20 @@
 														],
 														"spec": [
 															{
-																"active_deadline_seconds": "ENC[AES256_GCM,data:AA==,iv:mAw7FAKamrPQxic+bAZH/3CitZv1hBVFK/lRmkEhIww=,tag:nUa6NSTCzlGF5sNaefMwvw==,type:float]",
+																"active_deadline_seconds": "ENC[AES256_GCM,data:vQ==,iv:IIBuxCpqsDbKZez4P3V2ln7fViG6dhN0elPd7+wKwFw=,tag:B7oQrjOgexUQ3o6Nn8Zb9A==,type:float]",
 																"affinity": [],
-																"automount_service_account_token": "ENC[AES256_GCM,data:cu8zXg==,iv:PEQaMg0ggk6ozkaNDKfFhoF993XGfozJ5S0LhJgsYoA=,tag:pCTYlQCl3AcXH2BR8yMyGQ==,type:bool]",
+																"automount_service_account_token": "ENC[AES256_GCM,data:geEvKQ==,iv:K/uxXioWC4Vv9QGGgqK2asVS7cKqtkmwr7BaFbl2CNE=,tag:WsNj96qlFfINS3ubo+0H5g==,type:bool]",
 																"container": [
 																	{
 																		"args": [],
 																		"command": [
-																			"ENC[AES256_GCM,data:uCQT5lEaV+M0,iv:g9UDyJ8/WOrwys4uz86y8gpfltIDl6tOuZvOxnFTUh8=,tag:+2fsJWyfHfVHZak6qGQIZA==,type:str]",
-																			"ENC[AES256_GCM,data:YLs=,iv:a3BDxn6jvAKxY1v+63ZrrZABTMcfJDM/xOKACm4iQng=,tag:5bO2/VW9boG/wrzPn86qFQ==,type:str]",
-																			"ENC[AES256_GCM,data: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,iv:D8YU5Wd4IN7dzIBT3znOYWeNHSnRQUmyz8hjn2d1Zqg=,tag:t1I0pXHYuUC7Y4HhgvTJyg==,type:str]"
+																			"ENC[AES256_GCM,data:pFqw7mhOmNhp,iv:NSYDvaYs8YCNGSZZHu0BnMJqvoEAw/7XVV9shEGZgnU=,tag:kQkKwK2MSB/d/+E3vkpg3A==,type:str]",
+																			"ENC[AES256_GCM,data:des=,iv:El5VoIBCTNDZIyfWsaIgX1wvjPlqKUSp1jxIHA5V/Ew=,tag:EG3toe0jU4j+aJYlEg+2Fw==,type:str]",
+																			"ENC[AES256_GCM,data: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,iv:MxksLIl3W1CZ6xLhtkFwxFgLx3IusPKiJ1OPUphQR1Q=,tag:osYzxxZNzxmETxOVk6OJDA==,type:str]"
 																		],
 																		"env": [
 																			{
-																				"name": "ENC[AES256_GCM,data:E1T/ta4o2abR,iv:IMUyadZT3OCokAzURbe/2m6UN4OnepHTcXAYyNWfn4o=,tag:/lO1m6QYFW9F7a6z0u9UwQ==,type:str]",
+																				"name": "ENC[AES256_GCM,data:iQ2kWocXo/U8,iv:IOEMtu+LRuUEudRsgRLEKJvL7BAxC4AVr1rm5fToyXk=,tag:qLdRbRYkbLowY+AmvAzKSQ==,type:str]",
 																				"value": "",
 																				"value_from": [
 																					{
@@ -510,9 +679,9 @@
 																						"resource_field_ref": [],
 																						"secret_key_ref": [
 																							{
-																								"key": "ENC[AES256_GCM,data:wIJG2JkszsMQpycyHA==,iv:RarqvHPjoGO3386DGBjU5XUPF05AlUMiLpAc7HDYn0E=,tag:s/RUUjslBAz91Ex85fxd5w==,type:str]",
-																								"name": "ENC[AES256_GCM,data:DP8LO4a4eHFftbHhpFg=,iv:rnyrFLwlw6YTBI4a8yHOGoQnSgNX4QdMIMXn3O0wxR8=,tag:XrJbYbkEIiEApGDAIdKaOw==,type:str]",
-																								"optional": "ENC[AES256_GCM,data:YqkoDDY=,iv:X7sygXep77eNklnymMuy14uQ3ZAHIf4jl8IBuWNqVw8=,tag:FCo6l5HO5sCwaFByccf/Yw==,type:bool]"
+																								"key": "ENC[AES256_GCM,data:OxjRc/+FwGAbkb5/PA==,iv:XIgL5mp9uTY3APLkTyPASkR9Bhb90k3tDKYnbyfvFlo=,tag:M0+sdyeDjThig/Z59lolGA==,type:str]",
+																								"name": "ENC[AES256_GCM,data:SVbmhGW+G/bXMiMxzR0=,iv:OmmgYcDFWpECcs+DJ1eeoNSIJ2dE3ECJCgbkVM20sCg=,tag:u5/8MzEMVuqD5VS4Wcvrjg==,type:str]",
+																								"optional": "ENC[AES256_GCM,data:w44v1hE=,iv:DrxXluEfFQxDU9x42wCC6tyNajXuZDmH8xsZbu6zi2o=,tag:BnqN+sFpnK+qzroFmKuYVQ==,type:bool]"
 																							}
 																						]
 																					}
@@ -520,11 +689,11 @@
 																			}
 																		],
 																		"env_from": [],
-																		"image": "ENC[AES256_GCM,data:3wbW/Gi2wIl4wWfiMJ5qC02UIpfGQog4RlKx,iv:WXM67etuxhNiMWOE3DR5M+YcqGV09NRRuBD+XJCtecQ=,tag:bPu0w1pRAbosZ7fUqjD/Tw==,type:str]",
-																		"image_pull_policy": "ENC[AES256_GCM,data:ySTC5jqJ52eF7t2W,iv:MfHPJ8Bi3xOs7hfCDHXIL3bsqQERBebQnNYPWW4+BwU=,tag:nfSrptw/at/R3Ldz/a418Q==,type:str]",
+																		"image": "ENC[AES256_GCM,data:4NdA2TsK40dioIscZVqT9ZzsORNmT/MDgcjc,iv:RiGK3327qFMrKNOHli8cEpk+EzlblGxLpD6yUc2Iv8o=,tag:d7hQvPvfWzEj+55vvu0aWw==,type:str]",
+																		"image_pull_policy": "ENC[AES256_GCM,data:LXM2YrPypInQspbK,iv:XSq8FaZkqiqEE1JmuBfldHib8eAfKEvw6wnnIETcFxc=,tag:ZjUFm5jfJl0Z7Yuw7h246Q==,type:str]",
 																		"lifecycle": [],
 																		"liveness_probe": [],
-																		"name": "ENC[AES256_GCM,data:gfcHvS1CCtpLXxo9,iv:PGDkU18Tu1iNruR8WheJC9gCo46DzEPEmN3W/ivIps0=,tag:6x312CNteQi1N0E4UKTteQ==,type:str]",
+																		"name": "ENC[AES256_GCM,data:2l+UtOTPbY65W8U9,iv:E18ixJ0TlYTL391YoNgovHMmdesDY9O1Vi8YJxQr1mE=,tag:CSd7Gk3fWCEApMvGqLjLNA==,type:str]",
 																		"port": [],
 																		"readiness_probe": [],
 																		"resources": [
@@ -536,18 +705,18 @@
 																		"restart_policy": "",
 																		"security_context": [],
 																		"startup_probe": [],
-																		"stdin": "ENC[AES256_GCM,data:udQA5PI=,iv:GIKeRStGGhTuWRGqEjFKDO7u8GvxFWsFVlmJwR/vuHU=,tag:R5UIM9oE1qOy4lqS9nNQQg==,type:bool]",
-																		"stdin_once": "ENC[AES256_GCM,data:K9Y/2mE=,iv:GYOPPYGp5mg/XgPPa99YN07BBO6fylQlqd9Alk4LkvA=,tag:MFQehpDEJe0+cajptGXdlg==,type:bool]",
-																		"termination_message_path": "ENC[AES256_GCM,data:TR7wmUM4sIoPNHqxKIqm7Ey3vSc=,iv:X946kQhbsWEQtHFKgQVC2FCWgQPHFSsmQRq3UbI4uOA=,tag:/osEx+9/ZkvTgQXSJdVMBA==,type:str]",
-																		"termination_message_policy": "ENC[AES256_GCM,data:NksyWA==,iv:IbLdkWjWwNmywJYUyCjxiXQ+XSRLFSWXLACS+WMqNIM=,tag:I2J93vFptsn0RBf3SGtmlQ==,type:str]",
-																		"tty": "ENC[AES256_GCM,data:XNiT91Y=,iv:MHJUR3oR3cnc8T0Y344l/cFvoXUVqaIHTMM8ROwMtaY=,tag:A1lMe4wVna6/+tqF+mTd9g==,type:bool]",
+																		"stdin": "ENC[AES256_GCM,data:A3Wer4M=,iv:Aq32oTXhdsIGnhCwrZc0IMjLGWmcVVtkS4/0upLHz24=,tag:wd95QjQxx7vYsf4Dtcerrw==,type:bool]",
+																		"stdin_once": "ENC[AES256_GCM,data:H3M2ggg=,iv:p6JeDmkf/k3myxYXd74KKcROCUNGI08RYNm/CPOfcMU=,tag:OZDLrimfqghTsYja+2H4EQ==,type:bool]",
+																		"termination_message_path": "ENC[AES256_GCM,data:y5kFaVlAVRQ9RxKcjN80/1iVUZM=,iv:q1aS3yzG6DTg05vLNwkzx6OzJ+w0NuriWjXWTc9Brrs=,tag:PceJd73u1//A2YVV6ynCcQ==,type:str]",
+																		"termination_message_policy": "ENC[AES256_GCM,data:dwcMMg==,iv:7TEt0Mz5/wZZCfVHFVWrxCLxwcF04zKFioUoQLINdUE=,tag:BAYi8+rrKkb56Dg1znf0VA==,type:str]",
+																		"tty": "ENC[AES256_GCM,data:3wDHKRs=,iv:3Yym72sS9yqInmQQ9AE73+YtOA4PbYfBQCFkcXvygJ4=,tag:G8rcnjJUKLtBea2k1XNLFg==,type:bool]",
 																		"volume_device": [],
 																		"volume_mount": [
 																			{
-																				"mount_path": "ENC[AES256_GCM,data:TOJz2MqueA==,iv:1vBBnxvhyde71iCqY6LSSFg0q2iO0NjiGQiqi3duyjI=,tag:lmHywW3gei6/6XxYvxd7yw==,type:str]",
-																				"mount_propagation": "ENC[AES256_GCM,data:nCVVqA==,iv:fTIo6wzttS2vPFdOv1E3Wqsu3X+y0ng6/lQ3xSaX6No=,tag:J8z/OfK2T+zuQJZqUA6hkA==,type:str]",
-																				"name": "ENC[AES256_GCM,data:lk04cePwmC3/39LU,iv:7fLzMpOOhOBOWQ/rKWbuS68k83G4qFpYqaWKP1n/ZyA=,tag:TbQjI8yr771LWM885PY8sA==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:xkifQeM=,iv:MwJXHjqjZSLZK3bGy1zLqvvUFg1TmC1r9qS0Qk2rL4o=,tag:AWgiv78EnXvUpu0SRP4nlQ==,type:bool]",
+																				"mount_path": "ENC[AES256_GCM,data:86bmu+VtKw==,iv:XU6ygNZZCL1ssd40fnZpakzWhNEpO6zD1CaUKTSEHCE=,tag:C7RmCwy/wnXQs5s2DkKDpA==,type:str]",
+																				"mount_propagation": "ENC[AES256_GCM,data:UkrDWg==,iv:l4QkIkki5Gtw7ZCd51MQHEhb0t8iNtBd4OY7QuIXr/M=,tag:FxPgRsAenEi0BSpoqZjLgQ==,type:str]",
+																				"name": "ENC[AES256_GCM,data:2neGJAnQAP35kac3,iv:SU5RIwWPMNqx4rscJfl4nOcuaXB+xoftgvq6Z8QfWVk=,tag:Jkz9MPtRrhiV1m/2MEdRdg==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:Jv0msHo=,iv:ZlMsbkiWhdQaXkdRc4bqyErRCqTt7fdAbzCLikTkpbA=,tag:GPJOvizExsFobv2Yuc0yUg==,type:bool]",
 																				"sub_path": "",
 																				"sub_path_expr": ""
 																			}
@@ -560,19 +729,19 @@
 																		"nameservers": [],
 																		"option": [
 																			{
-																				"name": "ENC[AES256_GCM,data:3XWbyr0=,iv:Ec4B0xoAiy4Mm2KeBBry3drN2c8fZvRERzdA5+IMl88=,tag:rK52RDaYleoBYJcd9fJCLw==,type:str]",
-																				"value": "ENC[AES256_GCM,data:IA==,iv:V+TnqdqV1TzU6DZKRPZFSMgnJm7DspNcsalhrPQYTsQ=,tag:ZuJLtwqYgn7xApHlszTIRg==,type:str]"
+																				"name": "ENC[AES256_GCM,data:p/ifV30=,iv:i6cVvr7GFxrjXAA/dyMA0trO3YqrMXxm4Zq9COk6lNk=,tag:22PjrSATc/zJw/N4ka8Z1g==,type:str]",
+																				"value": "ENC[AES256_GCM,data:9A==,iv:ZoGta7X5aFGgCl7939nAEPDF3qdCcmI+fXEmQuo9cYo=,tag:P96O+C++MCHzSsh3/OQELg==,type:str]"
 																			}
 																		],
 																		"searches": []
 																	}
 																],
-																"dns_policy": "ENC[AES256_GCM,data:W/uCC9ZeqwRhm6N6,iv:rqcue5cqKuUNGuRn77wptI5udDAEiAoQXvegG52W+VE=,tag:SfawP349im3QNcSAKG6fGw==,type:str]",
-																"enable_service_links": "ENC[AES256_GCM,data:dbH4iw==,iv:2jh5i8MHLkQxCxSkm9RsdCulW5+VKzbI869J0mE99Ww=,tag:HmcwCfiV7XWSZKqHMY7asA==,type:bool]",
+																"dns_policy": "ENC[AES256_GCM,data:UIaVm0fkyw4zp5fq,iv:AKUhsWW5XDmH7tmqoFLOF0KTiqIlOyQXygs9YopBW7o=,tag:nxmVPrSQt5pJQW1fqyu3rA==,type:str]",
+																"enable_service_links": "ENC[AES256_GCM,data:HEnIMw==,iv:S5Xhxp0/kvEWgpFveXBYqz0RebqGhCUF+2N3qei5aoo=,tag:JW8ZPJrZFY/G3Bkt61JWEQ==,type:bool]",
 																"host_aliases": [],
-																"host_ipc": "ENC[AES256_GCM,data:fp538XA=,iv:lgZssrvMHIim2VwWeP7cfyg67hZYghmATSlWW9P1L6E=,tag:Hd380rfTZ/g6fGlJWfJ12Q==,type:bool]",
-																"host_network": "ENC[AES256_GCM,data:H5CCY4w=,iv:Cb1AFwhI3aH9Z9cWpBLoMQ16JYQlhlIYhCS+huV3m70=,tag:3+OUfQvRsB/aHlhsuCOP0A==,type:bool]",
-																"host_pid": "ENC[AES256_GCM,data:glqiDOU=,iv:kVXsnUKNULSs2nnSqF4arBo7aLtpHJga0tnOonmfCwQ=,tag:18pvUjGhbyqRzqKukJHKtw==,type:bool]",
+																"host_ipc": "ENC[AES256_GCM,data:JnbPbEw=,iv:BPC4HWclRZn6a7APuMA8BQLXjWnE6PNnoxuwVJyt+DA=,tag:0NFELFZi1584B8W5S/kzGA==,type:bool]",
+																"host_network": "ENC[AES256_GCM,data:S5cciKk=,iv:z4GEHJYAAOV8WzQ8NbinuGZCl6N+GSUBgm3asFD7X4o=,tag:O0/1aSsGESP/BDm2obMfCg==,type:bool]",
+																"host_pid": "ENC[AES256_GCM,data:icZGLE4=,iv:/nKXU5U09A97QWDJl1/OEoaT5c1K8n/cZiKeFfuh0dE=,tag:Wf466vxbwY7E5PD57vLhaA==,type:bool]",
 																"hostname": "",
 																"image_pull_secrets": [],
 																"init_container": [],
@@ -581,14 +750,14 @@
 																"os": [],
 																"priority_class_name": "",
 																"readiness_gate": [],
-																"restart_policy": "ENC[AES256_GCM,data:N3+ihvg=,iv:C0J4yhZORfgeDrjfue/HddIgUFsPzFLymbpTYVlHtyk=,tag:ZiRepxo7dBJu4fAaa/hYTw==,type:str]",
+																"restart_policy": "ENC[AES256_GCM,data:yndLol0=,iv:goU6zl6smwC3uOQhIFHjNsx2MwwJ+38jUOwd386XkFQ=,tag:tFQhOHEI8dd35jSGE+BYdA==,type:str]",
 																"runtime_class_name": "",
-																"scheduler_name": "ENC[AES256_GCM,data:tD8jhnbQFWRj0HTXIafueR4=,iv:Ro3xHBii0M7ZE+IEMuol9iQmkKhDKn1+XmZjlaMqikc=,tag:eKo91d57mkqjfJ45P6lHmw==,type:str]",
+																"scheduler_name": "ENC[AES256_GCM,data:XUaoOvirLikI/oO8YvlaWNY=,iv:G2We2wqipxxk9mD5QqpcJVnBnT1xjRJcrMRBMUljqJM=,tag:fb/AM9Hpr8R+HgC/eaVWeQ==,type:str]",
 																"security_context": [],
 																"service_account_name": "",
-																"share_process_namespace": "ENC[AES256_GCM,data:+gesqQg=,iv:XCK76dlJ0KaCLxdZqadauEiqYFyOD7Du2KLWASq94FA=,tag:l5PsKqJljWIfR+5zIMDQVQ==,type:bool]",
+																"share_process_namespace": "ENC[AES256_GCM,data:Z6nTVi4=,iv:m3SJgO8h10PbDLBKEjFOEowr8+pCTy1xWsCOhShe0wY=,tag:jsYhPYUuHnUxYY+il+zmlg==,type:bool]",
 																"subdomain": "",
-																"termination_grace_period_seconds": "ENC[AES256_GCM,data:d6g=,iv:eE/BRyYsz92m1P2leSmQ5dzg9XfdyKTnOC2DDDCHHnk=,tag:oLAY6jNFUIaWSrtbMMkecw==,type:float]",
+																"termination_grace_period_seconds": "ENC[AES256_GCM,data:C7A=,iv:5A8SJUYEf30DNUKlixxSQATNWPdJILoP17h1jNl+ZLQ=,tag:spJ8CRUDsUkY49yJ6Q3UHw==,type:float]",
 																"toleration": [],
 																"topology_spread_constraint": [],
 																"volume": [
@@ -612,12 +781,12 @@
 																		"host_path": [],
 																		"iscsi": [],
 																		"local": [],
-																		"name": "ENC[AES256_GCM,data:3zvZ33y4CmZ36h39,iv:BnLi+2I6iAH9ZrSoLZBrlZZm8S7zSW31N7ViyXqAL/w=,tag:xur9JwHFPTbObVbxl7IB2A==,type:str]",
+																		"name": "ENC[AES256_GCM,data:ptX0Ja7dJXGF+kSR,iv:eAYEzE9xGmLtRgkzzumoWPSPzbozN1C0r84W3JqRocM=,tag:19weigZOI+6Flf/8n/3X9Q==,type:str]",
 																		"nfs": [],
 																		"persistent_volume_claim": [
 																			{
-																				"claim_name": "ENC[AES256_GCM,data:L058Pr2Voj+s76n5HBaRc0wFB0UKZ+U=,iv:m+CesodZfusEoaoXVfkdTjgZUao0qX+pXVRia2ky3kQ=,tag:vzYqVD4LN/SPA3lQT78EwA==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:LpSGpQA=,iv:6BCsgfyJuSBb6snarD9AyEpFLYwxnfQfbYiwRv7LS8Y=,tag:TgJiI3UPShpKtw7U8NJ+Wg==,type:bool]"
+																				"claim_name": "ENC[AES256_GCM,data:qu+Vj07gO4vGf5y3Xb1QFJwhYRZC+Vo=,iv:SzP6HnkRAxhUF7RGyse3CtkFsqVrtftIaxjNPuu/baY=,tag:gy6e+bB1eaLtKFZ/fvW67w==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:rBQYn2g=,iv:rhtoPUjVs+bGanU3am3AtirFwW/rEQDHq7hPZGXZFPY=,tag:bxOPG36L8fEJaQDFvCrAfA==,type:bool]"
 																			}
 																		],
 																		"photon_persistent_disk": [],
@@ -632,71 +801,71 @@
 														]
 													}
 												],
-												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:WPM=,iv:VI6WR0CY5L20P7FZFQxBfZ7NIvLxwB/RmuNyYo8yqN0=,tag:CdfLl0BodIvvUVQZZhSTSA==,type:str]"
+												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:bvY=,iv:HbxgOVbZ/jryFfD/lMzi/Dbx1cqfuMQsoFbh8LSO4L8=,tag:R2G/QQaAD5IPRltPZ/jhVg==,type:str]"
 											}
 										]
 									}
 								],
-								"schedule": "ENC[AES256_GCM,data:moRUEhE38AI18g==,iv:fb4q3Gb3K0GLwx9i5x5hIua6jEoMYIvBdtQ/HqHHUOk=,tag:0RFtWELVIoxbqmKKiyUHkA==,type:str]",
-								"starting_deadline_seconds": "ENC[AES256_GCM,data:N1k=,iv:MtDSQ5yvEAzpPbLLrK5J3JOLP05tUr8Y/Oexg7uepFQ=,tag:fZvzi+E/x/YYMs9FZ5yfzA==,type:float]",
-								"successful_jobs_history_limit": "ENC[AES256_GCM,data:28k=,iv:4v16Az8TvEhNm/SclDjy8k2HrnbjL+lUVoRITMz4U64=,tag:YWyTa9it4bG2r4l2hfRAGA==,type:float]",
-								"suspend": "ENC[AES256_GCM,data:cq2+T20=,iv:HWlOvGQUcR+JRfKAozcuu3zjju/LpEC4gyaBdoUCGnU=,tag:iiSPjwaNkXNj7rxUm4cl8w==,type:bool]",
+								"schedule": "ENC[AES256_GCM,data:pZD+G6oUu8OOgQ==,iv:yP9Dr6cNtoCqXwSMQ9Vy5Tn8LuG1H/lfWixyA7DJp8k=,tag:tg9PHyI+yxSNVszA8MD3UQ==,type:str]",
+								"starting_deadline_seconds": "ENC[AES256_GCM,data:cz4=,iv:C8UTSOJE/jm4LA4+cQQCnyt1nJLPoWPXSMbMR8+2TGo=,tag:VbbFHv7482o7gP7NXkLrlw==,type:float]",
+								"successful_jobs_history_limit": "ENC[AES256_GCM,data:bqs=,iv:N+2Y4F6dSwmheMN1VSfPNHemgAHs7hODwV6aJCnqn9M=,tag:W4gfnYaSxwYQ/Uql3h0GCw==,type:float]",
+								"suspend": "ENC[AES256_GCM,data:ZGzXaCg=,iv:JG4y776ZZ1mGkxmMX4f1yi8O7wzSwxlO6I0LG5A++rI=,tag:xtjVJyMJUlqkJIxpUL/UZg==,type:bool]",
 								"timezone": ""
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:kA==,iv:RgVuil42px4GN2Aja30RwfH1sZRi48HftHdl2c7XhEg=,tag:xx+DMSIgFu+81hbHf4mofw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:xQ==,iv:waInnDD7xcdqq1o4lNdkNjAJhYhjVe3a5jHE8RBBePs=,tag:q3wAytc093dBUM/8GvIGuA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:ySQO1x/da8k=,iv:8BbWnfCBZqvy7kXdcclClk9IZ00tgRqkfGQ+Lv0kjJo=,tag:0qodhG0vJP3xwBZaLryk6Q==,type:str]",
-						"kind": "ENC[AES256_GCM,data:H3iX5wgr7A==,iv:Kc/k5g44vETPuFPIlOrkN3wbt4zJnTdI854H7iMMO7w=,tag:JUiaolM7KIzyV0aHPNeBYQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:RXPuvDPKqVvAs/u3,iv:7fEBxUsL0+si7zBIeqkmr6S5As0EUpqrRdOtAew2KI0=,tag:LCd/VQmTAfE6Xj2nHgtcNg==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:0mxZVAA=,iv:TfCyesHxDmNJAKdeEbb8khNTf2JLdECVeOy834Sp0gk=,tag:CuEx4x2eZ0J/DF2aFJMfKQ==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:mmaMZ+4LdR4=,iv:nI0+X9uVuM7EdCbi9dTj+ORbOhMFTuzrRHscCxMjUC4=,tag:J2hIs/+w6ijUE+yItRratw==,type:str]",
+						"kind": "ENC[AES256_GCM,data:h9iW745s2A==,iv:vI3D4Rwz4tth3A+AW1db1Y7grGS2atuifrsLmEpXwoQ=,tag:EHpLR83velRMn2SqFv0x2Q==,type:str]",
+						"name": "ENC[AES256_GCM,data:v+taF2poA6Wy87fU,iv:pOZ0e1srrzVCQoEmuSnofLqwS6qF22S2g5o0loWSkS0=,tag:oMEh7vJAsAZbiJugX4U0fg==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:fD/IlG0=,iv:Otfko8fwZ0VoRKvFywT2fa9r9SDAtDYNlw5clbXXKUc=,tag:74uAzQlCsQnDFUUkADvmaQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:S8VpFqd3muU7aEwlq2+8O31xxTowUFhaagcfi+e63e709et4eSOOaIwmRG20cxVmX3003XvHAIgSrMVVGreMiS4m/u1k2x1NQaqDTO4wFOOPro/u,iv:joz6GZwfpuYZUczaZ/W6t+Z7XrAfLYXoK7TvC4AMTBg=,tag:u2HH/I75UQOWiY7Z/ilhJw==,type:str]",
+					"private": "ENC[AES256_GCM,data:SHTlIENjKd5Kn8c9pZTYSLbaKbaFoRGGRG70k6KI1yzY5lv9sK2vvDcouD/C339Bpj+8NcQH/Gkikw2+hzjmOoJ9i0X26tQD5K8Hc8F4vQ9kDjcy,iv:cuJgYEMLZgolfE7yUVfm0I+AE1zK7MsNgQYKnBLHeFY=,tag:RRmooT2UjpqHgl+KNdsXIA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:xILDuDBvQZvpKXPIJFK+nQ5m4lpYrqu/MvRwtawxivEEtqj1wuBw,iv:YOR1KGTUYHeKLVpUcKZI02i+zCojSgC0Fu7ViQFc32I=,tag:Q0vB5VRNvOq9+MvfYL0IvA==,type:str]",
-						"ENC[AES256_GCM,data:0NG5NKvWsfQoNIpMuGanjcpKFKezik2MnMHvDHdsim+dEH97nylexjVmFRy24FKKHBH2RrMoky6lar1jYiEgiW0lU8I6HyCBF8BI,iv:9GRzhFPvJoC7FnAyhfOxcqVikFU4sFTDVGe/tzTjY9w=,tag:NgEfnlDuYAyrH9LIVSxe2Q==,type:str]",
-						"ENC[AES256_GCM,data:P3aEhI/JiJztccPpWPD3GAJ3Kma+BoaUex71J6qSjGZI6JEozi1RdD7w1LyT23H/m+3BcwvdF5VerQ0W8TlOMfxHQMKLDj1+odl2vpuhBwW2,iv:Ml//8f2tAo/4pqyeiK30AadqzOmzzUXqvOu8hfnRW5E=,tag:6ZdgF8k338SPpDX8ltuszA==,type:str]"
+						"ENC[AES256_GCM,data:Wp2DktKo4s/wrQFQYEx/OMU3zvk+jEgFwpTUBLSQHXDCULQyMHa/,iv:27DQEBK+Zm0eGN/T+HnOK9g6HdQBNNtEDMl2wLoIM8g=,tag:152+8AIeliHwCLjm2ri4+A==,type:str]",
+						"ENC[AES256_GCM,data:73ML5mBg9W27nlHQJK0zAUTU0RVQirkbmjbq94zV+yYpRvSJFvlw6rb8yxi350jw2GUGKF0IRs23R1XyGTMIW53vYHxTCMU5E6M+,iv:VvWg5UNejTBL594Ri1UGj93OPqdfbZt+dwSOsvWAV6M=,tag:VgE0h25onQ7msaX//zb0rQ==,type:str]",
+						"ENC[AES256_GCM,data:vzScJMyY2NxktL2vZkYn9pogV/KduZ7FQHu0HfZrNkF4Hrp9PVwmMDl2jhR3Jbg7M6Pe/J4naA1jqKGzNzy/uNQglfLsOqr7jIsUYn0lFqiZ,iv:+Xf2e0ftsk8hVgSbTBzWuQ11eul1Dt6EjZe5vtv/F1I=,tag:DId0eKuavix/LK+T3bPG/A==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:MljxtkH/vs4NRuGU,iv:s2SneQfrdoQOYogdWJyDnbl/ansrAHUijzFzpdP8yu0=,tag:pVKA7AYX3qmAqdQvld30gw==,type:str]",
-			"mode": "ENC[AES256_GCM,data:RRwnhQw+Cw==,iv:T74aoQscVW8AdngBbwJshXZiEfK0qkmZJSpB5ZWUe/w=,tag:+50A05MWJstUY4kb9je1+A==,type:str]",
-			"type": "ENC[AES256_GCM,data:tSt4Pv6O+HW7YHjb+TPE4rcmYsF2Xw==,iv:tqnqWPzuY9SLRToZtrlNr5g0UXxuA7z07j8gWCMQAtY=,tag:uRwIc6r8ytcNxRQhyVamtQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:6MI3QYVELVjRWkSI/VEwOX39jQ==,iv:lof3a3nH6c5eSNOXZrqm+TTuEO9vePK5XPUMr3VPSYA=,tag:med4sOBonLyIP4lAEO9lBg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:d5ArjBa47q6365zztrjQfEdcv9+ClE0yfpKtOfcYEBrPdrN59NuSSOI7zt+sVfd8y+z1gwAc,iv:GEaefOujnBY3OQDhQBTwtoR2vDRgRTAQPmVTMyTxfBA=,tag:KoQBzfsHAqjnUoivzGIYaA==,type:str]",
+			"module": "ENC[AES256_GCM,data:Yq9fhGn4IvmyARha,iv:/0LgGSml6Bl08nux6P0tBh5bd/YdC86H4+gEB2caKIQ=,tag:QhbC3Q/lsVagcU17zxBP1Q==,type:str]",
+			"mode": "ENC[AES256_GCM,data:K/UIAMeXdw==,iv:xjZj4PX2kWw5P83Rmgrp4K1L3x6Lm31l5Slstu4QiNA=,tag:BWD3iKmVSEpjrTpM5BGRZg==,type:str]",
+			"type": "ENC[AES256_GCM,data:0tg9oDXULpVG8cJyWp1VSmTJb5srOA==,iv:RURqsONF/8RaSP0FPqEHJQN3Iwl2kgQtREtDzohyHxk=,tag:6rh5NkZaEssY0oeEXdr7Fg==,type:str]",
+			"name": "ENC[AES256_GCM,data:5ubQBvx1QBBbTsOOt+AwPF/mRw==,iv:Fs3OtSQMcw/KpTJh2Ph9Vz0mYlmytzOkYJoDM0D991A=,tag:vADCasj/kY8DoACy5WSqDw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:ZW9UZKC7qeT7jnKU2FEB7s39ezicORXgyCFjCRem67nHAF5eV/31qvCC56G80tmCqD7QOms7,iv:omgmfMIZ6dZnbK+kvVRWMtVaH1RD8Su1D+KfEGY5eAs=,tag:qcSwfTOwG1Q+a6W0zTHLAg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:ag==,iv:M2dQ0qzCszWCsx0yqaNon63YpP8//YpGRI1ezXCUXtM=,tag:6ctWrHONlVE1JPA+YvcfhA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:sQ==,iv:ww4BjlfBl0BvsgyZCFtbkQ8YpHcgXMHJ+ctVPufW5Co=,tag:io7Ky2UN5oZP+MeQnO66xA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:rUlBbHaYTMDbEsFTpDdGktDyUwiT7iiysg==,iv:sAfJ1gy6gNI1nTaxSLeyPqNZQrFz0GL8QUZbFIDgYpQ=,tag:Qf5eQUXurhWjWjFPAhyPUg==,type:str]",
+						"id": "ENC[AES256_GCM,data:nTia265UdQMLNljgC4OQQqHw6UpMspsFPQ==,iv:mDqyUqF4AspOninkOVROUxA/Lk/NSw82ULnK7YlOlgg=,tag:e2FijnIJiTkpRfXXvIUaoA==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:yg==,iv:kQG0YZgsGfCocBRqKcoXpIE01SsmBrTwse5mnLuMz3s=,tag:AdjsCGpz83Cs9XgOMD+94g==,type:float]",
+								"generation": "ENC[AES256_GCM,data:1A==,iv:edil1rTQYGgi93AJClORSlo+DAL7JsGf1cuSYC4Drx4=,tag:N2llwDa8w7pnXmcr3CyiHw==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:i8W1hiIMq2CuoYjuSgUlBO4quw==,iv:Sr8EaDpcxodNjzt67uuEEdb3Nf4t7Uwp2QLt8mwzfoc=,tag:p0lifkVJ07Ts2+tq89b8+A==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:pLNkrAw=,iv:Sgmhd2zhgE0ahRRUx1D9LEPFfgK5M4zvPUzTrQWKMk8=,tag:tlfocZ6hbzA6Zlt62FJN0w==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:lruuWA2n0pPz,iv:OKGrIjuF3P30ijdF/BoOzRtv5UOZGOlj1C5xNPj0bgM=,tag:tL/rEqdx+QnFXUF744jx0w==,type:str]",
-								"uid": "ENC[AES256_GCM,data:4+RB/Xn+BLdf4er7TY9XxUrAE8Xivs0T0ruFcud9YB6WN7Be,iv:cYLIMPophyWIRLtqAh1RnjvXfL1xWarWRUMnKrpnTZ4=,tag:EXtUujDK5li6QNkF/57DLw==,type:str]"
+								"name": "ENC[AES256_GCM,data:siPYVT6z9WO3OnHsZ9ZBN5056A==,iv:k3KOhR8tbsW6nkkUnr7SiiajRr22d5Ree31AZt5eVEs=,tag:CsICoG/PbJ0Hbp/84EElfw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:GHpPZ6o=,iv:W2Fqa0RsbqMU64U7M6E2pGony3gAW+UWatSQ61XXIwc=,tag:ikEhVdrwI6XrD5/OZSt2Rw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:jb0/Rq9apADq,iv:/lfdi6tUvGl0SeqFqvvajIR1a1KqfcCyjrMze7SbGC0=,tag:crYPdXuyKviRinrUBkY2mQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:fvRjc3x1jwYnzZEvXVbVjBRWFhoQbm/aykZdA436nknhPFp7,iv:r9FiVSNVTRHzAfNAhdV7YrjAYz+sCflNdRyo0Y2F8nU=,tag:/I+BTh9afMHQw1xnQxC+cg==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"concurrency_policy": "ENC[AES256_GCM,data:YEKyiBIyXQ==,iv:wK2uq7N6YIWFPb0H6UIp+EQ3U5Cb/r2Q9nbEYk3K5pA=,tag:iSFsRyXGlLUCiuBZVZxg/Q==,type:str]",
-								"failed_jobs_history_limit": "ENC[AES256_GCM,data:nA==,iv:Z2Ci4XhRv9huXU2JxfQUq1ajAm2SnbB719ex8TfT+S8=,tag:oapgVFUhkLJQF35Smnb12w==,type:float]",
+								"concurrency_policy": "ENC[AES256_GCM,data:uWPEJ2sEuQ==,iv:LRcyCk4IJj6Hif3JdFotPWlMkEAscsZd+FZqbZt9Tyw=,tag:PARY9Nzj47P57NSzrmAtFw==,type:str]",
+								"failed_jobs_history_limit": "ENC[AES256_GCM,data:+w==,iv:53838300dprNtAjMhrfHK+W4KLqH05uK/pY3HPm0I5Y=,tag:wJkyjJ0WL1pVhKiesq7BJQ==,type:float]",
 								"job_template": [
 									{
 										"metadata": [
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:wQ==,iv:zP74yYGjekY7vCIseetu/8aqNSdFIybig3eBX6J+3Po=,tag:RfS6ZZPEPckPghnNppgJng==,type:float]",
+												"generation": "ENC[AES256_GCM,data:JA==,iv:weJfODhwSdubs2v9CGcO+7AyXLoN5iAZ/qxQvjpDKrI=,tag:WevygkUhtry/80WZjx2H2A==,type:float]",
 												"labels": {},
 												"name": "",
 												"namespace": "",
@@ -706,14 +875,14 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:SQ==,iv:G7MiFey+oJy7AAVdi+N3t4LqZiDUCNdC36AMZRlrpyI=,tag:yJ/CwWbtmj7P6WxiF3gt4A==,type:float]",
-												"backoff_limit": "ENC[AES256_GCM,data:UA==,iv:E77ryrsy8zW4/DF4yOJ+vol/Qg17Snge80S7joEXCgI=,tag:dTa+qdTF+TlpbqOpn1mFMw==,type:float]",
-												"backoff_limit_per_index": "ENC[AES256_GCM,data:JA==,iv:lldbItMyh0B36prcGU53Ui4NZBktiDh5hR/iOl/wB+c=,tag:DgfCqn9FCi6KZTE/ENxThA==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:6g==,iv:NYUOOvFtNSGSuGA809ssPNVjIAzsUwQdGnIRbHA4D5k=,tag:73vzuUnFzlt/v+K9AY5tHw==,type:float]",
+												"backoff_limit": "ENC[AES256_GCM,data:GQ==,iv:SiWBJ6+qVm8nwyxCbtTXUIIqSqbzKfWt1NPB+eBEbbk=,tag:42hwp6cLVaZ0U1F7kFXgUA==,type:float]",
+												"backoff_limit_per_index": "ENC[AES256_GCM,data:2A==,iv:3nXpVBJKpRODY4zLXh4Kxg1ctwIzFRgw4WxC94cVQNI=,tag:SHA7rRcsedxUOzIhg7mVBg==,type:float]",
 												"completion_mode": "",
-												"completions": "ENC[AES256_GCM,data:UQ==,iv:xgSef71cutv4uktsN8fHNZSJg3T/M+79SRU40nW6QCM=,tag:HJpKtOTQWacrEQAz/ePBnA==,type:float]",
-												"manual_selector": "ENC[AES256_GCM,data:nmmfxTc=,iv:2k62Hxt1a+alz1dX9iSyx+yjQITDfJJSPcDtxKFK66Y=,tag:PqySUuqRc60Q+8uZoZHU+g==,type:bool]",
-												"max_failed_indexes": "ENC[AES256_GCM,data:3Q==,iv:0jp+AvKn/M8Uu5LrkhSVQQmR5XThgvbFIGHPQRvBlXc=,tag:gKQWNzHpQBNFygBK6LfCaA==,type:float]",
-												"parallelism": "ENC[AES256_GCM,data:TQ==,iv:XJ4yo3Kyp51ZytakO/10YoSBCXxWYFz6rYVjcEBLbnM=,tag:CmWRcEnSwmI5h9KqWGQYtA==,type:float]",
+												"completions": "ENC[AES256_GCM,data:Wg==,iv:lC8hRV57qKe22N/7CQRMvqliAGI8qcLokSC6r3nU6r4=,tag:FINxE/ujXTXFcwngnSUKkA==,type:float]",
+												"manual_selector": "ENC[AES256_GCM,data:c3hvr30=,iv:pM8O+bmmB9TlbovytCCsWR2VuPzt9e+YwHZjdmmVcns=,tag:HkWuGzn+DmbbVRzwdvGUkQ==,type:bool]",
+												"max_failed_indexes": "ENC[AES256_GCM,data:qg==,iv:4q0A+chfXcMocOWnLLNNFCEp06v+XigU4mmclHs4q00=,tag:ZJPeZWe9KG6uF9TFUuSzdw==,type:float]",
+												"parallelism": "ENC[AES256_GCM,data:FA==,iv:uI1rmgSMnuIo5WA9zp86MOUyYNp7yQdKqfv06D7Ia9A=,tag:Q1aPABUSD204k08id4rWmg==,type:float]",
 												"pod_failure_policy": [],
 												"selector": [],
 												"template": [
@@ -722,7 +891,7 @@
 															{
 																"annotations": {},
 																"generate_name": "",
-																"generation": "ENC[AES256_GCM,data:/g==,iv:Fb/yiJrkszBJg6UwfBmFxF8F9vNwW1eLKXe72qG5J9E=,tag:0qHA8QfzbZPm9DFvFzWsTA==,type:float]",
+																"generation": "ENC[AES256_GCM,data:lw==,iv:8z0IeMsk6jZ33cwCFVSNPJoJ8/PmHaUHe9Rq7nwwgaQ=,tag:Xvhsu7luCVnJQF9NBZdBtw==,type:float]",
 																"labels": {},
 																"name": "",
 																"resource_version": "",
@@ -731,20 +900,20 @@
 														],
 														"spec": [
 															{
-																"active_deadline_seconds": "ENC[AES256_GCM,data:zA==,iv:YsTrIgiBOwusylEpr0eIzR5aF0nAQcV8ZU1/O7uTFW8=,tag:fhEUgTOSmX2N2UnFw356GA==,type:float]",
+																"active_deadline_seconds": "ENC[AES256_GCM,data:mQ==,iv:Ab53TPHhFWjo4uw+SgoY9+ZtZnl+6VpU4JtxsYHPKPc=,tag:V/uI81Am2BTmo0St9l+B6w==,type:float]",
 																"affinity": [],
-																"automount_service_account_token": "ENC[AES256_GCM,data:uemsZg==,iv:JdzKCqqcMsy7szn+QZB/hIqY6gb7Y3/2pFEWZOCwv4M=,tag:1m7ln+YWB79c8OSrfFu1Kw==,type:bool]",
+																"automount_service_account_token": "ENC[AES256_GCM,data:L2vCCg==,iv:e+/xJl6QuvOmf0OFM5O14EbGKrPHS++ZoANJoe/IW2E=,tag:IPGZT1OtT3ECt3RHUXCMvA==,type:bool]",
 																"container": [
 																	{
 																		"args": [],
 																		"command": [
-																			"ENC[AES256_GCM,data:zIMSSFcxGk/i,iv:MHkNrSIRBW6lanfixmCSBb9FFWK6e7isAPImTUev12g=,tag:gvC4p6JxFzc9v6cTiky8DQ==,type:str]",
-																			"ENC[AES256_GCM,data:wLI=,iv:ReFMeAv+555PJEGfcRjz9sUCosr2YuQY/U4N/mlIXlw=,tag:LKvzspTm1qS7oL87dcEUIQ==,type:str]",
-																			"ENC[AES256_GCM,data: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,iv:LhlZFV4hLzspIhrnJyyE2PqUjVU5UtC8EaW9HsLRPiY=,tag:UOAF3pRiFYtmaT45tIZovg==,type:str]"
+																			"ENC[AES256_GCM,data:Px7MPt4MJrZ/,iv:prmMJbyNYenQXKSZcOt3M1hUqjmi4TzxIuf2RgAqGa8=,tag:XRZ8bOoSSawbjesIfeSMpg==,type:str]",
+																			"ENC[AES256_GCM,data:564=,iv:e0daQ2IEXMkuzYZDAA08ufHxPXoSGv1ew1Gg1Phvdk8=,tag:EATaw0iywdHuWvCp6nsLWg==,type:str]",
+																			"ENC[AES256_GCM,data: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,iv:j5wKkacKJoSEI5+pPTY54yeBLgb5u70A+JA/iQkyjXA=,tag:Ef0FluoT70BlAeTv1Ngb9g==,type:str]"
 																		],
 																		"env": [
 																			{
-																				"name": "ENC[AES256_GCM,data:b++Btfi8fP8f,iv:ouWgA0a70CqptJeDIBbuD2mq95erZ139TZYUSD7rd4g=,tag:nua8/KmNJdYje/vqgnfaSQ==,type:str]",
+																				"name": "ENC[AES256_GCM,data:uYi8Tj/QclBW,iv:w2zCI1XWQvZ1WuIOkfYg2ziYtemGS1fvpeeIq2AfIDk=,tag:nU4HruHmxaS5z1qyKRWm2g==,type:str]",
 																				"value": "",
 																				"value_from": [
 																					{
@@ -753,9 +922,9 @@
 																						"resource_field_ref": [],
 																						"secret_key_ref": [
 																							{
-																								"key": "ENC[AES256_GCM,data:HgjXA7ulh2LoY7ApvA==,iv:hNrcBTDJDWYNrQqE1ky/Hcl+PZRY2Yu8kHN51RE0Gec=,tag:z2WbStth2MmX76MXa9Y3Uw==,type:str]",
-																								"name": "ENC[AES256_GCM,data:eDWqfwww1YJdlSUxlh0=,iv:xIMHLuh6o3lv9mwuPhAt3Roz7e1XoBcU0yxk3qqoR7s=,tag:L9hlfGA7vgKSSqbDH09wMA==,type:str]",
-																								"optional": "ENC[AES256_GCM,data:uulkykg=,iv:dmddlTTPrmVPWac/2K+HnN/vA2Dp0794LTLWf3xzuQM=,tag:Okd6/BmHpaCo2EJTZxSwPg==,type:bool]"
+																								"key": "ENC[AES256_GCM,data:TKdtZHt8igMUdDIIYw==,iv:Z8PhrSg/GbPif3JJphsYzng9CX8UMAMKdMO09ny0Smk=,tag:o9HHiEIgtJ276d1AC9eJ9g==,type:str]",
+																								"name": "ENC[AES256_GCM,data:IX4L1G1EHflEhxamVAY=,iv:K5GR+HveYUKgqYPtLiscfixPpi0Di2T2fiiYhQz7Y/o=,tag:Fsz+isHXuaTIrHAOjJbTcQ==,type:str]",
+																								"optional": "ENC[AES256_GCM,data:NClwMNQ=,iv:EjrJwFv2j/3tKL9z3e9LdSIR3GM65MYlJs5/3IHP+mw=,tag:5+lAYmU+HZbxGzKfn/p8Kg==,type:bool]"
 																							}
 																						]
 																					}
@@ -763,11 +932,11 @@
 																			}
 																		],
 																		"env_from": [],
-																		"image": "ENC[AES256_GCM,data:VVVLVrB/1B204fD4ym7MnEiOXt6C/UDqEza0,iv:ce0rZkkCaKMb37ga/QIXz5iAy1btrUi/kWkybJpkzpw=,tag:DtI14XQihUoYjxYd1ELepQ==,type:str]",
-																		"image_pull_policy": "ENC[AES256_GCM,data:o86y7RlOoyj6lhe+,iv:2DI1jxs1r+dUVYbEqnKcx4lnL99O0dO5rwUlExXLS/8=,tag:ccrE/VNiFN82txOgHSuYIw==,type:str]",
+																		"image": "ENC[AES256_GCM,data:DrNBhjvdKEFQTY65TIHZMdB4G1fY5g6ewIVI,iv:wqjdpH13pCU4kSzbgSTDI0/IhEb78odq4NzwDu7he0k=,tag:bMy2+Q3DP63G9szz6pdXNQ==,type:str]",
+																		"image_pull_policy": "ENC[AES256_GCM,data:SlFu8ugkJvhh7+A4,iv:/SFv5rn1kEPOMLyf6SzZoGDyenqOEW7Qw5zeAfoKOaE=,tag:n2Aao8i/RprK6b2GXqg+sw==,type:str]",
 																		"lifecycle": [],
 																		"liveness_probe": [],
-																		"name": "ENC[AES256_GCM,data:5tnqtsDhBXsNf0yKZvgAnwNlRQ==,iv:WNTJhRSl1AerbNseQ38NJiSO6Tr9FtJ9oA2afzPUZ+M=,tag:SReUMS2v2AyOwFZgHI8Cgg==,type:str]",
+																		"name": "ENC[AES256_GCM,data:MMZO0f0A2oiXCW/wXSmmrIWsUw==,iv:0tF6YcMd/ypdGoO33vyMF4tlS4XNF30NEUMl0g8BVg8=,tag:wm6ma8S/zcT6A78QV11ZAQ==,type:str]",
 																		"port": [],
 																		"readiness_probe": [],
 																		"resources": [
@@ -779,18 +948,18 @@
 																		"restart_policy": "",
 																		"security_context": [],
 																		"startup_probe": [],
-																		"stdin": "ENC[AES256_GCM,data:7x/Fu3I=,iv:c1qeUb2wPHZ6QR8uB8zZA4MTuMwmV20wvMsv8wLxRlE=,tag:0ZVdhxQsrDu0tGEQVCX1Aw==,type:bool]",
-																		"stdin_once": "ENC[AES256_GCM,data:eDlSOgM=,iv:06UH7bsiLni/+Dk+sbc30Dc5g15Ze6lCWTwJnBJEeJE=,tag:KdjNJPw34HlJgTYHX9bizg==,type:bool]",
-																		"termination_message_path": "ENC[AES256_GCM,data:JNG0f1hb77T7qengExVH5ieNfkk=,iv:CL/wfFsdxoNj4cUiH/D67jUTiClWRqZlrk3vhZItWl0=,tag:5DZEwqoY81rXYp0xhXHCJg==,type:str]",
-																		"termination_message_policy": "ENC[AES256_GCM,data:RtT1GQ==,iv:peGZnNtI9MZ82hngOybfrajZX1PltCbgV6sKrkpL9qU=,tag:Q3ypKxgjdqTcMAqfW8btuA==,type:str]",
-																		"tty": "ENC[AES256_GCM,data:b83KR8g=,iv:8UlUwyvJsBhhvowOGmw5g75QfO4PtG5NZFEet9FfIik=,tag:o9mLKgZvm+IoWBJ9J0+3+Q==,type:bool]",
+																		"stdin": "ENC[AES256_GCM,data:Jc10SXU=,iv:MTXm/mhII+uLUW+FomZSDsgoJU02l6AqdDzI5XMdJYs=,tag:8at0ccvSrojKw6/J4VvgUg==,type:bool]",
+																		"stdin_once": "ENC[AES256_GCM,data:2Fz+8Cg=,iv:+NyITb+7wQ6/tLc2mkMaBktz9nazEC/9YfRX1nv6OgU=,tag:w31frzy0WpMyoGBZqgaA3w==,type:bool]",
+																		"termination_message_path": "ENC[AES256_GCM,data:f0EV4UelKZ09h44Gb0xSVrCc7VI=,iv:bIUetaTXWfY1wTQ34LRiThda5rEC5hg1Q1zmVu0JKi8=,tag:RZvGPTw93xiJI9631J8Utw==,type:str]",
+																		"termination_message_policy": "ENC[AES256_GCM,data:SMFykA==,iv:4E7teC2gSwKr0sCNVyft02gGJpEAE/c1ZM8g/uJrL+Q=,tag:/DSmnp5gztuMtLhAWgMNsQ==,type:str]",
+																		"tty": "ENC[AES256_GCM,data:xHU2hKM=,iv:jTeC1Y5NpqlQLcxLfwYn3XkVy9AEhg6AuvbiNsi5dl8=,tag:CUZGMiYsm+XsafNT2IibgQ==,type:bool]",
 																		"volume_device": [],
 																		"volume_mount": [
 																			{
-																				"mount_path": "ENC[AES256_GCM,data:UEjBBgqoUw==,iv:6GoNORNC1rLi7FpTgm+Cg3KjnHX3c1fUinEOKrCFugA=,tag:kXXvFeAGtiPrIS6dpRjRxA==,type:str]",
-																				"mount_propagation": "ENC[AES256_GCM,data:hUHk/A==,iv:DIS8AivgZxWkpNGtAfwQO9yLzvvZhfFEuKprr5iZkWU=,tag:tJYlEfhZ+G2YuRb74xFYIg==,type:str]",
-																				"name": "ENC[AES256_GCM,data:eLTyEyxq90j++0W1,iv:nucL9ZdyHUmLgkYvhVEbaqhhZQ1PlIQ02qc7C50Iy/Y=,tag:SMIP8eVelLWuou5GbdYUtw==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:grRZeOE=,iv:Wqb7XGy5G4KJSXizGdji/MmAHNh4w0GHBY1AopqfVs4=,tag:31ML6olavwXF0RRxJbaVRQ==,type:bool]",
+																				"mount_path": "ENC[AES256_GCM,data:aK/+XdcMow==,iv:dSE5+NdZpxX8K2vQZ5u6VCxNbRKTkfwVVCOUdx4n/GA=,tag:2OV9h/2TxEEty+DSC+KElg==,type:str]",
+																				"mount_propagation": "ENC[AES256_GCM,data:WGpUHg==,iv:fEbkBurcdmGBfBqkb4nZRwAqzWET9rNOMuSRSbIJcRw=,tag:9g2++3Gh6BVy7Nnln9EpJg==,type:str]",
+																				"name": "ENC[AES256_GCM,data:PoEd+BY2i6YDEcsK,iv:B51bl7XG2Xwz6FaCXCBI/rSHoAuPVE9QIw11Vu5BD3Y=,tag:WA8yT1vdddlIhE4ivInIEg==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:8vYUxiE=,iv:Xoqv+giJI0/4C09xBMaomDfDajd1IU7m85Fq30HrHYE=,tag:3OvBJTzqwalVjkoqzhbg1w==,type:bool]",
 																				"sub_path": "",
 																				"sub_path_expr": ""
 																			}
@@ -803,19 +972,19 @@
 																		"nameservers": [],
 																		"option": [
 																			{
-																				"name": "ENC[AES256_GCM,data:K/wIPsU=,iv:4AL8m0j2gxfASnpr7MQMXnjdSRNZGbRlVtxofZ07Df8=,tag:T5qYl/aV1w++efbGy+p1lw==,type:str]",
-																				"value": "ENC[AES256_GCM,data:2A==,iv:cYdlJSG/pPpGWAQ1EBPTpg29VAaEByGSP2uuXK4Mms8=,tag:lpTEh9oBBZ9gPScgK2f2GA==,type:str]"
+																				"name": "ENC[AES256_GCM,data:3aP6ISI=,iv:7Hh02Kng4/HYzOBSKfhNG9k2K+4tzWVDpjdNsgOmXu4=,tag:U3ghmp7Is3P2AOJE5gxEnw==,type:str]",
+																				"value": "ENC[AES256_GCM,data:Wg==,iv:uL42I8lizTqyhYFjuVMi5Iuf/yhX24gz/YsXfL3Z3+4=,tag:hLceZc0EInTlsc3Nz3zkIQ==,type:str]"
 																			}
 																		],
 																		"searches": []
 																	}
 																],
-																"dns_policy": "ENC[AES256_GCM,data:vmntjF5i+8AZWExf,iv:Mq7kKa1Dq2oDTN0QoL2T2hNqOeBGFJwhCePNhJlpmLw=,tag:dUH2aEMrKonVrLUJzrP3Ng==,type:str]",
-																"enable_service_links": "ENC[AES256_GCM,data:Hx9k2g==,iv:yuzaW45wHaCYbyMU5WAHGC1wHoJfSTzUWkTQxgK9ZX4=,tag:mcnSLyiVsgTjY8hc6dmfcQ==,type:bool]",
+																"dns_policy": "ENC[AES256_GCM,data:durkfyTM1ST627Da,iv:aAkdSBksN77tLJZv6HyGki3MUIwuuYJ99pwsAo6onOo=,tag:ZfC/fTf9aZMGBhC7zbqI0w==,type:str]",
+																"enable_service_links": "ENC[AES256_GCM,data:LvBWjw==,iv:JCvbo964ea8+kmLXv4v0EIaOjoQ/IRUDr35LPtQtELg=,tag:gZv7Z5V9wkvcCwszB+vY7Q==,type:bool]",
 																"host_aliases": [],
-																"host_ipc": "ENC[AES256_GCM,data:lBfJZPo=,iv:61paCnQpYrVCPaqnK3nKOKa5u4Nm2iF1bchZfNg6t3c=,tag:x4CiJp58Y+6pA3By5LD+qw==,type:bool]",
-																"host_network": "ENC[AES256_GCM,data:3fsxrPA=,iv:JaIJb9VkKSSrgo56efFHISErNWjSlVInX6xihtWM3WE=,tag:RwNh5HVtjMp9ZSvKGhVzfw==,type:bool]",
-																"host_pid": "ENC[AES256_GCM,data:QOigztI=,iv:HFlYs1VaC0aam33wvlF4GUaBuHTHR/p2TM2/dZz4LKI=,tag:/w++QcIRJZdUd4rL3sg8jQ==,type:bool]",
+																"host_ipc": "ENC[AES256_GCM,data:ALZ9Qn8=,iv:iCvBxoFDhQd9A2YtA3dLTgYelBY9XHIPLsaiFYzz2fw=,tag:HItuwT2G7iGaedwewL7y8A==,type:bool]",
+																"host_network": "ENC[AES256_GCM,data:2cQHSm8=,iv:P0trWy2coDJxaoqrpUmW2PANri0+17ETpU7hVeMfCIs=,tag:KWYBL5CVtFNfBZy4gK0qGQ==,type:bool]",
+																"host_pid": "ENC[AES256_GCM,data:nwIO1Gk=,iv:Br8JlnhSh5EUYaf19gFB8J9YXdel8jszPmwT4NGqDhE=,tag:nE3yrlrKjnkZlewvLyi/ZA==,type:bool]",
 																"hostname": "",
 																"image_pull_secrets": [],
 																"init_container": [],
@@ -824,14 +993,14 @@
 																"os": [],
 																"priority_class_name": "",
 																"readiness_gate": [],
-																"restart_policy": "ENC[AES256_GCM,data:tlUs2rY=,iv:aruL6bQfRLfdmxyjG1dXuZn1IuaBZM1zEgrhKO69T0A=,tag:ed6ZCSTQ9TtdMK29fifU1g==,type:str]",
+																"restart_policy": "ENC[AES256_GCM,data:EUEm990=,iv:70b6miEQ6whTxZnI8gNaKUPh38VienohOaA16on93S0=,tag:FmoothrBgseJDotQtFzztQ==,type:str]",
 																"runtime_class_name": "",
-																"scheduler_name": "ENC[AES256_GCM,data:XeAIVF9b0h9aYn/IdQi23Pw=,iv:s7oakncxCO+qrp8I0nOGHFffaQB+Hyx0hs7NPL9y49s=,tag:baSf/3S33XFqTJu8KS0NJQ==,type:str]",
+																"scheduler_name": "ENC[AES256_GCM,data:ip2djsQSJhPwO+79sge34XI=,iv:PbWsi+XLG8yWGUBL12PFcosJrSguWl+Z7BV+KjaFbH4=,tag:agTUejIIvO2hGLjeBJxZ/A==,type:str]",
 																"security_context": [],
 																"service_account_name": "",
-																"share_process_namespace": "ENC[AES256_GCM,data:bIturLc=,iv:QdbINzqkv1gTOvGwi1o9kVI7I76S1jsymnp+dBldois=,tag:v2UHVa5bWAoXt3ZtgfL55Q==,type:bool]",
+																"share_process_namespace": "ENC[AES256_GCM,data:m2ju0U0=,iv:oE4Tp2Vu3PXF0n/52BDefs3UIRceBBGcpzRa8QIPYbo=,tag:nEuGqYPaVjDjswb6+UuqoA==,type:bool]",
 																"subdomain": "",
-																"termination_grace_period_seconds": "ENC[AES256_GCM,data:eqk=,iv:DR7K3R+8YSL96KheNQXDjJmO8M9EgsKaJkX+AYONkao=,tag:AeQaYS8rWLJdEGxQGsu+sg==,type:float]",
+																"termination_grace_period_seconds": "ENC[AES256_GCM,data:09s=,iv:CYCyNkG1o1y+R2Pdba6P0ZaDk2CV90mHEfNxACE1KE4=,tag:N5apQcgS6YdYqnna7ACt5w==,type:float]",
 																"toleration": [],
 																"topology_spread_constraint": [],
 																"volume": [
@@ -855,12 +1024,12 @@
 																		"host_path": [],
 																		"iscsi": [],
 																		"local": [],
-																		"name": "ENC[AES256_GCM,data:NUQQOWY+ehi3zKlH,iv:oPYpCKf+8TLLMi3VH+x19B3EQU7FxUpOJex9Fwz7a60=,tag:2PKcVRufCmW2aP+kQdTRSQ==,type:str]",
+																		"name": "ENC[AES256_GCM,data:a4E4Wl+vYq37SUfK,iv:7pyKirS77WB7w0lSnlHfJOVH/UGKplfSRkBldkCfyAY=,tag:SyHVuhXrzR7WyAERFv3ukQ==,type:str]",
 																		"nfs": [],
 																		"persistent_volume_claim": [
 																			{
-																				"claim_name": "ENC[AES256_GCM,data:b0oJDhDXN1Mci+PV4A58cUiR2Tkaqe0=,iv:SZgkb23PWxZd9S4nBr/3kPdpEBJHe2blpHqClp752CM=,tag:T7Cy49kzOPojEB0sh6CoaA==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:clsOT1Q=,iv:B8FmiNoyjlRexeypYW3MZ2laMQpSMXjaF3f2c3oIL6o=,tag:NgWJeiDeiuE8IqEhWu+s/w==,type:bool]"
+																				"claim_name": "ENC[AES256_GCM,data:CUP54qeEZrmFhkigihwfAZmcCMwEfu8=,iv:OGNcmfv41Ge+eClBmdoXfPsGlS0Ot8JunKBMwHz1P30=,tag:Tp1xs+RPU8IO+OIdYrcmXQ==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:GC4k1io=,iv:0I0iulvwc2bSDZIuuHwmFakxCUtWGa+oAXf6SClXykE=,tag:NclRllCHAKTcG+LGOBEf/g==,type:bool]"
 																			}
 																		],
 																		"photon_persistent_disk": [],
@@ -875,71 +1044,71 @@
 														]
 													}
 												],
-												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:16A=,iv:PA1S0LPp5ybSeFFAV+ux3o8IL0Ys3/YwXTwgc49VYGk=,tag:lHsftz1/J/K3APZhTRZA4Q==,type:str]"
+												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:KBc=,iv:KL6OA0d7yPvD8AnNWzhP2KgFfT1RuI1xYebin+K7L+4=,tag:DPCD2d18Ry86tdiGH3K/NA==,type:str]"
 											}
 										]
 									}
 								],
-								"schedule": "ENC[AES256_GCM,data:+x3Ukw5zUZdOFA==,iv:he0p4mJ0rG24PsnuWM7ku4PrSH1AGEi+P0hQMqk79YQ=,tag:jafM9LzNLRwx8vB8RCSzyw==,type:str]",
-								"starting_deadline_seconds": "ENC[AES256_GCM,data:Rg8=,iv:5o8pCzYDH+6sUW5Vuq5cW/XjID3ulaRFSJTSjQVp5/s=,tag:G2sg/sw+dQZFXAyoHjjvEw==,type:float]",
-								"successful_jobs_history_limit": "ENC[AES256_GCM,data:FQ==,iv:nysb/AN8H/PP/uOjNKsZpBJLmDrUliF+WqmKX8+kOrE=,tag:yHAcht8ftlKBlXC4JIWo6Q==,type:float]",
-								"suspend": "ENC[AES256_GCM,data:y6YyNoE=,iv:2y69Qx1AfGNAZieCGvI6irEHLJJuEB33fOycQyNK5rc=,tag:DXxmXISRTkpzR+54Cam28Q==,type:bool]",
+								"schedule": "ENC[AES256_GCM,data:BiZbOcCsZnbH0w==,iv:Qpg9JETk6AzlbI23lMXjWEVwfUBBbFYnkaEqaG+8fbY=,tag:72P/C/nIxG3UZEWjK2cmsw==,type:str]",
+								"starting_deadline_seconds": "ENC[AES256_GCM,data:zNk=,iv:XJxoLVwS1rVYCN+qstpyLzpsB902XncyPRPaXPhbDJw=,tag:0iJkm1QgHk5AW8EutvEVUg==,type:float]",
+								"successful_jobs_history_limit": "ENC[AES256_GCM,data:Og==,iv:O//NhY2I3Cyh1qmzDFG7/2u5z0cBTPK2LSiryvCPhww=,tag:spk9XUXV6SZ7upC5PIt9VQ==,type:float]",
+								"suspend": "ENC[AES256_GCM,data:3wQbcPI=,iv:qUa0ZzEoZ5dxErU4QtBgQCrTgZDlvHouEHQgMdwf9pk=,tag:+t1n/QqosJNC+9Vld94tlw==,type:bool]",
 								"timezone": ""
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:lA==,iv:hm30AjnqzcTI/hfukyqHF7CcA9kmknpvWWnSgU6N9pU=,tag:bq4manW2z7yj3u17CSAkhQ==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:oA==,iv:UlfMu010Z2y/N7XLbXNMNOYvU+4leLwmeta1jc8foA8=,tag:P0rUiEQXAvG2dUoLp5IgSw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:igWUABojXR4=,iv:FTAcFgd9cgT5e1WevF3rrrdw+ZCI0YyKbyy2/6PahVU=,tag:4kOx9v2LeQ6eX8yGAA4Iww==,type:str]",
-						"kind": "ENC[AES256_GCM,data:WHcc0PsxrQ==,iv:4Dk/WwinMWjNKf/2+ZXkII4Fks4bM/3XAomHziWrra8=,tag:H6HiFmb9o/swKCM9/h2iyw==,type:str]",
-						"name": "ENC[AES256_GCM,data:0Dtkh5j1gFQlHtEtnbbPJZHVMw==,iv:B+VChsjepjy4DcuArAejDP3J22LsQRTQy8p8GC7WfM8=,tag:B114TKjmrYMlARDVXi1hEg==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:NDbOwUU=,iv:o8fUaL4gMa67EsVuajViUfUvvUT3U9MicHxXqMJ9GNI=,tag:3qsGlYk/P/vMNOoWaeHt5A==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:/at26vHyUA8=,iv:RioCxlb24taQuAYKOMkjl14V+SxcqF/o4Wkfiw6ItBA=,tag:RaY6N46wFyrEpYDcEnPfBg==,type:str]",
+						"kind": "ENC[AES256_GCM,data:NBJNhXKO4A==,iv:Nc0l39TL6EaKcrnrVLY5qNurJDIzCQG6aGOhs7oYpM8=,tag:qGhkMbFgY9Z62aDII3wfIQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:nk8atXbzRHYPdEWAOcKWfIMelg==,iv:xdTJWyj80ujU+OoS8yO3aElZMRhvPymSzub0hQSV8iY=,tag:L1oWYDCG2oqHTMrPX54W5A==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:yTJ3YqY=,iv:rp87Ye5EpHfaVExwkuLKh9LDha6SyDgyB9nfbcMXS5k=,tag:vSB14uyLN+Rv8Rhotirm2w==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:JB1fmehjOsql4OnS32z9QUpvUuSovUcmkgjPTKt+DX1PscGJICc2DDZQPKdFAzk7lgUv5rca3xsN1aJmuxb++yd2ctYtGHKrnS3OGnj7P87A1GqV,iv:FFs9E6/94rCaODT0jhz5vCqzbU6Od6sKmg2zjL7Rjrc=,tag:ADBmI0SrmbxZPzlRCMvNwQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:fHJS3vRqIfSW94O8zxCBDgVu+h/Rpg6hmu3r9TmGDCxdGg77/uEm3rt4TtK/UjkAYidjjtGRH+S/GDvp4q3U5qr8ORRtWekxfXbd7MiZJatVa2TK,iv:fsFAp0yCOheXnQrM63ugLcV30eH+wTZDIXHbFbKpWWw=,tag:TM/1QCUFWp4NMq/sTyR9kA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:9MEHBI5cx28n7Tzj3KwgTqGz1U/rWBhVhP1X0h7775lYLkreYh28,iv:N04e0L0Qw8BxSkahN9DIuqpqDhcFetzUIZ0jg3Yui4k=,tag:nDXJ1yqTlKq4cPg5wCO9YQ==,type:str]",
-						"ENC[AES256_GCM,data:MSasZ2RZBjpEzy1JgkVwwh2vZu4t6mbHR7ngtdG0VhaLKrKE6SGoD+DhOfHMifbc03Jt3/ebvFInKB9phiLNngks3GUNXh5rg89I,iv:/mizrdP5mR6zwtRB+C2eb9BlH1+jd56E6QK9Rw11xOA=,tag:Wao4mX7eJLLsQyeakpSZCw==,type:str]",
-						"ENC[AES256_GCM,data:xXCwwTFiZpOJxY8nk6OO7zYbx4F7otV9cE8VtEjO923mA35QgtITF0WPet6XI6DtY0XIfJqCw+n9jBMSCST2Mi9U40Zp/NAPL6UBSSxj2HYq,iv:hd2AExnxO9eVyHh4+AvMBos6MAAMIy3OvWDj9QWO0W8=,tag:EhfoI+2njrMcGAwARp/JfA==,type:str]"
+						"ENC[AES256_GCM,data:GV1kBfz5cl/Cv7m0aK9aZMmFlGnoIOFZPgez7fAlN90zXmvySE6V,iv:0UVGqxGhgwx1xv+caUyrvWSCH90keBi73A/ms9/C8rI=,tag:KEJXdPSmKqMMEsjpkA/O1w==,type:str]",
+						"ENC[AES256_GCM,data:TNzBjeZDqSjWayQCDXriWAQSAindNLxYAVfFrNX5zSLoe6Izhcysl+leuEQAmX9O6S4jqQu28f5wFq2vZozPY2pjSHh+mDcrql+/,iv:/4qtNuS3jEhWlK3H6IGdYAwEmGFOu6D4CZAxErF/TaQ=,tag:Zu18eVrOJGODu9Whv8U+LA==,type:str]",
+						"ENC[AES256_GCM,data:rHYrq2PN4R/2NpoWseJJpy5WdMtVduD4m9ozJQWB6nfRuRyLTUwKq+1BXPJ5ePJ72YYZCrEKskjJFSRzZhAOZjmzCh4F/O3GY9lYSXaKa2Cr,iv:d9osKbXQUaMPbJzuCYq6gxtLKiE15Kz/eEqkrXahQVM=,tag:RedtdNhaSRYKBfuJku2K4Q==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:btn8b5XdpwR0KDA/,iv:BdZ9eplvZHxS2uj8pG2ilsNF8nyuzr/+tF3UljY+UGU=,tag:oTtcTrx3LMCQwFwHQm1f1Q==,type:str]",
-			"mode": "ENC[AES256_GCM,data:w84ZFUYIOA==,iv:Ic0GhP2ghmbAIAgZFbqGIMHvkRH52h+u5i++61cDHh4=,tag:GWLnVn2V4meMBI5f6tzHFg==,type:str]",
-			"type": "ENC[AES256_GCM,data:tARTUBTImFFB33vHvXXc73IE/zVX1g==,iv:2wcyIRNaUG1C9u+L7yEVpWjTLIyXhxC7MDHeKE3L6bk=,tag:+tPzK8bFF+7LNt838FQyEg==,type:str]",
-			"name": "ENC[AES256_GCM,data:95HS3hlfBOmTPtq2rXTfWdo=,iv:Mo16W7kQDNG17O65Iy73c1Lhgx7b/s56lVrkOoLrCmU=,tag:wzTluKmuzAmYH+OTnsB+zQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:iGoJoEU4oCaZ+GXvyrIs9JQFEudPGQ4lTRnADuMSGGzdq7p1swRmjXSvUMuZI9J8L2Q/HBxd,iv:sp8X1VK07gxnHoi2Gbu7tz0xHASZxXMJEI/qAuruKZs=,tag:CEhdtHu2ntdCeZBkcCRRiA==,type:str]",
+			"module": "ENC[AES256_GCM,data:ATsjbpqmN1dmLbFP,iv:A8KAfDv8G72ud7mM+i40YyNU7WjDoKgbuNufKP0D/Rs=,tag:CMoU7QWrppk4Rp580uXiqA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:F3YBVCQLVA==,iv:DgcvKwVJbRon3wjwD4E1e+M3HZ0z3jcmvHQT0adeD/4=,tag:0QeNfRTdS3dNg7JlsnSR4A==,type:str]",
+			"type": "ENC[AES256_GCM,data:gKnwsduzNpYMAqzJ/AqclUBGzafzYw==,iv:pr5GiwpXcmQEn9d9fVJ65fAEeRF3SAgfbzGj3tGGqss=,tag:FGsAJS2fgnx1io4d5pq32w==,type:str]",
+			"name": "ENC[AES256_GCM,data:HxBnFMquyeOS/CJSvwK00Qg=,iv:XJsKp+NZVtOKPRVACn7XYLrs81zOKgtzhTgQAqIJCek=,tag:ABEoePQ1RxNexyN9I7bGJg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:DzJYeRNDKtcNEEOcmO7aLImdFI3OGx5rMD+8XvC01lGZnJQMmXXp/d4ceRI4Xw979jCdn5z5,iv:H56WamrBEw3KiJ5g8zxjhSI9IiaoA2rTRerzFUfGBlQ=,tag:A+RaiC9B7pQpoAFpsnqCyQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Bw==,iv:jtUeGNUQ50D7vz7vgsh/ZTF5+sj1E0iepVIWKqIwTwY=,tag:H0qxt/6aw+qCxQ1eAzZGNA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:zA==,iv:4lwbwgcodPZcVcB95BiSO7yGNwBMCo0Whdotni+ZCh0=,tag:j0NSnM508hsmVjADq1u2EQ==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:o44AnNGY0RVt4obfG5qz8h/T90oMkTc=,iv:LJv+0PfgrJJNNvVhWGNAL25Ah9NhoD/oLx6N4lSI7A0=,tag:AMVrEiMgZ9gLxbreWAUvAQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:b0pFq+MMuq9LzsA9J3ylK1JF/Y1dP9E=,iv:wXy84YdjRYzgI57XZxx/l/yKNBaogQMalnCBjY6QfZU=,tag:+FYhOhKe9UBOjHGi/g/CfQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:hfU=,iv:vmxyv5qh1Y9+0Lu3zt/QWxhYfhlsnfSCDfHMhO9zgsU=,tag:r/6RsPIxIdz+MU6Q9ENA/A==,type:float]",
+								"generation": "ENC[AES256_GCM,data:xdE=,iv:cb/b2+7OKGI/DeYufyriDrYVtLSu+9g4slJzluNrTfE=,tag:LQkb7e0wAfRb8z2L2JatRg==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:OXSda0Jiza+UrpPL3KkwrdE=,iv:qJM3IZ2uezgpGAzGvpVvKD12jdchSHmWI2/aLAHe6IM=,tag:SaZLnL7SES3POoU1Xf3efA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:YoaSX48=,iv:CAH8SgCdzpksuVvMTvPIwkrh12nvn/fxZuCsXaPwsfo=,tag:9J9sio84rAMXlnRBuUXWMA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:C53lk3pf648v,iv:PdDYE1HHg8zNmxKzTNyUaNY99b1Ql8+RZDL4EmlPlM0=,tag:vJvV4xNnGRCa9breVCavvA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:/mfn2cRAOe/K4RWwvtfeUUGumbZlzLVYoQRvGfrxvxtW8N2p,iv:/GKkqF4IUlloKhkvrPoBZzkXsNkS6yZQtoRqkON/vCA=,tag:tc5K61lGqrAPbgYuv8Rj6A==,type:str]"
+								"name": "ENC[AES256_GCM,data:TacrT2+6q1RIpiVZVbGI8hI=,iv:pJhaZMfd4pPYD93Xu1Lo4YtIhJusJ7zCZqrVS9rHyCU=,tag:TsJ+WCIJVPDvUtP0zoJ7wg==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:j2LqEwo=,iv:P3K/LcKLkcoh4I7On/g3XstTZNCuOLrgLf1M+wQk2ts=,tag:G95WXx8S02py9IWbrYqxlA==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:+2aqyTLhNDdo,iv:m2nea03pnSvYK/9rRvIYC6fUwkdK8xzh7htgghDOWYI=,tag:DNVo5oVug5sc9kiDiTcLuw==,type:str]",
+								"uid": "ENC[AES256_GCM,data:+iRljLKF9Dh9b65K+6x5MxFK/H60uA1BFM0qXqgHxVEouwfr,iv:VgJ9r8TnbJb9O+ss5y29bKVeBvsMU8ylOVrFx8M16Fk=,tag:QYEsJWuxDU+FWcdPDtkefw==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"concurrency_policy": "ENC[AES256_GCM,data:PJfTJXK0gQ==,iv:q7x5igoCPQgCShEJYf2uMox8eqcrAEQ3wnquvxcCvO0=,tag:zvSxlRFaQjgkm0rAaIH5qg==,type:str]",
-								"failed_jobs_history_limit": "ENC[AES256_GCM,data:QQ==,iv:b39WHn6VKIPQWfoF13o5UwuvCXPUN+1Dfkco4Y1M07Q=,tag:NPQLbwU70ccWdJBf/eEwxw==,type:float]",
+								"concurrency_policy": "ENC[AES256_GCM,data:GNyIno100Q==,iv:I4vop6gHGfofLBvO1R1He03lGtntl9GDIHlBZaSS2F4=,tag:MVe4QQwl3oGiuj83YPze1A==,type:str]",
+								"failed_jobs_history_limit": "ENC[AES256_GCM,data:zg==,iv:laixfO/EEJKUMwFlceg32fijjqE0zgntw7q0GTgSYgA=,tag:E1n6zzb8w5HPVb4yrmbyeg==,type:float]",
 								"job_template": [
 									{
 										"metadata": [
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:xQ==,iv:aLROSG945iRpXYe6x0l41tWgSa8/3bTGfvKMqVbvqAQ=,tag:Vq4jxiRH+vwXJBToy65VYA==,type:float]",
+												"generation": "ENC[AES256_GCM,data:Ag==,iv:qOofizgYR721Qml73nK7plvEz+e1Pq3Dwx8L9CiKQRQ=,tag:f4gOOLzfMMD6VLAd8aSeXA==,type:float]",
 												"labels": {},
 												"name": "",
 												"namespace": "",
@@ -949,14 +1118,14 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:Ow==,iv:uye3zTs1tun9Ul+wDAL/KHg45xcshX7iOoZFK1F7hGI=,tag:BYilF2IUfrCY6fI0pp+Lrg==,type:float]",
-												"backoff_limit": "ENC[AES256_GCM,data:ww==,iv:SguqQRnbAz/tjgNc/ItYEg3LgzWBlyahzyeaiNaUyhk=,tag:gX7rdXVDCir+1RE+PXz8+Q==,type:float]",
-												"backoff_limit_per_index": "ENC[AES256_GCM,data:AA==,iv:u1XMZlLfGRHb51psYHjOhxaGITqaDcysOz1ug+ZISBw=,tag:kSVj0MocVNDNDzgenPoH0g==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:ww==,iv:bWOtLinz/zzXpPVUOVUannPAnZJuxzcXqWejcEhHnPY=,tag:JHfIBnET3bH87soNKzpTFw==,type:float]",
+												"backoff_limit": "ENC[AES256_GCM,data:yg==,iv:ldVvlCqGjmRY1k66P63gr4xZiNQvuuYbfvHstOoIihM=,tag:JL10gYsI9R78M+E8GgrUgw==,type:float]",
+												"backoff_limit_per_index": "ENC[AES256_GCM,data:OA==,iv:17ajWEgCV1Z7c8lcQBAkg673/tgB3qhqceVysOQME3g=,tag:f/DHGd/911S17smdiSf/Qw==,type:float]",
 												"completion_mode": "",
-												"completions": "ENC[AES256_GCM,data:Wg==,iv:+djo12OnOncvwYQ/WrVpWmpAN8E9uIpWlBIHyH6RTLo=,tag:j0AEk1QAyc2TXwKlvk7HRA==,type:float]",
-												"manual_selector": "ENC[AES256_GCM,data:plKYyFI=,iv:/jQtcl5P4856MpkzxvkkjOXu6sqjI7E9zB4l3HC6Dfs=,tag:ra8HogZ6NQbT+FPNlgoSfg==,type:bool]",
-												"max_failed_indexes": "ENC[AES256_GCM,data:rw==,iv:6tLSINIVXUUaUE7DkMTDZbVvuCi5hW4ivD/CWsk4zD8=,tag:V4PuldxxKShZhHINs8rIdw==,type:float]",
-												"parallelism": "ENC[AES256_GCM,data:+w==,iv:csQr/Ytvm+RnM6cjAqxBF+h/k/Umtf8IRB3q1f/QHEY=,tag:dNW/i/XzzTwF5eW8bdsxhw==,type:float]",
+												"completions": "ENC[AES256_GCM,data:oQ==,iv:cvGpC3WRfDrBndmNwl4q05Dujy+IgcTJ//jTZ3ZVxrg=,tag:kF+RwnpLx5qo8+UbbGCv1g==,type:float]",
+												"manual_selector": "ENC[AES256_GCM,data:2aGByow=,iv:YGKgaMPnzyNl74U1L30xHiBayll2HZjbgST2EJiLXlU=,tag:drTPHvUa5Nd786XDBTPoMg==,type:bool]",
+												"max_failed_indexes": "ENC[AES256_GCM,data:dA==,iv:vzwvhl7JWphqnZti/adZIyuiCtny7yq1jgANGKyQ/5M=,tag:t5mcFnhXbzSXYHJERFcWDA==,type:float]",
+												"parallelism": "ENC[AES256_GCM,data:gw==,iv:SLn7nHhQkIddK9sRNXT3TxKYjWUmBVhsx3ALjmQJoTs=,tag:QXaO/lYuhVU1s4rmHghLAQ==,type:float]",
 												"pod_failure_policy": [],
 												"selector": [],
 												"template": [
@@ -965,7 +1134,7 @@
 															{
 																"annotations": {},
 																"generate_name": "",
-																"generation": "ENC[AES256_GCM,data:ZA==,iv:lifYsFPbiuCKEOpwF0OTFuFI55rF+JRP+z8RGxdJldA=,tag:iQXEgxJyWdrdmYPE/sPI0A==,type:float]",
+																"generation": "ENC[AES256_GCM,data:mw==,iv:ySKe4FDqzAR9qCTxduqIcdWFSl5pz6y1pmvGT9PzaYc=,tag:+WTS5C1UfOF16yPnh+QbYg==,type:float]",
 																"labels": {},
 																"name": "",
 																"resource_version": "",
@@ -974,20 +1143,20 @@
 														],
 														"spec": [
 															{
-																"active_deadline_seconds": "ENC[AES256_GCM,data:nA==,iv:RvDZLnctidtafHGiSaW7S5Tz6MPiBSAaZrtApAys/0Y=,tag:/JFhW79haSgSEz3fCGrXtw==,type:float]",
+																"active_deadline_seconds": "ENC[AES256_GCM,data:TQ==,iv:nki0noPWwzXIOm7HI4j1z8oebIA+6FxDJcTxXEK3a/Y=,tag:QPg4xG4uM8ojXd32GG8RLw==,type:float]",
 																"affinity": [],
-																"automount_service_account_token": "ENC[AES256_GCM,data:rftpiA==,iv:xFwCNTpnj9xpDcyz1isOcerjeWXHuYbc8MKyp7FhjJo=,tag:Cy7L6kwNJoDDyUe2nTKAQg==,type:bool]",
+																"automount_service_account_token": "ENC[AES256_GCM,data:K2ricg==,iv:U/iZseUrBTIh69JkiVwogufHs1arFBNYFAMG3sL9EC4=,tag:PjKuiQGzmc6N3ufqHgL3Aw==,type:bool]",
 																"container": [
 																	{
 																		"args": [],
 																		"command": [
-																			"ENC[AES256_GCM,data:qKuGrbbof8gz,iv:Viuo/SKChOIKYlO+GoItJVQNtba7XWiG6JBdKysUFDU=,tag:uy590JetYBvWAB7b4Y9ykQ==,type:str]",
-																			"ENC[AES256_GCM,data:phk=,iv:yOEX4bobPGYbNG4vW4NTpJDOvjKrFOtuEK19ZmSXzzk=,tag:7WYDVJ9L6GWo0OqO4B75Qw==,type:str]",
-																			"ENC[AES256_GCM,data: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,iv:Mccfn3aTUANABscqnfhKI1Zg208M1xeRiPUMXJLSwfY=,tag:bPX4zcLoAxFkT3fU4rddXw==,type:str]"
+																			"ENC[AES256_GCM,data:ggIva0YRBgcu,iv:utHDaAbdhjWnFpZHC0hiGTSq9mTjBAq9LqGZy5j/8b4=,tag:35yqIHy5m1M3Nn+YMqqHVw==,type:str]",
+																			"ENC[AES256_GCM,data:2TY=,iv:/Z7OiDRhrnJqf109UAyAG2xleusJ4Zq3DuUTTIAqrbg=,tag:th4rtqkdiHiBGTHkwilDeg==,type:str]",
+																			"ENC[AES256_GCM,data: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,iv:7xD6vA8QegTce5xyhKgbFd+Z8ssLuefU9A/HK05bajA=,tag:Re0vAg4vvbbGD7MkYEDdUw==,type:str]"
 																		],
 																		"env": [
 																			{
-																				"name": "ENC[AES256_GCM,data:A5lDHcqHf6IBeA==,iv:ogApMj464Hb2m1uH8he3Ita5Pc/ZGnJ/qMWTewka888=,tag:HQgIgv7KVGyKWJBq04lyuQ==,type:str]",
+																				"name": "ENC[AES256_GCM,data:IDU6m5Qv4IeP7g==,iv:pyDeKuoLsJaxHilmNxbGUe7dK2Z8hD14ugzsay/wzoI=,tag:uNm8fSLRkv5KNQtFBd4urA==,type:str]",
 																				"value": "",
 																				"value_from": [
 																					{
@@ -996,9 +1165,9 @@
 																						"resource_field_ref": [],
 																						"secret_key_ref": [
 																							{
-																								"key": "ENC[AES256_GCM,data:8wVfcPnYy/Q=,iv:+Stq4MuBwhTglN/IePUvWgmAhvtkphaIBDdE3I39tu8=,tag:HNNa5E25coPenyiE5wL2sA==,type:str]",
-																								"name": "ENC[AES256_GCM,data:qg/osYj4MZmruZdh+IgbK4Q40aI=,iv:vxV7k6dVlFNXbkjuBayjzb4W20Ktu6MytttCFFpOcWc=,tag:WMxHakiOVTjV1IJiNhZVrA==,type:str]",
-																								"optional": "ENC[AES256_GCM,data:e5aT4Vk=,iv:M23izf92vXaCvrSms7LkjEHq1K1qzPZB768miJar+f4=,tag:4zLCkzVTsclEjcSiyJdt5Q==,type:bool]"
+																								"key": "ENC[AES256_GCM,data:9qRkZrWKHAo=,iv:AmrWtb4rfbqhNoipHYwpODn1aXBSDVDu3WCFA7KzVn4=,tag:QUYLmWn3KHfq/PLQ19VzYA==,type:str]",
+																								"name": "ENC[AES256_GCM,data:5WVeeWDEzR7clErKcpkBuaQNmWE=,iv:e3TTn09Ikqy1qznDFOsEtlZH/2KcEBRc91jetXmuMpA=,tag:ZbFjs98nfmrrfMIIJCcTCg==,type:str]",
+																								"optional": "ENC[AES256_GCM,data:7iAaGx0=,iv:C7FVclUEC1pu7Ta33kAodKZCXF74UAe5b8hgddfQZ2U=,tag:Shz3cn/5DKG+CVCcKh3sBQ==,type:bool]"
 																							}
 																						]
 																					}
@@ -1006,11 +1175,11 @@
 																			}
 																		],
 																		"env_from": [],
-																		"image": "ENC[AES256_GCM,data:wzDIN0AE0OmDknxqpMLYtqXB2OmF6k/C7YeAZSlpsi54h1b8ZKolOg==,iv:OQKyBWkxs95Yv4G3cPmlQZYmKjGWIrEMYoWOQowZK6c=,tag:HrffM0W5npBlRV19sOdUhQ==,type:str]",
-																		"image_pull_policy": "ENC[AES256_GCM,data:puLB3rfs/JAcxz/t,iv:UyuLiBCZKBIXJXf5zwqWLa/sS/FqxK0wHC5sC5jXU1I=,tag:SnoI4WdHMQbazi3RmeslCA==,type:str]",
+																		"image": "ENC[AES256_GCM,data:FnnzI6XHuJLT6ntYmhIElKXcWjdVyTnfaRABowXOQsoAAVNzxJZ7Xg==,iv:gufCI5tWfSPKzM662AnGyaoHIkvcf1zLSjahF1MSiE0=,tag:TL/gAQ6peUBj1Cs/Qoy1gw==,type:str]",
+																		"image_pull_policy": "ENC[AES256_GCM,data:+nMmLHh+Auhvowfb,iv:LIkgjcDZX5LiKQl2t5IgbX8H4IQ4TbgeEryM6r084KM=,tag:JkC3g85mvHH3GcwSJntPUg==,type:str]",
 																		"lifecycle": [],
 																		"liveness_probe": [],
-																		"name": "ENC[AES256_GCM,data:Y7/SjfKhuYsFB0Tygaerjdw=,iv:qpww+VDGdulGhc+8TRiTWLPQ1jUMxABZA3PdllkYOUk=,tag:NA18w2kWPjUVfenBY2WX/Q==,type:str]",
+																		"name": "ENC[AES256_GCM,data:Z3ARYd/z5lbMmi6z6LxWG1U=,iv:Psmz6AmItXiWq/XE5WHXqTyZwrRtmSDFONqn9NHSTOs=,tag:aERSha84t9ZFS8mE19u7/g==,type:str]",
 																		"port": [],
 																		"readiness_probe": [],
 																		"resources": [
@@ -1022,18 +1191,18 @@
 																		"restart_policy": "",
 																		"security_context": [],
 																		"startup_probe": [],
-																		"stdin": "ENC[AES256_GCM,data:xaYvZ54=,iv:CtNhL419VEcitqjPLqAkW3qPjTqVLK4o6fz4o1uEUE8=,tag:drLuCZaBwxVMmOU/ZHM2IQ==,type:bool]",
-																		"stdin_once": "ENC[AES256_GCM,data:vBQHDXw=,iv:tj9AE51eYYpfYisLx9atuCx93nAyscOm4PeDcX2bYOI=,tag:oWGW6nm0t9iRdaTEU+l3WA==,type:bool]",
-																		"termination_message_path": "ENC[AES256_GCM,data:YdOnpdNIN1lv/3PzN7HDj3sAH/M=,iv:KW+bt6VnTJ/Zx0fHwGzjT+dbrFBW+fld5vjxMN4jEU4=,tag:ZMYSitWJ6hmXBATXyCgQqQ==,type:str]",
-																		"termination_message_policy": "ENC[AES256_GCM,data:LfM3BA==,iv:3vGku62ljXweZ7Qc8S2MOvDH4tzuGHIqzRa9sM91HeY=,tag:p9OJB5vMmrZvnSMRy+eCGw==,type:str]",
-																		"tty": "ENC[AES256_GCM,data:Ll6xEYs=,iv:+cb7UxkFSdOuKr8NEozUdWiwCrBUIW1FrMaSbnsdNKs=,tag:z8Nri+WK03ToomGGI9M5gQ==,type:bool]",
+																		"stdin": "ENC[AES256_GCM,data:QbRktQw=,iv:8hk+YrQEKAEVZsniJXM8y4G/jgctQD7fgkVmDE1rSkY=,tag:3AVkQEo75/N4C2lXWaygJg==,type:bool]",
+																		"stdin_once": "ENC[AES256_GCM,data:d6rPUNw=,iv:PT0kpEqi9KeCqFvcSRX/rVdgnknK6OPHqDCoPuoLcHg=,tag:QApSYY5z+t22J1x2ZZHPOw==,type:bool]",
+																		"termination_message_path": "ENC[AES256_GCM,data:l97o/HNhAHDNKXQv+KPZbNXaAo4=,iv:MUIzEP1o3dGp8jl/Yxr6MZU8+2/oot15o+t3aQodaAo=,tag:kpyXNlFdKQUK0eMFWaFduw==,type:str]",
+																		"termination_message_policy": "ENC[AES256_GCM,data:+TvEzg==,iv:hLZnpKDotnZBnGY9oNUS52NMNc7uSblbGuEROTxSemY=,tag:UqDtRlSfZQLfq4BVX5lErw==,type:str]",
+																		"tty": "ENC[AES256_GCM,data:LiUWlZM=,iv:kk9nila76EQ9LC57A4S+Ke0djFdGFGJDltYY78VFALA=,tag:vOss83CnWnmWqfe8oIYC0Q==,type:bool]",
 																		"volume_device": [],
 																		"volume_mount": [
 																			{
-																				"mount_path": "ENC[AES256_GCM,data:oCriDGZPZQ==,iv:eZj7mjopxlPlhAuB0ndqfiVGBH8tjIW+bOvXQbX5BHs=,tag:KwR1dUYLp/TjBiUYuHFGxA==,type:str]",
-																				"mount_propagation": "ENC[AES256_GCM,data:4n9XDw==,iv:2ejhEJ/zVRalXu9Gz/tvq+RwKk9tey/p9FMVa+nOOpo=,tag:cemARt2y+oMHhlFyE7tf1g==,type:str]",
-																				"name": "ENC[AES256_GCM,data:Ati1KOD0wtcVTesEbyNCQ70=,iv:BE/tkJhogHa5Y++xYB1vQfh4ZtrL8qP3UZbCpYdnXIQ=,tag:E9P3EmtSrtlRNxzSND5R+w==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:1tmORhs=,iv:FCjMKdCB6Xv1mzFEUuSyLoUaTMsmFTUtkY6zTmY93sw=,tag:IcoWu8RxEzkr6F3ZXpWV/w==,type:bool]",
+																				"mount_path": "ENC[AES256_GCM,data:tpMo7I1fNw==,iv:GRYbZbNK/FriKVLHIh6bB2KdDQuIHu5X0ly1gOr+xL8=,tag:MKa7TtwAnjNb3K0XemeR6A==,type:str]",
+																				"mount_propagation": "ENC[AES256_GCM,data:4k0RaQ==,iv:vohbvXY4ngAuZmWMUikvTA7HUfo5XTYPwN6DC7n4k9E=,tag:O86f8VySqT4nBvaeA4QCYA==,type:str]",
+																				"name": "ENC[AES256_GCM,data:j8Sgm4sWKoa8B7DHJ7pEKNM=,iv:CBLPRISBzrDPr14MnUN7JxV8zDNC74zHSPWwJB4HfAw=,tag:Qnjtc2063AcNiN+iTLlcbg==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:giq0XKg=,iv:TlvTCKS9D/w68Qj5Esu9/RbdkZuDiU2eoxtLshuN9L4=,tag:L7Wh1r/0QHzfceBAGG4eqg==,type:bool]",
 																				"sub_path": "",
 																				"sub_path_expr": ""
 																			}
@@ -1046,19 +1215,19 @@
 																		"nameservers": [],
 																		"option": [
 																			{
-																				"name": "ENC[AES256_GCM,data:Bqatwo8=,iv:cS9JS6gKmKL+GJFq9Rw10EZ8Yg9XmfL9eIZPyUKMCv8=,tag:pilt7y0RbO6YtRGhsI7LUg==,type:str]",
-																				"value": "ENC[AES256_GCM,data:0Q==,iv:Qs5g1EWpPmPIaTGOjsEdb1LEBynT334mveIXT0sT9lc=,tag:OKdJr8WuiO6D/wM8G2Wj9w==,type:str]"
+																				"name": "ENC[AES256_GCM,data:6sAs+cE=,iv:UOGHj4gvhSbnsoVXFrzO8g6wPRmbNWlPLM3dGg2c8lE=,tag:/RcD1ddsFHcOwIOmKyF+aA==,type:str]",
+																				"value": "ENC[AES256_GCM,data:ug==,iv:8Y3o1yiSygYIAPlOvDpGMy7lQ3sP5FHWKvuUaOXJiqM=,tag:8kBO6ZyFUpWevd9ow51caA==,type:str]"
 																			}
 																		],
 																		"searches": []
 																	}
 																],
-																"dns_policy": "ENC[AES256_GCM,data:mdvnx1uOqgcinvAo,iv:dPXCM2G7rFWtiNhYkPKgEz8aH9WB+ilPC5wdyzhOKEs=,tag:a19MUXVD/sL8d8cGRN4uWA==,type:str]",
-																"enable_service_links": "ENC[AES256_GCM,data:/H9LPg==,iv:SS2dUDqLClBlHKB921QXSW+oJLoICxpoQc0J+9/5SoA=,tag:xcLOO1/PN9sZzJiMQbe9/Q==,type:bool]",
+																"dns_policy": "ENC[AES256_GCM,data:KMny1SfHJuRFoWze,iv:X5mZ58IY8uJDFuM0rgaBLiX7N/2CdW5ogwBqCP1cWbY=,tag:nPBxTgURL/gdXCAnHKwDeA==,type:str]",
+																"enable_service_links": "ENC[AES256_GCM,data:rsOmmQ==,iv:IvRYGZFVISHWQHiKKdQUoRzn46ukK8X/bfRpGS5pm/c=,tag:TUYrR0tZEoEVtdaAze7ovA==,type:bool]",
 																"host_aliases": [],
-																"host_ipc": "ENC[AES256_GCM,data:quA6ptY=,iv:Q5iSaOx2FX54bG6MYLk93EVJ5jfrqwKkwpFMHTYbcfE=,tag:ZhVujSNeBSnmpH+myUySAQ==,type:bool]",
-																"host_network": "ENC[AES256_GCM,data:3XqCDSs=,iv:euSAzD5IbCYb1o9xJY0XiMkVA1MN7qVIKDM1e7xf2ek=,tag:3mlPTZlTX4N2+gukx1o0Hw==,type:bool]",
-																"host_pid": "ENC[AES256_GCM,data:WLQIUUk=,iv:QHzv8fU9Phigu+wJLpZWP8QNCREmtsBKk0bVWeJ9/y4=,tag:tZTPOSRPgc52B08PP7TpXg==,type:bool]",
+																"host_ipc": "ENC[AES256_GCM,data:uNrUNEI=,iv:uoKkoVlc+MbaciJaZc+j7tPfHphnG4EacKVRNnxB5P0=,tag:pkWJel7/dNa+EsDMDHQfsw==,type:bool]",
+																"host_network": "ENC[AES256_GCM,data:8AFFsqQ=,iv:mSq7zM1A85v27mfbfLBASTGA3QLUSvbwOR67pc730rI=,tag:4HONBmGnAJSBMeWZpoZPcA==,type:bool]",
+																"host_pid": "ENC[AES256_GCM,data:9cPy8Vs=,iv:zDi3vgofpUIYKUuZVsqqjDh4q07wsPpdujtX9MRidvc=,tag:jzpxZcOAWYby3yVxxIRkhg==,type:bool]",
 																"hostname": "",
 																"image_pull_secrets": [],
 																"init_container": [],
@@ -1067,14 +1236,14 @@
 																"os": [],
 																"priority_class_name": "",
 																"readiness_gate": [],
-																"restart_policy": "ENC[AES256_GCM,data:xdK4Z0E=,iv:GZlY86R5rPO0W6ODKeNzCVbPGekikNhmfcVe9cY8GQA=,tag:pyXsFeuT291LfGDkXhwF4g==,type:str]",
+																"restart_policy": "ENC[AES256_GCM,data:FVFl858=,iv:fPy1D8p/34kDrddS9LjgohAiwaxzynqE/YRbOx44ELA=,tag:mQQIoZpyQo7M4KhXN/mBTg==,type:str]",
 																"runtime_class_name": "",
-																"scheduler_name": "ENC[AES256_GCM,data:LTbs10m2pL3mEGoMWodBH+Q=,iv:P5JnBfH9q62u3AsTVZg+fSJvr7WpCTUv7EbDPujfitg=,tag:7OEgOmy2jpR7qelaqJTQbg==,type:str]",
+																"scheduler_name": "ENC[AES256_GCM,data:1d9j1x0YpJDB3xyGBCqOmzc=,iv:lS6d5kWkWGQSEGutvIi/54Ed8wuj74fEdNPpcejsqvw=,tag:Hsc25vCQ9k7pumZD65CDSA==,type:str]",
 																"security_context": [],
 																"service_account_name": "",
-																"share_process_namespace": "ENC[AES256_GCM,data:CeSELlg=,iv:aREqdxvxc6pgnX+sU0c01M5y+thwMKyLoqa3LgDOHHk=,tag:FcYWxRGsIBYAeUGwbRO7Dg==,type:bool]",
+																"share_process_namespace": "ENC[AES256_GCM,data:T72pLb4=,iv:8yawNOnrPvfFugbWPUDm8jR8yHmd6r8/GxQ8ZihGsgk=,tag:EHmoLfqS7Nl//3H3MgVdJw==,type:bool]",
 																"subdomain": "",
-																"termination_grace_period_seconds": "ENC[AES256_GCM,data:fRw=,iv:QMpgbf8OCK8Epx6vxxGWYaCa+Pw6K9udD69aFf+oh5o=,tag:lhfQ7GGoSQLOW02QNhq5QQ==,type:float]",
+																"termination_grace_period_seconds": "ENC[AES256_GCM,data:Wwg=,iv:vXDduCeP4tfkRSul1WnTyE8uzwlWMChNW/IYMwy/UkQ=,tag:Urf39JWffBak09KyEtAxcg==,type:float]",
 																"toleration": [],
 																"topology_spread_constraint": [],
 																"volume": [
@@ -1098,12 +1267,12 @@
 																		"host_path": [],
 																		"iscsi": [],
 																		"local": [],
-																		"name": "ENC[AES256_GCM,data:fSvkcfuEtvLAIgG5kgRXIYI=,iv:OAGMDSYIlUAoKPXfsxvIHTQU8UawBYdQXmJXPmjmgNc=,tag:xaBdJHpjFrAsPKZecXYksw==,type:str]",
+																		"name": "ENC[AES256_GCM,data:pND7JEnnEYYtveZPI6keh8k=,iv:UUU09/tydQINvVsBc6U8joMZQcE/fftN3QX43IO/yas=,tag:nZXdxHZjdmbinMec3ydTRw==,type:str]",
 																		"nfs": [],
 																		"persistent_volume_claim": [
 																			{
-																				"claim_name": "ENC[AES256_GCM,data:bO7MxqwAf6HAqaC3FxZHazjXdIgHhaXOL4zjMg==,iv:kgzNRHU5OPtE7QTjt1m9EO9vKmQlf7g0ksN7vrjmwFQ=,tag:up5VrF6xW+rIAYLiyZt2Bg==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:n2FAJ6U=,iv:M84EnDjETnSGuS8bvCei9ykLAIb4XdOgxQPbhNZM/CE=,tag:tuvum7wWpaRRYt+xQBUgsQ==,type:bool]"
+																				"claim_name": "ENC[AES256_GCM,data:8K+jHxoZ4Nd0psz0i5RXfxDrlhKwWUz30oCiJw==,iv:GgDCC2qWnm8mC85+9D5wfs9qx3WJw0Zs/JDafLHcEtA=,tag:sn/ZjEBEJqwb9y1yrAto5A==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:6dHZyRU=,iv:rlK60SB+jErtwTfBOlSlmsF7F48Cy3ruKAH3wbi9crY=,tag:drhOyaiFkV/sRnDf//v/TQ==,type:bool]"
 																			}
 																		],
 																		"photon_persistent_disk": [],
@@ -1118,71 +1287,71 @@
 														]
 													}
 												],
-												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:5X0=,iv:8WkL1ximTNIDfmm/vR/Sl5mai36lNtzj0XGF+lhFq5o=,tag:wHeGi6N/JZ6oq7D2MJ3rBg==,type:str]"
+												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:+kU=,iv:n9ZIUtgwdEs8CCn5zoZJZMovYeJIDTAbXRot+SdrBpw=,tag:X11joHVvGfJ1LLzKLlR29A==,type:str]"
 											}
 										]
 									}
 								],
-								"schedule": "ENC[AES256_GCM,data:lZPgLSsl9jbw,iv:vBHYCOmewVcl+Dwj/L5bXPitknVsd7n5ycSOPB9cD5g=,tag:JzsXJ4jHpih73NvDrpQ9Nw==,type:str]",
-								"starting_deadline_seconds": "ENC[AES256_GCM,data:H5A=,iv:gsyqFkwx7Ow0O/DBSYijBBhfDqA4iSJw69H2HsmjLAA=,tag:r1f7nTkE7tJ15hTVLg1Cow==,type:float]",
-								"successful_jobs_history_limit": "ENC[AES256_GCM,data:x6Y=,iv:51jyyChDHifMI4wdEJVsm9vK+gJocdiglS6SQVmFXKo=,tag:9P2MjJn0eCnRAoRo63dbQQ==,type:float]",
-								"suspend": "ENC[AES256_GCM,data:cKPiMKs=,iv:Qwdx0RF15i6ZccI97/fpCDQLjz5z1gmWQ9gTtgveqcE=,tag:+Qaoqo5YFwuribbPRtOkyA==,type:bool]",
+								"schedule": "ENC[AES256_GCM,data:DrWiPAMJxK3M,iv:67+kO7saxnnYgd/yLaBBWL6TLSDogCzp1/MBTqdUI4M=,tag:KL3kLxAOEdtWUN8vbqP2Fw==,type:str]",
+								"starting_deadline_seconds": "ENC[AES256_GCM,data:R7w=,iv:AO0SyfAaxPaRH6LHIWMe5sa9T6bcV9if+FPgQ92t9eM=,tag:KXq2L/4NDXODGmUa0VVB+Q==,type:float]",
+								"successful_jobs_history_limit": "ENC[AES256_GCM,data:XHY=,iv:W8yngNYYSy51oFWDiwrw6kDR9B697EnRVN4MnmwsxEc=,tag:4FaSACGLceHcv42IrUWbQA==,type:float]",
+								"suspend": "ENC[AES256_GCM,data:ym3Pn70=,iv:EaTzZtAwsC80BnH6rkyWqZBe+YNfkH69Tse6X8cbqPs=,tag:slq2n+HVq99OwIKMtYzQAw==,type:bool]",
 								"timezone": ""
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Yw==,iv:Kvt6mc0tFUgLvkPjUaTn05L3dQp23qgYTAPHlb4x0/M=,tag:JbjVFEVmn6RjlsdArAlD1g==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:RA==,iv:SMBpNApz1QN41C8dp0TdEC7tut29v8rF3OELRwS+jak=,tag:U3YZouvAfhws3Lp0TqVrnw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:oxqJp/JtX+k=,iv:RFaShmyd59TRnN5Esk8Pen5E+uJjIECNV/yByDxu6ZA=,tag:+d8ydj+0xsSytrRU0XXLFA==,type:str]",
-						"kind": "ENC[AES256_GCM,data:vF0zeOxgsA==,iv:nNvOf+qfFU8USe5kJo4kDRRLeJJSj0jjsb2dY/f/dVU=,tag:bVvXrKWUtwEyuTgKlUcN0Q==,type:str]",
-						"name": "ENC[AES256_GCM,data:lvAW8UFP5BGAFJoTZhAT2w4=,iv:fBQ9FmB9p+ETQDtK0bO6eRULSSQTHDgz9mr2vDEZ9AA=,tag:+sqwNkJnBxOr0JvQyp689A==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:6Wrss9o=,iv:WDR46LPWVTiZGU3zN0q+v2ur/nGyo8Zj90CqQAJg5DM=,tag:v86ZTCUT5jsns6wvONxykA==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:h9pz7Y4QxqA=,iv:xphERoZDOXpE0iGT49+ZnM3dNgHp6Vu1cBEui9AHeNw=,tag:GT0EaMHe4Hor71Vda6vAYw==,type:str]",
+						"kind": "ENC[AES256_GCM,data:1VDpCJBJvw==,iv:rOtEEHm88xfXN/dWVhCP2BYfw2NQ1IG5kcxl7qB6Mxg=,tag:3/MM8nDjnSQqLyqwpWdoIQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:9aIchcCxIh4PPOyTGQ/Ppf0=,iv:XqsTbNzTrb1yvjKIf2DItVgG/yFF2u8nxgQJW0cMDV4=,tag:Sp0DO9x03bMncxzCR8PuSQ==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:f3jTQDE=,iv:SELirZjit4Co+Tkq1ZCfs1/t895WjcjPxC7Co4+dASk=,tag:ECW3UbSltmtwrYmGA4K+4A==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:aQPm5qcwKUcH6WYxyPt0sMDUprHcSq0xCUBTsg93fSXLAzxjMgE5WVRU84t/23d4dcQ3GPD6puSjfAIWLOf/IzaFOMJDVUiOmMa2EDNnA/5S2Def,iv:e46aWCtda72W7ZhTKREmRo4i4KOKgpjP3zDmrD3r/Ew=,tag:agZSvYuufvsdV77dHVxjrQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:+n2QThmU938s2z0CD11GV8cvAGZGlU/7zCnts/C6eEGEZI/6ogrvbd+ilW8dzpUSh6y7bODMFfd6nk6UNxWZrdPPSX83N0zG5wwsh+ffkSlhIByr,iv:OsVzffpyaaHlTBJSQOmB/MCnV5+SCa4vGPER0SyDkaI=,tag:mli9lro2vKHibV/FlgQbmQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:m1UFxVRgBp0nxwdXnCGiEtWpdvJ2eREjmF9tfiog/R4yMWH2Wjrw,iv:RB2WG/mOh94J1LegQWXc/Gk8G2ytkGziiguyTaRYdgg=,tag:LM8H6Ux+W8/yVrnW+chj0A==,type:str]",
-						"ENC[AES256_GCM,data:SL83cVWGk20MlxJ8Jl5RRy5nGdEYMV07yjDQo6Tao5/FRcSg3vzVfmQPjJ45TDMp5gAbZ8VLUAFViypHghu03B96oMYi9rMZxOjMswsLSNg=,iv:Dmhc9rY6okVl1qwdiFk0Ro+WLQbZP0qfJkH3dFMbN8Q=,tag:1Fs+Fh37gWpvT5Eua6gQww==,type:str]",
-						"ENC[AES256_GCM,data:R5g27tz7gJt6UTUt616od6Zh4tjUWrQS2Q7Q328JZg9tqzE22UWEtlFElV+K6oXWOpSJoCACup78w0ryyknqy7zJvjg9ZD7xL+QFNkY6Crr3HAsfDsQ=,iv:VJy6/Awo4uNcO3AUmOyEWPrjEjYjHJBS8lotVP2TiW8=,tag:0UMgKPAnaQ4SOsbwdkbNMg==,type:str]"
+						"ENC[AES256_GCM,data:AEWT3NjK7pDUDBxRH0hMe5Jq8XtYEJt7nmc7JEmI0pfDtlPJEkCc,iv:e7MLR2aS7O470xdIqbTFEy/gWrmU8zTgXjpNMh+nk4E=,tag:w6ORy+VNcI9bRi2WB1OBDw==,type:str]",
+						"ENC[AES256_GCM,data:wnXf+RhCDZad4sgE7+VpSH+ZaxQE+EAs8BAquyixT6ly01lu1Kh8OpAk/YgoRXoufe1hOPoCshf3/gzR6JRwiH5pdUrqIZ3MfoRYv+THYds=,iv:DrO0sLMAQFBdbIaHZjm6Cn0mGzodwMToDnYRc8mNQTM=,tag:O3e+p0Hz8X3tMgvpLmqwlg==,type:str]",
+						"ENC[AES256_GCM,data:K6U88QWk428xu//HRpdBy7Rfs71F+siibQncd3kq7MVhy2RgB+NijuGOBLRsvB3UBJLEqxc+a6EODBszkl8DnxMzGvq2LY5rwF2WjTpOUY8y40UpQiQ=,iv:fWw8d6iL6BUg9f+bc4sKO0FvBz23x0+KSRlXJEl5GLU=,tag:VyByk9b9xOImpCbU+jTpog==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:8LwlvCXo08Wt7KBL,iv:PcO9CXvXHz4pcwYjfaYO99p2Kqc1L4n4sblqj+gA+Ek=,tag:5x4svogrBoyx30/RPaKQcg==,type:str]",
-			"mode": "ENC[AES256_GCM,data:1A1KtoTXtw==,iv:PRfJ4jluAT7ssHzBx1x7a1Cck5WZ77OObICC6uSGolw=,tag:ysl4WznFXHSipzsJUThTjA==,type:str]",
-			"type": "ENC[AES256_GCM,data:dqzKYp5S/adooU+2h8c7NTM8wHosZQ==,iv:X0He8g644Cc7pCsOOfsMio3PoXBhNuNGlHkbOgNKBfo=,tag:n0JsIARm98cWOPiM3m3F8Q==,type:str]",
-			"name": "ENC[AES256_GCM,data:r3JhMoamg68pt9dqGZEMjjlXMiU94u89,iv:O4c0KpkAiAQVzW5Aasq63IflHdc5ziAvQHiQprV0VY8=,tag:UjA3MOkDhEOVUZeIzDte+Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:1LHxX+Xw/miPiwmLDB6/Fr1ZPMW2muqoZmf1ib85BSRDWlQvvccs3MghwklULFxbeDyiV+Wg,iv:COteCkVloDQDCh55iLRKK6YclUHe6f5C/Du3WxmScyg=,tag:DCM4caI6v3l5OiZX5EKFzw==,type:str]",
+			"module": "ENC[AES256_GCM,data:F0u3v8S+7LoRTjjV,iv:Hj8uQm+Xe60pRqc91yG+m5cY8Jj6+7pOPA4kXVt+8HE=,tag:NpmYNBJ0IUdGNY3HLXO+3A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:vPDoGnbrEQ==,iv:mQPgqvkCL5Ae26bFzhJ0P2XH1qzq6VN5YVuymOeUH28=,tag:sWQDKZpAtNFZzdnBBTobcQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:mHMNB8KojSudYrgR/NPknjOVGVtg2w==,iv:qmnc4YTHXqgEcd/4PwedfdqfRtHriznqICVQhwJnfig=,tag:oC5aeLg8Fu6nHfJotWRStg==,type:str]",
+			"name": "ENC[AES256_GCM,data:k2CBmfg3w3/dUVLfUhmQYSK1t/XE4EJh,iv:IReXh1MXQFMOl8VW6AeJuUywq+Tzvyg1oOWUkjz5pf0=,tag:1Sc+JVBaNuAauJO5pn2qCQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:NqBBiEK8RRAFdjLzd4CCzV+V8l6tzJzY+0Sj/fDtKzgV1NjN1M7PRBqqnsFrAFz2H559OqNK,iv:y/VpEqwOWTduZU0roaXIg5WiGkA0gMnB8u5s3nr0vPI=,tag:Ou3UYS9OTR/PZJb3FiLA8Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:+w==,iv:aJAjMVbK9lBIgJFGX8mpXtpr4rWHEQl8B6RKfZ/c0Kc=,tag:jxXBe435Y/WJeTmiLwHfLQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Lw==,iv:xCwwCgYG2bxiujysLzt57vr3hcgHP62RU2Z3hpIXGW4=,tag:R5ggnXfqeYW7i1d5oQ4nXw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:nv1kB4l8RbWnSpoisXQwgxJwWxU4oQiaNVW5egjx,iv:DNATKQckOArd+n/Nb0qogvNB5laRli1qC0sBvBcXPzU=,tag:6U+SHtLMfUPafL9LyiL79g==,type:str]",
+						"id": "ENC[AES256_GCM,data:YJwyVHr2F9Ic4PVZmPqGKxLmoZlwCKcYJv4TRjOs,iv:u7uzSbGk2aD476jukf6ZGtDmWzRjn5JL+v0Of+ZdE3A=,tag:duvF+D3/9Y+C+PGknnT/8g==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:9Q==,iv:jePWBxFGt5Y4sHO3PI4aXxYhdIyvZapF9H40XI24mgg=,tag:U0w69zcR46pukxkOp9fRAQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:oA==,iv:jFhY7zxCifZRa5CzBvgDBIx527ONW/LWQg17jvBl4c0=,tag:NkbtlcktjJn85Ln7Lx2D3w==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:1zQq/VXq6dYsdPUIVlQqQHvIgkmoReEd,iv:9z1cTM+nhqFZ/Ujw0auVUTbp/o5ccZVuJnbgkymN3yA=,tag:gEsDsdv0/C24UDJf5BPUzQ==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:OrxZMzI=,iv:IWiwHItipO72bcC/AgnV5LeGmRHB9Opd5ismunz9W2Q=,tag:mmd0PvHLNPZZB3gO3D+AXA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:DfKi70Q2qv15,iv:baVPmFiacYqf81KNSXDgJpfl7D3iPNzBDDJM+hOFH3I=,tag:HZG5uSJxZFWPj9e3ZXVixw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:mBsTB6+YfvNOy8lz0OtIGRTBdEdPI+9eUp90mpLvkGcbIdzz,iv:qczojIaDAKvatVLMUpV4X0/ynjkLfRCSKIK3MwU/76Q=,tag:sYSokPllZfvLBMD5bMRINA==,type:str]"
+								"name": "ENC[AES256_GCM,data:t1n5MXIbg/gzlEUzQUziNP2ucnGW6g8g,iv:+OTt+4Bt9m47ehr0xnrQvMDp+nPxrg9zfGZpPccSziA=,tag:U1Vp+Tv323iLgryduvI5jg==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:hTbT3PI=,iv:erOtRZ/D2BD7zsCG5N+RMh3OjXK7sP2cjG9MErpMHvk=,tag:ncldw3H8VtAKlFY2ehAQfQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:6G+2U/81qhog,iv:5JtlL2mcb7DyArrhJG5VjP1Jr5FBd6ijkwpG0Ys8AmQ=,tag:okBHW4MOuvedjDrCR2xJHg==,type:str]",
+								"uid": "ENC[AES256_GCM,data:TcH8tSO6RCbLw819/RhKULlwNc5M9LgYqTLf2yw7IthcejTb,iv:gXfI3ESQa+LkYvhhZSiPeNl1+Kg7YSQrmYybRegUarc=,tag:H5hx+wM8/XVH8pPo95GWuA==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"concurrency_policy": "ENC[AES256_GCM,data:z5nqLv97KQ==,iv:D24ujynVBR0a0HQUOdvabMFUd7Ntu7s48Ael99T3ktI=,tag:332F2nT2tzrw5Q4BoPm1MQ==,type:str]",
-								"failed_jobs_history_limit": "ENC[AES256_GCM,data:vw==,iv:oD5/n9/oR+hHv0T0fryh5fmK7zgXpQd7fD5rZXiZ2HE=,tag:nDDKKX8fzw2bLg/trBolEw==,type:float]",
+								"concurrency_policy": "ENC[AES256_GCM,data:DVtGsbdnHw==,iv:sWUvsrBRSIk+5JL2SJt6ehXRy4aX8fXzNo18xlYmJSg=,tag:fe+LcXRZ7OBQ2/W94F5y4A==,type:str]",
+								"failed_jobs_history_limit": "ENC[AES256_GCM,data:IA==,iv:sfRGYrrv6mLYjOf8fUfq1B5y2/T1nknasQQ1cO6VskE=,tag:f4K1lm7gJGAQzQ037YVc0A==,type:float]",
 								"job_template": [
 									{
 										"metadata": [
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:WQ==,iv:FS/dZ69fGEKiRf8m6P6x6uUwhSF3HBICXs8lAixkZJc=,tag:ydGv0Xh1ThRIcfsmaNE63w==,type:float]",
+												"generation": "ENC[AES256_GCM,data:Kw==,iv:FBB7jRGl6NuTk0j8HhdIj9euO3I3Gjuebw9L2yINZYI=,tag:nS/ukR/vWZShpaebG/DO4A==,type:float]",
 												"labels": {},
 												"name": "",
 												"namespace": "",
@@ -1192,14 +1361,14 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:Vw==,iv:OxJ4XDy575h+cXY5PAtWRN7NNe+/NjeAQbDE22sloxg=,tag:wn/aTHbDg3Ru+koalFA+hw==,type:float]",
-												"backoff_limit": "ENC[AES256_GCM,data:Tw==,iv:hyBWsYoHYLqhMq76hTnBAZCH4KgZqs2hOivm1T948js=,tag:pOoz8wApScfFzwNursgE/w==,type:float]",
-												"backoff_limit_per_index": "ENC[AES256_GCM,data:OQ==,iv:RjtdZ/MYRJ2G4O2eQQLrF2h6a9esoSZ1NLCBzS2Gp4k=,tag:mRu5w9cBJKekpnNhF0P59w==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:5g==,iv:5Rfgbnvf4951N9YdYiucU4XxFq1lM20coe60+VLlC8M=,tag:5vAjcebFuthjLA5HecsIcA==,type:float]",
+												"backoff_limit": "ENC[AES256_GCM,data:eA==,iv:A5q/weXV8ixOd54f4DzbKST5Yw1HJpophCdz5to/4+M=,tag:osUS9XGWR055sXFcuaTw3Q==,type:float]",
+												"backoff_limit_per_index": "ENC[AES256_GCM,data:nQ==,iv:AmawUKWQRhlfO64YTlkBOujYdSjunEbWr+c+lnAKQn4=,tag:6DGXYYuEqGlXxSsS7ce5kw==,type:float]",
 												"completion_mode": "",
-												"completions": "ENC[AES256_GCM,data:Zg==,iv:EKXyfm0BGcRL83VI/XtFsqdR+ygyIHwZdpoS1p7xUvo=,tag:mor4WYGER0TyEHFp2xbhGA==,type:float]",
-												"manual_selector": "ENC[AES256_GCM,data:BJ0XZXw=,iv:ugIL2Lh9hD3v6xkskgueRGXVmQj3nuJNDp/ua5NS1II=,tag:cH2vjfunuLXNkv2q7EIV6Q==,type:bool]",
-												"max_failed_indexes": "ENC[AES256_GCM,data:0Q==,iv:5/Qi9fUDtI+rtjOwV9EIevi/paj6YbXPT26NmbSCYQ8=,tag:llR7HOKNR0bnR7d0/Xdrmg==,type:float]",
-												"parallelism": "ENC[AES256_GCM,data:/w==,iv:9GMCvI8RDW/jLlzDTBz5RAA7TEFtxjJbj+/Jzh1C+QQ=,tag:iOdQLqjVmOzh3HwuNibjrg==,type:float]",
+												"completions": "ENC[AES256_GCM,data:BQ==,iv:+QLz0uKDHyLlyHzpahJI2my0X6vi28EnYXw1YD4L7Pk=,tag:clYVyi5d/ZvARv97FTxBFw==,type:float]",
+												"manual_selector": "ENC[AES256_GCM,data:3iUCGM8=,iv:tsHXu+FU6tjm4RCu9/8RfxwgiSsSa9xF5umyDXI1/r8=,tag:vC03LBa4RiH5Ft1RDaeU8Q==,type:bool]",
+												"max_failed_indexes": "ENC[AES256_GCM,data:pw==,iv:diSds+p3sZuR7kusp9wFXlRune9T1s9cCLERlqKS5VE=,tag:5LjG7ymeQ5OphBaGL5QtwA==,type:float]",
+												"parallelism": "ENC[AES256_GCM,data:qQ==,iv:VuM+Fh+p0q1S956IW5eHcdQM1T+PYXMmHf9Y5b0cfM8=,tag:yaDFEqrNuuHNitjwLL7I/w==,type:float]",
 												"pod_failure_policy": [],
 												"selector": [],
 												"template": [
@@ -1208,7 +1377,7 @@
 															{
 																"annotations": {},
 																"generate_name": "",
-																"generation": "ENC[AES256_GCM,data:yw==,iv:YwtSNGcrNNFVyZUESmCRTgyioEXVvUTMAiJJzRKjxaY=,tag:xBYNK5mXVBWjPcKrbXm/Hg==,type:float]",
+																"generation": "ENC[AES256_GCM,data:Rw==,iv:OkEauWZ5T85scB4oFvIAATZeujGGLko95w1xMP6K2nE=,tag:6h3eQdIt07d5c1E+il1FNA==,type:float]",
 																"labels": {},
 																"name": "",
 																"resource_version": "",
@@ -1217,20 +1386,20 @@
 														],
 														"spec": [
 															{
-																"active_deadline_seconds": "ENC[AES256_GCM,data:pQ==,iv:Gqk6yrHFTsOe08Icdq9Q1U0ZrS+XW+3B8T0Qqy6LG7c=,tag:9W0KVG7Gr2Y7HgmKgncVBA==,type:float]",
+																"active_deadline_seconds": "ENC[AES256_GCM,data:mA==,iv:EbLga+29pdtmtk82oZur55eUz4fOHAerUurnJtXElmg=,tag:oV5cjvnGkqx8bYAe7RsCyw==,type:float]",
 																"affinity": [],
-																"automount_service_account_token": "ENC[AES256_GCM,data:MDaJEg==,iv:gW+JPAp4585rVnQI/BwMP9IGKhHONMcytksP368WzWo=,tag:VA4xQV83b0nvtEeLkNV2ig==,type:bool]",
+																"automount_service_account_token": "ENC[AES256_GCM,data:56vEHg==,iv:nJbTFhUgw8Qvx2FoXlbcJW/w6aOsiLp/zcGpxTu8oaw=,tag:MzceSErbsYFZIanvUVR6HA==,type:bool]",
 																"container": [
 																	{
 																		"args": [],
 																		"command": [
-																			"ENC[AES256_GCM,data:gTPHLpZHvguY,iv:3+qImRr76EW3Bq5WTQ3XhUlCK7habjkJQcH9S5Tt5G0=,tag:7l693d1wAYMqGe8Z7H7jhQ==,type:str]",
-																			"ENC[AES256_GCM,data:Gz8=,iv:02yHCsokDxsx44KxCQhmwR413WNqQdBrsFgRc+/AznQ=,tag:hrXcICNsAgKMjs1ekbrIPA==,type:str]",
-																			"ENC[AES256_GCM,data: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,iv:RCbM+MM+pOwUxpPMGGnByldRX79v01sCZMOhBKiSmPw=,tag:ozew7GuMTx07Bx6wL9DQ8g==,type:str]"
+																			"ENC[AES256_GCM,data:mhq3FR8OLS/H,iv:fBJYhjURAOu6thPbKVJ5sUEWLyAVrMWqLXcsNY1C8ZQ=,tag:8b3uKzgV9DySgKxt6avMEg==,type:str]",
+																			"ENC[AES256_GCM,data:q3Y=,iv:guzmYFJgMcI29fbuUz0s2yhdKWQNsF2BV51F8etEXww=,tag:JmeC7Hhf6BDH1Ir2SPnBQg==,type:str]",
+																			"ENC[AES256_GCM,data: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,iv:rLxCPtuaQcTJAKQEXTl7vDzoA4x9tTMKCk442+iwE7o=,tag:qGHx6HhmZmo1c/JS9gKi0Q==,type:str]"
 																		],
 																		"env": [
 																			{
-																				"name": "ENC[AES256_GCM,data:qfbTHoNqEQpzUQ==,iv:h0cECiwnousl0l4DQLeLqKQ9wVXUyMHqS45MNsScOGQ=,tag:rMJhHqbIQ6fUSaYV0CZ99g==,type:str]",
+																				"name": "ENC[AES256_GCM,data:5yVF4R384zHsbw==,iv:dafr83VIbsbZpuXri9QoZGXXpEC1bcgljcKC1r19zKI=,tag:i/gMRWpOD0ozDbD/vXrg8A==,type:str]",
 																				"value": "",
 																				"value_from": [
 																					{
@@ -1239,9 +1408,9 @@
 																						"resource_field_ref": [],
 																						"secret_key_ref": [
 																							{
-																								"key": "ENC[AES256_GCM,data:8EgTbdQT5R4=,iv:95T/UgtG2s4/U1edhgVhsEFIcGFD6gbVaJAo9+ffLps=,tag:hJbuVxKIBJ3t/nvALaUaSQ==,type:str]",
-																								"name": "ENC[AES256_GCM,data:p4Wsr1Pt39gbK5tfKoWMLfzvfQc=,iv:uOCSfoSS9A3jjW1HnL4PBgw+CbffH6TDqzlnvJSh+uM=,tag:B+6YGyZSevy0uWEifu9u5g==,type:str]",
-																								"optional": "ENC[AES256_GCM,data:79bTlqI=,iv:lquCsrM5UkSmLXyMWidGxojUp9IvTem5LnvA229YeTM=,tag:GSOCxf4pPgEFVoIHDpesTA==,type:bool]"
+																								"key": "ENC[AES256_GCM,data:/mcrYZat4jM=,iv:Pg9UW6NtWQh+KLYbm4Ka/5vm8DD5GnZ8cjpQgf3rDds=,tag:T2HEdPL/w3di84DyOxdP/g==,type:str]",
+																								"name": "ENC[AES256_GCM,data:DOQmmC7PeG1twCZK7+pQySjLkcg=,iv:e/eucuMWByM59HW547aRMs/Ve3G+FapVN1tIW9dKjyY=,tag:+/IQvTRjNV/91EsSc4REMw==,type:str]",
+																								"optional": "ENC[AES256_GCM,data:Lh7pWY0=,iv:vJ2l4PryxLmoBg750ApP8N0KxBOhtJc8RIBdSkDEOBk=,tag:8iBHUbZKbm6ZDb2I8ZJ4CA==,type:bool]"
 																							}
 																						]
 																					}
@@ -1249,39 +1418,39 @@
 																			}
 																		],
 																		"env_from": [],
-																		"image": "ENC[AES256_GCM,data:i3q5AOii+wauD/1BNVqu6R7M58iPOyFxU+qUCuSftpW+0t4vtuVq6A==,iv:qpdYZfR0s+5plca4xzl5BNqB2tq/ZzqxvFczfwGQil8=,tag:ejbtRnUE124R/KpPk3O66Q==,type:str]",
-																		"image_pull_policy": "ENC[AES256_GCM,data:+dUNLLX2lMbziI7i,iv:GuxvcfyOnpnckhw2eKMV1eG/SSqoJt4n1zVs/rkY8b0=,tag:fwVeWoWARJ4w/q8rMFLARg==,type:str]",
+																		"image": "ENC[AES256_GCM,data:FchKIxJaN2obWiVxtkdID8hiWCjPbRvJnjb+OYNR7+Df2Mgqgt9DzA==,iv:u0vmSXOSvLYxUg3amxn6wfA+ekeTFESmhucRKv6CPj0=,tag:vCHMScNVA7NwaABZH7vVMg==,type:str]",
+																		"image_pull_policy": "ENC[AES256_GCM,data:Z5SkR6dbi2AZbuU0,iv:MrboMhPT3KJBDsyshupRgzk6vX4ieRuiW0acRbZNbVI=,tag:cCJUc+xsA/z49qBgM6YVHg==,type:str]",
 																		"lifecycle": [],
 																		"liveness_probe": [],
-																		"name": "ENC[AES256_GCM,data:ctuorvuYUNDltQb8BwWS2EPXOBUsDmHL,iv:9T2j8MmLvWAzg22Htn9FdbuEurC8AHmF3WM0EcLEod4=,tag:xlhqfuiTjDv2MRw66LQ0zQ==,type:str]",
+																		"name": "ENC[AES256_GCM,data:J7hcV468FiAFaBjOPf7xYoMUhaJNRzc5,iv:QAnckU9Klv/agCYioK9DTfGaYi7QNjKQBiC/olTK/Js=,tag:LZuAOvHCCStgySct2giAeg==,type:str]",
 																		"port": [],
 																		"readiness_probe": [],
 																		"resources": [
 																			{
 																				"limits": {
-																					"memory": "ENC[AES256_GCM,data:8/nLdtc=,iv:ufAqBz0QRdC0NR78Y3weTZcoGm2d9JK3FD7Jl+nzOf4=,tag:d1ITcjsK4u8qVdIuDNiunA==,type:str]"
+																					"memory": "ENC[AES256_GCM,data:9pDCsOM=,iv:1GbGg628/slVRuVtbVR5pW1s4BmtSuYJKfNFH9MO4cw=,tag:qLST6VMVP3k9+37FzdBCzA==,type:str]"
 																				},
 																				"requests": {
-																					"cpu": "ENC[AES256_GCM,data:EvGM,iv:hh/AjTKxvssH2ZTfZL/If5wVU3F1Phy5CoRwiyiP5cs=,tag:3x1YNRrQDEEWaLFUNtymwA==,type:str]",
-																					"memory": "ENC[AES256_GCM,data:iWfOmRA=,iv:ux1YJvT1tk5pdVWHWQBOoZQHo0g6oizG9y1UOddx1IE=,tag:Z5TYuKfX+KvWeO9wcUNVDA==,type:str]"
+																					"cpu": "ENC[AES256_GCM,data:YLBF,iv:lcov0U6VZ5pVv6ZnpLD1kz9M6ZbhpQqWcirxci/thSg=,tag:DL5tcolPKdw8Vd5caw8o6w==,type:str]",
+																					"memory": "ENC[AES256_GCM,data:wnTk9zk=,iv:5e5AkwSo2bQ6dFduBg4UAVubqxymzTIdQ9UVPsTnpQ0=,tag:dhKP37PUMtXqxoKb2V6amA==,type:str]"
 																				}
 																			}
 																		],
 																		"restart_policy": "",
 																		"security_context": [],
 																		"startup_probe": [],
-																		"stdin": "ENC[AES256_GCM,data:iXQd9sw=,iv:LgJvRqpHPRu2ptW/3nKOPDrfY66rKWoDounBYex+QNk=,tag:IB7DBF2Q2PAJO7sPE3n2kQ==,type:bool]",
-																		"stdin_once": "ENC[AES256_GCM,data:PbFj5ug=,iv:F0zyR6xB3i+qH1DzlXrhzMRlS72gVBg7wEIO7qbO2mo=,tag:Lg5wZlwv4pK7w0E2zAygmg==,type:bool]",
-																		"termination_message_path": "ENC[AES256_GCM,data:UIjeJb61YQ6UZgZXKm2AbHeQ/KU=,iv:I11Sx/mhHqnBYXComAvue+MRTQRujjjcrZtwwSzROxQ=,tag:5GohH9IlbYWJiN+OGJsUDA==,type:str]",
-																		"termination_message_policy": "ENC[AES256_GCM,data:3hcfGA==,iv:O28QPvvRuJcakObEK8Y26s+wl4be7k2aSvls/tAucW8=,tag:7/tN0aMn9d0pQU0LcCLKZw==,type:str]",
-																		"tty": "ENC[AES256_GCM,data:1Sjgn9c=,iv:LOPuvPI3QADe2CNVjr0v5/lYCO6knmMcQ+xiiIsKKLQ=,tag:qXJH8VMiZ74BAPwKfSmP/g==,type:bool]",
+																		"stdin": "ENC[AES256_GCM,data:CXrX398=,iv:b8ZzKmSDsdePibszsgI+4v86nC+LnJvDEBfrOX0qCN4=,tag:W2ynDll1ycHYHfAQv1WM1A==,type:bool]",
+																		"stdin_once": "ENC[AES256_GCM,data:FbA8qKQ=,iv:4qg5QkxnYXRyU1f0Dr/m1++NUUWvALBidUjQ6/5eyh8=,tag:qnIV1XuaLDBILDBgM8CeWg==,type:bool]",
+																		"termination_message_path": "ENC[AES256_GCM,data:dXSRIAMFcdpfS3Yj86sNpTw/plQ=,iv:reh6PjwhXs6KvGeFf2Paii5lkr2jA1i74navDizHdvg=,tag:wycQ8LDrFAXQkY6IvtZlog==,type:str]",
+																		"termination_message_policy": "ENC[AES256_GCM,data:RmYQWQ==,iv:OMb0yTK7BtK15NYNSDFXVtgz7eBd/0sOKxWG5t+divg=,tag:yNIKHkVdDI+GmCdp+IAvfw==,type:str]",
+																		"tty": "ENC[AES256_GCM,data:63M0eLc=,iv:botkyMCJTb+amsCVUe32TMxIdSxwoXaKILs3El4kq7g=,tag:8SPUmnCVbaeBveMSJOLdfQ==,type:bool]",
 																		"volume_device": [],
 																		"volume_mount": [
 																			{
-																				"mount_path": "ENC[AES256_GCM,data:r5RAU8ECrQ==,iv:nEZgxkQc91Cf74gglSLLfIl/2ZLCf+RwnW74wWmE7n4=,tag:HzVWks8L1PxkkRI9qNVVSA==,type:str]",
-																				"mount_propagation": "ENC[AES256_GCM,data:ike33g==,iv:If/LJKOcBvBDUwW/ObxKXvXBvqKfwkL6CmowxW20m4g=,tag:DOiZR6IndLWlYUv1am03Dw==,type:str]",
-																				"name": "ENC[AES256_GCM,data:/RDSaGfIwFzj1SnXWxjrXJg=,iv:DuQThl4sUPVEbeNwZA51Tl4h+ecZMx4HFS9zPWRrV0I=,tag:0+CeKr7cM+18cgAQnlNb1Q==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:XjR7QZ0=,iv:9dc+gYvTNqdg+SszQbFvNl7Pk9HL2vcYv2zWl3pp5zY=,tag:36yQ4KJigqmb2F5L8zOOkg==,type:bool]",
+																				"mount_path": "ENC[AES256_GCM,data:63aqspxSdg==,iv:ytoFuJxR7DRC9hSgD98FizDOZt063gTwMm1bF7AG1oo=,tag:0rbd8m2ztOv5EubDCnRe0g==,type:str]",
+																				"mount_propagation": "ENC[AES256_GCM,data:namVbw==,iv:UvuhAKPdk0mY1sQV9FhGjWfvdeb63pziKRv1Ws13aEk=,tag:+o1/dAuR94+JtRz3zWwj+Q==,type:str]",
+																				"name": "ENC[AES256_GCM,data:sw2919MnCDM+Zpjhu7n171g=,iv:UnJnxPNs/G1N/ex+ApxvQleRxWAXcj+PSP7PjpuHTts=,tag:pSWRm+CdZsO0Tmy+Dennrg==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:nurVXsU=,iv:6QNCS934JG5MKERCpCC9hLM+p1LlGHk/hnp1NjvnXiM=,tag:d+LJX984GLKkQxbBzTIPiA==,type:bool]",
 																				"sub_path": "",
 																				"sub_path_expr": ""
 																			}
@@ -1294,19 +1463,19 @@
 																		"nameservers": [],
 																		"option": [
 																			{
-																				"name": "ENC[AES256_GCM,data:Gt/piPA=,iv:2C6SJa7t9WOwCmwOsOVi+hRjbUlQtNtX+kik+OMbm08=,tag:UHMBkJM8pyNxoA2X33UiSQ==,type:str]",
-																				"value": "ENC[AES256_GCM,data:1g==,iv:sB4GUgcRoRWqyl2RWoxB2x2YdLdweCrbLT8B4Sw6paI=,tag:/1lguMtzkXipgyiyIpycYA==,type:str]"
+																				"name": "ENC[AES256_GCM,data:CUeIbbk=,iv:o5XBHB3KHW8KnrlzutkfNW2ldTorsR9nBuwxKp5CZPk=,tag:nx4j7vGdgRfQWUT4BW21XQ==,type:str]",
+																				"value": "ENC[AES256_GCM,data:lw==,iv:zqSTO/8dunkojPz7YDciXi6rAARmAhSBhLy2Fd5Ze/I=,tag:kqljZ1yID+PNlDGQAFVKYg==,type:str]"
 																			}
 																		],
 																		"searches": []
 																	}
 																],
-																"dns_policy": "ENC[AES256_GCM,data:Hv8pJgU8485TpyJU,iv:qY6MAHuajRWJENQy9F6WrOD+rWRROrb1IvKQsYbQ5mA=,tag:tQ1yH8sq/yICK40olA7W7w==,type:str]",
-																"enable_service_links": "ENC[AES256_GCM,data:wy+gpQ==,iv:33XNGMIuOgm3G9QeTZQfGjxlUKgGHQXqLRNbbk5IP8E=,tag:0654N8aIbN5AiEtyVFd4Ew==,type:bool]",
+																"dns_policy": "ENC[AES256_GCM,data:EQx1Mddq+gE34yaN,iv:I5CCwzEFXqJgHcboQncma46nS07u7LLnfVAGoHbgDmE=,tag:4u/ho23QWwzZxwPR++EFbA==,type:str]",
+																"enable_service_links": "ENC[AES256_GCM,data:/JMqhg==,iv:jtzoDgAlwlAlkwaEZXwxpyEaP2Okc5N+cJIuGItBQ3E=,tag:aT+2qTIAcijgFZBxQtneYg==,type:bool]",
 																"host_aliases": [],
-																"host_ipc": "ENC[AES256_GCM,data:J26SWEY=,iv:DZjH5e9W5C1lcX1Jkh/QVJhpHyq+sCy27WTxzKm5Dn4=,tag:pJoF4pENOmj5FYsDs4WQEw==,type:bool]",
-																"host_network": "ENC[AES256_GCM,data:LrL+ggc=,iv:9a4X1/lkG0l+h6bX4XpWkApDgsqtFE/MLYMfw3W/mTk=,tag:tFWbFFb3befKsb380uyd8Q==,type:bool]",
-																"host_pid": "ENC[AES256_GCM,data:YNExnVI=,iv:3k5gbJPjuCDRLb6gn384W6hs/4+SYWSgteYgfVFbhrM=,tag:Cv+mzzCJ+vPVUGNcemuZkg==,type:bool]",
+																"host_ipc": "ENC[AES256_GCM,data:uJib/vs=,iv:6T0h+T+W7sm8sjMIjkF6HOb/hhh096Pw3zt1V6tlwIo=,tag:Q7e2B/SodHx+mhSBAECz+w==,type:bool]",
+																"host_network": "ENC[AES256_GCM,data:Unbe1YQ=,iv:9G1UBGqoNgDhaXToDk8xhdSl3b2T24AgWvMURVlf91E=,tag:3lkb1tm+7Lly5fGUiWs+gA==,type:bool]",
+																"host_pid": "ENC[AES256_GCM,data:BUcxg90=,iv:qFIdc+wK9QNWuGoruVRH9JBrPUYHyM4zaNusBhhN24E=,tag:1uaSQd5TNluRsM43Rnd89g==,type:bool]",
 																"hostname": "",
 																"image_pull_secrets": [],
 																"init_container": [],
@@ -1315,14 +1484,14 @@
 																"os": [],
 																"priority_class_name": "",
 																"readiness_gate": [],
-																"restart_policy": "ENC[AES256_GCM,data:SynXLoo=,iv:7fHJKU7YN9OqwpK7nr4FynuKs4RIE8b3+TIvH98VW+E=,tag:yrCBUxGrwm8VxNPJ9fRjyA==,type:str]",
+																"restart_policy": "ENC[AES256_GCM,data:Hl9WK+s=,iv:USmFlRBxZK/Wzpgs4gqfVcUElFy0QtnX/mo2GVfxmsQ=,tag:i3Hdft8GNGCm20MDzhVn4A==,type:str]",
 																"runtime_class_name": "",
-																"scheduler_name": "ENC[AES256_GCM,data:6RZD2ShUz1FrtuounFqKw30=,iv:KlYzIaQMG9yVdgABFvlOfgOIwTdFgC6dtn2dhLxgmNI=,tag:p5CwrB4D0m4/D0wESioewQ==,type:str]",
+																"scheduler_name": "ENC[AES256_GCM,data:wZ1jsxHrXVDhirU6kZmM0Ws=,iv:H5xTpnL4UXkZtwxygUSzKvjXZ5r1/zjWa357UUeLcwM=,tag:24hTJ4GPqdVcFxY0T8lIDA==,type:str]",
 																"security_context": [],
 																"service_account_name": "",
-																"share_process_namespace": "ENC[AES256_GCM,data:I1QdCpo=,iv:0LRq5bzxCWvBJj5lYmMDoW8n0uhxHvbqEJ52uFzPl2Q=,tag:xFIvELVuvXXWt1OWDOlQNg==,type:bool]",
+																"share_process_namespace": "ENC[AES256_GCM,data:9dMALS0=,iv:D8gF9hYvKpJNupZCntMO5pRcji8aHf6u9b+0dpws7kc=,tag:BsL+gyDN7Hr8Mk0UodNXXw==,type:bool]",
 																"subdomain": "",
-																"termination_grace_period_seconds": "ENC[AES256_GCM,data:n7c=,iv:lGeCQgj6+XLUJCsKgI/yywAvrRD7XHZZQILtoxI6p3g=,tag:Qj2GYMB8Ty60Mgbp7oLWPA==,type:float]",
+																"termination_grace_period_seconds": "ENC[AES256_GCM,data:vts=,iv:IsbB3NlWXL5mqidJugYPD10uJuiWwkEIzuuRHQD2AvY=,tag:snBzQk03Suk8N7Sj/qRQ8A==,type:float]",
 																"toleration": [],
 																"topology_spread_constraint": [],
 																"volume": [
@@ -1346,12 +1515,12 @@
 																		"host_path": [],
 																		"iscsi": [],
 																		"local": [],
-																		"name": "ENC[AES256_GCM,data:dPShpdUkS7HtNsqmArJi7Cs=,iv:2uvWibyKtdwT70CAWz5vuuRF9SJCCJNjYocIsn/L+As=,tag:mJxKrkV6AEJ3q3fZd8AMmg==,type:str]",
+																		"name": "ENC[AES256_GCM,data:cT0CSy02K8FqjaqBdY3bwUU=,iv:ZoRMU2yB8G5GCyfQ+UCtgr/BS55qYm3B4w/kxCUIxBM=,tag:ziUH+zaIQtneo/Q9ViJ0Yg==,type:str]",
 																		"nfs": [],
 																		"persistent_volume_claim": [
 																			{
-																				"claim_name": "ENC[AES256_GCM,data:56+g8mC4HYpdJQBl7xrhzEaNiS5tNHcG+kNnNg==,iv:PtdC8xLb/Yleuoq6X3beqxUQFV5keZOUZg+OZ72h+mA=,tag:8cnlTnFZi5iPSMDLWITkIg==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:Am/TJgU=,iv:4SCFGbHm/uAyu4x2dlkgvDCv5lpLefcdxJWNxMCGJqo=,tag:23iMsWeuw4F5pPGBZBLcSg==,type:bool]"
+																				"claim_name": "ENC[AES256_GCM,data:sNEl3KRxmjNvM8PuYMuhageHSqRomw0nrJ5mKg==,iv:guB1yc/CW4VeKhdtnOyRB2rkTexlEdskhDnstDOXPvY=,tag:boF40nx0VehuLyJrDAlJiQ==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:jTa5LS8=,iv:MIWiWWf+kKH/+sYwe9Ux/qAROrCAm2XQzSwz6D98MIk=,tag:NUuoeNoUUW7WBbyrAUSGcw==,type:bool]"
 																			}
 																		],
 																		"photon_persistent_disk": [],
@@ -1366,83 +1535,83 @@
 														]
 													}
 												],
-												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:93o=,iv:Vx7yUoTgfj6wzBUwsVWpqjM3g4Y2WN+xI2Hvw6mBVn8=,tag:5olAM5cStQi+FtOZuqBPeQ==,type:str]"
+												"ttl_seconds_after_finished": "ENC[AES256_GCM,data:x10=,iv:tsG9PH3MJOrlRocS6grFE5+vqaYBRdbWIPEmYR6LTtU=,tag:KMo2Znn0bypPh1nd+66OSw==,type:str]"
 											}
 										]
 									}
 								],
-								"schedule": "ENC[AES256_GCM,data:1FprYsB3y68Ofw==,iv:7pOBUsPD3EzmFySOlaUWsFQVvNRjPQHya2WyrA3haPU=,tag:L+Aq0YYHSD2p5fehKi2lDg==,type:str]",
-								"starting_deadline_seconds": "ENC[AES256_GCM,data:N1I=,iv:Vn9qnJ5qW+2AmUtL0FXA1vsXe5Umt+um8ghbokx999k=,tag:FIOUqndcBqM3epsWL7qMYQ==,type:float]",
-								"successful_jobs_history_limit": "ENC[AES256_GCM,data:gA==,iv:/Stbw+eDxVjrYdA+w17xnanKH9VKdD1nFkJqLZeQdcM=,tag:a6fS6oR2BXD4Gf0fmVPGig==,type:float]",
-								"suspend": "ENC[AES256_GCM,data:B51V6/E=,iv:0atgw5R4+b6B5MlKkMuhXmXQ0pteTv954856wOCOMJA=,tag:B1rA5usx+LWLDeOJ9GALdA==,type:bool]",
+								"schedule": "ENC[AES256_GCM,data:KS+5Id+kWozhMw==,iv:KTfMR4MwpaQfL25KSrnIBuHk9z4nJ7J8IKmIlIHYHdg=,tag:rbYhgCCf1Z0Qr2+u6b145w==,type:str]",
+								"starting_deadline_seconds": "ENC[AES256_GCM,data:WAg=,iv:v2fpBFNtMF2I3/zMQiG8/WT/Hl3GyjfUWS2IYBHIdE0=,tag:qdwh6stmxFrIyzcUJmFpCw==,type:float]",
+								"successful_jobs_history_limit": "ENC[AES256_GCM,data:1g==,iv:GUEDHsueByUHHb5s/XMoa4hjS33XcIRuzZSVxWfYYRs=,tag:otw2Y5HgLVwzbNscbLVvzg==,type:float]",
+								"suspend": "ENC[AES256_GCM,data:bMw26Fs=,iv:2b45u+1SN3rCJQFtkab3iBWXzLLAoYS2SirOY8bFMVs=,tag:RY5eV/8gf0Q0hvB/Uepi1A==,type:bool]",
 								"timezone": ""
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:9Q==,iv:W9uWoq8h1YMztXuVja2K9R8pWcjGNymEk6elZ70/aIo=,tag:nyH0gaQs3hf+Q3XtNUGecQ==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:cg==,iv:ixhSA+nle8mAlwqJcWhI3ALDGRXU+rnwfwN9wfMEHxs=,tag:GBlGXz8fqSFRsLxRyv0SMQ==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:ljP0q6hfYZc=,iv:kajCtodQD7TNfNIBaDMPAdwckHh7YU6009Md6szlqe0=,tag:d7S7EWjA4oD4VWMgXD8jjA==,type:str]",
-						"kind": "ENC[AES256_GCM,data:VkCyKWVrEw==,iv:B/Y4SaG55oklCXLxX+rnMR1OTYvtqWX0GOVjHQk9njU=,tag:PN8Y43P8Jc5fjiJOTnjkUA==,type:str]",
-						"name": "ENC[AES256_GCM,data:0SMDMhdiwQsNDLNTppVcLRQPoip2Y50c,iv:YGElJYfFdy+yCmUbSU4ZYS4SSfuqm3qd6Ci39AuM16g=,tag:QJ1pxqlTLBGkQbRix/3wrg==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:COtXO7Q=,iv:wtRHjt4HCFcDRvzfHjtMGYdCtf+8gELIsVjc3Z/vZwg=,tag:lbvjDupNh9yt3+fyEp/g9A==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:LC8Vu54PD1A=,iv:zn26yj4vBYnINIEgJ2wBHKJGwbGfVwWvuasmm5Or6MA=,tag:F2kfrnam/X8MAmsJ3D/RMA==,type:str]",
+						"kind": "ENC[AES256_GCM,data:1IxSl/8k4Q==,iv:d7ztPk7RvmerVH4G6SMZFG8sqzgd9KyLKVBez6HmKKU=,tag:MYejTDkJJZQcqut0kYOcYQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:XH2WnpSNgIHgRRXpROoDId6L8o8EPICm,iv:LLgsRPuYCtZW+PYaJXtNcGw4KUpJQlWruVBKx365Pbk=,tag:uFuMJx2tTjEwsdbkmRhOnw==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:cRdzET0=,iv:t2s8miJDyFiOYljubG3de6Kt4TysOWkpKxNMaD/T+NQ=,tag:FyKJRrOIaJn/83oto/ei2Q==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:cp4KT7Qr4T7ETBsFR/ENTMmjpLd7c43WyLFE5L79xCWvX1VwOYTeBvxYsEqNvO/77w7bU+nrVREAxdCp1beBi3nMYpgk0sIpOTQiUI0xy1oOPsU3,iv:EGM66Qj5bOwLyX4dKb7fbshNMNpYFWr2WXgsf09/I08=,tag:vmd/xVDyoDrW9HN/X55FNw==,type:str]",
+					"private": "ENC[AES256_GCM,data:vAI5De1PQApSHCO2tDiLgljIWU7UscSrIFDIaG8LKYNjOmGcKQsfZVLEBj6sgHZey9IFspcmdOd1hSlFrBVABppjGpLJjD7ZwDB8+jSdp72Mxi24,iv:if4Q7vvFuBxhSD8LjWJ9mLP1liavQnYLArQYwaFGnfA=,tag:iW8A2fyO/f+JDFF1N5CVWA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:sxL12+Yv3n8fiFm0lhrhNQYUKd3f1INcIPP0Hwkbga/+r1P+qo21,iv:cKeyYSe4i1Ikh9C+eC3rj8r49v6VgasFQmdP5AGO91E=,tag:QVrFdV07MRFtM2eJm046Ag==,type:str]",
-						"ENC[AES256_GCM,data:Gk3dRHrmBKDDjYM0EwjY87/khj8ueuMSzEblJZ9AuLVomehTqLwmN+sHDgVWtaEGP/apih3GesF5eSFzTG2rfOh6H5NteS2xmhqkOk+zmBU=,iv:oi85G9E0INb0mQruMzRbOkK9vnjouBaHK5i5O2AtJJ0=,tag:ZlVheo0D1uMl7NDAlwC4FA==,type:str]",
-						"ENC[AES256_GCM,data:4HFvcpRoQwWt4coSvQ/1jAKGFrDsCp4r1339BeUTlHa8bWybfilHlVb3n3U2IDwLswiZeNJxW2yL9Kzflbv9+bpztpPSjrgp4vArrI6nR4zSwH8eb8A=,iv:P1Mg7du3uE7TI7/Zw/2S2zyYU2skjj0haLBHRYDjpEo=,tag:QOwQ5hnjBDotH5gk6BUG+w==,type:str]"
+						"ENC[AES256_GCM,data:e+FGrwCA/AHPCorOLxAAx3n+SJLK8E0aA8FFmwHBgcgboa6oRsDO,iv:lYD3KlkKPnMUTAAf+MYOXI8qD6UgTDsjtlb1WvGyMAk=,tag:BCdMRe5xXXdCkbLyXuyeFw==,type:str]",
+						"ENC[AES256_GCM,data:Tz2hiOMF6cMmoKjrXN+hcZYG2iho5ys2SlsPQkCLKgyayN70I0xVQgqrqmDHkfi4MdE7GTBxduybaY+r5CA6BnR14H/XrCx5LmGrKBhpr8w=,iv:k7a1Kjf8T7RNEUBrTVYVDQX272xfDl/+KsisEMxZUuo=,tag:/EaTzoqtbSTFylAc7lCbYw==,type:str]",
+						"ENC[AES256_GCM,data:hNFkowM2XXsnaCm6lSE7/edydm9JGZGNQ9H5sCTOZvyLvrYyX1P2HtExH/+Pus7IpetdwY3FrQxvCH0neY7rg1iPt/FTmHI/eszJ5YXi+bE/IsAQX2Y=,iv:K8fpq5GrqE3/CbEkTBfb+wINXQVy/5C30cttZqf5nhI=,tag:81yQACAPhbTmdvPO3ShHEg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:uCgBC3hkPnNsysCB,iv:zkOqBqAiotP7mfJrbBhb8LmpUaIH4mV6KIVntaAtPfM=,tag:3TEtejKlOs/kVAyHahpJ5Q==,type:str]",
-			"mode": "ENC[AES256_GCM,data:IER848aZPA==,iv:67NwmRHU+K3x5xY0+Utq26Whi/BhA5yNmltObAzB9W8=,tag:CMO/5i3IQ87S9iRtlkJpUw==,type:str]",
-			"type": "ENC[AES256_GCM,data:T33ky5jpSs12OS18/hO9BGW+5qH9,iv:va4lH4au0ZFPO99j9qHZhZEiKXu3b5TA+Wovliyl/iU=,tag:Z/hAPQ28DQ35R0SypCrH8w==,type:str]",
-			"name": "ENC[AES256_GCM,data:E4gdi815HA==,iv:W+x7UwcF+ktP1PLjnBDJ2wwv3G6IXVIOK2eNCJIs/WQ=,tag:yKWyn+tlkeSNYOk/oaR3yA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:8r2It0i/StTwMHQVAAmcyUw3nBGRJ//HQMjVF2nXdsESChPoybbHhuceF9i89kPKbhQ6LYNF,iv:rrX6kRwsaM/gmDCauYIR0GwjGfVQCgAJnopaUQyvmBA=,tag:k3HKB252HzvkgMZ/rWjxZA==,type:str]",
+			"module": "ENC[AES256_GCM,data:uAeEPwpiamZmzREF,iv:3izEHknPKSRK2xCSyfC70h2vRqXVd1akr27USR1M2nM=,tag:1vTl0m7XYJQ58lKaEjhZNg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:ZIIqbJWTUQ==,iv:H7gkn8GktwYN2KphmeWRxeF7P5y+PGF0ospT7n93zcY=,tag:coKHEzc++VOLhdZCxt7Q0w==,type:str]",
+			"type": "ENC[AES256_GCM,data:0fU8XLrSKHQ7jVXcpvyn5+e9SwwR,iv:tXdLv1xfBoDinoirPG53umCoH5s4svdo0OAKy0BM5uw=,tag:mJLSZu57PnvVRbIZIchBfQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:y9wU3p5KNg==,iv:ECqCYNxKVGHKsfa4hnAlMpa5oDV9m10Q94J1KnLCa6U=,tag:jxxPCdvtdz3N27aiA4/D6Q==,type:str]",
+			"provider": "ENC[AES256_GCM,data:7ELOtpzVGfkXBVxhfkqrIZqp8SNW9sHmGjuJRKyorzdJYnKYcjj3pmuzwcRc4bMBT9BoQctP,iv:j2PtKU42aHptJx7yrWisKsYcFmFiWmiMwIxn/Nhl5bo=,tag:dKi8bogUU+8Jl9UJ2rzxDg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:rQ==,iv:zr3RMSXbpQLm/aetxpmcSLUPiKxtnwQkRpvbadCABnA=,tag:0zGQMJ+OsC32to+7Zqdftw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:kQ==,iv:y+uKg5mv9YB2qfYaF+nao99xv01qLLdOXkqJxy695mo=,tag:OICnFmGoSY6ib1dxbBaJiA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:ASIAl0MRc/cUeTUjGw==,iv:GKTQ6Ct+PvvsaPVjok/vWCvBtHAYFB/5ZBb0XpBQJZo=,tag:/Ck+dJNC4yskp1qHWN4+YQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:PrzsYttyuc4FE1+skQ==,iv:+ckOhJhHROKPMaxEz4Z4CytMDoF3VdvlhMt80vTniLg=,tag:SypnODEVkUGkOCBzV+cZWA==,type:str]",
 						"metadata": [
 							{
 								"annotations": {
-									"reloader.stakater.com/search": "ENC[AES256_GCM,data:B7DAVQ==,iv:FpzqudeHNr0/1vM7c6TgRRUnvfY/jCZ3RQvSldDlvTA=,tag:Sd53Fk43tC41MvfMBbZh4Q==,type:str]"
+									"reloader.stakater.com/search": "ENC[AES256_GCM,data:NCP3qw==,iv:s1nuv1Snes6Pyn1qrQkOppBOxFfJ9l+UNSq1yCtOEzk=,tag:Rado9Wwyj61lCXJAXHdfZQ==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:Hfo=,iv:StwUS8dgwtj1y0fSMOSpxi8Un4MkbA2/F0y5lHNfuQM=,tag:pkwvTcyneGfLO7XMHRJytw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:uOA=,iv:QTV03PaYdXLzIdBKrD8QG57hvy+LsQW44mXo520+1FA=,tag:sek0IJtzcgnFDqTvW4TjXw==,type:float]",
 								"labels": {
-									"tier": "ENC[AES256_GCM,data:eyDQXxvD55pH,iv:MoWbkxyGX7MXxrDnak/Ojs+E6xY6auant8gTvGPUg6k=,tag:7Z78n5YLhqQsp5y0j/mCuw==,type:str]"
+									"tier": "ENC[AES256_GCM,data:lnPpgJZA1x3E,iv:OVT1x4RA0lzNdQdsWyhkZjTc88FaECga001hg9fWXyM=,tag:CydtukQuR9p6fbPfndtFRA==,type:str]"
 								},
-								"name": "ENC[AES256_GCM,data:g37DfgV7gQ==,iv:tWpemfStqe1TFBhYTjMCWW6CUOBDDnUJQWM3kCdMbUE=,tag:42wHFa4k79mAY38lMUqG4A==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:f5UyIRA=,iv:XujQYpeEmdniclyXl4vJri/6j9l9Ld+0kr/Xosfgm+0=,tag:fvI2ZpwsQFQnGEWS7UPs1g==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:al7dg7Rvyfgn,iv:sMPVeDqAeJRzmanK/NA9RZIqFJ3pBQgz350MkrgPoPA=,tag:oml10mDcZX2AzWsTkjt3jw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:q4UTQcA+T267IrhblQAt4F57DSmHfxIbDlELrjihD2/wEBE4,iv:pVkA28WjAncO/jdpenP+Hkh6tpp39kiihjIssSwLi2A=,tag:ZMW9n0BGqCoDUDbxUxdkNg==,type:str]"
+								"name": "ENC[AES256_GCM,data:hlpHAKpIEg==,iv:Owb+eazXqv5QaZy9JVIttx3NgKY2vFTDrX9NnTmkgc4=,tag:pPh2JdS0jt/cIHhxLLpWQQ==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:S4aGIcc=,iv:NtVBtLIfM4MyC1qYzfnp5ZewbP0QGO6WJGnT7DJoKu8=,tag:XR+QMySM5BIMB7i2a1ogbQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:She/DBHN2Mqx,iv:Or4VvG+Ahk3FpQoCXfOylP8Nw7MX0DiN10gCsKge+yY=,tag:6Ib2w6Geu8jIZkfoP12uqA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:Zi7UwX4LOU2HLuzFv2wAXkZMcjwOX7zC3p7Ig0YDOuKM/V9G,iv:RNp8Fg9wc8ThodqDkruazmlF0KYOCzc3FXUOFL1oyGA=,tag:deBjA0VKNxLzZytGQhsWYw==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"min_ready_seconds": "ENC[AES256_GCM,data:Wg==,iv:OPQ8kyQHzVlkX1GmVGpTr7ifB4CBMLz0p2fCCKXCXzI=,tag:ZhBj4tn/hSSEmuGVnNpIVQ==,type:float]",
-								"paused": "ENC[AES256_GCM,data:JZULioE=,iv:HUtqwTql8ceDOq6q126IDNL0ctlt3+PLE/9gNq+2SbY=,tag:KyImK46BGxDeYEMp+QCsMw==,type:bool]",
-								"progress_deadline_seconds": "ENC[AES256_GCM,data:4+YT,iv:jO7IOGaewE0ZfORq1xhC4WwuSQccOSWt1f5kpzGMQkk=,tag:KCYVgCU1U8IXeJIhli0vCA==,type:float]",
-								"replicas": "ENC[AES256_GCM,data:HA==,iv:zLbdDtxj/PIPwr8neMoqQo4aaZTo2F8QGkwTXwf6shI=,tag:8hQ8FYpubq3EYrOGGe9ukQ==,type:str]",
-								"revision_history_limit": "ENC[AES256_GCM,data:Z2c=,iv:BilGJUnKRINgwjc+BW5Tq8Z+NLkmr3479surwvIpn9o=,tag:78JvczIM2BBUywmQkM2ZiQ==,type:float]",
+								"min_ready_seconds": "ENC[AES256_GCM,data:rA==,iv:b4xuz4rYD6TIEorpCkjDe55Cb7IkoIJvlkvbA9/tCYg=,tag:RlCkFRSfQ44SKUpoMcVZ2g==,type:float]",
+								"paused": "ENC[AES256_GCM,data:5KzMvvI=,iv:yJJasYot7ueayfim1mGBQ6+rPGX29dNjMAg8llc9rKA=,tag:PtaRouuTdo1b8sh4GRs5jg==,type:bool]",
+								"progress_deadline_seconds": "ENC[AES256_GCM,data:BATP,iv:N44svrFz5TRZFL5Ss5nr+Ieh8rlNpfyVRZ/s7jIp12I=,tag:hLgNs89H9foFcA/Q5gFN9g==,type:float]",
+								"replicas": "ENC[AES256_GCM,data:cA==,iv:mGpYdqPNGkHTtVXoJ23HFuhRDJWfL5I+YbZ5OL805k4=,tag:FW2K6uD//+kvmQD6AoAOnA==,type:str]",
+								"revision_history_limit": "ENC[AES256_GCM,data:Qfc=,iv:pXdRM7WM/Fn/owFJg1hgo+JD1yFPo13eVtllgoivVYw=,tag:dH2r/SYlR4z74D+POhcHiA==,type:float]",
 								"selector": [
 									{
 										"match_expressions": [],
 										"match_labels": {
-											"app": "ENC[AES256_GCM,data:Y1FALAHqSQ==,iv:I3ub1fnfaG/KeuodSmCp/+OZkgMm1Sg/O0PF49J7fng=,tag:GtQGtYrnzjvP/q0C4PuAyg==,type:str]"
+											"app": "ENC[AES256_GCM,data:9XZVYCUQCA==,iv:Hhi+4bw3/gowLb2wtLM7D8SHkprWKiU9Tl1btOh9BlU=,tag:zWZ+KE1q1fr6rKr+akQzVw==,type:str]"
 										}
 									}
 								],
 								"strategy": [
 									{
 										"rolling_update": [],
-										"type": "ENC[AES256_GCM,data:dOpxfKtJjVs=,iv:ffCwV3qKkpH59OHSoek5VKOIrcL05saMHTXWJvK+oAk=,tag:F/Y5iuqZE/jiG3Ro1SVcuQ==,type:str]"
+										"type": "ENC[AES256_GCM,data:ckJk4x31JIQ=,iv:CyL0HyNxymcM30WzapiliMmxrnyRqtshZVnjEc+/CUI=,tag:+3Q88BOwx6UeZw/IVg3hJA==,type:str]"
 									}
 								],
 								"template": [
@@ -1451,9 +1620,9 @@
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:Tw==,iv:7tPmKDqqizXgS2PoVBFad2VNDi47GVRcA5Ar7JAxwmI=,tag:SmKlpEecVxYG4hnuTa+CQw==,type:float]",
+												"generation": "ENC[AES256_GCM,data:IQ==,iv:eKILFLqU1tEYiGFLIMfmaUhNIyOYESgJTjHau2HYH+4=,tag:WXmue7IeVMC5HAZM3bYKvQ==,type:float]",
 												"labels": {
-													"app": "ENC[AES256_GCM,data:Z3hJcOWscw==,iv:amcaoFSPGHSP3AEcIFUQE6nZvScsOZ48+EX+pagJeyI=,tag:/1XcPKWein1W1d3t+6N1lg==,type:str]"
+													"app": "ENC[AES256_GCM,data:FL+e5n5S8w==,iv:wYroaaPrUpRJL6hPHSjAI6HMuGrRPuvdolUQWTyicS8=,tag:o8kty3iXp6PWt48sFEm/ow==,type:str]"
 												},
 												"name": "",
 												"namespace": "",
@@ -1463,67 +1632,67 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:Dw==,iv:9ac1NtEVKpLP9rYyBNu4QVNKT3T9G0FSmO8YDLD5fsU=,tag:j3r0Sbh7pPDeJBs2LPkSUg==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:mw==,iv:5G4cUyYB8RoELU9GfDwCYElup8wOdjBjw0VcntfhuA8=,tag:qMNmmNPYxOYlQFFKI232oQ==,type:float]",
 												"affinity": [],
-												"automount_service_account_token": "ENC[AES256_GCM,data:RE7qNA==,iv:yo6RV+WIfpfml1rMlbvYsz63149l2ISPWd/YcsvfNs8=,tag:IjPNIGb/sx6MW9ptxygjZQ==,type:bool]",
+												"automount_service_account_token": "ENC[AES256_GCM,data:3pRB7A==,iv:jidZoB0LUnjifJDp5fPUjKCA3ZhqIfwZYutKTD5/CGA=,tag:7h7fndBfu72MM+PrjJnofQ==,type:bool]",
 												"container": [
 													{
 														"args": [],
 														"command": [],
 														"env": [
 															{
-																"name": "ENC[AES256_GCM,data:9XpMQ4SkNvI6ZtSo8V1GP6nFBF7V,iv:+X24IPy89COJl0aQR8wojb22tLXob4qyoIl8qfYkhVA=,tag:Uo+AD8OIC+dGTcyQgFsa8Q==,type:str]",
-																"value": "ENC[AES256_GCM,data:Bak+65bdFxMhFwvqk+yHOce5,iv:UBxaLcm5CWgUxb4DQ13rwNcKcW2KWj7KBr5oXANgq3o=,tag:BQ9ZQ51w+LC6GvVnh5DcDw==,type:str]",
+																"name": "ENC[AES256_GCM,data:KBh1dEM8ITQdlnhpiy9fKnr9BRjD,iv:EqG5FXZCSUEOZoWCNf3gJXl0jLdgfCJ8e1tvmZlNE48=,tag:XXx5qE15NRrOgFLAn6CHnQ==,type:str]",
+																"value": "ENC[AES256_GCM,data:F3WKa4SpM2cdWuYr7q1379MF,iv:o+mdUebG8EC0tyskO9/5iP3AJAOtWpE//s/Js7cUYO8=,tag:wWb+THRuT7U+dQJ9FB4KBw==,type:str]",
 																"value_from": []
 															},
 															{
-																"name": "ENC[AES256_GCM,data:VP8eizDjb3LQWn8xV6JkXsb8lTD/YvJp,iv:viGX4uahpwkAswrz6nP6tYSidp5tfo+6OpHuyzmaDNc=,tag:gzMMRpvaltKXXgBz4D4dXg==,type:str]",
-																"value": "ENC[AES256_GCM,data:4xxln2rqM7f04WaFCuKFTzwRTgTPsM/xSNOhCR63NTw=,iv:8OY8paHffkkjTDaUFgjiIhz5IqmIIUNLgZxUQyJh3DY=,tag:ZsJmvISXdvBfvcD8PQPnhQ==,type:str]",
+																"name": "ENC[AES256_GCM,data:do3HVJy7EfirwlcQDU7LQMur+PTHFtDA,iv:0VQlAyCCOkdE/CoOmo2EM4bPdphVveQ62dPV7LLpsZc=,tag:H5hUpt84OtHDgifvOX5Byg==,type:str]",
+																"value": "ENC[AES256_GCM,data:soSpZ2KoPAzvMccWYstNMZvjeeXE9Y7+aiDBdIL9/x8=,iv:EQdg7r5GyNffKAYRmvRBRHIbww/iYWT+vDAgetJKsFo=,tag:leomUrDoiwz0NUZgvxmWyw==,type:str]",
 																"value_from": []
 															}
 														],
 														"env_from": [],
-														"image": "ENC[AES256_GCM,data:C7fJexLUKhEhcPMvppA=,iv:6jbolEhtKKXAXDIGdabcbK4x59YhpxX9XUz/Ij9emjw=,tag:Bariz8ix4fv6vC950XMxIA==,type:str]",
-														"image_pull_policy": "ENC[AES256_GCM,data:I16BGfVT,iv:1NCr7bEkGdI1gcjwPghbs+kjPkAqslGMa9QyWH+Thck=,tag:7bPpm651XFceqgrvRAP0CQ==,type:str]",
+														"image": "ENC[AES256_GCM,data:KmRu+KNDWwqz/xn/P7I=,iv:brUJP9IC4TCWsCBseq7zv9D9RQb20Q3E0o62a3q7orI=,tag:pVJNMcCCzYxs60ad8M/zJA==,type:str]",
+														"image_pull_policy": "ENC[AES256_GCM,data:mn9IRzjV,iv:BhMpDQ7c8kf4qX1JgNJET7GlAGYVAzruTety23nt/V8=,tag:gg5YAl09bV6KV8qJaQ9lyw==,type:str]",
 														"lifecycle": [],
 														"liveness_probe": [],
-														"name": "ENC[AES256_GCM,data:/ZVJCzQXZA==,iv:2P8dWhwPrS3qsc80OhI2n/SaQGOvQGkZfDPAiYPMvXo=,tag:nAZe8anXWJxYFaVRpnXr5w==,type:str]",
+														"name": "ENC[AES256_GCM,data:sAt10mnt4g==,iv:JwJqxYHtORVILtPj7mOww0BxIXWlr3sLNZCNi5agocg=,tag:NCqgiPfnekOzbaBuWwmr3w==,type:str]",
 														"port": [
 															{
-																"container_port": "ENC[AES256_GCM,data:jp8=,iv:1j0bG50KDTlsw9AhOAnafPcmeMbRMVSNdP4KzYZOOcs=,tag:pztHypYjPIR/b89S3RCQIA==,type:float]",
+																"container_port": "ENC[AES256_GCM,data:7HQ=,iv:yDml9de0X8Gp0Duekw+w6Jbx8yClu5zYs9SNqhOp/u4=,tag:kMnFo1sOHJICi/e21fVkVg==,type:float]",
 																"host_ip": "",
-																"host_port": "ENC[AES256_GCM,data:GQ==,iv:OHcLIVfRxgcdIwVJ522inffRCMap23/hYlRYAJIG/ME=,tag:Vy25O3ZRaqDF7zs/eSKLdg==,type:float]",
-																"name": "ENC[AES256_GCM,data:q6Qk,iv:ablPZbetOe/928tk5b3PUMzLeVMXWW4rK6ewP7EJrWc=,tag:hNJO8ulMj4fUv5QX9ygNdg==,type:str]",
-																"protocol": "ENC[AES256_GCM,data:vJ2E,iv:ODWbq9U9YIpUqQQMzmaX/fikbEFd+4ptz4ZplzhHgg0=,tag:aPG+TmK7o5xYBcvymp9oHQ==,type:str]"
+																"host_port": "ENC[AES256_GCM,data:xA==,iv:LTYaatGI2gsrRxcayXIgnwoep9Hc3wCJyurI0zCg/sM=,tag:aZFYKktK3XykmF3Z9s9RYw==,type:float]",
+																"name": "ENC[AES256_GCM,data:gPgq,iv:kqrabRcLnq5y4a7eubHGEXuG47pEoWsW61KKeicSpm0=,tag:RsZeqKM8ENEnbsK6qEKsyQ==,type:str]",
+																"protocol": "ENC[AES256_GCM,data:v10e,iv:saQFIqybVHn35qPoDBGahURQQLJgOV7eYm8eFk0YT80=,tag:u+Koa3zbGjaqbNwbXYTWbw==,type:str]"
 															}
 														],
 														"readiness_probe": [],
 														"resources": [
 															{
 																"limits": {
-																	"memory": "ENC[AES256_GCM,data:BSK5IBk=,iv:dKVlRrseADrJaRSPJRRFz6ZaY7ub74T1JmsJ/MnglrU=,tag:85vscD19UHdRRF2pSZuoKQ==,type:str]"
+																	"memory": "ENC[AES256_GCM,data:epEaA1M=,iv:3t6QqF+k3nYXq5UhYiYHlVZIsnYY9C+JErs13XSNhNw=,tag:qcCl5vGm+Zu/z4cC4FiIvA==,type:str]"
 																},
 																"requests": {
-																	"cpu": "ENC[AES256_GCM,data:okEY,iv:OXJpPuBn7IOiJCEW3ziDY8xO/gsCB9LHX2wqyqEC8oo=,tag:r0IQ2ygcnaLIkSFo5zuOwQ==,type:str]",
-																	"memory": "ENC[AES256_GCM,data:QD2W9AA=,iv:FRLMp49w4sEFy5m7cmZU5QM7toitNH2E+r8bf04Jxtc=,tag:4RGXA+nDbq8jAAuvYPdQLQ==,type:str]"
+																	"cpu": "ENC[AES256_GCM,data:/0ia,iv:pvEiGNPQVidIFgF78QSt/Ixe5EICmTSyqF1UZ740RbY=,tag:vYJlj+xSJpRkYHmv6FVZYQ==,type:str]",
+																	"memory": "ENC[AES256_GCM,data:E4LheNA=,iv:tpjjCRtrTneU93U9caS45ao9fEPp32S9j3oUNs50Azg=,tag:NFznxCSHno1DTx/z+KMb2Q==,type:str]"
 																}
 															}
 														],
 														"restart_policy": "",
 														"security_context": [],
 														"startup_probe": [],
-														"stdin": "ENC[AES256_GCM,data:mwFi1m8=,iv:eT4PQ+SFjJNMo9kEvY1K9HD//phQhLS48Pwez/TSd+Q=,tag:gdP+aXVC/L7dtz2YQHe3Zg==,type:bool]",
-														"stdin_once": "ENC[AES256_GCM,data:NlO9f2M=,iv:eRT4xKBWozXD/6MOnl+83DYO7OGshOYq/JavSMjSaEI=,tag:Rx7Is1tAD7NHhF7nBNuCpA==,type:bool]",
-														"termination_message_path": "ENC[AES256_GCM,data:ayjMCLYbvHh5uK5np+ApJc4vxzM=,iv:Bg6fFpueOfZas1X2hIla33sNIE53WlgUpGGjx1HM8pA=,tag:sOXW1a6lcCuoSIg5L3ORYQ==,type:str]",
-														"termination_message_policy": "ENC[AES256_GCM,data:iKBEyQ==,iv:SGO6ubt3cMN9VJRQD1k2+8ymavZkAluoVEO0CeulP1I=,tag:kkhFB91LFS7udRw3YIxxKg==,type:str]",
-														"tty": "ENC[AES256_GCM,data:3up7/1U=,iv:vzs/9Eep+FSf1QYc6hd1U0nIqWVRXkx5MdzX9hN9LUk=,tag:00Ba/I14E/qB+SglSH6bhA==,type:bool]",
+														"stdin": "ENC[AES256_GCM,data:IEe1b+8=,iv:rU8DLfh5Q7Sz7ZlbijCTdg92mO6anobpByMqga/Hv9g=,tag:x3Ir5hxj5rf/MNZzlIKd8w==,type:bool]",
+														"stdin_once": "ENC[AES256_GCM,data:tBR7jRc=,iv:GDdIoYsorZ83CF/bEx+Sy6NqJjtnQYFTw+roROsCZnI=,tag:ZWuw2ZAQQbbTXcW+QWNjNw==,type:bool]",
+														"termination_message_path": "ENC[AES256_GCM,data:9h1oBDcul8Ae0lk+XDnolLHb0dE=,iv:a3OpgxWwQsvcR3W5l19q2UWs/pSdoeOzSzEhjKyLhms=,tag:Dsv8/1WmT/XedCrl5XfwzQ==,type:str]",
+														"termination_message_policy": "ENC[AES256_GCM,data:Qaykyg==,iv:V7MbFZ0/+1nyka138uKPuA9sAHf9o93thactV1atLfU=,tag:9BL6D90z90jrNpr1Fuxr+A==,type:str]",
+														"tty": "ENC[AES256_GCM,data:u2oNUFA=,iv:O9D5oaby4FUzKn7SYXZM8NzlqBnsaHWWHOWccap40Mk=,tag:+8XbA9paXNKxKLht5ZSJKA==,type:bool]",
 														"volume_device": [],
 														"volume_mount": [
 															{
-																"mount_path": "ENC[AES256_GCM,data:6KEuaRdW9xgOIJ5zSrsTCPs=,iv:K4ZhL7atSVgGHIlvF7m492BniwcHo+Q7erRsGXEMH60=,tag:ASWAIiEKHAPNIbbOwL4m6A==,type:str]",
-																"mount_propagation": "ENC[AES256_GCM,data:vpGQQQ==,iv:PbbrqF/9+7ua48QsqbVdRA7r4pSyayySH2W19CU6csI=,tag:pW1qI4RtUFwAUlmviEbFxA==,type:str]",
-																"name": "ENC[AES256_GCM,data:cTkhm7+Xxw==,iv:dQY6Ho361dAMIPLVN/+ti8NBsr3buhH/TsqGUVDaydM=,tag:WoH2CmkwBqU7VBmxUSiZdA==,type:str]",
-																"read_only": "ENC[AES256_GCM,data:fQ4oa+M=,iv:P1tDvH0oMrmy+KX6+vq2PGO4z1FzAljNGlt+Sy9cmcI=,tag:DO0FCodmYo/2O6pasyRSnQ==,type:bool]",
+																"mount_path": "ENC[AES256_GCM,data:6eEGYYOcd888b6IzcpXyRSg=,iv:EErCabzEWCEigEaI7nP9kJbuwxHMOq92sCQP8CJxaEg=,tag:X43Y2h0yn4cpJ0Y5WbaZGQ==,type:str]",
+																"mount_propagation": "ENC[AES256_GCM,data:0K3iMQ==,iv:W6yUTubGM/1j9SWq9x7kfhYJ0RGSd3C0J18H1GddC/0=,tag:N4kRQqsyTBYqEN/l8vO/Ig==,type:str]",
+																"name": "ENC[AES256_GCM,data:r242kTFn6Q==,iv:7LS6yzCRzBlm0IJKb/ObHoClEo+vPOVYTKFwmv/Q+0U=,tag:LIypz3KTVUCK0TM+TyAXQA==,type:str]",
+																"read_only": "ENC[AES256_GCM,data:FHbyBnQ=,iv:OUDJRPQ3NAmhMrPWATnaji5kQZgG0RX3xYfMtSOvxF8=,tag:LImTDpI27bXj+wvJv+kIjQ==,type:bool]",
 																"sub_path": "",
 																"sub_path_expr": ""
 															}
@@ -1536,19 +1705,19 @@
 														"nameservers": [],
 														"option": [
 															{
-																"name": "ENC[AES256_GCM,data:zzGKLJE=,iv:BZJqunXC9XLoTdfAFQnR6S9CLfitoWpuyGZe5vCEo2Y=,tag:PN0FNSKDpMXXfK2YYlhcow==,type:str]",
-																"value": "ENC[AES256_GCM,data:qQ==,iv:j8oRBB1YddrTM7SH7VG3cpqBMdQ/XQt9IU0ktouTdK8=,tag:ofe4NBW4bD4iOj3G6HdRjg==,type:str]"
+																"name": "ENC[AES256_GCM,data:K6M0/9o=,iv:+g7fHqSZ5ODtzB/DafUre404diravq0GyXg1bum9u0U=,tag:bQwoa/755x8RcDczyu0z4Q==,type:str]",
+																"value": "ENC[AES256_GCM,data:+w==,iv:w8M8XCD2ujyGFcWCliJaZpI42wuetoi772e1X1MTyZ8=,tag:PCj4PtEOvrYRTHOV9cV7+g==,type:str]"
 															}
 														],
 														"searches": []
 													}
 												],
-												"dns_policy": "ENC[AES256_GCM,data:wJiCYFLJX9XYyCax,iv:La0PjDDZAFdY0jrwJ5dKwi1kKA27XuMtI3YNvVYSkVk=,tag:/ChS7qHBXwHuuFqV3elN0Q==,type:str]",
-												"enable_service_links": "ENC[AES256_GCM,data:pl1wKw==,iv:bBLImqG+4PUaMdiiNI1gWRe+UVCg2hLX+6m9mHROu2o=,tag:4M/XqhFd37qVS4khiRplbA==,type:bool]",
+												"dns_policy": "ENC[AES256_GCM,data:dbgvM8+8fehrFtJR,iv:scAZleqAwWCEt7NhJragBrOGLEQ01Zh41aRLBakycgI=,tag:kbHHK1lGfJkrTr9hkJS5jA==,type:str]",
+												"enable_service_links": "ENC[AES256_GCM,data:vZbKwQ==,iv:W9Gw/zvX+1CdW/ISVo9MMYWkk9dASC818a/LIXu1mFs=,tag:5ghk6/Ct/SIIkYGO8z9mfQ==,type:bool]",
 												"host_aliases": [],
-												"host_ipc": "ENC[AES256_GCM,data:W8D4l4w=,iv:tCrpdk2wyhUV8DBEHjxpULAM10QoVa8WmHe18Z7qoWk=,tag:D7+DCA76SBjtyLYLvFHsaQ==,type:bool]",
-												"host_network": "ENC[AES256_GCM,data:9ZJvwZE=,iv:JtoGCkni3SOft5S9HxAA/ulm198Y3zKaS5/PAB9OhCo=,tag:Pj3bdiI/MqjdaKstle1rCw==,type:bool]",
-												"host_pid": "ENC[AES256_GCM,data:jyYJ47s=,iv:r4rOEdSpzbHxHBQUKiAR9mEgWMHyFgDWUFZPmWULYTE=,tag:yokubt8YqmaVHSs1NbjhQQ==,type:bool]",
+												"host_ipc": "ENC[AES256_GCM,data:n1iCtnc=,iv:UeUASpJEzBvshuOGq8RWJCyuh70Fczud4sX9OAaESRg=,tag:0fdiWRMsPmlwvdqp9ZcWMQ==,type:bool]",
+												"host_network": "ENC[AES256_GCM,data:P248ry4=,iv:p4BMZAk4Onk8upwIlssS36oZSIvKD/F10URZlmtDm6I=,tag:Ztt+TwbnPNmCZsrUQN78Sg==,type:bool]",
+												"host_pid": "ENC[AES256_GCM,data:8eu5ayo=,iv:9RJBnJOwHEnJJFpzRFV6EonwXGSWYjYEh2dOf9cCWjo=,tag:aw88UqBZKGCtqwBhXIrAvw==,type:bool]",
 												"hostname": "",
 												"image_pull_secrets": [],
 												"init_container": [],
@@ -1557,14 +1726,14 @@
 												"os": [],
 												"priority_class_name": "",
 												"readiness_gate": [],
-												"restart_policy": "ENC[AES256_GCM,data:PbwR5w/U,iv:M4SSwDpXCRz9SAjqbmsrs0DeFasF6NNBOcrKRbSdrqQ=,tag:uGUbECFpLfaObr4mLCnRWA==,type:str]",
+												"restart_policy": "ENC[AES256_GCM,data:OH0DhcFN,iv:6jGhb62m9OUOnsLMnQENCermats9IbTH53g3nnVPEVM=,tag:FhrGrCacXdzXVizYUBzC4A==,type:str]",
 												"runtime_class_name": "",
-												"scheduler_name": "ENC[AES256_GCM,data:uPhOx8QUXVFiGdf4G6h+gOA=,iv:Mdt4OvSmA5GKQCgi+JEvGLl6HsUzinb4Gbs53QxJvJQ=,tag:6JWwJB5VFgcKnrjtRcH4jA==,type:str]",
+												"scheduler_name": "ENC[AES256_GCM,data:MSCPtYLIxDzdq5jIPY9wpFo=,iv:n1SlI9igsL9vGWV9rTVDsOUSqeePN1HQj4E1UymzryE=,tag:QgR0kD2XS6hXDkwGhmdHww==,type:str]",
 												"security_context": [],
 												"service_account_name": "",
-												"share_process_namespace": "ENC[AES256_GCM,data:/MxtZq0=,iv:wmeGV5wgesd8u+Fh7VMkTz71RhAozSLSBFpwJfrmWRI=,tag:TCpCgtZa2LAw/i6HPehc3A==,type:bool]",
+												"share_process_namespace": "ENC[AES256_GCM,data:pHxm5fY=,iv:ArP4iXWVQPF+p8VfKtxaouX5z2v6oj0zIx4OZheQk+g=,tag:rWG9P9F0FwrkPhjYlI9aEg==,type:bool]",
 												"subdomain": "",
-												"termination_grace_period_seconds": "ENC[AES256_GCM,data:U9M=,iv:JidEIaAsbDJQASXAvlZx5V7BERvTBDhR85b7ExI7j14=,tag:Lf3dmBT+jdvoS5z/6xlOcw==,type:float]",
+												"termination_grace_period_seconds": "ENC[AES256_GCM,data:2p4=,iv:G4WCeZK5QcvbWoIPeGZLRx2edDs8Virp0d4v+MdOb9I=,tag:N1l5C2Asi4yOi14fiT/SYg==,type:float]",
 												"toleration": [],
 												"topology_spread_constraint": [],
 												"volume": [
@@ -1588,12 +1757,12 @@
 														"host_path": [],
 														"iscsi": [],
 														"local": [],
-														"name": "ENC[AES256_GCM,data:gtIaDxH+Qw==,iv:YsPw6wQ31R4BWCH0sh9taZcZBfrb6hwrxevAppztTXE=,tag:IuvjcunO+vNann6kieXhNg==,type:str]",
+														"name": "ENC[AES256_GCM,data:DypszQkUgg==,iv:hbms/Ee5n7MIIXHiztuNvUXIzvOrwsvSb+yntpiotF8=,tag:k8ykv8i5DTcT/+c42/4piw==,type:str]",
 														"nfs": [],
 														"persistent_volume_claim": [
 															{
-																"claim_name": "ENC[AES256_GCM,data:aPHBNgBH8dnTgO+I0m03vKcJD1CVM1c=,iv:sPPbaeoJ3/7BG+2ARTx1q+qhM0Kl52u7sB8VSoWHHGQ=,tag:hMCRQSZDQ8/1pzYDsOw40g==,type:str]",
-																"read_only": "ENC[AES256_GCM,data:Es843iI=,iv:e+iZ64BIFmjyswvOKbbh4nIJg/+DrgoqDkdzJ5nBmCA=,tag:Xg4glwF77IuXhoNzTuj4Mg==,type:bool]"
+																"claim_name": "ENC[AES256_GCM,data:UJF01lVxxqpoo+M296p3nbasElGqFrU=,iv:48UVJAUtNmXPTm8MR6tJy/IU5hApoBIYPDk0c64JzV4=,tag:qFuIW+NywUyT1175cMH0kA==,type:str]",
+																"read_only": "ENC[AES256_GCM,data:TIEk/tE=,iv:O00fw0W7Ec7cO8RuYMiN9qmYC+gXh5g2n+K1RIq500U=,tag:eGTi+27hM7pMZcnPNsnE1A==,type:bool]"
 															}
 														],
 														"photon_persistent_disk": [],
@@ -1611,127 +1780,127 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_rollout": "ENC[AES256_GCM,data:isLn6g==,iv:l+7DdsQJM41TqZoCo97U59FRmwCiw7NH0K9QxhuL5NI=,tag:H/bLlQnTEWHTLNjeZxcVHA==,type:bool]"
+						"wait_for_rollout": "ENC[AES256_GCM,data:i+0c7Q==,iv:UvvyaP/to/cqFbo4y4+CuQaNuAmb+u9BHkqJvO7velQ=,tag:Xhy2+w2BLrBbeXKdQY9I3g==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:0lonm3Q8ZVc=,iv:1bPysoZFPCsSswvu0tLNwwA5T3Alm/3CwJs3wGYD5iQ=,tag:Ck2DWBXADHGnB+e70VIMSg==,type:str]",
-								"value": "ENC[AES256_GCM,data:/S3esw==,iv:zN0cNnOEG9uvkETPggaNu+1TXmVsYTWUfBMoIr9u1M0=,tag:O+sw9+ZK07V53VRvh3aHuw==,type:str]"
+								"type": "ENC[AES256_GCM,data:Tx9YSnfRoEI=,iv:Z8GsiwA7btTcr5TgfbZYne62TBp4UnSjUBsIPWhFPMw=,tag:kKCyrGJeOEpeI5YUyG8LSQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:xkwGww==,iv:nh1A0jp0YSyofcpy08tOfiG70meypH1wvZM23sOxjkg=,tag:GBgqWnlIk44IeF0iT+NHkg==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:93dkF1w=,iv:ZPdw+xTbCtAFmwsb8q/jU+JViak/b0aV0Uc+46VW4K0=,tag:lZeNSPcnFirGBpQjybDXiw==,type:str]",
+								"type": "ENC[AES256_GCM,data:hDxOxyY=,iv:aNEXdA3mUNW657mqTn/Ev4q4N7shZd86eNcCABeJQHc=,tag:t4ELRsuKfuqphM7LegLsRQ==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:ng==,iv:XrXXF3MZt6G6dvw23CT5bWCc8cwaD+CBU4UWDbjk4wc=,tag:rlJdWNAZYCcD2FjKedCYUg==,type:float]",
-									"type": "ENC[AES256_GCM,data:gv8A1Xet,iv:VguhW5m25+jQQB7/LpX3Yh4ap75mOTCLFm0gan4NTyw=,tag:rWMy7zzWj8KM1xQyR7J3vg==,type:str]"
+									"value": "ENC[AES256_GCM,data:Mw==,iv:wEVc4TNijXKIK54bab+YvPeo9UbFItWE/GnJDWA6Jto=,tag:gCvMwDzLZWaVUavCLrBEKQ==,type:float]",
+									"type": "ENC[AES256_GCM,data:F4zNq3bW,iv:7x9Iwf8wTErA8AoROuRgd8eMrWw6Xk6+3iLVXedCgak=,tag:R8mRUgwyuLsOTPJlQNLN5A==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:dTjwkVf+1+o=,iv:xxNBZF1R76zs9fTj1pDmT6Gcabkps6lKw4UlgkDatU0=,tag:eW2pKHh/l1BcfoPtZMHBCw==,type:str]",
-								"value": "ENC[AES256_GCM,data:uMQ3XzmmpgI=,iv:+id7fRwAPDtZhptpM8wJKkzdAyECoSs87YCSYedJoRM=,tag:YTSgZbLtIZYPmfpoH8xrdw==,type:str]"
+								"type": "ENC[AES256_GCM,data:LZTS/vSPYm8=,iv:x5ZD/WAXjSKQFKgTShD2zkXWBkhgWrFOKlV1usqg8rc=,tag:STjxERDw5qQ5ybP7CshwIg==,type:str]",
+								"value": "ENC[AES256_GCM,data:fypwEO/jgPU=,iv:VaEr9FN4tokdSHvzwvTxIe0bpR9EwJcTrG9GIjIQkwA=,tag:11jUq2WRMw1I5vjpDBvXpg==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:PjxY7iA=,iv:fYlgmDqkXyzMxzfFgbCzSU53d2a+f0z+asxA+K84Y5Y=,tag:oUqrcqQHMGd+/Mb5uDW72A==,type:str]",
+								"type": "ENC[AES256_GCM,data:6JXpQSY=,iv:tyU+OicLeDSUEXhF2qf1kzYp6UFMiGaqERdIuYs6UUk=,tag:DX5hAB1Y0mJj8tHyOWQtyA==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:lQ==,iv:6sqKhzakpWTieTr/4IiIgUbw9G4LHaJq0bc5vq0iSa4=,tag:UEtyJjf6R2SjeVsyYtkIRg==,type:float]",
-									"type": "ENC[AES256_GCM,data:Nox3ZA01,iv:5BUaOfu2okmUfckqtvGnzgNxjw7hXL3riZ6FZwNLa4M=,tag:EX7udzCzINnb4c/mhPLmXQ==,type:str]"
+									"value": "ENC[AES256_GCM,data:ZA==,iv:HM1cVX0hF6/w1zy5aZWPo25bjpSZ6cmwdSTKV+vtUDM=,tag:WrveZ424BpJMiqNv26rNaA==,type:float]",
+									"type": "ENC[AES256_GCM,data:K84lp2yD,iv:g7I5RA8pWG3+WexNWkvQrG2NMj/OohsDpvlOIzvThXA=,tag:vl5X69cWDnuoOGufc2F6gg==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:yLNCZYZQ9x0=,iv:RBMeUgfcejPTeIxBeoSzLKhK9XMW9U5drmk/BxY+Wwk=,tag:nxZlofdDemhxkExS3N8D0Q==,type:str]",
-								"value": "ENC[AES256_GCM,data:3LUanw==,iv:oTo7VGIqmG8yUPeeTV2s1EUq+KypVryw9f6/JS506Kc=,tag:EXnlDZk6zOHM/OSa6qIlAg==,type:str]"
+								"type": "ENC[AES256_GCM,data:4WleA1KE+bk=,iv:tLaOyU/wPdFTlgr1RAtvu16KSJGd0sJslqQb1oOytrs=,tag:oSTwpFgD4UUXY5FhNxU51Q==,type:str]",
+								"value": "ENC[AES256_GCM,data:H25Wkw==,iv:UgLZICyDzWNmpMnvzTJHIp1Pw8Ee3uKulFEGzV+4XxE=,tag:NPw8zPzmQLhEVmmwMRFvIA==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:s9BYURA=,iv:jrAP1kg2LiTnD67OAlKD3OGjXxgG4++nnR0oWiCxdnI=,tag:KHTFO2KR/3NyidQzsTfRnQ==,type:str]",
+								"type": "ENC[AES256_GCM,data:1K4Wc8E=,iv:0fJrre2CHeOqKny7cRt93E0XZwx0iN7/XTO4q3eIyho=,tag:4Ah7uaeQ6i3mdAgTK4Eg8g==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:Ng==,iv:oiIMV6thcxNAuvmzGxUrudeyIFrXziv0tOWgpOpJi/k=,tag:5ZvtM5VMgEOzz96u96J6eQ==,type:float]",
-									"type": "ENC[AES256_GCM,data:hS3TXRds,iv:Ki4YyfU3vpo8HpLOzFOozZo1gFvNTLJIiMLcqIDiuFU=,tag:ySOqutPA+BjQJtV3GmMMwQ==,type:str]"
+									"value": "ENC[AES256_GCM,data:9Q==,iv:T4Hj8plLT8XPQ/sAacOuOFgWebEUGYDgQC5PQvgcWDU=,tag:LFGOWFi/I4pAO9J7LcW8+g==,type:float]",
+									"type": "ENC[AES256_GCM,data:y/RIRESw,iv:d84gHxF7fXi1w2sedn4fm8WmJnNxy/pQPffRKz2uQEE=,tag:7h+XDiumN9U6txkGehYpTw==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:PhJOLPK7OLU=,iv:zTySop9NNRIuYeWmGGT2lTXbd6zUIli9lb54Wbj/KSM=,tag:4nC9ApS3Kve21bmXI9Yz4A==,type:str]",
-								"value": "ENC[AES256_GCM,data:Z7ZRMQqZXkDu,iv:pCf87hTIMxWAzCz+rgx37Ogtjz5y9aQChCz9pvwkGzI=,tag:/uC2wgmLCU0g2B9FS8O47w==,type:str]"
+								"type": "ENC[AES256_GCM,data:R2C0NEOxU+M=,iv:F4v3cmSpNT6WWzW/nfym8SDaH24i5/oHXmKJqBJhUOo=,tag:5sBT46YjU5/XmeuOPUlyOA==,type:str]",
+								"value": "ENC[AES256_GCM,data:CWXHJqUjP77V,iv:Mz5AlyyEyTx/l8k9gJgI6JnIRF0h2/3mnCxZgo0kCEo=,tag:ytSj/+iind2LXNjGoXakWw==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:ON+uWhA=,iv:lkSdFH+YnPQ/meEHNcBtLqVnxwfOESFKc08N+nMzU88=,tag:xjTwepsOxxIJPRqbJy8fdA==,type:str]",
+								"type": "ENC[AES256_GCM,data:CRzQpjQ=,iv:EtK3IE/nyotaqrjvgfJ39lnWYq1tbx54q2qeEDNBVzw=,tag:+TIHeeon7gwDlgLJpT5DSw==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:jg==,iv:GE2C7gpE6mxjlaFk3Z6f4dw0bwX3+hA/AuiKDAan0nk=,tag:vbLPv6QwK7YpyKGToDlHGg==,type:float]",
-									"type": "ENC[AES256_GCM,data:SiNV0LTt,iv:aFYole7BzvDQJckgqmgVnKTsRdExEp6Y4IgfbR5YkKY=,tag:d6yxB/F/4YnzqeIfl7nmlA==,type:str]"
+									"value": "ENC[AES256_GCM,data:LQ==,iv:WQuQgpRQc+zz/AqDvO+j+uxmcriTeVqsDYoKXqZz9Fk=,tag:eQn6paY7NKcdWKJOkvXnYQ==,type:float]",
+									"type": "ENC[AES256_GCM,data:zX6Zv4mJ,iv:W0DbU/wOW9Q8BVsYDr9qZ9Pg0HqQPV6FjIrcSeRzoh0=,tag:3F4oTc88VHsmJKceneVCjg==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:RRQ1x0AuIkM=,iv:Z4b447xGqRNYEw7b/FYmexIXyvrigCisik7s0JcpGRs=,tag:mJBPB+wBPR32NbESKFBxqQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:V6Tm,iv:nO8WS41rgY0Nkp5sAWkNyQlmZKtk4fcstC3AJtMkuzY=,tag:DpmGk3g7tw/kNF6YIpz7XQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:d0NxDN3lo2Q=,iv:JfnQL9zDSR9GAJyZV3Jq5MiSXwdneMyHR8BFasV8VFI=,tag:r5flyosFnJhHm/HKnx0GuQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:/AB5,iv:sIXKBLGyi20bbPYVYQXieYZx3nUeKZFHIsXFqdRN0Sg=,tag:9IsE/8zCs6+N7QIVi1yqDQ==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:Nw7Pp6I=,iv:LDcNSQanagoX48IFOwqlkGUcX74Uc0VLwsHKXxH/bCE=,tag:ii40L9Aug+59YmZZEMjJAg==,type:str]",
+								"type": "ENC[AES256_GCM,data:OM7AR28=,iv:WKpurJLK38OsO1CUKhHCsflelwPHJa5v9apTIdNeqpg=,tag:xM6EDCKItfHKFtCWsOMHIQ==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:wA==,iv:MUbskYM7TzwQ9R+JkYEvj3uCKYOY/dBizBTk4vrnzeI=,tag:N+7XSigqgl6ji06XzwCS8Q==,type:float]",
-									"type": "ENC[AES256_GCM,data:hUqBImab,iv:HpjXXTcByuvYq+FVdh13DhcG3YnglfTHPKjj1BmT20M=,tag:NxcUi9v7VYGsPYurPtmw3Q==,type:str]"
+									"value": "ENC[AES256_GCM,data:jQ==,iv:HYO9k2OBdp3x8T1tT9TMT4dwXGGRkKprHmDsT+O11RU=,tag:jEP4xkenlpYH8O5lMyc+5g==,type:float]",
+									"type": "ENC[AES256_GCM,data:8ROJqpKb,iv:5kYdmgljKInkG09mUxK2UFFE2ZC6OP8AcOO3lfsuNoQ=,tag:kGlhqhcZuNaxaGiw0OcBVw==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:tR4Humtf96k=,iv:/PZUF/nfN/uGYZ2rxNdg0bybqTRF05Xd8BSNfpb1Y8o=,tag:kZuaCpojeDJKwnjswGBLSQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:yc6oV18=,iv:N3r7/8QPgNabEOTo53MuMoCJKTbbt15+gB9K8bD7cTg=,tag:LkE8V2m80+zEp5Ag8avCYw==,type:str]"
+								"type": "ENC[AES256_GCM,data:16faAJEhh90=,iv:ZFKIcgXVvoCcAJsa7FWwI1rBw/AVE6fN37tPtZc+JP0=,tag:oePrQiPvNKT5Nz0SsOqsGg==,type:str]",
+								"value": "ENC[AES256_GCM,data:0UhF6Gg=,iv:UO6zjbRkr+TYgU8EXn0G4nRBWJt8hDrB3QzELiacfG4=,tag:7FIOlbCZO2axE5IHbw8eJg==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:eg==,iv:H096CcjvNF5AG/pqKBA1t9pMoznTXhdwciPSlFGB8TM=,tag:EnXCtPJLIS+fjodpjAPUVA==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:og==,iv:xfRVcfEc5Rwg0Y7v+BN0AyYOHb318MZWhG8U3UpAyn0=,tag:IBvnbHc8v4RV16xe22aeag==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:JMN+KamQMQ==,iv:WQJgZPZ14/voHx3GaXd3PN6tE0GdSzwicmI6aNebiaY=,tag:k10FmDf6ZAaNSfoyvhLW1w==,type:str]",
-						"kind": "ENC[AES256_GCM,data:xZ4C9+A4e5DGvA==,iv:NJqJvW9WxKAPe6XCMTSjCH1H6RyVVhgQg1B/3PvwY4A=,tag:06sayyYBcqsuc6QW0beSxA==,type:str]",
-						"name": "ENC[AES256_GCM,data:gdxURqwcNA==,iv:32pzb/G7Ahvap7NnMr+/TOv7aSi+q3ngd6RNrstzw+s=,tag:0qoLUxTx/OnQ/ia7L67maQ==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:Y+lsPOs=,iv:G+NGLZFLr7/RD1QkKpmvzmWWZ5PXGqm98xI5qNbWDco=,tag:Q8p1o0ex2VnMScFx9WVqjw==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:UXyEK6KE/A==,iv:wHy6VTZUv8ci0wooI6CBWYe0X5OvKO3n6S0h28YjeDE=,tag:urRkXEu1zSxc5FRV2KxGvQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:u2xNMT+hJtzG2w==,iv:1GWk/eTpgeT9wjIXh1ook+5UfvRXeR3pfu97qBHiBVk=,tag:yklrUVg9dZA19xWnQ/A/aQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:qq6CQoIlEw==,iv:Bsc8qtz7ijYSTpfbLTqS8exYUqse29HTd1/hqqXDz2k=,tag:hoJC/tytuRAE50DfSsnl/g==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:8vz+CpU=,iv:BsZ+r3h/muA1fxAUqzTGKM9aDbuZLjp7z3bFayBzF9M=,tag:XQ492l7DX/GPUQNNh0HMsg==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:0XWGJdbujFstI9OS6RDJBSZE/zyh5HfA4+z/Xx2i6KXgSFSnowAMTJGLT74j7kOgr4a3sfvwDzasATgEITrM+a9zGD6IRhX7FNsjlUy1yyR2Z6vcXrksPAVsFBK1ksMsYFeixvHYaDG+hPf2nDSHeGQyvxmrb7EIkF673rqx9bkDfEspGSi0LpZ6nJrvT6MtTZjPfRMUGQDmEmTN8vnqgo6a6ZICIm3PZ5XT+Q==,iv:ej++52QpU2UJoY6wxC9wO7Gk5LeKnnsEwq+t4G0irbo=,tag:+zxiQUtD+VOPFQYsVIzVLA==,type:str]",
+					"private": "ENC[AES256_GCM,data:rv32H5r2k2/0pCt9ZKn2snjzHACZgNQR3kBZzhYu2MH9VQRK492BJzB3pChYyqSI8OLDGd73IqGBIb/77fRr6II8+JJMjWwj63J4n5aBUglVWHVYqCN1IHOlYZOPMIMz5YXYkaeZQn4PDF3oEe0/a0Yi+WWrcThSL+pkAXjtSdeXRXWC6SIaLUct5q5R16O80jnIGD/3a2DvVQlpFT+KJnxs2GOVG9Btgz4cqg==,iv:DHqV2wMOtlDHJAgLGz7u7IkdMEDRn4bM297JWds06L4=,tag:gskhYJLyq7pOdTFOwnF0vg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:Yic+Io73k9JBFqqbdO2ean5nYoM56qVyRJLR6VwiSQ==,iv:DlYB3K6DEX+UO2BzQ4gz9hW8v1266jLgq0LWoyf+WnI=,tag:c3UcLBBT0Fp4ZMnyj9IYWw==,type:str]",
-						"ENC[AES256_GCM,data:jd00VkXWF3s1oTiGFuMruh+b6Ap68FxNiqgqavTAvMITj7tSDpiW,iv:GRrsZiv23dU2hqUQKtcUFsAfnoRa18cp9k32Ed3z65M=,tag:0e7PGxNE535Zx/GVy7783Q==,type:str]",
-						"ENC[AES256_GCM,data:2fltOgY5GF/Msxz9IeWQYnql4P0+Z34yW8rOByn5Su/TcfhDrmEWe7WPIhFSwVmfDwgkMwnYFw2l3U9Ss4B3qho=,iv:YY1JZP8e1+TDApRxfVNjDV/hFn9BfLKB8xjc845Wa5w=,tag:49X/VVA7aBbjWi/EGGcQRQ==,type:str]"
+						"ENC[AES256_GCM,data:s1LqIikzpqyhumHSiChuEjUZUnpDsvfdEqH2NlBw7w==,iv:AjVunFxqpQHr95RgpTmjihB0WRit0np8jaq7FScabKI=,tag:EjDKJl3xCAHIEzwrQi2mSQ==,type:str]",
+						"ENC[AES256_GCM,data:mDTMd9kF+F1x/r4HS1j9vcpJa8BzZA/slGC7UDCy3bRUxjEdatpo,iv:UmC/3Iotz/CBGXl1AwEgluNbNrOZr8yWkm64e7iQldk=,tag:RfN4hlX6Z/tQFT5hYd/Quw==,type:str]",
+						"ENC[AES256_GCM,data:dS3avdSg8ZhfI4E70CsxU/ZXP3p8Wk7prCjahj9Bb8gouoE2XKivqmzmCqeBUjQiIqJ6BgO3h5MZNDscGHDy5ow=,iv:n+pGhbauny/PpUAx3EUTtGV7yvbrYXo+7yv3Bd2xeIw=,tag:Vq7ht2S02YHAFeinZSErBg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:rPOH3Nu7fT2TBhsf,iv:qluTpQcfQum5o3VqZ3pHCZkOsq3B7nlidkf5PWv2DYo=,tag:5Lr3BtnbrrGKf0QuqN5Urg==,type:str]",
-			"mode": "ENC[AES256_GCM,data:1el8Cuhu0g==,iv:HMBRgfeoJbVAzIqUM9xZozH/QGWC+QuUWyEapr0zk/Q=,tag:Tr3M6AqEgEGMfVzkepZqSQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:7eyGlDenAYS4QOWCaizgXHUCY1BW,iv:fiK3uKGQhX5abuI9d6GeAgNJ4m3k8icq/nbOUPGeAEc=,tag:QN1ru8hGhZCpC9AvXLDtNQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:OKA+lEWT0SLR/Q==,iv:jmLqDToLDY5fXysqYvYRTebEEVJlJM+tXBExiUYGdVI=,tag:JtZE6ytnoUT01wyVic5O5w==,type:str]",
-			"provider": "ENC[AES256_GCM,data:FRd465v7UM7a+KeEluyaD0u2gzhAFMEUpWmUQUrRzKq9TsX6DLGCI/4PtLD+4uDrAQ4uDILn,iv:SaSHt7k77DUYOdlyMsSEOZLdJV1cG37R/JpZLVaElZc=,tag:d5HO65d//qB7QE+P3p3amg==,type:str]",
+			"module": "ENC[AES256_GCM,data:mdx7jl3x8CuUAp6c,iv:v4T4ANocTYySeyrpFf80MTw2CXHtYKSlMSlcIBkzXP4=,tag:IeqIw0AKBeCcZHt6Y5zVtA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:tnLbiM2kSQ==,iv:Y/H36cvAL7b6myQX+gKaTng0ICtYv0xLEMkFv8uuLrQ=,tag:Pt4+PCmS4KzSPgG2ziF4JA==,type:str]",
+			"type": "ENC[AES256_GCM,data:Vx76pyh1u4jllEBGm3QdTkc/J4N4,iv:x2fHk/Pa96jCFnvWY/+cQpevEbRsmNF02hi8fwKsCaA=,tag:43W6Q6fa7TwsTt2QAgukbw==,type:str]",
+			"name": "ENC[AES256_GCM,data:S9A87VtnGRR11w==,iv:DTRMNpEg7aeSPFH2T813E4nL/2vy/gpqMMdANS9JwPE=,tag:blnRqF5tEs4Ngve+LBzWUg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:7vZJwPn0dsRLFXEHqy38IqpnjFze6UDzMAO8wIBI5yPdNbRgf2MeV/Om4H22xiwUwXX7kbgG,iv:eI6wOMUbtMOQRgwjJT/KTBz3gDkVrN2fZZIrSgjf3R0=,tag:xR5QEi35HBO2fMmBcaFlpw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:sw==,iv:z3X1sgxJIYAku7sBYWKGQ7lvl1Pt6eFf0Kg2LP+f5ys=,tag:P1EKS22gAOtQZCg/0sLZdQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:UA==,iv:wWLJdEtSEP6fVxkpAgtc31Oo5oU9xrcRywtVTmhuG9Y=,tag:6mhcuUO63rnvGKPjMCTdyA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:OLwzCUTAD9JKDCwqItYo4Q==,iv:R49zJp586JdQyzaG1/8r2zO/ciVqa7wK1tvpwxVAAgs=,tag:+Xd+xuOwxnlTseI/eUjojw==,type:str]",
+						"id": "ENC[AES256_GCM,data:KK6fX4HfZ4U0mpgqfB27eQ==,iv:Ef3Xk3kaZN9N4nt+ORkRBBJw9bNgJuzONlzCf6JoWS0=,tag:H2NcQMvM/ROQ2VBLLgQJtg==,type:str]",
 						"metadata": [
 							{
 								"annotations": {
-									"reloader.stakater.com/search": "ENC[AES256_GCM,data:Lf9TUQ==,iv:n8Ysz64HK1kSH9NqDQ9PvkkOh+dtUo0aEktSqi8tdTA=,tag:jEqPQvf19ivoujNmXAV29g==,type:str]"
+									"reloader.stakater.com/search": "ENC[AES256_GCM,data:fyMPlw==,iv:wIJVwZquLhR+ui8UiOINSu5mnPH77UODIj07DPY/BMM=,tag:rFVk2CdjJl0lSOqlBAQE/w==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:YDc=,iv:8IjGRxtEygTrvL0xicCival27WfNP5tCIl9EBUe2Zb4=,tag:nRcB83BUX83Th7hxn070SA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:TrQ=,iv:sHHDasmWikKKxNonEpMEqMJtILNyuRm/p0a7z50ZRqY=,tag:334It00CAYicmMg3OVYBBw==,type:float]",
 								"labels": {
-									"app": "ENC[AES256_GCM,data:d4Mp3vBzh9gAVA==,iv:e1bEx2zI0qlsk2hx93/oQ4VQH1+h2ay0YLIX+05+ccQ=,tag:FDsk4c4m6hteEckaI40iUg==,type:str]",
-									"tier": "ENC[AES256_GCM,data:OxRyWBR35ZHF,iv:tpYWXWgLL3uZtMPR0NOJQ8VHTjRNDO1CmSd46v6dXjc=,tag:EfJ3MBMqJfOFcQWy4tj44Q==,type:str]"
+									"app": "ENC[AES256_GCM,data:1Lj70UdSy7s2Eg==,iv:0rfZnRHBdw55ehaevyJs8sdHT+Oc10OcaPPYB52Io4M=,tag:GBOV4vSEjSahwUbQv8YHxA==,type:str]",
+									"tier": "ENC[AES256_GCM,data:2Lu6em5t2IGk,iv:m2S7dbz6Q8Ln7QkPfflJhuDWydxqeOAiCuy4k8rOuX4=,tag:wmzmlECcLYm5mymy+QmXwA==,type:str]"
 								},
-								"name": "ENC[AES256_GCM,data:BHRQ38S5KHqlxw==,iv:DavxygV+795q4AvaTn5fmG0PXPPE+qlLn7N5Le5OYp4=,tag:dWfcuFZL0XlNeOF3Bu1uDw==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:y/6V1tM=,iv:u6QVCQY75XQG7jymVt6W218RXvQzI5UI5xxBR2vL504=,tag:iyQZbYdzmzhYga3nMR+iWw==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:gvXDo+oqjgSS,iv:dJqLqQ4aw24bYEx+Afndh5S5PUA4ccJQMLFSVYEnHn8=,tag:+8o8NfHTyEvwfdhp4/h6kQ==,type:str]",
-								"uid": "ENC[AES256_GCM,data:yGJ69p9yyVq6Z/4MS7rkU/pBSh7KyOJt30DOVpBYjTGWMioj,iv:/MsnIEH6SgYBC3UaXCNqJ56myXg7C+hyq5A5jscUVr8=,tag:g5M8dPLlKe3W8NCQu5nDHg==,type:str]"
+								"name": "ENC[AES256_GCM,data:aGtAL2bJ2UD8sA==,iv:Lqg0hmcXjVDoojtPh8jWL/I9SSsnLdlGVCwMhZOc2O0=,tag:3PGSb/pm3U2fLsJji0wM0w==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:5t6iJ/s=,iv:TI1wf3zLPqdHy5aOfAB3+UVirt89hU71BOTTyTQufA0=,tag:t6BJmZjtzuCgmiCz0yLYiw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:xg9Yu25NCLbX,iv:R6qB3+fgVupXpb8V+QFgP8L2Uv7onkj6IX2xBgi6qGs=,tag:/TU0OJ00VMmbQ8All0SKdg==,type:str]",
+								"uid": "ENC[AES256_GCM,data:lWlZcwzb8Up9hfR3A375WwhBQQzBqEjYXD+pnPMrxDgdgKXe,iv:rRNk1WlvsVyc3A8iKyU5hX0lpqC5GFvq4sqEieG214A=,tag:iy08qnhjLkDqQBve/1WSYQ==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"min_ready_seconds": "ENC[AES256_GCM,data:ag==,iv:usdVzBTUU5y67BuVHTdHomljkknuKVJ5uzegB414aPk=,tag:CyKPTlLsFKkGxYoKVGBaYA==,type:float]",
-								"paused": "ENC[AES256_GCM,data:d2q9+Tg=,iv:Pkd9MAJwEIVWsTaBbX+uGTm1SHb5dJ6W2FXQtc0eQIo=,tag:/frsm/TU+gEZPzAPXL6oYw==,type:bool]",
-								"progress_deadline_seconds": "ENC[AES256_GCM,data:lcvl,iv:rUEtN6hoosjJ0XuB6Xy4HZtGqOfKZb/U9T0iGT+Cdcw=,tag:XqxJ4MkJrQJoOs7ykS+5+A==,type:float]",
-								"replicas": "ENC[AES256_GCM,data:2g==,iv:WlTe8Z323oLseY4511IHYo0xb4+hIGEvODfw6truPBU=,tag:fht1eBiAsNStwuXhYmmk5A==,type:str]",
-								"revision_history_limit": "ENC[AES256_GCM,data:XbA=,iv:BMA5lLnJNijXYwd1Hn420KenzATPS13EHq4b5K8q40s=,tag:2KWt+aCZC95JzYFWQvK64A==,type:float]",
+								"min_ready_seconds": "ENC[AES256_GCM,data:xA==,iv:RLjXuF5/yC6CF8HgQa5LF3+znqSdPvpWuKF+w4dge5g=,tag:NdCTnz8ypo1GyGJ8MEJtGA==,type:float]",
+								"paused": "ENC[AES256_GCM,data:8kE4GSg=,iv:feMTbd5qm8dVfME6VR8th5CRNVMJ0HxIowOSoY6DbNI=,tag:7FzuGVoECkS/GymqnJ9adQ==,type:bool]",
+								"progress_deadline_seconds": "ENC[AES256_GCM,data:cK48,iv:pbHccJo5qJHfedqKFHnAkH4q15Q6UAOFS2ZzCr29FrY=,tag:bL0JoiRuPPBChqbFzHX3iw==,type:float]",
+								"replicas": "ENC[AES256_GCM,data:6g==,iv:w4Mjzq5LFEf9hC9TS8EpHc7I5QzuycNzcgHlUOF0gKA=,tag:gTYwl0AxJwPMdRblNDNPWQ==,type:str]",
+								"revision_history_limit": "ENC[AES256_GCM,data:u1Q=,iv:RqMwM80dQb/3zSG0f6FRA4ngzLEhZ5Y1XlbnwTzjDC0=,tag:CEWM2w5f4SBI/Sgv2CZ2bw==,type:float]",
 								"selector": [
 									{
 										"match_expressions": [],
 										"match_labels": {
-											"app": "ENC[AES256_GCM,data:DCrJzpfbCL8Odw==,iv:G/TVhsCGJYoCb/ziE4w/wXX7jpkdda2cTNfh1bi0x74=,tag:lwHnNMp4Z830G7UhSjOJ0A==,type:str]"
+											"app": "ENC[AES256_GCM,data:CltJGQhsdeuVXA==,iv:SBleMNND5Bi6Y9ceJ8z2fNFqC5AayN/dQz+W6FSqWDU=,tag:gcOP8UHBKkXKtxQsAaXi4w==,type:str]"
 										}
 									}
 								],
@@ -1739,11 +1908,11 @@
 									{
 										"rolling_update": [
 											{
-												"max_surge": "ENC[AES256_GCM,data:sIUD,iv:6JPmPegd6el509KQad+20vZlUYKWNYBje/symcu7TEk=,tag:jOeiWpXmkHa3U9w/+JhL6Q==,type:str]",
-												"max_unavailable": "ENC[AES256_GCM,data:oICt,iv:HVp+zbdCElwDHrZdWtR9PctPtmi40SCLrdaw5gEs9WU=,tag:KqR1ty7JwzCERC2kAHYAVA==,type:str]"
+												"max_surge": "ENC[AES256_GCM,data:buU3,iv:JI5F/OM6Rig9oOu+bCkeo3KoHNpiC2Qhhi0pCusKyYc=,tag:vjJsVh/m3cSi9X/o3Aywqw==,type:str]",
+												"max_unavailable": "ENC[AES256_GCM,data:NhEL,iv:KQdSFb4P2pPeo1UOqU6QzVL53VSGTRy+AafbnyudPfY=,tag:pGTe24BVGprhx/qa580DUg==,type:str]"
 											}
 										],
-										"type": "ENC[AES256_GCM,data:qUXdp3mn7q4ooE9S5w==,iv:LGc45/IhuV0PT819ijrJDHhvCMf6SqNZcLiUO58Hl0w=,tag:CqwziUF+X6qkrXZLjuW6DA==,type:str]"
+										"type": "ENC[AES256_GCM,data:t2TgK2smkTx1F41c3A==,iv:pFp9N/p7FEetPIktu9MlMhLK+yHGPHL3FgngpN75iX4=,tag:Zv6GXmilNOTz4PrKVNNz5g==,type:str]"
 									}
 								],
 								"template": [
@@ -1752,9 +1921,9 @@
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:dw==,iv:NUtHaAQ67RoGI/OAnpohwLUsJ3eLES8QM/X/169jUlk=,tag:PJkhFHjzk8ebTOd8JDtcAg==,type:float]",
+												"generation": "ENC[AES256_GCM,data:YA==,iv:U9QgbSCKEB40Nof4X9ri8XXpFK0Z/MjvfeJXLESG21Y=,tag:Y1QII68NGOgQjAKEdph3yg==,type:float]",
 												"labels": {
-													"app": "ENC[AES256_GCM,data:frWRXcbSAz1PkA==,iv:92omqPSFGUZAOIXOe7wSvb/FcD/EIrK2dnyDHbuEAKM=,tag:daxTvbkiUF36e0B1OcPhgQ==,type:str]"
+													"app": "ENC[AES256_GCM,data:R6WIanLErtdhJQ==,iv:SOwVwhW50aI6o5QEyb7kHVoWlKdb8iWrrGXiJ+m69Bo=,tag:vKQfBMAxI+fJO3LUtyGv0A==,type:str]"
 												},
 												"name": "",
 												"namespace": "",
@@ -1764,26 +1933,26 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:HA==,iv:HQYAAeFcHDvnknvTmqaa/K7qMix69X9G9P3Ryz74Szc=,tag:SGuZtczD8OGyhzDsS8lXrQ==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:PA==,iv:Lr/PVPl1XbRgBWVi1/uHltjGiFIg/YL2gFlxFRWXyBk=,tag:PttlYOVdiDPX8S59k/tg6g==,type:float]",
 												"affinity": [],
-												"automount_service_account_token": "ENC[AES256_GCM,data:/p1nuA==,iv:AHZ+dyoX9NCPWmb8c/p8Hx68ed4totTG9lQLwHwESzU=,tag:O1+SsRKTXhO7IszTvpwAeQ==,type:bool]",
+												"automount_service_account_token": "ENC[AES256_GCM,data:jTWFHA==,iv:WQW/IZNgryFPxjt0wtSEv9ZokGMAbse+LN9RWf2cbww=,tag:bgACs0gHFbb0PTInh7Ozog==,type:bool]",
 												"container": [
 													{
 														"args": [],
 														"command": [],
 														"env": [
 															{
-																"name": "ENC[AES256_GCM,data:jLStTF0HMV8=,iv:4aRoRnnO+tjVQtB90BqFj/AW7EX3gaXyd1580OS+5Es=,tag:qTN5bsKJ5yCmHpwcIuWmvg==,type:str]",
-																"value": "ENC[AES256_GCM,data:fGfMAD8=,iv:tUhzHMVDJiBjGK8aXP6Ek57ywvO61zergaX94dMfEh8=,tag:RbXvCgloHNB8+0V4SiQ5Ww==,type:str]",
+																"name": "ENC[AES256_GCM,data:vgNUIALbc+U=,iv:QB5vpKoEiTTN0lLiXLyCbcGHULWJEH5A/LMTbUvoK1k=,tag:C5r78PLIwp9khy+7mbYOdA==,type:str]",
+																"value": "ENC[AES256_GCM,data:R7FUP4Q=,iv:4TCtphgnEyXmxoiqK/vzSn+ti8jOCDGR+MIgonZYWLQ=,tag:L0ZPU2kbF/Qu2vp9CJ2x3A==,type:str]",
 																"value_from": []
 															},
 															{
-																"name": "ENC[AES256_GCM,data:kQls79OZRGk=,iv:dpzHPh2OLmFJd8Bss5tTssLEKZ5WGQzQMVnulfTAtTE=,tag:srZiDSkkAzwThzt357pz3g==,type:str]",
-																"value": "ENC[AES256_GCM,data:AUoIeQ==,iv:I/Awbsm0XtJDwaiHseiCOhhClw3rDVIjiAefGLuoTcQ=,tag:A7pEsF9N34HSD33pMpWnqA==,type:str]",
+																"name": "ENC[AES256_GCM,data:uvDJMPmIu+s=,iv:WoloSSKFLAjkOxE89N2SYmC6VDkhiYbQ2SZqoadf+Kw=,tag:3rhtXHuSJ7EmHrBKJ8Sslg==,type:str]",
+																"value": "ENC[AES256_GCM,data:6+NXug==,iv:v+ZUx4pYT93tZhNnkPrjmMYpfl7deSfgfoc9SgksUHU=,tag:0V1Na7TZjLehz0Sh/mR0Ug==,type:str]",
 																"value_from": []
 															},
 															{
-																"name": "ENC[AES256_GCM,data:wXYY0BLO/ONRxZ7x31eYjWZ0fw==,iv:tLaE9oZ9hXEYZhadBwektqgHkzjnHAxXT9O4Rwx7g4g=,tag:Ig+YUbqe7q4GF31IgixRNA==,type:str]",
+																"name": "ENC[AES256_GCM,data:3nSzGP6iSGF8rs14HJ/oSJH8/A==,iv:nLzSjRC9rU2E04YRxRrg6I/YcJu4/krFtx9ZLGU1UWE=,tag:txJxy6pcKM6qdm0hY9k4Dg==,type:str]",
 																"value": "",
 																"value_from": [
 																	{
@@ -1792,55 +1961,55 @@
 																		"resource_field_ref": [],
 																		"secret_key_ref": [
 																			{
-																				"key": "ENC[AES256_GCM,data:CT84K34O9PnKYvrXuQ==,iv:OxESjOZj7JJRIp0ms78dszHhuNeqiEIixKrkUlg0S/Q=,tag:VwIr5J6jdb9hTvfoKVDafA==,type:str]",
-																				"name": "ENC[AES256_GCM,data:i6CUcOdMrIsyEfq7BDg=,iv:tgWnYVfL9s4/Hj/nv2ov94STIJTxoZjdcGrWJzl1ENc=,tag:cO0gWUSnEgT6avPSdpDI2Q==,type:str]",
-																				"optional": "ENC[AES256_GCM,data:ojsBbEs=,iv:BGtpPPBv+QVPgTVhBiEptDGRTTOFM5SZ0JaH8t1HKWs=,tag:6vuBDII3fF79RcEjQRa+wg==,type:bool]"
+																				"key": "ENC[AES256_GCM,data:ivk+UTCiNIqG/TOksQ==,iv:DSmNtk9PbVZ31ywASQC/H+PH02pqQUtI1MiriwUqWjI=,tag:Vp5O4pYV2dcehTdhs7HSAg==,type:str]",
+																				"name": "ENC[AES256_GCM,data:dkQw4+krrsPwx/M2RhI=,iv:+SmFP+KdAjzEqZ93f70O3KIksVC+KpReOKuzgkBUKBg=,tag:BJAy9v5AMqLJ0kel+jbX/g==,type:str]",
+																				"optional": "ENC[AES256_GCM,data:sn/zyqM=,iv:OZcX+BSMIJY8DNXBpc2UKTYGbXrfTB40GO8naJLUmW0=,tag:VFtc4E77ZWjycnTjVh/eyw==,type:bool]"
 																			}
 																		]
 																	}
 																]
 															},
 															{
-																"name": "ENC[AES256_GCM,data:imIjGselNmLpnvwB,iv:u60pd/YvqCJgtg9ExRPkain/qOmFSzst7l8WQVOOrh0=,tag:xVwuJZhOI7TbnZs+L0mU/w==,type:str]",
-																"value": "ENC[AES256_GCM,data:OAM+bw==,iv:NipZvPyEWQooffjZMJQtCYcbssJQy0FGsjAdAbSKHvE=,tag:eK6J/koVICX+bJ8wF4lPCQ==,type:str]",
+																"name": "ENC[AES256_GCM,data:vYlGiEyGAuB0XZBL,iv:wPRYRCqjPcVN0sh+vkFvq9AgMAYewLTgOmmdSof69zE=,tag:clNM3UlK36ZliWlioS+e1A==,type:str]",
+																"value": "ENC[AES256_GCM,data:5WMBRA==,iv:DKqRuIYzK/D8/gM9bqS3R4oC0qSDZPyvzMm5apqh/qs=,tag:Bmg92ELIgRjZVR5sIYNVKA==,type:str]",
 																"value_from": []
 															}
 														],
 														"env_from": [],
-														"image": "ENC[AES256_GCM,data:/bCR51g/+f1L+phT8pgyxYo66lK8AJtESuma,iv:w5H4M3H3f4foyRQhQOC+hZVGKRe1pDbYGjtuduriio0=,tag:BXU9t8WzzgocCfA3A0zwKA==,type:str]",
-														"image_pull_policy": "ENC[AES256_GCM,data:bSc0GyuvwU3lQ72O,iv:Fpo4RLRpaZFXAelZeHJjfkVCg5tJrEsyaOImCkImBNU=,tag:15wkpreuVdSvuEA/BnnF3w==,type:str]",
+														"image": "ENC[AES256_GCM,data:hXHR0UbIO8QAwNe9RRcBXOFxaEyr9pXqDOwR,iv:zv/qTpa5w2kwSWDztuB6d3K/9jeFuhrQUbHyT50l60U=,tag:UReye2HPiYylbhxDV/xG1Q==,type:str]",
+														"image_pull_policy": "ENC[AES256_GCM,data:wLawNBg+VPS3+/L2,iv:cRbWG/ysIgzpoMlm7Ue9Db174Zuf8veusm9xG6h1i1s=,tag:WmhWVQpNXWyewtsg5dbv3w==,type:str]",
 														"lifecycle": [],
 														"liveness_probe": [],
-														"name": "ENC[AES256_GCM,data:VQ+AIUnzn6ezdQ==,iv:RgT+qrvmrLpYL+SCawumXY6g9+dElaHz1GlsapVsmJg=,tag:cZ9ztuaQzByVHJ9AxZpDPA==,type:str]",
+														"name": "ENC[AES256_GCM,data:zzB8Jdj2w/p7ug==,iv:N6yOSvqRgkcrst2EhufFpjyRgmuQs0CoRpz+NtO9kNo=,tag:cFGGzZco8NLraskcWWQ0UQ==,type:str]",
 														"port": [
 															{
-																"container_port": "ENC[AES256_GCM,data:9Z8=,iv:FOTb8Oo3qoBsc7HZshcWmo0tcGNofR0Cetlf/ZYPtco=,tag:tMwFZyvopofwCzk8LTyGBw==,type:float]",
+																"container_port": "ENC[AES256_GCM,data:ryM=,iv:Ig/RhJRCzmuks933i/Nf+3HtIJHD7u//nclI6RsaLIo=,tag:FFpJNRxNTXQ7sV/VDR2xLA==,type:float]",
 																"host_ip": "",
-																"host_port": "ENC[AES256_GCM,data:GA==,iv:2DOVzLDlQql17iTM6WxVZz3P9PBZN7ApyVi8Kn8l0/g=,tag:6p8Nic/7r/SP9yB/LtZqKg==,type:float]",
+																"host_port": "ENC[AES256_GCM,data:HA==,iv:tJgPguhSuMsZlTtNxcLNuNljd44/mqY7epvybyZ7MIQ=,tag:3oKZZKMvJxshNXzv/U00XA==,type:float]",
 																"name": "",
-																"protocol": "ENC[AES256_GCM,data:4yp6,iv:p1M+zMfSqYXEDfLHgL4kue1qwwtguq+Jy1s11H1IBck=,tag:T3DKkcYSWYKOXzm80SsKKw==,type:str]"
+																"protocol": "ENC[AES256_GCM,data:fKDQ,iv:uqohiffAUP+oDtjWsseC0Vgc+LDE+5gsCXTU8lDGqHc=,tag:laTmDcsZvFOpbsYVNCOKIQ==,type:str]"
 															}
 														],
 														"readiness_probe": [],
 														"resources": [
 															{
 																"limits": {
-																	"memory": "ENC[AES256_GCM,data:c4fF1Dw=,iv:MlL+/cBdWvUXMVo0l5JrGGi+0looQcCU/ep4QlP6uQc=,tag:69ZACOQ2zFQBzaHvqUqQGw==,type:str]"
+																	"memory": "ENC[AES256_GCM,data:gIDBot4=,iv:+5j7gblMuEt2qQ9aUrrspSyJdivdgI/mNN2i7wgBF40=,tag:gAsPsC7v/FaPjlyO48K/sA==,type:str]"
 																},
 																"requests": {
-																	"cpu": "ENC[AES256_GCM,data:3548,iv:HgBvZQq+Is2V4YUnoFXLwKrddGKSeWFV/qO9CBHsq+s=,tag:V2bxhhSZYp4ezc5ozVdHCw==,type:str]",
-																	"memory": "ENC[AES256_GCM,data:FT6Jpes=,iv:h+IVNTFH9Fh+ZG6s7b/thh+TYwt9LLaOqu0Dyllj6J0=,tag:m6SJ+V/paFVmGCbDPvqTIQ==,type:str]"
+																	"cpu": "ENC[AES256_GCM,data:Jhnl,iv:oqN6keyg8AxV44BpqpoEZR7alNATaxLWeOuWBfBJPE4=,tag:ytlDcoWz6zsCuc3MMj2Khw==,type:str]",
+																	"memory": "ENC[AES256_GCM,data:tiicf1Q=,iv:58xsZ0+DeoxcaBMExgmBsBbIMU2ZMeyAbIeo810tsW4=,tag:VJPCS/YMBHJ9a8ZvUFBiNA==,type:str]"
 																}
 															}
 														],
 														"restart_policy": "",
 														"security_context": [],
 														"startup_probe": [],
-														"stdin": "ENC[AES256_GCM,data:aIs9juw=,iv:BcH+keRH2ZMbAujvsI/RJml+TxeJf5IjHF99agPYdy4=,tag:cudhz35uuRQw+iP4gCDQ2g==,type:bool]",
-														"stdin_once": "ENC[AES256_GCM,data:SWzHR60=,iv:j8kR3Og8+q3bgXriIGcnE53Mhke2zwo0yAlG8I9zn+4=,tag:t8rJoHfdPukVPEwzyWAuhw==,type:bool]",
-														"termination_message_path": "ENC[AES256_GCM,data:YfD7e0tbJE3ZgnLWB8y6notpybw=,iv:j6dh4KDuEw7NRX9eYDKFx6hY6liL29DMDwRcOrzeKkc=,tag:23sxoaxwf3inALNEeNEqzw==,type:str]",
-														"termination_message_policy": "ENC[AES256_GCM,data:WDrnbA==,iv:tZGLvSqMcTyM1J66rio/AGC5cPLUNGg9d/7eKC7c41A=,tag:MxHqLPHplTl7b9XWZaaenQ==,type:str]",
-														"tty": "ENC[AES256_GCM,data:B8Cr0nI=,iv:3f2slQ+zKCdL47Xnwlz4pjTWiJMB0u+PWbFgyDySBXA=,tag:361eAkvXyInC1IQb8cRatQ==,type:bool]",
+														"stdin": "ENC[AES256_GCM,data:Vy37elM=,iv:6pFEei4ST2e94G2l+3fxy0+Uwmb58WEM9mpRgXjl3+I=,tag:865TNfgo+HIGeHPAVlFqog==,type:bool]",
+														"stdin_once": "ENC[AES256_GCM,data:o8rdSuc=,iv:U+ZWEUtMeaDMG4BolAZeQUNYRlc7KeZfaGTb2uBzC2w=,tag:bWKy9/g7BR7Twf8KK13H4Q==,type:bool]",
+														"termination_message_path": "ENC[AES256_GCM,data:o/cMGnkID8ReCs7FySlenRl/3+Q=,iv:eQKug0LtZNf4xMfVDDau6B/0NJQPT27Oh21wDBt7R60=,tag:CTuhLOocVIaP+3WbYgSIhw==,type:str]",
+														"termination_message_policy": "ENC[AES256_GCM,data:URzhNQ==,iv:8y0vKu5EwEFO9RHQ0CkLceUTNK9Zx2FrikkTVQ6tp9E=,tag:QHZXVGO1aJVuw8l65n+wow==,type:str]",
+														"tty": "ENC[AES256_GCM,data:WQLdg+8=,iv:bxjIoAec1d9L3mvRhBJT1oB0TY8vVyFTxF+yVhvKGgk=,tag:g1YRJ4mFF2EstEljLHKuXA==,type:bool]",
 														"volume_device": [],
 														"volume_mount": [],
 														"working_dir": ""
@@ -1851,19 +2020,19 @@
 														"nameservers": [],
 														"option": [
 															{
-																"name": "ENC[AES256_GCM,data:jzFYZ7Y=,iv:7oWOIW8J4VOUmLwoNFSpsTlH10mIcxfc45yv6DjLhfU=,tag:pvxdTO6Fs8yaZ6XdCcpUZg==,type:str]",
-																"value": "ENC[AES256_GCM,data:+Q==,iv:8LKuULdMZc7aRkGAMILafprSY9OcGB6v9bXsj6omowI=,tag:9c9S9Tfnit1Akh/MzuPAhQ==,type:str]"
+																"name": "ENC[AES256_GCM,data:w7WI9H4=,iv:vpN5q0RgpCavBQDhJthD78fE2WErVvS5D4u25D9i8z0=,tag:JnmytLCIhrmBQSjHjMIwcg==,type:str]",
+																"value": "ENC[AES256_GCM,data:jA==,iv:P1Vbl6o2BWX5ajqX4CWB0yNrzuFTwMNEtIHSpKCPkps=,tag:8pc1oiYXiQB0t/Ft+hwDaA==,type:str]"
 															}
 														],
 														"searches": []
 													}
 												],
-												"dns_policy": "ENC[AES256_GCM,data:zMZTucjTfpwYhb6g,iv:Tq07Eh9BnyDpvAKETRoEITNBvnf/zIMPJUSHVTZxwoY=,tag:7xeZMH+7G6KwEDOrKrJC5Q==,type:str]",
-												"enable_service_links": "ENC[AES256_GCM,data:IH5EXQ==,iv:tc76no4Xmiv+Q8MuFXHdSHygaxgkr6zH28U64OJKLpk=,tag:ck2LIzDEvyIC8DxAzOD/8Q==,type:bool]",
+												"dns_policy": "ENC[AES256_GCM,data:L+ktvagAIK/C7sy8,iv:Em7gZ5oBjgohUTegvABTBlt9Topm+V1JWjyb7azQMUQ=,tag:zeJ94wWNu1BCHNKv+JTSKA==,type:str]",
+												"enable_service_links": "ENC[AES256_GCM,data:gq3P7g==,iv:jDWg/x2aBNsDVtkoTCVMn6ujpqFAp/p9m6iAj5v0sZk=,tag:LQ1Qat22ANUM7PQpHZ+npg==,type:bool]",
 												"host_aliases": [],
-												"host_ipc": "ENC[AES256_GCM,data:OzCt55c=,iv:CMDJkO9GCGaC6NjAPDnIXACrHFWKk2/ahgCQk/50ByY=,tag:up5MSnN10YR+jkRn/AV1Ag==,type:bool]",
-												"host_network": "ENC[AES256_GCM,data:hV+LfRc=,iv:4hmlvUxRnU2ZA+b9A+1V6Wf/PsP8iVxBDCPsj3gjGmQ=,tag:7pUY/OWalOaD2utcuJEx7w==,type:bool]",
-												"host_pid": "ENC[AES256_GCM,data:Q2IHzmo=,iv:njb+wYARrGmZYnHVtDSBqfvLqIdG7JZ2YbSleWUFov8=,tag:B0AyUKgukissretMJrAYUQ==,type:bool]",
+												"host_ipc": "ENC[AES256_GCM,data:xsSmhnQ=,iv:oEF4BIyyoJMC+MJuWJE1PLCcNG8Y2v5wtvKvZidb0hk=,tag:BiuNJaw/B5bVIDLZnVyFSQ==,type:bool]",
+												"host_network": "ENC[AES256_GCM,data:T0dwpaQ=,iv:bDSgiIFfWz/+sRGQLa6BY4k+gBIf3FstI9fs6StGK5w=,tag:W00PluXY+ZLKzW6jm70Qhw==,type:bool]",
+												"host_pid": "ENC[AES256_GCM,data:Vh1aCqo=,iv:IjmDGrX7CLev+idYlUyCFUlqJwtOfaLK7tJDQxh8eY8=,tag:KmtGJGyV5zsKnXxEWzVQ4A==,type:bool]",
 												"hostname": "",
 												"image_pull_secrets": [],
 												"init_container": [],
@@ -1872,14 +2041,14 @@
 												"os": [],
 												"priority_class_name": "",
 												"readiness_gate": [],
-												"restart_policy": "ENC[AES256_GCM,data:1ikeALhm,iv:/fAUHfhZx2ha0vQyqosbZU+V5+lexE722R5pll+adzM=,tag:0eeJ0qLFWK1FYFocc7UKnQ==,type:str]",
+												"restart_policy": "ENC[AES256_GCM,data:5YQaPfFh,iv:RyuRKKyaADaify2mgtxwElRiwcp1sbzajKJfxRao1AM=,tag:ICwYZbuWzIlbdkzkvfOEiw==,type:str]",
 												"runtime_class_name": "",
-												"scheduler_name": "ENC[AES256_GCM,data:mMzTtKT2/0urYfn7iWWpk6w=,iv:OoRooG+2wW79NRnHjlT+fUToXsAfRHpsmAiX/KSoxv4=,tag:sDRvZ2AAWM/xQ+lrr3eY7w==,type:str]",
+												"scheduler_name": "ENC[AES256_GCM,data:92OJemWCeFvziLXP1fv/IIA=,iv:oQBdnKe1yxki1AlpoJI0o1NW5AMG+bmXKjugRKF5wdo=,tag:0Kq24psJo/lHdArgCgvwgg==,type:str]",
 												"security_context": [],
 												"service_account_name": "",
-												"share_process_namespace": "ENC[AES256_GCM,data:Il/jsTY=,iv:9txkP0LH18QwWRB4DWj3pdQ88s/sHGdRYD0DBQENvc4=,tag:rKItRbzgaKK6Ixfn7o+X8g==,type:bool]",
+												"share_process_namespace": "ENC[AES256_GCM,data:toJE950=,iv:JZxGrgmPjnTRwS9b4yKQ4pp7EHY8brhevTRAgFxQjmc=,tag:qtRwMYHWIBzOGkCf88o8EA==,type:bool]",
 												"subdomain": "",
-												"termination_grace_period_seconds": "ENC[AES256_GCM,data:Ih0=,iv:zrvgw1faf/iZTe5bYWiheMWTqhQyh6GWTYU8vDDQl7Q=,tag:wNxO8EzjR9lr0oWj5StUPw==,type:float]",
+												"termination_grace_period_seconds": "ENC[AES256_GCM,data:XFM=,iv:sVNfHKt825g05r+k+2EeFWqv4gGJEaihKEXxYkW4mSA=,tag:d0INCTTCUDr+SYcUls70KQ==,type:float]",
 												"toleration": [],
 												"topology_spread_constraint": [],
 												"volume": []
@@ -1890,44 +2059,44 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_rollout": "ENC[AES256_GCM,data:raSoGg==,iv:A7wkPylmA2OoK8BK+SHSPzVM5JpTWp62qyNbUevBZBk=,tag:ElMx3PXTsc3Gi70WHHS14A==,type:bool]"
+						"wait_for_rollout": "ENC[AES256_GCM,data:Q6cA8w==,iv:epggpc5G1YL0D1cvIkUqM+18BH9wq9Iu7yy+XILz8b0=,tag:PAVv8hAuD7hqamyWPeSXDg==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:CA==,iv:vHAChje5LSnonNMzWQqF7hvsi3PwgRZLF+m0DX08/dM=,tag:shEpO2h6MuYVqmmeutHCYQ==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:0A==,iv:QXjzraxU7f8zTpacGZeSITGIF3/7LsMfHnWrU9kDSys=,tag:z3XRNuMYK4rccbUyzkFWDg==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:mJhpTHQZMg==,iv:ynRvnVYgC9H3N/DmqS4sEyz5XtTvD5W2b67G53qmEZM=,tag:TE4lMggw0tJ6yjhIWClmYg==,type:str]",
-						"kind": "ENC[AES256_GCM,data:mRImCgFd1bWbZQ==,iv:P8MIMz5TRf5AgfBB+cdFcu8/TrdcE4kc0nuxdZ2WoAQ=,tag:sYLpypeCmXrI8qAMXodfIg==,type:str]",
-						"name": "ENC[AES256_GCM,data:rTTP76YZAO0p9Q==,iv:brCleWmGrTw8BlQsA0xo/n6V8OhgcDTgClaVw9ghzus=,tag:NIhnP0ElKSXJDqEO7TxL5Q==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:xfo4i4E=,iv:/+ltyz4ldo28NeT2+FOHCePJc1ZPAcXx1a5CFGnETk0=,tag:+MOkjHhP5WAV6ljoQ6RQ1Q==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:GxNYBIRArA==,iv:WuwphedAtiALGZF8ms3k79sEoshqCJ4Qn6xkzDc+x9A=,tag:5+lGds8s2tCdzlvlfosGeA==,type:str]",
+						"kind": "ENC[AES256_GCM,data:Gdgg1Y4QDvJg4A==,iv:I2iF6qqahByW5x2r3orJJnW2BnDqha67tMYz8+ZiKLE=,tag:Sd7Rik9Rbsr5+bzK8QtLbg==,type:str]",
+						"name": "ENC[AES256_GCM,data:BTnKNUKcMOTSLg==,iv:DdjIDtB3LKTmKGIpoKvqNCgxcArrkEH3kT5rKIfIfhk=,tag:q0FbZdHcKLLnS3ixsJn/rw==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:rJhPDuM=,iv:mqWj2q9hjHpADqTGvekTkcJuENRnpxBqbEh9TF/HCPQ=,tag:+XAyteIxuL1UusLAjgYUcw==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:jUWsVoIQYhWNzZbpESXuVetRmzZBOqvna8+fWhwrfm0mzn8L/gF5V8SsttlSG0yfNSVIGhWddTRJR6P9bgReSv26q939yfEp0BOdV4QtkcXNKOSxfzLje8o6TDWHCZQ0fBDVUqMg90PhHZWzH9yGx0V+H8cU08SKUvGu4Pp8CybgguXmN7VlRSOCzivku4csI6hY8B4R865TT/G5zDams+2m1JyacDpKtNdbTg==,iv:ltC04YgbiqIANUzkNligTlwb9RUh/JGipO78zmDENz4=,tag:SZ5VK9gbRK5hqNLCrJIcmQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:AgI3qzyDzmhcd4MZcU2IgNf5lYVMNv8yB19vvOYVPmBKSQcYG7cdD4cIHC39ECiuAHh/Knt4WP1yB1mwpNSKOtRIrYlWLQO/a88huQitlA242XJmTWDAVtxPI1Ssjxc76XqzHlguDEHEAThLlVQy6kKEDbkKtdHAS62fVxSz32sAIXIS9KVmATiS3CSRRK0k06Kp2XLn9oqiPo+AciApoQYHOK44nfHwlwFu8A==,iv:KgRdNFX9yMHfUOoRWxYpXtZeTELh5aP6Xi49afT6yEc=,tag:FENm7UH8M5QrbBzvxWYVmA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:/xSva8ESXkHC1DCj8RXKz5M2Ut8QzgpGlBPOe5j6Iy0GFrb0XqqT,iv:CVFknB0ki3NA/zOg5xwqxN1/k1WisBOcNQcVnwd862M=,tag:i5AYJ7b6RMfCzhnJ9AjsFg==,type:str]"
+						"ENC[AES256_GCM,data:qAI3pUGi4z9W22KfpdS9a0g7sp0NoPBUdl4S72i9gF0bMEuEKHQm,iv:xGu1O8nF0O7eRVSiOBnYA6rxm4qLJeyqZR1A1RHiYVY=,tag:5U0pWofIkLPBCiUjLrYolA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:P8v9G+ySwn7nFD3L,iv:VoQQeqqmMI7wP9qmfWVGyji8R87lNZIuLvIqc3pUfHM=,tag:FE4u+juAfeRrMwAJAUVH2w==,type:str]",
-			"mode": "ENC[AES256_GCM,data:unXUgRINqQ==,iv:FutLjHlYQSwezHrV9oavE8hyMZMmFe5WThK4Dmgm2o8=,tag:AjP7XWL/K8vX1QxLF2AqOQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:El6MPi70MsE+ADi96zwGHopFZWVyaw==,iv:7QIZS2/qqzVXSi2UULZLApLk0RvEtfGx86tDM7P4wC4=,tag:b2clTZo7X/PRagvViHnKVQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:plCF09Y=,iv:Yr7R0++v4DK7kXUSyRPKNryIAhJfPqdU4gzhQZ8L0Mk=,tag:jRXuTPvS7wOV0aUrEf+GCA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:yxlQXVx9rdNu2EI0Ym/7o8m0a5z4QEJEu8I81lEhGCTL+yE31TI5a/y4B5lTAJ+h9/ei4IQM,iv:gBzhYtnCcKzYLdPIyu9n6+5BQxMaIX2mFc+3EXkvlo8=,tag:S/iqVajUWBVihmfMInGzJw==,type:str]",
+			"module": "ENC[AES256_GCM,data:f9Uc3WTwg4YldcHn,iv:noC/HUc02+P62VWEx35WbxUVQSILVPgab0OtARJNdfY=,tag:U36vaBDx+nGiiU+5SAf9+g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:ZQy6p2S/NQ==,iv:RjVrWqjh9r23zdi/0aXCQ8OiSoSkP6mQ5rudkUvXjrs=,tag:x80K1xrZejzELsMtqFUfaQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:G9B8KUjLj3cZqPioS8l2OJF4uWEjTQ==,iv:YZfdTAidgZ8x3Vb/9hS1BlzdNwf2y4XEFcmaiXUTqVM=,tag:u33Hydde1Tl1mTd2W+3jjA==,type:str]",
+			"name": "ENC[AES256_GCM,data:W5jg9/I=,iv:1WClQQ7dkwzxhMkE+hvDhBW0CaQk2/s+t1DiwBgnyPM=,tag:7f/JpKWccdPNhWW+aljRJg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:GAT18m83948DJ9XwDc+a7xue/mp6StXHtQJ1S/7J4iTznxG9UpxVCkcZmhHnHgAYaprZPuZg,iv:B2+vr0HycnvQKbV47cJTOGLksKVMpO5IYiLOEgf6P6k=,tag:oQlXuGqHFh3ISdY3fKk5XA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:vQ==,iv:7ZcvOtYC49HumiUeePU8OwEa9tQPq71TON7FPLuXZH8=,tag:o5IvvvOInBqdFeuSHQRbyw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Tg==,iv:IEwWF6iMfZmVmdf74KqYKg37sqxBu33W7n37GrLjisY=,tag:62t2S8iAsB+QySddyCaZGg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:zkqjGX4BggXGcnV3lbdmIvGTQg==,iv:kBUbUEK1lIMYhxZYB8hpvPUY40nnqPsfFOrZnv7PoPQ=,tag:ivsarAUtT8uvVgPBgxyazg==,type:str]",
+						"id": "ENC[AES256_GCM,data:0lj4Hjt4XYwbsmxmcCvApV0rvQ==,iv:7RGos6jW9h6AYHi72KHJew8keAa6fADtIANciQobGqY=,tag:kLnbVf8DJ4WkX0FDOuxCiw==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:uQ==,iv:FlOBMBtkZgsOjcwvp764wri4IpLzvqQtidzk8bTy8X8=,tag:bK8neJSPnTt5h2JJcU6Biw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:oA==,iv:KT2XMpYGn9tFNJTGdu5eLtY5fPgr7ocOBja+0o+Il0o=,tag:7skDjupppQodGzvOQsr1Gg==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:l2uMAhrCCqIgVWBrUg==,iv:ZmQ6SqRv7z3FREc3Qn1cSH/XlrPe3fU+Og0phtUsBOQ=,tag:zIkjdi9Mt3uIBCcgJmQxTA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:9d5pzvc=,iv:SRaOgYJCBqdhaHcENAowVE6tDZ1bCSQ2VorKsihv0Og=,tag:6ZUjT3+GingCObI4ZGFhTA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:Y99nWMeG0kr4,iv:zaRBj3XPnL5G1QtJUXSOXUcyrdSdZdK5DmPDmk4+Gtw=,tag:QhmV0twXwbaUiiW5f//7fw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:rzVWVM3R2HJCrYYS5/GnQxkpiv6TNVJgo4gSSqioBoAxGRF6,iv:bIjbMMBO5MCbmkbIl+bxDnWkwX6SqBcqH50SdXk4Qbc=,tag:JZYzTdDItd3aX+1RSG4Fdg==,type:str]"
+								"name": "ENC[AES256_GCM,data:4TRuztufRe7jzmGJHQ==,iv:fcrXj0fQ7Ke5aiw9m5qXIV9OrxC5NzJXH7aVOHBohyY=,tag:VWs/iV/NiqIeLpL31Eu6sw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:F4dS+Ws=,iv:VXnYmXqqrXPhxXC+yw/R9CPiioiTMNrTRoe8F+mUzxc=,tag:z73vQ8cAMQxQzwGnILIqQw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:hd4/bnxVz/8G,iv:oA0Ek2vMpS6dMh+HCE13FyWzsjHHkRu652MIJy/coUo=,tag:UOac4XsO0lO6Relf9VPrCg==,type:str]",
+								"uid": "ENC[AES256_GCM,data:ul0V+StD3weLs0B89KgR/JSc2uTWoTxXKKUgomy+dcdr/fMx,iv:QjXnc90IvIu5N5WelLR3W0k6UeobkG556BrQuDJoxD8=,tag:vVOuWbalaCGEqgYqCjynQw==,type:str]"
 							}
 						],
 						"spec": [
@@ -1935,159 +2104,197 @@
 								"limit": [
 									{
 										"default": {
-											"memory": "ENC[AES256_GCM,data:WsP+zaI=,iv:oSmd21iEkbXvFo5Y5A6eeul/oCLW4m98GY/u3QxiwKw=,tag:evcaruUVg8R1utMDxBgYCQ==,type:str]"
+											"memory": "ENC[AES256_GCM,data:Swl1ixU=,iv:5ZKQ4Sn7H8FOnjJEbinwAV3cnP3jfTViwCopv7PnxnE=,tag:GzKvvAUOrdBjNju6wfWeFw==,type:str]"
 										},
 										"default_request": {
-											"cpu": "ENC[AES256_GCM,data:650L,iv:ylzvvBnk0V5/N7YsuqK279JoAI0UpG2vPjRsx5vnroE=,tag:KDO5yBHajSUulaQAh/JXfg==,type:str]",
-											"memory": "ENC[AES256_GCM,data:si43qwM=,iv:z9ei+2Z2ne1TDctjyY2X7JYoXWm6m97knaOXXptSpAc=,tag:jg+2jr9fZ2LgPICDcPNGlA==,type:str]"
+											"cpu": "ENC[AES256_GCM,data:UScc,iv:h8Jaj1qtvfgLXS3uKm60DFlYeIv360l8slBBbSfduYI=,tag:vtyMwRXqTOkF8LwNL2ShxQ==,type:str]",
+											"memory": "ENC[AES256_GCM,data:ydMlOzQ=,iv:vhhTMe8So99Oeqi3/zQjGd+Txpwbh0O0ymk1yShgcZ8=,tag:uuZ8eEBp243z/B4tXzWHzg==,type:str]"
 										},
 										"max": {
-											"memory": "ENC[AES256_GCM,data:c/xC,iv:aDNpYhIP7aT3O7YQas8FF4kCalr2MgWVCXCn/fprT7g=,tag:JtCwwabWXmCJiycdm7WiuA==,type:str]"
+											"memory": "ENC[AES256_GCM,data:JMLO,iv:ERKfCKMxA2uNq3CI4MCjB/cQ6YxoPX/iKaj+qOdqWXA=,tag:5QAK5GL0MZGo9lBcrZPTiQ==,type:str]"
 										},
 										"max_limit_request_ratio": {},
 										"min": {},
-										"type": "ENC[AES256_GCM,data:WK1HC+vzOpq6,iv:0YNhLxmGGrVGS8lMnVpOBpLd2UZ3HQRqq2Lz4j/fJqs=,tag:Zd4tRlOzj2WnKqqgt91Fqw==,type:str]"
+										"type": "ENC[AES256_GCM,data:6pbMlfJ6uCdO,iv:PTipKsqNbJyThGVhZ7A3azxgBUOQEcVLNyuX23g0Xa0=,tag:TLF50LrI+9mZwKAjFlv0KQ==,type:str]"
 									}
 								]
 							}
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:xQ==,iv:A0I41MtqNYE7kiKUI17MT/OsfZPIEsEqtQ0ybXA4ZHE=,tag:Hnxop3eE95rZm8D4JJgXiA==,type:float]",
-					"private": "ENC[AES256_GCM,data:yE8yECJWyqI=,iv:uElpKlhbdB5GD4f1isUcUlYYED5R+W/Pvm92ZK9NP9s=,tag:qC/QTLk0tmOm2IslmsZOqg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:iQ==,iv:aQS06Xj3wrxQhm9WMjSZXDLdi045FA6bcaMPsTX41iA=,tag:jTPxroEPbLLRd/fjWOH1Zg==,type:float]",
+					"private": "ENC[AES256_GCM,data:yPjUJ1b6jbg=,iv:gZKTy++f+D862JY1cEThrU4krZW5Kq+Ud5fTAtOVMJs=,tag:cEhL2h179+dkeW6N8NksOQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:RoceG9Nt8WTH+PaD9TANnxcIVsm2o3FaZlqsMaVqz1GsNcPacWM8,iv:H4gyuoAKm7Ixv/QXOA7VPdukS7eZ04spSMjyfToyzlY=,tag:l+axDFjkYu3gZcwVUGO8GQ==,type:str]"
+						"ENC[AES256_GCM,data:jHbWMMVe7URIztTmz9FMUL7TWDEbdZ43Qu2aaD2JUzpMXFnarVxG,iv:zDjihRXDYcuiqQwCkDhT5R0xXkaSDUBWlObqbFnvW7s=,tag:kgDxg0T7nm43A95dwAMGnQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:MZqinNNwxhhcSTsT,iv:wL8vhPFYzGv1E6IjWTye3mKLPkm3AP+9AHzUbAym4Lc=,tag:zJIDwOGCjsZb1/DdzwDk7w==,type:str]",
-			"mode": "ENC[AES256_GCM,data:rDbn3U8IcQ==,iv:yBlWecODNMPLHy2P+3a8X01nguQQtjXh50NZFqthAp8=,tag:RWS3xcL8vtby9BCKMA6dpQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:qIdF1BqmDLGQ7xHATOLgDN5arYY=,iv:k2i72ZRYj7i+/Bnmqqa5G/4zWWULMaLsfpf7sXlNk9Y=,tag:zJ/2Gz5W2fP/nyEzqze7KA==,type:str]",
-			"name": "ENC[AES256_GCM,data:68lKDd0=,iv:0lOCwymmS8vWVKBU8o9a48i9KOmgJZfHaS4GrNd0w14=,tag:Yjb2YPhdIedOxa7hB1BiSg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:O6fdnk25aJSl+wBGrU+ei99vK8g8/nHgRGL5Pm0BOf5SrA1uS+6QVRaxgV6R2HrfdMHwiBaw,iv:exE6ks6qUy+7dv5dWWenQE8VRyOVM/ji/I69LYgHnnY=,tag:RAoDi/W2T6+Mic/VCXZGeA==,type:str]",
+			"module": "ENC[AES256_GCM,data:UoofFlJIkRbeaStA,iv:9YUvVrTMaT1xvK5feih7qVAmWirBDUV+zvk/0NW6nrE=,tag:ut/cs1WzkeDocTvbPFRujw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:373ol+8eqg==,iv:7hNPi62DBZZq5Ua1kQG+WjEhXzj3kIfJpG5X40Jhb1Q=,tag:R9SCZ5irzCaOwGQG+swCvw==,type:str]",
+			"type": "ENC[AES256_GCM,data:E8ctWpBNT0URW1jWA/KrR5TRI1A=,iv:UFQ6qqiAKcR/j88Agk+ruaPu05eMZF0sTML92lOpHhk=,tag:WUCLRLWUU6GNLjo9rXErrg==,type:str]",
+			"name": "ENC[AES256_GCM,data:LT9jVhE=,iv:AF3KwMkTnP4x5lnki74hCTjRwlSNeVKMS+wExUg/dVE=,tag:rN2wBfwfLyik22nlH3M0yA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:M4mOQoSxBVxSg9v0ex75ONDijbWhvvIta5p6UJEEPVjkEAz/GczReMh7USG5nyLu7eCwwUPG,iv:ztL8k9tV2ConWSujjfgp1f0GcYP4K+REZwYlMyb0xYA=,tag:n/maW6pN0qnb2j27VU3u3w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Fw==,iv:1MAD+ASz33t8+aNWRMNw7m9/nsOeCRL1c7myJFY03ZI=,tag:rS+A7SDaAc9cV2srvVy/gw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:pQ==,iv:tGXryNORu7/eU4HfWiGP4ZZF+rtTTPFZ0siZ4xqOfWg=,tag:1BWM9wR+v8Qk1y+7Whx55g==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:i1CW+TI=,iv:0TBkV/HH4uheJ1/5vCo45sf/e4JLvhiKh3g8wf53DKo=,tag:UZiO9324q5kj4pLRI8uNQg==,type:str]",
+						"id": "ENC[AES256_GCM,data:AVc6OOg=,iv:ZNgm5B89kTsNZPdpUSLRMxhwLILhIKQ/j+e1RWB8OeM=,tag:6DFRU6Yd/EVPbyXtQYLjiQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:xA==,iv:V5JHPz1iQlMbPOfB+zNulnQALH/3rYLAZSmDu2+YXKA=,tag:reZEaC4rqXIeJQz02YZmbw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:XQ==,iv:r7gzBYQ6O0J3EGnc3clgUdOYDkHFJ2x3/1XT0zGB6uc=,tag:zOSuF+GCupVQpfhCevjW/w==,type:float]",
 								"labels": {
-									"resource-governance/custom-quota": "ENC[AES256_GCM,data:i9jNIA==,iv:qQcxSQkyLARTNi+s/tSF4D+vu+tKz6DZrO3aBL5vtkA=,tag:t+tQaLvoKwc/0ch1h9AonA==,type:str]",
-									"tier": "ENC[AES256_GCM,data:UI588QBiQhnq,iv:ucxQZBDsc0qDtI4dVvJRO5vKWVin5YFGSK+pDLGbIOw=,tag:eIYNPsfyKV8RWzX4yTkCCA==,type:str]"
+									"resource-governance/custom-quota": "ENC[AES256_GCM,data:I/LfZA==,iv:GnwSszwhSjbcyBPDAtEHSQUqlkTCZZmkKM5d+b5R3WU=,tag:uXx8kDOlPQOHp0cA9zPcbQ==,type:str]",
+									"tier": "ENC[AES256_GCM,data:59GLUB3vjtOc,iv:x0aixYHNnGXTrhP3MVYzGaaLUsPHYliTyiwVJyBH0HY=,tag:dkoTlas0jqu6FcWaW8iyLg==,type:str]"
 								},
-								"name": "ENC[AES256_GCM,data:HFWa5U4=,iv:7coH7/Pi6NFzyrCmZ/pbvENZmvttB4IZUUetbwltc3g=,tag:2bpngvpkvk9cBBlPBCiM1A==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:Mqqdef0HjTED,iv:c0z0WXIyITf+qwYiiUDzeTTau1oGk6QkQKzdorZTmtk=,tag:4LKg9Tv2vGyQMNngPIJFgg==,type:str]",
-								"uid": "ENC[AES256_GCM,data:w54Kwt8v0pSvRaF+STddaya5112EuKWn6bG4cG5xie5mOe2y,iv:MihN/DYSm5TQt6IpvjrWCRfJIB9moJXBkltqNknGACg=,tag:PB4bsXoBas7RKnWRqsmeZg==,type:str]"
+								"name": "ENC[AES256_GCM,data:527sa88=,iv:n6VEpQ1aJZxUjRokuHzO7Pi9m8s4C4cPCYF/dXLNtds=,tag:+AWCC4pOOIiLhhbSzuf0jQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:WIV2B0y29jK4,iv:mR0BpOQ38HC/qV0SJ53nu/XH+pjrmKOmn/uca/IJo4k=,tag:D0hNbXtgf3iuH7+zx0LD1w==,type:str]",
+								"uid": "ENC[AES256_GCM,data:+AT0hDDu0W6gVstfNFXLjG6vcoCcq8jzTpJVf8jJ9uyM34wa,iv:xwhRc7iVotvqEh59IjTbfWaVenZv3tC3+eJh8I+P38s=,tag:X7ZItLuU88aOxdg+CQY6LQ==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_for_default_service_account": "ENC[AES256_GCM,data:K1ARdo0=,iv:nlWxJkvD7UVe0OtyOkPo2cq2MW730klR7EbaWW26tYY=,tag:ij3FFm/mqWrCegfSUKyeyg==,type:bool]"
+						"wait_for_default_service_account": "ENC[AES256_GCM,data:8BDK3Kk=,iv:U4ozK3hxGdrci3L7eTu/1Rc9c5KpY+OBxwe9+3dZbTA=,tag:YZzUIUvgVtvkKpPNn69Hlw==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:ZA==,iv:88odZil7Sw3L6jHL5F10zzAVSX3NkiUgTldLrc0e6C0=,tag:CwDFXtY8HAPsjsxdLjuazg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Lg==,iv:LmVeFIMUHmANcOUmcJ3HxAwYCjqTOrv9WbF+sV3cZWc=,tag:JNkHOszVsDN7Mpb91A6uEQ==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:sb0=,iv:+JVL0gWa+lW3BUYb57+u11mwejfwGIxX4mEnnsI+FJY=,tag:53vQXKTkw0oLjmXwPoW+3g==,type:str]",
-						"kind": "ENC[AES256_GCM,data:QsvvQgKKUcMj,iv:H0PA93y6AvGM2uQXEehMU8/emOyw8EiofP/LbhfKupY=,tag:xWzRCAolmmHZlWg4n48zBA==,type:str]",
-						"name": "ENC[AES256_GCM,data:gvtgqFo=,iv:p9n3uW2jBfZZnQ1omfTtmuWVuwgBcL5XF8xC3kWefq0=,tag:JN85rAJZ498yA/kctb12Rg==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:Cys=,iv:8pxUlxC307znUAzFCGkmXdMFdj/yZz7ATuE8npW562U=,tag:niD2ryy+w7vsAzJMfboE4g==,type:str]",
+						"kind": "ENC[AES256_GCM,data:5G6rmYWyno4+,iv:6xs7mvOCBCVEJ41C1zIVXAntT2xQ39JFnOxA6GSwuBo=,tag:UUZ+j9k7k1qsEiANte+Raw==,type:str]",
+						"name": "ENC[AES256_GCM,data:EAHjFJk=,iv:ODhtV++V25Z9O1sJXa5Z5Kv7RG6InoKNwWKr86siXG4=,tag:MR05cgYhdsB5IeQAzFJlmQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:Cw049pJBeBbCW6/NCwKwy41Jd9wAy7TuhsAloLElOmDEDLy7q031TwgBAqZMZ/W6FC9BXrgzrwTFf9CQ33GPPji/dGPRd4fPJRK3X9XgrLrcvgli3OtKWA==,iv:e1FwZ5cIgqno3Ekk4sd0MdzDRWJPe3OOPCcguG5dccw=,tag:vclLQf2BzuNfHNrdFN5wyQ==,type:str]"
+					"private": "ENC[AES256_GCM,data:94XyL4//g6eu+F+mAvmHSR/1xv+iVg+OP8JyEL4/a5eLg6UIizPFKhS6jVfjXt1zTdeVfhNlkO2uZKCETFIx0ehOYZIhouxEQifMxvfwc/Oynvk6rCWNag==,iv:qYqSYsTXSgIeo5f1WhMao0rFLPlYqIkMLBpls/M2u9g=,tag:lCbwzBdQH38/dgV0fyAWEg==,type:str]"
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:t/U6iQASTQOPACO+,iv:QZd+1BPzHugIe2SyQ6/M45TAK3igQp2B313h2gGamZM=,tag:4pa5d8h5WmIRlvxYugwWEQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:QoNI1m0g9w==,iv:7BNgvBlKLSVBD4mrPgHvPgcDOSzwq/gxQl2olRKbSOE=,tag:zE/aUEWYo8bNvWfQTiIyCA==,type:str]",
-			"type": "ENC[AES256_GCM,data:A5slenQWNMtaChUOhssKYtNo6cDZWxWXyNXwZnHFzuPrTQ==,iv:31f8V9CBNXGY/M8ajF6KPodszpvf7wdPKaxPTGc3Dqo=,tag:/3gw/X16a96GHmVbebv0rg==,type:str]",
-			"name": "ENC[AES256_GCM,data:nJHsR1AZ8FOwEekVYSynEps=,iv:KgwwlbE7woGPAkfx0ftxdkWBvffhBXJUuIGw+ou55Kg=,tag:t6YH4Q7EvB45U2rfS0UEyA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:KR1PEVl+CwjuqqUUmUwkA9+6pLdW/n96Y/F58gTer/ReJOh0NudgKFoT2Zj/10gLDi/K7xfM,iv:A7TDutSn/xm5yICQU+xMSQ/WrZ4QPWy1P3TJPKYZF4M=,tag:3Zbee4+aezSfyAdAoCnOaA==,type:str]",
+			"module": "ENC[AES256_GCM,data:FRzFFbAmXhKNAk9Y,iv:lVgp5g2m5Fvn+ZP9zv1x6NqjkMjeIc9PPdSpVF52Szk=,tag:Ur4PG+Ujo6lTcYY9DFUkBw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:iozlC6zWOw==,iv:JS8YUX7aiNqX3zBsgucp9WE3ZsLJCD2imDHaDGovi2I=,tag:BDj0+4RjM0TAUIRWYIYXsQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:78uLML6aY2jJ2fVE+FWfFO3cUvw=,iv:znyosQtpFIRYLKRwiGieO9uiULpkU6q+NI4WHp8RsG0=,tag:PkRFOCyYFSZERvRPqSFwgg==,type:str]",
+			"name": "ENC[AES256_GCM,data:KX9pqO3h6Ckbl9lzsag=,iv:knhYq2uQ7gwqyOiSkcdQhFDJdL8xS9zDts/ksM6ZoV4=,tag:kyIwNuNnkV98RrAiLIuyHQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:BTZHwUDS5wH7oCJKBKye0cK6jimBqTv4Muoxf5vQSJDLF5hTJAU6hcX+fROSps0rF8pydpgf,iv:k4c1a50qTLIsJoruRbWefYW4aKbFLhQZNIZhOAadHlc=,tag:Bxbr8W9lOFqZ3YgLWL8fMQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:uQ==,iv:p8Yssm2vQrVNCBMpPmVk4VA/QBqF1BmK/+Qr29o9zEA=,tag:xbq4h/cZ6rB9r2WPV9fMsw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:XA==,iv:UyVfEf5wF4LvTXV83gBzia74KstMyEdZGvL+4s9YUWE=,tag:QtikbuVFj1gNZTH5sb6Sww==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:7OEeU16uT8v0kWLQIRNUYEKsroLKW8WEoMHUMLc=,iv:JNMJkac1bTyC6XErXE424Qiym3tuDwYNqJn/VQr3sJQ=,tag:LpuNRHqUQRmvnYZeLuqPQA==,type:str]",
+						"id": "ENC[AES256_GCM,data:LYgfDwNtHTrZK2ZC8e4=,iv:UjmfomjlU9wSy0FL2PoM1xT5utb+OquIUFz08nA3xjI=,tag:UaDQD9V/VsaDsaLEIvMYtA==,type:str]",
+						"metadata": [
+							{
+								"annotations": {},
+								"generate_name": "",
+								"generation": "ENC[AES256_GCM,data:cQ==,iv:xXirs6FeEJSKDUu6TeWgRw9JZVvuivZuAl6rwKME4I0=,tag:iJR6JcMW9ZZCNkN2LMjmSQ==,type:float]",
+								"labels": {
+									"tier": "ENC[AES256_GCM,data:QdxGc9ix6Mhi,iv:oCFo1Ki3Imjeg4Iq1UZwwd/Q0pWfc1/gqpZZgwJTG0Q=,tag:Ch7yb/SFJA9rCOEc9mHM9w==,type:str]"
+								},
+								"name": "ENC[AES256_GCM,data:LaRzofp7wuvJJYJGfXM=,iv:1QhIfhCIIqfiDrUObeysbU/mgkuWkjWgz+RMfoE4ZRc=,tag:ggn5zNBocty1mLOkGFSmZA==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:6GSJDhfs944i,iv:a7dynBx6jqKxaqwLB0Kvl7d7mgFMKVF/j5Gcro3FH2g=,tag:qlan2WHUM2Dc60WOeWKM9Q==,type:str]",
+								"uid": "ENC[AES256_GCM,data:S6s0KV+t2OWX1XZZNYG1HciN8ETpYtMmK7/ggEwQf7mkeclf,iv:FIPKD93wDZKwI8LHflw3NWowYmnsJy6aXT59x4HDgeE=,tag:7a3KOWCVInpcQD9wtCBc3A==,type:str]"
+							}
+						],
+						"timeouts": null,
+						"wait_for_default_service_account": "ENC[AES256_GCM,data:OatFgpc=,iv:wDJDxTPrcWpkluxFMPe4SMKX3ZTDaY10Lze4NzNIOZM=,tag:dOx0H0RoRxNExBlZfahYcQ==,type:bool]"
+					},
+					"sensitive_attributes": [],
+					"identity_schema_version": "ENC[AES256_GCM,data:DQ==,iv:AfJ/peIyPba/AZ88W046PzRV7Wwc2lr/OTn67iX0L1g=,tag:O86YHcozWK4qzSzC6KpT3w==,type:float]",
+					"identity": {
+						"api_version": "ENC[AES256_GCM,data:LQ8=,iv:uaYHHdf/yDW8mLXmDycg5QkLIhG8YxXulQfNxCjAARM=,tag:4TSZ3nU2t+hEuEDVsflzmQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:dKWy4a2UVn11,iv:pFHXLdwrfpvUSLTzw4ONbIV9tez5a8O1ZUNkJ+OMTFo=,tag:6/LdqhrMAoxxKPrQW6tjaQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:+d8udn3czJ/SU8ZO9JA=,iv:dc1cBqfWaJ6kL/u5ZMIXjLcFvZ2QnnOLjDJQE1sEKRk=,tag:8SFLnGWlZFnkG1DeeKa4yA==,type:str]"
+					},
+					"private": "ENC[AES256_GCM,data:O+YwBjUuhw/qEUuvcmqzOdOMgAObPjmgvplq5K1/vxoSsS0m+RdK0iI5cki9RRL+ZaDHnGBVRmJZmDCF0THJVqMgRopeldsBMJOT6RVmUMrWJEPhv5Ts+g==,iv:LP8v0wNufyfBQ3W8OYv9/kxkXNuDZ9sFI+VLXz/88VE=,tag:LsCgBfRrlNK8DRxV/JyCHg==,type:str]"
+				}
+			]
+		},
+		{
+			"module": "ENC[AES256_GCM,data:xJoMw8b9ZLE5Ty16,iv:YO/Z+Tl3oINL6arX/DXcyUpmu3DwfaKBP+Au0f6TMII=,tag:7qgZNQn772pdg7A6NtNcxA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:xaY64cMYKA==,iv:J9jz0pBjcowOSwOBGpRc8p+V4cDlCjMWsWaiZtB8hL4=,tag:9Opedj6NUJRViiw2v0RAvg==,type:str]",
+			"type": "ENC[AES256_GCM,data:rUbScLAWAzKP8J7v85QOSkQxu74NS9EIy2tgE0HCZZzndA==,iv:4omyFzlg5GhckEx549RYjtSXtz6Ti4N4VfNimzPM7eg=,tag:dW+mjmvFz/Ht1AOWB3CkEg==,type:str]",
+			"name": "ENC[AES256_GCM,data:vYFeEuzk7l61j64uR7pU4Ks=,iv:T9QBO3MD3mX7ySywapwxZWBLjHdD3T69wQ6Hv7emYl8=,tag:WG/ur0NKfXD3O83IZZnryg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:6crFZB1v4Nd+j8C7a+jWwlr/rJ2u8NDwOweKSAw225DRVx2L7YHiBqH9jD18wYOKs20/YrnY,iv:tDezgi2Y+c6/mfCMjP58alDVuEU9uStAlpe5EDz70uA=,tag:t26LaWFJ1IXvGl5pQtK/xw==,type:str]",
+			"instances": [
+				{
+					"schema_version": "ENC[AES256_GCM,data:Sg==,iv:RdKWz9Na+sJzGigXKYZN5JEmGYpUG6fyrQfdQrpYDVc=,tag:v8nzBpu930nMy3HkRrCa3A==,type:float]",
+					"attributes": {
+						"id": "ENC[AES256_GCM,data:rr2qOKrq7mxmACxYeMmOiNxb8NmP/jyqoT0rQqw=,iv:rH3i+MSIbg1CTd4dGJaf8F7RsRCzJWOLH7bRMhBqgiU=,tag:LuOBWYCSNu0A8TDfeUJGLQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {
-									"resize.topolvm.io/increase": "ENC[AES256_GCM,data:VsLD8w==,iv:JuHrf7PnzK5AI69dDwlVRjTYBWcpJm5aU9jBWxWxeeo=,tag:VeQh8LSSbwPPMgj1W42ErA==,type:str]",
-									"resize.topolvm.io/storage_limit": "ENC[AES256_GCM,data:sEhk,iv:gMtNqmMjBBd6HXdL93cL9I8hstDlJZINLC1btYftvlE=,tag:TGxvCFdyRo5c5ZY5bTmkWg==,type:str]",
-									"resize.topolvm.io/threshold": "ENC[AES256_GCM,data:WKbr,iv:a4vGGtrFf1UE5S7WchFGOYmF+VVq7BfeEXCAUUE81t0=,tag:EanRgRlf5LYqLKNZYBWjrA==,type:str]"
+									"resize.topolvm.io/increase": "ENC[AES256_GCM,data:YK1+Kw==,iv:9//4z587Yj7l3EBXg21Pr2ric0vKxqJVCFE2oPvL3x4=,tag:wuZJhVXoPnGe5OIQkXBiqA==,type:str]",
+									"resize.topolvm.io/storage_limit": "ENC[AES256_GCM,data:8/4W,iv:50Vd73FlFdSmOMy6MG+nvXxEWsXBzTgy7yFIMZWtydk=,tag:dOzA2fleShBjJ4w06Ex41A==,type:str]",
+									"resize.topolvm.io/threshold": "ENC[AES256_GCM,data:zSvP,iv:B+RUzPWfr8gPYSqAq0O003c3QuDzV7uYyIuu5WYqwYo=,tag:rQ2ZMvQSMMnM1BIzvqXVFQ==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:zg==,iv:jnRKiBIsbu/bEGDXWY491vZ9pXV2devcNQISV57Hal4=,tag:VgBgIq3h8Uz01KRjWdUIjA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:fw==,iv:y3/rysf+6d6pZ1bKyO0TK0y36SDUh/Cft8Zm4hPFuYw=,tag:jryHiXE8yeypVSIi3Dc8Xg==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:F8S4EUzJQyyYCFUSXNAvubHdrBeNzPE=,iv:34W94GYKsHdsaY1x0Q9ITGO/6PsixENVVGlbNVdooqM=,tag:CRJKi1kUCXRZuKbPCbWFLw==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:2Q+szW0=,iv:ORiHTu8R7pKZcwx6fulavYxfAUQYy3ozDP+DhREDuOk=,tag:gzo+3EIjjPLN0rBkj2/iHg==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:yDYUOM6Vy8m5,iv:IcjVA4NVTZxwnlRskTQU1qobUyuS/UIOiEIUvR31MD0=,tag:/cswPYrMBqJlLnzItsln2w==,type:str]",
-								"uid": "ENC[AES256_GCM,data:zpcEQNWuVFeN77cxv/DFtg+FC4It7pOR6WVprCTt2U27P0Vl,iv:AFsd9ue/hu0v4ug36uvjYJE5hnz7E70kW4XbLg3O8lI=,tag:H9QPfmjCDSweWbMM9spHBw==,type:str]"
+								"name": "ENC[AES256_GCM,data:X1qmWggdpTCL/UCtbx4LeiiM0GqxkNE=,iv:VF2BjNWQe7FwBU6a4gh+eX9gsY6OxyBQmavIc8jGEXU=,tag:Bm4UHgEF2mxAwcEMtycajw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:bLj6ksg=,iv:igfJzpEQyY0XeOUvFedqe99FXWlb5vxPOS7h1PaH8O0=,tag:FxlBdNWrd0CTRLMSFlsXrA==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:M3j8A2AsgYw7,iv:chs8xyyjQe0y1xhh6we2vBKXa8EkNrNr9vI+KKrlAJI=,tag:8eGaSMhpF+oVT7Jl3Iaq8Q==,type:str]",
+								"uid": "ENC[AES256_GCM,data:SHR63dZzgu2htDS7TpnQUKV/M/b3rNwMbAt545fiQSo5vqvU,iv:Qnmd/DTxsCn2UQHoMwQkDEStLgpD8elMJM0Wkq5jtB0=,tag:etBVkLPe2iZ5KkxQ2XLbnw==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"access_modes": [
-									"ENC[AES256_GCM,data:Lty+xOL//Gww+Rk2mQ==,iv:TzgJ93o+2WD/j8aqAAR6OKDBbdt+ftb8ZNGKNadfnf8=,tag:F1xUFhx08SYynhpH8Wlb1w==,type:str]"
+									"ENC[AES256_GCM,data:rm+SdMgnlYSICaWJcQ==,iv:XA50GPUnTOYkO0IywjB47AtUEHcyvh2OalYADJzJEoc=,tag:0D9rKzovluPg4MDbU6OA4Q==,type:str]"
 								],
 								"resources": [
 									{
 										"limits": {},
 										"requests": {
-											"storage": "ENC[AES256_GCM,data:jXoF,iv:gK84wP8V1MB0Qxt62tyvUBxosrnx62Ma/gSX+zJmNNY=,tag:a2ZlG/ajJh4y8IZYLSijag==,type:str]"
+											"storage": "ENC[AES256_GCM,data:JmVY,iv:e/HvphxCz1LEuGbx2Ot4hBpbKPyIefyZs85l8O8gTvA=,tag:5InqfyTtJAxMBdXMH8kZJg==,type:str]"
 										}
 									}
 								],
 								"selector": [],
-								"storage_class_name": "ENC[AES256_GCM,data:8UlseqVtOWsQdkw2mboSe6JptWWY,iv:FKTLm5ZjpvOvjxe7zCO5A6DAfeOuUQ/rKFGdfnTG7rI=,tag:t+8A4LFkqvJ3twjEg8uvXQ==,type:str]",
-								"volume_mode": "ENC[AES256_GCM,data:+JBYlAG1QDBD3g==,iv:wCDQmai0QMKWGeWs7k8c0ZF1ppVrJVUAyBob/NxQsbQ=,tag:J+RnCzfSQj2HNbm/1gflqQ==,type:str]",
-								"volume_name": "ENC[AES256_GCM,data:B+cCCMXFh3qmMke6LKotxFYBTdDlK4qC4ptwfGYw3EhAfmJlsVHb4A==,iv:PYPzV7wVHcxoW5JYlWgwTQaZ732F4gHU+fPl39/etWQ=,tag:vQe5ML8oH67jEdi17K1NfA==,type:str]"
+								"storage_class_name": "ENC[AES256_GCM,data:89txnL3/EdM//K6JBj6Vyeh11VWH,iv:c9ArlfXXbyGlOZG99CMCOHrk8N1Qru6Sz9a5+/jlHrI=,tag:hURNRx2dB+BYp+vLzahH9w==,type:str]",
+								"volume_mode": "ENC[AES256_GCM,data:Rrm1fr7Y4WGG8A==,iv:c+CJMPP0dGMuc3jdmHeUBIou7wCLnLcizBbja3j3FhE=,tag:Ynme+QZOvysfWjPoclFwAw==,type:str]",
+								"volume_name": "ENC[AES256_GCM,data:wBd4lTSfR5EEcAvfBpmty14wbaD4SMGdrftTBhImW2rmboBXT4ww6w==,iv:0MJRYVcSSwsOgHHbwMJO2+mK+x1cplhEquSRwPfWE/c=,tag:f1jR2UYZHfOKoSelt9XzBw==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_until_bound": "ENC[AES256_GCM,data:0BCSx0I=,iv:vc8cZgj5OGjCf4hfU6Ye67BEMVPY26I79BWuZlLY0JQ=,tag:rWlbqqkPo1w0RgGuGMa/uQ==,type:bool]"
+						"wait_until_bound": "ENC[AES256_GCM,data:DrykEag=,iv:d/tYeHXzkw2g1HV9WTUso3w6zVXOwAfVe2MWs19DI2A=,tag:NNd5uosQOMmxOCA9qdGl1w==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:+Q==,iv:Xc11fWYtlies1n8Huvo7Fr9ZQrlDE5laaahKZBUrVME=,tag:ieELR0VqhNiCU0spVY0H3A==,type:float]",
-					"private": "ENC[AES256_GCM,data:6M5bed4xrY1gS1XebsL2GfzGsl+edp7NbY7iSF1lpQx34v0U9Oyen6j71lJ1U0q0/t9APbmoQK2WhIxY/18O3z4e/iZ1WDU0pmjDFbxIIJrSACr+t57UtQ==,iv:7aZ2a1/CydYhF56O/y3PErONO3A1pgfPIoP0tXP546Y=,tag:9aJAf2eXpldawB0Vx+dHuA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:HA==,iv:Xpi4c/PN4gMnbXgYRI11VFlGPPLmKzSiBc+kzvxp93k=,tag:Ld/+Te23Zxx/IpjS13RiEA==,type:float]",
+					"private": "ENC[AES256_GCM,data:AbM1GE0GKS3Qd2yDE8fScJy5AS3z+ug504DLnWzawFpfjPNuRie7xTqgS1VAn5ZFPabZOiX0OVtZ1CEGX9orvS/AC0yL0OTIjDnmZ2/hyzCURt4AIgjK4A==,iv:EURDQgAaM+gS7nkOXvBK50GYdgXvoBmoBufJwDvtwxY=,tag:uNB9oRNdhhyzfCAX6S0zww==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:2+5/HGrA9bXb1xBIxQ5aucQ3EMBDORa5N8zyGOSSOM3PzACSXbie,iv:cFYm5P+sgO/HI5ghZqjn20tdfkKQuM+2zoWFvFUr8SM=,tag:s59FfRXuN1abnobB5q7xjw==,type:str]"
+						"ENC[AES256_GCM,data:ZpH05KJeYyMWRkPZZYgNod5k178GkwCz1VZD3/qOhvS1Aa4f0BWa,iv:A7K8f3IsLLNj6KF1gTOdVHu63LDM2C46PF4NhXVgic8=,tag:anvg7f2Zgtli9tREqSwZag==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:aEFjxzXqusP8XaZH,iv:mvibWG9DEB6Y9VEcwLD2tFcmxFQv0U1jCeubGLdMkAk=,tag:3dGasB0OxwmqqBnMCzbLFg==,type:str]",
-			"mode": "ENC[AES256_GCM,data:u7NZZ2oIvg==,iv:/0qc7C1rmn+x4DhQ4FJP3UQ4Abz2xSer25EbrO7/BL8=,tag:KivZOY8F3cDp3pyKHFvj8w==,type:str]",
-			"type": "ENC[AES256_GCM,data:17dm87FN6L/8JAYaP9clpGQdOEJPsEeTJw==,iv:bxUeuXiNtcqxb9fYLt6s5M39c64oi4eOvJy+emsyPC4=,tag:/LWAEigLWCajp1ZVmhmHig==,type:str]",
-			"name": "ENC[AES256_GCM,data:546P8Zc=,iv:6+U7ruoW5sYgZvLlR1caADvxdPt5GfyaMWXLDiL2TV4=,tag:Qot082LkxgAPckca9/AuOQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:I5vQSFKjup+OHUjxpUMaiD6TVn6CNzjWhhJyJe2TwMtvjjk+f94BBCXwFlwuu5OGWZhNLg4b,iv:QgBuLfXBc2ku9iEZ9qRgbQIHxzPC3p5JiNSVbVFvHac=,tag:82mFEGh5+2Jl/u0wThN/Ww==,type:str]",
+			"module": "ENC[AES256_GCM,data:avfXHudWWpJR6nF5,iv:/Z2jHkJTWjHGSq3cZ9vXJR69qDNLX+GKpCKrX+lEQHQ=,tag:R4n/Rqz1XT0QrjM1LhJzQg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:BVqBsPQa7w==,iv:8VFvf2lh4qiEn6ml/Wlu1Aby/+0dD/pSCBFatsfAJkw=,tag:d5mRswEw/3k6bNNWg5bCtg==,type:str]",
+			"type": "ENC[AES256_GCM,data:/1he0ay0meuUcSxUy2Qx0zFl4aF3siB0Yw==,iv:fF7OZ2KXbSnjva4l3NVN+fInkl3Ui2hLyVGe5gCHTh4=,tag:fNkbYFiI3aaaIS5QLC/hUw==,type:str]",
+			"name": "ENC[AES256_GCM,data:xSRkr8U=,iv:YgxbZ1WHVuUh6NR/0Nu2tDJdQhnqBcqDgtfoZQKPWdQ=,tag:7yfjjhDsvM2zXJXrwXH1mw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:k0cD3aQgWUGuF7+U7bpXeIJH6aeUJ5C527oFHfPdo5I0jfqVuF8VXy+fIjB/wbLDria/JPsL,iv:5Bi2DwfHfnYbLEr1Y5bK4d1BTxcVISOJFtBzAwoVUeI=,tag:otIQtMXre/joInobE5lATQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:WQ==,iv:FAdub4APqngK3rVm1Y1iY2/yeihOSXJotS4p1n+2Hl8=,tag:oEojpFLrKebZdzRl/B0ffw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:wQ==,iv:VxiwQtSH/jgzgZMdcw73GKQlfNfWDMnq3voeazF/bFk=,tag:0V2ICX5rr7kqlvG0lrsTgg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:/Av+RM50Kkkk6HZHGQMmdFI=,iv:COMy5DpgSjE+AQSx/1/n4swjzrM1XCq3O6D3UH6PXeM=,tag:LVnB+mXv1Vmyv4zRKh61/A==,type:str]",
+						"id": "ENC[AES256_GCM,data:CgMW2jmzwH401r4QYEeGtn4=,iv:tuA1p/Occ+mtOa/UmSvwJOyRIRSgrlEQTXwzRRaiOJw=,tag:g4V3HW8vlDYzwspu8OLHWg==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:bA==,iv:9UKmKKwjllWGQTZA5WFxFW5Gb143ompEy21OyhmZ4Uc=,tag:MhKHGJ+T9q+YdJEYenB8eA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:/w==,iv:hKo+cPVynK7mC/HQRtyktTJXk7VsXxKQRLqC1uZOo3I=,tag:0TO+mlZoUagXd8QHPjaEqA==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:4x2vIVPPmf35Qrc=,iv:M2BeIGy6sa5VeYFl+S+lC6ukwl5Bm2KRmF3PU99+L4M=,tag:mVcyHWzXHf2XeRwEyncZwg==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:zkcNLp4=,iv:ZwB5DARb/tdtDyKxLr//rO9eAczi9HbxpzJ9FF9axVU=,tag:9h2hOzbEZ90s3IP7ke6FHA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:5OeJIXLvXUZm,iv:qQGRinNjcTMsNB5FxFDz0C+4ThG7WIuY0HOgu0EVc/I=,tag:8RdAI3MnvLdk60Q4eihNGg==,type:str]",
-								"uid": "ENC[AES256_GCM,data:RlfS5B3svruD6HMPzfLXRJPamug7Isx5DszdKITMAYZVpMZE,iv:OKnrhUsnya357yohL4JdrUFz5dlyIf1wrTNQlfiSJFA=,tag:mqLeGDNmz1zBHmCEbNP1yw==,type:str]"
+								"name": "ENC[AES256_GCM,data:jSYglo0nFuvCe0c=,iv:0OIgL7CPxorEnQpohGZ/IrTMEvzss9aK4OV9nDKQU54=,tag:qxC2+PEsxTs/whCg7cvzZA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:QJeJ3O8=,iv:IzlIECqckQolu3MAfFSthAqU3CKLL6JcTO2ezSa2EDI=,tag:iV964kZst6v2HrjREHNvFw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:GLeFF/UlaaeC,iv:DprOzFCGIpVySkSGtA739XMovIuVL2QKoGmQjzC9szs=,tag:uC/Gd2uruLbx0lmdLtXAyg==,type:str]",
+								"uid": "ENC[AES256_GCM,data:xxHkb+V0Offf55pQI3Sq7N6FRRdT3wCgDFZzxfvoB4pnCMee,iv:AjsUiXwHAJENTaG7PHow0XkFeLSl0D4VxQ7AB/zqQ0A=,tag:h+PkEzBuhlMmTirNHmmSWw==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"hard": {
-									"limits.memory": "ENC[AES256_GCM,data:pQOm2g==,iv:4H7fYKPcpc+cVCkZS1FkLCE8NNMLVihXfc23J3uEqBM=,tag:DCrfc9TLJvyuq9Z9jB4dgg==,type:str]",
-									"pods": "ENC[AES256_GCM,data:R+Q=,iv:DkRgbFPEw4y2ve/PCdmb7PXnT1rDpaQtn/Noye/Cxvk=,tag:S94xCfZTV58EsBfWfUuI0w==,type:str]",
-									"requests.cpu": "ENC[AES256_GCM,data:Rg==,iv:1i9MFMtrdebkWvTFG/55JGbx9kj3zqbdmxbX+lxszAQ=,tag:QzJ8FCsiXtHEkpaE8p9Tzw==,type:str]",
-									"requests.memory": "ENC[AES256_GCM,data:MoOfxw==,iv:eXuugdLk0gzcoAYSoCBZJ7RpGCcpdjAzHMxjFlw0Wug=,tag:QBk/BXljfINvmv/zQALs/g==,type:str]"
+									"limits.memory": "ENC[AES256_GCM,data:cd+kww==,iv:KZ4A7k3hGVzVVfHMeNoQ8jZ3xe/NEeiJqUw5vz1dg2Y=,tag:l+OPB3+U3NTFRuPhm48hsA==,type:str]",
+									"pods": "ENC[AES256_GCM,data:XRs=,iv:hLUgzx/7n3VXrNNP0rfXDG2hYCFHZrxj8x+m/DwRvhY=,tag:aMw3PPiSkuG1JWFvSdUNeQ==,type:str]",
+									"requests.cpu": "ENC[AES256_GCM,data:9A==,iv:P2wH3un5bvlrVkfD6hHVWUFWV04zTh4ppvu434ED0qU=,tag:izmIAnxGon5YeFZTbdOz0w==,type:str]",
+									"requests.memory": "ENC[AES256_GCM,data:BBfV3g==,iv:lDAza0QYg7uQctpgW72IBRkNDs+eqSXW2kq+k7ihseA=,tag:o9NBqecRrGZHIb2l6h62fQ==,type:str]"
 								},
 								"scope_selector": [],
 								"scopes": []
@@ -2096,133 +2303,133 @@
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:cg==,iv:x+6GH2HuyFrwpQZCmrJKCmQtlkQ48g4ikBhQ63xs4dE=,tag:XrLVJgS4z4wzXFb9P7pOsw==,type:float]",
-					"private": "ENC[AES256_GCM,data:XpRTrs3A3+U05gp6IEeR7McnWf5SRXnc8wyqP6qKKeBD/l9+Ztm//rVMwMTixWw8aHTZ+9e5NzIC4Z0EDEn8RrlTEudRSdqBoDMhaqbPqhykve+jt7V/2XFXTJMv/nFulGjuh3wmDITBH9iehZRi2g==,iv:gX9ip63w7p1SRSbnnVzxV8Rk1Ryu7IlRwPPx1eUqcc8=,tag:oz2fZeLTvw+h+Kq66v90+Q==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:vA==,iv:1/YxugXbCwm/GY9T68WkUgnaTGkxLpkVNFoyUFhCrYk=,tag:0i1I4eqAj11MTUC1iawhZg==,type:float]",
+					"private": "ENC[AES256_GCM,data:F8cO0CVp+afDukb488lZoJJlYGmq1tzavKxRRfzr+VvzRJnNd7GSQGNmnqbTBDwp8T6pDEizXtkqco4BaSFZwMVGEgtFImq1svz4uvG7r2+cvgcf6Z411fnoPskk2395JxQK9dEDcjZWHlznrOBUAQ==,iv:i+6BbWIqpn8/ipSqGEEgTW1cq9PCjjdLf+eINi1Z0Uw=,tag:65MtUpHkxD/wTCxmJw5D+Q==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:jC5Xr5N4YrOKPITV+nVf+nwtV4MC3fvbxPSnS2ZKGJoAnX2RFnqr,iv:ww+MfEZDOq7IXm/LglTKYruGVI3zMHkw8tNWxZWDok0=,tag:QakKVvlwF8i+AEwWHnwigA==,type:str]"
+						"ENC[AES256_GCM,data:f9Uzi1z41b/gnyvT2YjCt/31Lg3Fs2WjiH/4IGYiErXrCmlg1WXK,iv:G25YC4hDWrGYf/Z3oOVRx95jp9S3RY8w9NcrjhotBE4=,tag:pKV2M7aThirRvGdMhuwx1w==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:HnR4mj/YRkXNm+ao,iv:uZ2Gf+zro8vu7whKr2enwIGZy9n4dt+VAwdYReD7giU=,tag:B2xc35yR7hMRmPh/AVcB4A==,type:str]",
-			"mode": "ENC[AES256_GCM,data:8qEl6sPN/w==,iv:8ssBGHv+2KgEF/zD3fSEHkSgrirhodsDqrXH8DQzZ0U=,tag:KGz9/uwY8JmzK/u2EhRYxA==,type:str]",
-			"type": "ENC[AES256_GCM,data:/ByQZq5x+l5fQxT4hehG3Fc=,iv:OppP/B7pOsFz/JsyIgtCkCY4e44DIgyQfbODg1XtVQ8=,tag:/OxO1w6XoSXniCthTZrp/g==,type:str]",
-			"name": "ENC[AES256_GCM,data:8t4amy/BRP+qDEXfOt6OSg==,iv:jh/flOKgrZzCJ48Cw0N++H10qWZLpE5HUphXt78HD98=,tag:QtVRR2AVlYzC7pksmOPHTQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:8YcAhFUr+wPku8kON9NVAJnoGgaVCmWJGaecnuui4lzgO2WtKAzOS+kGf4bcU7mTTbULt6JC,iv:knbXczEaZeKgW3TyBmWVRbJEMDySguwIRxaNhJFTjjw=,tag:TdxjPR2AscCJavu91vBgmw==,type:str]",
+			"module": "ENC[AES256_GCM,data:wYm/mZpRqY7s5bg9,iv:aek/kMa0TOPBVf7TiPAbczdOlDWdjAUc44ZM14EqyLw=,tag:Rcvs3EsXQeplNPjVnYYQNA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:ybpskUP+AQ==,iv:qkTwAC2XWdWSEl/ueGO0P36eMUAAyIJwyJE0tL/UJWQ=,tag:X+d6t1GnA8sWPg0tGF6CBA==,type:str]",
+			"type": "ENC[AES256_GCM,data:mOenD5IIIYzpXkJCMr9pG0M=,iv:RoPYsYz6pc7a20sqNziKzO01eQUmHWCEI9BbINO+1zs=,tag:9e7v5wkAVzjy68U21v/OCQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:qn87Iz5hBasrak5zJmaU7w==,iv:DnPGhmc3l8bunn6DCM6nu+xgh8Jcqw0ot8AgvEXyBeA=,tag:xQb3vJy7S+VBNA0u6BdqyA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:Bm6BwXCm1oDSKSImDxLKmVoeBUp20laDKRghvwo0MIcWTmwLVdk46rgEoEej87kwqXvPNSic,iv:+xtQMdNgUainmp8KwnO31FodsyHFb8XxmCgQNPDcpXw=,tag:QkBXDQneKsYczsn0tj00cw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:lA==,iv:MiB5+107Btf9dPOxo4EoHXksJhzA58a/2b0/5BQA1Wo=,tag:Chr01vR78I9HMHRBDdk0pA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:VA==,iv:QdN6b43c5N+KOlEhzEiNMsN/gTr6fo4naXJnH7NosfE=,tag:AdwReG2wKVqZ3Megy0Yxng==,type:float]",
 					"attributes": {
 						"binary_data": null,
 						"binary_data_wo": null,
 						"binary_data_wo_revision": null,
 						"data": {
-							"ROOT_PASSWORD": "ENC[AES256_GCM,data:mkpvobGxxyJuG8Hj5DAmHTWuIHCViXknpDhUPg==,iv:rOHafBOSCkpC/N9ZTgzRVttSDvrcg9uz+g5qm1vHaos=,tag:vIG04BlU0gC66yJM+PgWew==,type:str]"
+							"ROOT_PASSWORD": "ENC[AES256_GCM,data:jQQSyqiOwb0J+yqF00SszO15O8DMmC1XvktAFg==,iv:3gGJFwbjwY0L2Stugnetjn0FJ5WVG73BVhHAuUU0RfY=,tag:v6WTI0N0JJG9gvVPkNuaHg==,type:str]"
 						},
 						"data_wo": null,
 						"data_wo_revision": null,
-						"id": "ENC[AES256_GCM,data:ahJy6a9D4MCMlv/RiUNC64Oe0QM=,iv:Ei/7wA79LiWypPIcysBccvJ42Z/DUUveKtzgmm1IBuw=,tag:hQefesquhr/JDT7vkH/s/A==,type:str]",
-						"immutable": "ENC[AES256_GCM,data:ix0BjGw=,iv:E34ZtJjErv5MkJWCFQsHplQnv1+d5UeKFtivFQvGntY=,tag:J1AB8Z+By+aa24aVVMOF1w==,type:bool]",
+						"id": "ENC[AES256_GCM,data:5i/XJPaHFBn2MPgWDzpf2Yc/+34=,iv:GmD56iXqfZwGGYNz/YtbtotTXvb6YJJxgbPW9lVqHFk=,tag:YhssZq7hgn3x64+uOC1kEA==,type:str]",
+						"immutable": "ENC[AES256_GCM,data:pX2ekxE=,iv:C4GPeH4EbwxSU7aR6DH6TM13lMDMtiENBhFwO3tiUqo=,tag:8CYW4+n8CBcHXH2zpHTWFw==,type:bool]",
 						"metadata": [
 							{
 								"annotations": {
-									"reloader.stakater.com/match": "ENC[AES256_GCM,data:FykaPQ==,iv:8mXCNVbc82uvZVuz9joqf4ry7eb1DJpjsmNLfo9vP1s=,tag:WQMWY2SwnpPb+QXrvdQF7w==,type:str]"
+									"reloader.stakater.com/match": "ENC[AES256_GCM,data:VQhbZw==,iv:b92/VXH4wt1xvS35/hFRFcUTG39JWYnrpm6BdX4QQXM=,tag:aMWdXFEX3Uw+QAk0VQYwdA==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:JQ==,iv:pjgRFZ+vQbJWXa7UZ18OedpVrss2JUIxCwv268+tLhE=,tag:EIZ+lhHcZAz+GCPGysSBIg==,type:float]",
+								"generation": "ENC[AES256_GCM,data:2A==,iv:oi4Yhxksww8mwjt6BVuGxV/0CwK2ilx1nXFg8P9zvjY=,tag:yXHKG0Z0NeV5AoTnZGD0pA==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:5/DwFo6MZQuOBAUmueY=,iv:GEcc03Lkou0714ONdjmCsukXbl7FiJctpyNthXDCtP8=,tag:y+ZpEdiSOmafgqsyHIubNA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:jEbh2YM=,iv:dPilSJ8PO/gw2D6vsKFA3knGGgrj96aAZEIjVbIZCnc=,tag:5rlapH5S5VXiaVNTm0DIpg==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:5o7CMg==,iv:WRq47uswds/XrXoMIS/AhVDdi2hTwDNq2e5VUnvxlpo=,tag:StW/LgsgUvSRrKgKhCC6AQ==,type:str]",
-								"uid": "ENC[AES256_GCM,data:pE0aDH0IJ+NbfAkuVK2IMkj86+LfDWdwpF410DEH+aGWPp2O,iv:Uc6fvdTK/LMscWt56/uWB+io9Xri1sKfx63D5F1lU8Y=,tag:O9P2A9kl68tV+l06HssMEg==,type:str]"
+								"name": "ENC[AES256_GCM,data:q4sIl8BsGVHJM6syRBA=,iv:Jj5lOo6Mldrauh31+uOCaYPc5UnFHt5YV26Bjj/BkJU=,tag:gd3f9pLEmNOlGEcF9Dbf4Q==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:NnYsGG0=,iv:zxArmDz6RUrpCOZsTT5AedIrqo/Se+LlBkAd48NOWIs=,tag:ylMtD797J2viPeMf6szddw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:OCl+ZQ==,iv:iOCqf/B22rQfYyaxG5mrANUZgbsTQBK//J7e8v28rLg=,tag:QjPKm3vC9MPBkOXmfMxTog==,type:str]",
+								"uid": "ENC[AES256_GCM,data:1erJVMAu/yNUhuqEvsSL5UxvfOCKHebF3QnX0Y6asiU1gtMF,iv:DHnKdwu5p90QRVhAhvrbUWl5Zfl7NqYwVmiOAJo5dRM=,tag:icCylUObJYYRFJDskUss9A==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"type": "ENC[AES256_GCM,data:NwAKT2Zt,iv:S9eKssyUg2WuhFXUg/huqpQn+La8+PVrykkQP4mJIdw=,tag:7jf85/Rc24E1t1AMMvaM3g==,type:str]",
-						"wait_for_service_account_token": "ENC[AES256_GCM,data:BBafaw==,iv:gqxGg76/QLpwuJIhAi7t9I7OylC/+HaqDLUTETzodwU=,tag:PQEkC0SzD2yELXylqKHSHg==,type:bool]"
+						"type": "ENC[AES256_GCM,data:qVAdsqJe,iv:vUr5r8N/HpQr4iKaOfLCZcGXfOYAlCVXe06k4PY18Ik=,tag:P6OkR5zxxqYzhbV1h3TPAw==,type:str]",
+						"wait_for_service_account_token": "ENC[AES256_GCM,data:6vB+bg==,iv:q7xJlRXy34CbpXgrKCd1pDNIK5q47tOZCAufgEQjRvk=,tag:zTFCZtEuZ2v9O0KWwpwn6g==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:wbKiVWYYGQg=,iv:LCqd/0mEH5rBfBEV0iEFipCNwM5311jgWPWihTcZbVE=,tag:f9u2qKaeoKRkefDktdEGSA==,type:str]",
-								"value": "ENC[AES256_GCM,data:PRcSfG82NYFwi/8=,iv:O40/AvELqDBmc3owwhgMI/3kZGl0WvtNzYW/FoZv1Vc=,tag:T93u+OMYPqfAstst7w/w8A==,type:str]"
+								"type": "ENC[AES256_GCM,data:4F272HwvKeM=,iv:aYMiYQ+RiE4i95Xyf9jlxpTKKuEcIoi1s/lPd8FUCC4=,tag:yOZPW/lLQJc33Spk9DqrNw==,type:str]",
+								"value": "ENC[AES256_GCM,data:eoEgSHT/+/BXGvo=,iv:t4S5fxLzoiu0UJfbwW6JtEPRQNmB3hGbnsP2MypVVq0=,tag:4h0B4CqCXPfFQZrtjPyJvA==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:8AYfcicP+Lk=,iv:9pHEyycls/CMrRUgZqtGUVexukxPdbby4yeJVivihfs=,tag:a35oNA5auKa23N+ODBMQCA==,type:str]",
-								"value": "ENC[AES256_GCM,data:ZwxX4Q==,iv:k82BRXOR63G02BZN0GBjZVDwMR11Bezh2fhM9UNBwAc=,tag:2nnOg6AJGR9nfp37IG9xLQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:Y8R7nW1k0dg=,iv:oNjPMEHzPRx3s6Inqmdnk6sw8FlrXgbjHcfKO4NvtMY=,tag:QwL2K62ZEIcRXnOcks4ljg==,type:str]",
+								"value": "ENC[AES256_GCM,data:QruSOg==,iv:jzL5yUjBUYfpCFxIUMqPAEmKNmtLZDIInVw8+FEcpAA=,tag:ZhaZmrpFSblGxd4WnC6G2w==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:SdfEdxqGDM8=,iv:L+wa9C8/cqfAMip/FZe70YJBdSlugooBZl9kcvpcjkY=,tag:KnrWAsbf3DpsjYVRTEgylA==,type:str]",
-								"value": "ENC[AES256_GCM,data:2XMaaQ==,iv:lvL2bOqcAyVSrF0xezA4jpzXGPJ+MqqLFzCEUlQmMNY=,tag:DBZTOIYokL2GYL/mFKZlcw==,type:str]"
+								"type": "ENC[AES256_GCM,data:h/qlff96u8g=,iv:vfmOOdC9Woi5I9W6uQdb9xGfO2APs3vLzd8lpdQMNsM=,tag:VdGWiZ6IvPcRoEgEvq1cCw==,type:str]",
+								"value": "ENC[AES256_GCM,data:CJJG5w==,iv:/7dyR9V12k7L3OrdIjPJLMO/S5ouHhV+3JhSg2fKpe0=,tag:HzA673xHYcvSyuXmNVvK/g==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:Fjrmdds=,iv:16vbezxfvoFvUNacAs4EjhjD+aSsYR3Dih32UOknBdg=,tag:QfAdlQh5XMeCuVFZd79ByQ==,type:str]",
+								"type": "ENC[AES256_GCM,data:pQA9d9w=,iv:3xxsC46UGYZdn4h62T9XY2OsOHlE7F+LxXkDptc5kHI=,tag:e5UdkAuLfaO2ompsvSs2lQ==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:YLpUoHR8bMeuyfxi5A==,iv:/fzH7mAftdsHGGOCV+bK5omu4hvPFLKpOjGIeEchUow=,tag:U9FWPoDX5ppeTlLklX88tg==,type:str]",
-									"type": "ENC[AES256_GCM,data:tOnfkP3m,iv:bP0josRBgVBhO2oeso7DZMF22Jv+bDJQErInY/JSG7U=,tag:t7nH+ZF/xvfte8oAmcUh7Q==,type:str]"
+									"value": "ENC[AES256_GCM,data:JrsRShtbf61pd5CPcw==,iv:cQhJLwVYX9Ie2Qjf6XZSfl4f3kl2MzOipSScXoi7szw=,tag:uv1pA8rD4+Wp/9KkFifwlQ==,type:str]",
+									"type": "ENC[AES256_GCM,data:m1b+4pbJ,iv:iuL3XpZ2lwftS6lohGTNKEgcyEuMCpAumzR0Zr/IQek=,tag:BVaZ5rBe8WoWzZsQKltsbg==,type:str]"
 								}
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:IQ==,iv:2x8/90vD3AQYeCGH6ILnSQfx+iH/GlJ7l89q2rnNA2I=,tag:eEDy937utCciGuPZTfwDaw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:SQ==,iv:DJ8E4jcJDJuvQ3/aBzyMU24fo0aYXvzL2lnHjSMBXUM=,tag:28LRL/HOJgFcaSBq2M7oQw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:6Rg=,iv:jMdlzLcYmTkYG9gXxaMySx97YujR0Rr7eX2cM1k/rsk=,tag:66RfAvAPxEkr4AI3USvz0A==,type:str]",
-						"kind": "ENC[AES256_GCM,data:zqF4ECzM,iv:7/LC+UHcEWoyJs4rIffXl8CyKwHArbOcwAqi1NieqcU=,tag:vWj/a6PmWq0/y6NQqpzOVA==,type:str]",
-						"name": "ENC[AES256_GCM,data:t31QW9e55XQJJJZwQsc=,iv:ZWFBkY4Ok/NFbJUwznqmvXdnMq7PcuOEoZsCP4PDaSk=,tag:TtRXNIOhCMmXcl8eaGUdxg==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:8g0X8Yo=,iv:fNssrJg9XhWNESYn1q6b2rFh5smSM21dRaN+zWa8kus=,tag:QQNNdBVY+tjxatUOVlPWDw==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:1pY=,iv:VfCYyMORHWQ1txDdZfeIILgoao4tLNlVhG7lTjuIpYU=,tag:inadRxl0iXAFlc6qhya07w==,type:str]",
+						"kind": "ENC[AES256_GCM,data:3m3ZFPKk,iv:FtTB8mqWtahWOu4dC9rTnOPPG9mj4E3PLtpIbqJ8xZg=,tag:y0HzmRjrYJbmXIq8Ew8+iA==,type:str]",
+						"name": "ENC[AES256_GCM,data:6I84I1huCyJE0YTyI0g=,iv:IE/Sqr7/6vdYv2FDjK1MZV4LDFkoU+WaQUO6R06JcBA=,tag:sV28wUZYfrFKzWt82GqB/Q==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:aYDfTec=,iv:WHNGSGRRxgslk4rqq4HeSFB5QiK38jJNEsw/8q0shgI=,tag:ZD/NE4oxTulNYCszgPKYeg==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:FcU9r6e+iN6G/ldJrywxfgq3XFeZeeuYvmaihPq4UAJTzLKK1U86MUANFctJVyX74E3t5RQ/gRgHfLiPtOj/Tv1xkejU3ILhDAn7Jpe0ozHveN7j,iv:LoxvnG9mkOKK16FOLW7TaYh/qBLmFfwF80q0df0HE5w=,tag:5J4cDT7G9upitWzgQ6KvvA==,type:str]",
+					"private": "ENC[AES256_GCM,data:RcAGiToqK6J49EpsdpIVOVGD0uWDmC8GAw06wQGXGUKmwkI2l+TpRBKXkHJ7fCjdYkGu30BWx34yCHKzTWRSJowZFu6SWTXLoQ1XIMIRZ/rYGqpS,iv:G/BopH9IYnNJ94HtX8JFkih1Zlst10AOeLat1HYLOUg=,tag:d2mGrqRWPpcSW/BXwg+S0Q==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:jxWqo+2CUWQ6EBfpMG9kMQyz0szHEmtH3QsUlqxyrg==,iv:iH0ovwvz6eZUVtO9tYTDmCqAPU1C6skixajvlmVu/oE=,tag:8WQykZ3q9rOH6713/ENufw==,type:str]",
-						"ENC[AES256_GCM,data:gZkpMsgAFLgFTcUwBQHe0WPMt47M0donJMIHUJJZzqEJqDK7kiD2,iv:wwW97lghDhp6gleUrJsPcDfTSiUkgZ8RTHZGORICW7s=,tag:N7kVjMXCgSFwO62616vbKA==,type:str]"
+						"ENC[AES256_GCM,data:vcuaytHoZYBmeABgq1TxEOoeo7zOE5PISm9SULm//A==,iv:vE2wruAncJtiaHir0l9deIfh/trwLwuZYuI1Hodbx74=,tag:yFTSKW9dhDDLPbIKVv3EVA==,type:str]",
+						"ENC[AES256_GCM,data:INocEGK1Ne9eIwyJBWAVJkzZk/LMQEwcpGmnXl/uEkcD3cD3c8Nq,iv:9eYFCYy8wLnpt+rI8eAwilbY3hbZpO+VqLAsUrxUkJ4=,tag:/ze8luRHTktes59V5Ki3uQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:HUDSH+imeHEwUYNP,iv:JoVgkHBnKlAPaUSmauiS4qV83KXFfjg3OdmXA/TaQaA=,tag:yMxutGWkTmK2TyDOdIpnqQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:HltjO4Gp7g==,iv:x+cQrWxkOHDmi2unfmj9csC8PDyOREPt8Oc+12SuPtk=,tag:TzRBzfBcRPZtmqcDdKPinw==,type:str]",
-			"type": "ENC[AES256_GCM,data:oCO/hDVeWwDJJ80hC5M2LLJx,iv:ZcVdB/NwC5qxdbFE+WRmmGFQMI0hyNBmCYHd9jRfujE=,tag:DiKn2VFPNGJz6+zo1VF8/A==,type:str]",
-			"name": "ENC[AES256_GCM,data:QQL4DP4=,iv:cXox+C1OBHMxZ+qSo479So0AHHrEMKEwAHmxZPqVCi8=,tag:TUTZ6CWxgY2Vg6erLRGJiA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:areyXrhdHOO+gcbTmVbDNlA6czI6k7rZmyGz29WkFvbGgo5i2eMZiVb7klfofkfkHH7pMiNb,iv:46bZ6u9UnMmPDBKcyBAtHBONS25fNG6dm76uJBI2TaY=,tag:ntSUZvsTlNykO7YddToEGA==,type:str]",
+			"module": "ENC[AES256_GCM,data:oFoj0KLc+IowK+3Y,iv:YQ7nqpV/o+JXTdoKsUY+ajJCbjcdF4hBYOHhxWBaPjs=,tag:a61RhmxdDyIqI1T9yfCDZg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:FGeJwup9wQ==,iv:pxBnqlgh68gruPs1ylllM95i5EDMqiKUwVeqx1L0zvg=,tag:XuYAo49yaRxxOwaWnMVZQQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:/qbQ+CLOqbWs7VLTcI7QlcnM,iv:igmV+9XGR7vMHxZaTulrWdxrqLqOo72NzWviy4wV8hk=,tag:3tvd2vKpoYwIPSZV3P6Xyg==,type:str]",
+			"name": "ENC[AES256_GCM,data:QTz2/AY=,iv:2hc42wx4b7PQ7NdB2wlhNzr3ZOPe8eYnKVSZlLFuvPI=,tag:2F3iqs88YrujFn3v2Hw5pQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:2KCh8980IeppqqDBJBuOPcnS6MY2XpzqwBjXPoMNXy/TKqkKXGL7+tDbBzLoo0U18tq3Ifdm,iv:vYdFifpc/4MVJa92//he1zFGGZq5LAzqjBK00HDd92M=,tag:dkdvvFQjKcx49bqwHQF3qA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Zw==,iv:G3tqSfGt2+9Tk5/Mg+XpAUqMiZp5bv1YHJDTbgWFzSk=,tag:fcOLmP8drgDn7+nhxNnq3Q==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:qg==,iv:xoDJ5jx18zS6ATz5M8TapK1aR+oMllLXnzf65w1tvJk=,tag:iT9vsTaluAFzwJYMKgb57Q==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:AFUr02a0aUygrj0=,iv:gDd24My80SNeP6snxGvGEgqUsfnLulJnpGqQnVgSsHQ=,tag:EeyPzhZYhrbS7dPyEyx8Og==,type:str]",
+						"id": "ENC[AES256_GCM,data:VlSKehzeDCosCUc=,iv:oaY5ZWtKyW8F+gLE7x+kZy23DIdz2kv4VrRO9bYqf1k=,tag:YBDMUjENAL2BMb3EFrWNHQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:/g==,iv:Vy8MBY5k28Xp6QdNaY3G2QVYUyskWT8drtjXaa62no8=,tag:OG1WHyS9cHnyP/JMJ3VP+A==,type:float]",
+								"generation": "ENC[AES256_GCM,data:BQ==,iv:j9TgELjVEguee7Y24/joFt7B5rGt9so03K8F78Mhvg4=,tag:CIt1TiDEvYWYl+wuGdSEAg==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:h1tGIpA=,iv:CcnSJbv2iPFRYT9/RAfpxNEJrNV1aHpFJaffe9sJEog=,tag:OR4P1BzcV7YGsp+9o4STeA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:jrypAEQ=,iv:RUCB6ZuespqlHhse7r/PTuG2nvSrWN29N61IBn09WWQ=,tag:/m1DJ5Btm6hfH8oqG9yuxw==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:ph2ZB9DDisXX,iv:K4YK9JVBhY065JWk7DAs+PcNyU9oJjjJALRvOsTQzdw=,tag:4vKlB50cLjKkNbQJV7jUKA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:bqgiR3lDw2ZKZ6w2wUkwAWHdW+XqxGqkAtOpkM53eEBWLxDI,iv:XGG1KUNnPCqcye8pcb5cbd/N0KlGJkIwepB02r/Z7AA=,tag:UihtZ5Aq3f7F8Z3Nezs+1A==,type:str]"
+								"name": "ENC[AES256_GCM,data:Vl+lGds=,iv:bXrageGXkYhjHVpHY3mbyAyKg+WaKYFl6gF4SXi/pjE=,tag:gspA5qB9ICVDx8n18pGfFw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:CZ73gBw=,iv:ewTRiFICcsMi7BYOqWQ+6JuoDFv6zl6mQl8qjEFOEaA=,tag:NSwsY/HVLG7c4jo3+mfj4A==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:88TCluTeEj7G,iv:VwTUntZj6ctEUKAEIlY3jL0XKARMb/9++3bnPkdWWSI=,tag:YBKD8M2u8d380I2eHON3oA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:b0UnnwMhaQWmvX5zdTlX+NDpBZle2fBhBwGAF4nqQlxCSczM,iv:DDJxJKmtR46JW/13djEWoON29Sxd2UBnKs6Yoe7g4eE=,tag:uaZHgOtWVe5luVi5PdZsHg==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:IdSybA==,iv:fBQsSfSZNW6sBp9qfzVGvqEqc/fTTUEalHttGOy2eXI=,tag:ZGl03P3fVeH/YRmQ3855JQ==,type:bool]",
-								"cluster_ip": "ENC[AES256_GCM,data:HjtFnPJrxv9WG/rcrQ4=,iv:Ys+Sl7stBtWe03Kzu3C+KOZy2N0M+f2eeGhebdjJQdg=,tag:O8yHlx6dCgtuJzc/qxbmAQ==,type:str]",
+								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:vLIknw==,iv:i2Z3i7oWyoesVKG5p3dOy0z8yQ0Q+idtMRVUnHedqP8=,tag:7LNYIoZ3gifRdOGwYgQ4Cg==,type:bool]",
+								"cluster_ip": "ENC[AES256_GCM,data:024ABJUYsiDZISTc+TY=,iv:Iq2uQc2BUskG6an3nFihbcCJqRUiGMSbLwf+xzOA83w=,tag:jw5NrlpLIh2xR+x0gat6VQ==,type:str]",
 								"cluster_ips": [
-									"ENC[AES256_GCM,data:5dwYXAarGq40XwThn18=,iv:w5GjqPQCxdoTC/mfq+ET13cNPdgrYT8E2qm4/wAb8xY=,tag:F7rOmGdFiG9II57LsPmArQ==,type:str]"
+									"ENC[AES256_GCM,data:EdPaJ7WX4c+zjzAMPDk=,iv:vmDb6l0iTawhMCerwSypjeHr+ad+gxpFf7A7aboMUM8=,tag:9ls5/xO95n6V8y/EJIgHBQ==,type:str]"
 								],
 								"external_ips": [],
 								"external_name": "",
 								"external_traffic_policy": "",
-								"health_check_node_port": "ENC[AES256_GCM,data:Rg==,iv:yLR2JvzKOGgUnSfv+Ro3Oa+37LTwAKi/m01Jy9CqU50=,tag:+JVItZNytA6aqNRA/yRpBw==,type:float]",
-								"internal_traffic_policy": "ENC[AES256_GCM,data:qlMpFVNXlA==,iv:7KLnM42TEdBy9pdaL26UKuueH6KZ/YxJLfGlTQqJdoA=,tag:Fxvn9ZorXDyRuoTzT4hroQ==,type:str]",
+								"health_check_node_port": "ENC[AES256_GCM,data:vw==,iv:5FVg2gMe8CVnR0oBUycclSZP/L0NYDFBB6ih2KscAOE=,tag:BclDc9M6cAM239ChYhLz4A==,type:float]",
+								"internal_traffic_policy": "ENC[AES256_GCM,data:TL64mIORkA==,iv:2lixoaZ1ZwAbVOigl7mY2Pv5vj4cUy62q3Bd1X52MpQ=,tag:jp600ffL6Z/7uM+NxBsxzg==,type:str]",
 								"ip_families": [
-									"ENC[AES256_GCM,data:qPNuUA==,iv:8h8Ijq1rD1OdHCsdxSiHBYVo3kEw5LdCayuAPx10VBg=,tag:ME0nRpMuVBEAEltgVZ5e8Q==,type:str]"
+									"ENC[AES256_GCM,data:TeUtmg==,iv:5f0cbjedr1wrpHeyXBHRUyjp+N/A8LRj2ilw6ln7dUs=,tag:pJGW+zDzDQgKBSxGeIR7ZQ==,type:str]"
 								],
-								"ip_family_policy": "ENC[AES256_GCM,data:1OCUWJr75+ggdIM=,iv:jf4pmDOHNKO9UdQ0zCUnn+AA1Ic2v3aLttzvX6TxoeM=,tag:/6voywAUmrVoiyoZXPp7/Q==,type:str]",
+								"ip_family_policy": "ENC[AES256_GCM,data:drIJmTJWCzTzwK4=,iv:WuyUgQsPJyAXqeMcXxzFnAZsnZx/bhyngLVyYy2lr4c=,tag:O/lXQMLAVsM771/Ze07oRw==,type:str]",
 								"load_balancer_class": "",
 								"load_balancer_ip": "",
 								"load_balancer_source_ranges": [],
@@ -2230,20 +2437,20 @@
 									{
 										"app_protocol": "",
 										"name": "",
-										"node_port": "ENC[AES256_GCM,data:vA==,iv:J4w3sTKdfVi6wsoER4wFv43tu78wkg3jX8Z0csveZ3s=,tag:WkYDBmruTmU3LeAbN1CVOw==,type:float]",
-										"port": "ENC[AES256_GCM,data:uR6BmA==,iv:c4huFmGP8SZJFX6qwc4L9lC78pmsHargdR66mSrR3Ow=,tag:4AInwlVlbHS8zCc6zS8mOQ==,type:float]",
-										"protocol": "ENC[AES256_GCM,data:DXdj,iv:nzMvnmlXvt88PQcI6I8bEMU90RYNOKrxz84TLAqRP2o=,tag:ygOK/Mop7gx2Usl1mwpf6A==,type:str]",
-										"target_port": "ENC[AES256_GCM,data:TaLaTA==,iv:CZ5k9Kcyq8j82phVvfW4zs1E2QoFBDgVCN3qpbhuj5A=,tag:LLSZ5HhAESMaLL28cXh8Tw==,type:str]"
+										"node_port": "ENC[AES256_GCM,data:Hw==,iv:q7Bbzghe7+3KezeISmCxZ8ibTvCBJECkhFDAHVbMsTI=,tag:mBMj9Busb9ph8GH9xUxO1A==,type:float]",
+										"port": "ENC[AES256_GCM,data:oWw8xQ==,iv:zU7UkuNz6xmxPGaCRZVF4YwFZC+6qUz+2D6VZPYRpLM=,tag:WIpxKR4z9vlrWtSspXX9ww==,type:float]",
+										"protocol": "ENC[AES256_GCM,data:Hrvz,iv:STIIuTDIEbXtSDjVi0xgimxmiHlI0Q7CjdGeFaMEDYM=,tag:cBo3E/IgzdVhmmdxAOpWvg==,type:str]",
+										"target_port": "ENC[AES256_GCM,data:gKnERg==,iv:Kj2/KD3TO2bTwzJmGbTCHLT5SflxRhs78UTe3Ty1INc=,tag:YAWiyjeui/+eG31znz6BbQ==,type:str]"
 									}
 								],
-								"publish_not_ready_addresses": "ENC[AES256_GCM,data:09MVPCE=,iv:8yRTvgu7jKRHvFgE/CL9uqTM6eM0gRfkbVU9arvstuk=,tag:ZAfCuWmA/bLxt4vtku7OOg==,type:bool]",
+								"publish_not_ready_addresses": "ENC[AES256_GCM,data:XBmflgs=,iv:Mzot3QdSZGFElgrrv77VRdfRESBQokc6eGpLvdMVK9Q=,tag:SWG77QtSVxerBNqAYQIEBQ==,type:bool]",
 								"selector": {
-									"app.kubernetes.io/component": "ENC[AES256_GCM,data:xuQL3LLyyw==,iv:5L3ff2jAY86NzbtbSz2bUwUIj546DbUTAfE8LFrLw1w=,tag:u6IWmbmLcLlc9XWOV1aB5A==,type:str]",
-									"app.kubernetes.io/instance": "ENC[AES256_GCM,data:W64/GhMyhN3yPUJyqyBiOQ==,iv:Lc8wAkup5ZIAs/1vTubuEEQK3X1PcYRaFx6kXmvA59Q=,tag:U4htZbMRIHfaKw13qvaA4A==,type:str]"
+									"app.kubernetes.io/component": "ENC[AES256_GCM,data:G7EAz/DETQ==,iv:dxyMjtBpS6vhewWFT6qBl/j5YwR5I7S1CCNXhHW76ME=,tag:+evIvnQKLv42TngEkhtbvg==,type:str]",
+									"app.kubernetes.io/instance": "ENC[AES256_GCM,data:nVKzS49N2WNQdn1YtpdPJw==,iv:t8QuMXsQSeVhGh2pj5lP3jHch29Yt2y9qP4j0FAuWQM=,tag:ZvZL6cSQuY+VokHAeD1jyg==,type:str]"
 								},
-								"session_affinity": "ENC[AES256_GCM,data:mhF0lw==,iv:SxpAPdpPD8VqWDcDhhxWpDHgMrrCkjl3ZhUauvTd5lU=,tag:apquMTpn/rHXxe9/AkOEUA==,type:str]",
+								"session_affinity": "ENC[AES256_GCM,data:g3nREw==,iv:nFVRDcYfKBGoefPNxLFaQDu/RisOX7r46DITIuF5tqY=,tag:lE2XWGW2UZIMjpyZhS/Jfw==,type:str]",
 								"session_affinity_config": [],
-								"type": "ENC[AES256_GCM,data:7AzbkIMqwUXS,iv:afQOXQdZh4yD/cnZokZUEVJDVvBvq+mMktIzD1UDYY0=,tag:V6vqjehe/9P72nV2BJKjig==,type:str]"
+								"type": "ENC[AES256_GCM,data:/Fg5nNOuVJRx,iv:aHFl1eXDKtAgEKGnUMYT5gI/9iWor6DKBFMvDM9TfmQ=,tag:l9QYf9Vb/iDrtG7Ffh4r7A==,type:str]"
 							}
 						],
 						"status": [
@@ -2256,86 +2463,86 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_load_balancer": "ENC[AES256_GCM,data:r98dXQ==,iv:a4hgfhYkG0lI5urPNO4bY8xzAqmG0ir5xwaUftO1okU=,tag:bImq2hv9fK3+a+b9f0claQ==,type:bool]"
+						"wait_for_load_balancer": "ENC[AES256_GCM,data:xxPUHg==,iv:UNdYeIIC7HdW0VnHkQGRN2ZznAx7dF4zlUoazw1iwik=,tag:R8K7451k4ZyF0Sn+Mzeglw==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:SA==,iv:Il7T6kfgI1RpSZgROUhm/UFFRRJKVPvEMhSA0Oi/N5A=,tag:I5MIeemuywry18CbFH/vFQ==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:HA==,iv:9VB8AVqD06dXMIVPifSjLEfmdQ39Jms6YdIejfqg2Zc=,tag:EK3D2EE3rKI2TzSfJcsd0g==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:y5o=,iv:cnlWS0gRBdIiVf2xTxYlMJqyQvw3CLKOsKtJrOJyWEQ=,tag:2DlF4J4RJLzuTZ23fSyt7w==,type:str]",
-						"kind": "ENC[AES256_GCM,data:0D332I/L6Q==,iv:6S1BfZ53JiOtDwODWmv58UonuJ4ik0LatLYzg7eDLSY=,tag:ONFp9CAKpf8ejHphcwprLA==,type:str]",
-						"name": "ENC[AES256_GCM,data:gKxiuEs=,iv:QS3THJEVsEQDLemWr92QBopQdIyv1WjPBCxBXKoTHgk=,tag:CzsRzgUWybd6ubIoy1UzhQ==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:UrfnMAI=,iv:ZyZwSlGmdL8GNSL3JAYe2lQMnhSgnT5QRGUZzAmuloE=,tag:vi0P/egwT0nUuSjLXv109g==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:qa4=,iv:7M7En8SumhkGtxCaNK7OQEZvO26TtmLYbDBPhjFeM7M=,tag:Oerf8w3Ia45JPVHLIYI1vQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:vjqMWspgyQ==,iv:UKZa4qJ/DMMl6p5gZQ3JLKKZDiK+dW4GmUoQFfpM0UI=,tag:ZqoFQb1CQkHHNqhLdGl3rg==,type:str]",
+						"name": "ENC[AES256_GCM,data:axNHSFg=,iv:oBIwcU9lFSmX8wdg+C5poHk1Y+c6Uhqlqb/fmH2KVCk=,tag:hFxnAUnOvj9PdZa4RL05JQ==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:t2Ctm+Q=,iv:TxISFevjIOJIUc+t/ChSKv7vEtGd28W9ZpUt3DXmR5U=,tag:ej7RO+wWXheiFExmI60fAg==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:i5mArL69sy2JoW7vPEG1yo7gZgOF+dkYpqb1YuXkE8d57gG48V9ZlBB2quiRvJAl+M4pcDQQBFhBZNo1dB0vrk0l1Y/LSTGIcUurB09VkDoFQQfXtYAdZ2bne7P1Cw48GLDw0KpMY1Ay9089dixClfQijH8=,iv:ROk37CHlNm05p0BWpeWgf0U6y8mmNQCsg7U5x8fckno=,tag:M8Wx8bBCCcRNQSbxrE+XjA==,type:str]",
+					"private": "ENC[AES256_GCM,data:qQED77/Xv1q9yXZWUlvrVZWg5IKFpmgJZh2x3Qg9/3195UHVwjvBJ4ygm6vuovt81uylOs35ln/V13/2AQBkQX/Z2bg9pbk6AaJ2+UJhl1XLsp6Ixg5krw7NPD2TN3q+8CbCJfpOvQApl6gDOS3kG8XmDfU=,iv:qn4W36oPHvgijlc1Rh+awL4NKUGa0Y3EPZNilu/FXmo=,tag:lPnVmLJrCBNkAMBi9hFWsg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:GKSzR+1sOIHEhXLiz7XZ27KT2ncfjFXWBJMI4QsLBQ==,iv:4739ajaU5dWXOlqxib71LAr8Ayr9fiQZ4O2itp3CrN0=,tag:B3qMmeJXAgDCLoxe+LGwDA==,type:str]",
-						"ENC[AES256_GCM,data:HT+UOsPsEwRN6vPpaCfF86MDdB5r+cYNsEoqOca2t86Wjth4UTNzAcrRshj4sYkm/puEUY3Y9w==,iv:u8aLoq0Dt8uX6MD84LIDMBU+qTy3AVgPGNBrKPMfapY=,tag:jAHNrTx+OAt5BOiKvi1aig==,type:str]",
-						"ENC[AES256_GCM,data:TqyhNEUlvulZ7fcynQT7V1Qd1HIgyjlzAFFdsLiHkUf1ToyA3UT8,iv:UHJghVa7Ecg3whNljuCVPFtgdQqn5wnkEL/rqh8FAUE=,tag:DLsL8kwViP3QEBMTXpeDqw==,type:str]",
-						"ENC[AES256_GCM,data:h36KdTLCuxoMd53tQvBA6zM16w4MO37h93lFPDR9t3Wbimidcb4Q0CIwvodek0s=,iv:Iob/P+xthfpjhwLd4ZPXGPbU/hOOOlDbVICJJG9/Tdo=,tag:xeI14KhEAI29wKJlvUZ4oA==,type:str]",
-						"ENC[AES256_GCM,data:rQUZJjWVOeSYwOOB77eH7m6bLBolZCTnvhVy69SnuUK4cex/F6576nMaQ55dnBbgS1rJhm8atqI=,iv:0Sazou/yzabtU44OaClMMASDLJOKcqrQs4nIPZkMqVY=,tag:sivssDrle2Ws7K5J81hcFw==,type:str]"
+						"ENC[AES256_GCM,data:E2HgN0CZzhLqkZTX9o0X3IeO7ExrF0QGQ7vyafRsNA==,iv:K7s5aNKwG7z9QLecvjMIqfcMDzoepIusvdFoFGhvgS8=,tag:ARex5nlUW4lNswEw7Std1A==,type:str]",
+						"ENC[AES256_GCM,data:5KHAiExFsOvQmkDl8EhsTWm0oz8445Xab2GahK11md7B7nHoH56EmOiZXxT30895xfU2mPZPjA==,iv:P1qpIppjupVUlC1TLHSe2h9cXIFwOap8WOh4uz/s0zs=,tag:vCw6HIW4TglG10ph4zXZ0Q==,type:str]",
+						"ENC[AES256_GCM,data:0I5YGqEBpW6ceKBIBhMwvGPT/nF7sZT3CBKB5OPnXTMo9ba3+eda,iv:fx/h53lgxFNXMYJmnCLq/26bevOwpxM3/ql0zo4dJQI=,tag:5/lQeMCtR+2GyyLlnT7LHQ==,type:str]",
+						"ENC[AES256_GCM,data:tvKSXP+gjpA9egWOZHSwOcFHJE8X2vgjRp203asKmZqOaKxY9ecjAu2meG2ic0k=,iv:iXhwJBSAd3ZB/KEQTsEpJqbBzHepKRJH+ezKf0KIOyk=,tag:1I2Q/upb2cP5gBOEGWIbWw==,type:str]",
+						"ENC[AES256_GCM,data:bIkXq5sHyDkmeFRQQf7T55a8RaOy4ZYoN55IEaVplfcjIzMiD30mH3U7XBYjSaqSTzdkjq2OMGM=,iv:nyMjb0PaO9NE6yX9XjZ7f8PrYeGXpXEJ2Tni2jGTQRI=,tag:CSblpF6MtPYG1/GGdL8wcA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:zfOCru7ZM6gp+x0Z,iv:OiOXdFP4fLbjo7QxyrrgsgVcR73WVK1gxXhYgLe2P/4=,tag:3N5D2fjXIEwwUvdWCYEIlQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:Qh69o6VXgw==,iv:/+eUX0JiSZBW1KZIQUsUwYnPTJVDV3WLBWnUwl2GO2I=,tag:KG472eBaYdekjKtZ6RFWsw==,type:str]",
-			"type": "ENC[AES256_GCM,data:jXYIli9im9cqXODov4UltrTf,iv:t/BNRt7OOlOhGRF6+H8M98bFnhJozyVMvTH+BFnRfPs=,tag:3G1WEbOIS6q4QIaVjh+dVw==,type:str]",
-			"name": "ENC[AES256_GCM,data:/BKTzfwblQ==,iv:Gjq6cugvRdvIsCaR1KvP0VAiOh6if5Y9sM/xmLCBsUI=,tag:vljoxaEz5iPfMiSvPFs10Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:OspUVPIHmd5r0kibWxIa6rzqdIib2Pqbbt20VrHSF/juGxaoKv8IFAGFghVmCsl5FukJUtqG,iv:kUFuK0/BGryoRDqiNkvNsc1i1Vu7ncj9i3t0DI9t0FI=,tag:7IYsmloiGERVzU1iqT/sTw==,type:str]",
+			"module": "ENC[AES256_GCM,data:jKVO5ALVDOeeTEi6,iv:ydFxkGwhKtva4iFQQWYUan6CqPEIRvU7g4YqIc18QZA=,tag:lW7i7y3BQmsYoeaqkuoE3A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:rT0kATuIBg==,iv:Ag+Q+oX81qg989VMBuZ5BlYo6JeyeMzKRGNwLS/QO1M=,tag:LZFfMwZCPp9yunVFL0d4uQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:nhqKLkGT03G+TphjijLeSYgA,iv:lNWHGKMv3M1ZWXNCMvNt4xu1KZkC+Sutdh9l9UxbvmA=,tag:LeFhKJWvqaghmKTm9eavYQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:uwDu4FBtRA==,iv:qnvb1AC7qt0JDk6NPFDCIUHeyyGA/VfWqQOxC1Nmpew=,tag:8YUEX7pXDZqHMkuv/avC8w==,type:str]",
+			"provider": "ENC[AES256_GCM,data:uj9vtOlawA9gWqxoZz3AUaRjjRswrnoXvt2WtjfFAiG4YayD+kJTds6HwtPDYCh/D9XO0oQU,iv:YtYi0esZs7hFWRIn76y+fD7DzcpfmNqVhfWMxhOWpI4=,tag:vxe/kada0banL9fBDSQF4A==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:fQ==,iv:yBeLG4c1iaOgchd9W9bHIlXlnXUsFUt9AzvYMkQ67z4=,tag:7lhi5nf8Tc30TTh8RTZLyg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Wg==,iv:9TMGndPfVPyz3Y93XkgSoD2wMdOC7WEoW5stu7loBhY=,tag:cv3lrwmhuwXDXHhUr4ZabA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:B9kUz6xabI4d5/TuuA==,iv:YfLlaBbCq5qO+Y2e30vRb3HWYJdxrRjyt13YqlVppFs=,tag:OLUJ4UaSfA2GtCerxhIGow==,type:str]",
+						"id": "ENC[AES256_GCM,data:Tpd8iz90mR6sbt4fAA==,iv:EWDPG2FTiMpNrVTPmlwvaED26jPqurupB/puhjeWPHI=,tag:cGsbg0ScLKmAel97Er4zNw==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:IA==,iv:vXoZIUVgqaO9+IyyRRRyp//SiPzm6tFZ4ti0Ax9Sgjs=,tag:F5m7UbZqotBWF9ntHtusmQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:+w==,iv:H4CFA7zHvq0+1TLhGJyLsHcbQArTymDIHS+fLl83HAU=,tag:j2WxcQpi8I9uq7Cbb+rg1A==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:34i9BF2f9A==,iv:jqy4Hifn/NhpjYZVgAwyWmBb0l3p8h38c/5DsFe4TVw=,tag:zxT6TNVsERYW0lT/1q5Kcg==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:DTrIAsE=,iv:RjUEXgYYuVtS1B8yc+n5mId/wrsKv560e8Ij4Fi8xcY=,tag:zn9kdZ4v0dlsEvuydniuPA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:zI2+Ug==,iv:xmS3p34eVpFzcKh8XTcw56YB983leflazS13B2Gp25A=,tag:/0DnuoTIOV/jbuDFriGcMw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:YhoRhVYqSmVJnWClDzKqGQuRpz+7RrW/3j4LP9CHYci2G0ZW,iv:IZf7mFbm4Jdzd1Zh4sJWlQLXRYBPgbDEZSk7CJ2VaVQ=,tag:YwVFAya4bXlAOFoeDRRVjQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:ZyR1zit5kA==,iv:C/Z+vW3qUUBRke4+QQ+LffJU8DnaRDn188mEXvMyG5k=,tag:VbaqsBWfrJc/8TI0eqT8EA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:K5mdV1w=,iv:0x8d8XO/y7RSAkvjd7s/w+jbW0/BcHaPtpSUUu+LImk=,tag:v4O0+jGVWSNxOqoKaJVQ+Q==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:dD9dYQ==,iv:JDPDfCWfyNwlQN1VU1itIPgTtWzj1X+LleRnc2Xlx+Q=,tag:ZC94ovUKqKZxIKNrxLfo+Q==,type:str]",
+								"uid": "ENC[AES256_GCM,data:pSv6Yy8lasXKYPvTiacj1GjM4aTPOQ5e9u2IFc04Gonf/444,iv:hRDLRKEfVtJjcwdH4gumfakEIV+0st95tKGSKrw8uE4=,tag:TlAnrrmQVJ12PSt5dy9grA==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:DolJ4w==,iv:p7th3rocd+o9ECj9BGNtUMRecVthvYUhaKngmzVJ5qg=,tag:TWUskRUVje5qJ4j3EvGzJA==,type:bool]",
-								"cluster_ip": "ENC[AES256_GCM,data:DvhqNPvdMOweX5o=,iv:KQL5Yu8TkYPfmAfYXqtil+SUr8jHzgSn9qq4/469azE=,tag:gdxn4UR35D+vjwZl1nE4sg==,type:str]",
+								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:2/4TMQ==,iv:ZqkIu6m+d5phROiVRK9uJupYLVGzavJFhYvcxUEsnbc=,tag:HpwAS7HGUYQE3LOZA49XTQ==,type:bool]",
+								"cluster_ip": "ENC[AES256_GCM,data:C14IpN6H1JWLqgU=,iv:Ox6ipzmhnpEjY8AT5yFlmIyD+IgPXDKRsICY4sOeQG4=,tag:BpmuI8lvh6QkdLqUD9wLRQ==,type:str]",
 								"cluster_ips": [
-									"ENC[AES256_GCM,data:HfZkTMyeXD+M8bw=,iv:L19znkJM/2FtULOdWrsc7pWyvksXmn1XfL7GpOPrg4E=,tag:hagYrSnQrnDMmtcFS6YGjA==,type:str]"
+									"ENC[AES256_GCM,data:l3XsnyWhOtR/ipk=,iv:roVz0K4tgb/2hwI9xsB3zxlgUal6HC79Tk6hVs4SfWo=,tag:NFplcQgh0UiMnyDhxNIeMQ==,type:str]"
 								],
 								"external_ips": [],
 								"external_name": "",
 								"external_traffic_policy": "",
-								"health_check_node_port": "ENC[AES256_GCM,data:gQ==,iv:cdc3ZGdaG/4MFyElMhA3dYgBBkvYoGLUVkL8rneI1v8=,tag:WOSh1T7fp4c/PHP3LymMaA==,type:float]",
-								"internal_traffic_policy": "ENC[AES256_GCM,data:qmHGnVHf6w==,iv:K55vCHffI6gxQzQLoJ4KNOxb6FBtCSNvpJIE6xq9KE0=,tag:EAsRwPzNv8YBItUH6KoQQg==,type:str]",
+								"health_check_node_port": "ENC[AES256_GCM,data:Cw==,iv:V+hPP3XRP/wqdPSevHzKSiBVkhc1asDtpE2RIzvg6TY=,tag:TTVL0iOrl3hQ1Vti0KSSAA==,type:float]",
+								"internal_traffic_policy": "ENC[AES256_GCM,data:TseIB6u2gg==,iv:pJiwQ897bVMtUIl+dkaRPa4wWu7kG+oKrth//Fd0sL4=,tag:BnJFtrcsuACc93ffQWxumw==,type:str]",
 								"ip_families": [
-									"ENC[AES256_GCM,data:4xTTTw==,iv:KjQ7+eEGx1e6m0Mj+scYQs8pXo/98wizN1ZuO+HJSL0=,tag:MiIQzHfY/9feE5nlTy2irA==,type:str]"
+									"ENC[AES256_GCM,data:mxhmDQ==,iv:XX+qVO5ShgQjtJMG694VnutkaJJaOmpr4iJ6+kRufAQ=,tag:GM5t8yiTmtTwkvcS0gXe/A==,type:str]"
 								],
-								"ip_family_policy": "ENC[AES256_GCM,data:jVzEvddlKjtN/YY=,iv:yTMcRH98myRqNb1Sw9seBS1jBQdobElhjeFG9nFGZ9U=,tag:roeb9fOWhoGiX2uiOVlcpw==,type:str]",
+								"ip_family_policy": "ENC[AES256_GCM,data:317sjK9uUU/mIwE=,iv:JpqwGzfdwJRxZv6Bu3jkV5r5163nAb1JA0XaEsAJVuM=,tag:yDz6XEhR+J/TuDqArTJLgg==,type:str]",
 								"load_balancer_class": "",
 								"load_balancer_ip": "",
 								"load_balancer_source_ranges": [],
 								"port": [
 									{
 										"app_protocol": "",
-										"name": "ENC[AES256_GCM,data:OJWHm+CLVA==,iv:6lMg5yW7Jv3hmFGv+TRC/8nl8+elfmtew7iwXF+Wj24=,tag:jwLU8XePeCOPUXTSYSE9Qg==,type:str]",
-										"node_port": "ENC[AES256_GCM,data:tw==,iv:tf1yB/Ke2Eq37/Iyy0uSX9PJkrLvXDw5NQ8/FnmhwmI=,tag:EnlMJhp5vOrCW++X17asxg==,type:float]",
-										"port": "ENC[AES256_GCM,data:im8=,iv:zGIEPYV8qzcTOmmR+HYkPtcKxz51gZB9dFDtPvlSpHs=,tag:7h6RkRvAPdlezwpsDZGSRQ==,type:float]",
-										"protocol": "ENC[AES256_GCM,data:FCIV,iv:X87QkKw1g5fj8DMO/I4hWuEhz727GXmdbia98OQzyPE=,tag:CvdYn1d5sfuoFI9p0qPsmA==,type:str]",
-										"target_port": "ENC[AES256_GCM,data:eXk=,iv:6/J28yWfBTJyXSFIjOFMZb8FnKjfSMhOVKNoBhTSqkY=,tag:vib9Ncjt03icRigfjIxiog==,type:str]"
+										"name": "ENC[AES256_GCM,data:zY/hE2M+GQ==,iv:PFJs5f1vpsiCuoesR+Ljr4p2JnAWJk0s/L243LLkupU=,tag:rMYQqLZbEN/9BAjcWQiVJA==,type:str]",
+										"node_port": "ENC[AES256_GCM,data:2A==,iv:mpes7w1Y1zIgxrc5p6v14L1YKzRJVFtH4wU8SungS6g=,tag:ncTXu1qHBhMR+g7jsN1ZjQ==,type:float]",
+										"port": "ENC[AES256_GCM,data:o+A=,iv:l9McFqqyzNxJhObBAUk7uhEJ6+1MGFzbn4BWSLxhghI=,tag:BL1CnLTxbjk5wcbJQrOsQQ==,type:float]",
+										"protocol": "ENC[AES256_GCM,data:Cipu,iv:ryIJE+dsvOgE5Ng/j2J72KjrMHsuDQaBC3Cxs9NC9QY=,tag:B4TqYHtcHkqCYUwIOmInpg==,type:str]",
+										"target_port": "ENC[AES256_GCM,data:wc8=,iv:Exz7RjrDXUCx1nNW4/ZEFo8kkGOtLA7Y6UCgbdEVsQk=,tag:sxdxldvBtqsTtVh5ytoCug==,type:str]"
 									}
 								],
-								"publish_not_ready_addresses": "ENC[AES256_GCM,data:OgA43BU=,iv:i9UG4FalU5gZSzN0tXVrOq9sJBzfgZzUcg/vAuJsLBo=,tag:ZLAUhFJ2DUg+xtJ1E4wU9Q==,type:bool]",
+								"publish_not_ready_addresses": "ENC[AES256_GCM,data:YAhbWFw=,iv:+Hk3IDjoPSRAhuACj6rJncCxIS48VgfKudDD3wOcS4c=,tag:cPigIOVGXqnx16KqVDV3dA==,type:bool]",
 								"selector": {
-									"app": "ENC[AES256_GCM,data:g7a2d6OGaw==,iv:r1LKel3xVeETlTo2q4yzLrvQ/gzvgCCpYoLQLh6O2p4=,tag:VxXM+V7oeuu7jba7jlFJng==,type:str]"
+									"app": "ENC[AES256_GCM,data:C4ryRlfBZA==,iv:v4EMqxfMtiIG2TOGzF1VeQDe5N6ExTomRmInUU6apN0=,tag:MuzLILtBM2pQcBXrN1aTYw==,type:str]"
 								},
-								"session_affinity": "ENC[AES256_GCM,data:LdQ3kA==,iv:uJhsV7Ea76ZVb0dBR4wPSJmL1c/GlJ10lh2IzRbsoqU=,tag:WnGtndYtphOYziCfHWQVJA==,type:str]",
+								"session_affinity": "ENC[AES256_GCM,data:RhepZA==,iv:3M6JaYiMFIcC2uAaf1Dsj+WNtgMWzHQfCf1+fNwQ2r4=,tag:Jrm4Kp7velwvi/IAPHtZHA==,type:str]",
 								"session_affinity_config": [],
-								"type": "ENC[AES256_GCM,data:eCtjq4Hvc+gY,iv:fGeD87FQ3H3md21FRkj2oGooMgWLW5snMRIb2x8FHyA=,tag:Y2JamkyqU2tSm/DBAkEFpA==,type:str]"
+								"type": "ENC[AES256_GCM,data:7O0qDDqz2RdV,iv:vHWYJ30t7nHTyRzQ9eaMoVK6MgVkmIvDR7zAxCREHqo=,tag:pFmOFGo1pKnaStTiwZECyA==,type:str]"
 							}
 						],
 						"status": [
@@ -2348,82 +2555,82 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_load_balancer": "ENC[AES256_GCM,data:Iuc3OQ==,iv:1dtHOFKNGzTezQTn4vxJ6Zf6ahY574baIkhNAIrDSeA=,tag:ybhVxCXFI01KKpBFd0N9ew==,type:bool]"
+						"wait_for_load_balancer": "ENC[AES256_GCM,data:miWLmg==,iv:u59MBqwJk53JMKXjfkslgVHrD1HeNaBKVcnC2jHPnxM=,tag:Qc5KpkleiKIXDPF8IlO+OA==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:xQ==,iv:U0e49h7kGUKmBEiD2MQHCkgszhwZBeb8AxW9OGF+YDU=,tag:1hymMD2A1YdDc18dh/RlLw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:YA==,iv:tFL3t2PiEFtypXZ0uglqqLH9yiiqeszHzvxH8T41ToI=,tag:xV7KkaCH0gqZMDwr7fRypw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:GDw=,iv:bDLGrGRKQSuhkJ7v67EFzgfbFlMi33gTsgdD3ReGOYA=,tag:qax5hz2bts6DKq7t9bkgOA==,type:str]",
-						"kind": "ENC[AES256_GCM,data:Cxe/iwv2ZQ==,iv:gQUU1WTSBFkR5wv3aiczObR2OCc3f/CFwteHeLQXXbM=,tag:Dr/og8hzaWiW69B3YWY3lA==,type:str]",
-						"name": "ENC[AES256_GCM,data:P2LRgQfiOg==,iv:lp5qyUPbqxeomMLiKm/ta8CJImgP+BbBNXpKPqeQAxA=,tag:sp6frp4oHLSPV449AMw6Rw==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:re81z4E=,iv:6cFahWI32WVwdsazF4LqrafgdOXkeHCdQGJdXKfNvjU=,tag:T11FONVAAyUxSd4UmH13jQ==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:4MM=,iv:GteVaAoeJ4evMOXZ+n0FuJQCzykk7xVE1bkGt8NVq4g=,tag:703fh8knsWx1NcYMBHho4w==,type:str]",
+						"kind": "ENC[AES256_GCM,data:v2THqYm+Jg==,iv:m70p73OP9YVh/bUzm4VU9OwOTdwSQvTqUVXvt4bx85U=,tag:chBqDFfBrKvNI3CCQ4A08Q==,type:str]",
+						"name": "ENC[AES256_GCM,data:sCbmiMW9Mg==,iv:Byc/dG6jVmp5dV6g7/Ff1yiazj4R1/zdlxHADOQn15g=,tag:3sXUcvoDwkmKyHI5aZntLA==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:oqqvM+o=,iv:BxOAt4SH/m2e17ESsPMq6SHvVNka26PK81F91daxqZo=,tag:U00LyPurm9vYS0Mfsp+pXA==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:03M6L3p0JnpMqfBq5+q7uy28TrALKKqhXDr77LuIjwaItVUo9TbWR7JtWS0Fi4CQVmomdHW1d4PFq9m4eKHmuVnRpRaoG8Z6AFFDMs38BPzytPm1WPtYtO3/JrCVsf+foFfAPJPU/3S9/3EHx0//mBbrW8A=,iv:Fy41ZQvM/aVvuysF3k+SSKIniTHN6ZenvMVnxLk8vu8=,tag:rv5nmMFdwv7uAzICd1S37w==,type:str]",
+					"private": "ENC[AES256_GCM,data:RUBm3tzDULumHoC9DRC5AaUnHva47osRGRNhlYxfo7MrSQpNv9fAHqtWGBhpH98Zwti6LWBPk4Emtv3f9l+1J/4riHy04bIYcSqh9jrkoWnYp/hwPzpmlp8+V8QSyB09IWvurfcZ6qlDSuGzbK3aRwu14H8=,iv:qZwZ7LEKSbx+IVaj0MTKbRrt2G/jbyrEWEqxZfdj07s=,tag:LSJDsADlOk7IHbdVQVdvrQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:gmQFcIRWqyA9j2nnXCpfifCxeLry8WYPrUSNJ+RcdKK3Fx/uTSEl,iv:ak9hfOPwb9Y0vyoRkmHabsynhWVLUzIAfHviTtPIf2k=,tag:cWmo+uEshH5Ckv2YscoUtw==,type:str]"
+						"ENC[AES256_GCM,data:NxeHij/T2SC//QjONw2yi2FxDujkKhQ1z/tIvZ8idLuL9ySDrCuY,iv:I4igX2rwp43WCF4k/AFloqjsglbyXOUDunUlRIVVwZw=,tag:8dDjq9dpqs+O/4jwDe0Bjw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:yUzF38W5KuoisKf6,iv:gjyC6Lan5eXj39Dqr2OMFaUsQSsL1MvhTXSc8d7M7rM=,tag:v92hLdQZzIids0q9bAu/Fg==,type:str]",
-			"mode": "ENC[AES256_GCM,data:OhjDV12XPQ==,iv:5KhlYRCNRhDtPZSZQdy/Bsz1y8gF+rxQ7ar5wktXTW4=,tag:f3aG2mlMDLuX3o9jcp8rgw==,type:str]",
-			"type": "ENC[AES256_GCM,data:awXKISszTF3i1xZeIw9fHb8S,iv:X0nYyqvMpqGK/tUcxfiIa2LmXOR5I7vKjPa+JrgJIwc=,tag:Fp4fUH2WMloEAzw6g8LD9w==,type:str]",
-			"name": "ENC[AES256_GCM,data:m5DQcsIAV+LzxA==,iv:0VkXNe83jbkqthyycXq7pfIbrO0KQah3yKNJZMi1wI8=,tag:vJq7dSRcSpwWWEMSbSdG4A==,type:str]",
-			"provider": "ENC[AES256_GCM,data:kFNUmC0H1RMBRIOm/88TuFBZHPGcaJxqQ4484pFWCGoIpKh4bSktZsflXjES4eNXs5USIut3,iv:cR2nAg+ktl8377TPiPlAmlmgRFOij7fSq3FJ2/YUeKs=,tag:9Z++e1NgjvtQVT4IGqsIgQ==,type:str]",
+			"module": "ENC[AES256_GCM,data:SDHrRpnZNidybtq4,iv:AM51+/49oDbHZBEMNvY1hFT7FHPCen9LcNi3tWyrshI=,tag:SVlxK/gVc5F7oeIqAih+QQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:2N+LzGujYA==,iv:Xlskxyef9iU+/xm+zg22IqG3Dg4x3D9a237ptsKRwDM=,tag:ua5o7c9JDaa1eyMuwMyDrg==,type:str]",
+			"type": "ENC[AES256_GCM,data:xWF5mee/WTtQzD6YE1swAaWi,iv:STHl2PRCjZthd4GcgWWGk3Mas/dxnBzvT2dz+sRYPrw=,tag:zEaXScHUmuwweUOMuvuW5A==,type:str]",
+			"name": "ENC[AES256_GCM,data:a6qyJLi4XPoJLg==,iv:82QnIZ0gWKJoS7Edxqi8tZj8iqIH3YObyjCq+BlHjO0=,tag:ALu+f/mn7/KKWTwFeOPMYg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:XeohK1mN4pOBK6YJFV2Sf4eLW5cMdi6b+S6zCSZ/FXuJEhxZ8IvrAL3eIowEpVttQotJiUGr,iv:2h5qP4g3ulKhuTRENOfTuTVnTmQom1r2pL13orpXpnw=,tag:bjTrj9XxF34Yaar+UnQc0w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:+w==,iv:qAJq0wgr5UszZvzQgD0OWhmyI/cugoPmJcQbys8mZ5A=,tag:nVom3L+0VdyfmLOZsWQxjA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Ow==,iv:DIlboI77pWVAyC5yvqCkI+Mmf5ytu2cVdAFUjt02G0g=,tag:R6r4m3qqRgAVBLnCDbMuBw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:hHI4SLGVqrWh,iv:+7FldtkqCYZuVd1QY5UaBYMV4A9MKw7K68hZdcDglZI=,tag:rMGl+lB8TGCG35soanvAxA==,type:str]",
+						"id": "ENC[AES256_GCM,data:y1rtc14K0GRS,iv:n0wwafSfydYVg7rRXq0x4XzdsflBiVqEcjfmd8hsggg=,tag:kcyvW7C8LKuqkr/1XGuGSg==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:ag==,iv:J2KkLvIGut17ABy97wZ1rRa3iS77wrstQIwZvyzqANk=,tag:6k8y+YQ13uQjz2WeXFMpbg==,type:float]",
+								"generation": "ENC[AES256_GCM,data:0A==,iv:BSsRzwcbHXbrf+0lU428O9PIlnUCKlOaiXZRnIIcUfs=,tag:+ETBFOR2QJIKM8+1uebE6A==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:+jBz,iv:v67SVHJXf8JiJKdA0haH/bescJ7ipgwHsVNA/7toCdI=,tag:AOtOttGYJXzTBikWW6YciA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:Xp8a/pE=,iv:1sNeleSBnNupQ8k4Lg8r2eQ2xC7DInVzk3QQeYj9IxY=,tag:LVSZ1/p/gT85z56EcdOI9Q==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:WVHWksG4eEM=,iv:dKP1nOC+Qw4692vaO4h8Gg1JaHl2a+uilJR3mDZi/es=,tag:TW+S4gQuxeRqYyb+locdNg==,type:str]",
-								"uid": "ENC[AES256_GCM,data:caaqQrbIBetaVi/PKKmqtmxDNYO8YQdaNDXmbbRWT7jYXBs/,iv:IPVZDD3tvet6gC2ZCtY1FbMoVjTEik4axGVQcYe8sLU=,tag:fzLNOzgCLvYZqBPdncZO8Q==,type:str]"
+								"name": "ENC[AES256_GCM,data:yH7L,iv:DgMC+IasUhXcd/hVI1e0pBwpthFtxggi+pUY7Ik3VFw=,tag:RIM4Ik+hkuqImilbeg4Wgw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:A20XWls=,iv:WFQYTW9MHmReUPtnZL7evIbBgAwdLppv+Pmk0V6UCec=,tag:dQOlESzqBOW4Hdoo1rWE2Q==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:y/iZJkEskb4=,iv:rJNF0U1pEh/uLXUU71X9MwIIV1XnWBB4TVYHPBzmDSY=,tag:j8yJxO0fzmbOioxzweRaJQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:Qcbxz66evET6XyzRMqd0VAxrgKiJHeyNYuaYXz46wW01Dwq0,iv:FkZdu4pl4IiUBvLQJqiMBJdk+ppKYRrQjtEfhva/5KM=,tag:AflV6ZhgTpUXuF0+Io+oLw==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:vWa0fw==,iv:c2TZ8AZkEMZxN6vIJDaZwSKwr9/Ksh7dRHQaeQkNAv0=,tag:AfF4Sm0YhWoyStL0Pjg3Hw==,type:bool]",
-								"cluster_ip": "ENC[AES256_GCM,data:qFIqOYxlOqnEWI7wfA==,iv:ZRtGpUDbsLD0ljpq3n/egWrqiv84WmEed23e0O50Ufg=,tag:iGjAN5v/aV93zovxuBfZxQ==,type:str]",
+								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:ovS6fg==,iv:4TCEfqk/sHawp+wCfJNuH7sYVIJ1sXMwBwLgWjN9ZsI=,tag:3WBffuvGVqyC6hsuhCS/FQ==,type:bool]",
+								"cluster_ip": "ENC[AES256_GCM,data:kwNWClbAXiubVjKi+w==,iv:tl3fjzPuoDXIcdLAv6SXWMfM95I8LYHkvE9xS43fymg=,tag:S5YADCqq7Vgr3WoMv65DZA==,type:str]",
 								"cluster_ips": [
-									"ENC[AES256_GCM,data:jlnlFc5Ix2vTPFN2Nw==,iv:AUNMjII5QXc+bt0RWWjc0LJnaaXJHlDQ0fv/c0ywTvA=,tag:t2jx++uHKQRvBsTsaDSNcQ==,type:str]"
+									"ENC[AES256_GCM,data:L3LMX7Ql7tR+KFTsSg==,iv:D6rixgX+pZDwlK3OFBr0Hybzl8n+TCxNRt5+o8nOYmI=,tag:nh08XoM2d6wY4nyO0M86tg==,type:str]"
 								],
 								"external_ips": [],
 								"external_name": "",
 								"external_traffic_policy": "",
-								"health_check_node_port": "ENC[AES256_GCM,data:sA==,iv:2V8eyKy49rUCw8al0xQ58y+kHssViChL07wTvK3SPyc=,tag:PHEHU/tndzRNPFiB4IgYNA==,type:float]",
-								"internal_traffic_policy": "ENC[AES256_GCM,data:ldmJglr5GQ==,iv:F1WX600ch7ZcZ+B1JyAIZhYM58Qk7QqaanKCO0NoAuo=,tag:GhQ1iv+9mjpIf7mUQ89iHQ==,type:str]",
+								"health_check_node_port": "ENC[AES256_GCM,data:8g==,iv:eEpPSpOcIZx4FS3bA6RPblS7amRCKhPTetcJh/UcdZQ=,tag:OUfIkVkX4YXU17aF8P5jig==,type:float]",
+								"internal_traffic_policy": "ENC[AES256_GCM,data:muBVjcsuZQ==,iv:WURCatWRzjcQ0Kin0HB9wItuKm0zdlAj3r9l2MqvkN0=,tag:r34W/E+xVrBf25NUS3n5VQ==,type:str]",
 								"ip_families": [
-									"ENC[AES256_GCM,data:ajFgIg==,iv:vNlyNwBmo20Wd+ZOfMtpVxlQOMnmykYeisohg8s2vb8=,tag:GaspvKHcBv8+i/R1zcthJA==,type:str]"
+									"ENC[AES256_GCM,data:6Q1eZw==,iv:xhb/gYl8yrg+wrsVpjsv7lhqsdjE8Ga5V8qlDKSILY8=,tag:RcAw4+qYmMeMfVZy8MjOlw==,type:str]"
 								],
-								"ip_family_policy": "ENC[AES256_GCM,data:kKZDvd/zLqSI4Vk=,iv:Rh/6bRsqv2/uWlgORl2iH4i4hY72uowCFamckHy8fQA=,tag:v9VfT72/8HvNyLivDNv+xw==,type:str]",
+								"ip_family_policy": "ENC[AES256_GCM,data:ocdTQRJBEpdcDL8=,iv:s+gOflOVztzndK/l9yf5vVBn2+st5E6+ItbCKaBZugY=,tag:C4dz0LR/vS7a2sxlxw0OVg==,type:str]",
 								"load_balancer_class": "",
 								"load_balancer_ip": "",
 								"load_balancer_source_ranges": [],
 								"port": [
 									{
 										"app_protocol": "",
-										"name": "ENC[AES256_GCM,data:89Mu,iv:osYaX+E89AVDY8y+iSrPT93Ck9/naP+U9io5Xqke+uk=,tag:Prw7LTyGp2SO8H8T+ty8CA==,type:str]",
-										"node_port": "ENC[AES256_GCM,data:Nw==,iv:G6tUQYvWLZVZp591WtW8NvpZMQ0Fw4LzrBiiZwYOAbI=,tag:F5gp1AIznYd22G8k2ZWpIg==,type:float]",
-										"port": "ENC[AES256_GCM,data:Ok0=,iv:3HYxZf3ubgDeeUvQHHdDzlYo+hl17bj1iMLYX9+ScX0=,tag:mQux86AB7dPitb+DX9my1A==,type:float]",
-										"protocol": "ENC[AES256_GCM,data:b2Ch,iv:V4Sf6S7j++yfRkrVpcm0X++MFR5EgtfBixqAyn6hKHY=,tag:hyC3cCvrpvUyvF0xnsjruw==,type:str]",
-										"target_port": "ENC[AES256_GCM,data:/Iw=,iv:qTOlYWhpfo0oJZsuUo7TrhoUfCp9batLLiB//oTwPi8=,tag:DNavvJXMIhhx3ASITrV2Yg==,type:str]"
+										"name": "ENC[AES256_GCM,data:zkua,iv:EKwJw9bG152ndZN3eV/eti/eYo/BE+L8M8YGw4HIdj8=,tag:CLDrC4PKJQVhl67RfetsHQ==,type:str]",
+										"node_port": "ENC[AES256_GCM,data:gQ==,iv:2A1FBWJKSX2wWTVJ/YWjg+oSrzwdtNPoIKh8HrbKvvQ=,tag:6ilEMePCcImM71q9Aq7HFg==,type:float]",
+										"port": "ENC[AES256_GCM,data:7Sk=,iv:+tQYKeB4uAe1k3t4xAfMXa6QO9EiQFHXlT3YFCFqGOs=,tag:d+E6+9dlcPg6pd7v904fig==,type:float]",
+										"protocol": "ENC[AES256_GCM,data:7u1G,iv:Mcs0r/9e3IliC7UaiJVBEdksMKqLYM9ehLLKxZvV9+E=,tag:2o1mowVlXoYAkfSqImhE4g==,type:str]",
+										"target_port": "ENC[AES256_GCM,data:V/w=,iv:KyBOwxxaSJ2ivCH8YwZ7ywMWWo4HJjHqAwZC4qGl1xo=,tag:d2gsuu6CUv5eTRchbFQbig==,type:str]"
 									}
 								],
-								"publish_not_ready_addresses": "ENC[AES256_GCM,data:X7n9I6A=,iv:LUZWJIv7UEvDEhfYKrtFg5qqqeif7YOSwtjBDBWW9xQ=,tag:OwpE2wQZlrCPlAbPKVj+3A==,type:bool]",
+								"publish_not_ready_addresses": "ENC[AES256_GCM,data:V/vi4XM=,iv:Sxo1tIJ8GlZqE15QC2eOZwi/T1SECP0RmHDemcn0qbg=,tag:+EJiTaDeBUGFPUGGOnoNNQ==,type:bool]",
 								"selector": {
-									"app": "ENC[AES256_GCM,data:n7NI28H3LzijkQ==,iv:DD87op9nkS9VfPWXjHebHD8ZYbsWCI1y9EaZqdwDwVs=,tag:SQ1nin3B8wmIr7iDYznQlQ==,type:str]"
+									"app": "ENC[AES256_GCM,data:PDOhEhibWMrEXA==,iv:HPz+nBkP/PUCXC4IPm8xnA7hcWFOi/ko5qCl783Ecsw=,tag:7oegUvh7GGQGDHVfrzIUpg==,type:str]"
 								},
-								"session_affinity": "ENC[AES256_GCM,data:0d76mQ==,iv:ONH6iqf1Li2jBzIYFOs7X6o61AGzdzwjrbd5B8nNHNg=,tag:/HSGs11iEPwjj8OJTgCRCw==,type:str]",
+								"session_affinity": "ENC[AES256_GCM,data:q2RspA==,iv:w7Hia2kNGHFxioN1fUkR/ke18kSeOAJsfKd9ZV/2tls=,tag:j7M9BIdPtlqF+xR57IUa7w==,type:str]",
 								"session_affinity_config": [],
-								"type": "ENC[AES256_GCM,data:ylnizM5DH0C1,iv:G+45tDoFG+iu+OX6vYfz77CXpuQtnlNmRDh4M86POUI=,tag:oe8dR94EVi5sRPglabllnw==,type:str]"
+								"type": "ENC[AES256_GCM,data:oroEgy5y+70v,iv:0C2lmUTFAfHITFM6eWCMsLq7LzMgLMNnhJ+yXOZpKF8=,tag:PPOFYwb5WsZinIU8f8dUEw==,type:str]"
 							}
 						],
 						"status": [
@@ -2436,83 +2643,83 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_load_balancer": "ENC[AES256_GCM,data:D7gXaw==,iv:J1XftOSCIXJ+TzRoK7TKAutkAlbTYt5dx3FY++9NwdI=,tag:P3pwQcX+0pzmchyH2xeuLw==,type:bool]"
+						"wait_for_load_balancer": "ENC[AES256_GCM,data:4bCHAQ==,iv:G0sSylzqa79fv+p6xNanEVvGeDbY4UUf6tbACIuYVQw=,tag:gYOCSRkZ4x43IBDTT4N61Q==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Dg==,iv:cT+Fx2uFhL3anN82YIlToH5PknflMc/aqGh63+mzTJc=,tag:0+bPlPyZ5EjNMXl8JzsxnA==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:gg==,iv:UEh7PVEnd9hBkNEQtGGGOgCdkcTTGdZi3WEI7otil7I=,tag:2uHAlLk6rsnIWcM3JWhyaw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:zOY=,iv:UFUAgD6SOrzhI7IncOezXTX8xzAJXgcFJhTwobxLLX8=,tag:K3T2DrY5nQ23Zq47a6bTNg==,type:str]",
-						"kind": "ENC[AES256_GCM,data:sMb9/0Wv5A==,iv:DXT7ltZsnkXl0/hmNrqbgUnW/cGhD8sglvjC+jShXMI=,tag:nHANuwb86kSPLfX1qcbt3Q==,type:str]",
-						"name": "ENC[AES256_GCM,data:Y3J+,iv:Ge+XQnhpvZ5ixZrqGBkBst0s4lL2eonuIWhqW8gNhMk=,tag:BcNhvP2hVzk+HtgbT72StA==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:500zEJk=,iv:d8ZM+rlVt4bETc6JiUqYsqBJVS4EGXhqcQBTIXoHX1I=,tag:1KjImtU98iTRBezsSq6dUA==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:j6Q=,iv:0ghIryHeSgxW7PQs1ouPcMaKxtQnvF+27yAZ1Faz3DM=,tag:w8sqU01OI5JTQ3wuhlp3HQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:lpbXk3l2bA==,iv:kj2YGpleuqLi/8P1zHvXTeTtKlc57MCsCN1h3vm/0Vs=,tag:CajjvqvFaigk1AF5HDg1aA==,type:str]",
+						"name": "ENC[AES256_GCM,data:Bi0q,iv:hxxPvjw3rgmoD4wqKb2C05zBB/wK3OS3W5eLsGVOY1M=,tag:HR3xOaVzHMDapuSn6vh+yA==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:dV3tKV4=,iv:DX0kAwqlLZVJZXvvKVztRcgHcM/Sa2/rANwRR5JY3HE=,tag:ggyPel6Mg//tzyfvizEiBA==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:cp7rfqOwte8/QKrkoxM0pvUuKzLTLGWQa4FEgPb9KfXXyPA9dy2iHtZhSgmTkDr4aSk7jtlp9PsERiSh6SzoKcYI6GF0EDnyABAxMETJ84Kgc7vNxpmWpSIs0kltuNFpVc7A2WhsbdyFP4bUeRikgcWsOVM=,iv:JApyphLv3nYDT8AMiJYiKX9CpeUDTldsFJoghEaIh98=,tag:E9rjTQIY78U4aY2HZq0ksQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:MGOQNf7DhchuLJP8tk2wINjt1QBtYM+8D5SzukygTRhbWSxQ4X8EqKTgDIyCo8Vc8zUEbZCg5lbobkC6wneanPcAiv1E7yENTnqpriPI1nskUj2Cm5WdLO0y9EARPW7TYz1uzn7EKT8yQdvYg80ITZWtTQU=,iv:aoNriVNUJGjO/1gyw+f/Mj1B5LmbCvSnrC4DACyehJU=,tag:T+Xzubs8YhFN4HXpp5r0Sg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:eLqukBTmZfppZ8zLEG4CioKICR/8oOJvT1R0B7NlR03pq1VVcCWG,iv:SWl1YparXoG3BnkAuxHGxwNXE8XNJFmXfp4eDDBrRcc=,tag:wfaZtHPZXNRagVU6Qjhqug==,type:str]"
+						"ENC[AES256_GCM,data:7pku9g2MxAV0N4ygAOhbBKKVMrgpanGrpmZfYCmQzd5CEX43sSQX,iv:MGsVxCfXaDQ0TQF8obL4tgLeT4cff+9fFiserdqmDqc=,tag:Sh6Dh2/DV1GyklmUSLy2wg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:67S5vqvOEuiw0G6q,iv:z5qmLwjORDQUVeRLppAvPtV80VFZsD4m+DRd14Aly5o=,tag:9KP+glf15lz2g+Cd/KGywA==,type:str]",
-			"mode": "ENC[AES256_GCM,data:0Hois7WK4A==,iv:177CaO4f4ov0Zba+IgZX5xjgXgZFcJxCCnS+b7qKR1g=,tag:t5YnzwWp28jakADjsGCq0w==,type:str]",
-			"type": "ENC[AES256_GCM,data:TmtJ0ZkysfpkYZoRdxPsu/aR,iv:HuuFIGj4g6y15fKNInhO1TkI5mI28GbTwINhFWYEzoY=,tag:Kw9a7u/VWP43wi+cGuc8zA==,type:str]",
-			"name": "ENC[AES256_GCM,data:aSXaNzZpBLUw7w==,iv:MfLW1wM9bdnDL5Bhz/fbKleNOKMNCXX7JZxJrPpgTKg=,tag:oAkAxVIMBi/7Am1QgydmwQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:hE5rLdAE6gxNvFP9p0W6Ts36bw827pGNZeIstlFVfYkbuePEoToKQ4FzsqMtA8kWbegp3Y4T,iv:HHv0RmpmslnA4O7y4zrJsZmJ9dWZKQy0iaw2WT4KYtU=,tag:+DGbRT7SVcsNyjaAH1zutQ==,type:str]",
+			"module": "ENC[AES256_GCM,data:V8jv2vjnbuSBCd99,iv:nO9IDYvIZfRVRhVRv59iIBlacIXa00tRUpbGxvqgl70=,tag:4GiDsQW0XEIGJcZQQw5JwA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:rljpb7xRHQ==,iv:G7uZuOgMBZw5tJqLE3/g6aQZIazrycrctutMqVSr36s=,tag:ERI4yMMzhYziv+2AtKyE2w==,type:str]",
+			"type": "ENC[AES256_GCM,data:UKFCZMrgD27HIo1+zcRFlhw+,iv:PMghslBLrXFNv678mk0IjilsavGZAAMsRXRVsV70hDg=,tag:Fa2UvR+33hn2lsAjN520JQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:gXg+Ix8UBBA17w==,iv:fRNI/XQwJutrh0T9I/gEtcJksrEHFyPhyQYFHLK3XDQ=,tag:yfNJzuKxIdq32ZFdwUhmZg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:OrP6/j/nHEAlf0qkbDXt6qtq3sRjSknfg1DwZyp4zgzuZD9JF/zh/WaUN816/qc24fg2IfFB,iv:wwFfXNfUk85dmFB8uHZo8oVo7qfjE76f5ohLinnzfy4=,tag:DMmu06M1wiqN6zTYMrxwXw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:yQ==,iv:majJEIhcvjc9KVj9/arQ7VKr6YcMDt+DQEUyn2DUKI0=,tag:IPObB43/u7toJKUQ7xxDIA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:jg==,iv:/yh/WXBkCXYduiM/c3YMa7rQuWG4hmEraxU0DcGeN5w=,tag:45tKrAu9yeXEIJ2UGiHsbg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:0ecTX8RYGt0+wntGWu0oIQ==,iv:dIb8Utl4kWQgFjHA/qbJrFxRnUyVOQvIp5dDVJrfJE0=,tag:zuRsEINuQ1KRokO/pXofLA==,type:str]",
+						"id": "ENC[AES256_GCM,data:k/v0ynEvySeMmwqpOkkcNg==,iv:tcEw8gJeI0k09gbFs9NKaQlqxdWT6g9BH4Li6git3VQ=,tag:mk3LvL2EDWUTbO8mR5Oe5A==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:lA==,iv:7K8xuIlnm1zEEZkmagShWqw63v8FDUXbfD/s0tFA/yU=,tag:ugWcF4NIxX+ceqHCANde6A==,type:float]",
+								"generation": "ENC[AES256_GCM,data:zQ==,iv:BO7vEn+YaI8nQ2w/Ne72pBodHHiVQVPulLkSM0DTusM=,tag:ubVEXURgzz4DRl5mTMvc1Q==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:6o3BsoESwnQsaQ==,iv:D7TrxCRwFlKAMjnaZjKGJgUpmFGCfVqtmjR8e2rwYZ8=,tag:vPYyNWO2/2yuDTBA71jRxw==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:q27tMoQ=,iv:njIXuWqJjHkRixy73i/Qeswdk/8SB0jNvcr/tL6Lkag=,tag:HLtbGH0oZ+GCztKCWPwfmQ==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:Kyhmc1bRfuPP,iv:bz/aYxjqL1z0hTOTa13HLHrZ4LMLdJEnk5pqT4efwjI=,tag:Lpr7lDYj3bSsVJMfTn3C2A==,type:str]",
-								"uid": "ENC[AES256_GCM,data:aaqqEzRS8fHLpSSsRxFZGEhMJ0sQkqZ8U+BCmzbxJBHEYX51,iv:V15DyOdBZG5TCvJRKfcGQfYs/XzeYuaqB2L1kC/hYY4=,tag:30U2RoQCRYRw8Pbz1dNUZw==,type:str]"
+								"name": "ENC[AES256_GCM,data:T7lxZdqXmNo94g==,iv:hnfI1QfJJAIYBaDCE9k0o3ad4C9DB2X6cxicfRvIphQ=,tag:NOfe4a+N+AXNqURoa597Aw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:w5DneAw=,iv:fQil1VqGsNnLd+XYVJppXQlmwxfkmNxoEmlStEHzTLE=,tag:K9VhjLn8WgHDfciltSgb+w==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:tWNfWSprSffI,iv:l/bICOONmdZPOvBl8ArsslfN3gJJSzlOhLgpzMCBnuY=,tag:dcIWagiRaIoD5upvxVrCuQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:6L6JhtGvfsG0mzvosxkc8Q2kRikxDFxot+3hmOeB6GAkXXDh,iv:oX1CZsYn4LORr8pVYQB/7vzOt66BXwqlHiFewKdSILg=,tag:MgXp22Ghc/JIY8Bh+aaNqw==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:XzrggQ==,iv:YN6Efq5Xl0rIuRWE0u0ShxJhoE2cmXMYnCfD5NweU9E=,tag:y49kgPhE1nhqfsBGJoFn1Q==,type:bool]",
-								"cluster_ip": "ENC[AES256_GCM,data:uzX/lYtUe+2E6zxZXw==,iv:l+weLVNW62AOjnRva9RhJgjRXPIv71+ccG/ek45awRM=,tag:CjqtjTOsAYOG3Zv9lqB+pg==,type:str]",
+								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:Z100qA==,iv:8fm7Rh1qNZOXV0JHEdcjWey/9f4mqT/Wc+q+w8MmaXo=,tag:/C7kDk6vwvE6t5kAop0E2Q==,type:bool]",
+								"cluster_ip": "ENC[AES256_GCM,data:ake7YLVsgxmfKLTjSA==,iv:ITbHUIKwLhNRKtU8z+pBB6a53K+GxtJ0/Suz3yR24a8=,tag:88h8VUCb6fjNmFwaOrrIrg==,type:str]",
 								"cluster_ips": [
-									"ENC[AES256_GCM,data:jDjfOR/q6NyO/MifDA==,iv:FhDalKKZIBNYEiee3qkGVfrpg3VoJzN9nKGBiufiuBE=,tag:KtW0RXrTsVe6ukItewINXw==,type:str]"
+									"ENC[AES256_GCM,data:aR1Pgatq78ACop1UNA==,iv:jLeYszh5taTdmSqnGFh+fK2fZsnC4sMATyiOAqmupiM=,tag:zNsofjTK3PY01B1/a4Jz0w==,type:str]"
 								],
 								"external_ips": [],
 								"external_name": "",
 								"external_traffic_policy": "",
-								"health_check_node_port": "ENC[AES256_GCM,data:Hg==,iv:3pYrOmj1uZJcxGxx11yXsbDo3G5GlxF2ALagdgJKC6o=,tag:RsMnFV/i34iw0OeZcHR7AQ==,type:float]",
-								"internal_traffic_policy": "ENC[AES256_GCM,data:cNkzN4OV1A==,iv:kdCUADuOUj+X86coN9pI2U9fj0ZJcmQ0QuH73VGGGCI=,tag:5iujPl2oUdIy1vT5OXbQXQ==,type:str]",
+								"health_check_node_port": "ENC[AES256_GCM,data:Uw==,iv:ayd97pkjRF/T5GNSxE0j5tkZI/rCW0Ek6Te0FXCJtUE=,tag:2n550Xgg/bT5F56+B08mWg==,type:float]",
+								"internal_traffic_policy": "ENC[AES256_GCM,data:oT9y7l6TZA==,iv:gxg9EBuvuC5kuW9d9Ml5uvKLDIDRyaT2Dp4md4aQPxE=,tag:AQQRNQd0vkhsQhcKf5sH0g==,type:str]",
 								"ip_families": [
-									"ENC[AES256_GCM,data:a5kPkQ==,iv:vwDuOtoXAbQHQYdleDqSN/PEsSRyTJOwt12kI8Fhg60=,tag:Vt1Awe/cvnufKPWYhMqScw==,type:str]"
+									"ENC[AES256_GCM,data:YNq9ZA==,iv:S6lk1WJwKxPUL/BaqK9bHMBu01+r25YzlhXp56phePU=,tag:zItqoFTeTofxz/mVTYRvuQ==,type:str]"
 								],
-								"ip_family_policy": "ENC[AES256_GCM,data:qRm9XcL3LKgDgPY=,iv:XN3M2NDGJttwG3IVUb6p5TBZ8+iDiUzsMBVDLp0E12Y=,tag:GzyI0wpOgfsXy6ATTnXOvA==,type:str]",
+								"ip_family_policy": "ENC[AES256_GCM,data:41bLbDQCIo4Fb4A=,iv:lYgHYsotmwZNV1VfnrVfOhxJMH0GjLRQO7KXcxt++Z0=,tag:87TSAq1AdRI1qMowfLf2wA==,type:str]",
 								"load_balancer_class": "",
 								"load_balancer_ip": "",
 								"load_balancer_source_ranges": [],
 								"port": [
 									{
 										"app_protocol": "",
-										"name": "ENC[AES256_GCM,data:2+LSrJPUcz4YTA==,iv:/1L2GEyGD/9KyywYgW8lYrW1jVQsVCSgIO8EVpgzisk=,tag:qBUVI7mWb+fkee38pGkixg==,type:str]",
-										"node_port": "ENC[AES256_GCM,data:3w==,iv:ZhJq2sBZg/oz5oliJRzVvSpf0dL1KlM69g2nfq1dLbs=,tag:XoBuWaDL/EERNIjRxp19qg==,type:float]",
-										"port": "ENC[AES256_GCM,data:vhkCfg==,iv:BBCYoO/z+DmO6rBUrW3DdgedNTEQFC6Ok1bmOP/21s8=,tag:94WP4/Fg9Uer9kZipQsr2g==,type:float]",
-										"protocol": "ENC[AES256_GCM,data:25zr,iv:LZghzrmAqD1k4isicXwoSmSbMzTHoCCG+7IMbEPyTwU=,tag:Mj1c37IoRDSHIpIDBF1q4w==,type:str]",
-										"target_port": "ENC[AES256_GCM,data:g4a4hQ==,iv:/xsDlJTKzMmDFeyeihp7tgsm08CG2uBWSf1zua/JBEY=,tag:sC8PJikzFncPUKpfvc0rXg==,type:str]"
+										"name": "ENC[AES256_GCM,data:6eg13jzpuZk4fg==,iv:8eX+Dg51JQzfN1Y111WUG5Adc8tm0q/PKgEFDdMt6bw=,tag:bpwWmAs7vWQfbnLEm0Hrmw==,type:str]",
+										"node_port": "ENC[AES256_GCM,data:Pg==,iv:foW4Wmqo8/N0PVR73jIxvfIWQUAiNz3h9gV2eGb5gRs=,tag:PkHOObSzCCmBZUIdBknP0A==,type:float]",
+										"port": "ENC[AES256_GCM,data:/JqoxQ==,iv:0huDz1qD+/t5ZstWMmX5Yj0iWBcqRUVHyRPjy35F4eg=,tag:Yjiitfm/9/BVVqxmZ7rzdQ==,type:float]",
+										"protocol": "ENC[AES256_GCM,data:csKu,iv:jcPvJGZ6ZLx7TWVqSc/jqPShzG4Xf8uhnlERQMRI1Ig=,tag:Ral3d7tOBi5TJ8CQMcvDWw==,type:str]",
+										"target_port": "ENC[AES256_GCM,data:a9zK+A==,iv:RgiddgcVbAsTnrkFBDwxpX7Xoz0rbMqrpMC2nLp7J+g=,tag:tZy/U+j5Qf5TyQN73Ty31g==,type:str]"
 									}
 								],
-								"publish_not_ready_addresses": "ENC[AES256_GCM,data:c56Hnp4=,iv:eZ1KeAQT6CLt0gHrRJHWjYFNdM2O8x7g9Vqqd1wB+ik=,tag:TQsz1/cJqDZOR1qiIZRbaA==,type:bool]",
+								"publish_not_ready_addresses": "ENC[AES256_GCM,data:LamWfXc=,iv:8MmJeu04rfjzcTKi3Bt7NlT44glTTn0gMEERV0c1ygA=,tag:6n0wZsFiSO4RpcI0HNoYrg==,type:bool]",
 								"selector": {
-									"cnpg.io/cluster": "ENC[AES256_GCM,data:kaAjRi9vfnnNFg==,iv:wVG81FM0b2p6DSX5qoQZ7iPJHdtWO9IbEIyBukQAQcc=,tag:Y62ZG01L4CCaEcEkCaun/g==,type:str]",
-									"cnpg.io/instanceRole": "ENC[AES256_GCM,data:CbWJwInZOQ==,iv:qCdaL/qKR2mW7Uut66viRdMSrKhZSxY+jf0EfYdp2dA=,tag:7rj4+6YIxzs1OMQg7u9AxQ==,type:str]"
+									"cnpg.io/cluster": "ENC[AES256_GCM,data:0OQs++yUvkvNZw==,iv:g+ph5aSMmqXm41APO+z2yKM1JCq+eiSsohdjvBgTyzE=,tag:mxoI/2rfpTJ2xIiZx98FCA==,type:str]",
+									"cnpg.io/instanceRole": "ENC[AES256_GCM,data:zkse6ptc2g==,iv:mmNnqxb8L9D9PgeaNlFLI/2ExnjSnH7iUof5RNXpr5s=,tag:5EjMSrdjtJ5RkxZ9xoTPTA==,type:str]"
 								},
-								"session_affinity": "ENC[AES256_GCM,data:GXICGg==,iv:a3hghFX/urNvCQ/ZiliQ3HhArm0OO1rj8WP6Gg1CnlA=,tag:Tr6HHSAem/1SDZ+P9udPtA==,type:str]",
+								"session_affinity": "ENC[AES256_GCM,data:s74NbA==,iv:j+niHwNY0XQ7w+tY3gV5BVGyHpsg+a0dTdTU5ymRzbM=,tag:v0ax6HIYQie3dftEDGq0/g==,type:str]",
 								"session_affinity_config": [],
-								"type": "ENC[AES256_GCM,data:uhIbSz+B7Run,iv:perHioOtN+LYVyPxNOQew/NTPoIcSmAfE1olzfYWaag=,tag:5hOOS3rkYhBXfWCY8GOCqw==,type:str]"
+								"type": "ENC[AES256_GCM,data:4+XCzzxMwTW2,iv:0twT7eLW6xKrpBxCWyk1MyqM3wFMWbXU3Jduws9D73Y=,tag:ZM5zQUTP17Gr4I22Y1YToQ==,type:str]"
 							}
 						],
 						"status": [
@@ -2525,87 +2732,86 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_load_balancer": "ENC[AES256_GCM,data:uGBkRA==,iv:goLJfjKCUduoDYUjifz/wdGX48fItSeq7vbt9QqgXko=,tag:WL/rUsTQfQWMXpdo5nePIA==,type:bool]"
+						"wait_for_load_balancer": "ENC[AES256_GCM,data:aBL/ZQ==,iv:1/ZJuQDEcvB0PmLyqhjBt+b0qya/co3i9toE8ErGYR4=,tag:hzuL9/34+2wWV2JjoY8KQQ==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Eg==,iv:TSCVd1cyCG9PmsT95e94OjsmB1rJl/aElmFT6+9NJqQ=,tag:oU5TGakldk4J4uwwcZ96zw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:pQ==,iv:VzrmT3mlQz6GMICRHa9vXwAr9L5QOUzohpI1ekEj2bE=,tag:BWjD3x7e0P5jsDldCeiBsA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:kHY=,iv:SOIn/wKSmj1nq18q/srtoXDmqAF5AyJ5mof5Ei+NgSs=,tag:LA4v10/Aad8O/9+q44zfWA==,type:str]",
-						"kind": "ENC[AES256_GCM,data:73g1rw0hWA==,iv:EtdACGPT/cO7qTrCtAGpb49gc4o0fmifOrth0B+TSDU=,tag:/BTchOOX+dsnBtW2CDO1ZQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:zveUkyAKcXU0jw==,iv:lTnedqHPbb8XexpnKkzMn05HA4hZKLKdqFV30xrjiVg=,tag:1+cWY2S/3RJxPry1iaABRA==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:kqvCMGw=,iv:MpNnTXSvAXHK3jTDY1a/Hv3hH5XZrNKewM7ui53FJRI=,tag:Zc3rM4gGv3TOdqDL9CPiSA==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:h+w=,iv:YLzXHCWiYiUDYgS5mDnV3DhEw83PBsBPVJXSRKjB/hg=,tag:WZKDn5OevdN6PMF7P4f+gQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:FH1G1i8fVA==,iv:FmMO3P5vjMvj+120b4JrAXWGdre3pdjNKJPVs7nr41Q=,tag:ekNHzv04GqbucTwodhCfMg==,type:str]",
+						"name": "ENC[AES256_GCM,data:v/GfgqsG9xMc0Q==,iv:SYit47lCQQYyri8/W7FU2uIofbK0c6hHMVMdX+yn/I4=,tag:R3qn3ItQxN2qClR7HBvMDw==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:vf9/Dxw=,iv:rIeXUDiB+iPmHiLQS4sPhiE82heXTp3DDDKd9UegnUk=,tag:HI1VKajod7o0qGEsH8Zmww==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:dGEbvvdzyXUw30mqqxol+ySrpy2a3YxNz+VMhIPsnIeg8Q7L7ZG7LHwyHa61LkmHz8Xt8VdFAIRP8N0vGUDuyDmTaOEaz1GzNNndWbBWJeNBhBAJGo2sqY6Yqd4QotcujZbnTYMjePrfFaDPuwSaW6/Q6M8=,iv:ilyabl+RbxymQJRNPyy7SD7MgwnaoUUmL4QjLSuxcpA=,tag:ClA1X/PDaxkoZ0rrzwIqjw==,type:str]",
+					"private": "ENC[AES256_GCM,data:rdOTBt+ccFRskOWwwHxlrIagUFhmvXJY7DukLTbse67MLadnah3+ERvLylhSo02aa4hteihmYxyiDeMbAkD8YIKxwogoeA2WPs5BKc21gmfbWxU0rGSXXLfBeV/mwh3VY5OPYwqaCd/cM110sxoJOeGzqoQ=,iv:hm8Ud1dB3LXtHuhzbf2S4STjf7cRpt/ZoROOHWv8cew=,tag:l20442u7f2M8HvESsZrRoQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:NWWNw29tcGsLJZTD3b0dvu4I1lBVIGIpU/n87kumEdrch/Lvr3sj,iv:v3SlReJvcZEliDrrVf8t3wzzzWdw/QJR5m7d91lyOQY=,tag:Qto2PmIKHHKQhKxipR9UJg==,type:str]"
+						"ENC[AES256_GCM,data:2nznV+Ffnw+JKH7B9T8TXb/mlwga40SuIk0akcCCymXAM+KOEoyt,iv:FJFRGPZfjPcIO+zBVn+r62iWvpyP1KwP4kp6KYMC2nc=,tag:PnG/7ku8rBs6cVut0aqBtQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:/sIhL9zO6qwUl3IS,iv:vSADXlGUu0BBBeBhjBd0SBfM0X85v1arglFVRw32pDM=,tag:epczgzR88ZBk70gQsQxSFQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:40mf0S3o4w==,iv:LzBiCRZmBCAWKKZS+BghGh0Eea0XIRPzE5naMkRMxAs=,tag:1ye6inSPsoFogK32YgK38A==,type:str]",
-			"type": "ENC[AES256_GCM,data:2+pe9skPPXWXY2GBmAjssQlb,iv:llbvfhAaIidQwYLrtxEQVsYrzAttGC7WbKd3CagoaTA=,tag:a0r1csXpOQLB+OXs5n5A7w==,type:str]",
-			"name": "ENC[AES256_GCM,data:J/kEXBqPOvoYgSjPLA==,iv:hdeuHfeHCXKir2EDZkf4oMmUrS0Yg9Y1lMsm8OfIeJE=,tag:QQhEncSWxAYma6q/CGpu8Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:bvsV1mlsZGSHURgyTKCmb/382XM5uYDTysbrrqcG/U621lAHjuM8q97gOP4E7F76LntWN0MW,iv:E3g6kX362WUgsA9xBIng0ya4WySi/mXgkYeBmevsUW4=,tag:zIcbeZ5VrSUKpdzw5v2nzQ==,type:str]",
+			"module": "ENC[AES256_GCM,data:PQATDJblqg/gjXxi,iv:2Hs7r3+kVtDiVmwXTUmvSgikLsXkb8NBL+s4YqsuwGY=,tag:GF8B5vT8hSd/ayL7hBZM+Q==,type:str]",
+			"mode": "ENC[AES256_GCM,data:VgGGrQcoLA==,iv:rAyz0LdN1iCIQdHWqTDRss8ZANyMnrD53TMagoK8c2s=,tag:JI7N7K0xID/QKRv5x7WeHA==,type:str]",
+			"type": "ENC[AES256_GCM,data:IupjyFQO10OHp4XoJb8nf/i+,iv:HIe950dyPtQsu6ap0VQckQC0fHTzCN6zLEHKBeVRuaM=,tag:wcGUx0twiNLkUCCgrGrAcw==,type:str]",
+			"name": "ENC[AES256_GCM,data:VZyzQf1ouCcGabzafA==,iv:pErq2EHKIhuM8g8EXrdFzmwmVkwCX7yJJ8+HIsBucao=,tag:Fv9gopu2MXNEqEHoZkkxJQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:RcP8Ns5mVhzt3basVvj3Mv3ri5UC/sfpXnOTP14+1rzI/e07DgMoieFgnaKO1XQxP46Z3WtW,iv:77QFXlY/IgfLrT9cEVkzQcYB/zoYabC1YeKCXcL5RKo=,tag:IiP3wrDWf82iW59Weeam+A==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:lg==,iv:ciSArno4fbQhlfKFAholkcg06hu+QbZIlrTXp+wxR+w=,tag:1jzquI8Kw5cqLyjHkRmC5A==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:wQ==,iv:AwfitsL38236Kwi/RRqBRp6FKOy60yC7TkepnDPMjxE=,tag:GKlIg2oOHOpgPnIaj3Ijpw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:+phjPdeEvNLWXFDsPuYgiWTbgQ==,iv:QRIuH2p7vxlk+p3PC2lpk3L5X+xJ/iX1be+p8kN0v8o=,tag:Ul6exeo4YirEM6XxUlEucA==,type:str]",
+						"id": "ENC[AES256_GCM,data:/ck6LPjYkZ6rbjQRy3kRGjmB3g==,iv:/ttNbxWi7mVzJqaAtl2JA5pr3hN/N45HCjhjfyHhlro=,tag:GjspoL1kf049okc1jsaYkQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {
-									"metallb.io/allow-shared-ip": "ENC[AES256_GCM,data:+FdQZDNm,iv:uSKSvubg3sudqFDWM9ug/PjKdKGJC3c1V0oKfO9y5M8=,tag:9/tapJQW1RjqTxS4QSQxvA==,type:str]",
-									"metallb.io/ip-allocated-from-pool": "ENC[AES256_GCM,data:JJtXpH2cSQ==,iv:zcE/Pa/qEs5/ayGhd/GAXYjor1DUiuEXW7hY1MNEufM=,tag:799mTd0HrR+VoxaoTipVmg==,type:str]",
-									"metallb.universe.tf/loadBalancerIPs": "ENC[AES256_GCM,data:T1CBbD9t+a/XVig=,iv:iZPki8A+7h2nzIhB6ki7bJX5Sd3eVttDaWKmt8cn8S0=,tag:BKfVsQkRYy9h+CN0gziDQA==,type:str]"
+									"metallb.io/allow-shared-ip": "ENC[AES256_GCM,data:rTn03UGU,iv:941Wqy3L/95FGVbFelrOLqgK9gJ6GBwdPMs6JW6aVR4=,tag:loFJT1qQbAdrpnR++6lMdQ==,type:str]",
+									"metallb.universe.tf/loadBalancerIPs": "ENC[AES256_GCM,data:fZa5RnJRdblrOMQ=,iv:+hEBVtA/qqRN836T/xRJDSKfFlFiqKzLbLcdQr6SBnQ=,tag:smOLQUpwZfYWEGU+NP99Bw==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:Kg==,iv:ydnnJROB8H/OqK4Bkg5dY/99NEmgQkgDEc8dYow0Oak=,tag:LhIupY9aqgi3vubd4oZO4w==,type:float]",
+								"generation": "ENC[AES256_GCM,data:sQ==,iv:MOzBpdfRvT3zn4DCmfBciRTadYjMAJdUHm0XWWFXWts=,tag:IxMw/4REbc+0+HFY3Rf74g==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:pJxNx/DNOmuARe6LGg==,iv:YsjfZ6m/5GzxPYWH2UJ1Y5vZWgIrjHZ7wE/IofCio4E=,tag:XJ3xVewrk6fmIPysfXK5ZQ==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:8YZPRVE=,iv:idacYr+wfrEqh/EJFakA4BcSBnnEw9KbvozZpeIiH5Y=,tag:dCc2nkdO7S/o2KJaUeKXyA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:a9Xv+n3igqK3,iv:SfbTam0a8wc1J78fBalB1KA0X9+QXCgbcJ9ANgbSZ7E=,tag:Zzfi7eAcPyADYzsGiyuS4A==,type:str]",
-								"uid": "ENC[AES256_GCM,data:TovBqbaym4FWbOC3VnPJZxBPR5oErzyR8sl9HmW6m7aMruZc,iv:36wVyhCHgFdFzpl8ne23N8bWgO/Tm8eQeyT9yKk4XhY=,tag:4RvW84y5hXcnTwFWT13mrQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:aIi7dQU2qAUZ/vAapQ==,iv:FnU4/4EBZ8Ed6UuN5ZGkgyr16cpfUb9XsSiba5+E52Y=,tag:a+wDgLvKElavn02kcLYVtQ==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:B6UbHv8=,iv:ZgQwM8LfFMD3tXHKgtLYx4FgzYlLWhtR4FCfWJ4IDpo=,tag:UkPxzso3nIK6x6fMBZiAPg==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:rQ4NIzvIlDAC,iv:89ug/BCxu/kytkC5kjH6CoaVEqB+wcKhqFdIY9euUGY=,tag:m0FLKye87LtZ1Rf0oMOUPw==,type:str]",
+								"uid": "ENC[AES256_GCM,data:aqF2odLi9nl4kiQ6St+IA31Jewn1wBp2DaD0L1XwBzkYL37O,iv:1SQvLKBGfQZO4jJkjr6y529/IdEskkH25IXR1Hx3NUw=,tag:k+mk86CVq6B5qbFFm5FBcg==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:1Jmc+g==,iv:ly/O0TNmjyMR4h2vtKyuYOEB7reFsj1eo2ntKuQOh5s=,tag:gMcY1JKA73u3BMThjx1aqA==,type:bool]",
-								"cluster_ip": "ENC[AES256_GCM,data:6/ugrYEmiuHDbOKouA==,iv:4CgotJsLK1fdLho/HjojLoEVA6J1F88orUa+phzU+Ig=,tag:UJ6Te5pzz9W0Jt43Xd1Ntw==,type:str]",
+								"allocate_load_balancer_node_ports": "ENC[AES256_GCM,data:crhWDw==,iv:ME08eZSJxhJYD8ICd/cbbj3F3ahmVw2A4TJIaVMW2pk=,tag:cBQZICk+WYNqa3cJMJ+VbA==,type:bool]",
+								"cluster_ip": "ENC[AES256_GCM,data:oDZ22i4F9EDl+5oRtQ==,iv:2+/4+SZzIw3h+1rXMh4HKquVYLNwgas1cclD1LAepvU=,tag:KlZ/2cUE+BOBqymOC/JiYg==,type:str]",
 								"cluster_ips": [
-									"ENC[AES256_GCM,data:rXJ8vl3RBfDDib3MNQ==,iv:GpxiJFjp6Z33NbKsnHtQVYZiAjgxlzh/goKuND5dhyU=,tag:R/8Rd2nVjCgjmnsz1FfQ5w==,type:str]"
+									"ENC[AES256_GCM,data:FuwAFVrD2mRtAVbE2w==,iv:yQphwTve4Xr6IpFv10N4oJf4siFdXrsCXwFl1cG2SjI=,tag:Q9g055ek0739NDhXjRwkPw==,type:str]"
 								],
 								"external_ips": [],
 								"external_name": "",
-								"external_traffic_policy": "ENC[AES256_GCM,data:I8XL2Mqswg==,iv:FeXSDBbrceZI9w2CQMdSCtCoDfv3GwR6hSKS04hcmCw=,tag:1QeaY7VOHrhgf36XirFdUA==,type:str]",
-								"health_check_node_port": "ENC[AES256_GCM,data:ig==,iv:UHyaxibdLs01stZpoLQQwyeHg+06doBvcsSKYz7Qswo=,tag:iiTSmkUHRA3eQFeAXK/+bg==,type:float]",
-								"internal_traffic_policy": "ENC[AES256_GCM,data:J03xCk6xGw==,iv:Ep5JfH7jCZf4MjtwvN2mhd++K2caghq16uEA8gCCSdo=,tag:DiQQiDSe5EUchCrlMDiIIQ==,type:str]",
+								"external_traffic_policy": "ENC[AES256_GCM,data:1dXY6Np57g==,iv:RGWN+RBnQhkR3c8DzosFdVfWnvb45tZBnmrBd3gQng4=,tag:Spxk1TU/xI2e+E3V+UxY8g==,type:str]",
+								"health_check_node_port": "ENC[AES256_GCM,data:WQ==,iv:a40ER5Dil+iFqiRAMW8AYAFWtDUNfnOt+x1TABovszg=,tag:zbt+39adLDPQyEjukx34rw==,type:float]",
+								"internal_traffic_policy": "ENC[AES256_GCM,data:xu2VJFG4qg==,iv:eBPopzCXEp6qHhu02BBNsl66Sc6SO8wDsF2z7Rol8rs=,tag:Zd3yjM8I+ceT+LAjT0GaNA==,type:str]",
 								"ip_families": [
-									"ENC[AES256_GCM,data:pUP1MA==,iv:Tt3sS9xnH3gnJHNLNNPIpGJaxgtZ4qNB2NqklQxJPd8=,tag:QEbRYKdiGXkr5h/F8NVBrw==,type:str]"
+									"ENC[AES256_GCM,data:rx0lOg==,iv:Nauag2Ms3qABFPm9KETULpxXc5YT9d4Z9QmlvTfV8OA=,tag:KRcoCdSCxPV082Qv8jvoKQ==,type:str]"
 								],
-								"ip_family_policy": "ENC[AES256_GCM,data:PZ2ZTiRk3n5Tqf4=,iv:W7lQ1MB9OIBMLZ3k4abd8Gc90kAF98ZfZ4zz+auZvW4=,tag:Wouu7fCltoZoGqb6VnIahg==,type:str]",
+								"ip_family_policy": "ENC[AES256_GCM,data:K8//mKLazjTuYsI=,iv:IvJkYRRYpbmuu1uVtFVSZYYcNinKAsxBh0SqUBINZvw=,tag:CiNkdkclzzzURrZUk4NW/A==,type:str]",
 								"load_balancer_class": "",
 								"load_balancer_ip": "",
 								"load_balancer_source_ranges": [],
 								"port": [
 									{
 										"app_protocol": "",
-										"name": "ENC[AES256_GCM,data:pHuX5juERfkm4g==,iv:ZEmssWIUoXdYwmmu2K94jafc7D7zFaM2ODVmagXbBaU=,tag:h/kft0uezJfEwqCf6BjbHA==,type:str]",
-										"node_port": "ENC[AES256_GCM,data:pi6KuuE=,iv:b7AM8wGX2tmHvsNO/hyr4h+TOmWxpu6490wOK4RF6Mk=,tag:sRk5sx2xarM0mgR9ARWbyQ==,type:float]",
-										"port": "ENC[AES256_GCM,data:lfVcwQ==,iv:2TRaH5YMZ3XyJ5dRJqVoRXkgLnwZyKRe09dV4NpdIh0=,tag:SJ5UfSoHqDUn27dgCVEJmw==,type:float]",
-										"protocol": "ENC[AES256_GCM,data:l/Qu,iv:Jcer2/r35xTUP8k7f96scnaH+pplxUhca8h7x69Otjw=,tag:rDOM0Mww/cWDegcwGENqHA==,type:str]",
-										"target_port": "ENC[AES256_GCM,data:jf54kQ==,iv:1SBJJ//2n7jBKqAE8DHQoTyVugQ3H212TV36uxtQBms=,tag:cmVfW6Ea6G7517F8CJ5/MQ==,type:str]"
+										"name": "ENC[AES256_GCM,data:3PEQYFwJg3wTHA==,iv:30YYKXXP3/16CsDTEUk34dp4DFZH/2NG1HjGbKjvwlY=,tag:Ej4Fw/HG8oTN61q/aQeRkw==,type:str]",
+										"node_port": "ENC[AES256_GCM,data:GBsgwfI=,iv:c05+OAMc71bYQclvHKNb3+a3s8+9seBb2FAR5tyaNns=,tag:PgwK4eqbP6ptLeiZAEe1Xw==,type:float]",
+										"port": "ENC[AES256_GCM,data:LWnBZw==,iv:zCHZfs1Qcm3DWEXMMsWHfyZlI5hVKWwhR/MzZz3t2xw=,tag:h/vVS5wPlTIRJYSMDeU9zA==,type:float]",
+										"protocol": "ENC[AES256_GCM,data:O7SZ,iv:BdtmFTabUR6eZppKWzKbPrRkc6dkq8SeiCoJ4h0k43c=,tag:b5pKibkVI3J3IE62b7ENOw==,type:str]",
+										"target_port": "ENC[AES256_GCM,data:qiftUQ==,iv:vKPl1FSMtFOOFiBloUoBlzkJvcthfAcseQ9G0HMGvIc=,tag:r/nGEaot/FDAoykZC2Zq3w==,type:str]"
 									}
 								],
-								"publish_not_ready_addresses": "ENC[AES256_GCM,data:GHtMxhc=,iv:PR0gtCAxzn2wOPhTg6QmrYFQPKKPxLT1WXOmc61S0EA=,tag:KeWu7lQqV6vK5btdZbxVDg==,type:bool]",
+								"publish_not_ready_addresses": "ENC[AES256_GCM,data:UerflE0=,iv:BXuJAvOG46GhU0YSo0EJk8/9CzjI8+tJD+KEekCPDP0=,tag:dlrePXrnAPq9ePOo/35VUQ==,type:bool]",
 								"selector": {
-									"cnpg.io/cluster": "ENC[AES256_GCM,data:lqwVeyZw1H+8Cw==,iv:YL23CifAPdronj0snSZoZnzXDkDhx5uFg1PtJ+g2YHk=,tag:Yy8PbCnQQ45QS9jFNcs8hA==,type:str]",
-									"cnpg.io/instanceRole": "ENC[AES256_GCM,data:utdukUCpqA==,iv:dr0l/BL8HjGSLHfzHvQo6HNX/pTf1m4eKgo7ZrOluic=,tag:ork/EU1Rli78beLVDjuyNA==,type:str]"
+									"cnpg.io/cluster": "ENC[AES256_GCM,data:myuX3DygWB7LdQ==,iv:kDZxJht/Pr3wa1yEIIeVm+lOZhqce2vIHVflmctmywk=,tag:OjojXgpE/pN1Nj7swQzj4g==,type:str]",
+									"cnpg.io/instanceRole": "ENC[AES256_GCM,data:jy2m+/EZPQ==,iv:dVnHZSW4hziuE+00DMdI6lOtLostaleikPDpNRtQGAw=,tag:lkyZGiIos/ZCPAJwh3KYUw==,type:str]"
 								},
-								"session_affinity": "ENC[AES256_GCM,data:ZRhqlA==,iv:GZXGZl9cIkyrifm61npJZVWS7KhFzoJOhNH+TQZfaNU=,tag:WBH+12ZrJ3icbaTkwuF8PA==,type:str]",
+								"session_affinity": "ENC[AES256_GCM,data:IiSkZg==,iv:WZxv5jmpy/NwK5ghwpKER7SM26HWJYgEezysnhJ/HXw=,tag:2XXwvMAmwxJfgkvbTYA0Mg==,type:str]",
 								"session_affinity_config": [],
-								"type": "ENC[AES256_GCM,data:kpyzz0Fi+m1HC9pf,iv:7P92hUunprTaqwJ+VxmxIowFyO8ID0YF2tJd7RWori8=,tag:M6aNVWoWfI93TL0cMtkJCg==,type:str]"
+								"type": "ENC[AES256_GCM,data:elC9VvkV35KJYdIX,iv:pDhebDFkLIuI8uwxhCBho1kc18j1Dzb97Ma5jGylXKM=,tag:H0RVwbnmZs1e3HoLfdmhEQ==,type:str]"
 							}
 						],
 						"status": [
@@ -2615,8 +2821,8 @@
 										"ingress": [
 											{
 												"hostname": "",
-												"ip": "ENC[AES256_GCM,data:YkKcvhXT86JNUJA=,iv:px7WsSux7FkyEpcZBnLXaDB5a98j1HQw57FwDlwP0k0=,tag:8r5i8MgEmuApL2922lgWkQ==,type:str]",
-												"ip_mode": "ENC[AES256_GCM,data:I6ds,iv:SZUHCITFMqhv0D39B4UcSiP1NbvdOLUkreMB0ufUmFc=,tag:iJTNZvzQF+nOwNzvAQGN/w==,type:str]"
+												"ip": "ENC[AES256_GCM,data:z3D95sljcvWprZ0=,iv:l3YTXJ7aGZxkGHJYWIOxnf3Fi8teoDbOpDwQsBagSzk=,tag:mjOyssdVdpk8GrA3wtjSzg==,type:str]",
+												"ip_mode": "ENC[AES256_GCM,data:clS8,iv:rJkWVvPqLWL+KFksuxuIlH8SSAJ9b9Yr02bAy0+vRWs=,tag:TM87qVXuGLf9mhjoDEoZ1Q==,type:str]"
 											}
 										]
 									}
@@ -2624,83 +2830,83 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_load_balancer": "ENC[AES256_GCM,data:N6x05w==,iv:rrsLX0cbz6OOa9JHxm6dYPioefnYaVnsv9peXtRzh5A=,tag:55jRR2p+dk+MMpZXoHg6wA==,type:bool]"
+						"wait_for_load_balancer": "ENC[AES256_GCM,data:2i/xTA==,iv:8JKwPvPxEkjWM7lwauZZukbYBufCZO+Bhwj+7xDAyQs=,tag:eR4mMO2rbu8dcfET2IlOxA==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:bA==,iv:IRBjjTxsKFEN/WL+t7TosX6XdmrfIkLeRBNUCUK6t6U=,tag:L69/ogKESgutoFOMtvZhdw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:zg==,iv:bxuze844Hv/NPuoIYlowM58pfBB2pTTsQmiHC7PcTmE=,tag:P3722tRBOI06P0wCgUhypA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:Jio=,iv:3Xu8KupTT8m0PF7ozsojRe/YMg1g65MEJVVTBcLWYpU=,tag:FZmecxCix++8BWOEPA8ywA==,type:str]",
-						"kind": "ENC[AES256_GCM,data:MaG/wQSQ/g==,iv:JCDFheMSWzkm6gxuBkzJ/5Qot2fyrXm9deAC+JvRQo8=,tag:9mSMhbRewzLYZD9DLXlx8A==,type:str]",
-						"name": "ENC[AES256_GCM,data:L3Yb6VgLSs9LboVVkA==,iv:UyJSqJCw/ahjuXCmFHla98BVtS8L5xO1Pls49tcAuQk=,tag:BxQxm0hOfkIthI12Guukig==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:imZ7yBE=,iv:rVw9gZki20BlKu8ePej5wAUmfNWMz8GeQsH5lz6k8P0=,tag:DI+eo/XTaDbgGRcFho9pPw==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:UzY=,iv:m7k0jbQUmhHV56f7eCQVbPOTRagQ6RAJYLvheKT3ePU=,tag:nwjgRET+0eHcXGhI8lgfKQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:D12Y9vKnmQ==,iv:W5o5LUSc5+Dltet6eXfQ6iJryYVKzvF1hNgxYKWybQ0=,tag:3jlW0Ef9Zm6XCCGWTI3seA==,type:str]",
+						"name": "ENC[AES256_GCM,data:qqaCQJCIEzp4OvYD7A==,iv:wsvy2sRr2Tppnf6onWjZLdkwApyKP7IVfjDRYeALoOY=,tag:8QNN65uv8/MLECYNNSqasQ==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:IYTWKPI=,iv:UL9uafKi6IRI1KEAOnyCnx1XgGYOmsHOQFidTTsJ1uY=,tag:TlRK47sPQajC1+gcdUt5lg==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:EW5Ps7Y6m5myhZGA75MufT16WiTT23v1di1MCsMP7hjdPKkuAo8AQT6K2qtNz6B/K0E3DdlLF934SUBIxj6vNkUA0ClDw6VeHJyZqIyvni+H6yishu7PTOO088sPzC9Ui/bhqXafT7b7wxdzVuTTsc0Xj9g=,iv:CXaentFdROFyzxHtwEDJHTPxPv01V88Ppa6M3TZ52xY=,tag:kvbo51zTOFelc8FvH39VxQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:O77q+SlmC9A/OrJyBQBoV99TSNxlsLTlRJwuP8G/pb5yLngYog9sxtyBxwxyaIthfPKAnVteGQuSFxDEAL72bmcYDqAheE0QyeAv/E1gpgOncgTXnb6eBpD1EOoRixQk9+Z/SCBD8Ssg1l/mdzV7i1AzAck=,iv:6U8pIeVr+TUR02oaWeoV6Ho9HP9g3O0Jsdxo4XawLP4=,tag:kUQd498J2Du5ik3mbUthyg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:JdQaKnL7SyWn26osRfXnZ42SZt7nM1RHuY9oVyEzGcOOTF6RddvX,iv:YfJ0YbtyGlnWuo6NGmI0vhXdBypTkz+0YA4CTkTzJtg=,tag:F2Vs9XnTDuYpaL1dCm7h4w==,type:str]"
+						"ENC[AES256_GCM,data:Dhu/WzaQuuAkzPkrYmiY4H51D+xOvtiTQsyN8ZXbQDQSaYIPkhLn,iv:hDFqUp8uTAD0XMa+puf7B4fFSO/FBkaa6yC1yOlRWt4=,tag:8taR8uLl0a8B2dabrjS2XQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:79b36tuBVdrFFjKe,iv:4GRNHhHHZWeV0QB2XH/GR+mxwIAXIaginxB68+DZSU0=,tag:pAANZhgwy4AiYGb/+ZPaPA==,type:str]",
-			"mode": "ENC[AES256_GCM,data:EFPenTC3ow==,iv:GTVQIyVgn4NKuiXlDQ0wP8zoPNP7QnPSYRy/p2AnQeY=,tag:9v98ck6fxjewVj69urCweQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:WU1MtJkxz5p3kBpEQ3Q65UePg8q5rMLcjm8=,iv:5CRv/r4MzqTw17c+KDmHtxy97ksYTxxyJ2oNrj14xn8=,tag:D9IksJ1KGV7WySXpGxokSA==,type:str]",
-			"name": "ENC[AES256_GCM,data:r6NDVV1t4GOdasacjqvurw==,iv:KKuB/XSQqCOKuELuTmtxHTtg9FCw6tUD6Gnd6WIStG0=,tag:RuPzD6AnihvZVdlEuhq6iA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:8uEe/TSVhSS0ydZLXVFk9AxyxnJc7ETp6vFrxiRZtM6or8bmD4WhEjuMKsl9xj7BPlIAVNDC,iv:z5qY1eAAR7RymfNv4wiVra64PwZ9DYy0i2NLkYu+J+Q=,tag:MNhbQ+PNVXENuvcaq58j4A==,type:str]",
+			"module": "ENC[AES256_GCM,data:77FZ3rJyiCaZlhWj,iv:MorBEJLrXUo9mOILEigiWPkOx1usNKkx35Tw0k2bPus=,tag:ow6ZrpOxfcIO8vxjjbod2w==,type:str]",
+			"mode": "ENC[AES256_GCM,data:7fwUAqHLNw==,iv:FG5kybM83S21OYTG4gCX8V6AELnVXfw5Rh6e5bN6OaI=,tag:pd7cawdhnVl2fEWbKQRxmA==,type:str]",
+			"type": "ENC[AES256_GCM,data:yUGYL0m6oOfeaPG7beK+OmREtg5UUGvovOY=,iv:DEm3B/u/U0vrhB1SUq7J18WO+4IXmfMUwsJ9uxiDB7o=,tag:IUKMf2x5I/1PwUs+7lQWXA==,type:str]",
+			"name": "ENC[AES256_GCM,data:j2rzyp/6M+rfcrO7G37iJQ==,iv:IBGBJAqa01RHd/K995XdtqPAW0/IQ7TqWDfRc7PsGNc=,tag:Y0es4+rfxJzFftifx0aD1g==,type:str]",
+			"provider": "ENC[AES256_GCM,data:3mme0zbI5uC9UNuzTTnC7elEnrG7/Q96HA/VXY6Hs7X38kORcgDKQ4YTjydeNhEZISowV2TD,iv:DMgyT2ny3Ypi5Y1AwANaRBmoybwaYWfx35D0H3t97AI=,tag:owxIGYrbtSG8RACZUerx4g==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:3Q==,iv:+ncQ5lIGtfKLtS3qQJNdxBr4okwHFhxpxGazvlHP3o4=,tag:tT3798y7ZlrhfvQJRDDkmQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:8g==,iv:BbE/bHrhyy4DpfxxBbbcgXs7rgHmEgoW/Sm2gAJxpzY=,tag:dN6HdwZ/YPTIpkKPOzytSw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:gvu/Pn6lddfV7EH/7jXIgPkRSNHpRw==,iv:/4q+XH1IKBvP2AcojOJnDzje+o65wl1FRwVW0dRADrI=,tag:z4DSB9DvTaE96d5lTLWq5A==,type:str]",
+						"id": "ENC[AES256_GCM,data:74fPqBLmerPcO0Qld2BLWrbnXB7dRg==,iv:xYBKACczIK1uqE2v3ORfogq7MZpatl3yCtm4Dj6w8Tw=,tag:gNvmekzh4SwchdRDy0hwsg==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:dg==,iv:F8cd5yonwjkHnUPwdZrxO9LMuCBU/tUwqSFNaGnwXYc=,tag:ZrrDH3vt0eyvW4D/M4AHMQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:WQ==,iv:MUpUb7cLuWU1toZCHNiSFeVCgGU4MalcM0MrB0Qw7fk=,tag:yVCz0t8KlAb2k8VwVt180w==,type:float]",
 								"labels": {
-									"app.kubernetes.io/component": "ENC[AES256_GCM,data:4kkNfyuzIA==,iv:1917CbHIsylL3vkPdcsi+zc1tQTPg2MWguFh2ZLgEy4=,tag:tLgvDyt4H6ZkD6legAklmA==,type:str]",
-									"app.kubernetes.io/instance": "ENC[AES256_GCM,data:PtWO4t90j9xYf9yuPPrftA==,iv:PUU+rRjXD2dhqf+JSY73Ng+R2vRJQiOhl01iJYFSr4s=,tag:36czxiConeMp3RS3MxiVeQ==,type:str]",
-									"app.kubernetes.io/name": "ENC[AES256_GCM,data:Tkhp9ZU=,iv:GkapFdDZdEA0JASGk9iQKMqLD3tCEvRwnN2u//9qgFE=,tag:r6aqLzmSb4gZSepcNCFV9A==,type:str]"
+									"app.kubernetes.io/component": "ENC[AES256_GCM,data:HawZCpIyjA==,iv:gq2d5bxZR/JR3u+psHltQobJwyvPfGl4Zcn/IBiZvgs=,tag:SXHfVgXUbNHZ629eOETvNw==,type:str]",
+									"app.kubernetes.io/instance": "ENC[AES256_GCM,data:pZxIZr7lpFfT+6GK5lXtxQ==,iv:oZuEIt9+mkwAokRoEzywk4RSDqWreWWc9UouNclG4ZY=,tag:Gb65SPKPcXeEsNdgNrUENA==,type:str]",
+									"app.kubernetes.io/name": "ENC[AES256_GCM,data:SI89Rhc=,iv:LFIsiomFvzrBGBKWL76IWDKrUn474JHduHjw/PH9S/U=,tag:s9pMB/Vbt14kHRRFHjl6Xg==,type:str]"
 								},
-								"name": "ENC[AES256_GCM,data:nV/oiAWc4fyfWp8wHkRs9g==,iv:RlU/JgsIZ/1TS8rpWgZBmkOiyzBSfqQsEDCtze6NbI0=,tag:4ULjNpVIK1l6mqwiFgg2MQ==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:hFZs0v4=,iv:TAPNWAplcgax5352RrAxR8BDTKW5AS02i/297OyLs0o=,tag:ATpQK3R5/cLJD9JdTflKNg==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:D4D8G/r+98z7,iv:HCqFPXFu9vWYFbpGSTDATSufCkayyr+J51FCZGlhdSs=,tag:/T8Y/G913tB/cxwMO5z9CA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:gQ/sqhtnbK93bpixAaTdgB/lCp6B45ly7MJLCZP25U9CHz3U,iv:t/rNnJs7ioLB+yTfMLcjfe9ft60eBWIYi39yzZeZyI8=,tag:lo4zAgmVv/5MlN0fOvLUsQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:OfCpCdBZJ05o5SMPcz3XPQ==,iv:IkcCZzk+bzVRf6EkW3oZW/J2YlGgsyACJLb4m7LeKlw=,tag:hqz7bJf0xOERfBkFmryqHw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:MFkOPJU=,iv:41kuFug0ytwedsPNtBLjX+v9jUChwH+zP1fPnlEF0cg=,tag:tegohjJB+nibEPKlrdI9eQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:pA3twPQsOOgx,iv:RF5a5lk4AmTo27bLjQwoxRv+fYoxuGRgJb1kreAKEe4=,tag:7bNVPW03pVwpUQdV/6APyw==,type:str]",
+								"uid": "ENC[AES256_GCM,data:znpgtazknoWfFWK/1r286pRT3MMxCTxFU04VfVfhZcq+Iq7q,iv:WjEyhjBVyGforVqwdb+wFM/2D/BlrzD1h8UgCj3dKaw=,tag:HDiqtXsyAOGgMVCbfFLnRA==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"min_ready_seconds": "ENC[AES256_GCM,data:sA==,iv:eUM9axJChDz5TfPJqK16q2KMK1mhUO49Nsu16ISg5dA=,tag:4Vyt8Gkfw3aQfI2ls4og3g==,type:float]",
+								"min_ready_seconds": "ENC[AES256_GCM,data:vg==,iv:aMuWNtX1dFtUvSSaBB0wVw2na1fsD0bPgcnP/el/HFU=,tag:C18ZWF9pHWo8NZka2iYrYw==,type:float]",
 								"persistent_volume_claim_retention_policy": [
 									{
-										"when_deleted": "ENC[AES256_GCM,data:4UMlH2p/,iv:U6/WZ2jbFM4nymsBe7TdC+9Bj3GZEtSunEJyd7zMT9U=,tag:DZUo46KbJstsUAKujuV34Q==,type:str]",
-										"when_scaled": "ENC[AES256_GCM,data:Tv3xXaY1,iv:lrqaOtHuPsILt5BMZpgC1vmcpk5JmpjxwGPlJUZHiBw=,tag:KF59XIk5KZDINfgOTEVDug==,type:str]"
+										"when_deleted": "ENC[AES256_GCM,data:ljJrDVQy,iv:euVrdzs6z6gdijiOr9S2DwBbTncYOCQi8CqY+8sfdcg=,tag:88LGr/QG7Qhn+GwRqNDIGw==,type:str]",
+										"when_scaled": "ENC[AES256_GCM,data:ozLCHSQw,iv:1rKTlceu4dc/SrKmwg9x98LcWVmhJhgVz3jao6ynQqE=,tag:2uUEVH6sDboXixdJnRc7sw==,type:str]"
 									}
 								],
-								"pod_management_policy": "ENC[AES256_GCM,data:s3V4qp9fxIP62Gzh,iv:7Al3yEZPeDhUCg3kgL2G2rvpGU4e8zk13OzsMDLztvg=,tag:jH+cm+7R5q07JKTlrs6hjg==,type:str]",
-								"replicas": "ENC[AES256_GCM,data:cg==,iv:dgQtj1d2QlVK5L6qGa0U3MKVAvyx/06tEQSlsYLP0Sg=,tag:kSFpViqsPzSj0ti3zVP3NA==,type:str]",
-								"revision_history_limit": "ENC[AES256_GCM,data:lQ==,iv:UKM4KlvTuAKzZcA0iyBdbubj23iRhrFzlqiJMf6c00c=,tag:x9429ILJsUSClZp/lEnN6Q==,type:float]",
+								"pod_management_policy": "ENC[AES256_GCM,data:NxP4/nQdXckCtlOr,iv:KGf+iphRp2239vyEU4m2Nwq0ltc/LgBVSDCS1uc3YEY=,tag:SjKbbrzg1FTzMHCaszMkBg==,type:str]",
+								"replicas": "ENC[AES256_GCM,data:EA==,iv:CirC5bY9bSPaGZsp97LhhTkZGpSQSFZPcdsRbamYYz0=,tag:juw9a5Myp5Yd5gEsXWpptw==,type:str]",
+								"revision_history_limit": "ENC[AES256_GCM,data:pQ==,iv:OfZdlnpwDQcLoEwW9i54LKz0EXw30JYcT/vqS0z5zaw=,tag:2nrMpVPXNnt1AmUjBw6iIA==,type:float]",
 								"selector": [
 									{
 										"match_expressions": [],
 										"match_labels": {
-											"app.kubernetes.io/component": "ENC[AES256_GCM,data:uTX51UJImw==,iv:aMHJohYgw7dfW6k8VfkCgkU6O1lfZ7nGYc03UQb4Tj0=,tag:nsSN/pRV/tj/pAGFLB28yw==,type:str]",
-											"app.kubernetes.io/instance": "ENC[AES256_GCM,data:hGkuiYn+Xfqr5pYBlTogZA==,iv:fJpmYui7wAHbV/vuWM/LnPMlp3e8AdvsJibWim6zoYo=,tag:35q/8hPBzow/y5E94HNGeA==,type:str]"
+											"app.kubernetes.io/component": "ENC[AES256_GCM,data:3kMH4BepEw==,iv:d2ifmk+Wb5OuLtd8Ki1OIM6DGTVqXKfIrYyaOsTi/Xc=,tag:CsmK288iofsAzfI20QTY5w==,type:str]",
+											"app.kubernetes.io/instance": "ENC[AES256_GCM,data:1+SsyVcJVKEzQCcQVdfhaA==,iv:30sKTanq6euSRvihU78RJGz7nxPSRJETdb6YVDFLXzQ=,tag:7P8Vob20gYc995aY7F1Rlg==,type:str]"
 										}
 									}
 								],
-								"service_name": "ENC[AES256_GCM,data:15VFJTgIJ+7wr7bT09CBXw==,iv:XyqQkftOXgT23yk8s7nOs8mlOcZkHXgTRbrhfgdZL7M=,tag:Wmafz2jiHNG3ln/E3428yA==,type:str]",
+								"service_name": "ENC[AES256_GCM,data:lmbBSOuvdePms2ur+I2P/g==,iv:i9Knc3tIIQVShYQ9JJ739ocN1fhULuOgSGeLjzzsGUE=,tag:rIFstt9G5oQCgkom97nqAQ==,type:str]",
 								"template": [
 									{
 										"metadata": [
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:2Q==,iv:gfi/aOMTNebWiiGuELQHMNQkFje/oxF2OM0kahOHgxY=,tag:Gj8a9Gyz2LfcZGLf0WyTPQ==,type:float]",
+												"generation": "ENC[AES256_GCM,data:1w==,iv:V3BaFA5qkWai7h/AlqgYr/934D1FFvWXEszAfL+WiHs=,tag:xYrgByqvjPky9i9IojVE+w==,type:float]",
 												"labels": {
-													"app.kubernetes.io/component": "ENC[AES256_GCM,data:JMw4D542ww==,iv:lcJ1YuJqJJgBihG+JtIPXAUyJJtD5h/eAAvCFBU2wu4=,tag:84p/JfTqr8ZHf3hBdF0Emg==,type:str]",
-													"app.kubernetes.io/instance": "ENC[AES256_GCM,data:ESdYfuKeATGsJZmJqT/ftQ==,iv:f59dktv9gXeFR9cycgB7nGxV1majHUe/MeN0lTNQIg8=,tag:l4U5i0NMarl0il7WcN09XQ==,type:str]",
-													"app.kubernetes.io/name": "ENC[AES256_GCM,data:S0/m00Q=,iv:bPAj2hP5i1o3NhuIayDbegcAykBdrZH69wRALHFxOcc=,tag:gufS5dKoKG5nP4cgwVEMtw==,type:str]"
+													"app.kubernetes.io/component": "ENC[AES256_GCM,data:dHvGklosPQ==,iv:28fv3Hnp63JfEhmTI8zzJUiQYIN/Fca8SVXmaiU8RTs=,tag:UVd2MVWTg8ZYuPP2QP/zwg==,type:str]",
+													"app.kubernetes.io/instance": "ENC[AES256_GCM,data:xgWNx4IJ6G8Mp6ZcKIcMPw==,iv:Yn8RGjwWLnWxhNFMOT3MVGAEodNTpqeDa4AkXZxFHks=,tag:Tu4y2XUb5nuyB4/feRzkCQ==,type:str]",
+													"app.kubernetes.io/name": "ENC[AES256_GCM,data:EsOtKO8=,iv:gdYbAhoWwRNCMC0xinseCzc2lnkcBxLL/H7tUivFHqU=,tag:3vPsMazHOLBbLhIrYID+EQ==,type:str]"
 												},
 												"name": "",
 												"namespace": "",
@@ -2710,7 +2916,7 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:CQ==,iv:W/+anorMZI6M+ZXVnyXyDCIV/44vZVY2+Ir5DGT1PCE=,tag:VZAlkVFuB05EuN4ERoLXXQ==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:XA==,iv:dZ1ZLyLPAlwECxhYEra3784LZ9suBOIWYqlhM/5gaS0=,tag:JwGCWtIOlYI8HV6qM8kTlA==,type:float]",
 												"affinity": [
 													{
 														"node_affinity": [
@@ -2722,10 +2928,10 @@
 																			{
 																				"match_expressions": [
 																					{
-																						"key": "ENC[AES256_GCM,data:59dZuC4uRDWFKKbbtVZPP+9SRxZZbg==,iv:SExbNzp48qIPCYLdFt9Hy2G+e8YOZ0to4XJ9hA72bf0=,tag:5YpMZiKoFKGhkX9gcDqN2A==,type:str]",
-																						"operator": "ENC[AES256_GCM,data:ZkJghGs=,iv:iB2ctbqGifrb13azoT+evDxiHrdOyrn/yFZTqalCyh4=,tag:H3bR2iafLS5JeI7EB/DtQQ==,type:str]",
+																						"key": "ENC[AES256_GCM,data:w6nZCBPuxgxNlxTF6k8AlbpW+KYhYQ==,iv:B4DGWpgK9k747oQTxR2vCsZaQA9jbRaFxTjkQnZOxhg=,tag:NPB5VaJNDKM2spynt1RjBQ==,type:str]",
+																						"operator": "ENC[AES256_GCM,data:nGG47yg=,iv:t5yE5MAvZkFeVRj6ykFt2Q+ZmLmCNdm0ex0gsNxq2Hw=,tag:zx6JPQTshxzkaqwAog9p1w==,type:str]",
 																						"values": [
-																							"ENC[AES256_GCM,data:K0RgN88A9pbS,iv:LjdKYc2DpHB8mYgIpYD7yBquGRzpaV4Ba6ot4Omb3d4=,tag:MGeCAU5/bhzhuXNF4vGcEw==,type:str]"
+																							"ENC[AES256_GCM,data:9cW0FrrukT+D,iv:/xKjDfKd+3ftLKOGlgUXzU2WGWDUiIP4GedRilvXaXE=,tag:Jr5bI7mAUlkjepMhI1rcag==,type:str]"
 																						]
 																					}
 																				],
@@ -2740,14 +2946,14 @@
 														"pod_anti_affinity": []
 													}
 												],
-												"automount_service_account_token": "ENC[AES256_GCM,data:ywMqzQ==,iv:4aYt2r21vcDRjFcyFQxdbt/Mdopg7duMRLaT3NWsH10=,tag:WofxopdSSXb7U6VuzqnFkg==,type:bool]",
+												"automount_service_account_token": "ENC[AES256_GCM,data:en4tDg==,iv:wahCJCIqz0eFOzEvrT4/HvH7t8upV14nfIjRxT78Jes=,tag:lPTQb02GKM1sU/nEcJh0vw==,type:bool]",
 												"container": [
 													{
 														"args": [],
 														"command": [],
 														"env": [
 															{
-																"name": "ENC[AES256_GCM,data:P7s/1Y2tNnZJ0IkM8xvt5CDQSg==,iv:7cG6aVJuuYd5Mx7vEcLZOuyeKyvJQdBXhtyZzcEYpwY=,tag:MzDAylJUl8e35M8veCOXNA==,type:str]",
+																"name": "ENC[AES256_GCM,data:+a+2LyMlOpudAa/h6B5IhKFUhQ==,iv:KOU91RmkhRuGsFGo3GVaBmsltV/0IwUlmsWzPWhmDDo=,tag:D9WSCsMpSyd9ej2K6tDdkA==,type:str]",
 																"value": "",
 																"value_from": [
 																	{
@@ -2756,9 +2962,9 @@
 																		"resource_field_ref": [],
 																		"secret_key_ref": [
 																			{
-																				"key": "ENC[AES256_GCM,data:xkOzVVVzhcgqJ0CmBQ==,iv:+kv8pxboONF2vKpeJimwehlaWYKWlZL9zjQ99dBx9Tk=,tag:Yz49rET+rzGBCYf408kObg==,type:str]",
-																				"name": "ENC[AES256_GCM,data:Lzw2bkxYoqxIH/CunJ8=,iv:sVpIALE3xbWgh1J/MfJhIIU3rhxjXv2NLbvV2Ct+0wA=,tag:2AhsDOp+SV8bQtrA71fVZw==,type:str]",
-																				"optional": "ENC[AES256_GCM,data:l9arvP8=,iv:96BbxzfYMRc3m6IXNLCxKqGN5+thi1ylAweuPv40W6M=,tag:cMJNE/5lcErj2Ooh6y65gw==,type:bool]"
+																				"key": "ENC[AES256_GCM,data:A2hBPdmZK/XQIlmDJA==,iv:OcgzGWsJbOyoMitqRHWOH8/fiwRDVuoaTUZ1NZJqsLo=,tag:2to6QizadddAz3KasupwMg==,type:str]",
+																				"name": "ENC[AES256_GCM,data:LxT8YaO3lGHaoV8NmuE=,iv:ae6OZJxZ861LYJzFTTZuAHKzztXJ7dAHFC4K0JbjE5M=,tag:Zo/Qu5Z3x3Z+XbTnUwZs0g==,type:str]",
+																				"optional": "ENC[AES256_GCM,data:kDdSnzI=,iv:hW8fSnu1edHHKs77ooUju/A39r4mc8KSCZ5PTpFDW94=,tag:Mbn0h/7Y6KYxK5/2wzf18w==,type:bool]"
 																			}
 																		]
 																	}
@@ -2766,39 +2972,39 @@
 															}
 														],
 														"env_from": [],
-														"image": "ENC[AES256_GCM,data:bHh1f2RqhI2r,iv:IKkGh9X5Yhxa/VyK0GYlAtP0ekWO9U+H1dq5dENZQAA=,tag:XB2U7nwjm1YFd2m/CaIdOw==,type:str]",
-														"image_pull_policy": "ENC[AES256_GCM,data:GTC4d0sPuWWOrO0v,iv:rIu7a4A62e/fmXceboP6dINqzSZyWJaWOz2uoWhCnuI=,tag:QFpQVCe3VgGepxceCaKMiw==,type:str]",
+														"image": "ENC[AES256_GCM,data:Be+HAfJ+3zqJ,iv:maVT+wXO7d97H62BTsdsKcVm/7R3vjTz53m5DmEokqk=,tag:7Ur/TkAzG6oE9EBtWvGEHQ==,type:str]",
+														"image_pull_policy": "ENC[AES256_GCM,data:o7L1k67tyVoZUnce,iv:JV2/Qw9Ix4JuAM2Z3DPqbBnyR+E4MADNd4M4sGhVGfs=,tag:KQpAo8HO1t5ufCN/Dh8Haw==,type:str]",
 														"lifecycle": [],
 														"liveness_probe": [
 															{
 																"exec": [
 																	{
 																		"command": [
-																			"ENC[AES256_GCM,data:lUZ90ZcOqxMHbQ==,iv:lp/0A1k9zJ2Ndy+f1+gda0XVo7De94/ZhBHApjeHDeU=,tag:vgfMJ6gobzSS4cdOtAKnbw==,type:str]",
-																			"ENC[AES256_GCM,data:sS7GmQ==,iv:PlTLTIEpdGbLjcmQGUDoo9e4T8AJ8OR8MIfjzpC/lwY=,tag:IVhux1RKoR5cALFSiBxqmg==,type:str]",
-																			"ENC[AES256_GCM,data:dFA=,iv:C0NGo/eQfjgTocoV6xWoPyBz7kY4YMXGNSR0oZWI+M0=,tag:FpdFVBnEUvR6dM3WZIAZ7A==,type:str]",
-																			"ENC[AES256_GCM,data:93F2B27FcVRQ,iv:uCxqxDHLCUdd4uDsvXtDMWHmrNDNW/fadMk2UiW0bZY=,tag:6hR45mwaknn34PpwEG9sPw==,type:str]"
+																			"ENC[AES256_GCM,data:Ubc+cYlXhQwiwQ==,iv:GksBRcwy/8ITSiQmbdyWVGbrAvm5WFMjreVeerLFjuY=,tag:yA1EKIRXRU9937ukvaZSsQ==,type:str]",
+																			"ENC[AES256_GCM,data:pdY0cQ==,iv:5t6okjUgz5nG+OtFdMLUCjs89AtPT6vpzI/8APqz2aU=,tag:0iOFWS2bfD6jBA04hdDGwg==,type:str]",
+																			"ENC[AES256_GCM,data:RLM=,iv:ORH9y9yq7DKjGFTWKh289HoxN70WRvAyz9nLX8anLT4=,tag:Y26PDacNzR82hsiG5aknDA==,type:str]",
+																			"ENC[AES256_GCM,data:RFnjth/L3HAR,iv:2MgbrZVTyUWlBcF4vlHF8+nlgKo44stDWPfWo4mmnlA=,tag:qSPVnCzxhPcYIX1MbO7oOw==,type:str]"
 																		]
 																	}
 																],
-																"failure_threshold": "ENC[AES256_GCM,data:vQ==,iv:xI24uxm3wen94XCdbtiPzGLjGwsTQk5khv7DcsK2p+s=,tag:ETvpHb9FgmE5QgfgAwT7dQ==,type:float]",
+																"failure_threshold": "ENC[AES256_GCM,data:eg==,iv:rhiBvSIpZeuPqeuXN312fevoUfdNoz9mZe+OdSiiAko=,tag:Y75vWAEEIIUndG63xCsEAw==,type:float]",
 																"grpc": [],
 																"http_get": [],
-																"initial_delay_seconds": "ENC[AES256_GCM,data:8LI=,iv:DlVjdioaXf4B0cVkKB70enq+x1Gaty7f+FiRhXnwWio=,tag:yaJI+yqcy5ZxzYcH1Xvvlg==,type:float]",
-																"period_seconds": "ENC[AES256_GCM,data:89I=,iv:1CtPPv+0jbmlbwL1D7RhZP26ErFt92ONEUV6DmA0VYo=,tag:8juIYuzP3Gs2jVZRjCJyPg==,type:float]",
-																"success_threshold": "ENC[AES256_GCM,data:uA==,iv:qvld4SLATcWh64Wf4ZLCSBSGdObajOpwBHeJq45uJgU=,tag:VIK5sII4oj+G5RvnE+qOfw==,type:float]",
+																"initial_delay_seconds": "ENC[AES256_GCM,data:sls=,iv:eSQm9K2gbec/hAjyBg6aPv5pzz8mT3OCrtO3HzKvNXE=,tag:Dofzg8igSUF6C3jJzstLBQ==,type:float]",
+																"period_seconds": "ENC[AES256_GCM,data:wy4=,iv:9QoRx3rJxpTyl9Co5EzV8Du8MRiJHrdieALiI8qet7s=,tag:nWFtj6S1qJ3u7XoVw64mPA==,type:float]",
+																"success_threshold": "ENC[AES256_GCM,data:XQ==,iv:PhU4+s6WYMee1qrWkUBO4qQNfYBvuBBWHX7XFuY28fw=,tag:qsKNeCyaW3NbK+c64UcX/Q==,type:float]",
 																"tcp_socket": [],
-																"timeout_seconds": "ENC[AES256_GCM,data:Lw==,iv:3Opehb0IzJS6R/wCyCV7fBaNEFlZPHYx9oLtVpOaimM=,tag:hqgd3WbhEAfc+ZE4ozqZpg==,type:float]"
+																"timeout_seconds": "ENC[AES256_GCM,data:gg==,iv:0upnLrlMDrNx3j0leogMamlzd5G/UQ6qPToWIrs7ge0=,tag:nvWEimZK+0n1isKFzhqGvQ==,type:float]"
 															}
 														],
-														"name": "ENC[AES256_GCM,data:dgSHcOk=,iv:SF6FLc5njcxfuofcRfLK88P1dbUxTMeR/r+YNBKVNGk=,tag:8RwdmKgIO4x4+1jiwU4kag==,type:str]",
+														"name": "ENC[AES256_GCM,data:WD0O/eA=,iv:q8tKh77dK08d5BkOB6SXKyxwJY5WiD5XqtuIYmIx1Dk=,tag:whzhuqZU+nmS1ZMGtBUGIA==,type:str]",
 														"port": [
 															{
-																"container_port": "ENC[AES256_GCM,data:oocTUw==,iv:CVtC/AUBGgecXVnFwEFSRZji/F1ovsKVVBF7Ksd1q3U=,tag:Vj9Vff5f3WwHM48G3bRU3Q==,type:float]",
+																"container_port": "ENC[AES256_GCM,data:xE3i9Q==,iv:8cujT2+9zid4BTqPMTCtbkl8+Ij3LKNsDfkTKfclldQ=,tag:s5vJXckdYIDybHClG9dP6A==,type:float]",
 																"host_ip": "",
-																"host_port": "ENC[AES256_GCM,data:ZQ==,iv:hzo96tUmBRHlhtVETeOwWh4Dfr6pq1cH3xblH3I3nUI=,tag:RlC7OVwmV64o8y+/67SMMw==,type:float]",
-																"name": "ENC[AES256_GCM,data:R+12+XI=,iv:is7mkexHp3o1VtF31P3+u2HrjkeT/bz0NO0qA7/uva4=,tag:97r6uygMiAP2WlcwCaG2UQ==,type:str]",
-																"protocol": "ENC[AES256_GCM,data:NUom,iv:2JHpkyo4BcaY/M15MxYNnSQnnWPzGn0cb+yvfcp9+jQ=,tag:KEaPzX6wT/uo4gbGl4NZcw==,type:str]"
+																"host_port": "ENC[AES256_GCM,data:lQ==,iv:bC9jfmjEkbzyEwJKWYSqkR7/o7egLmMdQfRIcb5mGKc=,tag:WEoxc8qas1WauaiPrsnDsw==,type:float]",
+																"name": "ENC[AES256_GCM,data:FI/benw=,iv:ZcTvg6wzETr0aJhXZRs2fLOMF4WQYiVJH/BjWmCC6O0=,tag:qOSc03qx0gUE/LpcKxfK4Q==,type:str]",
+																"protocol": "ENC[AES256_GCM,data:CKnR,iv:uhZYXekocTgjIvg/9njebj5VP8rhMrKp326W1cHAcLk=,tag:By2PK8kWbx7SAylMCavlKw==,type:str]"
 															}
 														],
 														"readiness_probe": [
@@ -2806,57 +3012,57 @@
 																"exec": [
 																	{
 																		"command": [
-																			"ENC[AES256_GCM,data:YvJCIPmwABORcw==,iv:yNQY5WiWjI3uI7SeJcULuurYmh8ITJHekGrzaJmTGyo=,tag:ErImjnWm0e/FA2ubXTJayw==,type:str]",
-																			"ENC[AES256_GCM,data:ld0teg==,iv:AJm8hjv7N1MWFqwSZRB97QvxRJDpgq9+gGZT2hRT1d0=,tag:H9Xs4hBv88ZGO7QWdqhtIQ==,type:str]",
-																			"ENC[AES256_GCM,data:+3Q=,iv:+cdZSaXu2E7Kt/p4c2ywHY1ySXw3Oy6W0AFsKoJlRwQ=,tag:5sZzkP7XuYkEBwRP1LBfBw==,type:str]",
-																			"ENC[AES256_GCM,data:rGAYQVoiRiUW,iv:Dc5wQ7YH9W71QIPBlQLeVhp1bjTFy0gBacM2qWl9TgU=,tag:LqqE/Iry1211kwxQrEBPXQ==,type:str]"
+																			"ENC[AES256_GCM,data:MTyL/P5hwqShKQ==,iv:mHI2M0lgaPT2v9K8OUWEEFM1YMo9sZmhiAVCz/X1qjU=,tag:f0T3hFWiqyGXFEVBHA+/Fg==,type:str]",
+																			"ENC[AES256_GCM,data:ETxcnQ==,iv:2oMpRPzW4zqNJKrF3GMVD91qh+qf4MNMqTllP3va5qM=,tag:ySGjA/z4lN6uWxM4UkY27g==,type:str]",
+																			"ENC[AES256_GCM,data:Zos=,iv:rpIfTvs3vEoZrZRM6U+2uTIBVtfU8/GicT413v5/pk0=,tag:MBWnT1vqmADlRpBHkK4FTg==,type:str]",
+																			"ENC[AES256_GCM,data:uIFowjpF0mVX,iv:KvfEhu4aFeqSGuNy0br7CCeNUrb++9B/XDiFxPuxsng=,tag:o8aZBBkkrjCKOVfzv5uBtg==,type:str]"
 																		]
 																	}
 																],
-																"failure_threshold": "ENC[AES256_GCM,data:Pw==,iv:qqTkzgDHLk73UTR5JsXUhps8KfPfCvHQNe+I20BTCIM=,tag:lMxBd4pfJgnX7I1O33qZMA==,type:float]",
+																"failure_threshold": "ENC[AES256_GCM,data:AQ==,iv:cEDyp+eFWpkq25UoIngMzvgg4DRQsqlOi+n7J9Qe0yM=,tag:rGU6tPseINI8USsHDCdF2Q==,type:float]",
 																"grpc": [],
 																"http_get": [],
-																"initial_delay_seconds": "ENC[AES256_GCM,data:EMc=,iv:QkWwyFCIu/Zw0/OzZh1ATCUv3DhZ/utEq7jvpKzcgb4=,tag:3YKurDIGAo2jQEh0Fb4CaA==,type:float]",
-																"period_seconds": "ENC[AES256_GCM,data:N3U=,iv:BMz0nadhzbZabqN7lfPKrrY6kgda3mjZLD38iyCnVxQ=,tag:Cck8qT7BPVH15bpcumBe0g==,type:float]",
-																"success_threshold": "ENC[AES256_GCM,data:ew==,iv:lEaP0AGIg3IaZWxNP5NJFd7lqE/PbyYP2vh8ZPYvifY=,tag:58msiDtgv+UWFT0XKVv1NA==,type:float]",
+																"initial_delay_seconds": "ENC[AES256_GCM,data:OEc=,iv:JU/IXG+QatalG5BsxCY/yxmZ4vb+RGzwz/ov3qE7RfA=,tag:XznXQoIAer5bQXXQYv7EuA==,type:float]",
+																"period_seconds": "ENC[AES256_GCM,data:F20=,iv:Gh2Ei/elOfqu0QYAiKrplI1m4sNtjIbHFcrGNYK4N9c=,tag:rRqXSRuH1BgJVvZAxbNobA==,type:float]",
+																"success_threshold": "ENC[AES256_GCM,data:YA==,iv:2zMNGp4GbdVNAKphDsmZtTrv2nut4eppRXUzyx03o7s=,tag:qWjoHWrehdCQXmwSoMHG6w==,type:float]",
 																"tcp_socket": [],
-																"timeout_seconds": "ENC[AES256_GCM,data:AQ==,iv:hI+trSCyO5fyeKjiFo6sPhmO1PlbpSCLSSyvsAB3xBU=,tag:HhSuDtUPOJe56QLAYYgtWA==,type:float]"
+																"timeout_seconds": "ENC[AES256_GCM,data:iA==,iv:OE8/dD0i6H1f72oR3YQRCP8mClzBFyIZ59930cxZ+2s=,tag:Pd4nJuapomifRzb/coDQiw==,type:float]"
 															}
 														],
 														"resources": [
 															{
 																"limits": {
-																	"memory": "ENC[AES256_GCM,data:Bjyd,iv:JuNYd/rJYOkPk4Ga6XgkXtuhg+BiDPSbDP/PVOl6rAU=,tag:erVQ0ESJhN4N4eB5VCVMFw==,type:str]"
+																	"memory": "ENC[AES256_GCM,data:9Ci+,iv:PkwKzSHBd7L2S2NDop6e3iLlEKVOLzG6O+nXZSZD68k=,tag:dc2zQHo8z2kpkBhrpjwJIA==,type:str]"
 																},
 																"requests": {
-																	"cpu": "ENC[AES256_GCM,data:0NuHvQ==,iv:59cPp9TSkY8QxblHKXu4rpT2r/SL9vRObe16Ajab2CU=,tag:U3eNprEgMuAhGUSU8fGsiw==,type:str]",
-																	"memory": "ENC[AES256_GCM,data:14Vsyh1i,iv:gwxR9/KM0WnKmtfyjafTwYiic0L9X7Suh4vvGRsaexE=,tag:B5pSYs/pnXk6WkHWJwD88g==,type:str]"
+																	"cpu": "ENC[AES256_GCM,data:Mtu7zg==,iv:vCd/qlXqY7DJHgH5FBZ1NGtOeRrUACSUr7vN6g0C5JY=,tag:G9Qi2a+hM80tAHySPqAQ5g==,type:str]",
+																	"memory": "ENC[AES256_GCM,data:YGAd8AaV,iv:4iEFbGlUOh3R1l355TuaqCGRGo1mA+Hv+Zu7/f8dtLU=,tag:1HmOy84478EhkYaqOMQZvg==,type:str]"
 																}
 															}
 														],
 														"restart_policy": "",
 														"security_context": [],
 														"startup_probe": [],
-														"stdin": "ENC[AES256_GCM,data:hWXURcs=,iv:AWua7UbtjFTQ6XSgj7FtMBce1HIv43tLFwuGdo1WhNk=,tag:Wwdm69S/kSEWsYiaVGI/Yw==,type:bool]",
-														"stdin_once": "ENC[AES256_GCM,data:XxsI8aQ=,iv:4CGSdMDq6gGU7NCJcdPbHT/NWDA5w0eiPItLpHuFXbw=,tag:t96CWUYzaz46mleIzvt5Og==,type:bool]",
-														"termination_message_path": "ENC[AES256_GCM,data:HQ7jeWqDmxS98NgoB887uTeuHO8=,iv:BLWN5paLJ/zOLwhAFZ/zEWTHBacoYHnEmwauANjmfsE=,tag:qslccleV7QTrQXcaIvNH/w==,type:str]",
-														"termination_message_policy": "ENC[AES256_GCM,data:9oizjQ==,iv:yfElfhp2RzHp/BA0t/pJFMzcrsHd1seVkwWhIsr0upU=,tag:FcazugwU7GAEvZKFoBcvjA==,type:str]",
-														"tty": "ENC[AES256_GCM,data:tv7wtu8=,iv:dpVJnE/fSUyIo211kfOFvdJV5swR70ST3PxgntAy95k=,tag:bvbra9Zu6D+BNPP1Z6JTFg==,type:bool]",
+														"stdin": "ENC[AES256_GCM,data:3/k8pIY=,iv:syx5urnLhSrBcsprxDe7hTdFceU+sSZz9id1bFD+ECE=,tag:k2DJ9/lYONZ+L3/OKi0mtg==,type:bool]",
+														"stdin_once": "ENC[AES256_GCM,data:zibx+kA=,iv:1wJlmJYJouKZUfvlhhBypReSJ/HaBCV4k+3/hMuJXhQ=,tag:Q/l3r82X/rUFbUt4akI+Rw==,type:bool]",
+														"termination_message_path": "ENC[AES256_GCM,data:IDqYLttU80bvMeWxI+MSjY2y+Ag=,iv:QipPPXdA04931Tik6v56FUEdXHm/1fiQ/gZLnsUdEvQ=,tag:bRNPhrPcE40VGTliwPGP8w==,type:str]",
+														"termination_message_policy": "ENC[AES256_GCM,data:uYZWsA==,iv:nilKlj8rwP+niFPlIcsYHZTgQ9xq+UJUchLjy0VzKjs=,tag:SzJ1MhYlsD4fhk/G0VIqyw==,type:str]",
+														"tty": "ENC[AES256_GCM,data:8VQYJnk=,iv:sTh1TC5nU1GX10D8Z5uzBEGR1dG2T8FplG+9C70ie20=,tag:h42DMayXQTwhSbo7z4F9AQ==,type:bool]",
 														"volume_device": [],
 														"volume_mount": [
 															{
-																"mount_path": "ENC[AES256_GCM,data:IvVNGD+8yUdmyHxhXKc=,iv:yhp7TNUDzS5cwNrMA/W8fBX5z3GdGRnukSBJo70Z7gM=,tag:2kqIlG/UdSwfsZR7NazpEA==,type:str]",
-																"mount_propagation": "ENC[AES256_GCM,data:DHSVng==,iv:SLK1Q5iSXzMxPod/79ILpa+O3+BzIHxNxZOB3OyJ9hs=,tag:065zbhLP2kTLT4WvNk3CvA==,type:str]",
-																"name": "ENC[AES256_GCM,data:+bZscg==,iv:B3WlCIDk79/KimgNlAqBHVeat3b4pVOVvJR3d3dPQPA=,tag:iNYP2Hjk4X1NmYP4OaO0qA==,type:str]",
-																"read_only": "ENC[AES256_GCM,data:UJtDV9c=,iv:OpPAvopWGEF3uXJQqHA4XRkh23BvETa6jO9CBufdw6A=,tag:UsWSi4mcjGLr3Sf6vF4xyw==,type:bool]",
+																"mount_path": "ENC[AES256_GCM,data:URS6/gmYTXrE76gMhJM=,iv:Q7t1PiAwkbCQXxrk4JeI+lBCp626SVzs7KkDrPtUC2A=,tag:gv5jFRzT9/Ff1oNKYfddqA==,type:str]",
+																"mount_propagation": "ENC[AES256_GCM,data:rUmSpg==,iv:uyrkr79AEuO6zL/vq/BJCt9g9AFUQ2uFwyQEwVt4phw=,tag:d4O/5hSbcuwrHhwLCW+yhw==,type:str]",
+																"name": "ENC[AES256_GCM,data:+oU8VQ==,iv:hi4F9gmuronUQuI+Gz4skJW2f7tpfxjnhOr0naY8+Eg=,tag:v0xEBhOMT5VyeSZyJ2GV/g==,type:str]",
+																"read_only": "ENC[AES256_GCM,data:MWAqBB4=,iv:sbeFc0FFYSdyoTaHg7VTSLhtdxKHLxriO25bm45fpEk=,tag:piVxXzHtaRHP3fBDimX7Dg==,type:bool]",
 																"sub_path": "",
 																"sub_path_expr": ""
 															},
 															{
-																"mount_path": "ENC[AES256_GCM,data:GFBSNk3KoiTG5o7twf/pIy0=,iv:txpoC4NiWVLa99hF77fBGtD4AGuisvZxqT3q9e7UbRg=,tag:CtrdcTRqrgqFw7aJtPNAyA==,type:str]",
-																"mount_propagation": "ENC[AES256_GCM,data:c/sr3Q==,iv:UsSFFqMvf87Rpx1PJvYYVFMwGT9g/MFoj4DEclAOWHw=,tag:mRCxIZo3nKOIdO+0pqjuug==,type:str]",
-																"name": "ENC[AES256_GCM,data:AHJeL9Xv,iv:/mpaha9HSEYQQIBcJnpsUrPxoPeNGnIXg1j1er52exs=,tag:F2rF1Th25DIp/SqQPCnOLw==,type:str]",
-																"read_only": "ENC[AES256_GCM,data:yASJPQ==,iv:WnEiDSvUh2R7ipsckH7vUu2IkVDeqkKvN0bC1guIQGE=,tag:3taCqWbwcLIqg+ejjPX/sA==,type:bool]",
+																"mount_path": "ENC[AES256_GCM,data:9LUE1TMbV1PRvPqp8CGikcQ=,iv:LbOlqfXgwre3nV5O57fHPzJ1+SvucFv482pQODvAHuI=,tag:/fW7/VmUE/NrOSpASlTQEA==,type:str]",
+																"mount_propagation": "ENC[AES256_GCM,data:1f9hDQ==,iv:vS17x8muCAu9LkOsRiufP+byZML36V6b9g8Yg74Iaiw=,tag:kBw3yJTM5fHWCnlVh/6Ieg==,type:str]",
+																"name": "ENC[AES256_GCM,data:DtasNa6K,iv:0I8jI9AhVx+Id5Zt3v+ojh/AaCRUV4PUnWzlL20RjUA=,tag:P+Ds+NuF2W8vUrR9I2laXg==,type:str]",
+																"read_only": "ENC[AES256_GCM,data:gfRNOQ==,iv:yy8XDC0Tn3JqoyEyl8vI0BnJSaGuKKddDMMDFNUWI0o=,tag:wPgS239oCHK5M7VWDbfLLQ==,type:bool]",
 																"sub_path": "",
 																"sub_path_expr": ""
 															}
@@ -2869,19 +3075,19 @@
 														"nameservers": [],
 														"option": [
 															{
-																"name": "ENC[AES256_GCM,data:3/mRF6Q=,iv:t35lOxUMlkSlskPKAgB5V2Q7xQliJq5terZwPwCJ0bA=,tag:DH0OnsJ/yvpl3Pz/XILOlw==,type:str]",
-																"value": "ENC[AES256_GCM,data:bw==,iv:zQf4TGhyCJwyyekyUOJ0NOFBbCVJtfmyy1Ru+ttX0WA=,tag:bNHF/iekueJyGhIgjFxEJA==,type:str]"
+																"name": "ENC[AES256_GCM,data:Xd//Fro=,iv:ZLmlbk7XVby15fW4UUHIe4QAhdRqHaF4Q5lz5W9NBlA=,tag:/lVTVnIKZTm4WRiWQQ0MUg==,type:str]",
+																"value": "ENC[AES256_GCM,data:EQ==,iv:yymANglGWP6PM/gpl5lXe8lOEVFUSD4sSHOCU36neVw=,tag:VPNqr/YtRSKMejez+Vux1A==,type:str]"
 															}
 														],
 														"searches": []
 													}
 												],
-												"dns_policy": "ENC[AES256_GCM,data:YiiksToMLsQlnRJv,iv:apBPMkJFqQMpkJqVA6gnuz4LrKbxRLt6kR+HFg6EE+w=,tag:BBymZ9EorMqZEgixykZhbQ==,type:str]",
-												"enable_service_links": "ENC[AES256_GCM,data:VP8grQ==,iv:py36ECHfRvhutvuy3XOc3FTKIGhpopR5LuTQ6uCMyo0=,tag:w80zRSH19ohVu0CRhQLxBQ==,type:bool]",
+												"dns_policy": "ENC[AES256_GCM,data:rbIaAxpyg/vY9tMd,iv:7wz7Q1gjHfoBKtZkYmakqN3abuaeR3fTdRLrwH6yPAw=,tag:Osf8CHaTnp8cE+dn5pGPIQ==,type:str]",
+												"enable_service_links": "ENC[AES256_GCM,data:t/rAjw==,iv:w3zbTDQcHbetBdioxlzPazKyxaApPgUyD8msDrQSO6Q=,tag:R8MxyT+XHGPqwCOMhABKCA==,type:bool]",
 												"host_aliases": [],
-												"host_ipc": "ENC[AES256_GCM,data:fJrxX1U=,iv:sVIiVb8xS0Dlf597/cHbZqAhmuuJO2lbm+5Doq/rY0E=,tag:tyQBWN2CAL4nv5/JIOI3IQ==,type:bool]",
-												"host_network": "ENC[AES256_GCM,data:ojGjdM4=,iv:YwCw37Vcw1pJB37kSIYtS3pgiaSDlog7Vg6aDiCVXRc=,tag:sdsSLk7lZhSExEw8noFY/A==,type:bool]",
-												"host_pid": "ENC[AES256_GCM,data:hVDV6q8=,iv:mvgcHj8yqtz2DdCi4oT2IeXZ0Lr0oZIlzDkc5NajsAE=,tag:F8AKZg3spa9qra9fcVHdDQ==,type:bool]",
+												"host_ipc": "ENC[AES256_GCM,data:+RSQnrE=,iv:b1hr93TfbDGRmueFj9wcm41vcqc50oIvo98gEek99/g=,tag:OyeJ3yrNeEpknWi+7kngsw==,type:bool]",
+												"host_network": "ENC[AES256_GCM,data:7uExM58=,iv:lUyPiBDiYeN7Phv9zCm5LoamS42EqvDQ5WTDpPhnBmc=,tag:3+v/FoubqNatV8/h1ok+sg==,type:bool]",
+												"host_pid": "ENC[AES256_GCM,data:v2uwejI=,iv:0RHEHnv2BObTDkA0Lcv45Pz77TyHgDYqMGrm6Nd+/LE=,tag:PklQTdDiCKT8VxQDzKHdVg==,type:bool]",
 												"hostname": "",
 												"image_pull_secrets": [],
 												"init_container": [],
@@ -2890,14 +3096,14 @@
 												"os": [],
 												"priority_class_name": "",
 												"readiness_gate": [],
-												"restart_policy": "ENC[AES256_GCM,data:XKHZ3F9f,iv:zn9kihTyBmpUX6m9FY16M25dzhCJe77/8wzSm8bGSpk=,tag:gcPzff7Lh0geFqjYG7Xv0w==,type:str]",
+												"restart_policy": "ENC[AES256_GCM,data:gwrbfrbv,iv:cG+o8TcY1QW1TRSPS2IoqCnIzsUPsvUzMQ9Xnahv2pM=,tag:rajy0I675T086OQb93DU7w==,type:str]",
 												"runtime_class_name": "",
-												"scheduler_name": "ENC[AES256_GCM,data:S+u7aN7mUp5ZZvoMPk7KamY=,iv:nIi64x/N3RqhQQnHfcM6nK7nnVqgQOzyfVwQR9pqZdk=,tag:ssg+8WO9jeIxa/BWp2zRGA==,type:str]",
+												"scheduler_name": "ENC[AES256_GCM,data:7VNYKNa3DC9x9lACs5JQqQc=,iv:kbWUFRI1QRPzxobo3RFcgD59LAJeT/4eAnpHC9q+8u0=,tag:r7vnp0+qS1NfPYGXGaMwCg==,type:str]",
 												"security_context": [],
 												"service_account_name": "",
-												"share_process_namespace": "ENC[AES256_GCM,data:/cvF7Z0=,iv:gqyAHf3Fizg0enOqWeVn5aVKRePWIYjCnxuzM3ZoBJQ=,tag:oPtjMPSfrWfAh88/0Ja77A==,type:bool]",
+												"share_process_namespace": "ENC[AES256_GCM,data:eRyp2Ks=,iv:RQb2J92JdHzDBqtgECG5OHS4ZD1A0sdbU7qMz+rYQO4=,tag:Rwnqc44dF9+/x+QBCuP5UQ==,type:bool]",
 												"subdomain": "",
-												"termination_grace_period_seconds": "ENC[AES256_GCM,data:0Ck=,iv:BkzMYm1IJkMTfuMheZa1VmCzQMh6u2138AEBMQ+HXdo=,tag:LycdPBv+S5sBuM2UT8Emrg==,type:float]",
+												"termination_grace_period_seconds": "ENC[AES256_GCM,data:zVo=,iv:qN1HFh7lVVNyWzm/X5jx1dovupgWIgLIBTsSssiiTj4=,tag:Y4MWTG9FYWx+rOYRkK4ceA==,type:float]",
 												"toleration": [],
 												"topology_spread_constraint": [],
 												"volume": [
@@ -2909,10 +3115,10 @@
 														"cinder": [],
 														"config_map": [
 															{
-																"default_mode": "ENC[AES256_GCM,data:nFJ4IQ==,iv:AqhqEPZNgW23WDTJFTK4rLzSZB5JDcapy5IQZ1oMHow=,tag:cJefw6O6SWz2GPtUg/FPKg==,type:str]",
+																"default_mode": "ENC[AES256_GCM,data:Cqvh8w==,iv:Sfu5ttkL4ZOqtcymmJB3EmZHOvf8YWXiohO3Cri9LuU=,tag:2ZnWEZ+/ZnCm/I1cTAWZQA==,type:str]",
 																"items": [],
-																"name": "ENC[AES256_GCM,data:AXdwqZsjjVae8iSdPc/HjHW82K4=,iv:GZygc01BUt1F4ZSaqQAs3yDx1yYBDDxeP3LeYOBDJMA=,tag:n9uj85WyWb3juSxFrlKiBw==,type:str]",
-																"optional": "ENC[AES256_GCM,data:9JPUmRw=,iv:HU9rDD57ESmdvBP7Syl1vwxY+J5pHnTgURpcpwPi6ls=,tag:KZ0NpJE8xFSJQ5YkbIqufQ==,type:bool]"
+																"name": "ENC[AES256_GCM,data:A2etyIWDzPbXlY/9BP//KFJO65U=,iv:vDhX8nijRxkeJg9HcYhbedP9gDCTTP5LsdLtGd195to=,tag:QZPOY/KyRrIKgBdnP+oqLg==,type:str]",
+																"optional": "ENC[AES256_GCM,data:z7MBRHQ=,iv:r0SvLWfnbfvBBt5kigh3XG+hhpaNYoE7MwkD2x5atcY=,tag:iUWuOHq5/T9CpaYc8lvyTQ==,type:bool]"
 															}
 														],
 														"csi": [],
@@ -2928,7 +3134,7 @@
 														"host_path": [],
 														"iscsi": [],
 														"local": [],
-														"name": "ENC[AES256_GCM,data:dNtxp4J6,iv:ARhtWo9Rev16MyUVbpMMDxMIcCQH8aV2PN4bpf/L2jU=,tag:pr7ULyMu/SRevP/7ZOx7ZQ==,type:str]",
+														"name": "ENC[AES256_GCM,data:p5VOxtYz,iv:WNwUJqu9HWt81wD4kZ6lQLLAOYv+D/EOjiYLq9m8U4o=,tag:tAHR9NJavTpLgWLLIl1LTA==,type:str]",
 														"nfs": [],
 														"persistent_volume_claim": [],
 														"photon_persistent_disk": [],
@@ -2949,15 +3155,15 @@
 										"metadata": [
 											{
 												"annotations": {
-													"resize.topolvm.io/increase": "ENC[AES256_GCM,data:jUYAjw==,iv:OBrLnLudf7PTqFyCys5kKZR1/g71T5C29bFr8YX45Ho=,tag:q/fpxG+QIH8VkUgXRbn9TA==,type:str]",
-													"resize.topolvm.io/storage_limit": "ENC[AES256_GCM,data:5lJtLQ==,iv:MPNanGuV2TjAsgPnicWe+7LAE+w/MAm9B1mR1FhpCm0=,tag:j9tGCCzJ0wBbafgos6242A==,type:str]",
-													"resize.topolvm.io/threshold": "ENC[AES256_GCM,data:R93B,iv:OoMwKhm9pYz200IZVN04q0DIGty4e19UZYSZVNbFkLs=,tag:ThnZQcxlYCOuitFrvkJMqw==,type:str]"
+													"resize.topolvm.io/increase": "ENC[AES256_GCM,data:cN5byg==,iv:o64Qiztv6qs7duFKHv0nYvnq74yl5Y34BqTBtYO9IFU=,tag:iCeSNLu73Vg+DcGpHCsoTg==,type:str]",
+													"resize.topolvm.io/storage_limit": "ENC[AES256_GCM,data:eck21w==,iv:bFLTCHPnrSgJZvmPm3X2UDfyJYrS8HuiHerqW4I+F1E=,tag:MTZ2w3abzaYAVXGqPvyVgg==,type:str]",
+													"resize.topolvm.io/threshold": "ENC[AES256_GCM,data:lHfZ,iv:FGiAhrEgVW/kKw+y2pNfPPiBvM4Ymqw7P+ZzUWWQnK4=,tag:4d9mP1ueqDxUS7G7grOksA==,type:str]"
 												},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:4A==,iv:KTFXLjUuqMa2Nz6oqe0GNEls3OK+t4TI/rAO02ZYT8Y=,tag:ILMVC8Xab01gWDxNn1yUfA==,type:float]",
+												"generation": "ENC[AES256_GCM,data:NA==,iv:XNgGQy4BXLp+GXW5WgifeC5IQSuc+Ar5kMP+MzlWAA0=,tag:JzGXRMSSCXYtb+pvU8inZw==,type:float]",
 												"labels": {},
-												"name": "ENC[AES256_GCM,data:fK5wnQ==,iv:ZiIt4vdn9lpvKjTsoJbZ/3nxElVskmXO+PFVp6AciaQ=,tag:bYtbcvqmgDlwxrzuxfkB8A==,type:str]",
-												"namespace": "ENC[AES256_GCM,data:cTPA49P0hQ==,iv:+xM4dUJo1ZSXLmxyzIKEA5meAP2YVhdd2ozvCJtvOz4=,tag:qJrkTDZoS3mbC+ATUOREeA==,type:str]",
+												"name": "ENC[AES256_GCM,data:AIVLuQ==,iv:7y6QSZbhITLXhqJ9ofbDTVjGZz5HV4+pawSwX+vAl6w=,tag:GBozgwn2HDrywQ9C97QF6g==,type:str]",
+												"namespace": "ENC[AES256_GCM,data:KJJIGATHnQ==,iv:KztGgw/I/Q2P3o+e0/UJLM5EA1FcwfubFdpZSkh0Ht4=,tag:yE3d+d5db5luhNDWA1RLXg==,type:str]",
 												"resource_version": "",
 												"uid": ""
 											}
@@ -2965,19 +3171,19 @@
 										"spec": [
 											{
 												"access_modes": [
-													"ENC[AES256_GCM,data:hB9/PbSK2skNcPjRAw==,iv:r+hfmFO5BPrE+7h+p/U9SPOmIsZT9s+3bf0DICSN2/Y=,tag:sB/C6q9fzNoNdAtkOZpFqQ==,type:str]"
+													"ENC[AES256_GCM,data:5x+w6OlnkEBYtHrX4A==,iv:A7IbU9EPfAkbpnYHUz1TtW7TvX5gGYzu/iC8yIOa13k=,tag:4ZOcMIz7kqTzdWabJuicRQ==,type:str]"
 												],
 												"resources": [
 													{
 														"limits": {},
 														"requests": {
-															"storage": "ENC[AES256_GCM,data:CI1Q,iv:Zni/1ZnTgifaUGQIGRX4PxDRmGVhojmSxAgrVgaPmqE=,tag:COqfEwAz0GocNat60v09wA==,type:str]"
+															"storage": "ENC[AES256_GCM,data:GMoV,iv:+VOi4T75tCLAiGryz5N1dPIW7GJyZNjxY1FmZt03aH0=,tag:ohWId6IizVEnuEDDo4l5qQ==,type:str]"
 														}
 													}
 												],
 												"selector": [],
-												"storage_class_name": "ENC[AES256_GCM,data:PWbAshclKQIpSuisWC5I6ciopk1v,iv:YHhBz/Hw/+xDHZKVGdLaoqBynRUhDgb89MD3Oro2fuw=,tag:ia2kxdr6iQSbCjbuzEB2dg==,type:str]",
-												"volume_mode": "ENC[AES256_GCM,data:rGxoSw/8rrGE2Q==,iv:u9YGHJ9AtXy7fRXxzbxnUvqWGELKSicjCnW3hhwwGI8=,tag:MpuXPMfTeHxJrF0RHAmXpg==,type:str]",
+												"storage_class_name": "ENC[AES256_GCM,data:dpAFyzT2cFegJscMiAbczgYrpBjG,iv:M830TlZFswin8N793DnwxaQK4/AV5s+4QBDi3rkYoP8=,tag:bq0p0PcYRZRHs+Eb1/NqyQ==,type:str]",
+												"volume_mode": "ENC[AES256_GCM,data:zxdGtSY1cW8gZg==,iv:FjyawmfbWuwzJ7sBG+E4l0xXCmtxRXlYFQu1onk+Crk=,tag:+nJ4pc0g+aHgljc49dwGlA==,type:str]",
 												"volume_name": ""
 											}
 										]
@@ -2986,260 +3192,155 @@
 							}
 						],
 						"timeouts": null,
-						"wait_for_rollout": "ENC[AES256_GCM,data:+0D1bg==,iv:LeK9lwBK++6yUbegIbkRKGezUdfLdmAvxrCPyZ0e1n4=,tag:8DTcBL6m1e31g/jH3vrE3A==,type:bool]"
+						"wait_for_rollout": "ENC[AES256_GCM,data:FVHEMw==,iv:g/sij5uqSVfW338WufTkMHc+sXTCysu+kPTnL4AMpE4=,tag:LOsMEiY0Km0qJQM96GFVlQ==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:rA==,iv:R11DXLvR+rTKi79RC6t3UNi0KaVSsEDDNEJxx5qbszs=,tag:Uv0zhuUBTksq69HCH2AmKg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Ow==,iv:qUTxtCPw5DbAWqIEc3qJz58cL8lA8osP1WBJD7opB2k=,tag:KBMiqkG3TDeCRHnwLmMgiw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:9s2LkO/bqA==,iv:Gznvy11rQ2nr4kTrPGa37ELzBMxcjaHlfAewgxckJ+A=,tag:JJMA1n4ttEMAd2wuYyMrFA==,type:str]",
-						"kind": "ENC[AES256_GCM,data:Gq0Vsa3eKu+pRwc=,iv:F5hmR8xH0fiwtKLiOCxbXak9tfm4XOgFUie/M15uIko=,tag:i/UftJL+pr/Ci2DF1zmtxA==,type:str]",
-						"name": "ENC[AES256_GCM,data:hQeIXQMallXhSGwEZEowNA==,iv:50olylrEafcPPL5w4HQqNftUSKATYK7g15qUh7p5XJw=,tag:JP/TpDU2Sxh+0n5MuA6yzw==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:QGVFj58=,iv:yfjvNfGg9fnUY0kOqDrjOw7Ba0SUvA5UhYTW32fdtQw=,tag:BV8HNkOYv3h6M2ruATFByg==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:rtw7RJc2Xg==,iv:pysYdN1yT8Y3lYIFHgPHbV+B9AAiurCOruBCjm1Wprs=,tag:Qpc2utzGl5rtIrNeLwX2NA==,type:str]",
+						"kind": "ENC[AES256_GCM,data:o0fAGn7cdEvjsr4=,iv:51oEzjDMdugf6a1SSBvyWxjdISlaO38ob8S7qbTxgoE=,tag:wI6ATiX0mglqq1rCj8RDBQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:wnoVNTwGu6VbwO1KBnj72g==,iv:OmxRoHQmZqs/31A6/Ni1vx3D2bJNWnwFgjZMeJb4/+Y=,tag:27wXUOSVv4wGSbZc3/u7wA==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:AmPWRAg=,iv:F0EpjSWC0F5VZfeeFIjZoVuldy91uNCPMGX9ykYxmCY=,tag:/dULLCbvpPyLFLreGd+fcQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:Jb8EeUZXEpe34kCzJcAsBXmwECptwGDjfB232TVFWcZRk6h2gP5PlqpkQsbLpfxzm6SJrv5NEKTmLyc22IR9CRu9SMHglr/1xY0OOEj2/kIgGu0ehu+N5hHxvRjZATttsf4KxaisQ21v29yoCVkyQTjtPSYv+28tmskL5zowGKLF+F7MeqLqq8KasWFAKv95RZBlFuXZzkfTXSuTUypwk1VWUVL+nzgg0xbb/yWb6J1fIwPY6xdEd9NOR8n0ehBGxhWGlhOXbUM=,iv:LoAcKmt6YdmhET/oUtHKR/PDK0DUWpVgZeuyVUNr8DA=,tag:yxqw+D5pY+qM9yHRrNvDbw==,type:str]",
+					"private": "ENC[AES256_GCM,data:KM9ox1XyW7QieT1OZDR9j6xvBpgNXMHEn1PoUH88GC8qqEO/K/20rP/MgajUUCd3+RhUpTaclz1h0J3CoZtYBFlzYxcesQrxUPI5m/qQs/iu89mWvr4WGQOXQ4EKGWLGnYHTZQAuTtjvFBJ0g0e5QOg6dyjoAoY5msH6WUa6BeEYNO+DNeqmSKvdiaF0c+TLgLXni5SGp2HNCqvkYVMw/YmRUKywnDYcgio5iyYwjZ7DpLdmWTZVLwlyKVuXTfEXI9sRJSLUOhw=,iv:9Fy/oAnixLjwl6r5DUET0bzFPguUS2RRCPcNMR+RU4I=,tag:hGvRglch6XNBKdWoc9xDQw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:xXciMl9USb/I2rrTKV7Anmkq0slXJchUDToDewsoEg==,iv:u02Km28BTbv25BA7vBETHJKWqmAniCdP36mvhC4NysQ=,tag:/AuKxDE+mWhKjHn6xNOVEQ==,type:str]",
-						"ENC[AES256_GCM,data:OOUU0vau3B5pgPiMEgRSQX2vlZ57clYRXVcgmSozdAWhwrq3ng/nZ7LHzsz+AbdhDSenur3A6A==,iv:E1Ciqh+6dQn+XO0zNN9NwaXzFsqVs5Ipx/jhFF4FYSk=,tag:V2+YybscIlU2Fz1MDCxE6Q==,type:str]",
-						"ENC[AES256_GCM,data:ClGCjMz0MmIedhkfndM5yOCtxcufOFEvjPu5lnm0uSC7g147y2gN,iv:a9vP/8MUm2K2NezvTOMvCDmtrjt1k9E6ylFpZlN9ABk=,tag:4/acxTng+vO/KUkfUC0HJg==,type:str]",
-						"ENC[AES256_GCM,data:BH9l+Ag8+X4RVWHvCmZ54GYWHVEQbGkMPdEv7jphn8K072s+3kpcwgkyotSwzzI=,iv:OGJl+2tGlYwA8Y5iU6Mp2k5Lv4rKN1nE4xug09a9ljQ=,tag:zmg32IhEohqAwKOVdkmEMQ==,type:str]"
+						"ENC[AES256_GCM,data:rYcqkrajM0vd0co5Aolp7VAQjShJJAnBVicMo0RjWA==,iv:viflbWjoJP3T/vdFaeM2MkQSRd2wR9dTlafPYKK1oco=,tag:KBZCoiMB3KdeGJTbT5V0uw==,type:str]",
+						"ENC[AES256_GCM,data:dgaq9ERT8QcyIRWQfwzJg3n6XBwaC7tROoyZL/c+OxQzYoaAcRS2+KCoc3TD5GdfTUZHmdgZjw==,iv:ZNW3M+pWTuqCpjzbzfX/ZdagBpWFfI12BUYYKdz2NpA=,tag:yQaGg9Bk204fONzE2WBMMQ==,type:str]",
+						"ENC[AES256_GCM,data:ykiO8fdNSQwOrmMbxJVR9EK9OaMB0SEnULxR1T9LHjVIn2KEsZ16,iv:6ddmErxEqwSk4NN59vuIGVlTUmrsrikUmjtgdKHf53E=,tag:UstDYTVRR3xSArI+9cVAxg==,type:str]",
+						"ENC[AES256_GCM,data:QZl7Jqnr+XOzNVzUsuhP5UODJt7rIZ/hY5LDhflh+vIdKVBys60LmNZpZF5X3RI=,iv:kSJ46fMknvxqEKGS4sQao2MCd1UHisR4FqtPTeLBrwo=,tag:JEv3f3Q3C1cbHXBi5V0/qA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:bEQInOxcFb+Koabb,iv:3/3ZUfdDU0WMqnCzgEZqPICVsYAT/KLJn15sR+SKQ+w=,tag:Jz+8kYEOPsSFlLv9McOY5A==,type:str]",
-			"mode": "ENC[AES256_GCM,data:r7esXaucUg==,iv:aHvrZYVU7zWdEeVuX99w7bdaw4G0J4J9m/T5J9jwDHU=,tag:+/xZnHb0WlXnIznOjJkaYA==,type:str]",
-			"type": "ENC[AES256_GCM,data:Q+MSLnWUAjDWRAQPiQ==,iv:/ebM9m6txV2MmQlc5n1L2Fh1WwYaM/QANxMzEMV4l9I=,tag:+zslYMMAezHEjbULZL1rNA==,type:str]",
-			"name": "ENC[AES256_GCM,data:QzgK/hWRjU6W4B37UZvQnLs=,iv:KRPwtRNHQtERGAaaYnj4VbzKEDk3OzEPzYOZJLfMCyU=,tag:oHyCAZ0lnsG3ic4/OUTQCQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:Rn3/TXrJb/jlVxB1514sGXB/m4JxHbDyeK3n3SpP1UL1LskkLgcJ+0/OAqNTKthV,iv:JLvbNJFTRYu83GEJJucb8SSH9fHvnIFUA1P9jzw3z6M=,tag:qJb3dY8coP5ojjjtHLS9pw==,type:str]",
+			"module": "ENC[AES256_GCM,data:wOZtvYP0Y34mg+O9,iv:87HcVlBKlCZSLTuVjM+WpsEZ8/D3JsniFtrXXMggRH0=,tag:ULrXGziEMna1fpLG6hhUbw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:gc53XRA73A==,iv:chOmL0KwyoUXgTlogCxtSPMJHsjkIFHnhmYFUE9cdKU=,tag:N0FPEhzx4VxGDIddCs4GpA==,type:str]",
+			"type": "ENC[AES256_GCM,data:c9ltfGlY6C4OqEJBFA==,iv:XD2SKZ6XQGC4dW2kMvJg0YlqMFv8xRZKGSAcwq4Av/o=,tag:cfUbd7cyqptShCsExZOPCw==,type:str]",
+			"name": "ENC[AES256_GCM,data:grNp/nt6A8dUpQ==,iv:4M/BjNMc09qkU0YklUfNddbvO1dejwnSJ3R3kNHN0SE=,tag:nxYvtQVf89HxHvlnWVI0HA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:OrBSpTUD9lL0O+8CXNnrwGf2PFQ8637ew/hRXWwavVOIptuiKvQ61rHHXDDWVFuP,iv:fXboRDSQnHJnMubUp5VuoicaURMrPaHSr3nIIuKXwCo=,tag:nCr9MfIFnWUDIpgNfHgniw==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:iHfRZUHJOA==,iv:lhuzWaFpl/eVXD243Cqv24ou4WO0xo+ZkzbVpikPs1E=,tag:vWnTKlaIWhj1sz564LQd8A==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:9Q==,iv:QGRgm1HIu9H6bqZorNQO9ZVM6AabXAJaaIc9Ks4HtTc=,tag:A0xJ/ExHHMq2ImjNVj77Gw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:8w==,iv:6BojC6pjS7kyA7atB7QU2YfK9tD5UXBG1rvcBL6D08U=,tag:tGjUO61tRL0ZYNkm4kZwiQ==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:WhiTgWFp9bHDP5xyzLo6Yk/qOQ==,iv:WM5AAsEzN+Dcjcu65vbo47QSmelfIbJABk9k/aaKtKU=,tag:g/YsmbRQsN/VevlJ7hLaFQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:e4eF0ZD2+wlyY11us99o4sWKwA==,iv:OcE4Nta7GqTeHlprdy4H6JYQPbQDa7WfjKiSp6mmCl8=,tag:8aiU6Hgozm5D7HCzPbALhw==,type:str]",
 						"triggers": {
-							"database": "ENC[AES256_GCM,data:sh+NJF7pOA==,iv:w/sBsPC4yVcf93ict+d36UHA1PHgd6gL4iSsUl04BQI=,tag:NXQocZ9R83PW57eWTw2jTw==,type:str]",
-							"password_hash": "ENC[AES256_GCM,data:P3wtm5Hmca0GJTHnWEYA7Te04tQHW7BspF3bcmcpR1GdAZcP9Ab9BdgD54V2WWP4vifS9E2vtR/aFmZ2b2fs0Q==,iv:fBGEaY1DfjRfkz/bvJciGqa/CSSrmMYEKX6x1si07a4=,tag:lzADqHuGz3FCr4EKnJwXxg==,type:str]",
-							"username": "ENC[AES256_GCM,data:5eEOj559TA==,iv:MMtbfHKQ7KhcYGCbTEMTdmFOPcT2GfcYXraZmtbI1nI=,tag:a4mwpRwFlMjTUU5OM28SOg==,type:str]"
-						}
-					},
-					"sensitive_attributes": [
-						[
-							{
-								"type": "ENC[AES256_GCM,data:x2qDkIKJC2c=,iv:Kvi6Mw1vopSEjqJ1lnsF9qz0K0UdsSu5+Qvhi0MVWjA=,tag:FaAjXK00v1Q9ADUF0zDEjQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:Ch85ZjhO98g=,iv:LVRRzWaB1LKEbFQxnGYGO5hZIOGn46InBgPjyAQmMq0=,tag:aYwTsJfFScHoeQr8vjAx7Q==,type:str]"
-							},
-							{
-								"type": "ENC[AES256_GCM,data:mk5OZNI=,iv:Wd7uoeqetq6zJq9+bDVe8610JBR5L5AUd/9u0G6ncwE=,tag:6eZSRkkO9J7FqM7IpZR+vQ==,type:str]",
-								"value": {
-									"value": "ENC[AES256_GCM,data:ClbtWZukIMzvkN+Z1Q==,iv:I8fVXsHwW+XnN8JCPcPQH/wr4k6ZBXiQCDsNNiYVJp0=,tag:6qSaWZ/NokEyWKWe1TYKHA==,type:str]",
-									"type": "ENC[AES256_GCM,data:ZbzxNre3,iv:aFg6xGyjZSZ/RQlKFggVbk/StrCE/jXQfNJxgxo0Pjc=,tag:8tNMEcvCVsaCPx9qc5jGjA==,type:str]"
-								}
-							}
-						]
-					],
-					"identity_schema_version": "ENC[AES256_GCM,data:sQ==,iv:6vYI1CxXgnbar2pydSl853o5LojaXj8YER8kPZL+c/U=,tag:MhhgK+omUyp5EfrCVUlv0A==,type:float]",
-					"dependencies": [
-						"ENC[AES256_GCM,data:2crhIgu8pYhIo5qmS6n/8iWf6khLfbdHHSmuTyoZBg==,iv:/liFKCiXkrT/+QvkGN/WVdZHNlwdofZlpH2qHH2r/ds=,tag:eYasP16ufepJ/U4mGy9nrw==,type:str]",
-						"ENC[AES256_GCM,data:Tl6TDrgyxqNUU05CJvOuPMv+j66NaQbr67QYDfWm,iv:Ga7NjDWP9tsv+wEJ3C5MUvstn3BYafth7B6+WUOfnKY=,tag:gkRHYnW+SG5HOt4Whpvp+Q==,type:str]",
-						"ENC[AES256_GCM,data:YNa8jud22U7l2dCDuzsenT7PjjT82Jkop5nyrHrsTokNW8OtJqx/RPYDTbqHBKajLWjHCtsBQg==,iv:xhBJV/z9b+H5Rt4Ytb3N3TbuG7p0T/tF2TyMr00PohE=,tag:AQNNLpBR7MAGLh0Iolv6Bg==,type:str]",
-						"ENC[AES256_GCM,data:rexHSO2Na6PkeQiv9HMjjrUjeyGh07InddGtqNybdBaSepDjCpqi,iv:6hpm9IAWmEYNjfofWD9jqch56xv0Jx+fMqcRGAqopqI=,tag:jpioCWyzWwA8/PgvhtZhWA==,type:str]",
-						"ENC[AES256_GCM,data:AKZ56f6fuI0Xdjkwgi+k6RPfQg3oAy0SziouoKhEFUKrjIg+HdBaqx51kekCH/A=,iv:5cIEeomEmQ8kiWGG3D8sRfFxRrd1eQBOTTyq1IRe8W8=,tag:i8oxZNvriSgaAleu31/XLw==,type:str]",
-						"ENC[AES256_GCM,data:6aoWLabeo0LGO9z/OuNcCrQx5paU2mpF1jK57w1jE/tVxSIwVshZM1hUCh5EiTjsTi520+emOPM=,iv:R5C+Pi92oIRqFrjfBLHlbU6FU6zkBVIvqas6IuL9g88=,tag:NdvIzLmaWAaq6z2KOmxcTw==,type:str]"
-					]
-				},
-				{
-					"index_key": "ENC[AES256_GCM,data:2h1lsULnXi+LK1hfEw==,iv:21+OaH8diRmZQ9Z+d48E/73Yzy2TggvYEwo/v45t9jM=,tag:/komLucGbkYs6l8nXE0YGg==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:Uw==,iv:O8rz00WjaKzK5b+rvnxxLthFS07nVk6d0q6wjslZHqA=,tag:V+IupmY8sAmFAW10R+6/KA==,type:float]",
-					"attributes": {
-						"id": "ENC[AES256_GCM,data:c3CaiFwQeOCz/WggXXEen7yfFA==,iv:Wkm+Od1zZ/inSwmjsz8MEzoM8BqAyePvMDblfOV/LgM=,tag:uZsW4IaQFzHODNk2C/CD3Q==,type:str]",
-						"triggers": {
-							"database": "ENC[AES256_GCM,data:oW4Z9Wr1rXRLgau10A==,iv:wc7tllClRKVeCcYcc3Bs0NaSQILRNl7gEr3AySNXUpc=,tag:5boktBWj//GJ382UI28QvQ==,type:str]",
-							"password_hash": "ENC[AES256_GCM,data:a9G+GkF1FPFmP+gzT/bw5LgC3vGhPuxkGirYU6jrviYeg+lUVhLmtJdlJTZ4ObdLiDIgHd0IjL8zi3XNXLObPg==,iv:VTZqOVEMzcRO3BLaWL5tlCxH4jRz9/Jc721tUaT1OkY=,tag:Aokc+ZsBA9ldbfvAnaSWew==,type:str]",
-							"username": "ENC[AES256_GCM,data:Hl94kUVU59MEf8GmPA==,iv:XqWZ/kSFcKiMM9iNIBT2fj47LazlOeaSuypTVQGPKh8=,tag:CnWIAsA8WBbVx9G9Idpl7Q==,type:str]"
-						}
-					},
-					"sensitive_attributes": [
-						[
-							{
-								"type": "ENC[AES256_GCM,data:87f987sSsIU=,iv:6Th4hljzn2LDMNQ8sdzfHKC+71aU3nlHrcLEWZD+uOw=,tag:L3uQ0SFAYo5otFIH22DLqg==,type:str]",
-								"value": "ENC[AES256_GCM,data:rzc8xDmDzOI=,iv:J+aG4t4tIhMfY8VVXf7/YlxdhKru/OP7q+VAugFJOd8=,tag:zG6oiv+VethVo1r5l+oIFg==,type:str]"
-							},
-							{
-								"type": "ENC[AES256_GCM,data:ELPr16Q=,iv:zaVNpVXzK5Zuured/2TKgX6Wi0DJHnyVGiZPPHyjbx0=,tag:co7G0yWiDscHvUggCVfF8g==,type:str]",
-								"value": {
-									"value": "ENC[AES256_GCM,data:k+kwSOfJDXg6cjWUVQ==,iv:XWv/2A4cYsJ67IJ5GskpuUhyjU6gy4b3mYU0/OarfB8=,tag:6VlT6vlN/arZQdzfJhA+cg==,type:str]",
-									"type": "ENC[AES256_GCM,data:3+ZWXYW5,iv:DT1AYan0pcQzCkIa96Pd6liDD5EepPjU+zJk708wxyw=,tag:sc2s3wG1Vo21uLVe7AhUnw==,type:str]"
-								}
-							}
-						]
-					],
-					"identity_schema_version": "ENC[AES256_GCM,data:LA==,iv:KGHWHI1/uLMiRMMTZuWg+lf4G73+uFo0Wh6jzIMpFYs=,tag:+/bgKOmatCYZdi5DqM1QKA==,type:float]",
-					"dependencies": [
-						"ENC[AES256_GCM,data:ohwtqUFF7jEhxLkYBwdCaqTsLyereRVYtLpLkS3Bmg==,iv:m7VYLkEK/vHin8dzaMnQfDKer47KJsvv+islWfD7/Vo=,tag:flnj5SyQF9msnU9BlAWxUQ==,type:str]",
-						"ENC[AES256_GCM,data:bm6VuzDh8F6Qv6SZ9B326GQoloZd3umgIKbuwxWc,iv:Yk10jFDGMaS2U0gchUQ2+54ZzGSvfO8ecqzpZhTtFQA=,tag:exQNfLZfxlRJIVNFHVu+hg==,type:str]",
-						"ENC[AES256_GCM,data:VfH+TcN4//l35DMAOZ9YnfPpOJ23ZdjHgDveq2TRtJFWSXkYflxUKcQerX4fvFpfCmSzGRuSDA==,iv:DBa74Y2L8QUDFsbqQYe30fgqc9IqbzaUmzZ6gXPf65k=,tag:7KbQ4neOD+WD+YgN1CJzSw==,type:str]",
-						"ENC[AES256_GCM,data:BSfK9os7cdIye4MijnwIo1PNSewqu2QXrQP1JK5DI0R7EqiR+RUK,iv:2vjLU1ySap3g6TEd4sJiFp77y3qXspM5DaBdiSNKIVk=,tag:WBJKSPseKrjvf3x7oN98TQ==,type:str]",
-						"ENC[AES256_GCM,data:3musK/PstU6NHKim6EVyxt8pFf5HcRgobmmf5+YJ+n+f4leaLc9l/hQNEJ8kpW8=,iv:KGeH8I0YEO5r/x8M00gJOtHdT4kVuJ2GJCjKrxqpnkA=,tag:RzOegFCdH/txoTxuTFb29g==,type:str]",
-						"ENC[AES256_GCM,data:WdubpC1+DzkLRoLW1asllIpcT1IGp7WVTE3LRaptC5HEsMA40WTiO/K4BK4zqzC2ualTCBk/dXM=,iv:RWZJUjOOuEkKc811e67+dLbGTRU3tnOKvPQZVRa6wU4=,tag:IpC/zlsNh/fQF16iPOBp6A==,type:str]"
-					]
-				}
-			]
-		},
-		{
-			"module": "ENC[AES256_GCM,data:84Am4IpPWVvmer8B,iv:wFhJDqPwPIz+Wpos0kwpif9TBLt/l5HnZjAYmR32+sk=,tag:AdRGp8/VEH0yvhp5I2LfbQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:jJUejBwsBQ==,iv:btKy3F8CIZkDty8rxrHNgjKucf2SFNTasmoQdv8Qh64=,tag:DvpM0D4FsTP628HOTZthLw==,type:str]",
-			"type": "ENC[AES256_GCM,data:poHVsCz29/BsnIj4jA==,iv:/Xm0ZKt97gtc1HNrWz9LqAf9CSRjJpYswnSZHpqjBgI=,tag:Dy1iGY66HDviI9I6lkaDCw==,type:str]",
-			"name": "ENC[AES256_GCM,data:ZHpv+j6pt4s1Bw==,iv:9aaHEEBUUqblqPIVUynUIezx1fb6TTsYRV07TOFkfUc=,tag:4d1Ak1nZ6wK4mYnm9/MTUg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:zUmabRjYABjy0z5yCLWLEWomB/pqUNqZlrvnlYDWQpkzyS37401lS46VsMrd7HK0,iv:V39+6Gz2FKwmsOo4j9ILiBEFfFIMC0YkOxRCefmXCvE=,tag:P7Xag5Pp08pS3gJP6dqNeA==,type:str]",
-			"instances": [
-				{
-					"schema_version": "ENC[AES256_GCM,data:6g==,iv:IbCeAjA1fYgpN+ncd2tXlinjQG9Vv8UR/j0T5siWZIs=,tag:m7aeBD0Z6YvLsX+BU7lO9A==,type:float]",
-					"attributes": {
-						"id": "ENC[AES256_GCM,data:zINHheUglV5n7t63qlOT7/YIZw==,iv:O/XTuwaIZbK7hZr4p7DGWrj2NA6tRqnBSCPblBYNJz4=,tag:3gMNIgQv4DrdfgZBuiwhdA==,type:str]",
-						"triggers": {
-							"image": "ENC[AES256_GCM,data:ptcnwkqhU7RIbOJD1RS/tipoMNIMY3Qrb8PSI4dpjWW+,iv:lxKfUAFSHf6ELDu3P2CkeA0M0ONWpagvGxkOSShbYgU=,tag:r3U2zMUHvc3BOd5VZ0tibw==,type:str]",
-							"instances": "ENC[AES256_GCM,data:Nw==,iv:KSoNc4BxtBKvZWzyb3hS0tZlGGjQ4EHZfBFIxy8yk0A=,tag:2hCCxQTn0bRWjY/5SROIsA==,type:str]",
-							"memory_limit": "ENC[AES256_GCM,data:Jeiu,iv:1joGkBVlYGWUbFSjCR7F9AcnQu2Aq5YxuLcqiTb3f9g=,tag:e3AoCGTjHqdcn3R91Uwq3g==,type:str]",
-							"pg_params": "ENC[AES256_GCM,data:JrzTOwMvWp0XqNlaYDg2NOio45VvO1+eUat8Fis+,iv:fg7CBjmRK7hTMpKNq216kX+LQuApdmKLM6wB25RWXYU=,tag:Z60H5ONfb9A9TtvLNfRPWg==,type:str]",
-							"storage_class": "ENC[AES256_GCM,data:cEYDTLACuAoQ9nndOGi/t0U8xnwQ,iv:n8GhU4Xae4zvAO0WxPoNno/hzRfzVxa5gE0/Kqls1oc=,tag:+0x3JRrV4hAhieXGoc3BjA==,type:str]",
-							"storage_size": "ENC[AES256_GCM,data:J+7pWg==,iv:Ok7p4tOQhfQVjxZ+g4v+1xPtWAZrB5yyVU71b/EjBf0=,tag:vkphBnTmarR/CMTdKHP0gQ==,type:str]"
+							"image": "ENC[AES256_GCM,data:Zy7buJHvZh1GUUHXzvykegEfJnD4jbkwUMv9w1mvZn2e,iv:izw/nloEMPv8dcXDYW9c6XA/h7b1VF5RDSDAxVviYUM=,tag:PM/neKEnq7VQuodw6p2OzQ==,type:str]",
+							"instances": "ENC[AES256_GCM,data:lQ==,iv:e+goNW1knCmuM3ZcmB1qAEEMJBfm9vWoNEW6GZqnYWs=,tag:XZb7uJjb7lQw5nmC4pp2Jg==,type:str]",
+							"memory_limit": "ENC[AES256_GCM,data:nJYF,iv:ztHfjXFcZjRe5/I3y3yC3ZL4yaN8CX+lXwSqWNT2mIg=,tag:qg7MenwMr+hE3jv6fv7aDw==,type:str]",
+							"pg_params": "ENC[AES256_GCM,data:cZXRLX/QD2As96QGfnFhIVaeRSGP6rdk0ahfLWQY,iv:jLQBX8bpo+nnyCACjz+5CGOpsI+S91hhd8oSwSPkaPE=,tag:U5BzGZXHwYAlD+BlYoGHeA==,type:str]",
+							"storage_class": "ENC[AES256_GCM,data:v1YZZIfZpE6IYObX4aK1Mr/jgZQ5,iv:G38bmQUwzCuCQeDfodE7PeXoX/FSsjQXlepWEPurpG8=,tag:tWJhNNOetq4Cmp/fwiiCOA==,type:str]",
+							"storage_size": "ENC[AES256_GCM,data:o60J6g==,iv:cCODpG8WYAoCJFMVpifKhbxjprub+8ywDZeHbPOJ1J4=,tag:vsWroWhKVMqpXL/6skdLFQ==,type:str]"
 						}
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:4g==,iv:2zPOQ01rK96k8GgvPzj1DNmh7y+jxTT6Nrj48sbZ1iQ=,tag:+FgXLkH2wgvS4GToq8iiDQ==,type:float]"
+					"identity_schema_version": "ENC[AES256_GCM,data:BQ==,iv:GavFbj2stP9eXkt+NSPaCiBJqsyr9T8rzVh8uB6emrU=,tag:F7qQwNN9zKPYG6gZzXfY3Q==,type:float]"
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:K9lz6rlmPKb+ac3o,iv:eoNX8emp5d0MukcRXPJZZ+CuXlJ0s31CqyKe9Qi8jJQ=,tag:11rxUXhwWnimE365zFE7hQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:HjDHT3OdTw==,iv:xSzvV1ScILzIimETvgOS2ANH+I57WuRMSUJiU0O2wfw=,tag:fs8q/oEz2hsKgbwYMIGpIQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:JgFu1ncFnak/dlvU8g==,iv:NfOMvTSW1a6hb1sKiR8Vl2kOB5QJRO9K9EInm5O5WIg=,tag:zFT0TQjhjXx9Z3G3eGvVHw==,type:str]",
-			"name": "ENC[AES256_GCM,data:jc+f0/vGEEaWeEy4PSZ/0Km3j4w=,iv:dJScvkdFGo7hknp3gNYO2I4CRX9h9MKok2FTPpUGkss=,tag:JiEUXpDgUidvPnGlWFgnhw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:Bd4iJ5RDH6sgni+LQnWuw8qe8+JBYo19BS42ZFw639rPT1dbHA52cPfs6qR7qwlR,iv:OPQl6rd5FKGNzlK1xcc3Ye+xUuSuuQOlHsm1eGeNJOo=,tag:EbCowfao/aH1bCM2EQ+PjA==,type:str]",
+			"module": "ENC[AES256_GCM,data:dyOMv9GivIgHaLcd,iv:Hy+QoWhglp1HwZq5d+ZMRzLR3EJXqmlv7aPogqxDRyE=,tag:WkVHXhjjoBYECiBpL786qw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:GVfuiKQHCg==,iv:bg6unr3GgQOwJcgzqXF368lva3wpn/TYIXWHBo2jneo=,tag:a8ry8he6rxu/LJBBAi2HAg==,type:str]",
+			"type": "ENC[AES256_GCM,data:szJNYdenbzFDXcWScQ==,iv:ciKspAy2+t5zKJLSWlp1OTT/6Jy16tgeCmZ3PO7ANis=,tag:S94TQD/TViYmLpU9/VJE2Q==,type:str]",
+			"name": "ENC[AES256_GCM,data:YkUg5SnH+ygHjn5nQmXL9oCRSDI7,iv:+zkJgZtsTZqFRSPi1Xk4TCJJbMZYFV+G0e++2Y9tJBQ=,tag:v6YizYmji3XzfxnDsUklMg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:nDm8zLeG1mgwPZhutS2E67S0JYi+MTkW1arNMRWOfUWM8gQLXrMGxfoNmoEt3CCn,iv:ZWpSIZEbXhfZ33yZRuYt4vP7IqmD4/pKh1VxDiesSA8=,tag:+oRWN9B3O5vt3t4aVyBPvg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Mw==,iv:ZbsWBviCPpWSNm42+hV0qoKXfsWLbXHbFuh8EXvT1Rk=,tag:Bjf1+hM9eG/Bl7ukAnen7w==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Wg==,iv:WTJtdyRrlz10zGZyuyvkflHlY9iHAMVuLAOF6QmkYns=,tag:cjeHmXmm5UEgfK6/owLthA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:2NKvHzAsDQK1y+YN0qOn/scUlg==,iv:UG4CQ1QX7HO8ZcAkWitfXOnwK8FuoI82ewsgoOP7Q/c=,tag:SFvK3RKLHqF18X1jzmGgHg==,type:str]",
+						"id": "ENC[AES256_GCM,data:LBHnkjzMchDnLPws3m2Rr4/Z9A==,iv:dLHKbYgOYF7OrTTRnRnHbC+W2Uc/+cQLLsPUaouk4HM=,tag:6QcAczB9FlOCWEergzCa5g==,type:str]",
 						"triggers": {
-							"db_name": "ENC[AES256_GCM,data:fujTZb8NNgZpaQXNMMs=,iv:1/tOjVmYUgqouptZN8geynYnAjBf0i5JdwYxaz2KoAY=,tag:Z2DhXopgIMtyszkgyPdQSg==,type:str]",
-							"username": "ENC[AES256_GCM,data:F7908wk1C02Hw1yZp10=,iv:ddy94AtNiKJNgUx7d/ibyFpzkPU/mNzNDX4eoV8zjl0=,tag:NG4Pks6IEeU8UY1Ak/u0Tg==,type:str]"
+							"db_name": "ENC[AES256_GCM,data:9LX3rhPAK841uj2gQNbw,iv:82GdjaWW5XWFAI6VFbpadivtlD4r3TxHRqSI+zRJHV4=,tag:7QQNYzmqiY+UXH1W/PAcWw==,type:str]",
+							"username": "ENC[AES256_GCM,data:tCKD3sivYsPIrArk7jpJ,iv:sUo8U3GFxSaQcVbmLhTUTcGSLEcDgUEHRd4+ZId7L2s=,tag:5TVbyGtShXc3BlYgfaI/jw==,type:str]"
 						}
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:EQ==,iv:rCJK2EsiNjEiyqb3VQtzyiBsSDySRsa7r8ks0AXPjw0=,tag:Olg0MatYLQtTI7sYpTVCmg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Bw==,iv:iJ+wnqmOxBh26ylvhxni/77AXWnl/X2ypa6H8AHh4uQ=,tag:dol2rZEMH+JfuX0BkmGURg==,type:float]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:d0ha4l6wjjNK08uMRp6+TfDVeJUIs75+Wij1eqQc/e/+U5GRQQ==,iv:4AyGP4QAOHTLcDtTx9Hey6v5CIPrewQwm9V8AyLoamY=,tag:4d48roLVUaFuutltT8mfzg==,type:str]"
+						"ENC[AES256_GCM,data:RvBn6vgBpWLtashbZgmShIIWgOh/rZDJ9X+sKQ3xIXNv21o5AA==,iv:Mk/fYEBlVn743nOIV7nXle/5CZdk3rDAU/vY+BDHy6w=,tag:a9HoapkBIttAOrMaA8f7Ew==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:D2miIM/CpCKFNHbF,iv:+lgxYCU6khxFhjjniTAieQKRQOGehCBgN6yAyiuPqmw=,tag:lIIGHFtQXrgNXcDQ/HtSyw==,type:str]",
-			"mode": "ENC[AES256_GCM,data:tRMF3pLD1g==,iv:6ZQ/9FHZGzop4WLsT4ID4jYGv8lDBdsNXzp7KtliDHw=,tag:k6Gm0nDI6iUZrv64XIRrWQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:e4RL+xBH3FZpRWuXcA==,iv:WmCue2Rk0uxsRr3kSQWOhIX2nRUdsQ9GNbHG8Oink/8=,tag:Cl2URatwwoxnxa5t4I4yAA==,type:str]",
-			"name": "ENC[AES256_GCM,data:Sw4LMn4pLboG1AFlOrZyVryClCEN,iv:auR4cf0MTvRCUIUVM40K67kDPEbZdeWorYr9QGST5jk=,tag:ZMv1fNl67udarOTq9bmM6g==,type:str]",
-			"provider": "ENC[AES256_GCM,data:rTLySjR0N33ZoZ3GNlitoyBm9Qc6UaLtmqEextMvECsg5nxbk8wCnnTrKj76sW9v,iv:agHj3OxW7qS2ZhR8e37o9hHULp5qdKu/YeSd8drh1R4=,tag:fNbk3m92VafP+AygNSHjPQ==,type:str]",
+			"module": "ENC[AES256_GCM,data:PTsp23tGNKzxVAL4BVHRNUx6WCMP0OG9QM8C,iv:bxVfLW9T2bKbvf7EAGPLO7GNdJTcWcCJkuYce6Ld+H8=,tag:fNDbaMiIbFh0aofb9ibluQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:g/gfbBQlMA==,iv:9327jkttkQrWZ2xcpE5Qy9KwNYWwaw2FFYJHjBUUxio=,tag:JUSL7EsEXXVRCn766j52Eg==,type:str]",
+			"type": "ENC[AES256_GCM,data:KtKr1bThr7C36E2Bgkb25VI=,iv:Xs/HpYZKIyu1MOVSUYhbrPmO9wgSwVLHWWEo5waN6i8=,tag:iDSnohX2Nm+bE0L+yU5ZeQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:0wnrocW7eg==,iv:ob76xFkUpDpuASvrqgmGYEUR8YCQRbSoKbCI71fwXyA=,tag:3/TWOxDFKFhDesl+BywJiQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:uMk+xWgBU59S6TBI1SLZFEM1nOif/GkWJSdnrls5Kkd3wO/HscDm+Z+K2HhtBPrt2DKzxCvG0Q==,iv:JMqW0BTHrwaRsWg7s173S66fYUE7EBmwB0/onRGC5uQ=,tag:atJUPvhHjW8enKNFRDyUvg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:HQ==,iv:8jMskyt9Y4gkgthikKr2Z5BHX62wIdT4UXQukLwmBh0=,tag:cHIB6HDU4huSwZxH7AiFiA==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:ow==,iv:k7pbmkzI3MtvvDxZMoK4DL2t1pgBjvLP1Y65yw23g28=,tag:8lHVcS2s/qZwUJusfB/shQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:4Q==,iv:CrQaCWylNaFRnIpiggKfiZSid/N6tYIQrEVC2Zwx+Js=,tag:8DRP2kNn8J+XngaUcbdDfA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:w4k6q/97xdyA6+y0rwI7lTLEyg==,iv:bvttAd4p9z9jsdrur83wmUyvzs38snXyMpoBL8E4ypo=,tag:sKUxHjNJ+RsMJ4kdUzxJ2Q==,type:str]",
-						"triggers": {
-							"db_name": "ENC[AES256_GCM,data:p8QnuuJq+0J3mQEv9mYS,iv:qPE6qDA00CA7z8c5WH9DP/YKEXpFGhkg2tOV2rrMerA=,tag:r7gANIKbqth+swEu1/eFJg==,type:str]",
-							"username": "ENC[AES256_GCM,data:IOda59yuytp15td0LEcF,iv:d/Pd/PGIzvYP6sI2Iw3YoWvIUEMFmZpQMZ7LV85Gelc=,tag:qYjiJl7UMYCsq6hAe0N92A==,type:str]"
-						}
-					},
-					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:NA==,iv:QFoWOmpd5Yx1j++ulPGf6itIdwzBXXsbYehO6VEd3Sw=,tag:CslGny6rkbc28FwAek4vaA==,type:float]",
-					"dependencies": [
-						"ENC[AES256_GCM,data:x9zPEEz6pYm0f0YXfRBqmatixVVczOy19CXk2Npc1OrpQqGBRg==,iv:Wuy6egwKRsBtbB9tELsRrCY6kXyG1BZa8ilOLut+jzs=,tag:UMjQeYzEPob/qQUgWMQJJQ==,type:str]"
-					]
-				}
-			]
-		},
-		{
-			"module": "ENC[AES256_GCM,data:s2nzBpUy/FHpTzvCGNEUflSw89ObgmlbhWMH,iv:2rcXFSlPKpTUiPwLIY4QcvYswtV10QeGXTDCxDKleVk=,tag:4vIi9m4Mc6AcrYRlI0x5FQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:nlrnhJ0UGw==,iv:Rc/M6pYgoRr/ZJWiXnuZrFNc49qHaBauzA+09kmJeE0=,tag:fdnikO2Wzll+o8Z6khYdKQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:clkHuNsMILPX9QzhmbNs0mU=,iv:yM7UpfG6VFR/DrCxNU/OrsLUjfN2eKOxqUdHrUmbqPM=,tag:0b3USVdM5u809Z+mt14kKA==,type:str]",
-			"name": "ENC[AES256_GCM,data:nfxdVAxptQ==,iv:lpCkFAscOf3j6YgQ9S0MvhkqJ1MgkfSyh+ooCAwNKx8=,tag:WRuFViE9ZxQdy/4a8Ks/4Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:UovJih5Bw85GwUNtmPghB1tKMkdEXUgdIqpmf9lBBwytkwSC3ADwgGVCYs2OXPPtZSVisGpUZA==,iv:IjPwGpqMQeNzgTaor3b+asJ4cDDh4joppgpD/tTzAd4=,tag:Yql6Y1GzoSHS+s0LwwVewg==,type:str]",
-			"instances": [
-				{
-					"index_key": "ENC[AES256_GCM,data:pw==,iv:9pG+jIfqrJctJsx/6KC38QlD3c7kZdQx1PwwOlK/m2I=,tag:AZ3adiEwHdY8kl2z9Vmb4w==,type:float]",
-					"schema_version": "ENC[AES256_GCM,data:VQ==,iv:BRuaQNG3SfPnoS7jb25yvwHVbOOdM8lYxFEuXTqATFs=,tag:FpHUEaeEl9sgV+JrDKiCmQ==,type:float]",
-					"attributes": {
-						"allow_overwrite": "ENC[AES256_GCM,data:ISzZFw==,iv:esfKnERHI96Uzs3s3OzXHuNzBNALV0614BzDotZpEFk=,tag:K1D/79Jb5mSIaNBeH4OlcQ==,type:bool]",
+						"allow_overwrite": "ENC[AES256_GCM,data:HMDePw==,iv:LCNbZpdZxp3+sQW5XsTEa9jqMRmviw9VvQ4Y18i5ycU=,tag:EMB99js9f+78zCMkxivxPw==,type:bool]",
 						"comment": "",
-						"content": "ENC[AES256_GCM,data:5y3la49LuIWmfLPPMSVE6yin3GqCyJAibJJRxs/P0+bmjVxqTRop+I1cYtqjjSwaXQpN9Nw=,iv:xjXrP1wLiB4u2PXUNd9N6e+DHC2BHTyKoJG1PO/o/9s=,tag:Pod6CrSsGGnJ6hDWMhttGQ==,type:str]",
-						"created_on": "ENC[AES256_GCM,data:XLYZ69SzJp/o5/T7lBoJAeqm/Hu+WarXrpR7,iv:QlS/nvVCYKqEsVlRsrtxIOGpespAfs0F+gbmvQY+HIY=,tag:dtmmi1pvOudAmZArRgsMBQ==,type:str]",
+						"content": "ENC[AES256_GCM,data:LypT2am5Utox15HuJNJ731cOXHQoJJijiuV9RyEBv8EozWMOyVGgx4E5F38PySyEIsMht10=,iv:r8zC66HZyvBhPM9l0XbyVj+h3GHfX2fwcy/l67bvb5k=,tag:qVEjYvYMfIfFfYtq/KRSJg==,type:str]",
+						"created_on": "ENC[AES256_GCM,data:hBm/GQHJWneWZdXga5Zr25SLG6pLmK54Zm3G,iv:aDcpYE91BLF8fgkpOHcY8N77WaUoYfAIz9WAghk1iBo=,tag:tEqiiKzVRVHcj+uXQJQiDg==,type:str]",
 						"data": [],
-						"hostname": "ENC[AES256_GCM,data:ZZIPgETf/qQ6W0U9kGtXHGyB6g==,iv:/l3D4e/gyKASYTQ5d9g1ORfXtDncR+lbUwML86UuaBU=,tag:xUCQ/JZgc9vYK+yLS+0ymQ==,type:str]",
-						"id": "ENC[AES256_GCM,data:+AozLtGTktew+7mL49l3v/1PtgGScSwQGX/3c0Bt4uU=,iv:oWV6UFVN+BfwceQ0hhFv39PyXKcS7bTgqjiTcSNEc+4=,tag:+YYkRXhsPMF+6OHADCO+Pg==,type:str]",
+						"hostname": "ENC[AES256_GCM,data:wH0dYOTQ8kDNwyBvxX+I73xIUQ==,iv:mkB8Eff1f/QmHiDepKJyrKOvrboeUBulbK/wiShv9aU=,tag:Fn1kCRi6FlK4ZBda6yhoXw==,type:str]",
+						"id": "ENC[AES256_GCM,data:KzkdlIRLMYie36+UHMaOvwfj+IB82UseG1fXHT2+j/s=,iv:e+EcDvVqjkoEJK7hYQcqV21EJosRA+3PAsPtR+REBRE=,tag:ll2kIS/LbSDzyYDd3khEOQ==,type:str]",
 						"metadata": {},
-						"modified_on": "ENC[AES256_GCM,data:kXzDForlT0v+iu+vSARuMUUKry7sBVctDxOj,iv:SwqiTrWOx+cEecv4EM4ub86tocFM5UVTTO0zvnffBH4=,tag:2yhVumu9Iu3l6Cz9fvssyg==,type:str]",
-						"name": "ENC[AES256_GCM,data:Tsg+,iv:22h4QpVQfVLko/Hoj9XrWmrnJ6L9nyLp4sp/jeArURc=,tag:3krX0fca7cHhvg3i9AbM6w==,type:str]",
+						"modified_on": "ENC[AES256_GCM,data:LAaFO08wnHZIuEuTTa09VB4suQUuQI/bw/N4,iv:n+CBJw+PmrXg852y3TWm7yAtdohNsTFTYjmLO451tC0=,tag:CaAQFtkeczCamxDB2zBM6w==,type:str]",
+						"name": "ENC[AES256_GCM,data:hCgz,iv:lBqnYQzqZRoreoypGptqgj/6eex9mSGI1NPJKzCLleQ=,tag:Y3CBede1uAkwqwxw+hKqog==,type:str]",
 						"priority": null,
-						"proxiable": "ENC[AES256_GCM,data:4QkSpg==,iv:aneiHppUNPJBTBQgtRx9g9PaD+Zx1MUYPaOGRQZXNoc=,tag:DPZUIrts0bBPrAJ41KKXJg==,type:bool]",
-						"proxied": "ENC[AES256_GCM,data:FmjThA==,iv:P0hHoRLfGNBy5ee4jFzEEwDNGiNHjz7usRLwsYhHYfc=,tag:LClx+Dz+wov2LDb7tfoy/w==,type:bool]",
+						"proxiable": "ENC[AES256_GCM,data:HR5H+Q==,iv:wGeTjlj48uFwGpBQDY0yZbam/okPQAWQ2nXFybhdwpc=,tag:tSS4SzwOwn3H6ly0cc+7fQ==,type:bool]",
+						"proxied": "ENC[AES256_GCM,data:Aw4ZLg==,iv:QkShs0awFDv30ojYxMS8e9PJdf3jrH2X5Ja6o1sAL00=,tag:FGnj+e4MAIDk3jOGDZFRAA==,type:bool]",
 						"tags": [],
 						"timeouts": null,
-						"ttl": "ENC[AES256_GCM,data:hw==,iv:MUpzwC9kv2yrEVReZxaq+7wHZLBrp7wDdJ1MB9Uooeo=,tag:LZBHBCELbOhVnTN4MmqmtQ==,type:float]",
-						"type": "ENC[AES256_GCM,data:TN8HGbE=,iv:R57W99DbPG4uPIKac3YXFD0PqI4Epie2CuhDAkrfMlk=,tag:DwyzTogHdTvrVujYINgfXQ==,type:str]",
+						"ttl": "ENC[AES256_GCM,data:oA==,iv:wuQzxINgxVOqahBtny1glpal74JUiQitYIrCqB0FQtI=,tag:F1ZZ+gbtDqoU07wbptozKw==,type:float]",
+						"type": "ENC[AES256_GCM,data:krVt2dQ=,iv:500Xj+1FbyGBLEJcH0mCZg56QO8tatuOC98b3fq0XB8=,tag:ChltSYJBiugQj7ikXJm20Q==,type:str]",
 						"value": null,
-						"zone_id": "ENC[AES256_GCM,data:aDKr1uqH22t7LAR20AjN5H7IV0OAk7QuEinISAqsapo=,iv:Ldbn5tH0feBpp/LFoZi0bxsw8LhV+gm8K5laOzh41HE=,tag:d3zdpbfeQIZMCx+LuoYntw==,type:str]"
+						"zone_id": "ENC[AES256_GCM,data:8QT3JWtwkOpsYUybdmK7xk3VO4/1w3TT6S3tjFPr+UI=,iv:gQw96Waw5ybph9LMJYUwxoR4WfqT2un0HGhs3BNuhak=,tag:S3cNCUuVqEWoT8i+AiLUjA==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:3w==,iv:/+tXV+wHr+q5iQXcpw2XC757alFmydy8oCr6BWcVGOA=,tag:nIcKTw8aBoNTyR7zFLz+Yw==,type:float]",
-					"private": "ENC[AES256_GCM,data:Vrohy2+kiePB+CNyxs0f9cIzTPiQXdPdN6diOJLVRtkyQGUnYxKnRFzbRsRKFZj0vwXkDELY/mBKYDN6xg9kjUpOLXxHN+TkDdduGPjWFQWee77bf2KJRXGG0nL/8v7YtxzpDmpYQtQvH5KIgS81S6mjPJn5K7aMoZ98SzY4KTDIWOqPt8ECkYHEQk8=,iv:9YhoGU08pilX5pidf325rrRWubQw7c+ini+LOC/8bfo=,tag:yahmxmkV2dYLlCnTyqKxrA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Mg==,iv:gTqCz9MritffeB+8Ua+KocyTtlABmE8PpR4wgAM/TlE=,tag:IgKC6MfsyLTTG6eHCtTSiA==,type:float]",
+					"private": "ENC[AES256_GCM,data:6YqxHzrGZfz+l/hKXsxiH0tY+uR9PEAnowykXpBm7d+uPhVtOEnY4mL7am55a2kGXM+sWhTXIKAhP8vFMfO7FJzYctIyyHB0Gpl+VtgZlq0yn2eT/yztuCjt8zUPREtZEYoK8ghoxeqgBn+X5xyg2ZIp5RPPPPnvvCqU2c3OSTnDJYK0DekjGmKsR7U=,iv:fShusPcmVPKhktLbUrAh1z+F8H3cZ1fq7I+V2iOIQ68=,tag:3K+HBcwCJpIrEFd1oYNmjQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:bNqtn9YzfBVbh+C5b3NjH7nE/DIa74uqPu4z2pNC3fa0/E0=,iv:tAF1QL2RjF4fZCfRfcwUrDXU+gxTgZW/leRYjiaAyeE=,tag:YVr4+qQHsID6TLy3grKGgw==,type:str]"
+						"ENC[AES256_GCM,data:IrFx3/ISXCrdtnyZOoX25RpwXaoR6NSGk/ctCdOL6iazpv4=,iv:QNZ7PaC/Wmrc7O2eOAdv8sHtRD29yehncwcL382/ygc=,tag:2uGLyGobaJ7bbT9McxzUfQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:Px2cHbknBniAJ4/Jn4F9L1TrLpsCVXulFc6F,iv:7goqW/WydlNbs9GbnXuwFtfs9Xtj6vZ/5jLIJ6tG0fM=,tag:3GZH0lwV7Q0cY6DXytb3oQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:VqRqd9XjFg==,iv:Ue4ankS+OGZkgngzndXuQgA+0niWYnl0nKzx6Q76C0Y=,tag:7iEwnQ9l5ZAa23w4SSveXg==,type:str]",
-			"type": "ENC[AES256_GCM,data:DO7LRT3VWDvn2rxwiQA+YqF7KN/N,iv:hWzMaMenK74Kndnm8853R5raOTgZFXXX24c2GEAKxac=,tag:9NYSvc+xKVFW7C3bsxJyBQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:UrKVHKfuwf4BoaTbDOuK,iv:79QKEtghX2+gVEl+3Gbj3HAKBx8HG99ye5SSvrJirMI=,tag:n/WTyANCVbTXjfuZA2oqFQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:s/0AmShJJ6rz3mEBe0G5oIUq9DYTD9ByuBhayt0G50M0ZKHYgvAuZ1Kt2nDycVs/f0ADEQnQ,iv:IG6fNVpWWYxW5d1v02Bj/+/bBG+CTIrQhUC43dUpp1Y=,tag:U2D89Q+ET7Jq7A5UEHur4A==,type:str]",
+			"module": "ENC[AES256_GCM,data:AryqV7MB9mjecbvRfgKpXPh+cAXgTxAnZ/95,iv:RFh0HkxVO0U2uy73eKraI+0A5rqJT/kubP8rW4GjpgU=,tag:Y5hFGmxCvkqU91R/s4dlng==,type:str]",
+			"mode": "ENC[AES256_GCM,data:kmR8tL40Hw==,iv:Oi9/O350dz8QFj7+dcizht5ZdIbzqokHfYkkouuwRKA=,tag:BeTeQSdrx5wux6sEraMiCQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:tKTpehwds+0X/HnNZt62jOoqEpFd,iv:bR2nCmRWUtjZl3tuiTijHta5nWmRhiDE3PjJffRKCw8=,tag:ZWb9BwuYNJ5LgWeMl44G5w==,type:str]",
+			"name": "ENC[AES256_GCM,data:8TIxbN23mYA9Aulw0c+/,iv:iQcVeYZ7q8tgWsjW2S+AAFXbjWvQ+UprhR3O+ifbt6w=,tag:fXk+aFCDQHPREgB+fTZuUw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:3bV8ua6vD0qBcmGXMpJnHT9CIh8s+trg+bmZR7WxIyDkP12qOzN5A6K+GgL+yHqdehX+RcMC,iv:1QjzR9YA9uOJS8BxtA9TT+D4PSOkWnOi+SkkxutyJHE=,tag:DXoU5SF7lDNx5i3u/HN67Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Fg==,iv:4RjbnHjF3kabJXMxqQ+RMmRxtqDGo8kil+mRcDPwiw8=,tag:o9ACjU0tmanfJlcV5sJtXg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:iQ==,iv:yqALC+TUdnSXgcG3ZTMcKygaAZB0ElFW27e3K5AikrI=,tag:LFvWCZefBKiHkhyhwswSwQ==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:a+eXudjvRgsa,iv:oguHH9JyuOpdMRca1xbSWjxKepDXqvN6NKm43VVX4J8=,tag:MDyFt7Mn2RRpksbrN2JvKA==,type:str]",
+						"id": "ENC[AES256_GCM,data:cu2+0Vowsagf,iv:VXaMESnhey3Bzq8H6NRHEvO3ge+KwSgJofU54VJ2yq0=,tag:J5yrSkY31n0rDwdq5MTTkA==,type:str]",
 						"metadata": [
 							{
 								"annotations": {
-									"cloudflare.viktorbarzin.me/dns-type": "ENC[AES256_GCM,data:NFl6/m9dkw==,iv:ThzC+5bVhD9/MQyLBn01C18jKR6OvABx93REOMquZoI=,tag:gkOCcrLcXVK0bzLijXdN4w==,type:str]",
-									"gethomepage.dev/enabled": "ENC[AES256_GCM,data:vmOevw==,iv:yldYYA6Ey6S3CwQltZjmmOx+H0tbwr9Eg2grxB//Tzs=,tag:lTE66nSVsCDk6liMnX1ONQ==,type:str]",
-									"gethomepage.dev/group": "ENC[AES256_GCM,data:qqZIQ0c9Tck/+dnbLhA=,iv:nYiuXtn7DFiE4xMyAAyKFs4xuw2lJWBaiw+lC0m0ZSk=,tag:A9LLGFCP8ei5cdnrSgB/Cg==,type:str]",
-									"gethomepage.dev/href": "ENC[AES256_GCM,data:ydCtNX9SBOkcOGZnBwbXcuD5biX3YTV+bbur,iv:kWPby8yUFet4GrCPVZEjBgRtXCcWw5Vt2dXAMJETPfM=,tag:zFgqe4dokt5ze8g+prn5Jg==,type:str]",
-									"gethomepage.dev/icon": "ENC[AES256_GCM,data:Fz/rAZRgwQ==,iv:Tn4YE/EgRih+vu1HqQle+rCONxuTuq1/PjrVxKVXUTg=,tag:2OwARMH19vg/rDFeKyv4mA==,type:str]",
-									"gethomepage.dev/name": "ENC[AES256_GCM,data:XUrq,iv:vhXohj9KZcCpvvGQmfcSCSTdBLzVh8/hcaLR5ijmE8I=,tag:LRFpnKaRgAgg//S5UVrFnQ==,type:str]",
-									"traefik.ingress.kubernetes.io/router.entrypoints": "ENC[AES256_GCM,data:h5f3gsPSnfPf,iv:r0Ka93e6wXydAfW4a0nl4WyH3xsoI73ELnSakacWAIE=,tag:IH1GepGCRyzOzyxFbh5hww==,type:str]",
-									"traefik.ingress.kubernetes.io/router.middlewares": "ENC[AES256_GCM,data:u5J2Z6O4kJRcLh/RWJPms31LUf0u4gnaq91wjkjbZgf1/j+m91C1h7p2eIfNSZEyE2XfDtV103/hBBWCG1ysJLnV42SuJU4bLNrnvjYlL04sWUdCcHKqW/cYqfz5Cu8lbEUAYStJxTMeOPxnfOs9yD9k4FVBMVQNy+KzWi6BMDYj4aL6Cn1P58He/cIT8fMWuR+YkqaT0g2JRzkY0I0CW4jID/mxuz2/rreUNB01eNTfMe2x7CJpRB3Ahv5dQ/Ifnebu1pbTMzd0WGXH,iv:AVWwZuyJlAyfGT2cQopywl+0T0+1LEDq+TXYIFA5g+k=,tag:RyPg5264oq0uYhGjdnaL6g==,type:str]",
-									"uptime.viktorbarzin.me/external-monitor": "ENC[AES256_GCM,data:A1H5gA==,iv:6uYwjGY0F3uyVFpNdozyVbdsg5SmdG/bTJjJZT9lxQk=,tag:kfafx9yt31qamMw3RC8KZw==,type:str]"
+									"cloudflare.viktorbarzin.me/dns-type": "ENC[AES256_GCM,data:Xzm59yPRYA==,iv:VzE+8YMr2jOnYXCbOGdi8HFO/JxD0yb+RPIpOo6WlzU=,tag:5GpsnC0s1M2lSPL3MqShrQ==,type:str]",
+									"gethomepage.dev/enabled": "ENC[AES256_GCM,data:Oei+wQ==,iv:DCdXiuwtxH7ixplg+xPHO0j/UwTzjm15egpXaVQPBhM=,tag:TgSJ28VB3ljUmsCdAsbApA==,type:str]",
+									"gethomepage.dev/group": "ENC[AES256_GCM,data:e5gRX/3EFxN7q17lRtc=,iv:Ljg7UlmiKwE6d+kzP+jI2JNTSDGnlwCfWXcJ0QK6KFE=,tag:J+4Uto+lB7RLvYfsDNLE6g==,type:str]",
+									"gethomepage.dev/href": "ENC[AES256_GCM,data:N43oQsnWkAcZl38gtG29CzkQLrGxIrEdpqpB,iv:aIkbNsik3k/9Xoo6jfM+i5xV8HUM++mRaaRRfZBfx8E=,tag:hlg3awOJpQjNdxTJUlO4fA==,type:str]",
+									"gethomepage.dev/icon": "ENC[AES256_GCM,data:8XlH8F6AnQ==,iv:HtsfBh5RZ6DwbW5MQZLs5+rBTpOVELIcHUifv1Ws+fs=,tag:XWDgwsH6PJlvwKHzz+YIAQ==,type:str]",
+									"gethomepage.dev/name": "ENC[AES256_GCM,data:ah3R,iv:No1MwrHzDqcOFFoZLkDEag3156QPbIxHwvI8I7qUbLs=,tag:Y1XrggffSCc6GjfKTvYztA==,type:str]",
+									"traefik.ingress.kubernetes.io/router.entrypoints": "ENC[AES256_GCM,data:6k0QbjEk4VwB,iv:4tw0uNJljbSZ/QigUPZXkYU7rPJDyLAm83c+jjovTps=,tag:u/9Axf0Dknd3sD2YuRqCVw==,type:str]",
+									"traefik.ingress.kubernetes.io/router.middlewares": "ENC[AES256_GCM,data:v3hJXipw0uHYdSjHC2KGmi9fnRwQp8/S/21KBu+yDfjqMyneQTJ2a58Q+5lZmgErHD65/E6zAVDckbEEDe1gLzbRVJDaE/Zi0eX3+9UbQbA50BhxxMaiexS3tYN3tK98y2+5VUnxdM8zNEMsUdM4qSzjYC0cCije0BGvu/wztOVNudQtO0dEqgvqT+wRcyHA6bX/g97Q+jgomLc4tUryMi9jl2Z6t+HXtxePuDHgAcE5VH755gYLtQoL/D/xykLdJrxPwCkYUwsBeOIr,iv:DKzDWdYxUCT4ZSpwMbuBK00OC2KDmJqnJ8ymAE0x37o=,tag:cN7UnY2tU5uEL4bqhNkc6w==,type:str]",
+									"uptime.viktorbarzin.me/external-monitor": "ENC[AES256_GCM,data:KJXS+g==,iv:/I6dpW0wE1cQ0of/bfNZS7cgKr4sVufrSbuEFFjZUE4=,tag:z1Cc3VAqr4NzUmHFXhXJwQ==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:QA==,iv:UlFgveo8iyUvn9BfpTelluLc7Ma7DHCXSKWsqWjjRIw=,tag:XmfiKVr7iYB43n2p3KhBUw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:Ag==,iv:NMEYyaiFSx6uihXHS17eY0pWLDns7S+ZuealpGCi9rc=,tag:wYQBQRInwx4A/Ku3/SUAbQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:h21O,iv:gfF1CuFzIiZex3jl1k0sUE6/QujcjPakSVITcwvhZrc=,tag:t4ULNiA25CXQY/6bbM3QOg==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:1BeK9Ro=,iv:je1olKc3kosS0AjdApRTXVE5Z/H/tHO16cU75COvxj8=,tag:RymVkOcX/VpuV79UK1iP5Q==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:VCwJ87E8o1Jq,iv:9AOsjDZKq0ZSDDQWFbY94jPMCfnMCrBANknlvw6V/a4=,tag:MzYLxkt+1H/1l9B0xzv1Xw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:zTa77SrXFZU7a4PawjoXu/1iyjXsyrSphXlXX+b1h1FVH7g0,iv:Q/01YIRdVTe2OqZL8G8qTxQE6y4Q22UqBQ/yFVrrrOw=,tag:hBgcXHBFqghB3WV0mrXveQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:Fg6M,iv:lfSAqYCu9GnWiKzSuiZjsvydDqW+aiFkg9miyEIf9pA=,tag:Ps5xy38pKF2l1QpPLbYzCw==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:oCV7Agc=,iv:HaGaRL8kF1o4RGhop4yQ4pKiMomdqxjfw+1GtCRMHNo=,tag:q7Iu52YKHCXbxjlWvfdz2A==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:xA0vcE4vnWDU,iv:6qvVine3aLEfsvwsMKUbufudmI03gKne7xenbWoxJyo=,tag:A6YbffILPqmiAaQ0cVRhgw==,type:str]",
+								"uid": "ENC[AES256_GCM,data:2QWFd0AYkc7zfl3v2r4SrC2lbpq+wLukJ5XROMs1Q7Da/V+x,iv:K7L2yRS/5bXaozr/hgd4hhlPBACBvJD+B1ClRMtH/ts=,tag:FmEznSpR77mTwaA76KzWIA==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"default_backend": [],
-								"ingress_class_name": "ENC[AES256_GCM,data:fzg2zxSGQw==,iv:pes/TqeVVh0Au8NnjbGB2/ekkQtMHFdWrP4XMA4R77I=,tag:EKOoZjYL1LusGmL7gCfPvg==,type:str]",
+								"ingress_class_name": "ENC[AES256_GCM,data:NlNRpyt/Vg==,iv:hKzf721VER7xvuOVlYGQstPTXWYf/lJTEcTDfOfO8Xo=,tag:JMWvYYIoHhl1TcT2YgZPJA==,type:str]",
 								"rule": [
 									{
-										"host": "ENC[AES256_GCM,data:XJJh8v26zCyzVnurbVAncHGD4w==,iv:lsIyAa8dCU/UPsjTCgPmcDgsm71/acIJcRoPodK/v3M=,tag:jM8FQ8F2WCi3A94+ZeZDxw==,type:str]",
+										"host": "ENC[AES256_GCM,data:lzhZdblZAxqzECc9tEe3mSZMDg==,iv:cJZG1lzPC6AXPFONRY8vqc1yx12p1iLL+tMYXhQh1dA=,tag:j/g5WSkjgsKcChCryiawbw==,type:str]",
 										"http": [
 											{
 												"path": [
@@ -3249,19 +3350,19 @@
 																"resource": [],
 																"service": [
 																	{
-																		"name": "ENC[AES256_GCM,data:kJ6+,iv:d9t7DVEl61VAP1LlZGx+TDf+dsTRo6WSMWmq1s0rm1I=,tag:wFbTclXdtxtSYtZacHQ0vg==,type:str]",
+																		"name": "ENC[AES256_GCM,data:RIwW,iv:c7/4qnjkodZKr3PncJbrfd0q7dZrkshpU66PJvc18Vg=,tag:1HOi+etdGmVVMEAghfFLrQ==,type:str]",
 																		"port": [
 																			{
 																				"name": "",
-																				"number": "ENC[AES256_GCM,data:DqY=,iv:zeA3lLu66bjwqKpXfyIJXz7P1BFjqjIT5xv1v3BTXsA=,tag:31gxidDEmjnbedgYDBZUDw==,type:float]"
+																				"number": "ENC[AES256_GCM,data:h6Y=,iv:yDhkPMWtzn00o562qrfdqzjGqHPPqHWo9K9KioJ5L04=,tag:26oe1E2D7PdSTiifdblZ+g==,type:float]"
 																			}
 																		]
 																	}
 																]
 															}
 														],
-														"path": "ENC[AES256_GCM,data:Mw==,iv:gkePa5bOh07WcYeHdcdm4G1oAUcitG04ORwEHnhFMng=,tag:KuL0Yj7oIoX2Ml4Dbu7mqQ==,type:str]",
-														"path_type": "ENC[AES256_GCM,data:dwAXciKitV4KjGyFk3rWaRym36Z22A==,iv:/dQBg/C998cNr8J+j63ShBHPYTauyziOEDo/XD7FS9g=,tag:sR0p2KpAjHslF+FDtZyVMA==,type:str]"
+														"path": "ENC[AES256_GCM,data:0Q==,iv:PfMKD7ydcn3Xt7ZQ2wajRhysDPkjuUMFNg+h8gv8i1E=,tag:o1M2RmI5Vs2heLNppLlj5Q==,type:str]",
+														"path_type": "ENC[AES256_GCM,data:JTb34TT7PS0g1y4XW+nA3GUCfrLKyg==,iv:JOvgPP/sRSr6gnG0DxuJGhySUZz6OgoWTMq+d82CJyI=,tag:ue8rC21PBtZA7GwmZvjkOQ==,type:str]"
 													}
 												]
 											}
@@ -3271,9 +3372,9 @@
 								"tls": [
 									{
 										"hosts": [
-											"ENC[AES256_GCM,data:lnD0ozdqWv2Tm3fNn8Q+37+kzg==,iv:49+mzJK0r5J4rIgE+dv7G8O7polQCRVXSTH0XnMOSNY=,tag:qha45R22r8hdA+nvMs5Eyg==,type:str]"
+											"ENC[AES256_GCM,data:9xcPoVFvelrizgxTD2GKCfZc4g==,iv:3tdSR/vTB8KmpesV39+3GDaM4gYXmZXdx7VeF4bzr3A=,tag:N68/yNi7liiS743uaa6bKQ==,type:str]"
 										],
-										"secret_name": "ENC[AES256_GCM,data:gY18VmthswmXwg==,iv:G4oeUqxIjU9t1SoyH/H/1OTIGPXjLa/ioqCi+hQQWJA=,tag:qZtu83iHzZxa4Rx2FERvVQ==,type:str]"
+										"secret_name": "ENC[AES256_GCM,data:/GhjHo9I0T4ePg==,iv:99W38T+cai6dRvnQAx14HrgFr84trFwpGnQdl8yq9K4=,tag:phg87hOD5HTO848ILGBHBA==,type:str]"
 									}
 								]
 							}
@@ -3285,7 +3386,7 @@
 										"ingress": [
 											{
 												"hostname": "",
-												"ip": "ENC[AES256_GCM,data:TOi251uUiqDZPec=,iv:B6RxHITMj28ksXTuZ+WmwCxinvKo5hDPeXsWcVuOrJA=,tag:KqSEFAhAnsul95enqoDpAA==,type:str]"
+												"ip": "ENC[AES256_GCM,data:GWEtW2iaCVfUI14=,iv:jiVO7pQxW9BFz2n5YtZJuiE0Rm0mddh6ttjhLloi0RI=,tag:XCTH+7tQodcHK2iFdzCKEg==,type:str]"
 											}
 										]
 									}
@@ -3296,100 +3397,100 @@
 						"wait_for_load_balancer": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:GQ==,iv:NP1ffNHeaJV7/61/SAblsYbns0hAlRJHHpTSUG6ZCKs=,tag:eqpP7ewRIn1JgICcPizACQ==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Pw==,iv:l1Q8YAcwcUzHbHK028dgB/+O+DAJ7+WAdCUIsA6aQvs=,tag:ROhATyPtYGtTMAryxhfs/Q==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:/bkZGKRPIR1eZqFdLIjxpxsKyJc=,iv:iUkdxR2gF1Uxhf8nC2eF8Mep/g+QytW+qeFqUXyakt4=,tag:AtRy8Dnoa7FLThDUBGsq4w==,type:str]",
-						"kind": "ENC[AES256_GCM,data:xVEYZTV0ZA==,iv:Ik0kfTneYE2BJzDD8UKpTid/2CscZ5PFnBkNsN2+Dtc=,tag:lbRwdHdK1/qO7xP3lYmVDg==,type:str]",
-						"name": "ENC[AES256_GCM,data:SiYa,iv:nECgU0YUH/RbvWlE+0yfJs3zH+7ecFbdx8mKiIC5VWY=,tag:tCkrsNiaBq1ltxx6tbaFFQ==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:zlTSb64=,iv:Dm/oSjqIsw+Jp1Brh4bMCojcuo0KutmXdB6Xw1ituvE=,tag:XJqSadyD1TGwPVde1IiWOg==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:3TA2/0LIJrmBNeXg+xKqtdgsiuo=,iv:PyX1vNUiE33vy3cwNhdWPA4mKyFaHeF2OrIMMZ87NzI=,tag:rErefyp0UjQZATJLQEma5w==,type:str]",
+						"kind": "ENC[AES256_GCM,data:n/jzOLMzLA==,iv:X55V/eBSv4rszQO6i4Z2jH0NXoJ/uhR3GLgcpUY6/VU=,tag:sTsgMN1PboZs3Kz4cHLcUg==,type:str]",
+						"name": "ENC[AES256_GCM,data:ViUG,iv:6lwFjiALJll1ow0WMCIbEAV8PumldVpk5jTcd/pgn8w=,tag:W2d5lCGujeQL8IGe4VxOzg==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:uhaJnpY=,iv:D8fvp00Xdg6DmM3iDPzA4JEXllLqQk3yNP4CJ2xcsqI=,tag:AvUW4LXowEL8dAJF/R1wjg==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:6L1NozWmL490lKdxotBBsBiWbzDypOQcmH7uly4gEr6ygzo3TjTP0fFRSwKP9u1/dhnx214evWdXlIZ59X8QHRVQjvHNY4wszswnP4psDqGMzZjLipncQNl2MnLigHORA6S4aAqRzHPq0GigDUKb0S0cXVPrTs6Q,iv:At+C8dWh4hHeBebcW81rc+u9VeBTLaOzpCsEHn7Z5Ck=,tag:3MZuR9u4HqCxHStp/iRFiQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:Hp/LKLBb8Y7GmIf6/KXHjP8c5met19N4qj6xc4R9zfMH9E/INt5IXnmn9KI2VP55B2TrKkcAW2LkhPvqlCwCER5RSFd6+5CGFJL48DNE9cXH1XTdAlih1FhI9aU0FNAI41M9Vy73s5yNrz2vaWh9xqrTXXuFbiq6,iv:ekx1oihYZ0BhyrF8YtzejGMLBw9xA/PHXodHoWTAnyU=,tag:XxpRc5DVnrNYwuj4O1Ig+Q==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:225lpE7LVs504OfXRSvrsxlHmTOdIOju6x0Mtg2Csn43Ck+YdJbh,iv:/cwV/dg7dNkd3fPbZHKKtzvQLLmNXADimLghKmw5orU=,tag:QmsoXg8YJZZpcNgmg1iEUw==,type:str]"
+						"ENC[AES256_GCM,data:LBR5P9o0aXye75erf3+R68vXOqpNtx4eIGWUqDbepcqGBGE4N8fw,iv:nj4twL2uZe712hqzhoSYERcukBcxO6QY8JhpASZ17Pc=,tag:4oT0MnQZO0nUSKBpy4b17g==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:KuU6Vs9gfQgYuuMOB8N/Ie0+EM0IgU1EWpft2Z2M17ysWv4=,iv:3mv1DU4gEc9glxx7PvOUnRtaayzwZhpS/osizlR/v7U=,tag:szPREbMSEYer65at1QCPiw==,type:str]",
-			"mode": "ENC[AES256_GCM,data:T5+DDI1ZbA==,iv:91Yu8nIvaQzZq/NSqNmQDq/eDIL/VoX9faMG2FB5dSQ=,tag:JIPgmmpFUeclJRxboKq0/g==,type:str]",
-			"type": "ENC[AES256_GCM,data:DxZe1y7ho7ofWLlkkvtLCXU=,iv:g3VrmTLIZ7rBV61oZOGtCPeuzXQBJk3kt5Rt9Oe3KKQ=,tag:QEnYnvJY3gX8G0nxTkByaQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:IVqq7yApRQ==,iv:/Xec5e0T7u8FuonMzS9Hbx5HzXBl0WwYU1MHjD5ujKQ=,tag:0GSMuaLbcL5j9Jx0DQVVZA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:KQIEzpJc+E2fWoMKcWt5HHpZ3EsAUJwrZW3KMCJjmPOYM6VaAXiWrSigClqmTh1GZESHju2SkA==,iv:xnHyhcUXZh8+RyzeurDjkdOgI2zy75X/DrC1Lcigwv8=,tag:nC+6EOcdFeBpiVpHIqfOcw==,type:str]",
+			"module": "ENC[AES256_GCM,data:lMl6V+aEQqKng48LvrhRUFXVvs6PvXtxCof6Etu9y8abJTc=,iv:JMQ9/rTDBX5mJw73XXQAheDvgysH/KTDDCfo80oHPuk=,tag:CSuDxmD9NOnddJ0PT06CPA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:HCmaqe1xmQ==,iv:cH/bJ5RyuxQBSaHX5/XXF7jFT9k/q2cB0HUAXrLe2Ws=,tag:3qCay6yJEnDEEbAfNFJVfw==,type:str]",
+			"type": "ENC[AES256_GCM,data:m/XKl7DuNKhVgXLdVlILmNk=,iv:uCY313a8zT8pDEJgd7OH/sRGoncbyyo6rYj9XFtopyo=,tag:1mAjscXwSWODbLWRb+VnwA==,type:str]",
+			"name": "ENC[AES256_GCM,data:xI6uhBEE2g==,iv:qn/DecJxEEL0usxZZrRuhRFEZDZiIrVrJKtzqlYftdI=,tag:2Nsjxn5FIZLgrI7TEWc8Uw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:bqURUU2Bt3/eqgw+z2kBIh4zvFRTBuMHIpa8c7FIq0tmE+AB0bDls8UTFqYHLq+Pkzlg4Zy5sw==,iv:JSKV2o1Kdq/mxdaZs/KbEWQRfwwYdkR6cUbohNDdN+8=,tag:9ampP+s8nAEu3KtbuYWPHw==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:Gg==,iv:QF44njkI2VYXLMBSM8tjGND9lJ33raveN06G3liJeao=,tag:AwR9nK4kO2F8eqhDEyXbsQ==,type:float]",
-					"schema_version": "ENC[AES256_GCM,data:7g==,iv:XFOQmj/UgGGj3FI0wRvBe5ZkSE251vm69PCm+ZTLDQE=,tag:nw7tZRDR5gkRBOMZJgbzhw==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:dA==,iv:3R8BUkg0eMG/LdmAWJaXP3NT2/Fqouk9i1K/8WturPE=,tag:AseXU0O/Bj1zFuc1dWdqNg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:bw==,iv:8vUpN6WmaPVY8vW5Vfsr38VNmIMij8uiRR+TqzNDNLM=,tag:U++A+Z6lDkluCFehE7a8yA==,type:float]",
 					"attributes": {
-						"allow_overwrite": "ENC[AES256_GCM,data:Glqw5g==,iv:KBGBx6+d+tzRShm0b+dWk8zRR7iSdRhD7Az3ocQc0JE=,tag:5xspO+Xv+iFmVJctXpzfHQ==,type:bool]",
+						"allow_overwrite": "ENC[AES256_GCM,data:oV9NeA==,iv:Mj3XIdT802MvH6Yk6y+Re953MnY6gmtd6ZoG+gBLzFw=,tag:dMI9Us/NpQ8xe/p3LWIhlw==,type:bool]",
 						"comment": "",
-						"content": "ENC[AES256_GCM,data:2t6BjnUjP4PvQkvaVIqKpI85/MXw7gNuOzuZYRwGRjcV2hD3b8huG1ER/Um5K/aiuEecHrQ=,iv:etjosgQV6BADsRkd0xnFE908aib+gaESCw+/ccf0qwA=,tag:j0xxEMY1HN3eB3rDGyDoMw==,type:str]",
-						"created_on": "ENC[AES256_GCM,data:XwNuwdtJy63k4S35lExIfOy2jdmzN7CoKPkZ,iv:UcW8uZwWzeTtuGcxfs/8epgFOzpo/eFj7Xp7VXCjp2I=,tag:zM7UUx/J31d2Qxb8no6lHA==,type:str]",
+						"content": "ENC[AES256_GCM,data:tBRMEuMhYyWvWw5I7NAfKfCabEOhXp3mAFeuhuU+ZO27hiDma9lnE8otsQ86mFj+1826pHY=,iv:SdZcjX8AEYDijwZ9ctPC7ov68VfC0L/uUDOoUUJFuBk=,tag:3LXZT4JXFJQWtFTrVKwRhQ==,type:str]",
+						"created_on": "ENC[AES256_GCM,data:MuAp4CV2QIIGO4iwR/3S9p6+i0vHbiWWbWye,iv:TkQorhvSAy31dPWqVAb/V992n075xQ0fJZJGAZteIEU=,tag:bmoiU3qN8jAJSEjFSpP6YQ==,type:str]",
 						"data": [],
-						"hostname": "ENC[AES256_GCM,data:0SyF4VHlsNa8sj5H8Rhy7eD2eP2ZB2g=,iv:Lno9cADnCvSyJlXe7tveVFq7SScdcAUXiOfZpXw0DBE=,tag:vTg+kUyHAsEmfMcEgyYlHA==,type:str]",
-						"id": "ENC[AES256_GCM,data:wN1xtDlzMMYgUOE/p7Mg9X9hXew+MPMEImoBfnr1ITE=,iv:x+/IEuhOvFvWfwQqCqknuMj4z4BcRfagedUKwAf8eGk=,tag:Sh4chNcu4Qz8Bu5IK6djZA==,type:str]",
+						"hostname": "ENC[AES256_GCM,data:PXzKt+c8wVv5YQDVtM0VkKChJXnvYB0=,iv:ICGrZvORiJ/k5OhTBZslGayq+Ij9jA/k1JiSY24U/aY=,tag:cEA9XOTNzvg91h5XHeB9EQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:lDJ+4Q0sN3CCzV44udw6wp7zubtKkIORn5gZJ32dJOk=,iv:BPy7Xg7bdvc6be5C3GCFYGY6oEYx7fopvm1YskJn1CE=,tag:V31gTUR3vH3pGAOt1n2h1w==,type:str]",
 						"metadata": {},
-						"modified_on": "ENC[AES256_GCM,data:rjlo69fOn6LQrBWQpepxn4/IJYN41zhQe24D,iv:nURyaIsA5hXUdaoEUsCs1OD7z8iHSQOSQ86p/IjS0ec=,tag:Hs39y7I1YSFx1ak2wRUOew==,type:str]",
-						"name": "ENC[AES256_GCM,data:pdeUZfiYnA==,iv:M7LoRXSsrZpepUaMpnMW2+EiIskV7KNhdDnz739+5/A=,tag:VftHxUKuAGZ/VWCLGAQ8tA==,type:str]",
+						"modified_on": "ENC[AES256_GCM,data:mwQidxJqv5pMFqm/lkqA9PlkkavOU/4iBTE5,iv:GFLEuPPefnkEd4ziNYpMQjeVlp57QxYX0/GLovP4Q2Y=,tag:RhkHy8lI7EFutMp+OZAYIg==,type:str]",
+						"name": "ENC[AES256_GCM,data:SJfbdEZedQ==,iv:5ZoabD1nvZ9pLnMjIS87LAuesFJnlC+EgB8g/gNwDTE=,tag:OgGImsgtTNyDFBxpS/VMEQ==,type:str]",
 						"priority": null,
-						"proxiable": "ENC[AES256_GCM,data:gCOPSQ==,iv:XIt0VdbPQyJc49V4q6QaN2d7yyMiMVjALq7TvbW6CcE=,tag:cz0m3sRhn3uLDlKEeiV9qg==,type:bool]",
-						"proxied": "ENC[AES256_GCM,data:aQScEw==,iv:ilMpqX3tnAOs2l2+0wxTBIJix+ZIcBYzqnDKsjUoqKM=,tag:qkryfvniKLeI2vHBxtKW2w==,type:bool]",
+						"proxiable": "ENC[AES256_GCM,data:EpW57A==,iv:LNsqIU5Xmvx388U2sJWNnSgzifowuhiE2NpWR8WG/qk=,tag:7+rgVGNzEFr62OiZjnYTLQ==,type:bool]",
+						"proxied": "ENC[AES256_GCM,data:xgPsxA==,iv:buWHVZQ4LtQCdQsV7ieWOdyZgJn11e6Lbcsz1tyaVOc=,tag:Y7U3mODiBdESVHjTnVU7rw==,type:bool]",
 						"tags": [],
 						"timeouts": null,
-						"ttl": "ENC[AES256_GCM,data:Bg==,iv:gWe7kGxPl8n+KNy7e0W841bldXysfEcld+9Yl+cU/30=,tag:Y1P6iyvbSg1KuWGE05X+kQ==,type:float]",
-						"type": "ENC[AES256_GCM,data:kKLgqUc=,iv:f39DwJ9fJaDI7YUBm+JFDfMnrB/WYQQcxY+MTzpp4aQ=,tag:mIOJXM1itM/2PrOrSFvMCw==,type:str]",
+						"ttl": "ENC[AES256_GCM,data:kQ==,iv:S/maD+jrTXco3JGdxIaAoPhbSSHQ60IA4ZEkr1x/9do=,tag:eagTwF5LYeUuMUyRGMS6+A==,type:float]",
+						"type": "ENC[AES256_GCM,data:kNpEMzw=,iv:DeFh8S7WyazEzphKlAjW8inLOVVnxMqdFlwDE/e+hxY=,tag:1f840ehUtGI33Wa19KwATw==,type:str]",
 						"value": null,
-						"zone_id": "ENC[AES256_GCM,data:OTxKoomvQ20JGUcUlGVt2y+Jw9aMYCRtr8vB+rb6Hjs=,iv:MM1ST0eJjutgqqN4nd/4dHvxt5tVxUAN3x8+O+g4LEg=,tag:hnxwY4EBeoCie5g5bzvRbw==,type:str]"
+						"zone_id": "ENC[AES256_GCM,data:eqB8cIaqFkl08ZBrzlAo4lijfUd2a9Jvacsog7gUEEo=,iv:jMI/KKoRtSozYzK8f8xgI8ePwLOTDZSXkiSbxGZPVBs=,tag:E4Q6bl5ypaGDdjLEYWWKUw==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:uw==,iv:SXug2M074N9t+Wz9XnIPB/R6tgk/zR6c8/EXXQPDDOM=,tag:RtC2hVZpYXItG/HZs/a6ag==,type:float]",
-					"private": "ENC[AES256_GCM,data:72X6/lwYoZDGm/S19de4KQwQxZ2j3jdzWXVUTc53DUEzDgDEOwEjnKW58RvI71E3hdXLfiG2PUlirPfXJsAuvwkllyxr35AieDcYdx8afOb13vS87Oa/RPchlMQCtKSIzYzQg6E5DUW1Bvv8/F6SFqivROjO25o8MIMg/DM+CtwUO1THslX6Zmpfwg0=,iv:CBll9wu0Qqw53fGZSuO9Fdjcp0XLCHRe2ER+ILvZ49Q=,tag:DXmiokokX88LYe+hMDPTXw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:5Q==,iv:21POVkmJFuWvNQ7XALegUJvuOGD+dnlw34gPR9pPLvU=,tag:BYKVKH0X/PPyiKXtK9eMIQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:7AhJIr3AfNiNAcTJNuOSbXNOFyCDHT9BeP/3GC5eaolPLg4jLrDkAEVPwqDVuR+guVEfaQ5OLzzilSqb7stMgj9n9nECppiVoJd5FBuOx2Epg2cJF41nybJQ4+sysWB3O7jAtJ6uXg1tkqssGS5BzUmUf8Td6IIZCGi9PtFnC3Xa+X/Ft4mwo7wx2/c=,iv:/zid7yzzPMsvYAs/uKZd2+yVwZlXrC+RE7h6Q5roO28=,tag:NOSU/stRAZHNnSD58eK6NA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:rR7PpkJfnLROtMBCpqD0/24h47P50AWVuadw2a/CDz76JQY=,iv:dmF70p2wQQ2qGLPrTXrp1mGsMfUm9pYLAp/IePnBSyw=,tag:H4Xm1S9pnx/R4D1YWaq4tQ==,type:str]"
+						"ENC[AES256_GCM,data:rnkx/ZeYGkZW8mVQOM1pk8rEc/cwFUxGowDjh9xhW5ZISO8=,iv:h41UlQCMq1qSmMtADLggH9dPSUETtojIRRJqCkX4N1Y=,tag:EXJt6NTiqEVgVQL81V6n2A==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:AvQA5P0JCyw1d2mZQPwxxbWJXmcjTnoA+TZzeEwmxvnYBTM=,iv:axN8AdG9dge5QEr4S2gb3GI5MqkepJ35lz3UNmC3ylU=,tag:XCwraZkKv1PkEZ7/+OG7Ow==,type:str]",
-			"mode": "ENC[AES256_GCM,data:8a1ctt8z2g==,iv:eDvdtcln3FXr9bdwUoQ0oy6cykxbcxBD2riljCwOpSM=,tag:wCi/mAV5yBeL6ZCWyjq1xQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:aYPqI2ij4e+Ga3IsOp24Mp2TQjT+,iv:dFbTOhhgkfmvVxpSah2d9+pcn0LzT0fkmK/VSaBO6vU=,tag:WLVtopumZCbIMlb6H3fsDA==,type:str]",
-			"name": "ENC[AES256_GCM,data:H5FbdWOcCdPisvLu+ydR,iv:t/dACIG1tMOfkAj45CwuHPOQ5Ka+vwMWjZD7PqokhtU=,tag:ZFDw6bbuHQLXEaBg2IjmNQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:pyIL07wa6mq5NSEeDVPScwPyvo/j0D4w07S2+xk9IImgQ/ZEBCkwVqjHEKAoSKaAKG8+AAyj,iv:OM7229YuSzoCMBqdOtj5DnCaW8cBWZgniBUac7uE75E=,tag:V5VxBiWSgqfw5UQsIFT2fA==,type:str]",
+			"module": "ENC[AES256_GCM,data:gBH1KLnfeHA5UMDYY89Z0H9dx7aAq381CLvgWk812e/xBi8=,iv:7n43OQyzUYbWQk/xx8q2pNJ/XK8q5MMYKdjmjfc31+c=,tag:SnuPaMbsXyUESRzIacVxbQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:cP8QCBNhOA==,iv:XaUuZeZPI2rWGQip8jDC822khuYoNJo6UgeeOOwbMGg=,tag:DJqBELMfcN38INWbBkUfKQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:q0ILJdrDkhRYwxNESHzEixvXw7tZ,iv:9vJpqGA0HM36CSfQOBRKHXcYqwzYFLsEwI9vEaEReuI=,tag:EBg85DT1q8H2yJhFJOnL8g==,type:str]",
+			"name": "ENC[AES256_GCM,data:BbjbrFYdHUlZAo4+Njrc,iv:uyhOFyJJKnQJQ1zbsMs5KTh2qAUdQv7kJmTRskpc9AE=,tag:BoAlsxpW+GwxTMRI9uGwug==,type:str]",
+			"provider": "ENC[AES256_GCM,data:sKldKXMGCmWmIOlL60u3yvS06vb2Q/3W/xnm3zC7X+720oKSaqoengjqZyrfiDRJIB48SMY7,iv:aHUqZrWuBRizte4BBx/PVsdmRhc/b7Jf3OIl1ouTqLI=,tag:LLgn5cC4TC6XzXTZkee0KQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:dQ==,iv:thA+HeiVFQwKGQYQzs+1rHg+iblyCzwRKmXOG+yGRgA=,tag:2tCmW2mKk9ToibHQNXXjMQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:VA==,iv:bdWhD31T4xcBvEyV6E3laC2pdQ6PesqWtD0Y5pYVbRI=,tag:IvzgfK3Y8QZMJoElihhFow==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:b1tUNzV9oHML6CSsRA==,iv:XPiLtZvk0ygQy9E0UxzciP5jbIWKpHhsoYGTvPwDjUw=,tag:/E+WR6UnsInIujBoXrYZoQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:cOqoXIAsLZi/5C3d3w==,iv:xuraa5dqVzNAc5CV0UBNOR6BTTJXXeKFNg7/ZP85S2c=,tag:FtAWptGV1x5wKqGQ/Tyo5Q==,type:str]",
 						"metadata": [
 							{
 								"annotations": {
-									"cloudflare.viktorbarzin.me/dns-type": "ENC[AES256_GCM,data:2daBoOv+7Q==,iv:aNqk5u7zllOa+Eolenk0XEto77L+WjjTzqryULxsV3g=,tag:t+R7LqivqQNylrs7ZtW2uA==,type:str]",
-									"gethomepage.dev/enabled": "ENC[AES256_GCM,data:Nl06eg==,iv:e3dKYYMTx1JCGTIbGY2GPU8k9pJEjcieAkJG2Bvepyg=,tag:DdlHS5rNt2sruEvK24TimQ==,type:str]",
-									"gethomepage.dev/group": "ENC[AES256_GCM,data:4wFZF3SiEf8rCjhnW2w=,iv:nZSnhi5u93Qh2+ZKEjqlJnzcJIAaPO+yavh8PkU+nKY=,tag:hcS1usDGwzIpYAkF81Jbrg==,type:str]",
-									"gethomepage.dev/href": "ENC[AES256_GCM,data:dohGjCyCCM0e1KhK6wr16VtUWD7lQQosVKED3fJU5w==,iv:qV2tzgnTwrw74xXY8gA47BmS2gbLmY+sRqpRKaYcDCA=,tag:y4MXhCKRDpmrmie0QQMMyg==,type:str]",
-									"gethomepage.dev/icon": "ENC[AES256_GCM,data:5PEGapKg26fsABY=,iv:Wp57XwfWOHJLUr+PoA3iLj/vgZU1R8P5bBFXZsf5dSA=,tag:XUi50UGzq7dUPawx1WEdNQ==,type:str]",
-									"gethomepage.dev/name": "ENC[AES256_GCM,data:9K2ccPNJdA==,iv:C0Aztr96xGePS7RHLmjKn3l5TYtBVHFT/13hM44T8ng=,tag:08fkwW0owhjtZ6OU+HxS4A==,type:str]",
-									"traefik.ingress.kubernetes.io/router.entrypoints": "ENC[AES256_GCM,data:trWpkIptXbD8,iv:4A60YbuNqiXD4F4/vs9CvupC/C7Bg+jrKFtoin8XbrQ=,tag:HmBPZI6n9erQYNyl//mLtA==,type:str]",
-									"traefik.ingress.kubernetes.io/router.middlewares": "ENC[AES256_GCM,data:UOIH1vH51A2F1bpff9ojGuuqnox535tGNSz1td7XFsjGtq1jbBfBPeq8qGsV/2L/5NNrJ66id23h0ZK8ossYQqglTkOvOXWDA8pRB/Erh1RyA46FzUPmvkC8zciaUJz8Jsw4hakfrafmdQA9PCigZylM8uMwchyHDVRa3zpIYE4LwGGm20qZftJEKbnBElSaBeFo33fFYCMY0nU6awkPaNqJIzm6RVXFoArzUV7+5QCcAvHsdg+CN4Odfbjk2hSu5VH83G1TcjuKl++9,iv:X5ueLH5BmAkP7fN6XmXyxfzw36SS2HJlL7jrKovyna4=,tag:4MZ7nXLtb1gIyyKvGEYA6Q==,type:str]",
-									"uptime.viktorbarzin.me/external-monitor": "ENC[AES256_GCM,data:gLTTKQ==,iv:NOYOUcbxgPXJwNoBdQC73wKgdj8mmRA2hmKfX/gvo9g=,tag:quKpqSXiHnca2kNr0a/h9A==,type:str]"
+									"cloudflare.viktorbarzin.me/dns-type": "ENC[AES256_GCM,data:1CVOUFjQFw==,iv:Z/gs+DJnVr7iyjYN8vMPKl+tacsz4S+DKdxzqG+cnxM=,tag:Ze6fUrwzq4gUwKIcnNt4hg==,type:str]",
+									"gethomepage.dev/enabled": "ENC[AES256_GCM,data:jD6LLQ==,iv:FhGskyFB6NthWB5u7fdN0C+8VJvTYuXLZeWXTCiNXWs=,tag:nGK/gi+5QbQiK05tY48miQ==,type:str]",
+									"gethomepage.dev/group": "ENC[AES256_GCM,data:WJYlWmlRQwEYleTde70=,iv:GiwzYOordzRM5XZ6FAGm3z8qjvirDrSPQjRd/wgeTOY=,tag:9DSIue+SgB7N0BXTbwMDrQ==,type:str]",
+									"gethomepage.dev/href": "ENC[AES256_GCM,data:VYGeGp66kRYlcGTAhDeqdtMn7riz4hFcEEL7yW51sg==,iv:duGFNYiTiHXeVlNeByABGtX5Jgt1Rgg4RyJo9Yrk3J4=,tag:8UarPnxncOmXL0cK8d983w==,type:str]",
+									"gethomepage.dev/icon": "ENC[AES256_GCM,data:1V3HNKuN7soUbeI=,iv:aQY+/QtvDhH082jOHCy7mly5jSduOIL2X2eLfhqdoFQ=,tag:7ZN8IYhIdkZlbn4VtIfPIA==,type:str]",
+									"gethomepage.dev/name": "ENC[AES256_GCM,data:jE75cBto1g==,iv:3oAnzVIjb8O34t4iCYkd1R1POLf2wdn87PCDaM0pCGM=,tag:SggJ3G8TGN2vzYo9jL8TZw==,type:str]",
+									"traefik.ingress.kubernetes.io/router.entrypoints": "ENC[AES256_GCM,data:mZ/ezLHFygJb,iv:L0cfiAaojjTWwKVByBwMeRqqVGjLlWveliU6UU+R0vc=,tag:9iq0OLSDNRABJF9fSgvA4w==,type:str]",
+									"traefik.ingress.kubernetes.io/router.middlewares": "ENC[AES256_GCM,data:DI1stcT3jJBN5PVdOXgkdtvgLKuSjsQS3f+1zpt67FOb+iLbIVFGBcUdKYgaVW9opQ5KvM0fMVkKDFfgyStNngYK1iuqE22AcxgsvPKaJcYFBYcDfx2E+WNtVUExlUBmnf38KrAJkxH8Yrz9M9zVG+65ho2Ah/bWcxeWctW9YTV9CJEgTXWWd9dGmzc8OsPoiQYuBMblxtL4y+7PgxPDNhRN3LRoMFY8owC49CAhbfnTJL9sTn8D84q7734B6pRKSzjBDDC6j/o37GYQ,iv:IrYR4Cv0uXqQe1H0rDkk5b4IAV42fEFognjEPVpz1sI=,tag:M221t66wBKm0hjHSrA5fjA==,type:str]",
+									"uptime.viktorbarzin.me/external-monitor": "ENC[AES256_GCM,data:kFFEeg==,iv:CuKRFin7Zo07ajpsNWdtJN/grvmKh1umokW+sssqChw=,tag:ropvX6uGn230DhzovZbD8A==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:cw==,iv:6KsjQMJLL5+BqLhJbPABugH64hKHKp1KoCHMWBPoW40=,tag:6+0A9PbtaoljAThAHjOS2A==,type:float]",
+								"generation": "ENC[AES256_GCM,data:YQ==,iv:Ey4EbIEKwDw+4HK69Lm0A3lb4gf131Vfb6Xg6yI1zFE=,tag:UbKBMNLyQ768X1nQAgqtTQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:R1Wkf66W0w==,iv:M+LhlNcT8e0dFc4sJPt93KN3jJ0RrA5VLEdSGQ4lA9E=,tag:yevOQoYWgsKMN4qt3mmCLA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:wiRFx/Y=,iv:UsY4mIWHMc7WrW8ea/dfV5rfPF+r8GZlA0tedonpc8g=,tag:2nu2sdiU80JFUY0LX7vmyQ==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:I9mq/Gg8Yvvj,iv:Zve86r2KsLpYTNdYv48Ye8IhjeQZnYEx7lvW+Zym2PA=,tag:1d3Av+oV8rfD2Sm/bEiWiA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:zJ0f8lOaJw9ZxqaJuIqIdpG6tVZ0PVaw5CX4kOAMgAGya7jY,iv:bYlOX7UpL+D6eZdcsOGUY6T+WY9DqME7OIGo3dtTJ84=,tag:fhakqoZzslsCTPCs1jfi4Q==,type:str]"
+								"name": "ENC[AES256_GCM,data:uuFsMun5KA==,iv:zsApg4tWLTKAsmBsZf9w4CQYoLb4hEtrvDuzYEuKPAg=,tag:lsyIkWi+55W4YzX6LTzClg==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:vxYddUU=,iv:zJY/P1p7msRLwgPMjRmACjVZ5YU/v1p4ptXCsrKCh2o=,tag:YZXDIAOrom5/5NftBYGFjg==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:llq9TbWDCFcD,iv:eaMDmpuUFJOV5icYcERR97nGAUAsyRhHUFeipyDBzEA=,tag:JwEmpysi13mp/ITU2aIkTA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:rnTNxyMVsvnorzs6t4Pq1CXSR1TMVyaw8+0RGmaoczZBjsbr,iv:Y6F5inSAMdg4CTu2PIuZfUtgsHaBZT4cO8QUoTb17lo=,tag:/kIaYp0H7G9UTsKmVUKZfw==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"default_backend": [],
-								"ingress_class_name": "ENC[AES256_GCM,data:ivwNWpNZBg==,iv:AAIoeK6hiaDW6a4tosAGpLKVg8bZBYtd4sVB0DG8VmA=,tag:H/EI4QJuMtHwb5XWAo4mdw==,type:str]",
+								"ingress_class_name": "ENC[AES256_GCM,data:CbqUYyKbVQ==,iv:0kkAmC6pdOEgHIpSOEHeR4/dwB0IZnu4IpLIFKi1aRo=,tag:zup79he2vRXiy65056hsHw==,type:str]",
 								"rule": [
 									{
-										"host": "ENC[AES256_GCM,data:G9yXzzEteoByzgLOspMnPY5/1IpnOCA=,iv:m5D19En2S5RCM2IH/yQ+MjLugcoC09fY6G7QdORX0is=,tag:40gWE9NGxxFflnUl52qXJA==,type:str]",
+										"host": "ENC[AES256_GCM,data:pbS6rGM4NeR1opVoejJd3TOpLZNANvc=,iv:VPA6T8sTw+R9UgDQ0WJUtD89PxaNeUhfF8ntkSssvZ0=,tag:nVi9Fdra+UQYWOO96K3srw==,type:str]",
 										"http": [
 											{
 												"path": [
@@ -3399,19 +3500,19 @@
 																"resource": [],
 																"service": [
 																	{
-																		"name": "ENC[AES256_GCM,data:Z6LoGWH5pQ==,iv:Q86/q1yB+SRQWj4iFU7O5mLnx9MRHP1PntYeLI9BbXw=,tag:FkGLfZM2BLkYPXGXTc2iiQ==,type:str]",
+																		"name": "ENC[AES256_GCM,data:GkUDL5bKIQ==,iv:NjyjF3SQAYy/0nDoxMJYLhK1rejQnRcOPnLX+EBS1V0=,tag:looIWMjtX98iiK3Ai0d12g==,type:str]",
 																		"port": [
 																			{
 																				"name": "",
-																				"number": "ENC[AES256_GCM,data:rY4=,iv:EQQokCn0FEjKHVCwuUmsWHPHaZPbb9kOvpqBvVL2gPY=,tag:6gv4tzYA+zfdrwHNbJs5TQ==,type:float]"
+																				"number": "ENC[AES256_GCM,data:4Fg=,iv:FGHovCMOV7Z5GUEFVt+1QZe2L9F6NGtq1S0+GNCr28w=,tag:IY1IDR3slidnkxg/z9Q7Zg==,type:float]"
 																			}
 																		]
 																	}
 																]
 															}
 														],
-														"path": "ENC[AES256_GCM,data:eg==,iv:yGr9RcacjgUrdR8PqFSTUDD4aucEN9dDCFvXkB3D/OI=,tag:hfS1SVMdTw8dr2VbPQDuPQ==,type:str]",
-														"path_type": "ENC[AES256_GCM,data:2MJB7M9O1MvzQ/9dxpWqqhEpYGWWiQ==,iv:98XzLxa9cI0UdUmkkzvHSfAAEDNv5faxUtTDs4yoGlI=,tag:ca0KoKcr5raohzEQZa9nmQ==,type:str]"
+														"path": "ENC[AES256_GCM,data:+g==,iv:8a/jleOGoocFNpuOqE0O5bZb9vOICRNlkbpfQfh31ps=,tag:63Z4iARgFqzpdIY6YPdwwQ==,type:str]",
+														"path_type": "ENC[AES256_GCM,data:wPfQgC2+0ga3KHPMI+5Hpd3RAFRPaQ==,iv:FgMdVSJLwwvL+XpccBUVQHEp95YUgVBG3NXjqfUsgQc=,tag:6xTePC6BZjIjOD7Vz2lmUw==,type:str]"
 													}
 												]
 											}
@@ -3421,9 +3522,9 @@
 								"tls": [
 									{
 										"hosts": [
-											"ENC[AES256_GCM,data:IIxAnZLh0nX0ymy7FtzD0uvJ30MaL/E=,iv:/4imWqVnFDyCuzAU4QRHU2YsOc2JJsm0e1eJwQLLBXY=,tag:E0NMOAb5j2WXEJO0rxya1A==,type:str]"
+											"ENC[AES256_GCM,data:mqD1PdVQ24UWFWalqXi9CnJ1Y+LU2CU=,iv:+o0tU22Brm3+sLCaAAfbN1iQrnm7LUFNz4F9Fdsu/KA=,tag:z3pSo1D4XSClJ/UTg6gEWw==,type:str]"
 										],
-										"secret_name": "ENC[AES256_GCM,data:ZXknkVwOF8+KYw==,iv:PQG2g4NzhHtqTKK7bzNfody+884LEJQrecdkqwPPsgQ=,tag:AqYOWuiZfijxdgsnPYIpbA==,type:str]"
+										"secret_name": "ENC[AES256_GCM,data:993cwJL/CvmN4Q==,iv:RGwyH5EeIKXSRyYkXlAjhDBPeYb04nWCM+6Du3NCvpU=,tag:ofWKpRGkop3amW8Eo5I6AA==,type:str]"
 									}
 								]
 							}
@@ -3435,7 +3536,7 @@
 										"ingress": [
 											{
 												"hostname": "",
-												"ip": "ENC[AES256_GCM,data:9NW6X0X0qKzwtL8=,iv:H+wA6SHD5x3lDf9yWbmj8DH+Tmmr7y75tqtx7psgTsw=,tag:7bjPgJprMsoYgo1spAF8/g==,type:str]"
+												"ip": "ENC[AES256_GCM,data:r7m68G50hiTH1LY=,iv:ryIvZwtq69HP4RP5uDiM3cQq3ZHxOlqY6+H//8xvn3I=,tag:uyHksOZLZJcCTrpHzVzF1w==,type:str]"
 											}
 										]
 									}
@@ -3446,64 +3547,64 @@
 						"wait_for_load_balancer": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:qg==,iv:jnh1lkg1XZKVPAG47h3Ntj+8nhZW8BSMdgdy8BzgNn4=,tag:Z4rZ6EWTAZnZS5N1TAFpRw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:dg==,iv:vTO16Pckoi0XT/qrDpBl9jE5nBENGxaFO89yaN2E+GU=,tag:Y/95mYVLcbnhyWpfbOTrHA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:P8aS9P+7CFGgA9KOsndGvWUazEA=,iv:ox4cR5GC9do/P6aBhkxIlN6lavqrx9UIXCVXwciXI9M=,tag:Y/MNtWt0e9XMqImofkkAdw==,type:str]",
-						"kind": "ENC[AES256_GCM,data:4A7o2NTHdw==,iv:tHWWrM+w3OboWBY30AKXZFB9wPNHUem40ay0/t3bP3o=,tag:9UurbQlV/8owBvKMrX9ZuQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:e5nF1ytFig==,iv:8+JCzbmxb/qIWNf2OmkuUuuvOy3huGT7Zmfrne4yOs0=,tag:YnA3Zbcfyb0ld+vCvJCA1g==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:L1n/E/A=,iv:hj8B5qQqz96jp2LCY//XQLWbj5/okdc3cQWMdQcd8KI=,tag:Uh+/s9JQH7Yd/pZu+yf1Cg==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:imxSSPLEMG3YuYkQhLsKMS2auDo=,iv:82jgli08sYPbRaW+VCL8c9yZrA1inKDxsgCKS3WkA+8=,tag:Do60Z4teqsEYQPSoJ/V6mQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:7Nc6RE4blQ==,iv:XZu8LESUeConOjF8CY/ALdY1SDZ4IoZgbWcThX+h85k=,tag:lAA/2wJNi6f1ykNeV0Fx9A==,type:str]",
+						"name": "ENC[AES256_GCM,data:IPl7wteyVw==,iv:Md639V9MfgD0olKAKyot2zZuesb5BSYUkB1Nn6Tushc=,tag:UioM8VZYSIcc5mGvC92bpQ==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:7+6KlgM=,iv:OPQAof1o5iRduU03g0yuxTh+jzNAqNGLqth7StmwZv4=,tag:aMdRwEp3D71RFU+lRnHI/Q==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:hZTsMlb3jH5KQLOCLkd4yKnrxnhbBkduEKzTyqUwSQT8ktcg5MZqvZBUV6LCogGno1crD/ZEanH9o60k56SVl+WO3OacztstEx2XOExdNrwlQgNECfdBgNd2FD5hFWGFAXGYy6aFnK7ncxGC03GL9tJoTj3U0Mdr,iv:RaaFp+724idAhdsUv9/793h4lMaQ3b7JZ0YnJnb6W7E=,tag:n+PhWVfFntNR121Ut//+BQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:FXt18q6LhSdq3rFwxqJxomTtMp35wGdGVK0yOPIiLlzPJpVFfVbJGsABQOfIc7pk4KIdjPBTGNcLvoBeApEURk4QrJUmM+59UTO6ofEvFX3hoNm4v/LbjkfWsOPvsCtY/80hnu2Jt/Wp1mBOnyScOQcdA+0Cf+jT,iv:yY/hVQKr4Z7kiXhdRydezYhpZrul8X8z/W8BjTSegkI=,tag:sCNlbfpShsmK1d0qmN0PMA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:JjPp+M8/Ssw+5cVPOBCDUly6w10dMaIWMDpmssm5z5xT03njOkzS,iv:0yAY0Uql9PGQ0XepnIxjbx9D4dKXBHewJYRPcNScd60=,tag:QXsJ4G8/wj9RsuTQKu1YQA==,type:str]"
+						"ENC[AES256_GCM,data:2G2KSbteMVfNMxE75SQ7d7A+pjEPoObmpKi3oP9t9aNpH4Eg8SJp,iv:Eoac8q02O6P6KJEUfkMzrt4Yo0oRBaf12f6QYOuaZZk=,tag:e1FZfPGEhFG6li9+RfycLw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:cJhNYicGbeip5w45BwOXgivfbVlDcZN8pkOUEQskPpT+5CLLKbhTg/g=,iv:nNdDzaKwAfUnRK6U7+yVJu6XwyT02APlXg/+1tMu1Nc=,tag:liuJviu32Q55O7914ylfDw==,type:str]",
-			"mode": "ENC[AES256_GCM,data:AdXX53hUKg==,iv:6uBVx/qATzCZAVP87DV1m4EnSo8Ht7UL+GmziGnCxgE=,tag:FReyxpUEPfWjINDuATFIIw==,type:str]",
-			"type": "ENC[AES256_GCM,data:dCc3jb0Z/oSTGmgVT3wWmwM6yv6jwY8od7TPXQ==,iv:lu+jje2r8Gbg2dZ02P1t7lYN7ZfGOUXUrNCZTxmgKoc=,tag:Jf8SGnM9qcmsP0GSwAiHXw==,type:str]",
-			"name": "ENC[AES256_GCM,data:hunIMg==,iv:kp/ap69Hy9dNPYUH8uCWkZn3tLcvSRDnq52cGZkHNlU=,tag:xNCkGloH2td9njoKRCvD7A==,type:str]",
-			"provider": "ENC[AES256_GCM,data:xsvlyIbry/SISmu6HEDezg0u4IJSYf2PkQNwNeEYIg3sOeLZjo9GTMC3i97rGNUB/D3EPBZT,iv:89YoxusZVvGGFa2LtBblY5gAN8gTZu1ya+jpmqvd8Vo=,tag:kjAZfrlfyTkIVeZLbjbA8A==,type:str]",
+			"module": "ENC[AES256_GCM,data:wIHW6/TlXHzL/YXpOtKM3j5mV9+GX+QSzS/lHUfIdyabU6UQm/EQ+rM=,iv:VaP8PpnOuZY4Lju8UXQWOymlk8fRpyuUvPcZwlx5qE0=,tag:bg3miznhp7j1Iw1vSBwTmg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:GiDWI5Dkdg==,iv:7IPjcTx2bSZdpW8mT1jyyNmcxtY+4AVF0jHhi4ei6I8=,tag:2KrZx73WKt+Iqn5MV4wqYQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:YviAe2ba6EZU+0kATOAbmqomx1UgWTQQsm0T4g==,iv:6Hqh1w39Rxcd80LQS4qOkkjowGPt0UnCc+Xfg2zyxjE=,tag:wz0ZX4RUXQ1vA0UbHjCQDA==,type:str]",
+			"name": "ENC[AES256_GCM,data:xYz6Rg==,iv:k6wlJ+eAQNrXArGLeMwDtE8RCThoUeNcpNMLavm0GHo=,tag:OCyrN/UlcmjMW6+gJ4rVJA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:2qz0LCgXbLph0vpMHnD3hhbYsNwEkAX8fV7II+f6bX9C2/VkOAcqGraZ6hURHy6H6n4j9wN5,iv:Lxvk1yEkxvgpiqDPbAnJg09LNDrnx3rsw9oosaSfhAA=,tag:Nt7AbnXQkwrm2n1mw/3cjg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:UA==,iv:DoYnLxh7+h9e3MQBNJ51zZdyk+wcGnBP6VWT3t/JvCY=,tag:JzSxAG2CUZuODqMhqlCPNQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:aw==,iv:7Dx98LrexMhcpPUcPxXR5rAeF6wIysIURv88vxCFfwU=,tag:IdASpvMrrjXLhSdBHX/P4A==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:bQBkipP7M+Yhht5dvrU5xrDdXNK+DTk=,iv:ySOa457jVDwLxZEGQwg9DapTXXOmao4SOujA6jv1K/c=,tag:CUe6+giz2WA/WsmJtgkpjg==,type:str]",
+						"id": "ENC[AES256_GCM,data:4O2yAIMczz7NPb5U9CRxIsmjWPClCb4=,iv:u9S3ymGGE3kZmd6RQnsIvufuAM+e3psvLQtJ/zVggqQ=,tag:s5akJnEMWBeIYqzICLxkQQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
-								"generation": "ENC[AES256_GCM,data:fg==,iv:2ufe2uM6xK6JX78w/lSbMa7feyqaCmB/rE5JNaSO5ZQ=,tag:m+dRGPQp4WLI6CpDFgxtuQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:gw==,iv:iYRdCghAwPJqzhZJ2V4N0gemn82zPb/rUstCOmkD3vA=,tag:+PdwRkBR5+5x7BbLAeBDhQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:HuJ47OzpmIrqieZbyhiM6b7xmUFudzU=,iv:4UJKO97R8N+3d6CGmBycAVf1t+2ofYjkcMA2003EdEI=,tag:WOAgDruSFvMQG7Qxnz0okQ==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:1YOyHpGaC1Pr,iv:VOb2oOdmbcj3eRdWpxTT7GyCtYN8y7kYblINYzuefm4=,tag:KW1bJljOgRH6w/Iw6gwGtQ==,type:str]",
-								"uid": "ENC[AES256_GCM,data:sEzG6Numzv8X1SUX7ziyAbqwmRLDOSR5KjlkIF6QZF0A0orM,iv:hUn4y4Ke7KstFiUWDoscqYfEP/PSXMgzXyw/k3DLBjw=,tag:elu8j4C4tHqojqLOk8A7BA==,type:str]"
+								"name": "ENC[AES256_GCM,data:U9+z+PxDLdpOi14QFUJQakFnYE/BHlE=,iv:X02lqb5U883wBWuIdDlpwwU2LYfTQPMtiUOI3Q8+p8M=,tag:ZVnTn9pk5CXlqa6l+ljNKg==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:ChFiJUD4pOL7,iv:C7aAGDpusoN/Xo9nijHjlFdF2ne5kWUefS5i5w2LeLQ=,tag:kM0qS4wgadOMbs/JeTOYRA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:fa6i83TE7k5ZjT2epYtAjMAJNIkT7zDTzZeaYOlhHAbUoPII,iv:Q36jgv5O3yeAmX8oRmm5ivg3PqlIpuRGn8YPGuzpXYw=,tag:n3LDYhEZsj3apBsl0zRp0w==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"access_modes": [
-									"ENC[AES256_GCM,data:Eh6iyYqwb+UYtHOyfQ==,iv:bEDyZgrDXDPv4w/43FXGh1DUvkXhZYndq+UyUK67YVY=,tag:kYrmilN2oIdInVcS9H/QVg==,type:str]"
+									"ENC[AES256_GCM,data:ebbjZy+08Qn63TQMVQ==,iv:d639r+T3xQhqljybENzUMRZ93D+HsT98zKcqcP5cxcI=,tag:DYTLApTk5uftEO7GBXLyzQ==,type:str]"
 								],
 								"capacity": {
-									"storage": "ENC[AES256_GCM,data:hzvQFQ==,iv:Y/gVZZlBIpO91HiC09aabA7nqc7do2AOc8Pc1q97S70=,tag:k3fNKsS1mD+kclE9dwnakg==,type:str]"
+									"storage": "ENC[AES256_GCM,data:1Lic2A==,iv:em5EBSRx6ZV3925Gmaw2S6FQPrMf4gv5EfXm3pR7/pY=,tag:FX+KaoCfpWneNTAU88h80g==,type:str]"
 								},
 								"claim_ref": [
 									{
-										"name": "ENC[AES256_GCM,data:4uIRZvM6ko9wITyzS9Gu0H8jOJv033c=,iv:XpE/ljsI/BeEg3JEsxDJHe91OpR94wwNYVSbp6wDgUA=,tag:Erg3sVRwe+kCeA5ltQ+oNw==,type:str]",
-										"namespace": "ENC[AES256_GCM,data:x7O3Vy8=,iv:NQrNZJgZNNfeED5d+fXN0UnQ/vB1/fihjrZA0tGBRjo=,tag:O+ZIgPf9rbYlskWOOpAlCw==,type:str]"
+										"name": "ENC[AES256_GCM,data:iks6Ah2x6fDr97p+RRUJedHAf+3ZkcU=,iv:E5KmNzTX7Ike9YDYsf1DEJGwNPkjM8LtmHtZjsGJ6MY=,tag:7P1C88yGoNlT+/FB703QcA==,type:str]",
+										"namespace": "ENC[AES256_GCM,data:BbkdA/w=,iv:ECVNgCxwEUcVznilmEbgMuwmQrVmVPRyVs0cA5dikMs=,tag:DBLYNoPo2FLXfRXKtjj/Bw==,type:str]"
 									}
 								],
 								"mount_options": [
-									"ENC[AES256_GCM,data:nBk5oOF3lFk0,iv:mU5G0KK8kShrWZENzIPeO+hT8sV0KeHno3baTSahPUo=,tag:6wusczB4+dMngnjz91IVkw==,type:str]",
-									"ENC[AES256_GCM,data:594379c31VM8,iv:kdNDJ+zBR56dFqtU57UQ2AJOJKO1J9QHEe2hX5KOxZI=,tag:d8Ip5ZEb1anCoEcyl85hMg==,type:str]",
-									"ENC[AES256_GCM,data:dHTu0qUTXMzz,iv:k+/R2JT0Kit2w81TF89d/uAd+Trno6qqqUkv341zpwU=,tag:sa/ays8crBmXJdy7oX8F1A==,type:str]",
-									"ENC[AES256_GCM,data:j/oUYg==,iv:LDYZmnf1lIqs/55nJbltDNu4pIgWfUwgBBA5n3EYssc=,tag:DCZ4j/9vRot0sFCpNtpRPw==,type:str]",
-									"ENC[AES256_GCM,data:zJc4wXcUSN4=,iv:Nqw4ey4qkyyeuQRDZ3/sx6wiXE8ULC8HnQq0pJ3oCbs=,tag:MlKmSfqQVJexW7eewOIXQg==,type:str]"
+									"ENC[AES256_GCM,data:YlLuLwdNDw7n,iv:RLdTmtOsSwUSRn/FdWMJoYMVVzF/aQaYn4A+qEbkKJc=,tag:0CEbbQyv1EGcIhDS0MiWKA==,type:str]",
+									"ENC[AES256_GCM,data:uWOoYrqcmJcH,iv:OyeVCzXNSqPflBT96it3iBoyW7RwQw15U7txji9ZCHs=,tag:CEa7LKUGUFLOdR0y4o2J/A==,type:str]",
+									"ENC[AES256_GCM,data:upoPlyWcjas/,iv:I880oVGEr9VOrWALOF5khcjo3SipMlxIeH1jQQRw/Jg=,tag:UXEpMEi7gl23JoygY84RlQ==,type:str]",
+									"ENC[AES256_GCM,data:hZRjww==,iv:pIgPV2WBcmQv8MHG+7t8zQcfwj1gJudx3s16/dmLJHw=,tag:XX7UCEE2cd++wm13c69E/A==,type:str]",
+									"ENC[AES256_GCM,data:H2a0lNkY6sI=,iv:l1rwpJ5EVlF3doMsaGXPYFnbiGzxeyhKOLU1POPWEgg=,tag:idGYHbgbPHcn0B19bZzg2w==,type:str]"
 								],
 								"node_affinity": [],
-								"persistent_volume_reclaim_policy": "ENC[AES256_GCM,data:eIUYruYZ,iv:fRXZSnEqpzp6EFVMFZYxu2DCe4MMqNxfHoLoXpgrbms=,tag:PWwdx3OhL3PAN7hhEtjq6A==,type:str]",
+								"persistent_volume_reclaim_policy": "ENC[AES256_GCM,data:v2jeR6dZ,iv:KHTX/xbKkCA2dsEhnzW0BteGxWfAgG6Q4x/kCNUF9wA=,tag:suWQsWAKmh2sZvVRRcfpSQ==,type:str]",
 								"persistent_volume_source": [
 									{
 										"aws_elastic_block_store": [],
@@ -3515,16 +3616,16 @@
 											{
 												"controller_expand_secret_ref": [],
 												"controller_publish_secret_ref": [],
-												"driver": "ENC[AES256_GCM,data:7xrmRr1MYkvPYOU4wsk=,iv:xjGCGaMAOn3lk63QGkNXYsZeYCIpJFfI571LFotoPOc=,tag:xOGZ3kZPnLA1QyY3Bd7Qxw==,type:str]",
+												"driver": "ENC[AES256_GCM,data:Jry2iXhYZOlhjvZOWqI=,iv:JADNIZOkFVctOscWk0TTHWqzRgfqUH0zJVAyMPR/1iA=,tag:WbJahXjT19gBq+zyU6kalA==,type:str]",
 												"fs_type": "",
 												"node_publish_secret_ref": [],
 												"node_stage_secret_ref": [],
-												"read_only": "ENC[AES256_GCM,data:hS+Y/EY=,iv:8yKwDLKdRTk4s0cWW2Cs72duDY012qJUlqPH60kUMb0=,tag:60xsVv9PlTm1ivGt1JIUUw==,type:bool]",
+												"read_only": "ENC[AES256_GCM,data:O5M/Pns=,iv:7GOA4Opu3YhmeDv29Qf5T2eFVyql8vDfOlmy960FnPk=,tag:CrDZEK/qG77Y88jFVS/XUg==,type:bool]",
 												"volume_attributes": {
-													"server": "ENC[AES256_GCM,data:ZkKPPxLGg8losvKRAg==,iv:g2pDoKolVucn+YG5lvacEB75VgMF0pJeKAseihuqENQ=,tag:lNibzvDp3ZG5kiEncbk5kA==,type:str]",
-													"share": "ENC[AES256_GCM,data:iA9x0buSA0k1lgcgkBQAvrRUrwzC,iv:ifimO0ZX6CSHo4wEcPvccFbAfhrB8SL+CeseM/U5UNo=,tag:5nkqoGC4lkviJGvPNowfyQ==,type:str]"
+													"server": "ENC[AES256_GCM,data:s50Z/7jIVQCVzDnZYg==,iv:ks1v3sDKeJHvOTpeykTZnS7zw1UK49zglaeg1UH33f8=,tag:1sDigokwnFNogONhSd4woA==,type:str]",
+													"share": "ENC[AES256_GCM,data:AmZiY1KT7Y9GknvFIHY9+TRMWlLr,iv:bfcfe+4pZ59A+IutIGXErbRrOAKKF+55fLElgMJ8tb8=,tag:v/EkpnzrqFQcgP3XWjZXHg==,type:str]"
 												},
-												"volume_handle": "ENC[AES256_GCM,data:TTKTN5XrFdHh/Uv74937ob2TnrBpOiI=,iv:kR1nsouW/8V0gzWsFfvLjnx172Kqd3EjX4xRnHJhVEQ=,tag:artybxGAGQorU8Jghpztpg==,type:str]"
+												"volume_handle": "ENC[AES256_GCM,data:+uN/nmxEl+w9E6YZ1v2gCcUfsX9Z8b8=,iv:Dt7M0/Arj9p3w3HtqNhabiODFu2YHz670gFEVMN9hq4=,tag:GBI/aOwOEi3yIGWWnqi6hA==,type:str]"
 											}
 										],
 										"fc": [],
@@ -3542,117 +3643,117 @@
 										"vsphere_volume": []
 									}
 								],
-								"storage_class_name": "ENC[AES256_GCM,data:QSKdS+/KoYbip24=,iv:inIGR/MSeMfxPfPu+VI0WjY6K2Ht5nIYi4WRiAg0i7Y=,tag:zuyFJtWdbt9jryELUx6WpA==,type:str]",
-								"volume_mode": "ENC[AES256_GCM,data:6p/cGPnoDN45qA==,iv:jfqHQApYH+QzjlEsVTLjUxGHBHR6wwrh2m+h9U1c9kg=,tag:riF9SbIDYoQu9qGY4kMDxA==,type:str]"
+								"storage_class_name": "ENC[AES256_GCM,data:eaoj9r7291fA6oQ=,iv:tFxmd6L9NPrsmxief/24qU4jOAutluaX/I/Bj0UK1uY=,tag:AqgMDPXOOs21UVBn4ki0uw==,type:str]",
+								"volume_mode": "ENC[AES256_GCM,data:u9+hOGYVubafQA==,iv:7nSKVsJr5FNx+bYBfBlw6C1neY3lLOTEJuuTkmjjfZc=,tag:VXNeHq2ENrYhxI6f+NETgg==,type:str]"
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:wA==,iv:RdGH6b/ykrLomGTzG37nR/9buueFhxGiXtvL1XjyiRo=,tag:oNMLCZCsDipfugRuLBmGiw==,type:float]",
-					"private": "ENC[AES256_GCM,data:mXa+g5qjS2aB9dAEMLRmQKlA7fEV+ItfSgYVdMggyn51iqo0W97TA2e5qrC2Q/3is5JVfuEYN14wI9Pi1YpkfgEpIkcxRzSy7q6hfxQOuxWndSnq1JaofA==,iv:gny7AbMmR00D9bGWbIk7g8A53wKCvhrVgQ48Elg+iwE=,tag:a2S1eg/VtLA71K8Ud+beuA==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:sQ==,iv:Fl4RGeE6XF+kPIp1TiicUd7U8WV8XV+mezk4kB1uWbo=,tag:uJBBEduz7OWWZNpbajplUw==,type:float]",
+					"private": "ENC[AES256_GCM,data:NbnH9gfHVCnSYo/ihpZVwXpR63Kz3I4oPSQe/xE138qcQQEwCoIFBjAtQ1WU+XlNyw4q163bY26f07rndC1qDXEgWAPJIp4IzdtFRMnFVmXBuxcG606r5Q==,iv:SyO8J2O5ZqUekb0u6sJlq/jOBwQgiqFGoUQKtneywKc=,tag:RZfN8IHKFepEwAhmlVWUUQ==,type:str]"
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:47HZFffMZMghJ44Wa8m4sC/2BaleR+N6nmmzTMFCtji/sIYg9H1AL4g=,iv:0jZCOBl4U6KN5yRdXo0513zKs78p1QN3Go9BgMpV5fc=,tag:kSmwZO43tlWZWzolyPsASA==,type:str]",
-			"mode": "ENC[AES256_GCM,data:90LklLjUxw==,iv:OchUviaTqsZT9BbvxHgH6bI5FWRx0V8Gl8t0lnetWng=,tag:L/2jzEOXGhKBBIK0cJOB7w==,type:str]",
-			"type": "ENC[AES256_GCM,data:N0Wv8SsHDz3eFtaISEEb7ksWvV+1IT1wH+cCs3St+FRJdw==,iv:IxwwumAQjKYNaRqIfR00FbssD9WQNvFGYX1BU7Rhp/o=,tag:7W3URCwFs5WocfTayP+Xrg==,type:str]",
-			"name": "ENC[AES256_GCM,data:gKNZ9w==,iv:FugNAC0XI/SUB/qIevz9YSmJdJVLjlVhA2sOjnlOj2I=,tag:10rqhzNS3MvVyunLjJ6XhQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:UrJoV4nTDbeA/xJ1Ux2KcL5bxkDubEfjLZK+BtLRSMKTdygH9LSzrdimC1xTabgcb15RcwZ3,iv:UXZdzeE7wMPfezJQXgIp11fi8Oo1FSN4MVS/wITSMn4=,tag:hq9e4yHePMCd4w5mH2hx9Q==,type:str]",
+			"module": "ENC[AES256_GCM,data:Jv/ejan2S9lAN9LVTRggiyF1AunSkUhzGwzUyfr00e9qnV5BZ2cOV/M=,iv:WO3sKabqmJT81DydAkUozYMjoECCywBOeztXlY0auf4=,tag:vJ/WITEnslzgB1qOMhHnyA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:UGI2V2oi/w==,iv:TBT1Og0Ut4C39SiHKykqvzcWH8684iOiLXrm11XjbB8=,tag:xIQvE1DazNf5JFLngLwo6w==,type:str]",
+			"type": "ENC[AES256_GCM,data:oZWwUChKJPrtgn9LO1hehximsm178ewJOTCYzx8+m/evJg==,iv:g0e7aoZ45HX46VriLa1i7KLcHUtF3pZn923pDr7QhwM=,tag:NVT0eLRKTaONTZE0+T8nww==,type:str]",
+			"name": "ENC[AES256_GCM,data:vT+MHg==,iv:KiOleyzKTZdX8oIPQs33feFHdV+kK/K7v/dVGLph2j0=,tag:9DpsZV0e7GoUbJiEiX2Jmw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:6a3KB2+Qzc52I+QZwP9rgD2nLT3g3jTeWu68pr+WW2L0tG0yulylFi08b/cWOe+gLaSHwYWB,iv:1c5YENRGmhRu+prvoZW8EVPDnqOuX9y5ojwj7BROJSE=,tag:7KZDYxD12mGC+ELjFVUsag==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:QQ==,iv:sj1rKZ5GXGKDiYL0jjEH3jseT516o2exmuZLo4IuLtA=,tag:ccwZur69rYHCCzbYlNt68A==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:3g==,iv:rzinucDHevSqm+uDeMqcg5AvxXhp81Eu9yhqXheMsQk=,tag:DfwKjzUtHgk6XKWPHYpkag==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:pBabvQ+KXPEV5SBsFEZ6WM2YawoZwHa+LplDynQ=,iv:HFcVhipXkVUpG9R3I6RPB23m+FHygBXJz8tXTR4XCeA=,tag:2cfElTJcIxrL8DkWox7AUA==,type:str]",
+						"id": "ENC[AES256_GCM,data:SCHcfIhXywMLowvoqSmc39HLV1pMCVqpA9rLxqw=,iv:svP3R99UWisnsdwU/Mt/X2ob/8PcNwuEo89aMh8fnrQ=,tag:xV5vLqOKP4j6YMxeBYAFlw==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:xw==,iv:aE4825K7VIwJy0G/M6plKu9DBsmVb6h4HtuEKx/IZ6k=,tag:XgNP+bvrGILTbiGQQmnQKw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:XA==,iv:/LcRRQZw6TEz7T1q0zWCaRwDnGkt1dlgDHen1NmXt74=,tag:U679PFE8KkqMot5VReKnKA==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:d4nye9jxAXUu19vZq2N9jUZhJMc6AoY=,iv:TefhFpHz9xX87DE1Y4pSFmElQRt2Mz/BxX8iXjPmXx4=,tag:86qYDpxRE2mWOVTitQfoIA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:pL1EdXQ=,iv:rRbVy3AZf/+8N63HACV/hnoyOZ7hBUzeumQ45A4pQh8=,tag:lwrXyisk2mJJCmohE3XKjw==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:c68CsE8nTFfL,iv:jtTt4fx3zpshQPb8AuRLg8oIGhSQnhBE2ofemqdGyR8=,tag:sEk6i5Z4mPs/iD5f0QHPlg==,type:str]",
-								"uid": "ENC[AES256_GCM,data:ngu9rLAnc5N0+jiRlDS426l0PSA1LiLfb0DH6sn2/aR6FxbK,iv:VriU2EKOsn6JT2GaiRORpoDt/Q7WEf9A2Fgoy/pMfcE=,tag:iga0K/Ya3tGWXZmyzHuezQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:8+TnclAPR896NHNRfI1FrQjnj4fTARE=,iv:SY/uUabLwdWbe9C9LPZ+yAUQ/zmpRZ92pnlqQypiN/0=,tag:XTF2Aft2MI9SGXhi24PYMA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:KuJ0Tuc=,iv:NEx3bjCmvCouFDM9Y9RFq0kwriWaRE0ih/Xd4EL2Q/s=,tag:tDgMR7XxX9xAGjBkONHikQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:PlklE7SZYYFI,iv:IF3Lm5dt6+m2LIPyteTBE03SonjePyr3Af/Ht2yjYL0=,tag:AVC2r8+iZDaqzvE5DxbCHw==,type:str]",
+								"uid": "ENC[AES256_GCM,data:OOzck22v2CJvrWunbUGdmjXNtoHCctMSc96Sno4+wnX9bNoa,iv:QQiHAch+tBc/BnJB+xCdE6UOLaLC3CcUYIyrvMvAUWw=,tag:PcMxZ0dv440JXfuILg54XA==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"access_modes": [
-									"ENC[AES256_GCM,data:FpYao00rlddH34i1ug==,iv:CVtiluuiVf3NmpfKvN9U/IdmVxFrAJ4vxkrM7KPQpxw=,tag:4iDY+VZ2YolodZ4u3ubWjA==,type:str]"
+									"ENC[AES256_GCM,data:U1MlvkfwL/h2Zras9A==,iv:UdEgwYTb+pPmaNaepbf2Ul3swPyPYuce/LIJpQOlEjQ=,tag:ltFhK4q1ksPdzkpFjfslJw==,type:str]"
 								],
 								"resources": [
 									{
 										"limits": {},
 										"requests": {
-											"storage": "ENC[AES256_GCM,data:oAddEg==,iv:zMnpArIznEG18ass/Rc5PXfLsF0Wm0GwADMp4gsntL8=,tag:s7g93jz1+rsxqFc5nAljng==,type:str]"
+											"storage": "ENC[AES256_GCM,data:D5Bnqg==,iv:guBGuXa2YauyQiGYXDApDfAVd8S2AC0ckyiwDEQq0fE=,tag:LETfPL1XkQFGf355QdMiow==,type:str]"
 										}
 									}
 								],
 								"selector": [],
-								"storage_class_name": "ENC[AES256_GCM,data:YmXICvBDyXdUstk=,iv:sv2BWZfXP+Gm8ELyP6j4Jgi5OjW5Gc7govVTIjrDhuQ=,tag:K47q3EyrJp1rbNFFCoBuqQ==,type:str]",
-								"volume_mode": "ENC[AES256_GCM,data:7DHPz0re+cSBmA==,iv:fRv4l67zGrBWlEO1FzwPozaEFnqQNUeixTYUuGERstQ=,tag:vkVwt+r1Er50UVz84xHfDQ==,type:str]",
-								"volume_name": "ENC[AES256_GCM,data:qgc6Dfg0rJDpnfEEhYYoTOz+PqVj9MM=,iv:f/qELDaFvojZKdFCcBzCtC/G5ZkWyiRYJfVgtut37Yg=,tag:4NZ1p/1POVKSNxcvtgHcKg==,type:str]"
+								"storage_class_name": "ENC[AES256_GCM,data:BGmiAdvHCUfB11k=,iv:VXhGvhNeo4LJnZj1HFx6FO2a3hxzHPdMneJUqhapAqs=,tag:N38dNxA9gWCuM0L94MzVqw==,type:str]",
+								"volume_mode": "ENC[AES256_GCM,data:OCNYSW7e9fJHnA==,iv:/PMcT+MZ/vahqV60imHwfT8N82H0JIiqP/CfqnM7KvI=,tag:78GwvgzskMow9+BRiSAVsA==,type:str]",
+								"volume_name": "ENC[AES256_GCM,data:8YgWcAzC8kYqlvdd6nomPQK9C0Jv3+I=,iv:lgFxAgP1lgGmqQR9HOOtcfRU37Srfdmg2XA9biWsGvA=,tag:K40BQEqYB9tcsz4FIOr/Ag==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_until_bound": "ENC[AES256_GCM,data:j8mFFg==,iv:xUbdy4ni/ahPcWnyKh0Yh+utRuDcfhDl80gQk21fgDo=,tag:TYQomvyM8tqYJZeWtF244Q==,type:bool]"
+						"wait_until_bound": "ENC[AES256_GCM,data:8Ag+ig==,iv:+Ca0vujAKbmdgYdr0VMCaQcoSXDe6LbaK+qQLhZHfz4=,tag:oE9fd3lQy64N4QFpOVnCtQ==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:fA==,iv:nsW+2q+i3GQaZGpOVq/np1F5Mv0JNIMin6b++gAQNEI=,tag:HpHFvyy5p98R5XiLj6Af2A==,type:float]",
-					"private": "ENC[AES256_GCM,data:jlrHu64GJ0XvKTkFw9kRH3IbkyPL/M91EysC9N44OAfcSYRESdNA67C4SoFIlN44qI7U8jXBHB9ihnexS8sGoR96jI4xRUE7G2m8m3lSQXU/e+AmX/E0tA==,iv:ZLq0N55jglgt1PvkHVtSOlYxjnQe48wtW3Tv/qutf08=,tag:p3/8cnrwFTrzB8lU+LIk7g==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:nw==,iv:/B1wPr44Y4stWh313fqzcvojWHB1tvi8Sz+dsaZEhYU=,tag:D3HaqmC1lWswf4KUt7qODg==,type:float]",
+					"private": "ENC[AES256_GCM,data:QSnsqEISz8DvwVzBRaa9bFxrA5C+iJYbcBFOs73UKLFbu+EQCZK1BlOyeSLn8Qr3aem3TOcGb3RMD7HTftVU7BPN3IBYut9XUVlThvF5wohGcKXh3LVMXQ==,iv:3JE924pTCweV5Pg7I3TVKoZEPRXR54n2OJEv/5NZASs=,tag:S+BPDbAG//Zw1RPvmfsuJA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:McKMJIyMVghF/wk2UEmFuW8iDVXcYi4M7eEA0aGF8cFs03ZbEFo3,iv:mgLeT6qL0udZGDxQlKHh9lTzUh9S0WxkVlzQwTZdKVw=,tag:Z0lEixKHEVOBwY2jukUPMg==,type:str]",
-						"ENC[AES256_GCM,data:SMfGDxLTY6PDxO3WiQTF04LHpNkXWymeOo4WH0+FPcvjw9PbN6vvurn15z6ZoXtg/RxbP8wrJFPDOkub3rXG2FuHTVdv1zJEzACh,iv:wwNT8cz4HXNIs9JaU9N4X7avZ9+hJU+wq2z+23OIBn4=,tag:ovddQea3gOHdEh3WlMKxQw==,type:str]"
+						"ENC[AES256_GCM,data:aKKNxPg9SmqCGgGcjnFLHxpVi9AYa4oGsQnNAgClIfduMWnH3G7/,iv:OlU5yCeJhEbQh4AK0fLwNbXG0maVZsoabILb+AjwYLs=,tag:iNPg0i/Nymi5PbrCObZItA==,type:str]",
+						"ENC[AES256_GCM,data:tMpBHcODoa9/qysb1t1so0HYKGcYeNl5uoLtYKJQ76+syeeCUbCEDX5b0PCOB+C1XEcIk/NYdigmpptd3RuBwb7RT+V34cu7sNfi,iv:3iJsEQDYeZvj54IvwUcVBLzo1Vsj2FDDE78uw0vuljw=,tag:4WeDV7jh1TfJirEgxCjW2w==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:v8FhyAhs5cYlNAvrg+3RhF9dGVf+X6UEe6xtC36DdThndLc6NFxCbSA1mEVofw==,iv:pqgmxWout4jAaxSyP3bo6GXYWrdwJHdcIhYMFUD60Dg=,tag:srSssN+8E3MyaSblj1EXqg==,type:str]",
-			"mode": "ENC[AES256_GCM,data:mo7eEVGUSQ==,iv:TEntBuWqHUe2x0xUZgoLcQnFpO2YUnihPeKu79TKDGs=,tag:oFGxYf5zaEAVYTkZsDMJEQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:eP9COtSjVdjcbh2Z3uvyfv32UjeRlivgDG0aAw==,iv:tGbtZz01FUnapjTx/Ve6dS/XXcjIgjkr5ugVxXJ73e0=,tag:oDuMUrvLjVKMbtR5gLY9LQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:4QkrpA==,iv:fJUyQQpeUsuvpx5HgemQqpXddgOGZDpUHTf3yE1UMjk=,tag:/ePasNMU8JRad/u7jp5bhg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:0+SIA/I1PyferFfTQaz+BAIe4sDZCpWnNLw6vCbxW99Cj13CQ/gfZX9xErY550IntBZdI3nO,iv:dyoS/sOCkIM7kMopSfIVe3aHTXT8XVVYHaiT8l1dZ5M=,tag:amkvfukByAywRcHLDb5cTQ==,type:str]",
+			"module": "ENC[AES256_GCM,data:xgVeE9U7VYCLhnxSmsWUeQ4GSBsZd+/Q/ix8vimD3/XdmETtqY3xYYefdRnH/g==,iv:cj3fes6/qdV8LYI9SU5HSaPVID2HdhcpPUKskbAcHf0=,tag:FvRto/LFNzKsg3whXtCg7w==,type:str]",
+			"mode": "ENC[AES256_GCM,data:UsFBq8q+zg==,iv:3kbuWkCk/WjqBwjmBDZ7RIhjTxWMedSUlDppy5pDz0M=,tag:OloLMgMeJvNvqSnDV0km1g==,type:str]",
+			"type": "ENC[AES256_GCM,data:QfpkBsTE7Zva0O7ylHbZgXG7j9SGo+lT8lb3VQ==,iv:IRrdm6/pJQKgRKcUYZh6M7GwEsE+eoMvxlC6DfVsFQI=,tag:585gsdX4wE9egcIgDaTjYQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:C5kDhQ==,iv:L3E8qHVLDW5xcV3e4Q1fx/9eXlqL6XNhgm+PBjJU708=,tag:ISXbMQWiQaFIW5Yl7wFdLw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:mptSyKomidD1Ew1+ZXtbEu7/AxkB7r5V86vz2Wne1QY5nJejp6QmMs+t7g/gMz/x+NhtvGQy,iv:ubmc7HrJsw2LpNu4MLf+8hQAXFsf87JLH3lGJpcWEEk=,tag:/m/qjb54c7RkZz6K22xKBw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:hA==,iv:sOa2TPLiFe4PL+1JWY+tr+gXy2IcKcJ4yiVApSCZrfE=,tag:qZ6ZJjP1pm1DzxxGep6wyw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:kg==,iv:4ZZZzW1WMWN3YLGUyoPJhwk2gahfldb21PmPayerEYE=,tag:3t6ySBVL7w+5ty2hfXn0dw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:MQ+lc1Ujnn3c4/VSVDpo5+m8j+uSp176NSf8bQ==,iv:LHUP/SVEACSOpOCesgzopehGmjTQYXjke7atSsUqHyY=,tag:HVtB+iNGEsCnh0aej7somw==,type:str]",
+						"id": "ENC[AES256_GCM,data:SEU16137TdFczJLxgnqs7NlO+TPN0W9nt2zemw==,iv:QgcrP6wH9XiDxRAIZIl2rRO1I6LOITXUc40rHFKHBXM=,tag:BG8mIC8wyaU+qDiiJlyR+g==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
-								"generation": "ENC[AES256_GCM,data:EQ==,iv:PytM8SujKsklCxWcNm2IYKWO8CVngy1L1o0ZftVIEMg=,tag:GrJ36qARG6IbgwnJOFZZfA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:sg==,iv:IO9eZLgXuMaq8XnP11dft85d7sh2V1oqtkUCpkSWlDE=,tag:/bBLmy/yHXscdhuSV7SO7w==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:5bdBSgfPT2Q2x5X0L5gQrqbcDAAAbnRKqk+P2A==,iv:+gm+BGDc0Ye4vfCB1hhsTGrmFZRopK1qZLah796/m04=,tag:aYN0bocwQspHR1uZMbiZ5A==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:HhfImRDf+lYd,iv:zm5sk4fgcdiG+P6PtqhwIIA6xMhziRhyAtboNjG08gQ=,tag:XYCEAP296WN3Dst4rv7KfA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:Dk61wcZVeJj/GDBmT8gFXQOBocbA61aSV5dPxoMR4WU1jXgM,iv:1PWB0vqa7LX2kO+O+Etz4SQMeNMfl/tf34Lkd3HlR+g=,tag:HtudVkJb2zH20b9qFer7Aw==,type:str]"
+								"name": "ENC[AES256_GCM,data:PM1JG0x5NBDGvytftXQerZ4v43rybu+FDk+JNA==,iv:Z/FmyTUglRDwLc0jP1Wm16OE/FkxjNrJ56egO8akZRE=,tag:N2cydOpgmWVGaKK+Nep6yw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:czx3V6NGjfl3,iv:bghOtVvRHdfeQVzmTYqS5T8M1dpLnA9UW3QxfO64ugE=,tag:NRda2/AEky87X9mGoiFM2A==,type:str]",
+								"uid": "ENC[AES256_GCM,data:pkZgFf7dqLmkw2WV2mHt+x6o7dJ5anURnf2gX5q1dSwWUa5y,iv:+pIS7sbnHt8Lnh1n5hzMWGY/lg2Ax6Tb+azlY8E2phA=,tag:NVNEllWa3D2GkUB8R0W1Wg==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"access_modes": [
-									"ENC[AES256_GCM,data:bFbYvVS8mmYxokfwzg==,iv:s61m/XznRzPQtNBOmKi+9cdodXnTe1CrHYgVU8SICPE=,tag:IpnXf/qwhk4mBm0FwEVlnw==,type:str]"
+									"ENC[AES256_GCM,data:nJIAB58y/cfc6Hh99w==,iv:FsdD2fUt2Gjk0JcfchQOsRclk9HhG+gZsKzIYbYIIMY=,tag:25hp6/KFsupKU+rmUINThw==,type:str]"
 								],
 								"capacity": {
-									"storage": "ENC[AES256_GCM,data:AmlyDw==,iv:7Tyu8M8YI8dQF7zPpzJSqk4xI5p3Oir8F2I1Eb+0zlg=,tag:/0oeWOWqYy3hzYXdoJlgFw==,type:str]"
+									"storage": "ENC[AES256_GCM,data:3c8F+A==,iv:Id2Axp9jkalPFYy7bhi7V5mpuBcj2xM356GX3WSA5QM=,tag:JU21bvV4dUziFKUEBQQFqg==,type:str]"
 								},
 								"claim_ref": [
 									{
-										"name": "ENC[AES256_GCM,data:cMkVNI5OWPC8xchzOnxh5Rnjx1Xcd7F9qMBQkg==,iv:6160YY9ldZ2Am2MBk8JqwwzfTpiQCwNS1aOcINkwFgs=,tag:qpCgh9OtXIFPoqFPw0rNPA==,type:str]",
-										"namespace": "ENC[AES256_GCM,data:AFGH2Rg=,iv:Umb0PUFRLxVxMPmgc/0y6flI31ZA+1mcrEW7EHjOOCQ=,tag:mLYHcK2B/do6f8H6npZROw==,type:str]"
+										"name": "ENC[AES256_GCM,data:RX04z44uCS5/StrcrMPuT2B0qfu3Qy3Xx2sTzQ==,iv:n+zmWz3oDf0+BTwoZ0diKZZv21HK5OK6GabsCqqI+Ec=,tag:+r1cWhaAeDxgJjMMRAJ1xg==,type:str]",
+										"namespace": "ENC[AES256_GCM,data:u8M5UKk=,iv:J+ze3Yd5k4PTtoBpe3fjQ32/GP5ZvXjGKWNdb1APMB8=,tag:H7HQLKBLhqzQ9k8aZh57ag==,type:str]"
 									}
 								],
 								"mount_options": [
-									"ENC[AES256_GCM,data:RXVDgBw2K0IY,iv:NmtU/ty6pRjm2TbhieNv3qucnWTDVvvbsfx6+GVqmXY=,tag:RH+NX+8Ii04ldN/AwVnDXQ==,type:str]",
-									"ENC[AES256_GCM,data:9mOP/D6kkGxA,iv:89Z6CIq003mr7Bq6mMytnyiEFESht970glkKuzm91YE=,tag:xch2UFu0fRJqTsuA4NZMNQ==,type:str]",
-									"ENC[AES256_GCM,data:dOq6Z7K7eCse,iv:l5sM9Ka0sTcgtyQUarj8mEfxF2LmvCDPz8nt2n5EeqI=,tag:w9EC/phld6qt237eV7Brqw==,type:str]",
-									"ENC[AES256_GCM,data:I5qpMQ==,iv:VBrphjwrcBJOBwod4SOrl3EaRfPJDStxoWk4tnTj38Y=,tag:Iyz6/X+Lu2I8NVl83FtaCw==,type:str]",
-									"ENC[AES256_GCM,data:3Jpsei9A1Y8=,iv:/LiDx6fSKD2HTjA4GKpqBWi479PnfU2xppLBFKYrTws=,tag:GDnbIq58U2V1AM/cj96eMw==,type:str]"
+									"ENC[AES256_GCM,data:/y+eoTLOK+FA,iv:IEJwExYl1GGysTs4I1Uf0Is1zQZhfORZ9Rm2FG73Jdk=,tag:zuH+0Q9Twj3b5YuAsVTssA==,type:str]",
+									"ENC[AES256_GCM,data:WL7hF78aZ2aa,iv:VA9SHNDwclZTOoygpCAOSARbr4BMqWac1Cr+3c5CIgM=,tag:uILIsBSCcRyOfBi2SlrT2Q==,type:str]",
+									"ENC[AES256_GCM,data:BSVyMv4vDB2E,iv:/jDtuHqZMqyfJSPYujeF5LetakA/DatdpN8Rb33EjJM=,tag:OXfBnHAcpi/KQCBRM4ZwGg==,type:str]",
+									"ENC[AES256_GCM,data:MdkmWg==,iv:9/x92xEP84TqucA0+VVBc4pcIkGiTq/Z4hxYiW6SpAI=,tag:/DxaRoiwB7ZuSCo6g0WTRQ==,type:str]",
+									"ENC[AES256_GCM,data:gdbXa0GtcBY=,iv:TZVrkDgbZmLr+EOAwXTqJcDQqSVG6+FU+LzuKvwOFdw=,tag:by4baL4xYH1aK9q4YtL/FQ==,type:str]"
 								],
 								"node_affinity": [],
-								"persistent_volume_reclaim_policy": "ENC[AES256_GCM,data:cni88aeT,iv:p+xuCiDlnpnhfUcKyM0Gpo1iHqe9PL8rHZVMbtvB0pc=,tag:p4SU+17DjfoLijNQOesFFA==,type:str]",
+								"persistent_volume_reclaim_policy": "ENC[AES256_GCM,data:vyOzWaRQ,iv:10g9ZSp7wabFOdf/4S5opKLzgN29Ug5hxvPyN0fwWaA=,tag:4w4fisK2ICJTCxuqjTNA6w==,type:str]",
 								"persistent_volume_source": [
 									{
 										"aws_elastic_block_store": [],
@@ -3664,16 +3765,16 @@
 											{
 												"controller_expand_secret_ref": [],
 												"controller_publish_secret_ref": [],
-												"driver": "ENC[AES256_GCM,data:ys3XUGcI78fyRD8BC8M=,iv:zmqowic7apeLJ0MA+o3FIi7VvYBhc4LkktFhIaYCFLc=,tag:zAZGSzWfXG7YLWU8eUkDEg==,type:str]",
+												"driver": "ENC[AES256_GCM,data:Sw/Yz2GWQ2baappKySo=,iv:TLgVKbfXOihECRMSw26BxOxrXevNOXr0gxeQ/JP2kvg=,tag:y8EXez9Mi+XDtP9qXrHo9Q==,type:str]",
 												"fs_type": "",
 												"node_publish_secret_ref": [],
 												"node_stage_secret_ref": [],
-												"read_only": "ENC[AES256_GCM,data:HLt0dk4=,iv:XPxROr/Sg/BHxzS5LRQeL1955Ny9x6J+AU2KTQkxio8=,tag:V/zEm46lhrsCv8GU8bOKvw==,type:bool]",
+												"read_only": "ENC[AES256_GCM,data:dUgm0Xw=,iv:ptiWo7wxmmN47jva+PstOkIi0LQ1i1i2C0yx3c4Sb28=,tag:ZWEl9bEeUakFu/7j0iKO2Q==,type:bool]",
 												"volume_attributes": {
-													"server": "ENC[AES256_GCM,data:6MC3HDRF4hJ1pCAw7g==,iv:kElf//nE8P3/jkNt41hZ9m3NJKRNWZg0aY1rih7s2Ws=,tag:R2o+qCYhzyKS999XZVTwqw==,type:str]",
-													"share": "ENC[AES256_GCM,data:H2dOlCYyizzuEKTqYcbWTtj9EfYMaaYKtq8=,iv:HDSZBEfuE91M4a6ITthBjSl9+/485uqt9ZswFGAckTU=,tag:l3B71MLo7vKEgv/a4WPXJg==,type:str]"
+													"server": "ENC[AES256_GCM,data:xTkTb+wUgxBuo6jy7w==,iv:pPuazpQYPvZVt7s4hpoW1+l+XW+QcIp2U8L0oI6rLe4=,tag:6wzwZi/H+Wgl+x1zatMmdg==,type:str]",
+													"share": "ENC[AES256_GCM,data:AHoI5XWa45JkIqJmZGdK3Xj+uK/eyNmo+6Q=,iv:sz9SXdS8Kfaz4ru6QxOAUF0aRFr9Kwkh3qqv4/qozU8=,tag:1SgdgJranmEqGBikKYDIJg==,type:str]"
 												},
-												"volume_handle": "ENC[AES256_GCM,data:ftauqmw5mQuKntpw4kWZYOniaNLzaPpMvlWsGA==,iv:MzgWtWHQW1u7enGINJzqSZ6Q6bjdiV0t7QuFc2zVcto=,tag:sZrauLa0t6Q+ZR4UY4qpdg==,type:str]"
+												"volume_handle": "ENC[AES256_GCM,data:gqXmoqX9Z8CmNHwZLMBKUQvcmgbxzMCTOJRBUQ==,iv:FYOiPiKrAElkJafA3eOPWX2NnAl8/pONImjr7yMVE7g=,tag:m9vZbJ1+WJ9JoQ44qcf6+w==,type:str]"
 											}
 										],
 										"fc": [],
@@ -3691,134 +3792,134 @@
 										"vsphere_volume": []
 									}
 								],
-								"storage_class_name": "ENC[AES256_GCM,data:cM1x7XuYKaWzwuA=,iv:V1QaJyScqFHGYF4VDnDIFayWOv8Ru80nO8Tw1d5UtRQ=,tag:zfWqxHobPw5EUGDPH5GlbQ==,type:str]",
-								"volume_mode": "ENC[AES256_GCM,data:Hfh2rVN7gAy/NQ==,iv:BgCYljk2hGIv9dpc+uyY3GssNOhyGL7MDr7J8KO3jVQ=,tag:XMw3cjeQUf9u2P8aU9tx5w==,type:str]"
+								"storage_class_name": "ENC[AES256_GCM,data:IXLpC65gnOtoB1k=,iv:QGKMW6pYHTj4p5gF92XzFlVojGemg1om/4Kf5JlGCGQ=,tag:MMn889YSIHBRILqEQJJYaw==,type:str]",
+								"volume_mode": "ENC[AES256_GCM,data:ngHeTwOhniy4ag==,iv:qYyF1oqcvocPqhjlmQOiV3TAnk2vlt/VAyhclvyf6cE=,tag:F54u1KoB6Lguv2MvhWmp/Q==,type:str]"
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:tw==,iv:/lHD2BViepA71yUYJH8wCbb++fgBdT3X582TRAEQLOY=,tag:vEj0VKhXBbmb27k+A8c+eA==,type:float]",
-					"private": "ENC[AES256_GCM,data:2463+Cl5+gFzSePtc1WPTTysjztqdcImZUYiB2BR3cKdjoIWcA5rAa1J8+uy3cqKTIg42CmjfSMMXfMax/lhgyhSKidAm6kmLCTAcj0xF67Dhvg+DWqDig==,iv:LJwV0dancIN6Pg+CkzkjfkrF1oLhf1RQMLbhGnNmT5Y=,tag:eXJPA41ubp0346efmXMyoA==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:HQ==,iv:M9akDxk7Hk+Pq+X9AGLqdgL14P9enAEVTSXEqIfxWr8=,tag:S2SUrLyycvAVd23R2F2Iiw==,type:float]",
+					"private": "ENC[AES256_GCM,data:Jvv41F3r8ztmbhPKme57C//jeLT0jpDq03p1VcYtpjN4MhogMaErGee0RpF/tEXOQkBOPmbZS4/qvdCO7d8gv7KiE/B0zlOU7+ioVVDgWn9M9dcPp8zHBA==,iv:UrHs6GCtFR/zcZ+EgUnVKSpiStwPNkFFIb6nItZynoI=,tag:UjVJO6wzz4jX/laIaCpVtQ==,type:str]"
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:mgE8qpbT27CXwF1MPmfjI4yhaplU5e13cjqn/RSmIHAm987U+BOvPCbbRvynwg==,iv:Tb6JU8XztW6azT8dLVRjiSh58HtI4yCOEVBSa/QJ6Rw=,tag:76+ZCIr20ay18XfNDu6Seg==,type:str]",
-			"mode": "ENC[AES256_GCM,data:Syh2d0AIJg==,iv:t11PdYGa/TCTsnHoyC5cDhnJTci20IM8o3Svf13h6Bs=,tag:r9IvZsv299JL33v0AGm46Q==,type:str]",
-			"type": "ENC[AES256_GCM,data:lTNGzlr+2aOJAD4rtrsIr9SNYvofnusRjO5C6I0Z2TBXoQ==,iv:RV0XYbKUb1X2InQnnDkixs16x7/nVeQuXQUa4vvy4DM=,tag:NdI6B3ssyrgDbMWPGoXLgQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:lSpMzQ==,iv:5pzMLkp2aZ8qGcUcyYoFD6c8AB37hT+LVXmX8MG2ONo=,tag:dZcd1tErIarMmudPjRkO8A==,type:str]",
-			"provider": "ENC[AES256_GCM,data:lSuGLiNTyR+A2MrPanSqTaMIiD+g19Acq2eUCvVlt5vknJWKnD17CWG0iIyGCVvagbKNL/y6,iv:U3vsQcR2QMklxGWxD8rnODFYEn3K5RzQAAlV79aV5wQ=,tag:RWCJbBkdrwTFHEPFSBFD0Q==,type:str]",
+			"module": "ENC[AES256_GCM,data:uObZreBWAzAsQtoEUPYsg9uFBuLviX13sROddDMjs8fkiI355G5FIqo6N7hZcQ==,iv:MboJr5NUtXp6fBF81C9Eo4WYazD/roTDhsZSgFzVA5I=,tag:PgHhm2AmL2Vb1al+MwljyQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:+vGowgSKaw==,iv:oxl85Va+mpiyg8WdzVou4jG29akAp3+j1EhgydFEUjI=,tag:z8pOWICvmlHMG4lPPh+Azg==,type:str]",
+			"type": "ENC[AES256_GCM,data:JMNTz6klrz+71SKvruSC3uz4ahdXKJDCaQOgYJXzChm0tg==,iv:O8KyHBMQ0grzlJcMC+ViJCbpYJw3j077YEzG1dT+/QU=,tag:wPlYcveyM+ggK9XAHDuITg==,type:str]",
+			"name": "ENC[AES256_GCM,data:Qjopog==,iv:Y2cdiF2SImKPfygdwlurT3AaeBbZUBjtTV5xJVMQ15s=,tag:tyabfn+kyh9lWEJjA7K7Bw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:2JJiWwhybL2rUEEEQnbSpc0Rbpcvzqnosn1Gg3sex/kr8+feO1wst/ZFQzuDfIcTJ+2+1PV2,iv:lXQ96B4NDiNzmxicRgcL2Kszo1A/SxAymMVhF6XdV84=,tag:YVO8fnFgnQun0cKJwgBDyA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:rg==,iv:AL9piE5GIfmehOn6xtihSlh4/192sHr8+owAnIh0RiE=,tag:xXxaTGqoi77ivT5UflE63w==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Yw==,iv:24LCcZYtQKdPUKEl+0h5vucWjxn/e2H5OKMR6DlmdVs=,tag:3/lnCbDl9B3Bj5aticPELg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:LpW7P7oLgWRrNY4ZKYo+H80IOVA4GKmjn7q3kLUqtXMxgA==,iv:HGYbvUYQoZwfMxuN+jk7nNWpLoGKd4hezWBKfQHsgAQ=,tag:dBRtrtXqF/vOLzqoBw5n7Q==,type:str]",
+						"id": "ENC[AES256_GCM,data:YjuNUKBcWW9iINpR8X4Ka6/d1VCbWOaxHuS/nwDbqNbSMg==,iv:nNlkjNKpy1J5oNhVw3pWjYShwimkDaiWUHklWOo3Ug0=,tag:eW68yOd3Ww4ygb1nS9Hr7g==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:hw==,iv:sykuT57xgAMphvRwz76RlyYkt7w3jNvmWKsat9mD88w=,tag:WVdjtHtWJuWGfqGIQvjDfA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:Vw==,iv:vued1aEA8Q9VS6LTtdmr6rylNIu6sU3ioDxSPgLakaY=,tag:Gb4hF6vOZwuA/uzT3POeCQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:KTZT4WeqQ67LfdB4OsPeLgd0T6kZ5V6kfWiQKQ==,iv:XCdAvjxkJZieUN4dNSOztZRWK4eR6QPXiaB3LfYznNw=,tag:ObGYDjdxYAmTSBQK0aWc3Q==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:sUplrIc=,iv:SkOgLarN+233q+FfNEVyCa2xWs6CJwfHdoLUbS7WvWg=,tag:3oniEt4tpDLknHly2jf/7w==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:AHDGYKtGBjej,iv:m4OOuuGo4RtAF3CG9nmWytAzPh6pV2YLRC4K5WWM0+Y=,tag:bLFUWGiENL8IOu3Unj4paQ==,type:str]",
-								"uid": "ENC[AES256_GCM,data:qWcV7y2v8lkHRIr5NG2ASBqqwR9wLva8Abh9i3xZ+pfeRQlz,iv:h+L+cfx8UEwM8fzu28FKd3XWAlZgWkNCSDbSGcQRSv0=,tag:LGvke/eK0owmMh93IzPLIw==,type:str]"
+								"name": "ENC[AES256_GCM,data:LHP5Ub8pFLf/+/yzXrrCGHgfRUV4+6B+DPleuQ==,iv:n26pAtNa3L+flKD7ECi/igCUwYwnJ/vMQ7yWCThbFaI=,tag:/ZlbRyQRnbfrkgwrBeiOyA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:4GiY33Y=,iv:cJrH2HVWxHSIPdpwv8GCDqPtEEkK64AdkshetfExDOw=,tag:Evoy0PZgicvdZIygANWNKA==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:XNkc6Vz1d/wn,iv:jMVPmw1DWtFMs1XUxJbOM2/JKXAmTpwxjhC+Gui5I7s=,tag:vtb/nxuVcGOyanOeabHxkQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:Pw9vKLyO1RkAA11FzhE/1P4gPVlGSZC9vcRp+hNdoJAGRsLf,iv:ihL5wgTe5O/uyZGpy1FwbynQl1VfnF3zAKn8gGiUYOw=,tag:lNQIbYE0PRFxSSsh9f5T7g==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"access_modes": [
-									"ENC[AES256_GCM,data:6cv+kEoAibCMT+GsOA==,iv:m+nji9SdX3v1n4bd0ZSFCfhHNpEhkCZE45ublQqHCKM=,tag:6TgF4w9v1M1zzjUo0XSQNA==,type:str]"
+									"ENC[AES256_GCM,data:5IVOlAiE6j4LWY4WTA==,iv:aQUAxtd+pSPyKTBW50/m5u7iAlOY36VY15Vc9PuJYa8=,tag:K/hwxZwxxxxGMThgHUecgw==,type:str]"
 								],
 								"resources": [
 									{
 										"limits": {},
 										"requests": {
-											"storage": "ENC[AES256_GCM,data:q5cycA==,iv:+NgVb6fF3fHUaOzIrP6rDmSAPyDtFAEOKtmxbesP7n0=,tag:m8fuYBIebGmaZrIgMGbGzQ==,type:str]"
+											"storage": "ENC[AES256_GCM,data:059tGg==,iv:666QSh0tGUk+k0Dpx7DUnB8BstCIrKfM1E7mSidmTwU=,tag:cK4lSIAoxOwjbV995eGPyw==,type:str]"
 										}
 									}
 								],
 								"selector": [],
-								"storage_class_name": "ENC[AES256_GCM,data:31oOrjuIY2z8R3o=,iv:3sULkxst5ipsTa1QKkSQhlYDi43FieQQAar61W2SuOg=,tag:PUDkYRV/cGG6bRvho0c1aQ==,type:str]",
-								"volume_mode": "ENC[AES256_GCM,data:q77OWd3VyCssVA==,iv:7jyh7+CQMQblfMyO1m2Raa/SVcIzuKFiIGiB1jvUWYQ=,tag:PymRfyrIPiId7fwanbCaUg==,type:str]",
-								"volume_name": "ENC[AES256_GCM,data:nIjoOdp+6nQo9cRfDtc9PlMnVkTbGTnKs2eBEg==,iv:BL1drZ6XQZeYE0dYAkWBT0yl85iBgBtkh51pSbSabyI=,tag:gMEg8Dh5FTntwE3ai/JN9Q==,type:str]"
+								"storage_class_name": "ENC[AES256_GCM,data:BaVc0C+MSQta81A=,iv:htCN43XvnynffXyllOzyOoQQI4MLgiHrWISCMNKJJUM=,tag:6tYfTFpF7BoVgww1uTZIZQ==,type:str]",
+								"volume_mode": "ENC[AES256_GCM,data:g6tRMN0Xyt7btA==,iv:eVz+aXk4VNofyxSMkCb+Ka3arTqejboSEfAs+Aq5TgI=,tag:+exe1sEW5NMJkjNU/sNtQw==,type:str]",
+								"volume_name": "ENC[AES256_GCM,data:DNrCXKAyWGzMHz5sni6zHaJ38HSkwZqz5M1NUA==,iv:Y8AK7PwSQ7lgucbdjkD/50sPHVpVbt16fqt4UuoBTjk=,tag:Q3T5KyC2BnFJac4dydTExw==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_until_bound": "ENC[AES256_GCM,data:1xskvw==,iv:sTzoF3I1BkdOa8Ulvuiq4nlJFSP8SOK+YttSMpfJ/Kg=,tag:Yp+rQUHV6oeJDuqbdAxDhA==,type:bool]"
+						"wait_until_bound": "ENC[AES256_GCM,data:o005Lw==,iv:EsxRO7wq1hi3nJdQW0NQ4E+oGIGyQIrjSFhDayvd7pQ=,tag:+xLRpW1tTlIYUlrxbrjN8A==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:NQ==,iv:D/zNsHtAYLjEeyXI/hnffwwhkgxM3Mu5QZ9ut8vPDE8=,tag:ey2PZs/bXXBHDR6gvv1NOA==,type:float]",
-					"private": "ENC[AES256_GCM,data:IWJiITUi7G8i25WFBUTaX8YP2IOuqy2JxQYVm4Z/FeqD0CZg1AFMlF6aewwLUXph/kV/sz1RlrrnyTNtHuKJ+37dB1DX+vXhh/gBAkCqjPqqqKSKFHvyVA==,iv:UsVp1xMQZPpKeoBuWs5vYmWacIQ6FGHcGOU0gaWyD7k=,tag:Dq31IAiZvy+7O6GKxnNQeg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:+w==,iv:QStwTY0G+YQambtblDlzZSgNXqbyuNGcA89/5ZoFVp4=,tag:SjUOsCUtvg7T62eNCt+pCQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:I1nP7TKRO+CecKYzoY3FtsgEGNlT0e3mqMAJmsG2EjdJCTL2pzzk6ZKTtHRACIfnDzy+3oU6LETE9MuvmFkSdKS/819vXQFEkfye+pVoP9pTJu+EKFgRUQ==,iv:BS3L13/qRynj1lGGYBRLFL0YIH5n8hKawTWB7klbyXU=,tag:Li3gZOr+BTWf49eVF0egvQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:52L5IIAZ3LZCQtxrEbFBaNB0w+WFoyzWhl51cIwPYZT4tlLYEBNS,iv:rDM9WcYwebUwVcqoS2SziWDlzgdBpDhYE4fy1n2ohSM=,tag:7JDlUNW06D/KsbiIdZBOdA==,type:str]",
-						"ENC[AES256_GCM,data:w+/lfO9WdOCkOl40GWYaz6iiI8DqWVcrrNis3RiFQPDSCG4jQ5j80/6+jb2kYHnMeYHA5XSt7hU7XrNiZuFwNo8qCfPTev7jyDF2PIMwofw=,iv:TNVm6RxRGGTdHEG2dOemLglPEgBorgiF6gGy2dOoMmE=,tag:N2PQRebooPfREFyLpAozJw==,type:str]"
+						"ENC[AES256_GCM,data:05rBwGATBmykrFsLQUsmSw5sMmQ0pm2eetTYUikXLW0k3ZR2V8IQ,iv:LF+AunWe4jF0rN2263vLha7uu3gGkaN8o5Whl+Q6MG8=,tag:briIJco5ttfeD+DzKzKsBA==,type:str]",
+						"ENC[AES256_GCM,data:pIUZ+SGBhgZ7UL/1phUQah5gu7/aC6s/dpqnmXJBAq+tyn08KaPP6V/9prbm/inAN4Qtr/nZqp4rFVszyM1TVeRHQAa7CK56Nl8EOhw/V4E=,iv:ipJvlhVBNGDt52Nn+iv+W7+Ydiu84T/FIM229KGTRaY=,tag:1JXM6cTo1nJATTDhzwE13A==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:FW4RrKYx8mUbkUZ1/krgdvdztH0DmS46Dk5REONn,iv:aIbszOPE5nkMHN9yzBIJSnPK7zI43vSO/Bk+leOUX0w=,tag:PacFAzWAWOPyZF+i8g+62Q==,type:str]",
-			"mode": "ENC[AES256_GCM,data:44z5pVEWTQ==,iv:zXF8J1XuvkmQryj3ETE8uSRDm/jX6SGleG49fxblzOo=,tag:bXiEc6remjl9kaW1m4juMQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:KvfauCPWvwgWor0U+QBh4mo=,iv:X6N/7paeuww6mKQkemzX2Zd6gjGJhhtBs60me5+UlN8=,tag:9fQdTm3y0+MPPzbrI7Y+jQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:4AUo0v3NXZXvUg==,iv:YSToWdW9vYuX823Nye/xeV58goq2iqaThd18CYslXe0=,tag:6lp4haS5kmMxXWRGiu1uYQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:gIW7+3Vy7zFY5cPUzHlNFYhDCj3ecOcMK+GT2YQJh86tNqLRo/++7/fZo54jaF3/b4wgZZjW,iv:xGAuO0rp7Lg6tqgxiV1BAVGuWVOaNgAJxDq6WqfFkW4=,tag:oX5sjHdL9bHhaGT+ZsKpEw==,type:str]",
+			"module": "ENC[AES256_GCM,data:dZrZNLQn1TihVl3jaW9vshelknTWxr9cHiEwHl6n,iv:wQaP9DXV77COi56cdgAI8x/mTQgg5hSJ9tBiQ3uGhJA=,tag:/c7Ty0svToBDWLIZuFcSCw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:TJTxmarqlA==,iv:wt6s93O49HcqIzoSTnOqWjZ2s5plStgTqLrxh7pFd0E=,tag:45JXJzriiQXKlUtQDc56Pg==,type:str]",
+			"type": "ENC[AES256_GCM,data:mNUaCCxbfog5A4HmBo+v3SU=,iv:lZmAHDHP2DQl52YzFu17QEB/+iCzqktdcX/VR/9/t3k=,tag:eIdaNm8n4HwN0hfhfUBNOQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:LVRNiv69LryEVQ==,iv:POAqef90UCbTOb8l57QIWBDYAw3wDVA24QpatToOkaU=,tag:p6t0Og7k+uJdwjdAvod1Ew==,type:str]",
+			"provider": "ENC[AES256_GCM,data:E5DXhCezfSh1L/0pxzOi1Rf2N18zytTsKvf2xi6KJIp8mjTIpQyGsOk14xF9fgXnD/pt48SX,iv:GrgJPTg5w2YyiiFMDfopYf4VVB3WrsZ2mrXNs1isvtQ=,tag:EBao+7N6Z4vWpxMOkMGX4g==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:/w==,iv:DHjLMKSZUzLaSmVsg9EKc7UkC+M1g+g7h3ow4H2KTWo=,tag:i27Ea/dtmAImjl16vZSohg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:uw==,iv:Co1bk9U4sdfKcN2PvKr8wfwNBQRtXYLlV60A8dPn41A=,tag:d0VB5MPh+/2XnpmL0/3oGA==,type:float]",
 					"attributes": {
 						"binary_data": null,
 						"binary_data_wo": null,
 						"binary_data_wo_revision": null,
 						"data": {
-							"tls.crt": "ENC[AES256_GCM,data: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,iv:Bsr/Fbi6CgsxG++h6SW5sP4dYAzeBDX5q91C03HUafA=,tag:u13vNa0/1h+O4Xstxig6Qg==,type:str]",
-							"tls.key": "ENC[AES256_GCM,data:7uJSpU12p0pb/wSZqhguWk7kZ4Ky90HwdbE/+8t8xxhK0YoCxgjeQSZuoFZPMTewcchqIHWB7KvYzyVyF/uadadc5ZJFRQlsqE3gsT1JE18u3aSnbvbqinZIOQwpAofGHL4IjFdBdY6BhV0Tm7YcD7P4T9iAQH0WIuArM0wZ1SzojHefqPFypH626zbpOqazlthvQm6bGtpCyG/HCxM3K0daD8C3HiSFSotttZq2viRS/5cwm74MRM2XePaabzc4gzBk4qBMKwPV6vg7v8uxHreWZXJ495AVA2OpoLpd03p8GJ3B+owUN+6EXTxfqBHWFQ==,iv:tF+WWItFnDSbQtrwpuKHSy9N5jsIPfG22nlQFew/ijE=,tag:+9tOWo5s2dTinvcPLJfiqA==,type:str]"
+							"tls.crt": "ENC[AES256_GCM,data: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,iv:Gwsxo2vIFTk30VqVCN96TgM+GoSYv1po7beq5v6dKgI=,tag:1jeJTlzrafnjt7K+xOQMLA==,type:str]",
+							"tls.key": "ENC[AES256_GCM,data:CyJnJMA/iFT5NXCHaF8G0jStsQ0dadZzi+TIQ3pc902KgTZ697Ru6dArCsbTcTGaIH+h4LIiuy2xfogrOvEYJPlJUDg+fvDS3ABfZaEGi0o38qYMGavoCNrckJ9KyC7E6sE7dyharG7ew3QKojhsUtbKn9BkxFG/Cprt/+CN/93y7JJAN5q3X53sfsM/S+dYNRGUOr7db1GR8PRHhYhbOaZWfOYIXu5Co6vEAoxrilqdz4Ts8oEC3MqXkYMuDjw+dRIiM9ELDIdT37Sj1kH7kuYjvs5bU1vNEJ/t5GrerGhGVo0jr4+84K8L5AW5Tj2ahA==,iv:xaP1lGOgXH8KDEKFiCvxeJZE9iXqP3Wgdblz384e718=,tag:ZH6uNNNpeeHnkgx5rvNd6w==,type:str]"
 						},
 						"data_wo": null,
 						"data_wo_revision": null,
-						"id": "ENC[AES256_GCM,data:EaZJ7LAqCkbDbI4ZKUNf0A==,iv:mKU7Jl2fUoZy5+CwHeTEOPJhrx9nfxYpvRUm4JTKqlA=,tag:ygHUfSYToAGtAhbJY5NQzA==,type:str]",
-						"immutable": "ENC[AES256_GCM,data:u7OLxkk=,iv:xG59cjVQDlzMqTm8N1omP1cP4Ubzt1QFK8dyXoX0oZM=,tag:qCNz2kYtXis+Y18LYqZtHQ==,type:bool]",
+						"id": "ENC[AES256_GCM,data:FYuDVQ1Id2B4rQBZMptpfQ==,iv:SfRHGTmyxP9yxmmLf91nQGqzkkYWEtcF8Uvu4zL8vzc=,tag:E4D7mAe8j08SU+tsEq5X4Q==,type:str]",
+						"immutable": "ENC[AES256_GCM,data:IRkv4p0=,iv:hPE0veM+wU8iGaAnZQAyBJWLAQhRIsxx4998wMvRhOg=,tag:N1TC1nC9gQbEYT9jIUUolA==,type:bool]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:gQ==,iv:K6hgnPr+7bPNMWUxT5MGXZYy7oYUU0AK6ecsWMbj3oo=,tag:9561QdHmIsEZDGaFVGhGjw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:vw==,iv:lEfXL0SngCQo8TaIGkk3ntJKvSBcOxIH1aDpON1+cBE=,tag:0jNqBU2WucH6Lic+t1EazA==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:6Wm2XOufBY9oug==,iv:83goQ3SazvlIYzVJbaX8t458oe9u6NjYaH85v/tisPo=,tag:xhJJj42NLRh/K4PxsAFTvg==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:pap0UQs=,iv:Y5fnMq+JaLJYv4PBMn1dWXq6HAh/ZifdtPKRPzQKJ04=,tag:u6HaeUeAwjkaCF5+vFRJvw==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:g2SkghbOamp/,iv:RE+JBrJNJ34o+/0GXOb4MwwxoPMDr7iU/FtYXH3Ho2w=,tag:/MaZn0uw2V58LP/w9nNa4w==,type:str]",
-								"uid": "ENC[AES256_GCM,data:jBC9mu7EOmSAnPy+TcYAq35DI+XlmwMDL5R4KyoEBZjf60zm,iv:OopwTn52N4L+kh4pI5EN9cki2LydDZ4fOHFJEMa1SNc=,tag:9nBOJQH895wm9NiAiSUYTA==,type:str]"
+								"name": "ENC[AES256_GCM,data:s3diIT9bJWoLlQ==,iv:IBgdTssEuwcW6bm9OlEKgBrjfHlr/1C/px1eSW1hT1w=,tag:1vBKqSGiOhcs5Ak8654ZPA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:6loCRuU=,iv:jSRXopBOxh0pjDfJkFqS2wT1yXmvmPOMARs9iJ8kuUQ=,tag:5jX1YYkKKZPDQqSwycqvHg==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:c3D98r0sorSZ,iv:Mm9kAUcfi2SaKvNjgnJ0sJ04cOf11xwZG6NkC0CZboA=,tag:JWs/yeMUZUTaF+NrIyjGaw==,type:str]",
+								"uid": "ENC[AES256_GCM,data:JQ83KmOzLTMu/APbbKXzi6wUXYYLHJKlwRPerTIb+X+f53un,iv:DMRaJNXzR+2VIxG+rnCr6G2waUB0XlcIVk3CtF01okU=,tag:rRL4p5F/TA84qSsnnipguQ==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"type": "ENC[AES256_GCM,data:FPTRzch+1v+V3Fne+/bfFiM=,iv:dKS/O9i1r4kxWd1vkIIiX0yeU3CMagrJG8yZfEa/81I=,tag:r3OoQm8el25vetCy1oc/LQ==,type:str]",
-						"wait_for_service_account_token": "ENC[AES256_GCM,data:1bKmag==,iv:1nOuHxwIOwaWmlyK0xNJQB+qlohOnNC0SVUIXEg9rwg=,tag:x2Cx4HH+O4QlaCPeB8iZoQ==,type:bool]"
+						"type": "ENC[AES256_GCM,data:gyirZrkklPRSBsZdIW6EK5g=,iv:dfc5MmGocMgKRTWpNJt1uSyI0/eqPy7Z3x4oFISEIEU=,tag:yeHiiH0Xoxm/bB+h+P71vQ==,type:str]",
+						"wait_for_service_account_token": "ENC[AES256_GCM,data:rX7kuw==,iv:cwgrvGY4W3JOHHNAM/VJRlu+OQMmYOgBAZMs7nGxdEw=,tag:MoHjmo5nw3X9W73kPPgf5A==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:9HZ04nTPjKE=,iv:Ayn8RZLTUF/DMdbKCFuJAcww5JG7rFY409vKyWbQ3pI=,tag:B9+9/pvXzkDfaT4T6gkpAg==,type:str]",
-								"value": "ENC[AES256_GCM,data:ifIBsqmGhc2v2Qo=,iv:tCiZqdJ4494HoHMh1bX1YgoxoGpdSS9Q5XhLBvkTItY=,tag:phyDDd7bfAtnWU11v7mkAg==,type:str]"
+								"type": "ENC[AES256_GCM,data:81fXVFlHbQs=,iv:jR8IeQOojSr/Z99e/evOJQr38+DiwhI/+8Ki8fu8h9I=,tag:EP6DItUIaeq4EluJmWilOA==,type:str]",
+								"value": "ENC[AES256_GCM,data:yNn+ighJEPcIOB0=,iv:hH+oCdvO3uU86YljWdoqwxVFjkBI+C2dQjgdC1uDG+M=,tag:/FBQUt1xygNDGeDkfNW1iA==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:vDorSQkW7IE=,iv:XkmLZMpfEpFkyhqFhUyuoYx8vfwg9i4/WcnSbIijJKc=,tag:wdzVeIvCMCbkM2Bo52+XFg==,type:str]",
-								"value": "ENC[AES256_GCM,data:2d6rqg==,iv:ddSQaJLe8gXm1a5kwjvUO0kR4AJ6fCjowLIeinB4hYQ=,tag:w/NUranToWflUys6AnOEQA==,type:str]"
+								"type": "ENC[AES256_GCM,data:A96Voqsvp1I=,iv:5vriUt1ESZglHhlsyY6gaoOwxqXldtgwO9YP28O4jdI=,tag:o+SiiqS7uDc7h/Ox6qUidg==,type:str]",
+								"value": "ENC[AES256_GCM,data:1eYv3Q==,iv:XdPZNe/bArZaJmJy7gunT3sHZ/k37ui/dqxyp4vCNnU=,tag:g6PqOM0+qokXeFLeaLdVOA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:Jw==,iv:+3V55d98+MtxUe9GsdemL8IHbIUk6+yT90S8xyRFy1Q=,tag:GsTjsVQQrzoKxEj81bS8Yg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:QQ==,iv:fNyagpip/JA771mfqHaRoP3EtwOWZTRhLQYuSq8E2DY=,tag:mIcidl1S1qd5yDx5SLKoMg==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:3ao=,iv:BjaN/AKVFjH8iAgp+IGs6YrawWQZE0iZ9XgsOG9Ecig=,tag:J4WyNk/nsyWGNbR6QLlrwg==,type:str]",
-						"kind": "ENC[AES256_GCM,data:vCGWG2uQ,iv:VBvTssxXpGHAWECbmmfkGHSPmkjs9fJM6x4TUoQthSM=,tag:nLfOqFivdEfV3zb1+qwddA==,type:str]",
-						"name": "ENC[AES256_GCM,data:xJWej4v/UsupOw==,iv:Ll6rAkvYJo75dzQc8n8JbPy/HldXemEPDN/YMX35X2U=,tag:JflpnHOuyBMnvZRX7nAV5Q==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:00zEygE=,iv:FVE0b8fFLL+4vAqcOP8yZJJmZ52yOW5uItu2PCZmmgk=,tag:SqK00hoIwVWr83YgIJE+Pw==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:2ps=,iv:OaRunU9QXScwJmh9tpHuGpip2ZWDM1t7khYmNDgcKYo=,tag:Z+zIN7bF7Edyv4A3THWPow==,type:str]",
+						"kind": "ENC[AES256_GCM,data:XL4+eNg6,iv:MSUDM0iog8KWSyFXmr0Viyik/iu88I68NJyDeZJqMGc=,tag:3F1Bt0DQxYy+ac8KKWoeqA==,type:str]",
+						"name": "ENC[AES256_GCM,data://FodQrygqzwWg==,iv:oucjcP6HBfEQ01JV4ATNSxTiw3qwFT9G59IMKdVntCc=,tag:JjwQtHaIZTfPfZtSJPrUFQ==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:0s0vvqc=,iv:qcxbXcQNVDt1s18rv3B/BSebLom6vm3mSz1Xc8+K8tE=,tag:C+ouuVtXyuUF2xR7TyxYuw==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:dLpD5wFkM8NBsOxaLm9D80HaBvj2symAgJiPY1tchvWEn7csXUoODWIKunNX8AmEkDoYc8xwXs3CDu70bN9JfH8S7raNf49FxhfLTm4Y04LnX4z4,iv:jhRLHNXFFLT5q3ypyLcId2l/4AAO9w6IPdbP3agPraU=,tag:QNo4yCYd85M7iAoDlAun8w==,type:str]",
+					"private": "ENC[AES256_GCM,data:mJhZE3etEjcE1P0dobOEFFpTeNaT3AfpQXtWBU02S+T2kpqm3P06Wv2MbBthAOtRYrPVoEcAd//ces8GxOosxSPoRnN71bbx6HugAIRAo1cDAks2,iv:XgjUaVBkW33lnZ+jE3gkKr1tzQoYaMyL2L3S+DvzJig=,tag:IOdJQjXi3jvqp1tnnTj61Q==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:3VXOILHBGqBmO/U14MZAR/Zo/l5IaFf9O1OPZJ10hlze2dr/p6xD,iv:gi97IC1141swjN3ho/PvPHaBxdUaaVmPBo1hR+ptcaQ=,tag:fb7JgIM85SRJIDY9Sk2fzA==,type:str]"
+						"ENC[AES256_GCM,data:yhnPYA/qBx9+8CHkdR/cRfLqxpLhx4IHvSwfdF5bd5y+QLyWK+sC,iv:I4o1o4mlG9n2rGbsinSgpF6xuMAxyHMqxBv6301K0zI=,tag:oByIFS8mv/3nVK7P6loLBQ==,type:str]"
 					]
 				}
 			]
@@ -3826,24 +3927,24 @@
 	],
 	"check_results": [
 		{
-			"object_kind": "ENC[AES256_GCM,data:MsuV,iv:vXKL9nThP/dhPTPokT07exNv8t6gxHFquzBOF6qkZPg=,tag:pjRoRASK//ftBBsvOGkIUg==,type:str]",
-			"config_addr": "ENC[AES256_GCM,data:CeCdvDmPyhX7YfLnuBYMDvCJP7BjiI2ED2D44Z2EGvP3g7OFDA3PGQ==,iv:PLij61f+Ezjkmp6XiQ8su0DdnS/V/3eUm7w8nlvw+o0=,tag:qZu4wYnVPO3NZFR0SXvNAg==,type:str]",
-			"status": "ENC[AES256_GCM,data:iCHETg==,iv:ackg2rlxdFP50xYqTZMH86IKdKBgdIbZny1Vsxl/TQA=,tag:VTRQNpwACNEjayARgUNtww==,type:str]",
+			"object_kind": "ENC[AES256_GCM,data:NLw3,iv:mbf9bJ25XfjvYgDdzHbqQC3lcL66oWYYp3AxYr2vAPE=,tag:j5eAmWbjUPmGxnZYXlx7iQ==,type:str]",
+			"config_addr": "ENC[AES256_GCM,data:i6n9ryP3hC/zobSEYNvKFCuYuK02V9dq7EEzWxR9wl58wtc7rsp2xJWzGdv1BtSW,iv:1yVuZJh8IKgmyegUHVn7Sf5HeocgXhI/vKhIPWTBu58=,tag:FMsbLsRgoUeXNPGaQk3jfw==,type:str]",
+			"status": "ENC[AES256_GCM,data:En7uLw==,iv:5rrrP1E28Luij/9Fvh5rSYf93GJI4UZePwpreGDCz2Q=,tag:1aGH4MUfmyvDommPY//RQw==,type:str]",
 			"objects": [
 				{
-					"object_addr": "ENC[AES256_GCM,data:MUGqrj0Bk3IooOwjnR/amDOfCHkgFIsAZ//RQb7jNuYm+j8+JbDAFg==,iv:WHSNnXT1CF0ram9M2Jwh9CjIuoJEnpc7y9b7L58nN9k=,tag:+dsXlrkXYNjCIvzznj2/Xg==,type:str]",
-					"status": "ENC[AES256_GCM,data:5JiMAQ==,iv:3jWrf0MGYwHxIlX6kVX5MftrfJyn5fmDoyiuJ9wuqwM=,tag:plMQhhIBaocXFd1HbEEDvQ==,type:str]"
+					"object_addr": "ENC[AES256_GCM,data:+oKWBKTuWGFP8fgn9BA/JvFl4bCYu0YC830O24zawSO1vmioaYHP0oP+BepV6nAL,iv:M9l9GaqFPbfSMaPnJaNPzpByc+CMGclcGArQNvNUQaA=,tag:eYEOfJefXeHUs872XxHRkA==,type:str]",
+					"status": "ENC[AES256_GCM,data:5ygBpQ==,iv:8zTKRADiYJhOC6VjtrDWDpyhuo9/gDqvX1ZQDq0DFQs=,tag:npdYV8fAJK0yjaFUD3KNTw==,type:str]"
 				}
 			]
 		},
 		{
-			"object_kind": "ENC[AES256_GCM,data:czu9,iv:a5P6EbhQap3EUvb8pp2ynzSo27ypn6Xy88JJcGXMMLU=,tag:XZhFGZRam5U8uVASDoru5A==,type:str]",
-			"config_addr": "ENC[AES256_GCM,data:Dfno2XhXbyxH2ICynSMQCAx7E+X3THZj9jlu89iDaNCRpOYLY1ci4H6ZKHKBMsNx,iv:ikRdhEEc5dGLU2CQPI0oiJLCfkqNnGSPFX1khppu4js=,tag:9JPkdwaQCy4QVWouIZlhHA==,type:str]",
-			"status": "ENC[AES256_GCM,data:Gct9PA==,iv:OG7eCRnzP2bmKMWtrpu8C6vQ3nDeA+HfQW/taX78qtk=,tag:mvohxwAnmD+6YpgYMp4jmQ==,type:str]",
+			"object_kind": "ENC[AES256_GCM,data:thJD,iv:nOxl6LJZ2o8iXuCeF6t3zUqudPyQYNyouedHnrrZnok=,tag:wtI25zRahWSSZ4SZcLizzA==,type:str]",
+			"config_addr": "ENC[AES256_GCM,data:XHr5p8ZSpTHnRVGvl2zbmtBgn6hNAdWUZtY19kkFVZ6cLhpYi9kN9g==,iv:HpELBE6NIjlGkFZR85aLNXBgSRScSwQorcbLjsjS2x4=,tag:wM6UQSHv5qKXEr5fEp6Eow==,type:str]",
+			"status": "ENC[AES256_GCM,data:hQB9Ig==,iv:cna6Tc1+XaOrjhWrFBd60oRYEAPcBaOipWhufTZI+Zw=,tag:6885XkK90Gz5Gs2T9hS27w==,type:str]",
 			"objects": [
 				{
-					"object_addr": "ENC[AES256_GCM,data:cb+VpN8z6XFu2qR4Vr+LJZnGn56Yf02bvaWR0WzdJ1tgx28Q3i8oQk1kSs5D1Qif,iv:aojnnkshAOjFz78Bu2MGQAvmgmtT8eCNv7gsxBkiCu0=,tag:xynHPgjSXQRnINCSVDewOg==,type:str]",
-					"status": "ENC[AES256_GCM,data:Rh2pzw==,iv:QdyRr5yaq/lGJn9Rgxl2BxI1xdT8PbUxHMe/hA0HHxY=,tag:y4KO7pjK8ErWlXpAJfzuNg==,type:str]"
+					"object_addr": "ENC[AES256_GCM,data:gB2euHF4WIKYAFR1AoxvNFwJsFD52pwF/F5REWft7pRxI0MPZoweRQ==,iv:V3ad/lFFYBWzKGTENUwzG2+lsOUFcPdg7FJ+kLlpPpQ=,tag:PVG5VQq+8e0vUEvhgNsxRA==,type:str]",
+					"status": "ENC[AES256_GCM,data:8yH5Hw==,iv:b0ZpEft5T9+Xi90xt6Pmo5ElPT6VWdYhyvaMRmXp0yQ=,tag:vjujKeC7XjCzbqOjGDWSKg==,type:str]"
 				}
 			]
 		}
@@ -3854,22 +3955,22 @@
 				"vault_address": "https://vault.viktorbarzin.me",
 				"engine_path": "transit",
 				"key_name": "sops-state-dbaas",
-				"created_at": "2026-04-18T22:12:08Z",
-				"enc": "vault:v1:xp8y77a9mTgY493uMwHohU4U90nW9gijupEktA+SVjs7ssu43Sfp5KKczgwQl6/cWsvbxlbyWxtPQSEs"
+				"created_at": "2026-04-17T14:08:49Z",
+				"enc": "vault:v1:RlDcvPChxcPwZlhiYdyuIMMd2XhYDp9ro3U3NM68zoJdToERA8fu1rwNbo6pmE1JAC4vFYC/NP8Ha2xj"
 			}
 		],
 		"age": [
 			{
 				"recipient": "age1z64h9t3acsm2rr74pz7j4846kwj5tutx9sk78jqv46y8fln4vs2sy920ce",
-				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJakxHaU5zTWp2SEx6bVZD\nTEZrVFpQOGxjZlpDbDVqL1p2aFNjVnhveFRFCmpRRDNnWlo3UTBReng4aUhJT0Yz\nSWpxRmxYc2t6ZHkya0t2NWdvWFA2NFUKLS0tIFJ4SXJYSFgxb3RQbVljdXd4RU95\naVJ2d0RyUllrNEVudU95aGlaS3ZLTU0KaEUIPVEmTbzZYsaQMG9YwAGc+zD9VdoT\nFzQUT7UbcmRakz4kPcbxPoOPXnYa5xfGc8DoenAbhG4rm3MwI2dgZA==\n-----END AGE ENCRYPTED FILE-----\n"
+				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBDYiszOWsyWjdjY0QrWElC\nZWtacCtEVm5VWkhoVHBIVTNURjZjaUhwMHc0CmRvN1hyRkEwdXYyOGNJbFByN2Yw\nMUYwdG5qem1DSXBYdDU4T3lNbUZVbTAKLS0tIGlBdndUb3k5QjZ5djkxZjI1SVFm\nN0ZyejNXVys2TTArNWZFSExaUTNYWXMKt8ssiWgUUcnwIftcE7JO1vEiS1HUQOFs\nChGZ5CAx6HrDcMWDtwvDkBD8g472nJVJkxwX1eZczq5tdc5iNF5dhg==\n-----END AGE ENCRYPTED FILE-----\n"
 			},
 			{
 				"recipient": "age1rekkad48r2wzhwqgfetw5yugu3ln3qlht4xg3txmx55tee8cveess60r90",
-				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAra0xFVjVkSzB5QXJjUkFm\neHFTR0FWVUNxMkN1c1VzeWxXM0hJaU5sTFJBClIvQWVGS0dWU3hFMGo1NmZZbGl0\nc082QW1BcXExbEl5dHBlcGxQdU5zSmsKLS0tIHdFb25kNEZ5ZmVjbWduZ2FqWnFy\nS1lBdWJEZnpub3VmclBGTkVrd0gvWTgKBydzelPQsZX+ednvRADB0tBQcL5r1eMv\nlxMKSpvt8hwyisxrheI1Qh8TPVRyY5nZ/EeEjBuTvZPAjWCGPZqraQ==\n-----END AGE ENCRYPTED FILE-----\n"
+				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA2TUIzclpEOEdBRGM2MnBu\nUS8xUFlrMDl5YVROdkp2cTFjWkJmdGhQU3lVClU4dTQxUzNtYzY5cldIYUE1bTNW\nUDlXSmVlaWc3ZVlXVUo3UENWSUpvSUUKLS0tIEZKVTdxNDBaN25vTG5QdWVJWG9o\nRzdNQXI3bGZmYnF3QnM5UTJyWDJIeDQK6crWTZDv8OiQ5OnWfqD57ycGQVbOCao6\nc0IuZ8L2a14VznyYtcHT5x58zfdKGimiGlb7qBAi3CctMV7DNxYzwQ==\n-----END AGE ENCRYPTED FILE-----\n"
 			}
 		],
-		"lastmodified": "2026-04-18T22:12:09Z",
-		"mac": "ENC[AES256_GCM,data:CxWasaZ4fI1F3+40BVqteJkZ0VkzeLbc63FlVl7uaN1Ifm0WwIwPGlTYAB+zfyJHMLynNvyHmjl8778C0QXsk9tYDg0T7oPbZGutXX4hOYODbTjeNmxNt9qpOtIPMkAmkTZ3K1/gjNoG7lJ5FQwEqNe3oXp2mBXIrlrlM4CVm9U=,iv:REcii0rdKR5jqN8V84q+AkGbiCMqzqOlmsFT1+MKuHU=,tag:QHn+R5G2mt4CQjBj6bSqJQ==,type:str]",
+		"lastmodified": "2026-04-17T14:08:49Z",
+		"mac": "ENC[AES256_GCM,data:qHOPKGbyck111UiUA/a1kSMvKVZ7J+z6dErAIrMw5di2VF7UyupfGTAxvB6CcS/YCNem3INJ9NNp/lJ063N1B7ODsPQmc0YmjuxHoBtt6P7M3U/MAXH4j9XmnNudsahCUDReq7HIT0Mqb011E1NwwA766uQ436R0uVxR3HwWMtM=,iv:HbPh88L9LdMz5+D6hVB3PB1Bngt1QU2T+CM/C8gRIyg=,tag:HjxbHnybsoqPWoDD8ukqZA==,type:str]",
 		"unencrypted_suffix": "_unencrypted",
 		"version": "3.12.1"
 	}
diff --git a/state/stacks/vault/terraform.tfstate.enc b/state/stacks/vault/terraform.tfstate.enc
index b02e82c9..d031767f 100644
--- a/state/stacks/vault/terraform.tfstate.enc
+++ b/state/stacks/vault/terraform.tfstate.enc
@@ -1,360 +1,360 @@
 {
-	"version": "ENC[AES256_GCM,data:Xg==,iv:kFwvxuqMF4uMZ1plEd4zT1vW1qZd7Hq2RJEfouhp+Tg=,tag:kN3RAKmArNlF2S6EdX2iow==,type:float]",
-	"terraform_version": "ENC[AES256_GCM,data:nrq1X5LF,iv:GxEA5m08OXBIhJR62CIvKfmxnKt1vdIwqzXlxvD4l0Y=,tag:eBKbyJLKetX8Ryw0e1NM6Q==,type:str]",
-	"serial": "ENC[AES256_GCM,data:FeY8,iv:4WvCTC9xo4/UcisSt0ZocqYC/sP6Ci9wIiVEt+voRCY=,tag:ACj2RtR8KPYuUyRrpAjoHg==,type:float]",
-	"lineage": "ENC[AES256_GCM,data:Qha4JLvPJWXqQquKvfm260M8o/v13NvNr1rSs4eeH9E0UPIl,iv:/ThVS7OqyWD8M5jE31ZI1QtUcw26DetSupatpX3B1GE=,tag:F63lPunxj0g2n9sweoP5Cg==,type:str]",
+	"version": "ENC[AES256_GCM,data:jQ==,iv:caHrTxI4NrZFaJf/W+1/85J+3WPiihaRD01HIjrW6MY=,tag:KWEdsaJHPIcXYutoH+3mTA==,type:float]",
+	"terraform_version": "ENC[AES256_GCM,data:KbUol26s,iv:X3f3/iErGgIy/O/leThCjSm2Ludh+zRM1fHn2Yi5IQg=,tag:GNCbncUAH7GZJ9QAGqIJYA==,type:str]",
+	"serial": "ENC[AES256_GCM,data:tLCS,iv:sSKwAj8x5PzqEV6JybQCPrR1CammUGdGiaekqzk/5Kw=,tag:6x9avlfrQ9MnFjeFyZI9nA==,type:float]",
+	"lineage": "ENC[AES256_GCM,data:Yq0KMqOt7E8wFQYtq/6S4Z24JSHFeIBOG2pubjCKAsl0sf49,iv:3/sNRF5EKmAZYyWZPSjXtswZsnFTpDefpt1fZAERivk=,tag:KmLONFecY9I6JJ313W2C4w==,type:str]",
 	"outputs": {},
 	"resources": [
 		{
-			"mode": "ENC[AES256_GCM,data:+qNvKg==,iv:JJVgxhNiQWnpSdy27uqtleDFDng3LH8kwl4tAsJyGlI=,tag:kySh3rpHAoVc96+f3JzEzQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:N1GRkHT4FoBZWs1Onv4Zr+ya,iv:mi2ZMMK+WEbLKIo1B6CWnhCKJrlH5iFYEWxjh+O83us=,tag:+Q6FdlfJOZ5tYdPHBf+vdA==,type:str]",
-			"name": "ENC[AES256_GCM,data:Z83u54HOkqtMQ9o=,iv:ZAhHLLfWOrvijHahZBHzWoHHild+O8W6/0mGEulJDLk=,tag:Gkdp8Aw7QnCcJYSXWfrztw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:J6nThNZ3Tzw6RRW0N4M6v9lgqdQ5yVw7PFVKRDmTlTUDtJB+t3PPFi3FgOxX45K7WA==,iv:B+rcsWEzZU3zzdbbOyUlCdixSlQk1MgagzrE4qi6ny0=,tag:Y6lt/vAmOy0LOqUkUc9ZXw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:ew9qtw==,iv:dBK7GqL3ZXmtJByHXEW5TpyohDV/hgPQGfe+2htS8xg=,tag:QK7LxyP5kSE7eER4FBoI/Q==,type:str]",
+			"type": "ENC[AES256_GCM,data:kUjTqIV0iMBqREBqiZetRsJ3,iv:EY0aDhnnPdy8BwXRdR3oxN12jJwzBbi8+5LK3U5/xgc=,tag:c7TcwgJNr69UgKKG8GL2DA==,type:str]",
+			"name": "ENC[AES256_GCM,data:Z7aTbXZpffaF1pQ=,iv:wCkLf9oPLX6ZsN6SXXA+UYjEpAc1czvJoSSy/kzdFT0=,tag:4gLaj7Syl8JfWlDxPyUO2Q==,type:str]",
+			"provider": "ENC[AES256_GCM,data:DxlO5U+V2to4vw36pg49BVRLFbX/tVWxHHyeMB6F4Js2kKDDL9PulS38EPluKgS/qw==,iv:SVMEpZ98+ex+9ehBosS8B3ySxoV5KyklRWkdRdOLkRo=,tag:lKlJX7Eaa+hYM4S34u/Ebw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:jg==,iv:KGpOHggZMyE4c+D065NYLp9t67JgFJlf1XjHj89yIRw=,tag:OxqAsSEkwhJnen+fcOGCUg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Og==,iv:G/THNjdfBJO7YXipfqEHi9fpWr9HNLjALOjlR1wd8Zk=,tag:LOKhIu4JOBB4wCqrz8Vweg==,type:float]",
 					"attributes": {
-						"created_time": "ENC[AES256_GCM,data:RiYG7P5bzO3UmspqJWL7yideppECzQAiV1z0WcLf,iv:2PrUf10aCVMePNts5MC+O1SjzqQSidl5NuFDHKRg4Oo=,tag:GkCbeNyfRLcU/kf/Vz57Ag==,type:str]",
+						"created_time": "ENC[AES256_GCM,data:2w3i5kITPMbAnpr7AB3op0+Go1irP49uz6K+jzei,iv:RGmoCyLekfGyGf4YpPzL/ltXJZZsIqt2mDqv5do2W3c=,tag:1VZSgxrWCMNYSwA1PEJG4A==,type:str]",
 						"custom_metadata": null,
 						"data": {
-							"alertmanager_account_password": "ENC[AES256_GCM,data:GpqCWiGw2R0P02OLhVapBKtdZDg=,iv:40MmF9/QFw8080FyZYfadnVQmpVgK8o8dlyZWP70s40=,tag:cVHFfRjYSDCHn9SbYTCZWA==,type:str]",
-							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:DXn7Na68svOhgwIUph0mzS5o1NtKGC65ileGbiKPs5xoL335YWQQ3Piu87tT2mveAT36SHK5y7uN4oYGybZ7QW8uqWyzMmyYrh/wO0w64O1n,iv:uMHjZHLczOvDMDhqlUJB2qebXXAcRtGeSRz6g2tYPgk=,tag:7arw9bj8UIk1LzGjEAtrvg==,type:str]",
-							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:bZJ/ZBbnh2cdQUJgXVP2PEt+DPy6/p2+JUK8qe/CSlr37GdGA8JthDBMggaxFpoYXJx/HXDb01kFDUNupWbrCQm3,iv:kMxOehce2876tNFIVZ8QBYBeNTS1f2gy8VRC5P29/r8=,tag:BHmlYB/UHqjtIQt7GonWSw==,type:str]",
-							"authentik_postgres_password": "ENC[AES256_GCM,data:PsoRiJkVVSaFgWcFCakdlg==,iv:0N8Fz+H2ab5O9AB9zCs0DX+3Clv63A1YZCkk4AI6dpg=,tag:K/GKq6LGTu9O0yKw2zIGKw==,type:str]",
-							"authentik_secret_key": "ENC[AES256_GCM,data:aArz7BV7Vs1Tl+HySumJU94zRxOOnRGd2snOnZ2oRDDsMhXxYcppJxjgh26e3LOGcSqg,iv:T7xerHkISzyNOh7xkmnrXx62m2fJG7JQHgRG0o+vhfI=,tag:istDZBQiDm+DCCPzSpQhiw==,type:str]",
-							"cloudflare_api_key": "ENC[AES256_GCM,data:fD5fPPDyS3Ki7OjH0bK2ieS3R2UY0BV0EnfXUapmuDSuIftKKg==,iv:esYLDZJ7wOYuqMy6IqnmvgBKxNZ2xsoQUDeQEaWlxXM=,tag:cd0lo+J+aFN4Ae/yWPyANQ==,type:str]",
-							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:HRA9iFf/u1uojKObFn+4f/ijsCOY5nXUE3FBMm6SEg4/bFmEHiHJZjoJhThdoLishsM01tF97cibt/PFOVUvC77ga7XnOmudQkZdv1n81AUPwRMdgmZZRiYWyYUFTKN8a4m95eLeaxPavIn6tR2cfZS0wge7QbcRzpyl59ywCOVo+9FAhsrNsnv48azfQXqkPoYG1UzI8IUA5OxVcQztV/AmF4SPw78qTtOsxUeW+Em1m2Oyyfyegg==,iv:QTOsj3qGJGLgviiUXQdjSOejeXDnoeuC4Po9lQRo2/k=,tag:DOYcEyCUp2R+gAUV9K/w7Q==,type:str]",
-							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:xoOy+fsjM3GPuIzP0ZfGwOlH55XZdvligeGG3ybIpc3pH1ojC7HQIXM0AA==,iv:nd6ltya3yIyx8+UG5tt2hiw0mZDywEF5uRwh62Tx6D0=,tag:aK6KO8bOZ+E6xyqXkJj2MA==,type:str]",
-							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:ykF80S94ezsaGFi22a2uWJUuRjrcLSFr4SLOyH0=,iv:TOx8Z53IJ4APkmL2bkXbh5qDOEE9pJHqyfN0E+4yeSE=,tag:dFETmNneMimKWYZxtK6vcQ==,type:str]",
-							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:jX/T0ftzdNkFj3Yc+jk6iOEu5/3p0sH2V65t10pdZo1/UtHF11qPT6aM0VDXloOR3US3H1s+/hWiFq2ehL6WwQ==,iv:r7Ynt0LjCmBjhTYQAAkyZioxNqVJ1wFyvCiR3tHU4dA=,tag:EW8dOnrn66SV7p5IAOO6Qg==,type:str]",
-							"crowdsec_db_password": "ENC[AES256_GCM,data:O1wtNHRwMd5dxyrBHg0=,iv:uZJKaW2J0jNbjMSdllx1/Krvm8kWv9iKeJjjtHpp/CY=,tag:J+55oU+ahhJKnwGaMcbkVw==,type:str]",
-							"crowdsec_enroll_key": "ENC[AES256_GCM,data:/aV12KTnsaROTJD9PxP4gQViRMCyWZuHuA==,iv:dqRDq9CWeRG7orZXbHoX7yYPLoyOBB58ngNkArQAYgA=,tag:/QyXHRZThPuKx4qYyfjQrA==,type:str]",
-							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:xAlZUIymdXFsD9jBog/0V1g3mXg/bSsZ8HZsIxwk+d4=,iv:FVKA5RTmBvP7tfLJtkxrRgyiJ6fQO6W9E9iG5YB0jtQ=,tag:F6qH7jwb8c7PDHLej2LrOw==,type:str]",
-							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:jyVL2onyX/FQ9hshFj2AVN9wbQPjy5a4ys0=,iv:DlU78Y9nqF/Bg9DFGXWQ234PEq4qCPfEwUVYSLLKxy8=,tag:cPm61CS+mEg+OQMr0HUCWg==,type:str]",
-							"dbaas_root_password": "ENC[AES256_GCM,data:39lF1HcDdwWXy93xD3G2EfoCo9nYmxXNNbKT4Q==,iv:FtjUzi+NvmMKIVdoQuDv1bihMhHPKHVCZevBbFeCYKk=,tag:0L4t+snHIKLCUl8CFVhxlw==,type:str]",
-							"grafana_admin_password": "ENC[AES256_GCM,data:U2bgm9uvdTYPZzdHclCNw3Z8MEM=,iv:1lgrFIIEbTbwPHyNcA2dCNjF7JD3YZ2ggwgWGIhsBc4=,tag:+q+UJrQGX5HLHVvB03PLpg==,type:str]",
-							"grafana_db_password": "ENC[AES256_GCM,data:MNdF+Z/oCu2odd6ou8K0fm5gfchU,iv:CuHZvnnQaB+Z9M8mxRi4+DRwcR1b8BY2JBZIVC/NGmA=,tag:bakp8QN3HXqNZMP4JsCovw==,type:str]",
-							"haos_api_token": "ENC[AES256_GCM,data:K3kmnaxNz2v7ZDqez5tNJQnXr5nJ5QGX9DONHBeEUPCLqoQBZVp1QrP/BI0vCMAp5X8Ee7h9bIPiWwDbSNAIT3ikqYJtLUZVA6/K6e3m3W7+JMrwFgm4ODkm//1WIhqcHtjE1u+VTLX7S3vTbb5XBBP2yBw6LvjCA54LoJKThWXRd7uVl06++pUW6CRryBPlbFaUs6BgAl1+S2pHIzuO4GNwkKeLGZ9X/8eZNuWYhVHHsotsEN1n,iv:UA4H2ZYTyawjKDljI7CIUlHFNOYsdFm0aeD+PFi3TR4=,tag:1wHGEvhlZBkKKnwWBtOAsQ==,type:str]",
-							"headscale_acl": "ENC[AES256_GCM,data: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,iv:oIbkWAxGu4TUPh5NNZozve0VjIWWoVLtDpPj78nZAH8=,tag:xb6XEFyQZNIcNe1bt8SZtg==,type:str]",
-							"headscale_config": "ENC[AES256_GCM,data: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,iv:SXUvrgLZd3DRhp8UIb+1PWSPoXS3uCXJpdkRVnnjyX8=,tag:6HjRZtB4EoiB3lpLWw/YLw==,type:str]",
-							"headscale_derp_map": "ENC[AES256_GCM,data:vn0nunbgIek1uPo6W6/8JXeGVFTuX51FMJVu+sbEY1nABCyT2yWZ+DmLNOAo2W8klIZvJRaEebLZzvZq1oIqEjlBxCDllkmPV7ZRHzLURrjTMFZGDuIg8QLZXS8uBQ/lDB9aDfy8qvHSceBZNR/sT614j35q7blCN94ePNBbfi6TO8nJP7nBrU2AWALEQJgNYEevS4jJhJ1U59bO86m9yrdU1W2nidnTIsu+iHlR+9xmkp5xadljX227VRnNmJq5zuO7a7q1hqpeaekUIp3GDWeZ1R9oILuiTeRf4OVyGnmgbzGwHskUEfTk3I/VTtdtCCnuIs0PqGOppTVuC2AybNLxmhyYz0aKAIfqT5JnfEuO38T8/T4nF+2NWTpjhadJ0zqRvgvC/mO/mo4esGhvaL9cjBq9NLgiFnsoomvXpdugA1qhNO7EOQnuhbfS8xVwpjstG/09eyEwbxLyoHRyj21dSZSnJ5R8WAwXvrPw4AkPIWMTBGzSA7mIybNUQJ2pIy3dWTCjRuoaShoIzYxLjVmJhox8GbOZ5JHpPQ1PEvKSfkcI0y26r33KVwnstfa+UuCUhmmoTKwV1wirNXoIKgJSSKvpzzxAfeiEFSGUVzlgMdTvFX1mgrOz5OlIrWk0nIP8Wc49SWFmRFQGLvth5KS4BqeWII1CNatEqF1mos5Ns3aMTxbH+QB6NY7JP02TGSwS2EOAYDWhz5gHzyyfe4i4QuNN/7FkZl+dB9gROflL98RAOSASjBWYhilWFc+kuu/ZTAx3WXGKk7naFboeqe9WsY/FsU8KDyWCMjgltLQ7hgSlE0hpSP3MkCZv+p97VAVH2ECkgcz9zOmzM1W6+la5gBLTz4ZNWdZXrovqaOtDPPRMv2/7DCwU/ZHL0OUTSwiOYQ1AIVTmE/g/e9qsOHuIF0wAYFM/VSjnkyodw52kJJ5BmxD+kFABYhM6T+3VFqO5BgyYy54Mv/PyLxMPOn8TqZvRdpaMj5FCWg2BtauOHqzNc42TvdO8DLQnU0tQCpkS/aaS7whX9NvTOmeSV+7XcVIORj2hTf2z1lo0HJZukTS/ZtPPprFZp732u3hdnv9mxvgIIQHzXm0GxWQL3MyBIobXGaFKe3KysdZ3FQB5MFRyOCXpK0Id3Xj+6FSs+vcANZFSkKd9enGQpLcnnCxYvDh4DyBY0Pcse2TMEGGx/Kc2tyxqy2pW6HUNz04NVhInuwCkfHv1+ORBHQH67EamnVkgtKUst1b1QNDV4DVL9s3yhyPU4rnPmppHtaH+QCtXjViPMicvbyPf3KufNE4QnFNYIXAAK0r4+QpekbIC/TVm547l8165nV0ew7y/M3WojbDqwwB4j9es4SC/T2VQDaVp/xahfoH/WbwssHL2otoPyf15geIoWW9nXA1eWOutUtznKFtVgUUJHHcdXfHxzquoQuZDne4d0iXC2vvA2TS4lpMZQso6uLMv9g6Nyrp61UAbdyivt5qUIRcrbQShNR7Jz9vNS5uzZJI1pvOjm452BBeCskLt71vtNfzsHyArJfFuOo2/a0Qp68PUEf7rCVg/CDRGQ7qZJIyKCjWl0Y2x7b34qNhxBkjwP5spaELAmhINlItKBv+wK8GFTUuXfixeiK2f5fX4vyrJWiN0cMMPE/vy0QijElQoU/pW3s1bKcnK0LgrV+uoUgXhply4jQ8Idm34T9Q+Xxd8IBn/vnGo9KY0GBdRx4/Hxbnj1SUeWavPcOsh34PD/aFtelhvE+oIloowYqfTKMcgWvF3pZZ504IDHj2cGMMj7bGgYkRfsFCYODubsfunf65RMkvRQdIBXbKEjt50PBDp0NkeHL/jKlryQZPTvfKTWZKdS7kWaK4R7GJ/9QSvF/ZzkRrAoVQWPvWj/r9dkLAs1Q1DfjGlHfX2uIQ14bE7MWxIW/w0uxFriUNsWLJjPyx6+L3dmS6f4woBGpndyA43ysDVMPBcC8dDuj0dnUwaPMb9kU61+/BHrKcl6anQIYTs0kmDdAmVIAt02MxsNtjMV8YmQZEfW8pxpReAc+vCtkiPWrXYAhV2gca2ZdbDOeVW3uHK+e2UpO07CkbgmkXX0QxS5tKEA5oq+4xYP9pEBHzmG0UIiut73i4v/yGf41tpWiKK+11/uE0ES/JUekq4frdZ2a7hn4K+gwLVZjm5A/e2nclyPmvSEKPK54PMiOi+CXpFor8gyotiUceM49eR+L4ELFUD8n4MlbuQSA/AkYZidCR0VUKQWk6hIO0m8RfEQyrNnlFCDYBx3ZvCiWNaJgCv7JijFap5IuNGn524DE8eAZzelpoeBaXuzcMpGE46KUu47LNs8XbRJc9kf1tSgS/DcWloqHfFyLO+FoUZaJ91k4johSUdl3OnkppaqDOHL/It0FtwXOlglKPz24Al1AYUczTHALA0LHhmNysjBzX4daY9vsEGmiBZ0YrSBN7l85bA2muSaXzUM83tEP5g9VglfJ1+C/Tk3O43tT1mI+JPJewpEPZ6kzqv5UcxELI/P+d3Vvu5ieyCXzdqk+6IWGSCwPx60WRJJpkr+N90WHpwy7tZ75kaNXxvHv7e1af35TskAmtSBGk5JR8IRiq5ZXMDkJWHxvQTkIPejeTPfV9e158rO2tsQd3QttZfuTk7oXDvj7EzYyLEvDXWFp0Y/9tCFYNv/Z/UNiWR3KptcbY2AP59QUIX+9H5rQ+9PH8aMKZmgU9oo3uT4FGXD+VOPtrBUaf3O4VIlclMtFahmAHGG023LSP6F1zGFu/nS+TE+32Gv/diSbsfQek3+u/nTd5O2bxWc23BHS8HthFvOw6Hgm0eMZJajHZtiTTvsoiVyeMbzXHrQs/SOvd/1gi7UiA2rYvD7mTr5ecwHZC68jcBgiTH4duyPB6VYErmOLvanTkwIfRuLVuopjtIceNIdwDQ4EvKubchGAyHopr2cxH0gL/E+37DblUstyhguhRIDKktWp3YF8EqYcMkwhqm+2gI/aL77sQBqZDbvJHLQdEH42xhuGY+OUKWV5E1pjK5KEQA1lFDrAEDxHUXOEbxdE8qZcHJ+A9l4D9dcsMalNn4wTfi5yVsMBnBiYmOOY1KMDr/xCyjJ1Rf2vp8EocjVC4SMKp1iy4HosHwp8iPtc1z2Novs8+EJrl6yyFx94rMfMK8xgdWja5dcSaWXk2uMM2/w2p8VRTCBsoFBh95WTJT40/42wvBl3N4Mfb2mBBd/UJlNb7Fh8txk6L/zu6fgEMcFlxQLtvkuzvW2QkMC+N5TAAnLFNk+e3uWNC26GqWb/9GLmkvsSI2UaIGK3xhemdu5JtdqeIuLk3MiqiK+9tP1Xd7eLGsD8Mmy1O2IHll0i0uCPgH9Rxy/ka4ex5qQnc5rijlcjE4MtJ6xLP4TV5xM8J7jUnyrkUt+A5Kqo2tU8RqxFf/F95yvWtr3Y4TGOGPDklekMRxk8Q/hqXYf9QiHsMUKA/80mFChk4IX0KB0tn6nlWdAHNU5hci+cPRI6OcUKirb9vNqA2Olk2GutocXavcQf2Pf30r9ojwVyuvfaQCQMxg7gQNc7/1318FY8789izW/rNJ+H+/mj1yNtjFnIR5pLxAdVRCGq+KspBG3mRk57SRDQTVKGcY5gMh2iFjw3WrrMUhOlNVn1/SL5VgCVq86TVetVJZ4vqGtloQbVle504XQbc7hvcjJT4xyFtNmkIJ/Eqdv/Q7JJRE2UolJNr+oFjGhRRI67aLl+/M7Y84Jb4aGsfo385v07NXLbMU/1wtTsAutBvJiPml/HhZZmHuBUe7Ukxj245lqAxIqyt+o15iZ40zNOI+JiJTocBJIRF2asvFLn+Efo/JCUz8S6uKPOzOHN/iD/y262y8u3lCwR3LYf2JePlkXEWxo3CTW8t/XZVJ4S3PFipQ/GmQAG1VhJ95Q+rV4iAwAd2qcGUkqFRX9rk9IhQDK/xR9CddXxgWZzJCuv6sbPJaf41jdOhces+ZUMBLUZNQvMPR/NoLI9F1HvOZgTU0O1A0o1NXr5htOOucXn630hRgTW5quwVudIeLs9j/4clAfrRGmGLGLHt0M9HNrzmH7DAmJJyu+Vu98b7jvji/1larFwduCwJ4wGdBD/RizpAw+YM+JHwq3571dvLfgBnCAvt27OgAZqu2B+7v7dN6AUl4BSR3Q/6mjUFOqyLNDkL7db2SyTTtJnSqEoQUnCgXJY7t9V5ifXaciKTr6XUVQYjekX7lFSjpOeb19bHEoDqnghnQQgRT0GRH9YT8pAEIU9n//kbGc8QUTo4G7tIDT5LvGwvAPu3iWx+/9MyHf5Kk4/SWhC5hjBvDhhMxiD7l5/KP0GiH5VyyDzg0h4anBGfGf3rQPfUmLAGnfb8CEmf6RI1f87vlyZqWlVAUV7mb4moBknXp36BKg77sUjJsMIf/hdPfd46TWO1RpTmNPbxNy+tzeSz83TMqzdmOQSGkE7RebF2Vi8ersJZ1KPGaaGYR3xSOTpFQab/V2tZzd1I7Ii9CaXXZ2DNnNFugh5LVbOhBZSutLSImdtsRR2F2XuEm6ReUDeLAGL0QuB81JbxRtKlKj4xSgyVsq3SH04IKzZjQ7ssWkRPy2rQtMjkwm/wC2VrlGgDA1E4IAvcPPMciTZUGcu3VQ1QeYdViBhc2tcbuH7pZwdlEykm8Cc2jLxrDmQADn6pUrsCBdrwei7EE9Gw74yr4KO5y57PWJjk1pVEfdqFaAIzklX+agH8C5+n1p6I/JPLs4QfeX4RAFmtoVaxARfCVwUbqqw8HIzF5EGj4yZQHiYSGKeYCrkeHRTsvdYA6HaxZhFhqc0NmVo9mT1vQaDttEkz5lkd6xg6qh0mHyphL0BYxSirdsflA0TgMJ38AS2rYIgXrlPeShlnWeb75SR8/cdmKUysi61Tqgi1nti2WSWWBQ1nCUMT9Rz2t9WLsSsD4gYmhWQ+Ud9XpcnsqvcqA+MsGptZfaJMk8cWSwnQwWsYVXY78A+lAIjNqc8fA74HM80AtymjG7oDPZpJ46K/wmsCcTWWGHmOUs0Dyps6Z9eyxb9BZDcLSx9MfOARaRLYRzQSAuHaJs9XmHVBqNp+7knZNc6U+BbFZRLtywRxxiDeH9UzYVGlSvNF78M/dlygERwVrYWvaqPkKmgr3cFIxt/lot8pkBysNfEZc96pI8GN/pFfx8IOSN+4RlBfh8TAQS9l4ROY6yArOfNGFDS6f9Cn2ltjpKfRZx4jHnofEdMPXyynMyDOS9tKxtrXW7Cbq52ewvbHTx+ID2BW+49OIGADU03JtXlSqhLIuF/XRmpm0VpLuZAjGxAeQWzH8Mp46FSJsR0fZtPD5CqelJdJOmQ1eqW741toL6YBstw/hsemW8x95LbM5sCuGz4NOf5tzpHzSYxYS0mymUGY02AoHPA1+aFgy2g6w0JFTrjyfJJ8H1IGGF+5t3SXqbo+OFaMrYqweA53V7SJzSgcCQRuuhxAcWORL4UlHvxzvW6y63TJfJ2L60IBxGXtcSRNRRxKeQM3mfYzVt3USoAMIAoyZu3fYmyHHf8m5GDRw9lQ7B3saOIqmJuChHASobFa1NuKdyUSl4XAjWLYkJV6Da7Fp34FCFfnuSeZI7ZtbzOWzI3hZFJ9RwUg9gaJZZmnEZaQH5NSUHSPTo7JLZnlfrASabzqdcyiq7iokIo5RMGHzZea8LV4L2Tahe3N64GOxYR790ne39uhmNOtX44z/+i+fazx9pKlo+Yc6Ef1ZCQDg9qTX5lj1ZhDNHnbbzEw7KWnIJmN+DjCWguWwpnWDFL0eBWHNp+EXqkAIIolTlWly64TT74kvg0OWh196mq/m4ClI20NvBOFseRVWZPo5bwxI/evYeEBhIflTviXHnVtxqGbxSzhePEvecnu8WXv2ZnR5N2/k+6zo0Jj/WingXR1/tyD+kXhShlkIrWLXAXhV41fYkKU+A5Ro/mm7/5xOzBDKa10nItzEB31zrpO31l3SoBuudOTLwkFiN8jFgxg8bw/V103yRsLesD5d57s+d7Nl4NCYr9Bo9zyTbl56w5DhOYc3RIQCSw2gscOoK2ec/cy8UQ+mR2E3ZUvQGRRa4IPlbheZC6bf8Tz9f1bFn11+8Mk7xfbZOe0mom1hejD5lYgJKqoEWRsB7As7SNL8PuKPS1pWju/mQ7xKcyZaHl82UhCf3MAsXYVVncZAuLvEBTTsrOapZf6DRLjNj9EUH9DnWb7zTbmZrQ3fIVEnUKATfMUJlTgzUgCRNeqyAkeMaRLVocY1Kd214X7xBAj0DMNDGDdx+5lUK0HWuMdMiQ6Ihvmt5/EEjpIUEmchkdvBEo825iBl0pCWf7K8OF4fpnen7qGGJUn9wZoXGnAejOjkFFzPoLFZoBQeJBCPicQz4ZOwxSyPoD6NgHiDUg0IKfkfmGpAVL3DRLtnOou0MfqVojqkVIETRv3NMPp9u4bYcc1Uyc4aP0qRBzaE/pPsnd+d+0blXgw2neIh0aHSqFWLLRrRw5fFxASc3i9ZDslgtSHHTLJrHwkzff9siLJ7X1f0Z//8XtWW9HF0uWs7UFaOFyGc6lYBwBMRNQYHXVKFcDhkxDoYtbA0TqSwskz6o31ragKnSFzkb5CXYJBAAorHgRmE9XZmj1BITH+vvpVRRc0DMbfRN5uHLtsS/I1wV4F8+Q0BYfcjGrG6fL4YRYTnQQEzae6YGbMspXrgncmVISvaDZaS0lDVUAoAQY+XC7vIYojda5tY1i3z33SkabYW8dtin3X98xOwZEAjG1dfb3Taw1iGJSvvyTlVZjMrLFhKIYgV0SSrjH08CyFWaWnPOw3oan0cXxfNSp2Y0rgMiwbQWwi2PZUNrDz7p3SFBcsgPPMM4Tw48gx3rIkVteLOZmpWxlkCbWpu/8DndK1lWH0JZs2iel+utu2zMi0Zh13j5vX9tJssAnmpo8qkCkxEk5vmtOmjD/AohUxaLNYILhIbTMrShNlkGvEsGxLHTfnXQ3299Vdv/vBeFUxl9R+rsNY1AQ6bIDMYwHjiXIHClWtazAvKuwygm5mlQ1VUTUHShPA9RKIxNpBWpORsuTdQN+oux1jt8sbq+W6hY/APB5Y4BA7oM//vR3ND+VljTRsDxQyTT64+KYl5rw6qH0GSGi+RjuEqePyP8h7YbP/Emlcs074Q9d9I1J2LxYmxJm8m5pZEr/Az3mmkFzKduJ9YOevDHMYOIkG5ly8tQ6OJcZNWtwznB9MW5CKpB7yncVz6MeB1FzfqHjjwLerondrrkuAi2iFvXFfvU/FYbmJm3EGVIxWkeoVo7E6GwKdzcELm7sCKa1EzC7lbSQ1MXor+o94A8kEB+oEKTlUgu+uRuaUW0zImwao9DPqi1Z0IEJiLKtaU6goeBIz5LDRRzslIuGx68tqpLQg22VIT4CjljuLdBAqm6si0vyeAcDTgrkTZ8sUoJ1LMEOGfOZcZ2T9qHoBEl2FI5aFDhmsGRpHK4SfxHuQbygoAyskb3f1acZgbC3maeLmeDYNQrZGfDpctp9CPn8x7kuXwQGMvBT1lijr3REdQBGC3ACIG021KDisuvUvb852HENhtSybzhBR8SC18G6Z2gNZ6LXXvS4BPmBPXKbPAq3SoIhDn+zui9JMlNO9/I8qHsZqtNVhYBvUpFL0AeGYXPax13wyOmiCeCIitCPlWrfmXKzpVlreZj9DDrhsJuMbk22nbEZevFE6taSNwbwt3B4q6pNvi5hJtWX1ZV7Twrz5nbgfEE/3HS6uYg+Mn0KfJArvPR2AeKqJ4HEJxfCq36m26Ago8RTpTdI0rxS8J9S5i5wVWeUPgmA146c0C7fmRvCw70nnX+R/M6vMBsbuRjJ4UCAlQDdbA2MKQ5SpI+JdpmsoGJSBtAzxTHM7bFrsQHa2E/nN6dEiIKrtUyG6ml6GGNmezC6dQPjStYYrCYnxI8wMH9pL8oRyj3cbmAb6FOMWnr/pJbeat6Lr5C5x9BYPMHxpjQLIbm+5YU5ttg+UaXQiLkyEIhEIdqXYnIq/BlbDbtVHckCnP1FN1Fauvmqtgt5VTt0QWU0GCbEEW2oMoYhLr8l2oMSOtvFPOYj8lPmjHmEwnm0Tvcwgz/OEujuLdxZs39v2q67ks0S25BxrJgh6DGOBVf5sbZx6CxYOIy8XW9lb2Cq43JLG/vEZdvYGqDCrrfxqGKXWIKlkP7uGJD0cDEStXH6zkWkjEvM8XdFZlMQCimm70UEEkfHoclSySHNJTYDm4kh2qxKwWQOA76wqrEnMZ2zOw4RbJLBiLK3/+t2Xe7/4Z+7KRKD99SnPYrOSPAnENYLYzBCPH+Nsi3XZ3ftEP02YIOQhs0H3372/Vnl9ANh9eq3Rme3w/TAXOJfHl1t54vmkgJpIhywDUVuqdXuoFUa3esyCQlgo/z/i4xMnhiOgIfreReTr3/2eA9DO6sNsBnnpoPGxbU9g/zVAIAJJxhCtOdV+67gCig7gjmWm+IkIDKXHEKU+7i/GDrKyGPt6soHKYHo8NsjOfK+1cxRLPQ7mAFIxVpEz2IT1aDrg7PD4G61ialFOpmuCxIIutmNMJPXSAtvTiqF1VPZ4XZIHPeMBtDpSCK4hx9+GLIKS/aiofkLtQWmhn3+YsmEss/x152Kass/0X+sk17X/FJVWezEqcpb0scQQfVYv/RNcaR3/s7NPQMi5u+zOZHWAaCL42FsDSlUsjbB3HKRXypAztM2S+B64ZySGXa/4kkmI9OQKPTtwN8yKGJZBjbTHKo8CK6OFWfS/NC3wE5/lV95IbwIwwXCRgpauKHRoE0ef/UX3Z6tB/BXBAOg2sYIntO9MV2ZZ5eM+smir8FjxG1njo9Uh18Hvml/7qLzpym8R/dICGYCGh1mCgE2A2iS465xXFzP9KEybH3GcEEJ4vXEmnU/dxniqFefPdGp/nHKDeJANz/o0vMB5EtvG71R39AnWEfl2ZnF0yQ93/BSyt5yngXz4WRgQfQ1bnIw8LccIShG3iZSP1jLPpOClvFfjnel3Ad9AC0Nopv0/Z1+tvXorXthpOKWKVxCYsCpQBmd10Xv46w2puMEsDqHfZS2DSKeh4cedDhz36B1mePZa27JUPU60VGBWxHF6NVSjrKHnV3sLShhZAeF7yH9FWRHksa3XAkijFo6pdL1WeRL7+U+wzEJQKxRrr10gzOW+w7Yag5cmfSKnz+JzNe8zRgWFV8GiyTsHq8/qE2Rvumi4y7plmDoZf/sQBlkfmVNpZ7yCQubHhTeMNhYsy1WToNKTgvUuib+Nm970e//UZPcjiq4IsIxtWvvyJa1oO+vUAHyqiTQP4mhtpMBhLYq48vg65w1wZenfj0ZdqNnhJG3WpW1ZcyEKXX9/QpPJzVjIr6nisFwQqqlGinbMsx25syW7rKMk0ilLj/5SMbXHYfpSBXq3uEYyifj+B3VIqciNy43m2uExN+nsCWJ+Z37X8+gXcNVFRjNNr9kjYKVRoMZw8T5aAtN95Ie+bZ9QH66Yb9jPfjA27QS5mseGzytvkbbWlzlBGJ9ZMiG0P6qlwfaLarFXldQkk9/p5DjeBzhidYKN/b5sAxM5+6ZzpP8kImAoBvyB+HS8HK8O3026Bemq9lK4roG+XOPSBSypJWPur/2/65MRbFrrSCK4nQMVpFJKUsogrhCIaKqTqLAZ4ldLm/rTFlgfkvys/esWh8PtLXxe9B3IW7P61l91sAbgzgKEPfAzVxIOeCdoZHLmRvKaYhLhFvXUAkkg1Omt2Mb529HB0ZubXDRilYaQ39r/fIlJiTBmCRTU9MwxZMctSCKHj/KmexKzbN2Ahpo/X3fnK8fBaaAdvDN3ixa0G759RJvYqC0vW/Iv7SKKKd00r0lEjH1s3T2bRnqwM+DgdW+wYdGjpisGHNHk/s0o6kJ3X04tr9cZXMZRsaTl94Ps=,iv:iQ4tqWewhBvdDnDyYDOztf716uIJClhR4wYf+woCeow=,tag:+beeyqN4GQGQAWZu9XYGTw==,type:str]",
-							"headscale_ui_api_key": "ENC[AES256_GCM,data:nT8wNOOdbh1ky0Yxxz0e/GK1KQ5quGVCcA0WduM9orPaln+qIviqBSMiM54aNypxxmzt3XWJNfdeWZrWltGiag==,iv:0XSZ3E/lL3Zs/AiDhwRunrCibp8//y16v6p23OwtP50=,tag:uB7+LsmUFRif9gn4RungLg==,type:str]",
-							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:lFQOqRiPpAfnRNEGstjkZOgbLaqJN40Tp/0UrwaBjiN+LLGVHt2Qm153Gl15GmAzTSZvvQnIwsEOnRJyq1urxg==,iv:10+CEo3xYN/Tt0oq7PhNN9xpkxVkymGpX9xwtr9EqGA=,tag:QpusU8WjjjOR9Xr6SXMCLQ==,type:str]",
-							"homepage_credentials": "ENC[AES256_GCM,data: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,iv:WKkgfDWQpXrqVhPCpRnhJSco+YJn0nr0HxmXwyKmIBg=,tag:Nz82X6mXIcAiT2vEZ2aL6A==,type:str]",
-							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:SYVy63iGyIqvrwVpnrqV4CQkq5gubnTGZuT+rXUwxrRAYL2bmW2tS4+0KQ==,iv:JK40n2ohUsazrjZNmBVLWM9tpOcTsEAXLmMXB2hrcqg=,tag:RCofQPKMhAtmW6uGeIQ63A==,type:str]",
-							"k8s_users": "ENC[AES256_GCM,data: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,iv:ANDug7fyhkcUfah/qgUmnMaQGrgIS0nJdShcgEzI6FA=,tag:E3EH6gzBdqCTr0XJrga0zg==,type:str]",
-							"mailserver_accounts": "ENC[AES256_GCM,data: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,iv:40/zf0DdFPqmgjfNFG9fpGk+siJiBt/fL3+jzVZLic8=,tag:YEwrLWiJvP0bs0UOpUjjZQ==,type:str]",
-							"mailserver_aliases": "ENC[AES256_GCM,data:/IOp1N7nLXPKi1c8Js7bO3pFI0WhjkdugqO/cuZvzbfPEf75l3k8r/RbYqSqKi9Zob9e0es7vgI1XIAV9cgj7c937D0A9dXH1EEeHnwv08LuXLya2GXpUqr4Nx2a7gHndGE3R1T2Z1WAHD4HUNnHkZFVAj4WXQy+NO91DCK4YbcdZE7r8Nl/K5tVCJdyXJ7w8pRNTmkVXWSF+ab4XRSaEEIpspFHAItkjCLmK5RCsFwlR6u/APK2qZFYADiuOfK+tArFq6+o5QVJBQwl5M2pGyP0+1TlTGKdESTUL0+Nvn8x6Orxww9fNJrrPQ5C2/ntJd35Wqeo3/xowuPUBWwuS6nw7uAC8qf49HRnMuh/peEzQ5IYNtti/XWjiyAfUipGMIS2CMgYDbV+356voT+nfKGuS8RXTU2a7iTMR2JdFFNyBqf/3ikYU98f2OLFUwblm9RS4bSxPVEHmSnN5BPNpxg89ElWYsMKXKZV5pA8wl910VPOHk5nTs/KcQQ9GSgtR6loxu85RH/mLredYFGZQ+GX+ko83E3waUS22EuuErl55JR1YLAhX5uiTBOpRkKWkA7aGdKpORAghcZrMt8wWsOzUrEu,iv:KUB8ewe8Jk1Oj6SyPzcDyjT3k+X2BgxJywJPY+U6qi4=,tag:k11jnZwQBOBwoNjGqw73Rg==,type:str]",
-							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:9JMad83oSEE+tYgh8gQcfTF7EZbHu605QDxBvIb/Tj4=,tag:CZ3Nr1hquFnTYXEW82N6IQ==,type:str]",
-							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:iw8hmm1/zZm4Tto8stI=,iv:5O/YHQBScoY9KA4agdoXjfuK1aPDbyI0DIjSJ4WGvC0=,tag:lGsyBHzgRTZnB7nQCVSkNQ==,type:str]",
-							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:y/3XCMaiGLq8rueK8+ljR0b+tckTLtD4Gcyu/kXaNb5Gs3dpNx98YbaoP0KYw5gKZr1CdB2QaAj7vN/4SOu+KdPphuULg9c5lc+XaY90oi64xh4TzzE3PKD+BU27WGXeAThlWHbu+K0RLmSkQQriAgVKC9V4hAu790a0tSCZZBdXLeDj3U+wSQGKPAFSMaYDkQg=,iv:kF5hXjQZ0kQs18xaY6WvHCBIuL31QCqH1UmcYsfzWMA=,tag:2qYp7y8Tvv+67cjPp9e/Og==,type:str]",
-							"monitoring_idrac_password": "ENC[AES256_GCM,data:jeBJAzv+,iv:CLUiu4/fjq3DkZu+TuWSNvJCrCDNy41gsYbZQ/ydYG4=,tag:z9SmVmkEu3dt9T6Gy05EZg==,type:str]",
-							"pve_password": "ENC[AES256_GCM,data:9aPLnlBxTk8YilbjfrjLEj9H6cIn0WQRaCioeA==,iv:vRMOVg0HURjEfq1amuYzx4vmYK/Db5wv0yBUIwhzKtg=,tag:1KIMAEn59sJQi54dWj/Vhw==,type:str]",
-							"technitium_db_password": "ENC[AES256_GCM,data:B27yQaO6+0/ZGIJdjv8=,iv:Q1AxCTD2SWMUjitCpttv9CfjmO5jp3kUKligSpwFwRw=,tag:H8p22TZFI5efDcKVxwLdJw==,type:str]",
-							"technitium_password": "ENC[AES256_GCM,data:VZPqCLZVJJl/s+wHZ2//YvIunCDiVpE=,iv:rbxXqWV1DJs3QROJIHwd7h5ikK8b26t7KKnO58NMQok=,tag:OBnraEoZtifISYVsmfQ0pQ==,type:str]",
-							"technitium_username": "ENC[AES256_GCM,data:WtRHV7k=,iv:Q90gcaNolOzOkfcY1blLjOdOxsvZe39oK2SOQBYTbbE=,tag:LzBpdF8LXMJYEC7QpNGrmA==,type:str]",
-							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:Ky2wF34K5A3lZ+E+VqwU2dNeBUyAbA==,iv:4ak7tbeP66PpFod1dWMmi6h6PRAvmMbSjpRKRTBWzqA=,tag:cS7nP9jQTgPGeNrrikSxzA==,type:str]",
-							"truenas_api_key": "ENC[AES256_GCM,data:nnaNjk4gZAISvCokdduPiEG62gSVBGndGfcpexEE2DrPdYMqVK76YC1h/GwBkAZ5FfJlJG/ZWIYSLXxpyWODd1Q1,iv:mJgBu8ibwZBjD2Li/qmAGlH+Alh21u2jYsxjjdIWt1g=,tag:vk8kViQumEwDzrT+XhmhgQ==,type:str]",
-							"truenas_ssh_private_key": "ENC[AES256_GCM,data:pF8qp0gjNscpwEDabq/UF9Rm8movw0tJYYpyBobVMyNo9nH9e2i7dK8+CxIzE9LKUvm3WzTr1kWEPHBvDrncAWbvefsvQ1GZjFYM3QOeoUHVxUNX9ETpQySdwmaP0EG1UWoMzWpRzj60kL1VdAw7xJIKC7vHrTeWBDh5y1l/RLEok52MEkmxmm1Bo1LowozZKqd9twIKSdQj29u8zqK5rwTR7NzqwS0EZdxJOHhHaKqtKI8Fz6BFj6UNOT7Xu1B9qC21014B2zDJeZcrtMjjFCkFAcubtWRWpd158ocD3Gw9tt3tlveUPcIGPvJ/kKTtzuTP9fP/if9YZeJ6apicjtfDfndltYgMvk045wt6CvSQQqGcuUwTYp72UiTjdQTCP0FqPvr3HdheZUPTYEpWhvBKtmiTEElM0Y3N66n+9qS4G8nTp2mjC/HWlRH23+P1NHem5lsnws/RFYjI2OlXPh+jOeaW3d6ZvS126KoEWIpaeVr7KNesDdCsWOZlP9DYgyF5767ewfzzMqB850IZgP+Vl8rx13PZ6L2j,iv:tXvA1Om0js2QTks15FBaIsWbeid88bBtUs5UPeVTA0U=,tag:pcADIVwfgMMvaX0kNJmb2g==,type:str]",
-							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:m2pZhbby5Ri6X42hUDSdeIeWjBw=,iv:AriJ2IGYQtTeH86/cyYJgh0AmfjzytWK/ZugGTb2xOM=,tag:CWwwXPZ41eTwvKfB7b2HUQ==,type:str]",
-							"webhook_handler_git_token": "ENC[AES256_GCM,data:tcT1UsM7dJu79a2pv39+n/aLVNSPerdEPO+32v4cEKj5J1JvymjWrA==,iv:g6Uq5WRqEPgAwhuUU6WPs/JzdrcpIOAl2gSA9yLlxhI=,tag:QLbwEWO/b14rVTEoVOVhww==,type:str]",
-							"webhook_handler_git_user": "ENC[AES256_GCM,data:9Cs9mPmwSU20N9+T,iv:AG7JSn7MebW0BZxRiQqGcdOdyh2z6DAf7MVyuKdUMss=,tag:vR3IrWPwEijlifQUTDYu0g==,type:str]",
-							"wireguard_firewall_sh": "ENC[AES256_GCM,data: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,iv:GVj/W3TjnDluBKb99ITK7SGsPneVIJzPAgHsBNAtii4=,tag:mPIEwxccs77UhMKyjD7ynw==,type:str]",
-							"wireguard_wg_0_conf": "ENC[AES256_GCM,data:UB5EWZPaYYAOokVlmy8tr6XvOzpTXbHMLbRe1LhmBga7BJ6lFdyuaCpheQQ9YeX/sPfdL3U0a5YAB58S+VVdJVAPD93h0dXyG+0EaXwUWpUrh0JxrlWjebOPrMWgSb50TkT8l1mWmuGsqpcAVW8DQGQBXAapczi/Em7mqZJ4q0ivLbr1SIBsdUSTy8/5wm8qiKACQP1rQbQcQA1B3Hj3RgB70QK1Zj7yVBswiChcR6uxEtxNj3mtAtBYNM+2wFqeaehUnuj26sYmAQrjsXFCZIVdYwIlJ3+5CEVddEzEcEKXxSdtXYT8YwSiy5J1jnKdt8NZMQ4Urw9wKL8DG3m/FNzktRF1NQcOf1bg9o+fLIld3GhMHFwA9XVz8ZFRKPwGvJb/gd99d3X2to7lUzhQmxqynsvN6BNmO5lHQ1oHruUdw9iFFEEKYz2zZmMvqAjBgy9n0AWaIuLEFC2cnQxXX94UW8x+6zOAZmiWxbNbMg1yoVGiRZvUqfDHZ9Rh9fEPpRTciw+qUfWQZFEx3vzRb0Y/iW8LvSdjN/D8qyk3ZjbtKYkk8c6TFkPN/ViMoC4wZFPwiAhWQRW3sm6wWgthZeloVmM6IFBdyM1yWwHOuJG+QpqTMmsgHu2QnIc3Vwakzmt5O9Aq+ICvrhUEzL50JyZVJMMtEg+HTrXcG/Wzd41z3ZEbrpubcmsyWjnO/gYiFv4H1a0AciWKDRyOGVlrRQeSOCnIqoCwbojhzhJ5wc3QWh2bzUKqXPjxQAX9GXAs2lRM4edofwPAmJkbU3ifOi0uYdEtcyIIbMslx2Fz8NBc9q3pppTbgNF2BTOUe30/vwzZr0AeoBAtsz1mXZpMeuSsbG0TSfisCqj3vw51yRGIsS97L9fIEKTGd6/zkMzzYUYHwurO1PmIWXK94lTGJz2VDAkLIZCk5ELcU0NSAPv5qcZmBusv9Hzu60Faj0b+6Ckp/KZq6wbgnjFE/MG892k1h0nF/N1+uarZcw3bPW+isurUHGREl30342PZe5AfVegYBfLdmzyWAknFAH70shE57TypniW42vWA1oiN0TszMXy7/9U2/o4DlhPZM/4gNcuCORqQisEE4AcpWcThbzwQILWPblGfwmQpBmG/4rvrwnQItC7iSXfavAG7wsQiP+wP1FiuMkJeuTwNw365rEcugqrnyA9FjE+Jji+IrYu0F7dj9pxezjiGcPlpC9V2b4OvmHZXCaoNtgfgVjnxExPja9XVLLKOX8Z2AA+t8BgRf9VZhX0JEKjHLwnzcYAHdz+CNf29dCrIvC6cwxzlmYlJREaJ+exffwa+cvUleCsxO630RtfrQPKBMfOCFUesU45rNjCbt6JsCScTFlBPbdaNuMuF37u7lha+AO33hIiL+d62E94YIMv/vJkv3vev+KO5RNtFERIeyfi5BInkCVkm4Mt1+ywiOln2vAZiM2TZMmvuoLmkQJbnjcXyjPVrKmXExbdw+LV6N1Z7wjsVdsZxEN/RG6g3B+pEsCznBw2Qe6sZG/q53vciT5FQmU+nxCMrcfEfRAifqgmNZafvme7t8yg7xl/cdxPGXaHNQ3VFxk5lreWJi0WvoBK3vwKcGcZM9b9tGiGyNvhWGoLgMUP1QEx1crx8lqy0b09Pvomr1UuRYJy5xFkqU5iEFykjTkwpQ+P0+rU3U30DggPN2lDbKdi2HMGo9PMB358NU2J1fmz0wL5SqaS64bFIo1e/BzvO4cUS526wL6SyiHTrQogsE/DPCQq7QYQhI1pA5LOtfHArAycam6QPDM44DhUzmqJ5ky779dz70ixW/pW68qMcbuj415BHEsvmdTzYz+znp9yXG7KP8IVdxoPCcsIRxqHoBGpuH6Bh1+F9fBkubid0rEDJGhyU+JLUCkfSQK6sSxVBL13Wrg6HRu7r+MaViz1WAWhI5UzhLgRxSbvhLVmGAxL+AwHf/F6BdejD/r6G9+dWxGQsuf4iVMgb64WHQXI9+8K/9/kjL4hEc02e1sDmvssIyLfsdC++GMHdrrmnW/MtGxvniN8BdSEGU09txMUJoGtd2SUpCGQKJhiBhDJ99t27GiNsL1fplH1/K/FO/TatX9YUhnIHCDVg6PQIEElRmrYfT2405XpXfBzDCWF/1fhElHUBXDEbQTHqcvbMYkUVi/CRDbwLcjO1PPW6ZjoebAIKgpbpNua06Rqrejh+uTndq1eZXDh5zsdwfLgVghk+ceoKvx+0m3Yb+phpdiJSk0N94pk/6svJqqr6G+3JlxnDOWkEuB0vwXyu8HXd90ouAWUOHSaJ7jKbvgNLLCyClbFjwbY7YpgWMju1Gm4Wk7gKGpFX78RBpDFHZ+UT8pQO/S1siAt00Y3ei9MTGg7myITdlRQMaxtACyC944sdJUwfAE6GVsr2g9PC+rl6mOheoLK+IUM22GGBZK9w0b4mR3AxSHZjSuVw/JwI+r6wfbq3BTOjYWI1wiQWx/iwRHyelT7IJcIcrnWqqMU+FSAp6Ni7yHPf0KgRhimnq93GVMmUXaAfPW5PgmPhzeXzfK4+v043DM57BBYUmZa5aVkTgURVaIlHTfpfZzktkXOssC5iwVuRJjtuqDHYdPbNlrQmIx1gS9fY235nWHuSYeOcvfX+TcdqQ/KaBt2DaaBfRiSk0uQJ1T7X4gHTTLBD5s2T7MB2so1o1xMa9hAV5Jw3nW66wiuaTKExCBigKroc5NMl86/e+9+0Huj/tZ1K4J/O4C5FlrWIZE1MXI7GYORLG6pMpjqwEOgb17fctNnLRhe+qHutK7uhClvp3ppYDYeXA2SfvCf2aM1XEP+PCkuuAZYShpYuQKKyh+ganwaaDxol5FpkpMdYx0K/bqI3mCeBFCLHKFk64IlofURPYiaEeXzSU664ejaaan1CP0+UnOb59SmJaDV2f+/5Vhy6JH+wrYm4ScDhx+KyCrHm8B3nMNk8wf6r5x2LqQNveVi0b/lyjw4Ttt83QUcDhGhyDgsiQbl+HtivYUnAYiYadHb3ArM6PYpt0iR78tdD2c5tZ/sdjJYMXht9/1i28ADFIQNHEVUe1U8wWNQeBbR73x19j+UP9YvnsV9J+6YdJhEsuiWKkofLXf2raUHpFbIWFebWC0Pz2AjR8fUpcaavzkff8MYiMEHzOHYj8sAc9cOCkmfURfcfiqgTK3K8M/u+Tr0reU2mcj8oR6sRgkQ6J0fhpp3Ecxsb4jg00EUq/Xh860Kw9jLmwGEQNHO0GDdxkiJ/gnzlGdRzGSJ3p/IB0LJozh8LDUvmUG7rSlr1GdUrE0QBeH61v0RFf0DmrUEUjwqee30Qkgw2UKbw9o9/b/4ZPDf1qQoy4WY+lLYmxlf5/Qk3C+7zj3zGB+jJwKinqMN/s2CsNm6Alyg2O0J3t8AejhwvQ2g0c9N62+YBltbyG6ZU/1s5DcHmXkvg46t99DJKYtroWt1P/bIFqjzLSOpARdApYFbB7Q==,iv:HrxvNWy2PUOUIuN00vR5A44C8HzwqKe69AFz3BZooRU=,tag:QKOBhtIPQZfHf3ooyu5Udw==,type:str]",
-							"wireguard_wg_0_key": "ENC[AES256_GCM,data:lAXoKQhO9do0RU90GOAHQlYGGhDOZZMfk51T+3cbTdQWiEzxXINLLvbgz1M=,iv:3HoWoRcWXPJ0VsazMiInr11VC4q7f3sza1/dnQNPJ5I=,tag:sZiG1prpnImhsyixh02QJQ==,type:str]",
-							"xray_reality_clients": "ENC[AES256_GCM,data:tLPo9EKwDM7qH0ip9j2fD1VhcQQvovbNNR0pHqwHPNfxhK+UUwlRQFXhedof8gM=,iv:VjZzyFGcKy49Nx+PL0DmS0r7+OFxKQNm7W2yA9spTh0=,tag:8Zz9lkTU/2176jgC+Tg53A==,type:str]",
-							"xray_reality_private_key": "ENC[AES256_GCM,data:NEMzSqOMS5GNREEwV2WOgt1Q6Pv+8YbkhnsGTjexvVlB4UZnApGfLodS7g==,iv:ovjPC4EHozh+ROoBsN5Wxrb2riyZHBm8/4y/so6TV5U=,tag:JgHi9HdT4t1ckorehi77dg==,type:str]",
-							"xray_reality_short_ids": "ENC[AES256_GCM,data:aMDJJfIjw1w8/1PTM83BsUrkwxXUHyj6l4V4MLR1LdpDw0OcjajQPyNKZdveKX6xfHyCXb5fXBDzehIJh2VrAts=,iv:ZF+yJTTl0Ffnjejapdnn9Echr9L/PiukXPYN2Sul2v4=,tag:fx7vBXWCJ/6xpM7zyrznbA==,type:str]"
+							"alertmanager_account_password": "ENC[AES256_GCM,data:7vgIIJvGUsCrkFs00z6/ZVt5nr8=,iv:8tkoXka0RttkelKzXw4BaT9A2++gOD+jFNazO1Uyy/A=,tag:0MzM4loHVtvwtCyLM7Lfbw==,type:str]",
+							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:KdkmalndD9Jb+xk8RSjWPr5bTv6AFuFxVbRNxw5NRfA6TWXGR3B3w0IxJRMAP7F+w0gjFQgV2q6rs8JdKJVNICI4oElS/eIeVyCca6q0ei9t,iv:7b3zVgE0pEQ9NFcIFlTh4vAVAVjQGLY4JveAsHp3ehI=,tag:FAB4ftgvIhVEnmLgB4MDjA==,type:str]",
+							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:SzNu3J4FpFMFNGXU4dk7Rb3KUuXlKlWYZBdmav4CU19NEZljJGE3ZCPCkZeJo1+32IUx+3ndCPvi4Xad7AwO0pfO,iv:Q+lkZw3Ggc5qQMsi5B6dJtxawSK6EHOei/WZDrUG/7U=,tag:7n5sSLfX4uHPA2yy44N5oA==,type:str]",
+							"authentik_postgres_password": "ENC[AES256_GCM,data:VXrAt407HXYK8j5GD2F6bA==,iv:aBYxEKSSaW82+UoPZl2Et4fC+kUAw/uSyIMFXpYr5dI=,tag:VSe6izY16VqlaZXgdzhALw==,type:str]",
+							"authentik_secret_key": "ENC[AES256_GCM,data:d/YHctZx3Zkex/s/q2v2gHFDUFa9muA+fn0To0FO9FqWAmJ2sLPawv/6Vrw3gh+1KWHT,iv:g734u/XVKcahns7eeZHoZ/DoAMFUln98iTMQidyc5ys=,tag:+tU1gpD94JkNh0jV39InGw==,type:str]",
+							"cloudflare_api_key": "ENC[AES256_GCM,data:g25II7e/tpTUsicHWtkAEM/OUrMxgvjR38kJ/g+VAAfUgHHg3g==,iv:gLHIcWtZghD5wfawLrE09MdwVw91UNZhlTtuO3QhvXs=,tag:S+thVHWAldyfP93+gVfKMw==,type:str]",
+							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:ZoUSOwB4baF0WUcrlSmGnL6eUe5kHJEwxVDeUWwX7ymhL1v2eSwo+zcXLduWAPCKidHeldsCdD7zKaC+KuPuTFHYNx0QBGKI/XekZKgX4ET2hb3Drzqn8OQGI+XcFT3ZOmamm25YosvtODOSafntQuZpTWfJiupgbBHriFVyWdyBO4JZt1NhkhPGPPDAcDhfw82JhsDsgAJEBXt5iSAERfGdxKEWtXfhO/GPlMCoGHyIYwdcfUzTuA==,iv:/j6hDXOCFou6LYZjvDab5g1nCskGVLzbnZQNLEKKY+w=,tag:+7rEeC9INmQ57zhTtjEFfg==,type:str]",
+							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:+wuz8z6EFPcSmn+o4vWWZmxpNehJyLto3sT52N5jkvoAfT6GJS+Q/XBPZQ==,iv:PgSGBRFWYrT/OogDyo9ahcJaek3xL8lUFRKU3KHA7mA=,tag:td2smVE683HF41zidtR9Vw==,type:str]",
+							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:lRNKjkeCOmBdInQhw1akX06dyNrhb+NoWNltudc=,iv:PH92W8lSeZY37W8Ml14QE2OvZF8vcADE5y4olRzhMX8=,tag:byanHu9zzMdOdDzVYsVm3A==,type:str]",
+							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:agxO+jE361vvVkXHhFhOO10N6lpVjHezr9F3X7Bvd1NA1iAezWbe/PAFn96xr4bZYJPNO6RD0GAOGg2lNVMONw==,iv:JWYYUeOYaxe0Ecce65u4gFjQa1xgBMdvC261ZkBUF8U=,tag:2i3Fwz22r1zzE990nrax8g==,type:str]",
+							"crowdsec_db_password": "ENC[AES256_GCM,data:tUDIDHtgB/PKXDVOaZ4=,iv:GFHxrLZCxm6Q7ENFqCw/DZrJQdzj4yIKNUiXzky/KYA=,tag:I7Dl50pAHMv9pfrZqC3qGA==,type:str]",
+							"crowdsec_enroll_key": "ENC[AES256_GCM,data:igygGwHqtvtfIHFRPhkN4If3NwAfMWD06A==,iv:o0XAMBrIo3qeYKV7bN3uVYIfO7GL+4g4gQolsIrVzcI=,tag:7e/7skXUwro3qW5DtIkjVQ==,type:str]",
+							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:0nxOpBXJA9PYotfaUEoz2c2Qr4sXodWQ80m4KD9Fq3U=,iv:UUHiNUZpTsoTjBESgFUn6/Ke0s4kKaqb6OqIbnxoP+4=,tag:38WMG3lzHzgyKBNLXGco2w==,type:str]",
+							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:McVHO9l6iBzWwK0UQxFQu64dJzkfBlrGBN4=,iv:oDjFz7Uc1GVXD6z6zrZCOgDR2KqXj9hfqzJzEFQ7Ewo=,tag:90IvwJPVHq9lt7tynLvdiA==,type:str]",
+							"dbaas_root_password": "ENC[AES256_GCM,data:zZ91IUcj+HQ1j1inde9FlCosv8/MllQwFzvYOw==,iv:Qp+9WFwoccGz92jHhvDv+3EqjL8klyX876wiMSR99oQ=,tag:T0dBmu29fSyMMHgzyk8jPA==,type:str]",
+							"grafana_admin_password": "ENC[AES256_GCM,data:42cYrRzp++fdk2ZK0BAJ6edJqwo=,iv:/X+uZ4qlmjnbFKfWNeDb4ud/4tOwDxySByWfzcVOpzk=,tag:HsvRcb1n6NoQJ+sAdjFEwA==,type:str]",
+							"grafana_db_password": "ENC[AES256_GCM,data:po2qqgvwLPBBajEeWJZJssUbxU1V,iv:65QRaGbxl5amnA++yObA5i9WjYYIMc2mkTOUcD8+4xo=,tag:cMKJTTK42fr5IDF8/Yswnw==,type:str]",
+							"haos_api_token": "ENC[AES256_GCM,data:25AnuyelF/4q1XLshwIUe10os6IuAYtQo4FDZwnFh8lGch398Zo4NtTqSzu1h06Fl4Y6UjQd579pcn4yn/WjdxALh+Xy1+n4JDsIVjkG+QneJUFIPg4L/ptcTS8octbTOuwdbHQxLDw0eQMURTSdgYO2QXiapQK03Ee8VE5HiwIhCPhLI86qsan0wCcZ64LR+0HIv4HDEwBN0HvIsFBc3dHjpRjzQn6SVtWwLJsxx/KUdawkT6oy,iv:aLqPbKJT99IJl3T+NjmPkKyxW3HTPW/f7NRw8Im//6I=,tag:FFh7jcatsickm1M3nG8IkA==,type:str]",
+							"headscale_acl": "ENC[AES256_GCM,data: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,iv:jDDBw21/JTNYPCFVPKB3iEkFCmyCsQHFL9Bc7MCYCXM=,tag:PHhZlgGpOpO512q7/Y/ZJQ==,type:str]",
+							"headscale_config": "ENC[AES256_GCM,data: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,iv:138nAvB/UAmT057JMBltiUwis4R8qEr6urDpUClE1e8=,tag:rc6X8Y0GW1gTWdRkv5xjOw==,type:str]",
+							"headscale_derp_map": "ENC[AES256_GCM,data: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,iv:GlPQHczX2DunwpG+Bex4w1Fzmh0ZLZgF5PSI9M2tjR8=,tag:9cLOmdaSVAKBVeYUCL17+Q==,type:str]",
+							"headscale_ui_api_key": "ENC[AES256_GCM,data:YUrs/8Yi+0YEVNF4O01ps+gZShJxQBHJGtQE8xQ1zbTeBwjDdh1HKgir1yzdvE58uWZ9DeXvTDNHewH9RVxFBA==,iv:S+CB1/2w7q4sehDzeDCjY7dJtbka3NZnZwDDjUXpujg=,tag:UrKU/t2TaWUGDM3z3hHgMg==,type:str]",
+							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:cX8BE0vSAwuq7RduGIFTZ2YSuIELRb8QByCGOc9jWycBfl5V9hVVent2ypstJkviOEG2jicBrIDzgRuxtwNMbw==,iv:KDdTLqfwD4XtT0k4Us+jZOr5kGJEJ/WDg7ZqrSNnKPk=,tag:37uKzELi4v54XaA7jLZoUA==,type:str]",
+							"homepage_credentials": "ENC[AES256_GCM,data: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,iv:VAN6SpHBgQfhoodq3KYih7Vn7EA/4mqZ3m1RFmguchc=,tag:fY/UEcBQi6NhAGqNXIPNCA==,type:str]",
+							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:WDjzI+8wpGrgGeCNoyf5HzpAK8cWbvnTMZICKHmYt7qIFR7tPgKBnvmchQ==,iv:FCokaiG5xpn7CZWjdTYivlgyeNJR6GVNCj2gjJH8vUg=,tag:5s1KyDMF3PKql33Gv5O1AQ==,type:str]",
+							"k8s_users": "ENC[AES256_GCM,data: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,iv:3b2XOCQz6dF4bO2Yh8qkWQSI0aCI2qPzdZa32d5M8H4=,tag:AH4nWriYciN4BqoaUAZDGA==,type:str]",
+							"mailserver_accounts": "ENC[AES256_GCM,data:7O76SkLTBlGZlmESk671qh/hzLPcuKOEY7i4FM6+gNB7iqaerqtvnhiaVpHdVeungqZ0oVDeXNMahzSl5MeoitJ+VIdfPA9EMEz6KdXbmYEuS27JCEJxvP9a5ATsa+X4TZMs9c4rDLqam3vAovscHHtRrQFsiMLSSS6aNnf7Il/zt/is7aZ6KFbNwsufJrceg4qpDpQnGjZ5XwKbZruYw9mEpTUfTtUq6W9kpbdnfQubvOcdhbT833e69z7DbsAUpzLcgzWn3xOpAHthAoW4oYKVMklDaI+xX0mqIZEO9cNN+KyrLIeMrPxpkRo8VH/GNXnCFeaICcoa4t+QWNWu28ceOHC+y+lZ7Okg1U95QjgHREZIQPerH9UpGhgcFjjYS4xoZbaoMDQDmYf9YYnCS0NrtM0tivWIW3Q7lO7hx8qtD22o+KIDbHJizeEjHuB0a1vsihW4zMjU68Jh+S1fmo/xeJs+BmBr/3AEKj0yGusIl2EDJUGbRaqcsOV5LhUKo9FOhScff4PGxjNETIxbf2hIHwP9k6+rIAs0FmRUZUvqIcRg6DwJrD5bPhTp4x5JWnj05KxKU6SGZCgqdvzxIKH12A2qbyJKLQUk+QjMFf7awxDXeRBzigWUTOXVFjS4zGt71Y9Pwg9gBxJ+fOHG41KNKMcrsxSaM/0cimCTDEHuv12alLhfEsx9tna8If/TUqyQ4Ga4M4bhzay2AtWpgT2R9qsyn62Qs9g0W6mDm1+JSwztHind21uPMschqBh3+P/B08OB6o4/MnhfhbS/lA35CMmXarBP8GNXrR4PfPMIa3mkDUFJ7LMiMv0pX1K6JOuMYmNg4LV22FVMYINZhA7qGNDT5BqlFSymjXAN+mtXbonzlZDgvl+jSU7tIFLcLqpScBbv2wRiPO7GjD74,iv:k7tAaJJSqY1ISiexMtfrqsf3x8wUMDuqczaR2wgfzGE=,tag:xL3XwFKWURjUhPpwiTqzjw==,type:str]",
+							"mailserver_aliases": "ENC[AES256_GCM,data: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,iv:/ubWPNRDhxI2Q5/ZEiOOTfpFyqZYtSgCUUVZSDvw2Vg=,tag:4zGhPBetWIrUnb5hS7HmaA==,type:str]",
+							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:k+VHkBMvA8YTXtBUcTzZNecDRYR9jG7D10S6vKCFehE=,tag:SotsHX8ceWBaC9I6stxSTA==,type:str]",
+							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:/zw9+gmiSlQXf0W/RwQ=,iv:GkaF6T7p3scIUVUWk9mYo69rwaXZ+ZJ7R5UrZD4VNLQ=,tag:iD9lsk8yuiKMsRHs3yh5Nw==,type:str]",
+							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:D2SnLPgkjxr3h+DIpKDGC4DP2Gve6g7Qk0M/6HhMqirSMPiLMzBSm/t4DCBrtSZVJZ8eJmfb+ipLoaes6GkHU3QcTUDxwYBUQmbdILGCXt2N4AHbwNQYJxVltNl0P9XIrxx9lEUOYDzD+G1sF9HeOXF5xX7M378+UlNatNRkouyDRqvzpqcW0cO8N4ESSRHCnBY=,iv:Sk/ed3BmhBvjRvF9YN65Ipnvan28WUUauq4ltrPf72U=,tag:p6U7MC7xC9xFJA/gYFOYlw==,type:str]",
+							"monitoring_idrac_password": "ENC[AES256_GCM,data:JgV0njLo,iv:yTMvU6w782dqCowmZX/V9o8n/DMpzhd91Tw7ZptxKQU=,tag:+z7oBnxSBqFV8cLsimwasA==,type:str]",
+							"pve_password": "ENC[AES256_GCM,data:AVqrAk9X2p310dMgIMZCu6wLmDhWHyCKpL6tlw==,iv:5OiuP9h0gIrPft6MnCFuz4aeQmXQ2TbqPYxHabpE9+U=,tag:Q1PYCWqG2lXKZIGNjEC97w==,type:str]",
+							"technitium_db_password": "ENC[AES256_GCM,data:UTd4j39aElbqurmSTw8=,iv:k9c1JXKspFG5ziwvZsuyRZuAf23L652BfDQwr+J04l0=,tag:RaRSO9hWgW7gfg1M8j9KDQ==,type:str]",
+							"technitium_password": "ENC[AES256_GCM,data:1uqTn7r6wRDqpTE3VjzJos2lbwA5X5Q=,iv:4xdfMZ8V/f1iQD9/KhzcQ9OtqSID3YVLq5u+X59JZFo=,tag:eOs42nJ3eoI+AorHF2y7Ww==,type:str]",
+							"technitium_username": "ENC[AES256_GCM,data:RfnZxjQ=,iv:8R1Xv1D4ecJurFm9cYGxPlYbeWajVM/i+GdQk5Ljeok=,tag:yT5UiBDTSojAHWKrPMchnQ==,type:str]",
+							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:78IQzymvGqAOQPSLtJhNaupv3Cf0Sg==,iv:m3BgxDQuneCPuDESf+01T5J/AHwQpuY6Xs7eZ37sOUs=,tag:uiN31GiMAiXg357KLsBsUQ==,type:str]",
+							"truenas_api_key": "ENC[AES256_GCM,data:8Y8LfhBeObwax4YjYxbyjtrH7WrgQv/CG9Ai9CUi0hIwSPz8H3J8zwdambPT4JSxwjuau6XPKfqnCgbqhtHRftp1,iv:B3v8YGRUjuw1lgyq3sIJRpe63+JWEwfx4wW6OBxbjPI=,tag:jxXQ2yrAXUQtsP7NgtJjJg==,type:str]",
+							"truenas_ssh_private_key": "ENC[AES256_GCM,data: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,iv:p+m5VWU2xRXQAbRRh0FT9CnN/PIy/Qrb6aftqkc9Z7g=,tag:sKxOYcSUnahb0rnzStsZ9A==,type:str]",
+							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:+kuVhsR+bADJ0GzCa4s1PUTMlic=,iv:x74/YgqL220he+xjQfRVrSfeBlpNBR7sVOn8Z6X9zDY=,tag:WlwmjVqjXcrHQgaWxHPnLA==,type:str]",
+							"webhook_handler_git_token": "ENC[AES256_GCM,data:1zKpQvtyVh48Q1b1IOkBSamcQ21WXlqY1mGoF/i/LJyzuMmJWJjujA==,iv:BnZa3pGKfUfPQktrszx/qaULnfH5ClW3llqjbueuJmA=,tag:0TpSwbq758iXpuxxD/q0Mw==,type:str]",
+							"webhook_handler_git_user": "ENC[AES256_GCM,data:yqcbcfYFgZ1jem+P,iv:wbKbvMiVf2OIgsdpRaI80pi/uZtzCTWHCnhxMkq5jXk=,tag:OoDKe1fIzKlJZTlLh3lzaw==,type:str]",
+							"wireguard_firewall_sh": "ENC[AES256_GCM,data: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,iv:NYR/65Vz2bt7Dj3c0zL4bnJ1xRRzrf4upmcNA5g02MQ=,tag:tjyw7bbA+PxtUjTaHJGD6Q==,type:str]",
+							"wireguard_wg_0_conf": "ENC[AES256_GCM,data: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,iv:pUeh4mSguq8seiUBQnYLBStg/P4NFJtM4IELd44dKPY=,tag:Hnz7MEm9v993qFLgXUQbzg==,type:str]",
+							"wireguard_wg_0_key": "ENC[AES256_GCM,data:ypMuHK0T/SIrzuPyMbX/BFlvpD+nXUGqx/FctQTA0fVgeu8GP31HRYZedQ0=,iv:0AYYzIXoHi0k/2Avq8OAjhN6ZrFA2bpZLzFpH71MfU0=,tag:9cJigoPclSHnxl3ka1er1w==,type:str]",
+							"xray_reality_clients": "ENC[AES256_GCM,data:24RwGjIOZLnDJgymEhgC9dmTqzAFx2fE53KwZNVNl0a2EalMpWNYtl6iJc3BD+A=,iv:TS51hitbaPEufFrp2bU9GWIXdO5Z9N+kapqmExyvVvs=,tag:/Bnu8EhJg/z/d7JWssld/w==,type:str]",
+							"xray_reality_private_key": "ENC[AES256_GCM,data:BNK88a+EHiyZ959mGbAJwc7raXz0TD4LIS5yP2Zxuc97ZujRevpdOB3e/Q==,iv:beLQXUKbniRRLx8OivUsedEXe6skCyIUjiL00fQgFYw=,tag:DGgNAQvOiBTIB0Iyuy8zYQ==,type:str]",
+							"xray_reality_short_ids": "ENC[AES256_GCM,data:TyuWPXeDtTK9hQ5hfmN0uQR2e0gjhSeQUnvigtEhpSN4HV8yAMRSz76gMIa8TYRwuZwTCutyScNSZE+cBiA/kGA=,iv:9ekPfdSi1tdOy/xWSQP9HIrSQd2cPAp//vtK2UJmKSs=,tag:kvnjEc1I0HPveluMuNMXyQ==,type:str]"
 						},
-						"data_json": "ENC[AES256_GCM,data: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,iv:Ki8grtML3Bxc9W+T1LbFqqebe3u7XTaqkQ+SA+1QusE=,tag:XEXhCkEVLvcS/2TBVADcpQ==,type:str]",
+						"data_json": "ENC[AES256_GCM,data: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,iv:GMtOnbbVyB1rNv7RvYb55Xz2qX4X4Qq22E3f3Sentdw=,tag:hwygm5HZyOYL1Z2n8IqNUQ==,type:str]",
 						"deletion_time": "",
-						"destroyed": "ENC[AES256_GCM,data:DqYGflk=,iv:NJU0jfVVWp9fTSigY0wHmtV2l8xvZvsEQdmRRctCkmw=,tag:9/BlxsLyY9hdvjX7bjNi4g==,type:bool]",
-						"id": "ENC[AES256_GCM,data:9l7oQopQGegx0zgX57r52zB9qK0=,iv:PLpw43CGn2vm+Z/ghlDxNsmq2/2YS4IYV5odXOeB52Y=,tag:FxIhbMaBH/vXz8Zx6+QQ8A==,type:str]",
-						"mount": "ENC[AES256_GCM,data:jQ+rJnlU,iv:Xes/VS7FFvhqSQBikxJM8AeiAgGwrR43tS3RaHg+7fw=,tag:ffUd0lcTt157irgKmNdcMA==,type:str]",
-						"name": "ENC[AES256_GCM,data:9bqGI5EBMDU=,iv:PlJpcPbYEyRh2njGpYwe1j0ALPMZ8koa9qgdPE4qNf8=,tag:3jslRAV4PGfDRdS/Wn3qeA==,type:str]",
+						"destroyed": "ENC[AES256_GCM,data:auLcwUk=,iv:F1nSpq3hqiIYrOu1OHR+NgLuK3/ZfJVd1u7ExEAPLD0=,tag:2amifxaH+VVdYfYDINTmSQ==,type:bool]",
+						"id": "ENC[AES256_GCM,data:sOvJImMCSmHP+rgUM98e3OyWcxA=,iv:3S7KJ6ixaCLbSQBckYS0+f0WBPgeQhWqx50oUT5YIGg=,tag:MoSFeBXnON4GwNuAxO7Mqg==,type:str]",
+						"mount": "ENC[AES256_GCM,data:fV0pAD5v,iv:yZZOcOsvAkboH7FlVitDmt2VWvIhV1EZc5G1q8IzWqk=,tag:wLHBkzpb54pplWUBsZVTBw==,type:str]",
+						"name": "ENC[AES256_GCM,data:dCmqk5exRnk=,iv:wMuaBsWOePA9IMWuHitOh+JCyrE5ysiuTCv4WP3CDmA=,tag:tQWdO7SUDDKhuhrXmF8eOg==,type:str]",
 						"namespace": null,
-						"path": "ENC[AES256_GCM,data:07DnjZ789azUG3evWUmYsTgBzGM=,iv:rRpvRwYeHweyt9IBCCHhaIA6P9HbKSkzezZwjgJbnVk=,tag:pVoV5lzRRPEtCWTEGOj4dQ==,type:str]",
-						"version": "ENC[AES256_GCM,data:NF4=,iv:z7wGfiI+MYj9thaBvX1d6rZZxOQPu3MlrXtJIR1/nL0=,tag:DhuiSTBKGM4lBq5Qzr9ePg==,type:float]"
+						"path": "ENC[AES256_GCM,data:IsLcM2uTCbYdlP38Wz3M/5V5H2M=,iv:C/QHlQqA0y5p/J3RJe+gkyusdQ0yuWjAiqPfirjmiFc=,tag:fCaRJMJ77Y9i0wWj0jiDwQ==,type:str]",
+						"version": "ENC[AES256_GCM,data:XZ0=,iv:YSIjEPmXIus63kEJrnmIG3jQ+BBp6C7Wg9VUm/y8qiM=,tag:PNruv+ZFN20esqJJMvCv0Q==,type:float]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:IXyJ75MnanY=,iv:8It1WqE8JWTR5Xt2dyoS/ejnD/8FLZ3v0+sdhtUyKZM=,tag:4BJ2IrCVpNbPddS2GfW1RA==,type:str]",
-								"value": "ENC[AES256_GCM,data:BbsTrA==,iv:PxzNlmfzAenqOU8Jut8pc7ag2BxQJNE0GRThsaGYXfs=,tag:nHcGY5G9zf3OxON0dSxKcQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:Ntv7iRke0AU=,iv:dJgCgyQLMWvzAOr7Yn7NCc/Elwt+u7aSWJa0dJoR044=,tag:m9Y7DQ7+i/uzpHDRLwNRDw==,type:str]",
+								"value": "ENC[AES256_GCM,data:ho17/w==,iv:WzofP2W037h9RES9MmcQohv2vRKqR9ZxI6nKMUeEGUg=,tag:BZSHL+HWiyDpaKf7cu6Ixw==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:1J7sJuU4a6E=,iv:2t53jlCHae6NXlu7haGXHgRdxF/9g2siH7nZAproZOM=,tag:RhIZdoZFyXyKYkFx5IaZtQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:n3wchiZ8XW6T,iv:YT1QRHxSsh1sC4jkNk0RpRen5OFclETp7hWNQLqkpXA=,tag:8Uj/woqV6BlI16Pj0ODE8g==,type:str]"
+								"type": "ENC[AES256_GCM,data:0/leZ3nwNFE=,iv:/kU3nKs1BU5kfL3vhoAEnMpull9DF+RciOR7z//qxqo=,tag:vZBSMjkpg9Y2g+VfSiF1oA==,type:str]",
+								"value": "ENC[AES256_GCM,data:Z04D2H43c5Dy,iv:DYW5GX2wQTMuxx6SO/jGVNLWMV9aSdG4cixh/ZtRyHQ=,tag:AK5+7NA873Y1SJeDUwBqcA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:nw==,iv:+dBUkkyLiRanaWlbqG7TO3hZk2yZP3+c+WJWFYvvIHs=,tag:8GTx9DfelnaEqbg04nqYNA==,type:float]"
+					"identity_schema_version": "ENC[AES256_GCM,data:cA==,iv:wopfD+YeytaGAet0ZSi3aw3l0GV0o/E+YXAgXT7dYHo=,tag:V1Jjvdt0vBVuxV/LhtCOgg==,type:float]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:GKo+Lw==,iv:35RmLkvx4CCdr84N4F4yMCFP9tCqDjCnSzY1Av6Sj9s=,tag:6yRv7PlQQhZ1I5cTNoZt0A==,type:str]",
-			"type": "ENC[AES256_GCM,data:eQcQgkobXrCyOXqHXBo6R8Ke,iv:MzOcUzD3JJRO/N2Elzi+WZ9QlYlDRnM99+QlHK3dUqE=,tag:hjZWfzzufm0mAHpNAEOFQw==,type:str]",
-			"name": "ENC[AES256_GCM,data:3oqJi0Eg0pE=,iv:Hs76XVElMQZ7dVqhOq9CchamcR8jC0MuIN1FwUC2wyA=,tag:rs40xA9zr3ss250GhFhFVw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:D0li35ONJx1MRnUXuVZjqXA9rDiLkd5vr4tAbvKQiS5yYZ0bCCwUk09GaJg5eoNwYA==,iv:DmSloUO1+KLzRUDXnm9nw54vtDPFPN0clyFOZaW/q5o=,tag:rPqioi1k4+eJr4kGUd6w1A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:IVtUOA==,iv:tcytAZqHJwiKg3SWGnltor//sUz9a1ak3sM1Ps3rlY8=,tag:hZFNOSjNoookJC8L60JHyA==,type:str]",
+			"type": "ENC[AES256_GCM,data:5eP9r3jHl8tP94/1Yopoi7HE,iv:EKGgCwfPeSOl7pKlS9qf/TRa0K8oe+hu8rP089gY/OQ=,tag:e4RQXBFjLom5MDC5icuS2Q==,type:str]",
+			"name": "ENC[AES256_GCM,data:u/k+fikX8hM=,iv:yeiDjhNvRwZ7WY1B5T7jQglcAlBrrV/gJrVwmT/IVZ4=,tag:0+salqvwWqLf7mUM1HcezQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:7o4QPsoxGh6QJ4TuADg/v7ux1BRnTKga3D7p31KneV3Xp0j9KlUo9XVIzUwT5Dmo7w==,iv:dd0ht0gePjRODSF8mZntp0gjAoxFBycBKZ7/DH8LrLI=,tag:ue6PPiKU+cYUPWhLKi28cA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Sg==,iv:kKMYOCxIXF69vQbSHsDcXegbldS6K2FA4J7JjOC8UhY=,tag:5bwety+WhogiIj/mJ2q57g==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:gw==,iv:5Q8XcJjkEPp6wC0+1A90DaP4OFtXLZQwSxLjM2tdSZ0=,tag:DMfsZSM8SMcBxfnJvAxUrg==,type:float]",
 					"attributes": {
-						"created_time": "ENC[AES256_GCM,data:gW9KIA1lBaHK9Y9OkhMX1JNipaSATCpACoTnjhOo,iv:Jg0TNUP9mKYBedYykLZpJ0s3tb6TSf1pKNfbpDiXB60=,tag:UCiXn9Cz3gSW0PEnDVC6qg==,type:str]",
+						"created_time": "ENC[AES256_GCM,data:OmRQe8r7JvJv9BcGRETNP5IFc7UL1G1lxeuQJEXx,iv:ZwGLdusEOEyGda0C7JRGvSlZqM2/sb/4HSxBMFxPncU=,tag:gSTeHq7/uhKNclWKR7BHlQ==,type:str]",
 						"custom_metadata": null,
 						"data": {
-							"alertmanager_account_password": "ENC[AES256_GCM,data:3oglSSx5mhfu1upT8mo6SkyajNY=,iv:fdrU+M8XH++iCtKLQjrrczB4NZXpS+UssV8pne3aQ1A=,tag:oHlgkTj9LBW76ZyU2qgSSQ==,type:str]",
-							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:4Z44aoHtlFv+VfLIxunXPlM2xvB5fJrmOFgtlyOb0v/bS4dVQunEpSJYKzJlcVgJBu3wERx0nPOADkBy6EBs2YGBNowGVZ3Qhn/hmGyc6Ci+,iv:KRyedtI62LEbnuKF140ky4hRWQci4g8pJsIJpkRXWhY=,tag:Qq/ep3yU93dmy8Nt1Ozm1Q==,type:str]",
-							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:1hFElNFvyrU8u7JLEcn+p+L49RsbUOPKmcYwq7fTf+HECN4mmrapJ3ng34mlr9t+8Mz4pHWUVYG5dZmU+LJk2dRd,iv:9wCNVBpoeugHL27LBlb+iF27cJMAKor7MISTcAY3MR0=,tag:K/J3j5Xz8vSRkzScQuT0rA==,type:str]",
-							"authentik_postgres_password": "ENC[AES256_GCM,data:B7HeEWVVtQ4LTTEk1HMGng==,iv:sewtzgEeKZ5qyR6hC9FtUFEd4yznW1IOUoUH7xNX0l0=,tag:5lWLeIP9eE1aGdBzxGLfOg==,type:str]",
-							"authentik_secret_key": "ENC[AES256_GCM,data:NlKj8isr8RZUR31DxfP8A1ug00/j9hU4uFb5f5XeJJKjmDEXH4Y4gCqeJDZorsNQiXTx,iv:y4hXMS5uAbsGg5XJZzP4+VlLDXEHSfaKa7NFV1dLImg=,tag:drS7j3VhhfY0a24FXj0N0w==,type:str]",
-							"cloudflare_api_key": "ENC[AES256_GCM,data:f+QjxcghPYXuuzRyin5mgVZt2nsuNsUCdf/MVDUWzsrLAK/mEQ==,iv:SnztsNns5wU6wzOKOFdKtXR4A9N4tmynkrHk2H80KMg=,tag:Gfw7lkdHm2AH5VT/yrMfqw==,type:str]",
-							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:3YeI7zwhwz1yABGUceJBislLW/6NUGx6QUq/P6Vh3X6x5JlS66/gRfoL+Rzw/tpwJoF/n28slQY/T1gAzBU+1K71yln9AIaTBO+3IGw/2CznCoVdHuolk7zYVTHgAq1RNmeuksPnncdhTMhbhzr91163Y4xYH50hkzZEuMjYQhNpGumtvOAJGqK6+EuICls6Q+4uArHfCRG7vyQerc64K4bUFiyurmtm/XnPdUEcpi4DR/voIIo3wA==,iv:DL1Tlbq9nQqacFNntji2ILZBVxnjCvffXxNQwUZTty4=,tag:e9FtNemDVuFzt864UnXXxg==,type:str]",
-							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:nJkyUJz3psc22nG7cgOwyC9Edc9PdPYQd5cwXyVqOnjdoPMOvJCWORKhZA==,iv:otdpnYi6AW3CepRuWLqSyqqi5Fm1GE0brfZ6pcX1zZs=,tag:8m6SspgSSLmQXVXzT7j8GA==,type:str]",
-							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:EepNrr6wdV1cBI6l0GGd34HqCv1jQUGeQqqOch0=,iv:T6C7hFWBSoo36rcDXn3snjl5zGbYPyhwoSOx1oVGqiU=,tag:IFfnoC/CsyzfGBkBQtVPUw==,type:str]",
-							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:8vLHMoN0kWZMqfpHIXJqFDDzaSkdnHeXsja3vJjLVZ9wvWcYzMHRxVlZNcLxHd4ViNC/y9eZ61t279iXCFtfnw==,iv:J6To0orvPDbQsocvQVEaXkPOJp1u3rLll8iAApxkaOk=,tag:80knXRnm9EAiAX8IDztk9Q==,type:str]",
-							"crowdsec_db_password": "ENC[AES256_GCM,data:SukRddFiVB1W700fMAo=,iv:XJBmVmsG16m6frS7ndK/B3BI8CsDgb6d4Sy7Aw3DmuY=,tag:pga+QXsYHxIb2AjMRqtaHg==,type:str]",
-							"crowdsec_enroll_key": "ENC[AES256_GCM,data:t+ossF4k12UTdQtCL00iykfxAsOcWZr8ug==,iv:w/ftkWyPNpOzO5McpQBxtPZj3m4YQJtHrdpoROLL2xg=,tag:rlIeYMYqyUyzR1G+5ljysw==,type:str]",
-							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:F7WsSWraIdjMbwOm3+n2VdNkTgYmpH1ojIuiFfCUAr0=,iv:7XMiNGvzfXGj4BnwyHjeWu3siHD54jYNzvGMfhvNP/g=,tag:fT0ZoXhvFRznegVxZIpcfg==,type:str]",
-							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:O0fzBi0/MyPkIa3atSvOoEc8wkJjSDHpsrc=,iv:lfGlNYnIlU3Hj6P4ioCge45Q7hYR5DYGbPicY1L/rn0=,tag:FuCgdht96SygmBk9Ga8VXw==,type:str]",
-							"dbaas_root_password": "ENC[AES256_GCM,data:3Dm2Blruhdq0waCByePXw9m694hfio50TwDbDA==,iv:gymFosLr0j533aMt4ZatIeActiuC00RQHBA1+YfqjNk=,tag:ohv+zJ9gKlUGg5rc4LtOGQ==,type:str]",
-							"grafana_admin_password": "ENC[AES256_GCM,data:jDu4DzWBvHPj+R4bnMJgZbLsfzA=,iv:3TRiYaVt7Q7LqmesIG1alRnuJpSg+6WH/S5rHmFNsDU=,tag:HexjZ2FFv2kVFOW+gUKeRA==,type:str]",
-							"grafana_db_password": "ENC[AES256_GCM,data:U2eHPeaSsmEMwr0vWKvfEqN9VY3J,iv:/GVEV7NgalSGMe7Vh4PWEgPdEnlw0SwXnRmjwcKwqUI=,tag:eT6st6cYrnPz4WB8xhQvuA==,type:str]",
-							"haos_api_token": "ENC[AES256_GCM,data:Kf25ZPGzChMKdWX9KO/PAi7YIiFB5svpXF2eHzvFe1h6cUr5s7KC68pZprjwCfB06s5iujcnjb1UYjjYJlkn89esf1mFr/WpSX722CYIs1iYhziX+MxppAFjRNVikJXd7H6Ctr9taxfpYa/8RLhBrlH89zELRUviDKtIuCL/Kyfgt+iByCyTScLKgXbl0vQR/9Iocrcigqzi+0mRePxHCqHeUgIVFFRT4YVwstsU20iowucME0rn,iv:CA9TXHDq6BInHBWY4nXVw6fdlEJOy/iryjh7s/MTXFA=,tag:p9cqLIY4CbiIPra2YFPV5g==,type:str]",
-							"headscale_acl": "ENC[AES256_GCM,data:rzqKKtIvl1r0ZEMPri9cq4jRoFhHTezq56yGqzj6brvEOarZGThzJ4iW5jAUq7xWIIU6fZnYabpZ8OjEE9Shs1fIfA3fMYBeoaCcdH3ENwtLGjd9kQ5y0e4PyaoEztBjS4DhhHMeK5yHMU2EJbDPih1NBOToOnfbiWSS+4FDBXcCAvPFKGl9qhYBm1tyu66HOkz8Rh3dnZWz+Qgr8y06cpf5f8Zw+HJltYqtZWy04xw4Sn7dovxTgiXMBe+aXtf0XNjw9fOIG7SebBkCq3n8ZaWCoLnDCZHOGBzFwRkcOelFiJ6wnyyARRYNU1SHJbPsRYJdTyf/V8YJfH1XH1TSlVniHIR+tV8xp+sCPMFnQk8qmJSKQTYJ7HSBYJb+tLoPkVpw0PauUnp7opGCFeFylSjeWWFXW0l2SbBJmK8py+MnVaGwbSN13fOfGq/yhKTa5SWkXUwcx5EmeuhTJSt17LFrb19ql7bIF2bB9LYALgb8SbqM5XoFgK7h3L8B4lS4tdaoDiAYPEDVl6dfcacXW1GEDptmMGK+xX+qMSEoeOc3h4hzOnOO2Zkxg6fv2fi/m0dT++sy1IVjvrM9I7c6K7JWaQ4id0tpp1v3pUZ4dr+xVmTIulTKgQh4XdaT1r1q6dYJ3zx+FksrK0G5jUURmIQvuU26tvHLktnzujG/9LKbp2OcjtjzFs+bS5mbNXKQBNRETJ9eVXoQRqM8b03I3vEsX49E1xJ6aWfnflDYnINEmGBxft6E/sCqL7nQsD7iYH9GplPvUiOUOGyH3lGpHU+ieDK3WY+V+dzkbmJtbEikWb4+YkPkXeMJ/1Q8ltIXsrZ7W4X3zgXXiJI6lwLaIoRcyZT6TpgbxijeCyCbKlmDRNuh8xPB+6zOt59KXvMW0O66Kjmfb5QbKW1e7QC3lMH7TSQA1AJOZvZuKbe/iekmVaNX9jej5WfedrDfqkuYvV25jS/gw3RlQ6ERCn3oIwtbVBn56fFsJrrfHZGkatsws57xSdMAGqeFYm42DxN5ur7XGKNGMwbdGyw3auFxraIiaZEJ6Z3HGV+8HBRJkj6m5f2quhsjr23vBsHoWiicwmnnaVn/fzQifcfVESQ5UBwo7YaVjHSsxOLnzpoDsD0v3bkNvMw9Gz72WtIUYjhZqn8T7/rW+3EQ6fQ5n1UxsoRIl85V/DJrTtDkgQ7vBUzmkPgtvZGz/iC4TY5rjlYu8ql95d1f3IfUuOwgllv9cZNzq8VCmSe1bjz+BhtJiadKKIfzFhQRfw8pJXAlmtVHFj8qWHqmw9wdRaRyhje0IfcMvi5GwFCHllT8Mb8flwpsEKgpeDPW3x/HnMJgAWg7bhdD5Kvij4N4poQiY3/mhlHicrvXaPXu5d/xuuZekWcMIvRtG9gyxEO2u2dYWZqxVTsCEOyE7oeO9BW9+iVciqtylUFFq6LWJL41/Q7a8PaOGHJBp2VrHaiEDjNmedx+zCVb1sPKrtteMlYHvYcarDpWbKIPQsavUCiAn37Tb5ctfZ8AF1XcDolkDSAuHcBkvI56CUZevoOhrERaL0UMEshKTn91B3cPdTC6/e7lhT41XC5FRQ56IRQcaigBu5cFqKz/vW0tXWy+1IxkuCAnYFZmQtdEE3Y+9HIVV7YIh1glt8lcktTcR29m5CKgpIjNPLYVKtn4ZQphC0E851neJKioTrqlJGnULbqn3CYXmbxoYLvIVyvDeMzp2CF2ed8LLvwBI7LWkPPoBLC5eVYzBXLEw2YukpZKk9wPvSKXoKimaOu+rnVRaeWyj2BEp1zrDr46jFb/kByrNsxPxJhGr08YdbTMDZWSFop13zboJQakj0/0rNYiQRvi/rX2l4dM1xEw0FJhfTEzebjJCV32QL4e/pMKZBukwJkb1+FQzvbeN+ltOTm1vULcpS1xCyiQx1BtZLUd1lXEth85zVF6YzdjEkgqJB8DAopzW+pyd/XQ9PukQA04/9A+zanWxP0DjtN+iRJL2itRjVgjrblrsw4R0L+maslwldv2q8KlalcftYkqujKpI8iM0UE7i3zncBzuvoyVsij1j7zXAxfZvZ69PUbx+dRKWEZGP3K+kk3HhFEddh6nOS3dlKTTfk6rMVIyfwlwFJc8viMgHRoZ2ZXaD/bPpxUDJG8iGv9lK3/VRSw8GkhdOUOgrbpWZ4/oGnDiOsg2SdoZB8+93fmnpMK6XgIbBKQlyRpUA3dtUDwwlfYsTrKPzJW+ubLC/YOMwbXmDpTjZUDvqG7blViIHwiZv+h6rJCusLJqNK0iTFoLMq8f5an1093737YUYEK3T+1chhf5QAfDtZznDoNQeotFXWGqK2OU9kTzlm8X9gL2jigWmHfwI4dMX+3K/c1yuZYqGPn9h3qheEjKdq7ELisCZMcJc0MBHwQuC748oE4L7Y22xRmIujwbhG5wUcJcFHyBDkyO+LhX/R+XY1SqYYe4lTPm6Z4rqCBD9UZATCE6i35GtmF2tvQ+3LjpPxUsKYtxrwHdXKT1CWfkQmodcLeCd/AtBK/xgP5eLPUZQvl5ktgZTmNJrmPtfaTca7Cc1GY/X3mPF+ODnLgS29WiuMkzQrBWCSGjoOEiyQfnuLbSv/7qSJ0aoxsTyvcPTCCPcNAYYzOQx2U6Q2wr+KTkxB/bkABWwsvX0GxaXqT3TLHpLKhXMmfJZooNzMuWShs617dsgUnXfxCNSpKCV5WNYG/0F5+FHqNXtOJk3jF/dnPWZGQlnr9P2r24E6Wa5NXJjEzpxBYix3hho2MZhqmkGr+AEuoZhPd30BwtpZf/plrj+m8IpHDsLH9Jti1f43GO5gcuj3fuF981hCxWxwWnDU6rWSPpuOzQ2Hm1NNp8AD7+DMviS9pQQlJLkjUEG4sKO+nkPrtcVpE6OoMP3p7+Y1uIfIl+Ls8bojTX+BkWMwg9RjjKpvzZMvqgSzsD0u9+FbTp8kvlIKv8PzQQOOPO4ycZB8/Vl0pGAjI8/q3maEZvD150vCq/prcvbx8eMy3mHsIjfRTNnjO0mHIhgy4TNPesr+yl2UygJBtfNBrkkxRzC4AEza3emmrklgJX8JnqS+nWfGV9xoS6BBgV6nB/IDsUYWQ7FZUPePJgMye4kPI7qfRDUSdQKswD9vMq02mD+mOC5qn/rT6brb9Fufi+t7gwdA0Yh6Eag8BhjW2LunzCXGX0lWS762oNF0iYaIPOkCfoyIy/zEgZg/Du6MKbOHHBPWXSiKhTa2KkOIEKbzNAzXx1UdW8ZlEazChuB2j57GjoGKswnM2jU9VPh9b5adbN/DaVgqlty7f9znH7KZrNGNv859rnzu9Qj74/FoWbPzhvuxOg5ZfwHWobeoWWC9Bgv60WlKQVy0JGAWc0ZFtZzkEejDbn9TV6l0m3wWTh/2JFtpVHYhkRTVZZzoENxee69rqFlA8GH6HSkJIzo19qS+qv9Mze6h+oAyZwlLDdzmE4idp0WMiA6VYjgi9TvSpq2ssrYt9kcSOSc6bUt0ZKtP2wCzj3ADMTkbo2cYUnTf4fjbuuBv6S5EynH7SF7sMAeRpTOgoBRhVUfEANu1EUBdU7IMTBr7kpb0ZX7ltMP/IYQTC7wU6+0wFGg2lWGLX0AO0Ts2dUcyHf1z54m3IbYxmH+gSdQP3xmBD3l2pYgcITPmW8kFRCV7fsDeMux16IcIbmjjjqbzvMQ3mntIOjtL5hC1Xy28ps2iMqapMfMGPUFJ8XUzwbdu8+B5KtXi6+CzFqsrKzkywtB6vTF3afj1q+42O3ypj0BdwNsFlXJY/f2vAua/Sa3Ur9+5TCBduslu7mCv7tgRob4VyJ9w07ApA7NpvzEeaXaT7C8JvYjRHQYU6YaQCtxNn8kPmA846M+JYI56Hb7+gyNaXnhKSIZ6+PyRp7GHxI3Jz+tB6hn/nhOZEfDT9VnN9w/KtLA+GOR/B1ysv2HpoY7KCr88NPFSVHsaVhXGA4mwsQnF4ITAE4ActkayPJgtUnPe4IIxm8KigZ5vZuHnanoNj8IVcDZO0WmpQiBDOuSFn2zEizJpTwRBcJQEqdF5qzhLffKE1NmGtLM1y5a/seV72Ao1Irprycxpra/PjEbmyUgtjZx4jmgx36twnfWIpiEG9AnXig/w5DUDVm0ym3FtiZzOCjVOmYeZC/FTT6Wv6DQsDLLw47NtC89Pq3hiXcF4gdFlV5uecjaW8eLb6xTslbhunDe/2Y9PHNwO/wkNI9LlMPSVaqnT6RcLpTnEaVpqZf6s4Mv8VPl/FautXUck7f2E5WSdYQr/vSNUsCNVq4vGlWBfHOs1W271sLDjb0D2fpJImM+qTznsqxjVj84XwMWNLIz2yDuPatmV6sOZm5XcbdTKfjjCaD2HmMOgfcJfAMP0ByhU/IMgJLOSVNVgZ5SAsc1ShE6MTUVQaGkP2+iiAaoiy3rckfBaJ4feC7M9o/xHdUQcdXUhB1a0BjdD/VHz9vxZDRxAVBRIZJV8oI/SuDer2pN1e8yviiqDP+qhl8WI+5n1xWbT7scjHw/21VwCYz1g4BZR0H5j9L6ywsIxWl+Q/2u4HA0SPeSs4j7t4FFHYgXrPgMby3BmsopMTIKy1A6Ypfxi5GGK7hRvZ8s/7aTqNmBquhfpYC5tr2CTxs5ZAlTBt/wRK1SGRb9WAJ6GmtjuEwx4YYIBFh98Rn4B7qe3Sje5sIXH1jQqkvcPglAMhD4ij7sl7QK+CJeXOPm2kHDk+g+c/vKZY10+fDIyu40xern3zLLh9sec+cTBNL514/Sy9WaZxDcEssvGtJoichWrkXaVV9N09hJf07L33kmA8LTIMPI97fhLxXA/R3ux+rBfOxLxZde1IlZV3Lwp2Snc6zWCs3cQOTThM2Mw40d916Bl8XCGD8KmmoEWmv,iv:eQG+X7+y0b0FLKfiJoDZvgJOXV3rDmsp9Olreq42bC0=,tag:l4t88OYnEhWLQo3D6JK9Xw==,type:str]",
-							"headscale_config": "ENC[AES256_GCM,data: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,iv:+7j/mRtUDMXtzFWNbABHjNGp0p87d0vlLKdFRVtGBL8=,tag:dnJ6IIwzlwkJK7DMbFnU9w==,type:str]",
-							"headscale_derp_map": "ENC[AES256_GCM,data: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,iv:voPg312XjAPGlVTdNBm1VW6h6UPoDN/9lWFjk/zHknU=,tag:pROWoYrBXvpzLmrtBdTGlQ==,type:str]",
-							"headscale_ui_api_key": "ENC[AES256_GCM,data:xPV/VD1APSMJFnpZIKTZ3nM7xifSU/6YtXONKF3IKQuazDr2nLMt/XcApi1GH3Era/Y18KYnMR2V9mgO2MdlLQ==,iv:mACwiXOhCt8VVFnbsG/7l7vHqfpCctbIo94SeOFPZYI=,tag:OWLuQa2kecOiMr9SSWjlmA==,type:str]",
-							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:H9gKbPY4fEkqoKkJttLnnErpOPFHUB1vtLesxQD8yNpngjDKKy4FqgSp5e/eQdmnDe7TS4vePovWuMg8Wqxk5g==,iv:vcYmycxtJYKUiOqEEHSSmu6cGI9kdY4raCQ8sdh7BuA=,tag:3mjKU+4Ih++MZDGxy0glQw==,type:str]",
-							"homepage_credentials": "ENC[AES256_GCM,data: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,iv:oNNitrLZdu1NFeDppwLL9rF5FxRZI+KocVMCxVsg8Zw=,tag:ApsUBTrkw23Wzhh6DcdM9w==,type:str]",
-							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:p+HJfsCocG6SYg95tVxm4ceyz/H/yTxEIT43kWDrA6StCIV6hBFg9/AK7w==,iv:2CZxzKHD9z55nlTy9qaE2Krn8nBs/wxx07pckS9HfQE=,tag:/vmP5wJWT2f6ZEzSG3n3Ww==,type:str]",
-							"k8s_users": "ENC[AES256_GCM,data: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,iv:o90mPSYOglQalrgfox3iMnNLViJdWRhpP6ZvNqUq2Vg=,tag:bWIMSuemwA6heLCLOUq10Q==,type:str]",
-							"mailserver_accounts": "ENC[AES256_GCM,data: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,iv:2Azc7MUqqcFH8l2DV8+5Tvn+35dQphWUVtVYYqsdcv4=,tag:j3XfZIhURIEu2Iu6HIrZwQ==,type:str]",
-							"mailserver_aliases": "ENC[AES256_GCM,data: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,iv:CNCU0g9mq2wLyP7FRON/a3aWY9p8qFzx3tuXQLpp3VM=,tag:gUe6H2iI1yLUUuOiuty6GQ==,type:str]",
-							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:nFoAvZ9AIBRmcdvc0o6xBNL5gABuzkm5rZEUshWMM5c=,tag:tncOBBPR/SjXSLb3aUHZTQ==,type:str]",
-							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:ojCFHL08bIKNm6OfoSQ=,iv:dkzEeQTfjV3XmNV5DuQi6Jw0JGfq5aA61hx3feBfses=,tag:zGLAzn/8RhlwTkhif9PNiw==,type:str]",
-							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:ockmyzs4fYiewSnHKg+Pwrvn5xR9KUrMTy5rtMVJr6IbktpMMDxBabkaNhdGEKKTT5BLpxygYeSpsEJHWJ+cesnN32iAntMD1FzsPfscEgJ/IGFVxai+GG8RceahPiBv7zIppjvWiENwlIsKR0eQUseK1kfOkowdWp33ukfRxS7cOxHnQie6YXJIs7IvIL5986w=,iv:3KVIoXrtiFqW+24qpUiu86oHAu3tRMTv/bZV1MRUTj0=,tag:ZWXL8IANiyo+qBw42Vqglg==,type:str]",
-							"monitoring_idrac_password": "ENC[AES256_GCM,data:kxyW+v3k,iv:6lAzZYOeQz3WATAxjnViUe/AQTojVqLdVIGB0TUud9A=,tag:MVSOY0T81jKQ/SkRs9GINA==,type:str]",
-							"pve_password": "ENC[AES256_GCM,data:ClHVWqe5JCsZbw2rDjgRMqf9TovwZZM0mzzkYQ==,iv:6UnDguiGJTlqw4VYxWPSBUOuHJFZ4RZF/u5l/CEbF7I=,tag:fyM/Th9vQEDtxmzO1NesgA==,type:str]",
-							"technitium_db_password": "ENC[AES256_GCM,data:xWmYjqLY226CVbSlxLY=,iv:8X9P3bc6yqpEAhXyWowuf14gvMbC7Qhm8SAARuREK1I=,tag:FIn6M82sFPqdX845jQZVXQ==,type:str]",
-							"technitium_password": "ENC[AES256_GCM,data:0iIjam5KlEn6AGIZD2l4U0y9/dnbjNE=,iv:FXtvje+NmMZwl7KLRKevJ7YxJAkQJFPNxtpoJHR1JXs=,tag:aSNaHNg615IxNpFQYFrJOQ==,type:str]",
-							"technitium_username": "ENC[AES256_GCM,data:gTXJ3XY=,iv:uG5t/l6BpHqPnlQCq3Di+I6D301UZ/HDJSZKV7XpGaM=,tag:CPb+XldUejl6Sn+aQ+1YPA==,type:str]",
-							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:758IjA79tTLl+y0S1vZx/1IsMh9oXA==,iv:4CaQaX5Qw82patkvMxT7lvnWW5cNGEcJCEE8mE3MKqk=,tag:cxVo4dqBJ+ydV9KZkhkDjw==,type:str]",
-							"truenas_api_key": "ENC[AES256_GCM,data:pUmjVv+VtTmMKhfuUziqiH6qNCNQrhjts7308yU2ZoivRTZuveSXjejCj3LJecH2e3JimyCMISQolv/QnZNnd5Cb,iv:aFIYl4lIDIH8IEW8b/Vgi0hXOXUboYtxb129l+Ka1+E=,tag:m6qYJNwFVRVfPVO0BVYPaw==,type:str]",
-							"truenas_ssh_private_key": "ENC[AES256_GCM,data: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,iv:TQ0FmrOAR2XJF0NZfwgNWfT4JlRV0L//oG7Kq91uqXE=,tag:3cvx9lGQooCXL/lGHgBBnA==,type:str]",
-							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:XhCVx2XamXUyVLDxzF6C2MteiPE=,iv:GzmPEQmP5YpdMRGJO2UvpGc9MLc/FflC5JCpokXFdng=,tag:9j6LfxkZgY2RmX+JT9KyHg==,type:str]",
-							"webhook_handler_git_token": "ENC[AES256_GCM,data:M7xiUG9gtNPgerK1014guOB7tab+993gBFtDwi6SO/McuumF9pAS+A==,iv:G7wkadF9+lALPoefdzNBqiSGjTz3koTuszvAxPC3PZg=,tag:biIEpPewgAG7pSK+m9Yayw==,type:str]",
-							"webhook_handler_git_user": "ENC[AES256_GCM,data:KW3KM+5QAOz6IvFk,iv:iCZ9/eK+29+UMBcg4ozL/P3sOjnnr4HTHrUZ3uVY2zE=,tag:e3ESU4whUfk90avBlM0BfQ==,type:str]",
-							"wireguard_firewall_sh": "ENC[AES256_GCM,data:IL1dlU9VTwxhTgrRoUV4OOrnIB03FzzpGtjGm72SmxtB9HXTPJoVzDvcj1W883bmI6GmmHLreiB/4R9dsXIX8UiXvitE+bBg10S9lT5NBZyvFgFhyAH04ldrhtzU9Fnll/2XoNxZfAHKOAx/+p+bPPF89REF/RZvO1OBKbyb711Y+a9nZj14npCaNldGtUMU1ka5Q6oC0LJX2gZnuAd8K8AV/UuXLMFr7xFOx88vJsAYyjRSQVrosEd2E2s7/Py3y3LY73KoooNM4UqQNaSPNP8CBKnEMyAck7q4FIHTyudo6D/ClGYOlSE0RBVxigB7vK0BTH8lrTpDVbbudf+QqWvrF9Wa8gkSeF3q9Sy9WJRnqM/YXGUjUiOV7OKWeB+DgSPQhF4VeBuypp5fOZpvutw8lPcCacGPwubVEltswZPKJQRfotqJn0rUWpnOv8GcpJyyDsLVEBiPEcDEhNWwATCYlsXLhtysUuhqI54mePgS5sqjE9oz0nMKK0chIlw06QhbiwBs8v6Ld0AutK02JqcheKGe4OCo1avrKw==,iv:AZ3UZr3UheX2cvNbkGVMsP3AO+yE7UO3bLqJfzC2pGM=,tag:hmenD2dEaDNeBSLLEFKfvw==,type:str]",
-							"wireguard_wg_0_conf": "ENC[AES256_GCM,data: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,iv:Fqrw2thywCm91jPUTAGusH/EDHNMcQWdXQf8JktlmPQ=,tag:/XM3aYT7KpWiBt66uc6xLg==,type:str]",
-							"wireguard_wg_0_key": "ENC[AES256_GCM,data:z8je83/la32vT97dL9HF3e/fYhOQk/EIHPpoBQp+7jxFtWN+rrCSiI91TXs=,iv:9OXulEopRjqJ/qqtAYNKaTQXDcJ1RRXPDBrygV5WQvI=,tag:LseZyd0YXdyJA4rx1MVyMQ==,type:str]",
-							"xray_reality_clients": "ENC[AES256_GCM,data:eykvDonqT1mLqPxXhDQ95VghQtjFw40InXibVHuFk+HiYrxA9nmBRI92zZ92xyg=,iv:5BJTVL35yBIABp6ZjM+Izx4Xmt0jkIF7yJBD5944vwM=,tag:piMLfZXg/1LbnKjZTTapdg==,type:str]",
-							"xray_reality_private_key": "ENC[AES256_GCM,data:5W9lEcz5YeNgJKYxsuuBI3emT9jq0g0gPnaqnZlX+1/kYY7MMnSLMv8uyA==,iv:Su6XPyuU9fovAMSnvRstO6RzbsbzTC+7nNEGXu2GZig=,tag:Ky5F7SAeYI0MoG8jWzMKUw==,type:str]",
-							"xray_reality_short_ids": "ENC[AES256_GCM,data:vEutr+mU1S1jwAnFMMrI40QyB1egqkWRfNfc4X9o+VeExDgfeEXCKDgNaaPBCbePimwDW5p8qKS2NzT0t2XRXxI=,iv:bLK6/PJW/yc2Qkbbe4UBglISpvCIeigdGoeinaRKWf0=,tag:bB0ePhQMwchcw7oZPjmwAQ==,type:str]"
+							"alertmanager_account_password": "ENC[AES256_GCM,data:AgnRhN7aZ+a4j429+RJ4qeYJLVo=,iv:a0/77xUQ4S+slyIOCiNlXbJFEh5HEPiIV5flb47N5po=,tag:HFYo957pEM1HGR5eBxzRRQ==,type:str]",
+							"alertmanager_slack_api_url": "ENC[AES256_GCM,data:dT/JBwhYgjF1iGTXvL2u65XMj0Bysc7hfN7PeUCL+HTHA7u107Qxv6nA3kTpUJE2zS8jitMVdXeSnlzShaap5CKsUtRxSQKDjh9L97ujp3Ap,iv:dgGU21m/2C/BccGGZKYjh/jwjFBOxvptYaidSppJeFc=,tag:UcGNDk68FTC9oZNT9104eg==,type:str]",
+							"auth_fallback_htpasswd": "ENC[AES256_GCM,data:O84TOPrlMVcFuDq8vdDCSY0aJummGCOq7l8sxeiH7pw745IjCtNfLmaK5fMES3igW2oXtZoEHkwmex1YokCSQbvM,iv:tTOUPhqJhGL/f6pMRZE0cWo8e3WP2U4vO0vbVl1YzZk=,tag:5wLjhL2T3VOBLTHx6hodTQ==,type:str]",
+							"authentik_postgres_password": "ENC[AES256_GCM,data:Wh3UN4ogTH0eIq9L0vKn2Q==,iv:PUCmlAn6yp/ZwMeK/kDoQztDpNpideykRV/U2qKv4aQ=,tag:B2qpafvXsF7tCPGa8QeTLw==,type:str]",
+							"authentik_secret_key": "ENC[AES256_GCM,data:+0mpaJioMKJfcKzf3+nZA4HtF9N7sdrBKo/jsGFQ6C+EQZFMljdIfH4LQ3l8GXPRahpV,iv:k4DKPd4MpOFiXG7dsZ9yfydCmqTgY5mDK42UTP4zAHk=,tag:SiRx7OY7iIaOL4jk8ZTkng==,type:str]",
+							"cloudflare_api_key": "ENC[AES256_GCM,data:9PZTh99bV30iYlNaFeXJ7DPq3VXckvwBEs4/7cRVB8KWEILjKw==,iv:x/k46NAWZO0Czv5wIIDZi/3cAeFKgLfX+7+q4KE2gb0=,tag:8FzqbQqlvt+8YRSK7KUNbw==,type:str]",
+							"cloudflare_tunnel_token": "ENC[AES256_GCM,data:bq2ZpDzfwVdr7qDuRTNFDiPtRVpFCINZAJ0yYSlnqkbNT0/aCeYK35EUyfF4Qt+mlrMeRhHgDtjNlVhPJj141XgZ4VT4pLveEZ/WrZwqUNlPPvGmCdF9Q5K5DU/U44K4vRcMub9HGjn+fsAKBihlzDLAnaum+wnYPajzhY/YIe/NVbVMKzRoLi8Ov0Y73fXKJreAKFcS5H4XLA1HTRDpp3WNrmAnuRf/BldPQ2+ZcO1kTpwZHMMhIA==,iv:7jDTD0nku98BMPVS1Djos1FEgV+BmLeIH2iwaa10Gic=,tag:dPazHtNOJ5m8qd1YoiXJMQ==,type:str]",
+							"crowdsec_dash_api_key": "ENC[AES256_GCM,data:Jdisg8bbC4wk7JGQ0YoNi9LYfM7mfYUm/z2C0zBF08oNSIOBNxxH+qRiKw==,iv:RR7bFJ3KnQqIsM7DaChC2KuCg5R7MPePfbpWioJo4Z0=,tag:XEZCx3YZkNOZ+qph9oqMOQ==,type:str]",
+							"crowdsec_dash_machine_id": "ENC[AES256_GCM,data:cVp4gab6bf8LP+PFwGReST1w8pRigoVdPJ5D2fQ=,iv:Blxi+uFLiYLX/O0P6vRTVAJEZ/iqGw4+DYfUCST74/8=,tag:ex8+3yQIIzp7VgrpE0pMUA==,type:str]",
+							"crowdsec_dash_machine_password": "ENC[AES256_GCM,data:nIoDWIyoafXpqY9QoGfOj6WyEFw/Zc6WLDIYy/8PHs93G/5I4NMYS9gE0mQ9T/Y4CXZ/4jZDhPlBCyNWe/5xtA==,iv:BA8iis4kW0zfRUQ5BBBp+QXSEpFcqC8FEj/vbOlLLOw=,tag:hQ2/5pEoM/VbJuwl0Ptozg==,type:str]",
+							"crowdsec_db_password": "ENC[AES256_GCM,data:M5Nk+1B2Pw9exJrErIY=,iv:/WTAULTuGHCdx0Mbejp3/sHqeK7ouv0Y/XbdcLAHegw=,tag:Zk0nPRJ8hXkYaRLbeZFLkA==,type:str]",
+							"crowdsec_enroll_key": "ENC[AES256_GCM,data:65aEAf4AmehF7U/IrT5WMuYfCNOhC306gQ==,iv:ELG00MYRJdz78FNR5JxkwVsG+kNClF2e4doaZqWnyi8=,tag:XpCqDiERyzB7L3Jp7vqSNQ==,type:str]",
+							"dbaas_pgadmin_password": "ENC[AES256_GCM,data:UJB72e3W+kr3FbMyAJotuXJM7kwNOxGeHRDr2OhVLsY=,iv:q5lA0mrOXi7EOykLhNnpyJHm9PnZWw6I/UYVf7KIGjw=,tag:v6ZSRhfjWqnAn7X3CGhhuQ==,type:str]",
+							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:+PzLxR8oIywwLhQnLfflV8zrvNb10Vif+yk=,iv:Xdnzbyqbb0Kd0Q3eoPK8VfPTQjeNqnFpHia2flo8Tag=,tag:a1dCzHpDL2yAYlenmMg0Bw==,type:str]",
+							"dbaas_root_password": "ENC[AES256_GCM,data:Tvuc7/P+rcq2AZbinqwBq2I1git6tJsnG1SJnw==,iv:wETB+ictsLh3l4jJG0VP7xGVMGtxGOPNYYaLtdqYuzI=,tag:5s5NTrr/ak7bl8nyv4OmlA==,type:str]",
+							"grafana_admin_password": "ENC[AES256_GCM,data:AHVnl8ZUfzEsgSFmKK/6BxyUZBE=,iv:xcFP62NmGZjkzjwOQbKjM4WEuE+XOxJSekiLlwh0fn0=,tag:xffsn3mzD0EHHLHW4vDt6A==,type:str]",
+							"grafana_db_password": "ENC[AES256_GCM,data:xJpfzAdE+cTqkbwTZMYaYXPsXfus,iv:S2Wfyenxe9vhRlfwb2aRuFCQObp0TsJM5NnwDJEvOV8=,tag:V+OZyHX2N3rVwfFozZKUcg==,type:str]",
+							"haos_api_token": "ENC[AES256_GCM,data:XFa8dbqokvOuBJ3x9XR76cH/DwkDXVm90HwQPkoqoWmWZLLhjQZ1DZ46mELAM4q06ho9BU6vnpQMxtcuktaUqF4EwzmEBSiA0bGZ+hh+wyx/n9+O8lO9Tvn75wSB18dFNmEWw+IRk2J8emkfP8UrnWWrTUwUwyrTxp5O25B7YbC7go7/SIUyqhIcR0xVT7RqkM0d3OIHgnbVtdm/2mbkx3kTGI71KfEzRk6hUTI4eC1qaASAVppW,iv:IL9zn5fBUdXxlD3DtMEsdt0hKx7W24O9Aq0czgUu9AI=,tag:LmjTE+uicihRRdYI4JsWKg==,type:str]",
+							"headscale_acl": "ENC[AES256_GCM,data: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,iv:jgtdxgr+W2ruw1mF90SBEl/ETa32itBOq3Qfta58XYk=,tag:/G7KrHICyDQl1kuLrahYtA==,type:str]",
+							"headscale_config": "ENC[AES256_GCM,data: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,iv:04LjGrO53L777uG+hvg3VikVMtJxumXp+teuiOTcBL4=,tag:veIKJoWCx0RASYxKu4C//g==,type:str]",
+							"headscale_derp_map": "ENC[AES256_GCM,data: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,iv:mOJDBGtu3pRLsoD7ZoBHnMy7MvahtF/0Hs7AMSuQv+A=,tag:s//1H/hlToIy+wMMuhTLpQ==,type:str]",
+							"headscale_ui_api_key": "ENC[AES256_GCM,data:QHu8UK3Qems+FPXkiZqRj/FMt0em1SrXH/DQ/AxXGe5HQxv5KNPVLJPKoz0KOej+My4gSvxQ8l46uVcWu2LcjA==,iv:BWKuraAMGJoebiWdqEVhl9BoBUWcSIChhlDPNGOOBek=,tag:iHoJB88obtExDmHGx7XBqw==,type:str]",
+							"headscale_ui_cookie_secret": "ENC[AES256_GCM,data:rfwzScUtcVHFOTNtFMRPUSiRMjADeVtth5Rhaq9JdAJ7lFq0BpgGkKgHgiV9nJiGl+thm3fDSbI+0lNFkdASCA==,iv:eDI0uDbV3u5Ep5NoeIAEOlDJinhjb/yofW0c08l7XuM=,tag:9+BeRvV1aByt9NmOoVV7Yw==,type:str]",
+							"homepage_credentials": "ENC[AES256_GCM,data:SlAPayZeqLeAG5VuQzJKHWL94BVXh+MWjch80+Ekd6P+pH9PXR2SNbhg/FnrSWS/pPL6V3x9TOPtZo1QsBGCsHp1y6Sfuc58mHYjBlw70DPo8kqV7rZP5W2mI8TNqGOmmp/EMVMwj+BRQDtbfasSqv0ASUigxWaRd4lFuiGpqh1CwtL+2AdL38beNgbipCpSqml1fbpqysnH613IOl2eP0/MidL2IaQt5maE9ZkWuiBgZmUikPIH3Fb5BeGW3E+DJbUHi95yEGIk0cGBSrqvGoAVO4TGx1moi9hy5QzdVdP5+wxUXl3sIPDsW9Xp6HwRCtgMBLbcvc5yHr2xJP65WankNh0td2vPCK7JQNnwUku325BdYrlUwnWOBo5PfwGaf5sagN+UfnZp09AvN0B1fohhCbrr003rnbHEdthAqtZFkrcbBmVjo32vYOBQg1tcK/fqsAw4sC6CXBk96b+Fsp8cgeAGHcBaSNrKRnfRHC5Kmm2m+N6TD9ZX+duhoI1e44/3SvQHMISdxb9yNLcNWD59Y5am/PF30Ly39dlElCq20f019CJx/8Itzfzm9tkPYHThmkc1XtZnx1hfS5bYwJvYRQsnTuNyIjIodIkyXjlXct498hLzg9c1b22fkWtPYE2QaSRger0OkrfcxdU7KsXXl/HZNg5wpxA+OdnjTHp5mk5BWShdkmvNHOod4TSvon1ArEcZB5I4LCG1NX/uj0kqNbBwJWZT80ijqsyP6LZHsyaJ2K0Ra0mhqZjvJNHs6loT+m2SJr1nr4bN26JWUx8MxOB36f6F6P4oobKqNvtG/l1OfaYBRxNGcoC1zWdjeCoZFEDeoQkT3Ov9HWXPFEVp0JYJNANE1Bl+vk29ARnaJ/4lQSxjjorVopDDtx0m9WjGH6wfgcEBdxqu4hRd/pjasICvyskGDF1eOe1XVjwn/c3dq4EqaWa0ftwtCRtCgltPrKi/pm9LnxaLObs/VIiLw5r5Lz4n1qQaEMMBl/YHolB8WGDyv3VyS6lN1x8Z7sBvYw4TSgtQxarVgUNezjlslERkIBgW9N5bKnELAQex9MVXfhTP9piTvWFShIJ83/eK4HAkedMyofUbd2FnN5bv9pGE1kzMIvBoK1HmTxlScualpJh+9CqrNQ67XL6JRpyvwLOaFZff502wQSmJTP/Q+eK9HYhgckIFBCKCTfAxvpPmp4ZBgkpKekcAQ00AELSdBENPJFsPc0XNVWevGUqKjRGL0O3hqqwwYZtV3RWxzAaO0Dm7Q/qzNTCFe/K7SnHoHFl/Y9vetP7ZsJSiKGdkjJpEWeSM9He5KeexdCy95Im4Pu77HSOU4pX5HlIvP0YcxBRD8otw4W9JABbBtWksegJIHUn2LSdhvN7hY4NJLIJmBtIOgavpHRv9vIRugjNz2bYXHQs/eY8OU++ZrAts00CZA+g5vUmcnIsnOptlLBY5wbC+GQZ++eQuTU1os8/8AhkYTFGNFCimSqZT80eSsMJ4Sq5lLdyRN7OzcowmSU0/hgZsgrZ6urWENHrhszb8Gkgibnu/Jgg+eGmlIsz9PEoah60zvMLENi6YJJ/EWYLSC55Apa19Q/738VtIBeYxoXhcgRjiL3zvNIOY0f0/2t+JeKx6Uu3O+heJ9coaC4xBZMidAanjdI/VKn4//gdjRZMgKyep/5+LkS0ofh67LyVHypIGX9bRt34bocdBnqcrhfBKBnUiaXywTkYABFCG8vwpH6lJBWqXhtCXmNnJMXmHk1Lo3avxECMS9+K6fpadsGYR7wnPXiI6Qw/aimw4p9yLRibfKaaorKKOxB5Wcph6yvLM4Tjqan1k2i60pww7n3uDitBtIekPOGvqj7vSs+MjLhdlsOLdI8Mp0cn9d2CceTSntcZDQ0Vok4F/CBGFZ+CWyzaZkHUfUrLOcV/iJYZqDCVF7AgTq9hVp+Dxvkr42rlPss6Iujd1D+TeiIoxARM/m7hFpDbwemHBcviw2lj99PbgYtqJJ0DnjFlEfVR2pqtnOE591e1ucKEJbFTinxJaG5Oc06CcSJuC0ndL1b9m8KjhZH+Z88VyH+HVrTjow1nn8C/YOm5k1cPau9/UGmxgXDdFbs3PD440Hm+sI4pPsEakL23Le0xvl8ElW2U7GRyHLbS+iiwGIeEJSQcdamvdvmRiRkLkvT4oHDQev1RM1ouMqDC2LBnzbt9GKSP9/vKz5TzBI3mOo18IBkY7HJnuFMdXwC7f7B8HkUIEG0eUagvGxoIPuz1Z2X2vNi2P00tfQ50MriES9k3/X0dl2k6TZdXkO2GZJ/Zaa8v+AxiJ1CRmOMCoYkYk5d4dvngrSAOupmJjXGcqRyi7IwWTSN/pQcZkA2haCvjNRHfeAg+HzA25MFEsVTKCQJDRmDwbKbs6t+D5FPAbnBvABsCp5m1mfO5YPWgnYl2x9GmyKAFDR3DJ1bBRzj5O8pn/1Xc49Djj7XU1bWVuoMAeJCm0tHRcqPyPGvP8dnl5Ik6oDI8HZVJ8zrHo20ghf5sIIkIQfCrgM2+WnF3PJQZ8ZFmFs+0VnWYJfOsvIrCBrmpDO2umBN+w9t9UC4ivZovM/MKoqN24uBf1HBY9bp7khtQExQVuTdcs+E3BKl7rMVHwtAqK2dskcv22A+kqkg4PO0igm24sfZEPBIXJXA+fTvfTtPonrALsySL+oA05+gn9yEX60eVJ+oxLWYTKgNFH6aA3lmObfkKjkh1WctxyJ/VdpgmwkfZ3WkbGqNKIppKXDA==,iv:INhMMYwiTzBupN3qvpXfqKv9iRIhror5UDSzZmF2cfo=,tag:raIqKbz3iAbhZJxbtCj5rg==,type:str]",
+							"ingress_crowdsec_api_key": "ENC[AES256_GCM,data:yLVFDdAZQfqnAmt9dDdw3HwhUdRhN6iDtlKvo7v25+Ks4fbtoyfKBBicSw==,iv:b3bK0gO5ymJylwNJDWaGbNNbSaIji2OyqFegX/XgBag=,tag:BtznO245FDhq80qVET+b9w==,type:str]",
+							"k8s_users": "ENC[AES256_GCM,data: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,iv:ATdfHh39d2snEID9AfgvgCB4rXOXmZxWoTKk2RQsTe8=,tag:PQgwkCCpkrq02S4JNu4wgw==,type:str]",
+							"mailserver_accounts": "ENC[AES256_GCM,data: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,iv:3r0QtKco0nQWmdrf6wurV/Z3Q0JlCqKciaadyUG67aY=,tag:rmtWlPti1qcq/qe98to5SA==,type:str]",
+							"mailserver_aliases": "ENC[AES256_GCM,data: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,iv:ecwCXBLGBYLu2/i45ZxOhCh5C8TcuGYcjWTlp7ZwH18=,tag:2MK22EhCk6jcog20LCH1Lg==,type:str]",
+							"mailserver_opendkim_key": "ENC[AES256_GCM,data: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,iv:Lv/m/UhExJbHBVtEM7ppC8NX0TiIcpGiy8l6iZT1RQY=,tag:29s4Lhq/kKKxwj/lTEPjEA==,type:str]",
+							"mailserver_roundcubemail_db_password": "ENC[AES256_GCM,data:6udGNpfYCYhYAUoJq/g=,iv:kjIqmE4OpCNLIraapu9LPyodSTUzzP43eReTPFcbaSo=,tag:zxhBx7DhHe4Sh6GERVr+hw==,type:str]",
+							"mailserver_sasl_passwd": "ENC[AES256_GCM,data:JauVykMKzbuWMt1nt52xUYRFgn08xOgcm3h24ETjSNTL4c4mQbqiKsh3yqBuQe2OLU5dSGrOdeKjfaUTw1Guk3YO6oDtF0Qq6Pur+Z0nHBBssBrJynAYwCdHM156Wnp2Sw+wQGtJjT0lFWyr7lD6CCF13UnGKZqs6WLbDv8ap7F+F+I43WMeH+m3wCDV28cJ+OU=,iv:wsaFD3EeQsRgiqQ5+FtceNI4+qwo6/CBdWcYV+3LUvg=,tag:HeizXFYg0s/6TzJ0WXxmTQ==,type:str]",
+							"monitoring_idrac_password": "ENC[AES256_GCM,data:t8RdvQPc,iv:7n9e0DrMlwmcEM61Bd3H+Wa/dgp78xiINPCeHumuvik=,tag:F286kmzPi6w+GlXfKY2bHA==,type:str]",
+							"pve_password": "ENC[AES256_GCM,data:9iyvd7TP/ZDVk4bMqbQN1zassq/Xic/FPGossw==,iv:umwZLSr2El5dtSxpEGqysL3zE5ImglPDQIGsWENqRJI=,tag:WWUk6qmJFp8Xw6sWlBQlig==,type:str]",
+							"technitium_db_password": "ENC[AES256_GCM,data:QKEguGQQ/bodK7QIRYY=,iv:PJa2SzB7CL1LDvMqlqkW+GoAjoLToIfkmdvGhJft7gY=,tag:X/CUy2GsMdw/bGkqhGyr2g==,type:str]",
+							"technitium_password": "ENC[AES256_GCM,data:rtcc1UPM5b4DecUhnwzh51fiwVDtYvQ=,iv:GV/NjeGAgm8ac0aorH7a3o6O77FETZm5lQgoEdOXy18=,tag:0UYnHk/AczUMtHU0s5gmlw==,type:str]",
+							"technitium_username": "ENC[AES256_GCM,data:QKIWIBY=,iv:YvzsVzYoQNvoqQEXiWJ27jY9fQY9KoyVKJrGwpFMzj8=,tag:HSahuff72I3Pat7nDTmwNg==,type:str]",
+							"tiny_tuya_service_secret": "ENC[AES256_GCM,data:1eeCjRYS8JSk76WxCyEjI4KuA8G77g==,iv:S67jZx87HnnGuDH0YZMHWF/j/ul87JMdjkE/4KEfuoA=,tag:y2DzqPoQ+pogO9d664GTgA==,type:str]",
+							"truenas_api_key": "ENC[AES256_GCM,data:bewRoDcSFtiM9wmlnMn5nDKrqEFIotsiqilYdqCLRH8A8OZ7Dqf6NtoksjM3B2nOO/1vbMe+e3Qspp4P7NUaPt6y,iv:4LRHXYS3A0gs36Z+fFbd6PxfzzrwaR58ajXFJlIrRok=,tag:gnvwcxURahzcd3VNiFsc+A==,type:str]",
+							"truenas_ssh_private_key": "ENC[AES256_GCM,data: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,iv:ihj0YUrN/pvVAGKN7T7ZgP72TsvmBB2aCBGG6JmQ+ag=,tag:QrFKUBQxvWEe6eznGerKuA==,type:str]",
+							"vaultwarden_smtp_password": "ENC[AES256_GCM,data:NMWqq04FNzXE9Oe3YybfLYC3ICw=,iv:xHOH3GLi7/7Yif8WcjOiUDk3nJZb78SkauXRITAoZIw=,tag:W24D8U4D9kOrj0Jh3m9fhw==,type:str]",
+							"webhook_handler_git_token": "ENC[AES256_GCM,data:ne7rTdK+fFq5UJCZ0Wsc15truvg/DFIiTQK3FDGMvQJM4dtUL40wDQ==,iv:tqj96H6vmzzNF7tdU9MPwKze6+AQoGzZoGjjBQ0fJTk=,tag:mRXsCBiz4w1Jncxp2XPHlA==,type:str]",
+							"webhook_handler_git_user": "ENC[AES256_GCM,data:1sWJ1Je50YMtu2Sx,iv:iEPRrBKTZyKUlgByRpF/BHCPVtK+CeTPnXuGJzgoHiw=,tag:eSG/k98lOQGwGNlmXFGXvQ==,type:str]",
+							"wireguard_firewall_sh": "ENC[AES256_GCM,data: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,iv:ByX5vN2G56KdcTzDxBfiRoXSq57GCPde0tXiunby2/k=,tag:diDdyFPhvbru/jDtvq1ufg==,type:str]",
+							"wireguard_wg_0_conf": "ENC[AES256_GCM,data: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,iv:IfDjfqaVITpaNOpfGvZv5abwzLfgd7ypT4/NjNZWj6Q=,tag:d8r8cxAoYB9Dik/fX4Tniw==,type:str]",
+							"wireguard_wg_0_key": "ENC[AES256_GCM,data:Rf6LwNV3G5fFGfIBjiUL8VNGRDeR/s5lHWU5u6PljdjyU+mXksEPkFEYVw8=,iv:Q1CmA1k9cg6Q6mJiHKzSaCydy0OFCL581V4wYSgJWsI=,tag:eUBAKLsEROG2rqxexTIN1Q==,type:str]",
+							"xray_reality_clients": "ENC[AES256_GCM,data:Kr03faX6Y5n7mVoUT5CWfvUbj9C/V65oQ/YDS70L/JrRgR8OSz67jedJAUTOhbg=,iv:nl7fZYJ49dAdH43DwYgr/sH/c5//8c+RQW7YXwurWJs=,tag:kbpEjPtdKBacOI+1OL5EeA==,type:str]",
+							"xray_reality_private_key": "ENC[AES256_GCM,data:FQ+jcCpR1uCVzQggSriR7ufZMOXW/XtoOxW5zgImBmDAZ5vVYhNNUyy/Aw==,iv:YQ4uFNRSSWmRU7CbaDIxRt/5DMD6TUzmk/otjE9nzFs=,tag:0Oa7Z60wnto2rcf70UTmGA==,type:str]",
+							"xray_reality_short_ids": "ENC[AES256_GCM,data:VPu/iN+zR9lJfLUIfWxoDZ47c+QLgalav6sTZ7v1WNuPdYcIPUb0tx2HGapSAjmX+eHf8W8i2O/doXD4S+OjERo=,iv:xqC7HCkrYt+VJh7XyPryTkuLsKHy0vpaedvbZQ1anxc=,tag:uCvAHm18Bv0pb/T8y3LLXQ==,type:str]"
 						},
-						"data_json": "ENC[AES256_GCM,data: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,iv:HCi8s5Ne86ocEb46VulKDRO7tduNQ5w5+c9E5Vj45lA=,tag:XBqooOwbwRzTVr4GrR7L9w==,type:str]",
+						"data_json": "ENC[AES256_GCM,data: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,iv:4034o8SNyrCYK+qf95SMz5ZgRZ9VuTkpzz67b+Lck7Y=,tag:lM4alZ9nnApu9jjWoAEfTA==,type:str]",
 						"deletion_time": "",
-						"destroyed": "ENC[AES256_GCM,data:zSNt2vo=,iv:it4xccJ3dDgXEObzUugMrs+8W8Mb+0rT0HUaDDcZi6g=,tag:tZDfbtBP++wKa+C4Z1WJFw==,type:bool]",
-						"id": "ENC[AES256_GCM,data:7E2DP+sJktNVWnGw3RNxcylukFU=,iv:76Ym0fPL5/M99I2L717b1r7cYBtcTjqGwG5X1fcuKr8=,tag:BmqvUmA6CTcMfx3w7+e/yA==,type:str]",
-						"mount": "ENC[AES256_GCM,data:I0XXkm21,iv:/oYS44hr7l7Dj7PpYQn3OleTjV9KQv0cjDJ8HHRFhI4=,tag:9WIZVQfOeVtE6r6XWpjSzw==,type:str]",
-						"name": "ENC[AES256_GCM,data:Rlcb26Ei+yg=,iv:lYh5ZqT+hf21bBlSyCotdSCFp0eX7GmKKSX3aEUkKJ4=,tag:zzYeF8lqanTxu72IJzp7MA==,type:str]",
+						"destroyed": "ENC[AES256_GCM,data:J5RZWzU=,iv:+p3GGpjS55N4rhflMGp+qRsUTtA1RdvBgkrO2eW72lA=,tag:LXFbGXGSBEXU9Rz2ptgJSQ==,type:bool]",
+						"id": "ENC[AES256_GCM,data:bcWttWoZ3A0gZEfNyQ1unzxtO/w=,iv:ltGFFjvJXNkTQ4C4qf8/wVh3l6lMq48yZ1rp1j4kO8c=,tag:EURSARqeClkziVyOpQsfRQ==,type:str]",
+						"mount": "ENC[AES256_GCM,data:MFFElmd7,iv:c0yxVGsABcz97xNaMejFjsdBKt8NUMvwJcXQo8xrdgE=,tag:SCRQ1WespCwJ74EavPW26w==,type:str]",
+						"name": "ENC[AES256_GCM,data:gjDI0gaqwp8=,iv:GaeKdVLwPe7Sl0ahIThwLVlseg5fBrVWwsZ8YapL+Ow=,tag:n+Q/kyLZpDYZIX73rli1QA==,type:str]",
 						"namespace": null,
-						"path": "ENC[AES256_GCM,data:VWRVAg7G/mRRb35AHok8XrEtM2I=,iv:JMFXSZdyyyDn/6FcmsYL2ahDi+gHGzR2WHnqRzpRriI=,tag:8dbZJdtkHet9DuM9N4shcg==,type:str]",
-						"version": "ENC[AES256_GCM,data:ZRc=,iv:fWOtdHSPU0sA7CWQHSrNhlfW4C6s2ICkE6h8EC4ABeQ=,tag:hY5aoLn6Pqc/Q4zbPIuSyA==,type:float]"
+						"path": "ENC[AES256_GCM,data:4R6/4SQapZO/gbCaGOirHX2H6y8=,iv:FEL2tvwWd60h6KPKVunoi8U7AsDXQNFtgK4Jp6DphWo=,tag:iQFexOHNszBXXfpPkJ/vhA==,type:str]",
+						"version": "ENC[AES256_GCM,data:Pgg=,iv:7odFvn5L98wr2zyV7bC5L3JJTwh5s545U5V34r9Yrp8=,tag:PEc67DC5fpm5xHYdNah4iQ==,type:float]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:bgY3Ap7kfTA=,iv:9QpSW9l4L6sqDyCQdCMCgWQmiza+Xs0LkEBYmbJu3lQ=,tag:35hudRUH4yL9qcqk90YHKA==,type:str]",
-								"value": "ENC[AES256_GCM,data:vvTN7A==,iv:4LzqAgDQ0Vav+UCIItKkRAQy1f0sjRZK/IRENSeq25c=,tag:C1hHy6ANDkazsZUE1oF31A==,type:str]"
+								"type": "ENC[AES256_GCM,data:OyQs6GRiN8I=,iv:0uVhExoYt+zZDYXtkAGyIuFohrJ+sWL4cNa/Vatp0vk=,tag:5yWuQL5vCk7GFWZ9Hh9NPw==,type:str]",
+								"value": "ENC[AES256_GCM,data:hyc5UQ==,iv:zr8vZWJ7awHYyp1SnaLiB0xxtuXuDb7qjSawT91W3Ac=,tag:VTo9gb3y6jLx1XvLXjhNQQ==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:RoXGnLUkVl8=,iv:JIkBm+IqsPr3HRbikqworF5/zoOYgE7nzA/ibODdIIg=,tag:bUf59076fmBzAuXL9b2xvA==,type:str]",
-								"value": "ENC[AES256_GCM,data:0B4pMlrQpIJ6,iv:SwiwdC63mqHistHi0azGylgiXfXC5Nlqw0rMyFNYJ2A=,tag:hBw0as9EPOmGakRUKxCG+w==,type:str]"
+								"type": "ENC[AES256_GCM,data:597tidUBef4=,iv:snP5tsXoip9m+5fCD3JwKq/aKsKjwVx97+6iAlcUXq4=,tag:is0jjwtRPg4hJVEz5bY5qw==,type:str]",
+								"value": "ENC[AES256_GCM,data:9Qd5xoHPtc+s,iv:zYgz7XXz2r4+LvCIk8iD0Nw3FnacjD8SRUG2yKmuY1w=,tag:9czKJ0zGXpe8y8I91ky+Jg==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:DQ==,iv:gT4QR49ivaVSSpTVX0ecIkOaBH0eahjdmjWcZZTwkpw=,tag:7UbaeTUnQW/gy2lQtRNCAw==,type:float]"
+					"identity_schema_version": "ENC[AES256_GCM,data:Ag==,iv:U4CD6HGUey/DkOKauyNEqXvYaV598lzbDDz9N2UNGBc=,tag:0x6uJnSo5cWjCYeC5kzf5A==,type:float]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:vNjVew==,iv:e2hQSTTcGU5vYWRCFxN90c4g4gSHsfD5EWoKZm57v1M=,tag:z69kaq6Ma8BNYf7vmh5Y1w==,type:str]",
-			"type": "ENC[AES256_GCM,data:VlyZzzWoHgUG0sQra5iD6txO,iv:87c4HoyHvvTi8OZlM8HshczYAJVMOQfDSo4EFWDOsVQ=,tag:TXqv0lpjLvhgLHZQAUzJ8Q==,type:str]",
-			"name": "ENC[AES256_GCM,data:UW59xdg=,iv:9C/o3yJqhHw716Tv4rqeExqDS7tCPyGI7Ey3TGdm1TA=,tag:Yv5NjgOxCKd4uhsZdtFPtQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:OqD15LLiwot8EvfCKKK9DoZfY9rXfCXMMnrNPikLUi767ANU7s19THpxY8MocfzA0g==,iv:ki4ROffFumuQro6kFzwJsfbgbGc9OAQ7LPpbDjWC1pk=,tag:hiWj+0hxBhvyOuaU3gepvQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:r5I00A==,iv:sEx/XdEmDBOCc1HelKbq94tVLob3adcnKRFHsotGGwU=,tag:0zfDb+6nuE/6wgvs+XHYFA==,type:str]",
+			"type": "ENC[AES256_GCM,data:pavwIcraZu7OhjAafZ9vBooH,iv:dRElUCEF9tpOe+VguvGxvGEFENeatBi2brZp1lQQ/NM=,tag:DZ4L67Et90wsXP/1AMO0fw==,type:str]",
+			"name": "ENC[AES256_GCM,data:Y1bAAcY=,iv:Wxg3aT/aYTWS6o7L/ka7Mrr+CdCLjPWFAwJKpoPfjvs=,tag:k5VSQ9/GNsY2lYLgJ1fVWQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:e36/hmkAfqYqt7jln9TtD/+Zi6/qWSX8EqSKtC0Z74QmsX0rLXr1BHd7HUspt/0cDw==,iv:5W/gS1jBQb4Dc8wi5q7lkE3HbJoK+j2QNhJHEtot0wg=,tag:89YmBGRqQzon3WO/8Ed3yQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:5A==,iv:0t0lP9HKIKN/ps1RcIqPRE3AFbww7dgG4w2oozgc/Nk=,tag:6qNRvSMXdfmoFQvwKL+Arg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:yQ==,iv:qSIYPdoTXy1G3c4f1IXGGHYcihdgi1MzkhOfFX8wihg=,tag:WtNKWK9iuGYvIJgxoOAP5w==,type:float]",
 					"attributes": {
-						"created_time": "ENC[AES256_GCM,data:+i1L8xqSB+2e+w6cPEFgjXREef/aOM9WDkQoT4/j,iv:za4VW8iqi1qOGP77Ll78xx4QYKljTP3WsVFMB3BgV7A=,tag:oQNmMSl3HbfO7FTsUi/zzw==,type:str]",
+						"created_time": "ENC[AES256_GCM,data:t2UBxHrdIu5CNKChYie707fP2afx251JkNBp6aeC,iv:QAiJs9gksRWQA86EyEbnTfwFfd8wcl9eznwFtX2BGOA=,tag:43ZLCQjuXpqCsfTLU78K+A==,type:str]",
 						"custom_metadata": null,
 						"data": {
-							"authentik_client_id": "ENC[AES256_GCM,data:zdIdI4YsZfh+LbTpMaKITQayRl7BEHAgrMxFp/pQ37hATKZqsp7xEQ==,iv:V/QNLj7INKnI8ifXGhheEI7bmPHm/8wzWXR3OHhYTNo=,tag:kaV05PVpgEDHLDHbI+TzqQ==,type:str]",
-							"authentik_client_secret": "ENC[AES256_GCM,data:r/2AgVlkci+jFn07Qy2L2VR0zR+5XJeIhvi3WKpdVRiTN0ffeeWHFwU+wzJ6XN3zljqspJIE92iRU5N3Ff+8bZWihgIFCzmELLVbdA9UkQmuLJg1DaCu+75gJ8Mr6xVNcuYu0TbWKEiQ+oZGN+8kW1e4QYY1trw0VhWIe3bQEc0=,iv:miEVTVSK6wty7jWkVfkrWkZNgrBms1JPEuD23RhRlmY=,tag:mEu55X6WZf+Hf5+IGtl2/A==,type:str]",
-							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:0zhOPFrkHkE5riZosapdJzpCYs64N6qaUaBcD2XaikiBvg77JbuRw3V0vONCXiUvfZ3BT9P8myWszWwYtLiAkQ==,iv:6060U4LJkOJ9DQAvY1x2O1MV11zSVMNjohBvij5z+w4=,tag:7c8lcE+DM9k21D31YUo1Fw==,type:str]",
-							"dbaas_root_password": "ENC[AES256_GCM,data:vzS6JvILLKxrKCMhSHjhTWWVeepFr8nSPOSdAw==,iv:+f8Ut/qULqeiFUv4EDgaHq63IeT0BWh+AvmNNhVzbyw=,tag:LqBX1L+/iTt5gGr3TH3SsA==,type:str]"
+							"authentik_client_id": "ENC[AES256_GCM,data:S8afzZtIqks5JAItpj/k2UwT6ltNxfPpxuEuZVCp9sFWVMYD+BLLxw==,iv:lSa9Ci4zH0IJY9GWDAg4sKTdcbR9GKLErtqNeyh3Bjs=,tag:Sv9BBMvffd01pVv02z3lcQ==,type:str]",
+							"authentik_client_secret": "ENC[AES256_GCM,data:x/NXVArd26qsP3FrC4FFEpvZ/1w+tP5ckYmr5ZtJjve2S4fe+zE8qU1KviGtXlE5pXf8y6E56kci2nflUHPvRjYj/Ke5BWcH9xg/tRXDeYYEZpr1aC3CTC/OZ7+EQT+SZhWNJqwElLBdvjsyRpkc3u3TF9SajUyJEubi7RfwHqg=,iv:lX+H0acUnMP6PAACmerelKCPG2nHxyFaHUp7SSH+zuI=,tag:Ogk4mhDnhMG4ZjWzLXRZkg==,type:str]",
+							"dbaas_postgresql_root_password": "ENC[AES256_GCM,data:nexlv7EEOAdUnx0PtgDvXtyIHlThhX4Wy9Hq38xC2WLAm/PPRRmFWGL0imvDZ3xbUgYxCASh2Kx35lM4IpQDeA==,iv:MoCjkG15143DCXAOugil042OrWHavs8MUGo774y/QC8=,tag:TykgAN8Ok/qrXZnqjhFbCg==,type:str]",
+							"dbaas_root_password": "ENC[AES256_GCM,data:idXY/IsNeN7dPxa9w/74Fj0+95x6eM3uG/D4AQ==,iv:eu96pBRjs9xu2qBAy4E+8CebU1JD+/KvfGSjuJ4RPHg=,tag:WGNonbzr5Td0XJSkwDGqnQ==,type:str]"
 						},
-						"data_json": "ENC[AES256_GCM,data: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,iv:XFbRFBRXN78RHaMgv7+vW7xtmdRfGNNYBnvuYZEeIEM=,tag:Y8gZxavUi4+iWw5wpGuJkA==,type:str]",
+						"data_json": "ENC[AES256_GCM,data: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,iv:TaSV8UJxdBM0jMT3sPNl1Osm4vymCGY8oPzqrcb4Ccw=,tag:mrJ73htd6hWmpIX28WpaGw==,type:str]",
 						"deletion_time": "",
-						"destroyed": "ENC[AES256_GCM,data:N0cG2FM=,iv:3JeRjkRa9+/f8D2rIfto2/y7Iv+msvC3fbktM1votPw=,tag:lMbEVBu03728g/dEsUf4dg==,type:bool]",
-						"id": "ENC[AES256_GCM,data:czZbW7vsYAl+WSXZ9NroCHI=,iv:PaPmVHV7B0Cto9aE6zo3ZBSxUyNt6P4M2Udyj3lsIw0=,tag:R7skj1TRGTaTzK9M0AOL5w==,type:str]",
-						"mount": "ENC[AES256_GCM,data:nwl1Jm3V,iv:caovQcazqA2PhNPsfM6FfT/L+rhDeWJu9IJ4DMd04lc=,tag:Ceps0UDNa1v1Pa66JOCO5A==,type:str]",
-						"name": "ENC[AES256_GCM,data:D0AbNl4=,iv:dEmpQ6J8X4NhKKxE8gQjnklC5evSS5L6fHZv0QuDp6I=,tag:4Yv8P/1sw0Mt9DbaNvBFiA==,type:str]",
+						"destroyed": "ENC[AES256_GCM,data:byGkT6Q=,iv:QC3e5jmoaByjTLqv6KFDpanFhUnkx3arNs2iXptBhqU=,tag:8CuukIenDw2ZPANO6eSIiw==,type:bool]",
+						"id": "ENC[AES256_GCM,data:aq2EJt/oGHOtwjbss2CieMI=,iv:D7LmAXB7IyXx0OcYPR2F8l6G/nMrvRwBZctCTe9RHCA=,tag:T5K0AdwtyDpyj/XTY4qykQ==,type:str]",
+						"mount": "ENC[AES256_GCM,data:KVu6gwn+,iv:N+/zHXFfRcy0EeH60EB7Cwe9HMWVnl6ddMkIJ8/bkq0=,tag:mygrlDDmbV3+Q80Dqs+rtg==,type:str]",
+						"name": "ENC[AES256_GCM,data:QgTXAaA=,iv:l280y9nfI0sPwVIA2MO2HmauwvdbpWQDs5TARRte/bg=,tag:VEeNPDP1Esww2thfONn/6A==,type:str]",
 						"namespace": null,
-						"path": "ENC[AES256_GCM,data:pXdv3OgSvSgaHOxSX86aLpM=,iv:D5qtlftyS/bebPcr97k+WfgIBkWaDawbA9DPJUNYcrw=,tag:+5MjxGagMk1n6LYgiRjduQ==,type:str]",
-						"version": "ENC[AES256_GCM,data:sQ==,iv:Qk/RFBfIXbvEWSc0NEZUqqRXoJUInKdjsfEWpOsFB+g=,tag:dWEeqGOVQFhdlZZnRC6p9A==,type:float]"
+						"path": "ENC[AES256_GCM,data:f77B0e0phhYWAJwSvTHcn3Y=,iv:MwxlzcaouytNYWWpKo77Zh3X79vhEGbVDbJmg6Y2TkY=,tag:1bolE1lfBANFfNNs2OuX/g==,type:str]",
+						"version": "ENC[AES256_GCM,data:vA==,iv:2nRvrdICbbHIV0IllKCcfOYPnE9867cSoOi/F/kWsvk=,tag:Rh7TOwf5vzRbzaXoMLvK3A==,type:float]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:D3GFqI3iz/E=,iv:GNEXKPgtgVWzluduLGw9MInafqs6cZ2mQqpkEbImTTk=,tag:7nETkU/P/ZojVg7Ecndq6g==,type:str]",
-								"value": "ENC[AES256_GCM,data:59A1TQ==,iv:rYW9cjNtOl4D1OWnUk19G0ifttZ7A9A/AZ7gJ8Rkhr4=,tag:ePRiwkniMZNxiCcHyBfiRg==,type:str]"
+								"type": "ENC[AES256_GCM,data:Jk/kvJ88qP8=,iv:TtJ9qUfibkUs1mLuAPZF80CkHn6E333qKn0dj4HikYg=,tag:xLX/OW4aPwrYnLLo2FmhpA==,type:str]",
+								"value": "ENC[AES256_GCM,data:WOGtPg==,iv:m/28tmbLjyq9M3R9sylvnJTfbgJwbkR+NJG5wMfddGs=,tag:R1V9EAJQVJld26Ma+oIMhw==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:sAXiLLWg4rk=,iv:3o2bsCU8obS5lWyn+IORZZh9J/l5zXbuCnCksVu9EJ4=,tag:qYeg7Nz7E5ixHzuhXVFwUQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:vKRSv4ilWSIX,iv:u4YHsLhR3ADW8GIxkbaLs5//Wk6CwPAD4viCfgllgVQ=,tag:sERdwDxSZYsaUPoQTnhL3A==,type:str]"
+								"type": "ENC[AES256_GCM,data:R26kiY03RQI=,iv:nLD7D3eiYcOYlwKTCjZlNGKnigqcuI8CL3f1HRAXHrM=,tag:3jhGwU5FSBRqFfPOpzdFcw==,type:str]",
+								"value": "ENC[AES256_GCM,data:aeB/q6ctclqQ,iv:2Oh3FSGUZ58Ikf6GW4zSu4oDjBqbqeCR9KR8g2Q30ks=,tag:ylUnfB7Tk7rIhk450nQHjA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:5w==,iv:8xi6rVm78k+equuQ/iFvWrI4aklfv3qLBiKOM7eeUzI=,tag:aCK1wdZwpfqg0cAHAFMQ0w==,type:float]"
+					"identity_schema_version": "ENC[AES256_GCM,data:sA==,iv:uK909D0ih+M/89i3TdwuZ+29ZMNpoqGIYP+3CjKVmWo=,tag:iH/K6oVpBlQOcDYTexI93w==,type:float]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:ajStuzlvzQ==,iv:a9rQWEjqj+SACKOF0A7DgiOgFlFzrQYEj2YC4MdORgU=,tag:d2ePYyslfjrtxWpUwu7Q2A==,type:str]",
-			"type": "ENC[AES256_GCM,data:xWZDb2DDvf80LFiI,iv:Vtm08f2/j4kYPBqe8lch44LwsJS8CuFNSNdZ4S0HzV8=,tag:LxzVpKrqY3LSkMbT/hGlNw==,type:str]",
-			"name": "ENC[AES256_GCM,data:HjN+ttI=,iv:QHgEMlB0IvirxVsCT7k3gM85Q3AP7Iv15Biyw/lpABM=,tag:cC7YvPJDIf+taWY5WUNrrw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:6dNR/SqkMNO9ninCTxGEC2KuSrzZ4BSU6QQOgO0r9m1NWupgM/MwwfIfh2OS2FEZ,iv:qhfE8y5ArOkKyzoSlqO6tTWwRn574o6+85p13qJzgNQ=,tag:HS95j9ymEMLRq4Jw2GdLyw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:akqEKdFnAA==,iv:/5O8u0mB7Q8J8oWHpO/aOElcdkx8BkK363y5+RQVJTk=,tag:21khnzpixiB7DqHCKFtLNQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:zcTvNxDEvuZm5NuE,iv:rNsH8XlePce+A2nteSzvmW9nOdk68XhC8/SlyUm9MVs=,tag:NNAk/2arSPENbdR90sH9ew==,type:str]",
+			"name": "ENC[AES256_GCM,data:9PQJDJM=,iv:rjUSp2ziIpUgSCuvEF67PGjHVVwL0LE6ngJE4jrdpfA=,tag:yllhzFYRcuZOkx3sHpPDJA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:CFmXMtuY2YUhQks1YMhkrmDHmT0pxLkPD/0f4jPtSLS1qAxVm8NetSvOlKJxoq/q,iv:3GTjYZJidtAWJnYD1/St1j3IqNf6imgNjUPKZiCPwYg=,tag:F0MlDs2tKdogBqnzl+g1+Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:7g==,iv:QT7m6Yi0jKtwJ1i8XJz8G/4R1WNNnyMzukaQlhDvgnw=,tag:Dcm0ZmqODNoj7DUtoN5YyQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:4A==,iv:88mmUVGDjQ4d+niVEPrhEIfJQ4h3q1kYaXsOyWah8tE=,tag:u8CbPephRd0eyfImem1LcA==,type:float]",
 					"attributes": {
-						"atomic": "ENC[AES256_GCM,data:M3KR1E0=,iv:0aVhTqrprEJCy/wTBIWeDG51A9BxDEh57K4UM6cmWpA=,tag:2jn7pmVvafQI2YhZ+cDHNg==,type:bool]",
-						"chart": "ENC[AES256_GCM,data:xrhp8Mg=,iv:KAOEwyDMf8nilFZg/MfG4QpOrsX3XUxai2eDmjfeC+k=,tag:dLr6tFu2xE/BamxHTn3Jvg==,type:str]",
-						"cleanup_on_fail": "ENC[AES256_GCM,data:Rw/iCzA=,iv:2+lwYOASK1Du710GZdfFyR34nBg5PZbo+JjNJcMFWlo=,tag:RXwUReqWFpO9RnfgO1c1/g==,type:bool]",
-						"create_namespace": "ENC[AES256_GCM,data:7TusNtQ=,iv:xRCRia/jtVd6ZsmfjImEPq3V6J7pPZPSKDQ6rdSbNAI=,tag:lkwz8dt0ovuPIl6CdBy/Kw==,type:bool]",
-						"dependency_update": "ENC[AES256_GCM,data:gN6KIqc=,iv:9R5QAMWHSBjHcYEO6c6HDZYOI9kYYPZ5WiPNByWIB5U=,tag:cwum7WK8YPGF9EB8PG2KLg==,type:bool]",
+						"atomic": "ENC[AES256_GCM,data:2KXoaL0=,iv:yMOWmXDjAVAzp0fR8zkdR2U28W2Fo0SIDLLmZOhqTjA=,tag:LAUWOM9SkxxPuuUBDx8lLQ==,type:bool]",
+						"chart": "ENC[AES256_GCM,data:iwUbDq0=,iv:xtk5avu9cfQDQf3wCcSA91ehrP0EKLrHL9UTXS3/HQc=,tag:PvEcXTrVr+PbP3DAZhoWjw==,type:str]",
+						"cleanup_on_fail": "ENC[AES256_GCM,data:Eq0PDSs=,iv:8QuI2doeQ9z1aJFoNR9eI0WzgWiV3IA3Dzn4qM+S4d8=,tag:UE32URBdqBubF+vcEboPPg==,type:bool]",
+						"create_namespace": "ENC[AES256_GCM,data:xOn6SX4=,iv:nn3CrehKq7Y++DNBPyoeHKRPShAlYMbXE0W5+Oybtfo=,tag:+wVLzGN9jYrkYmUS4k9ehQ==,type:bool]",
+						"dependency_update": "ENC[AES256_GCM,data:dWGnqqY=,iv:ekcDWyq6ziBNsTbABK4nPKWhDtmUVn4kVRZ45ghnyOc=,tag:QZAqAlkZMchRt0PiI26gkg==,type:bool]",
 						"description": null,
 						"devel": null,
-						"disable_crd_hooks": "ENC[AES256_GCM,data:XT6yoMc=,iv:kyLGZK2cL7SdLpyRcuCEeTnA9VsQ6Q4RF6wrKTho6lk=,tag:2zaunAjMcgekOGVSFqdJwg==,type:bool]",
-						"disable_openapi_validation": "ENC[AES256_GCM,data:Qaa4pOM=,iv:mGvWK8AlQ6TIKFxeY48hpLIK6J8ZrOGpVLt4RovHn9Q=,tag:0mtCfKOBTJmVGf2+bPMd6A==,type:bool]",
-						"disable_webhooks": "ENC[AES256_GCM,data:HiLlwa8=,iv:MXfDHMWw5H9Fh0FKl7bnJb8toFkz9Z6XWSu7ZjKCRt8=,tag:r9EAfLyKiCK5yjRxVEKkUg==,type:bool]",
-						"force_update": "ENC[AES256_GCM,data:Hr24rxk=,iv:fbDT/6dn1Ei+2j5tnKYurfmlYDBJvVIZn389beL2bsQ=,tag:TTjGFY0RGL9EcSFXNI6Vjw==,type:bool]",
-						"id": "ENC[AES256_GCM,data:8sRANNQ=,iv:zt7+7azOD9UG/lXnxNUGom5eL8BZSAzZoyqWHrWCJm8=,tag:QSP+fi+qV12oaPmXTyZUfQ==,type:str]",
+						"disable_crd_hooks": "ENC[AES256_GCM,data:q+7aXeU=,iv:0NnnCxvhLefA2LHFgzrJmK5qJDPdRaefE80vcS2tCo4=,tag:gr+pxBS7yOWJlxVCxajl+Q==,type:bool]",
+						"disable_openapi_validation": "ENC[AES256_GCM,data:clsnGLY=,iv:1yaW2ymop0imGGKWWkaKNjoTtpYitZDzO7dOaAITrgg=,tag:Rp11N94j7NrCQ3yhOd+Etg==,type:bool]",
+						"disable_webhooks": "ENC[AES256_GCM,data:55jdEUc=,iv:oVAVSUNRf3YgshsRXsRK+hBiK8drLEhqPRMx0zBqJhc=,tag:MZyY3/RifGKHpfkc8POfCw==,type:bool]",
+						"force_update": "ENC[AES256_GCM,data:QA/oCgk=,iv:I4PqsAIu2gUyC+SC5Kob0GCTWnqj+FGdHmPmHJAEp+A=,tag:O9SzDGdg+bWiUsupHwb74Q==,type:bool]",
+						"id": "ENC[AES256_GCM,data:M4eJyzo=,iv:PdiTztRnftu6sSM2GZNxW7VdCtrQKl4sKvaVYOC4kEg=,tag:etK+o+ZaErJpyTfH8yRDUg==,type:str]",
 						"keyring": null,
-						"lint": "ENC[AES256_GCM,data:IpyG9b0=,iv:VX9uIqX8snK+bUi4WbQdhQHCwbLmGlCPE3n1vWN/wEA=,tag:0GxYu4RrO9BvWVMUu9y+tQ==,type:bool]",
+						"lint": "ENC[AES256_GCM,data:UN+a7d8=,iv:rqOVfstrpHtH6nTV3qBrh4wECXl6PtP6rWTmSo3Wl/A=,tag:BItPzMTfK4zf6HSs8Izsog==,type:bool]",
 						"manifest": null,
-						"max_history": "ENC[AES256_GCM,data:VQ==,iv:hl8uLzeQeOphKuxY5TQQXs4uh1p5GOi1aFaOB1+0A38=,tag:c4uirJqzONrfq26ddRdxQw==,type:float]",
+						"max_history": "ENC[AES256_GCM,data:eg==,iv:ys5j51sDiU+JBwpsAVRJkwmEC1YMJVf/9UVaCRml7ik=,tag:uQ4Lo1odq+1rdiPYFGYPng==,type:float]",
 						"metadata": {
-							"app_version": "ENC[AES256_GCM,data:hZciXKA4,iv:y0x0A6mC82BkY6HHTZPU80tfcgkAzJX6sVUr6WmDNgk=,tag:qmByZNdQ2ZIccUWe3yguqQ==,type:str]",
-							"chart": "ENC[AES256_GCM,data:Hd9Fnnw=,iv:Xlf817em4A3qI8Aq/ZV5i9Q+d0CKgR89aybweWYUP3Q=,tag:ngX0LPLDqi7kU4DzOlIdIg==,type:str]",
-							"first_deployed": "ENC[AES256_GCM,data:QbE/DITtHC5gxA==,iv:AwZFpzW1QHZqhgqIiVTZ6CfgnGkkRdV1eL3KXPE67rU=,tag:UqNSpS40KhnqubqVgRK7Kg==,type:float]",
-							"last_deployed": "ENC[AES256_GCM,data:PJq+repq+Q0WkA==,iv:+Gyi5z4sUFAkzvfuK0yLXXCiMysmXGW0TJRjeu03/6E=,tag:uV1/CkP/AFEGrkU+8GVniw==,type:float]",
-							"name": "ENC[AES256_GCM,data:tE6cats=,iv:BqHhjIHltQfF7PHUOdE4Tz5WAjCXwtHnvAOBgvfgJf0=,tag:JjdCqp0tLbyE/ArnBBRJtg==,type:str]",
-							"namespace": "ENC[AES256_GCM,data:mNvbmuc=,iv:NbRxrkcvYhbFv/4kKM3Ezb9Yg7ng82AM4lzhEwcrmtY=,tag:R7Ep7y5Rfzyb4FMhaAgYYg==,type:str]",
-							"notes": "ENC[AES256_GCM,data:GcFlBtY2+K+OuZQwZSwq0ZLJRRLU+Cn/lw/imWxsb1PSr9jo4VFtxoY86g6oSNvc80twUvo09UwrFMmTdXfsVJ1sSAyEu/qC6y2wLksDiQlU1aYczf4CT/GxXEZazNPhk4Y/9fKC70bg2z+4Z3iMYH5sGyW1s+gH9Ji1zL/6gkiLBfWdJDORmTSpRo0hIvtKfM8H4ALKupP8os2ujb3WRKEy3YiBiKwbGzWP2ZXr/+XyiYOrQUUguWsGBdMEh4MWdOfis0Ve1Z8C4pwEn/oS0NYojVLv4e26tt7WZXSY89W6rLQBCW1IfoCY1AHt3BheaiEUViIQgfYEmDcbGdBkgzk0efjfiExksaQj90MYqSR/TAAoccBs8hOpt8mmgNLhfppnjFFWk+T3qgRb1Iaj8J6qw1tpzLyA9UW1Tdgi6Fo=,iv:K5uwj1QA6F7Wfhcsah7aQF1JyCJyMdiLEG9I86q15BU=,tag:lzcioa7kmAY64KU1q0tyfQ==,type:str]",
-							"revision": "ENC[AES256_GCM,data:am4=,iv:rjtQXtorEmVY7HDr5pj1B2hJ4uIDD85wfthnZAYHHH0=,tag:IEpzQ2P/bnf+1epzbGlA/w==,type:float]",
-							"values": "ENC[AES256_GCM,data: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,iv:hXUu0Bd3dNogSGI7zAMjq+NIwmlUtcUixO95o+45Mvc=,tag:SyiI9ZQ7xRS07QriTyCD1Q==,type:str]",
-							"version": "ENC[AES256_GCM,data:QgD17q/8,iv:lmrrLAWhG1x0yjAt7Mn3p95+A8jOMJaDeTsr5iVwNa8=,tag:6uVtJ1NAq0FUHK6VL/Uahw==,type:str]"
+							"app_version": "ENC[AES256_GCM,data:lRokNnF4,iv:RNG4tnR5AQNu+gsPPbY8yJJEKSxw9xDeT8OnfiAJcUw=,tag:WTqTj7jF1vwJvXtxj412jg==,type:str]",
+							"chart": "ENC[AES256_GCM,data:zyQS8m8=,iv:vi7I7LXBGy8HQBhCqSSYdbBs9jXCAXzXcaSuokaGP/I=,tag:vtsSKFGrrmIXGPAridgTwg==,type:str]",
+							"first_deployed": "ENC[AES256_GCM,data:uAeFAjaGFZIQ3g==,iv:QHh2S5D0K8vfFOH3pE5Vh9UFFG1i7rDVQ2YhjWRFZC0=,tag:3hNNEH5C9crpFLZhPLWpnw==,type:float]",
+							"last_deployed": "ENC[AES256_GCM,data:dty3e0VbwE93Xw==,iv:LwM6sxoIlWE3X/Hv3CxS3WRAVCoOLOsm6LhI/ijS4OE=,tag:b/WpEl0I2/cywwhZfgM5AQ==,type:float]",
+							"name": "ENC[AES256_GCM,data:81ToiuE=,iv:CqQV0DWWTgJl5/g/5j6cVTWAYM4R2K0ZHZgIlZG471Q=,tag:+mMCIV/vSTN1x+2nd74APQ==,type:str]",
+							"namespace": "ENC[AES256_GCM,data:bf09JA4=,iv:DQJCuLtW8mfF+RoyB96qkSpBoKb917K/EQb5WGiTqV0=,tag:vkjlnteThmxYRvVIoWFWAw==,type:str]",
+							"notes": "ENC[AES256_GCM,data:Xc8o/kr6eozxn+SQXa8ASQ315xwF1xe6UFMqoVHsTxEQ9wN4XIIqvqt3kMXflgmQrcuZUYlkgpz1MVvTh+eoxW3HUtCu5//SSYjeuL9vlm0jKb/4wRH3rtyXmb2ouZbKtbJ4CYM9xztovOLyl9duZQfBSIP8hUQV7A/T80bEPcwWb6lyyo/4gjI1pVJNyABStFpHWTrJR71blJ97I2pTneCawPl21SUtUMktyM5RR1UFH2VTPXHWWtQEyv0YqxIxo56QqOK1snlNSn5ViIjZ4ha7c476eA78+1kdoQdlvqO3049GAXZyjNdGhT6ME2OpH3siIL31mza4LAdM5cTMUcgGpd5bOV1F95Zzi2x5ziRHwMvmEN1zJBHdOfgGpW/oN+56XYBBxDcpUcFUvBTpb+Awj5ZskdUKUKhp7f1LVNY=,iv:fnJMBBD6ldl64edMvhg8kaN5kcPa2LSzQtm8/4CridE=,tag:vXScmoYC6kAZhwn60xCWJw==,type:str]",
+							"revision": "ENC[AES256_GCM,data:XO4=,iv:lPB9Mceyv706q8z4GQKWMppK0eKaEVz8//Gcl9kCqAY=,tag:29UDAFAa4VsR9gMRQsRKxg==,type:float]",
+							"values": "ENC[AES256_GCM,data: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,iv:hDpGf2ictnx1ZdIpl5cgT5STzuS0dONnxgL+aiP/2Go=,tag:8oreMWpq2JHflYoprV886Q==,type:str]",
+							"version": "ENC[AES256_GCM,data:CuqGZoAM,iv:m4srJX6IPS1+4+0JcwW68bs9i/04/u5Xkiwe7AuQDlY=,tag:Y0do6gLuUbj8t2+ctx7+Dg==,type:str]"
 						},
-						"name": "ENC[AES256_GCM,data:oUMwPdI=,iv:3qvJx+We6Es0R7kaTCOrdrBz49dUg1PSvEDAQWU1A9Y=,tag:g5wc59Gm4bQ0wlZpj6/VGQ==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:R3SuWf4=,iv:16qSSbmeXpLBcsgSOsv/bd5DC9NG9VvNREm2w5c4JWw=,tag:5t0YHj5INTW4I7g9W+TIpw==,type:str]",
-						"pass_credentials": "ENC[AES256_GCM,data:fTsdK2Q=,iv:2Wcpt5IUF0WiXalwc1p4GIb56IvvomX9C6ZGs4HmTWU=,tag:fYA6+b/HcAhSKv+mVL22/g==,type:bool]",
+						"name": "ENC[AES256_GCM,data:dq3KPzI=,iv:L0n/Nh1sI8wZVrG5oSTHPt5zGRI/IP6wgsVntcSJgH0=,tag:Yj7yTuxsLBz53GDAk+57JQ==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:tbTe62c=,iv:t8E4rfIk5Y9rvwA4X94yW/sj5UaLi6SEbomN+fS1xNE=,tag:If0h6SuW1rKZmr/5sGZpSA==,type:str]",
+						"pass_credentials": "ENC[AES256_GCM,data:k52BQu8=,iv:yvA65eJcUNkGHy6vZSPD24+fdi5OngVCcOJJ9so3sps=,tag:/3RiW3W1QIs/hVCYt8rADg==,type:bool]",
 						"postrender": null,
-						"recreate_pods": "ENC[AES256_GCM,data:SUT5GHs=,iv:VCqmvnsxgfT7hgNcjeK7gQqgsRdRpacmPp0RRxYMvPQ=,tag:oC4x6huc67CjL2D/jYwGgw==,type:bool]",
-						"render_subchart_notes": "ENC[AES256_GCM,data:l5AvKQ==,iv:KFSR2nZdTD0oyVI2o+/rPVj8qL2EPp1yTw9JuRQk1KI=,tag:xSYCFy3Yzk8U1xK7LXWSLA==,type:bool]",
-						"replace": "ENC[AES256_GCM,data:IbhlJaI=,iv:FHNFeoaeFHyBJj2ym9Ar+XGjMA6CVy9HjEwgIpxYr80=,tag:1qKwqXcD+URto5GsxjyLxw==,type:bool]",
-						"repository": "ENC[AES256_GCM,data:L15+0JsVyNZ6KsickPH8S7Ujxl/1Dgn5h4zVCI/UJ9SmvA0=,iv:7FAKkOSmspXcfT2Mg94KwZDXVIwTfYb+R8S4suhvc78=,tag:GQEsdudPmtn4AoYJcBWFZA==,type:str]",
+						"recreate_pods": "ENC[AES256_GCM,data:a2wExOc=,iv:2ODQjw2hxberHh5vUe4qIFkTpa+tm9gGzXPEnPUYpPw=,tag:yEjB5zXLY2QPWU25vcjnXQ==,type:bool]",
+						"render_subchart_notes": "ENC[AES256_GCM,data:KGTujg==,iv:4GqXgPiB17UlxkjpHzHErsOuo4wE7cvDHyx2+QFB4lw=,tag:pIM9ojs+aMx/PMaYEtKpXg==,type:bool]",
+						"replace": "ENC[AES256_GCM,data:GTxEhvo=,iv:3QtOem0bpBytfTTRMAxeYnlJB5ySkBBzXNhTjUPO6F8=,tag:drkf7kADPwBM4QsyIX5xdQ==,type:bool]",
+						"repository": "ENC[AES256_GCM,data:rwUjL/dlNDvRWcOrHRiF2oAfFCUzGshCvNC90UiDOJgJyGs=,iv:miWkY61vLGgJ9E8RW22to5KdC08t1h1BxyNXfZh4Wyw=,tag:e5uCetmYG+8TEl10NRbAmA==,type:str]",
 						"repository_ca_file": null,
 						"repository_cert_file": null,
 						"repository_key_file": null,
 						"repository_password": null,
 						"repository_username": null,
-						"reset_values": "ENC[AES256_GCM,data:eq+z8ts=,iv:jKFjNJQAC5jwtz5RB0YzifJgdmZ2o79P6EwFWhruLUs=,tag:572oM+WHk5uUWMfClVjgDw==,type:bool]",
+						"reset_values": "ENC[AES256_GCM,data:jGN2qaA=,iv:ZIXPeW/L3WLRbk6w/00QFy7AK06mqRRBcM0kc4ESW70=,tag:F7KeK/fogIZVH/Yk8vp05Q==,type:bool]",
 						"resources": null,
-						"reuse_values": "ENC[AES256_GCM,data:00yZG3s=,iv:3OSpqnMcLQdvyIHE3bsqIINPVz26DB07w13ac3j6g/I=,tag:2o33ImQw/j8ZWwCDmoTOlA==,type:bool]",
+						"reuse_values": "ENC[AES256_GCM,data:d0JW7bM=,iv:y4RL/UwIZhCEEOKrbxPX+jP1NIctFmuZd+FQh3tdYw8=,tag:bYjCcYmQUKtptrDmG6CLjw==,type:bool]",
 						"set": null,
 						"set_list": null,
 						"set_sensitive": null,
 						"set_wo": null,
 						"set_wo_revision": null,
-						"skip_crds": "ENC[AES256_GCM,data:1qb8iKA=,iv:w5QRPv/aILbbTWAcSgmbVuaPMgoryLfV32mRsSH/O0Y=,tag:l0/pax0BWcSQ82/OoXLFVQ==,type:bool]",
-						"status": "ENC[AES256_GCM,data:HmQbhMQdJc4=,iv:cSpgl6TD9GkpGji6AXJseGR2AG9CJHxgtxYYz70Ic6s=,tag:vhXW516ag3P2NRXiQGFxNA==,type:str]",
-						"take_ownership": "ENC[AES256_GCM,data:7VXWpIk=,iv:7SKxMeiUlLNcsGmElGktzPi2cy/dPKF6SxG8fVmv98s=,tag:I91DM+WcMAVbjbZndrBu6g==,type:bool]",
-						"timeout": "ENC[AES256_GCM,data:N2D+,iv:taGEDGjkOh00WfHFRaQEEaaGyOKx3m+UBCaJCO9nSSw=,tag:v0gErd1GALeNNygtkE/ELw==,type:float]",
+						"skip_crds": "ENC[AES256_GCM,data:DQv8thw=,iv:LqVfYFd6ollOjtSuG7W68ORuQ4pairHskszWrq6dAzY=,tag:e33nxZNroFTZaJqsU+QRCQ==,type:bool]",
+						"status": "ENC[AES256_GCM,data:xoizPJYuKLg=,iv:GIGBTylP4U2CDFsmutOrtpWbFPHES2Q0WLBKmGfDjnw=,tag:qEr+15ENgkyXUI7N1IwTag==,type:str]",
+						"take_ownership": "ENC[AES256_GCM,data:jJ0ePi8=,iv:TrmfzhrbrSbarK1Ay6LfkSO/YCDqclM8mcrXY0JPQ2c=,tag:JmKHFI8nq66u/UYnAM0fVw==,type:bool]",
+						"timeout": "ENC[AES256_GCM,data:F2rB,iv:p729od8wskHCLBVT+6RzQjV4evGtzS6EWR4qPwNpsCE=,tag:QfadM+MWGB1VKHgcH5lQZA==,type:float]",
 						"timeouts": null,
-						"upgrade_install": "ENC[AES256_GCM,data:ZiI0tSk=,iv:ofloHPLIHCYOZigbNV0r17m1hv1L3ROX9679CoVdiTY=,tag:QyUSIevzp96ufvAloQJ6IA==,type:bool]",
+						"upgrade_install": "ENC[AES256_GCM,data:cPh2Mw0=,iv:LZmGSjiKMzDyMQ8W/H9cN202Zs6gOdE5Ivn6urSnOn4=,tag:9+E8krsvq7f0EBWDBJ+GfQ==,type:bool]",
 						"values": [
-							"ENC[AES256_GCM,data:mjq9D6peRvvOFcsBm/mRFfy8oAxym94mhlXfOsuosw6bQ3NRPygX9BYkw47JL4A5kJbksV8c2eCJdwBS0YZEnpYpWnyZi9KySy1N+1KQ+j6z9WTpGe86o6Blux5bPDGbo3Qvorq8XSzKruwSzUuNMf59m/z3Ey4Hg9yJF69degKdEMZXtxKmJJFqnb/tIJRIHdA21FkrCsENVoqoav2QUtPeqxj0uejFWcqlg2NKdEzipJZc+Zj3L0dBaAp1Ere6v1pRWZqLa2VFMxLyXdOoqUNdUrWEWsvIFyOEJX4c8W3jtCr5m2+9GHFXA0qmdyYKa1rAecpkbysvTYizdn2HaVZKkxZJm5wKVJYyGYVAIZJqlYnC2Np0ds5wvWYphHo21ehwNSrn6E4OBgSB5Zv9+8ynDxw+0sQUygltt8838YPrFaCb1Akpn6BDo206cqMhQD5yUgIL1C42Fi3oYkxQJz494crBXaFo5iz0llaEN8LTZGgXRUmUQeTJEAtrNgLe+ckeVFrM+KfC/UzyW8DlmXnV3Mc9riig/QD/5f1OQqYPaaF24KDGGGm5uP9GlgZz1VF8HYX54Oy5jaaFZkdob9lV2Ydl0QcngzY/ovksrLh5bgH2t7XHrOD6mjps1iNrWsazIaQiO5gmOufZtP4BX4ZZ3L6fYEwtUEcIiDtQ47RyBz7F3USjxn0Nbu4t0P5PwbExN0EH5afTrvokS8U5cJCgvkXzc+EMRlYw/nVdtJYxhrWkTeWaRTGau/fPVhQDqqKtcFjBDYzmeIyHtuH3R6VopEClw/RXpk18267BuNpDORGckWOPiYh7v3PbhJrekikgqj7rpVcrFh92Kzx9fpQ6CpxujAHAJOnqJP8fz+6jzOLCOyDI6tXqFmJ2hOqxPjvTumITkcqzjH+kipI1TmZbKCYK1pQj6UeA/K5txrlc+sISIh34mYBabcD2diu3+HScOXnDnOKC/8H8lVYJNXZaYxnM1ETvixIadm3ticC0/ks44gnPbNfViD3eaGaurLTCCDyDN3J99jLovhvHPdW9z2j1oA0hrSb/M6tF1LnLGMCXCHj9e20Wa4ijFm7V/043Gv0+cV0bOJb9Ch3sANlepc0P1/RAX5nwKC1T+4tXyrV+HQxs1DAzwFQBFSvxlVsLt+nepwQnLx/FR1XZA5nUSZ9FUL+TkZkreso6R0bIex0l0N6iGRSQYVi7801u8262zU1sOswTH+1v53rtf+HsZhF/hx0qCUmjlnHYdlxXjwFZ9kZAdzP6pjCnIMAEycQPwOg71kJPPyYElAbphd5eIFZ2DQuMKf5VDSmdWihJNgLQmS7rR2Oc+2QC+iobo1kZiHe93JmURNEuGKF0B0wyI2R9MB7JA0A2zFRINfpN7jilAWW6UI5zscMXoYsyROApoaivGR3p+wm7hDUo5MAWyxqpOMzt48pOekeGOOD5m3bOe8jJ73cKTW07CBplaEafpup6wtkM9lbLYZVTRNZ6BlTpjElkTyNvw0NmV+kH5UOsxiYaQwIStLSXsjclOAfeTELAW7aNrq5uoipP9OzxdzCNK+2fJjlNO0UX77UrdH1wRbKaLKgNrr4XTI5COo2LUns9RkEF2HReAlRQy/0hKdBf9sApDrXnzpE2uobFWf5THsqmbeAuVzKFGMxEx03PSxu8DOmFbO4VDp0vQEbfXLmB/1VLOEk8k9sw98FSL/R8ICBuH10MKFhavsdEvoPmRPdRsD/cs/bl1wy/U3+hfMETYjhaInuHbWqF2V+p+IEsKRJU/9N5C0LTaYDa2B3WpFtbFZIfNBfBK9k8iuBBVeiA0lOnr7h7Yr8d6V40E7HANvZi33evHY2DOLGL32vdZ954vQAsuNdzm3xbj0tHnXJOFl+SFdQSK9ot22vYSrK64atYQ+3loL1IflQyreb9go49lAa1csfIMZaFs2mjN/BRkeGwtFHKCHskhSYo61eoy6d8Sf6d60UpE4xacnF8CudJ4x90PIX/Ig0ZqB/cVUIOSPjJ/4ZNi6IRg5Xn9FqHRMmlvQ/xvP8inEV9Mg3cjiQNvAoJ5HRqlqIHZ7YMJZK5Ap0jsKgmvsegiOBnDqEFD/aIxoCd0T8inBeC38hndXRAIUk5gGVLmdFnk76f2+Zne1wNcqRBmVEMNEqkFqbjHXBU8KamMItcjUdg/JbEm/OOmsZYCktTWGFPSE48zwxN4hsFg7KF9AGh1trHNrCepYV1GSA7rV6Xf1melZvdXHwI2tdRLo9wf9xvU/aZGCFI5iBFOkwJnrSqzIfpSst/D7G7zcKI/tFffnpdyMDcR0vyzyhcOZZaeC6WhOXJP5Zz6DINFfO26zm/lajc5c98iwLFfvb0H9uYLYmGZQBwHLF/ug46Vw5Xj+9ubEmE206xIlSX/j6dRGSuaYeN2q2SKXqc6Qb0TdNNmrP7wlOcq10p0n04BtdbrYM1iT1rcCOXUd0jEQguZVwmWMnZt86gegnrJiuAl4DLYnhVmnvWplqzNq+tvgHoo9x5XzbB8pldyhJQGo7iA1obHhrgmjrBvm4QAlkr97hTT6K769AHl1mdasav1QG+duJXEcNMungO0bJj2K84/bAddM5lVgy4eI14RDEc/ZV3O4rgEmaLltsV5RwX9MWMZv5D6Fvnz4BmeJJBZE5acLz6vrlFkxo4oZpAieDAn+W45KPBsAhg4uebiLPpCDgZO/jphmdh9nfziZy1IFHICLDfQyidwVJPpdP1e4cpidp6MM92SWb4Qh7lSw9+FMGs26Faedlryln7LkPSq7Mr/KDq6yJzVcqDPwXS4+2mgANaWXAdn/qWPmeSKMUSS2bzl7yDUly9bsxgKyV61VYgE0aN4bM75Ilva8dsyjQdxrsXkykdR2WqE2C5wsvp1f0MKG2LZxPn96tAxDxWrZVdx0QAMYmS88MZKTid2mlXioUM4VKXhnlL1pjoNuwGBBHYOTQckMHyCf10y5aYnaDIXrohewvBylyduhv00q0lV5YgcPqB9MwEEzCBCwkrLkYWPHQMeMJqHpmMFm+EGO3ch3lnr7FYJoUJCmSmNVr5bnNk4jl8SzzlV0mv1GDORG6MCA==,iv:k8M4xGyBMIjhjHRZVSVY2/0nOBgxo1qhxHG/SJVfeLM=,tag:Lsfine+hfBLLPbLkv2iOdg==,type:str]"
+							"ENC[AES256_GCM,data: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,iv:EwqX23ilRRagdKVNGeuW3PKi8Vkv7cmPfMKW2UJdzWc=,tag:BDf494onPwzMmKPhd6W1GQ==,type:str]"
 						],
-						"verify": "ENC[AES256_GCM,data:YTtNCgA=,iv:+wzKsDphmpdGdx2dp0xuB+unNGF8NkkjDcJ9qZMu4Ic=,tag:uM5wSVMS3G2nd7DVcRq8+Q==,type:bool]",
-						"version": "ENC[AES256_GCM,data:jAJZkhJ5,iv:JEoeOzpkTxgEH64RVaQusJ0RBS618xkp2PAGOhAO5oo=,tag:HDeyfQFMOAiK/t1QUvPFWg==,type:str]",
-						"wait": "ENC[AES256_GCM,data:9I6T7w==,iv:9FY96JKKAKKKz7lVxSVlHvI0eOYs1sdQU8V/k7iNiOQ=,tag:jSUtkkw6BKY3yfL6YtSvzw==,type:bool]",
-						"wait_for_jobs": "ENC[AES256_GCM,data:oFrkBeQ=,iv:t7EJbe6ZcChnWMyoYhv8RqA9fNIaue6SMaDJz7Qwvl4=,tag:YV91qjFsd8pwkkiPdgc2FA==,type:bool]"
+						"verify": "ENC[AES256_GCM,data:8EOfO4Q=,iv:VWvYh43cUTLzdpoSl9EeXZbrfI7htdIh3sONSLX/fU8=,tag:MwAvSribF1bBnFV3N43GHg==,type:bool]",
+						"version": "ENC[AES256_GCM,data:8eIOYbzJ,iv:W70CbmUEaYNgp0juwZCvE7B3sGmcJ+MKuE093F+kFLQ=,tag:borXP5dYCicVMzl0/bDUkg==,type:str]",
+						"wait": "ENC[AES256_GCM,data:Mb8T0w==,iv:eSZSg5wZtvcDoi1BMPAf8euxfRJdEH45wGmYJ0xhCgY=,tag:Ssv2mRGc4UdyQ8dMHkPvsg==,type:bool]",
+						"wait_for_jobs": "ENC[AES256_GCM,data:BYGJbBM=,iv:rIWO/meFg3F6JFmrPr+FuQiVJLFWTg6ao8WK8BPAHCs=,tag:faQqAohcAT1VxM0fwhVc0Q==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:xyF2Tv3rkLs=,iv:pp2Q7YSGfLB/c5luB863noRi11mryybhQOCoXRpJDco=,tag:z3z931Iwn1O9LoglzC3ofQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:oQ/jXaoinvjv+LxG7XlQvHZobQ==,iv:lpBu/lnBT0izrr7YVTnDMxmrqcWXUdhHinIDc9zvXnk=,tag:2xGDS0ZHU2tWUCKHfOcxzg==,type:str]"
+								"type": "ENC[AES256_GCM,data:h6/UOoPRY6M=,iv:yZvMKgrd5gvYz/YcP6HKCGGOEHeEhXbMoPTqT4YN1oM=,tag:EpvIYJ0Gqk6tVd5Ty5vdkw==,type:str]",
+								"value": "ENC[AES256_GCM,data:Hsvk+2iAtbu5Deapc4egUooPvw==,iv:aF5JBlYHj8C4x7+mCNQLqcIyUuQgpN/Tiwz61KgUmWU=,tag:Ar4ioT0JrzSfeE+n6xNzNA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:rg==,iv:Xs4bii2YtojsJ0qe3VPHabv+FsIt9nmbcjC1j9+irPo=,tag:pVfKyJSfTZBkdQLJBJ9Tkw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:mg==,iv:ktKnxyxRIjJsiC4JHDN2B2C6MSD5arlME+o1JN2Ls+I=,tag:yEsdeGzab/WfHAPlSR4RhA==,type:float]",
 					"identity": {
-						"namespace": "ENC[AES256_GCM,data:fllqFLE=,iv:2qf4/jfs2IUY7VCgMhesXlc4Y7o2rIJL4zSNrilopDQ=,tag:jl27HUW7b6ZGUmxUK8We+w==,type:str]",
-						"release_name": "ENC[AES256_GCM,data:v9luMb8=,iv:/oQfq8eoasJDUIEPOSy4FtNndKeDy40IrWPpuh4Abqw=,tag:0ihb0ik1NFV2dHxswD4Frw==,type:str]"
+						"namespace": "ENC[AES256_GCM,data:C0JXdDU=,iv:8O2HlyLb/U8B6I9NJMpT95BU3pgrrJDeaJrwodbrURI=,tag:1xefxhJabDKaFj1+HAjrxQ==,type:str]",
+						"release_name": "ENC[AES256_GCM,data:VL5HlLA=,iv:soma7d4BxzgWhVetiZF+Qv+7oWFrh5ARBXuxRWqlMxU=,tag:/rBREWuF/XwsSe+1DbQ+Og==,type:str]"
 					},
 					"dependencies": [
-						"ENC[AES256_GCM,data:Uktuwp6/39wP5lN526pXkpSyTkOHo1HO61c=,iv:y5zyh55xxz+TY8iuYofb8LeaN690GNNGTvul5pUvsmo=,tag:nxjtjO1fZ5XwYDVYB4HAIw==,type:str]"
+						"ENC[AES256_GCM,data:ZrUxXLq+2PkfhmrvHT02EjfS93JOg9RMorw=,iv:fcjad9Lpmz8zvAQLlAG7dZ6vdtR08jmc/+nVR3qENAQ=,tag:iK6Ae/v+DsYUwkgrLvQE4Q==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:40jym5Oicg==,iv:k4kJT9j+1vDPWPTfmU4UE5YLOPld0RwRCf0Jr+vbjXU=,tag:D7BNPaHW4zTZ3Kw95bK/Yg==,type:str]",
-			"type": "ENC[AES256_GCM,data:2AiZwzmJFTZiI2R3S40I0fuZmFV/9ak=,iv:cFIXBABqGmpXoHT3PkLZdQbiZPrsk2i07i9JC1ahAjU=,tag:m0PukOR9OXDl4eFKlTYe4w==,type:str]",
-			"name": "ENC[AES256_GCM,data:qCcov3nz/XoVTSY=,iv:LE6/C3igI8Rwi0+9WNd4s3LDFruXiEqy1rdtHha1gAo=,tag:MINDA+TXZ2nWui+Wc66Xaw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:hRK4DFSCKsVouxTfECtEwZHFEFhjiavjT55YsPjTfD+56Eaue1G8lTU3pWepNMoH/URU4SJg,iv:VN9ngvijSaZOu6OCSTbqkITOjmYZfanWuDF9ywABlTk=,tag:Ciwonjgz9igGmhnwWw9EjQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:L0eiiZq86Q==,iv:G/ALb2pzuZRu1r8wiG4CbkZ6fyhZaAuEjaapDlY7fjA=,tag:G/xhiyY65vOybPm0vdmxWA==,type:str]",
+			"type": "ENC[AES256_GCM,data:QTk4/wPlPR60iHRa7PJ2lby+4JXbhyI=,iv:adynmw3fbafG5V4X7qrRWi/rtyG17txfQkZIDCxhM+w=,tag:joZrwnmLlemuP+aiMui1mA==,type:str]",
+			"name": "ENC[AES256_GCM,data:P7rjoEJQWovkt/w=,iv:ezBvz5DwnSTQWww2Gg8L3GN7YZmg0WSnbgMO7QiZTHM=,tag:MUexjHyaTrBCRQZaVBTBaQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:jQNb+C41iUplRcYu1QK51oSvrJMhimDLo4YlzQJ14mRGHe0C2LFChHJ5QzNwDzjDtnONhh8K,iv:K0N+oisxUjpmr41N98f8Oj02uCz3oLmrqZqAIsqodeM=,tag:+0CnKYQeXaF6jB+bjYjAKw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:2Q==,iv:PuzCgRvW00hhtmGkDuUnx2D6ZDqDbC+800EbDOcG8b4=,tag:1sA6N2T+/Q5hUnHKofJCUA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Gw==,iv:8uU7pnXPnTEcK3ZzRqlPr84NDjO2v7UcA6iYKS/hLg4=,tag:Zflta9OvfN8/GSeKR/1sgQ==,type:float]",
 					"attributes": {
 						"aggregation_rule": [],
-						"id": "ENC[AES256_GCM,data:OYQ73nMmCGT3rXw=,iv:6nddet37/bCV6SId5n2LQwv+gZwvsyIl5tsoj/4YOHQ=,tag:wNjqSd8Q8WxaYr8snRTLUw==,type:str]",
+						"id": "ENC[AES256_GCM,data:/OVG8O/WJNs13fA=,iv:vZuq8mcJila9gezYMiwZ69r2+hswqT89EOklfjYuzqo=,tag:EzMhsJWC4yNwqpp5uYbSTg==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:dw==,iv:OOevy45C2j6lg8rfmCPb6iKErBlWt7jAXyWTT4wcIA4=,tag:AZiObCIZsREnUBdqB1hYlw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:MQ==,iv:v7lHcwmiNsyDs4S7atmtdyJAVLr1S1qVcc6oy5Epqes=,tag:wo05WitWRf0J62q3+0Yovg==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:x7KM0Vnk71W7uUA=,iv:fZT2KKkWh3OsBcmh/8WWj9DYStTU56KWxCjnvPZN8CU=,tag:ODpOssv6miWMH19CgVzAFA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:XJ8lsuhEhEUl,iv:t2ZqzRs/8XIbsAGB2BV8GcLvyVp7EkNrtipSvSt9oF8=,tag:6lu1WlIu9l2jRMkfqA/djw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:ad8k29v3zW63jYuMqebGhbnfZ5T+gLJ0ZdBhNxm/HfgK99c3,iv:ZTRS/MTfupz3YDhYrT88jwCU4W8eFpOU/a+XYyD1Qrg=,tag:/MiUWpqMD9MbamLCIp7oLA==,type:str]"
+								"name": "ENC[AES256_GCM,data:HKLLjCSL7qUBJJA=,iv:EjGnHGyEBCGmVWktE6gJaAZtlGXtCJT0r1xN7IHLW+U=,tag:GSbxVW/yeDzjGIuszIacOw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:8F91mwaJyzaC,iv:5T1aQkK5lRRWRChUhkaq+LzZNE2Il7dXs1XNKyzW+e4=,tag:MwPuOrjnuqjc+bmzAiUdPQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:bDGRziRVftPEd4Y0PyJAb4PTKQxLcyUSl7iDVCnYmkqlADJ4,iv:8g77K64z4d+Y9HCjpynawwJntjWY+rC4WdQxSdsM6gQ=,tag:1oFx5p7CYic8ZBce13BpkA==,type:str]"
 							}
 						],
 						"rule": [
 							{
 								"api_groups": [
-									"ENC[AES256_GCM,data:rYnxYA==,iv:6QMrilYETaYz60yhRuQN8cwrBunDU46bwywdCxtuMHg=,tag:LuOgEi2NxRg3c4Yrbgd0mw==,type:str]"
+									"ENC[AES256_GCM,data:sogDcQ==,iv:qndgOpEbvPQmAK/SsSvTSyAHS/fLi/fkHQz0Ch83vwU=,tag:JQa+BEe/4jBsm9PTWYABKA==,type:str]"
 								],
 								"non_resource_urls": [],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:EydRUc6PbTmJmdU=,iv:nu6jwdqUNZJDUEqRHXX650A3C9U0W2Yv1l0Dm7XUBNk=,tag:h0xiUXg6R0ii+lrNauGv8A==,type:str]"
+									"ENC[AES256_GCM,data:Cbww0nO8FQKjKOY=,iv:quH4qrSy2Xkoyiwt/PMQS4Jb3dwai+lEyHnUA6PEtzY=,tag:aDTveqnmNpnXVdPyOK0K0A==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:QgS2,iv:TjIAAoZB42d5YPBhCl+rcfsQq/yI6m5akSfaYJ4yVeU=,tag:FV57SZ3xBfhLF6jVUHQknA==,type:str]",
-									"ENC[AES256_GCM,data:AH8VWw==,iv:cFcpO2ymPw9qM2FpMHWsTSiAw4YmIqoKZwGvFx1D4LA=,tag:n+G41wtOQeIIiTWDNFCuvw==,type:str]",
-									"ENC[AES256_GCM,data:indqr1A=,iv:59wneYMKArG2lDutdUVIB8KmkzWW2MHK7BU7LjvT+wQ=,tag:dGgFUOElEbdRccV/Cltixg==,type:str]"
+									"ENC[AES256_GCM,data:wKml,iv:mG8uS4AeIbhTF7+n9rRpwjIGB/AwaEDhHhoyyGDPmww=,tag:5NlaenO5s7OdSgF2q2u+kA==,type:str]",
+									"ENC[AES256_GCM,data:iBFDhQ==,iv:MJUVe72sYQ75KSlreyCG++LhCSbiJGHEnj62v924Yt8=,tag:TTF5mlQ3zVOVrU24emtieA==,type:str]",
+									"ENC[AES256_GCM,data:OzZVdU0=,iv:p+L3h8SyPpCLJT/M6XbgyJ+Rr3/Q58dBoROQ6odwtLk=,tag:+lN06wbvhooUlevqBqitxg==,type:str]"
 								]
 							},
 							{
@@ -364,46 +364,46 @@
 								"non_resource_urls": [],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:kIPI7w==,iv:HmtBJJF+DFXpFqd6N8CXpI+I34WNm3Tl0KfZv05C7xw=,tag:ykJwbe890i/eq3IizEkRtw==,type:str]"
+									"ENC[AES256_GCM,data:lcWX2A==,iv:1nw+xuE34CGkoyte0nlojoENLJb2GEQib1Q8/v8eQkY=,tag:6iXS/k0ecmAu3kdnP4WO8w==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:z1Cc,iv:8Tcqd8f34uRTcRqcf6u0617eLmOclk6VdpD75esAFos=,tag:oA4VvHoTmEmswUjdhDn0NA==,type:str]",
-									"ENC[AES256_GCM,data:tiE+7w==,iv:pjcOwKiIHLJ+0tLGsu7bimvBmB8xV1ooglmYQZTS8a4=,tag:pTQm4MkCwoqlItEMf37bHg==,type:str]"
+									"ENC[AES256_GCM,data:q+3h,iv:bTGsi6IQby/0a8xJ1E4p6gEJis2i0XHFPdsKTWgS2Hs=,tag:9clRhhVlO9hooEPFmdo4Ng==,type:str]",
+									"ENC[AES256_GCM,data:Yj0HNg==,iv:gLl2ByPPbR743ygLJdA3YFt/EFgOvIc9ro4dVdsTnUk=,tag:wBnDos9tCU9N3Gtp0LRESQ==,type:str]"
 								]
 							}
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:og==,iv:SIgH6A90rLM6OWAhRl5K1LCsZpv21EKAVpmEVx8W2mI=,tag:rzcWvf/ribQnnOC4V/ye4A==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:BQ==,iv:hXg87LR8IINutcPs4aMljwmIuHMRWLlWHqpA0wnu/Xo=,tag:IPqqs3b6Px+UWwJZQSVF8A==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:L2Lnl0N+SGjrc9e44HHidSfsxl3Udodmos0+ug==,iv:A/jBYtDjoN4NSn0kP/Y8e3PNmIQQdOtBtv6CuZKl19k=,tag:wV1gcQlN5ARgtdQNjTJyBQ==,type:str]",
-						"kind": "ENC[AES256_GCM,data:kB5DT8WIah+Ol9M=,iv:fB+6bqU+xNGZQM19Eu7Qg88JQ9wYk778Ko8UfqU1eco=,tag:jLmw/Hfm9vwShFi/EKdbrg==,type:str]",
-						"name": "ENC[AES256_GCM,data:xjk0S7IZXj/wM/E=,iv:QtUKviFizhNa5N5kRNlAsMWkcfk2nIIa5bJ0vRrxhJ0=,tag:GJi1dMFiSTulZDfezYfXsQ==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:qnpogxLvs6WiC9G5PTb9w0lfsxYrVhw36X6E1A==,iv:PJyZRjOxNS7fg9apQoThPvFGNJ2HbOlKR3EvFjKmR/w=,tag:b0Ot5iA6PLLMWgaeekMZFQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:F8r34z2UGfM+mJE=,iv:2zECs2zmPhib1b/LY2riW7ILi49aQv2FW3wO6nbdCaU=,tag:XkenkEG/zSe91pRL3mPd3A==,type:str]",
+						"name": "ENC[AES256_GCM,data:SYA/zSlJV/dnUVE=,iv:B+sji9u2CJ66xvWD4TKYJ0jmAhcpDJ2wpFXCoUG8WOA=,tag:mDhdiCrhGmwN0HsKhS+YGw==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:E74m6eUJuHU=,iv:pvB9t3xzZpp4CscNn2TnztXdZek5gA/iNGx6nba/XaI=,tag:LOvmnYfRx+tVEbT3lPkVow==,type:str]"
+					"private": "ENC[AES256_GCM,data:wQKvW47fxF8=,iv:XntZVs+F/uggU73gqGnwYUJWyto5Ridy+Pnue9MAXIc=,tag:THrgVO05KGNz2FQNXU5WDA==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:gx66dnCR6w==,iv:LIeSwjaxYzkJBDGOpBkBlrVc0VQ/QvG1rVNxneoXqMM=,tag:aE+Dx4sCdxdHu5YXTH9jRw==,type:str]",
-			"type": "ENC[AES256_GCM,data:XrgcmyTSWmb9jarNhnHOVtjLGpBCm5k=,iv:fdE82AxvJPT3GEUzhXvND5mfTMpyvDRuYS+Pq0t7HEw=,tag:1OTE5eyFUrHEDjpUDB31TQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:NAnHEAqoPuboWaQg66eRfQ==,iv:PRFIHrT97c1zMwUM8r8DfJ5z0t/hbuUJbnpn0wZ1qiA=,tag:E/WdnxF1y7kS3tcGUTSlgg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:ysPQ7S8HICYlSKBlFNxhy6R2CH1xlDaytTeaiFtcIYfzw7D99eIQ+5BmXxBCw2BSA0h3hqeP,iv:G+QoAtWbJc+EpSdwazv7/U+/q3zVNU72iT/ycca/pZo=,tag:H1gCzF42WLb5/CjVmbQ93A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:9mOal+o11g==,iv:Ec+zj3GcyAKWKX3PRKz+Mt/KvcxDhgLLKbtpC//BdKQ=,tag:YE5n0S5FaFTlhzE/SUN1gA==,type:str]",
+			"type": "ENC[AES256_GCM,data:KKP+VFZIH2zew9CLaKerTsVjEJTq+Pg=,iv:Mc7ZmckvGX5wvz/KV6k+teYQvqdxE8pKskQF/g0woYY=,tag:wkgvdyoDy0+Pd0c9v93Zuw==,type:str]",
+			"name": "ENC[AES256_GCM,data:c84wBZPEOBkgl51YKT4hjw==,iv:RYXPSc/9OALnoqbsyS/0tPi1nJsAe1b5tXbJnbo+OLE=,tag:mpP6oUd0vIjXhrY0SMmV7w==,type:str]",
+			"provider": "ENC[AES256_GCM,data:CEFynvWaf+Pi+kTear/ngcUBxbBXUK3cftBJbuEVuXPTKNlL2qVKHSWKjER2DnoG0fbxdqzY,iv:hI6GcNFjtLXda5R4uZSGm7YJlE30eiNXCPNtyY8lHWY=,tag:Cj9tyGsf1cZnrzG1YqhltA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Yg==,iv:MPA6xCHxH42Cyk3eJVH9TTIadc4nXQVZoRfv/hVumFc=,tag:lYAzIhXygvXQHs1d3v62hQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:kA==,iv:FUyTjl5l3/Fs3DJL0cAvyLO3cyA2sHOeS+NGpGs/DTs=,tag:1+THUmc4RWqJUKQnKip5ug==,type:float]",
 					"attributes": {
 						"aggregation_rule": [],
-						"id": "ENC[AES256_GCM,data:8ma6oLZzkG5YvKx/uTXgGw==,iv:tpqEHmq50oVa9guk+T2IOl1NCBCTB5pMWX/FiJ2Y3m8=,tag:R0m+EVVWf8cEomMIJPY2iA==,type:str]",
+						"id": "ENC[AES256_GCM,data:4kpkfBAkTGO/W7727rvnuQ==,iv:E1GcNv2703nBY3zESju4Hx+XdJAgIK9vWazzf9+S68U=,tag:0m26v9cALk9j6ROPRP6k8A==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:/Q==,iv:5dJLYgRT0jFtRv7zuS23qQT8IG7eE831w7OjsvF5V9E=,tag:YLttp5XVyFS1BYQtINl3TA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:aw==,iv:sw7Tc7hkmZtHrnt62gw/9JIdX7unRL3pit+dQCo2DhE=,tag:UI0TVXrDEJQgshrNM4JUrg==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:IaD2/r/dcgEh8Fe6onXYnQ==,iv:WKi8J9csIRzuwXb1ydMhk2c5cZyDrx5W5hh+HIPFtbs=,tag:Gmw7pY04q6TGLwacpGIprg==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:22LGMjSwlrS9,iv:7TdQmEy8S1+2UXGYGWCmYM2j61aoWXBPWASLFLURNWI=,tag:fRibg3E23BQRh659ibm3OQ==,type:str]",
-								"uid": "ENC[AES256_GCM,data:bGyV/yIR5Tvd05sjreAGG1Pm1hK1x+KaBiusjYrPHSBRX06F,iv:tQI+8s5/Wu7onwpVymOmxENg8nlHgqLhBiEdOPLScYE=,tag:wpwCajAPrWLW/zPMfEIVaA==,type:str]"
+								"name": "ENC[AES256_GCM,data:+j9RIVnhhAi2Q/eegEu9Yw==,iv:QX6eYul5xsfsFssMnqgmr2mVCJcZGiZJ6szDrpcwEvI=,tag:1sTnyPDeEU6KKDDbMKz5uQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:SVA/nYnjRSQw,iv:weuD4KikE6iytFyJUX+BJBNnrpvtFhepePuJmw9LyHs=,tag:0a3GbUBdnJvED7Aw2jMWbQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:gNTqcwu4j9c9awfy73zWOLUdCkloMFzdeWsF1MhRD4sHVEIK,iv:j5CfuCsgeK3bUWs5i7xNsj7tv1BacD7azsBVE2LhF0E=,tag:65h8gb83kOiu1Z1sFSx9ZA==,type:str]"
 							}
 						],
 						"rule": [
@@ -414,10 +414,10 @@
 								"non_resource_urls": [],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:plcxuOo7qTCzSXzqlLcIJ29nnPyL,iv:0ptloagnO6/8dSAW9SfWI/CSiJ5VYbn5h7Zckw76ufg=,tag:yyZHgljr2/STVsNHR1nVwg==,type:str]"
+									"ENC[AES256_GCM,data:0Pa1brB6uHLPEz/9bBM1Um8P5KNw,iv:Az5NgNYYK/9XNYyIUtRAWHaV12f5f2uvexBSO+E31A4=,tag:ky+C1wsxsPdHd8tsqkRnfA==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:cSoZGuH2,iv:dzGkbOZlRJvGfKoANhh5dzlnVhYYwIXifNv5aRRGvys=,tag:bW5wllvDlG5qmcCUnzr3uQ==,type:str]"
+									"ENC[AES256_GCM,data:rSTuJBaK,iv:I00fswxh4DFGO3ZkvALL2O0uu9Iy3mHML2KqZpJVsk4=,tag:C8K4NldZTh6b3uhyjmvw9w==,type:str]"
 								]
 							},
 							{
@@ -427,144 +427,144 @@
 								"non_resource_urls": [],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:9vZ33N96ddw/QnmaoZsC,iv:6yVRiXEVxMiWygaaO+UQz2fDv4QZ2wU9wXzyXsOAOMI=,tag:TQyL9Kf+i4XEBdt1dS1/IA==,type:str]"
+									"ENC[AES256_GCM,data:m6em9c7RLIrYvYggM7b/,iv:/jr6nP1MYfe9cCmWp3FRFg+EC1JRLtRaD+9WsjvT/m8=,tag:1gXtOFjVSfKHpo/ABEKxwQ==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:O+c3,iv:tg1KMR4hv5W5qzMCdwIRwuYZFa/EhNcDhrcLPFzYqR8=,tag:Az5FSdspc1xYXxN3z+IB6g==,type:str]",
-									"ENC[AES256_GCM,data:tQJhDKP9,iv:7nJI6EwaDmTr7cSCC4c+A6agB2ZOlVlRmz1r6prMRZE=,tag:1xxlPNUn9TPUuh7XC1mU8A==,type:str]",
-									"ENC[AES256_GCM,data:hRiURIPQ,iv:e8zBqWTbVsS61AnZzQuKsh/f0Uf6grLBrcwWNqkdeIA=,tag:jzoXREU/Ma35HzIHToHKag==,type:str]",
-									"ENC[AES256_GCM,data:mYtf/YXo,iv:ihAlbKyYUupgbrMJzkgVEEAwBJO84nKjs4ot5HWZRfw=,tag:NNBNp0FAyoDy7pNHIK9O7g==,type:str]"
+									"ENC[AES256_GCM,data:ojdc,iv:EUj5gxqQ8iTz9Jc9IobusDgsqYi/oscFSBf27J7B0LU=,tag:CrP45REuGDPtivGwxSVmBw==,type:str]",
+									"ENC[AES256_GCM,data:p2x5dMqi,iv:EiHFJZ49xmcBJa8O7EG3b7xmbB8re77gyYSJqNnZeYI=,tag:UCoGs9pztkMS1lMM//4kUg==,type:str]",
+									"ENC[AES256_GCM,data:TJ81TA/D,iv:8NxWUCE1r1nvouP9plTebkZDLQA0E7vwgM2eochMJxI=,tag:DDaQGSM9PthlzYxmdjiiiA==,type:str]",
+									"ENC[AES256_GCM,data:k+hBiraP,iv:7/nrUT4MPuO34ZM8vNHfGT2gA6Bubdj7NR3bKs70Jv8=,tag:iSZoMOUAIsNtc815NX2Ixg==,type:str]"
 								]
 							},
 							{
 								"api_groups": [
-									"ENC[AES256_GCM,data:7xmmYDwMy861qqYFKUtfO+DC1JKx8M2Csg==,iv:NwvK9RiXHinGcy7Fga6gZWpGQRzw6YSegYNz+6lj3Yw=,tag:ucp1K8GbTbRCxjtL2EEbRw==,type:str]"
+									"ENC[AES256_GCM,data:YknYo9ZRwqkoNCAqN8mC/2+hdkj5TTo0Zg==,iv:RDUrbpkq8MbMh6xO6enjy8+tsURRaiSp+ZdYdd1Qq6g=,tag:NbTit41ZIC7Jv8OZyUdp2Q==,type:str]"
 								],
 								"non_resource_urls": [],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:WMRVZLOF/51rEG/k,iv:LqLzA8Q/qQExpqEKpqOHaiSUwt7U0wal125hDO59BwM=,tag:Qj1pNVGfX3MnXYsnNf3QVQ==,type:str]",
-									"ENC[AES256_GCM,data:+lCf0dE+jq7gVOVmNZin2hOomw==,iv:leDQ/3kOAES4tk4njPiiHIImbK4ZSltIMQP1s0aiYA8=,tag:+hM5SJhicjZyqthzzkEOUQ==,type:str]"
+									"ENC[AES256_GCM,data:Q3d+kRYaiPsL+3h0,iv:nZbtyXXOv00a/DKTwB4EA3V3SMOyv+FCWUD/glAT+OI=,tag:Jf9iGTW3/etkTsEyAYGivQ==,type:str]",
+									"ENC[AES256_GCM,data:8Rp7M5DVBhN4M2zCg93KvtHwsA==,iv:wuJ6MAYC8qhLRNG6yb/ZiuNix1rYv8BQInEoBZaIvIM=,tag:pm8+lgHIeCkGlgiQArwp/A==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:Q3bbBWSV,iv:xMlFkPVGAoqnfy5LysR+o87K272zjFdjnP9UvCXS2dA=,tag:64abvkLjPOHG4BUvOHk9Eg==,type:str]",
-									"ENC[AES256_GCM,data:ddME92IZ,iv:58Emf7nCVDZGoph856SK+uKZZZn9KL73ujJxlS2CVrs=,tag:QnJTfPctk6udevirtmmeow==,type:str]",
-									"ENC[AES256_GCM,data:NKUCWUHA,iv:D8I9Zgvc6bPNhPCgQHE3zz36EYaI8rrUrHWBkdDV9xc=,tag:5Tu7uh9Cj4S27E6k4jZGcg==,type:str]"
+									"ENC[AES256_GCM,data:/zXZL8yA,iv:GLLtcGOgWIeUdxje8l7uQJSAWM/CvPhTV0WO+HFLLRM=,tag:5gJeGGXNQ38Sgooub9iBJQ==,type:str]",
+									"ENC[AES256_GCM,data:v6BDpRu6,iv:m8OPs2R2iQYdugHpdyPQI9+iSIizHHLo1d++OVxUoCk=,tag:q3f0WlVh6rz4ncDPN3G3TA==,type:str]",
+									"ENC[AES256_GCM,data:qZhS3MPx,iv:aCxm4zElGPCoUTIOxmpCrN1QjyyAFmZiAQkoYKk8Hrk=,tag:0uO1VNx9G4WCc0p1OeomAA==,type:str]"
 								]
 							},
 							{
 								"api_groups": [
-									"ENC[AES256_GCM,data:WlwdGSWANQWsfbAErtRZsSj7P5L8sFkE3A==,iv:/2F+ssOljuuoI9BF0A+bz2NJq+bISF3t6gF3EnU6s2g=,tag:T1O8YEs+5bAKHIwb0gUplw==,type:str]"
+									"ENC[AES256_GCM,data:Z16ngNCQJjDaVz01/4syvlVOl+nfB4NMHw==,iv:TI52gy+rU6SsaBmmPAzkQwjHUhmtTmrLOXTkwDpT0GM=,tag:mtcprXEU2PPS19chDW1C0g==,type:str]"
 								],
 								"non_resource_urls": [],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:2T+mT74=,iv:m78uk+f8gzk/P8vpW+saUOcH2W/NzfZqP73U9r1Zyqc=,tag:qsWLZzE8HMbP+ddIFxPm9Q==,type:str]",
-									"ENC[AES256_GCM,data:viXVtRGAZ5KsJgnL,iv:34Q157jTGCC93EbyyDqAyMr3FFBwMVuLZ67OyuQ3AcE=,tag:YQVj0vq1tao7kM6dsP3wbQ==,type:str]"
+									"ENC[AES256_GCM,data:djOS5I0=,iv:LAXxzb3OBkvtPvyn9hUbbsPtPC7erts15W0KfX0g04Y=,tag:KLHxp6Jw05W5N9r18bT4jg==,type:str]",
+									"ENC[AES256_GCM,data:IMal+cebgBHhdQgL,iv:cvbaqpzmw6psYHwdem2IaeWghDmkwsuuThMo9I2dshc=,tag:D8MfQilZpY4Rcw4FHE+fTQ==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:KTyOcA==,iv:LpjZQHbI4bwg4iSPn3WT1bahPoRx6k1W/QhXgdTB0/U=,tag:Uf89KmLL5zcSeC8n46H6pw==,type:str]",
-									"ENC[AES256_GCM,data:ggmWFf30VPM=,iv:t3rk2nObKB+czQdb+uuzQxxrGB41DWeZXIJVbzGAA58=,tag:ShipR/g+cMM0UoEzAnRXPA==,type:str]"
+									"ENC[AES256_GCM,data:OGikfw==,iv:cyat5u038caB0wCzoGcdecD2II4JjqvYIQxpjv/utsw=,tag:U4uNasx+97CT0h2aJoYzGQ==,type:str]",
+									"ENC[AES256_GCM,data:RNdp7gZ0zCA=,iv:mceHewH/4p3rgSnq0ZOyPt8GnX1crgBhZSel1IWd6Qw=,tag:RSyT/UqP8vqG45DnfRC78g==,type:str]"
 								]
 							}
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Tg==,iv:i0Kkt3LQGnL95Yy4r6L+TEGftPlkFfV9eKR83npuWHA=,tag:d32dzYGSBB3++VZE6eSlfg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Sg==,iv:Y01cxKEUwMzMmTgkT1iIQdNsoK8V6wSJpOgZmMRAGUo=,tag:CItfBFIm7IayR/wSBRQmjg==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:EDNBsnZ7fgmTeTPaN2hg/0Fz9+KpX0ZebAfP4Q==,iv:xVz5ouro44wknA5jZsUz+yU+tUDWWsT0tB7I/3P8w/8=,tag:FRCq1AFSdUcVKTLoyXYjIQ==,type:str]",
-						"kind": "ENC[AES256_GCM,data:EfUuXnX4OZ6FRtQ=,iv:7Tgniz382l4kHlh4YpsfH0JwK4eL80SvkMOdOjwriDQ=,tag:RetPlBViq0LPfzSpN7la1g==,type:str]",
-						"name": "ENC[AES256_GCM,data:xf/ADDTDoI78csaH/SftQA==,iv:h9lObgolXQKHkUzCWuBO3skF9XBHBmp+nD0CAUewDPk=,tag:kRVNBg3Xh+CIfuiIdNzotA==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:gQcjtqP9UEj8ujqe6KK60XBiKMtGi04PAK6huA==,iv:JhmlHRYUpgi38tM+fwExBSkdinzTDyNNR8iiFHfcYHg=,tag:ac58LBnt0Nk8+YpIitJiPg==,type:str]",
+						"kind": "ENC[AES256_GCM,data:aHUA7KFiqNtIBLQ=,iv:28w/qEEpmK78i+1b5AYuRhRyLl7K/1D6mqoCT79hYJE=,tag:C02FlN9FjZa58yqsgmrcdQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:EnfOfsV2DPobjQFU8GBOPA==,iv:a2lxGsemrB+Ret1b85MvVGnjudInfl1BGCsOSnXL54Q=,tag:JCAC8PHQ3chMtLnMYOtcGA==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:WCfDebf3cyI=,iv:gDsWeEvhnrhF2hvzYhGjKCZGDhhRmKwNiXNR/bUDgh4=,tag:m0pNvFCP4K8mp8x1eD8sxw==,type:str]"
+					"private": "ENC[AES256_GCM,data:hrUjKLpOpcI=,iv:Z+d4/j6RE864sGwmLyUQekua1pCy4kiMtHZV7lpk/uY=,tag:EGD8jLMiZpj0dFbBskqF5Q==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:f5pNC+8dzg==,iv:F69YAxt4H8jZZU5lqrM9ihJkikKo3KGyptiqO25BPII=,tag:o03Dyovy8JCr0DCQZGNI6g==,type:str]",
-			"type": "ENC[AES256_GCM,data:OFq+Z9Xf+eyBgmpVJX8UjAIKbZU3rAwBI4y2RpOd8Q==,iv:LFYi0o2e+ZTdsLeAL7wH1y8p4RopsEcNLSwCwqxGKL8=,tag:BToTUT9nvRf7Iaej1r410w==,type:str]",
-			"name": "ENC[AES256_GCM,data:j4wFeIM0S6ah4fLs2BiTsw==,iv:O27l/NfqmsbJgksPTUaio3N4m6a/PXgath+Ez+7M9Eg=,tag:inq8sKFL2zeocR3lvPJvIA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:QhehPvg6cJb6WVo1zVQTrlvUoi0wZxWvtWxIO4vp+fDIFvlOkyYSzl1MggXzom+OHW1A3Cza,iv:pLqQE6uv8wg13SG3KabT+8S1pxDIW0AXrnS1Z5R60ww=,tag:lIcuparUvTWA2vv5HtRBpw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:CbmCWmYlIg==,iv:P1TTN+uvAt1IK8aogiKd/+AD4Xm9jTyyDPFqq96ZoLQ=,tag:0UaEOcr1NUyfW8TFPiHf8g==,type:str]",
+			"type": "ENC[AES256_GCM,data:JCGAsWiKm69UKc4UoxcNxCc3rUffm9OtvWr5qAtlYQ==,iv:GTSZ2rfEQW/SqOaiNarokcDiMN7r6ctEwgQP5yyHDHE=,tag:Vt+KcPkgtm0WsZYjRLr9oA==,type:str]",
+			"name": "ENC[AES256_GCM,data:3BZthBqTebMJ0xx02RwS5w==,iv:2t1Y+e8f4hs2XwEzeCUYP/wj4fk5juF+vetUlm538YU=,tag:+7H9BNLJ09QC3/3ohR52Zg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:w50LCSV3iWMH/Hv6UIsT4+c/a/WOqoOE0jiRSe802FKsL51Zg3rKom0jhT3Eq8gNx699yDgX,iv:PileTm4BSAt/UMSvrROxu1gKn12/P4ae3bCSRMebpGA=,tag:8/hd373wek2eSqwEvykVHA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:hg==,iv:S8VeDGwnJSB1gZUNYb0Zvlx720gXEsskXgPqtM/amYg=,tag:P9qe0uHz8JlLm73Ng3ScXw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:ig==,iv:6AylurLrGZ+5Uq+rXz2NJWlkyh2XpM8iHy46ZubSPxY=,tag:jyXR2y/O6eoFnG82YgOGxg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:74+4lu30sIqLS5cnb2tZSQ==,iv:EhIkapZCPfWUg7b0k8ShZ4HUZkbUCUS2lRF2mRZAL6Y=,tag:Qx2taXDIwWnXkK1ITR0XBw==,type:str]",
+						"id": "ENC[AES256_GCM,data:frsOYZLffz1GyxSOS9ktyA==,iv:7ss4b8cV0Rv0MQgXh9ZlnxF/Gd+FJ5YkO4Bb3ilhQTY=,tag:Q+IyUdeJ4Y5mwBYZdr3tuA==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:HQ==,iv:yCUb7/j0wBqf1rr89BLZjKj9B1hZMTimRQTNOqjEQH4=,tag:rAbywe/ZvnqvkqwSkSAAYA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:PQ==,iv:PU+RSX2l/CjCzFzmjGy4MX2nPkQ3SfAN8GXgm5gDfzQ=,tag:Qm4Ad+VfY+HAP29spxp/UQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:GxJ9nTZ89Ak3t0NEgC7ylA==,iv:BRpK3kZG+9WL40ucMnc0HXmeOEgGMbqEEom9J0ZsIXQ=,tag:av0cGy5q4AYax94H2utc6Q==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:385EiGudnQD9,iv:2vebrIMqcOh8/7DG53zdNo2rrdcPCI/f//Plb6fb+QY=,tag:eMLQLeQQkYi1ggMApJj+3g==,type:str]",
-								"uid": "ENC[AES256_GCM,data:pQ4A6aqcFjeepoLqlYUs9VaNm/2F+hejePe2Nty0YhrMDBNi,iv:ipkdAtdwa9kMr5kcRL12KudP3OKdwjhnfpOasT5iqnk=,tag:kWwV6UGL39pdMDFzgpbTaA==,type:str]"
+								"name": "ENC[AES256_GCM,data:MJc0Me6wdy1NtPvhMkSKAQ==,iv:QS3gZGan5qBmDAgeWTdYKTlTnOq8RTuf1ComU8fxxtk=,tag:Lh5DYxC5RhQmveicbr/M7A==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:z3+acj9dvsmh,iv:bhZMkgE3/95ZfAkSr6+g/mC4Oi1n7Rovvcj0N2oq30Q=,tag:HEIs86dVuMHFNwo8mMzJig==,type:str]",
+								"uid": "ENC[AES256_GCM,data:mol/JQmrLkSVitp24a0nz2XjojwzXt004e8zclOMB/Lb2Y3y,iv:LziGKYlICBFxVpKJEtiniJfRe0T/idLKXr54PikFA8E=,tag:OQdEFkm8FEqZzq9gTVa9TA==,type:str]"
 							}
 						],
 						"role_ref": [
 							{
-								"api_group": "ENC[AES256_GCM,data:OzFtT+t/QB19ojA0fsg9RZThYmeglN9ugQ==,iv:gxXp5hpLaQN/XhXjRJpHKUoC6N8GJnS3tc+3A9XHW3s=,tag:NRbguw1LiNmH9xOH0HNA9A==,type:str]",
-								"kind": "ENC[AES256_GCM,data:TbbFpxMEGchtSoI=,iv:gKVmxUFagTWAQkjVSjm8qKQdC60C8v84YDB2fIjJOL8=,tag:z+UxUGReYa6EbrYC+z9tqQ==,type:str]",
-								"name": "ENC[AES256_GCM,data:HCtSx0ERZV9Zc1W1yzDsTw==,iv:qMyssetqT0biytqAHzS2umeMIaslspZveT64DlmezVM=,tag:dtRITlc8SsQ6mnP0NnEHBw==,type:str]"
+								"api_group": "ENC[AES256_GCM,data:8Tya2V4CkNGlvqCBCFhlX1WfxdYiPza2jw==,iv:CnXPKlFh7C7YwRolsJnjCtlrai3HNweISNIEi4CnZqQ=,tag:rCzweQrGcYY2Id9QLsIi6w==,type:str]",
+								"kind": "ENC[AES256_GCM,data:6X/Lb3x8/6LC2vE=,iv:lXovGtINd0nuVmbBp3yHrJyS4IZirzIrXkwNenbCJAU=,tag:3tMEUR3vU1QPHH5pDU3RzA==,type:str]",
+								"name": "ENC[AES256_GCM,data:GiZJw2BrpRU8nO0E4X7Raw==,iv:v1OkJxmfQ4kaYVvuwS+qSR/WCsPtGJ4GtfNKKxhjSGE=,tag:qkAfFa/XuZe5B7cHUgs/mA==,type:str]"
 							}
 						],
 						"subject": [
 							{
 								"api_group": "",
-								"kind": "ENC[AES256_GCM,data:HML4VylCIHKGLjf0PlU=,iv:liYwOKVQemeRdosAHP+nfxT50Kd7VDUI1ljkE2ljBi0=,tag:iSc099GxriVi5pkezm3B7A==,type:str]",
-								"name": "ENC[AES256_GCM,data:xKfjav4=,iv:QXRQ/1TZfAGJIm5JSU+C21G4MOaBG8Je47Mw5KvrlP4=,tag:o1Fx+eXVRmwS8r31d8eSBQ==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:FWhW/xw=,iv:SOeYCsF6QALsGN4MKKuJnGbfECVTxPrislyeKCrO3cs=,tag:zhay3tMUcFx28l38Nv9txw==,type:str]"
+								"kind": "ENC[AES256_GCM,data:8vrhQGvW/boAldN8NW4=,iv:/g2EPimfX42fw0Zwr1Gr2ifBCn2K2Wqxi2WYDsjWpxo=,tag:EndqPJHaKs0pgYPX29B2nw==,type:str]",
+								"name": "ENC[AES256_GCM,data:BJ6ycio=,iv:RUNwzIdyiN1D/NHwdS2jrL6UV8bCtgE1pV9bC5Ga1DI=,tag:gvLnZxh/pSosG/kshLuZjA==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:cA9YuN4=,iv:odbRKai7iVOJtSp24ymq7hPoPB3j0SiJGtKCKfo5Pfg=,tag:/Lf+0/lYKV51KbLMFF0j9w==,type:str]"
 							}
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:DA==,iv:5OxVW8Z1EVAHv+7wnkY4p2t5UlyqBxXkp94GlhEx3DI=,tag:AhZ+uhT5fAV3A+riaE76Ng==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:bw==,iv:O2u4IReqirCSliOr4WLnSTiOn0wv41IOL7rB7xrmL/Y=,tag:hjGgi//KSrh+CuCyYADKGw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:/H7d5NUOtBJFqhX8okshL8KeQOTob9fsqvaugw==,iv:JOFyPiwzMbBfUMMHoIdYmWTiHYQcWH9wHmR0gvp0fdk=,tag:b8COqPHAYkNmVnFWMXxwiw==,type:str]",
-						"kind": "ENC[AES256_GCM,data:K0aDp89MjdRRTyUQF2se1QyA,iv:tFTKuQ3Uhv0WllfNpnDXjzCrRaHySUvLkQI/4aU+UaE=,tag:P3RzPs8bL9rPTCSixYtN0Q==,type:str]",
-						"name": "ENC[AES256_GCM,data:3Dw8RP5r07Wtp4U7hRarEw==,iv:Md+IucXCF2LVZErgWLMj+69IaMyQN9XE8L11lhOLUKs=,tag:XO00IbgFfZd2Z3iJk/yx6Q==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:DzYkpvQiQCcawdukkVDrp7BurKDsBkF8rUwwJQ==,iv:PTfZfXlpr/JpGfCAP8evlqH6cNCUQcvHii38S+KiR7A=,tag:0h8+oosCgzPqHLLupqcikg==,type:str]",
+						"kind": "ENC[AES256_GCM,data:PxfSZmnY1nUABQRQayZRQRCc,iv:qeyp8YyaaWrdJg3wVFPhDRRzZybqcvc88uZeKmxE5lc=,tag:aXo8k8eN5uFLDvYUQ5m3LA==,type:str]",
+						"name": "ENC[AES256_GCM,data:43zdq1Y6tLSOcMdbhCU8fw==,iv:PUTdFlUg1uC9PFzhAhjqHI7K0Mmf53Q2HH83ymbYAUk=,tag:wSrQwMOkGWfeFkQ4lvQUNw==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:04BwTOSH/RI=,iv:x+x94/FMkrwxnv+OhJqhif+BVwd9lReWB4UMo6loQXo=,tag:47GMi0UdKjd1ykdDZXdEJw==,type:str]",
+					"private": "ENC[AES256_GCM,data:BHeX8YMYPwk=,iv:ctX7nbPFuAmwtk3Rvhuohi0hIv+d9K1oR4HSPapsEjs=,tag:oYo/xsqpop+KINLzgPfXcw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:p9VnwxjI+9QaVqqX8bS1wWi7RzsrIq+HMnc8VZvnCrATYurrNy++2g==,iv:MOKm2L679f1AzMZJZ1wOFCXRgtCi1UcvItQaWwVWSP8=,tag:qXsBbtmNdf5Zy87/Npw8Og==,type:str]",
-						"ENC[AES256_GCM,data:z2YthDbKBviUXnfeN0LwwrdmHRLau9zvC7s=,iv:b8K/WHfRPkEA8waRx9ujH9kV1/S8Yj1SG+pWIYYivlc=,tag:liTxiSw1mQQ40lPnGHFFsg==,type:str]"
+						"ENC[AES256_GCM,data:SRE7VEKuyRZ4fzlQ7wC+JnyDtH5+ivggi2vt1nDreueguw42SQTBlA==,iv:RkMr2NnSZL0Azz5qSgBSMP5+oJDV7p0XXXQcP8qoR1o=,tag:NlTkgRZTPNKMO2sXVtE5Kg==,type:str]",
+						"ENC[AES256_GCM,data:hgPnq6+ueHqfQekVVInbIxiWe462SQqiJ4k=,iv:PQysHOf+1NPPuuaD1zez23+X+mMvqhzP1PIqPDbG53A=,tag:5U3C8XJrRln2NCvnjtOYEA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:EzauU/D1ag==,iv:WQvn96ACk30cSOOyEBEHVaj5SlgqjbPiDz7GiQRkM/w=,tag:SRtT9e3QGz7PqAIAF0ZS0g==,type:str]",
-			"type": "ENC[AES256_GCM,data:BaC9SjMqJGaqSor0ZuZWqWd4xTWyUg==,iv:FxfhwzTFxix8Uw9ufvExZsDYXxeUPf0D/m1knKZGR/4=,tag:zZofivJFhe4kzo2W3vhm3g==,type:str]",
-			"name": "ENC[AES256_GCM,data:vm/ZATYVRM78qXJE,iv:mIah+nJKbXOdhtFKV9wTKVE30+ewlBnSe/Sx/DyaEdk=,tag:do4dtqZjHzWr0eamKHRSqw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:c0GV5HfwanR/6Lg+FRuRGNkcqYdrBbCQqsB1t4gVtkEBv5vaIoKxxRC8DfDRvAJ9yNR/Orwd,iv:rLN2o8nZ/7lNfUP8rtH1T1GKU+WcERnO7ieSYiLCIvo=,tag:Cxr3/TMK9qZQhZgmqkdX8A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:2HxGaNfthA==,iv:u75o+tPBTT3/LqVRXCHyBMPyJ0bsMJnKSCCRsg8AQl0=,tag:u9lgTQIRs8gTxzmbbwhVoA==,type:str]",
+			"type": "ENC[AES256_GCM,data:TGE+duuQKhJUpQ4lrqMvgbvmfwWYtQ==,iv:Raar6ML7KbiX+ZE6BWP779hHTfdFhoOnn6LT5OiUmKA=,tag:+X49Zs37gfcSBhZH41pNVg==,type:str]",
+			"name": "ENC[AES256_GCM,data:DkLXVHhx5v98zaC5,iv:ZFkE8g70st3NWFSpTD27Rw99UriY/wG9hO/W3qDI8fY=,tag:3nK3DLLGjSUc7aHzWGaVgQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:7p3gOzxSGoTFlWsh1u7+LikPtfdQY8PL7iZSvxPRFFN/yyOuB+3j4ZIdTbuTtT5pO5PoKEzH,iv:zdfvlRr7xsPWygaga0S7WJsvpZCUjOz7SxnT2Hk7VBg=,tag:4DYfR/PNRtTXgR7QA7eH3Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Xw==,iv:VGDf2wIMtw23EeS2Jgv2JH3CV4iplx2hL1H4XYWXNS8=,tag:lpO+9nqQms1FU9INN0DnkA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Og==,iv:mUBw844+nf0+PO+uFiKYgQvD2IpKgf0Mx/1sRM+qtYU=,tag:xWCwxVYtGsEA/niJjsD10w==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:xdaI0q8/bI4KGrkiNMallc/JQxqQOOI=,iv:0I521xO4h3h9UR/7Tgl1j+RWGK/vUkZS1+YEJwQVTVY=,tag:jCGrq8aYiU1OoT4hWIueZA==,type:str]",
+						"id": "ENC[AES256_GCM,data:zHzz7MwvnxJrqrS0EDNHmxBBR3qaUQA=,iv:xAfR8wWmJeMsrc/1vnWsg5p21Owv0O9Z+u2up9omCKM=,tag:QJ+txjBrWSRv8COgfxsfzw==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:Qw==,iv:CeED/C3gz5xLf/QemSiE+SYTepphnjF9zFw9d9IsWsk=,tag:1zLTpLcnOvCRNQxmQQ5kmw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:8w==,iv:V56tfrvDrexa6Y4aCUrheLAI6LUyvQim0RC2+ixa3IM=,tag:g+zJQ9GzcVfz05aR+pg1vA==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:TJKoqF3MCAf6dR5JfSacX+0=,iv:2EFMEWd9jAvXrLNHSkcSWX7MhJ0W5LKdHxAi1hG/ShM=,tag:VHPAfHRL/vJkhLbAEBSlkg==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:mFWVyrU=,iv:rlzsfz/zLIgsy0PJ2bvNQdqypmxkPRgWdOIV7R85Heo=,tag:HqBInjDLFvTDwdp2vzlECw==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:rEoIinAX9GBa,iv:/Zr0JHmQE+BvgdHeXls7KfAZoevmuB05qubOfar4OZI=,tag:IJpt/zXB0/868cN7MUI7Rw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:f9XxIIZqD13JS8C2FxlIJ0GGKJmEFteL/15wPhmIwJR+DhaB,iv:7icLx197uOGXfVsfqL3q44aBsTg82tpa4KZm1LYW9Uw=,tag:/ZBttVlX4zIWREnov9vbAQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:pIw4UBM77X2O47SY68Ijzhk=,iv:VOaj7COpGYFVmZZyzmVper/Zm3OVZibcmLFjdGTTLb4=,tag:PCcGzcDl2ODfebKALQotKg==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:0HFWyFE=,iv:rmGXFN2XQuHIOQrEX0FN4vpnRSu9N0/wbhXrVMZk28s=,tag:tCIIgkVHtZ6hvAYrqSgB1A==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:z51uaddOVGvz,iv:5kLZH9SAWY8roTh+aZ3NNiidxUl0cFybJQZnrVr34lQ=,tag:qPMvO6KWPQm73ppSEIJ70g==,type:str]",
+								"uid": "ENC[AES256_GCM,data:Vb6/zBh80EIvY/PNN5Y3BjlT+VVsp9q4BEpsGqbw/mxSTw1M,iv:Zme3RmsLCa/B2wQGW8h7KE4jEZvzxoe687AqyuYeFZA=,tag:90JUEKd1xGuqCASXXaEcDg==,type:str]"
 							}
 						],
 						"spec": [
 							{
-								"concurrency_policy": "ENC[AES256_GCM,data:NGqOW9vh,iv:Vn5Na6kuXynkLVXNX4Bg7R2ZpFtUvtgmYkQfcTyiXik=,tag:Z+Bg9HGyQ5oL9xcW3K47ag==,type:str]",
-								"failed_jobs_history_limit": "ENC[AES256_GCM,data:Rw==,iv:uODGzj1VHD5Jh08k2SmE6y+RpdikahRX+TlHAsDI+8g=,tag:8vAvZXpZ5mr8xMX5vqKXOA==,type:float]",
+								"concurrency_policy": "ENC[AES256_GCM,data:7hycjksc,iv:KggjsNUJK6micDSOO8Oaz1P/TYuccoDRXrOCa7wXpWg=,tag:En+cVcYpo8Qr9BV4uuPjFg==,type:str]",
+								"failed_jobs_history_limit": "ENC[AES256_GCM,data:Rg==,iv:qTZcBYk9HdBQsFyqc8H+ejxKXqNCD8w9+xaOX6ON9+I=,tag:ksngUJcaY5m2l85NKsIhFg==,type:float]",
 								"job_template": [
 									{
 										"metadata": [
 											{
 												"annotations": {},
 												"generate_name": "",
-												"generation": "ENC[AES256_GCM,data:kw==,iv:Qknk1thv3NV+8nGypT2FXd4hHIKCPdI3cTrd7PiXv4g=,tag:SZphlPu1EHRYszQn8a2UsQ==,type:float]",
+												"generation": "ENC[AES256_GCM,data:Zg==,iv:MShmGtjialTWR6H+0NbHGkPQD5dF2xta1PsUX15p4Ws=,tag:ulQB8OD/sEYDCneTlhLyVg==,type:float]",
 												"labels": {},
 												"name": "",
 												"namespace": "",
@@ -574,14 +574,14 @@
 										],
 										"spec": [
 											{
-												"active_deadline_seconds": "ENC[AES256_GCM,data:4w==,iv:1ng/SA3DrWK82ZS/7Q79v7jvi/Ncbuva7m+HHPqGNkI=,tag:c/kum0iFOvahCVgs4vepPg==,type:float]",
-												"backoff_limit": "ENC[AES256_GCM,data:9A==,iv:lObGv4HY6gZoDspsX7JJdeRJWv9BCr+YEENgQLUD0eU=,tag:W6LmDbOoMtdbQaFIe4so/w==,type:float]",
-												"backoff_limit_per_index": "ENC[AES256_GCM,data:+A==,iv:7MFWajFx21pu7ql0tDtlsS25bnpX4f6LW5G9eTuvMB0=,tag:F4pvoJD20AxiD3z/ePHdMA==,type:float]",
+												"active_deadline_seconds": "ENC[AES256_GCM,data:3w==,iv:ABcZ3lL1S0Iwr3F6C8OBXCgv2GMNEGX0u/kmrab9uLY=,tag:D0jeiiodaBYji504xCdC6g==,type:float]",
+												"backoff_limit": "ENC[AES256_GCM,data:NA==,iv:zFkTWPMWscdOHbt3+jTVrNnx8odUyYURUcmLhNh+Jx4=,tag:Ml+5eoS1vpahiXeGFPeRQA==,type:float]",
+												"backoff_limit_per_index": "ENC[AES256_GCM,data:JQ==,iv:WCXk2Dm0G61YkrGjFOIsWiRNrRC4ETKcIu49UAWDo2U=,tag:QKoYucRSHVyTGw085p5c8A==,type:float]",
 												"completion_mode": "",
-												"completions": "ENC[AES256_GCM,data:CA==,iv:VUt5TO6OQXK9KI7p4eGswCLxcQg9e7kqsjCAdPEwcoI=,tag:GWo9bRuTGdqFv9xUWllwMQ==,type:float]",
-												"manual_selector": "ENC[AES256_GCM,data:OqikxPY=,iv:OntBSsBNjlEyrIhq9oBVmNwfYyAJmJ8RbMqND33JKVw=,tag:9+J3jm6ayWdBexKNyxgk4g==,type:bool]",
-												"max_failed_indexes": "ENC[AES256_GCM,data:0g==,iv:DbW+yQ2hPagjcHiAKVS0jAx9+zvYikVBbtcylaiR3Fc=,tag:2bUJQZDLxVJcoxBv4UufeQ==,type:float]",
-												"parallelism": "ENC[AES256_GCM,data:OQ==,iv:xeZQojBlGwlOPvColQgOQMc8JN2poOeziUt/f/E9r6s=,tag:siRl1yvHg1VtRYtrzes+fA==,type:float]",
+												"completions": "ENC[AES256_GCM,data:+A==,iv:bwvtJWG6q2obEp9K+UMWh+E/7LcgAzIACvjzTbnzR/8=,tag:4ATh0dUTOKw/Zqx92oGJtw==,type:float]",
+												"manual_selector": "ENC[AES256_GCM,data:k5mDY5s=,iv:+atWT3OTqRrCftZSwudGO/PTq9zLMu0mYmSFVaZI2tE=,tag:Zu1kH6QUF6lUx4cH8PBnNw==,type:bool]",
+												"max_failed_indexes": "ENC[AES256_GCM,data:+w==,iv:1JcZOD5Sa8wq8Xh4Y5sY+MpVBxZhLYvQm60K3Ckl/sA=,tag:zn1Ovndt4+rFjbeq/mMeMg==,type:float]",
+												"parallelism": "ENC[AES256_GCM,data:rQ==,iv:8gYbkegV/+C6BQDmSCZ4eGfXyyYSGnJkbglycuVutEs=,tag:uN23Lq/aOvYIt/zKeptdlA==,type:float]",
 												"pod_failure_policy": [],
 												"selector": [],
 												"template": [
@@ -590,7 +590,7 @@
 															{
 																"annotations": {},
 																"generate_name": "",
-																"generation": "ENC[AES256_GCM,data:+g==,iv:dXVTxUPRw+FN4JquDAzHtZlegfSiTbEZhoKKMIBiONk=,tag:pfckBhSuPvG3UdQYQgtPXg==,type:float]",
+																"generation": "ENC[AES256_GCM,data:kw==,iv:RA0Fs3nQLxg16b3VRwFEXiEoEOySm7XreYoxlx2HSu8=,tag:nvZXt0ucRg/pv+Ve/K3feA==,type:float]",
 																"labels": {},
 																"name": "",
 																"resource_version": "",
@@ -599,25 +599,25 @@
 														],
 														"spec": [
 															{
-																"active_deadline_seconds": "ENC[AES256_GCM,data:WQ==,iv:G+/5XwFjJp3LaWlKzqS4M6wzf/agOFoKKxVMDvm0PFk=,tag:+YulKmjFCOAolN3XyVBkoA==,type:float]",
+																"active_deadline_seconds": "ENC[AES256_GCM,data:Jw==,iv:UKctskhHCbL/vQBLVDU0CWy1CQ/OFJZvL73sTDsMmkI=,tag:ZWu8tzASpBgyH1PxvewFPg==,type:float]",
 																"affinity": [],
-																"automount_service_account_token": "ENC[AES256_GCM,data:E+2S1Q==,iv:y49RNUpZ4q/3xuUhrDoot/d21ScRbQbwPMkXCTI7a/E=,tag:/im+A2YgCEzc655WVVTMJA==,type:bool]",
+																"automount_service_account_token": "ENC[AES256_GCM,data:wi54KQ==,iv:ykqigo7zsErhUqdAG9Cga6lG/Fs5Htsyucjta2i18ck=,tag:PFYSaMQY2mVqBxGeTvXOkA==,type:bool]",
 																"container": [
 																	{
 																		"args": [
-																			"ENC[AES256_GCM,data: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,iv:5SUCaw0Dpfafexcho6TeRNY0+9+QARram1/0C4td/hw=,tag:0rIZWF9GwX/E8j7CN3euiw==,type:str]"
+																			"ENC[AES256_GCM,data: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,iv:VbbJUJFwkV+YUyTB5faVrON3I4nuPvQIoH76J+zr52U=,tag:NAFw42jsrzGcqrrtPPpf7A==,type:str]"
 																		],
 																		"command": [
-																			"ENC[AES256_GCM,data:9GC1kzPVwQ==,iv:QmuZLGH7q9eEqAgIVZvx5gTRslWol5ZLAzRtbYgVJFs=,tag:r1BJicMGFAq/XjDcovVG9g==,type:str]",
-																			"ENC[AES256_GCM,data:M/Q=,iv:oliqHgXEhHtOTw96bYFRTgMZfyMoEjS5J+ziyJwMqH8=,tag:OTGaae7wBJQQX8iFjRqVFA==,type:str]"
+																			"ENC[AES256_GCM,data:vBKu+eP7cg==,iv:GXl4jJU+817r3IK2zOPrCOsqb1ONw0HvHMS486T2tT8=,tag:U6UD/TdOfCftMwmOHaTDDA==,type:str]",
+																			"ENC[AES256_GCM,data:QnE=,iv:FRLj50E9U7uhTARISDS0aDjAyAYIeq7CJOKM58YCVV0=,tag:u/41GPM621d+1YsMlLwhSQ==,type:str]"
 																		],
 																		"env": [],
 																		"env_from": [],
-																		"image": "ENC[AES256_GCM,data:r+l35qNtO32Wj2ayKYwugh7XujiIBA==,iv:IYX9a9Ts02EYxy3pe0WIzljE/6JXWLTn+kxoE7t4uPE=,tag:c2VU5DNpbc9XvfL8rg7GHw==,type:str]",
-																		"image_pull_policy": "ENC[AES256_GCM,data:0gI8eQTwFjmGqriy,iv:k4ATHldoFbNBy/hRkR8FJHIHDAx6OuM8dWYMbfriQDc=,tag:2+LiMh9N0KY8b0kWipXVNg==,type:str]",
+																		"image": "ENC[AES256_GCM,data:XCLQAmXlE7lDsPA82hSmmXyX5X5UBQ==,iv:TTWSAAVarfjrI22oeu8eSg99RPcjok9KVxzGsBNuU70=,tag:5ATpG3lY53u8WMHuH9oo7Q==,type:str]",
+																		"image_pull_policy": "ENC[AES256_GCM,data:eqMayBErhP7y+Jaz,iv:Zsn3okNh2ymHx6kOw+76f3nIkxDXU4S9meZIH58qJ3c=,tag:ZMsOPfLql6aoGMjdno+8Rw==,type:str]",
 																		"lifecycle": [],
 																		"liveness_probe": [],
-																		"name": "ENC[AES256_GCM,data:mcF/rBg1,iv:Rof3X1+id6grGjWcLqF9SlF2vGtIcTCcUiTdn0KD5/E=,tag:ls6npjSjGa6IpkxoXTjUew==,type:str]",
+																		"name": "ENC[AES256_GCM,data:7a9L/pAy,iv:4UxdaaCrTwQFrGWIaPidTz6WeeKrtEISwi2bnUFkqp4=,tag:Twbgmbd6HiAs+mCrP8Jwcg==,type:str]",
 																		"port": [],
 																		"readiness_probe": [],
 																		"resources": [
@@ -629,26 +629,26 @@
 																		"restart_policy": "",
 																		"security_context": [],
 																		"startup_probe": [],
-																		"stdin": "ENC[AES256_GCM,data:hOCsnfc=,iv:76Q/psH5B1bQxbPQ3Tgs+onOpHVIYq7qHyZbQjK6JeQ=,tag:c3hXkU74sQrVLsqDkrw0gQ==,type:bool]",
-																		"stdin_once": "ENC[AES256_GCM,data:aOYLL64=,iv:a7Tl6f+SukgUczQfeJjzcVUFUvZDxfBJtZUoy9KY3b4=,tag:kLJXbBW8gbXQ6pLdKVUlmQ==,type:bool]",
-																		"termination_message_path": "ENC[AES256_GCM,data:LbK34O99V/+1mJwfU36jVVZmu1g=,iv:3lRQcf1oWwwdzGX0PCLMTfjNS4n87so3fd2cMwV4kSA=,tag:nSjuU0X++TuU2/mOhM10Aw==,type:str]",
-																		"termination_message_policy": "ENC[AES256_GCM,data:7t7cXQ==,iv:y/SlxS0yW+4LhIT/8bjguKEVYm6aGccU0ZxMp68IAxY=,tag:38x+gk41o5Esnb2kaYFRLg==,type:str]",
-																		"tty": "ENC[AES256_GCM,data:rVAcC3k=,iv:lU5wlfhPCSWJ8dVBX4REWL6K8Q2/cdLbuKvk5VpNQYA=,tag:kplt7pqse/wUUgHjoZfcBA==,type:bool]",
+																		"stdin": "ENC[AES256_GCM,data:UBXZQvY=,iv:HgbMCuiYrfZ0VBWwCgvlN9WxtHi8ertzgnbfQ0bpslw=,tag:XIn8JsuxIDQ0LdAVeZR4jg==,type:bool]",
+																		"stdin_once": "ENC[AES256_GCM,data:7Dran+0=,iv:pPWC0KoV0r49CmWfrsxbRYZyhHbLDjX4ZmBsAX4fBxk=,tag:5x79NoJVC/IXd03/CNj03w==,type:bool]",
+																		"termination_message_path": "ENC[AES256_GCM,data:y09gSX/P6eHmDL5Mcr61eMd+Xr8=,iv:QueHu9AQvkMZh22yYXXnhq4amrJug+2+9nimA2Ynhqw=,tag:uAdMOyDjxr4IfUiSOPUxVw==,type:str]",
+																		"termination_message_policy": "ENC[AES256_GCM,data:GDTPTA==,iv:7eOWpnlnnYDgpoRB0w3CuhrqwvOIwWBmsLUYqiuNq6c=,tag:MSETULL7f5mjS0KQRErSlw==,type:str]",
+																		"tty": "ENC[AES256_GCM,data:H33GHMI=,iv:f/wXBBVb4tg7kgT2Elff4QjpYrq7mmTJqLrGio1s4c4=,tag:dOVMd0joALdGYg58dmiVlQ==,type:bool]",
 																		"volume_device": [],
 																		"volume_mount": [
 																			{
-																				"mount_path": "ENC[AES256_GCM,data:Hg72sLZx0Q==,iv:8oOEFlXHteGwMQo5R7Yo6jNTvnHpgKI1JIlp/+UFb+I=,tag:HyB60gSyjJF5ucH+fYOVEg==,type:str]",
-																				"mount_propagation": "ENC[AES256_GCM,data:65tw/g==,iv:kP8reTB33nv8Whggv6uZwFNyIcM1NTCdmuLbI8uEnMs=,tag:hAXFafG13n1zdtMTQzuSaA==,type:str]",
-																				"name": "ENC[AES256_GCM,data:er8dX+3ejT0HxRnDxsk=,iv:Va11p5tvIbVv4oCij52JKQubzTowyKhxEeooEfC9zoM=,tag:yXYDmAe5ZaGpjveMXMU8/w==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:30TtgQs=,iv:eyWFM8kkSARyBGNbavwjdvVK56doTXgIa7n7nyPp+iE=,tag:fGMXzafxcC46KGw3x9KTrg==,type:bool]",
+																				"mount_path": "ENC[AES256_GCM,data:kY/1E33YTw==,iv:It9ibrfIbRwnIq8Dy1nNkcHujN+F/cSqvr8nxXTJhR8=,tag:Ioof9MJb8PpKhyOeZuB65w==,type:str]",
+																				"mount_propagation": "ENC[AES256_GCM,data:56QtQw==,iv:b4gXOPE8d2Qi9ZMS8Wn1r0ARU4H9u6anF+HmBYWEOYY=,tag:5bk9wvup68CCBwAyoMo4Sw==,type:str]",
+																				"name": "ENC[AES256_GCM,data:r4zBmklwGiX7Zer60l0=,iv:/Omm0dJidbNEh4I44bxzTYe2S4Fw5ZbLtRXqA2cY5uo=,tag:0mB7w80GLXHjkKx322WJFw==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:5wgxbnQ=,iv:Egb50q1s9CvvBYZ0+2dTr2zuUYs+ChM38SmbAUzs5RU=,tag:atLa/VDLf4JlIxo4KSKOPA==,type:bool]",
 																				"sub_path": "",
 																				"sub_path_expr": ""
 																			},
 																			{
-																				"mount_path": "ENC[AES256_GCM,data:K5K54or+Uy3Z8v9J,iv:dpMliNoauRVocHrJq7DUDkfxJdVj2+PjTRNFPqaRQFg=,tag:Cqwiz1s+eM18A4YaLbuunw==,type:str]",
-																				"mount_propagation": "ENC[AES256_GCM,data:5/ZGkg==,iv:o0njCwxfTWS8WZHzZ6KSYPRMQBtJWQD6GyTrO9S5VL0=,tag:q0Et0vU8JHbRicTGHnRRZQ==,type:str]",
-																				"name": "ENC[AES256_GCM,data:rBN4jGR+nEfsFFY=,iv:MG+OqT/Dz+4SVQw2ZfHngaxlbZvWTlQs/6uSwGVpRuY=,tag:fnWxA3UAgT85u9R5xpCj1w==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:1z/Y1Q==,iv:wsrvnbWR00afd+6enPHxZszKjsPE1ETnuXTfr0SR3w0=,tag:G4q2AKh4g08xCdqj23WEBg==,type:bool]",
+																				"mount_path": "ENC[AES256_GCM,data:aeFfVPHCo9uCWIiL,iv:JSICWr0VPf7+l5V/WX2R4QaMXGz7gYJz/Yrkxv15q+A=,tag:Qk++m7lpRzTOkM5t/0z19A==,type:str]",
+																				"mount_propagation": "ENC[AES256_GCM,data:FvzFDg==,iv:i/gX/Bf9JHK2Rroaa+u3g0rRtSBKmNhay2D7SBvlZnw=,tag:eKluFkTV4fay0ptsbisKkg==,type:str]",
+																				"name": "ENC[AES256_GCM,data:Zmu0+8rnkYK4LZk=,iv:igXOklo6JBWBJcJi/l7GeUEGD2MZHiRZirpskngMb1U=,tag:lBykunuM28xZKeO0ufg+iQ==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:kQSEcA==,iv:tUZbt6ycA5e5a9JVw6yHt7brcVlj8XGTzSkGo33FhMw=,tag:wcPhq0JzqfTdQRIFmKm8qA==,type:bool]",
 																				"sub_path": "",
 																				"sub_path_expr": ""
 																			}
@@ -661,19 +661,19 @@
 																		"nameservers": [],
 																		"option": [
 																			{
-																				"name": "ENC[AES256_GCM,data:/njuQpQ=,iv:Ba6X3MEd/8VTM9xp+Tv8KDHWd3M7Cnl4xprE/Gux4rQ=,tag:eP1iTKGF5WgqWIH5BxIkgw==,type:str]",
-																				"value": "ENC[AES256_GCM,data:6A==,iv:8gEVktuAIfQ3mOZ0m+bE09CzhS2sS8KBYlgO2DC83RQ=,tag:PkhgWDxdguV/0390IwWDfQ==,type:str]"
+																				"name": "ENC[AES256_GCM,data:bt0s/tg=,iv:kwAYyQVgacnYSBENtnU9d3AzNALb7yDTyE2dHGJx2WU=,tag:bHaqsKA+XsaAn8h9sMs0pg==,type:str]",
+																				"value": "ENC[AES256_GCM,data:1A==,iv:dU0Ug7PNMJ4sDgbBksjjqoUl+/af/6AhG7o1zseP8VI=,tag:u81/1eBa3IUv9YFX5dHBmQ==,type:str]"
 																			}
 																		],
 																		"searches": []
 																	}
 																],
-																"dns_policy": "ENC[AES256_GCM,data:bPvJUUqZtWaL4qJo,iv:gNlEFGxGauWXphxmwOgrgay1esKipUVYx8kHNwGIbts=,tag:hY/7jOOrIbKfE71DP84EfA==,type:str]",
-																"enable_service_links": "ENC[AES256_GCM,data:n/AFRQ==,iv:haJX4aUBeKgbQhsYAfllYPgvDpnPZyFO5gryRXLvG2k=,tag:xh3W1bwyWYNrVCdhLoakAg==,type:bool]",
+																"dns_policy": "ENC[AES256_GCM,data:3WJPG/DVIR7wYQGP,iv:J9ySfGLYNs1fsETeqHET7WRr8jCccusveUAofCyQbik=,tag:MLxYPrur3FRbM0hhyrogWg==,type:str]",
+																"enable_service_links": "ENC[AES256_GCM,data:R2hpEg==,iv:+GRGl8aRiaKTOHmVTJh0RzZl2FDP7HxWWif9J2wBV0A=,tag:ganjBe8FwwmsJMmLy6PCHA==,type:bool]",
 																"host_aliases": [],
-																"host_ipc": "ENC[AES256_GCM,data:r525kJ4=,iv:33TDIOwAhqA5h6dPPl4DvMNv5CNeNjAOFZE32ORnp/4=,tag:YTjC1G4AXeRnYldnEjQdhA==,type:bool]",
-																"host_network": "ENC[AES256_GCM,data:KHjoPo8=,iv:Sk+ZHroQH0MX1n9mh+76SKIVY3AHxofpj4ns8hxbDwI=,tag:+NXEI2iLSHz3LeB5asfZ9g==,type:bool]",
-																"host_pid": "ENC[AES256_GCM,data:2h+MjNA=,iv:c/WM/6GMlU3TCGZZfk6fOe7buxHColdM6JuOfVZPtog=,tag:9H/yknkJpXxmKUb9d4nbSg==,type:bool]",
+																"host_ipc": "ENC[AES256_GCM,data:DpCB1Pk=,iv:vByrDHmMSdpvYxjmGQxlm/yjX5/pP5UWxSS2863EFGg=,tag:PM4vFtHHAtASDbSpFH/oYQ==,type:bool]",
+																"host_network": "ENC[AES256_GCM,data:ArkkW7M=,iv:HWn1M1ZiBMneCIjQF2jQXujRwWvCN8GIKGQr+xJq+CY=,tag:SIFRavETiqn69InzOO95xw==,type:bool]",
+																"host_pid": "ENC[AES256_GCM,data:kn4C8xU=,iv:OCGhzGvGwvVQqt8ZMY9Z/xKudqwISpPfu4WbfCFRCEo=,tag:GtSF9Wen30PftJy8d0Y3Ow==,type:bool]",
 																"hostname": "",
 																"image_pull_secrets": [],
 																"init_container": [],
@@ -682,14 +682,14 @@
 																"os": [],
 																"priority_class_name": "",
 																"readiness_gate": [],
-																"restart_policy": "ENC[AES256_GCM,data:dhlrLnEvG7Xv,iv:6T3J3cDCOiXyD9kfZrxzcNuunpm7bF+TXIQjPx7Jl6k=,tag:BVqHcS154H51NNWZQ1Gfnw==,type:str]",
+																"restart_policy": "ENC[AES256_GCM,data:6POz6+VftDUO,iv:xb3xP7qYGNrnyscFANcQKWib4ALjuBdqkpFIOpH3wfA=,tag:hTGf4GCpIRUVYOHK8yokKg==,type:str]",
 																"runtime_class_name": "",
-																"scheduler_name": "ENC[AES256_GCM,data:2ljmNNAvmUCMo4l2m39e1q0=,iv:M8RIfRbuYus7jffEFGPwZRF3/9dDt65XO99zlmVzCV0=,tag:H6ujB6nFlNryaAGIgXFXig==,type:str]",
+																"scheduler_name": "ENC[AES256_GCM,data:uo2UoUMHcxOYTIbcrYImXQg=,iv:knN5kI7yPxDx4s9OXPwTFN7YPz5elJQF81tUOlv/JaY=,tag:az86p5rOfDkHoyC8aGdJzQ==,type:str]",
 																"security_context": [],
 																"service_account_name": "",
-																"share_process_namespace": "ENC[AES256_GCM,data:I5Pv8eo=,iv:buE7nWSlLvQLoZdF8xsp2v7Lmi/rW9sQbzQYU2J8kVE=,tag:Dh2r4tyCKRdbfkjactAJhA==,type:bool]",
+																"share_process_namespace": "ENC[AES256_GCM,data:Yysggp4=,iv:D3Y0GeqguPP75fEAxmcAYYpul95Eulf6oXjL2gdfhlw=,tag:HhAOjpDMHNdvbCljKut7Og==,type:bool]",
 																"subdomain": "",
-																"termination_grace_period_seconds": "ENC[AES256_GCM,data:CqY=,iv:O/i4rg7pLm/6Dxbl8tU5AqMV2I8SBQUMPsPWwBjwV/k=,tag:ED4IN6JZ4aaAmTUfoNKowA==,type:float]",
+																"termination_grace_period_seconds": "ENC[AES256_GCM,data:OjY=,iv:wGfz+NxLNXXHf/FhXb6Fj+tye3xISDqHyHSFjlLsnWA=,tag:Y3m8TaTRFh243aIgLE6VQQ==,type:float]",
 																"toleration": [],
 																"topology_spread_constraint": [],
 																"volume": [
@@ -713,12 +713,12 @@
 																		"host_path": [],
 																		"iscsi": [],
 																		"local": [],
-																		"name": "ENC[AES256_GCM,data:J7GLtfgKVDqJAkqv/0o=,iv:h9GGoTv5CUwoxNUCJO3oLYvdnYG5WQfXLd2fkbxObwg=,tag:etOpe6i2aifAdMB73AJH6w==,type:str]",
+																		"name": "ENC[AES256_GCM,data:7rU+kDniclFFQNtwtxQ=,iv:pwXLPnJ7589q7Wi150yPlmT/3D4a+y+NYAA+XHBBN20=,tag:q8nD7c696kBcxrqIh5QCvQ==,type:str]",
 																		"nfs": [],
 																		"persistent_volume_claim": [
 																			{
-																				"claim_name": "ENC[AES256_GCM,data:vmOvv59tqMvF5Ah5TtSOK8s=,iv:h9IVyZbsrQXnIZAubEGjl5el3Yb5nREO+XDlbdmyjeo=,tag:3wbN9maIvTKnk3wnEb2Juw==,type:str]",
-																				"read_only": "ENC[AES256_GCM,data:FBWB4nQ=,iv:G/FwfBTViqx0QhzQjkXGCtX+2aGZ3kcXpJb3G4obDGk=,tag:BPCNqf9RxnqXH+zLX0cnkQ==,type:bool]"
+																				"claim_name": "ENC[AES256_GCM,data:A4YffcJMDc8aYsV3j3ho4gg=,iv:KFsMT6ZKePCOzh1VLz8nPvef5Dg+BDKeCSSO6dmtNb0=,tag:ERmsmZ3exyGI6lI+fkL9nA==,type:str]",
+																				"read_only": "ENC[AES256_GCM,data:y83tbOA=,iv:qbZ/XTy1jMzXZ4S4FvtKCM9OGfC+c4WcU1dQCU1pX7o=,tag:g7XE69r5MELxRPofnJK5Sw==,type:bool]"
 																			}
 																		],
 																		"photon_persistent_disk": [],
@@ -748,7 +748,7 @@
 																		"host_path": [],
 																		"iscsi": [],
 																		"local": [],
-																		"name": "ENC[AES256_GCM,data:8O3cV0K0Xqp2TGo=,iv:nklJx5Id49fMDt7LDHgvl04l+WsqhU6ftfq5Kk2MknY=,tag:qy+dBEkKahAV6uqJWRyD6A==,type:str]",
+																		"name": "ENC[AES256_GCM,data:j239HLF9TyeB2sk=,iv:YACegnYCACxhl4z1F3LW3ymqkC4yQhy12s1ifEBO6OQ=,tag:suE/jHC9slGDG/dT8JTkTw==,type:str]",
 																		"nfs": [],
 																		"persistent_volume_claim": [],
 																		"photon_persistent_disk": [],
@@ -757,10 +757,10 @@
 																		"rbd": [],
 																		"secret": [
 																			{
-																				"default_mode": "ENC[AES256_GCM,data:+0V9NQ==,iv:Q6bBRFixvqtCh5rieG1bRgnkMHg1s0/njAHXv31ur1E=,tag:Ar8DH5ptx3ep3e3XU0PcGA==,type:str]",
+																				"default_mode": "ENC[AES256_GCM,data:dFtRwA==,iv:TzgUAIbOEiTL+nOhBxiW1qwEYL/JP7QbzSChJMQe0MU=,tag:XtMSA6Y0KKvaemt+8AKzzw==,type:str]",
 																				"items": [],
-																				"optional": "ENC[AES256_GCM,data:F19WsdU=,iv:jYBorRErehp35sT2NuwUJswt9lu7xMTCB8laGCqRxvo=,tag:OtqSNZ8SlVqaDbpIR4FiYA==,type:bool]",
-																				"secret_name": "ENC[AES256_GCM,data:VZMcvNEYge5lUCxNOOyQHg==,iv:f/6ikvj0Y+2WveCcaUjkxwCVo25GAx86DegQiCe9w0g=,tag:4GpkYIXatPc9dhMrBGAwqA==,type:str]"
+																				"optional": "ENC[AES256_GCM,data:Kh1JPRw=,iv:haogwgDW/5209nlNuSZmWljaV5egucyAN0GdeqsSbAs=,tag:dpGLzKdLJybcMiNhWiMUSw==,type:bool]",
+																				"secret_name": "ENC[AES256_GCM,data:7iGNmfzy/eyX6e1yH4Iziw==,iv:02LWI6cTd4kLwbecPSHPJ22NKomTTtO0W5O95H94lXo=,tag:SWIyQNbg1oWPANNxeKs59g==,type:str]"
 																			}
 																		],
 																		"vsphere_volume": []
@@ -775,191 +775,191 @@
 										]
 									}
 								],
-								"schedule": "ENC[AES256_GCM,data:dUQiXqwiJKMk,iv:2rkZO9Wu+9WA+/WfCBSh7eabRWg96NaIXIuxvNZU/EU=,tag:sxu3jBzoNktwiIwUYhgjpQ==,type:str]",
-								"starting_deadline_seconds": "ENC[AES256_GCM,data:cg==,iv:FfDZx/lkzaCqnggt7lHfTZIL70CnP9e+KLpaqh7mK3I=,tag:b1WZ1EVdwNBmxAU8UnUWtg==,type:float]",
-								"successful_jobs_history_limit": "ENC[AES256_GCM,data:Pg==,iv:/RQ976KXUJbcr1xGeGYxhFJb8hge97PCl0nGYRbf4aM=,tag:qtC8vYfOU8VpxnBqow/xtQ==,type:float]",
-								"suspend": "ENC[AES256_GCM,data:g/IIz64=,iv:dZkc6mCaLYv1k/EH3qLU5w67HULpV/b5snd99Q+2wtA=,tag:WNdIRmde+XDux4X5fOV36w==,type:bool]",
+								"schedule": "ENC[AES256_GCM,data:Bg9K77qXyxNp,iv:N5p3DhPVy4NWJ/NyIjfBHU1UqL8A4oJfUaM696ACwXA=,tag:2OzM1tBa2+TAbU1GSEU/+g==,type:str]",
+								"starting_deadline_seconds": "ENC[AES256_GCM,data:zQ==,iv:6UwWMay3mhy2bYcjcY2AwaCFguC6VilCOzD+TfL0Vf4=,tag:fDXyYw8jwXzSkFyOkNoeOQ==,type:float]",
+								"successful_jobs_history_limit": "ENC[AES256_GCM,data:RA==,iv:goqFT4xhQPOw+aWvxUYfJHvXnbB8bg/Ue2bNV+tQxtA=,tag:VmkZcoEtc2o5ifnOoRpDcQ==,type:float]",
+								"suspend": "ENC[AES256_GCM,data:2yoS348=,iv:L788EVWGt6OhZBvMQzBnuUA05QkWGotSyt2XW7x0fVk=,tag:Mb8Mj9moHWakm3/7EAsc0w==,type:bool]",
 								"timezone": ""
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:dQ==,iv:YUgAGtwgu5Eats+jkGGNp8E4Ft0hQqg75ubL5JrPcE4=,tag:06LauhzA9BJpDyG+3CjBDg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:GA==,iv:uspH0NZtFOepVdiWzlY0EBSFIzkiTpO9Gn37ckrNLao=,tag:JcXWqXvfAkQAP2Dwrql4Uw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:xPtzhmhpDxc=,iv:aCle0Jqdy3UFk+AO+piPo2jtqsf99spueUdacDGRFHY=,tag:QcMM8/HAjsGkuqriM5USdw==,type:str]",
-						"kind": "ENC[AES256_GCM,data:nA+/DTrLWw==,iv:dHfVR0i6nMcn1Q4ZBb+++y7gOHoTMgH2d/YzS9IDzlE=,tag:S+RM3+muquKjk8VoQ2Gxwg==,type:str]",
-						"name": "ENC[AES256_GCM,data:W9PIlFI5vJTE7dt1gKih3pc=,iv:kWuDSwO0JGXjoOkqdYTyUUl+RaMnBaAhW9uEmEPT1PY=,tag:3hrboYqrs/pauDe4zvJktw==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:gMENHjM=,iv:BVGbNzZcR95/rd5b/JbhbeKcJpDcTylZjsWpqJVfEyk=,tag:zG/9HeXAMqQk137JQ7jCcQ==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:DsHWNx269L8=,iv:OuwEgsGt8UaiEBnHUcFygpt59EKjwsk0KRA4s2ZVFKA=,tag:hjRZRqEC+pWbjOCSKKg1/A==,type:str]",
+						"kind": "ENC[AES256_GCM,data:mIq0UzPiuA==,iv:/yatXstomvAQ6uphTSljnIbWCGu6A93uy65K4tyJuhM=,tag:w4sVlWV2Gg3Mo956vS457w==,type:str]",
+						"name": "ENC[AES256_GCM,data:FmcFvZi1/2Yy9rkCtafd/Bk=,iv:edbdPc+qQhj16OQ4to9Kg+YO7SUFzRRAn9WhGGHtFWk=,tag:B57wysB6sGzOsW5T6A2TSw==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:9qkfIqo=,iv:sm0mWnriPFv5TdWnPirckaqWoX+FLC0Mb1/Z6qrBnO8=,tag:mq7cKEff7FmyEzS5ZJ/gUQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:dJ06nkgYgl/cbtf4+UrZnIkU1+j2Sfx1g3L6KZBB36Ddg//566ideG91F0a+0+C/GKLuuCh2lvoH6PpeXlQ7l4++Zpr8s6qhWT4FeySCUZZU1M6C,iv:UCD0X4z3+1bPZIu7TnRpKvZAGpTvir6f6ZQ2pWceDlI=,tag:7W9twl0nQGe5h0uzp7YGAg==,type:str]",
+					"private": "ENC[AES256_GCM,data:MTveQeOMH90usVdbLnLxcfEG3ESShc1t6A7yLk9hqIwKUkAoaLtqIS2thQSn7hVIX0FCel/bnfJRGUStG2MPAUZtLf2T+xWQZD/WlSlupfy6bkcT,iv:m9Z+NdUZPP/mizcilX4j4UaMtrkAmPUdF5QZpO5wx6E=,tag:QYegO/NgbQkw3uqNuvjIBg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:J+ANV4D0zLBrfDioLvSpeV2wgENNbNO8I3A=,iv:HRcjSAb/iySPjh6QZGSp4tgDwbb/LggmsYTN1YbU7Mo=,tag:RXlFeWwuPv6B5qg/LeWbbg==,type:str]",
-						"ENC[AES256_GCM,data:ZoWsz4LbDN8imV+e6jr2eweA/5gBAvbtf2n3Vf9sr8bZ4Z0HMqYqaYpRhEFil2MDPOfaJzJOaEimddyuGFI=,iv:/cYMJzT1uZWjaINJF+vIYdzmMToHNdncm7d18nuFGM4=,tag:cRYSoDt/yEXrYdH5wHHGbw==,type:str]",
-						"ENC[AES256_GCM,data:+ztxl2iVloF6iNF2nGQZ1XQQHEQdABegxuUt8FIYwZ0uTPCYCLUtWdht0PgmKmO8mnf6GWBKpEQ/FH6Y8aApOYa06DI=,iv:R7U7PBr0UCgGVB3ic+ciNWcEjcepqspbVrrdfrnz8jk=,tag:AAdSOIljjaRJsnwh/VIeqQ==,type:str]"
+						"ENC[AES256_GCM,data:GuZx8eTwo9/clcGe1TqK/CfPJ2dCUKBEL68=,iv:Ohl2/dMthZXGeD519/dFZ/RkwA/oyrPx9om+EnprU2U=,tag:GS4JLmEnh4FNCACwH90qag==,type:str]",
+						"ENC[AES256_GCM,data:M0h7rhO+A2o6L/r7Y0hNS+6EPKUMZtQDh00XI023iYrzpbrM3I/59i6kfbWZs5Y7qi2Jo89vZuiLE+O3H78=,iv:XyQDwd0f9Y528sMdO2gnaD+LDInwrSYfS89RAObkiHI=,tag:jFXBMEiZ15kMf2AG4IPsLg==,type:str]",
+						"ENC[AES256_GCM,data:uOH+U4U6xqbyP73XCpGBJuFS3rZFuIwV/8Bxtz5O5+2LDdH2zuWeF13TN3FBszbp/4g+i6aPjsk+g7EnJP4iPA3RdaA=,iv:OV6FWlGHN4yxpeLADaf35hZPOwJTs3DRXnSlH4lyjWQ=,tag:bi5RKVnhaPeELZtQm74C5A==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:ZMCiVNW/Ug==,iv:+ebOcRTNM9GnsdxpP3u7TRa+n4yA/DSmUtNOwF/gfR8=,tag:0iZB4XWI1eGp41k+9yGTvA==,type:str]",
-			"type": "ENC[AES256_GCM,data:VJipWHSb14IU97wSaJXeWRA/bkU=,iv:PePd+2jvrVl3CJQiPsfqZjuYBjIfFi+fEENDjtb0o6Y=,tag:GtOSPwNjTRr3S3ovxz8bQg==,type:str]",
-			"name": "ENC[AES256_GCM,data:O+MHLCFNSxDwb3Se5yk=,iv:TaR03G5SJVJ2yFsmlIVribneBNFZtS9xtgoBrAV3Hvk=,tag:EZl6uS51OKEZT7qPmzQmeQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:JW5Thsd26KFnpAjdabLD+fTAuAs4Pw3jR1Cclub1VHbljHr1wSHhg/7Muj6oBYzJrqX/huCO,iv:1f+tY+gH42HulZplZn3dG9FfvICRzS9Zn1JPz0zbWRk=,tag:zIZ6nZyhkZwvsZxPnoBQ7Q==,type:str]",
+			"mode": "ENC[AES256_GCM,data:E4zET4BxBQ==,iv:a8IBmVaB/9sgS1lSUKlhE+n9ejbPQ8gUz28zU8mp7zI=,tag:Zv5fZ+F+Q6sy56gNVBixmw==,type:str]",
+			"type": "ENC[AES256_GCM,data:vKeyDsIuXSc5YSa/NHlneWDqIRs=,iv:84TEC4nkTt5/TmIPOUiM4L9NF5ApfCm6/iMpEWxF7Ko=,tag:+xPI7HDOEaR2/KWBWioLLw==,type:str]",
+			"name": "ENC[AES256_GCM,data:VuCuXqu3Q8mjfS5zSic=,iv:Oxg3U0WEa26teeb9mFJu5g1pOLHdbjspSWTeACj/1kg=,tag:+sgTBUsUZKw549WsSVGTjg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:DGz8PANlhTzTwe897j6thxdwIfr8aWUNfgHh7tSP25gVxm3x71+o2Uqgif1WgzW/fE63xl1B,iv:LXYOpY3eFrVEpyyHFzZpA2G5vl3YDCtP1B+2vIrp1Mo=,tag:A0ntNdng83ZCeVBACotBYQ==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:otfqPtxOMH9X3LHAig==,iv:jerMSDc1i3ea+lCCp7GOsPQ+mrzjzrq7WiYf34RPOHU=,tag:WU6jx8ERpyFOMrvK8tnYww==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:xQ==,iv:nxdUMl7N60ZdZD9AES4PjnQ4j5tF/bATttmfKYnWMQ8=,tag:ZFUC2iMQFBcCEy10dTd6Ew==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:aX+kVpQqIi/iHhUITQ==,iv:QXK5zpet8xniyi0ZTzAY41Y7X2YG1aGGicqd3x5noE0=,tag:dXSvWXzUej2QszYfG2GDRA==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:GQ==,iv:A4Ywi1C3++dYNrNaZfaAkNndOYeqWagqEAuwfkIO7bw=,tag:G+q0pvzKMvQuwHBpt2gKng==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:7onk7oqn/ba4W9pzeA==,iv:tL6yKGyzT12d/4eE7+gmFkP8D48stroRB4uBsx+f1vw=,tag:IlemwB3zzuDv+V9+KmSEdA==,type:str]",
+						"id": "ENC[AES256_GCM,data:qcpoJz382Srz/vni3Q==,iv:jV1/T6UdeAGnh1gu3JQ8pnRLEjKGrjOzBlxO1CNh/dA=,tag:mqUriv9oubQy+Ku4BO3e6w==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:jw==,iv:BneUksVUMGb9BgCXKfaaY6XtTSAw1beFNRUvdRWUJCM=,tag:qIrCx7poHEThVNTrnosjHw==,type:float]",
+								"generation": "ENC[AES256_GCM,data:1w==,iv:/Xhx+tpAqNez4B/YHswMnhAekBHeW6EPNS5a4nuB4WE=,tag:90Ai74FDuQ27zYfneHaxog==,type:float]",
 								"labels": {
-									"goldilocks.fairwinds.com/vpa-update-mode": "ENC[AES256_GCM,data:XT6x,iv:PTJysZPjfENv/5gsia9IAIvzcVshPljFml6J/4yl2kE=,tag:ZCH8z6cDcKuatpMvnn+5ew==,type:str]",
-									"managed-by": "ENC[AES256_GCM,data:kL1DE35hbkWM/aOPjFGIXL0L4aaa,iv:MN0jZfQlNy2QkTQBX2G+ojlEGSol+jKcD7mIf3to0nc=,tag:774kzK9KpoUl09pcDs6gXw==,type:str]",
-									"resource-governance/custom-quota": "ENC[AES256_GCM,data:JE21Hg==,iv:ttlh9T2sWaPCFbsFQ4H/4/Mbg/Xk6bFlkdpdEJHlTGk=,tag:0+/o/9vIxqcE0WJzMt0Zlg==,type:str]",
-									"tier": "ENC[AES256_GCM,data:XiZRGGA=,iv:oeggnblft7QdU18oiuoDMTYlopoJq+QvJY/GJJZXe4w=,tag:bDghdcUNP2ftPVc+dvmONQ==,type:str]"
+									"goldilocks.fairwinds.com/vpa-update-mode": "ENC[AES256_GCM,data:32Qk,iv:Pcq9ISA9Oa0owoNXFoxJQ5rFgpSDYwpYNwMAwJPf+5k=,tag:ulm/ClkNdNCt/U7FLY6GZA==,type:str]",
+									"managed-by": "ENC[AES256_GCM,data:0S9xBdR3f+Dy+pt9xoueV1trW7nF,iv:pfNZHn7QDLM2jcGkdBdWxnnP6WFMjeVHobRkyxpreho=,tag:48d061qEiBwmJwEue9+RFg==,type:str]",
+									"resource-governance/custom-quota": "ENC[AES256_GCM,data:lu9U/w==,iv:L6JIcK1lUd9zds2LlnFxm1Ra21So3cqmDSDSs0ugfiA=,tag:W163kpBUJ9ETOOrnP3dWyQ==,type:str]",
+									"tier": "ENC[AES256_GCM,data:AVrlmy0=,iv:RE4GMShgsTnAeHsmiaR4TjEST1N1nh6m3AT9dtmfcmQ=,tag:KLzt6yrmJAokoK5m4ESmSg==,type:str]"
 								},
-								"name": "ENC[AES256_GCM,data:LMolQBmPIy6jNUlSQg==,iv:Bt+H+HiFknFFRTNF2jackwcCrUe5PMXjZ+YQ2cJD1i0=,tag:weWS5jKPqpeYXTR6HfvUtA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:Lm1I5ib418Pe,iv:uuqKPMtjDoK8hjV391IyuxZZ9R4PzKGRQWtL74SbFnQ=,tag:YRdIXwwICgYoSNFA4FykVw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:Tmxb2DO7mop/udzAvPYvvYH09ecrFO6HCPFNpWYjz9Jtl6du,iv:xjTt6B4FLBY1P97etyUuYwEwuDnJ0QEMqaOXl/wIgkk=,tag:1t0sQEa9vvf1rq0B2M+X+Q==,type:str]"
+								"name": "ENC[AES256_GCM,data:c/ndK9qN5tRKjN6M8w==,iv:h6Wo8svhAusYPzwt4TZYa6lZsh50H7K1zgRgfZVrzDY=,tag:UXsj+MdWazYw0AadDu9oXw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:OxqvsfFlZ98l,iv:I9/o/i2c3v/F69zgBvucbJt8vVvYhDxBPnrVTcA033I=,tag:LA/x78QG2qYzWp6A2skJQA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:jICiW9SPR1wsaNGHmmIkqkczTgRGhetG3yQDaHfdRmiIqjqb,iv:P/yCwKFwD4A69q+lHZdDtPKIj24EKYacC0/MuuuWiSM=,tag:nX54OFZ6x4oAtzyDHL5H1A==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_for_default_service_account": "ENC[AES256_GCM,data:E6FK8y4=,iv:2DsjJYpQ38CLJA9wT9Vt34tZjjJ+3Y8WwOkhgxtGudM=,tag:NsvzcqZ/BAxiV5Sj3NXBcQ==,type:bool]"
+						"wait_for_default_service_account": "ENC[AES256_GCM,data:TpYgssk=,iv:iddSDdIXp+teMEOaLq8YL32QBTSgknub3f2APICSlK8=,tag:Elbvd3vxyEi7bQUsZKgb4Q==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:jw==,iv:u1iyXZAKWwePFPCmUn3KWvSpIm7LcDIN5Gwumo3jGRI=,tag:F61S6sgldcYlaf14Qi0Kmw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:9w==,iv:QOOOsheySbbS1ejOq2i20CYzShg52JJcv4c2STLynZ4=,tag:Z8dPH+L+DFNrBkwBTvIHaQ==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:dMU=,iv:Ip/doXxZrD/cS8HVduarZCFiLAfjqTbIYvd78jlY67Y=,tag:9N6+j4HgX999obbcDY0kGw==,type:str]",
-						"kind": "ENC[AES256_GCM,data:vcqNqtN2vkCq,iv:/XAKp/F0FFSyrZb0N+LjjcDfjSeTIFFRuqxXPsJS9GU=,tag:1hCfUwrAB8INuiXAzjW/vw==,type:str]",
-						"name": "ENC[AES256_GCM,data:i7RYBWIVBMKDKs814Q==,iv:YRlSXV/CsHgM8dzSeB6ZfmsOs8TC/EbWubv80CDF0hM=,tag:TZ8cNJlKVLhESiFDD9MKww==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:Wjg=,iv:bgJhHUrcx1YOdLKJLQLVuRIHAgDeXbsHj4T2572tZ+g=,tag:+PuaaiGxRjOeWuZvvO7zZw==,type:str]",
+						"kind": "ENC[AES256_GCM,data:aK465Kepg+BT,iv:BXyksKt0WzY9slWyz2qOLfmtsGsvXwVOFwziEi3FpKs=,tag:Q0V6nA4oXsl/dg8KzBU6Xw==,type:str]",
+						"name": "ENC[AES256_GCM,data:eH3FAFGHyT56+Ks7Dw==,iv:pMuRA3z8JV81/0vDy9lng/fSNMI3Y7hqImFlYiwUYI4=,tag:TIivE0XMxOFbKQk6w56jrQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:sRRmyGgXWXHknXVXp8/w5ffj0pYMtFXAbN0Le05dC+Og7yBEAqFaV0HiUuViwECnHX6Wu+pvPxSs71aEfgBPEXPNNewCMcKcWRHOMNKt4cf7FyJcK7Is+g==,iv:jPj48kIZcq6T/1iNkkHtZrZRrQpajtXsRXFFYy66Z5Y=,tag:sKERwS/mNChYJp/Xijvq1w==,type:str]",
+					"private": "ENC[AES256_GCM,data:MOC909bBWnfsp9ozhzaUpicsSeTbQ5yq1qh7CTFtuU4Is7y32anfR9YRtncv5CUabjX2ZgAtum7vw5/pRf71JIxIULEx8b8n73+4C22lVy7hcXvJC3xNyg==,iv:FbZuHJevriOWDEtIyBZmHZgSzyqAx0MSwN9py6mMbPE=,tag:2rzhdlvzHyHX3s1UC4Wu1w==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:4g56VBSatZnwkngTqvEmQEWuq1fZjkMbf33vbCy+TSw=,iv:YDe4JEI3OB2fp+CBPRqtBu7awINVCjtlDxQs85h2DK8=,tag:pLMa3gOrNBmZBtYek5XKGw==,type:str]",
-						"ENC[AES256_GCM,data:/E9XktbdxPYEMUJdDjnTN3rM,iv:bBRNIC85BZ9+GQHACtXO3LFxNCGbTdtVqU2SMk8Uzfo=,tag:Q178plOwAmSAB8yxkEJ1YQ==,type:str]",
-						"ENC[AES256_GCM,data:9v+KEVvW2KdjSQ/PScq9evR5KL//VHP/UZ8=,iv:Je9LDYs5Z7AtYbfaPUSC4ggrz79WM1ydCqeUmrfcEQM=,tag:9edsfv6g9ngH1O5AbfU2wg==,type:str]"
+						"ENC[AES256_GCM,data:ySJIEgvMfSgd2HRPF+fASqoPA4kw5Dgzcnf6AnzB5qk=,iv:UQJzZjGRLbHQqQLOh01hmdqc9Wre0XvkxcueB1kbMKc=,tag:yJo969R/f1f1msg9EAFeng==,type:str]",
+						"ENC[AES256_GCM,data:skkzr1fBdr6eXDIikqheZNTn,iv:DHZ3K+hqFH+/koNq884I1q9ZTAu3idQdGofPX4RNHSI=,tag:LVMyFpk3k7C7e/CcsLxcFA==,type:str]",
+						"ENC[AES256_GCM,data:lBKmiaEDG1wLFgdiuKvO14yHysGtUUyXL/M=,iv:+/9rnQDVLBiZxAi6osOg9LsCalDVH4tbnqggMngY+ww=,tag:m+fx/78kbMSvO+OYTH/NAg==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:kIKcO093RbQ=,iv:Uo5SgQMW1NLdFPIPDCBPMldUDunCkrJjC83i6HAGGKM=,tag:NJlV0Xhn9fAoG6lphozbqA==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:lA==,iv:7xI8TY8PhAlNvWqZTyiLq+jP6Id7ktespgnEPt9X/jA=,tag:G1AO5YU0LIyZHkvwt5L4TA==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:Qi2T4y7Qqg4=,iv:6cjaysDYZeQFgSmK5BmWzlgP/7zjCfyC/2yuMSWLdH8=,tag:E5ImgTOn01RxkQP6A6A4SQ==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:lA==,iv:BK+PcQvHzANw2eDThLX2njyRwMDkmodYe0uqrgALrbk=,tag:cOtuIDuFPr4xeHb+V3HdlQ==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:gPF5+pMaem0=,iv:KpRHNkML1/7vU0vmE4OFyL++a8qt7DXfmpGMXkTie0c=,tag:L3UvWWjJXM/4HWrkWf2lWg==,type:str]",
+						"id": "ENC[AES256_GCM,data:8h7ZINK4sg0=,iv:6cHPz2OQ5q2o17N1Pws/pz/FzadPqrNJ5PFlDA5Kj+A=,tag:xfZs2RwwEIiQfhOSh5DvBg==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:/Q==,iv:0O/npJaSlwuQiQvsr9z6ege2jGZ79ZeoZZ3WpDgQuuI=,tag:5F94bmK0AnZ+Gcm/TamHWQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:BA==,iv:HA9SgRo8barvlgjmhnmSRSpND70TN6LuJYWkHiwi0UM=,tag:RruAid+NvcI54HNdj3S/ZA==,type:float]",
 								"labels": {
-									"goldilocks.fairwinds.com/vpa-update-mode": "ENC[AES256_GCM,data:WDIK,iv:tZWxMTfTAGZJjR2sQdWU35quPJxUv8AG/5gFxJLqCnE=,tag:lq4m/RU+mH3zgh1Na/jWDA==,type:str]",
-									"managed-by": "ENC[AES256_GCM,data:1y1b7S6xhyMYNt4noPsAik1jQNRx,iv:udQaTeI+Smarj+7b3z0NU0sHu2hj7V936EsA9Lky1/s=,tag:V4TKiYnsziVriVGgMIaoRg==,type:str]",
-									"resource-governance/custom-quota": "ENC[AES256_GCM,data:TQb5dA==,iv:gRiQWpdAG3v2V3X/W76VEi4Qvr6uZvWj5Y0aiuBkWLs=,tag:qZi7O4gtMRea3FWx5vxYkQ==,type:str]",
-									"tier": "ENC[AES256_GCM,data:Vvlqh3A=,iv:fPRihw2KJUep6eRt0p54PU/4k6PRktd4pULzPyCsYDU=,tag:VplVPRc32ebOCvlOPc504Q==,type:str]"
+									"goldilocks.fairwinds.com/vpa-update-mode": "ENC[AES256_GCM,data:zcLw,iv:IaDfSTTzVDLg4fLDx70+KZfj2yqRY81+RWijS2Ipc8c=,tag:L7CteuRM8eewIK85ObLYnQ==,type:str]",
+									"managed-by": "ENC[AES256_GCM,data:sYeQC32t2Man0yva1OuLBGjlmBzt,iv:DM3E2LXIyjFztC5M7fIRKpiCR66Eg/RPfxwKuo3RipY=,tag:bjBQA9bvS91M2HuQryYsAw==,type:str]",
+									"resource-governance/custom-quota": "ENC[AES256_GCM,data:kYFgEg==,iv:bKvDzN9pPXohkhEqe584tQWnML7kI3Vgruq4nVzfj18=,tag:p73C3o71p/FH224hwllOkA==,type:str]",
+									"tier": "ENC[AES256_GCM,data:VTk0zfc=,iv:Cf4XyHEm8c+ycKTq9TpavLxH7GiQi2+nr/kgsbxSK4w=,tag:EvgZke5yt3aEq24wzWK9Ig==,type:str]"
 								},
-								"name": "ENC[AES256_GCM,data:AUcYNIv60ig=,iv:MZphsFQc6vkJNMEWILuNQgW8wvAnV4421Kd7bEgKtlY=,tag:gqGwmGyRL4u5kJ5uBntv1w==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:Z7j5fjW9m9+O,iv:FPuvkPotae9g3EHnK7T+Eb+9hI3FWsS9zndSlAhRZMI=,tag:BWl9JJ/UmopoHNX5ggtg7w==,type:str]",
-								"uid": "ENC[AES256_GCM,data:42D4KJXuTofdwmMU2G9m139ceDaoEuV4SjPJ5zljwOgovmOP,iv:4gLrbcnJqr1892ZEBFDg4cZavs38EFUgH1AQcwqbzyY=,tag:NJhS6i40pYgP05PXO8eZyg==,type:str]"
+								"name": "ENC[AES256_GCM,data:bJ7Oj/l+P74=,iv:40WfiCKdLx2amFBDHqB8mTuSTHVhci+8c0BO/siaXkI=,tag:2qFTcByRblnYLFCcaMRCgA==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:7tQ7VIT32+7t,iv:H6pTaxTRliuI2jmPQSvx/Fsieg3DmLwbt6Sa5eW112Q=,tag:K4oRlggKL7C8K66lIRIuCA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:boGmiSHCUj5Xt+6vIvfDMy/O7nH9MhwjVh5rYwCYPDfS+RxY,iv:55FgLpZxF/sjeSRvW+DTqaESCCwg2rv1szptqDBMclg=,tag:M7fH4H9A7Wxr+eEEnGdxjQ==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_for_default_service_account": "ENC[AES256_GCM,data:hGuUulg=,iv:1xjHxSnHEUTQXUEEUJ4yCgPvRI7aZvzznBBSzI9UzEY=,tag:jaXzJrq2q+KbOtk6kP9f0Q==,type:bool]"
+						"wait_for_default_service_account": "ENC[AES256_GCM,data:svM90UA=,iv:rfSFNY+ke+ZElqWSre/RUENx9vqJcuGOlxq65itsYyI=,tag:fDy7uBgGKP0JGyttLw/86g==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:fg==,iv:TS7OHSh/TxcfDoYJmYRJCrx8bfOY59j4mZMF8ijvN+E=,tag:LCrN8CkYEd6gimBgViTgpw==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:YA==,iv:pIXHdLljoY2D2e3uP0GYG244ubBTlb1raPVS2Ow6HsI=,tag:gOa505EfDTzwrQ8NcG5DAw==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:8og=,iv:nlFbzHvMLL3/Aw+9WR4f7sB2CBcS5q/iyKk8O6v/ZI8=,tag:4aJm0h59V32yI/eij6K6pQ==,type:str]",
-						"kind": "ENC[AES256_GCM,data:vAufW6cpeHe0,iv:d9oYNBe+Im7TCUQQqU9JIPylBwJEL6HfZ9k9n5V+fBI=,tag:sFnR21VJ2fGCBkcvn/QidQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:MBOsVRkUibE=,iv:PYeJP0RRGdO++Lf9VhcMHsDeOx0M4TXhtEKpgOAbiKs=,tag:2CbWj0jFFroH7tR/X1gCIQ==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:km4=,iv:n+sY1epH6BEq0hKflf6X4c5DybvyIEhPWBKVTG2G9WM=,tag:QSIx/1mmUN4bZAPdyMbBVA==,type:str]",
+						"kind": "ENC[AES256_GCM,data:JimsanF/r/bv,iv:Rx79zNz/Ddrnk5050IxFp6xPyREwfAnDkb1xPL0VCDw=,tag:WDZ0R8o0tYkZOCNQOBUzBQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:dTTtMe2v59M=,iv:A8QEC9XrpfWMPLpNLRdNAJwJDpgEwIEdL7Z8ffRNXmg=,tag:7bxcULrOd+257iygkrnzaA==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:l7BLdbHZdbE12x/kCqBk+iCNCNll3kfBnVlEDlKSaZbzjm2MjzUzgujO3xiCD93p3eadOxgkdlTM1yQ14zfkPMMFxLKvQ7jA4WhCpfSqtjCjqnNgzBW9zg==,iv:81V3oxWxSKX6CPuIjGeOPrp9STT9s5Rg6XZWa9D/0ac=,tag:e9yULRbhto2Qfn/ReUArqA==,type:str]",
+					"private": "ENC[AES256_GCM,data:xxc064OkdXf/ZLoKNhR9sUTWwpNa/17XNDPoB3MReuD3C4yl5rKQQ/sY/2qI/G1kkOmXgUWQFwo6KFbqcIpHHen2bEXxNO8RBh1pqOFI/gKdQ59oCBYNXg==,iv:gYBgIvSTPSckHHvksJL/qskgKnFs58LMYahKFQ4/UdU=,tag:TMCTqk/rNNA/5vWHECzbVw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:lKF1KUxlWlpHrgRSydrOC7+tY8zWKI0OA/wMs62ILiA=,iv:nqSiO7B4hGmXvluJumqp1+bVyPI6vFY+eYlCp4TwvOY=,tag:UyR7+CfMj3leWd26MKRDgA==,type:str]",
-						"ENC[AES256_GCM,data:aOOIywJymjjl8I86/h5/QHEQ,iv:LE9ubgZ/qo36fgcLn1WjpvOohO/hsc6AnfVG9YGrzl4=,tag:UFr6pjKv7mO05ETclU6vBQ==,type:str]",
-						"ENC[AES256_GCM,data:J4paZY2T4FqITtAe+6hssAPhU56AYHZMc0g=,iv:n/Yj7CIcFUBIdW2ktT0SzSvigEJTcYOZWulPuBO+DZQ=,tag:HZwPAAYEnZkly86u0DX0lA==,type:str]"
+						"ENC[AES256_GCM,data:t5cyXAXBk4M8ksUklPYrZSG0jimewvc/AMMa+sltwfg=,iv:Nd5OX4nuZ7PJINgUWfHux1VqRdAml6PsnYO52MM0m/k=,tag:OnGZ0DmTfPj2MxTo5JAS9Q==,type:str]",
+						"ENC[AES256_GCM,data:PDmKKAPbdElmRBpy+6Scyg9D,iv:z3bGrCuphcCzJFPugxOOIMgwV8lp0pXMScHiAHxqOYY=,tag:7pjBKQrNTRuPUwM4+dQ/Sw==,type:str]",
+						"ENC[AES256_GCM,data:Igs1j8eYg2xi2EIagbVrHCo2QAfmdSiVWTE=,iv:BOZMQl5zAKiHdD0JgVqG+/pda1BB6D54BAGVIJ3tk+I=,tag:YRMkEXCfEw1XSCUNASlMfA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:WgVi6bHWwg==,iv:FSjf0uM+FQeSCxlA418n7kWnewO1iLYS4Wli2sng0zs=,tag:1DezUMF7eVHi45OWQTzh4g==,type:str]",
-			"type": "ENC[AES256_GCM,data:4fFUayZNkxnN6uqNGSDtXlUfsQw=,iv:i7x/EwL44FhDR0AcEFohdD6qkSSOyUhcATMuhflRmKA=,tag:SXIpaQzsOhuXIVr2QH7fow==,type:str]",
-			"name": "ENC[AES256_GCM,data:pmUUirY=,iv:N5e/W0KcFEt+jnvqoMeYHfZGscrpAOQmYxDiQ7/WKSg=,tag:xvK+KXfJ8a9iISTiAC/RFA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:+tu/32YGWb4P88SGDpJWtK+nZnMT/7OIDLwt2okqvf+2+0J92/nZZPVjxKAa3744rqPi2YaY,iv:A74QL7KgpsK9ztwJL9tS8QcuSfw/jShiwgJI44B7D6Q=,tag:OGmGPIq2fMnBJ7OttQSnnQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:7TWYSsB+hg==,iv:0utN7z1sK/vqk0YPiNSo+rXlF1ZVy26TXOvv4vOQdhk=,tag:fdFfGgiLvxV8gk7kb5vZwA==,type:str]",
+			"type": "ENC[AES256_GCM,data:6Fh7MsTElneZ8cGtNyMxM+ICgNc=,iv:m5Az+shHGF1P+6v+mM2X8/7XbJ/w7j4P9nJWSNv37fo=,tag:x87iALL2cqOet3hysGiDtQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:HkXWKaI=,iv:3eAq+DFvCg48P7moODfJwVofcEPX3aKGLXbOvO0E5s4=,tag:Hwp+i2ZXPAClrJQ/UHf6eg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:qZfcjVyLWAZObUPhiRdTbHIjCfq2EuDsU36/T7IHWtvI8qfq5QwukXKlTcjgrHzyPDW2Lipf,iv:XhF8iRYTyRFzorPYKujGbKzTOzl5vYD7rFkGIJXPHkc=,tag:b7XYxOo10TNok+MTuD6jiQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:UA==,iv:i+7AZyC4Im7IoIZiigUgUzxtGqgKZwvRvi4Q4KqXWLc=,tag:sHGBlYvCS1rY00oXow86gQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Cw==,iv:CaftduNjIJkLrnevIifanMKtyeM+uA9czUflCfeVOI4=,tag:0T7vRM9aFP2Cszt8kX4dqQ==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:Tn8xbcc=,iv:7TO0tou1UuA4pFFYZWGVaykDnelvF35PAcfRVebW2TA=,tag:ekXaMLOwYm+fOb7aZONzKw==,type:str]",
+						"id": "ENC[AES256_GCM,data:/dYz2x4=,iv:7uzXhThgbs3JYW3pk1QPrTvJiARkjZPHB9+ynZqIcsg=,tag:zSOmAMR/9NQsidW2FCQKUQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:Ug==,iv:NYYUvqEKy5Y9cZXH0VRAIdsLBYUKIt2HjAYlHANSobs=,tag:52MlM8LcmDM4FnZOxXD55g==,type:float]",
+								"generation": "ENC[AES256_GCM,data:FQ==,iv:4k0s7aXXh3M9pb+XicVcYTFCaXYmkdgi+HJFzuc/BI4=,tag:52zI9qawnN4z9LlJz5X57Q==,type:float]",
 								"labels": {
-									"goldilocks.fairwinds.com/vpa-update-mode": "ENC[AES256_GCM,data:eFWU,iv:csckF7qJc6tV7f2l8/CCjClGUyyZVmXLLlNlS4KiIKw=,tag:qSDsg5vKcylhfEizB98QdQ==,type:str]",
-									"tier": "ENC[AES256_GCM,data:t3ieuyGQ,iv:7+q6liPXScAGILpJ83NjZY6BkBBUFd8Bp/CEqKAoRec=,tag:0B1G7bohML/xoy1q4aOawQ==,type:str]"
+									"goldilocks.fairwinds.com/vpa-update-mode": "ENC[AES256_GCM,data:oaM1,iv:uRGghn2bHdW/Hkonfmy6lgGRp9/k3J9NDEeoc4BLJFw=,tag:DIpyOKchOV3zxZwB8ablmQ==,type:str]",
+									"tier": "ENC[AES256_GCM,data:K9Oo10mg,iv:2HhtsTn3vzwXlnWWfFftv6IxkRtr+dRL6Rp2YtlJa40=,tag:IR7ax2KQu1aA//0SloyBVQ==,type:str]"
 								},
-								"name": "ENC[AES256_GCM,data:/tCqYHE=,iv:oHyAZK1k1SMTuUWaR5nljQ6Pgi4kVbuau9kvLgF0FNI=,tag:hSspWl1MLa1fVoiIWQFu8w==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:qGRyzOK0G/JZ,iv:l6vOW2WP98nCtP0OrW5V1kpsVjj7jLwhXzxIErdbWwg=,tag:Bmv8WvQHM8RsG5mXkM1Rcg==,type:str]",
-								"uid": "ENC[AES256_GCM,data:SdcaJu9aCu6KnvEtjb0qggtqRcKvPCvC1jk0EzNmLdIoHVDz,iv:y50YZAjRV9B58ZJgMBGKk0lD+sraoFf3OTr9gjqA3os=,tag:CtZ5Ll3TEHcLTctZhi2CmQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:TDerO28=,iv:Qsf2qQ4W9SR7WTf/MxShA8z6j5Y9e+RY3c7R9RtmjoE=,tag:zzKZoaoCJA9JQ0A4zg8HPA==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:M/zb12R6A9FV,iv:zlQzmjx/h1S+pB38NeqMgREFPkUPXoSiknFe8c1m6rU=,tag:zMLd17fFcV1EyVcYzykT0g==,type:str]",
+								"uid": "ENC[AES256_GCM,data:qmBG1rPxunM1tPebYEXiRd4m++OWHiX6qhAhiwWNDpvIoami,iv:INkQB/pbWqRw6klWzR2z7+t6iJbFbj/qzMhE2a05G2M=,tag:YR49OeM431k7qL/fXHJJjg==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_for_default_service_account": "ENC[AES256_GCM,data:TLwAEsU=,iv:Dm37wEzIvk+X6xJZ0WcEeU0tLcbQ87/soIAzGUIuGHs=,tag:gIO534DxMf8unZEVRy8poA==,type:bool]"
+						"wait_for_default_service_account": "ENC[AES256_GCM,data:4m7IsvY=,iv:6DSogAadz8Bv6L9KZ8XeDCMygl5Tmw3VFISspJ3zR2M=,tag:rpCLx4eSdGFkJ1Cw0FgT1A==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:yQ==,iv:pIni+ekjaaOrbJcMmuIt96r8fqNCiz3bKrny4bSkItQ=,tag:QM6aIpzflstAhvhRyiBA4g==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:fA==,iv:iUzUwjRcivFDXlsCISOjWaMNa0TKNx1jw9l8kzjFZUk=,tag:fKjXB6YQKP1HPgbePDs6qA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:wnc=,iv:uKHkcMAqKppIAkvIX1cjtqgv05gHhgzWdASVBFvyLig=,tag:n4YJRHhTTYxfcxXHuS5bnw==,type:str]",
-						"kind": "ENC[AES256_GCM,data:v/mNL6d+BEIY,iv:R3hopNz3TJ9ejYEweXKQyipQc3INi14VvGpZftZmJIg=,tag:Xv2iQCM9XcXHxTj1UYEd4w==,type:str]",
-						"name": "ENC[AES256_GCM,data:fMIp3zc=,iv:JFiTi3TQMzbhvoZlUqT27tDsQTtalhgo2dC+9ShtnLg=,tag:83HRaVDmp1Lk059Abxi/nw==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:Gvo=,iv:yDJyKw0+KCpBCwe9mlHSAcd48sbp/2zciwX/pDOxPOE=,tag:E1tIrUmgC0RHYzcwS1l7yQ==,type:str]",
+						"kind": "ENC[AES256_GCM,data:xdlfZNlceTdu,iv:jx0U91O/bMwmBCOD/lAtp1cCFH57RGG2mJtO4L669iw=,tag:jVUmpDATAZda28wWAKulXA==,type:str]",
+						"name": "ENC[AES256_GCM,data:AKFokl8=,iv:oBJhqqAI/qRnWEw+wRbR348jp7MI/MoZiDCjoz6U6v4=,tag:gYEs5zUMFirpmuliSj0uvg==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:0y0jOinR694tX7d5qZVF/6HhewosJQaSw/fnGEcvodu9+YvwPLNvVx2hI9w0ANRpyacQYy9vUnOMT3Kr+3l3UzQz/u1gtIbeKYuBbOm8NZkpS8Iynpss+Q==,iv:QTNXESk78O2H4uWYk9pfT/EjMsd04r5MdZHoRCrrtBY=,tag:WBVNl/C/S/iuMifalS6Xdw==,type:str]"
+					"private": "ENC[AES256_GCM,data:DxYi5/ONCvVIanzrgukehAHR+6cwquw/A8QW39QMxx2H+eJRot48oKfNnF1NkVcxgNUjHYFgm1nt9E9nxUVzyxi0b4rg8IliGpcnyeRx7cg48QXbJEnTZA==,iv:DdhbFeCr3MvMN0aL3phb6ER+PKsRiGMd4ymi5ZG0+pk=,tag:kN0I0HU4iWcFJLsTlcdnqw==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:032Js8F06A==,iv:0I5/OEnivsQd2UoIVD3xj5V1fx8j3bw/sNpVjtpgQu8=,tag:lIVXn3Bbsbte6hUInj3LHA==,type:str]",
-			"type": "ENC[AES256_GCM,data:Eiu55hB/wEHx2uFOL+p5,iv:m82Re5YCfYiRD0WXv+8FKLXN96pTqqAQvmp8CXOSF5k=,tag:G0Zq7RCPr2gh7EH9CmYhEw==,type:str]",
-			"name": "ENC[AES256_GCM,data:oKih3jVhYOZwFzTQsQ==,iv:RjzCc5/huboWM/KdDjApbyGBvEJ3dj7yOPU6c4Fv86k=,tag:pHeOvHg/B9xfjOdwwvk0fw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:3Xki+hT3k7opZcK9zBpwMtNaX2lTQ6mjV6dFwu/xMd1htnJr9/e/AVLOREtN/QGZ0cPwoOTP,iv:Y15dTzWMXqqmomNfvmJa7ddu+PnssdJdDaaG3HfxW+s=,tag:QjX8NT9GJ08oX6U26tuWmQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:1i2G6PiG4Q==,iv:pDHZDwJJNJIlAEzHLgilujgcw9j4DaDEKcDl3psNlr4=,tag:F3CLnSp43cFywATBxuQiBw==,type:str]",
+			"type": "ENC[AES256_GCM,data:jf1YdPVLOiJUOd+Uw06p,iv:6qU0a3ElSWt6wpKnZbGeFYexxWOlDfi2GHjt0duAowA=,tag:E8zy/6xoArOvCHpmY09dBQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:Z1QkxW3BPPeLQLQ0Yw==,iv:TV9SdbrKRHK3SBaOWa+VYlr1BZlSf82hegyorVZt6Do=,tag:tSsiiTBqrYUxBCVPrWaIcQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:yqffBbVLi1ZO6pxhXsn/eFp1QHfABgn5EFe5GAvtGrXILXtrxxQhqLmTWdXUdNjQ2JAPLCwh,iv:bGEYHUjM95wcOPKPa4oKSfxRGUHEy1CZTLHvmEazK0A=,tag:kzzd2xC8sulllXNiGzO8yw==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:mrGUQGmlPyGxFEMsoA==,iv:ZbGsC3ZUpAUoqBiy0Uh0vpfHPRPisu59AYKy9IFMyPQ=,tag:KTW1yVz6uGahDvpK90jChg==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:wg==,iv:HJ8mXgzQyMZJBAj9vnB6pC5I6vJD2XYZVaGjghKHnwU=,tag:uV9nbu0ihYBA2rgR951Gxg==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:sJvGB+tnXFaDcoGLkw==,iv:AOfk6Ht4uViUjpxQIoFlk8epjD6fkxQT2i4fjZ1gCWM=,tag:LIL7iXYoXeYscRiiSZBzRA==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:jg==,iv:XAUTgntaXYIdQQccD04pVkmgqKlGP2r0CEClQ+CZuIk=,tag:izToN1OFFwngR9AFAXNhWw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:XW/t6jZThTAgtjbY4LZOIHRWHCDynVH1juOiU9H8/M9/lRmS,iv:HefoPn6Li6BAVzlbQiqxEgYqhgrzqOj4881ERyX/WR0=,tag:S6mOc+oeNdXKuLXOVKvHcA==,type:str]",
+						"id": "ENC[AES256_GCM,data:cXuN+FjPQ7YB4lSj6mjDNfXNnbJtolWEceX16Dg2l5nGuC4+,iv:mbTjTMwuVzRAUjlEYdPIBqwrjY/XL4MrVrxbtvuQ3FA=,tag:merWwMj08ECNF+lnYhK8hw==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:Cw==,iv:4MpC+Uvl36c7rAe2sfdYWin1TUkV3h1nUXiqDRfF5jc=,tag:TT0B15CKMM++aZKlS4l8Bg==,type:float]",
+								"generation": "ENC[AES256_GCM,data:lA==,iv:1INjmD1+AI7VZ184gvWQpPdAR+qHeqNUfqriz6JVhoU=,tag:8yrTxi7M2JjdoYEEwqi4LQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:AxE9V49mDvIGz6p/dxtMoSLHEt5A6Q==,iv:gt8tA3fIhjDjAsxCmKfQlE+F+quSvFSUJH+LLFUZWA4=,tag:ji6mzz0n5YHDOM4+eaikJg==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:GQ31W0xF12eIB8N4DQ==,iv:WPPOBPfw1BZ88h31W7TFDNaX4PerK/o1eLfcU8sc+nw=,tag:ndjWlE8/NDblZTIa3b+IvQ==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:0OZZCd/IRDLO,iv:BvgLi3kEqbo65GyFAeK6gYSV5F0HVJhIl9IxH7RcFts=,tag:QPAFy/AgP1FRg1RWHhBHeA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:RaFW0Leasoo+pjxyvgpqsX1r6cu6uDDZEgn2l7EJOfu9qf5c,iv:I+cG20M20tDzv0o1WtmixNCFs7UOr0qKTUm3D8ZPHIo=,tag:gqmQYABx0Gps7nV3iApm1w==,type:str]"
+								"name": "ENC[AES256_GCM,data:m7Kalm49MmoHau/X1utRQWJ67KCYqA==,iv:m2m4T4+c1ghCLmB3wnF4qAxIMiR+txAHpzLxENmOFAU=,tag:daG4RIl8OvE5L3KH0aRY+A==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:g1hza/AH2EdC6gFz6A==,iv:pyAVYI5bpCcmyW89Dduo2tNgstFllw3etw9cQlF2LNU=,tag:MSvl6+sllEaeJa+7qQ2sTw==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:xok3IXV+XF71,iv:xhU9WkP5WDTjhGVpC6LSwvK0TKbs987c9NXgF60Qo6c=,tag:xYU2de7w0eCT2JWij3ey7Q==,type:str]",
+								"uid": "ENC[AES256_GCM,data:L1uy5dAc9C4vEOZj++QK2TiibLAq4cdPkj1J7idcRuvOyHtl,iv:CZHtqLBPqKqOtqpz/xbvsheLpDrcIJ+tMXJ4Kg9dMnE=,tag:bWXM9mUgk7Oxk4F5Nd9eLQ==,type:str]"
 							}
 						],
 						"rule": [
 							{
 								"api_groups": [
-									"ENC[AES256_GCM,data:d47XEQ==,iv:5QkvafXq8n9RHNlebBv1xPuewwoL4WevZBsiFss2zfg=,tag:42kHfN/AhbOcnsK8zrYQUw==,type:str]"
+									"ENC[AES256_GCM,data:uFEzdA==,iv:YQJkXQJBtR5O9pqsIR3NmXe2RpYBtDYZ2A3rn8Q8yds=,tag:/VVWA2MyztuS1C0sIxdflA==,type:str]"
 								],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:JpRK7VulLdrfZmU=,iv:wdcWhimazWOPteIFkZ0sLmZ3PiF6a6ZkTgUZkcAx4iQ=,tag:fmNca2GIAbFTdXri4lHq0w==,type:str]"
+									"ENC[AES256_GCM,data:I83kVdb1Em4Wth4=,iv:MviXrt4RCjTGArCEDzVPOjah0/fXNVnHd//Wphi9iEM=,tag:jp1/3M3WpXsyfEtq+sSs+Q==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:+IL+,iv:rAGQvpzNpNjDiYF900b1mnFDbqEqsOnYeIuMWY+rgmM=,tag:G2oXftUVpV9/6dI/baTdcA==,type:str]",
-									"ENC[AES256_GCM,data:jsQDBw==,iv:sJIHyqMSKrjqfaZrLfRmOgu+VKvsYXgn5kRUTLO/t08=,tag:J+Y3SnAOV/jP3quYcN99Zg==,type:str]",
-									"ENC[AES256_GCM,data:L6mfNqA=,iv:WNAYwLa7kW8x6dYPmutVJyvy5+LIHJss584uB2B4gZw=,tag:8Ld+SnqcCBZPMOPQDJM+IQ==,type:str]",
-									"ENC[AES256_GCM,data:j0mK6GGo,iv:X5bH2FEep1h1y+smGaEfgrp41OeMejcijid7DtFVkFc=,tag:dqJSLDW38AD6Qhpj9jFoFw==,type:str]"
+									"ENC[AES256_GCM,data:HZUU,iv:z2bS9WULu+KPr4oXDOBzKC0EsYSVBWT9D0+/ygAEJ1w=,tag:NHescCL/g95iYKjD/A7D1A==,type:str]",
+									"ENC[AES256_GCM,data:p4ybFg==,iv:PLe+gDrtXphuiLlqeVsQz/Dp8EywV5GgE5MfWoJPTDA=,tag:k4a66IDVBpeuEe8n5eLMMw==,type:str]",
+									"ENC[AES256_GCM,data:9OIWaK8=,iv:2pHKWaOfraubl5Uy5afH0dsLt6Yf1PoacUnIN5CeOmA=,tag:PeERMhBqSfuYQHibtKx9Kg==,type:str]",
+									"ENC[AES256_GCM,data:h9F082vu,iv:/FRidVFwq4udXDXtE5eO1QFXIO1+Nqr3mir6Bf6zVJ0=,tag:t6PtgGlE8+NR4KvTYzB3eA==,type:str]"
 								]
 							},
 							{
@@ -968,62 +968,62 @@
 								],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:SWauyw==,iv:oTFCu5BlD2d2K9t24XtSY+AzA3+9RMzCkjT5arOzUM4=,tag:c1j+hDOURiYk7HOsExLyLQ==,type:str]"
+									"ENC[AES256_GCM,data:KHh24g==,iv:IvAN7SDHgdqog1+E7P69z6pDBjN9BCcjh1ek2TVK6CU=,tag:gFu2Wml93dfKgPTDcdVDFg==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:v1jg,iv:gIFX2pUdBPc8wSjh52Rx4O8KWsUhTZP2EP328e6d2hM=,tag:WT6G71VWC+rERFwJ+BWTEA==,type:str]",
-									"ENC[AES256_GCM,data:s8LURA==,iv:iGhDr/jySBbQKnTt3l0DJy1U5rKCylXCqY6nUa1clqw=,tag:lRm1QSWS6RnEricwYL487A==,type:str]"
+									"ENC[AES256_GCM,data:7XEG,iv:VdMXSGvvv7SGl70NKqr2tMPKMx9fbnJLemOznQoqq4U=,tag:Yj+Jfb0ptBIm0+bHJMuusw==,type:str]",
+									"ENC[AES256_GCM,data:qHV9Ig==,iv:ZRZKm9dmr88w2NoDuTAPavl4F8QXYdwlRv5NR5ZMIms=,tag:cw3Zk5dC26LMp/UlB4XVMg==,type:str]"
 								]
 							}
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Xw==,iv:uhUk1Ee6PYxWAnv6H7RS6pmieJB81jJZ5++NfYH2sG8=,tag:Z7wLJzrAUByZDKh/DcoqGg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Bw==,iv:yup7xckep98TWcvATqxUxskODcxlBTPcaxhISe7fvBs=,tag:cC677/Qfv4sqKJqC0Zq4UA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:tMDS1C3ik9sosuyhkys9IhALyCLnPu51RcVsEw==,iv:n7SpuRyZf7P5GL+mZt4eOQqT3kCnwSPY7JFzxFWDqmU=,tag:JKCcTmwD0YNsbaBgvhjCJw==,type:str]",
-						"kind": "ENC[AES256_GCM,data:kyNaRA==,iv:7e37nGli4XQtdu4R5xKFJDTFHHstV/wV7qIR4ZfkSpY=,tag:GlfsUUdX+1EIbTxx6iTk8w==,type:str]",
-						"name": "ENC[AES256_GCM,data:jPSTHefBvqW8udBw6E8vAaifaU1AmA==,iv:QmqWFjUvQP4ji/x7kyXhYiDjMaVkii0YH4JEZynlKM4=,tag:wTdOSU3rVkgK6hwpFGDkPw==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:j/Rk0FUWe7laOcXBrw==,iv:yquiXBCRY63j3dLV+M9BGdk3IRIHPxV8+3Ff7raQegM=,tag:ye57zt42JD3PHqqsqhslRA==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:BwDZVNYvW0UW7WYaQJ42hdyYzg3F46JKp0tawg==,iv:YDURnwX4ESDWj8kB3VZDkqHjIy5RWGfL8P0rEZWEBqw=,tag:POJ30pFAjm/X6xmoAgq5Kw==,type:str]",
+						"kind": "ENC[AES256_GCM,data:l48HIg==,iv:zkveywEXDGpRCdHT+fSuZSFyokUcoMqAIhqhi1wc4oo=,tag:6Uq2AFtWVIb1vHffhsvyBQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:vNYA3VchTWnm4fFS7y0FjQp9+TBMwg==,iv:SLO43qQW5aQLqXsHwiGd2qnOHAcY868c8sQ4NYxb++E=,tag:9aOQkPkkJV4SVGty2V7mEg==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:yK3PqJw4msnMshB8PQ==,iv:4uUqbY7Cs8/r4/dGErrJrpuZ5mZPZaKkZ4qjtwgvlS8=,tag:v6MHU5jZqYRXg7iITkn9PQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:u87dCc4DOeIABinuqsp1UJfda3NNuhkKR52DGw9pYKE=,iv:MwabZqntYCFrZp5oA51IgBTRfeTkI+ajGIjKdICFJg8=,tag:L+zyN0Suxpyfn9picgW5Ig==,type:str]",
+					"private": "ENC[AES256_GCM,data:9Qny+XU0X+fq8ePKQlZJRGn9Rax12PoBguO4iU27lig=,iv:3897lIYhWL3+are5c4U3yA1AxDrT4BWAj1Q7J++d5KI=,tag:ogRmLtyscLfi0fFJDOJymw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:GvbhXKD4wy71ROJVKPTgFcPXmRbUIfCS42/Jchi2cdo=,iv:KduXJSdaClnMo830rGfMDq02GbMdtgPEdQT/3xlZefI=,tag:xFsam5+1aRvw0F020C2beQ==,type:str]",
-						"ENC[AES256_GCM,data:wuN+bKU0M8iN3nvA3XAqdNtb,iv:FaMzwexErfS0U0teiMlLy6eNkgEfC1fZfcv052wNNM0=,tag:yGL3mv3S0KUAbqyCNjGmyg==,type:str]",
-						"ENC[AES256_GCM,data:pHS0G4OaZSrd5k3FnAJKuZYgFEnTxilOHeTKVnxX2DhyQRY=,iv:x0Te6RwOLm2Fx5gseVrhphXSEWEmS2ZaPoQzlzaAICI=,tag:HnxNTK0M3H5PFo5+EHldDQ==,type:str]",
-						"ENC[AES256_GCM,data:qKsPktjhuelbJeiMhrFGFYUSRpccn0Gi+hk=,iv:LDyamZR2gb7wBW8S4egsR4iYyVetOIcmKj8PadKILKc=,tag:BWk7bOu2iFlplZFoEmr4dg==,type:str]"
+						"ENC[AES256_GCM,data:KmLaCXyTaxcE5ogSy5a1hF9Obcl5HoBU92TW8tMX7jk=,iv:eZ29gUNMuTaWYzEFuEMHZRWcFAGqpRq02GMSJe1BVWE=,tag:yBgYmfRUGyQ3P2AJ7ZxE6A==,type:str]",
+						"ENC[AES256_GCM,data:/CyGVurq9RBftflILH//Mtsu,iv:pSKFktK35ByJnCyhhTLTLpGBf2ZieayZmLFqmcTNt9M=,tag:65oMUT49A6nM6rKwiGisOw==,type:str]",
+						"ENC[AES256_GCM,data:q6IjFtWWare9H+yS6uGUd3Q3K1aEnIMC7ON5MFis8d8Ykr8=,iv:R3IbM+acJ8CKMnlr8/Zo82JwIg97s3yxodib5uwNV/I=,tag:6O+MuDx2kr334CXwyvvx5g==,type:str]",
+						"ENC[AES256_GCM,data:QeOieXm3lEp3F18IrKbcbQsSw9rOuHXigyA=,iv:/jdErpMttsgjGMYMyYvm0JbzjsPY/5UdbP3YbP4uq78=,tag:y/Wm/LCgdfi3GIyDmjUAnQ==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:wODpYmH1XsE=,iv:3UFa89o/6EsYbry10uEE8io7cnP6r/38zc6So/5gy98=,tag:8QgEjjV+wsSQ78b1LsXsKA==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:6g==,iv:Cc0fFDKuzjICTMSP3AAud2Mm0Wa0QXeETRR4AU4kbiw=,tag:/3mc+nPlRkU9oAjfIlLdMg==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:XQJoIC8kosg=,iv:zRV5nOtxn9gBmd1U5LDPrt4PW4okd/FRXNlw0K9kd+s=,tag:D+zh2shhKj0Ko2orsamlsw==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:gA==,iv:fyfSTVBJDdhI8cUYDLuCR9cDFqJctH2UMTV0Y9Ym/LA=,tag:TuzA4Jfz23IBMO3P8VV5vA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:lsjSewzH6D95scC+ECnNp28hmg6gbr8hZb8=,iv:RmYNkv+yDnIYIug1YjdgIzGOxI1KqRExp/T7VVyRog4=,tag:UKwDUpGTd/5+5uqJecpmzQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:th4eE/MepfQpP8XaaTHK4HLLnjUk7adbPHI=,iv:gqCG5cJX0n+dbAj0XXsnnA7BOpB4e9LlDEJXMqwq8Jc=,tag:4uj/VgpFt32LGFs5mMYULQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:3Q==,iv:OrK+IXoh++c27kcPHpUx6lSrCriRKw7zC3KGrBjP3eg=,tag:as0u7YOgy7mP8RmPYwnCiA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:2g==,iv:rW5GfUE2e8jZQE2lbDBSjhXAVKDQ2NN4DGCEAiowqr4=,tag:3CkHfJf50rjtJzQ/6DrjdQ==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:ONGkRiZdjZuXNo/2hN7bqyg=,iv:AS2ZeXMUJPUHC2xZ2RzFh/D4NBzDaZNM5v9L6CkYKck=,tag:1++sh+rEY0CwTNfKfEMSqA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:PpRRuqlGeak=,iv:Nv/8ZLZUuHTmibghhbVHJx5kilWIAQg5irZwDevLXyo=,tag:vsUuq5/HMablghUBWgwKuw==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:xSHaB+tkMD++,iv:gTIPJCPQ0t3AEKn3eGU4Szadxckg7NNJOgxxVmvYPr8=,tag:f9Klng4YTL1klxwZRdyGZg==,type:str]",
-								"uid": "ENC[AES256_GCM,data:aeSlTArCcYPMkr6uHD1RutrzR3YsArTHC3Jff4m7f/bgibJQ,iv:iIz8I0I0WzfKaO41X1BPWaHEEksZZmIK9umjfuLAA4o=,tag:TAdkaRhWfPOb3XQJFo4nqQ==,type:str]"
+								"name": "ENC[AES256_GCM,data:8hREUYxlbCsE78+el0rFnb0=,iv:6WIKPgnvNiDIntOUgiroUSuhk8exBVe1XEc7nOl5fFU=,tag:C2JCRelSvKfzmNJBm0gy/Q==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:Cd9GfpZSbyA=,iv:SZpr3yqtbgk3U9jqumvKDTi75Mii2NfMyxWnVivSnuU=,tag:wKy4JpQQCnpjXVRvRqLQnQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:dsv1UVq5MWRM,iv:MAPZgJFdAzOp+7HjoNyamIxCUSLUuAYri6TmGIP3fmg=,tag:d+x5sG5rzaV4jA28KVrBtg==,type:str]",
+								"uid": "ENC[AES256_GCM,data:pxCBKSV9rmUxI6JTrQ+5ySqL2Pc2aV5mkVsD5rYmxCkj25hL,iv:/4LEbkpJFUkkWVz7xhAmsUO8oxvB17D6FIuewqY149A=,tag:HZv8tDC/xCbpnuzoJ/Xjyg==,type:str]"
 							}
 						],
 						"rule": [
 							{
 								"api_groups": [
-									"ENC[AES256_GCM,data:UWXlSw==,iv:PFOAdNUOuVDykEArFQV7nDPD0byfXvsIrdA47rJcwQ8=,tag:92XnS0XJ2PHz122ing/Mfg==,type:str]"
+									"ENC[AES256_GCM,data:NhuxJw==,iv:MZupfA51Hcxo3/Ndp8Fp1R7tRW9kbJZfADcmj34/q7A=,tag:rEJ8s1OgZRFcovSjMyYDgA==,type:str]"
 								],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:43qc/na+zJ+6Nlo=,iv:VrLZ59hdAI403a3f4pIHx8gq0BaUYKF6M6CXxD6Lh38=,tag:6AHNFQds3Vi+dqvuhsrd1A==,type:str]"
+									"ENC[AES256_GCM,data:fasOjcyjaEXbO4o=,iv:iG7JHwpWpfzizv02mxEbY0u48wtrKArS4bYeN23D5/U=,tag:5uX6no48aTPUGcsDd9yzEQ==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:4wxJ,iv:yKVB9Y22w+pk9p31X41I+k0EOuPV3Uj6RoP5pRelFFM=,tag:KTusEDqykAQj9sPDnMCCNw==,type:str]",
-									"ENC[AES256_GCM,data:9d7exQ==,iv:betscneis+BAGTKITs0JiQFkyIdbEmdz11px4VsLXow=,tag:pPb+cUEeCATWIWMyFKPV3A==,type:str]",
-									"ENC[AES256_GCM,data:hFXLuG8=,iv:UJL4+pQy+A6mT0eJMuveDFEtoqXer1TNJDkIWaTuWiA=,tag:/HWYmZG4e1V9Fts/zw7lYA==,type:str]",
-									"ENC[AES256_GCM,data:R/thhrU+,iv:fID6wy1cIrjmY6Mer9FTVF2s+UxjfpN91MbRYnqLbE8=,tag:rACQt72KacbX8TjUIuAJog==,type:str]"
+									"ENC[AES256_GCM,data:rzkv,iv:Oyv8PyyzDLZCnEGRTjZO/DdRq33ZBn/4PuWhLvh91e4=,tag:3ynUxhN93mzuYbIQbNSKLw==,type:str]",
+									"ENC[AES256_GCM,data:0FX4lg==,iv:uo2Fnj5GmyOwiVLRfvwu9U0FTkUHHB/lh1Hinj+8d78=,tag:EL9wWDUsASxwNvlGXV2Mlw==,type:str]",
+									"ENC[AES256_GCM,data:ulcB0aw=,iv:Tl3avv/4iV+PRm5DXYgjq7j5fShfXKXwRN6S7vHvZUE=,tag:8mvXHvwkARJplQ18paPgUg==,type:str]",
+									"ENC[AES256_GCM,data:QL4mFr5s,iv:3EOaIoEQ6llkhY70H+L8la5jO6mRvwAGGA6q2lcXKVY=,tag:dalpAJIL6GKJHE+StPd7qg==,type:str]"
 								]
 							},
 							{
@@ -1032,119 +1032,162 @@
 								],
 								"resource_names": [],
 								"resources": [
-									"ENC[AES256_GCM,data:B8ZOVw==,iv:Pgvw9WYcUjZUavPBfVhDr4Ay+GvzCisrHrv2BEyFung=,tag:k5fmf9Ld9yPwBoF5yBKS2Q==,type:str]"
+									"ENC[AES256_GCM,data:CGKkkQ==,iv:2xACPjc16wITQlkU/7rmZP3Q9X50gNEeRus0PW/3wt8=,tag:KMc95WO9TlmGoMzWC/iVPQ==,type:str]"
 								],
 								"verbs": [
-									"ENC[AES256_GCM,data:Rk5l,iv:S1f9CwNptSjGAtQTHl2rgslmNDWCEGtuAesVe0o7JFI=,tag:JKX97qOo127lYLx5Dmrxzw==,type:str]",
-									"ENC[AES256_GCM,data:74+v2Q==,iv:rvoNig+fiwGxyHKYa43l2KMqHwL60sLeZRM+mk7S01A=,tag:yOH6HViI1nxWJdB5Fge/ig==,type:str]"
+									"ENC[AES256_GCM,data:frVg,iv:ZOd3i1rPojCxDHgupOQIPdp78/uenaeYUIUbnC0lDZw=,tag:O/AevOXXEtyQwv0QuoOsbA==,type:str]",
+									"ENC[AES256_GCM,data:qHG/WA==,iv:M/ygv1TI/U3Mex55Zj+StnguYfucR4y7hm76mijKhlk=,tag:rNFSaqMoRA3nZBl5PqqQFg==,type:str]"
 								]
 							}
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:qQ==,iv:0HlNGRrETax4c3hlr+QM4ZJhqwiSoGU6vqF19ZlR7NQ=,tag:omHQOgOrnOsWmc1s3aQawQ==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:tA==,iv:HQqzu29O0PGfGzGRERY2GLJR5AIcf8jHErYnPh4TA7A=,tag:MgXKpW4v6X+Xys2LiKh6Tg==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:ps4jud2FXokXUdXaTWGapbhnqkTZRIDgi6oenQ==,iv:nueMN5Hs7ZIlk+RO3VPsVFShecqNqfrEFRThLCmXfuQ=,tag:MTFl8JCHy0BL+WnDeHrjTw==,type:str]",
-						"kind": "ENC[AES256_GCM,data:qZtPcg==,iv:oDyqd/JLpaTTxA7fTI4EFGYeJmHn9bSrVGeM7WHQrYU=,tag:a+brpHOmztFogXZhN6IHCg==,type:str]",
-						"name": "ENC[AES256_GCM,data:cEwJgSCOaCLMVNss6deHF5A=,iv:5+CB1zrtlVosF64edivpjgjNf45X/PBq2Kea1m+T0t8=,tag:NpX3sc3EHAR7lxqXA/SU/w==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:FYf87jn41A0=,iv:nkdAqibR8h2+XJFMhryq6t1cZHwcdG0eXLQJmmezNr8=,tag:N8Fims49Xp06k7k5Ocn6CA==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:HRqKwN/62vDxk0dZwqX9JFR/n2aI8j5Ay60HdA==,iv:iDn+UE6HzarRfsXcbfqCREOli1JvG0IL2Eo3yK7SJbo=,tag:xCV8Vm6pbkI5LieVVjrIYA==,type:str]",
+						"kind": "ENC[AES256_GCM,data:YKnoyA==,iv:garEMsPtif0YCTcY7o8KLNuSpDWFF6MM9pd+xvpZ5ag=,tag:EgAXTFzrdy4xxguCHz78pA==,type:str]",
+						"name": "ENC[AES256_GCM,data:BxxLQ6qgIvpZGOYKnyZeF5E=,iv:2Koi8nQYMxTySiGhOs/rSm1V7NY1SAZ/zoxDZfiJGro=,tag:taUDtJ2bAUQk18ZbWhGvIA==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:H/8Wai4EoJE=,iv:Ntux6C7uFZ9WMuY7RsJy6IEgEsK6NHc4e/v3mdEooww=,tag:vFzYDTFnt2+R5JE6gxk+NQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:hPstUqYPhqa/DRod5qprM5xAxCAzOyPzMPF0s+OaKRE=,iv:n94ihdNLOd9UxB7l29M6sJNcZSUhP67BGl4KGmE4TpU=,tag:rmv59YOjQsW0DI1YvTsuWA==,type:str]",
+					"private": "ENC[AES256_GCM,data:wHXUwr0FiZV9tv9ZGL03SMGFVkmLGr2lwYxYcqiJDX8=,iv:xA62bILm7KJrzhxw/ZDR9mKzqAJBFenwjszdlMwUpTI=,tag:KIGMuxA2pDaQej0t4O9AzQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:C9i13By5I/mulsAcJ3btKP4Jsq8sp94LKGTdPaV2bWQ=,iv:0DP23Pes71ugBSU+0DORist5WtYNSvP59ekBjzCFrMU=,tag:oiWXGelH7pzAWVGcdN7JXQ==,type:str]",
-						"ENC[AES256_GCM,data:soHFmyB6mRc7URI71s1Y6eqj,iv:vpCcIJQAXqLhGypW6H9DdNyjFkr/pwl+rZwi5b2AhEs=,tag:kJPjvpTiNJd53v2EUvoz9A==,type:str]",
-						"ENC[AES256_GCM,data:nK+QPPU/ySJCNhAyA8JyjBpchj6bBzeKylzbp6Tyj39lN8k=,iv:MpzpNqlkNy43MI2mXwlQLjxnPwoAa97bcw+5WJpjAZo=,tag:+Gb9ZCtowG1aMZEWAj3TbQ==,type:str]",
-						"ENC[AES256_GCM,data:oMEXAkoEfvy/ExCYZZrF3aviVKE/RxVNdyE=,iv:HyMemtPNYkeF9kNrVhrqs+6BlTeItlmdfmMRKBgg/6Q=,tag:88RZO3sQ7cZu6wL/1DFUkg==,type:str]"
+						"ENC[AES256_GCM,data:UNhKr2NS3MhWpPoQi63l8lSdeFilaQmRR9Y8y34YNJI=,iv:hdT/nwlvfZk1uTTe2VV5s78kEWrnYPH/QKyJSjb/TXE=,tag:ctgdseYuxVWONxdnAcLmnQ==,type:str]",
+						"ENC[AES256_GCM,data:NSJ3eK1Du+WxMfSnsfE0kAI0,iv:sCtJGNOTsutIi83/dY5rADLv7LDM37vyEM/Hmtdqkzk=,tag:GK4sHBCYSLKU7DHaW4W/ow==,type:str]",
+						"ENC[AES256_GCM,data:ASPJhJYRpsa2WQYzjjPZinBh9t4TWkL7iMK25kzbuehi8vU=,iv:fMxmK+fWN75Vv2zSq7f9w0KqqJ4d9JLnM8JISxJr820=,tag:tS206ZYdYxqwGljcHhIU5A==,type:str]",
+						"ENC[AES256_GCM,data:FuXnkfQgab3fpanEPM9kegzs8Te03AszVis=,iv:zWn9gBBytH341YPD9idXPRNqeXwoR+DXHh1HyjH0lsg=,tag:JMhEChIomLboqa7rLWCJpw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:6cYEql8myg==,iv:Tuo5i4uJOskzfIJ0yyt1vltDvS3Vx/rGEri4w5H2StE=,tag:yxykErt+0nr9BOtQTXp10g==,type:str]",
-			"type": "ENC[AES256_GCM,data:Zpf908dQ0xmQCh8=,iv:1PdGZ+N3+cgD18Y6XWvpKGbllSpkzyXxhqrRoDUOr5Y=,tag:neP+y9nUxNhxmM9jX19y4A==,type:str]",
-			"name": "ENC[AES256_GCM,data:EKavbA==,iv:aHZtWbP/896lw/q9uL6rGGqBBD4lyfNqKEOMsJoZSyE=,tag:eC5DA1qXYCyz0PFu+t0Y9Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:BABHaJCTeclD0gN14K2cZZ3CSAUA1ZeQndYGtNR/JhumeLUecF3xKZRGjVYIFJZeaA==,iv:9bdL9TRYerjypZG36poUZIxD70GAwmJ8coh2V20jcQ4=,tag:h0C4W+okq7yM8hICOEzSpA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:Imr0/lknGw==,iv:VeGH97YKdSgDe8MhtgegWYgUV4EoNRkZPG6seGus1go=,tag:9dSwzPCQAbZGo0IKZvyLwA==,type:str]",
+			"type": "ENC[AES256_GCM,data:XSfUnCh2nPaobuwpUAcUOXOSREJCGvOm,iv:ZWM6kT2YWLydHawv3E/lVnkacKjczIxFAZZmdFw4i2U=,tag:B/nkicPDhfXsmAgL67AJPw==,type:str]",
+			"name": "ENC[AES256_GCM,data:5M/HH9S2HOys74g=,iv:qCRbVuWaA6VT77uCl+pweZtDzYEgo+40P1/INFebzzc=,tag:ecaPDweO3U8CAuWx02XWwA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:9Ffytz4LTpeaiFOThi/F32Cy5xNEcIYGTtXAJWz6DJ1GWkgsj1YPj3edwsJ/R8TngPUgBDP0,iv:13psmxmslkWon63qvlJA0GwEQ2DnLI+lT2fM4zX5flg=,tag:i43i6Xb4EkiuKlK+FiuU8w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:/A==,iv:Q12eQ/E/mBcPmwtOGKSK8mGYxpkSpSW1tsF3hkqM9/s=,tag:uAmz8vyYBcYYx75PuX18wQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Ow==,iv:XEzY4T5GxmUwSmRc3SncDfrkmWNzfczRYb/JPghV47A=,tag:0y7KaY3fGawLKORLLSd4zg==,type:float]",
+					"attributes": {
+						"allow_volume_expansion": "ENC[AES256_GCM,data:SN6KKw==,iv:juemY42f2rnxDp1PV6dWqWarnPgd5gbAn0y7f8Zp60g=,tag:A2L8/owBv7UuOFeaC/KAyw==,type:bool]",
+						"allowed_topologies": [],
+						"id": "ENC[AES256_GCM,data:RPdLWEp8wcagUnc=,iv:fpOqNAglgfnPAGj+a+kPKy5+n/t2un/97ok1kHz8Ah8=,tag:F0uRVut4Q6ojEPGH1f1XUw==,type:str]",
+						"metadata": [
+							{
+								"annotations": {},
+								"generate_name": "",
+								"generation": "ENC[AES256_GCM,data:+w==,iv:gSK2xpMsOlQZRGAQNwPTxRFCFUdLiTNzQNsXy8x8qvk=,tag:uLuSxGv3Fc/TEd/DM/njew==,type:float]",
+								"labels": {},
+								"name": "ENC[AES256_GCM,data:tkR/JDl8aa8soMM=,iv:PAIVvsWo++2B2miI7EC7o8t9NEuH91lWNs4zrnbyHd4=,tag:SNoIWfwoSoHbmkG0ZLfagA==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:l5Zq2AOIteYp,iv:xtd1/qxQ/qX2j1D0qMNL40p18FJijoU4b7fMrmCcUJg=,tag:jYRFRmr2luUgEkummvslfQ==,type:str]",
+								"uid": "ENC[AES256_GCM,data:S59X0/g+jirGeGA9l0xTMUbc+QmpvCxqOfMT9N4xOIYYMhHc,iv:MAqOPGHJ/tOCuO1y3Zjg19hKUDaNYy2KKkk94DpYrCU=,tag:NHnIQ0R6MKrqoV5OzMYvWA==,type:str]"
+							}
+						],
+						"mount_options": [
+							"ENC[AES256_GCM,data:Adv35y+c91vv,iv:zFF9KdPGskM5lyE4EI2x708FO1tcgEyynU5WXdor/+s=,tag:BkoDxhdzUy9yFNs9I0OaOg==,type:str]",
+							"ENC[AES256_GCM,data:PTwRXFatZHBU,iv:ijWkm0pv+0tkiQFcHTaYQokcrBYyaPfSBKkpBG2mw/M=,tag:EqO3ve7sAy4WRyKzYBPToQ==,type:str]",
+							"ENC[AES256_GCM,data:iLkquQ==,iv:brJUxp0EqC8Q+N9j3dXgYACSTfonIwm1mBecxrzw+bI=,tag:oH4xOYwmiVQJyrPyYsVYnQ==,type:str]",
+							"ENC[AES256_GCM,data:IsLLiWNoZMw=,iv:RtGyfqX20aofCI/Z557moaYDygiaYkNpMOONWIwc+Jw=,tag:iPfg2Z3WGizmvCVWyi3EXA==,type:str]"
+						],
+						"parameters": {
+							"server": "ENC[AES256_GCM,data:4EhsP5BeQqcL989qMg==,iv:noVOCZRtrHaHgbvzcpMQFRyQRRPDB4y+1CJ+lNed9fA=,tag:Xcw+9at9RBgcq7eFYIdBvg==,type:str]",
+							"share": "ENC[AES256_GCM,data:iD3BytWvOE8=,iv:+p/x4WY7afbBJhCGLJxCH6wukk61H47eXXEuwWESyLw=,tag:WjxK+0OMTp3U/LwQjt9EiQ==,type:str]"
+						},
+						"reclaim_policy": "ENC[AES256_GCM,data:Kf7U4XUD,iv:7HfzlSaLgDR5luPNN13SW/Ru32ZxoPInU60ascIhofw=,tag:sUGJdegLnNv/DzMORgvKww==,type:str]",
+						"storage_provisioner": "ENC[AES256_GCM,data:OKSFTdTlDfwUn+HbsIQ=,iv:5I8qcCpoDEW/EbF+u9WnVop/9yJCQs9hUalEOOUSQaE=,tag:rvXtIYxwRmwIrtBj4j5sOQ==,type:str]",
+						"volume_binding_mode": "ENC[AES256_GCM,data:13HYEFGYsTBH,iv:hC4LuzqrXl3pNE+y3OkO72ISRWYqMJOTry2VriH6d5Q=,tag:BeauazL0KUP/PlVU8u2kpA==,type:str]"
+					},
+					"sensitive_attributes": [],
+					"identity_schema_version": "ENC[AES256_GCM,data:AA==,iv:uulRUmYjEJue495tMtiOGM4ZrS1ohFv2vGY9f6vUa5E=,tag:xnYtTDI3OKuRtXKz9r/ZrA==,type:float]",
+					"private": "ENC[AES256_GCM,data:c7j4/aJgnnI=,iv:60SokIL+IxYXytwx/yD4uMveKSe8REs/AWJMGnHq9Oc=,tag:bgqW9q6a3414MMtlBBa99Q==,type:str]"
+				}
+			]
+		},
+		{
+			"mode": "ENC[AES256_GCM,data:iYoyVRjrhg==,iv:yQwzc75Bu55lRNevEY9pQU3Uw182Jswkj7Eoa9p1Kxo=,tag:DGwU6lJd22w650C+AI0GPQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:Uow8nXRHBjfbA5s=,iv:lkql+ukkAIbvu6z/9VDoxp3PZqSelIrxj8QpifI7nJY=,tag:wQ24gM4BdbDge6O5r+ujbg==,type:str]",
+			"name": "ENC[AES256_GCM,data:Rm87yQ==,iv:Q3+PGkgHpckOZvX/Dzk8ShzP8u9mrVda8D5+h6h9PFE=,tag:su65WVEVNcabhM9CBgFejA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:XSzW6uhZkrKqG7rUDq5oyNh0Fmy4sby+7y8Umo+DcFMnFB0f895QIYNE/QpGbdzDYg==,iv:mMuSR3x1syzCexK+ciUXdBXwWHlWvxQbgi4IsSXXcPE=,tag:1Ftj1Nn1E6maa5P+S1u8XA==,type:str]",
+			"instances": [
+				{
+					"schema_version": "ENC[AES256_GCM,data:VQ==,iv:HGNu0UJIcsanYHB5yxkuzP4zEe7Ua+MiZmD7NiPtXdI=,tag:y0Q2iD/r1oFxRv0PITuiXA==,type:float]",
 					"attributes": {
 						"description": "",
-						"id": "ENC[AES256_GCM,data:7j56VA==,iv:6bLjnh9lPArZSNGVnI77a7GNE8MooJ5sG6Y7JjWgAwo=,tag:x84b2vXfmNBaVzQWPsB1sQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:tUpuLQ==,iv:ky4V8xUlZYwIQ1CQTb+zXV6amZYcs9WHgipzQbwL74o=,tag:8fd/TTcDScy6PBNRQ3sQfA==,type:str]",
 						"local": null,
 						"namespace": null,
 						"options": {
-							"file_path": "ENC[AES256_GCM,data:7ShLZEiigWzkfp2QMLgtQTkt/Sul0Nr0IOp/oA==,iv:q88sKDsBO/wR8r346gwNIgoSwWhXGOT6MhAyrnC9+zU=,tag:0VSpazSCje6ut/hc9B8Rbg==,type:str]"
+							"file_path": "ENC[AES256_GCM,data:uWBw99gNOByg2eUbXIwaqVt1xiIdXV8+DJ4G8Q==,iv:m51LdqXYAa5cOXSxTNh4VKX2zckO6WIwSb57Bxa3lKk=,tag:H58ucx3BTfud7nJ+snjryw==,type:str]"
 						},
-						"path": "ENC[AES256_GCM,data:uCEUQw==,iv:OunhjHBSCyLqQ2mCfwdx10HiKDXPBoS2o0LqFCi2XCU=,tag:JG5C+S+fvKnNsAHE23uzcA==,type:str]",
-						"type": "ENC[AES256_GCM,data:WmDcWg==,iv:PrJaI3c5ZvjcqI+Rjjva1mIg1pNRmiMukKb0ziClMyE=,tag:dbgTnnlRuEiCGev4n6BA7A==,type:str]"
+						"path": "ENC[AES256_GCM,data:WIzPzQ==,iv:i9tBwpz5e9KpnRNy9yiL4uGVYbDBgJ7Et0AQgGS2ACs=,tag:HGxCvTnPTp0oUIQs4Nf7iw==,type:str]",
+						"type": "ENC[AES256_GCM,data:dW19iw==,iv:Ii2Zqk8bc399qsIJg4Xg3e3xCxntUy0w+jEaPlX2fW0=,tag:pHJjo27bIwlRM3IBTGQdPw==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:AQ==,iv:Z/8vqG/4OcvXWDM4jxJuGo9bmv3XE3nldRkR6S7ULXw=,tag:PVU8hMblPZOvjpfT/p1JPg==,type:float]",
-					"private": "ENC[AES256_GCM,data:0IYM6q9pjfU=,iv:dnOglGcFWWG30/7V8X7ULSzOJHs0k8aPF3JrsjcSTdg=,tag:h9mzyBI9a0PVsfof6ABt/Q==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:yw==,iv:uvUN64LzgtxVFoLsNmuSrAgh2ZoKNLJjtfggOrYY+8o=,tag:Nn4yLJuyynZxkOyIpI2Vvg==,type:float]",
+					"private": "ENC[AES256_GCM,data:qO5vrZ5wRXs=,iv:gWkgl2RD2IAI8U/ljFRPcWn64zIIXZTQcApP9rlk4zU=,tag:Fug6XGevyHNNyLBAwqIbWg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:IBrFRsqXL6rwwBoJhBiKkF+1,iv:YBnvf1d9qKLLdYI6hdf6QKcNDBORRMX6pgoTrx4duwQ=,tag:pTmpBoVLXDcEzApWR33fwA==,type:str]",
-						"ENC[AES256_GCM,data:Y8Msvy9tCUgUQdlPJxL27qmp9MCPE6w6Yn0=,iv:iO9lm4CAU39VY7JDiuJGGxigfi1iEBsyfcdjp8DvfY8=,tag:muCDwyyjbxXmmRBjLcPpgw==,type:str]"
+						"ENC[AES256_GCM,data:vQSTiqYTIsOBBnjiVBRkqhBe,iv:xxMif6Q4ZlzCRQ1SHZLXqxcnFKjbR13msS1AdBGe9IY=,tag:qPcb5GCv05xbSY9qM7WkCg==,type:str]",
+						"ENC[AES256_GCM,data:QoEG1sPQuZ5Cn2Nvm7FC6Jj30te6Ycn7muc=,iv:TyLccTCuq5gxTVeFK2kg6W6/Spfe6HZX/eD8VKEGHIA=,tag:HsIz+zeugeiQyU4Zb8wXrQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:6QM2lpaSAg==,iv:ehgrT4rmGTLCZ7TvbzsNTuud+PxlnQCspCwT/ljyXco=,tag:4feW8SjkI87o7v8AOqSmOg==,type:str]",
-			"type": "ENC[AES256_GCM,data:pGfj6MmaqlrtewdW4I77jSuv,iv:5RUX/rByPGlgJZaPp/NA1OfmCNF4PFSRdcheuVUdk/s=,tag:LuQznpN6iOzNQO4Sk116qA==,type:str]",
-			"name": "ENC[AES256_GCM,data:sML1Orw11ei8KQ==,iv:iQLD6gKNCPUWNCvrJmFVGfnVE20iZJCnhuIYymmDVtU=,tag:DDcnMBET84rqe//AoFGX4A==,type:str]",
-			"provider": "ENC[AES256_GCM,data:WLLrtiCcHmWdbhBO8K2cvwsJded5jx825Xp6ObOha+WNGruR1qqIeT1sulnGsfa8tw==,iv:WuX6h1U6UClVtWMSfnu6KT9vCBJQA+AKdlpOceK2suw=,tag:RsiNPfLg0cPvfG+MfWEJ8g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:VgBghekX1A==,iv:4L1OBmTLIzzjvCRhPWFBBntvrYTe86t6WCbXD03LyCA=,tag:8+KS+RUi5FoXsGTTVHyVZA==,type:str]",
+			"type": "ENC[AES256_GCM,data:avyUrx97Sr31SkJ9btlJiT2F,iv:6VCwLOIk8z9HQLzCeLySuGfoOotRNs3BY+ld8woX76Q=,tag:633x/sT0J3kM1eae0NiPeQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:HTquDfx2ydLkMw==,iv:KK3sd+A3R1XfSNoOL5LZxjmspWqS8faPYc4dHnB/K8k=,tag:3duT9oC+Y8vgMOIdvzEDMQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:AT4/NDgmmorw1SHy9EG9Ns6a4NE6P2VpawESu4/+EYQwwNuArQ0d3+TeHyXjy/8X0A==,iv:3iJHdKj5BS6RXzQqvVfvrINaFKTRVQw8QqsT2p/lhB4=,tag:WVinepLSOAUrgq8p+09R0w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:KQ==,iv:6H3JC+nB3+NrYrzh88P/eAE0cmUZGoAHGKXpGdxWllA=,tag:ntomgbx6crL1mQrfteXZEw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:xA==,iv:YUj0akmucxf7YdKlkH+bqfd0xVY0zl5SDWF9M/LDTpU=,tag:4PFRyAh40u2Why3KL7/5HQ==,type:float]",
 					"attributes": {
-						"accessor": "ENC[AES256_GCM,data:m+vWB74nq8CHRK+B+ZBmjjl+cmEIJl3f,iv:YzZsd8IfovzQddORsMZRvBI96GIWuJM5EzPK88Ubm2g=,tag:+MOoAnVCBITUql+2kQheIQ==,type:str]",
+						"accessor": "ENC[AES256_GCM,data:ljrsDuicXApSFEstIrV9FgeSpvZaqRER,iv:lP9pk846+4tNaIL00kGYQ+ZZxE5r9TWVAhij09jBF60=,tag:r9fTzl4Bw2PDYWfepMC/zg==,type:str]",
 						"description": "",
-						"disable_remount": "ENC[AES256_GCM,data:9SmsPXA=,iv:Snj7rpfTJREB+/ZqEuylTUt7KAI+OXNASu9w/JCN+fk=,tag:YqHYrERYnzbyxVSnCpLwKg==,type:bool]",
-						"id": "ENC[AES256_GCM,data:DCd0OfwxjgeprA==,iv:iSPUICgfRPKsfY0Iuv/Nrg7GmxA3DXgPaI1Au5OKhio=,tag:fa/vsPv1Fs7KipHsuuXqJg==,type:str]",
+						"disable_remount": "ENC[AES256_GCM,data:DKvceIw=,iv:ePvEwkZc9cLNveeEV4WXL7LhB1oguHHSB7ZLOSUf8rY=,tag:GO1dU4358+x9v2aHuki7Rg==,type:bool]",
+						"id": "ENC[AES256_GCM,data:uIDz2x7TjPAVFA==,iv:a+GmSlAzM97il5Or0A3iMDWWnRjdnaguk5I8r/NbVxE=,tag:Ls0/lwS+4RAsIupfMF0Zkg==,type:str]",
 						"identity_token_key": null,
-						"local": "ENC[AES256_GCM,data:FU9o+2g=,iv:V1DcroGNaJHLfj3LC7X+zdUwoT+jiRNAVgCOZk7oWLs=,tag:KlgWqDEEWVEaJmdibG2mDw==,type:bool]",
+						"local": "ENC[AES256_GCM,data:5FzMM3s=,iv:3oxqBKm6nF2IjLQj/5xry3+EAL6f/GONlc0jn6PB87A=,tag:CP/rlwzW6Mnpnwi329TC+g==,type:bool]",
 						"namespace": null,
-						"path": "ENC[AES256_GCM,data:Kbp/85W/oJFuIA==,iv:dTFiQi9rtPvf3/9qsfE7TmFPeZzxOGpnDo5upuEjbls=,tag:xRxnRv7X6sS431KxbcidTw==,type:str]",
+						"path": "ENC[AES256_GCM,data:4tNSzMUIHpItKA==,iv:VPWrYy8PLOahhVSeQRuVwkg9qAW2EaMwNaCzL2M7k9c=,tag:u08NxmCTMorhtN9VUoI5Dw==,type:str]",
 						"tune": [],
-						"type": "ENC[AES256_GCM,data:c1vznUW9NNu7aw==,iv:zlT83duJBKIHB0+7/ByVMrC82skcVEGeni8BxEMoMRI=,tag:YmG4vgBHPIrahSmJnyqCJQ==,type:str]"
+						"type": "ENC[AES256_GCM,data:FFCoIb4jM/CBdg==,iv:f/svcSCQ1sZfUdpRoNrGTp99/3Txy6ZSn5mzvQhyaTM=,tag:Of+eaRdp+h3tahUAMO7qrQ==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:OA==,iv:fxAEIC4CpO42aeKcFaKtJiqTx/54dcMm6kBEwsGG800=,tag:nq0DBCKKe/cKev36dur4dQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:caUcpKnVzkB50NTJ17I1+wlS+y+mvXqnzZqUXvvLdfk=,iv:Ar5HSVqGOEvwFMPA6HMgqhCBRKB5n7+J3GjHhSNhzkQ=,tag:u7LNMdkRsuADbwnT0moTHQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Sw==,iv:DW0JU9ye/mIMpfHSg4fe9PlOKXI3mGOzmZVlUVccjQI=,tag:p+1xWx/F1X8hLT+w/jzN9g==,type:float]",
+					"private": "ENC[AES256_GCM,data:6iY+vJXwAf+vWpfc7LjMq24CICiR1yK0rfjiiAMRr0w=,iv:acwrEc7gfqffgjvus2dVUZ52ST40+GY8pbpXWxldbWY=,tag:9w05f8F2fiKTxKJdiM6Vhg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:Q44B39QyYLk3xdwI9wCCqvcl,iv:V2C3FQ+tYkWBHuDG/UMqDP2PSaZ7JTBKPZwO+Js4tQU=,tag:XtYf8kL9Z+ZlA4CXaUQ2xw==,type:str]",
-						"ENC[AES256_GCM,data:YjjJNm2sUxzqDRj5YiFQpSohF7TvHfTPjkA=,iv:smF69MldTQ4wPeiFg6yT+G8KsC4D+KTCWXkJGqZMidQ=,tag:5CKl1fiZltutdbHvepyquA==,type:str]"
+						"ENC[AES256_GCM,data:DSHdx2J23T3K654Ha2rin7A+,iv:9JclyJqVUIeAvKcuaJUp0wv61Yiyajgb56eb5b72ONg=,tag:vwKvZAKEsBuQTyezpgoSoA==,type:str]",
+						"ENC[AES256_GCM,data:nFhQBCA2bOmYUHdx9u3phyR8ptX0s56jKcw=,iv:Anjo4KQr0CdCrTNEvSmJfT91XckDnQweMBnN6b0gxSM=,tag:jNEINBOoUMT0TNha8AZ+8w==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:sLwXstomqg==,iv:MyVAM9pf4BZmB7rhFjHhuJh9xsh+cbmRBztuuJ1Vvfs=,tag:Fba8oHWS19Rh9L2CVMGwUA==,type:str]",
-			"type": "ENC[AES256_GCM,data:k3VgM4Y/U9AgaCVxWBuRwSdYJVVhfFljsiOl0ZAChbVjcgH5mEiVfg==,iv:6UD8OXut+36hvbSir977TFz6vQq5e2ji7O4tRSQdpQs=,tag:RrlE/fw2+9zU5CXFc6/DbA==,type:str]",
-			"name": "ENC[AES256_GCM,data:8M0dTww=,iv:LqxjHpGqjvk7aNne5UYdXUOsrAE4bHCLn4Tp2kB/eO8=,tag:gPRrnRJAFRH6brBzQmyFuw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:NtM5T7yKfGX6GlIK2n5HaSQe+15Bnp+gXFeNuyusGv9rnRzpT7PGoWtzhu3IKj2ZSg==,iv:nC6V2rQNTyk/mH6cCT8JUJfaqMTZ+Dw6ggrk041nRs4=,tag:4ZfwFh/4bZtZnOu+mapK1g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:lag/vOqraA==,iv:SYVNwkENAELAMRKywzJX4GGgedAny96CLD0Gi+/+83o=,tag:qKoAgjZ2IMUaLj85dirR0Q==,type:str]",
+			"type": "ENC[AES256_GCM,data:xjTzFnJw0n85bXJ+2PxfNP6B0Acd5+7nF5iULfA8DK15jKTyJdDZAA==,iv:dROxyS49S2dLmEEMep30dASx3IdJ0Rzc3cAIu/+Ummo=,tag:om5RaO9l+Y+Ta26Q6v39qQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:8x7Hy3Q=,iv:KPZuVq4OatMXSM7mqZBv+jcOXN0TF2ebPSRPt6LExSc=,tag:xRjCFRbL08iqwxMBt358Ig==,type:str]",
+			"provider": "ENC[AES256_GCM,data:7wUVbGQpjH2YVlVgRFaKIS2cURzK1foUHm6sPYTWhHrF2JNJQ91GgFnaiHL5hjdYTA==,iv:VQeJWV2vhgZ1yHFGadJvjQxlbAfnML5QmKVdxZVj5KM=,tag:bQqlf7ImZA98pVOOIgpljw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Ew==,iv:T30qUdYfXYxwadgiFfqnBIfI0c+ux+tZjfmjcrSa1Xg=,tag:yVd27Sfb5LuiziB5nXnfww==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Yw==,iv:orc4pfbs0AvvCM33yMXibN9V2l541HC+PM64lCQYky0=,tag:Oa+wMzjgTmeuE4drenS/bQ==,type:float]",
 					"attributes": {
 						"allowed_roles": [
-							"ENC[AES256_GCM,data:E0xTw3eTZ96vlqhrR8Uu,iv:6nn1smvcLTK8hNUf7dDZ+kwVDdyp97fGNjsD1sITjOI=,tag:uQWvHimcuaFPaefT5FIo1w==,type:str]",
-							"ENC[AES256_GCM,data:XSufP4dxhQeyty6lvoDP,iv:iL/K+yDFDWNai1fMeJCYAc/Q+2969nG5gS6R7j+YckQ=,tag:cqocQXU0LHa8PHNrfM7ALQ==,type:str]",
-							"ENC[AES256_GCM,data:Qig6eu3ULPh6dv/2,iv:+fk1Uod0LNCQjKWaLu+Va6vURgboE/HTnxyQw35reXo=,tag:JZt1dlGhpU55ADDLkDGQVw==,type:str]",
-							"ENC[AES256_GCM,data:sHFaubw0PJLXTMEhVB1O,iv:ZqV0b7yJsy1mQgMqtsmTK80miAvljFlokBIXLZ8Y/RA=,tag:j2ldUSn2bKIjXBnsl6xRiQ==,type:str]",
-							"ENC[AES256_GCM,data:14o9NC+XKZydTQhf,iv:xcw2Iw0oCnVQmm4Uh902fbsEbvArTEFxn4KNHgzGImM=,tag:TAJt4jze+xPyEmRL0I4AhA==,type:str]",
-							"ENC[AES256_GCM,data:7/A9qNUtfHuXIaxCeA==,iv:aLdjn7r8mianACokOLyHoiDfV0CsFfo/Y+8E6nG6tTY=,tag:YiUoAWdnVM/JItQ+5NZpEA==,type:str]",
-							"ENC[AES256_GCM,data:9pk7M669f3hXz1/SOSjnEw==,iv:qBhjFbcTFpJxzTtAJWZSEZlwl8e4JP4NR3b7xrxISzE=,tag:KbCphdj0ixa8Ji2VzFLcKA==,type:str]",
-							"ENC[AES256_GCM,data:FrbYZnCpVY3XyXDTmg==,iv:B21fMMKSmnS4gJfsoGe174Sc08i+/451+jJy1YVBZlc=,tag:fiJDksv9fL2n0FMeEmSTZA==,type:str]"
+							"ENC[AES256_GCM,data:EX0N87UgnhXHvyOph2BG,iv:FvocD8SRLCmOep2XmfJ3U3eL1eQqGjKI5DE11AELZwM=,tag:VDOfiNkdiCW1Ie0PeoaNHQ==,type:str]",
+							"ENC[AES256_GCM,data:ndmSlOkyM8d5BAuNCBtt,iv:EzXl0R6UJ2Mym9DkcVbIPO2udsXDLQAfAaDMtGKTnhw=,tag:pirMfBziUW1sDftsjNCDSg==,type:str]",
+							"ENC[AES256_GCM,data:rRNRnTqpAIubqZYO,iv:hiw3kpk+0IF+TED+n/fpWQmIFzfJkX1+06mMjdsFXkc=,tag:+9C0Ru6OzdtAcNvibzb4xg==,type:str]",
+							"ENC[AES256_GCM,data:P9zH6/T94E3f3LvcpUrq,iv:tYkfOnRlIk3QgHqLkyqSKdaEQIClA2URcYPErvPH+ws=,tag:a+j5AFN0+j1P9TV+MAHW5w==,type:str]",
+							"ENC[AES256_GCM,data:U3XMCyJLENTrhRQy,iv:rDPBCklFo24k4j5/K+xUX66Dd9qMu2ExcmiLMVwNZUU=,tag:/KpYzK1nmUfjBn8KRdPlhA==,type:str]",
+							"ENC[AES256_GCM,data:pSyIC3rthW7Aq7vwpQ==,iv:5WmqVzJD/RcWAedfctvIOCdJ54OV+04A099xmagbde8=,tag:kFEZLpAf/QXLBOpvy2wp+g==,type:str]",
+							"ENC[AES256_GCM,data:iE4uS4i2UoHfWH9AlxlxcA==,iv:wFk+0qAK1mJcG2VCAyhY+0KNP74uDhizzjcl5lPwlok=,tag:NjBM0Fe+8XQwi8apkh5Hwg==,type:str]",
+							"ENC[AES256_GCM,data:GFKT042zReEia3lbhw==,iv:vUek35+VYtwRsxinE0F/WqAhHvKR0cii3+6uCgPBGJ8=,tag:+Zao+EplpKSStd/9ZfBv8w==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:e5Fck3ntmU8=,iv:PV/r9o5U8XXueouS4uajRyRaA+HLCWlJbbTqpfE+deg=,tag:veuJEADesBLRqlmmbPoEcA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:5r3ntny3O+Y=,iv:FJKPH49Ca0vyGWgyaaTRhEFDR80iCbxLHfeH+i67QMs=,tag:Q4FjioAKakk0+d5odM6KiA==,type:str]",
 						"cassandra": [],
 						"couchbase": [],
 						"data": {},
 						"disable_automated_rotation": null,
 						"elasticsearch": [],
 						"hana": [],
-						"id": "ENC[AES256_GCM,data:tcerLBC3Bg1pyGsKrVA4A0McOM0j,iv:yWEEV9l0Pggb0iKTzmZ1SfPD1SSgv12lRwsefJnlvjw=,tag:XJ2MkVtJntZidsUcxvrleg==,type:str]",
+						"id": "ENC[AES256_GCM,data:mEsllCNonqx6VVEFY6pA7y5LWAe1,iv:sv3IMAsSujUnTVVIHdUjeizVm+UTFhbc8lPpo0Tk5SU=,tag:9kRfBRp/LGG8iAknOZWEOg==,type:str]",
 						"influxdb": [],
 						"mongodb": [],
 						"mongodbatlas": [],
@@ -1152,25 +1195,25 @@
 						"mysql": [
 							{
 								"auth_type": "",
-								"connection_url": "ENC[AES256_GCM,data:UDIav32P6OZsRQkFGaVqlHasQDQmq7Vb5W3x0WTTdEOR1gjvOa9hcAmCWRw8j4s7ODSUSBUUu5fsbiB6/9X3XuNq,iv:OcrDbnQKBxkDFgzchu9lEe/Lsma+ndieR2LQ23H++3c=,tag:eWm2CgsUOKq85eRKC4QmmQ==,type:str]",
-								"max_connection_lifetime": "ENC[AES256_GCM,data:PQ==,iv:er7p5Eu3LGNO0VvT7qmFGFnEHtrsa5f26qUoLc5CLBU=,tag:cCgFwyGuUUiZh2Nj03mxMA==,type:float]",
-								"max_idle_connections": "ENC[AES256_GCM,data:mQ==,iv:3tSKmy7yiwU3FcF775aLtPsWXAP584OdPy9eFUOa6pE=,tag:PfnZ0Msg+yd+fYF2GZZF8Q==,type:float]",
-								"max_open_connections": "ENC[AES256_GCM,data:Tw==,iv:rOZ6Mn/ysUUTTAPjBoB40GUVOEOz8DnGvsxcF+OEsOE=,tag:x6uDpr7u32CX75xJEvoW/w==,type:float]",
-								"password": "ENC[AES256_GCM,data:+H8SYOu2o8ZSfUhuHvuimLDtVrO6Ld8R+9VABg==,iv:EoZDTNRTnlg5ZjFICbsHINnTslGDIlFBGPYatWV/nbw=,tag:FFIbbDS9ywGMdzjH7ACCmg==,type:str]",
+								"connection_url": "ENC[AES256_GCM,data:GXTijt00+AHgS0eBWK+3A61pvrkGHPKq8dLqjG+uJxscfVMEvO5X0fmILnA58d2XhoyD4anDhakJEFbwKPvtuVr/,iv:hGemSySGjzwo3xMd2oYzRAlYK1RBL9tapIA9wEhR5MA=,tag:bbEnnBflG2T/HHhZMSUGVw==,type:str]",
+								"max_connection_lifetime": "ENC[AES256_GCM,data:tg==,iv:SCCfhJPxP/g00sy2NhUBQRIeu+eu0gpIcw+YEj2RvNs=,tag:uczaYTnMHH65p7FL2UQs9Q==,type:float]",
+								"max_idle_connections": "ENC[AES256_GCM,data:XA==,iv:2Wk2G27k9ZGGF7FgHTwysGl8gHuodtl+xMYtEnjV0zQ=,tag:BiT8aIicft8H87SVk6EIVw==,type:float]",
+								"max_open_connections": "ENC[AES256_GCM,data:KQ==,iv:wqKmh4ZOuLggP1TV0Q3sNHZTrqjIJMWb6ipC8uy+Mn0=,tag:gcM8OeAWpDRmz37wEW+5Rg==,type:float]",
+								"password": "ENC[AES256_GCM,data:4BAuLessXED8k+t3zS6Ia3KY9RUmIE6NG6yA/Q==,iv:kXK/i/GG5Z38DQmUJzVRLoUOryZi0UfViku5lJ7Axbk=,tag:WlarKlUJe6FM1s30vwQCjg==,type:str]",
 								"service_account_json": "",
 								"tls_ca": "",
 								"tls_certificate_key": "",
-								"username": "ENC[AES256_GCM,data:yfTFAA==,iv:KNjkQtbneokdbJv+zcPzqvAt37MRI6lYVLyADmU+Ae8=,tag:uR3wLKjAeYzCKTBEMBq/cw==,type:str]",
+								"username": "ENC[AES256_GCM,data:wGGXVQ==,iv:F4tBJROcVxM2vN0BEBFe0uqkaWRM3LOnt3LfheqjKOw=,tag:/4iXZJREKIiLiywFoB2YLg==,type:str]",
 								"username_template": ""
 							}
 						],
 						"mysql_aurora": [],
 						"mysql_legacy": [],
 						"mysql_rds": [],
-						"name": "ENC[AES256_GCM,data:Cts0yyg=,iv:E7mWH+QdSjsKljp/1EmcvecfVm2+qcPQRFzJ2Ad5OiY=,tag:Yo3TIQQlY22CRFtCWv5mrA==,type:str]",
+						"name": "ENC[AES256_GCM,data:WaJtiYU=,iv:D6KzDdb2JGGYFpUrod19exD+UvoopQ9ODOwxvkRrGT4=,tag:+mE2j5op2WHPjxtp36sBug==,type:str]",
 						"namespace": null,
 						"oracle": [],
-						"plugin_name": "ENC[AES256_GCM,data:APZtq/OnyhgE4dAGJKDVELES0GzV,iv:H033KnZ638I1jSNiyJHVzyl7NG00o4R1zHdp3Ld7uvY=,tag:clwD34wtJbtk9GOxt8EDaA==,type:str]",
+						"plugin_name": "ENC[AES256_GCM,data:F7DsQUGJ6MCNkGwcZ5MQxrIbsyuI,iv:KIqyJQBGiUdkpUtyJsP+5CnDq/7RvWHVKAlMgOREr0k=,tag:7+iK8uEIF/ZRSRIhyqEkhw==,type:str]",
 						"postgresql": [],
 						"redis": [],
 						"redis_elasticache": [],
@@ -1180,101 +1223,97 @@
 						"rotation_schedule": null,
 						"rotation_window": null,
 						"snowflake": [],
-						"verify_connection": "ENC[AES256_GCM,data:KiyZ1Q==,iv:nsUgmPk5mrDgAZk77H8aUw5haoc4+yXfPGXYNrvhyYE=,tag:8f37r3qXs+uOnzwTWnmM/A==,type:bool]"
+						"verify_connection": "ENC[AES256_GCM,data:ArQLUQ==,iv:42Gdet1zxm3Hkov1pF6oPGt9qL5udkkVuC6Y8yIVRaU=,tag:X5tLMprTREzxeXDzOk9ttw==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:VEkkYWy3jk4=,iv:R8Ja5zP2L7IGZsfMK+mGBkWis71Tw4vHBju7DEppD4Q=,tag:sxORGxNhVmw1g2ftdAt3xw==,type:str]",
-								"value": "ENC[AES256_GCM,data:2NUzu3E=,iv:d0PY9BtD5iAaeTSEBN6jr4QCo/wzq3atWMDDKqJw0EI=,tag:XvXq0LyukA9oZqwmcLTLsA==,type:str]"
+								"type": "ENC[AES256_GCM,data:gacVVA4hkJM=,iv:bdiVwN+7FA1KcmCm4yBXXzTX/UGQbl05unBIyB5b8JA=,tag:Z9Sc4uIcpxyO8cC3q/bR4A==,type:str]",
+								"value": "ENC[AES256_GCM,data:w31HAf4=,iv:o3R2x6LGWiHCzgvM2ekCh+Mc3ehF9qtWouUq9towrQ8=,tag:fsLbZC1L8i4EMYWnTw7KqA==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:iOT5K30=,iv:deCKrlXxM7r/cMLAMMHDBwzHPlRhjfd01dQ5sahs2k0=,tag:ZRghVao6E6X3wJOci0b/IA==,type:str]",
+								"type": "ENC[AES256_GCM,data:7G9SADA=,iv:MudtfiNop+gEg4wGnXesfr2h0pLzctlO/+qMf596tqU=,tag:ykmPdNpl3yOTwAWU+gVaBg==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:BA==,iv:PVoQyb/07lszyQRJdR4/mX6fnCeyHT5qWz7YTULmTtA=,tag:nu/D6E+IlaaUaiAAbLB8Cw==,type:float]",
-									"type": "ENC[AES256_GCM,data:ykFa/lkX,iv:FDA6JyLYGrCT8OCtwsIhnUX3pg9PLMrqp40gwQMW3co=,tag:JWZeVqvo7eJBQySanJ/sEA==,type:str]"
+									"value": "ENC[AES256_GCM,data:7w==,iv:roXI1LPx8rB/xBI0XP+RlqhxJlI+hJebalzOp1MsVxg=,tag:BXV++U4xOHQ39pBKRaodGw==,type:float]",
+									"type": "ENC[AES256_GCM,data:Q4mxfOtV,iv:e/QOcHpa4zMA4qbmf5BXAZLydPbquDrZHA53psSVCUQ=,tag:aSeb+0vZvjzdO07HRnQTdQ==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:mu0eu1pD2N8=,iv:oYcW/6qCkGUova8itXQnt9IdtNH8LfRZP57qO8cUhk4=,tag:Lodj9KkYRmu+JGeDkQ5svw==,type:str]",
-								"value": "ENC[AES256_GCM,data:s24bW9QzdqA=,iv:1zo0HMlJuCAki+cBMbjL6WNxC/52nC2Y+bFouLAsx74=,tag:KxxGKxe0QYyCjURveyCs+Q==,type:str]"
+								"type": "ENC[AES256_GCM,data:2gpB+g7OyGo=,iv:S+Ce7/eq/nLUWx3PwhkQrangt2Tt7m07zx5fM0CkhmY=,tag:2Pu7I1uFn+bbQKcUHxpq0Q==,type:str]",
+								"value": "ENC[AES256_GCM,data:Ac83wYn3Q0E=,iv:SzcuI+ooIbyvo6JVQcbatSywM6OMGLbFgVJZzTO5pU8=,tag:et2GpGEHUkYXYaM7UkXfyg==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:YFAnDEwRPF4=,iv:zsgCDOGRRw2vy+XiYXzyAjBFKNkZg2WzH+iasNPXqsE=,tag:aob3f3fbiV58tnjp4Y0MuQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:KwVUiS8=,iv:dBfCtMF/uHKLQZCnc9YhsBh4dw2xaMwbdZZlHeV0xwQ=,tag:gCVHMbCtBB8or7IqUXEZLA==,type:str]"
+								"type": "ENC[AES256_GCM,data:kU8rITc3Cj4=,iv:5i7Tpkr8uETgwjD40ND25jb6GpuU8palgqgJiNRnuhM=,tag:qiy+Z8RUobunxdYXGmHm6g==,type:str]",
+								"value": "ENC[AES256_GCM,data:Jxdrr68=,iv:CTtKDAM9M0o4N7I4laY8WGiJkQA2bxqu8WQq9rA7Hwc=,tag:0Q0Y1gtKpO7VRNZ+JK5Kkg==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:ATpmRCo=,iv:ELvVlHRaFlL0S3GxG6bbJxK3YkNcR2yaDDEA29TLJV0=,tag:KqDqtMQotBwKqzpUXf4NIA==,type:str]",
+								"type": "ENC[AES256_GCM,data:So8c2r8=,iv:nEZIHUKQhN6vDNEEyPdBl6jr3/9YJ9Q/K5G3viJ6lP4=,tag:TYjAiSYoGCqZxB3O5X/vJQ==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:WQ==,iv:lQ9l58JcBdMkhUjPOQlD4ql6YAbL5LrndqKUJI4Kg7k=,tag:sILTcv1QHmJrMKc0GrjZQw==,type:float]",
-									"type": "ENC[AES256_GCM,data:Jdz6qhmY,iv:fy5+Fd28ZRtTDYqnM0wQuVxQvnPXd3QIQ5c6okUfsIE=,tag:xsiCE2UNeNLOW0lCingsdQ==,type:str]"
+									"value": "ENC[AES256_GCM,data:fQ==,iv:LseeoykpnFWYEyeeX80Zj0UVFsOFnYKXnbbDA4cA3w4=,tag:I27uZIcxN9mOyG7yrU9UxA==,type:float]",
+									"type": "ENC[AES256_GCM,data:xWzRmmYr,iv:B5qQLxCAwmTiWMEgj1an0ypH1LkD9OnG6/DFGoem0YA=,tag:Yl/UnJI388SciYMkHnuhbw==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:94pQrn+Ahc8=,iv:sRPH3W9EsPSIlxxD4e+1F3kJDpj/oVlVUsYhfsOX0f4=,tag:eBxWXDRJUlmiZCyShZimCg==,type:str]",
-								"value": "ENC[AES256_GCM,data:GbHhhZby7Wdx3jIPrQbqQEcFaZQ=,iv:feclFLG7WAEfXxkvQ4xyrXfx0RAne9ru44Msgk5qfY0=,tag:pwZzA/cmHINWuMcMJBPkuQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:78QXioENwZM=,iv:pRrxw/Ar47QOzXFcv8mTi706pmtT0Q9qbev9hIesHKA=,tag:1YJb1VU9zlQJAafoAwhewg==,type:str]",
+								"value": "ENC[AES256_GCM,data:exgTbYGx5tcwYSVEpDMijUeE1lY=,iv:NzM6CtCDNjEptlJPpwVbKauGG4wksFVb4ryRUq6HLoc=,tag:TWfHsXP1p0rFM3PKgFQ8vw==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:sOaIXA+iT1Q=,iv:Ewe1+R+n0Fuzd6bh8Q+yOp4vv5VSw70oPWrx3p6wqOE=,tag:EkvlTnbl21EnxoNCYeiyqg==,type:str]",
-								"value": "ENC[AES256_GCM,data:dTb3osM=,iv:DCo6UUz9xheZ0wmaWW0QnHvmfrh44HreKVJbFEdaD/M=,tag:BeVjINs6Pxwe9rG8JLHBbQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:AXw4qmhrGvc=,iv:eXQTP7fyN7TfjpBUbOiALqRb4NY0Q8YFQ8CIMQgwGPs=,tag:NuQq12nQ6LFRrU1Dpxc3uw==,type:str]",
+								"value": "ENC[AES256_GCM,data:14oxRb0=,iv:FBfMbTAUIqpZntdgvMwHbOlE2JeisfK/NDjmMOYqpKI=,tag:f13df6zyGXlCtEuTIJtYDg==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:SehlKSQ=,iv:x4UT9TOpOACCnCtyKfqLN5LC3qPYpDva9aSOatHt4tI=,tag:FBSh6jv8fgmYwF+s9MF/gw==,type:str]",
+								"type": "ENC[AES256_GCM,data:kr5BSlw=,iv:/Nq/zoG7qV/ojqRHg/dZMiJmFbgbusnIh2Rxr8nogtY=,tag:BnzHvYlGMpaoTGanYDzt6Q==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:cA==,iv:SuvSsMEFxezousrw+VF3EbLzribshRHo0iLepFsE5bM=,tag:nj/Z3kCiLBIH+vGQrnstvg==,type:float]",
-									"type": "ENC[AES256_GCM,data:9EhpxlaW,iv:Ezk8U9Vw0qXId+7uRS8LpySmpm/v3AVLF7spszoGTR0=,tag:4TP6KlP04XYfOP+QTmQEbw==,type:str]"
+									"value": "ENC[AES256_GCM,data:yA==,iv:j+zwpzMzfolQTFST13kuepRVfNFxlaRvF5wZgI9D1Ls=,tag:4/hxmErd7RaRJlFPmzHCdw==,type:float]",
+									"type": "ENC[AES256_GCM,data:XtTSXOvn,iv:qgp4CO15u/HekxCJQDX+pFK2qtMZ9SUGawFBfJQtnF4=,tag:4gutPkfIRLgJv9fSEnhKkg==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:gZd66+WrKV4=,iv:wr2ZzHrUIyRfnDOB7f1ic20p+S/RWHnUVw0ZQlcIZ6E=,tag:FYqCEkp3mubWoZWUKl8x6g==,type:str]",
-								"value": "ENC[AES256_GCM,data:FjDIEbovAtu64WZ426WnJ5vqhg==,iv:4FbFl3PqLzv/QG0r+KO7FWXd6lrV19xpPy4ix342CAs=,tag:DZFQGf8f33P/buqk0pvS9Q==,type:str]"
+								"type": "ENC[AES256_GCM,data:yS44hHKsHcI=,iv:LCXV3YB2jL6K0xZGJMmvbBB5dnSU9TavedKJjbxGe9g=,tag:76sMl07ksSN6GijUAWMnng==,type:str]",
+								"value": "ENC[AES256_GCM,data:xCJyQcybAzCGay6feHZIsPMA4w==,iv:ldte3zipUvH7VdBVuTLFy+zaqTkgmg266Ho2sAIVunA=,tag:kV0186dkAIN4KkMxZt6adA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:vQ==,iv:AEbT0Xw0tjOhWP+tHrG9v/WWclcvxsQJU47c9sxcfqk=,tag:g9dPDZzEByyyf+avXW4xBw==,type:float]",
-					"private": "ENC[AES256_GCM,data:oFBXbgpd/pQ=,iv:OY4MPwbyiAJIbMPNOMl80GTAst463zf5mOZj3Y8BTBA=,tag:qzJTZSSge2A+4thxcb6Pnw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Ag==,iv:cDuoFvTv+bGOaGxP1Ype5ZzTutROyyIEXjxV6C/0HMk=,tag:NTaijzNTtDEvyRRmg02bIw==,type:float]",
+					"private": "ENC[AES256_GCM,data:W/gVST7iJf4=,iv:OgHHHpGwxHKBVsOSyOEbfjgNy57PguM5b2Bz8GhuCuc=,tag:QDkyhmlJ/56HLMUWwOgtXg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:t/fzArhD2pcD0YWua5PIarM2CbqlEa5mRsUyprQ=,iv:pojCnxHz+/SAbMW1XVxbc6PRODkHlKDHcbjwx0c7Pso=,tag:S/pQpp19d/CWzvYgmuzEqA==,type:str]",
-						"ENC[AES256_GCM,data:z64z3JJ7ylqwJi6wtkJ6cUEA,iv:75sMkQ2/3TwtVe6VxgNke7WLK6/5YSl8GH5o0IpGQBI=,tag:in2Wa+X8HdKbmS9RFKjk6w==,type:str]",
-						"ENC[AES256_GCM,data:fgx7y9z40ynsltCSEAeWGw3v0du3PrqG+ys=,iv:lJXvuH8dzf7jTJsHtEBSLFi5tT4eA6A9KU8L4NpiDf8=,tag:m3K4O8ddsROVXn9P0bOR6Q==,type:str]",
-						"ENC[AES256_GCM,data:BMZmMOk2EpshCiLLuH84K03LJBE=,iv:PNF3Dt1Zyx4s7djx/a/WWizjonuFvv3X5NKIYDfWeUU=,tag:BQnFovF/ISh8Cadc2kmjYQ==,type:str]"
+						"ENC[AES256_GCM,data:+o+6rJ67gTRjKzJxohb2+GsdtY4A9kiFX/6V2ys=,iv:jwXLnWE41J2ZGizil+BUVCdCwlxt7Bu1BrREzbuHDWY=,tag:apWYDjVmkHbsSFe7BRQdVQ==,type:str]",
+						"ENC[AES256_GCM,data:t4u4mU2TEds3U5hclfD+kLnM,iv:hoY9fK0y4jwXaUFxqYmHTv/wl5UlvRfOrnVDSWw+sLU=,tag:RcuVlV5BsXVmS2+Kw91LeA==,type:str]",
+						"ENC[AES256_GCM,data:PYPoCd1y5VmheDoI3lvd/VrPLPY+4Wi1qxA=,iv:ERS4Xn9hm8/q5pTpkOlRNksgTNfkOUu7SZUrhfgdpzI=,tag:T9jA18V1z16Fg9xP9yoxGA==,type:str]",
+						"ENC[AES256_GCM,data:JAZPNLgfgB547CwKOR+lWq0RFfk=,iv:clbtGZh7GRTLGkhoOGNSPnGIrtIN9iVG6uSNajDpCn8=,tag:bgKQNksMlhdCiGHeo6qDCg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:uIhnu4L/tQ==,iv:QPhHX+OnjGRiCUqPY31aZ/kbiBq/+ElaGp4tG0G06kg=,tag:BCwiSVnMLSVKsu6R23244g==,type:str]",
-			"type": "ENC[AES256_GCM,data:nhciuQ7RtMkNnlgXCggKZWZisiWr4mgr823GnqSxahkQPXBF7ad7Eg==,iv:dKQc3lepabSMafYuOkOVG1q8CnkVe2yFvV5Ya0x2K/g=,tag:zsFYslxHS+RJlMM9wqH+hQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:1S5iT7EWfRSRaQ==,iv:CFpZeuLhWhrG8/zoo/SKfDF6PHXFkYos2+yO4F3KM8k=,tag:GhgZCxPn+yW53gPZlX3m2g==,type:str]",
-			"provider": "ENC[AES256_GCM,data:bepNa+rmOFcEU1vt/P+6jXLEfPPLYdm9ZByvKPJpg8mh/utPHu/hyaIPZP1XPWBJ6A==,iv:AmFNqYHveboHjbYWHVJYIPKbESmiARqH5kMN8fUNp+Q=,tag:O988R7NCWCGyecTefLHl1g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:AKUhD9LUdA==,iv:cHZph2RDd46QZQss3Kk5n4tYns11gPP6bsScfG/Z3hI=,tag:z8D/mAQQ1YNbr6+E7ZfrlQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:hUGXhqojpnBrAolnS6XkQ0s/nrqJSJmlHPsu8/zM8RgwsL3UlnmydA==,iv:dH5MXDWoqcGnSTy/WtG1PWycN0Pgw2ZV/cLcF0O8whc=,tag:w8Zrceu+/U4VK1s1I6n6OA==,type:str]",
+			"name": "ENC[AES256_GCM,data:uO5er73Z9XtLfA==,iv:rlL7FkH6p+oT1fdSTXgCb8X8JvQZ0hkeqxQRQgiBaQ0=,tag:3URz5dULVH2dtBGg/FIRAg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:9wMnOZVif6wyrB9bL9RYAUvPQPJzjqIxPt01OlvzsaED8rGTII1I213Mw5dlD4ryoQ==,iv:PfzpUzea0VEzurZMuYp64m7CPoGsvt7qQfy2dPa2tgQ=,tag:+3wZwSWYfwJuwR0o/QOdBw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:+A==,iv:IKTsK404mUwvW+QU3PwIrRRpMMoBc0dM/+cleLVxsGc=,tag:wn4+Iyf9liVUUtZMEWfJ3A==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Ow==,iv:q+n2/W1TvsR+I032FXjmlkCgqcFJPQEuBpzZmF9rvR8=,tag:NNGPpo/9dKjW/QLdsTuY8g==,type:float]",
 					"attributes": {
 						"allowed_roles": [
-							"ENC[AES256_GCM,data:BeBFMbpCtnbd,iv:Ts148ABSwNIjfRBvfUzr/iaq/z1VRs7vCuvh2FQU25Y=,tag:k9S8VKt02e2amYRuFiQM7g==,type:str]",
-							"ENC[AES256_GCM,data:c+4WXyLfeR6UujYqpQ==,iv:BTszISQ3MC5fwuIztLEsmBn/5Hd3kq6EQKjIv7XoZZI=,tag:HE0kU3NEJy5qIX8eURKDZg==,type:str]",
-							"ENC[AES256_GCM,data:JwdiQ66inGmD,iv:oYaC0yWVeLygA5PQebPrkySPlxFHJURqhU02hyLg0Uo=,tag:LobMUZ+krUjfVJS53SAD4A==,type:str]",
-							"ENC[AES256_GCM,data:zJFjUIjMNiXFuOdBvQ==,iv:B85imVJLrjhN0aXc6HYZOWi+QLq99TKiSd7RzGoTgEA=,tag:9KXAYU+IBdOz0U1l3mmO4w==,type:str]",
-							"ENC[AES256_GCM,data:hjdEtNH0amL8WcfTDllDww==,iv:hZSWTvM7/4jby3RLJii5r3jlqTC8nAvi0wuV3T+xxmY=,tag:xCG2u8kRHaaTms4K8SJ2Ag==,type:str]",
-							"ENC[AES256_GCM,data:M0z2gBzG71OER4e6CyUOF0aR,iv:kIamUYjlUHU7K9T9tT6n/jpNzoIJam20CGdT16LtYaI=,tag:GSFS3K79nYpu++6Og+ry9A==,type:str]",
-							"ENC[AES256_GCM,data:Bn9a++NOBGCE9o38CmjYJIE=,iv:Ir8kJYn+XQQf6NEENLa8UbVAd430SttfmNtyUs8YH2w=,tag:+FNK4u95Z1lBR2OoM+3eCw==,type:str]",
-							"ENC[AES256_GCM,data:J0nU0D4BM0UIVOAKRg==,iv:xfYOVqzNXM5Ojen/02OozeveQQ+TILvVmuaP23lV7/U=,tag:xBB9VgdYHVycrCD67Eafdw==,type:str]",
-							"ENC[AES256_GCM,data:s9YjZdyWltqkOIr0Ua7BgLmCJw==,iv:YQjU1Qd5WwxhdMN5XjQg1upQi3CcoU0urRjsq2l+dPE=,tag:Fhpo6Ru3FGg6NsJALVJb5Q==,type:str]",
-							"ENC[AES256_GCM,data:sk6+NwwQ+U8J+QAd8lua,iv:2KFoa3J3Xis+bzw6iTWFuPrBJkU1IouGKWCvApVolTk=,tag:olX+vHJOowXVOVVXjTSO9A==,type:str]"
+							"ENC[AES256_GCM,data:BaqtYZtcPuzc,iv:1A3eIBw2xKHGl62olc3BCA8Y8TcGFoeyL7OnPtx/HfY=,tag:1PeIf0zDbcZRoLpB80fXgA==,type:str]",
+							"ENC[AES256_GCM,data:qa8XPWxxJbHz9nqf/A==,iv:dBd/rHW+pW6lJ8Mc4rvQseBp+iMOYIm7rd4fRTW2C7s=,tag:FVLFdX7EhpLczQIKsUTiOw==,type:str]",
+							"ENC[AES256_GCM,data:HmK7TemMXw5R,iv:h8atra+3CqhIF5xqShWXv/INKg7SHkK5LqH88ScHpQQ=,tag:yveg7bDlAsthDEFMdLN65g==,type:str]",
+							"ENC[AES256_GCM,data:IkqU9Rr7moNAc9nS6w==,iv:Nykg4szEPI97nkKt03A34M/ueOvYUqmBlgDYgQl+FOs=,tag:OVr8qz31JS6B9qecQhj9oA==,type:str]",
+							"ENC[AES256_GCM,data:K1jkiubxL/CtnKO3gwItSg==,iv:jp0s6FQAfSpjQeG3NQ3mQUKg4qNxhcWmanRWK+uGAMk=,tag:NR+sZoT2rCLXdEodM/J8Vw==,type:str]",
+							"ENC[AES256_GCM,data:puAYS/ShVGqjsJDQqUtvKnu5,iv:SjitDTAn3eVqFXfn/3Q42CyLjY8k8W3zeYXnTGwmUYU=,tag:pHrVyNfWmyYAwDopouPdEA==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:MNeMncftHdc=,iv:+e0zdTQ0whS3L+EktZvCam4xo3rdmbwVBbpC4NqJQNM=,tag:AE+nPtNGRqwHNChC2L4KHw==,type:str]",
+						"backend": "ENC[AES256_GCM,data:IRoTh+7/4fg=,iv:1Ggvb86IqXGC768q/f7GgAEbSdKmd3NeLO1k9dqAD44=,tag:mF6BqWiSXzdgyzrcczPFTA==,type:str]",
 						"cassandra": [],
 						"couchbase": [],
 						"data": {},
 						"disable_automated_rotation": null,
 						"elasticsearch": [],
 						"hana": [],
-						"id": "ENC[AES256_GCM,data:U7KSclnB6wj7Cw/u+fmToOtGm6cj4GKGgDc=,iv:l92Xix3S85JpU/VbAAkidjLhVrPh8amu4ezTc65QMJw=,tag:FGFEMsc/E3uWcQaQYzxcog==,type:str]",
+						"id": "ENC[AES256_GCM,data:4k2vowhcBQH6DCFe0GeM1Bx4Y5dijylTRkY=,iv:ept9hE63dazHmVKlgpLGC+tKdMvCPililIxoU9byusM=,tag:e+cOorifup0Yb6alBproUA==,type:str]",
 						"influxdb": [],
 						"mongodb": [],
 						"mongodbatlas": [],
@@ -1283,26 +1322,26 @@
 						"mysql_aurora": [],
 						"mysql_legacy": [],
 						"mysql_rds": [],
-						"name": "ENC[AES256_GCM,data:ujeQ4SqoHBjEGA==,iv:JokT3hBZs/2RhZ65c186n/kCbI36PFgmIbecLPZQj/s=,tag:3+yKGFhLKIQBOddeQNlFDg==,type:str]",
+						"name": "ENC[AES256_GCM,data:ofZ80e57Q2MayA==,iv:+pVsdkEh7SemMWOzt0RJ6ChcOlXwOyEYoDwjNX5sAOI=,tag:B4045wB1/rXrYLzg3eUaTw==,type:str]",
 						"namespace": null,
 						"oracle": [],
-						"plugin_name": "ENC[AES256_GCM,data:tpxSIWI0ffJ09gYj1Tez8FSQZ2HBpviUc3g=,iv:qk0Ju0kUZqUeqeV6qtWskywZ6YcQIIZBzMWBiJ5vJrE=,tag:wH6J0KR4ENMbg68uBNBlxg==,type:str]",
+						"plugin_name": "ENC[AES256_GCM,data:gonl1LHD7vW4VLE/9x5zqj84Op0ajwuHZ1c=,iv:aidwg/LdfZNoNnqLbCxW99BJpLGMI+Ekqg9Mm4YAr5k=,tag:SxTxZpJlyGs57ddABnneJw==,type:str]",
 						"postgresql": [
 							{
 								"auth_type": "",
-								"connection_url": "ENC[AES256_GCM,data:6vO9+4/cAP7ALunjxrypCIzeA7+THxqCw+MZOgKX35rIwbvtQhpqBpRYq92/kPM3ihDRrGrjRcIhUU8PwJWO+msCz+897ykBX9d0irP1mqiwzA0QUrRgvFfIvclo0AgtTXfKCIj64g==,iv:SiwX0wqNUrzjit4UFGPJdVuAuXM/iDJ1GtEck/44idA=,tag:XkrBtzH0bic0cnwNeVnlmg==,type:str]",
-								"disable_escaping": "ENC[AES256_GCM,data:rTSF9/I=,iv:40JqSheOGMjxEXQ0e4bItSy9v2rCIrwjtyHzwA5JFJE=,tag:nzXKWlCrIihDyJdTpWXYnA==,type:bool]",
-								"max_connection_lifetime": "ENC[AES256_GCM,data:Hw==,iv:Oq0S5/JVGzbbvupSFVVIaEuwniyM+82lvA74v4JCWPQ=,tag:TShNIdpAMO2r3J6nn8dkiw==,type:float]",
-								"max_idle_connections": "ENC[AES256_GCM,data:Aw==,iv:6Jn8fc6gI/LX5fAH8EQwbvi9kCFRaAQEgblqtgpEi/0=,tag:74OlPAijF1osO6jkLuX8xg==,type:float]",
-								"max_open_connections": "ENC[AES256_GCM,data:2w==,iv:4Y2sQmqVUmY4k3MXCelcppl2LOv6Tj+3R1tzXdqt6VQ=,tag:d/Lcd3brw6CttBBvuS+yqw==,type:float]",
-								"password": "ENC[AES256_GCM,data:lSmlY6xu+3uVsqcChDH8SzX8lccmfMgV4u/Gy7RE5rYHPhy4SZiC5OQXflmZr6UaTYobrBNV3VCgr3QkZtUluQ==,iv:xunT8s3UW35kO23uwXcJO/EqB2iWOU/QxJTxxOEYRcQ=,tag:vMg0h0y2190W26/zMeJYuA==,type:str]",
-								"password_authentication": "ENC[AES256_GCM,data:MoTYQJxclYc=,iv:F8PNvknFL/xSzhuV0SdrMZjaC5X5cIEUtyVW0yORaK0=,tag:k9/7ko4h2xObaYZovYO2bA==,type:str]",
+								"connection_url": "ENC[AES256_GCM,data:8en+HjJk+wrn2ukUSG7eZ6AcI39tAWnfS3MnUdhRZUpCxXr6tjnWSTQujwwVGeJaLeXAdQei/mbWZ6WHepGDbraZ1DzVq/4Motok4uFnOH6fHxXOrX0L1hokntNDfaq3y+ygyREKYA==,iv:eHRDR5hzHkp/RPNyxYI7BXopQD10jWkqLFrJufstQzI=,tag:O6ZxO4jfqaHHzsKpsb5QpA==,type:str]",
+								"disable_escaping": "ENC[AES256_GCM,data:dO1ZIY0=,iv:QtPBEs4FpEvU8SRUwc9s2jxRE0iv2ywoK7VK2E8qJ9M=,tag:dMstDo3pbTIIOp9ggZYotg==,type:bool]",
+								"max_connection_lifetime": "ENC[AES256_GCM,data:Mg==,iv:Z0z5phtps+sLeSkJgSCOs9WmpmcE20GY4J6OVEYwm7w=,tag:UsIwzwz3Xf/u+03+4sWA7A==,type:float]",
+								"max_idle_connections": "ENC[AES256_GCM,data:uQ==,iv:Y8a+e3BdOY2XfS7NBrfpsR1RSAowcBA3vsnEgdHfgwI=,tag:J2IsE7NZVGJ2iwR1u9PH7w==,type:float]",
+								"max_open_connections": "ENC[AES256_GCM,data:1Q==,iv:psVECeBponXLR2rUBzTAV5HqpVGiS8zcdQGITS2iTPU=,tag:UCd9lfKsokyfICP8u8qXWA==,type:float]",
+								"password": "ENC[AES256_GCM,data:82oAHYpO1kCezy0NLOTeltSgRhrcYPdC6wP5d4pHWRWgsV9UShjE/qEaXWER/WtEJqVSkZBHIdTrWV9kfYRzqg==,iv:QM77vru+4rhnzEmlAVg4X/GYJQRQswtiO5vRhS2k5pE=,tag:s3p5GgM2Znb73Rop7NgFGQ==,type:str]",
+								"password_authentication": "ENC[AES256_GCM,data:J7DcFkDQExI=,iv:nVnJSeK6PGJe+FTrROFwCi1v2Cs++lCOSq+tJqaRWh0=,tag:3EZhgTBgNh0Nb3hJ8rDCAw==,type:str]",
 								"private_key": "",
-								"self_managed": "ENC[AES256_GCM,data:tKTCudI=,iv:UBGKtqKMeE9vJ/1OIVLbX1LEbQfYXTqcDzjEmrvVgNI=,tag:U4PGuIgvV05L3LUqNdRfyA==,type:bool]",
+								"self_managed": "ENC[AES256_GCM,data:U87nmHM=,iv:pV9kjw68cJatO178trCy7oiiUVifkcNAr6d46DpNahk=,tag:njURbr+D979sEHLc7/X8mA==,type:bool]",
 								"service_account_json": "",
 								"tls_ca": "",
 								"tls_certificate": "",
-								"username": "ENC[AES256_GCM,data:fN9DRS2yhoM=,iv:Gt4s+3KeQ5AgIh093T96s7YU864a88l2aEBkt3ghSF0=,tag:qNcdNoG182zswzajPScREQ==,type:str]",
+								"username": "ENC[AES256_GCM,data:ef6MzT8co7Q=,iv:FmjpTU2S16iybUYviyum+NMpWdUoOoPkMIBY425VXww=,tag:q9ikFh0FJNAZYt7dCO0R/A==,type:str]",
 								"username_template": ""
 							}
 						],
@@ -1314,1197 +1353,1021 @@
 						"rotation_schedule": null,
 						"rotation_window": null,
 						"snowflake": [],
-						"verify_connection": "ENC[AES256_GCM,data:9j0SUw==,iv:Vq38beYvkWWEtGGpLsKEBvzjXrNHBU5Uwlo/4RFVCIk=,tag:baXKVJpkOV/MSCMDiMon+Q==,type:bool]"
+						"verify_connection": "ENC[AES256_GCM,data:aEDRMA==,iv:oaBJ4o5/sAPk4Wy9yRyWd3r2Huyahu1DOJNvJ+JPbIo=,tag:CG2VgqrvLGtcFXM4yUnWCw==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:o4po7sjZC+U=,iv:9V32Dr4DlVqjlatm/WbVQTxPhcZJhIEWDd1GotGmPJk=,tag:nLyoktJiUjThdFYku8GEew==,type:str]",
-								"value": "ENC[AES256_GCM,data:8rJAh3BW+/syoA==,iv:q5dPY10Faod67f85dUC4E4u3zUfVJsMAII5nge2MuFQ=,tag:1MuDoMCUuQRWNPPkjBwEEg==,type:str]"
+								"type": "ENC[AES256_GCM,data:FQr0NqsiNxA=,iv:mdRcEfOzeODO64M74e1PISraSxjbbXbocpTNLaOdzsc=,tag:zJF1bi/dlUcNgLCxfA5b1w==,type:str]",
+								"value": "ENC[AES256_GCM,data:5URpgXpnilXizQ==,iv:/P2wLm1Z5o4WhSRRhD1iBbDR07L82zVUD4+oWpxZuuA=,tag:LydReEwyG9yfMcA4pU24lA==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:4bulQoI=,iv:OTKO0Na5WRhaPgWQ747/aZPjLtgSpnknmay3VM4/cb4=,tag:ZrRPmgXtMV6KcJM2+XKsGw==,type:str]",
+								"type": "ENC[AES256_GCM,data:Ozy6aSY=,iv:78jbuID1Da0N0xieiJF21cMg8JI9m410jdXP7/FqlrY=,tag:jUoUmoc8cAATjZJBHRJTQg==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:hQ==,iv:bAAXU9j2YTOOOqTaeIkbMa3BcYqBYidSAFnLh7JpX9o=,tag:/lvp2+QR16LAFwgAtbbJ2A==,type:float]",
-									"type": "ENC[AES256_GCM,data:+7YvVnBl,iv:McZGNabBc4qVQIbmoy5l7EmMqG7mgTAe74KlUO+x5rs=,tag:Y554qkoeI5VQNV9xhsW40g==,type:str]"
+									"value": "ENC[AES256_GCM,data:EQ==,iv:EZB5b3dhLVRyOiucsAXi8wu5EXB7rA0DSZ9gX7Tie54=,tag:dx/U2H4fybl5BoptKk4jDA==,type:float]",
+									"type": "ENC[AES256_GCM,data:ru4ibUm1,iv:1JAWTkui+CxASd5Y6rTj3+a1QG92kHaCNmAiNkvkujM=,tag:PxiDQALLFhyTLvkMZmC/Iw==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:A2TdWDHO474=,iv:4ejfX6eWXhZwKSwEChZrQUafLCVTbGAu2x5s0inlaEQ=,tag:6q5f4WNS7uaGxrN/5KubeQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:idCJx1MJDoM=,iv:JAG9OwlBlG0M5CFtnJTalXcmMLQWjePJ6kYO/s1UkC4=,tag:rUIYjs3uwHX+WNqxr52VsQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:PgomwCoXrwA=,iv:V112fWkAMUmY/lk+0lq8YAGeCm0lL/wfWCykGzVZTMo=,tag:Lf2fI/JhTVLnYndzTbuzcQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:wfxtisLGAOs=,iv:fovJMLTULaCS8VzQytAeY6UaZjt3f6yVo4+4mB6Ej3A=,tag:lB5xpe1fmMyIMUvGitPfiw==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:kN13xYIyMXY=,iv:3c1qbvqvWjqTuY9CXCPiqaWb8yilXv/klV05KHzu94U=,tag:s+7/2dBKhGhGW6Lx4Ai9Nw==,type:str]",
-								"value": "ENC[AES256_GCM,data:Wg7px8QiWu2DPA==,iv:xFS+O10Wi5XBVSStw7tA9CggzYPy4X31lLd6RtemZrI=,tag:UyaZP0APGBd02MVysHTiTw==,type:str]"
+								"type": "ENC[AES256_GCM,data:iXv+L/Xbb3Q=,iv:rpTL22si9B5b1fYPZtJFpwo2X6bP2v7expasUnkjDUI=,tag:gmBOlBDNH7m/XIhBi+XQGg==,type:str]",
+								"value": "ENC[AES256_GCM,data:hvN1GOjwgT80BA==,iv:DEo8iu6vjlKekN+JmXNnTMiuFXS0W6DvpbuKnk9GUZo=,tag:modbdMuFU1SEqLnRUsLiqA==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:Q1dBGhk=,iv:X6VUjfCQAl7uQRwdyN2Zf/kOhdcJGdN9Mj0s9EopdBA=,tag:B31K9zLCm0SlOsFWkjaJfg==,type:str]",
+								"type": "ENC[AES256_GCM,data:LHzvDtA=,iv:JABE9dKWL9+cwGm3jKLfqQE6oZJd8MukR1duhkq94lo=,tag:1upYkfqD6V8FHopaNnSo+Q==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:YA==,iv:zGhPguwE8fvbWf82MKsjmkbsBrH4zx8SVP4OR2HorNU=,tag:3eSjb9APlop6sJbMqwxZfw==,type:float]",
-									"type": "ENC[AES256_GCM,data:qgThBD7S,iv:fsUOw9pM88DkQcSPVI71zYfU0zuvxjC0xgGxgKTlwTk=,tag:PGyqfgV7hgYCk21SC24npQ==,type:str]"
+									"value": "ENC[AES256_GCM,data:1Q==,iv:r+u1gwt/UPt6e3rBZ9VFShqKUhc+paBsVTY60xV7m2E=,tag:X2eJXFTyqIlDJN5uQDQAig==,type:float]",
+									"type": "ENC[AES256_GCM,data:N2FeiLh6,iv:MMqPuW77BVMLEjRgAFq9boQeatzWhoLBMLFe5BIglKY=,tag:yr33o5xxLNz9HUqmo2J3CA==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:lP9t2ycBW2o=,iv:+ZY9/2eaYfMrC2+JMgTBcVVl601wUcUBn+asVAJq+lc=,tag:d7q7+Ev1ZuLeEQrblujEpg==,type:str]",
-								"value": "ENC[AES256_GCM,data:8LQYDqjnZRAroaQ=,iv:jvcevlFha+vVIaaTPpVWOeY976vvcREbyCd6W34XGI0=,tag:dgXkW2uGx4B20Jr4wnnx1w==,type:str]"
+								"type": "ENC[AES256_GCM,data:aZv/o1dWGW4=,iv:66hkeEJfmMCy4iVZE4zZYBLKltmk59N9pzEcTk7CyU8=,tag:9dkRq3H58VCH75t3+kKlgQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:bT3dNySVShX3FuY=,iv:773i/KeU5usaI8XFvOQItmaLYE3NnEH/syu9Er4SDT0=,tag:bI4MybdB1Ah+PNO/97Eg+g==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:rT3tLY8y+BA=,iv:7WX1uRcTxCiArn7DaDMgQU9DJ3qft6JCGDQ5aRWzSco=,tag:gmi7CGSVBs4g+c1lsYP4aQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:HC1oBZEQj5gyTQ==,iv:EtQ6vZRKZ+rW8OhNP+p/2YmyrQJFuXgRWWyibuipw1Q=,tag:IWWqlgvpYAW789lMtPDsAg==,type:str]"
+								"type": "ENC[AES256_GCM,data:LdpSwd9ta2M=,iv:C5o+ofFNV6JL2CFNtmzIX0mxphcTcS2Sw7dSJLJf5XE=,tag:RGQi8TLlxzy+belwPxVLbQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:PuzJ71uGP2AJfg==,iv:hV3Babl8wDPCvKcVcu8p1+Iz8B/VT9hKTqkvVlOJcYo=,tag:ZQEV/74OxslAeCFch8ALKg==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:9lPoVkU=,iv:8CWsIAR1dxxvgGSMeXADQFfHo4If14Wsj56D9He+Uus=,tag:g1kpXduZG+0ZtEEQIBcuhA==,type:str]",
+								"type": "ENC[AES256_GCM,data:BBi2OqM=,iv:hH9/nh8iKtR5O1BcJ7wQ1doNn8Czew6S4eoSkSy4alE=,tag:tfrIvGhXUNzNFBoYECeWOQ==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:6w==,iv:rGk5icPRATUdjNxDwY/t5BEifBY3uwtYOufzI9zOA9U=,tag:Qviw6MUfr3Prryw1xwut/g==,type:float]",
-									"type": "ENC[AES256_GCM,data:zH3xN/+G,iv:WbA3bYmd+eH2d6Ts/2QgDW4fQN1PMvtSAcwLY+WIUz0=,tag:XpvSf9c6Cat/l60KWlV+nA==,type:str]"
+									"value": "ENC[AES256_GCM,data:+Q==,iv:hH3Nvtrx9zDUT88nysxloIxxKTSNYPH4tpt99IKt4ag=,tag:a3QJI2GOj9Xg+Ecn+zvMow==,type:float]",
+									"type": "ENC[AES256_GCM,data:Lztp+DUU,iv:dEZv/AsroNoFXfWFo5KE2HH8TW6JmSzTUfnoNnkHC8A=,tag:oyjz3IouoStSnFuTiAfmEw==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:FH6nweqyMMw=,iv:5CeSIINN/eXrCDbviRKgcmteTwuhkP4Q0KJb4rKoySk=,tag:IQGVj+hlYEQpnVpEPknfPQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:wgaLDgAAuXz93xwqwyXTA6sa9zA=,iv:UcHghFPCwI/fEFkkQlzunat3ALWMMEvi8iy90gvBHxE=,tag:RT3JPlBKbnlFVVzANbLazQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:4q3zn42B2Tg=,iv:RZx1V/yrSeDIXWWPPS370I0vJxvZq3jE31Xxe6dEL+0=,tag:mpeyig4RSqNqRCkxOLBsCw==,type:str]",
+								"value": "ENC[AES256_GCM,data:16iL6e8A3G+qsYp3Gl3dmATy/AU=,iv:fYXjvKstVUD9rkBAVSdk+JhwXEJLlWh51EAW1anhLxA=,tag:U4Cp4kXD6rVD9GdSwSItiw==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:1w==,iv:nKBOnkDkw04O5ba1TX0XrUXqE+DSQnpQMM8Cfqffzhg=,tag:eILBhzqrkESDgj0rlg4qjg==,type:float]",
-					"private": "ENC[AES256_GCM,data:CXkx8mTcUR0=,iv:jRdzSOsqNAUzOyzz2fBGP8c0zWyJ4iFP2W4v0513pFk=,tag:IYVjGOGdl0VYiSGU/tF13Q==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Jw==,iv:B9bM6a3fmdG9pwbLRj7MYllV7+aOolNDjnGa2Rlz25g=,tag:RW9YJKhPiqCKoDmmn3MXmg==,type:float]",
+					"private": "ENC[AES256_GCM,data:kkgs9WMXMDY=,iv:WxmngyPATHEU3UPZ6aPwGtdMn6sb2x620LmTkMW6xog=,tag:BlJ+noFFf4NeBiExzmCBaQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:nbO5DNLR6SRK1vhwJmR4G9TbKXb8tfSUAuMRjn4=,iv:1ivg6tbLgn0fHQWP76wnXTiTgvBJFRQykPVTVEWSvZQ=,tag:hpDOrrSwO+Leta+Xyflsbw==,type:str]",
-						"ENC[AES256_GCM,data:g6N2YF0bFe3xJUewPGNc5G+l,iv:+03NUOlk5v+aGQwE3bpprhuOSGhDDzrle9gqFr2JhXg=,tag:KwJM3tYEHtN1O8tRJF5KDA==,type:str]",
-						"ENC[AES256_GCM,data:C7QIFbIBOhSLvXdgbg6p4NdXSqkhRTBMxqI=,iv:jMApSJduxMHkea0fyIcInlGAVsSaAO8y+DRwfKvT6Mg=,tag:hiRThFMkZTpCzz0iINv0Ug==,type:str]",
-						"ENC[AES256_GCM,data:4qL3zQHlVAtHVzamXuqcS/dqO+s=,iv:MMGHmQBONHxhM7cWBhRMj9youLsNs7kvsJy7UvuFDV8=,tag:EzxCsOlDJIbXR0HgoUQbnQ==,type:str]"
+						"ENC[AES256_GCM,data:zlkk1aivQn9hl12+om9NZsWfGcRJcWiVoE0tTkY=,iv:+FKFpaEVlcmLIuoS38kN+zQbyjdOfbVJdG75DE8X4Fg=,tag:5Z4aWGqIT513URRj3ZBZvA==,type:str]",
+						"ENC[AES256_GCM,data:rxCoKh5Ay3d2SCbt6IWEhpre,iv:Ibwp9xtk5lXiuohf9HreEJ0wP3KnA6BLUePIgLNPiu4=,tag:mv2rZrRYuGNqMsbe5Pd2Ow==,type:str]",
+						"ENC[AES256_GCM,data:XBzCkPfcmzOJIJ2i801Yo6McaTDAYNr1WVc=,iv:/VT8FrIYx5QDeZT4hyH/PiNNudd9CSUXyUS9j6l1uf8=,tag:C7b8Sa7ltEefU5gxrJguFw==,type:str]",
+						"ENC[AES256_GCM,data:0cqptazi+MFRgC7PUB5xMiUxVSU=,iv:Mor1Xe8Sh+YdPf5PEMFkwwv93IVxITwWA4tDFN+pebc=,tag:xP8zX9Iwc7ZPbARydY9KFg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:zOXHzi/I8A==,iv:/RUNeuXalI5/hOHps533XaZyXizP9hSrz3ve/617NeQ=,tag:nDl7ZmuAkC/VTuHz4HNyOQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:j/lnLk3bvbwyPAPnijx7uCmTY0tp8IIBsME+5HtNc3b+fOMEfsDMQU4=,iv:/08ulQykn+0KeWUE4VKIMXxwxTGF4/6TvzKyaniUpZY=,tag:wObAiYXAu8XfqRivR5tcKQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:b2gcrM/T1kaGO+87,iv:8p6yvkRnOXyiuCYD6vxjPYm91x0DSnaulBoLU6Bnmh4=,tag:cJTxFuT2AdEwKrhlsoUzjQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:qw7yBy48uvlMwZ8ygLvq4XtsrXq4dg10XBajJsqUWNcnCXxeD6ZqGBM/P16UaB+sOw==,iv:e/2IOs9GI2Zz6Ie1137gzzYKN6rZrcZ6/0xDXZFh8Tg=,tag:4d5jJG5f3a58jmVXmecMoQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:XLTeXpg29Q==,iv:Uv2wlxSzzDEsnxqhPw/FLKa9M4yxAz2UMtZQ3LA/N5k=,tag:EogxKWu/dV6m1svg9xmy2A==,type:str]",
+			"type": "ENC[AES256_GCM,data:JeWGx0qgMOUeMhXOetxSof3MGo4w1tuE9p4L+Xal817R7XDjg7rIIa8=,iv:oml4ngYaJE/fzJIiDc1jblFr8SIQdkIuJuuIsOsAuhA=,tag:bHWaN72onVY95YX1fcEdLg==,type:str]",
+			"name": "ENC[AES256_GCM,data:t8+8NmxA1bIeewUZ,iv:JA7RITij0AQLKyOhMljfSbq2jwOm3mkt4gtSV1310P0=,tag:D8wTE9CCQYjb8Jab5oTG0A==,type:str]",
+			"provider": "ENC[AES256_GCM,data:Vc2mFZJvBwvdKdSXxMcdOFkRx9yNvB/9q8CTrw2B0vlCQJiZBYjC77ZH6KScvGUkkA==,iv:pLneJgabCdOl2Ce3ixsqlmS5kLOPdtBMtCN2eolJs2M=,tag:Hm5D/Gze3n6/pwPFvofd7A==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:KQ==,iv:hrkxWfgyO5XEjTerTo8UxAYXqnTGfuSKfBA2vJSJhVY=,tag:se/XT0xiVCvnGdw1CvORdA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:CA==,iv:HcBYPs58BGI5py3y7DiCCjPuWk6ZOQFejSpCz9SwkYM=,tag:OX7ErcjNXVa98lUuNxdz4A==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:KbHFftiMBEw=,iv:q91xfl9qGSwt9+vGTIz0tgkXwm/MG9qhGydhSOw/mt8=,tag:tINTCy/E5bvC798vuhE1KA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:G3bRbruOGKk=,iv:h0vwUJvh1d2i8jiB5T6HGQl0Y/3q62zcLixpzSrqxJM=,tag:s+JkCCn37BYdI7h2kSoq1w==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:GTh39SNHdJo=,iv:AE+0avBa4y+DD/9O8DxM3l6TLXqwnOjBUrz71Qln2MU=,tag:hC/wQ85Wzj5n2h3o4w6xDQ==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:TiBw6Os=,iv:9b2fLjsj60ljj3WPhT/YA0fTjAJ6lzsrVBMHn8n8cok=,tag:Kf10jpqJJ2aMfP4JgoQNdg==,type:str]",
-						"id": "ENC[AES256_GCM,data:93ull0MNFFRNFLT+5yjqNVYHoKzvaR1PYksM5Lz4R5g7UQ==,iv:gweZm7JmZFHIGRjjJROnuHGL7VrcJ5dHyFRec4PDsVE=,tag:l2Ra/IU72+f5kl7feSG4Vw==,type:str]",
-						"name": "ENC[AES256_GCM,data:RJJrfvEXs7G8v+E7,iv:4upP/B9PdNEOKeHXTMuGUl89uHNa/MRsTCYFQhxltFo=,tag:WcjAWOk5z+wZsyyZdteTeg==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:f2iPruvS/4E=,iv:NDkWOFTYAWA6duqbLESfKHmsRF6O0pTxevMXgcLvFTw=,tag:ZPYMcvmI73Lau2jCortYpQ==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:ATMqRlE=,iv:33oMi0srqG5Ni1Pychv4Ocwj83Zvj9ihoQCflDb7sG4=,tag:BFszQWF2SJE4MkxNfkBuIw==,type:str]",
+						"id": "ENC[AES256_GCM,data:3E+iGAY6SHJ/p4uEfW5GfR4Pp0hruDCsyjqwp7QJ4uIMpQ==,iv:QopJFZAagO+1XgzETSGcSeVJx6UFtYoJP1OsF6uSa9Y=,tag:tDk8AIpJYhQszVjE4gRo4Q==,type:str]",
+						"name": "ENC[AES256_GCM,data:Bg2S/TZrjeCVNA7O,iv:d68Z9nLjwFr9Dl1IvPzBLmUGjEToPeXjYQgVp4WxyF0=,tag:kfJAOYoD07MGYP2x54mYkA==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:IZhMSQ9q,iv:XSn9WOR0UdLh2vlOYcpnSbFrqqxtuoMAFz5Q2nQTNlg=,tag:9Q5HU6kCbcPEo/ZPDA2L+Q==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:EWE4Fhuz,iv:GD6RRPqX0LdqvmL7yDsXebTd88kn36RFvPbYup9KqtI=,tag:XuJRnO8YLCChhsmIBoJ0pQ==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:yA==,iv:6zVKsBGEBNI676nG3NUligOqdEomzsdJNa5VSG1f9Is=,tag:PTTqVYeQZBIWHQHv6hwvsQ==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:5A==,iv:jNUsJJNic4/VUnhgUvstGZQz7TqYB78aGINrkCM+vvA=,tag:bWFF0FKsko6lM1WBbt+z9A==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:Wdq8rQ0a,iv:3Gy6CojzfpEutMhwuX/tBnWcplNjm9D87h2YM99x62g=,tag:F4+0ZgAu5aJRGq27zeO0/w==,type:str]"
+						"username": "ENC[AES256_GCM,data:RZhw4JX+,iv:9WhakxfY9BsazaMS1LnUJsRJRKCMpGXgvmfqyPyUBbI=,tag:yUrv0ECjQDTw+bHwU6xidw==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:i58IFaLpLRg=,iv:k1lrQeP9+W6z+UMKAhX6xud3+fXta7QMJwuc4DB7Gys=,tag:uxiQkUkWkTq80ve4bcYUzA==,type:str]",
-								"value": "ENC[AES256_GCM,data:XfMuiYOgGxueKJ7teOuVNqrRMykE,iv:ZZBwe6amPDMWwZXUb/OoGTD/KwcJvmkKDmNEn1vif6I=,tag:64ipGAOSwCq3tLoSZmrfQg==,type:str]"
+								"type": "ENC[AES256_GCM,data:Bw31oqdtvRQ=,iv:GeMBIR/kJyCfvIeD7mBE9h6xqRjRdir8BHvu7a4Zp2k=,tag:qKou7daSmDr+6Vgy+GaORw==,type:str]",
+								"value": "ENC[AES256_GCM,data:QyLGgbRtXItUhOSxbAEYDwPYdN9p,iv:iBd6fyJtA1KjFNZOUSKCrVo2fwXNCON46TPzN6pBhSE=,tag:aRaPKhhzhuuAB66ankaBsA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:OQ==,iv:FmM1C8UwqZk5/tGAv8CGxiQvSPGWatdpJBf1+lFF1wg=,tag:c96DriCiV+O79NN2HUBK8w==,type:float]",
-					"private": "ENC[AES256_GCM,data:Mmo1CmyVNnQ=,iv:i0Fwrgiu6tZX1PGa5/kIwe+CYgpRKjab9QsXG8UYGgg=,tag:akr+7PFrXfZAa72LbNCYQw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Fw==,iv:ntuAWwMeISLa5VLMlSfO/I5V+RslUZaMEYktbdZhtYA=,tag:beGnFEMxk7hxpNRwlr3ZhQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:kW+y2shCi+I=,iv:cPr8zEoTjleiEhEm+/nWELzrVYuUPvyPpwYkK9tl5yI=,tag:FwPqvR+ijLVrxyqI7NpkrA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:dNIyDXNWdQvclFC8Isr9tdqsPvEKHd3Wud9IYtY=,iv:J94J7dcUV3Ax4xFSLOs8pwq62Ne2XZwEgksC4I9zkUo=,tag:ikV2WPz6GUh8sKVz97c9Hw==,type:str]",
-						"ENC[AES256_GCM,data:IlncV/jR6jtm51yUyW6V1nY8,iv:fvInW/6ZMJtMQ0xTQwoKt5+wsSX1PorvcYZhETEmQpA=,tag:7M3/tAEJ8BehD3RSbZOGJw==,type:str]",
-						"ENC[AES256_GCM,data:DvapBY+KF7xd+7cLQCLHT8NA/6tZNnNuIoI=,iv:aELifQoGDnbdvDFBZ8o/YxOkbQmbQCxeIpo6HvaBLGg=,tag:RETxbdUS274vFmoXmUpH7Q==,type:str]",
-						"ENC[AES256_GCM,data:DLhJ8eSZCXsCatiC5kyqF0N1T1HZdSMX3xL0BGIWOoGGggFhZIcZWDL1WSnxYw==,iv:3JzOvvpuZHOZf5i+W9/1ciILpTzHV+5eUpTGlHI8oc0=,tag:HUKp6RT+m8ULSmO5337Org==,type:str]",
-						"ENC[AES256_GCM,data:oUEvQW4fGoePZqlS6fhkh7EbQKY=,iv:R823F+oHRQ7Fxl0Rqmx1VAloFwDqLcICq0bBDKPgsFM=,tag:7twQnzxN6nAOGLaOD4RlUw==,type:str]"
+						"ENC[AES256_GCM,data:p+xz2MgA5274D75fPoJrkIyqiVrbERHiV/AOZGU=,iv:lqWzuUEdO+GULemXZl7p3TfLOy5OzGjlncLyVIRToZQ=,tag:SAQ2qSqbdGVHQtBWepuFPA==,type:str]",
+						"ENC[AES256_GCM,data:AFbT2tFjhlybFw0hWREniUbC,iv:jvx4ZysZq7FLS94+TMW+YMZt/eL2pZqkFfZC0fnxuh4=,tag:gy/Ve1S/JVsl5kFBrbBA6g==,type:str]",
+						"ENC[AES256_GCM,data:u0eWAf5Lu+5auWZCRTuYnJQy/KmZr4izu7Y=,iv:seqRse5BuGPlYD9ioPZcANKeoiKKqWyAnx1cTLuiLMM=,tag:LUCvcVTAw23qBESIuX/Law==,type:str]",
+						"ENC[AES256_GCM,data:ECDwybbKlIIFA2A/jP/XisdDIZjyxkVsqUxvi/orF3c6ZmN5UWLY5qLsEGjxBw==,iv:trSaKl4MjeHf1Tybwf2542gLWvSAjnyYiLicb1gctUM=,tag:wPa3o1PFcgi8NlfTqUwm2A==,type:str]",
+						"ENC[AES256_GCM,data:3k60Jb8lhl+6jAYgXVkWYQt0pqo=,iv:TRMJl5IbdgCtFjwptpVF48lBKKwYsrTAyM06kvotiNs=,tag:7wB/jYUPWQfDRsHUbJ+SUQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:MUiTGcL9fw==,iv:B2448RozPp0AOEI2iC+SSuL4Dk4Ml7rTuh6+4i1T3Zc=,tag:MnZvXNBLt79MxaWvPnwYSQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:p9qmBXcNVvOxe1h3OD0u38bIhLEgO+mql9rLTUS+KiO85LnKaFv3vVY=,iv:8kkpahUQTBwl11xYMAJwxCctWA+8a6zaiXL0VZNCYBg=,tag:ae21LKLenyHvwMC5+Qf33Q==,type:str]",
-			"name": "ENC[AES256_GCM,data:92bX/TMHVMHZdYcxeA==,iv:qzmQnQ+23+QsoOM5XClbau7gyF1/rLYxKDGoyEzPsgE=,tag:J9evm1rX7dicHWnm5sZJ3g==,type:str]",
-			"provider": "ENC[AES256_GCM,data:3Ns5tOlovDYqsq7XaJ3Gdi8g0JG+aG+2r2eO4uTW2SfJBKujjglRt2S3M18SKBYIMQ==,iv:yDVCOR2iGE02IMXLCDUsLQIUrkb5ktLGKQjmpEg70/Q=,tag:keb05pjBqPOk+HGfHpxmeA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:K710pv6CBQ==,iv:+hnc8UGmX0rqmxlRpoHuubO8SEw2gHBlvSpfDGosfEA=,tag:qaiqcY0Pq1dqDEurPIOZ3w==,type:str]",
+			"type": "ENC[AES256_GCM,data:eqKiEQHf97mjrisrzaqG89Gq9nku97FUqL/GxgXBwYplxf+zW99k2IM=,iv:2Ag+CRxSONIZvjaxARMeRs0fJKR2C9AI4bgoHFNdnVI=,tag:1WMxSVaCNlsci7klQUCyGw==,type:str]",
+			"name": "ENC[AES256_GCM,data:cBFslqUnmvjFZBqzmg==,iv:3OU9/8psb5Fy6paAalKGuejeENDduhkEiprTDMiQBi8=,tag:LXuN4IMkmNdst8Z0CAhIzA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:igU4iRlXY8aggsu4Na+eYKvQqLR7eZvFkMqwri7UJMwTB0FymZXrfskvvrAB/cC1Fw==,iv:vnO9im1MDXI0QDVDoksWtrldCezT5kONVs1Ul0GO/dM=,tag:ADHj71J8KQvZvaHx8YwOFQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:mg==,iv:RlMmJF6wZzJSWH9NtUyZOgd+bETDuIRhe6CeR2EpFM0=,tag:RwURYiR6e1yhggc4K7TYJg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:SA==,iv:3GGOa32qhzmYzNGDCnLtECkV30phvrujhjvLYzqxJAA=,tag:Xyv2xOXCMC65wBODoTaGkA==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:fJvOTqSrSrA=,iv:8igHuQChN7UKjUJicJEu4Vl221g+sMQ5DIYpcesn8kc=,tag:1RDa9Y0OSV/s86kZYfzLWg==,type:str]",
+						"backend": "ENC[AES256_GCM,data:vJIMiG2bWFU=,iv:+WV5ELd2rmlLKfEzy2KNramPOFwRt55znBwXAPOtLJ8=,tag:PcDr2e66IH9LFZsxoQsriQ==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:EciyCBz8jPI=,iv:uRJJF173jIYRXdKdTZgtLBCAKXf3oQWelRHoA42ClqY=,tag:MTRgA0sHvOT/tnUncDId/g==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:K72cP7c=,iv:kjZzwfdsUjwKCO6PU4benOhZV69q9uqVEXsZPVAXaYM=,tag:N6oL6h9dPzEr1a73AQINfg==,type:str]",
-						"id": "ENC[AES256_GCM,data:ArWd7g5kyloPdSOfLHKCHptEDxwA5h6GACA00mjx9sfSYp4=,iv:cRjna8R/N85sBPnhoKAkoxZd8wtMwsghFx1YhGmyNIg=,tag:ypRa4pzGAOmD6/5It7mmtg==,type:str]",
-						"name": "ENC[AES256_GCM,data:/bXyeDfYN0EITNyvow==,iv:hK6gB+gsthXfNvrOO1ba4i91FXS8FSOwYkhUZKYCJ8k=,tag:rgl4UadGtBRINTSMPAKkbQ==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:t4b/08mGYpI=,iv:u24Ab6rIR9jVk1V+AEcbAEAO9428uG80Hz58uzx0e6U=,tag:r+h8WqXZC/JLaCCsBPTV9A==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:d+ykcrc=,iv:EFxsSjLgVwcwla44pp4X8n9Lvx/1/tlJU2zd6zA0em0=,tag:U9828mhFu9xBhgpEWbaEAQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:4xi65SEzN/2aN/VjHx317ThL03KqUS05GxWSxBVaPT9yvR0=,iv:wQBhMATeTNMi0y17ORA9/R0n4KO3oS1K7wF7TCzUDt0=,tag:HdUUqKjLb5yfF64jm8SEbA==,type:str]",
+						"name": "ENC[AES256_GCM,data:Mfv5AzOoCM8OWWsuvA==,iv:KIdGFAdu/OSf/a4e9lhMaihuAxjcc182o6thGrj5Jlc=,tag:5Yd9Qa3tD0R2nn6GY5dIwQ==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:tDq2cOzc,iv:DsLM4n/4CuZItbRg+czqZSBmPfUTJSFg0kGMOo9pSSw=,tag:fQT7zt9KQh3MFEW/EHRjfg==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:zRA0jVCx,iv:tjT8E+AryASOTa5PPqqAG8zOEVESMlkGEeJKN4eC0k0=,tag:Fguvahv8UmQJ55lPAGFEUw==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:lg==,iv:ManyXS/rTq42AMyc9LKM+V3a4QG0OyZ8KuIZ3Se2kRE=,tag:GNbo+5QX/ge2aLqsOC9q5A==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:JA==,iv:VN+jslxiKhKL3jgxILPj/cph1M75BxzE9sUVM0R2OG4=,tag:wJKr6KkOHz9d80Tkc4OJDg==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:5+0JsslBEA==,iv:KECD/8smAIeIfIseCr0qbQPILyjMzX3fhJgljjQdB5o=,tag:R3fPoisxbhSAQpJC4C5CAQ==,type:str]"
+						"username": "ENC[AES256_GCM,data:PyVQaCnEzQ==,iv:zhneJPvNn0vtFLZGtji5KWbn26VeFE3xFzqaHdKEav4=,tag:H1dnA6KTUg3zMQulw0g2oQ==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:zO2x42RVTJs=,iv:X7tCJ4C/ZLWGEmpl9Sz6XRI1nQ3csGztI0vpejcnT+A=,tag:eTx7UwWw4QJrg7l/l08jww==,type:str]",
-								"value": "ENC[AES256_GCM,data:O5FVEdaF7mqP58/NJQmJnUTLi03v,iv:KBLJI6KwhXCiHRlt2Uosd6ORiiJJZVRws5vUtL9PXTg=,tag:PP/RYu/IuoFSF+xqL/CmVw==,type:str]"
+								"type": "ENC[AES256_GCM,data:UjfsphvcM2Y=,iv:jAPqJdbl9EXJj2WuNPI18KuzRih+PalpjNJNPH8tpJ4=,tag:CuRXH4Twe7ogV1ymJo0MJQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:5Ths7QtUIUpdLfIMAB22sJ1wd+4Y,iv:zSMDlQUVojLwOwBK5mg8PO4BqG8jSUSGkstnP7sTcQ0=,tag:yboHTSuwnBas7KlmBpPaKQ==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:Cw==,iv:HfZuXUCB2XfC8pxwndvgJbolVoGPTkzW05tggyUnxek=,tag:jnecyEmFdk1hLsh/kngoRg==,type:float]",
-					"private": "ENC[AES256_GCM,data:LCO0corkqrc=,iv:H6wspA9oAlbl+Tf2GXBtpR/wub0/xXa51KZ9cB6D/mA=,tag:H3gouG009vEB3v+6Hdxzww==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Cw==,iv:psSHqHJP8AiHuuf0sNheqnAWC9UPfLdvMlIyFy6uSHg=,tag:lgZ4/lNC1VmwhbayTuJY2Q==,type:float]",
+					"private": "ENC[AES256_GCM,data:mNkzqkg22kM=,iv:zT3e/kbP3BigeRDFNpQDUWWX5wcoke/bclmuKxeita0=,tag:YPRgyc6l8/PvXIMCqZPdoA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:BldujGkQ+wQJ6PHDXARk9EVdAasnedkK97vtvUI=,iv:0a/8COk3sl3sN/tNVcgAky+3eS3ybJ2XUMEncwIr9s4=,tag:0aqNPtXv6rn41gUeWLfIug==,type:str]",
-						"ENC[AES256_GCM,data:2aMr2L3v1hQnoMm89Iee2yOC,iv:FxpXwZ47Owml1XXBpnd0Jqsze6627SKfarHyXQzsQJk=,tag:LoRiojKyQqqGR/Xm4MSOiA==,type:str]",
-						"ENC[AES256_GCM,data:jkte1mTPYW5VFmWvzwiBzra46+eZLcJ0fkQ=,iv:G2w6f/EVQbEOsdJW71b6PB1/YBmUckURvaEYqrE3+5o=,tag:0RfOuyVvKCB+YICj5sPwcQ==,type:str]",
-						"ENC[AES256_GCM,data:2T3DkG0htorpqubSV/vc7/pITYOucvg7z8boU/KTZFj4LEC2DkpVhnB590xIIg==,iv:Xak1hD5Tqa9lzkeKqi+Ew0IYuQ1owp5y5wRdiZJPTFo=,tag:BuQU42vAl8KHfYExqR0h9w==,type:str]",
-						"ENC[AES256_GCM,data:eAyThBz8+CKOGyYYFrm5HEOr/tE=,iv:7HqqXUFBPeV27k3N1UpJqtRcfi+pWvvs3qgbzBX55EM=,tag:5LsJ6cZD2fpLIyiw5NcoEA==,type:str]"
+						"ENC[AES256_GCM,data:+MNguaEUeWtZxxjdSETyRkaa4d+xp7mPIhLVUEk=,iv:XRETlwVa8scL04B0ecBD7ja62j4eQVP3TBLcy+Mn8mw=,tag:dfcLhMZylqTWg3lHWHPHJw==,type:str]",
+						"ENC[AES256_GCM,data:vjmgKcqFqNXt5rgpVH67mDUG,iv:fe7L/RYCIPkQ8L894qdNduIG3Ezy9Vjb5H5vWNBfbJc=,tag:bTNw3uXDflwHdBvXfPFqQg==,type:str]",
+						"ENC[AES256_GCM,data:oha2P4hYH9eOp+TkPblunwdg9bQCiAJbX+U=,iv:GBrivokv98cL5OKWY9DFf05RLrA3bZc8K+oYpEtebhE=,tag:ezDM2Lm/QF5nGQDqmmXtTg==,type:str]",
+						"ENC[AES256_GCM,data:YWiLux7fPY01Wqdv28bVzrMswF6PLvLQ5PlkKdQ4Ca6rqEA5EZuc6VNb1xC7LQ==,iv:viFxiP+mJgKJ5Q3H/yw9y+Eyb+2WHFV0tlEb7sIclUY=,tag:rufTtS+NH6V04aD+CA3dKg==,type:str]",
+						"ENC[AES256_GCM,data:RLB0oa+ldbmgD6lb6GfD6Hi3a7g=,iv:r4DGHzB0hrhR+CezwI+c++S31jS8nzOp8Gf+VWk5hO0=,tag:KioB57BDlD6Bq9K6DAMRcA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:ZH2GIRKpew==,iv:hh7GiEYuXCjOWWICyhfRckUhDFowgYZBtD5/eWWMaLg=,tag:U9VugZiLAtE0JYyex5aCjQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:t291lO2oyAvcL8m4cpgcvbZIzaoCOD9Hp23Grs7tAEBV+zqMT1zv5VI=,iv:fVEOd7xLK9Q3Ou/k/X3LQe8wrLUGiJaXHG1PSAUu9r8=,tag:xkdcevtAkzPwgVmxSeu5gA==,type:str]",
-			"name": "ENC[AES256_GCM,data:F1U5eLDdYKx4L9SEPtWH,iv:of1agtZuAqd6/oJTn+JbCQkCh0GsoxkAE+saQbE/ddY=,tag:e0kxIJVFR7y5c8KA0uN49A==,type:str]",
-			"provider": "ENC[AES256_GCM,data:8aGt5GOjuI1JgmaNaZX78bzLvQlvOEMXMl2EVOz7HzDEoc7gYA0PwWDgY5YETesNog==,iv:Wj0zaz4eqGlkffSOsibGuKK2NY+XcTNebXy2sT+fqXc=,tag:+VsWc76ZJfo3OOZkvavKsA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:vMwSj06qcw==,iv:wz3hkpI7PBsyliNhvAdmZzvlusHcROuzemOv/67X30Y=,tag:5t7bD2fglSp4+dCMlPomTg==,type:str]",
+			"type": "ENC[AES256_GCM,data:jD2iYdL0sZ+NlpQi5yvaMiZHRKFAz690FQqGX1DgkChcFHJNcibCve8=,iv:o+OqDT6StDk1HbdNo5XRCdrZes19gxqYl0dSoZF8AqQ=,tag:HEjnPdvEYDysRSosBpv/4w==,type:str]",
+			"name": "ENC[AES256_GCM,data:Xf1GAMf/JwkgNyNEH74b,iv:TRSw8AaQ99tJvt/NK5gXGSjc5kJgWbXmjjJ1ncwFM64=,tag:/ctxhvodzjI0kz7FiJKmgg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:mm9qvFdlCM8jJBo01wuTvqq/KUjEa+VdZYYd1K3caMAiUK0Vdx9M/OY1T/VN/TJzIQ==,iv:i+IcoZXizUhymZScDtqWvWG8bMA9Re9OrrO+WyFuwCw=,tag:ljCtVQ+RvhQN+TeOgBJ3XA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:rQ==,iv:yGand0Rf38Dlk3hqpTKvfNmwh1QTuLsl2P21v0kiCEo=,tag:8AYlV9T7hzMROCfw5UQZFQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Ag==,iv:6Oit7e3h5I2KcgAfhYgq237cjvcR3nDY8xwQeI0b7O0=,tag:d3xBhA8uGPeGWgzmumQ1Qw==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:cWi12nMnPX4=,iv:6Q3rWgZPGW+MlL80AlcpHrYPiykcl9RTSj/65utT3Dg=,tag:hh7B747X8iHcMvthnsRwjw==,type:str]",
+						"backend": "ENC[AES256_GCM,data:bKnf3kY73CA=,iv:WiUYnOUpyfgFwTWBlxKzSIPcYdhW9lnsVIeFVkajKiY=,tag:82JszJHgodyL1FvtK95hGw==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:n5QR+sa8uac=,iv:E+HVk2XDykW0cZ/IQ1zL3kRzsgzJG3XLwaMYne3d4IE=,tag:jdnNC1mhPFUESj8HPmgTyA==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:UprGFiY=,iv:CwlqIYKwY6DbUGez1FbJRCAx9qvFiULQEngAbZzWeQ0=,tag:4kY8eiz1mNDumvBRFbyKBg==,type:str]",
-						"id": "ENC[AES256_GCM,data:IHz8AISlFGQo9eyUxftw4smOJWNJ3GCaqMSs/ZsYSVVxDfnXvQ==,iv:qoq2p6jlkx5IXKCH85zklWdqNrEHh6SyxsdLDNZNKTs=,tag:ntSkmG5zK5lOysxy/l2YCQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:sOg32oPPo64jaR7cIYCe,iv:VJnhah3zcSWshA1NvI7DVMb5WTAcbGLSJ1jJML5AbX8=,tag:D3ZTzEAGcEBimP0N8sr7tQ==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:EfoKrBBXUJ0=,iv:fbsMWzGmUqLeUY7k/5JSAamxOyy/NAHG6X2U6LW33fo=,tag:lRjs5TDc+ywHCHdWaBV4eQ==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:RKAf9pA=,iv:ueISnMI3VzWxNdh5B+Q1Lv7JwNFl7z7kvrOBzbrdsy4=,tag:cyeVaSMpKmgHe+nWONmQdw==,type:str]",
+						"id": "ENC[AES256_GCM,data:604PTFirtHRFIA8RPTlXb5ysFw9Cs0reapADFOzVgpgElH5/8Q==,iv:KjM2aXaqLvuppKVoxIa63/5xfS6Rn6wsyWHCFPbNGZM=,tag:jhgJOp7SZyBw9pE7I4h3BQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:ThSLITeCysm26uQRyCD6,iv:fUwuT4j8//AiV3+Fz07tnp3gcCDKEJOuz8JsAcQwdAM=,tag:W/VFhErCNJBU8RQhFU5srA==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:y2Su50zF,iv:JJuAU0O7CjA1PM1c7hpVFU8ERkDFPi9qKza1o1S8a1c=,tag:OjqSz1v+NKnvdF27DW0KcA==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:X/xAJX6o,iv:fTjiKcjhA1wi7bbU+xqw4Zn9hgqNHi1Aj6jcez2PRQA=,tag:Dc/DcE/TtvSzpV9XN4kLIw==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:/Q==,iv:OfGJ/VgkFA5mN/Y3SxgM1YD3cNDBnKKMl6cfeNxcs3c=,tag:egfxmnMZzNZqeLjGjFcLyQ==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:og==,iv:Ibo7szUX1vfuLfiejhb623PsIsd/5TE5NaubemXr2hI=,tag:3uVzDYPj050YX5/KpgJKSA==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:cshqqfsAyEqr,iv:i7mHjHDqVttGxRzKKFKf0gltokF86y/v+P8t1hZmTUw=,tag:hCctBZZ4xTGVQVlFrrqQJw==,type:str]"
+						"username": "ENC[AES256_GCM,data:Rn/4PblZgGly,iv:Y31/am+jUBUmMOzTDTBeF7QRnaR6AEgOx5EqYwMJxaM=,tag:sUEnzd+hBXeE9HbhkagMrg==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:LKv7+CUs5Eg=,iv:LAE1erAGv2ZY1AhgwtEC1MnXOUfwDvX/P8mJzsAegAk=,tag:LNOJ2yloV62XQOY6TpCt/Q==,type:str]",
-								"value": "ENC[AES256_GCM,data:GIwjYdOirajGKEKbEjK+DUhbasbV,iv:ffVmP52A3Ox3Mf+rlarxJRY40wnlqxaMluUlhgR+1B8=,tag:IP6BmQUBT0wOHn9k5PRgxQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:J+e5fvEkA+A=,iv:PqfxY2e2Nxuy0BRhHtCIUSRaDliLG/Hw3y+EPUQ6500=,tag:1SH8dvhjJqja05Gh0T/VOg==,type:str]",
+								"value": "ENC[AES256_GCM,data:W331LzPjlhrjvSxe891tziztGlXQ,iv:VYFkKN8b6W43H929zIAtZpY3+VCQJbyQsi4Y5i7yfMM=,tag:DoGzSCf30Znm7mW96gv6bQ==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:Pw==,iv:9L1189cEJI3Y5StJA8VDVfsKNBOqsn0QMANwdUwLeNE=,tag:XMJk62BCt4WzGC6xF+DagQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:JEdfH1XARL4=,iv:cUxqX68dhIZ+f9FOGSgFIrItWvb2P3ujCRFBZvU6R5s=,tag:jeCvo5euwHaEz3vzxKZatg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:3w==,iv:CXJewdDxAJikahOKFDl0aTOSG4MzskjQzKU2f70Ixls=,tag:519oMU7Yp8ODSocOj7BCAw==,type:float]",
+					"private": "ENC[AES256_GCM,data:teTKvGhgzdE=,iv:SIzfcxhk2qENwRl32ZhqexcTmmlrB7CjFEMAl8J7QqQ=,tag:ntxAZGJ2SuYhh0b+Tidb2g==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:femoZMJ7YTXjF7r1H16VB2xBHw3r8ATzWIBTWQo=,iv:+87DKIfH6XVpwCz1R9sAxrLeB0op8IkevPh7lj4WbKU=,tag:1/jzR+SKYSm7jZDckimgfQ==,type:str]",
-						"ENC[AES256_GCM,data:5uCOxcrLkvfMZ3i0F+cw39va,iv:7ApsayKzNziAYNdCdp+VtNcvE9lDsdx1izQ7xCFY1H4=,tag:jSe03aNZ1XZ719HSriW9Dw==,type:str]",
-						"ENC[AES256_GCM,data:GN+mo/qCne7qlH4nRa7agjVB6vC3LXtY9Sc=,iv:95d1qI0Sj4gvoBA4ZhSk/RfkwliibKPh7PTkCydyj9U=,tag:HxabE4zwhnMLbtT53AzNMg==,type:str]",
-						"ENC[AES256_GCM,data:NMnO4keW6+SfmIT/cF+WNGIpNfMUvvs4VC9aWq+uFby3UNfc4Q63osJGoxLElg==,iv:JC70278rlWle5q1tdx4bg2hTM5qlB0afmU5/3KcBTug=,tag:OHztmWwLBFkj1vBPS4Y9SA==,type:str]",
-						"ENC[AES256_GCM,data:6TlxZ1AosCRh/ptazaDDiL2HD3w=,iv:KD3RNmp1o2j3Z31zx4Lg6gTSxddLOi8Kp2bNow6IwGM=,tag:d8USBR1+Y6gvKtfMj1818w==,type:str]"
+						"ENC[AES256_GCM,data:wLgCq2xoIquaOvfBBpueSvlhDIkyz+vkrExYG4M=,iv:x23hD3nNw1+EAPdfhfguaCJTrSiKz4ZMjcxevnoBVB8=,tag:Pug9BEQNGS0mb6cCxra9eQ==,type:str]",
+						"ENC[AES256_GCM,data:b0o3NrRA4P9JyeEfsx7aLwUn,iv:LkJuM4ZMDRlnZb7gBQLO/ezXyZMACyQWmdmW3cacAV4=,tag:yuS0bNoZLfBdBV1l4PJQtg==,type:str]",
+						"ENC[AES256_GCM,data:CyoORoRw5htiWY0fwMEFynUSH1iLr4Jb1d0=,iv:OJmavAYYh9lt6zDBpC4s2UmPdETg5zgNJ4MTrPP25jU=,tag:k3X6LXMBkGKieySd/gGK5w==,type:str]",
+						"ENC[AES256_GCM,data:in9UcG6Myj0vZ0Mrixn8sKIPjK0FrWao2GFPGEPLBLOzXo6tEBweTYZmja+tcg==,iv:5B0heF1XtySPMFoYMTjosUUp8pulSfaaPljjDGVBcec=,tag:ChJZWXfIGhEayV34ftaFQg==,type:str]",
+						"ENC[AES256_GCM,data:2V0bXuJQUJB/Ou1Scedl3omjJvE=,iv:cN5o0V48qh9IcOIj6AtQk1MJJ1hg55DaOJXCVwQi1e8=,tag:b2Nv1PrYi2ek4SUXxnBmBQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:RwfPMHwj7Q==,iv:e4C1oytXe7A0HWP2J0YBGpfiDaELecVd1mWdva+zTtQ=,tag:3sL2XDV2lfBD13tGrEpUIw==,type:str]",
-			"type": "ENC[AES256_GCM,data:Pvttc/X/GdsmMCGkfoIqXYPAVsCsVveB50VMsYglABa0q0+534y54t8=,iv:ZxCTObWZmxtJTxYEnn03VQoObh17qk9IiN3q5YJShnw=,tag:rEToRku9o2bEhx9B+7Lbwg==,type:str]",
-			"name": "ENC[AES256_GCM,data:KEQfZrMofm2F6sP5Pw==,iv:npyIJQiry7G8m3WZHomPl8cT0qkvZrNC3wNsedvNh70=,tag:xEdfT8seJB+pGCFOQ89ocw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:d+y9bSFVsK055t75S+Jju8+rUpEWjIhtPFmLZVbvgyN2nanyw3Qr1Tpe8mXicFLmkA==,iv:VXmP5xWC5hiprW9zkpQk6/O57ca0TW9y25WMNy0Fs4I=,tag:SqO8oV/YCqzNx2nijyHsDw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:Ow8VtL3/7A==,iv:TS8UqJmmrWjkZNfOkwa3gzTY+JkA0HzJed6NNL5AXNM=,tag:6Q0a5s4gACIwnTaPjjToKw==,type:str]",
+			"type": "ENC[AES256_GCM,data:q6yvZVDnITDvVq8T+WRcPjH8UEholP7ttcHeQBbzQUPL6DQphLvlNVc=,iv:QrU5iahbFXoV3fD8oOZdyfsBCzORn9IxzLquUXO4FNk=,tag:BIvgcDuwUG01UBj85lTKfA==,type:str]",
+			"name": "ENC[AES256_GCM,data:44tXPwpRuMpEB1jm/Q==,iv:zeYd/mjv7wK4Tz/NcP34wZWbtIbapHGx3lfvx1njJgY=,tag:iUWVAO6FMReGjGbEg2RTaw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:2ebcJz/ezTSdSqMDXshTxGkhoF91CXgpzdoxg3n0EYEpGazfBdlCwoRaz9GMMEmYSw==,iv:bTLPt+U0F4NStDMXeOe8eQnO7L8VBCeHK9zYdUXdUEk=,tag:9Npa7OO5nShecrCJrnACJg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:yA==,iv:tyTTS9D+u/1cpfXCOs882C6gwvmnPZkN7x8D/kAYqnc=,tag:KZGdr2IGevIAvM90E/neTg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:IA==,iv:rPYEevs8xaDXVVd1+yts5HCS2ISnV53FuxaO8RRsrDE=,tag:q91R1VOZoCmWb+7ud9UX/Q==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:LtJM9ahWGis=,iv:M/zyn3BIFp55Yo19saZPUhU7ujnZmLLpQ/HWjXhFvhM=,tag:WDkVg2lC/ioBP6Ry5jUOMQ==,type:str]",
+						"backend": "ENC[AES256_GCM,data:2h0obuJoaYg=,iv:908x0yEKMw1GwIA8A3y99zI24SEbCXk4cULtTHWAzpU=,tag:Zr1wQkAaD3mpCf5sLzMXzw==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:0hxy7xv1/xY=,iv:SLH82LTetUpdjNuXFWBDBjdRNkjwfT5Z5LOkYYwVIUc=,tag:4iAvvw+JKJbQMLUfjzhEiw==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:1DWkfjI=,iv:qeLvjI4duyfPB13ukRbnYVdW0A2KSvFSQAvuj0dCWZo=,tag:yygQZrpAmC1/dNxDVM66MQ==,type:str]",
-						"id": "ENC[AES256_GCM,data:tKjuBb30+EU0Atr1VbYCVgcx1XsnaIS7J3Mqz6ibO7eaFnM=,iv:6HKbNyPssRvlX1vVxOFlgmSFJIbUFJs24cNnDp0qOO8=,tag:jcwsxMnij7nuWMYNOifrIg==,type:str]",
-						"name": "ENC[AES256_GCM,data:71QshqO1FY+N6ceFBg==,iv:bw3NQWep5zG94viiYaUv2j52VXJRuXuRmPVdRqG3Grk=,tag:aKEfZs5xKt8C64zV4i+ifg==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:xb3zBfB1DjI=,iv:Y/gphmFsPyNRgjdxkVzrvGzELRnP7k+nooG07YvksL0=,tag:TGRb+Ef6h/TtOK7oKximcg==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:8F1BKEc=,iv:nN09wOy29sdFrgpcPb699/ZoxwWJog99zuU2JtC2umU=,tag:Dce+dzHutbMa8Z2LwBck3w==,type:str]",
+						"id": "ENC[AES256_GCM,data:/yhaRu9uATrbPXwiF82PXK6wFSsAPRsO8sOsT5h8nTZ6oi0=,iv:iLMgdI/imtn7hyeO6AUHqPz1avU0J65uKD8FSKZmix4=,tag:OVNcPMkI9wShwkUTuiLUWQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:8D5mrUT47klRg3Na9g==,iv:BSHsiLtCi85ZtL22wrcILYqozi3a920kbFBD8Wz9Qik=,tag:OAaTqoBVag/XOO9W9afBMA==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:kLHDCUY0,iv:GtMSuYNfAIfGcmtIvZepzpHZoxxlZchJhQGpXecp2gY=,tag:dm//RuFPOafXOBu6jrDxUg==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:3HHC+Nz1,iv:OkzJc/44e7eX9lkL9yA4FcSrfdNZZ/BiZRuxZLKp0tM=,tag:7SzAFr23EBrdd/7Zbu8j+w==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:PQ==,iv:mKOAfxq4K+3C8RMN1we/bMP39zpDOoY6MVEWyZcRQgo=,tag:Re7S6b1lIeXfT3SmuI6e1A==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:uQ==,iv:e/zjYD1ITLCwOCYL14lAvOwL10bgTAgy3nJwsqO3Bjs=,tag:IH3BJcUwyzetv+a3Ys4Wlw==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:un8NWqExpQ==,iv:G5cVd9FLF2eDpzwu4BTZK149+Lhy1L5GvXXT5O8qStU=,tag:ejPL5bIpdaumwX/QlzJlkw==,type:str]"
+						"username": "ENC[AES256_GCM,data:5UkUV1E+CQ==,iv:2Bh+rhUZKi96KmUABJqsERMR9hv6kgQXCKKN+8BuslQ=,tag:v1hZPPujJ0FxAVH48PQqqQ==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:PeEL9EAQKUY=,iv:Mdik33As2KH8I2iywxOB8J41RxwoEKO7krkUZd/ouU8=,tag:rct7oIQ08vd8vOqPrkd83g==,type:str]",
-								"value": "ENC[AES256_GCM,data:+W6wiDYd+v18tcx4ERhQg9kyKfiN,iv:saYMqTL8291Mzc9mcdHVcBVhfyQtUiy0Eb5bpbpNNG8=,tag:2k1Y8+aKdilb54D0TWEzhQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:aYx4trfBIxU=,iv:WBoF5COwWyT96f2+B8IuxJdrBmq3ymSe7MGAlFLUipg=,tag:8HFJJt95c0trIXBXTcym5Q==,type:str]",
+								"value": "ENC[AES256_GCM,data:5djtL5/TcgkKEW/VaNX5rentBY4O,iv:jO2WhiAK6LqUY6aM4MZLqeKLWUlxS5holYAH1fWztZk=,tag:IhYioPkJNjJqdhjyo2h06w==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:ZA==,iv:sGbTFFrlnF3+Qk896gAX5KBkZhETnDtfaruxvlKmF6w=,tag:jHOHArAIwe6nnSEdsoXinQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:p+jZPDsQh6g=,iv:MKW74c+kUaWb7+sN2lzBXNn5JhsUVAEsILFXFsGTtUY=,tag:ih2jda3i7m1cr0lo5vAVRQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:3g==,iv:lgDMxZ6RG9WhyOfdXjaiYadchRvWe4XSZpoJ2B2LifQ=,tag:U1Ub00QX6UofH/FVPW+8VA==,type:float]",
+					"private": "ENC[AES256_GCM,data:xxT2g1glCbQ=,iv:/pyZM5ECNW6vRyBFYPucoNKI0+0IdFVA3NaQVeRVl2Q=,tag:oMiwKpaxHFuaYZEgVW5NNQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:e1mUELQINypiBU7qUraroF7tbtni8XHp22gCiW4=,iv:gOqQN+30xfqRZoeplfBSHl0PJnPC2ix62RdUz/6NGhs=,tag:LwH9PY+fTuTuaPk4+uMDAA==,type:str]",
-						"ENC[AES256_GCM,data:ujmdb0SUvGAcE2neXucpi3gp,iv:BMqh97y4Sxla03ynDUvLHh/dD3V/+/v4LA8i//DQqEE=,tag:x/bcOjwDZzsIXRVvQkzzBA==,type:str]",
-						"ENC[AES256_GCM,data:yFl1Rrv+k7eHxQSwXfkieO7Cy8XwcRJ0+GU=,iv:xv8onjuUUtagEQSNW8PbP4npntB3ziRRr3q5CqO2VuA=,tag:qq25FQGmpCAGK59hTNDv1Q==,type:str]",
-						"ENC[AES256_GCM,data:TgrT9PCpESmOlGuFOrYjXJho1Bi1DjUs97I1PnRWNLSjuEczsWvLo4lmcDcMnA==,iv:cDOtL4sdzFlwe1xvHWMruPEMWb8yBegfxo90/5A+fXY=,tag:qLRTe8YTKVSieBwFY7SHJw==,type:str]",
-						"ENC[AES256_GCM,data:bqO+I9ilCnONVjXQ7cXwA3uVyoo=,iv:wK45UbftQvPOj3jJP0UtWYSmDkoI7IhA5f5pxUS2LZw=,tag:wEQwgLlX8CNkiDjRzkP0Mg==,type:str]"
+						"ENC[AES256_GCM,data:aaRnJbNWWWdWTFJq4tCLVSFXfAEK5+JfbdW0xzU=,iv:FS0vTukhMf9DVMHzkevxdFemNcfkDXh69vxWKA+6brg=,tag:So5Yoia9VaLik8McD1rCGw==,type:str]",
+						"ENC[AES256_GCM,data:kG+B3hG6g6S8lBm6p9+INZ+J,iv:3XFcuvxH7p2BrT8gFDWZgAb1eviQgqwBlk41Z35+a+o=,tag:21pAPhoWnvvK1AtAq3yB2A==,type:str]",
+						"ENC[AES256_GCM,data:84TAEoauDawYHmJV7+fmu3LpsIbvKo3clpI=,iv:xyVDuKjZxQxSxSF2JOXnIKxKgex/TpsmhAZMIDgJ7yk=,tag:BXqWe751/od+4OanvdUsog==,type:str]",
+						"ENC[AES256_GCM,data:mnTT1bfeJ5Kz0UNb76nrY48gpw2GzNQvxnymZY5TGDwGKtK11+y3Vrh38IyVqA==,iv:qPttnk8v5ivDaSXY1t0XXhb9Y9pKonIrIDkhZCfla2k=,tag:J76Yfal7STLZdU7emcjAYA==,type:str]",
+						"ENC[AES256_GCM,data:KfK0Pb7KbhI0yUXaoV9iM9IJKtk=,iv:fPAD9uC+sycDEw/Eli6F16eCRnlMRxhkKt+fnHhwwg4=,tag:caL8VKafgh8cczXdQfH1bg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:NA32Kz8YSQ==,iv:c85JpdASBsWe5AVQWjo5eAqkekmya0EeCQmZYZn3AMs=,tag:beufrNd+V+KYB2KjmODL8w==,type:str]",
-			"type": "ENC[AES256_GCM,data:NvAVYpQ8eE0zOr84eFVAc0RrEgZFFBqkXJBlwekFapOrAqFoJUbgldM=,iv:Ueb3qhTT2uWU9vipslQ/f3o1l1rkYFkFdYXf3lE3ei0=,tag:jH82seFpS1dl9X0TMCJkcw==,type:str]",
-			"name": "ENC[AES256_GCM,data:N7FS/ILIQN6vt9Ob,iv:H3aa9IQF1QsCtr4hernCfM4MiaiuRP0UcwZgQE+mucU=,tag:5cX5WffDKuIRgtrDv1KRFQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:830j+RXmGGSLnvFMTgpFvknY6/0tyFg/ufPWKEOmswWIQaiqUf8jNeU2uqWgllFjUw==,iv:T5cO5Ginh2v85wt/05t3NNGi6wzjOL/x+oYYNEh4Lcg=,tag:JWE2uGV1YIFpxKfhAy/wag==,type:str]",
+			"mode": "ENC[AES256_GCM,data:cwr8UMd+ZQ==,iv:awJx4mttEN3jMaGkwr/qMIycn+iOLHJNmdYrvdRXFNY=,tag:MmTyajNlTf7nu2hHYwRSMQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:xgqClc01ARW60ZiiRCUtsUUtUmO34fLkApP6xvY0jQRl1cWm8g1s6Ac=,iv:vf9honaprV8qQqbPnvsOYJOsqsUII6i1zkie/LeJTVU=,tag:/SMfexHTmIeTY+Xa/27mRg==,type:str]",
+			"name": "ENC[AES256_GCM,data:TE8kKHui5f2YCDWI,iv:CCb6e1NIyQMt4y5L7AZEALeGT1fAbJbGjcXDiN0Im7U=,tag:8FT2RHe3ofgkDqMoYzNGsg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:lfLBU4tavX+wouwHHwj+wcidyim7yKRvuqLsNnrB4n1krLDkvcvxiZwLkZ5PbyGlKg==,iv:j8O10siUiYEqLSah9taoolX0zL62ak5pnIjiltCGfIQ=,tag:gO+DOMHJ6SZQBrmvk4Oc3w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Ow==,iv:6IxsLIagVAQNeA29u3++Rtg5mnhO/FgKHH4Y4h2/vHc=,tag:AVINUqBLk9EmMvZ/0eaO0Q==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:EA==,iv:+4/E9xSId3bBKnOvPy7FJ0PF0iQRzVKw5wExnynmeR0=,tag:V/LLT7g/DMjOzs/LJaV4WQ==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:wwQgm2LVywE=,iv:dEyCTr5i3hZsMqprJ/VBOKegKVGroD9T601exkZ5KG4=,tag:G8JLRl2eSendmLTXzD6F8w==,type:str]",
+						"backend": "ENC[AES256_GCM,data:VydJCvgpRjY=,iv:gu2PY/1YMJDay1Pms73sPm6HyjGHIl9/0MDRMPYYTyQ=,tag:XGXZK/57z7ylaxHFCIjhuw==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:Lhbj7ZF1i+8=,iv:UCQ7GP4NlUYfasLuJdo2Hd1WKueBaMtM+3I805NWb0k=,tag:BLPiTkxagHdIG/Lt9NTL8w==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:WTFwwr0=,iv:J5I8gEMh4SYFjb0TMx0EtpMK7+VE21CDrYDMOQJb64o=,tag:5WsNd6AgZV1byS4aQgFaPA==,type:str]",
-						"id": "ENC[AES256_GCM,data:PKJPOmpLQlUyak8alhiUw2MAhxbjpWlufQClOSLoyZQLeQ==,iv:SAcfBF/F9CbIajAma75KaU2Olo5Megi1CuqCUvt6aok=,tag:LfLP4zYKgrdZ05cuM27YoQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:GOqTA9UQI8fmkoWQ,iv:/R0KaF+sOXEWRlVFtppMbxY9pF2Rq7bJ5AW5vByARW8=,tag:6KeVVYLClWohxFtM46qVFQ==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:h5+Fuo7JGYA=,iv:jQACUKCYEozDp8P+sd/LoBSb28jSUR9P07zz0azAocs=,tag:jvQV3b0TuRsmEHllmZ3WAA==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:66wLd6Q=,iv:XsOvlYdyPMU8vPo50sj0UB/k474SDZnONokqe4F1Teo=,tag:xPWPtwvDyF3+0N2lv+un6Q==,type:str]",
+						"id": "ENC[AES256_GCM,data:C1W4eeHwqSikhvCM5nUW2RQHLWmd1f5/1bNehtaOi9uvFQ==,iv:LXZuOjDEwc8a8UKBMcukyYBPVcX23VVwp+lZXdiX4xs=,tag:b117b3alMNqz3mlBRTx5Kg==,type:str]",
+						"name": "ENC[AES256_GCM,data:fNSQXfnIB0Ul/zxm,iv:cmJ01AsKtWJ1iOq6Ndnv+MypScw4RwY0k+r+kec/f9U=,tag:1r13U3qa2hJdih/aduo+3Q==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:gd5dk08W,iv:rKE12scpF4vbM5NYjubqFCxCrjbkP2VPzXgGfpDshN0=,tag:hof6Lriwr6tq+kV22EzMmw==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:MNG8nRWy,iv:pxA5hF5N+fhHRReTmN4xitm7oLvDAjtojbapf5k8/hY=,tag:A7nW3mLTtx14Fwgx0lpKOw==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:0A==,iv:jGw5h9By/hkhwk8/0gkVWA5AqFIcuTMconLRC1fjdP0=,tag:MNEl7rzwpzWG15rt1Pky0w==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:mQ==,iv:obzFUuJYJGrE468KblD4r4ikdQHY0QRVA6vmm79ZX2o=,tag:NvetoJLL0X6PiYan4MYORw==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:ltxReGDE,iv:7SQ5iakSV4ct+WhKBbIz2tR06zjRIo4U/SF6FTnBSFI=,tag:m0VHhvGLak0mt66UEPr1lQ==,type:str]"
+						"username": "ENC[AES256_GCM,data:xyc4iajO,iv:sjvJemq5FeO8zoY1APS2P20YsZyOwHefPmifAWi3iPE=,tag:MiAc7x30ciy9pUpkcmHrgA==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:kPHb/Pcr8vU=,iv:7V+JMcEDzmhJ2Vx/lKL9M8huddOAL9m/l8LtomxeNNw=,tag:y5qXAMG/NtKAMuEBvn+I6g==,type:str]",
-								"value": "ENC[AES256_GCM,data:E6rtWSpiMUqj8mORU0c/tF9nLbus,iv:WQTO0qcwbmdCAi/sITfHCm7W2+1QSFcjGQDGgfveuSI=,tag:EnwM7ub6GUfL0mkaber6mw==,type:str]"
+								"type": "ENC[AES256_GCM,data:XjuY2uf6en4=,iv:enegTllI4KVebmVjn/DE1ZcWF5JtftCV1tNQgtQmkts=,tag:DxJbZcyZOHadvNekLe4klg==,type:str]",
+								"value": "ENC[AES256_GCM,data:0B3MsSmk58vh8/9mwwRPSAWJ4pBY,iv:eegzX2rrHQf4p4flK3xcSV3KZvC6NNwGLSOsrE9Qhew=,tag:5uE8OilSpipmAIvYd7B+Kw==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:ZQ==,iv:xUYjoHf0L1OYMRJ7dsZuZtW4h5r2J/4+qjxazTa82/Q=,tag:QtSV4eWOzSpIzOssP1lPBw==,type:float]",
-					"private": "ENC[AES256_GCM,data:C0ZLC5cioH4=,iv:/8EmHA34y7w8hl4mMZ69YXeENCVusAouBNR1zvSzP08=,tag:p0Kluy0IYwffz7ckcRqELw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:kA==,iv:dhRKpCZofnI5Jd02kdA6rmJBXdaC9VCo/MteNOElLgQ=,tag:y8wE58XnX1qw43yUNRDU2g==,type:float]",
+					"private": "ENC[AES256_GCM,data:uPatPEawqIg=,iv:sjOENjjqmcC7Bu/fuypAOpTbaAeKaseYlpOW02hVnNE=,tag:SxaN5QAL8LDxWMR0nXP26A==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:VY7eJO35DKWwhgGMv1Szd4fKW/ihflF1b3asqus=,iv:SJEhdLfKEx1tvx/XhF1P5WW2v+zhVgDxfF192842SYY=,tag:A+7+6cMonDR9aVkfPNLf4w==,type:str]",
-						"ENC[AES256_GCM,data:fd/v6o1ec0Xw2iOwOmInxyo+,iv:tfQSZrXRNhu9Fdh4rt4LU6lr6X8R1RVo6VUNb2cgcXY=,tag:7KqPpzFJN/W5Yjd5kfy21w==,type:str]",
-						"ENC[AES256_GCM,data:TNqxbL6p8b/LG9moAO7iwZnhKyp9c1Famvw=,iv:1ef37hGP5u2TCa7RNe+OShoCqE6e9rarYRRyLFragTM=,tag:9ws+sFhA61jTzeWvQ6bAyQ==,type:str]",
-						"ENC[AES256_GCM,data:yO0PWtQvljx5WlM+IkI/M7cPweDrs+QL1rPW9bqamyxrg5SyLfGwAu7yCUzUnA==,iv:t2vVDViEORzhKqAi+u2dIVyZmzJ/cJjfef7zGYdH89E=,tag:LeE1Y0hWOEqDKMPoATZFxw==,type:str]",
-						"ENC[AES256_GCM,data:MO0x5zfpxMBsmVtna1sPTDsO+Zg=,iv:YNykdTU1pXTeECcsvPg8jLFfLH96mqywLXb5kiNHPWk=,tag:q8M/dT7Zk88xmeqHCXVF3Q==,type:str]"
+						"ENC[AES256_GCM,data:SmfIKTgUfAlrFOhczfdFeV5YgYdRURKn1WWas7c=,iv:3P1j7uXGidWOW1F7h3hh6CkTBNEyg6snN0f+EHMQeqc=,tag:pbUMCzZV7oC7X2puuE4OVw==,type:str]",
+						"ENC[AES256_GCM,data:sMgAK2YDKYa07/3tAEcpmG2F,iv:aaj8sqMLa0FVxpnFVJmYqkCAwbeOeBCQweZebeE9W88=,tag:eopcv/My68nT6MKR/ya8qQ==,type:str]",
+						"ENC[AES256_GCM,data:8ms0cp9kz102rxyTva6MQNDZPJQoPoL31YQ=,iv:Y5/vMspvupH2aAh2S5UQIEp0Yk21TgyWYIZKd206CYE=,tag:0JYyMYTQI1zvWm4rLDptJA==,type:str]",
+						"ENC[AES256_GCM,data:g8uhbXVLh05LV5ptyk7UOGreB86Rv/rImlXwJTDvxL913U4e487IQ9NOKJaJoQ==,iv:Nqb6e5W2HWQ+5qymMj2LQVRm1lu7GAmOL/4fJojWXEM=,tag:je5eG1iYaWVGP9LwJijfgA==,type:str]",
+						"ENC[AES256_GCM,data:d0QOIuv+n6XS68aaH7oabaRuo54=,iv:JD4d36m4WlT6jrI/ctClnfetpZhGNOvULiKzr5P0vM8=,tag:UjalOuImg1LOaNzfqvnryQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:OpwqCwQ0Qw==,iv:qGL6SzXQ1LAGnX9cEP+m5DX49JgeZlzYL3cDqgTGKNg=,tag:elHMeOwZLV4XAmxldo1Yxw==,type:str]",
-			"type": "ENC[AES256_GCM,data:t71GPPP0WAMXaI1ZF9nK8/PT7hT15ISTKuf4wvQspEdVS8gNFwdHcLg=,iv:aU3oFolsOH3mPykonF7MzU1ewNtIpw93unm6CTKcbWk=,tag:NNlixp1gUC50g9HHHI841w==,type:str]",
-			"name": "ENC[AES256_GCM,data:5CJkFQlIBic+46S2yU7Y,iv:eJJcTb0zGlGgYY1JevbspAT7v2hunA1/qgI+00f2kC0=,tag:bh23smF4AD9dfZNEy7p6CQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:HGDvBxRzVzj6ETtHrAvfHJSWkSumHbmxhCBmhivovomy9FL7b5ZIZQjfvHi2VBjmyg==,iv:csZyshiLY6oekkmCkzmxZEcJl+ypHsgEeiG3dVWQai4=,tag:krrzFAapgbkzdsFBs3naQw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:IcZg5Pl6JA==,iv:XCxA4+//FieMxb8C+6xl3DuuM81kGbI50/1OOE5CkD4=,tag:za3vkglRLxR/0wqGoALGXw==,type:str]",
+			"type": "ENC[AES256_GCM,data:EqFK7gnmIdQCtochqAtLELfO6yIjrz+X1vKD3gFyGSfSlAKko+4zFbc=,iv:v3b89GLNpEgNmjIvNfPdIjydMKkU2ve+3piNsqALVW4=,tag:hC79OnSXlEr96YC+xeW8yA==,type:str]",
+			"name": "ENC[AES256_GCM,data:vWRVBi73DFch53JF90ld,iv:bHBVgknImwy4OxE0iqyOWHik6eb6FE8uKvcIWX75fS0=,tag:wCh/CRD4181fLm2CXgc07Q==,type:str]",
+			"provider": "ENC[AES256_GCM,data:/CBnuF5UawjY/LhYnGVbNG6fQf5i6Q0tDNI5056aIVLzaG4sk0pi7OChxLcTHdsVyQ==,iv:gcap7Px0nJDJ9SXSer9chMiICiVb01htDZ3SsmfmJmM=,tag:qVId2yckhaaMUyeNghwN1A==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Qw==,iv:hEwS9+j9ZSuurg1zQDIuP5l4iLYMtgUYrXDyLwFSx5o=,tag:RfTVAcHuR21ezcb2cXWNNA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:uQ==,iv:PyirNfmjvrevNci0QHtM+0LlwK+GkJf8kj6Ez5JqbqI=,tag:fpzLxd3J/Id6dPldQVYfdA==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:BgMBCrmYi1M=,iv:0frNPcmO060W9+PTSxaVdA7XtjXsDmBTR7iT0HdBUFA=,tag:Z+rklucj4ojHP19Sghy0qA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:Cw2MrEMUHNc=,iv:04cxhWSr7BGgxtgXx+ux+gQPBC1Bzjn1rVcdNpdiREs=,tag:8NNlX0ypztVPjGw22k1R+g==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:foyjgG/mO9Y=,iv:guxKMaA5wrVbD40r2rOk3n6kOaVWyPhR0yoawaiUwX0=,tag:iidsF+SWrHGNsjaB0uLh+w==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:RvoiA6A=,iv:uwN80nw9S5S01X86WnUIgGGJ8Sne0lFUESmKS+y6tCs=,tag:fs5+qtzbUgMWhV7NX3Zeaw==,type:str]",
-						"id": "ENC[AES256_GCM,data:Ch753VGB8YwgD2YSKS3C6qcDd4MBonJzsk/7PheP+We3SZsV5Q==,iv:NmBaDSCpPQJ2wcwhPUfjzO3imDuAnOpBvSIdJ6do0pU=,tag:CtEI8uuKPhJ0h6TpRbrf2w==,type:str]",
-						"name": "ENC[AES256_GCM,data:MuG23kVNBGdJg/JFCzDt,iv:EJF8mdF/Dan1RouqpzHP20STRkMO8N61x5bg4VEZAPk=,tag:GaNoLs+quVPjqCiKOGZCxg==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:DSZg7ptIPkg=,iv:3vb2+S7OsKMBF5slpNBrwJJZk7bRZuuzonfLoW31ORg=,tag:3oBd5OAU7OH2qf0wxoy5jw==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:ISiQwkM=,iv:bDMJsUa8gdwoR0553fHGgbNs376Z2zUkINYOgVUNWMQ=,tag:FaM0E8Y/AE6U66PXmHIptQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:jNnHLtwvurJPjI24+ezHm/NEgKgh1rV6u6ktHR+5rhXgN+SgZg==,iv:WagM22ajY120Wu9X3dPpTcYQBZ6AuBVevq9rf4dX3sk=,tag:8VfU/sWiSBF9ixWJuoMTxQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:TpzehocurO0NZT9kWPMt,iv:+dktM3gjIvq7tPOMy9b8BtHJilf2SmteM+LiajyWtIo=,tag:bWFwUNfIdghExvCrnovhDw==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:U6hODLNJ,iv:V7xG6kXh9RSXmbkHTCmzZ9bV5AALXYOANCMK6Ktphfk=,tag:CHM1X0sltTM5ecoNT+bwIA==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:E4ultMux,iv:Lhld43mw3j3tVouf7WRO/O89kzjf8GM2RgRQGuVvADs=,tag:DMjbmIPzYeorEFgy9UaeaQ==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:tg==,iv:vMU29jDdOgX67boAN5xb3gkSDB6/Z0gmL3ZG2XR73qg=,tag:IqQaE0DKJi+FIS58oRdbOw==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:xQ==,iv:CMhWr2UWw6xucW6meh5UFa42P5ZnfPVZ7WceVCHnRyE=,tag:AZVJSydqj8eCY3C7lGZ5pQ==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:puIbPmTGJML5,iv:LkR+zD30h8a4hENSNznXddyHTVrne5tpxUC/5kfvxqg=,tag:wSRfBEFfl2TF05QCeX+eLw==,type:str]"
+						"username": "ENC[AES256_GCM,data:Le/bl6h2XrQF,iv:XAnKdDuA5RS8HWwnJCJDXvRiOof7eRD/70mYMcMdwNQ=,tag:yBe3OM9PS1RqFpnOn+hwng==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:kcDv9fYHLM4=,iv:WnvueOKSssysF2TF9wwttNsRJphLjZ99FKs5OXnKsGg=,tag:V1i52eWUKp/pu1iNgnjYJQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:0YuNvF+a0fUpBxkkhsNGbobpKi89,iv:LOMYVa8daZrWKb2KrW/tWT9wmN+u4w2ROb/313S0rSY=,tag:ilANzQdugJHyNi8e7EOSAg==,type:str]"
+								"type": "ENC[AES256_GCM,data:zZ1uQAuGhr4=,iv:onIeE0q07Tmcloq96Htn+BPe8a2EvGuX6KjImNde4P0=,tag:4xFWoGX/qKeynrdPO1DNBw==,type:str]",
+								"value": "ENC[AES256_GCM,data:R9TTRc06V4f6XlHaylcA6MgNz6/5,iv:ax4v+QDjN3FAtKWF2d4Ou/vG/+mIdW+vrrw0ZvnbApg=,tag:ErSaKi4y3VwgSfWIKUfepg==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:4Q==,iv:tpW8P1miHY2/zKKKRhba4vEBG81hX16XMyxEI43yxPQ=,tag:BILixO6WFbJFjbX/98yCrw==,type:float]",
-					"private": "ENC[AES256_GCM,data:mAaR8bU+cTk=,iv:rYhbMabrJKHJnYfw7RCNxzTq3NdK9JWhcx3nTt2tDqA=,tag:otTFRAgMGS5WvXYtuSXqvA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:oA==,iv:gyGWVKyTQZdU8cj28pfD8+U82XWO7VoIeyolYU0lDX0=,tag:2ejLsR9BFGvecJ/yKrR68Q==,type:float]",
+					"private": "ENC[AES256_GCM,data:JeG8v+Em4zM=,iv:xBGcD6rA7SMFOaEsAvcg0VwBB13Kpetudlh0fXHgHsI=,tag:VRdMP5FxMBjESPEWaEtfgg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:sdVP2KHuTUK0GpaWoyxEngyfxj6KLBF4QKsnPKQ=,iv:OYntUW4Nln/I4JioFHuSibSCuyFPrvdShg5xfpAV7zU=,tag:D3yyOmjjPOS0UTVnGz8yYQ==,type:str]",
-						"ENC[AES256_GCM,data:kqEuliQLp380bbYc/vpEYkNG,iv:r0GeY1rJK3f71YUFGDPnJfWtWm1eViUDem/mC+4Jrws=,tag:wvCT3ry3EHfg4F3GUPOTHw==,type:str]",
-						"ENC[AES256_GCM,data:Sutn8nTZJjdpmve1f1y9+w7+qpWXzuhDd+o=,iv:kLAKJqZBsbje0KxDhAk7AwX6IHxLI0b+XIkfxVzqxK4=,tag:bwrCP6I/PVqTyIIwPZJDxA==,type:str]",
-						"ENC[AES256_GCM,data:MjvbLjLz6XO/Jggz+oByVY36bNJuxQ61zy5vTdk/cFmCWu011Gjqz8IMoAn8qg==,iv:3+VF5uaSaicHf2bgqHxVm7jdaZRJ+tCwcNDmqT0NlJo=,tag:E5zHuZNEvMdrOCb3q9i5Dw==,type:str]",
-						"ENC[AES256_GCM,data:pxANyDT20yD1UnkSw/Zx/4b8M1U=,iv:MLArAjyN+VcltBtEGGhOGSWcFk6LLunYn3XTc4yQF54=,tag:De/fCvw6yfRq3H/zq8vpKA==,type:str]"
+						"ENC[AES256_GCM,data:exEJ/BXnGupCZiYL6dlfd3K6AsqTbkSJ0X1sRkI=,iv:F6nQc2L9BJlV2WElCv6Jqvv1lQg1+zGbukIqU2GueXc=,tag:ih5kS1+IkqTL1YpxQZNt9Q==,type:str]",
+						"ENC[AES256_GCM,data:sZf68y7yPp4ykkiXlrWzUAEB,iv:HyVs7f1kac59nk+bRffAVLTD6ECY8lr22hAoQaEMeZA=,tag:jxengKsCoBBeWyipMw3LNg==,type:str]",
+						"ENC[AES256_GCM,data:2jCRVGVTcV5m5qEiFt7gT13EaqSahuoiKp0=,iv:RXQzz/yStRhR19dmxNg0unPh0ym9TIu1imjnNJk8wcw=,tag:/VritpFnf/atOFaRTfwvmw==,type:str]",
+						"ENC[AES256_GCM,data:PYmbtE7bvXYhPWedOj5/a5WZapRK/MWuGz6nPmRIHk9E7JH8xoBSWZ54V8pCIw==,iv:+H7MAEzz0Yx1cRCrcGxMjfhLaJKYTeMAi/Nip0AoBPk=,tag:Vr/kwqsPvQS5QpW7Ib3a9A==,type:str]",
+						"ENC[AES256_GCM,data:d79ptG21roYgWLW0lHZR8v0gKKc=,iv:zbfFl4UbKLMuY9MyhDECyFEjrN7nTsuBb/yifaXUKdk=,tag:b/0+eC3EfMyuz5i3jBjYKg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:QwGsdSgSVA==,iv:a/Np+95XMWLhB7VjOZRsLB6e4no0gRb8kZyNiZZCmkc=,tag:0HhO2JckBffE38R8pux0MQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:nFfLIJ2WLKqfhOHpL+5xb2fwMVpQ28IS1W1dMOuIQOnbBebKpC3gj9U=,iv:2DT787uGj3Sxx/08LhA98ZTyQI2BpGbR4ECazS4/1Sc=,tag:zD9RTceJYfOxDhKjr2jr9Q==,type:str]",
-			"name": "ENC[AES256_GCM,data:SDAXRFjs16fVtSAZOtkY8Q==,iv:YpGOn8V0MtxJiYfSIjI8T8aCSeRcq+XfTWeYn3qEUeU=,tag:zRZmASdBS4H5OTW9gjUR8A==,type:str]",
-			"provider": "ENC[AES256_GCM,data:ab9YamUGEiUq8O6KESRvj8VncHJuZN/YUzmd6MY6IYn5ZY0bI/mUvcxJ8sSrsXe3iA==,iv:0lCG0pVfoHeDb5MXsyWirHHIe04on2XyCuUw8JZgdAk=,tag:3qVge2sxVwbH4dKKnHBrwQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:S+tX/jkblw==,iv:Y4dOQmH8tA9i1z8JC86auRn2VXqz8ShTOHMI/EhwSCQ=,tag:Mnrbfv6LLFQyXZy8hGofcQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:so8lRKyjwD/528s/cBIATTdesDkIEcIjkBIgkpAIh3xuet4hAulcAAY=,iv:7/BE4pIs9n53mYke6FtUVeWSui95idyPsLTjE/j+YGw=,tag:DL0d/6s6benCrsWhPwQelg==,type:str]",
+			"name": "ENC[AES256_GCM,data:sSj57tof29mAMOR/NziIpg==,iv:fBNnNI5stPCAaCn8SfHTn+SyGhGxVK6pImRNrZUQtBU=,tag:RhcT6s2ZT/B6WfI/NtbirQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:r5enBW5ju1aC4Sgu3CQp+rNYFdg9HVqzlNX2LvLdkKkqb42IsaQNCGb3O4phAAijCg==,iv:LmhM5qbYSYPMn2w2qmRD9krTqX/mIod+jkNAzRjVyTg=,tag:B6XCB+4nQ7oAqb3u21N6dw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:3g==,iv:ahbTWEMnCIg6XM4qVjqHgGr2GRWOuvKTWO28hssmPjg=,tag:R95Tvpkj0Y4esvPE05ePcA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:bw==,iv:48L4l7w4jO4BQRCBVWLhyinxVuesbsb5xIvvofKSt3o=,tag:5C80cn26XrdukZvWcmytfg==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:R+DlMCo5U7Y=,iv:tDCpKfbtdb1gw9wDVzPXHTEgxATRstptvHxxzhJGBbc=,tag:7azvPlvZbh9+a0/X9umoQA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:g3NGQ7YfO6Y=,iv:fIuwvrMCw7R/0ZN3kjFkY4hO2wDATbJCJnZCFCMGK2w=,tag:+k8NoL2KVympRNzq4thO2A==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:Q7/AaRZ/1Ew=,iv:UpTqVnaqFstMYYlI9dTWbg6eoMep3s+htzodF+/3eZ8=,tag:LJw/6n3sTqeoJ6SSWzRo8A==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:XW1fNaA=,iv:RBzS6Ijzx4MS0IoPq/JheSTOkWzx4rxTzelPewe1VrM=,tag:JgCNZn7xdQi85aOyal6CoA==,type:str]",
-						"id": "ENC[AES256_GCM,data:yLCpyACjJxXKUnfGDWor38sqYO3XJv4pfiqtB5B362+tKzbTWxU=,iv:yctntKrpwN4fenURBsn3LhMh4MgAubnrKKfZWMsJCR8=,tag:79BfBR4SCZ1io0Za6vxNrg==,type:str]",
-						"name": "ENC[AES256_GCM,data:q6Kd7bF70wb4rukD9aOyyA==,iv:HvPVXlEqlzbGeGECjY6o7UIY06XcKiVmZnUocZtbYpM=,tag:2NdlQP4Tsa+dSyl1+9JoAw==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:hW/gl+R3NNU=,iv:xKoptjEcoMAmoQKka3EVK1pN1+PFufz6P0oo4yHrE7E=,tag:X15wYX9+BjaXNjvXm4NppQ==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:wL+XzUo=,iv:nU+rd5dSb0OfeYUETE1+XYCYY80C7ev1kPFXM0aAb4w=,tag:/P4z+xiAb8isM8S+NFH/gA==,type:str]",
+						"id": "ENC[AES256_GCM,data:Xxh5Xj0jvy7DIy3EU3Zft3Qab23vtr8+H+vAioTkG1WW+nPhBOA=,iv:1gVXMPxkzpgQ0wsT/pnWDnxiz0TKuIoRH1sV4lX2Alo=,tag:oAUYtxV9xxRlz6HO424I4A==,type:str]",
+						"name": "ENC[AES256_GCM,data:D9QxqRw///LEZ2ymGe1qdQ==,iv:Ng8VA5QFd3yz3kZwxo178l3LeFT0EsugTmXkWll5/1s=,tag:ho9bw4xNcygUeREdnpdv9w==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:td35ALUy,iv:hbMb5Q0gNV1WjXSZ8w1/68xl2DGz8QJxEICSDChkm40=,tag:ronYFGZ+JdPAnf/9WqZWxg==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:jvkbmipr,iv:YCRXZZhO9joFA+0OiwqG5Fx8IIIlw8wyNkL1V9/7nBY=,tag:soQ9SDzwuH+IC3FJykkIgA==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:gg==,iv:c1bBjKtZg0x8f+h70XyiMmrO8f1Sw8/VKOmn19zV0p4=,tag:AnzTp/tcL5N0eKmNfYqKew==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:XQ==,iv:57f7+mLjxhsE8CNzKjiiC11gAkV5kss05sLhEUlJQdM=,tag:+VM2ueYEKs5Rq76qiMUuLw==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:r23SoTIUnaSVfg==,iv:zO+RAtf2H+McaGeOsArhd5NYl8hKvSyXpsqDGG55mW0=,tag:11i+m9+mEE0X7a4/W5vU1w==,type:str]"
+						"username": "ENC[AES256_GCM,data:YGw4lD5LXBbb/A==,iv:uXyW8DBciGyPWdhkKNXzrFJoQe4DgtEQlpjlz4kwLbk=,tag:zOnvStZjIts6SgRXyMqpaw==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:u0+z26jJHNk=,iv:fhjiVj8tq7EeCliCn8fNV3dXoWYzEAEgvh3T/0QWR6g=,tag:VTqZDbfRGhS8Q8dvf5gPMA==,type:str]",
-								"value": "ENC[AES256_GCM,data:bWam9qPreV1P7KJUZ16uaDKsNpHU,iv:KKcdr7PCnw2FZDOGwA4W9POachtS53ZVlcqhOtTWYKc=,tag:ixf6IL8J00jsdT4OVCyPVQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:lP6X5GXH4so=,iv:pvpIxuRRe4E1H/yvr/aSinV4lLOV30Qg49E7ZGCJHFc=,tag:kDa/Nrd80/Aaiy5PGU4DBA==,type:str]",
+								"value": "ENC[AES256_GCM,data:0nyLeO7a3VGKDILw5uw3KXHzSMCH,iv:T/Qs3AVtCWwKYvYsSzx21xPQ2moFPAjGkMFqqvXIF/w=,tag:/gUG+JT0eDtZ6KaCECtXnw==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:mw==,iv:h5UX0SNmMIJUmanNSQUa//5l1vN5O23lzKhMMIjB8x4=,tag:/0DdvdjL16p7lsCE4rMJow==,type:float]",
-					"private": "ENC[AES256_GCM,data:OqxCaMM6D0U=,iv:aJYXpEbgEwEoU8QrpdRL4q6rueyYrw6OyZ75OxYvBl8=,tag:6Ixxb/JmyZ+Oj9QKwXoRSg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:pw==,iv:dLPasCjL9sfuOg7BiAPmucHDix3R0hH1Hn4M6mxWYX0=,tag:1fkobvN7HVrz8OqsMtNMBw==,type:float]",
+					"private": "ENC[AES256_GCM,data:7gbAGl0XLcg=,iv:jUVTui3QCmQ1K+MT8leSMH6aglhB6qEdknVRKI4zkDw=,tag:uFXyXmls8IWBnebIMBzZJg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:kPUShBVd8cfYLUWPiflbWtdzpzRY8K7IZWkoihI=,iv:gmk8FeyW1bfjLaxRWTnBPKyAbW2uVQlPzurW4uBUtC0=,tag:xK2xOkBqtMiUPZTmBZukhw==,type:str]",
-						"ENC[AES256_GCM,data:01vR8p+3JT3WpRVJE5c6inyf,iv:N3slqoM24qA8Ss/C6aq57DnCWNzpmEn+tXFtK2pqIos=,tag:MyKfcLBxAfvSrtaBMZJosw==,type:str]",
-						"ENC[AES256_GCM,data:jNr6b5sgnssXCHZG7cGxtQxzpjBCaXxQKWE=,iv:jXLHc8gnIVEDbtVX3zXkuSAA8FJhOMgawKwM1GIxnuk=,tag:4frkLEqKa7h8JI/K4lgUXQ==,type:str]",
-						"ENC[AES256_GCM,data:JYw1J0sq2ZeAEi9GvJ9bKyws/SBS1jtv13SaeT0lrSuizVJUhazLc3Y0Hq041Q==,iv:LTQD+XFsyH9dU35dNfri8Gt3nNUC7KJ9/HvhD6n94JA=,tag:8o6WxXbJZqCN5/RvAW6bsw==,type:str]",
-						"ENC[AES256_GCM,data:fK86ldWr9+//Qeqfsz+CjK/VZPA=,iv:TsuTQ6Bwg3WMMZt1ctMssvtv1hFITTii9FjAcQJiUYc=,tag:O27PAJxeB2rEkEPEL1jXlQ==,type:str]"
+						"ENC[AES256_GCM,data:pED3uuBe74ogVxkTaTxkuxQ6LkwmWs3EbNq0Xd8=,iv:wqf4URRoCyPZ4DlgTyHfer13TKekvNjsCQ1wDl9Z7rI=,tag:x5OKv7hh9S3CF/uPy3KuQQ==,type:str]",
+						"ENC[AES256_GCM,data:a5+jBDKNQFRTR30UB89eX4/J,iv:m02gb2zGoxhxXVjA9Sq/t12qThhTGAYfu5oQSFEu/gE=,tag:uuJhE0hW0cP899l1iDewLA==,type:str]",
+						"ENC[AES256_GCM,data:Ho6paEOXIAJVHYj2yTbZcbOMguBk8thC4+0=,iv:vHH3pttfCDcbNU3JJxkMXfXnVy+3P40URJz9tAPttGk=,tag:8nMdiIsxOxTpORpGQMGWoQ==,type:str]",
+						"ENC[AES256_GCM,data:l41idOvnrHWgbXON7t+zAyWIfmBAP5azga6ZIiP9UpJBnycnBmEgJj2c8BMA3w==,iv:z7FzhOX02LxID9+tnRvq4k32OEBZC00gK12tt5rzEFA=,tag:s+kv/HEBaJIE/6FpcEOQGg==,type:str]",
+						"ENC[AES256_GCM,data:LG2paio/jGIUfB8vCCbOUUwMwHM=,iv:8bVhyir/SgQmRmZizb1kl3Vu+R+vRa48msyUo5+vfX0=,tag:IG47RS7mxmR+TqlKida44Q==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:7Zo0YYuJEQ==,iv:h1AoU6skJpYAFLZIPXWeMx1iMyWZpA3jV5khywuQRpQ=,tag:G1Fgrxd7lsBhAOTWYD5ilg==,type:str]",
-			"type": "ENC[AES256_GCM,data:jA4eqHZDviRlEvhh8xAeOUgp82y1dgT/KbDlUtcQQMTCxuLU5+qy8aE=,iv:0YYEpdrXOu49/eDYalfJRPKO1/TzqL2msShw9vxguSs=,tag:mi+Ekb0wGYNeEgMMJ4XwRg==,type:str]",
-			"name": "ENC[AES256_GCM,data:bMLeRx5ozR/n5PsAA/RA,iv:mtfJRIhOoKZQ25OeOMz4FRT1lFvoZ1qCm82KJaC3JOU=,tag:yHa3TdRRUyFd/HgfRqB5yw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:dZ+yVef0cPJaK5ltoldg+3kLCmcenDTgChGFJYsZh9d8u88RM0d5OtgX6lTSUAXJiA==,iv:d9vvTsTAWBVmLKXS3QQxjKMAbWi6nBFik6LX1QEDxEo=,tag:TSPexPxsI1aOoG0LXlO1Vw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:NTeGuyFFoQ==,iv:VZP5th0HiEEMKxrU2zaCur8FnS3WHaA+IETmyIREyA8=,tag:/nRgf/ytC0QQ04t4FXa9VQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:6zJxL1Y0/Y0zrlIzaYWcky6+xpwKtM/tup4KJtiBUhswg5M8vihNeos=,iv:3qZeGr/s86dIFUdtMWdhO59o4clNepjZ/5T4yuvNbVQ=,tag:/GKEvwFsm0ZxfIjSq3fGhw==,type:str]",
+			"name": "ENC[AES256_GCM,data:YmtyKfamw20G3kDR+EJa,iv:iSDau2dz0dEOolGjgYVoNFdIXwJW2kd1ifAC4fnYYY4=,tag:NccEM9yrrNNmOS3b8uUz9g==,type:str]",
+			"provider": "ENC[AES256_GCM,data:0lWLYTng7+Ob7dZozfctHHd0mUFvbxMlOKGAm05IPnxePiBJooJ77CEDvinLBOvtHQ==,iv:2KsXjIZn67AMTa4mYcYItUqGtJr4CFrd5sO0oEeoU/I=,tag:gI637cqAjuu3isXRujlvug==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:mA==,iv:eqxAq62c7p1E78w9Ao860qpOLaKA6PlCIkRlmKzAl0Q=,tag:63sdepu3hXHU8xqDHXzFiA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:ng==,iv:UdOOfDtJUX7rmhRgrVQLJGIq85xtqIzGa/QMM6wR/io=,tag:PdHX9E1pYkRh02Mn/2Jhnw==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:CBZVkRsKOz0=,iv:KUn4ZTPWiZcNoYzVhz76bizDeS/8IFaPjh4Pj6CRf3w=,tag:zZyKUTGloewqEpzvVWR/TQ==,type:str]",
+						"backend": "ENC[AES256_GCM,data:LHRq+ctj9bA=,iv:q4nPJK2WlDum3eQKinqnDkyQkKkXrwlV+HL1wQgrBEM=,tag:S1rEY9TfuprRxjpWhOwAGA==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:1RwAFuoQfeU=,iv:XlMMUVab0sur96uE58BAuUORMmnKxPLRaTE6/rb0cLk=,tag:GoycWyBLz5Q8uXIsZjTbNg==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:rQyoOV0=,iv:62CWs68To/Oi7aPCaYZDmbZIp8MCJuf7N+QdkG3wMGM=,tag:bhhGq4RxSHE/iOpjcj05DA==,type:str]",
-						"id": "ENC[AES256_GCM,data:5PzgCZyYuiR9459RVrbicB0FbBDoZsgaZbqGe8T+aYp5vdksfg==,iv:5r9EMA2S68Rh075MIk1QodSqkZx5eg1KVETgr/DnFoU=,tag:9olP0/lJqTnqGOukIFvmZQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:2qiKbvirJaavmg0KvVbn,iv:ZRuyMwALKdXRXvRVVLS0bzV9nMvUjtkOx4F/asUzMmY=,tag:cYNfeykqmb2otpo7mbJYJA==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:E0bzFbBcTSw=,iv:GQi4dzWnIzqiNz+xHNY2zb5MyVbCfJYGxO8enArblSs=,tag:Xt+IsJwjZm2NsPDfU2axMg==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:XR7wsks=,iv:Pw2f86nqA0U56MgzYHBrBKKz8xZR8/6fUZ8Qhn6s7b8=,tag:/AUPbP5Bq55hzrrrJUPA0g==,type:str]",
+						"id": "ENC[AES256_GCM,data:tkLu1/fwHrSgJTU/dFjF9egJ1p89B7F23hoDliBSzxouZ4L8Lg==,iv:JhnjFAnH6qEw7x7MPNYT2SdXZ2TQqEj6uoIq79yNnzQ=,tag:QaIJZEwIWZRWrsS6H/gI0A==,type:str]",
+						"name": "ENC[AES256_GCM,data:7vjb89gfkbNk8ik78Eyr,iv:yc+HqvSitjmY4yhB/vfZIs5sSh2rgUY17O253P1yDTs=,tag:FRYtHHCtmWTSKYqTRmvY/Q==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:FAkfgkpP,iv:SYJUcY6mwH0VB91gog90rMKzUGbWeaZwo350rkWe8r8=,tag:iVen65gV0ZggxDzVw31bGg==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:KTAJJwGd,iv:XLqrLPu84TM1UxrIkx0RCc3yNpW19S+oDpXAWZDmXJs=,tag:YOAIZW9Q9MLDfRABG/QInA==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:NA==,iv:CkncXOuLtHJdKOk1G0D/yK5DGtuzz8EDd6wGJ5Vqsy4=,tag:C79JZA8oonGIbMbj76uN4w==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:yA==,iv:3QIEZP9vhMDg1jmOx+XPy1+RIO+cRtwHDlyACvmbc+U=,tag:Is6RNpe6YHWgyUWXSNEUew==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:vJUCxM2XalfX,iv:oRTk5W9C9h1i+awSZeJjmdgMKj2VJCvKtcPDwVIvecE=,tag:NPK5o3hTRzhdjVKrkSO0Hg==,type:str]"
+						"username": "ENC[AES256_GCM,data:560fyTBPpsnV,iv:PxrZP5ezNQOb0XSF0S5H6UWatbixdKxmsLEsYRobb3w=,tag:hCAerOlUJpDWMdjWpc5FoA==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:XG6Fh0TxRFc=,iv:RGKQgNOLdRWQ1hEMcE56wi2I4N//XJHm3MT04sglKbE=,tag:gRVYee8SIQPO8ckYIaYXgA==,type:str]",
-								"value": "ENC[AES256_GCM,data:6su2+C18h+6mB6VF94b9/pFDDekQ,iv:5Q5ua6CqUEHNKSjFQVejNQfXylbk2f1zCY18d12Dnlk=,tag:3cLL+hYmyVwV5nurnsDGog==,type:str]"
+								"type": "ENC[AES256_GCM,data:bCxIj8yDXRg=,iv:eSiwIqS36b/YBIP8OPdpHe/mLASpHw/9ZZoL7z1YnR0=,tag:pIY1S/4aJNyfH9pR9/J1kg==,type:str]",
+								"value": "ENC[AES256_GCM,data:4PiOveRemze9CRkI7fOmVSIDJJ1B,iv:PqFd2R0f6gq46Vm1hpgTVjCyk6xThEX30ufmsFrPjls=,tag:NX4u7lfATRlZWZ+zfwV1OQ==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:Iw==,iv:/kgbcbihk2GdPf3fRkq7maYEVsDbHPXieaVOJcxq7/o=,tag:t4zyX9j5PplhyALg9J68Eg==,type:float]",
-					"private": "ENC[AES256_GCM,data:btKVwD0u8D8=,iv:d2Jpq9nx872DSDFuMmLghtOLWsgng1YPUqBOb6joUdg=,tag:50tX+BVGYmgwKecpQT4GOg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:8A==,iv:pqQKRRDppZkAQomJAAqYahyBj0FfYy70t5gVFHcWW7E=,tag:U4PY9Rx6yhaxI4kNhQ1INw==,type:float]",
+					"private": "ENC[AES256_GCM,data:debdy1t813Y=,iv:7LgvZ7rnCUeYN/xsklAzUnRM7ku4fM/Q1QOQ5TBLREM=,tag:s0639180ExZJxw4QuEsNJw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:4FWM49XvyfJt43jG8QCx1aW3QtKk5wIm2SU8QnE=,iv:XekczKixXe5PnEABeglplsUfiBX2cDuL935AZ9FCoh8=,tag:OIu5ZaDhnvHdtCR/aCDThQ==,type:str]",
-						"ENC[AES256_GCM,data:fpO57ZfGbtqAQa3Hy6MJG/HV,iv:RRx5Ls8RGxsRjKk+zxRky/6eFWDHKUs5gz9aCdYn9Hk=,tag:xL1Lq3ZxB5+A6Y4xuJc+zA==,type:str]",
-						"ENC[AES256_GCM,data:8wXKdj2mPuFKyIbI0D6+mbp3fYqNj8HudbE=,iv:pkr1GqaSxZYV7vtPaA+eHXJJGQlkbjCRqgLBd5uJDNo=,tag:G17y7OtWg2ptjfgAaxcHyg==,type:str]",
-						"ENC[AES256_GCM,data:hzRX5JIublrxNj6K7tAiKAnIMnbm1yFzkyWEs9kfloWG5aV9NSn2nKXNkjnS5Q==,iv:ga87625AN8wLIzSMhh2tC+IRWRJuLyqqwvYSiHwDCfM=,tag:47dTnCgonqSc1z403MH0rA==,type:str]",
-						"ENC[AES256_GCM,data:OI7ZkpVN+HARz2oIltTR7HSmrnM=,iv:g+TJ6mMP+MsxkjppWEV92LDUySv5fr61FuJJgWAmJ38=,tag:Bql4D3m9Cmuxa93zufRxrA==,type:str]"
+						"ENC[AES256_GCM,data:N36rCO2RlLuiAt7TLfxN76GHoE0+ueXYXDgPqGs=,iv:eAcL8iAHOo3dZbADhehFr42ZA9FFIC4yLaN3vPuh5oA=,tag:mgj3ZUQUYqhfVGohsbgx2g==,type:str]",
+						"ENC[AES256_GCM,data:ggT5U/xipbe2eDIZ4BGf/BAi,iv:FZzCF6HL5umM7K1zf8reYtpkSwArVKbxf/gbN5kBhGc=,tag:dBfyIGvwB+CNXV02VzHRJg==,type:str]",
+						"ENC[AES256_GCM,data:o1v8xKIciutT4Sjv6M9lRWPFAZM/7mYQb+s=,iv:eDXvu9cgeDs+HXORnw3V7VD0Nura9Jj9O9fIh5uJ8yg=,tag:5nI2C2jmM1ESmgfqAeHqgQ==,type:str]",
+						"ENC[AES256_GCM,data:bo/3DwMM4GDyp5v9GoxM7xl8p4syJJ3abQrwuBHLB4xkutSFkRYVkeaK1KB58w==,iv:8DZR4E8Q+UcgkmrQ6/VGKkRPe5PgK5i+4peA7zjb4Os=,tag:pa4LuXPbAeY3deid/YdnaQ==,type:str]",
+						"ENC[AES256_GCM,data:exaJuD8FqN6HH6tQPeCzUeK8FA8=,iv:NzO8bBVZVvTekixCAjH8Q408zuYpbsEz/mkF2w2fVvY=,tag:puPxRPUIJhjEbXoSzMFezg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:RnH9j0dPng==,iv:FqsoTVE9nRKzWNR9sB2dw3IB/qYWXQAmKtcOeApULio=,tag:u0akc7VPRs5StE6E7Mj4Aw==,type:str]",
-			"type": "ENC[AES256_GCM,data:OwXJoOc8uw6btu/hCuYDzK8BT9zIpbq+innEHqPn+zQmHVI0gUIGGqQ=,iv:f87TcsUxkN9gqZzSrfL1s7WwH4xN1h5rNy+SHpqgCoU=,tag:1Gg8IkaYu1Uo6Xlq3kKkBA==,type:str]",
-			"name": "ENC[AES256_GCM,data:6Ro/3KaPfrsH,iv:RgJMxjX/fWWjXltXvtc8WqwMxkLK4OsQYJnPG+DC7CY=,tag:JIAtu6KoT2Y+OCA752Iuug==,type:str]",
-			"provider": "ENC[AES256_GCM,data:haPVmUXBeoaWIp1aY3Gw5Yjj284dCAjnJYdffuso+ASGKc5iA5ARfqpz0O8oTDPT4g==,iv:ZbfQ94O+RieTbGGWrSb5+14uCICiCVp3frk71cdo0cE=,tag:fSGcOhyJnEWB6Q8tMykebQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:MQYvbzY1VA==,iv:DeWL/gT98Owd/BTHbeFZWWNgzaQpWN4IvtY+uj5kVns=,tag:pvjgHuLWePyqdbDnJ2gBnw==,type:str]",
+			"type": "ENC[AES256_GCM,data:LygEzeK68h5jm4r2to2snAONQah48OjCGOHvCe+Ysv0sMiYl/SvgKJM=,iv:p08tDTsJPmySH6zommP5TNj3cTZCaeT13jfUFGPMw8Q=,tag:MRvERgpv/KHPIf0WrC6HiA==,type:str]",
+			"name": "ENC[AES256_GCM,data:P9ScVSax02cq,iv:Pffwum+M+zdof3urRs8ZN3zx3j4uIKyAK8UJDm3iBMk=,tag:7C7/hp/OslJ3I8IF9opcYg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:XRwCSAdpbfTutPY82Rtw5yimmWjpMGjJuIR24BLiUBrj81H29gjmEm6t/zJK1XrW1Q==,iv:fPo43n8itIuLHGGCXYd8x56N79Xpjg9odjT7uO0e3K8=,tag:sH4DYXdr0T8E4KLYyEDCEA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Dg==,iv:ySDY8iwW5uJRju9c3CtYnje5cnUjt3GfwtdHuVyyx5w=,tag:Ixjtr8UzB5BhpwHvc8PexQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:aw==,iv:a8TKWzt8xXj0ACd3931EpC2mQp70CD4JdY1nBsRNqVQ=,tag:1NrlvtZX+SQH3h3FMSx6WA==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:O5SH+1bP2Ec=,iv:hU4r5YkwNpXODnrLUQwOLnklOl+6mjwxa6nEv2XUde8=,tag:2Zm/8aA0aJj57SUbDSNPew==,type:str]",
+						"backend": "ENC[AES256_GCM,data:4V+D65LuoMM=,iv:V9wlTsK0s0lUNFD/Bn1a8xWyo9KKtYmG1nyDsCCiq2k=,tag:MPK3HGi/vNkoXIWCe1ThZw==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:cHj3iXuanD8=,iv:zdliRn/ICMhtXeU/KKuKY3PpM6xky4Z1XxUPKuqBYBc=,tag:JcWo+DmLtxoM+jOZ1Hl8ug==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:cjgy2xim+x5UXQ==,iv:eqpEzUTeGMtIrl0nPF8oM44+wQwDWYi4RkCNAUkrtJ4=,tag:UPlitNPgIrt5wtggfdp9aw==,type:str]",
-						"id": "ENC[AES256_GCM,data:PesDZKwgM0T5KnrUPFZgRtvhjJe9GHomF1xEZsk+2A==,iv:AuEBw/FF9pVB9TgLaSudDtv6xwX9F0Fm+4vAmnUDFmE=,tag:1jju0N8n6cBAdkbTBR7GDg==,type:str]",
-						"name": "ENC[AES256_GCM,data:eUC1QsooOhZb,iv:M3bAX30red+BHWpFTbVLkHt5GU+rOwUUVQvLn72v+Es=,tag:kIyBmu2hbDeM3D2nLeacwA==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:BmvK7rJUCxM=,iv:a/UN7yIoVF5YMpgyUd79aiRQoyv0w+uFOGeBMzvUlL4=,tag:hTf+D5A0oX20TFirc1xVIA==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:4++bhLKe/+Tj7Q==,iv:xRk0BZoQvmynn5H4FtEz0t25WT8/HgYEzltLo3RiqdQ=,tag:RwrPVee4IS4k9HGYvdjDDA==,type:str]",
+						"id": "ENC[AES256_GCM,data:7Ir+Rf2ySpzP+n7CoAVB9cWVJJ2lgS1Nli46F1djkA==,iv:t+1jxLNbmnCUd836TGn92ENy5NuXW7n+tGnMZc4r5/8=,tag:iQBEIYRVf3zKRYnQM1Nnmg==,type:str]",
+						"name": "ENC[AES256_GCM,data:2/cpsjmBwDU8,iv:Sy4lWHK16dLksmZvaswyszIzOKBMkMj69D+H7k3Ncvc=,tag:ACXxIT78qp+GoxjPW6K2OQ==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:A7i9vQfJ,iv:lzNSVGdVr+PklyeCjUGXWxKy2Cj0OWSpHZ/Gpr+oAHo=,tag:Cwu/GyGxdyc3Kc2Qx6Xg1Q==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:RWlkEh2A,iv:Fig4ZwnmPVRRtX/9XD7H3Ggj5QG8Zvt5epYQ9FXu2eU=,tag:HMGMOWIeNVe5ZFkt+zbIBQ==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:1g==,iv:bsCkKwIiNbLMwSO32ixQ+arun2qazP2r4SBvhfUoefU=,tag:wqimOMNBkECClZdxmw1WEQ==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:RA==,iv:rlyb3kdsSrPSy3aKQmvd5+ajw/v5wmtfqZtANoaeMy4=,tag:GzK8soJDaZFaIfYXl3V+3Q==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:1Ry7aVyn,iv:UzilXNQ1ruhhsR0hjBzD4eYjDsxLpZlEo4fGFVWSy3o=,tag:yFeTkmeaa0HWSPqq+u/wGQ==,type:str]"
+						"username": "ENC[AES256_GCM,data:TS/q+JgF,iv:oSTvIkE0BFeGUZ4s8sLphqGIhDbrNxob3Ewf0em0yr0=,tag:/tMrR2T7IWRJbOBxYAGJew==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:JPXKcTsNFIA=,iv:1FIH6az7goNKMvj1E80sCZf3tHMbl4IkrMn9JSeIBqc=,tag:HtXS/I7idYQy1eQGMqwuzQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:2hzCDvBbnbcNn1iC1cKCWNtjzXff,iv:tLGtQ/pbcvBvyjBdblqLrN+4hTc+shixLYEWkHXAXbE=,tag:8DGAgXZC5nwQcDEpyn7cbA==,type:str]"
+								"type": "ENC[AES256_GCM,data:diUtC4RKHfs=,iv:uYIOz9WwRjh8zYZmhEiZnnIptQJH0ygVc8Epakmmyw4=,tag:HrKi+mt1r+tL9VD+o0jHcA==,type:str]",
+								"value": "ENC[AES256_GCM,data:kkqcuIhLpqmaL08Q0chlXvrBH+IG,iv:J7KHWJ72doGVYTdvwAO+5pgehAwQD1dK7lBBAw0bJfc=,tag:98qerJogUfY82xJmKy3lwg==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:ZQ==,iv:443ddXa92cc4cJUjGrvN0GzxJBcFS2D0sOtt+bTvHl8=,tag:5uVJsjI4S8nh/98QN8kmww==,type:float]",
-					"private": "ENC[AES256_GCM,data:uGle/bBVAZQ=,iv:OWmUsAspOCRbAQbSpjqOgkTtCe9uMqCt+YavQ4hI+YI=,tag:QdrmQm4kLnoyoUpaQh2SSQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Lg==,iv:D7m0cScItDvxuE9WuAY+xd/Kb1VmXLY4DAqx+I2GTs4=,tag:XSGyH0WZJqNE1QkOm4Cjqg==,type:float]",
+					"private": "ENC[AES256_GCM,data:JTO/6hfP2rs=,iv:vVanpwHUkPE4yuhahoE/dQy9mp3kkBZEoZ0TLq3OIAE=,tag:SvDcK7lx+zEuQ/yZhsqxow==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:ZD25gA9g4LXYjIaHk1wHmJTDQwyfdDQQKOMNUG8=,iv:kEc+XMAZ8XdksP1OzsOMWLrz8NBtbL6a+t0JJJ4Dabg=,tag:PpbwAXVUHKc7kiwTs+OGdA==,type:str]",
-						"ENC[AES256_GCM,data:JLNotnAL87okA1V5dndVq+Vy,iv:3+6Q7+8izQEHXDLfhUToBF8HuIIv4wH13ljvcBeTKgo=,tag:U2Mec7mqADQnnDeXxEKIjA==,type:str]",
-						"ENC[AES256_GCM,data:RveaAY8APFp9AJnYQwGgM20+JCzBCp8VFuY=,iv:vE2D0P1HBAxinSs8xvozB+9OgU+qQFDLf5r7/qIaLek=,tag:FXG6KYAjq3UYZFoAjieUHg==,type:str]",
-						"ENC[AES256_GCM,data:eSKx8BIcfcMYU71sCMUf4SABxfD57VBsxMCQ1erDmZhokCl87rzNPBvcfyRmsMGG/2gK,iv:MciDtP9Nyd8Y/LYOfvcMA7gqj4VWGAQpoO0nNpvLdOA=,tag:KOtbQKPUXisgrpXhTnBnzw==,type:str]",
-						"ENC[AES256_GCM,data:Gfy50A7EdtU9U7OXc6UCF98ogxM=,iv:UU3lXKrrCv2pUsQ2q+SRUnnl+gOZptEcOm4GgdZuPWI=,tag:p6ERxBx4qegTa/UJ26cNew==,type:str]"
+						"ENC[AES256_GCM,data:mFVOTU80LtEUaj2pinLDxYTyfJVQi0igvWRVH2Q=,iv:7h/Lq1IZri75DbUURz7SDNqThprmtQY8+0kCULsucU8=,tag:JVU6r75VHiZltT9M9IZ1dA==,type:str]",
+						"ENC[AES256_GCM,data:8YozR4+z9NSMbR3xKjtcBYfI,iv:CFxJxO3TyVMPcJjpPi1VYCD+R45bRQlnL/DTFRaC7NU=,tag:jN+WJ353EC2hb88FtZAJOw==,type:str]",
+						"ENC[AES256_GCM,data:rz17TKndzWWKEH4G8Qvc4BYEAJj4mH7RW80=,iv:1rH7AODXKs5zvD5z5aqEHNyqtV5xG9r5Yt4nYioTGuU=,tag:mF/S4NpgpGylA3e8wVHhUQ==,type:str]",
+						"ENC[AES256_GCM,data:srqoKXrMbmGLe02ClVNiFa135wtdgf6IYKkTf+Q2I2Lup3BIpEkf4P3eJGC4Ru66yy0B,iv:V+6JTCLieRWzUrkdSJiHudLqoAwo+nuahaKfIherbPE=,tag:vl36aJLgyc6W6P1D0pPdRw==,type:str]",
+						"ENC[AES256_GCM,data:7AIL4bAC5tiReXnAjZfdafbUFjc=,iv:/JeFosC2mInD9Vsw7Rnf3F2CVx0fanlHpmqNwz7tvaI=,tag:P3JogALDnWv5f394N3leGw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:su4Uz+QFEg==,iv:Bp7jZgrqCdvamEWJuXCA20yGuMfil1veQqR7pT84NVk=,tag:cK+2oDr5l6qPxp3OGsGbaA==,type:str]",
-			"type": "ENC[AES256_GCM,data:DD3h72+auyy8vDW8lJqjwEPW9jXZHF7ZEFc/nqh3N9uwY8uZVg2u7ww=,iv:hI8OQ2m4oLWPNK2m0woWUkalkjkZvcnnbCXfZx0QIPM=,tag:p57rSbp69N98FfKE7R5JvQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:leGk2z7EKAA5bHWzS3OkwQ==,iv:qAFPz/oGFRklqVok6Ada0TTxcjxs1+APaHAlJbhqfiY=,tag:3vZNX1ZNYBZl41AmLGQaCg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:ZR7zhtlj9hEjhCFmHI+3ktL5pGdxoK5LvwOEXK1asHbMlg5Xrr8MHfAFoyLEWd/Oww==,iv:HHbMcxiuLSRkUSJPyX5qRuqRalKtmpHNOWD5uAw4i34=,tag:RGpEtJo7sm7525L95I2xpw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:F2cxz5hZzw==,iv:imRPxURIUpMcweng49cANMmMbG58CZDsEkpYsV9NIbA=,tag:VqnvypGXhW1sNBktyVFhGg==,type:str]",
+			"type": "ENC[AES256_GCM,data:hjjVaIIFb4ntgrimGgV3YfcTzC/O8SQjxwCA4h+/XELnZqCupdDHNtQ=,iv:DFLnBH36siK5HKJ41916SjHu802IFBnWHS7phNSJz8I=,tag:XTW0DxkgnMLM0d7EcXpYsA==,type:str]",
+			"name": "ENC[AES256_GCM,data:r+jVs4u+i+3PiBPaVyc0vw==,iv:fXwB0mBFdV7VUzrMOOleUaAubs5NOzXDsfMuSE6B0fE=,tag:M/7s0qvwie4t3F3cePj0Qg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:GYej7FzRnUFA57Y+f+QdmcWBSO0XubzIzbgDRqZGCG+R5aqbQK5CqHvHvQlR5SbxBg==,iv:Zdng1kRKUHW0aj0KhYxCvAfYxpVj1Tt4MLOH6Rtr3yM=,tag:ayflbd9Ed7EniUipONY8ow==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:IA==,iv:gHF+hkC4GfKa0jOQjSByjql2TlZyipKV4PRvB0L5Jf0=,tag:h3zdHgUXodcVqXPx1sAQGQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:gQ==,iv:5BHPz8Os8KVJtm2P8Ljnmc204Yg9Ivuq0XAr9wjNRds=,tag:iJ3OTay9Iz0xjB1GQg03Jg==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:w828Ergp3NI=,iv:IyUplhUSSlyWHA/TiKYm/1C436VHQ+4LXKLrBgesB4E=,tag:6sVD6NGby1iFY6MdCj8hXw==,type:str]",
+						"backend": "ENC[AES256_GCM,data:ICiqpLLga78=,iv:I0RpiRNwARXMPQj6Lkf4vJbc6GKMJ6df84rJGGWGTog=,tag:93W60CveZfGNAe2kbGYwFg==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:vKKzhNMWzvU=,iv:5WgqQlSC/Aogg1SGCOd5AJHPz+8FHvbBESTeBBPNAVU=,tag:6Guj6UXw3tVUns0cH0fRnA==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:0zpd+YbDsjVlaw==,iv:zo0Q4QShT4LGScdrs1UtWcSeOox6KkfTmevxysupMsI=,tag:ToaFTOTURKqwXkMhqjL/ig==,type:str]",
-						"id": "ENC[AES256_GCM,data:dHkLv1fJ7KfhhzLObOnk7fvQtUgb/Pi2fNmhbDLEZdIWgT0SVFY=,iv:1Qak8i5WqaoR3stlDn4pvxsNkhGleixqyvpOxNnJ5ZI=,tag:K2d0xGUkIqlmOXNFDwK35A==,type:str]",
-						"name": "ENC[AES256_GCM,data:ujNbknjr6QJR91P+k+YZzA==,iv:/21wpb6fz9Uf5IehtZwj0x2QLhyompZiabHRzJKur4s=,tag:K2fmgQMDLPktmrfsgiGnDg==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:1A8ekeA8+Pk=,iv:aHmcUWQ+Mibka0m48WEWvKHCaC5xJOZp7+xhD4qQ+L0=,tag:pliU3Mih5ksicXnz+Mf1Ag==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:9cDysjlpj40cXw==,iv:jdW6NWh0oykz88vF1VDhJaqDnI7n9XeAW60wjAM/b6c=,tag:4V+qZQH36yIY3ybPQ2Fu4g==,type:str]",
+						"id": "ENC[AES256_GCM,data:2k827qrUV+L2ZOj6d+mpeSDbTJL6mzqaknCqLgBz+SemvcdA3Dk=,iv:ZobiU+lIPA1/06CCYk8hA9RcltsaGnBMU2PfTPcnItA=,tag:x60VnVJzBddJ26uWFE0J/g==,type:str]",
+						"name": "ENC[AES256_GCM,data:p0WaJ/UW7diA10Bmvsah3w==,iv:3+b2VDCKNja+2soX3nAvR9YqgRzvL2QuozqMs7GLK9E=,tag:W3nLjK/4KDRJfvKy+4BqFQ==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:zU0FNRYu,iv:E6iOymq3F18b+uJCK2D0baqtXkbyVamNUeWr/mD5hes=,tag:rKlDWTPAs4zpXeOCF7oqhA==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:HlsUpb3e,iv:915yH0NKH1eaY/VaYU5I6qvQOZx5pPZ+BgdFiUcZG1I=,tag:FW452MajPx/p01RPmMVnjQ==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:MQ==,iv:94dJLf4+RzhWVoskC9j2ZmjxzQx6Cv19sFKkGZDu1JY=,tag:UdIX1cbLBXd8M+T+LMgO1g==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:hA==,iv:7f95hgsUrQqofnEvIaZ8OrhG7d1XADOcNH/X9QRZTZM=,tag:wzx9E2BalEGJjEO2ZaBC6w==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:3LmYQQwj3HVDj0U3LQ==,iv:oZiOuNwedc3eliYMWCAaabceLYbm3co9j1YaLVjyQ7U=,tag:Lp/oaE/3qJuWRT1Yx0Vhhg==,type:str]"
+						"username": "ENC[AES256_GCM,data:r+YMZE3PcqQ0KhJmmw==,iv:GPw8ttgX0cJDEjwvtLJqMB7DtLWTQzm+a1VDzQBe9mk=,tag:ZwRooHTtftGN2HNeJsIbwQ==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:e+9LKWlY/rQ=,iv:dxiZ3P2ojgGqpJpjL7CdqlOJnMSAOn94oBQWY7cK41M=,tag:Zq09d1uqMWSeWi6+If6/iw==,type:str]",
-								"value": "ENC[AES256_GCM,data:OFZ2qwqxKT8p49kngyAfDOj/DBA1,iv:Sk6Oovct8zhWSn5PnD9RrAVxKVe9iaqhTuYMvHN9hQ8=,tag:9YTwbgcJeQOOOZwTT9h7SQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:ugY1j41m0GU=,iv:2vm5Wabx4jZD0FZORO0T3TSE1GiKhl5DLvtFfaS4QnY=,tag:IVoiKgoSxKvDWg+g8JxFqg==,type:str]",
+								"value": "ENC[AES256_GCM,data:ulqdqry3F15wi2B52QziHve/SQAh,iv:ZdvIjrDawmmRRw4z0cwj12u06IQhb5XxyoJpOKlpMuo=,tag:McFyy6wVWQtnv7c6RFrVLg==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:/g==,iv:3/vmjxCXlVJlg1jsypU5MCpqmRtxal5/eVBoEJ4sVLo=,tag:lBkTaECsiJLGIe4fW+iaqg==,type:float]",
-					"private": "ENC[AES256_GCM,data:k2+wy0+vY/U=,iv:UifgQTsZNegzXSdWk1k1iYCfenbb/UqlPEOOLj31z84=,tag:c0oGsOqRmoGHaKoY1iBMHQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Lg==,iv:4bn8WwjJhfOHtK1y/57nGSwte8Pkjo06r8ICXsbGaqc=,tag:B4gud7Ty+vr8SnyHD5wacg==,type:float]",
+					"private": "ENC[AES256_GCM,data:ClKOySX52gU=,iv:Mgj5QkLAt/dR3zUMj4KsQ4iCeEUoWDYEGcjvsK35xic=,tag:s/mA3qLuqcGNmYKmjCGjsA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:SaxHdjfMcD1W4OT9zWViUTlhdHVwvc6QZCtLp1s=,iv:C68/8lGI6NPiXtIxGG80IBxBr3CiclpCFmrQSu62yQQ=,tag:JgpsHdF/H1GblQAha27KqQ==,type:str]",
-						"ENC[AES256_GCM,data:jciNC5vj7kXgo7Cj0QGnK58F,iv:UMnzrzLVZQC26tCyY8ng9JhBLGfdbEcG6Nkfrexp8rg=,tag:haPOqi2k9s87gsExLTdb2Q==,type:str]",
-						"ENC[AES256_GCM,data:Jav4wUEwWuDljhE1ziWNCe+7TVTgaTMaI9E=,iv:Ebkg0ioUOM6X0GhI2Xj4SgiZJkjKeH525beL+gxlMXI=,tag:53frpRj4SAz+qiKi4PLt4A==,type:str]",
-						"ENC[AES256_GCM,data:Ji1OkCGqNkMgRjXZK6MPGs5om8BAmnGSiwKonfxz3jQKp1GKvcrahihgn1AXtFq8tlz1,iv:NwHR+G5a+3Q0HHyCSYBaaQwFMX2iweHiHE/3GQ7fJzY=,tag:BTZ8dpPdnMhuE/P+aJO7Jw==,type:str]",
-						"ENC[AES256_GCM,data:JlsEHaqpStVZE4Roafvq3uV2vI0=,iv:Bss51z6igHDiRsILZF6TWewC4tftIVoVaj58flcv5SU=,tag:T2uQQwxRTjkGn24/zHUGZA==,type:str]"
+						"ENC[AES256_GCM,data:WTZKh55rEIYKjULPbZmiiJdd7ZCoGdn8PSlYyK4=,iv:xf4v/i7o9580n/tm8EKZeW/J6ZTs9mH8YBJcBDQuIa4=,tag:966WBJyJW8ydGax3OqTHKA==,type:str]",
+						"ENC[AES256_GCM,data:4AzUR6zoUFWmHMhtYag0oDgB,iv:R5werbOZlZ3+k265xnbRpFIDfOMs3tcBcnJNv6OAW5c=,tag:sRfbupwIprIGAWXqgvE/iQ==,type:str]",
+						"ENC[AES256_GCM,data:WOEPwV7DA9JNXX5s7E8sdBgxvnbBAcz2wYE=,iv:Z/VDVeom11WJ/4okRdsFvLvyS5v8rHGe5Eo+N/8SW5A=,tag:WUb7mab2D/D8L4QVEnkF0Q==,type:str]",
+						"ENC[AES256_GCM,data:h/I3CqXwi7IFR58UlpNIqFy2XWA/5CTrxHYaSy3+xmoBO3V/k3EY/dKqxmVGXv27H9HF,iv:Igk9sea5iruaLKTosCikAaPqw3mf37SjIVxtflV6+Nc=,tag:LuTGvMccUtRb5URDkR3UHQ==,type:str]",
+						"ENC[AES256_GCM,data:gH+kmz5FcF0nF5Jji/wx42lRpsw=,iv:cQqbH4JAfFyAnIh3dop9EJ/XIuhwh7uiP8Ojy9/fBs0=,tag:xMkvfVOB6WRXxaPKlBI/vA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:UDOnWngT+A==,iv:n0OWImyLXn9p0cukD7m/EYaYGTcGNVZH9HIW2K3WpSo=,tag:UAm3dIwtc4pitqg+4AjVBg==,type:str]",
-			"type": "ENC[AES256_GCM,data:Wvh9QGwI9VwTrnyFoszZXdW/lCkBD/1xHf8CsILxPFpwZBNQkKBjdIg=,iv:HGpzA3FAkkOWJUm/2Svav8LFxp61sf+R5p2IDdwQwCE=,tag:222az6nHqUCCviNx+skPAQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:te0linKIY9DGT8BPBUZM,iv:ReaC+8BZyLSKxefAHRAWM0C3P47zvSJiN3q3CT6PZw4=,tag:wbwQ3AONk3fZ/MTCDZS1/Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:XrSVM5OPZGW9apXS6w0kaUJfp2Bfn88O8g/nVEXfxbdBkiA6i6jBr/WYO5ud+WP9cQ==,iv:2NecRVUlUbHB/xUEXf4vAbX3y+KHEg7Y6UNMFuIA5fY=,tag:neXmC4l12Vfd9sTWTiNywA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:zakfuUMt/A==,iv:Ewuq74tureyYUUc9soasgYMlGTQr56Cx5kb1O0Du29Q=,tag:mli8f2dKCkDxXQFgenFwcQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:Qxj3C3pcOheiVDU6UWSweU1XCuXSg/cA72Izb0JhKOMvpdsN3mH2dkU=,iv:i1Pp6ahFqqpQd10osLDhfgZSuRKYAnD2U5d9zjwOG/4=,tag:Lz9S6Dp1tRiJn5AjksT9GQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:FbQLKppkovFn,iv:yH0VAOX/Jk6SoghqZgkzC1S/Fupzf6FHL4b9Mxhk3/0=,tag:SorVUgqU3cgbu+l/eYdHJg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:6kRNBpAwMKmONO+4rDPCLnskPRGT6JhtZvYxo3I/7c+SDJcwOQ8UqlvIxTewuLKmWQ==,iv:kxQnWuHaIVKqHvRtsGUZv8Se5oP/jlFRmrBLhOHXMi0=,tag:NVhFh93RP3Ns8P3qs24F3Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Uw==,iv:GmAixkQjcAPsEdWpMhux/gz9Fjp7mDv9W2h0gGJCsFo=,tag:fmol+J74vvsyiYZuPr5gaA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:cA==,iv:pLaetijIf44xVziHYBPVQ0fim8TiyNalzz+C0iB9+Mg=,tag:E15xIIEFFbcGwnREcM0AHA==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:mxoD52+kwaE=,iv:uu0QqP0FGHejdAWMSrY7EXLRgYkjjFbdNtnpHzvKIMU=,tag:qwJ0TDijBPJe2a6f+ANm2Q==,type:str]",
+						"backend": "ENC[AES256_GCM,data:3sXmwyshYD0=,iv:iO6ShQWGrFYCLX7xQApMx0/S7L07U6xw+HW7bcYomr0=,tag:x9LJhb/OaGBEG9fD+LAoJw==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:Vnow0LGJx/c=,iv:ODKk9PY7H/y7foiNlMLMcmUgizcM9S8lsl2TT58hyoU=,tag:gONfFStURACwticgcf6OHA==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:4+Jwbf995bxOmA==,iv:ZCF3TzLvNSV9LZ2c445xZkH8o8ZMOLs3nqoTpJariWE=,tag:85kpBk5GobVLrscek9q+5A==,type:str]",
-						"id": "ENC[AES256_GCM,data:lVurPQx35IrcHvIBL6nSYBbytPVsCYl+EoSZXQbqdBXSr/OUhQ==,iv:h8lV+WoPArgZaGqZZMxQdQlhvl7ytbBDX9dS43Ho0PI=,tag:ktufO7HPTzPiB6VeRFE4QA==,type:str]",
-						"name": "ENC[AES256_GCM,data:ytgCMzKW2KqeHsPBkoW7,iv:rEjRzfkJUhV6xjDi7tRH5cVIdf8ZSoPQW9meVhVcpjo=,tag:8uEQBw004a+U95eaRYrhCA==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:YBeuMCW8Kyk=,iv:iFW8U9q2mg4eItRukyJ10kNQXa5UA/N21HHYyA1B2/Y=,tag:hRy6PCPHDbKa6qfQUivZcQ==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:nBwWJHfEBiSdJQ==,iv:tUnBMnb4tRinW2v6QPzo7OPs218w7T6EWc6O/xRW4zY=,tag:cjbgeVs0f/lUxe5bWmP4EQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:FkyOj4BoG7+ve3E5eT8ULP/TzRoMCblT/R75MEjgMA==,iv:igJWuNojJ2IkUc6QJaB5Ltskxq6cSH0sC0Cd4FkbyUE=,tag:irPT9+2iHUTPFIVCmrAFig==,type:str]",
+						"name": "ENC[AES256_GCM,data:7aWm4SR2a4MP,iv:xE+fYtajBBsbb63EaleTQqGwvy8rydWBVAwmGYSWd6k=,tag:elgf1zIOxhnoc0MZraHIQQ==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:eoeeompj,iv:Nu4Ikp/iKV+nGMlDeHHt5h15d+w8ctsRxiIIZ3KqZJg=,tag:d+JfZSbvbdElGYVuMtkVrg==,type:float]",
-						"rotation_schedule": "",
-						"rotation_statements": null,
-						"rotation_window": "ENC[AES256_GCM,data:nw==,iv:X/hm1Ib9GdcSZ4GD3uqBFI2NCgrz5uQGj4uYou5MZAo=,tag:WzfUaEyXSj1VT95cXatuvA==,type:float]",
-						"self_managed_password": null,
-						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:dsc0A9gDBZu9NRm2,iv:/GVEARrcVKMg5xI/vQCOOX2LL5OvDj3Cizt6h+MpEOQ=,tag:GhjMLcixki7CWWmqoq3u7w==,type:str]"
-					},
-					"sensitive_attributes": [
-						[
-							{
-								"type": "ENC[AES256_GCM,data:+XaB+d6DruQ=,iv:L/seLcduyGxb3dXfltHiZA+M06lOKtjdrp6SMYsb5MY=,tag:nJqKauuSGLevMpo0zpaLbw==,type:str]",
-								"value": "ENC[AES256_GCM,data:EsUcwi3a7YLAcSCBJIcRgrCJ+YAr,iv:fylFSloza2CB+0L/0jRJkmWYQKKXl4UXJoVNm9jujUA=,tag:giTKvJSY73Q0vdTY9oUP4A==,type:str]"
-							}
-						]
-					],
-					"identity_schema_version": "ENC[AES256_GCM,data:3w==,iv:XNy9+nmnVSwrWb3YXxGf3K3EZoS1/lKyzzNGi4ffYmA=,tag:0CY9zdYBtN+zexYNwE0lWA==,type:float]",
-					"private": "ENC[AES256_GCM,data:KqSUS7j8/6o=,iv:g0iwNFFFqXJaNpOBitKwb2MjjBT25lq5EVyxcp+MlsI=,tag:Xz/Slx31/ve+y0t6ACWxhw==,type:str]",
-					"dependencies": [
-						"ENC[AES256_GCM,data:3uLfjI/NtQFcDDhXw/JEFmavhZL3VWO3lE3UfDQ=,iv:DiwUNpMmzPtwCAtUjM+AmKh71+33Qbd5jPNHP4zFJjY=,tag:FsnHtIIzRzZuiaq1lfwWTA==,type:str]",
-						"ENC[AES256_GCM,data:QpnxWWW4RhtkuksM9qBrl3kZ,iv:t24QZY03Za3fozGi4wK+2YL9CllPimp6Rc5uMKdXnPg=,tag:qChpYSf7m5tcnKtgz9W3zQ==,type:str]",
-						"ENC[AES256_GCM,data:U7QAsdV0FUYNl3fBjjuk+NCrjN9iull5SiM=,iv:EJpVutscwvTaAIl4fiZW2m3rHJbLggg5pCYJR/G3Ubk=,tag:fp0GQnT4CbwvjE6uEX9+cg==,type:str]",
-						"ENC[AES256_GCM,data:mbXldccWMKRGakas34GVbZUnoOXXE9Le+8tYYzQpw47sC2DggVFe7vU0GZZqHIOWGlVp,iv:3lc664LRj9We578H3bw9oAXzsfhhmw5gFjHvc2uDqUA=,tag:nvvdxH3i5Rk6ZjfdPJ8+0g==,type:str]",
-						"ENC[AES256_GCM,data:kIK7RmSCo5oggHD25u9oQqNiJ/s=,iv:/SQ4aq8OUx8KSG2/ICX4wmowQY6ikV3oxgvFMVUbEHU=,tag:UFmECWkr+pNljSkVjLv+bg==,type:str]"
-					]
-				}
-			]
-		},
-		{
-			"mode": "ENC[AES256_GCM,data:q0ZR9GNjoQ==,iv:LXZklynQB+2xIPjftOP6bGvbNXHnEY5occEI0Fa7eus=,tag:TGxgEIzgwgsLnbwE9udfbg==,type:str]",
-			"type": "ENC[AES256_GCM,data:nVwt2WgDIBttCtOqJPlivtA/NobTUsgJLXz/nt2Bh8W5z2rhPu/N04I=,iv:i+T5gjbpyw/Cg3wu/Zfu++WAq3gbsBZLeTxkbX4L1XE=,tag:IYtp6tGGpyhpBbXEVBdhIw==,type:str]",
-			"name": "ENC[AES256_GCM,data:7NrrGsJznA6K,iv:i3nH1DVxFzk3tvZeKdPQDZDl7NLTo1l1CPFIOuDadfM=,tag:6MZ1w+FYcl/LuxodB1i+Ag==,type:str]",
-			"provider": "ENC[AES256_GCM,data:dnl0BpFzASGYt6FrSyPlyYRjRVL015oaL/tKWI/MrjgcohJuLk2wEgoK1YOqo+1acQ==,iv:Oo6d/+avoUr6CXK56ZTC8JEXCVIOplVm3TWkq2Gh56M=,tag:O8BywMw4O0DuHqCaDqdoRQ==,type:str]",
-			"instances": [
-				{
-					"schema_version": "ENC[AES256_GCM,data:ug==,iv:ZDfLBns6WrJE7kXNwkDYrvmGC4cGvOqX9ZTAJHlxBBM=,tag:396ApR+sIQQX+TBNPTcLhw==,type:float]",
-					"attributes": {
-						"backend": "ENC[AES256_GCM,data:SgU7MdMagus=,iv:GSLCG7dNzuanZaCOvRbrPd+9xfhx+Z3PVs7oRp/3EYk=,tag:FmdHRm7NSf81ri2Z3pAebQ==,type:str]",
-						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:ic9bj2UJq2M=,iv:AXmRai4i7O6EH+VNlml534bsWLaYqAdjPHbYrR5w7zs=,tag:DV+67EglSlgxP9ZyUu0Itg==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:E9a8spl+XqVmWw==,iv:deCP1CCIifl9m88iqVbFUKTKXreYG7B3TFXF/Hbnqdk=,tag:rwZAShgCP3/+56P/860vYg==,type:str]",
-						"id": "ENC[AES256_GCM,data:0oHfF1fln07q0u1GH0lwpsgWslefa/USljcwsb6cEw==,iv:kmEOHa9Y9CcwZwvqz6mC9GEMCKQSozmvCRK08M/vbIA=,tag:I7nNCo63H6IMqQ55In1BQg==,type:str]",
-						"name": "ENC[AES256_GCM,data:Pd5xCQfuxijM,iv:iFDSy1bMjxPspXikSetCNP5Vc9TTWaptdsDdDjAi9YI=,tag:9daFsqpqiEsVj+p4YgR1nA==,type:str]",
-						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:I6Eo9y8p,iv:PeuizAC6fdCW+ZuMpenXeEooT6UVThaHLVQSkNCSClw=,tag:6ZZYsawzCKQtL+r/bjshJA==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:uBffO1t3,iv:9q25725FpLIwd+kyrj2FzhYuXijkBfBWn9EGY8p2ojs=,tag:aheGy++FzxDj8OV8gfThmA==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:ng==,iv:MQEmIjEyiBhApyUiMtXb7CBxTQ53A3JLlkhPXUBG7fI=,tag:e1uuiQGfEQ1bB9V7M9bC4g==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:FA==,iv:dpK9G4nON2y/CpFUfWPFONN8EtF7qvv4cx5ZyR8VjLg=,tag:DCeTfoEOFjrwYhNpw2hJbg==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:ibPORWao,iv:zssE3uDS2bJSMWY39pHJIOAeTfcS9I78lPld+iEwBns=,tag:IfHJ7AXJccxWPoAzMgpnLw==,type:str]"
+						"username": "ENC[AES256_GCM,data:fE87MzqA,iv:xMu71Mv0QiZbow8Wc84dQV5dNqZrPwfq2sJ25Z8oCK4=,tag:WMVdT5kOpm5FCs4XxDVokQ==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:45FoObW95x0=,iv:4w85UIO+g/3/IkWtrxZze54foj2N1ddEHNRQ13QTQv4=,tag:3ggX6Q6U9IZwuSROvUNSkQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:xaa1/uGyQnp1v1OstAAh8Jam4v6M,iv:Rx000PlDKS6C0CLLcMoTo6o1zs+fNLT449MNhW3AFW0=,tag:qATnJg/ctRw6+kOXvT5VNQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:YkkO3iJ90Rc=,iv:Ycve18SyYfFaY0QaQoptnl3bUzEfxWj6CQRwkbYtIME=,tag:UyaoNkpabjuV4vxGM7MvTw==,type:str]",
+								"value": "ENC[AES256_GCM,data:JrqpV14zsnj43SJd0k89cDqjNhwx,iv:6SO9NWBdAqHjbJiVczgNyzFh8P4Drv3V444p/7LTvjg=,tag:r6JKcNZX80bZ1Ti/7raxeA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:wg==,iv:Z05APnTdkZYWLG/faWEyfKgPIEPRFP4x1dEmLEZ6Fbg=,tag:ELgY6DMrT4K7wwms584Ugg==,type:float]",
-					"private": "ENC[AES256_GCM,data:BhTda1gf0uk=,iv:sDq59h/8ALMpagFodcUGy5r44EKWjfyasW5tgNBuyvw=,tag:Tw1qC7XC4OFaFfUF96/Djg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:og==,iv:aQUCfC5FtiSFwdmUi7Ag5kO2ZgHyFpc6Mi0mgr7BXQw=,tag:SmQz6JMTnHjAxFhQkgUbew==,type:float]",
+					"private": "ENC[AES256_GCM,data:wHic5RsvEq0=,iv:pn2uO8jLtBpY4LHRNVAKK9WMoCXp6aaeOv+3PbMhYu0=,tag:CDwj7Z+PVQm89HXglWh6lg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:pOXSB5/LKFBlErklblGRT0/zzp5B8PSyi9cL48c=,iv:erzDHejd/0uvt/fzhOWGfkplcRDzvScUxYAIvdo04js=,tag:fb7vSgxX0exwLZkrAV0V2Q==,type:str]",
-						"ENC[AES256_GCM,data:mfngYPpABTvcm4I1DrtcJikH,iv:Eop1SINIUiaJJvm87DPspkfHc+NYk7YpVlOy4dFsSwQ=,tag:kGidGZ9XixLpR1caRYSt6w==,type:str]",
-						"ENC[AES256_GCM,data:qEfoAiLToDfQ7zLss84ju78Eip5kT3j5vmk=,iv:eiGWxB28newLk6iFNz8UMr4AVq1373cKHMXRcNbcXnY=,tag:BP0An2nVTbBtCdJEK7QzRw==,type:str]",
-						"ENC[AES256_GCM,data:pbqhYLxHeqGB2T/s0bQ+soWEbmXwV4a1MvGrWkuIC20W43aJndYRKYFOVT/adquQMR7R,iv:EB3jJ+33zKWh+zbuu39HR3DpjjG/AEG2psX5dimsyp8=,tag:60svndRiQ10jmCF42YkZFA==,type:str]",
-						"ENC[AES256_GCM,data:DAzrDKP/GgGiUxTlnyqdz3+tQfQ=,iv:iD4elAmCp2E8Cq6HMhYCC2H/XyziZGZqzLwr0bfL6XA=,tag:Z/puCorFS9+cd+NB6QriMg==,type:str]"
+						"ENC[AES256_GCM,data:x3CdX+EWpX+2zJBXdnVaTiAe/UvryF9gmwxfaQc=,iv:az7zgjHYGziYHXvJdS/ke32rrj6b5CF2mfWDBtuhtcc=,tag:vDNf/l9Cxo3Gvf1qnBnuWA==,type:str]",
+						"ENC[AES256_GCM,data:tHgk18xz8CMLzjlcydgLbscy,iv:6oIRU+dJ0aL8lD2UJd+sNXhdzEw6WHPRkDf/68gZWaI=,tag:UNCH8qAuE17u+T84v6w5lA==,type:str]",
+						"ENC[AES256_GCM,data:jj3HuYpoMnx8BbE7XvhkbIt5yQGo62kNSqs=,iv:oL+9Wkd/qq91BfQNst30BbwPHlts7XNrN5J4s0HiNY0=,tag:Wtiee4Kc/Y8zR8Pmit9wQQ==,type:str]",
+						"ENC[AES256_GCM,data:cfxGqiL7+Ym5uHC/x6dfIKtARmWsHjgzwqAWpXG9JMTUlOodg+W9iFaa7joQtbhW+DeL,iv:3Nb28sV63I1RJM4Y8MDR8xHKBoLoUSPQL2bUBn6+Fy8=,tag:k+8F4Q5wLwsYPnYK87Zd5A==,type:str]",
+						"ENC[AES256_GCM,data:LSueb4fy9XCs8ANgyYSHx4kLYPc=,iv:J2BqZKxaeiNFNSNHlax+/p/XZ4pnlB5Lsh0Og4F8xNs=,tag:xkh0KJyF0m2AfAMDEItyuw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:X9pR6VTtww==,iv:hJZA+Mykhcrs19BqRF2iIVk0+T3rvx4eK49xSeYs23M=,tag:htZyTMxnWqcYtL4pd5i0fw==,type:str]",
-			"type": "ENC[AES256_GCM,data:NP2HI3XGiFlGAeK1/9yCy6a7IMV9Ra0gUbDOOJ78zOFeKTzIR+EAmqI=,iv:TbN4LEEHD2wG217hwN+P+m2Zmckq3Xvw2CMW1o3lFds=,tag:3BKvEpfScCPXmeoT81EeZQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:xj9JATkgXews/GpD/w==,iv:tB7qzu7x9Wx/mhAQzMPd6xim5sEa1MsjRPhr6vlGtws=,tag:YFmeLubvPVLI1/yFxmfMPw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:yrQNufdNxAJacuRIreiI8h9OQI56mQ1diUuVtFMxUhjzFAELV1qD//wkFVvDL6RVVA==,iv:G3KLp0otdVsnM4BEaTD2R3VUFYmwTaeuwRKwLmow3Tw=,tag:69g/57NebC+5dquRxIv5uQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:pY2wVCjNog==,iv:9O9OJNv7TaZRFsG5a68kOgYL2a9CC0FF8z43a7NdONw=,tag:O6icq8zU9SnVGWhOfD3DVg==,type:str]",
+			"type": "ENC[AES256_GCM,data:jTmLNsWicy67lbSB/cnQrcF1QYccxJurZ2OaMsmgMnLnR+M+It7yowg=,iv:q04ACQE1/2iwP1uEqHRVsVlFwdw6vovvOOq/AoMvcA4=,tag:73inS1K1X+DTOBJgnjHQEg==,type:str]",
+			"name": "ENC[AES256_GCM,data:G//gW7Gv8cjo+2j0Kw==,iv:U37ksUyLB2c4uw1Fk2sKtsCUFAsQHqYAJ9Q/dNxrRgU=,tag:vHRO2y++BCcN6f7FlWapyQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:i7vpkhidw8DGgELMvBqd4Ak5dzELP9YasY4RkvW/HwTtEdA4iQhOPISbm3lxbozXLA==,iv:yXS65jkx/eXF4ViPVjaO6Gj8NW1/mmZUCDNWuyLHh4c=,tag:BMoIwx1ZRhThHrqSttFSlw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Aw==,iv:C9cKhWwnfiXZFDEsoG/Wbepv+IJYSKZHwL/KRTTAlb4=,tag:ThYjaXAcG6cRvmhjru87YA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:SQ==,iv:W8Re1U7HS++0iIP4jx5dyYL+MpKE2R5hj8VuF221MLY=,tag:LDtzL2+DEjF0Egkozknmwg==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:Xe5P10BYfkE=,iv:UMyhUzuZMqAqoudBAYqSx+nkhP91MTBsM609viFSkkY=,tag:cRFa0OeijmTeFBhZJTESKg==,type:str]",
+						"backend": "ENC[AES256_GCM,data:CZUs2LJo2ws=,iv:D4d1KChBZ3TZQ/MfKIEKdJew8emQlrRMEDPNLXDRbnk=,tag:uKCkl6uIHXpSb5UUJuHqRA==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:RssotTymNpc=,iv:u+favFe7KZyluJ+PQA3ABl0LGkzm/nblozucbPBPAmo=,tag:mQk/rY1q5W9gCjH7M97sUQ==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:aiEPEPWvw2wf8g==,iv:Sczu8WdU9iV/ujFCLhNHJa9vh3CXh8jVdLhSWIUQbrw=,tag:Fix2YqyUL/7QASP6w5ef8w==,type:str]",
-						"id": "ENC[AES256_GCM,data:/V4wNfC/jc+2BWULe2/hEOAWtabVd7/6/ACebeVGgwYT//w=,iv:RsGIw7rgyJXdhZ0vX1zjqBdxYiMspYjsiSB7jsTsAbY=,tag:VXh11wfpFVJmgUgJkUHSsw==,type:str]",
-						"name": "ENC[AES256_GCM,data:OVJL5STjjnzz1qYppA==,iv:6eCkpRS30mNEuhlGsTMzhSG/7pj2gfsKrIhUGqmQB3w=,tag:5V50C8gVh8h1CM7g8Jn5tw==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:Yo0R2kjKPXM=,iv:AeP1Zz4UIh75sxnXJfSSzHufRRkqhr82/U75h8Hghj8=,tag:uSXjXpJd7bhCfmPwOVz1vw==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:TBAKH0Te8wLjVw==,iv:RkNJEY4+3Rt7hkE5nzaUQ29U2vO5zVuvKwB3qgyJU6g=,tag:LHB0HdnsyOzXDbjUVpuhPg==,type:str]",
+						"id": "ENC[AES256_GCM,data:Loj5QmUiyqmkOPx6BztzqcQ45nsLXOj2UqVacvZ+z9yPBgo=,iv:Sr3xWb+mSgqgBtIiz9IZ768Yit7//HSLSmEerUfTeIU=,tag:7Sr6sw4ndVy9eWHSxkO3FA==,type:str]",
+						"name": "ENC[AES256_GCM,data:tw5/p2o+9Nb0nh5ghw==,iv:mZqXVPnkwt6uqymxsTDOitrg9iZGv5yd/DUrbxpgbf0=,tag:d/a11wsrcsBMjBBFK9bDEw==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:tZBCT3ze,iv:eP4m468M66goP+EUEnmVLqTGPNEuTxlHUoyd9nEm7Tc=,tag:bbyx1p6+m+GyqNg21nKtGQ==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:NxYB65/G,iv:NTsx/gKd6EMrUyXk5u86o8IEFRpQ/lRtgoKbWNAorH4=,tag:F5bSAHUh/k8+J2Mx1e4yFA==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:1Q==,iv:DboxZfe7UMB72JVSrYqz+a+NZs4dlBk1eyoUx3e7jyA=,tag:KMoALFs3A9I/ZoRUOeJtSA==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:8g==,iv:gj8C1+x8/uP/iVwb2HcU2cCtHk8SF+kdrA0O24zxuQ8=,tag:cOP6y77hBCzdC50+kPmxJw==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:Q+VYO3ipYZ90Ww==,iv:2NFcg2kXJ2BljQv7Q9Cs2NZDKOyXO2IxbPKSNO5xC3k=,tag:6K6lIekbbG2n2N3ZcSUIPw==,type:str]"
+						"username": "ENC[AES256_GCM,data:jA/ekS17v/L4Tg==,iv:VCUpF42e7+yAwrpI4ms9wXyaJI+UUsu69KFR2i+mjt0=,tag:Mi7rN04BUfBh3R5+fCBJNg==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:qN0MQGFzvJ4=,iv:R2EOGqcaF/g2TBF/Pz2fR4TK//0900Tb3lgjdmfCnJI=,tag:+xPPaXpOY8A51Sb12l3JHg==,type:str]",
-								"value": "ENC[AES256_GCM,data:kcyFIgF3aMgwAYxQeqKGgxwOseIT,iv:TliVnXb9VlBtgKT2haDksIgAZcg+243YQUJOY/gn7Yw=,tag:Mk+3zgxAsla5PmMD4zg/+g==,type:str]"
+								"type": "ENC[AES256_GCM,data:WiZy0LJPmcs=,iv:XGhtpnnBTZmwqGrnAi63D9MNRIS5gxNMZDYY3WyRgWI=,tag:t72ZWfDFkeN46kDz5gD//w==,type:str]",
+								"value": "ENC[AES256_GCM,data:LNTXuJpLo7DYC0WUS5vfwtlH+Pv5,iv:e3PB9qy96EE6y5odSoq30mx00/5V1bQEPnZkdQE5lUk=,tag:HrSohpZiIe4U9EggZIQThQ==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:zQ==,iv:nyikt3RF5PmAOp9nGhiEkvM5+Y2EkKGlKTp8ycv1eCw=,tag:hiNIrXCnOXyPIPCpoXM3uA==,type:float]",
-					"private": "ENC[AES256_GCM,data:BQIQo/TthYY=,iv:8u9jVAbyQqy3Omb5D8cndZ25/v6XafNoKPuVOGStDc4=,tag:bd1eccupNHmqIFvWkQkijg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:tw==,iv:RpwOfwPrYZX9ZyYA0HTB2gAYW59CTMznTwEq2Jv4DQ4=,tag:tgvo1rzUGVqvn5OSMFo5KQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:01tOsNZZrAY=,iv:m+OlqI110cZa3zOlmVaoKuRe7BWq6jwjAT1nyQI+syo=,tag:WRnFPSc96GJApMtd7R/EEg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:39ONP5epLWGu6KyZsyivBIvMNFw/qO2HmdandgM=,iv:1M3hR6PVCQJzM4EdLXX4k+QiCbQ6saLgv6S/I4w3iJY=,tag:3N6xYjmzDsTusSVbCfUArQ==,type:str]",
-						"ENC[AES256_GCM,data:/dFGo5Z3JvxOPLxkzuuZVlaG,iv:YldV+Xr+nCCl3viOnk9l08XxPX6ulhjghpjnE/M3IfM=,tag:UL5AIvdziWUcciRq5ejU7w==,type:str]",
-						"ENC[AES256_GCM,data:gBZWPjJ0vPgKYkyR8AWN+27FqaiW/g65uTs=,iv:4mdVfUmG93r6Dr/zEwmtrc1z3CPQOtbnPVqu5bs0gJI=,tag:MW/yW/9iG6uAyPW3clAL3w==,type:str]",
-						"ENC[AES256_GCM,data:QJn1fUAfokMdcDp6cbDtLdjR31ZXJBX8zAvOXbNIv8hPFNC4BK10YA3GyBZgvzLX76qG,iv:Hyx2x8CYu+cG4gWeY0pSODFb0VPaE6OusjdURZ0cV/Y=,tag:cGxHTj0rkPyfd1yJgtt97g==,type:str]",
-						"ENC[AES256_GCM,data:dtpcb3C7Y0uetiFM5Q5iVU1xTxw=,iv:l0aVS5UNDfvVsWmSHhD1kYlD1Lr5BgDf4Pa7Ic1aYp0=,tag:wzzm/HIe/OHIHrOoQA9anw==,type:str]"
+						"ENC[AES256_GCM,data:wla6RbYCTn/5zoGiqFiOp6G6h/xmWXvP8wWGFUU=,iv:nQ95VYfeoLF6vxLX89Z4SqmyU5aml7yeHSTjE5mN3Ho=,tag:4/aiyqCTEqwLmDizhsM2Cg==,type:str]",
+						"ENC[AES256_GCM,data:PKYtLoWQb6HwRNa7T70bmemj,iv:o6Y/x5g4fChkKhZv5BWI1ylcXKdcEF3ec+HNzIceJYY=,tag:5T+UKfm03+HZsgIo5omPow==,type:str]",
+						"ENC[AES256_GCM,data:hd/7XZa08s+m8kMVWDbyzd7KpHJtKCG4CT8=,iv:273/fvh3Obbvsmyb0rGpqk+czxUjOLpo8LCcuLP7TWg=,tag:3u4WHoyKqAWky9nA7q1ChA==,type:str]",
+						"ENC[AES256_GCM,data:xT7J36DRPwNRz0QiBakCkgDMy27HsvTEx3rzNvAbk/zboWJ9mrLPBDoUYEpYyi0j7+Mi,iv:8qgQ9L0hlqgmgiwMpMz68XFiFoMCGPkCYRXPogdd37c=,tag:v+81gcFF+pJVsRPJw+Hwuw==,type:str]",
+						"ENC[AES256_GCM,data:7VU8SoeS0h8n518i7lK5JDM9fWM=,iv:XF2lSmEGanaQEMNOhocslYPvZoxNss90zbne6X4341g=,tag:7IqUNZAV5d4uIZWvjXXaFA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:tch9wEefcg==,iv:gBsG/C+kP5QRNd5ybrr5VsQLT9TvFgdMx1eV/75nhCg=,tag:G5F5ENmu5TLYxDgTE53lRQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:NJ74ktP3o6eY3bErTEgrmc/kctbIp6IRO36vtybw1sf47ZxL6viM+ik=,iv:TiEK4DB21PdGFVfPBNJ7PGroj0xNGPOq9pBGwZ/XHZs=,tag:x3p+rXVIcvNLLtX5N+cLUQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:bs+/UafalgofYaEPlQ==,iv:1YFjDEkW5KtbPgi837OO2kan7Cwx/ckpiQchpJWinUM=,tag:7LhOFoUUKMQlwL6aKJ5i0A==,type:str]",
-			"provider": "ENC[AES256_GCM,data:xZjk3fu0LIqa1yzsN7lDWOPz4i2Nm4mwCXZC/YbaeVOEbtXY4FG8SHDMLqIhiUDrlg==,iv:dBm4f7eVTfrhu3GWN97BUASzypyaSfhNYTdt7ZOToIc=,tag:6FQOhzwWUnURUc7uBH3/Xw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:XjksgHTXAw==,iv:SDDwaFTZt6StZBEyjtouE7pgXcXmMQYOBBWcVHo9X7A=,tag:6A8eEkKoT+QRUmjmXDx+RA==,type:str]",
+			"type": "ENC[AES256_GCM,data:BC76o+zSZtpl+WqGSZwDGamyDOFE/7jThNZaOH26DHH9ezVmu9I2q2M=,iv:hA6d+L7HCQFZt7vteqZ6xneDwq2FjWSw/qNlby0h/iA=,tag:J3brrEl1+QpRKLKNqxWQSA==,type:str]",
+			"name": "ENC[AES256_GCM,data:COOJikzDnrMPv8JmenMRTKTG,iv:9kYuM7t9gEqSts5AazNps1ATq0+aYIjF+LKO4sUWnqk=,tag:uwg6GiZwOk7UN/CAfufgYg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:CNeyK2NCNZ8M6zTQZGIxmpRcFLCc7Qd0/OqneNiFf3+66v+98L2EbjtrhIrFyOBnkw==,iv:oPcctJMniOiNi21/u9V7Nff4Qdm24gvqG2rbJAFcCuo=,tag:sHh2JcuTrAmSlgQg1JcWEA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:ag==,iv:YucIPdcZbp5ig1bhh8uOJIa5GW86MwbiWRzLPSq7f8s=,tag:7IvxqaFtZUlXTV7vHegJKg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:iA==,iv:cg2dEpNgFVaF/rL8y5EzWzO+bkw3FaNpJfgBOUQ0uYE=,tag:DH2eO0w+t7fGX9p30Dkyvg==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:2jmgBlnlVmI=,iv:6YOpdv1YPCBbvrTWnMHHkyGTA5z2Sht88Am6psnVmfs=,tag:unRMghCNG5V2JKUDglchww==,type:str]",
+						"backend": "ENC[AES256_GCM,data:nwbJz/0Arg0=,iv:SjrE26LxPlgBc72Yn8GXXlQN/jkDwyB6awwlDvqAvIQ=,tag:sC+EBLechHbE7+7K97N4QQ==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:hiHD4LrNKg8=,iv:O7OEIz9xSGJayPE9JrsAn5UBYhW41B0l3tFnh034DHM=,tag:+CqAK1Z7ciBNWpL83VxQ4w==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:f0PGThYlw2+8qg==,iv:OEx72bTLvAbSjRO9jX7lfS3oj0Qy5duRRlCx+lB28Rs=,tag:4/Tw2I/4EbRwyaoj6rdi8A==,type:str]",
-						"id": "ENC[AES256_GCM,data:U8tb5IMH1DBzATzhwvppyLogriOkodN1nkLZB7uro9uW4Tk=,iv:SCgpfKngzU46/wPMeTdQatIlS2dDBlpJ/NuSD0LQYyM=,tag:QyqX7K4/b50m98DcvRA5rA==,type:str]",
-						"name": "ENC[AES256_GCM,data:tW/1DG/YIJvRGQUKcQ==,iv:nVfCDqZK+W9nCY902fz/bXc7yX0uBTGxoegIh/sN95g=,tag:pv6u32XWhSM36YzWfjCd/A==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:u/KmpstaTd8=,iv:cqJnaKrjxlAqmdyBHO76D7OMGYpYtV87ef3JA+sSB6k=,tag:jdGHtF0m+w2E/X1WYlOYSA==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:/JjlpOviMjk52w==,iv:mqgk97V+qOvY1oP0En7ENX4zEWiDnWSbPsSGPaDTOB4=,tag:PKTb83AF5cSpx7UzVal1EQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:OO8shZuAQiT/f7dxlhQvN3i/hOxEVvTTwkOF4VK9uNH038sWb8ekrA==,iv:pGMrBeW2/Ec8dI5drrr0CWTBZ7w/n+XopV3JkNCVaBE=,tag:29UFZXAYG1m6NzM1htOGbw==,type:str]",
+						"name": "ENC[AES256_GCM,data:S4p4PtIbILoM+CCs0IrjYT82,iv:YxQ5+MnlGxjaGcKq8K+BfjLzCUCHQ+T4Q2RNIYVVvhk=,tag:Wqi1kjzPjwtVZ5seUnuaPg==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:7y1RuTAn,iv:dIUdhPL4A3XOKb/sAgRaEXDoWXPNmS6USa7dt+8N+Vc=,tag:ksUmZhLGxjOuDEqrAlZAAQ==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:ViilInvn,iv:rVxo8Md9EtXxY9LOx9VZrObw6Yx8hULWX1DMkL5OUP4=,tag:vnkKk8IvAVy8UDi4E1oeEQ==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:CQ==,iv:5H2pw6VoynlKh+LVJ0Nw8gpX+l5c2mr7Of+HCteqdsU=,tag:YK9R5GZ/zj5ByKw3DbK+gw==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:bw==,iv:AmYMphbkJnFqUb7I6lJ4u7xvWmkLk9aw2TafRkezVvc=,tag:AfYYIsbIvo6ggYcFmkrIfg==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:cn8GOa3XAlTaIw==,iv:hBNkbF+1OS2ZhHi5SM/Hr8HJ4xRg+PtQKyKwAc1pc0E=,tag:3DtPFoy0thXpgU5Ugl3RUA==,type:str]"
+						"username": "ENC[AES256_GCM,data:BFC5a2gtwU5TphUfqD2A,iv:5/KMzaq5msAqwxIeQULQxV+yjxdXom8Z5UKq6n+IDFE=,tag:8pgSQMKxKPPUVHt5ZH1dEA==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:dtP/niBKc8M=,iv:noF31r8stIIvsMraOR4CAv/GrlduptQ++JTGzx57RAc=,tag:63ZSzpe+Gj9cr5/ESavbBA==,type:str]",
-								"value": "ENC[AES256_GCM,data:mzglE0DBAxlgnWvXe4FFGjnTs/ul,iv:V2VnHErN81yfgoblSPcHgNp96SUUTdMD+/QYndoSwaQ=,tag:d9vl/77/UukGaYjVOdkNVA==,type:str]"
+								"type": "ENC[AES256_GCM,data:k0q1ai//TEk=,iv:OHdjF1xeb7I1+rphhrDKFyv93/N54l0WVROLKnX0hWA=,tag:Uk0x9XLiMBRmWGtazChdHw==,type:str]",
+								"value": "ENC[AES256_GCM,data:s7UI7w0Ajbyl/DsMZ089vWw0Y89w,iv:IckU/SOvMTEGlt5XiscH+ogmCeYftCo4FmUSfjJ96Xc=,tag:YtZ8FzK9+6vJ/14RmhXe8A==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:9g==,iv:YmffMUKpEQkqzgX7P398kWSke04/mzVeqCQt9BhCYaY=,tag:zazwZ6ubV9Xn65mwwvM0Vw==,type:float]",
-					"private": "ENC[AES256_GCM,data:H2LG68668XU=,iv:lBOTvOnsupkAP+Wmz+WKFKS3SnuhKJBwEh6XJz8VOyo=,tag:eS/6r+wnt0Sn35uhWq93ag==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:vQ==,iv:DPy7A21Zo3bUcDDs0hD4OKxciOpBNAkQC2hyYfCJn50=,tag:D+U/nIvlBnxypQ5PzL9VOg==,type:float]",
+					"private": "ENC[AES256_GCM,data:LZJ+w4+YD/E=,iv:g9nxCZCXrWoF4T7xQAr4/XZNxDB6dDmWl/jixpMF6XU=,tag:uVj4j5dIAPWYnOU4wSGTOg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:xkkDrmg2BLC21R54Wdu+Y2Rfh9snJbVP8OKPZ0c=,iv:BiDCqID/Aw5nioHZCafwjwJdImftgdt8D1IXGP5jbBs=,tag:8vpE2ukyH2GNpi6E08OyRg==,type:str]",
-						"ENC[AES256_GCM,data:1uTzE5EBAC+Vl4P7h86fthU5,iv:mVQX1/MWWga95IVCg9+NuPPFZHjGQTDJQjj6XuSWdjQ=,tag:P77yogJjbb/bcAoGNoAtpA==,type:str]",
-						"ENC[AES256_GCM,data:6XbdKdLwtN3cI2CiTSw45g4R7fdXmapFRh0=,iv:SmAXYC70PQULfjEFf2oA/XlviK/8ZzKuriIfG4wsQXI=,tag:dtdqCkpQkBHUFlOIqPyKsA==,type:str]",
-						"ENC[AES256_GCM,data:/081txK7rYd/Imcrof5qGiDPifhGAm/DFZQyGOOTg2Cq3uUkOTgiGZHutTOjnFIteKBd,iv:NTNSI00uWsiKApOVdRWBiyRHdJ2kTJJbeIBQHg/m7H8=,tag:lYmjHyCCPnZSbOqH3QTW3A==,type:str]",
-						"ENC[AES256_GCM,data:2pE+42Fri+7kxIvhSSgIgtgRizg=,iv:tJA0o+64M5kdagglDVoBkgOs9u1EFcOlpHS+sxmsbCo=,tag:YwvlIYwVMswPqu8NnVNuZA==,type:str]"
+						"ENC[AES256_GCM,data:S98NhE3l0FOg5Gl93Uf2Bxi0kgALvZqiCy4NhD0=,iv:+KXuv3mYq9myYv0zV2r7LezehXF4Imzl+E5YHBLj5v4=,tag:azzFIQgxQn0SA26QtZGHPw==,type:str]",
+						"ENC[AES256_GCM,data:AJp2agJEx9/w2ivFyn3cNXEs,iv:Cjh1KNfWRZGjztkotLbGQ6rE1Xz0bez2jzKcDVIlsQU=,tag:eL8zZQle1081wKJ0r1wt4g==,type:str]",
+						"ENC[AES256_GCM,data:5WoygAeGsp/Tiu1pdhEc4Uu7UTacIdqFTn4=,iv:GAkAspeHjuAQ80nMBRVcudDTt7ytrbLhXMqfdwM0xb4=,tag:iwpxL3RPUpgiP9a7CSS93Q==,type:str]",
+						"ENC[AES256_GCM,data:RzxMaDbkcN9ewHScvenhghLn+O1aErH4MfWvAQH4j8s7cNOs34Z/fQHVFYHEJ4WvAFh9,iv:SG8Z4EeHE0lQlS4kT0v3UBjfn/4Ph5UmWwFJApmDTUE=,tag:JmHLYfUWLjulgAx8L+iC9g==,type:str]",
+						"ENC[AES256_GCM,data:HbUWXf6YdicKX5/MKb5Xl4L50So=,iv:SbykQqXcJyfe2X0PZfZJbkSNzOkBZmhX6cNlo8x0QRs=,tag:cGjcFVxEj2tojNInDAX53Q==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:aoYJWxFeEA==,iv:TTOvZO/UtpLAr4yc2gdE71ECjLq7fOmWklxTBSD26DQ=,tag:VnsySsXjAHCxLrX1pd9WsA==,type:str]",
-			"type": "ENC[AES256_GCM,data:4gOxWYTezJeUZuJfs2TfWe59YBJsU7bxpnW9eH+2hqjc9gfe+cpi4eM=,iv:PtynB8nkbEieMsddrf4nMbBdYnbZaoclewWkayoKy4c=,tag:4JNtvFvAQ4jto6M9PDDIng==,type:str]",
-			"name": "ENC[AES256_GCM,data:O3mvmDcScBaE42bkiwlUutk=,iv:iacAhAIcCvmr7i3EO3qG26ukOlK9cNukNvUVcoJQw9s=,tag:fpvMjrus1tkTMeyXZYuAeQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:bXZHuBcBfr8qm+mbQIbwyTvrHCo0lB2YD/bGhifzXcLBCaSv9fOeO9zc6CS4crP/fQ==,iv:/o6WUpyQd7MGpd1J3hnFhd0d9ckaiH/xhmCxTI4dUVo=,tag:1TIRu4B2z1PRSiJ2hxFMTg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:5DbffzetsA==,iv:iSWK3i226Rnf0fcS5IeOdvwOKBHHTqgTHHiLwy4zLgk=,tag:AcI5UGUXqJvAAoHEmhZU9w==,type:str]",
+			"type": "ENC[AES256_GCM,data:lciSU0dLPvAGJ4qbrHek2XYn+TX2bReyl/OwMdlsfY82OPetDheHpIk=,iv:lph/3PI0VBWzzV0z+LNCW2xB9NW/fXxpNwZz5ZaQFHo=,tag:Td3aJGwMGmZKL5ldBl31kA==,type:str]",
+			"name": "ENC[AES256_GCM,data:slqjKWk2RXUS8+L7dQ==,iv:SD5AHLxLpWfQLpNY+wIWYmWbYRs45LTL0b5L0RNiHdY=,tag:5Ipe3NC1JQMmb2F0v1/cgA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:970wVNdoxBckDvdN2Ma8KUgIpS4kw6C88sSFCzK6k5vSKBZC1EQRowCmWd8bcE9xFA==,iv:EMR3UsQcAnwt1DegS12kDkYsDCoTn3NaKpmqz056oDU=,tag:aHGy8V7KvsTXF7EjR5Px+Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:VQ==,iv:fRXhtdU9myfPkaHiPdsQaByQy37kzNG88cgHeBlWcBU=,tag:paazJzvc8bueYtWtOFfd1Q==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:gA==,iv:ou115+Iy4e979FpX39PGEQNdiDMUJAXzesANWqoqB+U=,tag:1xfAT1CTI+YRI2yLhIHjbQ==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:vMb1Mz7LyIc=,iv:6bdyMz5sqx4UzySmoxTwNsH/b4bANaKTsTZk66rJP7w=,tag:3YxzdSH264zztHEToWgJ1Q==,type:str]",
+						"backend": "ENC[AES256_GCM,data:Wg1kLLD02H4=,iv:9m2q40KtxWDdbiDPtn3LzOlu0ntHrzjSF6aqORPFJm8=,tag:ES5UUAHoV/HJHD9YxNCUPw==,type:str]",
 						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:GdlmcN++Y3s=,iv:2DxIY9BheEGURk8DfSwXntvGU3c9apkKNPk3SU5Ukow=,tag:az+HX64uha2QN3DALjWciQ==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:Rp4gmikXyJBusA==,iv:GRNttsBMhqmZ+aA1n+m2EYFp0CdIHLdeW8plei7yl/w=,tag:d3ysNc+zGwaqbTl7VlGBxw==,type:str]",
-						"id": "ENC[AES256_GCM,data:4oCEohPtVS1cHC0+AAHxgBUAlAxz3nT0ealaEE0QqHRQkwyQJfKl,iv:nXb/Ira+n2t9ZBh2rkaqD/8bHSFExbyQFqWvNPUegH8=,tag:uHP4/YJ3t/ATRe8Yf6o4dA==,type:str]",
-						"name": "ENC[AES256_GCM,data:mjQ/vEzsX5Gdms/bU9RSVw0=,iv:jAoXrjWcjY9Qt5GY8Kw3raxgLBdCDVSGl0wboTnzGKY=,tag:5CL+JFwj6asoihmssIYpMQ==,type:str]",
+						"credential_type": "ENC[AES256_GCM,data:Was/K7Q9H88=,iv:1fTqFsHmITiiOEHoBuMTwO5BIebs53enLVj/o47UlQA=,tag:eaAuIQOcC2WgyAPdLeHWMA==,type:str]",
+						"db_name": "ENC[AES256_GCM,data:UefvH8BOySLOUQ==,iv:DBvRhusJg8sHe20/LRSZOHpS1yCPGr1IAjARGJdN57c=,tag:LPxCRC7l1wmfqfx0McslgA==,type:str]",
+						"id": "ENC[AES256_GCM,data:8lf3k1z8lLHWOHvm4gxGPSipCoar9QKqhkhiRArWNrUZZQo=,iv:MLM5Ax4Jd7Ol3+57xvBa0Ak9ar7egRBsY+DyvfQpXmw=,tag:BWVAwDM1nUazuJ4gXZ8T3g==,type:str]",
+						"name": "ENC[AES256_GCM,data:pNbdaelE7U9AvZEnjQ==,iv:xAMCFXWfkinuwm/HOb/KPNSzXXCE+3/YHIdO5vLUVnM=,tag:mZAvXDeQ8H28m9Nx97TrJg==,type:str]",
 						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:tW8QAMdu,iv:35t6YFXfx9AxHiS8YVjsQpnWczwC+QVH/XhStwpcMqE=,tag:KjDp9jqCA0GBN11L/0kLhA==,type:float]",
+						"rotation_period": "ENC[AES256_GCM,data:pYl5GPl5,iv:f0yU9NO1xQFSXU9epvKZDojLK5hVQ/RcCnpWzETK+Ac=,tag:D+/d111j6jzLDYQV8ILN4Q==,type:float]",
 						"rotation_schedule": "",
 						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:EQ==,iv:K2uJ18aFW/wmRsoohHdrd0v+KL1teHx+9WUaDiqhAzY=,tag:UK5XYGID/nuVnXO4lIyVqQ==,type:float]",
+						"rotation_window": "ENC[AES256_GCM,data:Hg==,iv:I9JxXLmjw9YlmtredS0LTi7lExdFrYKbWajGaSg91T0=,tag:hPScVcpWiz1rff+W0pNeqw==,type:float]",
 						"self_managed_password": null,
 						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:zL8mKqOTtTdXwF6DsdQ=,iv:8vZUlnkHQwaGWgVDkKYIcMU4wciUoOX6iJufgWyhNps=,tag:TeE2W6Kc17DhPnJF9Bb/oA==,type:str]"
+						"username": "ENC[AES256_GCM,data:OinRV7JBFdWfAA==,iv:5D6F7XHUr/4BKp03pdh4UT9m5oan/agt0/RRVcIgW0E=,tag:wOUlCaWD9trd9BANPqW9jA==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:0slx3Vb/X0M=,iv:6M+35ZRFbPy3woBibFi6bzfMswP7oZKGfQF7r3NnHtY=,tag:nhEuPs9yMQCt25oOaACfRQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:kuIj+otXkkUajQeS8PPBf6JWZMuh,iv:aPSCpDe0pfwR1PbHIcdAJ4hD6SnJpX6dGwUO+OE6KrI=,tag:uJfa+yRee+NuAwt5p4CF/Q==,type:str]"
+								"type": "ENC[AES256_GCM,data:UfUgBw3Hc4s=,iv:k6oD4GcWyV0oe9inGT6ElKdluEUI1Os52OM34/oxD3A=,tag:LY2JF3VzsGlKKlo96q2qcg==,type:str]",
+								"value": "ENC[AES256_GCM,data:JCfOZAKLcKNN4HO5DHdr/Xc4ET70,iv:B3SC8jrAfK2t6LKvKAFvbzNmZeglC7V2gNnz/1SlD1A=,tag:qJdQ33jh8qj/O07VpFfcsA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:yw==,iv:WQYQLFo93ECDpOeVPfYjkp6TcXY+bx+WhzlSYck9wCE=,tag:34hOD+X9D0+bq3ETA657ww==,type:float]",
-					"private": "ENC[AES256_GCM,data:2Jt9fR/CaBU=,iv:dJ8p4xaEJmr3+Uml5s6lQSFSUNb28U3oz6o4HSK35LU=,tag:Xw00b1dSCJcShih6/H+3kQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Yg==,iv:Ocy3M+twMdLMJGUdJc8s7CQ0qiUaJX1tlGIlB+vENqs=,tag:NkxYcHwZ3Dhn12aV4jsDJw==,type:float]",
+					"private": "ENC[AES256_GCM,data:dnrTZW0mYlw=,iv:DY63hbhsAyvbJKjKQMlbc8KVur/F6lA+YnEzXbQsOCc=,tag:VI5f8zv+jDem8yXaaoAZEA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:+1Wzjxyv+HzbxLApwCS/SRTx8vBXjz9tjvS0LrA=,iv:/SUBy5MZ65BGEIKbin5N10dvMmytyqMpQZlXzvh5ZQQ=,tag:4T7UcHqBMoiO88rplzz82A==,type:str]",
-						"ENC[AES256_GCM,data:IOcrlf7h1ovqYxnmzKjjIZyK,iv:oDw6xmIzA0bdCXAB4BkJiOLtzMJ0y6XIni16LTVUezY=,tag:r4az6EzJLfuFOja3+aE77Q==,type:str]",
-						"ENC[AES256_GCM,data:rpE+zMTe9xcYI5DLjzGq1pISqC3YYeWkN48=,iv:esbPgiYVIMt3gvmeGSoH1eFQ4Rt6dwNv1wxvBAsLTnM=,tag:BO2K9380B7MCdDmagAnaZg==,type:str]",
-						"ENC[AES256_GCM,data:3YoaiqAe6kA5ec2r1iFfsqXzwyAUvYxc+QaUTezyk7etgFJDqSMDOqitLZU2JKaDgHx6,iv:KcMMDr9bUaT9yfOQikJE99U7BPoQoCS065lbHe3ZJB4=,tag:y7k/QPm7bWV2Vobg+42muw==,type:str]",
-						"ENC[AES256_GCM,data:qZJcXIEyPeRxQK4qbsh0nl6HU1c=,iv:XEepcH78hKyu2l1irABNgznehOiwAYZoUd3inZhB8mk=,tag:pJY7qhqbwcCeBLHK4I2Hbg==,type:str]"
+						"ENC[AES256_GCM,data:5RpuJxOurxHkizOJlZl2ifMZ5XA1lzcz/h3OERk=,iv:eiHulSqP4fTK1npuMEIPs4sC4Qof/wmcnCLAIIT+pME=,tag:bVo+e3EPAmbC24ZGupmJvA==,type:str]",
+						"ENC[AES256_GCM,data:XEzOKNcBLhhIsXIeyI8nTBNP,iv:f1AU3m5ea1/i4vz3gliBMelM7r6RmURYaHKQlr9v9qo=,tag:Xaw3lH7EUm9RDUeavBRcVA==,type:str]",
+						"ENC[AES256_GCM,data:OkVdNr+DWDh76o+ob4YPXx8IcJjoL5Mq2vk=,iv:8bYqKeKrPaonNrXVxsF4Xiz1vzsmiGmwyjrhPrlpsO8=,tag:x74GHNzZ9dR0l33cHFb9UQ==,type:str]",
+						"ENC[AES256_GCM,data:DHw5AP4BpYLwwxy8VZSHUSyVmy+cV9hNUXKkcX9NYvUqmZbAxLk1zvOyS57vRfp+7MTu,iv:rlFvU/jRpLe2+0GxHfGRQ/JkjuIecNXfWkuPN0tuKMQ=,tag:jcBSQ7Fgi8MnNEIL6cOuAw==,type:str]",
+						"ENC[AES256_GCM,data:jGYvPxQr888M2GE9Py/qL1evid4=,iv:DboYWADaGJF+5TdkJZv0PFwZsDluA10zholHU5cYBS4=,tag:wW+k2+Ge1GvxqPfmmbK8Vw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:vi2IKuaeFw==,iv:GEGU2PSLRi9wbq5qg2I5VnPpJelG5wN8a3kq/tuWd1s=,tag:HIb8VhTItgpQ48e6K/H3eg==,type:str]",
-			"type": "ENC[AES256_GCM,data:Spkr067KTVq1bZGCeNpDmzxJz2Awt9WySnjUezzjZDMAuhgsC2T+2yc=,iv:iJrwNIZYoiatyMWWzrBDkdx0LxeBvzOvYJHxP8rbJnY=,tag:N0QOnIWNcws2jQbil7150A==,type:str]",
-			"name": "ENC[AES256_GCM,data:X1nxuaelbyXf/akmIrHtFGrs,iv:E/nHnDo+qXo6uNB4QtRjBaFf8iK7f03h3bsQzCnPbcY=,tag:hW+5AM00lbA7Cs0itFQ7IA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:0CBViaos0RZQf1+Cy8YOyliczCkWMMZFHSgzmkj5JaACh1rRzDws/EHBnQIaqD9g2A==,iv:R7onmlJ4xCK0XH3/ag36QTkX3lZkmRqctbuzRFOYXb0=,tag:WN+Ej19znoLC91Eix7zPqQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:0piJldB5og==,iv:0qTmoXmzTtm2szrKdgsrKEj1Gu2YqPoBdjgPSQzSVwE=,tag:OF9HRO8QIIvx3gFqAxqC1Q==,type:str]",
+			"type": "ENC[AES256_GCM,data:uDSW9kvQecXeDrwDClqYTAYhKroo,iv:HDt03Emp60kIn1wwad3KUDyLrw+MxgmZiugH1t+LycQ=,tag:x9YbVgE2jb7nzetm0Aw9Mg==,type:str]",
+			"name": "ENC[AES256_GCM,data:lDAq4PE3QlQvCSklol88,iv:KO+WNoHQpWoAAgXFsZca+nnUQk6qrju0wKn+GJYZJBw=,tag:cg1a2NkoUDJJm0ZDfxt8pA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:w2/AyE72quBk8F4K9dONaAVypaXiqO1FyYqpzYdLD4gs1RXWWPfp5fNI81cYBefJZw==,iv:CVb6T8xf6206uvcAjH+zVMVyx5/OpZ6IVIeGuxCcfKw=,tag:O35KSTLVinsvBWuPNwK0Jw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:tA==,iv:V49bZTn/QkbOgC+OjrkHkwiLmoj/E9xSGf5zlEmSm1U=,tag:qgKIjfnIEAQVwRgBiVsyiQ==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:13iOww==,iv:2XIJe65CGDUEzYRyyrd3bJPUg0vrMLUUJkzIWtV3vhM=,tag:sMZblFN5zvMC/EOqNWWraA==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:eQ==,iv:hkUlAwpSCi6jDTBnvvBLaAqGcGodJh2jdSdQTt6dmJQ=,tag:f+RPP+0r+gYh8aeo9EFFqA==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:VQO3HFU0E0k=,iv:+vcE32Icvnii3HhKs8CPfbEbmtIR+GhxFLVfEfP7NqY=,tag:eU0+E3arzTUm3CyR7c24hQ==,type:str]",
-						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:KJTL789S7yY=,iv:zSeaY6FL/TiOga9Led0PXN7EWnCaE1sGulUnYhU5xP8=,tag:Gi1AMTLrv4v7ahcGSzmRYw==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:2yLK5Gphq1NoMA==,iv:Pyl3dyYnYVmqS2cy01utHkRox4kigHtmfa1zZzE/6S0=,tag:jipX3lSnmOBKDFDcVwGmYg==,type:str]",
-						"id": "ENC[AES256_GCM,data:iZvv6EZms5wpOFVDVZMSB5GHqQoapNEMU0k13/JtsZ7nGFl31ejTRg==,iv:DEA1cqI8+R1+GbqI9VztpbASxIS+0cl97tfBes1vTVo=,tag:hkzbL/BXJUyJUH0nXcsSMA==,type:str]",
-						"name": "ENC[AES256_GCM,data:jyhkAKAWVQvJfTJnn3RtuxLs,iv:nOuCf8ZURmAjTklKiMCQvfqybY2B2gr0CG+/rw0KnXk=,tag:/JlFOS1+7ddc715ZuqW08w==,type:str]",
-						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:10FBA+vP,iv:9k+c4RlDdvSOiHuXxVe7Ug3pMRurJFfQ2LQNyITzjL4=,tag:AhVMKBzIfrMn4bwj40yOsQ==,type:float]",
-						"rotation_schedule": "",
-						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:ww==,iv:YlLJjPqNyDVF0YsbYY6fWwVPB1kYEJL17HiIInkFYWY=,tag:gYuTjWRS5R6TRiWGTmHRoQ==,type:float]",
-						"self_managed_password": null,
-						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:fERJevavYthsnv24Tc28,iv:Or0mmf+i7Vxiw9Hx1hyHUCDxo1URGXfo8gN5hrBqu6U=,tag:38Z+BMW2Hnt/rhdyX+sebg==,type:str]"
-					},
-					"sensitive_attributes": [
-						[
-							{
-								"type": "ENC[AES256_GCM,data:BQn7ZV1AE44=,iv:XqdWbgBg6mFVTXxCo0j/t/xyxUMps2XRbWn1w+7Ndtk=,tag:sPIpXEbwjQyZbzfLGpn/Aw==,type:str]",
-								"value": "ENC[AES256_GCM,data:HNAaeyGuXpyYc9qfWOW5rlRPGgsA,iv:q+AdcaX9UtgoW8AMlVf6yWsBN9uWSxervjJ6ydBXSL0=,tag:2iFZ9u+k79z0KfXbylMKkA==,type:str]"
-							}
-						]
-					],
-					"identity_schema_version": "ENC[AES256_GCM,data:VA==,iv:3LRdU0SLjiFhXUvINZ98FNTvPoDaUlPdeP6GzJ4GANk=,tag:4L+zQPBgjr/aZmKWC97KdA==,type:float]",
-					"private": "ENC[AES256_GCM,data:DF4xc/I5d+g=,iv:gQQaOd/EIWj1ZjG/IPUoKTzv7+Z5UTok1i+RfQix6aE=,tag:zT+cE21H7u0FuKk72a0pGg==,type:str]",
-					"dependencies": [
-						"ENC[AES256_GCM,data:7X7Vz9Q891BoW3dHDTis+ezkWVQr1uQCoEekh4g=,iv:GO+xvRjgoi2tF9PcaYv9o3z8AfH1YgPhuR06WMcOfL8=,tag:hK+lRm1M3ldqqOF1BwdGQw==,type:str]",
-						"ENC[AES256_GCM,data:yBOC7rQsnIrXyeCkkcmqP7ea,iv:L2dM4rtWVfXJXMxr2hiiPk66QNHZg9SQFnG6OVPXPIo=,tag:zhU+ttb2yA+GPup6v3UdIQ==,type:str]",
-						"ENC[AES256_GCM,data:iUsxl5wu6oBjlBSvKVZYmSRQXagfqJ0vl7g=,iv:p+rXREwyNyYQ4XnjexfuronbZlJil+6b1cPS3cygRKs=,tag:9XVolm8eghzqsAOGq+P8kw==,type:str]",
-						"ENC[AES256_GCM,data:o7EUFg6IydNvXnaaxmwoSARvoRRzBjE3/775tLGcAc/itEInKWMdCBSjMHQRZtjAhz8l,iv:VkZBLDz0MrEXhM0juP+kffVdofvFC0HXks3Ee5Y2b4s=,tag:zSTiqy4LyrbC/SLRGgFKsA==,type:str]",
-						"ENC[AES256_GCM,data:Hr/vYudqTgci8TPhY7+tFvv+Hf8=,iv:+T/+qGP+ZsxP2D/Y5gHv2z/dlG4TrEooH90NOSXXF/g=,tag:bnjueIyB26EpDPct26ngNQ==,type:str]"
-					]
-				}
-			]
-		},
-		{
-			"mode": "ENC[AES256_GCM,data:InOPAtV6VA==,iv:2+GWrBBC6hNCpEyxqrP2qRfaJbfNY2TL/2EUksDWq64=,tag:Cn+9GLtpWALkPuNw6tNkcw==,type:str]",
-			"type": "ENC[AES256_GCM,data:Vstxijm96umun5B1CEpBJl1a0r+3mFa05n9kyqM+SRwnbXt68i9IpG8=,iv:LwzW1e5OyCZv3iMKf8PqZvcsMFwYzVvnqAplMUcBX9A=,tag:4zYZio4t2PvXtUqsx0X1HA==,type:str]",
-			"name": "ENC[AES256_GCM,data:ro/W77h1NnEbHWL0eSWOpBBNIA==,iv:rWajvs1A2ZLyHMprsc9lQ8P9NDlLTGCBD4I6hbJgRkI=,tag:aLi/1cPNNV69zVKS1jjGRQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:mdprv1avp/YETjpQCQO7hr/CTGNg7YSfqnjlj/KeossVXlmO/KKckU7jXG7ewxqRQw==,iv:8q1D/kO34eeicdcwec4vLAxNiCq/b0lfthLz2PV9mL8=,tag:5fdikSdb6YJLyRlIsQGjaA==,type:str]",
-			"instances": [
-				{
-					"schema_version": "ENC[AES256_GCM,data:LA==,iv:SKq6F0amzsXemJB4uV6EwaOWVKGARB1Gtn7CuUaoelU=,tag:av2BleHiB1riye84XC3ltQ==,type:float]",
-					"attributes": {
-						"backend": "ENC[AES256_GCM,data:5P90rG/q2Vk=,iv:uhAd9fTkZMT/RVt26S6/VcapBC3XivdxPVavILuGCDI=,tag:yEg0a+WtmCI6+DA8LBpM7Q==,type:str]",
-						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:jpsAj3kyl6k=,iv:d3nBEN1/Sinnw/wUfeftISfpMxMIgLODR+OZdtFZvSk=,tag:i8HU4rXJFKOs1S+9JZUjKA==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:5kCY7/50/PTunA==,iv:qnfecaWtR6DWg6qmm2iGee4oFka76mbQ/eTbQwe5Ggw=,tag:EzsHTBaZV0tyb6i87a10aw==,type:str]",
-						"id": "ENC[AES256_GCM,data:Eu1+lWTBA9+Y3KJvb9L2Med2YUq3Cwmrfy4MBBZJsNyo9Ms+pazTmmY=,iv:rscYg6Ps67pRtncCOQMpPwfH1PcT0FhiXxz5vMHmiQM=,tag:ObrB57387dStert3FVxP9w==,type:str]",
-						"name": "ENC[AES256_GCM,data:IL42F8+8PSLzmNop037dZZpQGQ==,iv:5IkTgfCZRe6oWB9I9Za8eShdsQ56UBOpZuvcDah0kWY=,tag:0X5gydewalqmFLE2H1l4dg==,type:str]",
-						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:vxWpM1+2,iv:dBa/YBJMSgjffknDxg7arqItWopSthCBCLS+2PMp6dw=,tag:BkgvUjWHNd27OGyuy5Isvg==,type:float]",
-						"rotation_schedule": "",
-						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:sg==,iv:haZiA6vqveToqwjCSOM4zLcObJSHIkhur6qFwHQm0Ko=,tag:LhXKyQRWsnguo9IDIO57IA==,type:float]",
-						"self_managed_password": null,
-						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:QaZzvnzud4Pt3FcAf5FdbQ==,iv:tQU4Pz40Vg1khCtGUAYdFdNKrpGMo+SJP4ChwLnmQd8=,tag:Z7nPGcaMT08lTO1O/3oZJw==,type:str]"
-					},
-					"sensitive_attributes": [
-						[
-							{
-								"type": "ENC[AES256_GCM,data:tiDoqfJRqAQ=,iv:TF72aflCJN3WUb1mO62vlcJlf8xaix/5gYylCFUezC8=,tag:x/S5Iy9Rmz1acDkGTBFyLg==,type:str]",
-								"value": "ENC[AES256_GCM,data:abG10yaL7RwFX41bmwWCG75LzFWJ,iv:9Pc+ratoYDjXtVrDQEkqRyo7RKT65wQHJiZfC5UZiV4=,tag:Gc/sM1m6cDV2TU2bl0gevw==,type:str]"
-							}
-						]
-					],
-					"identity_schema_version": "ENC[AES256_GCM,data:KA==,iv:YZJjE/0ToLUTfN2GUXYyvUX1n63rC542sTKuP22ozDg=,tag:ay1yjFzrCWEtmRIVTVLd1g==,type:float]",
-					"private": "ENC[AES256_GCM,data:Gh8ZTAejxNY=,iv:6okrlHIwV8kls+nR6jGdPK+fMpoJqJXOHd5cGfonT5A=,tag:acdBLePJvXjC75MBR2Qmig==,type:str]",
-					"dependencies": [
-						"ENC[AES256_GCM,data:a+XR6D7Yf5S0KKU5OXv46dTnJBo1MtXCXSremsc=,iv:zjeiuZmPd9F4GDf/45qeVfMSW14dLP3sU4W2ww9Oygg=,tag:3WWbjRKVY07hyhVuhLJAfw==,type:str]",
-						"ENC[AES256_GCM,data:dtP3qrsFRsyE8CD39hO4rN6t,iv:oAc4WjV53J103vUu5A5m7NcjJ8zm9F1a8ttmgAOVpMU=,tag:LI8ITg4kc6qs40lcvXV4yg==,type:str]",
-						"ENC[AES256_GCM,data:5OEJXNN+NX7uDDQIoRzCnAJpCuPIujfon5o=,iv:SwU22cSIoGPMKtcDRspVR0sByXKBBqOMZMv4KZi1phM=,tag:ABZCkhLI8bTpgN6CMKSpLw==,type:str]",
-						"ENC[AES256_GCM,data:c8rrhVyiLjrn709WxtZJR8lf1M5AG1UC2ra6dRthVtM293jRqCv4TBEAth+zCRqs5YG4,iv:SqZkn5IvJ70dVl9dpqe3otsGnVjdv0khbtcCfHEn3Kw=,tag:kbi0r0R6VSkfK/1eRAy+sA==,type:str]",
-						"ENC[AES256_GCM,data:UzUW7ebQ3NUctxxDqYuOvpMm/ow=,iv:73ojXoYkPZ2KiAby5uFlwOTYp+IRBlbMIa2sKYi63H4=,tag:K/irgwg40jjykbRFZsikUQ==,type:str]"
-					]
-				}
-			]
-		},
-		{
-			"mode": "ENC[AES256_GCM,data:vlDlEdp8yg==,iv:stkpKZ/cmVOGmVcWB6FpVmbFKhpiEUMkfBPKcRgyCpA=,tag:E2Xxu8YAVVY18/Zwtj4s+w==,type:str]",
-			"type": "ENC[AES256_GCM,data:oKSNvuILhOd3QOTO2oNapgQQDHXtXg2KNXL9CxfZgs2WJrtXADZ3BRQ=,iv:OiYcyPxKRHtPaDxAF+IlBWo8OKto5evZogIRIMVLLOo=,tag:Lwe6jFwDl1/CyTLb93yjqA==,type:str]",
-			"name": "ENC[AES256_GCM,data:MbqJ/pnDcs1QAMxRhw==,iv:2VJn7R1eHIegZahMY8iobVZwqwyJP6CHYmS6klQd/dI=,tag:g8KEPlD18ltY/UI7sViFAQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:Wm9KdlO6a9/40n9sqiWXh5vspem+QyaHwP2eQLq+afMDak7txiqALQFZx1m+oC8WEw==,iv:15USCMy0886/QmK+kO/4R7kgrtASiBL81inib6QDRYo=,tag:1ypWa8ON6KYNHP2xwGPybQ==,type:str]",
-			"instances": [
-				{
-					"schema_version": "ENC[AES256_GCM,data:2A==,iv:nwYrXZp7lv9v4yDH1p+mtkN00c1ynhGsyTyfEMDjX6o=,tag:lDbtjrCO57kBsqM1P9pqNg==,type:float]",
-					"attributes": {
-						"backend": "ENC[AES256_GCM,data:pC2bx4u+QGA=,iv:V6OVuZCIfhZtU7HgISS54r124dT2SOg9LWxqskkeSTk=,tag:KObgRKt9w2Axo9Zs5cbThg==,type:str]",
-						"credential_config": null,
-						"credential_type": "ENC[AES256_GCM,data:8Tnk6X5lbhU=,iv:8oZUtbAFJFp3aUNuXKfIRQr62GdAbpIGz50SPsOSPAc=,tag:jWb9CP0smvaGHLXkBqwmUg==,type:str]",
-						"db_name": "ENC[AES256_GCM,data:HA+aKLnaT7Xq0w==,iv:RiU22Vd4IEZGjshs56h0cwvFPmR2mn/25Ye1y0jclxo=,tag:cCfB2KC62LaUQR3eZUDx0Q==,type:str]",
-						"id": "ENC[AES256_GCM,data:WswkGu5kNfQdia9rjtBcZ4sCBdljzLiKHsDxX2FESomhl5w=,iv:jWbDcL+/wV2lylifrTLp/5gT5/OadyTLTEhCq9BT4PA=,tag:qC/5YDtX5MARkv+ul/xZ7A==,type:str]",
-						"name": "ENC[AES256_GCM,data:twa5KgmQrgRZxPWsug==,iv:ruMP6TDbv1E+daXWNUGrDbBsFiwm5KYKsRjCpHJwVtk=,tag:6beeKAUmf799VVY7Jqy5Vg==,type:str]",
-						"namespace": null,
-						"rotation_period": "ENC[AES256_GCM,data:1fI0W9N1,iv:/uAh9AR3HcTyVdVkoggP+VxbTFyhDmtKXW3AmBvE4gY=,tag:eNuDbfteV9bT+SyoYtzX9g==,type:float]",
-						"rotation_schedule": "",
-						"rotation_statements": [],
-						"rotation_window": "ENC[AES256_GCM,data:Rw==,iv:bszS91H6RKzq3BqneDTKZ6Ryt/Zbg9fJvvCjvEjC1io=,tag:4V/EArlIjUG9VL474vCRdQ==,type:float]",
-						"self_managed_password": null,
-						"skip_import_rotation": null,
-						"username": "ENC[AES256_GCM,data:iD/cnMvfR7IQgg==,iv:ttv6r8uHvF2sCkFne2VDsR5hiy368qgexQm/i4KhdcQ=,tag:FqzXWhTjiK8uJnHd5nfMaw==,type:str]"
-					},
-					"sensitive_attributes": [
-						[
-							{
-								"type": "ENC[AES256_GCM,data:m6FtsCCsNyc=,iv:CNFl0u4e9NbBVj/qVGjnJ1xWu0Wg0iYUVHmMs07HHx8=,tag:1+91m8uMSA9MvOu2wWrgjA==,type:str]",
-								"value": "ENC[AES256_GCM,data:8DmW5uR5r5a5z1vs5+Y17gygThVp,iv:SLyEoJTYBLTivoP2afLpieq8dNt1/p69YxXhnAPN8vM=,tag:IBE/2P9AceKMHelykCaSDg==,type:str]"
-							}
-						]
-					],
-					"identity_schema_version": "ENC[AES256_GCM,data:KA==,iv:9xsAVCjpkzrFhssvD63gw8LT5zbZHGdhhbgFwVCaJbc=,tag:icxd9yTLEAY5cjuJjaNfGw==,type:float]",
-					"private": "ENC[AES256_GCM,data:NMorrLcNagI=,iv:d0ay/TFAOdTK46fzCJC7VSvsjkA4edn/5Y0TlXS3cDc=,tag:PBFrSt1jpTx1PaQDhYEGHw==,type:str]",
-					"dependencies": [
-						"ENC[AES256_GCM,data:P2BLsQK6eaUnSEe2F1+78OoXGNS1s7pmTgyFeqc=,iv:sVhGrSqZGq64kYe9cssCy/mblQHsBxXpap6UbDwzwss=,tag:f3NpF1a50GgiQs7VkSqLCw==,type:str]",
-						"ENC[AES256_GCM,data:F674t5XsY9Y2iOPDEF0psiVU,iv:rxiyfZt98wIh7L37JhVJVE/CqVhY9OcOZkp+OuJzbIc=,tag:XjErIwiGRlDVsgXRJ5F3eA==,type:str]",
-						"ENC[AES256_GCM,data:rCuCg/2VWi971sznwamUXlvW6lWzxrX0iaI=,iv:MLbRYVYLJG9CpfNpWZUWIA1zNw1k1OIWfNDzCRMch4U=,tag:+CNE/BUZkfqOLtM3hKWluQ==,type:str]",
-						"ENC[AES256_GCM,data:8e+/VgxmzKJ2pJTVokaOw8uFV2FyaH5TqhoMt4mJkDRegmMlhc5vxG1mzuSkzAUyQl7h,iv:nLhGEyATvwhAYq2eCy8e2nC0yiBQUQbGGXqUK4iZceM=,tag:9agLbj19QAiCV5G4BkU93w==,type:str]",
-						"ENC[AES256_GCM,data:/1xau0w2T/iwEiKN8dFht3clcBg=,iv:f5eObRI+FcVG+AONO7KXJrribAlzP2jSVcts6xSjr1E=,tag:tWK/8skcy/yJjVg5wUgbDQ==,type:str]"
-					]
-				}
-			]
-		},
-		{
-			"mode": "ENC[AES256_GCM,data:jRKRwuR8Nw==,iv:PDvV4t7wwsb1NwsVtfxU2BwRECDyRL+W2wFpnhCeZVU=,tag:o4D2jcL9L1baL6KoFQOEYw==,type:str]",
-			"type": "ENC[AES256_GCM,data:DGuIv9VcMHkTxjKEjXjRcDl2Ym8N,iv:vldpeP6Stezg5Ab7cYUeWdM/bBVsOmkNPa4t0uCW5b4=,tag:0qYpUuPRbyqvCqQZjB2Cmw==,type:str]",
-			"name": "ENC[AES256_GCM,data:b4aNekG7/zJtamKHWOHn,iv:4iSwqdFSHHRTV+hVjk54HJoJwswrX8eoJc2lRP1Vxbc=,tag:kqi+HLj7T3iOmv9Lsk/slw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:BOsKx/QjLkEdg9/ioXIx9VyJ5cAWRhrmFkqZ+n19+EytCprv1FH6AMSqGO2t1cc0ig==,iv:g8w2bnHEq5LIGyCGSyYyKgeOAPs3bEq5gWKYBw1Iha4=,tag:mvKLfm4XcgYYUPXAwOlW8A==,type:str]",
-			"instances": [
-				{
-					"index_key": "ENC[AES256_GCM,data:9CYfkQ==,iv:+JbDP9k6pJdWvD1ifRev0fVrMUnNBVhJB3pAlCvz04g=,tag:7BDqCRLwWttVt5xnRJ4sBQ==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:0w==,iv:XKoRoKdmBPrdjfFE/TobDvXOWJ4EjEPhwyPUtln4EEo=,tag:3Z6D/s804hsxeHomjuCZBQ==,type:float]",
-					"attributes": {
-						"disabled": "ENC[AES256_GCM,data:3TbD0/c=,iv:HtEWkLfnkphBNNqmGEYkO7DEFYNqTuonga57JeqzQoc=,tag:9fKJNKbICrzjkozwwX/ShA==,type:bool]",
+						"disabled": "ENC[AES256_GCM,data:QRXHe2Q=,iv:yvXNEdxiO2e8zFL0FlTY00XcibmQuX0EMT1V3RJmgEU=,tag:BttfvNrbSYfoiNYg3jrPNQ==,type:bool]",
 						"external_policies": null,
-						"id": "ENC[AES256_GCM,data:bfKXY5L4DBhAAg9mnRRCciSaapDsNIwtb+jN3vwOC+efyO1q,iv:KF4TVeqfUq3EWjiVMm3CDeuQFlND55nONeN8tSX3QsI=,tag:AUO/wAzeZWzF1UsvMKsV1A==,type:str]",
+						"id": "ENC[AES256_GCM,data:aq/WEPlB6NUkg+Z6H3IIj1C2HZ7RIBpzQygfyYLQXSEW0wnS,iv:7di5d6UsKNgguR4Zu0STLCSjObJUUnQLCdNN3PD6PQk=,tag:DVKazcNoiJI4bSEd/7uoug==,type:str]",
 						"metadata": {},
-						"name": "ENC[AES256_GCM,data:9P+gmg==,iv:IPfL8zrflwSxdV6RRVc8fVLfFeXTJUbl07IVmtzJOhk=,tag:U24tz8zom5thZF4pl+ddVQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:J3HXPw==,iv:Yg7EVDDYJQSm2EFpzPVpd2kvU3ENBDb9UOXF4kDKuRs=,tag:WUBj9izo0DeGJDz3hH4o/A==,type:str]",
 						"namespace": null,
 						"policies": [
-							"ENC[AES256_GCM,data:XiujXQFihDu8qJJCGZE506riCX8=,iv:AbnSSmcPL/EH0OtJm+x3nH/79Hfnu3tdf4PnDXI2QSQ=,tag:yUO9sIQBgOVpvOmSEhrj2g==,type:str]",
-							"ENC[AES256_GCM,data:B6DRU3qPT5Nse/CeL6I=,iv:4PRc/tiu0gzZ49d0r6QJFG1SRfWSgeekvLcWKt3BLT8=,tag:olCcYVGNEjiXgkWFEt1bDQ==,type:str]"
+							"ENC[AES256_GCM,data:y7wUkwyDzzxZcbulxo5wBNfxORw=,iv:n46RNipa4KSfIjG03ZjI0qK8CLf4pvp51sK5YK5MRCw=,tag:F03eeOMc24+ZlA4H1IDciw==,type:str]",
+							"ENC[AES256_GCM,data:qAzDqPtzHGX9MciZn9Q=,iv:NsL+kviBX4CU7oupmV6+WaerC/okHB7rNteYbucJidQ=,tag:Xu7sRzeOLs9hCCzf/FuMQQ==,type:str]"
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:PA==,iv:ldb5/4Kw8lY6j8SUMsC/+0N4Ogzhb96byyl2BzYCWi4=,tag:DBmzirhim9goEKjtlx2vrg==,type:float]",
-					"private": "ENC[AES256_GCM,data:A1V+1ux9SG045h04SFHIB/PPbYAixwTIlDY6lhbwzXQ=,iv:R+QrynK99eV0ivH3E5cByl6ZSial3Tjzo1b+tds25GU=,tag:4SxSekuPoJW0z3uI7987ag==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:TQ==,iv:wVq9AiiR6WMvAj21kIUdL6ElD3UDFZjNuRLopgWHPlM=,tag:vlmIBAVaGeL3OmH7QM4teQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:GBlc3sHk29ZyemLKpkB5p/7kxXfUIgG1Pnh/O/1ZPi4=,iv:7wmfXLqGLVPqgblxLKmiOCGu0kZH9X2Dn9eBeoo+PJI=,tag:3HUn5PCo5fgXxdK5XSWjFQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:vg8QjecGRE6ZaouHk4TigRFxSsCBL5xSDseGpWScZWI=,iv:w+AZarMSNd3NZd4gna8yyO7Zo9Uf9GPUeKqH/pVZvYE=,tag:zJZm9mWgvZVbK/XjqVVS1g==,type:str]",
-						"ENC[AES256_GCM,data:+bZ9/krEwTIjgRntJqsRPLv0,iv:ziKBmovYeA6xVI+J7gjdgIWx+Kw0XQUNB4Vq6d1B5LI=,tag:hJXFQG/ESj54sgAgRkif6w==,type:str]",
-						"ENC[AES256_GCM,data:7eXtvZlOLb61IA09zQApKeJXXNSWiLs1VVk=,iv:u+fF6v8zmDijQBWaItd0yGlvjkPO5Llu1Iv3TifCDzk=,tag:4+FkF2On8EvO6Ngyk6sAVA==,type:str]",
-						"ENC[AES256_GCM,data:xKFo2fWtw9gQIcaRssc+hFLnv1oAp07lmSDfhQ==,iv:GVK3ZKVA6tmOeiCZVlNk6i6Vm3+N2+Vlu+KB75CG1Ok=,tag:8vk7E3UnLtKm7JiMzoirow==,type:str]",
-						"ENC[AES256_GCM,data:3s6DyLfGDCTGb14PFjphVwI2QWQPbg==,iv:pRgC0fajd54sLOIWRbUvnCLQTgxSuF1pb4QGRPr+bGU=,tag:qGuROxviKqVwnrPc9OdgIw==,type:str]"
+						"ENC[AES256_GCM,data:OfMAJQ8UTeK+c+9najrNSs5NGlI+q7GDvPRLufil4VE=,iv:z2uLrA119sVySCb+PXT+tRftkRfDFULWpuDn408JdCc=,tag:JwjQdmlyPV+ulmsezR78FQ==,type:str]",
+						"ENC[AES256_GCM,data:HaW2uC7WNyhm01mP4LNfzObq,iv:BOYZ3L6euEV2w6Cuu5iiPDShj15yTWTR43qmGlhA6L8=,tag:SnWM12riH2S5YSi7EXuPJQ==,type:str]",
+						"ENC[AES256_GCM,data:QCkO/0J3qGTfu5U7AdtaHBtmbsdSD1R80bI=,iv:UhTVAYKos9u09vuBlJUvp0GLx9X8Y/o9wFC3uE2JsdA=,tag:6vRBX0W06/VozAqnrg5p6Q==,type:str]",
+						"ENC[AES256_GCM,data:bi/HgR8zoJrcNiZTM4hNB617dfLwPwEplPgdDw==,iv:4lpFSlB6Sfbg5fkayfR6vI/l2jRfn5Fqi6FFTkf0fvU=,tag:8XmF0yHdXujKY7I3dfmgsg==,type:str]",
+						"ENC[AES256_GCM,data:YeaTeh5g4SIt26ef3EeZhb3JjCPh/Q==,iv:uYaRCOdrDTL8/RPgZJp6uR5bC4LIgQTYAcGw0yVoUN8=,tag:GCrEfSjT+Sc6hDtDkR5tog==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:JXTKagv90SE=,iv:j6giqW4XhMyiUsxP1fi40u6J7ic2Yl089M+FS7gh9+w=,tag:3ibXEnFh82eZSQI3wVHSXw==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:pw==,iv:1G9nrGz/v7VbaRYrLYx/42SFIkN5ZMGwONHSy52q8uU=,tag:XIWvqZYIgsE5AXnIRueeyw==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:NxxXz7UTWXg=,iv:t4wsmtcRV9wDj07fkgaQEFI0Y4kfnfdM1sCEPx4/Yro=,tag:ys17KnjQsnwEcGhy6f7QNg==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:Kg==,iv:bHtHjVOOYV569ylEhhRub9afdkA13mxpk1u0ycqj9So=,tag:CeeluNxZ2sfxBS8Vl5BAQw==,type:float]",
 					"attributes": {
-						"disabled": "ENC[AES256_GCM,data:9Yy7g6A=,iv:eE7L0o786vDP8jjk4Jfbt7cnud2i8uS1dNQDwGgwwsU=,tag:fJBTV4+/jCQ+mA2/JDRkiQ==,type:bool]",
+						"disabled": "ENC[AES256_GCM,data:ukP82dw=,iv:gFRu6BsWMQdf+bg4g6uLH9Jp31D4BEZZ9dm2/k6I+Ec=,tag:g6/fIICkkj1r+xy3uOSCnw==,type:bool]",
 						"external_policies": null,
-						"id": "ENC[AES256_GCM,data:MonwuQMb7MhwFO3sKnFcW6372o/MfRFd6IYCfBanI1F60CoD,iv:nuIC8MJuEtTm9GRCMihLbbQSZRl8iqqv8s6W3+onmbQ=,tag:w7c3FHpq27pb7uxcpT80YA==,type:str]",
+						"id": "ENC[AES256_GCM,data:id1hXR4+x6FEiQW92G0iI+8FVtjbpjSR5zrMl+BsCKu2607y,iv:SQp91QS+w6CfHnodQfcWZtTT72LsD02fWBspPvEgq/A=,tag:Tu1gx/GvYo56i8R5/xQ54A==,type:str]",
 						"metadata": {},
-						"name": "ENC[AES256_GCM,data:5l1yxBxwk1M=,iv:qS81kZqAD0sdBpEpdlzzsHNgdFp1Ak8RCutqckbZWXk=,tag:vdjeV5cb4wuBC0wP9lZEgg==,type:str]",
+						"name": "ENC[AES256_GCM,data:+2bvC1JGSv8=,iv:dtf4YWAKPQzQzydooPP+vEJMzXJp1xdhuE+uG5b9SJA=,tag:tSy18shn//EYWcQ+dwLH5g==,type:str]",
 						"namespace": null,
 						"policies": [
-							"ENC[AES256_GCM,data:dqqr7d4TqaZvcbhG7hANa1eLiIfmGOOV,iv:ZgcRKH6b3UT+WuR/Q7xXkKXjw2h2xvGorakizQlBUlA=,tag:yyAN15EPPggwa5gnWsFk6Q==,type:str]",
-							"ENC[AES256_GCM,data:rUHsjJzkBCmTXxlshIST4+D7,iv:5q8YwUVh1mUYl/iWE/uGDUnQPQW3TCAjW/PZl+8xqZk=,tag:F5eoJm2511qYDmX0huZ8AA==,type:str]"
+							"ENC[AES256_GCM,data:uZcu+xT1mTD2Or+puqMlwO6zkyLS+9qY,iv:UwxSBt5atIaavRMvXbV6X3k+gpkST4KKv93X/91h5Xk=,tag:cVxCeGcWJBy9kr6FKRWBqQ==,type:str]",
+							"ENC[AES256_GCM,data:GncT4Cf9ppYlRoZi6+HNMixx,iv:uZknRYJTFFGx0pzmQxsQIFQPOMVfWpPok3eG+K+4pJ4=,tag:zDQ4Y1iaS9uM6ilYsXXDhA==,type:str]"
 						]
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Vw==,iv:IhhOIpVzkiSP5NK8DKXgXUKEgME0b5oV7tX31kxgJOw=,tag:P6mgWQj9tkiAeH0LsKUomw==,type:float]",
-					"private": "ENC[AES256_GCM,data:EQwU/Z0CY9i9EnBD4TqN3CaRR/uVvTtlrNRVYF/Au6A=,iv:KDoO+iNFrV8wOytpHeC1WwLVG0fnmpcV1AlpPuPga9o=,tag:D5UreIIlRkE+XM4+iBeKmA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:5g==,iv:bJNCeUPllbeEs8EALuDjLh4QIm5aO7gz1iSsD+vX9YI=,tag:o0n22m4a1DyvueHNkZ7eCw==,type:float]",
+					"private": "ENC[AES256_GCM,data:Acfi/MDbAmrjuE8XKCmPz4DQlWfax9AI0Ki7HqRRDIU=,iv:3lmX8yMaJRn5TnMm55zcynnUwSUrZImKYCO3X2Hx9hQ=,tag:edfEBMG63YVVArI8bUtZLQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:Wu63kvYN+dDcDcl0gEGEqE3j+Yt6lFbPzekWeur6GWg=,iv:R+io7Xdx9Npw8bV46VqIospgnFGaJCVlYlRTy0tYcJc=,tag:VL0g6MyBSPcjB6BD00Fi/Q==,type:str]",
-						"ENC[AES256_GCM,data:si4JCf8tGDZqDR1a3WqG3T/L,iv:lqT9PiB61gLPkQ/4PT4hlqYDigziT+IiM/Kxy7EktyU=,tag:9CRFuhtAp3gofvPgbbCJKw==,type:str]",
-						"ENC[AES256_GCM,data:Sfw1tl/BbG28ux0o6OPtgW0NIyosASkLzKY=,iv:h9zeDLEpi8K7ftXwiWQVIp1uT3TAaq1v+MqTXlQWWzY=,tag:uW/GrvsP9t1iUFqCtIfxzA==,type:str]",
-						"ENC[AES256_GCM,data:dyCWXRYkfRgSMqorBk64NZXfByj0/St0sxHMPA==,iv:nHel+Gta6De1ryv2Cawd2a8Rm8QTz9nLwPHxwd5o3vo=,tag:n/nM4jwnyHuOkCETuEx4gw==,type:str]",
-						"ENC[AES256_GCM,data:uyq1C9a8o35KzSKzqQfQ4U8KmLhM8Q==,iv:b7j9QubYqyIEoGMatM6tzbkYC3ef2veGEeWo6qmXYug=,tag:bV9f4jPt57MD8kwFOG7+iw==,type:str]"
+						"ENC[AES256_GCM,data:yImEeigFZMuYmnA4mHimZAGSjfWGrxgdPUkXBNkKEGY=,iv:Ic93T4DK4/5bV6JgjoT1b1pLnFmd5JExdS6A7/O8d4A=,tag:7pVVpxwrx+DJvNlQaaZ9eg==,type:str]",
+						"ENC[AES256_GCM,data:PIJjLvKU+NQNzC6VQOq670Wp,iv:ATMNxuTkFF9dy7Q6WqcZbSl9h0575nWMMlSeFtfutWw=,tag:NcdDMZSNH/99pBzCEN0pEw==,type:str]",
+						"ENC[AES256_GCM,data:HrgJqi5QmGkU6JZgpKmB1/xUAgxxOQn76nI=,iv:hulFWBM+5zOzYpEfaCSdvnSuyDRXHHw97efWJ2YtBU8=,tag:zdHteuzsQ+7jIGmN9KMwuw==,type:str]",
+						"ENC[AES256_GCM,data:CzrCnsknHhlcfjp0dj13YKPg3D8MLvc0DnSCXA==,iv:ixHo4XfH3cQxkfPE9ShjuiSL3UWq0+CZ6Oip6Y+Wl3s=,tag:MkzwPb8wc/9EXGVgzvImiA==,type:str]",
+						"ENC[AES256_GCM,data:y7bcw1yEajJvjkKRafcQurNMOCjX1w==,iv:/cejyJGXufdNPgdiJD1KwSQLCCfRV+TRfD43Lyx17QI=,tag:IBs01gXNIGmI1ms2evB8QA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:Xs7IRDlAxA==,iv:mx2isK5uBWLMHoemGfO5cbp0PAp/63cv+pqz0H5qSJg=,tag:ZvsQlO4wG9pKKqzyd7wGZA==,type:str]",
-			"type": "ENC[AES256_GCM,data:l1k6V89e1/kLe8PE9xWHYzDbP+63YK/N3vtX,iv:gYdnQIKbRoJUAYgzriwD5HyqvVGFFYR71dR5UsYMbT0=,tag:CzJsNU0JW1Sn69/3u4VH6w==,type:str]",
-			"name": "ENC[AES256_GCM,data:KBSiQJH+vSa5rJu6wow3,iv:XmSQgBTgpbibLbW9yqq/HoIJs+JuZrhgpArfZpc/1yU=,tag:RpQXpHkd8gBrWjcjRJ/PVA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:4HPFV3vKAY/UAfj6v18cOqL6UQrthW5svN6Drc0QlB/WsnfdVfVMyopO6z2/xxN7PQ==,iv:Q3gK8HJbUcqK3gSi3SpBgrcLoqR8m98fi5KxI76JNMQ=,tag:uiASYoUl9+BObHUr5nrBRQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:4A1PX2o5cQ==,iv:Gru8rLY+rtj0YsF58szG9KW6yc9tctEStiw+QTVd+N4=,tag:jzj9ATPqP4uPp4/FMgHtLQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:TCuP8Ct1nY13E5PgPt9W9H0A17UuGPAK64qs,iv:Ti+EKmAICz6dVwcaGU4GVPicQaBdkB/bMftYN1R9ezI=,tag:PWY0qQc9lXo/zgHYHd6WTw==,type:str]",
+			"name": "ENC[AES256_GCM,data:aqa7DKYkg3MOBoXNoQGN,iv:vdF6coPObQPK6cn92KNAKDHM6sik5lCnUQdeOeDfBDg=,tag:grWPSLtIBcSflUOQhyXiAA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:z9lBpx++6zcXti2r9gsYDlEsI9gyjQY2lU3EpdbfrBpW5F5RJWelANESlggRDq7iTQ==,iv:RtJO7P5UerxxsyrDenZszMY4ESfuZOi1SvouZ4oMtY4=,tag:2ZIPdH70OsXyFbPvemSDZQ==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:WmuLmA==,iv:JIbfe15WP2QLYfVaLC24EZH9nrAOOl9gAR7xy/V0S/g=,tag:sm5GGICuQFfogLVx/sf7pg==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:CA==,iv:yeMTxFFccjatN5Aud6vphLw/7nB2Dtn4QQ2PNmeaziE=,tag:hh0h+CuNmNY5YTjsDenu1g==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:OTyyeg==,iv:NL+l/ML9nfMpFJ/HZcZskziEOQ7VKFINUI8dgucQDVI=,tag:iow74j3WQoxE9tE/HQzqBg==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:tw==,iv:rSMQdT0447sMCu0QQA1HCyfdn1t8slfZ0SekHG8Nv5Q=,tag:1WT7N+XjKt8uDLan02XwsQ==,type:float]",
 					"attributes": {
-						"canonical_id": "ENC[AES256_GCM,data:UXFBlMDkVUGOFv+0a8siKAFOaWQWQ46EJEMReQ90CH6/DpUv,iv:RZw35pQrYJjQN2OsJ/PBKUvv75IkMIWV/gwaeP9Os2Q=,tag:5JswDHT7e8tbV7bfoOPrlQ==,type:str]",
+						"canonical_id": "ENC[AES256_GCM,data:kiWpt75FS3+GthcvYCR8aLLeECqTNu/jrNyMyMcIRPxtbOfT,iv:NbIXnchLkOYGHO/JZDHI0ahafM1cWMnEm8XHD7o80iM=,tag:Av2gYUApofs2Nbapl8Yzow==,type:str]",
 						"custom_metadata": {},
-						"id": "ENC[AES256_GCM,data:jVjcsU5pFghcSNc6JRKzpvR/HRUrccYJGxFx2LkGeNN5SvES,iv:WPcIrNqP40/fqazuUfqEG1G9QxiJK3aNgFL7qT/2F7s=,tag:dbNOzDgCKpE2YT0MIMZSew==,type:str]",
-						"mount_accessor": "ENC[AES256_GCM,data:IEXctJKOPiVxPz5jMqjcn9+i,iv:rH8ZWAkgePrwtlMn6NMnm7Ugq/BmWp1CFbPEPblcY38=,tag:kTI9Rz+V1i/bsg858AnUpQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:ULLSUpdGSI6wOct/hv7i27lpgqqe,iv:MsrvGgf1/4kwolLD0mYKAzvzp+shMWjQn2FCux6UHTU=,tag:4M+K8P6rt29+EqcFTIn4aQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:h98MDQH6Hd0YDbRgtnEYfmGFtpZV/XcTFg3g1sVooo1nQc3M,iv:jFONOG8dGeFbTXGxsRKZZAXNrtd++wYPPfhNQgUMnnE=,tag:AFrhcf2ekGBCt7SuzifJhA==,type:str]",
+						"mount_accessor": "ENC[AES256_GCM,data:FwZkkz3TxBzOPYIQZdZ/6fae,iv:Xwhy33UDcCReTgFSODdpFKOQBrDfhWSJnJN3mu8UJvQ=,tag:kUOgPJ8My3TVq4jtuyj10A==,type:str]",
+						"name": "ENC[AES256_GCM,data:v4+eYVIyDzHcYZkJXO0cvykdDP9n,iv:QReuGSQkRnxaJHd43/mW25UOYipe/pkb6SQt0HqIWJM=,tag:+IDqK7qUzlrbP6HhUxwmTw==,type:str]",
 						"namespace": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:3g==,iv:YNH2lOt63WGHHL1J1iEL935mvQ64JeCIQm2Wu3lUOnY=,tag:xMFAREh8YlnoNMQaAuzt6A==,type:float]",
-					"private": "ENC[AES256_GCM,data:Wy59FJ8TDfaunSAr7mWsyxRKmRrrJenDz2GqgxwMpO0=,iv:CB5mATtpyc9bB0Td1bI28ChHAI7VBjZOM5dbFpE8c1E=,tag:bm7kyDsA5879cWCxcKXDsg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:hg==,iv:5v/OG1NnoLVPzX0BBlDfSOUCx15UKaOVomojrWX7j9w=,tag:n/hSDshql0f9JAaceDcbAA==,type:float]",
+					"private": "ENC[AES256_GCM,data:diTmEgWXeenEwSxvx6tbAmcpHoleJjju9PPlvK5WlTE=,iv:hv+jQCASVDTZIJCLuOaJ2M9LGrxdtnS8hd8EohfIjEM=,tag:v0Lra7ZpYPwp6yP37LHDiw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:6j1TbWdxmQ8tUtLo5HQRv5vnMcLhdie1GJjRKQVSP+I=,iv:qri7NjfjFrbHUivlb5hMUhpVErKWpi87IHgb52HWMGk=,tag:GS6UsSYOPG7UPjwMAIhWYQ==,type:str]",
-						"ENC[AES256_GCM,data:3LHbsMP1sQtVbwvMhFKVNR8/fiD7J2JORKBGGto=,iv:1Ax1MDa5r12jCHmdr0qy/Y7qIz+2huWUjV5aTSvd93s=,tag:cSkQdylB8WTNddNPjQHU4w==,type:str]",
-						"ENC[AES256_GCM,data:lVvV1cPU/5LOp6t1lPx5gftS,iv:Ffb2ntEQX1HyvGX7iHldDvHfQpmfcUpnrYFxSlHZdlM=,tag:pwfpEiBQG3u2EMQru/toEA==,type:str]",
-						"ENC[AES256_GCM,data:nFDDc726QdLTkPRbo9AOFk0IbDg49M/3B5Q=,iv:jxdBIlSb0Jn6r21KMBSLEc8eSaC5HlrR4n+oaWsVZbc=,tag:1dVQ4Dm13eN7/7M5Xb4smw==,type:str]",
-						"ENC[AES256_GCM,data:b96jFjkrd1tS9E8CB5LMZB/ANeCcgmtcpdpCpniIi1YREAZVMQ==,iv:QlZQotBwLmJcpRrEbZ3h5Nj5lE/9teA3N9/oFmACpKA=,tag:1nqU4lkOzg3r8GZUPb7E7g==,type:str]",
-						"ENC[AES256_GCM,data:YwD/TUHQc1gjqHGaE4b75rsqzLpZNmIL0xAm,iv:lin99Y1eFlHNBsIpCXaeQOxee96rZeITdDWaBGVKCrw=,tag:v4HMjIS3AzQ5yhvxCD9/qg==,type:str]",
-						"ENC[AES256_GCM,data:s76iWQXClEYXRM2AReEhLdPrZLf4YsYwAn0kJw==,iv:mYCHYJXweHrE6GOMv23UmAUhN4s8w0KWE+8gv+C4cW0=,tag:vP3PKsJzN9Y/UdejDudcEA==,type:str]",
-						"ENC[AES256_GCM,data:IL42MZ/Lt1HcNsR7VCcuyPXrEpg8UQ==,iv:41vralZ6EGRhLtAjzLwnvoyDZHyF6bQtvj+wudDF+60=,tag:XcX8lrq1J2QWvbeNp9DNKw==,type:str]"
+						"ENC[AES256_GCM,data:6gk5bzjkaqfROtylii+Q6cxr517/XhHrrZtwUNg02nU=,iv:wW6ZAhqzzKQ8gddXdFTWG2qHjF84tfPhneW+FZfdFTw=,tag:G0or0KOZQcJFxh2YscK1Ew==,type:str]",
+						"ENC[AES256_GCM,data:RayeiBuYvr7lLqzp07uHl/955oQuZa9HGBzI6Jg=,iv:7fTGhLrTh+vLBtZnSI3f/ZpoINdQEXOnUgq0xy1UWQY=,tag:iB42iVL4aLV69GG6bay+9Q==,type:str]",
+						"ENC[AES256_GCM,data:r2vWMPPPQ42c2fRY2iSsRhN4,iv:xgNv+dx79Mza5sVOfkFJmAt4zrRjrk1f5XccQaOaFZk=,tag:CW2qu315cOGSf3LC810bNA==,type:str]",
+						"ENC[AES256_GCM,data:FJo4e4Xoxe48DtlNyTetrkvhBTO74+Ay+bk=,iv:bSG2irNb/0NlZYIwxxJ0/MiZkWJSwF30U53Up6FhXUw=,tag:PMSpki8z5qEWYc9FjWiYAw==,type:str]",
+						"ENC[AES256_GCM,data:Hbgottd3S/ZZlD1IIDmBh4HDJXFN1WpOo53zE+1Oe9FKkvgoFg==,iv:d2A52qmTZbBcmjkKGwtS9HUZugIp16Gbm6rOp9j6n1E=,tag:I6c10PeT82HzZU8zbX9LMA==,type:str]",
+						"ENC[AES256_GCM,data:HikkPTirSh0qjNAdH64JjLwfVDbi5IKFwbuH,iv:W+mNHBwSZAvl7zhWA7IPww2x8pYka3ynZencU5YOAPU=,tag:xUsB5E/ZvC2Sn6HnDEBMBw==,type:str]",
+						"ENC[AES256_GCM,data:c4h6vIbeHnywXzJxK7kf7si7oBafKvgicpXiHw==,iv:em0KXQRX6lGwBd8tOmV0anFuiCfsqt6UchNbtYrYQIs=,tag:tI0BnD/V88B9shGn7zvZYA==,type:str]",
+						"ENC[AES256_GCM,data:dahjto/QEaI9zDnvYxeM/4tw2CpX1g==,iv:G6ofYSPPtAX3ZcwZMgRFVzgKprKjGim+IlqB5bELj+I=,tag:VfSR6dMJhxEXbp714I3qSw==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:muBK92TElbE=,iv:7uJK17eGxV/mRwW8oNLcqviTnIgx9st4gc+yDHrO69M=,tag:RBOfydrFVx8ay9IddGWt9Q==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:HA==,iv:sludpwzaC4sl8CHxPWVYWfT7fiinFPkqLMUtMIsUjjA=,tag:IKmeopg5Dbhma5yhQKwoIw==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:vIj/EOmjTUw=,iv:kuLa/it1ta2qEO9gFMKv+nHFHipWF6GP9TPlXMOXAro=,tag:GEFR5ztEn3tjVNWRfQ+QIA==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:UQ==,iv:FqVaB8m7/AeBo3Gjh7QZ0MQgkB9EY/rjmPKw29ymix0=,tag:I7P3VtbF0BZM+Ykjxl2rbw==,type:float]",
 					"attributes": {
-						"canonical_id": "ENC[AES256_GCM,data:KjKERy2neBAq1A0oyMOYdyIJvKu8E41aRMM2HRBvcQdZLPIl,iv:YfzDghtqhqpwEBIzQb00fz27Qm0qttvhJxUBaRTetNw=,tag:5OmkaM6aTkWVEmyqpfxybg==,type:str]",
+						"canonical_id": "ENC[AES256_GCM,data:Y50FPJv1CT8+8sQxeltD+vGF5tBD1EbJ2Rou4skcKjsILCl7,iv:3wdAcG4US2KOxUc9Ea0kolBmrxUAdwlCl5Apejao0Gc=,tag:YQ9nURLgzy9y4xKrA5m+pw==,type:str]",
 						"custom_metadata": {},
-						"id": "ENC[AES256_GCM,data:qvP79CLJiJ7jBS8wVjA4UJIQ3+ZtNA297mC2r1GI1CvFgPON,iv:RwuKhbIkBFztc189m4QiVFGTMGpmVpmHnYokiYdLI5k=,tag:qv/zwEhcTGsGr9e4bqiRew==,type:str]",
-						"mount_accessor": "ENC[AES256_GCM,data:FmswubFE7edog7sX0eHzCkMg,iv:f5ZcdN0zV7zgY3WL0IH5vS6TZY57IVq/MIu+KA0KVFc=,tag:sf8lnSxnadL1lbR/58P/xw==,type:str]",
-						"name": "ENC[AES256_GCM,data:FUaPPXmXStgu0hgCPyHFZ7vX,iv:6TD3/cIhSjDdV6dU7cg2cPx2UYeuWk1wwBWU6TN3VrY=,tag:A731HiMzFEUA1rA0CUknlA==,type:str]",
+						"id": "ENC[AES256_GCM,data:/99qCvxtDbXWNwY5HbuoCFuqmbpCmTioz6wfuyfxkRZgFp9k,iv:WVXjPYyEguOdWKmgniSLTN2MKz42xoqMOhgzU7w0Wuw=,tag:yuFJBEBcrmDpt/G5NwogvA==,type:str]",
+						"mount_accessor": "ENC[AES256_GCM,data:3WWgz/Hgp83Zdkwab16xNkWf,iv:BgleRghpzSC11SRlg+mkfRWgfafUv3EW3Yj2ZJmVGXI=,tag:cZfK+sdJDofp+2WnWL00bg==,type:str]",
+						"name": "ENC[AES256_GCM,data:jxuvCcs1ZkwGGeg0gAJ75Yep,iv:4EpQzD2EHYugJMuXZ1T1PxfmkEQi1zCdoKXgJ4pvars=,tag:67vm/IpIy9jFb5CPPT3zIg==,type:str]",
 						"namespace": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:SQ==,iv:kaSsjFjlr69pwUwBwxUbVfVIWt+yL8Mbi0MlTXwsN84=,tag:ocFv2mahsJnC2+3YrMMjzg==,type:float]",
-					"private": "ENC[AES256_GCM,data:RrSUt9YhMNQ=,iv:vu/A6CPpfv8wrFOJ2bl77K10v3gbgq3A5uvIwKcWptU=,tag:gluU0JMnIDQa5uXvTXxWgA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:ug==,iv:+FPLpNpypjEDw95C6u/uSAcGBKzlh7Mh9oKNQMdHPSA=,tag:RwVwnPgTPF36WZWGgA1Kyw==,type:float]",
+					"private": "ENC[AES256_GCM,data:v6IFp0H33LI=,iv:/Qz4xrpiQFb1udHHrGKxSOcahSG26Q7E1z3r9qKnN1A=,tag:xHk0duf8zeLPF8B96g/LQA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:+ZH4xzAv+X3GQNWvgTawQ1tIEPnliKAKTPCr5s4J65I=,iv:SsLpddq5+hap/rTNrePrvtCZc5EupMFxxQ65XNhV9Kg=,tag:9mB162crvLYcTsVkECvuWQ==,type:str]",
-						"ENC[AES256_GCM,data:UIS/vAfjz2PnA3y0r+K9K/K+ObqrylKVqc0H67E=,iv:0iNAcUMPIAjFs1tY6n2CKzHm5c9cPiS4WUHIV29hfzs=,tag:WE0wfd6tRCH2rdOjmj5hhg==,type:str]",
-						"ENC[AES256_GCM,data:5yFs0uRb7OUEsIxeJcwBuL+u,iv:RyFyWXIgR+vpGDE6evC/YDCVRT6FzlaiaM5eavjV71w=,tag:7qKr6QFdZ+stReRLeb59KQ==,type:str]",
-						"ENC[AES256_GCM,data:60gJpKJzuZsCuiE5VPbilO2q5lHatK7XpnQ=,iv:bIiAlQwpPjez8xaDVUCtIM5SOowXcYG4N+Ze4UkHSPE=,tag:yZL6TwL0DDReV9A3j2SJLQ==,type:str]",
-						"ENC[AES256_GCM,data:iUmOxM0mRwHRv5R8KXYuMnUEpiMAzKHA4sr0RX1YB438B1EJCw==,iv:rbYVuguTdvCyZCOx0sZWQpuGVgDcUXWrUorsqxou5Xc=,tag:Rlq9ao5PdUml/+OB6YRytA==,type:str]",
-						"ENC[AES256_GCM,data:ptAE8r7b0401zslgUyVNa4McoAn+qXb3O2g2,iv:eXsqoX8cocDZNCrDR7jV0HwD5QSRyiV5+RbJ9cdO2Xs=,tag:dfRcDX654Uc3pvNFhWzzBA==,type:str]",
-						"ENC[AES256_GCM,data:SZT5ID44in5yL3J7Z88merrMHcdKlbZjLgPQ2A==,iv:BoE/MfktVOMo3TCYBBkjkCgElx1R9UN3ZJHbu6Iueko=,tag:+ne+hvPzlfMmESou7x4A1A==,type:str]",
-						"ENC[AES256_GCM,data:34nxXUYnoJgS8Ryj4kT2FRKc2M6meg==,iv:V6IHdqpRz8hVx4nTbI3HXVV3iTht3/CTnRcEbF1RTOI=,tag:1H6vkPpmvPoViA3kXFB6wA==,type:str]"
+						"ENC[AES256_GCM,data:C5vXhFoAUOzFz3V5ldudR9/wk70dtJcCeNHgQq0D5AE=,iv:XU77pLeWBMHlrn0fuQZsTciIDzml1UV7GtozxHTX4LI=,tag:EmUX+oAnqUDl80DdnhMeaw==,type:str]",
+						"ENC[AES256_GCM,data:41YEAaD8rJPkw+wYzl+2VYTMl5XCRNYhfFAOZ3g=,iv:OoETGNB7TT6DEDSy6TZe63slYN3XlCeN7bENRaiJ8uI=,tag:8yruHX7T7dPavnT9+/umTg==,type:str]",
+						"ENC[AES256_GCM,data:wV4IDmYgRXu5azrLwGRGDZdd,iv:b7weSed4Q0tdZBX+zNVaqWejvjMc0sJ7LIlFJMbdal0=,tag:2j4pPduz90MQ6L/EgLx8yg==,type:str]",
+						"ENC[AES256_GCM,data:6MEaEKTEMgMW8Rd6MRJQtIu75Jo61aTQtZ8=,iv:hx5LwcuZWKYdDnPsfkkGbD69/NjZsGoePcW+1zpYubA=,tag:tXJXkhZpMSuaJrWw1J6UwQ==,type:str]",
+						"ENC[AES256_GCM,data:1q0VGoX/XKV57hFicYYSL0wL43carDSeOb6Yk0NRYfp3BCnhoA==,iv:iX+povre19rT7pvlrg+C/7w2Q15oFsBkiJkzqT2EZq8=,tag:2tdrmnCQ1DKnd+ez7V1sHw==,type:str]",
+						"ENC[AES256_GCM,data:riSebGnRAwSusqsF5jD6Emquh+C4LsW7o1ct,iv:IvZOg7GPgJJBFoUXt7IiRas8lKOcJzK/6jaNJBYc548=,tag:JrL4SinN2s057jCobmI3Sg==,type:str]",
+						"ENC[AES256_GCM,data:ks21/kHG891AFvoj3VRz0vsqoojpWtM333FbLg==,iv:B235EKO+Z0pV9CqRsIdQ6urwh0STgtyEFXdn2nGHWdk=,tag:7ZbnPJYfSFJ6ow/sPsBwug==,type:str]",
+						"ENC[AES256_GCM,data:mg+xkL0LBAO2VqRcKKVlYMDic649ug==,iv:0+kP70nfN1YEEQEoRG4fJadbALHn0lUoeyrOuNPIluQ=,tag:Whc80+r2omIzpgb2DxqzbA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:lRWnkVGkug==,iv:7pr/YMi9DG4NZuiiX5tQ8vVvD9OQgsnItqDAm7pXlpo=,tag:phyf/48vsHeeT0KaxJ1MaA==,type:str]",
-			"type": "ENC[AES256_GCM,data:tNtdMY51H6Ve8WAQ4JB68Msui+o=,iv:weOqtg/X/Z/lYHRJNQWaGt7DyNPqwXZxzAXQOVZdkk0=,tag:hGgu3b7yizAqxYs+xygZ3g==,type:str]",
-			"name": "ENC[AES256_GCM,data:arGu25ns,iv:NOiqSyTomirbTSb7cq5YdLL3SV5LOmZ6gsNskKrizyM=,tag:qkaHhUyTkfwBrKzhN2uJgw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:+QpRYNEf5bw7s2qEGKzxd1b9ZcVCL0cvVKIRj5aiDm/tMKthH9lmAwNqlzs7ccrniw==,iv:CRu3suqghNBjW8X1rr267mYC4TLDNSjPASmytaB15XA=,tag:MAyYZiMunuq2Dm1mbKVSgA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:PWb7FS6b0A==,iv:VDJ1T5EMflvpFhNdrxbwrMX4xKktNt4JNQidr0Qy6QQ=,tag:m3POgmy/Zr9fXnAzU6cS6g==,type:str]",
+			"type": "ENC[AES256_GCM,data:MVcNUhhG9x++WDoanbULM2nKL4Y=,iv:mwhj33OL2cKg3REhxcyezGroP7PfQ9IcGCZeXlZOL/o=,tag:5W9jCmD/FjvzsZnkdbkNcQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:TMFA9gq7,iv:9HszloKNezH6ftwH/tEWX69XTYe0p79bLUOKlQLIpfQ=,tag:HvG8jHZcgEF4VQe9u6muMQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:TV0dEq2f/xHed4HmwzWM1RNUD4ec8xyaF+xeWdMj5gb/5FizNwCClg4F7y6/+8FmKA==,iv:/9XxFvKIY/8C20BUrg8jKF+CqPJZKdpzQs0B3sIWCqg=,tag:NypICE4pKFsU3rFj6p71rQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Yw==,iv:R6lJ8zhCeUehr0+4EPCHPNlCZvs6eVTyXsPXqAXpBcs=,tag:j7y9Ordx7vZuvg5sR2JfVw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:PQ==,iv:4w09yWZkRVvzQr72HgRlvs+sb+rxMtlABY53y5lOVUE=,tag:k29eTkulM4MPIPStbEzbRQ==,type:float]",
 					"attributes": {
-						"external_member_entity_ids": "ENC[AES256_GCM,data:uk7IekE=,iv:UAUc+37fDw4nHvm910ztDUPynG8NTWM5rpBN7OKFm+I=,tag:1OJG3PoAAeLlNlvhnOycgQ==,type:bool]",
-						"external_member_group_ids": "ENC[AES256_GCM,data:DPfAO4A=,iv:H7X/238XNg2HQcjj6YFGhF5pcQIFrf+JEtrsWHoZsMw=,tag:przW74fm08YH0eRabmQXwA==,type:bool]",
-						"external_policies": "ENC[AES256_GCM,data:wZRpAzk=,iv:thTyu9AaEdEspEnpCS6p8qq33lNLjaLHkAxRL89Hajs=,tag:La8kF951Wla3ySHUEUL46g==,type:bool]",
-						"id": "ENC[AES256_GCM,data:3i+kflXkmuZjRTYJw9mdEHlMcysCpnQdhZjT/dlqmHId+8k/,iv:ZNDTfJFtA5r4fakBrEU7i7jO8vm8k7XsfcvuHxEQWvU=,tag:QoNv6g0K6q6UWAxD/r2tMQ==,type:str]",
+						"external_member_entity_ids": "ENC[AES256_GCM,data:p6ri2T4=,iv:jV8cE6s3vsJvLBi1/C//WhmTRZI72TZw90OtrPp/yE4=,tag:h5cuFCHx/0b/fC1OMRi20Q==,type:bool]",
+						"external_member_group_ids": "ENC[AES256_GCM,data:PzXRZQE=,iv:jmpyQF50eQwJGu7ni659a4jy4mjHxlfu4/nlh0LW3pY=,tag:WYW5nbxU+5Nq1mDEIYhjWg==,type:bool]",
+						"external_policies": "ENC[AES256_GCM,data:45MgG0s=,iv:7nK/+oJm1W8P8JUuXc8faUojz2OLlIssutX+qhKF74I=,tag:ah11fHOGrXKdmUcCEiDuhA==,type:bool]",
+						"id": "ENC[AES256_GCM,data:Hm4GRqXUcP0IRvHKkglGW9g0geEPpdiJ7gRXU/3+KbToYznt,iv:FVo7QD6+V9W1XxeyvRR0WShNROdRl/CuBM6on3qfEDw=,tag:j3IMM2zUOzYR4DhTa8BX5Q==,type:str]",
 						"member_entity_ids": [
-							"ENC[AES256_GCM,data:oY9wo4hp1BCCFz12bdrs1gTVjJAMZSw9OBtiupb1pf0riMPn,iv:7qU00O3GOpxKAQhdoqmHSO6Fd+ztFLqFuDT6D6e7IUk=,tag:h1qtiJXej4EIQIQGXc7pXQ==,type:str]"
+							"ENC[AES256_GCM,data:nyJBpTRg7L1P3dD4Cwp9nW5JLdST8ZezqRxDbdIDnYEvdyAc,iv:XbY9U7rXfr5kFYcKwdKn41B3Y0+11udPvVbsZOkz+/Y=,tag:z10S4ZzepQxdH/EfZto9OA==,type:str]"
 						],
 						"member_group_ids": [],
 						"metadata": {},
-						"name": "ENC[AES256_GCM,data:fIQ8oNGFvFKQfPegWYQ6iQ==,iv:tQlca1YdEBaebxzAoCS72eLL2v+EKA34d7AruPYm4+g=,tag:6IhxfJK8Wh2+4wZRz6iTyQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:MGbnNXUkKS2BqSXxth6t4w==,iv:FatizjLgP229WEZQLX1rShyciJTydflb2ZbKprGd1OY=,tag:aZQBepbpqlmDOBvjbLEeCA==,type:str]",
 						"namespace": null,
 						"policies": [
-							"ENC[AES256_GCM,data:ws+NvF5kE2cmCA==,iv:/ziIXr1XU/j6cco53o71oVC0iZY73AYiQSMRU9vvrwc=,tag:cQVzO/YUV5Ey23AU78a+og==,type:str]",
-							"ENC[AES256_GCM,data:hBMwNfJNypS2NfU=,iv:knls7y1YpnhZv+Tiuk1RA617Q9uTDc2g9M3UiPM9Lvg=,tag:I8OUppFsp9wQhkRSD3mDKQ==,type:str]"
+							"ENC[AES256_GCM,data:TEgE/WQHfP9rYw==,iv:6xeZ7phvk3Dl2qp85VK7M8dV2l9cDTvuiMwGt1eGqe4=,tag:cVzOhXUV2FKGW1+knUzmJQ==,type:str]",
+							"ENC[AES256_GCM,data:LRA1QbGhT43UXTE=,iv:NDToulxQ7a/rCLbv8NUbA8Y+C1+/um0kntQ+fP9RAZM=,tag:TjnkAJEleHndCTKLuHsumw==,type:str]"
 						],
-						"type": "ENC[AES256_GCM,data:NK2Tx4QcNVk=,iv:q0NEMgzspdq/1AsHgbpMFiVjZYhRD5eNoz/BklaXzjQ=,tag:aD+GAPMFKHnl9qD2wMVd5w==,type:str]"
+						"type": "ENC[AES256_GCM,data:qECqNAAXxg0=,iv:FpqfKYIKrDGjkWH6b6dFrZvx8SUn1jTiLjacMBMXtOI=,tag:vF/bcYYqZnzh7TidsL7sew==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:5w==,iv:Y7Q3CcAYi/glyDpdoaVIWMQW0iomm8C8/a1CBf1gH9g=,tag:20EUMjmjQWlNIJcvuSNBJw==,type:float]",
-					"private": "ENC[AES256_GCM,data:dkLiWMdo6dTKKNdUe0BoyB8Ys5RK/O6MlIcvjRLlarw=,iv:+9kAYmB33EB8E00F8Na+ype9vM8ZpFFZsaaW9BGGvQk=,tag:+2jVOJ8DECNceLHSqL9MUg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:9Q==,iv:CE2SnWEfBcDjEqUDpsF9kPehIWCL2FV3hed0snnKglo=,tag:CDthnjGFbW1eShEczjEnXg==,type:float]",
+					"private": "ENC[AES256_GCM,data:i4tPfmUh89UbmBd0FR0Jf9Ho5P26v2UNozOc0660LAA=,iv:SkW/zpDXFA0CL7raTRvzGvwQdJZpvOB3HSMTTgqLJWU=,tag:yh3tK25LxTda/iwzbbdYmw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:DLqWhlQddcdeLNDBSCVNynJE,iv:MnAUtXQKfRid4NEeCjEVj21pcKIgsEo1julwo2bdBcU=,tag:WZ1sIijUfK9yhYseHH4U5g==,type:str]",
-						"ENC[AES256_GCM,data:nMvbnV4BY/EUHsM4Fj4pH6sLHperp6U=,iv:yIpupVBe4dD4Rm+SiyaXKfQXtrNU3DB+Hpn+Aeh8Igo=,tag:SqkoG0ps4Wx+LCd6zV5BLA==,type:str]"
+						"ENC[AES256_GCM,data:fhESDhigDs9uTUGXQ5TaAsk8,iv:uxXWm7yjKS7wGdOjP9MrimPN3RaD0hkiGpOXojleI2w=,tag:wHqTr8U1hNmr70rIhSp9zA==,type:str]",
+						"ENC[AES256_GCM,data:E6aTN1ZN7DxM6xdxnXJNtEdNeBvdsY4=,iv:80k7iqvkm3vHmf+5oEo9BW34926joRUKfZQ749SPM20=,tag:IzonTDxAuBdFlcSESaSgwg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:2uLONymsgw==,iv:NVm1xzwj0uiQDdlPj5k/VGEmDR00G2GXc5Dh+RBNRb8=,tag:+GSVyHt34fQJBw7ZHW2icQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:CpuxOD1HIHBe3+9bTqxh/n2XlCk=,iv:GtJv17khqlt3RN0QeXkgWX1n7s00mIpbVnc+mUgaPCk=,tag:vEJMeRfDAwzKxi1B3CO5aQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:fr8K7mUeUTWi,iv:7kYA5lD9a+3CM3DW74zSw6HlHtNZxc0e5JohqZXCrxM=,tag:hrboapXp3TNWPI8eCh81DA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:Ya7Tatfd0/qjjcTQa2EOyNmGskUWzeQWWDnWBPpxC/LwEuE6B1NRFPI7K0B+THZ7oA==,iv:WBIjGrs8YbBFzm3Q9BoZXwP6VnFVs/metAfj2Wmezho=,tag:Z0NhJ0BUEtcjI0jIDgUkDg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:WaePNL0vsw==,iv:c054cRDA7GL7yzxXudXVweH2dlQj8SDbYgCDjW38nNA=,tag:YCMXDS+VQngfjPqOQjSvhA==,type:str]",
+			"type": "ENC[AES256_GCM,data:hQqgJYFYEP5pjLENPYozGVt9xzo=,iv:J+gK0ovsrwEWl+VhwW/27PILvW67eWB3rrE/ikbBUT8=,tag:DCFXVB9X0VK7WdwjQOkErQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:/LEgJ8W/OTB+,iv:vUk2Cyamx6Wvdr05w2rEmGT3SgBaAEo08lgPV1ytDQE=,tag:Bn0vNvg9nWd7tAG7l9yOHA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:2gS3vCR3HySA3GsTss4RJlhn7TOYi2vmu2+EqHuGz1YtomTy8tv1LpZ1Naa9m2YYEQ==,iv:ryUnjcYMyifJhUVh2/SvXu4kiFmd88jSej50BGelg0k=,tag:70olfs6YQZhxpaATxcLILQ==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:l+rlRQ==,iv:uA6xTjb1a7PCAt4pElNHRjOjJ1UqNK80O5GCKCv5U8A=,tag:rmuQp9fdZ7NE5dlbQOSrRA==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:yQ==,iv:txgyQ8NJXPjfkV7Kt51uns4CfwguLi9Xc9XVBoKiok4=,tag:fBL4gBBCxthLYf+PZTRU0A==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:i7lWaw==,iv:ZGWVXgAo3L4kPFXQz+UazhMdm1yZVXvf8dKSCF2lWOI=,tag:14m8xNViT4BDb6Wp5g+D4w==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:4A==,iv:Zrui/B0BJHzko56KQFlus0XWyxt8dkCpKisVLmnG5uU=,tag:gFQADiEFlr7kYDAz/T316w==,type:float]",
 					"attributes": {
 						"external_member_entity_ids": null,
 						"external_member_group_ids": null,
 						"external_policies": null,
-						"id": "ENC[AES256_GCM,data:b8vnGYytj1PS/QbuWPmUVctzRiAqtvQQhS0iC66PRumYbhNx,iv:A0YYHDN9+nI8GEP6X9GmpIvlLpc+MEQ3xjpCguk8KWc=,tag:DxJI47OYMzzXe34mOM8FcA==,type:str]",
+						"id": "ENC[AES256_GCM,data:oeEYfmw4oZjTPVrTqLlGRviDlTEyhjf53okaGzpgcLARgDDh,iv:y0xV3LM4ROtmz7nmT+9TCcdE4VRpJVmPEN/H/yelKC0=,tag:7Ci8RcLCvMRl1f0ISc7gTA==,type:str]",
 						"member_entity_ids": [],
 						"member_group_ids": [],
 						"metadata": {},
-						"name": "ENC[AES256_GCM,data:rf7RQXQx5Dk1,iv:c0q1bO5dexQN3vq/zmzncP86eZheMyUJDR6pPKmh8yY=,tag:NCgXzCC5aSSbJ2ryk/qLDA==,type:str]",
+						"name": "ENC[AES256_GCM,data:F4qsjds77S3q,iv:b4zHQ1IZZNud/p6RBH+yHs5t7sc71Fm9PMH2QZJv5vM=,tag:oxTT5qiGiRf2m6HLKbSRvw==,type:str]",
 						"namespace": null,
 						"policies": [
-							"ENC[AES256_GCM,data:hM1cfKHKRzdHA6MZJPQ=,iv:MDCUwuns1K2d1slQ99FAo4vCuc3FMiz5v/wQeZZMsx0=,tag:2bagEN/6mmhVpjMR/Ay2Wg==,type:str]"
+							"ENC[AES256_GCM,data:aEnaqnifN+7vc+3+o/Q=,iv:xMCO9PxM3sRTgDRFEJ+0eu/DiAGcvH+i2R+pKam3VP0=,tag:VwhDalbB5f0gZGdDw6IIHQ==,type:str]"
 						],
-						"type": "ENC[AES256_GCM,data:fztsV8VzoPI=,iv:PYkag7nN1cqEd+yXg1X0lO9q93lpYpoVcyQzjz1aaXg=,tag:P2pWQJNmjo5g+fIO7ctHGA==,type:str]"
+						"type": "ENC[AES256_GCM,data:foON2Pmakbg=,iv:43FcTHPXVmKi04w88Ig4TqkvmDHL9uHtZgDN3yZZBJI=,tag:kLbQ23st6d90Euvq0SWE1w==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:zw==,iv:p/+APRQsgq8NgIxYapqjpy9bnNESa34sk4V0u+ASQNQ=,tag:2WbHdb/0ZuU2lq64gs8QKQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:8Uj3ibmSBt3k7rlUOCTCT+gx2ww0KkcvDwCUylj1r90=,iv:oiJ8oMspSAsLBJ0hSBGJA0yKQ25c/2aLnLdELNjZ/Gs=,tag:CVJxEiU59XeCkerfu3gFtQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:/Q==,iv:CwHzXQ+GzvbvzfQlmfaKHLfKhLL3fAcnROwXDeoo8Bk=,tag:nUft0qcnoYpqVqV8WLvOGg==,type:float]",
+					"private": "ENC[AES256_GCM,data:eWsp7YF6Ab3IgDS1NDyqCO1SZxCNZJxwoZmrdKctIF4=,iv:JjvYAhfjTXfjQgF6kWdyqrepDi658ExE5Kp9o5Lpz60=,tag:5noSIjuI6IGSbnuQ6nPV5A==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:Dp2lUhjABhp0FZRGGnNwEWhLlQeWse0oo+NcNumA/X8=,iv:XYGGPI/HZ+1gh7JFVjTRRMNVLHdlK1HNWRFwWTX9GJI=,tag:lGmtn739trIyo/BWEFN8nQ==,type:str]",
-						"ENC[AES256_GCM,data:WunBNql7xy+GXlwkd2hxdra0,iv:D3LPURNCEG+rmeFPPUzZq+SQuv9++DBGtJ/SAa3HRlU=,tag:fnhpLb0wb3msPWqoEOF0HA==,type:str]",
-						"ENC[AES256_GCM,data:0rxE9vFZCbiXs4UqzJBluPBwLKP6/NublXE=,iv:VuqmDAqJI/clMmo2LpkYf9o9opq/OFHDZ089HtIv1Pw=,tag:5ocuLjqHv4rO4mmUKEGLRQ==,type:str]",
-						"ENC[AES256_GCM,data:vJgTWTmYqM4m2RfnE8//fGXtEi63JA==,iv:TeETbqqbLECSe5C8GFo1aTxS1lTKCcYXhT8O9norpoA=,tag:+J3clKqQunfsboJiAwFyIw==,type:str]"
+						"ENC[AES256_GCM,data:qmt6j3lmM+KBXo7jozFB2ibAat2kQ9qh7Zsybl3wiVw=,iv:B1zqPL6q5dQWlpixkF9GNbDY/XWFhSShnCyIPNuQMZo=,tag:MIyIEHq2/mNcBjlMQPx+nQ==,type:str]",
+						"ENC[AES256_GCM,data:B+2nj/p18irTgQlNuFO3OsHA,iv:p1pypQjlykqRjTMBQqarDKC6jw39h/itTvfEc3hPl3U=,tag:ZpJGYfelK7UtKPW6W0oCIQ==,type:str]",
+						"ENC[AES256_GCM,data:siEe4Uz65V/McsICMM9DLpVoX5vRDtL1E1k=,iv:8TIhEmuXMhgMvavzEMuG70mfaYeDSsD3MZeU9yjT2Aw=,tag:9w20+TUELZmB4xUDXDVflQ==,type:str]",
+						"ENC[AES256_GCM,data:rZmicQiXzA5WT7Et07gTXzqW+Ur9MQ==,iv:3Lb5O0/dnkK+fArBsD5jBZjdIcuon4/CD/6BAHUtank=,tag:zMvYRTzDoKoXji9IrFm+Wg==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:D99V40YiGOQ=,iv:gBhg5VwAr8OLy+uwd9TeMUeyxlBpVGvzkO+J+kuUvVw=,tag:iVsSSUxj6roiPmIl7yNYqw==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:dw==,iv:VkO8X6FxmHLWfUSC5xfupleZaWo03GaIwl+z1kkQfnI=,tag:evuMeDPHBJv3vKqA3Pn9Ew==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:YGPHEf7OX8Y=,iv:8rApp2OqD6CcOupSw339j69EmdfNArXX3wSCgXrfJwk=,tag:pwrt2Y4w6bMo4gGDbLv/Ug==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:8A==,iv:hDWUtI3FxHaCFzY0fEZNB2t2xYk5c0v52X/IkqlxrBA=,tag:YR4kqp88iQ/Fshs2uE1VZg==,type:float]",
 					"attributes": {
 						"external_member_entity_ids": null,
 						"external_member_group_ids": null,
 						"external_policies": null,
-						"id": "ENC[AES256_GCM,data:VKsZhOp1jUfj5ypMpq1cXQK1pcktLGUUEtfgp6kru7iEALOm,iv:IUcSLe7ffhP67NfLMILA2rzAg9Vvf0OGSRc1r+NFmCQ=,tag:gW1CYBAG6dL/Fj6HU1pcWw==,type:str]",
+						"id": "ENC[AES256_GCM,data:0Ar0ujHRCgut4QugKCXrPrrsFzw0fTOqMk8j0pwRIvD4P8wc,iv:jog/dzFZYpPpkqNnE/FytWqe+9GQHcSOa7W0Z5fSW4w=,tag:lM2uSNAdYpkZfqZONR30PQ==,type:str]",
 						"member_entity_ids": [
-							"ENC[AES256_GCM,data:K7mKeZHNxVdRh7DIvB2aKVcsAVedwwTO29hAyUm+nBIrk+76,iv:tu3kxWpAyoYxDt3XKqMDodgi4/J6l/01kaEqTP3K1wM=,tag:YsChfHOPsQB923UGl3jNFA==,type:str]"
+							"ENC[AES256_GCM,data:BdoPVDpmdQWbCLyUA4/Nvy2WDs3ZqjKz1os0cy27iL7VQF0X,iv:K2EwuJVYG1whGz56YVSc1X5LHXX+8uELx/rl0AdANug=,tag:MmHcK9aG0mTj8EcgSEk20Q==,type:str]"
 						],
 						"member_group_ids": [],
 						"metadata": {},
-						"name": "ENC[AES256_GCM,data:RUmFOgSJGK6Bt8S40w==,iv:SqWPYrf6z1s4+tlWISputgA71YHiw2LIQGj7K3OFNI0=,tag:EVXAY/ndvAPgaOfyJrUjtg==,type:str]",
+						"name": "ENC[AES256_GCM,data:hKcp+rHWtjew8bPDCg==,iv:+M8aEP5oLKd65vmWCNUxyBZdtvd/uQuuWW4Np64D67g=,tag:g0PqVmjMtKZCEH1t1xzfUA==,type:str]",
 						"namespace": null,
 						"policies": [
-							"ENC[AES256_GCM,data:Z1SBoyE9MGKnrNOACH7QbFSU,iv:eGOOUR1cksAva+3+lWwIWxXRmeXR7IL7JrofFdd1N94=,tag:kXsoDVwekGEsMN/QbscWaA==,type:str]"
+							"ENC[AES256_GCM,data:LyPRYPWFOviOSsRb/DdcqzxW,iv:TpRtKaVqPJmzQ3Dzo67s8/3QOWBFdbKU3onYGyPW3jE=,tag:kGyj5gtoepkRHkYQC26puA==,type:str]"
 						],
-						"type": "ENC[AES256_GCM,data:pfsZ2xlfx/4=,iv:arC9xW79sfAdQBCO2Dhi2lQjjlm3B5ktlIXTbf+EpEY=,tag:vG0DCSdqZaRLxVKHfdVG0Q==,type:str]"
+						"type": "ENC[AES256_GCM,data:wgWygRppFFk=,iv:cBByFbtc5HjgGKuzgHm5gMXaSH3NGdWZq5zVoJnzgJo=,tag:B/QQ7fXP2P3Blm1pryBurA==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Rg==,iv:LSP0efB5oowy04fDNSablSRzewU78eoIcEDveeSLXFk=,tag:8DbSQiRvC9uvD54pX195yQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:yzkPF0gWNuV/uQQkXZHONf/a3aeHPui/F0YjGOfVTSk=,iv:Hj/Qpq3Lm1MMHLKmyv+Ue9g3CcWei/xyvfFVfOPYjjY=,tag:vNznoQY0fq7WBffr7SPETw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:NA==,iv:t12Li2OjjLJzuxOHhfJGHTMv7rkpnqNv9lChFbKUwEM=,tag:QiKHxWrnLWRD+MPEL6UZmg==,type:float]",
+					"private": "ENC[AES256_GCM,data:TZxif9RkABJKiabc5X2t0ezzeVT2sd5/hEjPgq1j0D8=,iv:8C7AUDP87xtjbMiYs1cYFi/M+r/oPZQgjF1oL2wjqAo=,tag:B8A6Fq3mDvwR13C6Zp/M5Q==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:ON4ZaEVsDU9w9RkVotXrUoR0OZL0GM2ihwj5lkXavjg=,iv:UZG7DrnHUwvvnR+3HIDegUlTTaiW5Z0kMYin9gz2Lmg=,tag:P53o/b9+J7Xq0+S1exqOMA==,type:str]",
-						"ENC[AES256_GCM,data:exbu3zfohe69ywQaOCz2zfGR,iv:KtiCGBwtidovbcZX5VJ3pViySlfvt4xmR1cKhsAWDnE=,tag:ehGM6DpDF9zHAlR9vcPUhw==,type:str]",
-						"ENC[AES256_GCM,data:e6CKBEn3pWYp30/PvMXSyNsc2sFdysfEGyU=,iv:goHOjQCRktdWvgcNen5a0U0T0JXe6R6h+ZpeS7Zm7ic=,tag:pF+7NZ1kZTNHAU80MeqgFg==,type:str]",
-						"ENC[AES256_GCM,data:yD5S2hIl5x2wMY1nV2eBKuRu2NcLBQ==,iv:/kZFs23Y8z8JCJbm5sK/aYbsBUv0lWXJhGGKH0HkCR0=,tag:X1kIZZeYwnP9ZN5O7VIOeA==,type:str]"
+						"ENC[AES256_GCM,data:hvDsltduHfRilMYk6388TQ7ZVcB4CyMy6uCU8N/YEy0=,iv:tVUxKsRKMsa4GvDgEa/A7tI9xT6nur+xhBQ6WOryucI=,tag:a9xq4gcrJeDn51rFLOyO/w==,type:str]",
+						"ENC[AES256_GCM,data:iCGErVLD5jwW5YdwMXrpqoVr,iv:OPW04yCMIdCceYMcWVKEDifeBRLU+5AOJXhIbHZh0OM=,tag:oM33uqIpmeSGUSruili5eg==,type:str]",
+						"ENC[AES256_GCM,data:zaLI0B8x7BMPrEnLA/YG/ixba9i4AyN6Hw0=,iv:jJZfUCP1BrLttuO9rZkn3y89NI4DOlWjUygQOt2ix44=,tag:tjwnXGGJrGldIyqPqEQhHA==,type:str]",
+						"ENC[AES256_GCM,data:e1v+Pxi37n5XKa2joBZ0rIaB9G1wjw==,iv:HQvVwTf0vn5kDLezO+O/Owrt0UlnoYxpYRfJk6ZqT5s=,tag:HE+K0OTRix3giHuG5FKLqA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:9N2onYhrBA==,iv:ylKk2yfncefJpPq4qSvuuN2CMF4BPHa1Xll2zrHyNsw=,tag:L8TAJ2Xdt34mIu+J3cjWig==,type:str]",
-			"type": "ENC[AES256_GCM,data:UmZm3LJ0OC92Ch7ph9XuHi88XFt6t5wcH+E=,iv:zFOO8jBI4QnbhAsEvWsPXUpjqB0UHdWQmXuZ1jAbdzA=,tag:rTyJQogielocg5jjmBxRbA==,type:str]",
-			"name": "ENC[AES256_GCM,data:0MjqvQvx,iv:OnDiMSEpdRtcemXtSr0hzMVkLD2jaY81QS2S19b0hoc=,tag:Cf5w3roiAxtweWCt1JdN3g==,type:str]",
-			"provider": "ENC[AES256_GCM,data:N2X3a/1Ql+7Xj5Dc/id0WePlvXp2/RI0WRXWWneYrf4dXqw4G/wrTpBd8LDtXj8nsQ==,iv:uiZe9AI1d20brBkKspR8LpWhm3IY6aruTYQ6GldxJYg=,tag:achASURCDTfhaeHm9pRN7w==,type:str]",
+			"mode": "ENC[AES256_GCM,data:O3bK70iAeg==,iv:SBJTqh7tJnsokCxYkdxAjwWfW0SNgFJ0G6c+vlmPhAg=,tag:VYN7/bK3r+CE2/B5sopUoA==,type:str]",
+			"type": "ENC[AES256_GCM,data:ZrkxBaaG8W+XAsx1Z0hFcUkRwbdTMaZKhkY=,iv:pjzGnX+TrS7hVlNyMPDMUcHbVySIDiQcCYsDQw2FaU0=,tag:klLo9SEeTKDx2/+o9OYlfw==,type:str]",
+			"name": "ENC[AES256_GCM,data:xwBAr2W6,iv:1Mx7y9OJpvgA3ltNpPvietCv7BlU5cjPzpvNGi6iPUs=,tag:RSdzmgA/9Luex9ARh8juBw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:nQ9jH4wt31vLe3beDZhh7Ut5mdVPNW6hDptyQRY7xLlA0+2PjKhtabfoiAEA5y+jvQ==,iv:YFUG4ys7BuRPA9NkLgJW8AA1d2wYgPCtohcB6f2WREs=,tag:0edt73r6pPELw4HmlrXKvQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Iw==,iv:5P0qqgmi9Tmjd3G1O5dQbpkHztDJoWRK/SXQk9ZT70c=,tag:dBiX1tf4H4ip9CGDpiJ7hA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:8A==,iv:eL1YS9ClfyYqclQsvcGfIzrbcl/gh3xx7ZLGdfw20/g=,tag:TQpQzPKKc+rEFAdUiSVWZA==,type:float]",
 					"attributes": {
-						"canonical_id": "ENC[AES256_GCM,data:x9y032W05ij7I7MR3246XoVnujwCTxhhl2usceCGHcrPsWcv,iv:l59joUtEZDACVKhtghc3iiPqj1euKcof+EdyJeh/Qho=,tag:TfilLG6Ku0C7CwuYmp3aaA==,type:str]",
-						"id": "ENC[AES256_GCM,data:dT4hySZFo9eTfX3cq/4jYzbh+yvY910BjH+rWnNcUHKIQOxM,iv:pX3OoNL1+lYPDP/xuJj/ZNrdUv7Or9rnHR5F6W6UEk4=,tag:8MCy1TgtqYIHsV34ZhC0VA==,type:str]",
-						"mount_accessor": "ENC[AES256_GCM,data:hP9wPGqch6cdWvYrr2XrIPxV,iv:iLTqcs4A+i7AJ0Cd/i9ySCRu4dMR1/uA7fRlDxHn+f8=,tag:koCfx3NKKDPb0c52GNexNA==,type:str]",
-						"name": "ENC[AES256_GCM,data:0w982ltO59BYgKP8IiYpJQ==,iv:mE2L2o6xlFQPWpZPjwYb9suBhfasE5ZI7xMm/fYi7dE=,tag:Lz+u10dGdxUh5psaB0gHIA==,type:str]",
+						"canonical_id": "ENC[AES256_GCM,data:u7fAmf64V+zONiRUyh/Ubd8HNpm2W4XOXIHycbBBVg7JwJw7,iv:K0idO2gpfH8FzZbVD4hWnRHqowTT09if4bPzqtJiBlU=,tag:5hBUGY6bhh1xNwN5QwXIHw==,type:str]",
+						"id": "ENC[AES256_GCM,data:DSId+p5QVOtbPhQVRlQfMX5+IuxuxlVVY01oILkIVDIfawQa,iv:ixaHpN+kk5EoH0iZO1gElFuyqzKwdf4dcZ2p8E9y6Yw=,tag:SYsihpAIiD6kveM4Dqp4xw==,type:str]",
+						"mount_accessor": "ENC[AES256_GCM,data:zr7ZiNcuZyTz6lMk8Gb72M4g,iv:A6yN/NDWPCUDTwATrSynDEb2dfDOtaNWc4A28U7e5Dw=,tag:3ZUhNVNGPQmNFjyjRtoy2w==,type:str]",
+						"name": "ENC[AES256_GCM,data:H+RcR7I57mdumNB/+ikfrA==,iv:5FR25ASBPcRp9LbCoONL9BfgnPAD8ycmxRNd+YeJv8Y=,tag:EeAKZhJlN7rgSH5rJbYOpw==,type:str]",
 						"namespace": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Ug==,iv:GhUlRuEReoGU9BZVZBqm4walrYTtECpv0j70iTRmRI8=,tag:YjnZHslNFs8jj3k9bOLXAw==,type:float]",
-					"private": "ENC[AES256_GCM,data:crD1H1QD6j8=,iv:RvF59fG5pVZ5YH13egBErtBevBFVbEtMNmXFP/xlCmg=,tag:xVXyPjsF6keOWB6j4ncPog==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:lg==,iv:hh3ngFtPK++B6UwrWBk99H+TVJZWRrixmeS6Q5WJq0E=,tag:J5fYlp7d1lm4YlcaD0Bl7g==,type:float]",
+					"private": "ENC[AES256_GCM,data:nF9JJkIYt5E=,iv:oadTfyJfU49Een7BcElQzuLsvlJvjxHXMb+c5PnCLqQ=,tag:pDF3g8Gq+CMVtIFe8kVMXw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:zOQ5EWu33hgfiB6etDiXLejyU+oS559kl/Xjv54=,iv:MvFOeMal0eq8qb+Uxhm4dh3fzJJABevG4T4xnv/HGyI=,tag:/9uJwHHiK3iqjBW4cWmSSg==,type:str]",
-						"ENC[AES256_GCM,data:oAdqqXueZzODenQWlpCKp+oo,iv:4ErbvNTk8OwEYVH+wy3pnkasbDJLmikaod5K8csdD6w=,tag:nuOYavlEyDYeqZrJiONsFg==,type:str]",
-						"ENC[AES256_GCM,data:vU4pCww+PjQi4LLZ/ZarJHu8cU9ux2vqgNQ=,iv:SdiZ6NPO7MI3O2fx9dJgLuQhqYHTMJu3DZkR67lK8IA=,tag:7WveSFJac7mFOHeEaVW+zA==,type:str]",
-						"ENC[AES256_GCM,data:4AuuClOlhw/CQrc4X21NzZ1zEivD/Owy7VGA,iv:Q7lHVDnnS0eDS7xogiwsbx4o62PBSeRuKPYr4Jr1Oh0=,tag:ysVnIRKlKnpm2x91AE6rng==,type:str]",
-						"ENC[AES256_GCM,data:tDe+MEUoDMqbe0nZSvisUxZudc41NfcXNfqR,iv:0N0VQp69EPBqj8PG7arPsX/qnTTnULkjzg8krwn2jhQ=,tag:RVY2kVNpEb7CSSe5fKH16Q==,type:str]",
-						"ENC[AES256_GCM,data:dbtj++ysGH7zwO1MT0FY3hnz,iv:G2u9aMHtuGmG+R3A6OAIBo64uieQ1KFLGg9dQV5zGV4=,tag:gMEI0qm5N8u0nrsT0grR/w==,type:str]",
-						"ENC[AES256_GCM,data:O3HjVqGG7rUu3PGNaantGMqf5u2iNnE=,iv:6/Pbadght+wGpeSLuPfHEklHSSwzsAH7MaO65FyVONo=,tag:ia3l2fBH6AY3ClLOujFypQ==,type:str]"
+						"ENC[AES256_GCM,data:wGzBjWya/eoxf/zdGr56KY/PCSPXe0WwakQeraI=,iv:UGjAnX1Q+ooSjD/4+iXXWVsdYETSc0MwOk3n1BL1M1A=,tag:yX+uEtkYFj28uLK5rTL1kg==,type:str]",
+						"ENC[AES256_GCM,data:c13YWI/UoWO9/2Tqxx9+OgUz,iv:+hkn3vbbHgIZ1YfJSiLM+UJzoQLIKKS5yoWL4ykak94=,tag:Rn2KP46frrEZt/r2UPlN0Q==,type:str]",
+						"ENC[AES256_GCM,data:0wJQG22agRNY2qmUrnIIJZnyVrxw26W6vPs=,iv:0PonQ2SIo5Tuq72H2xkotLHB9lLgZ7bvuLAhtqDZ1Ko=,tag:H/r4rlmNqLkDXUgsnr3h+Q==,type:str]",
+						"ENC[AES256_GCM,data:objB1/IGuqXUanEtZlwhdZjv1ZXH8qcFL19U,iv:+/0Gg6bdxPm2ibF6lqalkKrxEYUAUGdFrX0iZ5mxdZs=,tag:Vj0rYM+1u07C7o2kO3uOCQ==,type:str]",
+						"ENC[AES256_GCM,data:mx7AHDcpr++EZs/m6Z3ANria5eCOBcbvNvJV,iv:Gm6uabNw/8pkkzZ6nQzAsj/we8BlXpemRiMt4pDyYM0=,tag:YPLMZ9s+HkzdDjAIvwY9Nw==,type:str]",
+						"ENC[AES256_GCM,data:4rFQqQzBeaO05roYR5Zcg5RC,iv:muYS75wKU8hjvRFqLdWePZfKLzV8Pixx6nKrdXQlBaM=,tag:CDUms7/TITpnz+wg4bASyw==,type:str]",
+						"ENC[AES256_GCM,data:jK9eZs/khyPHB6M49bCZPpIFCbc3eOo=,iv:DcW1+iCnPuv+DP2pOaZ3ynbw138KV1g9CPajVW/GhkU=,tag:We4iIrH6Ud+h7V0w3S4g0A==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:4LXKvSumVg==,iv:xPvQb0YPrPZ9TzFAalvNkKBESwDC+wOozPQM4BOOcDs=,tag:1GtNRGAzPCn8w8NUJseB+w==,type:str]",
-			"type": "ENC[AES256_GCM,data:5So5eUaL8jIlyTeAWhxWIuwEsTI4Xl/SVWk=,iv:0WvhiqAVKkhR/fD8+dBtI/qHBxEuD+dCpoxceiSpCQs=,tag:Syh/7+OXjr+t6qgdloYEcw==,type:str]",
-			"name": "ENC[AES256_GCM,data:cgm40vw0EEa1,iv:EEJy6rQk7u5JWr5MdQvd2jJene86UpJ1Pg/q/RuOtk0=,tag:mtgzypqyvC4eziu7cG51hg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:mSnSGuzziGTyvMQyt6ls8anKrN0zBJ2XOPCwbFffuxMaZPZ9O1Gg9DGbji+evquHaw==,iv:WFTEJrRU5O2BfaFIi/15BtqGnakGAIfJifWMnrzgtmE=,tag:xLDmIUXSE40MzSjk8LbKkA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:DFRlfY1u3Q==,iv:IKAFfY7XRK+yjaxhU8ZT2+GM287Uqec6ZNqdajIMfEA=,tag:F3l09M4YYwUNc/fCqNGjEw==,type:str]",
+			"type": "ENC[AES256_GCM,data:dRaOX4/guCINv+H4MRZjms2zO+de3/uDtpo=,iv:KZ3srKpOwHO94XbzONxDk/12Eni7AbUbnjXrC70nBDI=,tag:7fOrdtUiwiClUKAT3o+KiA==,type:str]",
+			"name": "ENC[AES256_GCM,data:SoJUOw+rkZ/N,iv:9uV3qJPczVfn5KSGJ8Baq7GNs0vF0qmvWf7ojOSNPgA=,tag:mURNMQJ/5aP5RkMaj/PRfQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:8Y7r7jBPpWirorp6wZMzsmd2UpfjNs3IIQCZrurMSjWlPzbPGdpeg3TLYumQApz0gg==,iv:Us7Gu1ZxQ2hfT8CFee/SWVDju22BpTZCmvul+NXqx9I=,tag:cNQM9Vtrr/xu292zRaSgMw==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:/F4JBQ==,iv:0RBzgoyiMubLUSF9nLI/C7xXFLBkNwR1O2cIIQTuPT4=,tag:oUXiQCiZRpHVXtMaX5Z2QQ==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:kw==,iv:WU4H8/e4ZEtj8BSVfEZPKTNrva1NbV4tnXMAJb8U+UU=,tag:cRB5r/rfDBic7UVIayOjGg==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:qTT8+Q==,iv:mCypB8hlAaU22+P/rEuVm8mMKnYBEZ0qKc72+amNIUo=,tag:h7olZmCCyr+AdXYYo1XqeQ==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:Fw==,iv:xdSficBNPHgHAZ6o8Zg8TsrhWKka5v8zQ1BdwsJV9pI=,tag:k0rYVLmxe1s4CMWxSTChSA==,type:float]",
 					"attributes": {
-						"canonical_id": "ENC[AES256_GCM,data:tr9VHtIv1aaXRZ7anLsb4YiyE0xRA49dhiJiYgFbXVeUJIRo,iv:icEr6WclLjnRL5BPQ/tWnGqoKtpUo54UWfLBkV7BOjs=,tag:QqEaJc72Qqk7nWYtwlPX6Q==,type:str]",
-						"id": "ENC[AES256_GCM,data:1EN596q266/cHFrh4c2lw/uKdeTHxGkaVx5RB8eft1eWrcze,iv:0UZ9PtIcshaUp+/okCwrXtPhm0mRTrBhSkdl2uC+aXc=,tag:nQPO1+mFD+dZCQqRD0H46A==,type:str]",
-						"mount_accessor": "ENC[AES256_GCM,data:/w+U76dAnLXpGBPXPbs2Jkh/,iv:dMIWeVZe53YbouBB+KxtmthQwDVl1yNL2Z8mDdZJlTU=,tag:E88I9lgO9FjfIz3dZUe5Jg==,type:str]",
-						"name": "ENC[AES256_GCM,data:gJtItSlkAO02,iv:s1zFQ8IZGwebGLXgeMGhDi3bpTKLR11Cvlj8Sqh61jQ=,tag:uDfimaLRyaHMg8+ZnIBBcQ==,type:str]",
+						"canonical_id": "ENC[AES256_GCM,data:g7kLaaz8bN6uBjLkXhuEs+iTmJnbv/E+Zkg54DToUxINKsMM,iv:eAew/P/oMtXCt+l4sVKFm3xDKdA4rCUkrL5HQC5aa/8=,tag:5d4GjbyXIgAsbCvnIrQ5qA==,type:str]",
+						"id": "ENC[AES256_GCM,data:V28Ejv0FrTInyjhPjTDK4s9ZcENo4grdCNj9woMNNpvtl7HR,iv:lulmG18SwkVg6oWIIQRJoxBu0/8rWR83OhHiy54rbbA=,tag:j0xeg6/6wDgKQfodXimyAA==,type:str]",
+						"mount_accessor": "ENC[AES256_GCM,data:OvtoQIdHUELDI8oz0BFhAjW6,iv:LgT1scAsxWElckR7N4rA0v2rqqyQ4TmzIiqu/ahxoEw=,tag:gmSIv+WWIE9eV0OnZKb6WQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:vwOZvYRGWz8K,iv:i1QHF66YuCC0rq8WLQ08gh/J/PqkFnPb5h8rjAr4GHc=,tag:ctEbgMuha1a5vW7MO8dPhw==,type:str]",
 						"namespace": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:GQ==,iv:bJu4OsjMSC7kPBd5ASVD+pnumuohHiVMQoofKzt2d9Y=,tag:RSs9D09yrlUS1B0pA4/uOw==,type:float]",
-					"private": "ENC[AES256_GCM,data:i3SYfYIfvwk50bGgnJDVLtZ8EaKAHr8B4a7YN2PtmxM=,iv:sQ5172u37T4/GTuzsPXEA6WMsDcpGl5lLpkqxMFcTbg=,tag:cVFgh7UzXPabnaIvqqXgDA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Jg==,iv:bvrznYTWZagc/Y6+pdK0qACp4HiDW83N4uEGlqftoe0=,tag:0n1AA2ClrMwQiwaOy/b1aQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:euy/OabjaNrqUfHeb7M9cp1kVzUDIXaWUboygt1KmIQ=,iv:xWEIUEQfZWZvaThyf+lDKNv3ZvghxUQ+dTTIz01aDN0=,tag:vrpfjOPdMbXg01Gzza9AkQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:yqeZ2At4G1v5hXfO8CH9vDn443pmohFRcIHIGcStN+Y=,iv:h6MgvCEvv/vzHlhjy6Uf7BSeGRogw5LaxQX9L381rgk=,tag:5LbqPC9j4jMqyuUApzoXIQ==,type:str]",
-						"ENC[AES256_GCM,data:YCasJ/AOYII4MlofEArieUBBBYeiu3j919uackA=,iv:hJHQcdg48nWCGWKJmG/6Rb7pqRfuag40AJRqpYwsB30=,tag:t7yzkuzH8aNMzzwCSwvcSw==,type:str]",
-						"ENC[AES256_GCM,data:4qbTrr9q7ex2ndY2+dYzGj1v,iv:oLA8iEbYLpnEVtEhcyECfeaBw8ZAf6q79Q/064h1eP0=,tag:5yAY5iW6FZw93aP+0/1OHA==,type:str]",
-						"ENC[AES256_GCM,data:a94qIm6Q7/FC7ix0db6idXuSAbTEY/Qf3pQ=,iv:mE/v8S+fiS8Bv6MHaz6vAd1y/wbXyiB2NcrZZ8mlr9M=,tag:6t+k57eLQHAIVYb57x+Jcg==,type:str]",
-						"ENC[AES256_GCM,data:bOYqV+EcLzqpCUrkAlnG111GOzxUXHqjUmKuwdka,iv:ow8cpIWCmXtiYLJjUrdtELAY66w2VLrpQhQtP+DCF3s=,tag:AMxiS2pKiYePJ/T9SHnrlA==,type:str]",
-						"ENC[AES256_GCM,data:9H6zfPP0VqbEf/4l23RRZF6HOS2wWXWAuKwJ,iv:gWKGUYmnbGLySditEAUH4RTQQpz7kdoCyzDYXmal0z8=,tag:AuWqwI5Qbimw9YxundJB2Q==,type:str]",
-						"ENC[AES256_GCM,data:aWNp6/YJGQVtN9+Qeh8hV9EKkV4Okw==,iv:9c0rKHPhtk4Kbowr/SNcpxBkgUOR03ZJSqIdR268L8g=,tag:1VJCAI08F2NaU02Hk5QBvA==,type:str]"
+						"ENC[AES256_GCM,data:wZzn8oMOgQbVhI5o7Ih6XfsHon5bNN0h3L2LdhpcHCY=,iv:gk+Nzbw+iqCC2jhXTiy7Qn89LZctFKrq5aRCchlF6Uk=,tag:vPF5MGhzFwxV2rmjB8qD2Q==,type:str]",
+						"ENC[AES256_GCM,data:ql9j1BP2tMbq/EvvFpLZT2dQeGm/L1fnDe+z4es=,iv:JBcTMlCkpQBdc/qFXC54GAGldxg3rQJWkuPcmPr5cqY=,tag:ro6jdoSKaNkDgURZCMOxxQ==,type:str]",
+						"ENC[AES256_GCM,data:z9aoVehsdVMjfB3sD8TXvWc4,iv:m4o0GI6O9/yjMKIZUReW6cpnNfm2IZK2H4DCx6jRK9w=,tag:cygY38/F4MRMprCOF1+EPA==,type:str]",
+						"ENC[AES256_GCM,data:Lg3WswtO29IPgC6w7YItx/MDceBCLmJPPZg=,iv:k/e2jfbX/9LJQUtmij53UNup8t1ip/QpSRVbxxPbbSg=,tag:AyA4WCK9FGqDEj0KlAZeOg==,type:str]",
+						"ENC[AES256_GCM,data:nct/NxE3WNwqa17G2GSJNR6GJT64N463ROeXbhkX,iv:Ko/N2fdKWDsIROu2b1420PcjgjuFMEY+qS9bXJOUkcU=,tag:xtPY56YuMVBdIE9wZ/Q/5A==,type:str]",
+						"ENC[AES256_GCM,data:x4wSKPk/eDcM49N33FyqcQZJtilAu1upHLuE,iv:QS7QwOeJNIcAZPPIC2rzuqTKiVORy2G8sI2/ZRLnPTA=,tag:6Q50jaZC+dk3FVKG/rfJGQ==,type:str]",
+						"ENC[AES256_GCM,data:ooRGyJ8Ik7G6c6MYRgB2w7USc54m6w==,iv:RV6jrXFq4svkeeQhpK8AqkbaJKPAghFz0b5MJn5fz8s=,tag:UXgzHzhvRz2DAqptfmrrkQ==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:PDCpKj8EQyI=,iv:wEuSUIQ7tvGy4un6Lw+91OXpHuoEQfYJMkVv5NUgeLk=,tag:Ad+bM96zStJUqhKRTc0s1w==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:7g==,iv:CyCSi8OPZbj237nZJ5NWYkooDKSaWHNzU1YvEsfSRPs=,tag:uk1ziSqlkQ+WqFCQci1Bng==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:KAPn6pDVAf4=,iv:TnnPxL1LXqlP/89nLeVCXwiLak2yioCSMM0m/34Y6aY=,tag:sTaLJ7xx9YGh/VowitiLfA==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:jA==,iv:Tz9XmN0Nr+/EcZt2DBK5ZqNEbTztYVwgVPW4yT47ntg=,tag:84mAnUTmGJvrAyVCpcXX3Q==,type:float]",
 					"attributes": {
-						"canonical_id": "ENC[AES256_GCM,data:BDYd4DdB7/B2AVju7Xfxh3UkMp96uezPIWjaMm0PmiZCH5ND,iv:S2VemiZse9KubXmbUj25biX9TvYhinxXcSHoFU7qw3s=,tag:I2tCuNq+FEeb7sY3ddX1BQ==,type:str]",
-						"id": "ENC[AES256_GCM,data:dgew/GwimlixIyCKcLcpG8fyqR05Tmx7qZi4NgtGpCkgrz63,iv:y4oePq6g+TDfmK/x/A3VAeeBxF0ljGLWaNj7RBeTRlc=,tag:bWxitZ4Ek0JQzNggNNdaBA==,type:str]",
-						"mount_accessor": "ENC[AES256_GCM,data:vhzG9RXZXBknid2e/jdhAwWY,iv:S7iKURUpugJYyAQgfe7/lw71ngzC4RWPqYk+XIjP5OQ=,tag:nyXYJDELQ/ijsZjJh4XXYA==,type:str]",
-						"name": "ENC[AES256_GCM,data:u8T9VXibdmEssy7ScA==,iv:D8jzA75IIktBJdAYdNMjBKI0+mjk0oewqrwDrwHR9pw=,tag:3ElFctLxyS4OpbHf4t+2+A==,type:str]",
+						"canonical_id": "ENC[AES256_GCM,data:7GRiN2/B099p7X0TMkhjnvaYwpRoT1w54DFBcc8rx+sC4WLF,iv:cTOJPgxY0Tm+/QTLXea028+wH3eUE7z+3mvEgVmrVlY=,tag:3hRselq/9toIUMfF84foXg==,type:str]",
+						"id": "ENC[AES256_GCM,data:zgfXoP3pNCUcHDFOYhqTysLu4pAkPEI35skFTNaOLdXf19Lh,iv:+Y0JVqnhegOuvOJ4/b1CvIzSuKTZKlqs6JAFYt5mNbA=,tag:hH2DsCu1z3dPOq7JEZT5jQ==,type:str]",
+						"mount_accessor": "ENC[AES256_GCM,data:zVddMhNjBl9SH3uCbHUuWSlP,iv:rmsWZNvSjic1+brYpp5x+vIizJ5uG0tGjPqO/RF+kA8=,tag:W8VVQ/AkFiOJSpQCLbdfeQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:uDyIMMtjGFSaLOAMPQ==,iv:ggj5s0YbbOqEk2cqmGe3fjH7mH3KA4VjILSAJmEk7UA=,tag:iyPxOuAr/D8O16eXAe7Jeg==,type:str]",
 						"namespace": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:wA==,iv:WUOp6P9CWHMAyfWnxrhxMoK/p9J73GUxdNm6pj/Rjjw=,tag:NHPvn9wvDF21z5OJtFLwnQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:65hsjwyrKZs=,iv:qhciqAN9gjW9cOGEGLULljJ6USfgGION+TY9nwnndEM=,tag:Y0uR8574MG3coeiCZw5MOQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Ew==,iv:TEifnsdaEUYcS8bvRODDLeg50g0U4bjhpl7NORXCRcU=,tag:Dx3FCjnDKcFhqz1n+w/Z0A==,type:float]",
+					"private": "ENC[AES256_GCM,data:IOXvWyG8QHk=,iv:xB0R7xJMIWfJL5MTL20Xm3SSPg6/oJgm+fF1Y15vAX0=,tag:qHpcvMyNbMHlKgIHoD9DSQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:bc4hphKKAThB1583+yKO47rkERtSo9mGVfjTf3UgHgs=,iv:k5g8GLsV0TpyPNChdPBrvvKZM2TytIUPIHq4xoPntYA=,tag:2DeNfb+6aT4O3cX/40gVZQ==,type:str]",
-						"ENC[AES256_GCM,data:V713Gxoqvp165oNQeog5eSk/Scqpq7vORUaUuAY=,iv:2gHmyrjpC8fhEOwVvxOfd8Ykl3Jmbk07pxtSQqA4oEI=,tag:AdVNFAF8oJ8ZA5FmOrmBAg==,type:str]",
-						"ENC[AES256_GCM,data:D9oHVOrKFCnt55hM+7lzrW/z,iv:UUW3Ef4irsYq97GV3nGy+DiyF3hj2C86ihgI4zU5Kvw=,tag:YXEJYo9rA0QMIC6UDlEe5w==,type:str]",
-						"ENC[AES256_GCM,data:CRazLnwXk5IISr0Xj7HjlPGDM3DRkMItk4Y=,iv:CsmDf0kBKOY8XoonezF1ArGeTW6/ATud2lH7HHlk/i8=,tag:FXs8xXJWchbxzXmWmstF/g==,type:str]",
-						"ENC[AES256_GCM,data:q+MtmbbifeuTU6HnmgTVoc6qQPIMjv6+cH2tltCG,iv:l2d0FE2Jukq7hEcWR4LbmZiKi+sZelqU22z4iU0aY0Q=,tag:0BtOrO21+Kxvbxk5Ox5sBA==,type:str]",
-						"ENC[AES256_GCM,data:Ck10yJSeCeYnphU0+n/78vEWjNq5hRQUfmhc,iv:cvpFlu/T84Qnv/Qfuo9flMku6FxAXnhsFcpzgYsb8lo=,tag:J1LWL5C3pGehJBHXvk5hAA==,type:str]",
-						"ENC[AES256_GCM,data:iyCAt0TRRyJF84PuIIpXUBZlCIcg+A==,iv:XBjS9eH06O99Nuh+pRa3hLY4n8vwLzm56u6C4okXT5Q=,tag:BMe8HXIfF6oVCW9SmJZPUQ==,type:str]"
+						"ENC[AES256_GCM,data:ibsjwkBv+FKAFmJ6ZGN0esAmKBeZBi/DjtY7xyPTLsw=,iv:TQF5ER2JmpJLDJVGvKt94q+BFlsFVH5v1eG9I0uBWOg=,tag:C7ya1275kcwPuPe+wU5+wg==,type:str]",
+						"ENC[AES256_GCM,data:WLVhcnVp7g6VjDMWsWI6PDYuLApXcvyQabS8WSw=,iv:NPROj5U5cJutkmja0fhIBdjvwgJMSE6TvztFXbF6MdM=,tag:EmvkdsZ+SPC6a2u+sCDn7w==,type:str]",
+						"ENC[AES256_GCM,data:x0GMKtP0bodFhP7ZSKDi9anu,iv:pt+j1801vMGfos1WGCPQ/0UjAD1njsEANdtrZYtadDQ=,tag:8dOEnclZK8JNGezjq4PGeg==,type:str]",
+						"ENC[AES256_GCM,data:bGc9/P1udg2+7TyUQwQea9b5tgsh9LLTQHg=,iv:sr/Z44XFBuC91NiEIaKP/V/N5VHGHCvbH+5Tti6JEL0=,tag:GxxDvHIdiLepD8AnNmN9MQ==,type:str]",
+						"ENC[AES256_GCM,data:5dq0XFQZ4jXQxmDA3dXJX7bcygHS0jvwolJVA2qr,iv:fEdhcWv/p6Lvvm3A7d0wpMyuOkEmiUb9ppjexU5G0ms=,tag:mgrfEBtKTWaN6t5vwAUYCw==,type:str]",
+						"ENC[AES256_GCM,data:ZkATVM1iDSi1PP5QPotBBysn7XPTW0bizfc9,iv:+59YzVDHMzfNwlo40j2HW0stwZut8ANrDtWGTHJ39ak=,tag:kSbFgjbcO6pkxhtwqoQl8g==,type:str]",
+						"ENC[AES256_GCM,data:bRTZbvTxiQVyPJzgkgqBtML5cl6+oA==,iv:goV4A/G2BuxfdgTlPK3RQlvibMUUH++G8NsdJEYG2yw=,tag:4DJ6ITfH0Zkwk0QGLHTPZQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:BDZoPmA2sg==,iv:tP7g/yKBJl369JVxYOXTrrnO+oX8/7BtkGrAvjQm+7U=,tag:o2XkrPLvV1BKIHUC/qlwjw==,type:str]",
-			"type": "ENC[AES256_GCM,data:N4fZUpQ+VN4NGK+Ykj9rPkGJ13ym+w==,iv:ZA0zoJK++LyBw0wJ3kyTNOao0n4dhqYXjWRvoiYLVhk=,tag:PwoSebCQ+3bGQLBeuRB5IA==,type:str]",
-			"name": "ENC[AES256_GCM,data:RG/nnQ==,iv:A5MBHWLGXA+wYExniy9us894vWHWlEaM6gBNom0J6ok=,tag:S8R+FB4TAYyiSUi2+If+0w==,type:str]",
-			"provider": "ENC[AES256_GCM,data:KfxH6HEBnydJZsVMtASvv4BP28mesSdsGcYQ8gTEZ13uocwD2iddvYwSELi8ciT1aQ==,iv:0fx20/3ZfDccWYhFO5/+saXHxR/hlZbs9SKo0ncKx4E=,tag:kVaPieqZmxxltPM20fDLYw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:5RlKEKH2mA==,iv:opkH2EFShI7OfwgRT/6Rhy7Iyikrowj2vMtJjcFmzh8=,tag:ahbE+yjbXkBj9Q3m5bKBtg==,type:str]",
+			"type": "ENC[AES256_GCM,data:3Zs/njJQRPMrm8nMrRAe7rEJrity/A==,iv:qLNVNquAHs1Z7+vSEePAZ37eotwPku+FuohP5mSb0tU=,tag:8ptKzpBFFIjkn0vccoUUog==,type:str]",
+			"name": "ENC[AES256_GCM,data:8fNpBw==,iv:wPKj7IjdVxKw/3y7fcKTqMDE6/5WG/bHinbMrreGT1I=,tag:24skXiRYtS13BvJkGTtt4w==,type:str]",
+			"provider": "ENC[AES256_GCM,data:5N21n5ZxmD9anTkkEFTv+tuFUCiJK61rKUVyyxdaDVGbnqIUyuwWxdHwZXAqmxPDkQ==,iv:a+O7in9KiPJrcoH4msWlliF/5aI5wKEhEuQpMG39TyM=,tag:3cNRFZGUfb43Zove6x9dOg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:8w==,iv:xeDMlLTeUyKQixE/lDvG0MaNH/ETWqPgLUf6MnlM648=,tag:+O+0G0TlNycEwNKE8fgbNQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:IA==,iv:rd5Sd4swE+5voWgSwjTImSZoeuVfy7tk7IRxzyYIp1g=,tag:zdLNJsj9SPYrRidgMv1AVQ==,type:float]",
 					"attributes": {
-						"accessor": "ENC[AES256_GCM,data:ZL4uCbx3eMglxNdFSC6IlS7E,iv:W7dOz07+h6QqyXjXX4fuutraBXesGOgI52HLauBBVCg=,tag:9+mplO1HEM/1F7DLzrJSOw==,type:str]",
+						"accessor": "ENC[AES256_GCM,data:cAfY52mfnKxuhtzlv4y0UDF1,iv:isLp28anNsp8+yxdnkVS+1UzwUn8umr3ghDO59IL+J8=,tag:XUCdzyGtDLGY9Utin4wUWg==,type:str]",
 						"bound_issuer": "",
-						"default_role": "ENC[AES256_GCM,data:8Dom2N5vjw==,iv:uEDoHpRt4X4ZLXQwSf/X56qnJY67etk7xy1km9fOo8M=,tag:SS6UP7zss/4bJ1JmhYwKng==,type:str]",
+						"default_role": "ENC[AES256_GCM,data:j+wY33Wl3A==,iv:mUlLMZLCqhuWFxIYM106jUfkTreBiaHJ+wi+QYXTLAg=,tag:Bo5ZxYGZgEdSaX9RA2meDQ==,type:str]",
 						"description": null,
-						"disable_remount": "ENC[AES256_GCM,data:dSZPVtA=,iv:NFnD531um9nLQDq+pamhBzBgQm78GP4I6SDWIqzP6wM=,tag:vFCfuCkSoBjwpQvPa/R7Vw==,type:bool]",
-						"id": "ENC[AES256_GCM,data:6EKWLQ==,iv:sWbzu3mzy9pc3mZZnU7CTZFoBLPrr8fkG01+zAVXZUs=,tag:vB8IqDnzI7JxgBXlBPowVw==,type:str]",
+						"disable_remount": "ENC[AES256_GCM,data:jDEcQws=,iv:1FHiQwcpBEzsjot5xQAnqWd0sFlAdDlr4fjLphL6kJI=,tag:V6agrZpOsOy+47QDc73lKA==,type:bool]",
+						"id": "ENC[AES256_GCM,data:zljbBw==,iv:OyHyqzBhhIZY63Im1T8QQ3ROUPP7hG3RXJgyJ1kj2Qk=,tag:/uWo+HX8ZOG/YKra9FPAdQ==,type:str]",
 						"jwks_ca_pem": "",
 						"jwks_url": "",
 						"jwt_supported_algs": [],
 						"jwt_validation_pubkeys": [],
-						"local": "ENC[AES256_GCM,data:Cn7Hnw8=,iv:b8FW1p2KQrusH2WDvVDmi+tKqgqJaBYz3LURy13dJ/k=,tag:5iMkZGqSu1Sb63Zo/6AGtg==,type:bool]",
+						"local": "ENC[AES256_GCM,data:ldXs01s=,iv:OD6htNntIUP5YR/sQfI+0Uy5R3LKr/hJSLwSxsM4v6U=,tag:FpjusyxOV8cHsJQgwohN3Q==,type:bool]",
 						"namespace": null,
-						"namespace_in_state": "ENC[AES256_GCM,data:4Oyghw==,iv:NMc2vMXGtGc6X8cG4TOiSpbs3yLN0vHqXZg8A84/N34=,tag:LZvgkyPx+hHHIAxHczjUTw==,type:bool]",
-						"oidc_client_id": "ENC[AES256_GCM,data:F3qN+YAfhiopgEoKr3UaBJkimxB72q5r3Pj1QB1l0fA/F6VbHAl99Q==,iv:aUOSu2r35Lujt3/521ixwK8IyMIfePvwk5+EUF1Mu+w=,tag:MXdkufOrJ1E95GHbQQEdiw==,type:str]",
-						"oidc_client_secret": "ENC[AES256_GCM,data:PFIOPYTOMGNbBMvB+ug/gfinymLmIwIBWZBq6Vy9LP/WRA+y0svDxPDZYH/u8FK80oX4yH3TAdN8WJGH0cUO6LAhXRO9WojfoYhcj7WeFzTHzwuVp2mw6oKUlMHv9H8SDoAk0kDT6xeybCqFE+bp/+wrh5T9veLewEbQwHWncgI=,iv:MG7j33Csm3DJ913iTgr2ej2jqYGuMEeN77jJ+tEm7uc=,tag:xXPV1Ixu5Nv6rosEiUFQRg==,type:str]",
+						"namespace_in_state": "ENC[AES256_GCM,data:QdWTPw==,iv:TYv3FvLoiPhszHpOPlRu9J/2tTBmGSQTh0F/suhZMcQ=,tag:HjIo9nXPACxNZ1HVvzHZrg==,type:bool]",
+						"oidc_client_id": "ENC[AES256_GCM,data:5M80XT4qi3cYL+MygH48egt1oGxd8n3oCkbUQdTpCF6cs2swiucOIg==,iv:ZtyEGtnaUrlZh0HsGXpzTSSpHwCYFcaFAAQ0E9Ik87M=,tag:gd3N3n1wT7oqPc1Z5GyWAw==,type:str]",
+						"oidc_client_secret": "ENC[AES256_GCM,data:J1yujseS79Zf0CZGtvjWkLQBroa2nsC6ryMgnOPQEsEAdNH8KUjgnAkSgn7XSxXIrSod/lLZwhRwf08c6jJVb+6UMDOtdm58Ves6596nQgE4QdGXzkIKkKKJvON/BDbPRoaUHWXdWVgWfqkEnByzwXhH3c2s9COf0JMiztqT11Y=,iv:OS+8WMHp6p9IieyTZemecFvSBA9eNNlzYChr/DEU9ME=,tag:gkufq5L9Bd2VFOc33MWSew==,type:str]",
 						"oidc_discovery_ca_pem": "",
-						"oidc_discovery_url": "ENC[AES256_GCM,data:asdJM+X4b2jdpaKcBnZnRUEAGjoq1m4ThaLfiykqA9Sez84TytfJC++/t7MU1SoZ1Nkq3P8b,iv:G09wp8OEhHTVhEA1uLZA8BJv93cQeCOBEgZNdv7JL00=,tag:fRvotkjBTKLaPgTeJcqRgg==,type:str]",
+						"oidc_discovery_url": "ENC[AES256_GCM,data:zuupetLNK0PJtTEQWj/VNRtHjtUvWicV2rkc15BN13FT52DYfQgc0qeI3eDNiTS0vQCyAPwB,iv:ZfkAf4Hh2ptzBSuQjKYRis2acpiX3jbZVxwX4AQqrsc=,tag:W8rZeahKIsBGRwr8m+Y6eA==,type:str]",
 						"oidc_response_mode": "",
 						"oidc_response_types": [],
-						"path": "ENC[AES256_GCM,data:RezesA==,iv:Rk97EsBmFcMYreZNQtK4x8RSmHDO2rWMD028eud6egM=,tag:bYVz/V6H3C7uyYO94NaDQg==,type:str]",
+						"path": "ENC[AES256_GCM,data:DuMprw==,iv:2oCotGSmaFeeqKc3tRONGFoNM0T5iuSbgIMf50pmwLg=,tag:++8TmPAwBzxmt4uhGa79Vw==,type:str]",
 						"provider_config": {},
 						"tune": [
 							{
@@ -2512,1131 +2375,1129 @@
 								"audit_non_hmac_request_keys": [],
 								"audit_non_hmac_response_keys": [],
 								"default_lease_ttl": "",
-								"listing_visibility": "ENC[AES256_GCM,data:viZdCPfR,iv:bGfB0JoYVaT8+WiZ3OSaiUvXkEziQ+GlvLAmumeBA98=,tag:P7ZbX1zaAX0yOpwPjm/PGg==,type:str]",
+								"listing_visibility": "ENC[AES256_GCM,data:7PyD1FKt,iv:gXj1Kc471/Wf/gVFPDLIMgBLA7ATNX3aZY3/OCgz8sw=,tag:oNlsa2X7M/PB++vZvD6ozg==,type:str]",
 								"max_lease_ttl": "",
 								"passthrough_request_headers": [],
 								"token_type": ""
 							}
 						],
-						"type": "ENC[AES256_GCM,data:m4XmkQ==,iv:Ck2wMnzYeZzbigesevPBO5VKLI565j6qKrRe+SrAzNs=,tag:OlgjOY6amsy/0WJ0YGC10A==,type:str]"
+						"type": "ENC[AES256_GCM,data:DGWgzQ==,iv:AyvK5+UHJBmXjBWFBUrb417xpnDHyuKvlNx0ZBPqpB4=,tag:oyIbFEQq359qwGXMOG38Ag==,type:str]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:pSQu/bK6T34=,iv:lIVuDkpA/ZdnPZSkaIU2aIIr4RDhPe41+qUB6Ajz6k8=,tag:Ypgs8OfePkav3q8af6Oq9w==,type:str]",
-								"value": "ENC[AES256_GCM,data:4ZS+3iGEXFT9r00rVko=,iv:sW8iFhfqhxvTBHSl3GnfEn0qBJ9Wc4652nCmer0OmWc=,tag:up+bW7E40FKV+Wt/gZxTUA==,type:str]"
+								"type": "ENC[AES256_GCM,data:cr6FZAZWK1M=,iv:2wAKUrFQLEEr1Jsd35NtJGu829hcYJIZKqblkDlqXDU=,tag:OSmC2IdZirNKDbgLmrLhMw==,type:str]",
+								"value": "ENC[AES256_GCM,data:Z7/DaoPLtHvQfQZFae0=,iv:pKgI0zFxwYLVc4ZUe/vFN0LoZ6oqf2+LdvinKwfjVds=,tag:7klKol7blJzmDubtzfwtJA==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:ivU3bHYECjM=,iv:2LWGY2nK+mLNfp4VEeiBVuI4xanizGBWWR11VmH+URM=,tag:1tbOvrQa95PM9S8KnM052w==,type:str]",
-								"value": "ENC[AES256_GCM,data:P64Cxeo+uR32DEOvVN6oGxAj,iv:U+ARMoShM6Yl+07mZxL1HiZcvEd3wJ332wiIxtFS8SU=,tag:qw9U6x/NBmTgzCZi0DbUKw==,type:str]"
+								"type": "ENC[AES256_GCM,data:X2aMGYrxRcQ=,iv:Jtf5lQljtIXrLdYH4OlvY2wcmY1EaBRRzyWtSFVDSPs=,tag:Cckvzj+bucS31D71ayZ61A==,type:str]",
+								"value": "ENC[AES256_GCM,data:p4bDD/D1ElMp1t4spi7+DAxA,iv:fVaaq0meoS0xa2Xm+922T/CFgXG+5r4E/LHJx7PJnUI=,tag:dlaeKKsjH8m2kfFY6HVAXA==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:Rw==,iv:mhUGwPZOScmZvGw4Uno7x+yO3oy9ESh1gYfObLIwXAA=,tag:Zck1rwR3pYh2zHulD3Cwsw==,type:float]",
-					"private": "ENC[AES256_GCM,data:6k7XHPd4VqF8jOAWSe9oNDDrQei96PZ65bGWPF7pQ4A=,iv:HufSXJH1DmjB/BvUz9xzNgC9TZ9a5bzCWpv1y+a00Kc=,tag:xo2m+m8FEYAeiSxDggv0MQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:CQ==,iv:lBmBU0jjBNGszTNUxofhftjQudOxsuYUn36f201f+wU=,tag:6l3VP/H1T3JvNNWOOTqjUw==,type:float]",
+					"private": "ENC[AES256_GCM,data:Q+hdAmbIANIJPni/U5srPG4ydRBwtHOYtPvEjrTIeK8=,iv:rZQtnREIt0aawpOYIwNqhrbTg8VloVXDIrv2YHieY7M=,tag:z1gjYPPiEwDlfKSSO6geuA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:kKVVdwuSigd6RxSA0y7cUWFUUIGHbKK4JTjOUKg=,iv:L1939DvYEsiObuVO5PbsY9b4NTZLo0lVXjRxTJIwSnE=,tag:OqtKH6LdBeUZt5PatP8JqQ==,type:str]",
-						"ENC[AES256_GCM,data:8dS9mn0xL8fuczqj0rGlePUo,iv:ahhlxyGANFoItIBBaSlttwhcrmvrMhmEfiXCuJpG/4E=,tag:HFgLQpwlFGwoaTkg6jNVQQ==,type:str]",
-						"ENC[AES256_GCM,data:s+BSszI/SFTU2BEhxiyRGsze2MouFl2NhPY=,iv:Yv7xYLQTsd5YzT/8vsSKngHu2HOuokqXUvzXdvwo1t8=,tag:m4AlIGYDto7JNiTu+fE7KQ==,type:str]"
+						"ENC[AES256_GCM,data:ndy+xKtS9tqKJYHqjQ/6Szv/ht5QSjkVVW/2vpY=,iv:fELzZLQ/RPncVUvlVrJpKl4cf+j9X5XXCGiY8eqdDXY=,tag:zox7Cv4G4G+1lEUxEroz5g==,type:str]",
+						"ENC[AES256_GCM,data:Ess2XmsSJr5zWqlv3g85zkio,iv:hLFAaDr1UAMOk49LC/LNjjW4tvqZVcoDk9PSbpBEieE=,tag:vSX/s3wGiW5/2V9le4OHJQ==,type:str]",
+						"ENC[AES256_GCM,data:Kby4TFT/CTSamQUKxyKbyGbPghVDFcZeeIw=,iv:scRPONcVbGbCTrJHGN4PfygOM3FbyK/4qbaC99Vimv8=,tag:P51YV9YZJCfBMUb90NE/yg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:4bzV7+qkUw==,iv:TWvhINGZXlZEmtJ3Rdz7Ip1a2078iYxRBJLP9HDc7/E=,tag:MS3QHSXyRMnosa8yr7zqNQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:W6CB4FxFcFmzZ6GLtYbI5D4wTPrkSVCfFjd/,iv:pN+6nsbHTLYvTvIECFPUemYF8YwCuXHJpBfEu2q42Bw=,tag:iNpyTpXvSX8tjtpzlapf5A==,type:str]",
-			"name": "ENC[AES256_GCM,data:A4RIQlq/+Q==,iv:d67k3wh20xRR3Ds/pTpAJVqmrzu9ScQCV7TKH4dTvWM=,tag:JHGhicWTDriBjylx14UM1w==,type:str]",
-			"provider": "ENC[AES256_GCM,data:JPWKHe0OW3psvnWKf6EeQD8NnKew0JHBgrsJy2as0YSSH4u/8cDZFd/Kh9q5zqhkWg==,iv:d4NAz6cTPI9smZt13i2/Bh+COnpW5RVmPWcXE3VgvW8=,tag:Y0BhtU1nZkOIn66spmUMWQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:7vf6JtwHhw==,iv:zCEkHfL8TJeV7jE5b+3pk1MBQ8AqzevAE6U10fuPc/k=,tag:i69SUNgZGadT0v4YpnsLGg==,type:str]",
+			"type": "ENC[AES256_GCM,data:7QOxVIaZ0YhHxgh32gVF8uemwxiBpGH/19Fd,iv:pEwl9rshBiIHewA0euBzJrlZ8Ki3KYHECydsWBd0PO8=,tag:txeFXHVVwjRnR7m4jp08Nw==,type:str]",
+			"name": "ENC[AES256_GCM,data:f4ZYCr5C+g==,iv:opJn8fKtJK7IkC0D8VLAonnHKgQjZKRMveDOZ0NTS1o=,tag:x1pwybfTQeyFjCkqK085jg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:zyV3MPV7zMgJtivYGUcG86J8htGbTLgXeE/R5iHKUsHp6tSviDphUlIcazt32VW8NQ==,iv:D/NTozQn0hod1DZUDAYfVjZEABICGt0vZbg2V9K50Ac=,tag:JlxPlhFcpfwboTWp2BA1Gg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:mA==,iv:EEAUHjLq0XBXIC3P4cTDwdnZ8gk5juLpv19kfCQWeIk=,tag:M3bk47y3ZRKnNX+s9Ppiog==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:xA==,iv:S7NHIFvxnHuRf7G0xqqde+Q9f12UHoRAXfyCodvgZ8E=,tag:5CAo1ytKZxHtdrlRXwI7FA==,type:float]",
 					"attributes": {
 						"allowed_redirect_uris": [
-							"ENC[AES256_GCM,data:qTjAzChBmhKd5umRx8qoL5AJn7OsV/RUc6ar5PKaLK4TFsI=,iv:pbGiFoPqZLgYZYZA+eSF/LJjz59rc/pdnqJvavPM3uI=,tag:F1nr2rb4gHtA0NeIpVfJMw==,type:str]",
-							"ENC[AES256_GCM,data:wRZI7ad379ap1gLcbkZgQ17aIviEMYvXAzbPnDnR3SwO/ECZW8/CkvEJ69SnRa8l2sCWCaRutEvejF5pKUY=,iv:2O8/mm2TudCnFGVdphqGWFWaxQ6FtlLMfA1zYR0luyk=,tag:VGuMV9QooMV9EUDTdA7t8g==,type:str]"
+							"ENC[AES256_GCM,data:FH3EPatnkElsIj5xiEICODzi9qpzhNeAYH0YdMN14AUU6uo=,iv:pvwdnIsuOMBk1ZHUv8rXRndfU86HVpbMFARtiwsJUJA=,tag:hryStT8cQgj+z8p8wiqW/g==,type:str]",
+							"ENC[AES256_GCM,data:x3LLYS7UUTPRxOMHV99kDEY2lsHcce42OEmRrcWJsmlf4NGadRWV+x+Qw1NawqBUZT0ZB6GqdZx6dUfPa+0=,iv:ejmxR3g7K/bKX0m0Tl3wWE/ffxXnUbHwxgHD5Lkg2Gg=,tag:TJaeW6Jk3b5HiqTxPadI5w==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:O1pdKA==,iv:539BLcJyMPGmimPnhwk6NXouwPEEQTz+X7OHMgY741k=,tag:AnphFQfAVT12Z5m9XhB4lA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:yW0kOQ==,iv:lK7nZeQ4or9O7keoEXehnQHjMwHZ41JJ9YOO8xs9Lqw=,tag:px2f4xmHdtma4rbfE5S+Rg==,type:str]",
 						"bound_audiences": [],
 						"bound_claims": {},
-						"bound_claims_type": "ENC[AES256_GCM,data:UqfZYHAS,iv:V2Mau78kMbt3B/Q8rTV0A6Rm1AnIxhmzh1wGOl6n5es=,tag:BhKsJyWoyMEXcQEYe8Usew==,type:str]",
+						"bound_claims_type": "ENC[AES256_GCM,data:7BmMNgIJ,iv:wflOH7a5A9qtHMuTZtWcgxELE68FimIL/8nkM/Wz/ZQ=,tag:stqD28qvIe6MqbjxkGCquQ==,type:str]",
 						"bound_subject": "",
 						"claim_mappings": null,
-						"clock_skew_leeway": "ENC[AES256_GCM,data:Bg==,iv:o8fZVAyZrumbjfCZeZOaSBCaSraCViCpdEF98TNqmUY=,tag:oIz0o4ZeJse+Ym1mQfPW4g==,type:float]",
-						"disable_bound_claims_parsing": "ENC[AES256_GCM,data:GCF4pkM=,iv:HwGqblkoz/3r/enPoQ/3haIFd3klg0lIKXEkJ9ckE0Y=,tag:ijYXrX7ra6unThzgFyNLRA==,type:bool]",
-						"expiration_leeway": "ENC[AES256_GCM,data:WQ==,iv:3Cx2YNWzNE4HgSsfdVU+5bJk9Qa1Bvz1vYJxTOJcqhE=,tag:8PFTNvsf9lwPP5rTlU+wdg==,type:float]",
-						"groups_claim": "ENC[AES256_GCM,data:FB8IR/DW,iv:uVF+UCDoVCpAgwvN3rgXj1Knd2IingbT8OE3mFbDYiw=,tag:pCezgjJHDX9lUEgeqwzjOA==,type:str]",
-						"id": "ENC[AES256_GCM,data:1HG0+smQLk7coxRmDPpR6+1eFA3+fw==,iv:9qvcNmyOblDJ0HOxqKke2sFzDlBJJHoMIInHD51wOvg=,tag:aDfq7uCvyNkm/0UfVl61QA==,type:str]",
-						"max_age": "ENC[AES256_GCM,data:Ew==,iv:KSngkz9s86trUh/1yNVONeoSxPrLNQwCw47TxVxbQ8I=,tag:MoNGYJzpcHxgmW+5fiWmHA==,type:float]",
+						"clock_skew_leeway": "ENC[AES256_GCM,data:8Q==,iv:R0NmndJeIoFMxsGUI/hDoejwjKPUbVvrKpQifoPpQV0=,tag:niQJzctVzkoWNuxbKucgsw==,type:float]",
+						"disable_bound_claims_parsing": "ENC[AES256_GCM,data:DPT1MDY=,iv:h+B3SZS4rNw0Xp/3/vyKIvQeejDjD0DaeF3yYN8NtJw=,tag:A0y4aDTPsvcRV8NlYVgxTQ==,type:bool]",
+						"expiration_leeway": "ENC[AES256_GCM,data:BA==,iv:zkyYG/MRXB4fBn2u7LMHSVf2kAvJIChMvwalNsWxXCo=,tag:9BopvXrJ44koLiLuiezsjQ==,type:float]",
+						"groups_claim": "ENC[AES256_GCM,data:YAat8iyh,iv:buIMG1Vk/P+Pg+/uuZRZ7/6yqmrKk1zpfpnQf41ClAY=,tag:r9k8FrihtmV83E/+gG3RBA==,type:str]",
+						"id": "ENC[AES256_GCM,data:Mau/tRqoVdKtU37GzWZ3Odd1/EEytw==,iv:ZtEU8XFEzO7wvYaTXEVdzTm3OWoqkOkzwaQnE64hCfQ=,tag:p2t663UyelUOB6FjyRbTFg==,type:str]",
+						"max_age": "ENC[AES256_GCM,data:RQ==,iv:lM1p2lL54YOrX+DQ7gwfKKk/MP1zT1oXIgvbIjCbXOA=,tag:oJ7JP4Z3cEwk5/9cqQWixA==,type:float]",
 						"namespace": null,
-						"not_before_leeway": "ENC[AES256_GCM,data:MA==,iv:vQfCAAGct22YD16DnVEzAkYbuLeYoUz5zbBLIe4B7g4=,tag:yGcKqM5BR5aMeY6yY68tcw==,type:float]",
+						"not_before_leeway": "ENC[AES256_GCM,data:Nw==,iv:Pel271yBoFvlE7TS8mFr4wBhOQepiRLurzQA+nzZDrc=,tag:MF7kbuwsXd1z7PsPytEolQ==,type:float]",
 						"oidc_scopes": [
-							"ENC[AES256_GCM,data:KE4+pEs=,iv:+6TLQoOuWIpJ7eJMlhKA38bxGgUuQ8kVGSEFfYb9sXQ=,tag:WDJg4Tvqd8FC4/pTj9k8Cg==,type:str]",
-							"ENC[AES256_GCM,data:WvqDDB7+,iv:XVT1dChrUGIAJF7UbBTbhDjZZ8lqI1W4XDDrilFKgs8=,tag:TPidOYg2hGt2uP94dIiNpA==,type:str]",
-							"ENC[AES256_GCM,data:vFVQiNMJMw==,iv:b4HhV1POK9qK33dZu7dI7fLs7fZ4Hri+v/PoQ3dp2js=,tag:PMbYbWJWZnSf/PffznG6CQ==,type:str]"
+							"ENC[AES256_GCM,data:lTwP7Fo=,iv:jfpzFzlbx1XwgLozyM+LB3BDZrrrwu95EHXl8yuTTqE=,tag:1oXPJVKVDX5l+SLjeAPCJg==,type:str]",
+							"ENC[AES256_GCM,data:LBvfG6zm,iv:4oGKjHlUcmVoc0U0E8T9F/aOamoMosvOcS6/p1rN4ZM=,tag:aKhb3+YAKBlWy6TBVlxK4w==,type:str]",
+							"ENC[AES256_GCM,data:ay9C2Yod+g==,iv:PT/cCFVXuDoL2EacgK1+lDjpv9vQzZZ4k0oUWQaGEA0=,tag:M6ao8UpTaiOabqOyWF9UUg==,type:str]"
 						],
-						"role_name": "ENC[AES256_GCM,data:6X3+AA553g==,iv:r0tGwWkOOC7BHVLNv3C9tY47Q78wbfXbfgOG/pIKCww=,tag:8wJGYqBP8KjEGtJ28GSpSg==,type:str]",
-						"role_type": "ENC[AES256_GCM,data:V0MExg==,iv:q4yUXLxCCfRlVwjUucql+FbKO3cZid5UzomiLD1Wt3c=,tag:Y2TJZ+FlKuudVt1jEv+RNg==,type:str]",
+						"role_name": "ENC[AES256_GCM,data:/qT7Hui9Tg==,iv:t2vmGzQQhaymsKW+LwlYwLguRLJBgqWPze6bEZ3At0M=,tag:irnYRMENQw4Xxf8561mUVg==,type:str]",
+						"role_type": "ENC[AES256_GCM,data:PPO/3A==,iv:BWvbTAYnLM1n2vzEsLktfbYYJ83Fm+5rG2VWy/uslt4=,tag:4zjGCDyif7lQ00cWqskP3A==,type:str]",
 						"token_bound_cidrs": [],
-						"token_explicit_max_ttl": "ENC[AES256_GCM,data:zg==,iv:Tsr1G8+OO/UE4wcnyTz4xbOSY85foO+aKR7xtvp5vyI=,tag:aoCeLcW/Z88BoMmXekV/Jw==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:LYDgXGRq,iv:L3Wss1qVipz6yHtnAMXebfEAg0QRiXsqODZXQ6TAR/k=,tag:WGPnzkqJ8zH2J2DX5u7Ziw==,type:float]",
-						"token_no_default_policy": "ENC[AES256_GCM,data:uwNpBfU=,iv:oVFn6TPekO/jbLQg9qQBwYXEr/IUzXKludHgjwcT1C8=,tag:fIELXSajcfNFuuBdVFQKjg==,type:bool]",
-						"token_num_uses": "ENC[AES256_GCM,data:Yw==,iv:GCrvW2x1G7Wxi+KAI1NkLa9QD1KKrr6tmzpUNB92MWY=,tag:qrC+ip2vtUO5IyuJ30hd2A==,type:float]",
-						"token_period": "ENC[AES256_GCM,data:WQ==,iv:PX0YvUhuUcHYUBPUgGhI23UF9qv8UA4XPQZm+BrMV+U=,tag:TJliMXlOotHICwkAQQNFNQ==,type:float]",
+						"token_explicit_max_ttl": "ENC[AES256_GCM,data:3w==,iv:2QbWnGRMiB0vSdIKFtcj0ePLegQRHZciQozFbqRGsxc=,tag:r36wDBlOe6Rb5d84ICKmmg==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:gdjFiZps,iv:BzR4Qz9ARAquSj8BkmMP3HNL27fpigheH6+OTDTFRXY=,tag:osnft+nTjfSRaKqzOXUXAQ==,type:float]",
+						"token_no_default_policy": "ENC[AES256_GCM,data:sMmqPLU=,iv:+Xigj+1LVgTIxiDVwmHXH0zZwzgTxRFHO8IxfeG61+c=,tag:hVwwDU7552B8VwtkW1NjXw==,type:bool]",
+						"token_num_uses": "ENC[AES256_GCM,data:NA==,iv:Vd5IcIqjgCk0lQJq9R6lmVyHvHRRGps/FntfIiTvGAU=,tag:FTqLp98Kbn/eQ1SwG0Dkvw==,type:float]",
+						"token_period": "ENC[AES256_GCM,data:NA==,iv:Pr9/ZUy8FAuTzQ82o730BKspW2vZRTlWVUxhHkDWD+0=,tag:jaadJpsZAG4OqgykIs/jWQ==,type:float]",
 						"token_policies": [
-							"ENC[AES256_GCM,data:X5UFFKyYig==,iv:GNxNKHupoilqQmT5uL6cYbzAMb/fjUvP0OdNzM+hHsc=,tag:nCKhDnGe9zBnoF2FwV6QJg==,type:str]"
+							"ENC[AES256_GCM,data:n2pSgRZgRA==,iv:iBKB+dJYD0G2EQYspDO8IQNEk4VJ0JsKjdhFWsFPMVk=,tag:ubRFF1heEwjS38iMhMwZ8Q==,type:str]"
 						],
-						"token_ttl": "ENC[AES256_GCM,data:WByiJHsc,iv:skl+asU9ohGv6DXX423PjfjyfE1lWs5lUBriaWs9fFc=,tag:OPW4RnZVTGgRwRNJPxh7fg==,type:float]",
-						"token_type": "ENC[AES256_GCM,data:q1R7k3eiHg==,iv:8Tnmy4NG3TFvFaSdY7cuPOdZtJA89o7lBwh61TCjh7M=,tag:I4bXu8WTUwbWd8Qyh8BIjg==,type:str]",
-						"user_claim": "ENC[AES256_GCM,data:waKYybk=,iv:y/Kxxk0B1rWT1n+ODNA+/gjJu2lkebWhho78JecuGqE=,tag:Z6FjnvPpjegLdI+IcpGboQ==,type:str]",
-						"user_claim_json_pointer": "ENC[AES256_GCM,data:EHkVqEk=,iv:Mvn2KTZHoa5Z+8q/apaYqcitkG9KNVzXZQxCoIfrsHU=,tag:VV/3qZhAiaxrbI/TmD181A==,type:bool]",
-						"verbose_oidc_logging": "ENC[AES256_GCM,data:tWb+E7I=,iv:Xj8jL/pd4AcMdvtg2QxWCQ/t3J9Zr1wckd0Rzq0YeFQ=,tag:eZYYZ7yaKgjKlZwom639ig==,type:bool]"
+						"token_ttl": "ENC[AES256_GCM,data:sgrW/SNg,iv:zGrhdm/TfHZleeAu3R0OrGGikFy42Xz+6TJRoBefEGM=,tag:5fpaLh0yu/n3MQMbbDy9BQ==,type:float]",
+						"token_type": "ENC[AES256_GCM,data:6NDJVAtG8A==,iv:f0f+mxZAsNGSbX7ynww+FBPqZynA23ZhyZWysVngukY=,tag:cAuziqzO5I+aj2Y9i9dCFQ==,type:str]",
+						"user_claim": "ENC[AES256_GCM,data:ydWqjb0=,iv:0U5AaiizVXg8Tq1BJE+WLpPrjGAIi3fVthSLKHCnMBM=,tag:GphQed11Uv9mZs3tHn5hag==,type:str]",
+						"user_claim_json_pointer": "ENC[AES256_GCM,data:Ba9eWok=,iv:lIi6f/k1EYMqWKNK1HNajuVHTYDUv9wvij5E81fieZk=,tag:QKOVCiQFB+2TM3qGET6VRw==,type:bool]",
+						"verbose_oidc_logging": "ENC[AES256_GCM,data:Dgv8ijg=,iv:yrhW2EidyGscpOdr92KBIcJwxC2LKv5WYib5ICQKui0=,tag:HTU5rMHFvqNeAjRmyt7mcA==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:9g==,iv:12e82eLHHrsDPmMxtDLbWagrudM94KZhYwpoGQnme1U=,tag:66HyflDlUBnCOZFVHhA4Og==,type:float]",
-					"private": "ENC[AES256_GCM,data:zMus/3eEPa0=,iv:FLeUNvX8fphqFlgnjFNFWAXbCGwQy/w9RqWphkEPrHI=,tag:PGkHbnuXVh3E/oGPgeRrCA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:zg==,iv:RZWc5G5jksyM2CMjnkoGsOYOHDzG+sZPxxy9oNVqKzs=,tag:jw6wsi56SXF+7yNcSuRdfA==,type:float]",
+					"private": "ENC[AES256_GCM,data:VapVFtzNqjs=,iv:SYTiJsutQSwgr+bVheruFabHdDvX+NSHcN0wj3Bsopk=,tag:0uDaiKT8yDRnoLJmcq1Q+w==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:k2nQ1L5k2EjBeqDkFim1PEn+aMak+geFbbAMxrg=,iv:aBGnxhpDAn6Btmemcgy497UaPKjeB9VQirh50KUai/k=,tag:r0LbQvSVjNHhTHitRlEV5Q==,type:str]",
-						"ENC[AES256_GCM,data:zhMVz+FvWINJizDfQmOuCb1m,iv:yx04o3CcnB5zKSDpRkIiKX28NFx1gDuKtuJZ/m27mCE=,tag:W1VFwfyQAcw6PExYiLPi/Q==,type:str]",
-						"ENC[AES256_GCM,data:xUyXo/YztwZau+mA0xpyIefAzCvLe6IxhCg=,iv:g1GB9FebZAQumfHvMvvegu7XRhFrkD/LtQzYyH5q4WA=,tag:uJeJANNzLarH5OsbWWVAmg==,type:str]",
-						"ENC[AES256_GCM,data:CCR+mSKJ4neaFYE/xsxer1CH12Tow/2dVeLK,iv:KK9fiCJ9k40uKALYmrNtVhnei+GrvzlmVKWcf8IpW94=,tag:TBlZ3n53ykUi1gHXXSkScw==,type:str]"
+						"ENC[AES256_GCM,data:B877ExZIS/YwZBUSufFB98vmo8qODF5x3jEbk7c=,iv:WBoRAmCIykeCsGX6GllQQR7GPSxpoYfYg5Pc0CI74S0=,tag:8pToTXkzlanGjrXDq1R0fA==,type:str]",
+						"ENC[AES256_GCM,data:ItRcxyRS3TOXmlU5iTP7Do3g,iv:ckUv6zmJZNcBvse+4PN9gt4O2o/0cOAid1QygXK7gRY=,tag:2b33lQr4b2FUlJsj1TW1ww==,type:str]",
+						"ENC[AES256_GCM,data:AQZT5p5BugKs8jav87p0txUJUb6OlN6Vx4s=,iv:CiCKzRybEZLnIKK1E+KUJiTVWRz+kBtlC4hhGCjXzf4=,tag:vzbS4INa2WB9evQt9SVDQg==,type:str]",
+						"ENC[AES256_GCM,data:1GdIzCvFEFTofU+5GyYc8/32X7ckt6vVDP3Z,iv:en5odk48am/ecgspYyUKytka+BLwMSZ41tKmVOIMOzs=,tag:dPdaZMS/XzMc+Gedd4MsKw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:ekhjjIQcSw==,iv:iYLqWh71cKfpBg0Q/OIhH0jBOonPv6ctGIm3YurhU00=,tag:EirFscuOTEg98umlTJpUYg==,type:str]",
-			"type": "ENC[AES256_GCM,data:9t7QFuJ4IPbqT+boC8vLy70LL0GkDzBXuQ6SQml0WXQCdEcl,iv:hZSwU2soGJxKI9MDqpMB7/EH8NWbGoWwWi876TtJtag=,tag:16n6weeOIhXIG3PVJ1uPzA==,type:str]",
-			"name": "ENC[AES256_GCM,data:ahpI,iv:Es3Lu9aQciyG/WgibQsaghxdvRYPQXMM1PE3Owvxzu8=,tag:LxK+CyXNBzBG4ShT8DjUvw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:AU/2sECAvR3ZZW4bVxvFoQB7RgxfWaD+TFVNtMPjZM3CHWatKlGEaZYwmByrBWs0kA==,iv:kAC7+0w6gLcfj9eG5Y5yIr6v8ljX+bk8PKDI9lAxAZs=,tag:4zfuopUbBoaNjxlOUOIqeg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:+n06raAUkQ==,iv:r/ti7MCpA9txDexcQNdAaK5EujRAqBRbal1MvivAXYA=,tag:6AZ22zHcMGuSuQG2NFaccQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:4B5+RNFh2411BYIZvsuQHbPpEmibTIDPvNnwL3bOItPNBeUm,iv:mv3BRo1PyJGyu4VJZUtJeH1DrSXu0vELfWT49/6kRGE=,tag:IxygoA3NXafqYZ1e5mhi2g==,type:str]",
+			"name": "ENC[AES256_GCM,data:HGLs,iv:YIicaBdk+L6bZYp7yJL69VsrXDKAPnHlSXrqwMOZW3Y=,tag:Ll/jhZW04aOXstLJM9YZvQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:ial2YXMuWWD5WACFIbJVbm3UmRhvDbmvXOHXt91twsjGEid+7UwHaMdbQeARFV6DbQ==,iv:F4OQt4XP4zNqlDRk/BQldz4EaCdBESQmpid+DG2oB0I=,tag:X43Dgt5B9959cLk8Hc0pIw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:rw==,iv:x0b7AN2eWhFfY3cQ3N3Lgk7bj7oit2S5JlfM0754pbY=,tag:jlH7mGnPOlMOhZLU0DgmYw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:8A==,iv:w2GwHsuSfFRb2w6gki3/ew7AGl4tP+L4kcHUW2db8oA=,tag:E8+vr7qcQMl4bvsZ11YyoA==,type:float]",
 					"attributes": {
-						"backend": "ENC[AES256_GCM,data:YBXWyZeAy6gFKg==,iv:/Vz9d55PtjhGfShZnFE+xcsY1K4lISQ0e8DiSUiKYQk=,tag:te/eTcHGnSyDdRllfN/BvA==,type:str]",
-						"disable_iss_validation": "ENC[AES256_GCM,data:5v/vMNw=,iv:i0HE0fcpA11F89iarLXezV0+JO3TJHgNoZRaNkEIGLU=,tag:cuIuv3nhEPU7Ayqo94ma0A==,type:bool]",
-						"disable_local_ca_jwt": "ENC[AES256_GCM,data:EF9F9Io=,iv:tYE8tvYRtFguXgnh5mXA65MPmHacUeZiDTi1VxjT84o=,tag:GEnEPckmkL+3jkHGfdqclw==,type:bool]",
-						"id": "ENC[AES256_GCM,data:KXkm9lj1UMcAtRHWv56VW/f4NUIatw==,iv:xo08zGbEApw+NRskkpS23Q2f1QVWycB+r42rgyUxDy0=,tag:26A4qa6+uzvjrkvsssecJQ==,type:str]",
+						"backend": "ENC[AES256_GCM,data:eOTFaJ05+1dwPg==,iv:gJyREjsNPOyIcPV/TvybokYLsCbYGzYs768wWU0xFOg=,tag:z7V8DdjkkBvnibC5PmfGIA==,type:str]",
+						"disable_iss_validation": "ENC[AES256_GCM,data:9BHVqRs=,iv:i5ctrWMhxQvcAZV0DJ4XUmuIZ47I4RXwLUKH9G4uWOE=,tag:FCZQLUZXGLQRNdcAgbcNMA==,type:bool]",
+						"disable_local_ca_jwt": "ENC[AES256_GCM,data:AY2PED4=,iv:hNoxdOmesBhjQDjxX+2lvXIf+V0ZDhlzTC9YnyJ5ghg=,tag:Uf8IshxUraLMIviX4BijAA==,type:bool]",
+						"id": "ENC[AES256_GCM,data:15AdR5zeEdOXNjsvouyHrQGQrlqHyA==,iv:w0+uvnLAH5AADVDwFBUujrBpbJB30a1+ZCQlH9rVhuw=,tag:IxynvVCZztdPFRzevPhgIw==,type:str]",
 						"issuer": "",
 						"kubernetes_ca_cert": "",
-						"kubernetes_host": "ENC[AES256_GCM,data:DY5KLMDqpgRmDZ27524DWf2DFsZjEObIcZK6qBDu,iv:b54zy7V6V5PqfNyYYfwj68FqDZs1DGLWRFTRTxobu8I=,tag:NF3DMQDLbAuEKdyvTQ7Lsw==,type:str]",
+						"kubernetes_host": "ENC[AES256_GCM,data:iP4E56bbiy4PbGlZVb/jMmQz4yiZVtkAv1P2KDol,iv:a7H0cAvELk1l9RNc48U+8nxGALE9mkzjfTA4dhM9Efs=,tag:A02tGIkNjAmpWNSXVlhHlA==,type:str]",
 						"namespace": null,
 						"pem_keys": [],
 						"token_reviewer_jwt": "",
-						"use_annotations_as_alias_metadata": "ENC[AES256_GCM,data:ksnvKF0=,iv:cep3O8NMnKisI7mA8OeThk+aDVPv8DXZxIXnrr1wUeE=,tag:9sEUxNI8uMbvnwZzP73yZQ==,type:bool]"
+						"use_annotations_as_alias_metadata": "ENC[AES256_GCM,data:4Zkx4w8=,iv:tCpSFAFQZFwGC0YzZGhfjWNKpk+YWJ3x4qtSYt0hNxs=,tag:OMJRDC3D53TqhYQjLPU1FQ==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:hmjdyUtLmt8=,iv:+PICxQgUVjCHRIo0KKWxRabhK3ekExyt+ivmzC09Lwc=,tag:4To3wWVQJNRx2oY5dC8BGw==,type:str]",
-								"value": "ENC[AES256_GCM,data:WzCVbf+W/j8eATdzHZ04xLgC,iv:z3Z1GLAv2YN1q4ttKWTD7CWj9kZxRlaQESPeMpJtJMQ=,tag:gGelQdb+OZDnB0zz4hW7dw==,type:str]"
+								"type": "ENC[AES256_GCM,data:DuFk1coHokU=,iv:IL2wJizxtgl9pUu6sd84KANfWDRkThZgmDQmomeEfc8=,tag:or7GgIh0sQg0GRCy8B4Zbw==,type:str]",
+								"value": "ENC[AES256_GCM,data:7G5RWBfm5zWVaGbjHrgInWxM,iv:SPQ9KwZS5GEVD8LYhGevaq7L0U10I6JmFb5K73PA5ds=,tag:DusC+1OmEqMvs8Sbj4UJgQ==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:hA==,iv:gRToycyifyJoQqNBimTCXi1UpIONHRNpWMaA7o4REnE=,tag:yrlkRMrYZUIPFYjPSMftYQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:4q/KPd/biS0=,iv:D8f9r4jGuw8AcTMCCkxTAFNTZvDOgZ4RQjLgyN7LA0k=,tag:lZeEb5zOdwWwzyK7zNNSNg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:kQ==,iv:Olt/SG7guMtpwhqA6YfLWHPbg478VfaxKUhhHfKlgMs=,tag:URxqqyCKT4Y8mgPIq5e/Vg==,type:float]",
+					"private": "ENC[AES256_GCM,data:hG/JDmON904=,iv:flZ6kNUM/Z+53jj5vnwYhBkRjxJK5PgUcvhX617uEmI=,tag:04DwRDw9zqsu0M10R0e26g==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:lDSaypko7b05hkjuQKE0ysZ8,iv:M/b7mcL9cRaMNrD1FNO15rUGOB3evURt3oxMnMd6zqk=,tag:6dp4BSM2R9A54u3juVA81g==,type:str]",
-						"ENC[AES256_GCM,data:1uQLO2IaY5dLVVbcX+Qr60kGbipcBJfktZY=,iv:PxBj2gah5ClPhSnuJarGRphzzxho9ZNMghPrt4urv7A=,tag:Lr2ZDenYI0XlkO85X4YO5w==,type:str]",
-						"ENC[AES256_GCM,data:gUbINCaG2vX0YFTuA87cY8cNgjH7uK67XX4HhV0=,iv:IYfnPzhmXeeG+paHnBgjqmxE7xGVra7m6WP6Rkgvgfo=,tag:gvx1/65TiMUiC88jO5WINg==,type:str]"
+						"ENC[AES256_GCM,data:301RXIXmEi2udkcezSF2tO84,iv:pLqbhAs206Iot7bMHPhGGvd58x61ItLszuQa0V1gr2Q=,tag:GTXEP9/N7irbzxljJxqVzg==,type:str]",
+						"ENC[AES256_GCM,data:Pj0mw0raqey+nJczgClkF5dFdgL7znfXOj8=,iv:E7dgW9xggEDMd9W0+FTXECPF/B8TDlRS9bzW00iHMYU=,tag:+rhdrPhdkPwyjfhnr4M6aQ==,type:str]",
+						"ENC[AES256_GCM,data:CtJIM25p9Es0sSV1pJPxvhldlTowgUddJqqX7jo=,iv:7ilPDlsCpdw+Jijq7/vPJklniEeZHGBVhcrZoNnODW8=,tag:y0c6bV0tGbDiCOloIz9s6Q==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:oEMSnk4Ogw==,iv:1mlvEUENZqlckych19U08eQCyiQeDvH4KzF1GV0ZbNM=,tag:oS7cukJS1MsH00V9GBpWcg==,type:str]",
-			"type": "ENC[AES256_GCM,data:cZtYIlXeDKOqTC8vH39Nf8gUqbTr8+sda61wZtNzYTtyKg==,iv:bAnmphfK6iIsjpz50C/MT+gWQIYLoCGv/+JjelbogpM=,tag:bg/6bhy8wHKR8dRcKagpWg==,type:str]",
-			"name": "ENC[AES256_GCM,data:Y5Y=,iv:iuJSXEil3tv0HMBC3xpnpAxA+JxQKFT5OVe5Hfp/lds=,tag:tu3ChVyXVBFf8yhVffCdOA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:GzS1EiL/k/83QIPsbRaAsC60k7G+7743ZBq5m+XlwxVEu0+Oz9WxB8kF2V6abzx9CA==,iv:vZ/T1p0Xd53G43LnT8JvpQCq5jXcCJmCqbSWofUIsNs=,tag:k1R0s5bulbDAUnD6ATHw5A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:Hsn76bJtWg==,iv:wyr8CfLrjPVsHvMuaNAsnqYOr/5/Ys7a+SeqcKe721A=,tag:55emjNKokztZlj5SQqzJtQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:rZ8wniMKDs4oVAtHLR+kHeIOLcn0vtsY5fGuYmWh6dF/tQ==,iv:3+XjaC8cW/twLZ7z7wB+IIn0TGSDvHt0LxZPrLaqX9I=,tag:Kebr6GxGJCQgz5EGPFNtPA==,type:str]",
+			"name": "ENC[AES256_GCM,data:Ggk=,iv:k0zIyfZhhnSJiakKFy1DnoT3LiQM2dr0uCFZW8jRZHY=,tag:j/Gyxbz8Pt+uUZN0dSum8w==,type:str]",
+			"provider": "ENC[AES256_GCM,data:4zBYT6X/srpDEP7+ilPqjzQS0J08kYFKPyj4qUICzSvPY/cZIS8zJMTLm+UPZMMqxw==,iv:UCmoXkVvuNztFVAouPTQLWTbeb2/RRDNafFD0lW/aTA=,tag:WHHH/ERioAOiAVC/xG3t6Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:lA==,iv:FHQqqVIfqGXOFF+Y1CpnCR25cmGixM0Ua7YD2lRXuJg=,tag:REZ0r8tvIY9yo/DCRAj0JA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:mg==,iv:hH7ElV9haPdyRNT2FiG8lASA3YBawgWbrXKn1RaJdS8=,tag:IxyRo6Us8nPLQIcffJaQzQ==,type:float]",
 					"attributes": {
-						"alias_name_source": "ENC[AES256_GCM,data:WkSrQRGsNEnUe4PESZJwgLIj,iv:iMsZcDE6C2W7TJZT9N1ZO7rrpE3Hy0fUpTaxWv5tdWk=,tag:kR4JlebEI046tJVTpc8QYA==,type:str]",
+						"alias_name_source": "ENC[AES256_GCM,data:wQ8RpwgC/ded8htgP30vPfmg,iv:R+Z0jj4YUPnGseap1J7wAQ6/3w2a59YUVHu50GafGA4=,tag:AVlA5KTWLqS0ZQEEJ9ggtA==,type:str]",
 						"audience": null,
-						"backend": "ENC[AES256_GCM,data:6X4yL1bPxQm4uw==,iv:w/BXlwhhfJzvA2d3D/gnQpVLX9CH4hVEArBvxKESCXM=,tag:M9dYxD/sOT0gvc2ClBDsSw==,type:str]",
+						"backend": "ENC[AES256_GCM,data:a+BmhWcpmCoipw==,iv:AFU1fo/0Z++316GaQeIKdADZ/10iZhcf+MasazxHvNk=,tag:IYUJLWzQgzl+MX/OgsgBvQ==,type:str]",
 						"bound_service_account_names": [
-							"ENC[AES256_GCM,data:ktLc7Bq6qQ==,iv:6yzcTXlX21Z0nyGK6pe7BQ/2gTLgTWJ6Uy5eEK0i0n4=,tag:O7XxIVuVelZjGd5zBNamNw==,type:str]"
+							"ENC[AES256_GCM,data:L29YllOP4A==,iv:bMDwDO9zaXjpkIoVgao1sL6at74mGIyu/hZeJaxL0OM=,tag:ADfq+MLRVXQj7PENGXCFPw==,type:str]"
 						],
 						"bound_service_account_namespaces": [
-							"ENC[AES256_GCM,data:oGZ8g+1HqJoMwA==,iv:KOG1L6Z0EtF3fyB6kl2YqenIQe4qu2wMK+kGLGDUsbk=,tag:+8KUPyIOMhHXt0dBzrQ3vw==,type:str]"
+							"ENC[AES256_GCM,data:cdIv/iiXWgH11A==,iv:NVwhbhWsuY6mia/QQgLN+BMMePRL3z3IWoIQrGuIXj4=,tag:YgcfV2AHJqOnB8evw+7JXg==,type:str]"
 						],
-						"id": "ENC[AES256_GCM,data:Nhu8VVCZl3XKjiNL2z0hfTPDxN/kB1Y=,iv:mb4uWHMpG41Oahi+4qwav0D3k1Lr69wOkh2b13RE2BI=,tag:yf5aQ2JaLjDb65YpZXzbkA==,type:str]",
+						"id": "ENC[AES256_GCM,data:bVwlXT6M1sOYyXeSZX9NG+5fuXNFyFw=,iv:n1aXhXNmx2eiDshQaF2rjrZ5Bc8SjvywTtmQlFuBHfo=,tag:7o/G1L5xpAfZmBnXj20YHw==,type:str]",
 						"namespace": null,
-						"role_name": "ENC[AES256_GCM,data:V1c=,iv:T4gnwblg/M53+J+UDOckRJ826NX215hKhKbAkxDVpjY=,tag:BVNhWdGVg8aGYzaDgBCMDw==,type:str]",
+						"role_name": "ENC[AES256_GCM,data:W/o=,iv:n3IDwcRbJWGl64jy4Fjr9eTK6G7/pK0njHv7ZHT/4xw=,tag:aJIkqpXzVQOGwKa7drsrNA==,type:str]",
 						"token_bound_cidrs": [],
-						"token_explicit_max_ttl": "ENC[AES256_GCM,data:dg==,iv:N50oYHqDK0/g8wCFSKZNnHUcDDWigYq5aNEYmsiA0mM=,tag:XMIYevhi83h8RZeOv/iF1g==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:sg==,iv:YF286ulQgwKBSFKv+eUngk1odxniPm0ToT0kyj8WVBg=,tag:GudwEgmBky+OwRFRdl/FxQ==,type:float]",
-						"token_no_default_policy": "ENC[AES256_GCM,data:bvsCkI4=,iv:8kpL/r4p+e7r4eCpxCVuWr2JRnLWxceoQSj7wKjOcPM=,tag:5vJBvYl0f1AxafoJZrwEcQ==,type:bool]",
-						"token_num_uses": "ENC[AES256_GCM,data:ag==,iv:8GX4E5PAaTPFxSE+uLnEHHpKn4s53rUlX7me/jDS/e8=,tag:pgI06lCTVmZCUnL7uvEbQQ==,type:float]",
-						"token_period": "ENC[AES256_GCM,data:xVxCs+2y,iv:i+Y+1Fy9SXUFnrp9BYD13K7gWgJq/5MYMmvoBGRq4RM=,tag:+adrfRLMU0Fo+RETBy6tKg==,type:float]",
+						"token_explicit_max_ttl": "ENC[AES256_GCM,data:XA==,iv:tHlgpwBbexijRnovEGfQAqj4dewT9F7Bvrjrp5PSHNo=,tag:HjW6NibSbM4P61444N99FQ==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:3w==,iv:ET5R8q0WfLhhD4xN/ZXR+sEZeur8tE2BSF6+twKgzN4=,tag:JMIcw9JJKb8DXD/KR8GDeA==,type:float]",
+						"token_no_default_policy": "ENC[AES256_GCM,data:xAb2KvI=,iv:azcKr5qNqwo1lMyeIFKV9OtFFMUu1od6hdoDhFjkP+I=,tag:8bxJ9/TY1ZNo9AN9wpWX/g==,type:bool]",
+						"token_num_uses": "ENC[AES256_GCM,data:hg==,iv:nWrWw/A5lPnyQhTwAXmjxSd51TqgxHDiP29wlzR3r3w=,tag:gCVAPmU7sxMm22p62QrRqA==,type:float]",
+						"token_period": "ENC[AES256_GCM,data:/p4+j5gt,iv:o37v7GthjgIUatu4WggVniO667yC1c8EDHI38fwzKII=,tag:nY6OZBkb8fLTFNLHIJXWDQ==,type:float]",
 						"token_policies": [
-							"ENC[AES256_GCM,data:BpY=,iv:w6HIrIXoFHn5XhOJtcXaw6QUMR0IMkVw7+S3wLrZSH4=,tag:UqE3+39b+BYHbK+dRqjrOg==,type:str]",
-							"ENC[AES256_GCM,data:uN9wMFexPglZ642zW5YK,iv:5A2ZRhtJri53SJJFk31Q+mZka23j7CV8cuwnu+WYC08=,tag:NOAs0XX/Z89KHHNRugk4Iw==,type:str]"
+							"ENC[AES256_GCM,data:D7w=,iv:GArP5RgI7aLXaw8iVyQS0pglDM2smsd9bL59BAUD7Dk=,tag:J4sSt30dK25N0O2p2eaW3g==,type:str]"
 						],
-						"token_ttl": "ENC[AES256_GCM,data:Po4AP0Xq,iv:wCbfJldPcWSish62HwTIBUZlWBLIDrF+IT5ZNak5SXw=,tag:cARrhKUtRYWE84JTbXoHrQ==,type:float]",
-						"token_type": "ENC[AES256_GCM,data:r3bxEkDskg==,iv:tTTS0h/kc4ikcfxQ4CJK2fTGcljRy6VKw/Yo9UhAhck=,tag:wqzNZjcC57BFmD8TDd7t3A==,type:str]"
+						"token_ttl": "ENC[AES256_GCM,data:KK52W3y2,iv:I9exRCHyDq0LG6FrDVqysl2FrLvV3u7rF7ct64ttWi4=,tag:/Bqc1lOeSJm9cBAZ5DBhuA==,type:float]",
+						"token_type": "ENC[AES256_GCM,data:aBbuJN+rMA==,iv:J8a5o22KWYt2Pm3UWxvgygSdco7Gb9pz3kji9HZoxZY=,tag:9+poJ9/IrLA+KjkTP0XVpQ==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:GA==,iv:xYIRQRUFg+as1JI2nVG7q6lxnYzdpOGRXZYrpzK4bfw=,tag:O3M2yXyjslPtAZ5xu22lLA==,type:float]",
-					"private": "ENC[AES256_GCM,data:zF1D1OnpQ6k=,iv:q+u6k8wE3NdrvtNh0X6IzP9+WT6BgF9+2a7Nwf+/XoQ=,tag:nJqJt51sB5epXM6a7ZLQ2Q==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:sA==,iv:tRWHqriUcYQD9VCg6+U64qB72+al8dbl64bWEvbmO6Y=,tag:sJ0vQ2ykG5V8YsGMD6DmiA==,type:float]",
+					"private": "ENC[AES256_GCM,data:0qXkuyK/r/o=,iv:D6taYDpJBB5tpxE88bfPhFwAlzqBk/vnkmbDY3HdYT0=,tag:PjyG9mTTFNOAqI63in1yGQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:nXY6xPLM6rFCC5ME5u359TZf,iv:ZNy5yp2Y8yIYpq8OF931fUMVxZXWKoPmbgLp1MGaJMU=,tag:9OD+HxVjERFRv5h0E84yvg==,type:str]",
-						"ENC[AES256_GCM,data:TcLPSf/vcmY6aNtxAMHLDqlh2DBrRxd1RiA=,iv:AS486cAD0XHuQdbpnU+ekEuQF8vTNExuTuDTg0gE5yg=,tag:KUBD8vqvObcFqvILHJMw5g==,type:str]",
-						"ENC[AES256_GCM,data:EPuLlEDuxOoHnn3wqt46lF879rzfLnpqdCcrDoM=,iv:ow7PtVSfAf3E1bS+1L/uLinJ3e3HkYZsWhZAgQEBHjs=,tag:geu6jBW598HzZMfHnjWsOA==,type:str]",
-						"ENC[AES256_GCM,data:W89NN8h7PzPspUQoY3bv,iv:wyJD91nXMK27TzCnDSJfju7IFdLPCF2ycZSPKBAhcSc=,tag:CJofxZLDvSvjvExFk3WQHw==,type:str]",
-						"ENC[AES256_GCM,data:SfSaREPNFtZIx6HI3ynyffW9IqKmpP4DGvv0xw==,iv:63MO60t1hqY6vTyWc7MxKuZfWtvukd8GFOTyDYwJZxM=,tag:eLRua+RrHQ32GyQ4DHDM5g==,type:str]"
+						"ENC[AES256_GCM,data:GJbg5nkRsPQ6th8AbFPFc9nZ,iv:3krdw8eoSALEc6IqA4sEzEEbrzJqRJ9Q2dOzprcO1CA=,tag:i7YrJG3raL7kAttvDOjAjw==,type:str]",
+						"ENC[AES256_GCM,data:2oHPXt4+gF89Bp3TGN5SZZ4iBkvh0+kdnZE=,iv:eP42AXPVK9Zy7lgrbhdVZvADXn25tl0h2NiT3k1NUuc=,tag:ziikZ4D4O1CWADsHhGuW6w==,type:str]",
+						"ENC[AES256_GCM,data:qiYYjIWilq8IW/mCg1Lcdd6BVuhegaL0AR9/VMo=,iv:h19BXqbD4VqeJ1oJHZpAYMy+WM99qAacFB/R1rhgxCo=,tag:AfxJC84Pl9Gwjk+NYxwBlw==,type:str]",
+						"ENC[AES256_GCM,data:YNstLXU79LATfvyauTmC,iv:Quat9dGFMpbE9EU2fCC5I+JlsPh3TfHcSE83+314wio=,tag:Tbs1+YYW83qIJn/L/gkEnw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:XKxxmn5RMw==,iv:Ro95716wwhOyWK1U7bHQBlejFgmtB7Sor0S6ozO5oMQ=,tag:2AlKHl//g7uAA6PwLPhX+g==,type:str]",
-			"type": "ENC[AES256_GCM,data:Y6DP6mfITYAdGg8qGcNHDfI0OBqjOXWsbfJPD8yd5tg0mw==,iv:Bt5Fwd7Jgrc8xYWIZfnNFT54w7wTQJTF6qktjLNnh74=,tag:ofkH9ZVyBiyesK6Wyl3iJw==,type:str]",
-			"name": "ENC[AES256_GCM,data:Ryzz,iv:m3IVIUyyNIkJqJ1bUShJv2/1ZB7R8N85LKzWVnGeAZM=,tag:PLF8ztvdNCqSThomNfShgg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:aJMoWCJvti0DBTxFyjxyQCJxtI/ZQs3VYIoIViA/6QyRjDStrpqgAY//wVpH4xa+7A==,iv:bCJ6aVekhmChWCF7LqbfU6r0Kl1v3fGOZ5bbSHvHRpQ=,tag:qmcS9yI2dUoUN7mzBkQ8/g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:MihzWxI5nA==,iv:K9vSMQw+Yde7MtQNe82chPl7rY9Z4CKgriAnUd6I78I=,tag:G2VnJpEajdHVUdiPnOkg6w==,type:str]",
+			"type": "ENC[AES256_GCM,data:KaTRkpbXvh42OvjhHjzDDp1EX/O3HMye8ohTE0Qtjt1b7Q==,iv:s1ut5dPjSAIVsnuQtyx+xsKWb22nQLIAiuw07RLfQHY=,tag:/USqEdASFBJ7GHQzxdKqqA==,type:str]",
+			"name": "ENC[AES256_GCM,data:XF5e,iv:2Is6dFk1S6TMvBBcoS43v/y06pxM0gkWccorKozGC7E=,tag:Co72pWT7EougUT7KB94kUQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:pxU7ms9hWtfcc3oo3zmcpvog3KECmnXpPN5UZkkVdTKlvHOzBs6SxnMSQ2aU1I8Ywg==,iv:iHBeF8Q2yifCdA3WDgBkBdhkVABknYbnCVNdUsa9xss=,tag:kktNI5kTkp+3OB82L0JePg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:lA==,iv:0zrH/kSvOXqCht8vNaYpDlt2EC00wdZa4JCSZDEBXPY=,tag:34ZvKHdupq8344OBnQ85RQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:MA==,iv:5uPZ8UgrEnmhAjj+AswkH4T4KYbTjDWP+w6HtMiomVM=,tag:vG3Y/PLtJZ2wbZXYSFcXDw==,type:float]",
 					"attributes": {
-						"alias_name_source": "ENC[AES256_GCM,data:hPVodcsiDrPMHgTEDLwcm23+,iv:f75287enBiH5Lw3rBxvUE9JOXaD3A3W8v6CC3zUNRuk=,tag:1D5sONzmUX/O9fvl6+wYHg==,type:str]",
+						"alias_name_source": "ENC[AES256_GCM,data:wMf2Qkf+q7gZi2Z5hXmknzOz,iv:cZECi+uqpfEic4QC0S2fluwxJLEUDbHFIfGdjdxgRtM=,tag:D0p0YIROPMwvyELNUb69NQ==,type:str]",
 						"audience": null,
-						"backend": "ENC[AES256_GCM,data:mxeUEHCNU49xvA==,iv:8MA+4CMi6+JnUQ2s3f9pCa5z4O3rofdx9duTtPYCHYU=,tag:cFUv5aBF3PFPLZns4w8DSw==,type:str]",
+						"backend": "ENC[AES256_GCM,data:Ne9DvplX00xB1A==,iv:vjuTWxJQKxrXyOsNPIYUP+ZfDb8WfBha8u4OtPTXcNs=,tag:S06XuUJrcgaMEgutW24e4A==,type:str]",
 						"bound_service_account_names": [
-							"ENC[AES256_GCM,data:zWup0u/oaDcZRiHCOb3HMQ==,iv:k+vUb3G6eQ12vqXUzKQjkQVVT18ulLCGQUZKSmjdhuM=,tag:QBI4L2eXh0rkG4117EgwSA==,type:str]"
+							"ENC[AES256_GCM,data:7RqRMZvh2IubOsjbUt2Lew==,iv:Gn79eATw/foA5EP1V2Hsto0rEG6GEVa1OfEfCmjU7VI=,tag:a0GBG+SfU7ngDSlDftSm1w==,type:str]"
 						],
 						"bound_service_account_namespaces": [
-							"ENC[AES256_GCM,data:H0qCohZ+CkicjQL3e/qgrg==,iv:m3YtVqjOd2q+ghxNz9hJQOrf5aCOHl6hPReocxtkexQ=,tag:89vqDFMBysX8SyvHmWFeEw==,type:str]"
+							"ENC[AES256_GCM,data:C6Pc6lDnL7ljPl1zy4zOtw==,iv:qliBcrjSMlrwsMexh9z7mefAJH4WtS703S5WX7kASHI=,tag:aE2FzCiC0vPpLf88d3I+hQ==,type:str]"
 						],
-						"id": "ENC[AES256_GCM,data:/kSWk/7FsaKywDCzqOcN9cw2dn1VtrJZ,iv:HzSovPcyQv8KcVf5TGHRSJP7vXmKYII0P29VMFPIw1M=,tag:195mUuGavDw8v/KXgQX5Tw==,type:str]",
+						"id": "ENC[AES256_GCM,data:v8zylQerp8ojSGsJoth5cbno2VZlJHdt,iv:Qkp23qXZkK6kcXA5cHOpj9MMhpmZQSiFtWk16+Die0Q=,tag:DmSOJlzmpLETXmxYb1HgFw==,type:str]",
 						"namespace": null,
-						"role_name": "ENC[AES256_GCM,data:ldqB,iv:fjaXNXcUyhqVT5rlSWd/wXhsgEbSkOKDKr2UTo2kkDU=,tag:PA3bBq1Ai7hmi13IyG4Lzw==,type:str]",
+						"role_name": "ENC[AES256_GCM,data:Mws0,iv:U13KjPJEeEYlBADCq+WW8dG4cwFQGPQZY3iq+rYAJCU=,tag:Q0o9zOD5NsL+sI98X3ukgw==,type:str]",
 						"token_bound_cidrs": [],
-						"token_explicit_max_ttl": "ENC[AES256_GCM,data:Vg==,iv:ljYDU8V93pKMAI0wGZKJwbzkMAYSoAZ1njO+QylD3qI=,tag:U9RzqJQl4rhRYyXd7NI3VA==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:TA==,iv:bAvKUFrHD6EedSxQ7WcoQK5cpJQeVeu/C+WMlAYNcoY=,tag:YDXGLpFkbCuBUwoPqu75Rw==,type:float]",
-						"token_no_default_policy": "ENC[AES256_GCM,data:N2/Wgv0=,iv:u54AR3HLn7GB+KILkzQKHXxzgaKsepQJIUxWUqwDnmE=,tag:DPsQnIXGarsTCGwUjyDnFg==,type:bool]",
-						"token_num_uses": "ENC[AES256_GCM,data:FQ==,iv:8OWgxvKBkPDEmYYvcMozPl0GLHEEcTti4oSncG2sKcM=,tag:unGtSrIOw4BvhHz+0HEVVA==,type:float]",
-						"token_period": "ENC[AES256_GCM,data:umeRHYg3,iv:hjRrrcD3axYy43ZVBr6HpGTMDkM0ukXkEH3006r0z1g=,tag:qWZkeuOqz9wibOF/yZbyqA==,type:float]",
+						"token_explicit_max_ttl": "ENC[AES256_GCM,data:ZA==,iv:tz11DLXqeKH3b6XcbvmRdtPDE27qE8eUhy+pAznCHU4=,tag:4jlQZ7yDI6qMyVSjijJF7A==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:+w==,iv:qVn4dafDXuaaEjPGqmRi5BU6sU4tnQf308EW8VjNdYE=,tag:Fa+QsxZWuZwX8hjud5Nlcw==,type:float]",
+						"token_no_default_policy": "ENC[AES256_GCM,data:eEXpp38=,iv:+XxpPDwDjVpEvUj6bVXdAhR53h8lIZVGqCpAVKIO6QI=,tag:VYm1BXJHIZj1mAxtUlomHA==,type:bool]",
+						"token_num_uses": "ENC[AES256_GCM,data:+A==,iv:/C9xDalS9VTS5euFSNJMqvyeNWvxqn/LFrOw8zWhSsQ=,tag:jjHPlKgEfVdlCeaF7WezLg==,type:float]",
+						"token_period": "ENC[AES256_GCM,data:frr8z5FE,iv:UUn1TaEXyuDj3Z5k3/lkKKGXo2/ZhI4PMhIwTLl/ob8=,tag:axo6GrT/Ow3SaySxbyQEZA==,type:float]",
 						"token_policies": [
-							"ENC[AES256_GCM,data:Hc2HCwCasnWC7g==,iv:7aeRLODegvWD2UXgKc5mBBoIqN0czj6BIjEwFACfNiI=,tag:3nJ+fR1mNqnsaRq4fVD29Q==,type:str]"
+							"ENC[AES256_GCM,data:FTLw5lijt/+yPg==,iv:lxci4CDJKcmEtZA/UP8+8Ap/JGd+6dvQ1/Ui3Au06hg=,tag:wm0Q6FE/TO2FNUygbL0rJw==,type:str]"
 						],
-						"token_ttl": "ENC[AES256_GCM,data:/zXL4Xxc,iv:+mxYgRJxwLkkpSUmCjuQXQ3QB4+05TefCjjnCKXn+LI=,tag:wwts9DCuy50YoQdjMtNvLQ==,type:float]",
-						"token_type": "ENC[AES256_GCM,data:SK5co+mPrg==,iv:CiMZSgHr+RxYpzDY1faNUWhVUskaH/jIfiCvUqjV/lU=,tag:iJtHF10dKpwVQp8yfK/Nfg==,type:str]"
+						"token_ttl": "ENC[AES256_GCM,data:vKLpfF7f,iv:oeGMmzO2MH03xkDWvNUNSkHATm39odkyCulahZAFB0c=,tag:XOhGcj9f70R8aUBB1B65Iw==,type:float]",
+						"token_type": "ENC[AES256_GCM,data:JP/wXv+vrQ==,iv:akFTYisC0OCkDcSKi+lj8l90CgPmdMRGX96OyA57Zt8=,tag:RqdDoB19ofq09svSbvWeLw==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:xw==,iv:5iXFAJyxjEk7rH7yg+R1m8/eUsZOo4lEtWQRQ+0tf1E=,tag:9WPYPTArClNt3X+G6pgB8A==,type:float]",
-					"private": "ENC[AES256_GCM,data:KVedOyanF0s=,iv:+u07UqY88nP21UwfGOcm1c3RP1MKDNTuGxnz7lXK94w=,tag:e6Wegyy2MdcZMVVU0S3LgQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Mw==,iv:vF6oUEpzXp8fxErTGn/G1uf04hs7yyGaOjHOkBhKW9Y=,tag:N79CoqW82fBrhUUEtq8FzQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:KrirtvKgXEI=,iv:DMMD1ra9NFMG3iq84SQZaiJ+cVa/0u5NEOb6pkEye3w=,tag:xgr9FeCvk+RWZ/nKNflbHw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:Yp3VQwGmvEPwD7hdlE4l60W1,iv:/8EhjuuD2iCQw5ifCcw1Ap5WqIGJHl7aSvSPDQ36GNo=,tag:hfNS1HSbG4S7F49bO41Uew==,type:str]",
-						"ENC[AES256_GCM,data:j+344coR9MDISlc+bWGteOf9GMwEIqSJn+M=,iv:rbmebrgu77XvTaGOlgEqNGBYm+78XXoAcl3f13ytKnk=,tag:J1+t9fdiM11RQl3G0MiluA==,type:str]",
-						"ENC[AES256_GCM,data:80i78VrFmA73q/aKEQDw15h/wA2gM+mS27wJafo=,iv:etds3ky2rDS0vc9fwnFltCHjDwWHUNFOkMj2rNiohvQ=,tag:HwlwH/0IcEC/3OAoXGNJ5w==,type:str]",
-						"ENC[AES256_GCM,data:mBH1OxqOyRCfOsaETmXyBo2ImhOaO1U=,iv:qd1bks1tTrz/gCdZrENmnZ3tmWEKEbl0DDGIgfOtS5s=,tag:B9YjoiaJKsmChpFb05Ce6A==,type:str]"
+						"ENC[AES256_GCM,data:/afyKQ5SuwSL3cyNOqxLxBGD,iv:pu1qy+NqB1HuCoRLJV+kVsaNLHfGAWRFBPX4JygtGoE=,tag:8sGnTKdC6S/GuojreBH7DQ==,type:str]",
+						"ENC[AES256_GCM,data:EdSA65mcI7k9oL/XkTuZlvuxnRzsbJegpu8=,iv:o16QNMuk+YZSfHxtFhGE0jSG4KV3AQ+n6ia5S614sFI=,tag:51+gttKSTYg7/610mDDB8Q==,type:str]",
+						"ENC[AES256_GCM,data:/nrTQxORwQpVcUDTOguKtjNWzCJIffWa2GKZgcE=,iv:L2m47jPTYsgbYU+oijtSo1P7B6Ai5atETk2OkJ5jZDY=,tag:GMOsieSGmcHHqirJWjnfkg==,type:str]",
+						"ENC[AES256_GCM,data:jSS1XL7Yp/BoMMgD7P5X+Piju38Mu5s=,iv:bkn6Xb8StPtkvOvthy2bhQHPpCTYguJafPki8l5gU24=,tag:8j+tWA1w7cMzgeYxii0TgQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:cd52/UgTyA==,iv:YMOJyipAMpDnzDwiW6gzsqCUGFunm0xr8Q45CvNIHEQ=,tag:ZHOdvNnU9LWHL87ExO7nYw==,type:str]",
-			"type": "ENC[AES256_GCM,data:fbUL7KjOwoaohSXfb6XuUiLYEVHh8lcFrESUORqhMn2W3g==,iv:UVCewCvNQdSmHsEgaNTRQxBbATGPN03+BZu5ZWPGTA8=,tag:0qZUl1r3zCs5dIU+xB5rxA==,type:str]",
-			"name": "ENC[AES256_GCM,data:qbtKLXo92tE=,iv:LIjq+gsAvSbbY0YQmr+ThFsVGZBa5D3yqBF/4U4Y5Bc=,tag:NhyXqvF1xAHn7bO+kSUPsQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:/ViE4GJyJu9+WS9Q5pwQ0KeK7qG6q+EFejuKxLiW1165WOlDwhUc5KKOWFKJ0cV3tQ==,iv:7xv6D9WLJDmJy5yCJJlGe5o7twSlDrst3/azEmd6u0I=,tag:sUtG/hyuvDzf5rix2eAL6g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:ZDWuU6iEBg==,iv:ReP8v6AoIKli9+M0ThDmVHM9fRA6NqfU1Xf4bp6XLO4=,tag:BeL+xN4LTu/o+vRQTDwHkw==,type:str]",
+			"type": "ENC[AES256_GCM,data:A1kp7765MxpR5zdcRAIro4fIixNeAEydxfJWhmRuThB6LQ==,iv:y64pYJROOARwnY4RTKEErbedRg03POeNoO11JdozMbc=,tag:1PGKdoF0LscPD5M6o/fUaw==,type:str]",
+			"name": "ENC[AES256_GCM,data:rKIPAAnjaXE=,iv:+tYE4Qf52TvhCF8odtp3MqhQKt5M1pIj79lwalLMo9w=,tag:tOsdK2UMqz+RpyBHZE1yGg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:jmWNl2Af2dnejEJaw/zQkE1cyadiYg7999nDOSjSmb4BJdn5lbnbDCAiAnm33ebHjw==,iv:kWdLIZIWJUD5/LPaGiAoIJKiDKcACfQSOi8NA92hvbQ=,tag:henAKdfz6wmBwlnsGVf+8w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:ng==,iv:wpLiu3sGUczdpfzfXyNwwcZra+0NNCW0kkqXEzDT5TE=,tag:24CDVOCEvmoaV7rB9Zjrmw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:UA==,iv:FI7vagGHoe0rMpE+441yjW2BOkh5YWKSmZ1xb02owrA=,tag:dI9hPpW8Y3vgFzWU8Bmthw==,type:float]",
 					"attributes": {
-						"alias_name_source": "ENC[AES256_GCM,data:JRFiqFQb1qINb1a/OpCnb2he,iv:qLRuMxfBuY2upBN5nmBAqwNPVeAHvVSc97j+cVo9GmI=,tag:K6aalcBrhGNh3KOYPmw3Dw==,type:str]",
+						"alias_name_source": "ENC[AES256_GCM,data:1L4OLf48SQuWj8ewSgNVY7YC,iv:dfRhkcBxpVHM1SJeRyxhi0LT94JrePnTe8Vp9ILK6rA=,tag:DaXwBu1CmA9PNQ7sffinTw==,type:str]",
 						"audience": null,
-						"backend": "ENC[AES256_GCM,data:ZzX2nchM1AvMwg==,iv:FzbRfaUPLNruL22Cvf5rN/AGytsIfe8BaFWROym4ORw=,tag:2TCVOwXLsv6wLnYx4TFCXQ==,type:str]",
+						"backend": "ENC[AES256_GCM,data:kaHhkReWqqylww==,iv:acYpN+UaugTz8B+m72nMa0lRrRijxIh8V1zCgMOwNpQ=,tag:gKWVMbFy4EBer7zyLd9viA==,type:str]",
 						"bound_service_account_names": [
-							"ENC[AES256_GCM,data:ZB5u84cZ2SI=,iv:IbhMdsq1MmIcda73dArjswXQIoAKoBPWsAi2o7118Zw=,tag:F+wFMtgoTc+tonoW/RuILw==,type:str]"
+							"ENC[AES256_GCM,data:nOafCejwkdg=,iv:YkVpLBrkZXjncOixWB5VVTxzwnYbon/xMZiab7zBlPI=,tag:qDrdjGLHnYmLT2zqfYxzrQ==,type:str]"
 						],
 						"bound_service_account_namespaces": [
-							"ENC[AES256_GCM,data:n3vXgS5FN8g=,iv:yLE6BX6zqrp8Q9vo1pSate+jBUvvnLQPjQRuqfXKDNw=,tag:C56pyESe+pkcO401UT6b+g==,type:str]"
+							"ENC[AES256_GCM,data:dZfy7QVgPxM=,iv:wslgmQoU0CKRrtjTVBoqlmGlvozIOi/79SDdKqPyiJU=,tag:wr5IKhEqWnvf/9cqRFGDuQ==,type:str]"
 						],
-						"id": "ENC[AES256_GCM,data:rsFTvIami6s7z5ckXCYIZlXOb685LO1A2E3UXQw=,iv:dppagyjSPyDDB6QeXeHiG/L4D5wM7y9O2XEzLKmOKHs=,tag:91E0SVj7Eg2ZacJc8TBjIg==,type:str]",
+						"id": "ENC[AES256_GCM,data:QO2rv5lrQBp+ndag1d7e7RWrHqo/mw0s6n8nVd4=,iv:NP7yh5FHy8VaSeSpKzCEsCqNFBe3fRzly90AnILAPZI=,tag:7hHnvUHs09osCAQzZ/Spmw==,type:str]",
 						"namespace": null,
-						"role_name": "ENC[AES256_GCM,data:WtB412gcfiM=,iv:12jp2lhsBZ8DfmUt4t6I70TuxyGbcRgL4aRSRBcEXqo=,tag:sxDvDNYRgVfvg/dVSEwCEA==,type:str]",
+						"role_name": "ENC[AES256_GCM,data:sqa+VtxQQq4=,iv:p59k7uI68nqv3JH/vM6yjp5/0cCPqhTSY6YJFFmgkHs=,tag:NVoJR65Iqpt0mP7lbsUquw==,type:str]",
 						"token_bound_cidrs": [],
-						"token_explicit_max_ttl": "ENC[AES256_GCM,data:3g==,iv:pdjSm3PjdCv9BWnpb464mqS9XaLjBrmBszRQt/eTplM=,tag:OHEMN6449o5Tjw8l8tQcjg==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:mg==,iv:v00WjfNxqm7s1Xp0z1XwPl7WfFYElNsMOgoNV6oty+U=,tag:JhFmo15RUxY1QRiR67e71w==,type:float]",
-						"token_no_default_policy": "ENC[AES256_GCM,data:CATfoWY=,iv:xUcxtjINiP7LxA4CUPeMWfbAlfhGALxYXFaXWF+QZ8s=,tag:UU2ZscM4jEpnTzq/NFdzPA==,type:bool]",
-						"token_num_uses": "ENC[AES256_GCM,data:KA==,iv:mJ5di4SZJJAswJn8IUURXJDFuSyl8C4UOEaeSj1c4Fk=,tag:mlz2y7YILt/lNeb+nkEElw==,type:float]",
-						"token_period": "ENC[AES256_GCM,data:pzxjgwy9,iv:EX3W6DgwLsEYbi5kA23a2hoP3YPX1Ic738aVKCzdC6s=,tag:L2Nykx6yj/8XyFX43GW4+w==,type:float]",
+						"token_explicit_max_ttl": "ENC[AES256_GCM,data:Ag==,iv:Q4f/YByeQACDc4lSV367iHqeXtEX/TsolXTIRY4HYtw=,tag:3kPoxkATPMBzcAPcSBGcxA==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:Lg==,iv:thAsnKmTm5+UIysuUlQeWT51OvA2FnR5QGj90I9Jd/g=,tag:AEswvZ0v7K/gFKpbtyYGIA==,type:float]",
+						"token_no_default_policy": "ENC[AES256_GCM,data:4p3JAEs=,iv:f/fKEBOc9W0eejYQYRZta7EFgVQYL6o9f4rhDx3M8VA=,tag:3YVgNeBRuAkZ6Rx3ic/gaQ==,type:bool]",
+						"token_num_uses": "ENC[AES256_GCM,data:cA==,iv:NZIZ31OBbZ7o7Q9/EkTuMEnOPQSOm/C29k/so+8J6Y8=,tag:tFmGNGb8bcCvyExzJ9XEAA==,type:float]",
+						"token_period": "ENC[AES256_GCM,data:WQrrHyO5,iv:buKrLjh/TN2c/9pwS03oP0Mghu6HUKqpz3P4rtyTjF8=,tag:GgHsbv45RCoOinbWYGOo1g==,type:float]",
 						"token_policies": [
-							"ENC[AES256_GCM,data:mu6CKK3vzbVIO++2,iv:8Y6RuS9VaOrLGjd80R3eVdp+csBOkdVbzIGWtaWj4uY=,tag:fBESkw6zNX8+Sy6J0YUV4g==,type:str]"
+							"ENC[AES256_GCM,data:KsuEBbs6KpQzYVzX,iv:D8fXlB3bp6dwBLSD1NSJPQp1o0xpl+bcS/wjvlvRt6E=,tag:XO9iyd42+QeHKCeqlEdmnw==,type:str]"
 						],
-						"token_ttl": "ENC[AES256_GCM,data:KHBdAdoY,iv:qJue6EXHG6NJ06D0EbKgxh0rbiymLAyUseGPXnuolUI=,tag:JqhP2L2y2nsytOFWIM3akQ==,type:float]",
-						"token_type": "ENC[AES256_GCM,data:uPyig+aVWw==,iv:zXktRzyERYErhFSGKFKGXxWldp+oLw5U+8zWLKSUk8I=,tag:9ibYuw1JpnhCsXzSUTFeGA==,type:str]"
+						"token_ttl": "ENC[AES256_GCM,data:fUwFstNV,iv:Bkz9gy7679uG3u3id7heqvg2dZZVbuSgm+smYB3a/nQ=,tag:w1xaBk9WnOh/strMYDasRQ==,type:float]",
+						"token_type": "ENC[AES256_GCM,data:/4qrOkeaFg==,iv:6roYOIm25hjKpgKwemMGdKepcpNlC5jtTHb0BkwDdCg=,tag:PRhRLJJskBHCjjaIkC4qLA==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:FA==,iv:IsSrufx773aWPv26DMexXBaGAZGHQlHtD14NEvrJdM8=,tag:sh4WrsIWODtEO1TUwKzDpA==,type:float]",
-					"private": "ENC[AES256_GCM,data:Cy8xwvyYVE0=,iv:4/xOy69PCyJP+SvskJE6jYlX1qDfnSttnKijGyMunug=,tag:XAvskI2JoyFjZJg1QxnMaQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:kA==,iv:/7wRJdlpDx171IVyQXzYCrVz9i2KZRYjZI58iYHCA9I=,tag:Y6nfM5K04+DPUQXsyGtBjg==,type:float]",
+					"private": "ENC[AES256_GCM,data:4DxCdrTTnwI=,iv:v1JeEP0FHMWdL8yaBcHX1/L4bHgapI/kpY3It1lnzrQ=,tag:IY4aKP7Uf4oYscPIrU2h6Q==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:7yo11GFhFnjwoIDslkX+N3nx,iv:tCy2RbESmNseJcjLXeJLyvbAPg6kxSHsLfCVIm7gn6I=,tag:UxG/wvsje7Wq2+F8KUMZpQ==,type:str]",
-						"ENC[AES256_GCM,data:VWWXPJ3HYG4eDaygzwO2ZRrePLCBKvDx6w0=,iv:VMv9fJliBO4rpBKOCailMTdeX0wcIMeg9MaxyF/RwP4=,tag:/TWAwVhvHUDIMpE3SKig8Q==,type:str]",
-						"ENC[AES256_GCM,data:rlf31xELFhbbsb3vWHzSlgC+DmLOkMRX772TB0A=,iv:TfiTxfgsv4U59m3pTknVbiXP3gALeYtnCK2sTCs6QMk=,tag:KmAXoe/tZxNATnWeP9KYFA==,type:str]",
-						"ENC[AES256_GCM,data:hR+FM9kblS/mhj31uVXp065oXx1DJs1EzQ==,iv:vdJE0edvXmDfpjRcXUmfWAAyJ9ScluyyFkJA1iuzLK8=,tag:SnVxPCNtOu/CGIY06f6HFg==,type:str]"
+						"ENC[AES256_GCM,data:TsJ8KgBz/8yEwn1AAKq/q3PH,iv:b8HVJK9Ai/J4gVC2JzrcBMpDA8iO0/oh+/6F9Lfhtj4=,tag:kWYsAeeSN5bdTjRjbo4lUw==,type:str]",
+						"ENC[AES256_GCM,data:XE9VAOZAwX0+7c4W9bDh6RTMtmelnAuHwmI=,iv:bsDfs3yW9L5F/SCA2wClEz0ocvhIaVCERCsAlbWmlXg=,tag:O2R+fzLVV5QNv+PHK7yD2A==,type:str]",
+						"ENC[AES256_GCM,data:FN7Fb8UVefdf043CoSVrOdBwgJD8FL32XW4G4ho=,iv:C+JWFxCFl4iRQxye782pGwebdDB3wg2MSrza3iS+Hmk=,tag:X9ix1rCBb8B9FvIoU0Jivw==,type:str]",
+						"ENC[AES256_GCM,data:0lPblU2YgwHJhccTO2CYamqdbUfad2+Wxw==,iv:o8Ab6laxyesd17yJlxbL6AAiF3GF8ItTrlP2uEMwVp4=,tag:XdyLX4vtK0MN+AAbMcypVQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:6wG9i4X6CA==,iv:7DW2tm50OALzTeuM6s7EOrTf6iRKddddmlQMuIx/hyM=,tag:jkgy/gMWq0M0HUBFM2U6Xw==,type:str]",
-			"type": "ENC[AES256_GCM,data:EWai6cvAoD3+raE7okqOnSOKx3FEGYsNO+8sSCh7nmxtXg==,iv:3XGSNsRI9QY1u5gu8+NgaArMfU2GrSB3/PPLdy/kdVE=,tag:DmvaiHHPCRkrWpT2umef3g==,type:str]",
-			"name": "ENC[AES256_GCM,data:EwCNQpZ05fEF1qvDtmtL,iv:opEHt9dpVGiypJJvS9Ads74kJacW9yEchQNLrItNXcE=,tag:FVfM/orZQP7lT9aZWToUYQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:iVWdo+E5Fcm2lvIoWBPW7fdAb3hTSWN+cNOSmh3BDh2MMe+wYHFNE/vfz+0G50dbqg==,iv:nsAlqpxcWoVUW161pQ/4LrVPxRRcgv3gnVV8mhUagLk=,tag:VVdZxCZRaQHis1naFguHAg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:G8cCyYYZPQ==,iv:aFHyc0avXOso9iU7Ooqf1HDNtr2utgS6k2SSob4UGEw=,tag:3sFLGOdfPjA+bTUtnueiUA==,type:str]",
+			"type": "ENC[AES256_GCM,data:LgtjrzYlS5atZ2D4gCQC3aRTBBar1wd2k2g2EQfxHFbsVQ==,iv:66tj83DJOFh95zZwmyYeWFjcYnfZCd/dROY2gi2xpI4=,tag:A189Ogy0D+Boa8wogAselA==,type:str]",
+			"name": "ENC[AES256_GCM,data:7YUxZ+G4P1bLoNJfkaEG,iv:+Ne3dNV3/c28YyVLdd/q8ND55tZwgX/S9h5n17khOtw=,tag:zVsxsk2plzv1jrxGhrzk/A==,type:str]",
+			"provider": "ENC[AES256_GCM,data:pdw77fvREVgl+FG8XwLjqanWrRXvsnxWakYiedCq9+TCAZ19Lv7qFMix4RuTiOrVuA==,iv:222OUrY5GLDAc2QuzwO2I8C0YNImuJRIXDf0YMEWiL4=,tag:y+CZttH3wYxH228G7ogsSQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:IQ==,iv:WEUoGx/FzP7V7/Ke2sLldSD9/du92dusWaPEyVE92V8=,tag:ZW0oKXUUQNPgzvoXATUFkA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:7Q==,iv:KTABphVZKVUJDprrVtk1ZP3O/N89Pc2fNqh7pceaiY4=,tag:oB9uMKDeIw2lij/icqB40A==,type:float]",
 					"attributes": {
-						"alias_name_source": "ENC[AES256_GCM,data:wb8zH29eAxWj1foVwY1cCWKZ,iv:a80/1y7cD+ENgdZ3N5aFB7pKxqE7OQlLLSxV4z289bw=,tag:u00ZjpiGihNaqKKMezESjw==,type:str]",
+						"alias_name_source": "ENC[AES256_GCM,data:sgQdWyS0QS75E8/ZNDRd8hsO,iv:evLJWZEUbQpkIGi+347VgXezbvijymuaOB5pVcSES3M=,tag:RRTQ8plAWhyH1ZtcLFWTOg==,type:str]",
 						"audience": null,
-						"backend": "ENC[AES256_GCM,data:dGrWvGRVoJHvKA==,iv:j3ebSinOHcSJEIZPrGn82G9x1L+3l4LsWClpP2CEVdk=,tag:jUl3OqlTSAxDoW9h7q9Nwg==,type:str]",
+						"backend": "ENC[AES256_GCM,data:1qAjRpVHgqdw+g==,iv:n1N0op0hHG+ofJq1CPIZXfJUQXihY+ymixgJ+zhAe9M=,tag:Hbu8HrpstNsDg7+EtmjnOQ==,type:str]",
 						"bound_service_account_names": [
-							"ENC[AES256_GCM,data:g8ctkcsXng==,iv:Gt5amds2zkbHghrWZSX7rq7Hv6AeQb9mgiXNqdaafSw=,tag:/o64oLzJfgU7JxYsw1yQng==,type:str]"
+							"ENC[AES256_GCM,data:BPOiijb0ag==,iv:bVHfJk4tGCGcti8VRsCvsh+IX2lyS16Q0oLFETktbDg=,tag:GwMbDsjprtt7Q2HaN90VNQ==,type:str]"
 						],
 						"bound_service_account_namespaces": [
-							"ENC[AES256_GCM,data:EQ1n81+h5SpNf3O1,iv:MNIh9wdQlKZ0pnG5T3fy+KB2MhEWuyhwqdupz9WpA5M=,tag:3fPuSGlHq38EhuPXu6KOOA==,type:str]"
+							"ENC[AES256_GCM,data:0EjFn/B8sduYCoFK,iv:KNu2RWLLAlZCevwVvddp4w1wyBWhdGQEQfcOPkdKBws=,tag:5s1DECLx11X9bZyHPJ++TA==,type:str]"
 						],
-						"id": "ENC[AES256_GCM,data:6sj+OsYZMLJ/9gPvZio/ys514ir8lwycoE5/hs5HGC1fMZqw,iv:8VVRw0ggI+hT91JK8w+OB7FWhuv2MNh8Dzl+CuUq8v4=,tag:2ZHphf64uxHp8EJsz3BUoA==,type:str]",
+						"id": "ENC[AES256_GCM,data:oPIloBcKGB+CqbPi1yQAKp0FdXVKWT2B+87iF+o6ucAPRfLO,iv:yJ2dq91uoVPh2vdG2OxQKkvfAbq4V0smFt/mCZFhYcU=,tag:CRKEtUot12Fdn2AteUtOLQ==,type:str]",
 						"namespace": null,
-						"role_name": "ENC[AES256_GCM,data:gMp2I6mWkp7dCCmoE18/,iv:jqAZMZIZ42i+KzuREkk4RN6MGoAPI1Prz7J3pIYsx34=,tag:dro1MSAS+w+Amjc5njoLyg==,type:str]",
+						"role_name": "ENC[AES256_GCM,data:OSqtUrEvFf7wClDSsvnM,iv:CuKg62oc4wnGevHXHyEbrEJn+sIjZmlfS/E2OZGmEFY=,tag:HlXr/QCQVRP4w0lLpYH03A==,type:str]",
 						"token_bound_cidrs": [],
-						"token_explicit_max_ttl": "ENC[AES256_GCM,data:/Q==,iv:XIqh82rqxQgJRgNPLYzhIjffzZVb4z2kqFdYPv23GVo=,tag:skAvVbjSvSCdEltF0ls6DA==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:6w==,iv:cdneUbg4GoU3pa5sSqd1JPrp64nYyf6TSylpKckj55w=,tag:tCOJOCcShpxyPwf5zwUeJg==,type:float]",
-						"token_no_default_policy": "ENC[AES256_GCM,data:DQMC49Y=,iv:4xSVP7IjJPOaSPUG9n/GAr9B5s9+jQMWbgERZLzgAj4=,tag:Rq8lLNyzarYlSMFy16Jl/Q==,type:bool]",
-						"token_num_uses": "ENC[AES256_GCM,data:vg==,iv:Jtv+hjlS7V/KxKntYFc2QJm/LYsBTozNco50CbDUKwA=,tag:btDd2S3CYGvnwdS+TBgt1Q==,type:float]",
-						"token_period": "ENC[AES256_GCM,data:FNBXb179,iv:tVYY5CJYKBQed1c7GNMp0qU7xfbBxp6LyhLAcERdESE=,tag:94xnwVJvhSdu8AQZhA1kYQ==,type:float]",
+						"token_explicit_max_ttl": "ENC[AES256_GCM,data:Gg==,iv:Qbshqy9VMn+1HMBnzNbVKtPiMd+EuJwMjzCcH7E9Lq0=,tag:QYOttMXN0Mv6sVNHezkTXA==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:LA==,iv:bondR8wK/K83yW8L53T9AjW/C7/yRiGoFx0UDh2i510=,tag:pM5GcUL+AC9s4s+DMvq7Tw==,type:float]",
+						"token_no_default_policy": "ENC[AES256_GCM,data:6vyv51A=,iv:ZlrN/PnCqHtV8oTBP87tOesbeZ35eT2cmfvmPByF4c0=,tag:UM8SgWlnLkjKjl1p1IcfPQ==,type:bool]",
+						"token_num_uses": "ENC[AES256_GCM,data:Gw==,iv:4zKKS9vZMqlTkzi6HZ4wMmwpf/RBhTPlzwimR5+qjso=,tag:Q9sjQLk0q7iDPMhw0/+gSg==,type:float]",
+						"token_period": "ENC[AES256_GCM,data:IKOfsghU,iv:0ZHiSPUpKmiRuCosUBJlQjhFh30IsYbEEaXsUAco5U0=,tag:zzZIWHgusLMziCcOtyVkAA==,type:float]",
 						"token_policies": [
-							"ENC[AES256_GCM,data:3sNwsM/YMmgpfJi6xEWL,iv:qEiicWFuOnwXAsXm+hyL0bFVGSdkyRedJajo+xa8o0o=,tag:cHqiM87Ep1vcG+zNtFqb+Q==,type:str]"
+							"ENC[AES256_GCM,data:hGpYMjksLxlnwvktdvFq,iv:PavDy67dDkUT4RXRKHP2cu1UMAhF//Bp++ORQxd39bY=,tag:bkh5HZ9voB0M8994xgAEmg==,type:str]"
 						],
-						"token_ttl": "ENC[AES256_GCM,data:gKUYmP2s,iv:wjCLMmPMZXqsE6crZpSkP9UuOOqHGThcRwR2CWs6RBY=,tag:Tl8aLm9rz35t+YjdaFdTTA==,type:float]",
-						"token_type": "ENC[AES256_GCM,data:42sVD1GkXA==,iv:lJlvzduXcQ6xPW2eGvD7sUqlmm6bo0Re6hKwy04N/BM=,tag:EUDo7n/4xFd0OaVoWhEevQ==,type:str]"
+						"token_ttl": "ENC[AES256_GCM,data:JBj9qdnO,iv:ttt4ACAFzzQI4cmjqXPcZCjy/MM2O9j/qpWoZ3OI0Cg=,tag:6/EaBmpEVhEskRkRKtGTuQ==,type:float]",
+						"token_type": "ENC[AES256_GCM,data:pxAMTkL/cg==,iv:9T8TWrfMHKCB3wr84MrDs72jNqcULx7MndXDnm7NjZo=,tag:s+gmwP9p7y9umX65oQpyzw==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:lg==,iv:FDOpdVdwdlycfav9j+yvjtlRFUSrnoaRM2+sKDUZf7A=,tag:YKum7x/wX4Zk4H26FeBdHg==,type:float]",
-					"private": "ENC[AES256_GCM,data:GaB9lcBzxPA=,iv:aalZaTXgZXuTk6vK5FORsfD07yo4PznM+wURbgy8nII=,tag:cuzbCAJMq0a1Ru5Z5sLV+Q==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:+g==,iv:c5ayKN5NDOJKXUMGBVo5t7N6LVY/WR6u4p9IefX/NLY=,tag:VT0aSYFSJPMyYBR1ugg2GA==,type:float]",
+					"private": "ENC[AES256_GCM,data:lVZ2RtJOklI=,iv:Fq0/k6qEWp1lNHttc8x/gD3wnrm6xSVgnieHN39VfJY=,tag:M1sGisOP5mNl/OSHIMmo7w==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:UH17yatypqJzqzZPce1zufYc,iv:OZhP3F3Y3z9xODs7wT2d45F/OBf20XFJAFXhFBAk4t0=,tag:ei+ocAs6ZlZa1JFA6DVToA==,type:str]",
-						"ENC[AES256_GCM,data:8aRrUaSI6YFI9g0bv/J5bMWZViKY23V2HlA=,iv:KL+jvAEgpSqNWz221VVsvrlZFR9UGPW+S1JfjL11jiI=,tag:4h2zjrEhDbFKrSQo27iT1w==,type:str]",
-						"ENC[AES256_GCM,data:XdMjcm9IczEt3UemEARJM/eKoPgiCnB/3sUzo7U=,iv:Vbvalp+k921rKEnIRa48uhQ9C5vkfTj8xO8HxuVXuJQ=,tag:cT8uQew+uVqEMisWBcp4xQ==,type:str]",
-						"ENC[AES256_GCM,data:rU17vE75GdncRXrIYp6Il37Peiugzckecz3VuQ==,iv:iiYhXFhviwo2u16zZeP+TcSUkHh8P5n2viLDpaPpDTo=,tag:qW5kcg+Su6z6b//Dc+k+Lg==,type:str]"
+						"ENC[AES256_GCM,data:wySajvZ21LtGc/lNwbkSK7ok,iv:j4oNtmpMYlEmKQfCh0vWfZmbNcFGGlk/7RzoLfkwdPA=,tag:fmimadZ1KQRjyitjshtcCw==,type:str]",
+						"ENC[AES256_GCM,data:XoB4Yug3vH2Th4/y8ehHPhTd0rsdQComWM0=,iv:j96/qU6VnOWT1DQR1OS8M7ttHZS+KWDQAoI4+yWUVcw=,tag:4lIEkMnK7BV660b4Yu0RCA==,type:str]",
+						"ENC[AES256_GCM,data:XrhZyg9hkFxQZWYioK0oifsP5D4K3X9qryOL1rM=,iv:eb6nQY5x27HYcofbN0bTTsB8qA96qqOl7c9Q9d3xHy4=,tag:31BGfe38vjHSuKRbHLtqFA==,type:str]",
+						"ENC[AES256_GCM,data:vBPewkvH8GZVgZT4km9ugYPbp6CgkSLt31qUQQ==,iv:xh+cX9dfsHOhW24/P55LbjkrDeaW2acC0OGKzyMSHJE=,tag:J34sLofd8lYhFGky3rA8Kw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:tQFgjJRNoQ==,iv:jmJ7EjQg7k8K+/aXFdJ9CMqu3/Z5tY3xJ+l2+DTd5yw=,tag:KPKaphf5PnofsCrosWWJ1w==,type:str]",
-			"type": "ENC[AES256_GCM,data:UHN8FcKJawzFHA6LeDlMedphuVd/2uZzCNgyO9pjsqpWyg==,iv:dxEoCKvWGAJ2Gh2l/svAMpWNh67kpv79TggyQXksfaY=,tag:lcqKuyC2dMQb8i8O0f/V1g==,type:str]",
-			"name": "ENC[AES256_GCM,data:hD9Dcqec6q7dbvEn3kFR,iv:apN3V4mW20QuVbX3igfH3pForpeHh26hhU7UW/FFhEA=,tag:/ISST/fv5turGbppOaV28Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:/ebj9g6hvbTkNOO3FUc5EIKZT81TQUBd3I4feCy1nJFB0mXqToPKQmysSsFOBIjSjg==,iv:9FzscJsKMbIiMIfYvJdy56ZDs0e0FgR7VVjc66aWlBo=,tag:cdX/P+HwMYe4tjC4gowM6w==,type:str]",
+			"mode": "ENC[AES256_GCM,data:t93ipQHpyg==,iv:FW8ll49vxmF3g8E2BGj4FhgXDfafCWjk79vwb0VBMgA=,tag:asP2tqjkeSvQI1+pH6lHWw==,type:str]",
+			"type": "ENC[AES256_GCM,data:4CAU/Zv8A2DHbmBui46ZMp9ox+ZQdMtM5XnK7M2JanIbaw==,iv:Nzy69AEtGsCrTvW7+Ff/ChmsMN6RbOfx8eNaxvFahqc=,tag:ed4ShvKWMN6KevNRCvoLog==,type:str]",
+			"name": "ENC[AES256_GCM,data:yDToctsv4ds4K/IIc9H8,iv:iRYmsxNJAoVFdvcE8bHTc5fJtSbXXvgLBcazSxO+a10=,tag:9MwJa96jEwH4D1T+RUV3XA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:MQMQTho3OJt8FC6IVqAuVY4JPtfFN6gv9/H5lWt62TELmL/e/ERkNTR16ylP9lcq+A==,iv:1e6jHD714TlFjpKmYsP/745sqxPFJrPBQIgijDMedZA=,tag:K41MJFf+MSIrxGbrvpNU2A==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:zA==,iv:cGe1hDy4zkqlzmsGM/w++nOTDSh1HGadfuAEP4E+pKk=,tag:eYnStInkRzAt2EXnWpfZiQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:VQ==,iv:EhnP1wnsYmwncofmIKSeBu+74qWz2ysE3t/nId4sIH0=,tag:JIZ/OeqkdSXUYkAzHSXlsA==,type:float]",
 					"attributes": {
-						"alias_name_source": "ENC[AES256_GCM,data:YLs5eQfpB3GeY6/FADvsqmuD,iv:H6SyE1VhKQFMW8oYnXDST/W+258agHI8p0fNC4VH+z0=,tag:2EGrkg91ZrTu3thknkv1gg==,type:str]",
+						"alias_name_source": "ENC[AES256_GCM,data:sUzkjpgeP1B6zgfW73JeSESH,iv:Ok3XIAF2siVszyLsRAHxNYSP+zFsr4H4Eo9yRJMFazo=,tag:Oxsi9hUx1Ywmt4oUerRRaw==,type:str]",
 						"audience": null,
-						"backend": "ENC[AES256_GCM,data:AqjifvN7wsthOg==,iv:4vQCbRmZfQuaYM0Sr4LX0oTYXaQo7P7nHKIdQgLKqHg=,tag:exg+o9JKCe4WL8tPvFWpmw==,type:str]",
+						"backend": "ENC[AES256_GCM,data:aQ/PCw7ltqOXiQ==,iv:KMR4iBZzcx0bST1oexTG4czyw7gFRZ0s3FzBWEqVK2M=,tag:yi0L57txANxwZnikie64lA==,type:str]",
 						"bound_service_account_names": [
-							"ENC[AES256_GCM,data:ZsEdypXYig==,iv:z5pkKoTcmdSIStdMxi/xbm0ZjYR5KWsn3XH/zdbSAmw=,tag:g76tAr9wY/HPGn2S9cjJWQ==,type:str]"
+							"ENC[AES256_GCM,data:znstMrHn2w==,iv:gf3VnoCUimvU27CxhirsgGMAMY+Bh69OssZlkq0W3T8=,tag:PzPyIcCNs6xF6T0qVIRq1w==,type:str]"
 						],
 						"bound_service_account_namespaces": [
-							"ENC[AES256_GCM,data:Vs6TCTX+w/J14A==,iv:gFHVbNlzG5L1g9fmKMp5+xZFcIenv15gd4isOICspBw=,tag:N+di3vgr+w5ZmzG9LDIFDQ==,type:str]"
+							"ENC[AES256_GCM,data:VxUYXHavVFIuJQ==,iv:+3r9nLI8gxdT0eSHYBWPXNd0BIhPvU5pKZ+5w5uDGE8=,tag:H6+FEiLsWjeGybz1NOQueA==,type:str]"
 						],
-						"id": "ENC[AES256_GCM,data:8YgkLvUbS2gPJkSGhAsGT7tMA7hrsHE6s1Qpgs3eofAZiDIb,iv:WX0wKnguQUJlfKndaUJo7NIDZIoifrrkryOKImnYQQU=,tag:tyyHOXIFXndd+CLWxpP6Ng==,type:str]",
+						"id": "ENC[AES256_GCM,data:nXNzhNkjrpLQBgHXB3uqb6Y0qrjb+MuDJUWFrFI3I16+dvGe,iv:/yxer5ntcpMS0RxNAQE6U6juEnQ1ig/QMc3g31O10eo=,tag:yPVVTNBtZSLp//xbAgQlFA==,type:str]",
 						"namespace": null,
-						"role_name": "ENC[AES256_GCM,data:mPcZFV4EzRut2lBCerAs,iv:irV6YmHo2gNdXfXqrO06cMkupruakJUc02sVRJlALFM=,tag:RrUUa5lDv6iIvhVI/+PZnA==,type:str]",
+						"role_name": "ENC[AES256_GCM,data:2fuyHQL7sqIgfG/SGI97,iv:aSORLgxT1q9mupNN29R4XUcv0qkS/mBu+PIm/p7aiP4=,tag:UGtqIPNIBaZdnYv4TIa32Q==,type:str]",
 						"token_bound_cidrs": [],
-						"token_explicit_max_ttl": "ENC[AES256_GCM,data:iw==,iv:rXJcTIKyrMuJllriO31pe6OMP4fIjbCMoDYWuOWB5IU=,tag:M4BeDzuUiVCJ16h6kQ/phA==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:ZQ==,iv:yNulWA4uVtiP+uq0/UQHkjOIqxvy0X7jwiYkpw5rGaA=,tag:DJ4gew4XcAeYPkHNqtvCjw==,type:float]",
-						"token_no_default_policy": "ENC[AES256_GCM,data:G2od9mI=,iv:q4f48SDoPPJLqHZEv6PWuOpsWCO3gYCKrG066NKYcE4=,tag:9QZTFMos7LSAk9WxYO8YMw==,type:bool]",
-						"token_num_uses": "ENC[AES256_GCM,data:/Q==,iv:CH1dQgHrx5SuGBCH/uyQufXU3JXQd3RF+iNagiTA3Jg=,tag:hPvjpPqclL1iDkV4sxidhw==,type:float]",
-						"token_period": "ENC[AES256_GCM,data:n+UoqkTd,iv:Yi6s/BxBHGockHrXnuJ1gxXZKs6DlsQc0GwsAGQkUzU=,tag:iP0lXM1nPt9E33v0SJkFmA==,type:float]",
+						"token_explicit_max_ttl": "ENC[AES256_GCM,data:YA==,iv:Y5cNjQbou0N0mXALDVEvjXIF1UI/muQkvtaEzglNK10=,tag:hMn7dtL2RIZnsYNI6KeHRg==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:IA==,iv:p47sB/Kil9+u72Z3iAVItHq1JbJSbGSREhJkL66UyhU=,tag:QZQRnowTe8xaHV9ez+YN+g==,type:float]",
+						"token_no_default_policy": "ENC[AES256_GCM,data:stJ+8FA=,iv:TC4mWiy8UK5wRZldSP/AY/2rqA3FlbcaPD0CMrngOmY=,tag:Yrp1SEVaN8Im1WJZwaeLlw==,type:bool]",
+						"token_num_uses": "ENC[AES256_GCM,data:GA==,iv:n+P2fUTyS/wZ96M2ZsIZwdak7QT1oYYyB2vrYZ8FoUU=,tag:VjC3qT2lGEYQjoxmcglZLA==,type:float]",
+						"token_period": "ENC[AES256_GCM,data:R2Mtgj3p,iv:D54Prke9elvRaQhQUMKikjqR5y4nUQW01LjNLRgci0c=,tag:P4TTcbpxKPnIIwOptQijmg==,type:float]",
 						"token_policies": [
-							"ENC[AES256_GCM,data:v5425n+dGqKnsaYHbV7Y,iv:Aqn0pvaAn3gnL9XfD5CQh8PcJq/nyBCzeqZWPYX1gUo=,tag:r9PKwhF4SQgNYqkQIyklSQ==,type:str]"
+							"ENC[AES256_GCM,data:j3ZCusDXcsAzOkKjcZyh,iv:YSOmYh53kG/dBC1RfShFq+U7RHQgXjzV8cMrp07iSDc=,tag:/HxYy0AP3/PP+05122B6mQ==,type:str]"
 						],
-						"token_ttl": "ENC[AES256_GCM,data:Rt3rP5vU,iv:kdoaxl2fkbPNHll1IUbTYwF2l9io9t/ynQ5u6fm+DvE=,tag:Qpy1y2vVjCct4O2viyjv0g==,type:float]",
-						"token_type": "ENC[AES256_GCM,data:/sBQdk0Jng==,iv:GcmuFOncMBvEyaCr3eNimHQvImgjW1Yhh9snGfTcgvE=,tag:Xi49MT0UIRtMxx5Ip2uwWw==,type:str]"
+						"token_ttl": "ENC[AES256_GCM,data:I+KB44/g,iv:3i7PTdkTgcT7NaF8tC3RvTs9z+L29eEq+IBXn/nP08A=,tag:v7TzixCHYAqpVNGYz5WdlA==,type:float]",
+						"token_type": "ENC[AES256_GCM,data:vdIOm3Zrag==,iv:LhtTVjtPoXiRp8tsRI3ZR7E78TxaNauvGZDb9Hno9NY=,tag:+X7P0Q3qxO3DvsJqOvKf7w==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:3A==,iv:i1ZM38TIOAjdJ4PcXop/zHsxTBMsSrPxqQ9a2TTE1Rw=,tag:0/eI2xV3f8CGOt1U2O2DSA==,type:float]",
-					"private": "ENC[AES256_GCM,data:6bS+OXt4Uj4=,iv:qadFG4Q/FXPpPOKYOMqW7wU7TSWwfWG9mAzBN/UyME8=,tag:ow9cRhsL4LfAStuojkDOcg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:QQ==,iv:dD3L3d2VEQZQTFBdYKNKjowO5S028tP+IIpTaq2GnLU=,tag:BVB3lVoxMc8snwzGWxJfwg==,type:float]",
+					"private": "ENC[AES256_GCM,data:5nezVvvS1fs=,iv:DWDY/y5ajpUlzjuFi57oonkVJNZ8iXbD+/T+Fe4R7Bs=,tag:SziICOt0ntvR76rHCFYjqw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:30kWFz4AGU1Bl4dQREmverLj,iv:gD5zUhYT1IlyPG7InCEFw3jHMSIEbySR+fSXQC0DaoQ=,tag:i8j4fo/lUZ22guPBzZFTMQ==,type:str]",
-						"ENC[AES256_GCM,data:I2NOYXw1xlEu2YUy58oMlJV4Sq9afSH6IpI=,iv:0psQ+JzUoURZ46DCo23dtyZzWI5Xtk0/UwZPY9ruTAk=,tag:mjB5f7q4ZfPnxY5WqfdNcg==,type:str]",
-						"ENC[AES256_GCM,data:eErW80kDgkT1qUu31JpCh6Zu7gprJHutNoEZdN8=,iv:AXP9dt7kJnnZjUA6nknK0LVMbOFCQ0wLmqpy/AGHnjg=,tag:SghUobIE7QdAYHXjF7N1DA==,type:str]",
-						"ENC[AES256_GCM,data:Bvb+lOFBigtecPPGnK2QYEtn7YEoWd2ZjdfX9Q==,iv:3hHbZeGehfNfaN5ko1Pnhw8p6LryG+/454+xUEe/QwM=,tag:6g8YsvE7HjqaMqx3NIdF+A==,type:str]"
+						"ENC[AES256_GCM,data:FCR+Qn6npkYKgEQyI1ReUFXX,iv:IUViP7qVBbjR7f+uO//0ktbXmeOoattKTiV6NEw45vI=,tag:Hm/EEImQnLmk3JkTLUDvHw==,type:str]",
+						"ENC[AES256_GCM,data:zJ2J56BdrhH8erOzrTb+twbX85dTfSwTlik=,iv:Oux/XeAMO1/iG/JDHxSI29FrJHkvj4izeXdJWpbeCzE=,tag:+1YLSA54ZZh+9qLQkKW3pA==,type:str]",
+						"ENC[AES256_GCM,data:qThMJJ3cwk65jmTowZR+H7G6Xe4Yh36P8E0MsG0=,iv:pbCJYFtDFx8AK5hNMPp69di4yDwlpLwtte/Mj3Zohks=,tag:WeeTu4rMyhcamGisrgsnFQ==,type:str]",
+						"ENC[AES256_GCM,data:l3cnFpqER8FLvUzznmp1o+6OONhSkJNTbmk+Ig==,iv:bZEcN/aXQebh5ZsGRKhD7Bfqd84nteJPj8/ZqZaWKkI=,tag:sfO+b7LBuS38x3iA+mW1Zw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:2XktHwwiVA==,iv:X6T9UU/EA01fle1QNyhhbonqZpe14zM2z/5wfyVIKdA=,tag:MU2HENGuOBzW3YVBcOr+mQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:Lwi7XqvO5jceAhXGWiKqtZd5sKDbs8fTOHokT85ZeQ==,iv:ytsmEZ2BLcKOZAU5TD1mkyMwatMInolzINFDCxgbxDI=,tag:2N4yuoaub/VubTdxoW6y5w==,type:str]",
-			"name": "ENC[AES256_GCM,data:drkV,iv:htxAQfQsAZmq2fyANYeEO7z6B7OfnI9AnmnN+/RkTPA=,tag:5mdYKS0HNQeOm0leA97QAQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:etDaNxDWeZjdc++aB4NPc1xXOjQs/WhaJIdfUEqRFv69rTjbmsrQGSRhB95n1pLXew==,iv:k32cchpOXs8ZQkAPoX6KED0DlfdMz0Nl2nqkIUdsvVs=,tag:jP7wGQkzdYUGtdItqJ2AOg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:TjTt7PkqxQ==,iv:5ZCMHahAmw4dYTLcTsXsmG2iUYdVDWiDTv+t5eV2tOA=,tag:rmgHZIX6zPL+vr+LLfTIkQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:RuX28eid3Qg7o1/6VO23R8dUZwag3FEfArkCj7oryw==,iv:NS49Gz5SPlDYIYV4vzDwpEBWYYh26juOHgJ1OQq6/d4=,tag:Ygxvo6FoqRwSc4ejsBeVZA==,type:str]",
+			"name": "ENC[AES256_GCM,data:7FiJ,iv:5OCYOwipLYameVTlRWvtrgrB4iXVvwfCZjU/+Js0w6Q=,tag:giQPWlE9pZQDn8FbH6TwpQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:VDT55pevYCppOzWj+twPGQmo82OwIFmGbyWDYfAi8mXSPBF3K/7qvd7I5tPvXXCDpA==,iv:7EXaf+fxYz0fRyrYArTQuVMf/pzYh7fTTwqsmYYGOvc=,tag:cmiDdRUHcns6mUchzo87tw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:aA==,iv:hQmilp/9A1PvwJ87L2Wk3cdnANHSEDH8xceL8OgB30U=,tag:aXsbauGU10I2uJJkgMu2lA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:tw==,iv:tqTveWeTrTtqvxqQvYvVdy6q+pzWLuLxCqrmqXvVr2A=,tag:cFDqFcVwiASgpXrIb7AHPw==,type:float]",
 					"attributes": {
-						"accessor": "ENC[AES256_GCM,data:9H72jWWogt9Q2jqbBSQWFWQ5MQ==,iv:nHU+icKWJayb3Q5cS3Q0J0/vmDuYm9ruP8/Pp9WTDak=,tag:K/j57A3a2GF7bxy0dy3JEA==,type:str]",
+						"accessor": "ENC[AES256_GCM,data:R7QX2MpALjTV6dATzcaNHixyEw==,iv:wQsiU6rV/2ELcoXpxGoPKrqklJCjR4+SsTSR2qUMXPg=,tag:jbCepy5huinzNI/mQ0n/pA==,type:str]",
 						"allowed_managed_keys": [],
 						"allowed_response_headers": [],
 						"audit_non_hmac_request_keys": [],
 						"audit_non_hmac_response_keys": [],
-						"default_lease_ttl_seconds": "ENC[AES256_GCM,data:Nw==,iv:JkYKWKq5G0NkEQy31p9UFzKngzgl3ibMA2cZyaASnJk=,tag:R4OBPN13r/u6HWxpZEQcGQ==,type:float]",
+						"default_lease_ttl_seconds": "ENC[AES256_GCM,data:aw==,iv:JZAvvofkc+dJTChdEPfQEHZKgPRXujtcGuDSse9R3uo=,tag:ujwdWLoPuBsAteGyMCi6qQ==,type:float]",
 						"delegated_auth_accessors": null,
 						"description": "",
-						"disable_local_ca_jwt": "ENC[AES256_GCM,data:SR8c3sM=,iv:oG/U1XfrSwfKBEBJXrXSvJ3DmWsEMUrLCy/87FynL+8=,tag:ay7//NHLdeViN5F6NeSZeA==,type:bool]",
-						"external_entropy_access": "ENC[AES256_GCM,data:BPcEf1A=,iv:TAsvkDeIKqP0XfNFasI3S3iqDaCVPbXY4UEX8cdPAUU=,tag:uN5zbY1FUW9noOdnh9hpVA==,type:bool]",
-						"id": "ENC[AES256_GCM,data:isTa7dwQcJmuUg==,iv:pz3BJZU5zCHq2n0fW0VqShOjrM9AI3zanMRCj0RqlZU=,tag:Zvh0R461ZVZrtSLwD9IJwQ==,type:str]",
+						"disable_local_ca_jwt": "ENC[AES256_GCM,data:3TNHcuY=,iv:aiP9wiQ9bT+Jka12bXpFUutC5Syp7ErAK2rB8Jl2f0s=,tag:5F6/6PwbKn1b76vAPq8MOQ==,type:bool]",
+						"external_entropy_access": "ENC[AES256_GCM,data:lkfqrPM=,iv:f470No7+jdtds6ncEe03FRBQJcYiZKDqbDZd+mYDVBA=,tag:83Ak7+7nvSBwjxSVhjwjjQ==,type:bool]",
+						"id": "ENC[AES256_GCM,data:K+ZtBx9w23u3Ww==,iv:EO0xfeeVjADfefpQC/s50KsR1aAumk3GetPyndB/NTI=,tag:hJZv4QEI6vuPglhppesvSw==,type:str]",
 						"identity_token_key": "",
 						"kubernetes_ca_cert": "",
-						"kubernetes_host": "ENC[AES256_GCM,data:XQsk8WjPs26JBrcs7HUAInM3KIFmrNg6dGBpKcQ/,iv:ZB3/g9L3BPcLOVv+37RxVBdDH2edYHPyanf8BQCl9A4=,tag:PiSHdTdMMNEfnioaN2iHbQ==,type:str]",
+						"kubernetes_host": "ENC[AES256_GCM,data:06YeWUe5GrnAqvPpcxnFJAvJgXHiZrdTmuWNHGPl,iv:L3YvXJdXlHlSAK+b5Ts7q+P1o0LOGYFGCdnnLRaxgPU=,tag:cjkFF11s0ZXfNBlrqxqyIA==,type:str]",
 						"listing_visibility": "",
-						"local": "ENC[AES256_GCM,data:+k+W7VI=,iv:Bhmu4x6pL470w2MopgmWYjrnbKwqe2uGR3top5NH2zQ=,tag:W6ouv5Yl/HvenHY/hOFe4g==,type:bool]",
-						"max_lease_ttl_seconds": "ENC[AES256_GCM,data:wg==,iv:SrWEEXSAonWObslAFTmExnesuVaqi53K6B4On5e8k1k=,tag:UXvMmI/U49cu3ZheFqrKlA==,type:float]",
+						"local": "ENC[AES256_GCM,data:WLovmsU=,iv:/Nq+YHw8QDdFCVCFDAb8yvS2NgcI3TkVRaPn71CiwJA=,tag:1fZb+wBVUewo98sSsWt4zQ==,type:bool]",
+						"max_lease_ttl_seconds": "ENC[AES256_GCM,data:wg==,iv:CVGi6h2KHHX5mQIdD8wd6yK3CaquUX8lfpIOHf7WiSA=,tag:T+/uGHZ+Yxqr5Ou0/LCXTw==,type:float]",
 						"namespace": null,
 						"options": {},
 						"passthrough_request_headers": [],
-						"path": "ENC[AES256_GCM,data:9DxSaTVgS79Lvw==,iv:FxcHEWgJFlENAIDsnYc6UpcuH4xm6t1/ofOLmiU7Jrs=,tag:UzJ4uDTOcB1BKcZsPEhkpA==,type:str]",
+						"path": "ENC[AES256_GCM,data:Pn7U9Lv19XlyEg==,iv:0q2Zblq48kC4IF1fbQSTr37QIjhIubJ7ZlVSliWqzNQ=,tag:uAM4TtQ+KEgno2exkj6V2g==,type:str]",
 						"plugin_version": null,
-						"seal_wrap": "ENC[AES256_GCM,data:gML9IsQ=,iv:pp9uD4xSCPIHsDNoivWhSEdYNNFWj0O0NYoK2e2WheI=,tag:gSt29XcwywR51e9stpfIqQ==,type:bool]",
+						"seal_wrap": "ENC[AES256_GCM,data:IDy4l8I=,iv:XBmcdBFzn3qX3ez3FlGCnuCK3tf0ZAtduyNAmIYScIM=,tag:JoRHZePjlWm2eYEi8Bk+5g==,type:bool]",
 						"service_account_jwt": null
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:LLQoeVNySco=,iv:nyE0uCRelZLv1gI/qvqZIjlxZScCFXw6uiEUJ/9jW30=,tag:ppYSWkML1NxmZDRUKZQ5vg==,type:str]",
-								"value": "ENC[AES256_GCM,data:9CLTMHu9/JjeJfX1pERclyfjUA==,iv:IN9mfhQ8dDHqcKWgrW68DuFo0t+n7QeMkTXm5/c039c=,tag:+nEmdk8y12ay59kjL1dTPg==,type:str]"
+								"type": "ENC[AES256_GCM,data:AbY9p3vZ2Xo=,iv:Okw732iI3YXmA1FAyvvGZUrKtm3ou1iK6ETuynmPa0I=,tag:NKpIEQpJRzzlS6rT+wl/VA==,type:str]",
+								"value": "ENC[AES256_GCM,data:GfGnqoZE79DdjIkTDrQC4KSsGQ==,iv:CHotoumJVE6s+ixDBdu9wGr75UJbGOSArF0BZBF4Byk=,tag:kU132IodHxAOJIKYWbJH4g==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:OQ==,iv:0aOLqVg6Xz4rrM61Iqa8gkYA2NPb7tq+/VsmBSPQ7tQ=,tag:6bk/5a4+RqN9OklyfUUyMA==,type:float]",
-					"private": "ENC[AES256_GCM,data:rahfj4dCUFE=,iv:fELryYC+kDw0pxGtRSzOZCo4v/MH1ZDJXgWksH6YWwA=,tag:AMWhpfhhn1svsKsINx6X4Q==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:4g==,iv:+Ra5wPxOs/Vym9Eo64o+7dRlLrYQ1I6cPdSm5yzKjtU=,tag:nUL0xR+IUHlo/UdGClS5dQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:TgoKkbd7nJg=,iv:deHBcfRp1WHWds+O6VLapRnO3YhYZ9/fTzssSUwEcao=,tag:a2Gye9BQzflVGk1ii/ilWQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:ps6Fx1JEe6yay767DyA2TcGC,iv:84KVaGcSl7Qx9XX5uWBxMZNvO102ARBwIBPfJ0qg8Qk=,tag:x1TPJqkanje5WnCzjWlpAg==,type:str]",
-						"ENC[AES256_GCM,data:RXK3xCWAORZXd3md1ttCUkrfDviU1FQbd5o=,iv:N73tnDv27mU1/xdG6XDfddF2Z/WiLiSybOcyX/rmXmA=,tag:ghVUIkWozOsNvWF1Qj1F6Q==,type:str]"
+						"ENC[AES256_GCM,data:KSZC7aE9fbzYhGl2o7AyevJQ,iv:gBkm3kcGyKAUqcvAntRm3bC74zzEOWOqSKI9yTy2e6o=,tag:aOxZE9YLh8Cqbf1Qkjruow==,type:str]",
+						"ENC[AES256_GCM,data:RdnE/Y6NFy4Jp++xo/W9Jyi8iGIa+MloVOg=,iv:ncvIisdgG+xfS8b+rejFvxOxNhnnNlvTttC9L5D2h2w=,tag:3vAIyjm4zzsbCW18PGfqEA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:OAoZgCJ7kQ==,iv:+ioycHJjcgSo9MDxkncwUpusmc46bfeJ7bBVSo33iOY=,tag:ZZPMY5naOWk4qFiBpMk7Bw==,type:str]",
-			"type": "ENC[AES256_GCM,data:TDFKrog73rX+1RENYoZqo1PRqXv44a+OGFt0Y8V78rSlPMO9,iv:0/+Nx7Hk9Qy7ewDgUUT5NJcGPfXuJEjxHX7WEaa8jAs=,tag:/LyIqhus/QpIzK5eiHEJ6A==,type:str]",
-			"name": "ENC[AES256_GCM,data:SKyVZM6b41usmbQ=,iv://NkHVRW0MU/to3W+r71jlCYYg+MCUDXbqiwWS3u4wg=,tag:dvvWhJjPbSxKFwU4MLaFZQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:2rYtyaAIwjlUs6ag6G43pdMwvDCpvgrp3T/bCLJo7bxxi/lI1V/LH6TrbyF8O3wC0Q==,iv:WE7qH8s1cAPFqYgwtLx3mhiRjqL8qLR6FEPesVle4D0=,tag:+nG+NukQZZTeeiYMDlKgvA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:F5BC2MH4gQ==,iv:WGD1HBkhERF4B3PbibdHRdHiD6Ram9aeMTSdafglSAU=,tag:p2CpY6C5uRMGcHq0OrbIZw==,type:str]",
+			"type": "ENC[AES256_GCM,data:u6YI5kdCbBBu5gHDN4F0v8EXfz9gbsFtiVVqOp/IpUk/DE9t,iv:4UkSv4T+O9zDQelYeJaMs1m7/Tn4U+M+pHI1RAc6N2E=,tag:5ibyeHBOKpV8JXGC5KIA5A==,type:str]",
+			"name": "ENC[AES256_GCM,data:4lXDNgCDZkKBsD8=,iv:b2VrRTCGflGGN36VnvPOi9lej+mIBvOHXSZp+uHjXjw=,tag:ZZq4LaJ5KtOAjFvlQjqq/Q==,type:str]",
+			"provider": "ENC[AES256_GCM,data:xRbSCRJONeBulkzAaiMAviINdeSv1yQIJW799GYvvIgF5ABpQWYj2gUfuHx+UYtm0g==,iv:39Tk5ED2wlgEBi/P4grqGslzSWfTGGydaq4JReghVvA=,tag:+jJdpsgp4O3va3/FeTDO/g==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:og==,iv:yFhOUtL+srw7znHlQNRfubxKDjnefxCfO59Y7KS7XdA=,tag:CO0CineJdDAfKlOovF9FmA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:5Q==,iv:RAx8ZGTL0zSOk43afAU5s0az2xgHazsfiKsq9CFkknM=,tag:cgn6vlY1rdYyczWw/NeArg==,type:float]",
 					"attributes": {
 						"allowed_kubernetes_namespace_selector": "",
 						"allowed_kubernetes_namespaces": [
-							"ENC[AES256_GCM,data:vg==,iv:EbmWE3981M+05/W3EJL6bnbE9x2n7SnehBxxcaCErW0=,tag:50OM9YGJ3VhWGlRLdmb/fQ==,type:str]"
+							"ENC[AES256_GCM,data:cQ==,iv:Ucinl1f0Xs168RYyrM1zeq13A8tv4hPtzKSQ+NZ+QZw=,tag:tnhHbxj1KA3MosauogUIYw==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:BrKUA8QoiTWIPg==,iv:oxXKiUPOM6Ef2da0tEQIjupePnbB9wRhZT48XqSjGsQ=,tag:QCQV4FturqZZaQBJIU3pjA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:E8AVvIxVVju6aQ==,iv:ANM1P0vAqWlu3CKvsBctJyCAEGzOqDHZTPOO3kJnNiM=,tag:ZOhQx5UBhndaDK5yJZGx/g==,type:str]",
 						"extra_annotations": {},
 						"extra_labels": {},
 						"generated_role_rules": "",
-						"id": "ENC[AES256_GCM,data:UR75cC/RnfTl4ELTt1s4/jWxTZcB//pbpziOGg==,iv:nS04ksPb7zQbFP0cUjwlqc1VJ8V7ehlO+6MlnmWvVRk=,tag:RbNxstDNqiHUxWwRO2szPA==,type:str]",
-						"kubernetes_role_name": "ENC[AES256_GCM,data:YUEHrWeWNgaI4k4=,iv:waSURNJW9SvuuH9p0jvBYDRyzFmX6SQnAXQT/QJwmM0=,tag:e0KVRQukuG+09Gixzotfjg==,type:str]",
-						"kubernetes_role_type": "ENC[AES256_GCM,data:1Kgh8Va2/MhfSBY=,iv:RNVrZYUbSJJCdw8UAft5WuWW6avKmAFYbYjEk396E2Y=,tag:aZ8scI3RqAp//pTX8klEmA==,type:str]",
-						"name": "ENC[AES256_GCM,data:X4HTebZiR3DgOas=,iv:JTqHaYbq8BZhchBn+fki4rJvHFmtkh/FgjUCioQqvfA=,tag:tYKLP62s9a5W36hwZxbkjw==,type:str]",
+						"id": "ENC[AES256_GCM,data:+ciIDoYLjQQodn0o7cQ5sDmIwVjguSqwI1fk0A==,iv:Gbl7xDtrlfcv3LopxS2pwiCaaXz6/UfJhVi9+gJS0gw=,tag:CFfGoyD63XnkXwrTTH5hYQ==,type:str]",
+						"kubernetes_role_name": "ENC[AES256_GCM,data:zGJtOY9o/8v/wVM=,iv:i4j9vnCQARUJ41NESR6Fh/Ji370Z9vSpWkpC9yY3nTE=,tag:4xELsTijqv9l6IczLIHEOg==,type:str]",
+						"kubernetes_role_type": "ENC[AES256_GCM,data:GXlc/gxGmkY8fIU=,iv:6ky9s47kk2mMXn8kPhayr5ReKWDeQ8jwTNDc/TnsMso=,tag:1INoRyzkkP7l7oA3SwGv9A==,type:str]",
+						"name": "ENC[AES256_GCM,data:Pz7Oa0vAAsxxOMo=,iv:Vg61zHcqDMbDiPjY2mZ7ZOzm12yKqaIIPsaZNphqlgA=,tag:louhVFy7SMSbYRNW51JQLQ==,type:str]",
 						"name_template": "",
 						"namespace": null,
 						"service_account_name": "",
-						"token_default_ttl": "ENC[AES256_GCM,data:3g4mGg==,iv:xaajyaaBwWngATLuXyu0TpHqdke9r7xStfNCNys93ak=,tag:EKfS6xs+FlqPowIgmI6y7A==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:ZF5HAQ==,iv:kI0CBTtEUHm+rujlY8IuDxwHeGKrK5Q+Q9z+whKUI8E=,tag:k35gK99uBPN7Q3k0g3vyJQ==,type:float]"
+						"token_default_ttl": "ENC[AES256_GCM,data:NxDplg==,iv:o3SMy6H3cKVLRkV0nutXIEjoelBoZSM5iWFgLez1dGQ=,tag:aWtNpd83nkQEPyDKPT5elA==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:7/gH4w==,iv:0wda09pX9/6x1ktE5lAH4GaPsdRqOpqWsNheUQUOLA8=,tag:1gAp7+6KVHMkC82mC1N/Ww==,type:float]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:zw==,iv:ZGeDDEEzkZIEW99JWt6VBbtjd8pcNHQ7fdqxxvl0OhA=,tag:bAgBbjtInzZ420uzbVoSXw==,type:float]",
-					"private": "ENC[AES256_GCM,data:+eAzMfoznAE=,iv:tA739t7Ji/fWm3sHRtX4DhJ84h+XM89I4uhta5vhxfQ=,tag:OXL8Th0TfQg75hQJj0eHcg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:xQ==,iv:S+Ws+m1nGf3LhUg33UIefwNnuXsVXmfkZuSRAVkbDgA=,tag:3R3eCiPT4Zq6x7ykJnxUoA==,type:float]",
+					"private": "ENC[AES256_GCM,data:qNBhELTHmlQ=,iv:IEpITpfLJRPJKaOJZbV5s7cGnXbDMegsh2u1e5v3y+g=,tag:YfWG/ayFNXM8U4AjjxomQw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:bTRuGlH/7IAej+YGpT53H6HA,iv:imcFq0055ITIwpQHULqkRh/pt48BJNHpnbwWtaJtSBU=,tag:6br1bYKFQjgQmTPq4BTbtQ==,type:str]",
-						"ENC[AES256_GCM,data:gopR5L3S21vUZ4e7FZ0Y6v0p3ZBox5VmUviyuWYtR4Bqrwk=,iv:5YS995HBTBnEpPz1pe1pLfPuGmHgXAcMLt32EjnEPv4=,tag:wtkDZxfAzMhhLfqYV1TOdw==,type:str]",
-						"ENC[AES256_GCM,data:/gVJcvb0SGMjaUbH9BpTvyvOCIG4IES4HMY=,iv:T9WMNXOVhJwVh5XegXUy93yyNfzIEX4bfsFB66Tpsys=,tag:NW3JKdUpNLzYOLIVWMDh+g==,type:str]",
-						"ENC[AES256_GCM,data:Pz4GiD0hnw18492YrcO/cN87Qee18B4vMD4ubZU3lVDFYwU=,iv:ax7L8e3dGfvcjeQqBnAMxGNOfM6Ou8DV1UFjLudyDcA=,tag:3liHW+a3CqBeGiyNUoQs1A==,type:str]"
+						"ENC[AES256_GCM,data:eWEWD01ootlYIy3KDqP/xbPp,iv:6xnfAdlMukmoJREDhn5fiaPNVvaCfTGbg7kiRvVy3CI=,tag:tom9QGC3gKmQxOhGKrOmsQ==,type:str]",
+						"ENC[AES256_GCM,data:L74quR0GGFEs9J6bEogqPfRMEkLgmIRVv6ElwjrIlKUchjU=,iv:k0qmykNvtNq0pnnlzZT9hiM9TUrc/rFFSukLjHlLKVA=,tag:6r+HPG8WOehtH/nQx2ok6w==,type:str]",
+						"ENC[AES256_GCM,data:NshMsZqi8li1sCLErgSXkSXopW6gcFlLLlE=,iv:v8lXORsTlQ5tAxUoHYQnn4DJ5n6w3JG+FBCXfk/oSg0=,tag:jdZNjHa3jSUikLdULMSv0A==,type:str]",
+						"ENC[AES256_GCM,data:JyInzpJopuVVFYU3RiUmH4IbxfgDhC3UKKuY+1ko8XnLfIg=,iv:tNKIENB9TDQIyvRpEVlHy2L1rV03rOOf9XAY0Yv2G5w=,tag:jqnKfnSnGHjbVmq3yXuRTg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:nrFhLHjwCA==,iv:JAT5C6vCHm8BZKATNGFFxBZvjov1O8OBKcw5WkMuHks=,tag:mFKnM8/lnOusSws8g6w32A==,type:str]",
-			"type": "ENC[AES256_GCM,data:qx86fkgctnlgXYBKEopYIYFvsOv6qEO2s3XRA4BOZ8YdEI8E,iv:jv4vte8XE6dOpilCJglDkUAmppYCBNRVB8mvfLuRZCY=,tag:cvl5o4QW98VR83raEQjd2w==,type:str]",
-			"name": "ENC[AES256_GCM,data:zPA+I1OF7cXhja90POMM,iv:1YNAm3fcBN9jJ3C5LaYNDTH20Cz08dfvGiHKjIDoOZo=,tag:/46VR+8QkOGPf9DT9oRnog==,type:str]",
-			"provider": "ENC[AES256_GCM,data:BYsZkYTpEHLJMOaqkjHZ+3sC5XxbUlf9a70n4SC+l7EvS3U0MAI+7yPtyFxkJ5o/8A==,iv:V4sIcFIUBwWXbiRvmyx+3NyDthkLdXHc21ywucYpHPU=,tag:WkKSn/qAvNKLNwJTClkzpw==,type:str]",
+			"mode": "ENC[AES256_GCM,data:Ktsr0WOAow==,iv:tH4HisySs//sD3XOb7CfwBhoyTmotrSTeyxMzp9aZmo=,tag:hf0Kg42q1OfiXha9AwUqxg==,type:str]",
+			"type": "ENC[AES256_GCM,data:5gPH5QsZeNbWyg1TXhBxiWyQRxz3+E3PBW2mxDa5X02uBKE5,iv:VWV93ACoLSAp36DaFCvrC3JjzOI2yC2VHw4WICxF4yI=,tag:XoWpqs4UhJe2wXM/O9NjAA==,type:str]",
+			"name": "ENC[AES256_GCM,data:tSBcTp0byZkP+lTqwqtr,iv:MVqjOhvoQ1WAn3EMDUjIQcVUzsrtAw6+kpj1M+Mk6Ck=,tag:SQ1rJH/RDprXtSixFCDGew==,type:str]",
+			"provider": "ENC[AES256_GCM,data:wCAv7w/gZj47Az4aWjgIG88ZURtVNZlizZnEKw1ZKK5Zh9CEdwqw5lgznInVdJf+Zw==,iv:pXbPgE1IvoMrRKrnu08DVSHr1U/aDkQbNgLbtxP9m64=,tag:1ueZFZFXgTMfgtgkhRTsXQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:zA==,iv:6xFCaKDJRhK8aaeIc5Q7+P152ZMjX4+yU9TTmmj/VmU=,tag:zx7j3rnw+zA68AgoRV6Skw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:RA==,iv:eLoKz5xZQvi/yODjKOsWw6IXho5Mj7IkamEGQRdQIs8=,tag:0uKnAplcssDcbSD749Mcfg==,type:float]",
 					"attributes": {
 						"allowed_kubernetes_namespace_selector": "",
 						"allowed_kubernetes_namespaces": [
-							"ENC[AES256_GCM,data:Vto82TYZ1GkUQMP47IKaZlvL2FM=,iv:78y3auX3f67TItOoyGVluaYpqQqS6AR5pY6kjjHjLvk=,tag:YHnNnL4MZOQcVg+7EcB3gg==,type:str]"
+							"ENC[AES256_GCM,data:8GWaWuliUUTRdjePq2RTRX7Jfi0=,iv:jU4NoTh2+eAZxbrMLMK0BEZp2uIF+R8+wvPQyMK5jew=,tag:FRCTrULIsVNqJ6tzp80IxQ==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:KasJWOlBW8/cMw==,iv:ZNlg+k253IWonigG5d1DIQCXaRQM7sPxwPYzqSAsXhc=,tag:gwIquoHPV0HFKXRTse2yHw==,type:str]",
+						"backend": "ENC[AES256_GCM,data:ZfIHh1P1m8b6Og==,iv:14e6v/pfdCxfDilJTkMuGccp1Ag5/HHSy/uyHJG+iyk=,tag:WjUGNxSt9EHqBAJrWIqSlg==,type:str]",
 						"extra_annotations": {},
 						"extra_labels": {},
 						"generated_role_rules": "",
-						"id": "ENC[AES256_GCM,data:pMlI/EAOOIpeGgmNxANGiE5g/R8VaDxWGgYt1a3Dbzo=,iv:ovK3ZPNci/m+bBYuZ+on5cXkZJoOa9ZMp5ppdXjutag=,tag:D71/pqMihqpW9Ir2JY+vhA==,type:str]",
+						"id": "ENC[AES256_GCM,data:ppx5qgBwb77j1103IPMuKnV3ug7InITmpAAfDYBEZXc=,iv:Tsh5sXUrkNH5FZ1JQb7kEbGF7T14eAmnIej/8oCugSU=,tag:+oLvI/wTrZaUASg1eUUVZg==,type:str]",
 						"kubernetes_role_name": "",
-						"kubernetes_role_type": "ENC[AES256_GCM,data:sCzgnA==,iv:NPi6W5I2SThm8Rj6xc2UejH1n9bwPQx+XAbP+XOQalw=,tag:zwN2Z305EAhioXGYL4X/IQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:CPlpGGZqykKLi+B7LyWq,iv:y2tLJLMF0t62ueydNquKmPPBg/uW7XK4vxjTK0scbMY=,tag:rIMyagNnis2IF3dZJrhunw==,type:str]",
+						"kubernetes_role_type": "ENC[AES256_GCM,data:crAJdQ==,iv:7csqxLmwsypM6/7ayK8y4bNLVLjPHkxGoitLBPs79a0=,tag:6DyslrpgNBMIz7aRw0pj7w==,type:str]",
+						"name": "ENC[AES256_GCM,data:01emFp/oPXb4WvzbHTT+,iv:Mpw23sBOAR8M6jBK0pu+PhGgV5jx5Um8G+oKYqmzhIw=,tag:ntu1yUt96DD0SC5ch8HhXQ==,type:str]",
 						"name_template": "",
 						"namespace": null,
-						"service_account_name": "ENC[AES256_GCM,data:xwquCxAxESV1Yo4MIBIKy5aS1KY=,iv:pmRvKSus4XIYgsJHqL2cq27un2jEdMFdOsfXfVnZY2M=,tag:RdxAyvJl8NthtnXYyp6JwQ==,type:str]",
-						"token_default_ttl": "ENC[AES256_GCM,data:MWVyTg==,iv:riwKOVT+039y1f874SJ/x1m4k/qE58u1CpalSVS5e2I=,tag:rWf5gZ3H4kY9S+Er3vNzJQ==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:4WKniPY=,iv:eaesAc6W55i1wF/JKcl3VMf8Ma2m2fc/aOQwEwJ8BEw=,tag:u+hB7ZWRapKYRpvG+5y84A==,type:float]"
+						"service_account_name": "ENC[AES256_GCM,data:NIa/JTedZN3L7AgSyduycrJB+EQ=,iv:clfIA9ZbsZKmhZZPpGZD3bE52NOR/unJynTKi52K5qQ=,tag:Bw2Dsb35tgHqmM6Wb+3y1A==,type:str]",
+						"token_default_ttl": "ENC[AES256_GCM,data:wR2DFg==,iv:gBO7r90v1EIGNrGpeiUAv+I37isM06g8yCWHMYj/ktA=,tag:3YY96rcp3IsIK6gAJocLig==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:0e1yU5Q=,iv:P7TnVSlhkrzNGSwixDmc4IQ2a+u7aqA/c/w6K81VIaU=,tag:aQRoxqOSFK+E20d5TYY9cw==,type:float]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:jQ==,iv:bfjOL6fmaLd9/IoR72DaPwc5sLSsiuDcrzCiRGF9mzg=,tag:W80xQahOaLpLXO/U1pFCyA==,type:float]",
-					"private": "ENC[AES256_GCM,data:50U0e1DYtZs=,iv:sX/aNpWwJlZW+tfRn9OXjAkukoZWLOPOZMcn5N7sa0Y=,tag:nSvmscF23GZNo72ZaPORrw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:iQ==,iv:CZERiMEpGmfryGqJ7C+FXQpK6ZVBGA0Me/HbIZ4h5eA=,tag:tHycZg/yRqUe46MbMTsjZQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:yp/zTJAMGNg=,iv:taqiPTwIcHbN71nj8XrfyzMES8YCutN2e0R1LNhY2TQ=,tag:QzvU4mk2mamld6VUL1PQNQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:0GzOgliGuw1I+I5Im9DNLZKm,iv:UhtF4EALek0elv+MVHqKZcG7hlhvzOWQVBuGZ9JL1v8=,tag:zLWthLkm6ts5CGYme4UYww==,type:str]",
-						"ENC[AES256_GCM,data:dNAdMF0fGTaBbnocndCr2Y2tMHSttfyWT5Y=,iv:Q97dShgImiBjdNmGNhGGLIYLW4B74S/XzabF3Hrpzuk=,tag:Pjw096NaKalChiL+aQERlQ==,type:str]",
-						"ENC[AES256_GCM,data:kM+L7pqLyfzOB7OIOBqd3k3sk/99hoYxOjmTO9n20TtQsUE=,iv:qmb4hbR+dzPXTA/g8YWpzKWnHKLw9fFTxUiNa+0tXTg=,tag:db7RatZ+Hln404DZ+dwYwQ==,type:str]"
+						"ENC[AES256_GCM,data:dBZAIQAlJrEo88FUzTtFy8dL,iv:Eim449zJS97P6O+5ENDsUOf98Dh6avlCJetvA9apbmY=,tag:ENTNYoPjGfmkUDmSyMobXQ==,type:str]",
+						"ENC[AES256_GCM,data:1vfSTOSxqCrsMXLBAZONzWHDPz6+1WkaSP0=,iv:anYO58iBPgijXD1vsDeE5EGtct3lgmLoCuttrAZIT0A=,tag:fgtoVrBvvjAXHz+2wwgP4Q==,type:str]",
+						"ENC[AES256_GCM,data:Np6CoAm5uD70PHJDB3v8+OyVePlf6T+O/TyO1F5+MfGXzm0=,iv:n7+WH4f4Ii/A5QQcvTpSOySRkM5BJNh+NgNdLI1kqj8=,tag:v9Wmf3ziab3ocUfGIoMkJQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:XG9cgnqPQQ==,iv:EBB16KT2ZRFys/Tm4NOFq4IylmNt7H5p+QX2HQEvDLY=,tag:zdU5q5WFIFUpiSjldrKCjw==,type:str]",
-			"type": "ENC[AES256_GCM,data:0iB9duenAiQAr5nW0OiugKQz+ziPViJWZg2ClFVC1QKFoja0,iv:K/W+9NacrtWjPpSNMgkWxkjDBYni/DFOFxorAYMc2Jg=,tag:ai0ieXJT1cLcZ6n9L398/Q==,type:str]",
-			"name": "ENC[AES256_GCM,data:KPNoCuub5SHxUuI=,iv:Hdpx9FiKwhOuIZ2IKpOPSEZiTQPNeeONBYUG1NILFH0=,tag:+qkLPNU4HP9f+zm8Mh2g9Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:eU3uUCSpGpC8RvcINqteWN+HqB/jpt1URqDB4u4caiNaMAEuU/U5ky2ZItzspukVFw==,iv:GDZNpyaib0dk9Pq1qz5/uZ9CYFdb/AMvcfPWhGXNy7s=,tag:d81V6MpBiQfxoPuA3qCz/g==,type:str]",
+			"mode": "ENC[AES256_GCM,data:GmWrNn27Ew==,iv:EPNsq+x6XKgEGu9P0zeLxe4IY1VUVEngUOi4+6DcYp0=,tag:4BWserJ9DyC8o9uunwRybA==,type:str]",
+			"type": "ENC[AES256_GCM,data:4MNvtM5p6WH2fTQUcb8dC33p2sxXrsUffE0fbwXCOENTKRp2,iv:xgG3bRU/5WNPVoBO5icP0jiwQ7uv09kmu1oahHDH/yM=,tag:7jLUcGF/oIQirNQxelT6wA==,type:str]",
+			"name": "ENC[AES256_GCM,data:UrPkmaTMG88qq14=,iv:EnDrfy6d1TIB/U0r1ayPnHiRHpxfK4kyq7a9WQ3CQcE=,tag:YWQV2TToIJ4xW5Eo86CtNg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:2My06EwLUj1BbEyV/J/i/zS22ODY4K68HZKbmDDlsGCL/9SbsrOXn1o58WEQyRnlUA==,iv:Y/4WnznF889Rh+FnX2LLO3iPoAn+2PpkxFCrWCi47rc=,tag:G2gJboVxZTHfhiJ9VndiKg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Cw==,iv:05pePHynIuC537FcQcTvo3Se1TdPVI8QmZL4afAFTdI=,tag:RYan8hEWIDnsOZwAn14B6Q==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Bw==,iv:/w1Ai470SD+sWzW2oBmrY54gmNV8bxEKKpM46xFntOw=,tag:BEaWRV/ISyHb4bIKkX2RVg==,type:float]",
 					"attributes": {
 						"allowed_kubernetes_namespace_selector": "",
 						"allowed_kubernetes_namespaces": [
-							"ENC[AES256_GCM,data:+A==,iv:HQ0h/HtIdX/+EowSf/NkNtgpjbaEPnSRFP6JmE+qwZM=,tag:W/62gviNbEOUPQsgPjTHfw==,type:str]"
+							"ENC[AES256_GCM,data:3A==,iv:OcY1F0n8PxrrMz0A/4OycyNOBvOpGSlyX0doAEVNJnE=,tag:GFuDnwF47HK3UeHA3RsZ0w==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:UgPHkIZmPTgHmQ==,iv:UJMKh14cAUWKZf6F8oe1j3o7d5fhy4zcHvlmPbB1r9I=,tag:k7PUve/LqAr+68zR09RlSA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:kGWhn64gNzY/6g==,iv:4/vmrxFaiViiDqSmb2e0ptdK8uyZ2QSAyM6i0bLZXVo=,tag:HJ5AIyDIF37iHsRD2gOtLQ==,type:str]",
 						"extra_annotations": {},
 						"extra_labels": {},
 						"generated_role_rules": "",
-						"id": "ENC[AES256_GCM,data:cqG+3aMdsPiUpCtIi2BmiwUd3eXFPbjH+CKeqg==,iv:aEOPZ5nUeQ7y4EFhaSjcCIKvmZtO4oO1hb9Lu4K5HDM=,tag:AE5fG+mjSg/Xak8iDWH3sQ==,type:str]",
-						"kubernetes_role_name": "ENC[AES256_GCM,data:HOZKL/Y8/WTrjjCNdA==,iv:l9rJxKLMMPoj0saxc7C9Qr1wKbklOZRrlQL3+73mBm4=,tag:EUVZN5R289c6YeYvUVmfgg==,type:str]",
-						"kubernetes_role_type": "ENC[AES256_GCM,data:lM83WGVTvu03HwQ=,iv:3PDqzfB9fxTb49tIuYk4RZ0KeZ6QJOlhNYcOeUvmOZw=,tag:qZLEKg8QVwztJzO8nCphBg==,type:str]",
-						"name": "ENC[AES256_GCM,data:6cYR6IUS9BsyReg=,iv:CHfu5ipj12dgBe/DtzEJXATtw5rN6XQyBoeRhlAXc4s=,tag:hS0xPxr3iCwiwHWXUBvYYQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:4++mYcKA7OtJAOniLqU084z5qMMw4BXf352Enw==,iv:FnLEUt27hjhF649/nhTL/R9iYCgK3hpGt8G65yTlVqk=,tag:ct6PXG7QTnagUZn09VqVjw==,type:str]",
+						"kubernetes_role_name": "ENC[AES256_GCM,data:fAVzBZSn8wyqhFzbFw==,iv:fkfdgkO98S4iw0zO8GPfP3MqKLnAiG2vpofQbCwL0zk=,tag:8pyhjalTEwDJZFO895AH0A==,type:str]",
+						"kubernetes_role_type": "ENC[AES256_GCM,data:KXE1MmfVCPROdwA=,iv:ZWIYhfuuyJBQpQeFTqhmxy5nAotLw2Iu88hwLkWMZ4Q=,tag:/WTtXE6TrvVCXm4vB579EA==,type:str]",
+						"name": "ENC[AES256_GCM,data:sshITTxKzf2Jw8U=,iv:gdg27j9J8h7Nqc/CloVAvsjTVd4iL8YpWIWVQUwW08Y=,tag:lUR8s8FF25QsvSfUZD0P2Q==,type:str]",
 						"name_template": "",
 						"namespace": null,
 						"service_account_name": "",
-						"token_default_ttl": "ENC[AES256_GCM,data:A0/atA==,iv:srxMLw7GdUA+j8T+WLusLHv7ByaU+QUz3gugk01vIAA=,tag:OjCtXIMSD7cNjZmWWaV1LA==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:69hbivA=,iv:5XIBiJ6Fd2WFh6UDGymXahLAGq+1hSfA/oK4naGJHz8=,tag:N64VPylbi9EMAzU759z8uw==,type:float]"
+						"token_default_ttl": "ENC[AES256_GCM,data:779wNA==,iv:6FBW7Vhr2w3XBlgxc7Yg2y5V8E26gxlSah06kwSUaWQ=,tag:dUTnWs1/xjIQH+K/uCluYA==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:PLY/emQ=,iv:FAq5Gwc9PanNTMrENVs8r8DRkr6peKgVTfqL13ReIIw=,tag:Tg+5YZ6+/1dsgsZ/MRpt3A==,type:float]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Lw==,iv:qL5mQly/m5pCmi01OwWknr7ujQawBNe1x9oIWJ2qWYU=,tag:zfA2LfLPlpxpeI3QqnGc5A==,type:float]",
-					"private": "ENC[AES256_GCM,data:JBcZD1qswxo=,iv:xgKJdrEN+aBWF3M/+/jG6gpHFXlTsn9VOOQEd/u5hfM=,tag:fzk+5sBCqEV5JbqGRuo6tQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:8g==,iv:Vx2ilHOQco9fT30Bpe0NDbXKSwQcbLyMlIgkY1XL4vI=,tag:2rsV5+z/LW2TNYuyfPKm5A==,type:float]",
+					"private": "ENC[AES256_GCM,data:ahWp8AcuqAY=,iv:QqQC0A8k10cr7b3CvhggkKUhkLy+wsIa23+xvPrq9c8=,tag:DSBGAhLio+4B1h0+M+3s0w==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:WXgBP+jOy+M42xDtFQq9GjmF,iv:TomAuUDjAJMFd+eBPnSBJMXAS0q0KgCwB6AX1pZ+mmk=,tag:TrxOgFQLJBDaVbxBg6jAVQ==,type:str]",
-						"ENC[AES256_GCM,data:mlY1ci8Yfv30NWAgLUlPopXlJiT/BlM7uS8=,iv:3Hvk3BrFfAL4O7Q2YsSz9Lji15o5/N7XXtkzeXneQuA=,tag:2Kt49N7VHOi1OmBXlAYVlQ==,type:str]",
-						"ENC[AES256_GCM,data:mnzAWclG2/lPN5KW9qng1jtP+jimZsxz1dG/obzo7fh7S1Y=,iv:rxHsyORF1o2Y1N3oa+DECO8pT6yLe5+0wJe0rH+55Oc=,tag:OF25aw35jZmkAbJJU6tQxw==,type:str]"
+						"ENC[AES256_GCM,data:M3gowcrxOhzZI230S0m5z7BI,iv:nanAsJwB7IPmLMQVmdaLnpFwFH6Y0ncO8aeffUSjZKs=,tag:2+yNNSQTbbN+1ecetCnmCQ==,type:str]",
+						"ENC[AES256_GCM,data:nwyK65D4gkEMcX+TtcB7w5RIaCWeROPDGlA=,iv:/uSZT+zM4n+Sn0tiEt4SSvS4PY1Ywfj1PXrnUS6NG/I=,tag:l+Xd5///BlCH+tXNb2I+vw==,type:str]",
+						"ENC[AES256_GCM,data:dKT6+PjVz4zKJ4DWoUuxmuTo+Sjx6FLk9sQsiz7VsyhyZBo=,iv:1rzpnHf4XWId5O6U51BuWhcKjd3xaQjNhfq2UGdqk0M=,tag:lLUOMeTs6u0Zrp5RQgPQrw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:L/AyptlbTA==,iv:F9io0DuIph7pIq+EnbZNDtAdHPIEEQ8PGeWKH6AuFIg=,tag:R5Gml7vKa08qBvVsovPOXA==,type:str]",
-			"type": "ENC[AES256_GCM,data:GDGyVMwHtSkhIGaJXORocmMREuZAIioNrV/1jCaVQK4pk3++,iv:dCetlsg734/ZgIqce79MJAErZrCVWJe2AwmgjBZ1YIM=,tag:qHLibsJRtNPOJ1aNkHCxDw==,type:str]",
-			"name": "ENC[AES256_GCM,data:xtbbz13MCPU=,iv:m41Ik7mBbQaXx5bJcAgcfHjlsLtoPaCyh+k0Wgj0z+g=,tag:4Ep+V5CA9D9Iq4x5MVNOlw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:qGwB0GL3lGUz8jXDqIM5mqYZHstkNixVcwWnRzNKO1/iJVgtLhA9X1QIDBxy9PdPLg==,iv:lyPwGBcv+zywSuCjHOfvY12kIoNd+smwb1ZvKMCvt14=,tag:ywOWwppLv8lGda3y7rZbrg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:IzqoNMukhw==,iv:05KyWRUHRGOiT+GzVUmJNPoRubRgU7Uw1ZLlzuS5GeI=,tag:dhrRt3FHGAy0a77FWuWY1w==,type:str]",
+			"type": "ENC[AES256_GCM,data:RBlxuCfif6go3emQduqMCyzVsopyvGoAg6Xaa0eJGxYHkA2c,iv:2WPm7mj/WNywbJ6FaPLEwd4aUQ+ijPVAJsGIMCnXagk=,tag:3tFseWNsAaVV5kQSaYd1/Q==,type:str]",
+			"name": "ENC[AES256_GCM,data:wCKaKSk6l/w=,iv:Je4WhZM7zccAZvefgNjzJnAs2q+LmCdX0ag7UDz6cpM=,tag:uRA9AsSFf4N3ddqOD6rtBQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:79mQ0QXNMdh1iFpT/iF3Dkt87j+RhqdL4Tr6Oh2vaeP8VHPRedvJSwgmanB0YT1FWQ==,iv:6IskpFBJNJ7ciHEnK1YwsIcPpARMzTZjnEuCMVl4bRM=,tag:0g0hAji1pFNwCInvEef8xw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:og==,iv:tnlNIAYINh8vMMxfEtfyVTrjSYwNDkKBgjfLHInJhQs=,tag:8aze676UYS4d7wtQjxBoHQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:/w==,iv:BKK01LE8J0fIKco7ExzNpnqLtxIfEeDAShXlhe6zfm0=,tag:xyETDlGsJLRjN19oywbYbQ==,type:float]",
 					"attributes": {
 						"allowed_kubernetes_namespace_selector": "",
 						"allowed_kubernetes_namespaces": [
-							"ENC[AES256_GCM,data:xA==,iv:3R2HSPg+jOpWb0U6gzbc46kMf2uaivgOdrJiTd5j3iY=,tag:wAmSXuJ0Zd3lNax1zJtTjw==,type:str]"
+							"ENC[AES256_GCM,data:0w==,iv:843qGLT8mpLBUsOpWtuV7FNGHIrCAcOTqoQtdAdmP/4=,tag:fPPTrzrcde8o5t+WiKHktQ==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:HwLnvJHeYjCLoA==,iv:3GISR5toTj9aGAeZfuQBN3M7B3BAppEyCCtfo55uvOk=,tag:ow6j8SRqPiIj3wQQOnqkvA==,type:str]",
+						"backend": "ENC[AES256_GCM,data:nxHRsl7aLhmTXA==,iv:t8Tky7Smowuh7B6j5dMgGIUoQJBbIAnYSGHEF1PnAfk=,tag:lyZ89n5yMbnynkiIA5PaoA==,type:str]",
 						"extra_annotations": {},
 						"extra_labels": {},
 						"generated_role_rules": "",
-						"id": "ENC[AES256_GCM,data:jgp+eciSXSclnS8YPDTdsjCS+jMcd4dIGg==,iv:vnpGI8PwVN9Rnkty4BI1KUgJFYxfW8Whl6l/aAb5iJ0=,tag:0CbeJgWaU9AcrEkozGLySA==,type:str]",
+						"id": "ENC[AES256_GCM,data:VWfOkIHlLAJiBnPRAAgOf+e0aYPGuiOm7g==,iv:K+eMlhxqLEpxhg1zBmGeOJy56QtVpYaLTHfrKGxuhKQ=,tag:MjvynDAoq5BE7GnKkrtpkA==,type:str]",
 						"kubernetes_role_name": "",
-						"kubernetes_role_type": "ENC[AES256_GCM,data:GOXLxg==,iv:vnixfO/7FDOu026/sfB9PJ/2h1v5BOZR10nfNc9zcYE=,tag:lMxvjBCt/1hB0tOO7m244w==,type:str]",
-						"name": "ENC[AES256_GCM,data:h70Z8LJ5PY4=,iv:juqNFtaSFt2u3h/LN1Wra/ij5GfHFST0JQXNeh+IWRs=,tag:es7Wg7SsFqDzVRV4FwPNzQ==,type:str]",
+						"kubernetes_role_type": "ENC[AES256_GCM,data:xP2SNQ==,iv:Uul82EyXF1FTrG0BqkNs2M3D9Uwjtc833hk+sdp12js=,tag:KqCVXJvrssqUH//Urw1nJg==,type:str]",
+						"name": "ENC[AES256_GCM,data:Rtnt0DLFg+w=,iv:L1L2le7v1mMKxieQyZbVXc4LpseZdvh8fhZ8n+PRcCo=,tag:3wy/kPWgnhtJP7i1CTw5mA==,type:str]",
 						"name_template": "",
 						"namespace": null,
-						"service_account_name": "ENC[AES256_GCM,data:yqo2ZQ2Fe+Y=,iv:hc6CBAgKQukKYz4RGczJE0CXbjNF+CAZZuaN/xZtWYk=,tag:fAlwtpSzziSDkFAo/mCdwg==,type:str]",
-						"token_default_ttl": "ENC[AES256_GCM,data:N8GdXw==,iv:1Wi7Mc2/p1GXV0i/Dp4EBVmuI4MnOczBuN0JzzosCBI=,tag:43uBu2EQWWwNXUXufb3QCQ==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:zF5vXoY=,iv:7OaqdlZmmrZ+mpU+mVhYp3CNHRe649RojWzSFH7h3Vc=,tag:AwhviYISjmz3Yc1qLZkDTA==,type:float]"
+						"service_account_name": "ENC[AES256_GCM,data:m1+VIhuK6Vg=,iv:nFvlVAkF6w8C8l3Fiz/2TEqUxZBlKNxkWNM9FBeK2YM=,tag:WSCZ2vnXZbd3EMkm9Ecezg==,type:str]",
+						"token_default_ttl": "ENC[AES256_GCM,data:iXcEig==,iv:+FolPml7iWdWHifuW8LB29L5ZQYZNVk2qJ5abKLIGjI=,tag:GfFBUs2m49fkm5qx/B0rJw==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:ueFVrDM=,iv:mlRr2iDjg8zMM80iVm/dV0J81JDZ+JpV7eVr5YZ3ZYo=,tag:yeu29YVT5ssML6FPX643TA==,type:float]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:1g==,iv:8M3odOIzjp3ULdsgMR+GzYTPm0ieiUIA5NoO5vdOhng=,tag:Srg3vo79PN6B0bSmWYVvUQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:QaxGGbHzlqI=,iv:x3STTzfmoavaNVuV5AjkS7SW005/kMXa0Fi+UpGAL0A=,tag:53hdZVkUaYlebvHPUXYAdw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:ng==,iv:2N6R5rcyXCYCrCNwLmpGtbZdMOV/LRC8QnA9C7NT2Sw=,tag:e7QvyLq1VCavNVAl/6cetw==,type:float]",
+					"private": "ENC[AES256_GCM,data:NWIHOExg7uY=,iv:XIwsQ4W1yy0BhvgGKZ7s50+rlVno0N3HmmD+lPKP5x4=,tag:292bYVWhMH6xlOv6ElyNMw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:Dp3cL5k0vPtQ+lUgeI+nhIJh,iv:t3YmJSxw6yg0G152iGyQbw0KfookuUSm9dWAtaGx6ps=,tag:OWtAVNxipL0ZJ3FLSyfrrg==,type:str]",
-						"ENC[AES256_GCM,data:vY8AoT1xxuY36As/vaSUK2ltS582Clh2KOs=,iv:Gy+P7liFyzibzs8rcWlDDUC/ZHls+eL5JmjXxvJOMhg=,tag:Ul3eTlVD6Ge7Lu2+KOyIQg==,type:str]",
-						"ENC[AES256_GCM,data:x+CjNMpnG6OsDQItea3dnQwuuKTuoN1ipLOFwNq97CIZc9U=,iv:RYF0d/PEJRGgTkCgvejCbuBVBuRC4xab0tFxw+Gle/w=,tag:r35bflRol1nC21b84ypcHg==,type:str]"
+						"ENC[AES256_GCM,data:soXhv/EdTUKsVM3w6DfuLqJx,iv:nddJ97sYjGBA14QgN1s/i++0mbCEt6WQJGcp5ORKldk=,tag:NSmXg2qaRILzaz1woQV4jQ==,type:str]",
+						"ENC[AES256_GCM,data:nA/V/NksI1rAoEhi49wKoXiotB9KRTF520w=,iv:d7XSX68c+6FzYI3Aue8KisGPWH4kU71R/TKotptLc3c=,tag:4GkmSIa1ql8oQZKtcFPw3Q==,type:str]",
+						"ENC[AES256_GCM,data:v+JQZzvD3JNrH7zGQuInW105NioJU2/rhli78PAcNZSgM0g=,iv:qbOKRuZNd3ySVFvAzyq/HrqfUQHbiGWN35rVf+r3eRg=,tag:GQ2DgG0/PlIUDiJZijTyew==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:Bs3fhgAPqg==,iv:Nmyg5jPzxLhFAgTTSAS8W7DM9Mey5oKuR0K92vcMoH8=,tag:QJhpMDm2z6G0hMnX00peqg==,type:str]",
-			"type": "ENC[AES256_GCM,data:RanynZ8LWV84AxhQedndFcGQNqQdO9sGrScy3REXRLuN/txq,iv:f0AvxRcfs4d/BvWqhQVm8OGJxEaJ7voKN6k41f1vOtA=,tag:JctjIZgV4yoN/mCVcgZIPQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:q2rI7W6MBa82unXSjA==,iv:QYMKpUxevEj11U/VvexC5GLjIFhgk7y8kLxd5WQiQBk=,tag:OhE96zvQ99LMqVrGrWFwwQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:pOwLPSpjUC1xJ12K7MoYPaEj8J07Eg1cwZNfDXllYyA1q9NDaMU4sIAZC/WMD6FSSg==,iv:zb+7nqf9BXoUUytfsQMQe+/82kyV9LRTHUG9J5BxJ40=,tag:eTMerg20PyVwMEPCa8o8UQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:8Tp1I7TEww==,iv:x65uDuTs5c8ShzcoB/lmTquZnS+3F7hJPqVU2sDSQDc=,tag:NxWdzYLZOvBQwYK3Vpsk6Q==,type:str]",
+			"type": "ENC[AES256_GCM,data:5Js1kfY1Q4rWFmAwSq9CZhjjfbqot+hcnJ+oNzsFs5BMFb00,iv:d3hIdiojvYh3FpB5HEaz/q7AEQLX2AZIkDmidl1SGDo=,tag:B+nSUzBENTboDyS4P+OQhw==,type:str]",
+			"name": "ENC[AES256_GCM,data:4z4R4u7RS3IJoiEYmQ==,iv:m8Zy77PXBQoGJDhe7a3scBhti75wbgtjXhIrPi0H8Ko=,tag:Xmd7ej06xp3UR6e61/pD/g==,type:str]",
+			"provider": "ENC[AES256_GCM,data:vE2y1o0UI8U2fTVYwFSOQorTaZMOcMnGZ3in+rkbZdli31jOGvcGyduCEZ7Sj2xUyA==,iv:r00aQSf/L9UW29Xr/0p/kadR1NczpUjYGD3HZwbEmo0=,tag:O729xjXGqw6B+kColP1CuQ==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:Bk+NjKeWdk4KLeFJgg==,iv:5Yc/+lA9PxzOx2RsfypyBz6UIRVw7XMHrQE54VRdiCQ=,tag:gy+i5o/W0xLdc9U3XDpFBQ==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:NA==,iv:SO2BA6Y0YKHhmCYSA6udJz7/rqf4COcXpqB6tom8WkA=,tag:e/5lHK3ljo14/Kp1y8l6MA==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:RpX7NJ/lw8WnSmqnmg==,iv:OTHlJsETD80staThGAs4c8gcMbMtkEufnSDs/KTmxzM=,tag:31zOfRLVDiBRGePNs3vNMw==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:rA==,iv:slidedOxeB/j3lKNbwR3iz7zMwJTPStUV9el8s+utIA=,tag:jItX2zWKe40UnBnRhB1apw==,type:float]",
 					"attributes": {
 						"allowed_kubernetes_namespace_selector": "",
 						"allowed_kubernetes_namespaces": [
-							"ENC[AES256_GCM,data:FtXfrypfAqbRmEAquQ==,iv:Zz8Lj/xoPBfsQDK/XS5Ey2AfDThpO8xgMxp7eKTFXkw=,tag:tGTxaBbrrOD89w8lbW7JIw==,type:str]"
+							"ENC[AES256_GCM,data:3hjrlfXafMGibhWNhA==,iv:SkUn3aTCN4FGQ3xTJnqYWgJIigBqHVx3RTLhjA78P/M=,tag:NO7U3hSibos1oR6kQ8XbRg==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:rb4w0N0jwWggsg==,iv:XB+4nwZMBiTetHmUAYmNv4iju92scufa2Mn/UNXX1nc=,tag:6FzwuaE5loNdChM6QAL5Xg==,type:str]",
+						"backend": "ENC[AES256_GCM,data:hOzc0UfH5Hg6ow==,iv:6Obfp1roVkcCH/yXnFf1w/A/29ZtbEpj9Z09J1hZ320=,tag:8TVQUtRPrQ5yFrsrUpyO7g==,type:str]",
 						"extra_annotations": {},
 						"extra_labels": {},
 						"generated_role_rules": "",
-						"id": "ENC[AES256_GCM,data:DTukgfWgvQcEcAlKUPMm2ozP81t1MmIHY2ZW70GPK2Ltc10aAW3n,iv:jf333IQZ7n0Nx7KOPstoAEiwYQ/n8+3zotDGkv1BDqY=,tag:bIQeDDts5THjP4+ufj0+DQ==,type:str]",
-						"kubernetes_role_name": "ENC[AES256_GCM,data:Yv2eWA2d9a/OkLJa68TJDn1qFNm7RQ==,iv:CKDBNbfV9Ud5kJGz1/qabQGGyJLIZdMQlBGlL/z3Eyc=,tag:xLyTwhjCrZCQ1MCnpUJ2GQ==,type:str]",
-						"kubernetes_role_type": "ENC[AES256_GCM,data:acj3KQ==,iv:OKK5nDWRUBra5Sgoety6MFP4ErD01kBKZ2tHOzrBH9k=,tag:pJk5S9He8+N1fzo7HXxdCg==,type:str]",
-						"name": "ENC[AES256_GCM,data:dQ1n8PiFCwJzNX6th57WhtRGKuhl3A==,iv:k2QEwtEqTbmijmRn1GuMNTnoPXt1igkpDYssTO6TUC8=,tag:CDW8lUVQavl9+J/2j2SpDA==,type:str]",
+						"id": "ENC[AES256_GCM,data:1LfT/WGM+THgQD4mV2ZQ+LinSfj1Usf83SNAc5GYi9qOYfBUrXE1,iv:7Y5XUTZOdrYyRnfwXm8m1wqFnQAU7vKllQ4KbibMq2o=,tag:DGcO4DfKbdfWqmq6Fkno3g==,type:str]",
+						"kubernetes_role_name": "ENC[AES256_GCM,data:7nDK5czPStUM4xzDsrPhriGmOa76aw==,iv:jgiIeR4j2QF9fQp/Pcmt1ZGF2dtrhwjl0hFNZSuM1aw=,tag:Uh+Ppx8AJZt4ZYbFwtxWqw==,type:str]",
+						"kubernetes_role_type": "ENC[AES256_GCM,data:YbmGHw==,iv:Tl39QB/Oiu+/8Tr57djhDMgHqtvOadb3zZeC3CDKpGo=,tag:rpbNdiQ4C1UZH9JZPlBE2g==,type:str]",
+						"name": "ENC[AES256_GCM,data:7RvxuloAvQbbOV26qQ4HPzANNNiGsw==,iv:glAjVTA1s13apt16EDQsM6pLvxtBVD9QX6Sm8HrU3rk=,tag:fIrhb/djHGPAqTa8ypdXKg==,type:str]",
 						"name_template": "",
 						"namespace": null,
 						"service_account_name": "",
-						"token_default_ttl": "ENC[AES256_GCM,data:ldIPZA==,iv:8m8htkEUa1iKX5pkR7vafq5mvml0Oq9zV7vPnTxgS2o=,tag:jxmy0shC9NuZDx555Td46A==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:joDkzw==,iv:rK/FWGgoD7vmP3sBhmuIeohdImDZkaYLPeeV0qbSze8=,tag:SD6frhR2/krBSmfv+hV91A==,type:float]"
+						"token_default_ttl": "ENC[AES256_GCM,data:MMGKrg==,iv:6diiuXP3I3irPHx89kdRSla6ISEC+Wskmp9pBElxhuw=,tag:H8gabvct1JgbkLaGJTjsrQ==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:Ryi4tQ==,iv:3QgZ05c4rDPEEJzuPybjEir5Kty4oC0XtBOomLVpSIw=,tag:MJlkRchXG2/qO8IMVeeL4A==,type:float]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Aw==,iv:FiL7EF8yVMzkAXV0IClC2MW9Q5iclmyxKcPL9LFg+oY=,tag:0sQXa/Lr87pYmpz0vkIJ9w==,type:float]",
-					"private": "ENC[AES256_GCM,data:abdvymWjbFI=,iv:6HCAHPNtoEWEp97GRm1HojPAivkP07E4+Y+pDkZwgpo=,tag:SsYNWKmqtjm0lTT6pDAV8w==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:5g==,iv:GeiyidgzdR5MspEhftCR1HBvtNDYG2bs6vApJYzsaf8=,tag:HZTzOSw4nLxld6OTmR+UZw==,type:float]",
+					"private": "ENC[AES256_GCM,data:+NCG3+/mYdg=,iv:rkC2MoSBreAfWUjHOP0bxml6hLss4HTyfwii5Zo0WRw=,tag:I9Z6d23wA+Ju6Ods5K7aCg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:t8AQ79/gsm7tzMdDpvp134Qa77DHQadXDFyqjfdQSYU=,iv:f7XQoNz9e6g5CbHRJSzgIDBR049SNNDvtmjxLmHcTNc=,tag:AnEfwOKbA6dfHWEYkIvoUA==,type:str]",
-						"ENC[AES256_GCM,data:zNrchvnzYhhwslZQ2U8T3ll+,iv:LHlWKw4K2viuUH9nDij9cDxESdU6UosT3NUQunSLN+U=,tag:zLEQ4aSJkoEEmZOLWTFu6Q==,type:str]",
-						"ENC[AES256_GCM,data:CXpdioHDUSENT6zW+V5jfHyxe2BErmZqnxMlExjHAoua/6s=,iv:tP3HfQG7NKQ4as0ijvNs5f19LM0EceG5vkOj/QoK7ro=,tag:G3vjtSw8Dx0ctUoue8BESw==,type:str]",
-						"ENC[AES256_GCM,data:WFiIZ1CIoAdLjjp9mgyasRFdSucRuA/Ohyc=,iv:6C3viUrQx5gcR2j+ptqYkCP7zXLaykh7c0EMg5xYcmg=,tag:9+pgjE8o0WxY88xG4W/HSw==,type:str]",
-						"ENC[AES256_GCM,data:+x/db/IzuWqtZUOOR6hacl+umshOmAUxZjc7Onk=,iv:HYCro1U4yorDsr59bXYfC+zfjX0a2tI7WwFjFflO7PM=,tag:Gwkbke10mbVfRZP/5xUO0w==,type:str]",
-						"ENC[AES256_GCM,data:IdPgYOH+qTHaXKrK4RFg4OjXYdrDwhc5KYbOO8j07s01Oss=,iv:ZBR5Z78brR93+7wefelJiY4JieDSwcEQ40QOt3zmEqM=,tag:ls8W+NmElKj95R9iClKD8A==,type:str]"
+						"ENC[AES256_GCM,data:wSj3apGAnDJQwHpCF/Kv3qmAn7TJpPrqY7l+3RyB8i4=,iv:dCg1Y8Qz8CJ7SwDjlJoOhV4JP/Ra0khd7aGcroAEOPY=,tag:8F/9CQ69nBSkFQYzoZfONA==,type:str]",
+						"ENC[AES256_GCM,data:ApI472zvKspjlEN0ca/HPz2T,iv:3GiOqGxmMwCUDFAxp3R5SE9TxoYVJ2v65nUvBwuJpmw=,tag:A01i953lxrKFY2eoPC3cdA==,type:str]",
+						"ENC[AES256_GCM,data:kMticJaAJkYauHHLlYtCCtYOhLn5ChWi2R8uy4K51Blg/b8=,iv:liMJCAuK3KhIxhlid8z1wfNjEgXznOV6/WhwRh8b3qM=,tag:8BDZCPoFapCma1n/uV3FvA==,type:str]",
+						"ENC[AES256_GCM,data:gFYj6FS3iYNhmMhxBoi89Kq0EMFUgUExPFg=,iv:LIFemvePyn8CAi1hzCD0Z5Y26ey/RxW8iqe9/bT0uaA=,tag:iVwEqnpzcVM7AffJxbt/5g==,type:str]",
+						"ENC[AES256_GCM,data:zsOdj5Z9qDg8OH+pwRA4Vw3te+xJMb9O85XZMrQ=,iv:H9XDeZGkPY5qsTDbMET57LkroE3HQR02tPUWiN8IjZ8=,tag:L24Botabrz54zkLNkdyugQ==,type:str]",
+						"ENC[AES256_GCM,data:DuReH/VjF6KIVXbVIjPSyAZACPbFeyIYm0DKXZ9AA1wSn0g=,iv:oTUu1lXLynm8lQHpPjUiaeMqNhgnz7lLM4d/X3yJyRc=,tag:ij5SLPry5mO5nGJ9w+iuNQ==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:AWkuOncXl8w=,iv:224V1DA+fJ00nEJS5jV/ZgVZI015XeB9Q3S2oY8y6hs=,tag:Vd4A2AiDEW7cf/UDEQ3ivQ==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:gQ==,iv:7wZebWZaegBKrVVzCbneQ72UUgMv/ObRQFK6IplSsvw=,tag:Ln1MsdPRSckRZOoIcJV4og==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:a79WT/c6DqA=,iv:orY0a+ZmD/8lejqk99ihNHTZ1u0JjFPA8Qo5MRv6Udw=,tag:osg/v8Q9vNJ4+6xEdZgmTA==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:Eg==,iv:YGl1hwO+BU0cpAadsFvL3P6ybtEKYWgR/9j3DlvVgnk=,tag:gG/2vSDQWD8iyjOfxRqU+Q==,type:float]",
 					"attributes": {
 						"allowed_kubernetes_namespace_selector": "",
 						"allowed_kubernetes_namespaces": [
-							"ENC[AES256_GCM,data:NUnPeeCIzI8=,iv:tmHGQwxXTq8RBAWaQ0y65CNbb7DDPZx8dqKK64f+ROg=,tag:31CBOmWPuuhbAfU/EgRVUw==,type:str]"
+							"ENC[AES256_GCM,data:pjfMZVubuQs=,iv:HKweO8KgXud6JpuLk1y7uV80G4X9dfmEL4BxUKB2A/M=,tag:9gshmJQDjn7kCL8gWuvVkQ==,type:str]"
 						],
-						"backend": "ENC[AES256_GCM,data:jHjWOjtw2GXd4A==,iv:sNqF8W27PruePxR1ka2nizcprxDCEw5DcPcv2XAnZmw=,tag:7SaEo07+ATkW6N8DmZhl7w==,type:str]",
+						"backend": "ENC[AES256_GCM,data:aPtXE8ZQ7JX+PA==,iv:4a49yLqaK+Akr/dCo0VasM6pNlNg8SCRNEfA8QFJKoE=,tag:N+Z8i5wDvLwxeuV3vpF+wA==,type:str]",
 						"extra_annotations": {},
 						"extra_labels": {},
 						"generated_role_rules": "",
-						"id": "ENC[AES256_GCM,data:XrXUmFdnMejnVxWeMQtrf5YX2EhiAUE4TEcLAQ0lkToiKw==,iv:OfVIrtZOVBc8jAM4E1INRFEDNaw6uBfiwFSrHddhKfM=,tag:FFYKkcTDTaAYW7de+HtA1Q==,type:str]",
-						"kubernetes_role_name": "ENC[AES256_GCM,data:fD+mr3i8u7/B8jStR43lXco=,iv:FbpQpamfN4B+8wiAosHFUdLvL3VOvq5+0dhGUWGviZs=,tag:ZN6npDPTynXdbSQSlR8LNQ==,type:str]",
-						"kubernetes_role_type": "ENC[AES256_GCM,data:EtBgXA==,iv:/ZnJ04HhLe1LKpHx0baET/1KTVb77ssL3gwNeJ1FA+k=,tag:Q0hQZ17xHBGDnfln2VPmOQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:0QkYwkajzSDaGbWskC//m5Q=,iv:6Oz5DI9kl6dwORQZ6AWsA5xqK7xPFL95oGEyVBWV8Tk=,tag:tprvciVW1FgJ3rIVXnlslA==,type:str]",
+						"id": "ENC[AES256_GCM,data:FNmAXATXyYpEBI2a6oH2CGB6ghzeJsFSedAmRTvs+KN51w==,iv:MB4IaVtNMqc0ybwcWNEpHx+VfCFI88PLRhGBLWtdgxI=,tag:Km8EfPmzDumquYUun+NSQQ==,type:str]",
+						"kubernetes_role_name": "ENC[AES256_GCM,data:I2Qc0GVgZRGD55eGuR6KS5A=,iv:yWTiHtkPaAYMJxJezYzEE+hr0Fg0QY+56/r7vTh1DA4=,tag:IzVfEG0apdqUsl2GmZMAYQ==,type:str]",
+						"kubernetes_role_type": "ENC[AES256_GCM,data:zKJSpA==,iv:yLfkHSp/HtgecueAyIrFuacl/SLTIqgf589RyYlQh/Y=,tag:jhugkOdKe7s9oGyXbgaAGA==,type:str]",
+						"name": "ENC[AES256_GCM,data:yuuVzvhD/zHx8IEnCbaqrWY=,iv:wzV339EDx07FiRBEOJULlbDMSzo5Mxeo9QVc3ZHHDC0=,tag:oEXiu+J31j81QmenCNMsQA==,type:str]",
 						"name_template": "",
 						"namespace": null,
 						"service_account_name": "",
-						"token_default_ttl": "ENC[AES256_GCM,data:+eU89Q==,iv:0Hd4tReBf9DzVgfpLa2IVsZwpTruCQ9esVnvntfFHwI=,tag:2FR1c4b/LmK/Qnb0hFpW6Q==,type:float]",
-						"token_max_ttl": "ENC[AES256_GCM,data:QdgnFQ==,iv:1r5VniobHBZr2A49YAgmrSK3YPvkIjDmDXyewXiJ9LY=,tag:R7HOgfJD/bPi4+UWa3ervA==,type:float]"
+						"token_default_ttl": "ENC[AES256_GCM,data:QI7cBA==,iv:Gkv73PchEllutbKGY8yeCBvf3dhZ61Ijaf0PdU0y8Kc=,tag:egs/CWJvay/aQyEaaAKYfQ==,type:float]",
+						"token_max_ttl": "ENC[AES256_GCM,data:K7oYYQ==,iv:E1IM1NPq/6mlzeCqyIIAAyN/JsvHu8TyYZIoEFjDt60=,tag:bCsy7TCqiK+KWi4HJauTjg==,type:float]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:GQ==,iv:C3UyRGB+udcGmutS69zt8K4KKe2bNKrM1ttX+LYdNVw=,tag:Xzu9bfgqDg81MvKeTVvLJQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:7OYiRZ0yU2U=,iv:6dy/diwgx2npxA0DTbbVMKCatvdo3+AuYXo3Doc7lYQ=,tag:kIB1tEzuBwEur12XD2WUjg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:zg==,iv:YkBJKKjZ203VGa4ga05Ct+/EG72vBYgGjbwAnkurOpw=,tag:VkxEbvEdvq4HtLuB7Hfvyw==,type:float]",
+					"private": "ENC[AES256_GCM,data:TyusSoNGREk=,iv:XEP1XxdjTEcKcdn4p3vjW3sF9n57uqvwSHa/8bCRKok=,tag:ZDz53ZFFds/otxzyXDNakA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:nCzYSWJfB3JobwLyeTXUgtE9czzb1HfGItME7s0A/js=,iv:vqu+Ct1zKHdYgOfQU67ZOCM8xO3ZhEQspOEX0kJXGG4=,tag:yqjGlRNZ6hg5EDy3a4y4kA==,type:str]",
-						"ENC[AES256_GCM,data:2jFLpKaQox0Zm1uvH7S1BenT,iv:nmD4H5Hi+uM4MA+gZLZIsql/G7GKLNIn4r23+h2O5N0=,tag:QqO82DwWTa536V37NeSLmg==,type:str]",
-						"ENC[AES256_GCM,data:x1YBNjl0zjnsm8SF39CxZ92hEOLpx/hTl4M9Y9kCVFkL7vo=,iv:8tj515qf+khTpR78M1vSNOs3gymUW+ZBRUW3KiVCL6Y=,tag:VxU9WIkJvo0KSqCR5TlWzA==,type:str]",
-						"ENC[AES256_GCM,data:a0B0aThrq67T5SnQhVrauH6N2+ZgObwHTPs=,iv:qnHCihIKPFO+uUvc2v9xNy7CwaOn7+OGfRjaNm6cH0g=,tag:5f1DvHhsJPK3OVTgz5SgQw==,type:str]",
-						"ENC[AES256_GCM,data:23glVw+wG7iOSy/eEAfVbhqN8A4YBaCeFjY0nWk=,iv:iEhkdZ9ZRgeyfCcwOlcpNNSc1ffSS3ncs+Gfu8REn9Y=,tag:a/6yyMKGTISHRXg6DS9hgA==,type:str]",
-						"ENC[AES256_GCM,data:VaMoftQyAA+35UBsrKfWZIml+fO0DZw1KG1gw/QX43qJ8pw=,iv:f8GEEeg57DASGLa/8AQz0/imWY2dTytMHZ6H/8HY4ic=,tag:+vIeq+5uE2e+fR+pHXkHCQ==,type:str]"
+						"ENC[AES256_GCM,data:ByKYIrJAREoxAB2fUy9T/Hy9vFS5wdaSJCFATQb8NNs=,iv:XggL89b4UqmrVRSuR/cgA+JjVmveFiqIhUhxSJy9rkM=,tag:DVIXuLhVAYI0q5PmT61mOQ==,type:str]",
+						"ENC[AES256_GCM,data:Zld03F0rWtjmn8wLzkmXEPlT,iv:nhjyyEJNBCznNVgUPFUo+5h7l+39wvk7J/1xuGybKcY=,tag:kIwTgRIsNQLH33ffCR1W9A==,type:str]",
+						"ENC[AES256_GCM,data:AtbuAXtGlFMWtzyaN0CAeV1IUtnNtEvqysL9oBpzsRWxGT0=,iv:uT+27xqxNgVDpEEbB0zs21Mi80I6VrUu/Yc+XKKwA6c=,tag:tVouOhbk3pOGpL1cvQ05DA==,type:str]",
+						"ENC[AES256_GCM,data:Ud11gqpcYCIpM4OLOICvtZyOHKZSDwhqbr8=,iv:dglFNBN3LOi948yl3yuNohap4eNaOBmIOIInOVKp5Uc=,tag:bphsKsuZecd1Or5vD4VhzA==,type:str]",
+						"ENC[AES256_GCM,data:jiWN8TxpTG2CAn7DuIx5Kf/ZnwOqyROBVthqIo4=,iv:4wz2lgTq/oCkYzscr4r2JRUCpaoR/O81XMy7CDBiBps=,tag:5lfoxq2UPdrNsKqNFYXA4A==,type:str]",
+						"ENC[AES256_GCM,data:yqPZoeSwBnO9FQLewtJh1mRxV1TaLsGuhrHK4Vy7v+CTOOU=,iv:0IL9xj+Sg/FLprnuC8dwoNwlh1aZMpBB+4b/yJc9azk=,tag:IVCtjPniB0Y6QI2dfBF1Fg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:/BJKrNj3Tg==,iv:TVHkX8y+tczRhRMPqfJzut2IQZjfx7/IRDGDRRwvAFs=,tag:HLJkk8YGwOstXCvJx5p87g==,type:str]",
-			"type": "ENC[AES256_GCM,data:Kejq5tl8GFvvfnI=,iv:Uh+jRSwCzVGsocD5XiF8FB7vvMLfEE6GmGcauCVpqEI=,tag:yavvgBNBzfnLfZG/CXpP8g==,type:str]",
-			"name": "ENC[AES256_GCM,data:NxVnUsKUmO4=,iv:Re5KWKHrJIQn+CtjehhrO0x7N92oRkeP/5E7asKwmO4=,tag:6DzoCOSWsJj+OCbGzWxpnw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:jRdCR8ttsSl5PeGwbMik9aXk7/oBQasvPtQaDaR83i8H6ZdSWKh6XJcIAPxO61/yGw==,iv:ndzONXLdxb0LRMk0nc5NgEb1kZmrNXvMfsDFRwyij4k=,tag:5Ula+qtgVyRxibNXCJWcgA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:Hev/5xbZfA==,iv:khMytQAf3B0qwIBEfLhFq1AbsTezoQGGoM3K6jQQyPA=,tag:tVkpr3AWu3FAL7l+FCIsZA==,type:str]",
+			"type": "ENC[AES256_GCM,data:+UCGADf+scvTzfY=,iv:vWmuSWuRposxdD9Fz7DNq2+hIesUy1BcC+8rokShC5s=,tag:xHNNJYDZfowyb2fzGmg00w==,type:str]",
+			"name": "ENC[AES256_GCM,data:+4nSjL3eKzE=,iv:r+vWJnBMkH+go4wv0CI53ss1LZ+1hrS/Dl3S4Uj6HwE=,tag:KDUJt4N5eaLE9E8nOtKGdg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:tX0AZQkyeN50O2MwsXXxqLYvGxpR32y/BGqloO+SrHvOCbpxcNwEQeb+tWTMc/p36Q==,iv:xUAvFD1gU+30F7x+rjZJcDtDEV8kPbBAmY+D65jUnQw=,tag:i74edTSju3Kjo0qNqoEd8w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Ag==,iv:V5ASiownsDFFVL8tVb0uaLK4OWbuUDb5gBlsbYakZLE=,tag:h5qhz7YCmlyeXs60nEBnTQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:0g==,iv:E/tCfMngcNEnBR3mekRI2O2cw2qQkl/xnczcTB33rK8=,tag:jKeWnB4L7o6PFgnedoytqw==,type:float]",
 					"attributes": {
-						"accessor": "ENC[AES256_GCM,data:23twod8LNV6mDfv5fosENJo=,iv:0uj7qje5AdbE7ELxe8JK7+1VwND8g4SLAYauSJdjyFM=,tag:olt5hY9rqNfF27SF1lTZuw==,type:str]",
+						"accessor": "ENC[AES256_GCM,data:xJWh5261eY9XX14NB6+tS/8=,iv:QhKp7V+fymW3Nqvq8Q4qVBeHay6nGPGZQEr0z4Jll0g=,tag:qIGIUrwcohGVhPMJeJjMjg==,type:str]",
 						"allowed_managed_keys": [],
 						"allowed_response_headers": [],
 						"audit_non_hmac_request_keys": [],
 						"audit_non_hmac_response_keys": [],
-						"default_lease_ttl_seconds": "ENC[AES256_GCM,data:vA==,iv:/4lk5K5Ll59ck28p36ZPDW82q2eRodSx6osDfrwmg1g=,tag:74grXlmQJta0nao0S0FY8A==,type:float]",
+						"default_lease_ttl_seconds": "ENC[AES256_GCM,data:ww==,iv:5rqBH8y9t1ZNrJLlOvUxpomucZ/Y7ZW5NT9tIK8WLrc=,tag:rlGBzVED/UElQq8/7us7Gg==,type:float]",
 						"delegated_auth_accessors": null,
 						"description": "",
-						"external_entropy_access": "ENC[AES256_GCM,data:9wjOejE=,iv:J5aYwYret1niICM3XymMofLRLMsoJK4/NzzRYzUztvA=,tag:N1GMNDTITdZuaJGSK3O/iQ==,type:bool]",
-						"id": "ENC[AES256_GCM,data:YrmOkfa5hXs=,iv:dLI3ZqkZ+0R6EHA8GiuKXXUbCDPZVFEc1iWoqK5CkrQ=,tag:6IiuP66llA1EzvlUrstjyw==,type:str]",
+						"external_entropy_access": "ENC[AES256_GCM,data:Yqruqg4=,iv:ixXe6t4/g3o/1ywRvw3M42gNrvmFBdCXbbsT5wcU7EM=,tag:JA5FPsN2qPKfAoDA5rBynw==,type:bool]",
+						"id": "ENC[AES256_GCM,data:E4M49fZNRmw=,iv:KN6j4EbRbBJfnNAOhx/paVnH17OY/jXlp0W8VFqOLr4=,tag:kmQWVHkRYjZe5HUho2dpdg==,type:str]",
 						"identity_token_key": "",
 						"listing_visibility": "",
-						"local": "ENC[AES256_GCM,data:D7HyJt8=,iv:sQ6x0y9XH5YX/CvYkM0xBqO6GUJTl8jsBpDxEJxthqc=,tag:nieQ4A2GfkUkyoQLAySOAw==,type:bool]",
-						"max_lease_ttl_seconds": "ENC[AES256_GCM,data:lg==,iv:djbHA2dw0mQkVi0uEnHkFFxjwrjxAV5fIWz0xuJhCmw=,tag:FAx0ViNcTToEHK909HNe2g==,type:float]",
+						"local": "ENC[AES256_GCM,data:CFPHUi4=,iv:/uLQOmbBcp0gqQvIoo2FYf1uPj72utalVoso3W/9wkk=,tag:9Cy4Qc5aoSfhsqdbytojfQ==,type:bool]",
+						"max_lease_ttl_seconds": "ENC[AES256_GCM,data:xw==,iv:CX8wAEDLIRkSf39X221X6p9Jze1NMfY2K39NWFCazTM=,tag:cLnQCB3M5+t3yNqfE3WHDg==,type:float]",
 						"namespace": null,
 						"options": {},
 						"passthrough_request_headers": [],
-						"path": "ENC[AES256_GCM,data:JILFQ79Mp7M=,iv:vTuhHCjEyRO/oULVtrmjWFdXNWFC0xyCbp4z/ZqbaPI=,tag:VaeC9l8sLqUb3Vip5tLjJA==,type:str]",
+						"path": "ENC[AES256_GCM,data:YZaZgKbLlyw=,iv:NjQZku5M2ID7XqBvKEbg+CalfWwJq/WXCcMKEM5cy0w=,tag:EEVDBoRM8i+kCN2lg9eEzQ==,type:str]",
 						"plugin_version": null,
-						"seal_wrap": "ENC[AES256_GCM,data:yB+tqW4=,iv:kghNVf473zz8LyeEJp9DjvG6uYfNC/L0CXOoXNl4jwM=,tag:s+gJU9Z/mAx2SRQPSv+9Hg==,type:bool]",
-						"type": "ENC[AES256_GCM,data:R8A7iOMGgqM=,iv:4iH6JEK2JoPldWZHcn+mESrN6LPEGrY35Gc7XBi7lY8=,tag:ZA99wflS9w3144Q7GcqRyw==,type:str]"
+						"seal_wrap": "ENC[AES256_GCM,data:/UbXnTo=,iv:VZMze00BK2GNPMtChqDlRSTzFVE8HUKU45E2P9BBP/0=,tag:Sa96VVKSk27aT4gymD3a2A==,type:bool]",
+						"type": "ENC[AES256_GCM,data:LaQS3V4zcVQ=,iv:i6pxK7nzKw8sTtgPBGcVZ6LKyN22tUzoMf0Lg/wQwmM=,tag:UfJ+HfiNIPjqKSbPv+jnCQ==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:1Q==,iv:Il6NoBJ2VJNvh/aXslE4CduEFo5DHrdfME5nehxyL0A=,tag:tr+z4Fdrh2dVKKcrT9sg5g==,type:float]",
-					"private": "ENC[AES256_GCM,data:a+Fl9EEtQzc=,iv:kKgcSwmjrS0v1ksDtd75uEPfb6GKoEABIeJNwyfdLgQ=,tag:aiPbsGLYfU4q4682evVFJg==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:wg==,iv:eml9Co8DtqD8DdZQesS/ubP+xTEEDjTobSqqi9caSXM=,tag:jXPXFKrCJmklqwqQovq4+Q==,type:float]",
+					"private": "ENC[AES256_GCM,data:6bk6q/U3eG0=,iv:WHy4QF05+FiLBHCbWPKHcceH0dnN5fLiRVMCdVqQc/g=,tag:ceiI9x4/Lqu7mo4WtlHmmA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:EA83mfH6wcuY/V0yuAv9btZI,iv:TovbBjM2bmQSVpojRhDnL0QISgBbTZ+eP2u6+OWMTWg=,tag:PLaPQsJhMGItrtrBEktOOg==,type:str]",
-						"ENC[AES256_GCM,data:2a12ZmMMxqD5fvAqR6Cjt/oiZ41ZEavVEGU=,iv:Wb3VgEPJezWYvc2akDkUYEst8dau38FEERnJbqtTUL4=,tag:kg0XCn6joHWJTCs0KhA25A==,type:str]"
+						"ENC[AES256_GCM,data:w2seYJ1oLTjD1m3OwlzW87ft,iv:xBifF+mQcDTrB3SdnDBEvLZTtNqpG4/ONJSQVHNxkiQ=,tag:b9/ffoqn3XoXsMfzF+ogcg==,type:str]",
+						"ENC[AES256_GCM,data:HhCYe03fO3cRnG6J1LIPs9ZPEZoWavdSFlw=,iv:ITyUXCwTRv8Q5L9eIUbgEaUMXQl7wV6aaN+ixl0cm6o=,tag:8JHzhYtI/AetrJ6+VK+FPA==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:oSTX+3NnEg==,iv:H5k9sX/BHR1zEEW1D7FzFqUTRBUEGGgfA2b9Aeqm9f4=,tag:BXhvz6551wEEZtk9K+5CVg==,type:str]",
-			"type": "ENC[AES256_GCM,data:1gEx7Wkt1opmme0=,iv:JfrX9JjYig7OXqV7orR/TKUNWrbgRxjATpuJoA036Qw=,tag:D8I/fkcfjxWT+3pa0qmkYQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:ZGxQZxhHzA==,iv:JC4MlgPZUB3h0bfSHoMZm91ztUSCpflZ5R/R9YMV2ig=,tag:H/2u7u5Ux9tRh9BOcdDAEg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:Zv+k0lLgHxj2baDmXJMmOsoDKNc+5/kWD3KD9jVd0wtCe0tms87+IUZmN3NxwfKjhA==,iv:gYOsBFuzRs1hrE4rpMzeWxNUEEiJ6suTc4E37dOr4oU=,tag:fsIP9j5oV2Bjrp6w99vFfA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:siV+Iff1JA==,iv:Aoyj5HKXMtJE64DUsjgywqoLFm2yXzXeWDLPGggfZtk=,tag:mrMRCUhPtcEu4Ko8RgQFBA==,type:str]",
+			"type": "ENC[AES256_GCM,data:JskWCWenEdEeAJs=,iv:QtA5h3Z4+nyFOX+1p0OJygmKZlx7yk/a3ldb3fCRStE=,tag:5dZC9Fc1JNKoCiSmroGLWQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:Nq28bIReEw==,iv:6d828sNHtiAuts6iVO7PhSkjS2jmsQHjxoMid0llEPE=,tag:Av3v18WZqKjkdDrHzvbJRw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:VNyic51Rw/AjccMyUcWhb957x39Q5Bmsj57PMXMGDYmL3DBltpWrJPJ5KntVHaSAPA==,iv:QXyMXn6UDvJ9w9QL+8ZEUARmVUxqKvFzLjVpws01bxk=,tag:/mAafu/x61n3wM4kMd5B5g==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Vw==,iv:LfNnsLtOlI6zdywWo6rrnyIDP5Fau+rtYihzdYvI8vM=,tag:yrPdegN4TouaqCrce4Ss4A==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:ZA==,iv:lLwn40taXOCBPLouYHlHSkoK5mAoXxfyd2Uk+O2eIPM=,tag:dkDHt+ODsed1qzUiloBdnQ==,type:float]",
 					"attributes": {
-						"accessor": "ENC[AES256_GCM,data:++KqjMMS2880tA00dsgRCg==,iv:2vx7IBd009ndOzQpUjBMvUoJcjaY7carLNV85Byalrs=,tag:fJTp6wvLY+QmzgZ0NbRz5g==,type:str]",
+						"accessor": "ENC[AES256_GCM,data:1KNKbqbgAp9KStYRg8J5Xg==,iv:OZpOtMu9EsV3KBSdt6oksXP6+wcD1aGkE80pIdXApNI=,tag:u8Ci9MOyhEosuDYphWwTWw==,type:str]",
 						"allowed_managed_keys": [],
 						"allowed_response_headers": [],
 						"audit_non_hmac_request_keys": [],
 						"audit_non_hmac_response_keys": [],
-						"default_lease_ttl_seconds": "ENC[AES256_GCM,data:Zg==,iv:e/tRES5hwtHQII0iceOpEjg2PVRap1qPY0kcASQWdzs=,tag:reLX9r7zvIDf/TfOHu556g==,type:float]",
+						"default_lease_ttl_seconds": "ENC[AES256_GCM,data:cw==,iv:I6rxH1juAawb0RtiOxTb2LOF8j+kBl1R2Uk9TJOuiKg=,tag:sGY5A7iuBS6l+xjZO9JR1w==,type:float]",
 						"delegated_auth_accessors": null,
 						"description": "",
-						"external_entropy_access": "ENC[AES256_GCM,data:p0iGw1U=,iv:m9UqzGKaNu16xznQ/jtgY9wlASBm9uBlHaRebZcNJdo=,tag:KZmbXYfYCBz5uV2eGvAmUg==,type:bool]",
-						"id": "ENC[AES256_GCM,data:YkVNEJbFvw==,iv:veSmYPJ0uVzU151JBH8WvhnsVh3uLdiCGx7vGk8IhbM=,tag:7o+gThoS+0j8Jf3CpZ9EUA==,type:str]",
+						"external_entropy_access": "ENC[AES256_GCM,data:/jHXuUE=,iv:kxROeUNyKbLpPAnfL51UX7eTUuODZC58mJr6a3pRAK4=,tag:EMmmxH+VEjHK/qp3DWuUWQ==,type:bool]",
+						"id": "ENC[AES256_GCM,data:zJCLlSv9lQ==,iv:rZDpm/PzURqDYevuDYgMCKMRXm2XOdOVV9ogliS4aXM=,tag:Fi5riZZPJCguwvOXRHlFVQ==,type:str]",
 						"identity_token_key": "",
 						"listing_visibility": "",
-						"local": "ENC[AES256_GCM,data:KKqlKgQ=,iv:AQhXpHFbmbwpk7m+7Mi3Zo5PpXixpC9yVQwOJC48eC0=,tag:9d2LC1O7GDlPR7f87v76KQ==,type:bool]",
-						"max_lease_ttl_seconds": "ENC[AES256_GCM,data:Ug==,iv:UnfcE/s7Ef/7WHqGETUWy7DMinyN46iCx681u3DqbzU=,tag:oNTsUWIPODaJfg7aVQEZew==,type:float]",
+						"local": "ENC[AES256_GCM,data:dnGUZzo=,iv:2KzPg5zzPMEP27vzMM+gHF2TnP0wbzOOK9vz6/w7UZA=,tag:83xOWCmztY6pgJ6tIGYzlg==,type:bool]",
+						"max_lease_ttl_seconds": "ENC[AES256_GCM,data:XA==,iv:WjZIX6vZMtleR/vPl4hLtWahl1pMBpr9r+adN+4cKU4=,tag:4o6dMsVj76sfkk6PPgu74w==,type:float]",
 						"namespace": null,
 						"options": {},
 						"passthrough_request_headers": [],
-						"path": "ENC[AES256_GCM,data:eks2MM17iw==,iv:82qzqfWSw4a7RfcTQZSPl4v6+AfjVMVTTrVh+5FMnfU=,tag:q6m3tXXdZFtmEc3lGYxQcw==,type:str]",
+						"path": "ENC[AES256_GCM,data:QZ0ibnfASg==,iv:I6ovnJnhBJDvLFRtFMcdy36H4fGdqDroITRCwyLBwK0=,tag:STjuNZS/wnW/tthEIWTNhA==,type:str]",
 						"plugin_version": null,
-						"seal_wrap": "ENC[AES256_GCM,data:BG+YYBo=,iv:wXYPT/olYW5HXp4ZToyZJXKj5VV5z79+s81eYYzx/oM=,tag:xr/guPgSIFpk9+79ZDjZvw==,type:bool]",
-						"type": "ENC[AES256_GCM,data:jMmAxzOFWA==,iv:06p8Ml0tjpz+XL6a8909E/pgtbyDk+ysvfWWJHnZGsw=,tag:D68QF3Zzi6Li2g0UWaHb+Q==,type:str]"
+						"seal_wrap": "ENC[AES256_GCM,data:X2qj4mA=,iv:VNklkJp3RVuEsoDbG5UNOG0iZ68lxjSVnlOSsHDzZos=,tag:ynGUGmTaGQG1P1QE7qX+tg==,type:bool]",
+						"type": "ENC[AES256_GCM,data:E14P8ERNGw==,iv:/HZXMzmzn/W/3VDHE/YnjJMyosavKfNJ/opb2ZHlyfE=,tag:rNShmbuqrR946caJPzRmcA==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:fw==,iv:3A35iotisP7+tk0uHViuef150+kNFa8MauirjqMBXVg=,tag:qiuZtzk4abMLx86lRuU6xA==,type:float]",
-					"private": "ENC[AES256_GCM,data:K3K+Sxrp6YnCMGLmbQQ9sNdMUQr52GBP3DqW9/QM/bA=,iv:nIgdjCcCYi5rdY9BrV7x6EXmhKcljTDylHx92d22ulQ=,tag:fiaNOHn7heATqQqbhlUQ1g==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Fg==,iv:kNrQqHXq6PB/ANlqGM4QmWJMPYZ/fWiLe3WEnefF/+0=,tag:9BX+ZD16K4ALK9MMDZC2LA==,type:float]",
+					"private": "ENC[AES256_GCM,data:7swyynKN+9KYZFht7AN1x9CioQE+QXyGlHAT7kOeJZs=,iv:AKIUHPz04LEd+sayJhOPNDaPkDE3eTsfR1nuNEeHSzQ=,tag:LC5mH3EoE2iEpgh88wvPrg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:a0sTEJM9IoSBRxcToj66bF0q,iv:rimbEsglL9gLwWr6v5iXhF7BEqRxBcAb8g97oCGW1mc=,tag:REwt0OdZo+HKUhAZsp5csA==,type:str]",
-						"ENC[AES256_GCM,data:9RORwtYLQVtCmlMCvZ6oMaULWLHNe0HuG0M=,iv:gsJcWS7WMSdM80K1R/GmZXwXk8P5aFycXFJ6UWlgs78=,tag:fOfhsgkqBC3Jx9LJzfiXmQ==,type:str]"
+						"ENC[AES256_GCM,data:a7nfi4nKegt+HoCKd19JwHsi,iv:Ukt0iEZMYt2J04Wxr4/3pe4idq7y0pd2UAD3SgG8+Qk=,tag:BP7LYHNDXqOg7eokdztXiQ==,type:str]",
+						"ENC[AES256_GCM,data:/uAgg2oFkhFU33DbO6mE5ZM8TNycGVUkbqg=,iv:PWTYvtfoiXSORCyMK+c6P91Khb04y7sl0qviEU8lAMg=,tag:EZZF/w3mlgYhjQHuGNFHNw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:/Ywo0Y6TsQ==,iv:NThi3L1lGWoNwHIpTGQEIGg2s9MkqOrfSFLNr0JDJZQ=,tag:CCqGltGsgQbTVjj1Wchjpw==,type:str]",
-			"type": "ENC[AES256_GCM,data:TVEqkU/kebLJ8smK,iv:ugLgHhIW6/SPSLCWo3bB4sYT9BTvFRWRumyP6tj3sdw=,tag:qQEgTJEfuOcxthuQyjkClw==,type:str]",
-			"name": "ENC[AES256_GCM,data:+AFYCqY=,iv:ncXmozVxvM/GT8Kkzfda8fOxuu8LNev7+8aVxTa80kY=,tag:/cGnqOQ3eLdPc4HUJ0RmEw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:uBif1CEWotlF0Sf9ivm9FiTmJu5F3ZQ97y3AtjwDiCvcDjje4G/pc0IHBFZH/rYxhw==,iv:vb2lwle/gXg06AZv5qmhCDt81aa0qQgE1nV/++V59No=,tag:Pgm7M0W9chewqgXXdpy2ow==,type:str]",
+			"mode": "ENC[AES256_GCM,data:tzPTIafG/g==,iv:+XzTMZMjmXnJBOzCGJl8K/EVM76cdvO2owCK8gp8Crg=,tag:/0c3Ma006b6LSSX6E3707w==,type:str]",
+			"type": "ENC[AES256_GCM,data:a6xEmoKpupSQcocR,iv:5KOiHsvnAkKH8YaQI0S/gZQiluRMnVRvp+tBdiWmLXc=,tag:ckoLPdkQklp+v1VpjQgccA==,type:str]",
+			"name": "ENC[AES256_GCM,data:VNPS/lQ=,iv:zNN26pBWKU22C5Uo9qF5168SQjD1p3pEznxs12itrCs=,tag:RTR8HPEW6QmxTqmRIWLpig==,type:str]",
+			"provider": "ENC[AES256_GCM,data:zPeo+IX83r17DaBrSXRdIj7mEhdYFJyfQPw9U9j4f0wPEDGRIgmDUkh2+6i2+pPKMQ==,iv:4ejmjQiXwtdjuYHsfmnx0GZPyAi9HiZt7nA6r+mdnVI=,tag:0ECgEj/Nxjz12QPsq88NKw==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:3w==,iv:z6+Bm8BmiWFHAw9zWSNQSpeukML4EfZbLbk5g7kmuls=,tag:HIayWBJPMEHBI405yXcVqA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:lg==,iv:NBKmQ3uGgiAssI6CU7Iz0jSagFLXUAExkSgOnncujs0=,tag:QP6ULumiRpDui/OWZDix7Q==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:Oe3gAfEINRV7wBQ=,iv:lRYgjtfDwiDjEMTJ78oTEs2+WsnG30xN40SFL/u7ed0=,tag:l6Rjz/2QuEwkSFIQvM6XQw==,type:str]",
-						"name": "ENC[AES256_GCM,data:z1iGI9QZM5X28Rg=,iv:4uLlfJewa5fiNE2Oyh8eirfNiDTWQ3R0IlJ0ABWk4js=,tag:OnzEoaRcVpbMq/B6xw2r8Q==,type:str]",
+						"id": "ENC[AES256_GCM,data:E8VyzSMjjCNN2/c=,iv:lg6oJ5podCw9FTY3Kdlx6CoOlaRnI7CPHQtL/bzVyvs=,tag:BMrxxdnptinRSF2x+ioNFw==,type:str]",
+						"name": "ENC[AES256_GCM,data:axtLikkcQaxY0kI=,iv:cUSSUrUsxgmnEAeXzN2HpYeOVk1B4clV+NlCPvS8TeM=,tag:5Aq1PFIlvWTK5rtmBZLlyg==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:Y37ybOTCaGIrDLbWHImLL5NaHrUCbhQx3eIeASMoKxAi3lXdL8Jr5cCCxndMBQa7EBnG9VdJ47m0zEyWprEItagX0URvoqONoqq9NvMgG03a/94qAw==,iv:40LtXl4I2pNT4uYZfW5gZtf0YE8LTziTWg+4/0y6TLY=,tag:LM46SJbn42Uj+SIAPXcH+g==,type:str]"
+						"policy": "ENC[AES256_GCM,data:HEWNy5N5ZoITUz0rbcYC2YD64RNx0jO7QLXYmB14ENZ4lMGFdcZjSILPrNF7Xb6PgbFUTM+dsECpQZ5HH4LWRTb4oQTCC5gUa0ehLrmvIkxZELAUuQ==,iv:oNdCLtOcUxDdBy6avk3hTffvpdMgAm6UOqI3m8eGG0c=,tag:fJBdUR4OfUAy9RUkRvcEmg==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:SQ==,iv:aL1+SlV42JfFg5VhTTi1QFKE/0e6d+7WcZBDXQeprx8=,tag:nAErlOguSTEW0QGwt1fQCA==,type:float]",
-					"private": "ENC[AES256_GCM,data:2R8wucNsvAg=,iv:hh2wLOUsRfYqIO52AP1jsXg9A2DSd4VPa1vGlDM87/A=,tag:tlOl6q0Tq5TZaDuUTOOmfQ==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:sQ==,iv:yN6b/lSPlzM98Jk5JSKqSTbMc5goCbEM3lnSIFdxqe4=,tag:8HGH+sMt8V9tGNOFZ2bPUw==,type:float]",
+					"private": "ENC[AES256_GCM,data:mYdpgDySydw=,iv:c/BMJaHGroZ6X+YHnqiK7OxcdQiOrMBGtsIVQ8FtIxs=,tag:mYizL37D8lmHoFwURvDc1g==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:fWmrPL9Lyw==,iv:sVw39s5WS/6wAV3TACEhe6nDgReslb6bTHKoWTrnMX4=,tag:4E4Qh3wSXevXz5weLQQ3VQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:FHMiZGqeaterr2N0,iv:YkfQxNH1idL9gYBYepLlEqhH/q33S6HtOMzzWSiGo40=,tag:3uQWDt2PlW0j8ALiv1hRUg==,type:str]",
-			"name": "ENC[AES256_GCM,data:994=,iv:oh9R3PY5DBny+W/gyyWTfavSMCZrU82w4X/LdoJ9AGY=,tag:vzYH9oN21ltZfAEJZyL9SA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:LYRmccGijE6qnWL0ECBY+eefeBs1/xW/dqd8tDwML+Z5cQdevfbXZ0NsiHrVgo9RYQ==,iv:fxERYUJKl5cZiKUz6KhhVzTWtLgYAvBlyNlFRkJZOu8=,tag:FEj38kc1U0zCSiOMvrWpsg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:+CthLfdszw==,iv:0E91MXFDJZlr7KIEJYnj4Cne6iFwOixk6kQMwpFGU7M=,tag:fSwdJLJGBYvNU3+Td6er1Q==,type:str]",
+			"type": "ENC[AES256_GCM,data:3RJ4iOKEnyzlNGKs,iv:DUpfLStHBCIBtcHzm8HeJqhJ+tPDvODc+jrRy/y71Zw=,tag:l3vxHdNjDbrocMXpwz0dEQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:hLs=,iv:3F27Oi/sW20A3SymrZ9/IdmsinUg5ktj7yRDPF1iRSI=,tag:BsaWj5c00rKIM07ZN1xd0A==,type:str]",
+			"provider": "ENC[AES256_GCM,data:cXJnffeXEevUiXe4pHZpzqNLnSbyjL5VoV9/JSFj/lZ/GLkSl6R/KOjHk8od661Z0Q==,iv:KvcAnt6zMOo/3wKT96zMDHhZgasfd7tez6d5q08P6RQ=,tag:tBkWNNRYll63KOafbTAM9Q==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:RA==,iv:djap7CiNBdbCxCK7dFNATIZL7fZoYmMG4Uzbf/dD7uU=,tag:yvoRgpAxYOJsXQkEc0zVgw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:rQ==,iv:74YaYvc/jiBs7vO9Rg/CV0BRrT7h8TBY7k0G/i5HjJA=,tag:ztmXGbSaZMyrYYBHQY1mzQ==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:qdM=,iv:1w33PWoyru9O5hqZJcgS+h/idKdrpLkIYdnfwfBTX0g=,tag:2gQ08gHftfr9rBpe2ICjww==,type:str]",
-						"name": "ENC[AES256_GCM,data:DE4=,iv:GNo5xQxG9Kxz2/vWvfx92JOutBvpoaFOt8SfWcyvPEA=,tag:KazZxVaL6XBKuekNNx1Eng==,type:str]",
+						"id": "ENC[AES256_GCM,data:dq8=,iv:12Us2zLp2KZu8yf2yojER63uneQ1f8TLrTOPBsKiAEc=,tag:5gKaSnjLJqflpuNY5JKeQg==,type:str]",
+						"name": "ENC[AES256_GCM,data:UaY=,iv:oHm2yQG77CcPqZquD+UNeJblR2gyeonFow0EVC1oAPs=,tag:EBnFGRk1FcsvuyG1VbSOLw==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data: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,iv:hnqyUilqymT7L+gySUdiWwDPAoA6pqOu3immv5poVIU=,tag:IJL9Q04qLBTp200+sWbwuw==,type:str]"
+						"policy": "ENC[AES256_GCM,data:mfdV7jN1bn18iWQsy+he+2edKvBbrLPX0vE3aACDCuY5o2jIY/1E36zc3TreZpjUJ95BE+2iLMNl3i2GaOmBgJ5vQm8as21Q88aPyypKGmlcFxco0g6NY99jQKbEom2zI+DWC8w12OEMCyhLB7k6XRb8kLxc0oTsRIp3rh/vPZ5UNFzeVI+Hw8Mfl8+ODxe9+ojYBY3mVkxvL59eVM2LuXKb6DQsBX8M/60yUSsinId4pQMLxj129rocKhA3AYOBiFsEsGwwfq8bhMAJC+gxvqzV4c0nr4hoomAzjgKfNZvNRzQZLD03XPIVb2pUvOeRop+ZX7fqK5T08Y5uuCf953sVWwwUDhK4VRpA8AXt5si2vYjLik6SBlzEajhRFuVok84m2/WMTXQ3D+X0/EGEMVKdd7oHQXXwFd8XwzHARy28XNZgviZpV1MuV8DUhJAMwkiRTwBScxXGWpcmBqRWMKiFdbxw4UesC9rSD7076gUz1rAjZ4VUVuBawRVc74H3xKXU+MGkT7gtFCMX0hVgabXapMSF/q0zrEeJq7o03yS6EEWewqAxlLt8rd/ZfNd5lZ04iBww4J4VuCiwfrDXNwfJ90s9n9pXA8uF/GbDl2du9opWqUGwarIhltHT7jMZxp9tGDOi+YK95hMa838B1o46pzp2M6yYOk8+bUTKPuBAitEFavcrPOgBr0Dhe3jRPcJYNln+EMnCsFBJlQJcgKYc4Dp91VmrrAfpviwNmreCfiJg/If6ZcIzpV8kHXaGXrQ3eRxjmO9sgmRV+8Zv8pC0GD5fzR6PxbbYcvo/v1FhQpez3m1NQ/7DikUY3DeMl0No+xml0VQrUfrDG3S6,iv:gxLoLdJr4uRNAIPlvwCRD729e4BLN7k+8gO9W6C06GM=,tag:tsENq5uM/EPaxT/P/aas4w==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:2g==,iv:wRDCZF82to3hMOOJ7wgNzexyNbkQdZ37qsT113HJHio=,tag:Bh8ZGeF2w/e3At6t2tJu6g==,type:float]",
-					"private": "ENC[AES256_GCM,data:3Xk+HgEShXU=,iv:u5M3o8XcPfHpcfUO4K1Ef+ckQvjtavCc5zLRGoLJWJY=,tag:kVL9VnFogT7jrumSOMxiLQ==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:3Q==,iv:RxyhIJTzceW6NtgXpQgc5QINSUN6U3jBHkM9VqzZYMI=,tag:BQzEe+u5FJIAnNRx3ajoAA==,type:float]",
+					"private": "ENC[AES256_GCM,data:Ao8U8fsN2/4=,iv:tSCi+Spx/EQ8PWh7yxLozzS5A1wZHUQVCtFb0mvhApw=,tag:JeWDJbxGnHAfIZ7lyA+Ygg==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:nLrims4Uow==,iv:r6pWxjBr0gwOkW/4va9JnITrKNJFMVhnzt7RxFU19Js=,tag:y4/fPCHbznZ5yyzdNT0pIQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:pKBManmUY8d6Ssgy,iv:xhAfcBAOnDOFIAl19sAZHViUifSFIg9D5Nnb0c4H9RQ=,tag:7N0AvQ+n7VXJ0Kq2bR5csQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:fCAxOc0G/IyHpw==,iv:PDJQElMVP9iT3Sfoj+OcOxEQ6/j18hXl12J/7W2Sfqs=,tag:Y6w6xsPk4byJGqqLgLrm6g==,type:str]",
-			"provider": "ENC[AES256_GCM,data:X7ymHfilF/o2btdRKeQ0B7NPc1hfC2+QRpgaBy8MolO4rRRTiVXa97e+9Rb20kifow==,iv:A77OH8cQH7NFnju2IrpohEmS31wRKk4AA1rzf9w7P+Y=,tag:gT40lXdkHpaXWi2N8i11VA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:e/zYeeczNQ==,iv:rS15ftU/tfLcB6tb08i1a1uqqYCXLdL/8pswj6sHloU=,tag:uLx2nffZwjP16IWDImpKIQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:J8teM2lzX52l7qVu,iv:J1G1JqBjpxadQNjnuYwW0Ga6pPFd6XP9MvPF7y5+yL4=,tag:bgXv6PPPcjt4k0mlx7LXAQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:p1J4Pu5O5LCbdg==,iv:Fnjla1cD2UUCxeq7Dsp+mSHVHJgmOHUzFpe9/BDJWno=,tag:ypkPS3+RgNaPd9JYl4JMJA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:1KkRjwYqn2PMeeI+efraoysXF+2ozj9FCC/3mDh1Qqw/8tTbB4xbCln/Gd+d/Bp12g==,iv:cLxOrG23TDX48XX4psznlS9b6JWEIUQpOrP0EJhoZSM=,tag:83mvctN6mHUIjtS1HuO2Ww==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:HQ==,iv:wpvC+AjIaU1BDUeIl2nj4TpNuUrl1YF5rVwAJyAoo0k=,tag:mdC7+kcsxlvyjSg+s7s9jg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:gg==,iv:HUh8TIomKvcFhxerqAH3rTUkRMv9iWoTMs5KOuFG9Do=,tag:8KSpGY7FvgCMjtUL1TgKww==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:JL1M4OEkKYntQA==,iv:Zg0p7qBu9cpCocAGCulbLNWHFxd25MQ/kzurUiIbEHE=,tag:UzshMwTmWOowCESnOYgOSQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:cg8RHU59dWMspw==,iv:JBq+LL/NMcQOoanM09KGclKuYhXRJ/E9Jz4bqc2sPFw=,tag:yrGRoLr06fJNHTCcT9SgsA==,type:str]",
+						"id": "ENC[AES256_GCM,data:Cgu7oxmZGOs3AA==,iv:ELgEDzvRFXMIq+MPJpLlcdIVLD33aqMjUF+ABCGXE24=,tag://THwCsBmfDILgw7O6hMVQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:zGlUiGgbwZNo7A==,iv:q4zNViDF1L0RNJuROHn7iO190vn0jZGlBE/HFh4CxPE=,tag:36jMnCewxj8SwgdFhX1ZMQ==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:dnBDUYcEy8W5/fiy0ixVLZykAFLLe4sr35AETJMt69OuwW00mhjK+XWzUe5bpJGq4c0JlF8jcPeS6yOKUALfMVZHTEzq8CZLait5upzpu8ELREfEdN/AMgddLwDEfiHxPfZNk+utMY74saAlm9VEHgixUypBnT7W4gxH6p3c1L9DeEblt38wVgURJ04Y7ylcww/A1ufiuJS3LZ6IlUn6C4TjuzoVvMI8wHG0JUug47Bjl+qH/JtBo2GgnSXeEKinDFpOHd+4hUmb7YtG47xOdZYUQJxo5hmwKNMMPgMJ69MnsJeIwNSrHy+twJU=,iv:A32Q94xUDQxS6c1UZY/brg8Ngj8AmmMG4PnXWK3UjiQ=,tag:ciMbGEJL6oyWDO/FcLmh+Q==,type:str]"
+						"policy": "ENC[AES256_GCM,data:329vCSOwfMp9n8ivxT+GQdRn4GpldaoVAEoMhyJflanyzhNGMeuC/rCmTO2STCVYIuiVQSAxhbTb4aJCBlTK7PGf0MBbKf97bPWUdLfrxJ1oM4ASj5PKEuN01TpdEvtrtW94OHskJ0tEz2nHmp+cVW1yALwBrQNtupCxP/KGa/JYrnvi1umVW7HmtYC92uGYqV2bH0x9hfIZQsSpdTYTpvkWAI7m3eAClKwVAWdSi2xL546HdtPSllYdooxDlqAVFYOf7b0jEd4waMzOkdxbFoSks+wbo/BmP2edET3w2Xc97nf1W9y6UEHtXlw=,iv:zFgkDq4KGfdBYybtGJ3VIYWxHQ04XTsJoyxw2gJtnUA=,tag:Pr2VAAKRbDfsNcbshX0psw==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Dw==,iv:hGV2jH/yIFN4I6blfnjMuEnFaHPFYBb4uz54xkF2gBU=,tag:yGucq0FUw1z6kSdJtKPwbQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:OijWhE1AGak=,iv:56z1o7iOAOTPAtPfuxZ9g7gswTmQhh0OJN1kqTadXPs=,tag:uHrOi50IC5OvtlcYUFfv5w==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:fg==,iv:HeIvwt84PCaNSS1YoeYpxzzpU0sUtpNrJSBLCmENlLU=,tag:2RcqHcKmvZv+A7li3J5lZA==,type:float]",
+					"private": "ENC[AES256_GCM,data:rkOeB/QyJZ4=,iv:YQowABzFHvtojpG3G2KfpSRrrdAoOukM2j4DltIQakM=,tag:1xkfoFOToIo9jHWPD4d/7A==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:X1rd7tJSIw==,iv:bXgQkJ0XPrm168AiGhMlYafhcME6c4LYFjp/SUjHN3M=,tag:lcmLL4vIRJL+eeLYq8zCJw==,type:str]",
-			"type": "ENC[AES256_GCM,data:RYTZZ/Auo4MpIjTT,iv:FpdayipirWdSjXfHmwRs5DL8SYDKl2Ie7Kk2ppJC8y4=,tag:SwdgCFVM3mXN475aAE4MfA==,type:str]",
-			"name": "ENC[AES256_GCM,data:uSDvV1R0+T2ea1ss1Ioh,iv:npheDr7Q6DWVwLH54VD6JDjug8IqHLnCLbzQG9G1ZRc=,tag:648kmsq8dBaNEn5hDMFN4Q==,type:str]",
-			"provider": "ENC[AES256_GCM,data:RtSN4wGHM/YVkQaRD7iHGNQjLpsn2aWth6J1mrXAkNaHc8iDeiZ05VZSv92R78rXLQ==,iv:NTrbSA3kQoy1MdQf3972qsyhZHfhHWVdRahfCuH4HsY=,tag:DfwjP5Iwbzrb/uIGpocX+A==,type:str]",
+			"mode": "ENC[AES256_GCM,data:YZJF5JEOnQ==,iv:mmpHnN/bj8XhqhDF8xB2yfkrBCEt/H+IPZimjjK9f3o=,tag:27MtbtEgoHacY3BucT7deQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:KRhMa3ayfd+nF36Y,iv:y2iEJXlTxwurXm6sDT7SeK3wT6Am8PmyP1ET5sVQkQE=,tag:+GRGMZ8aqqhPbpyi0CPOZg==,type:str]",
+			"name": "ENC[AES256_GCM,data:Q9ZDzL4SaJEzY7npXAE8,iv:Iu0ku7C3azvbLnuE2GzL3W9b8cSsEJ+/H/mRWIw/RSc=,tag:ed4S6772VxF6lDA4nr11ww==,type:str]",
+			"provider": "ENC[AES256_GCM,data:52V5H2+eEYiJVWYAD4oXVueUaAzX4O/neUziFR/ZMzogIYO/QGwWGjyvsChtOmxduQ==,iv:FGPTdLeeQKNkCClv+8e7rBG0JkwGKuHh3JWjySt+xQI=,tag:S/Sak1FNg1uIZZAI8zTdGQ==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:VMtmYw==,iv:KMk7Fva0AlYCeqBrfI1EdMiz2D/7pT/kzFpFq/tST9c=,tag:b/didA0o5bcA6Bphc0sRug==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:vg==,iv:Eb8BjLUvhacKwpitZLGjyaZMc9k8IpxBVbCpkrx9QiM=,tag:CsA7WSkxhNwmqwT4TRf0QQ==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:wV/1Ww==,iv:m1L5E1NzkHwAUF6d5xZabGXqUIKUz9j2GO6IrEwRePU=,tag:9oAnkR3G2oASQxg/jkULPg==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:vQ==,iv:QmZWAP2+O91zwllaX/dxMrym3y8f3faxcZJnzs5xNuE=,tag:jWCcK/ZPtPkpQmyB+7lNvg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:D2kA1hG9dwQyPNSf3gF5+80S5Sk=,iv:mQFtAm6VPrW+AK82q1hIxs7LeIleRyCvddqj66jc4Jw=,tag:Ylb9QkXpqKQBCVCKNDzJPw==,type:str]",
-						"name": "ENC[AES256_GCM,data:AVjlk2UfrP69Hx3uHJ5gj5KczKY=,iv:InAMl+0o9mk91KnjP/LCH/iSO6Qgh4ol8EIH/J2eTT8=,tag:EMjsgmzFZ+olr20Ry9p+eg==,type:str]",
+						"id": "ENC[AES256_GCM,data:+MA+lfBEemZjY1kSDjGDcs1vDrM=,iv:9tVUOzUXbAVKomoe/0EfvgDJBxVOv6qh4oJ3xmYI4bE=,tag:MkCrHJtad3RVBJA+bRLUdg==,type:str]",
+						"name": "ENC[AES256_GCM,data:iIUgLtGgziJpdvVOudw7y2VcQ1I=,iv:ZnvORFjzcORmrN//8A3m1e+CNy8KAQTNKnLG3h2PHEo=,tag:dYi19UwPvlR8UJZapslDAg==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data: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,iv:SMKtGzpyJsZUT1bi+qx5+UTMNfoKMLm06FCpc+vcQmk=,tag:3uxqcKUMrpJ2hwdOEXJd6w==,type:str]"
+						"policy": "ENC[AES256_GCM,data:FGA+5R4mfJ1RsTe4s/od1HhHFQQzndIoiHXLkjEG4y1sk0N1rnYhoQWuxqyzZSoHNWENRYDyW7bVsmCrQyisrmRdZgFJYFy8aABF1vwlwehUfGCJ+40mEX8M8IyJEHk9LnzDq9nJcj6HfFiVM4UEWLsSxeweFytuqXlxP6RbvqOmilcx+Jezgzib30V8e5p16WS3gZE/jOiOyoI6nl0yIUoyDeIBtN2a/H7S3L007aTArMPrMn1r8mMZoagBaiyeAa6/I7iUP9pohfWKU165VayQrNxCDyCDoTfjscImkRhD76qIouL8LtT1M1mwR2+vZu5q6Vdz1s9kymfjGGdELClxaxZzQAEgzSpvBvg6n9qZMqAHtTGAptYPEEQQlrC5+q3pIclg9T5Sv0hYvmV8hciV0NHw2aU22nO148+iBLoyvTGANAd+N5QEbwUQLJehDqjPQ0kK1DygIoKxX3dIHSFv3Gu317uwvHgP58xHKWzi2GK70yv2H2M4HTT7LQ8mbk199Nbn0PnIueb/iW1JzyEpGAC/MV0kGpAYbwWL2jAvfj7STH17ZdKPXf4ASjxwMxLhRBl7wLDZT8LTy//k49bUgYRQAvoA01yXFH5KrWxnmWLCkHHi4nkbxzVAKB175hsj11uBet4YIQcvrrAs5gMa,iv:wjuLu6czc8q5SnY+JL0qTUNi6AmcRpQ60lmQ/+iUUeM=,tag:pRezqAaCMzPPYIzT4mEVyg==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:Uw==,iv:x3HqcoZX+q9F283TI2iOVgXYCpt/9mUV4NbR7vq9/JY=,tag:w23TdU1omzZZrYh/R76oRg==,type:float]",
-					"private": "ENC[AES256_GCM,data:53XK4RJXMk4=,iv:cmkpikBQFs+ZckWqIgIBwxIo22i1wv/ehqMyv1GOt+s=,tag:Mv/5G0H6qcru7W4fPnRZ6g==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:dQ==,iv:nvWeqzORMIGSVbXuD37USFuybJa0mPPi2WNfzaNfe/M=,tag:06LM9HAUK9BrNVjkGO7+Lg==,type:float]",
+					"private": "ENC[AES256_GCM,data:hWeYh4FB7Qs=,iv:n+48ZUmqf2bo+aul2axRxqALNA3EIdVrVAgYumIJU+I=,tag:i3Rk5TRIX+VKfKxlFLszvQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:LoEqrqfjYlGTzME0pQxy/m8kwKR2JtANjPJOozGGErE=,iv:UvqdxRsVmGD3JZw7dVt9ydlxuugLuOQocEnX6DScGfg=,tag:mf4lJfUzx/kCvYYvwpT2XA==,type:str]",
-						"ENC[AES256_GCM,data:r9uJG5RQgb70Letxmi4qH+do,iv:cdgmYE7Goaqu0B8PC/2PfKMGNwNZn4S87nRSjizIu0o=,tag:yJKC6GZFmk3j07TyjCZb1Q==,type:str]",
-						"ENC[AES256_GCM,data:KHQwo3+kYzhKMi5zhmmIaTmRN4tPNwb8BPw=,iv:TTSgx1oct05EoVBVJ/7lgQcARXuieTBpQL3paDZ7ez4=,tag:OH5ZmNRtTuJ+ClwuEIYExA==,type:str]"
+						"ENC[AES256_GCM,data:A66DEBgNtpGTLDLLZn9BItPFcZLGAyXfiHc5uVciPrU=,iv:XWnpizdcZDuEB/oLzCcYAJ0V3fCguFueJDDpiIK8BDY=,tag:6qnOTQ+McwJCHRW9CS9kOA==,type:str]",
+						"ENC[AES256_GCM,data:V8opfRVdBCiRC502L4IkgUYQ,iv:YEjf6ou9Ze4y1LEiYewRxoPIiBB3uWrPbmGrBo/ifx4=,tag:Be7TwMVn7UJruPtf11PcAA==,type:str]",
+						"ENC[AES256_GCM,data:6suRBoCDVho9Bb8LUVFl28IhpCkeXSscz/M=,iv:US5/eKZYJ7vDRVEGGBHa7nA54UXSpHi1poUDjfZG0oU=,tag:YAbtq8SUcGqGhItUyCfuPQ==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:rh94Rlrxv24=,iv:QrCm1yt1Wsxy9RQzeMGuBEvscv9F1LWnmg3728Jr+m8=,tag:WmzJPPLSbWsLUl2L9LK9AQ==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:wQ==,iv:I0Us3NtJwhKcVN5ZS7CPLFBBHqiNQRUu6P3m9Rkj1yE=,tag:f1b0n1HkBaA2xROMYspXEw==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:OcgKk+DHH+c=,iv:nvolLZ/P6tuyxs6275AM0V7ISPk8xYKG35xKcw3MZ/o=,tag:VJCS5paR782Meu9wlOv/fA==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:7Q==,iv:SKC6zzAkYeiQXppE2uXXnUKyyLrf3Sc8zWzVJEftKTQ=,tag:ussAoNxe7M3L3u02zEfq8w==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:i20ft9S4sVE6Ss2pfcILIJg/Req9K0CK,iv:c6rXAwCjFtZ0WViDyUz/sydgJgSzdxMaZvbK1numUZE=,tag:TISvtZ9K3DoZ6YnVDsDRGg==,type:str]",
-						"name": "ENC[AES256_GCM,data:/2RQxl7S19ifuuJRLMujlDa7Q/8e5/Yk,iv:gXmAUtYuPwUJFAj1Dk0IhMjojgqMacKe7wuRN8ZRNR0=,tag:6gX+zZMc6YT72qgzfKxgSw==,type:str]",
+						"id": "ENC[AES256_GCM,data:twcRiKzwGSogSI6t0JIV2O2rJo2+YR04,iv:FOabybao8rDwrdbx7sgLPYXJ/R9aefIJ7Sc6koDati0=,tag:J9V3FTEEAOIRW72Y/cvoQQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:7n8hunTBKVENVTXzvtInmI2wWCQCo+gu,iv:0z1HKWTuCHS9GMmnKbZbRHhNQ22NCMrwzJl1t+i4VQM=,tag:vk2b/EqWY/Wpnt4YGYIvfg==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:ntPlaHgOzTXqIJPhL0hi0qUeDYqfAqO13xftwiGqzc1bBpugOAKWEgrLJQu+ijz3IY0l8XjizOMF87K9xo223dAeSb2czg3XGYEBdA/NNhW9wFzxEekziCRQ1EPfc/VIC1aSVgZiNT5c2/tfrVwg24bgTto2q5mUA+owqjzgg/302L7PyS0rK8+tS3K1zbEknCnCFhTGcnuXt7LyIjOBjEIHogEx7C7JiIOtNG3oAHbYSKrzrQQ+02OzKwg6EouBItYEgMOTyFxrjjzGLKBnQAhO5HLtNrq6uJWWUGL8MHBEb+ByGG1a/l94tRR1kCYytFJS1RZAhy+JI8b57mcx4hwf+J5GjX31uZlCH5vFhHlD+7E++cP6wRxU9gyDsoOQ0AmCgiJBJyTynHvSSQ/HhXEy3TQ8YSGqkDO7tcnHWS9bmT+nNzuJqeCXcoTSgqoTMNncgOh38c4YrQaONILUZeble71vS+knlTYyKQBCYYu3Zl5ALT1K43CgpatLE71cdat+pKMMwTaUgy+PdDqlFf56sOep+V7RBlrQsP9i/CexDkrdOwAYE63SIJBr49wxb7vvMEUCbZZb5PO4CN9ctq/k9OH5X4zTzW0JWufBK9KznOV6oc8XsMNT1ms0Okb4lLEvXgAjsY1aHKLmxgplf87BdRCEj7H4,iv:wc4I4z3g96UkET4xMUq8yKBBcG4HcIkpEqEooTwIAQ8=,tag:Vhzo952JJK+BNNCIj6qpkQ==,type:str]"
+						"policy": "ENC[AES256_GCM,data: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,iv:3bvWL6PAe5Ce/W3Bl1JcO5Up3crcwS7AQwva0P+04Z0=,tag:KKHayxFZ5P6oTxa0vHSlQQ==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:LA==,iv:LF5mXSHIFZ02ObchpkBBRed7LytWIoWDz5NuiCIYGFY=,tag:zFAuqFea8+8ZIK7bZv7mBg==,type:float]",
-					"private": "ENC[AES256_GCM,data:WQ5rIWYFgT4=,iv:bWpqETZF5R5674nQ6CQDGC+e3U8F2J2s18Gshryv8mg=,tag:j/ygvRnXuKaa6rw0IYwFRQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:vQ==,iv:sS4Ku72guEz+sUiWht/MOhwDFy9GecFGN0SUvg9S7wo=,tag:4ZPlqF20oNfWnHPhDD4mXQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:qGZGi1c5Fy0=,iv:CMCkmR8SB4LVbKURluJfnLM0jWOagBOCg7fxQ0xyCAA=,tag:TVc5DioQXgHxjKFN1IJKUg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:gOTGLB3KfXOn0gb0NKxVEt8B2FG0PaQ6edcN8EHX7pA=,iv:dbibKy02sEd5u/cqzfrF2hKWsOjFYipxeaBVU8UjMaw=,tag:YrqNQ8VyG4E1wa0Mija1oQ==,type:str]",
-						"ENC[AES256_GCM,data:cEXYdI68QlOiNswbKy+TfyPV,iv:ynYuYTIh/FoFKv1psXyn3pAQt4PqxGsXdRSEjOVNVlg=,tag:BfBq3c867AtTxtlPj7zp0w==,type:str]",
-						"ENC[AES256_GCM,data:7gOS7X4HDCNgYwW/Th4UK0/UpmIRqgBkiMY=,iv:SOQcJ9V1JqGEnyEoOaqsMVr88ZJY4wa1sj2HdWkvC+M=,tag:6jBtXPySvzAOtP/82bPLnA==,type:str]"
+						"ENC[AES256_GCM,data:HfLDS86AyUUNhF/1R5iVf6WSYFeP+9b0Le2fIMc8zus=,iv:91AFYycBKyqLC6uazzh1odMzW4DbbhPeGfWmNWXrPiA=,tag:xw1eszWyES3wSU83HD/DPw==,type:str]",
+						"ENC[AES256_GCM,data:967z5Cc5RT9trxy4rfR/Bjh9,iv:CSCm0kt0dnBRQrax6JxFk/U+4xk6VOzO7p6cvvBxKuw=,tag:Y71jDzYntz2uBztRgG/EtA==,type:str]",
+						"ENC[AES256_GCM,data:9uTNYZGLV7h+9A9CzgXA+0oAs10/2ZlKnIU=,iv:dfFkbe/OJT8uuBySY1GvM6v+Ty0xqM4TeqJ96h9CkMM=,tag:+CAKNqBihxZkUrDSZ2ll+w==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:wFYdaf1MeA==,iv:fke0H26JYOXCi2eh1PpcZ/mP633bp/OoUoD6ryfRzE4=,tag:qF1cnA3KJRKIcCdpquVS5w==,type:str]",
-			"type": "ENC[AES256_GCM,data:RqREJYWxlgPkcLdD,iv:OeAGsq3x2UMKSjHqxpqwdGbDHC7kiiUYUO9xBZqf49Y=,tag:o5AqvCjsBlEqvfwPdWvNBA==,type:str]",
-			"name": "ENC[AES256_GCM,data:BreHc9blrOjdca1d,iv:5JeBsS7VgV/oyAmM/ZRCwJjl+1Df5u46oBsQQsVm578=,tag:RVA/2tuV90maNOnllapQJw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:93my4eB4cXvvBy6bs/jxz+L7EeKrOV0Lin5LwXtp0qAC/2ylefiGS2pZRG28bR4EIw==,iv:z8hIyw7ePYLj2Kw8nwVBSvdTxxX/RKec8+Ha1He015Q=,tag:BeTxD7rFOIXA+TQoZmZ78w==,type:str]",
+			"mode": "ENC[AES256_GCM,data:u/XSBBVXrA==,iv:InQygW9AdE/28abnG0MWa+YQigLzwkkH2+LghEdUpuA=,tag:DQ3KGXg6wIyTi4rjgMS0qA==,type:str]",
+			"type": "ENC[AES256_GCM,data:vWAc0sSt02ZTphxy,iv:Sw/pSOxDLse4bBffjtonIf2SBZRDTG3vWagHqXinwlE=,tag:EUBVOpUcOiyO3Daa3ZQx8g==,type:str]",
+			"name": "ENC[AES256_GCM,data:X/CYRprwmgt5keI4,iv:F/fkNygfGbfxSPTuF96p4uZxneZXk8JJgj6vKOd5VWk=,tag:pGkGD0DbsXyg8UByi8ubpg==,type:str]",
+			"provider": "ENC[AES256_GCM,data:7x4z+pJxki6lbrISh09A7BLNoLEF3AtJtSKuGpFqhBpMyqT4lZpx37f8gEbESdKrWA==,iv:BfEv4KUV57H8Tx4o8ULjVrHPfLJxEgjgiSv67yYpvNc=,tag:3IYw5gY9uP2p/iQDCDuLGA==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:lw==,iv:XIYv1qX1NGqlTDjAlXXeBMO4NXhuIIOf61O60Um8Bo4=,tag:8o+/kkIaKb/tmOhpIgT0sg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:8g==,iv:yWda3Pv+BdYw4LE2TjHLhoQh4tQptuJD+j0qpOoyqnQ=,tag:vCsTCja7cBEFn2jVDwaHaw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:WMY/VnbVlkmcrEYg,iv:fUy3EEyP7Y7pJrrGQ8och552hYO3qe25F1kIIMmTE6o=,tag:yDSSflbFfVJK7q6Luz9x5w==,type:str]",
-						"name": "ENC[AES256_GCM,data:7ySWT/Dvi05CvI1d,iv:LCXxfzMjSaym7ICMx5lYgTs2KroIO6nQ80XWgZyGsDM=,tag:OlQklNWHNAOmpDfK+i4BIw==,type:str]",
+						"id": "ENC[AES256_GCM,data:c09dZQVI2kgnd+qh,iv:C5mb0KlCHg5AkcMcpwkNX2LPp0o0wEblgnFGa+vseQg=,tag:hYu7w9qE+ydOREXaxUMbhA==,type:str]",
+						"name": "ENC[AES256_GCM,data:hxWtGlJ+UWeq34tz,iv:JXLOWptsd+ixuY0f95MbqayrfvhSp55cBK9eNhu43r0=,tag:AuWX7IiD4koBGD2zKsL3IA==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:Ra4Q1BLEiDK/wCzfZze7PZsYVDxDcyONjTW1XhzYEdRJT6XuoiNWSrnrgW6mW7AdEvyFoWxt2b98yToRdzpdUy5QNbglFyQ855QSV96SESkAkxJC3LKf2Y+d21zVCQCjsAsY9zSg9+Glm+i6lqHuyho35dR9iSS4dUU=,iv:P+nyKjdDCxZ9wCqiYOWcQmOnSIlJHDAbKptPtecyqB4=,tag:GqNyMeOc4yM4wxo7KR9F0Q==,type:str]"
+						"policy": "ENC[AES256_GCM,data:PgjSt2uy7JbDzmkfjb1oRiSrpiTrRvgHWaXml0dxikddnUq8QR/MmNZyJTV2e8lV4FTSM1i4D4IoQkI/aaoyQo03C/FF0YMCssgKUHVCz1YqZmonZFCHhHegL5OIJCcJEFuWxSnq2ACMU/1jbUNnEezTu/k56T4jcvw=,iv:4P/i4ZvGupyqDGEvj+BAhiN7pMPm017pl8CTFdyIM9o=,tag:Xih+uqH6K4IrTr7Q2NEGWg==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:zA==,iv:y86jBQFmRtjeOh6HY76Wzxv34hn1AuuFXNgiyV1hx2Y=,tag:Ke63t0S4Mkz6In5bFzUcYQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:a9A5DRYsdPk=,iv:UsEeKidhnshvqhA6oYXBG2r/em+N1Z6GNFghSq4RlQg=,tag:vdQZOWUhr4brAtuow8pbtg==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:KQ==,iv:ClU/ouLJx7XJxcbCt9wcVBUyT/cjDBL46Eg65a9xQ2Q=,tag:Qe1IM01h9R/ryhSj/KcF0g==,type:float]",
+					"private": "ENC[AES256_GCM,data:NHrZXyz2hnQ=,iv:mD9+FDG+/Hfyi8bdgVa5i8vLZcHidUoIrQ55HCQcpMA=,tag:Qvn3BXWeALQiOZ/BBifjlQ==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:/U8uXhyu2g==,iv:5JHgbwMhYp3bE/w9ZbL0DCE0OV8n35IYgisGkZPWb1c=,tag:DxT9zXHuw0zkh9WFHfsajg==,type:str]",
-			"type": "ENC[AES256_GCM,data:YzFxH+KI660++4fw,iv:yIrox/O9+LSxFReF2TdmY1434WIIJhcUOy2/cAygiCw=,tag:q9CTPjAEvOmch6kr5ho78A==,type:str]",
-			"name": "ENC[AES256_GCM,data:1f+ZcWk3n65SMA==,iv:wTo7sruYjUTBmXdPtL5jcck2Be5MAq2o5qPD7KlrXVE=,tag:nxNUDxGE2B31achnR0NJOQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:O/Lri8M5++BqFVE50yKj0vg7oviMxQxkFMAk1uwskw0yTWJFsbSsY4WmEeEM2wxn4Q==,iv:byeRnWNrg5szX/bYfkFoqav/0Pjb4JC2X67szS6VA+0=,tag:k4TJrKf2beHdX2jutWHVOA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:qVXs+dyuhw==,iv:rkOeAZhev69ngRm+Pm2ESDEBmY/9EAu/9WGWmqnxLdE=,tag:XBfN/rdiSpZ3/lAS+6qfOg==,type:str]",
+			"type": "ENC[AES256_GCM,data:gwbRcFHNcY5/MeEI,iv:ceojMYemu7iipvI5AG2FezB9u+fiih25c9vxnAZL0ns=,tag:yuE7v2jAj+OxMEfIhNDEWQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:uCIzBwfqanGqZA==,iv:6jzzxPrXuvULkWKOc/YNHyXzrJaLZzuVLoLRYOu0I7U=,tag:Wyi7GXN9Dmtpo2piddNmmA==,type:str]",
+			"provider": "ENC[AES256_GCM,data:IQsxmXQQpUaUKyPEmysj1oMZ1p7NvHHWp+NBa4AA3+KF0RYk0DWveLPWpWiuSL1Baw==,iv:cIdmgiZfmSVnAF/v/6iGr57TOYVea99ny2eas9GbyKY=,tag:HIjdJKbVHY7TIEkxKVC3bQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:BA==,iv:tXXqa2k+nLGMrsgNYp/33BkEo2xilDlO7K1U2CJeD4U=,tag:J3d61859gEvSrx2k49zJYg==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:NQ==,iv:/Vv6lApokp/0rKxlt7+GoHfGplQcZ4ss2f6eRnxh5YE=,tag:yKE6azpTnt4WajIks6qg3A==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:AtskK3O+ES3LZw==,iv:CrsQYnR9ViS/wc5/ArOutvCXKg6lN5t1UwxaweMh/Uw=,tag:d1yNHV2Pi/BeV0I7evcDbA==,type:str]",
-						"name": "ENC[AES256_GCM,data:rrZujjbKg+cekw==,iv:T46U1LbLO2eq/qzBOzs6ObYGYVd9ZQMQ6V/tE/gkcIw=,tag:VifNjj+AXnD3vcb838NLDg==,type:str]",
+						"id": "ENC[AES256_GCM,data:dk8LiSZTs5jPFw==,iv:uRiMPu1qYH5ztepbDkBi0Fe086afLeQBfTvu2z5pVhY=,tag:bixeeDt8FH4tdaiV1UrkEQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:1FC7xD98DyTAVQ==,iv:h6Zh/9eAIXHSBgIbEF8E6Onjn3Wg5aizQQbyhlO8hak=,tag:I0teXzgHDB/ud0c6sGaeVA==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:HFNa5X/8CflR4+LpJzxgXJtdk2S4EU0oG115jmFF9GbG1yknvMJOTXBH4NoI+6BVCbMBMRPxN3x0zHurOgIpI3huri1GoA2dhMsEgK5mNxLNoG/9iT0mS6x5fZBSboSJidCwLzUpT522GUY9f5J+Vw1N0u160fff3jZ8uuO+cE58uUcwp+rtlBK6P4L3z0xxJqX1W0knvwgAKySQX/TM5UKXu1OxVXkDRNBjcUJwp8jyXSrLxD5AD46wwlnoGz8NXaYIWS1a92j853VoAr3guV9XN1H46Um7,iv:roXWojGS8ftUl14Xo30vbbmTF1JAZT15ThlTUg21GWw=,tag:jlaR4gZryydCKnJhjEPbug==,type:str]"
+						"policy": "ENC[AES256_GCM,data:AYf3emZy2sgk9tL0gmWyiDGqzr3+I7GFx0+CAVp47ARD6GnOyNHKjAyhnfIxhzc7ttoZZwsBykusvr8om+/QcBZRrlNbq4A9UM4hIp0Bczc8sdR/k8SIRiTwSqbCmtaKn+Ifnb893wyYeTJgUiMcp39crU0eI0+zcIDSU5vIZsRhGmbkg1sAN+RApOf8D0EgJ1PIXwDrCUchVvai2uTCbEYY/X5xJ75qH9rbLUOAvdb8+eCVfhFTs0S8KyRL3p1GI2YXlvHehJpn9KhNmzCFftADwtOjoJ9l,iv:ODYIho6o6utP6dGFSVqWRw3l6SBaJmD3f6wDuobHS1o=,tag:g4T8pYcIdU0kEPpT5/Hb6w==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:vg==,iv:ClIS6fxBke6tOSXbvMmzneQNcYG5NYNXDKxJx9yJD9g=,tag:N5XRoH+UMOi5HAhLANLkmA==,type:float]",
-					"private": "ENC[AES256_GCM,data:Lx6Y/w/sNDQ=,iv:Pe1l1jcEgSthZd2kRGbMudEXaTSzJZKInFUobgCdCFI=,tag:qJwN1zjkpZKQB4+sXgDK7Q==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:cg==,iv:rPoJyabWUsAfsUN5heiXbK9Q+Igb488QVrWcQE6Sme8=,tag:DXkcICFS7wia2dBjPiLceQ==,type:float]",
+					"private": "ENC[AES256_GCM,data:lZ7hfb7iK74=,iv:J+9LyW8Spn2d1Ro6v50b9LlrTggA68YyJqleximY9Uk=,tag:MMEEI52Gb3PtvyzUhzMTuA==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:DMOfhgutqQ==,iv:I8byWeZ/8pQltzYwi4PYt6B9qBiCN+abF+rFTXwr1M4=,tag:o6mDP1yOmSbUxfUDEFDTVA==,type:str]",
-			"type": "ENC[AES256_GCM,data:pQw+hZyM04MWIIQE,iv:IFsOfB54DO6YiqQ/sCMLzGQa0ofhrbuwxvxUL8wvHSY=,tag:O+1XG3vRgTiURPQCJ6eUcg==,type:str]",
-			"name": "ENC[AES256_GCM,data:GUuxJtdz4gWD,iv:OvSWqEVDi9s4pHSeoawZOYBaXLqKYGa4NaiklWgSxmo=,tag:aFAgWsrnYP/LpC/zQF4KQA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:BP57a27kCfejPEXE67y2Y5pAXAND+sEQgD5jcKhGMoyaQ0h0NwRPciO3OjfdrKkL/A==,iv:MrQqcJd8peitshsWDLxvP9kMKHREZXA/R/oJ0Vb/kpE=,tag:1u2gYwx0bU6reF2gN8k9NQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:FhNDESAd9g==,iv:MraIZ8DdexMtI7poqeXmfg1Y7GcLH1P81uWVKNaAhIM=,tag:x+EaaSL1TN8uVcZZYDtD3A==,type:str]",
+			"type": "ENC[AES256_GCM,data:xEhGoWGcXEQmXrAe,iv:/1nU6evC+v8rfgroW+jWkUIWsnpSqenjqDcn6nMaCBE=,tag:baNeLIiaVYVExPcSDHZJsQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:fCtjtk4dUig/,iv:ud1imaDsCvm/HAHmNzgFwnPXaeV3yAHy4BIH/CNp3Wc=,tag:T54pqHWJIoPjTGYDV1sBpQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:Ucz2FOFsW4MGqiElB/pj7sZ9CPzZiJY8QXTi+eLr6bELcJfKqz9Nxm+imwltLpii2A==,iv:Te6GFLOzjqKygxdcrx6IuZuKp1M9KjmcA5SsVzhkmNQ=,tag:VWhEeqJlD2byaqxQgioMRA==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:W9PjCQ==,iv:fjzLEsH1n3Th9idPwlqeet3m1hfOqy2itpgOl2vi5Yc=,tag:/m4xx88XTzpVllLYxIPo6w==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:yA==,iv:vepWeoVNO5rCCpzrkxiOTIt/Jr/dyXL20tJPa0/Xw1U=,tag:ESKojrmFkBh8BWUBOh8sAA==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:+aqjtg==,iv:WiBVCunlTp0Fvh9yISiI1kV5w9Czrmwn12/cJc3lbeA=,tag:f7VTbg57gemFiu/LrH2a/A==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:Sw==,iv:dLFMlAASJlX/4InGuAuXzY+3azGNpBmdtuSXlNMCkoA=,tag:Lc07JNx5x4MDdqLgmCgVrQ==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:LsxXAXHAHt5Tj12qO5s=,iv:TFA+d6RIdVLG0ZbI8zF5aXxBWa4NV7e/1Aq70GCTySM=,tag:N4jofX6PLeJM82QNFt3njA==,type:str]",
-						"name": "ENC[AES256_GCM,data:FS6gLDibS4UifVCGyyw=,iv:9hXAS7NOx0jwAEQoS0yRKb1SQ7FfPk+z4XnY4pfRyHw=,tag:isBE+IPa7V4H3o7ptM5UbA==,type:str]",
+						"id": "ENC[AES256_GCM,data:y5yg7j8WuugsW2qcBsc=,iv:IVf+d3+OJ51EDSHzqPOdorfvfL4G04Q4JVZnaKSIll8=,tag:9YuUFNPXop3lPwIuy6iHlg==,type:str]",
+						"name": "ENC[AES256_GCM,data:q9b1OCdGywlgw/2Yr1c=,iv:2OwMvXl9XM2bR2gvHzp6/q5+Cz6MfKyANo60SO0gjeA=,tag:7BF6LRv+1MCMhXCc6wloxg==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:fAculMZAN/ePbVfqI7J0Tsl9XZdAKq9RRyPeEH66x9MoUKq3kKaK1DTovwZD/UthiGkhjzfFIlhM/roZwJ+LJjDdxzAlVKniKQ9RuJe/5dm8NIdZkYbQWDFaHdutxw7FSQKOosdzAwdjpUlVo+TGuRTZZRqoTG/b9reiEds+Nv3w3d4xSQwNXhAtmygu+rXAFzCIV5YHDEUCqiNXIc+r/hhfhEmMLDiAgHl0TUoCA/zgY1c03JsOWbken/6VodoNOo1ROINuAtkM8/JcqoShEE23g7rfJ0ITSi/QSh2aQBkUzl+4JEeSQQ==,iv:/FJHFpi/HA44Q41k6ortXqAnH9q1BDLnQ9X+1Hjw5C8=,tag:eWlQLASyb/bergIYAu3E5Q==,type:str]"
+						"policy": "ENC[AES256_GCM,data:4GquZ+gf++tTjBg7gHTbFWU7xUiqcZQI2OQg6OgsOpyyj8MU+pXShj2NFfwOBpt5bkeAp9dMal29a0ZOiESVYEYTA6NymWvfUHFJq+gkrTZoEhJ9RZN71e0evXceVg3dvH/NbuFRJOAvKgBLvTErNVwb1UlMdBt7ZMUipDTtO0cwbamjPYogBlARGLgCeNkEygPZZA8QJ93/pWeX15mRjpw0dV78TxgNi3yZIvINgsacUxMOm4wmBoYVv9aCoT1a3AWnyBtcZ+b5suRy9J0lq8qFkC5XRXRviUaTkzpoxJLkoAKsFrVCHA==,iv:X9vkYKx92jkVfaXlCaP8NuDuOjB6FbfZJ7rhf70DxWE=,tag:yfPmHbE0TXYPIkZYhLvnkg==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:kw==,iv:sS/i4qYzZfzfAPe4kv+RpKB/AjwK9KJVMSuWQz0WbT4=,tag:RXM6zaC5vjIOSWARMF1bEQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:+5aR5yB9u8g=,iv:3oxpmfugqIoDr85DDpv+3PwwykPulL4lS/ufNNP0I2s=,tag:s23Ybr4av0da5cYEpklhkA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:cw==,iv:HQaqtCiv1SVKlqUfSVvxejffsQYT0UaXGge9BlbvG68=,tag:NHrDjuFvfBChZf68bc0CEg==,type:float]",
+					"private": "ENC[AES256_GCM,data:UXN3JxEQ3s4=,iv:qiSm1n5SOTa0flUb3c9IQ+RmrIqOZtbxJbGUw7zN4SQ=,tag:z+SsChasVQQaSXVucRs43w==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:qQsXNU9w8z0XC1RzvEDjoth5rGmZcbKx6QTypvmwnUQ=,iv:NMF+W2gX7cgIsz7QN+3zsqwDZpHvRrQsgPPR7mI9QE4=,tag:+IZMAvShIRORWRNV/vj+UQ==,type:str]",
-						"ENC[AES256_GCM,data:GbifDjaIJDFix+wbKdLdNkoN,iv://yYUZUGVxZT8pymJgxs61wBGH0c8p4N/8toRLLB7Vk=,tag:Bxk1MWgkW8bQrkXZoK1E8A==,type:str]",
-						"ENC[AES256_GCM,data:uGBab/4IWR5CkQ36n02SN9ollH5MLllN1Pc=,iv:0C7PEQcukOi4zCis3mKbU5CN4M1OUH90dS1TbwmA8No=,tag:HVT7lJvKw73xLNc87bL+Hw==,type:str]"
+						"ENC[AES256_GCM,data:NYdOEF5xcpw5W/PsA/INRGLQGGvLkAHvm3HYnNgnZMc=,iv:kCec2J5zQmj2SaHAoaNpX4P0ahkQE5HMz0ZrnB7Bk20=,tag:vVc5IOZ6WfK2N+RMbkIrHg==,type:str]",
+						"ENC[AES256_GCM,data:JiDDdITIkwIZiXy0u+uDmvMy,iv:A+8EIAoQfDrStOhnOJ/imGi48yGszg5ZIpqNRRYkeM0=,tag:guKf3g8JLDKZwt0ZVmaU0g==,type:str]",
+						"ENC[AES256_GCM,data:0wbcNBx+nTSISWCSy+HI+qDOazHniecCnCY=,iv:nO00d/E5VkG6htnPTPJAuIrbeWTLq3RlKsoTybRnHNM=,tag:2kdo3RdrxDR/2at7CxAtkg==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:C0ipbh/Pork=,iv:A5SV4OjNOzppAbdQny5nwujoUbXf3SdJjjOl/D7GOlY=,tag:FMUN5tfiZWM3ASmbDgG0/A==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:NQ==,iv:hQVx4ryDF9pf5bYtDtjoUnDptZpZo6MDUdzpvLhs9Yw=,tag:/LWsJZz3flo1zhVGKjQy1A==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:SM/8xKjpTq4=,iv:Ib7UJiu6ZpPvinm5MEDPoQhLRKt6aronLorZWFLDVLg=,tag:1UKCMzr67Scpar3IgObsAg==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:tg==,iv:UcbqVgXhZ52SM8uKkc/3GNRXU6E3oxdtyhgcjO/Tli0=,tag:e52An1fHyjOv2XAkjvc7OA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:KM4f5g9JJwqDy3AQ74Ocqb+p,iv:hKm9turw9Uv1Y/+9wxSB0QaWwIaXSnjoUryRaTPt3Q8=,tag:D9RAWTlSFsVcFQxPrKupjA==,type:str]",
-						"name": "ENC[AES256_GCM,data:NhBvjND1Xy4owLr0wJHrhH6l,iv:6le4sX61sc+Hh/sWMUYVkAIK2ZQ4EeSA++HR59xMe4Y=,tag:hXHKsIMp37oqOciqbXsPEQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:4496PDayywX/WPenXu593zZo,iv:VvdZ8glr97Qkzerku5QNMYjAp8syM2Ibwfw2TEWquXY=,tag:mAoqIgBOCk2DCELRZeUCUw==,type:str]",
+						"name": "ENC[AES256_GCM,data:vlgtz2IG6mv70/AWX2ALp0o0,iv:7Dnc1gNITkqbG/blY/T5ol9P92v9hQEIlQJsjFoAeMw=,tag:1b6EAiSWTzp5dzVkwUm+CQ==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:y/EzPt/Q41t1bvJi8nKZ6Ng/RW2pgRWv+hHZbsGA/osAZjheUDel+tby7wow6+6aMvx/wX7ioRXcqMOsGarvf5Lumy5jU5LXS69y6X7HMOPFTOL4C+95YQssgp5HKFzVDFNC9Cw4JAhMC2zPsiP3uRQ7umqKxz0iDo7jNOVYe7AK+FIb48zPO4d7M1rNm3mFuZ3sqNFHMiksY/pPZUcx3670YDGYRwVjJYza7hMqSc/MlhQokPOvHaZ7bybOEEPgi1T0lKkj4ENTaDyO7ksGV0FDhdXWg4cLOg==,iv:XVw/qcY/iUsXHu88keg2Mw3N17adFLCjeC4X/k2h2FM=,tag:qMBzdizJoWumzOV5rnMSlA==,type:str]"
+						"policy": "ENC[AES256_GCM,data:E7kTMrOpiachwrAZcJ6nkfoab+wTXylLaf6v0kYlUPlocIvShilTyAOt9nJbI2WQj5eAx/WtPRDv/dDSx0y5D6kck1mttNlvTcoXYZxrq98rdJHmpdVed7gg9LDyn/NFu75QVDsDLKkBByyHlT6Rd0sctpA26mX9vmULF6WAK8czR9/aa8q9liiSwlmLAoQwiQcXseaiNI2Cn9ZovU+Zwh2i1YsqwqvUXsY6pe1mefFGY2Sqv9gP4UEqvwtlKHCLHv1e3BPQnV97pfX25GVEgGFyKq76TExFlA==,iv:hU23Q+ngxqZyBwPkjwD8jQSgkduoAjBpij5IGsvWQYU=,tag:ujlrqTLLZ0koT+3zzWoi8w==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:3g==,iv:irWem4S0hJGYmH1n8Ig+yfa2a3GjMAY8rzUexnwQgNA=,tag:BSeN0YJ1WoshTi/zwya0OQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:A+oZ05mDlwY=,iv:yz04gln43QDczaBgZ2Q+Fi9r3Ysnrv1Md6YoWjkVHyY=,tag:4Eq6Sc1KE/RTd+wyV9xLCQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:9Q==,iv:flE0vJM3b7jhQ8J6wvozoS0kgavV3iV312sNnSUmc6w=,tag:Clp+qJJCG0UKQNoamAK1/Q==,type:float]",
+					"private": "ENC[AES256_GCM,data:TQRpTwtgqDU=,iv:hhqxksSivB9KxWJrzOKQclqHDE2baWatl8uTmKFgGgA=,tag:F09FHSt8DKPa4tunOoYSXQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:IvbuFcD/yftzpf7MRR6RAxbHdX1q04FHplkM4xB3GTg=,iv:eMhCXG71iGhCOAK+8iWMmjiB3t5Yi1/+b5iBQ45l/jM=,tag:sbaEVjFaJUkvKdCC+plrrQ==,type:str]",
-						"ENC[AES256_GCM,data:YQTpwX23xm+HsCyfK1/8HOwy,iv:mVUphv0laK4uhE3Xh0Jkm6xVv02E6bDnF6hawRx7u8c=,tag:ctBxctJ4F3EpY3G4qOrl0w==,type:str]",
-						"ENC[AES256_GCM,data:okE9coW6kBcZp5TdVBh7Y1mjKy+QXkQ/tz4=,iv:SKqQaNxHKKahgDW1RyncCsnQ1LT+WSXRoYC1Y7KC4n0=,tag:jQrhN2SZPJiISCBC+Ikl5g==,type:str]"
+						"ENC[AES256_GCM,data:kzrnvvbbXs4Xh7PE04GPZjfsVo/BYBD91f51SdvJMFI=,iv:Yn7/WhuUOSRlSW7MolJ1hMGsyjmq7oEtehRKjHj6yv8=,tag:+U9hHAbX4WnYaBXxbbEk7w==,type:str]",
+						"ENC[AES256_GCM,data:b6vB1gLnd0yWQiBq1NmUPp69,iv:Tqrfrup1BJmwds3hT0N2WcAA+7PrQJhKVseHeO/1KNA=,tag:C4BsUDhFxOzXfD3D9HBkYQ==,type:str]",
+						"ENC[AES256_GCM,data:6lUOtK4QpklftpCd7RdaNO6HLvCDYf5VW/U=,iv:FnMqv7wAS4O+bpVEVSDUO1r6/o2SCSj9s9NO9+qu+Go=,tag:2l7iVBQTM0Q51AY840kqDQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:NfP+3gH0iw==,iv:qZWCaRzNAvEfU0B8ypKrT76w2kR3fZJxM4ZW2mS7gjU=,tag:fm/QpfN9zib9VBrml69b2w==,type:str]",
-			"type": "ENC[AES256_GCM,data:G92QjNFkih9QTvun,iv:mf5wmOa3vBClhbLIk68l5iSPHi0cdmx03zaO+y05A4w=,tag:W4irtYi+r7s1ihD+M37MAw==,type:str]",
-			"name": "ENC[AES256_GCM,data:JEnF9xv6GkEfvjF/cetL,iv:60UZqDFrTIlzmOWpkV+rNtPUs2MObRIFcrQ7X/rP/KY=,tag:HSIhCcv2j726dEou1QjV/w==,type:str]",
-			"provider": "ENC[AES256_GCM,data:EnNCP77SjKakqK77NyLI02uWpjnqW1FtOCzpWGM1C571MD6re2CgeLwDWBo/2tuxfw==,iv:kQ7pYiUETNpoOclZLJfvASFroYp3hshz1y3iJCz/dEk=,tag:wFxjgIRul95LsDc0T29QbA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:HB7DDa3gdw==,iv:fkV5WXw73Hhi3U5BhscxgeVHovF1apihgZGkFeqvx9k=,tag:gLeFRkQlwBiIlp/njxMXfQ==,type:str]",
+			"type": "ENC[AES256_GCM,data:gTX/POmX4oKnH4AA,iv:UZxjfbJpI3nd21PFHfkFTPTjV16S3iYAtSrZQ2kgr4E=,tag:qxfx1/UjGDaQcYpYARWljA==,type:str]",
+			"name": "ENC[AES256_GCM,data:swBZ8BMSm9H/eSf9M7h5,iv:Xr+foNRuN2AZuTfwp2PKN2RstKgu6vSmNsVVbskXTq4=,tag:NpqrHbXgxBN7zjG6CZidKw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:5gd381/Itfzvtuaxai95xMtoH8i/cTDXHcuyxOGx/v8BLTuETomARCQnzZhx6HMOXQ==,iv:ORNgLLiU8i0+5aA6yGkxlxrPP28QrkXGdkvCL9Tej9I=,tag:TWtOJVqh06+cAa50xubRyQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:6A==,iv:pzXc/gzPlo3QFhXgAs+c+K00ZWfnEns6cKHRqG7CyyY=,tag:BzHBtu6iOyktepWqwZ/8rw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:pw==,iv:Kw1Z4xNnMr7hOJZUGtGEcn1l7BoB3jFsUMWRhCfqFDg=,tag:jIuuaS0qDNcpCEhxP1p3QA==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:pkEspp2qRIFh7q9cBG1h,iv:aKw+GHFtoHIWtG/7rrojWHxztYoYgyfH/0rIOgIRDbA=,tag:bflAStAgDFXqGf/ZzqVIEw==,type:str]",
-						"name": "ENC[AES256_GCM,data:veznhsxuHMBrSh57WKyq,iv:O7SrhTBkzpGMBfUkzSNblJWvJPT2pYd2FjoYogenaX8=,tag:FV8DD1wfyIcMDpwGJIKL7Q==,type:str]",
+						"id": "ENC[AES256_GCM,data:XjHSmR7Rc7iNcKinJCQR,iv:AP+HVzk+WJRdSiNjnXUDwcOJjatDnu5kx1Zbcpg70HU=,tag:aPE3S/bbPDfMZlRGEZCUfA==,type:str]",
+						"name": "ENC[AES256_GCM,data:nNAUAAE/DFxq0/dAJxR/,iv:Ua3YcV6EVXlFJJAC81H/2wOSeWuF/ZNM+fr9WGr/B7c=,tag:9ZSxNPWH0MatWmUNwbhirw==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:y/5Miz6S3W8reGOc92P12pyGpEq8vxmKtJf5SNePhlALHRvhohCNTBfK/9mpKz0LvoC+HF4chd5iGTxV73/eP3BjxGDKV18TkvoXB9yc,iv:yFRdUA7vN9IHOL8D6HrVwgXcEo3rvOe8BN24uYR2Hq4=,tag:S+u6dd1NpPhWXBg4Wn/1QA==,type:str]"
+						"policy": "ENC[AES256_GCM,data:p32uEwd9jZVvEpgg4rL3TIALiKk4gUur1NPfc6eUBXRRoF79WYjM8GKu4x0AaYXQxag+Xlua13DMtbUTY0xzzXHGw6glUcZSQ0maDDZ5,iv:TvRPIbQif4tCiN/DHF3/eYgvJWOs+Efxrg+naJKc86s=,tag:fOow3V+oyRGYXPqI3AaWmA==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:cw==,iv:yYVwqw7i7H5pRCThe32iHpa7sLGN0Zgmzd1MtuPprkk=,tag:MDB6kxTph88C0+NbcGIe5A==,type:float]",
-					"private": "ENC[AES256_GCM,data:y3pXgVI0rsk=,iv:6EQ3cqUFGNKkOUv8tsKUL6c4/ooy2mT4fNTMAHZoduw=,tag:v9DysLHBUarDPAVewsNE+g==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:Hg==,iv:dqA8t4yg2LNHDkLcOP8i7aU6jQW4tj2mWDRQ/tYNEbo=,tag:jOyuhyuoXwYUzbJ4MtVFxg==,type:float]",
+					"private": "ENC[AES256_GCM,data:iIgwFngt67M=,iv:OBtq2UiU4o9LahqAE7AHlDysojSRvvcHvywYbCTAsCs=,tag:IAXNL2svhfLePDtK/qY3oA==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:aaWA7Ma1jw==,iv:8wqfRn5M3kErgmT06GG8u4Te+X6K87KieI7xF1IVY80=,tag:pQncoe8jcwutBFuqS+dlaQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:GwKikJoQidG6dW6z,iv:aZnadV7WB2b0Rq+lzSU6kS8lm/WnfIMdKgDZX9jYCng=,tag:HLf6EZsOKfjCbiDro8/Ccw==,type:str]",
-			"name": "ENC[AES256_GCM,data:Uz/4hLVumeGI9eP4r/08,iv:lNyf5HfiJcDeLVDzZXmumJ+pdXlX+scmb1EKmDTodsY=,tag:PtdXWPWNIp+bNNZGR3NfPg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:iM5cgTmK1/GUO1qvD1ZVNBnF0ymzHB5/e1d1PzrdUgF6o/qwVY4y8ojFrtSRqiaLIw==,iv:9IzGJZCxYjChEVraDp+epS6fZx2BNqzwZ7pUty19WQE=,tag:N/ZAWs4pMLdwuG0QkrnGoA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:jH84ZW8KPQ==,iv:6i7ve7HKCuoBFUD3ZDU+/rNZLMyf/fez8yXps1M4cwA=,tag:pRCMPLxp3YEwqc5WOHT2Og==,type:str]",
+			"type": "ENC[AES256_GCM,data:b/m7FdMGsOrY6m9k,iv:9M1S9C3zxaqfwuyWXhLIknNjGVu2o2uetMPSRBOauNI=,tag:6nAoxyOaXyCfyfTzGOTlkg==,type:str]",
+			"name": "ENC[AES256_GCM,data:XJiOFTBVkWp7sc8HqWU4,iv:nYu7LVDT8S4xeL8WU+VKHNPLdM1Lh/gyB1buclb9f9k=,tag:Vfc62OnA7GC7FklGdBiaqQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:xPUTjnyEo4dFAZ+cckTeFIqc3dAHSq/4IqvSbYcZQ5eNXVgEbi2QCSfkDmxGsuF7Zg==,iv:PgubI2XWf35FM+sMhk4eCaUu1u7hyZEh0QwA9VAlvYk=,tag:WaNE1RC4vYeLY7AtkvesEQ==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:jQ==,iv:H/qJJR8WGXaGZi/Ip+Xbge2+TXESVZCJIIiaJ9COCmI=,tag:2EZwyK8yi5GNkJj6vG/LMw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Sg==,iv:2ZQOGsfKsnYTxBYa8fXyd3jA2FakEiwsOpfzW1fJMeA=,tag:21qsLTa3CL90rZ/6JdXjsg==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:h8SSIE9SoCpZlYDKc40H,iv:RwHoUp3ih9YmkZ5d15zoAOCFB7bZr0TggR1h4wrJYjM=,tag:O3gwQo1TEL16WpdYBfyybg==,type:str]",
-						"name": "ENC[AES256_GCM,data:+YmI/rcLN9rqxeWq0pBW,iv:5zDxbMkGAIx1wmtU8EuySWRPtED02TBhMoVKNpXcJW4=,tag:61/4sXgHaeOmqpy+1rbxWQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:EkLph3GiXntCIf4IrlXC,iv:lojeJDsrNgfUoYzzOmnpdDXk41BMhkr2pC5V5SRSf4E=,tag:fAiWQTeylQ5nmOIcKo8uVw==,type:str]",
+						"name": "ENC[AES256_GCM,data:dsHYUnlgbYP0LXiQY7dj,iv:MZOlTlicBUUkp6qVujUooH/Afp/EWcS4DSFRNm14nQY=,tag:5L/98lFIMkozUwB121KW/Q==,type:str]",
 						"namespace": null,
-						"policy": "ENC[AES256_GCM,data:hfZcLtwl5qECXw40WemZvijwn7lP8+zUSC4pqLGSHK6sD8MsXPd9sQFmBEouhC9AAl1LdeloNTOrE+i8n9Y=,iv:7liDZo0ngpon2aoMzx9guprS73TrhvYDrNjAkhz8cO8=,tag:LtUTTEnZ+eqkKs5vLoZNDQ==,type:str]"
+						"policy": "ENC[AES256_GCM,data:l5YgH6Q/TIF7FPfjMe+nBOJaWwfyZMjFzN+zCCKld0gc7e0I0Ha2QnCOP4+k0VCcGQBqbsbztubJ3P79KnM=,iv:6W/5JMc4nZ5Kg7famGGh+ZTFI1tMo7MvhW4QaC4l3x8=,tag:zQryMEzR03wO4q/CyNhHLg==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:/w==,iv:XG0ONBIgoaQoNy2Ret53OcJvP9p//fz6S5Anld3XIs4=,tag:yXQbGqfRCYAjYmc18lkPlQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:UB4xBDphJw0=,iv:XsvqxwxoFItmerIyugMR5ZVJkH8X0t/sutyBVYEOkzU=,tag:n80TuL55it/Mv5mlN0gm2Q==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:jw==,iv:heRYlx1CQ8DGGUgs1OV4ZC6zwC/6gfvI5yXdWpy5Qt4=,tag:Q5YJZd7GhJa7v7mUN7CwPw==,type:float]",
+					"private": "ENC[AES256_GCM,data:0ND16wJK0kE=,iv:C7YWSVTDQwGWpypBbm/R9YlQuyGC1KWYrGDQejwe4zc=,tag:VKbP+ghDB/ci02dtyQ1vCg==,type:str]"
 				}
 			]
 		},
 		{
-			"mode": "ENC[AES256_GCM,data:ZRos0Iz1Tg==,iv:wKvtOfQNsn57y6I8U5LjUkWrwndFn5fpHwvAuVfqdJw=,tag:rTqvTAVfB87O3TMlLKwUDA==,type:str]",
-			"type": "ENC[AES256_GCM,data:ZzFFvpEkmIm572ZLb2tgiKP/PjsGIPR7TSAAraEKlwY=,iv:XzDdLHBvzR29e0KX6lVFCProQLEXyszIVhynQQ67aeo=,tag:wQcS//X2/dPA4bm2GwVQBg==,type:str]",
-			"name": "ENC[AES256_GCM,data:H1fFNxA++wn/TVDNeB8I,iv:CfMsHFXtrwO7L1cOtJAtDQ+lH27BFUxxQmo5cjkxEQI=,tag:+t+HS5RzNssVbQvJNKCERg==,type:str]",
-			"provider": "ENC[AES256_GCM,data:mfodAgXApDRmAntxVtFS0uWgh6OiNt9C8xaGy7kTitR6589QwnS+Lune7PQAy0gAtA==,iv:ZPshMguCIMsfLjm/BTo8TDkK65mpm0Z4RMPuX+ioK6M=,tag:4uKrQog9uaSN8fzValEcHA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:JOzLZXd6Og==,iv:FbBlFS2ZwbhdEBdzz5h53Fe756YL5e/TJYiWkxCWrTA=,tag:QaiMrQRL3KbnH2l5pczhYA==,type:str]",
+			"type": "ENC[AES256_GCM,data:LDFTigVStNn4f969iqMh60zGOnklW2iAql1Pl5xKRt0=,iv:ZExT/yduncZy0nXTPDbssWIAGJkT4WvFO1Lwx+yShxQ=,tag:3t/cyVP3gc5PjPcTsCdxOQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:laTIh0ntlyq1wdEV7GUs,iv:asmQh316MwFOx6ZzvXvJbqMEMRXbA2f1h3LOfOzLVII=,tag:gHTFhwUG5Sl1YN9zPUrkBQ==,type:str]",
+			"provider": "ENC[AES256_GCM,data:lKvdQsSec/bKYny3lrXc/fwAL5V97oFkXXYP3fw8EwyE8OifJ+qVSSdEpgVW1agZXQ==,iv:tflEVuVgm6EA+2V/SNsymR2nNTgh9JD8/jJuyh0P6xI=,tag:i99TRyvTJQm2J0w8zXlU5A==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:rmW8HRo9XueePaFA1A==,iv:c9W+rW3tbUZuGwRbPy/Ad765/KxQ0uF2EhuZ39uGmbs=,tag:RnoShMso4sbWp2wMxcfqrQ==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:BA==,iv:5Dmn12U3mi6+I5osvivN3WdwsSUtfI4fnN8skzjLc1I=,tag:f57hOTduuTXrQFXQmq4ErQ==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:eblBKvazkeZ1bm98MQ==,iv:18OHm9yuDOXS6DuChvTJCTU4t1QTLMsv7RUswz7dA1I=,tag:UHqeQ+RAclLjzyW/DOnR0Q==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:Lw==,iv:vb0ZnVbH5SUibIplC3VWIseowquSVkycEvfvuhUKtIU=,tag:KXwQVGDFGRxL7aF6foRVDA==,type:float]",
 					"attributes": {
-						"allow_plaintext_backup": "ENC[AES256_GCM,data:zbpSjgM=,iv:7i4bx0u0FUzKHJInnYH1/cYVv8xHZph/ZKixTP0TPlY=,tag:Cf+unwKrhnwv298x5bQYqw==,type:bool]",
-						"auto_rotate_period": "ENC[AES256_GCM,data:9Q==,iv:sO6Xh+dC9K8v/f5CYPk+4MY4POL0qejExqzvPTAEEb4=,tag:K1KCoehGwY5K7wvxAASByg==,type:float]",
-						"backend": "ENC[AES256_GCM,data:LSgBfVA3ZQ==,iv:/0hdPcFgq1LCQoWr57bzeGCy7atkxHqDXqeAkUoJzk0=,tag:+UAY62GG6X2pHQmYhRmq4g==,type:str]",
-						"convergent_encryption": "ENC[AES256_GCM,data:4hMOWfA=,iv:4ix5OIelJh8evGI2vtwpZ8CK29ysOLKV0HpK3LixEOI=,tag:euw99QWanhrFMK/js5+9Hw==,type:bool]",
-						"deletion_allowed": "ENC[AES256_GCM,data:tsl8nsU=,iv:2mY7IRoBKNsSy47NwVKAcjRyV9URB/CDx1yBDupqG6I=,tag:54sD/AsuOaFFqzzfpLBybQ==,type:bool]",
-						"derived": "ENC[AES256_GCM,data:kiW4+Ow=,iv:Iwv0bNonox3PdCSbYWjqJg0tj8TLagHSTWwzHOFlYLI=,tag:BRmHRGOCnyIiqcvSgsqhtg==,type:bool]",
-						"exportable": "ENC[AES256_GCM,data:g87Dk1Y=,iv:5zOG72Ce47J1Nna1PIn8+P15IXqm+oYLti/dRO5cr7M=,tag:EFAJvVuxMC+SQPBFSr/vWA==,type:bool]",
+						"allow_plaintext_backup": "ENC[AES256_GCM,data:LuhcIDM=,iv:YjnQZ4ukVYhqk52c6iXei2gfGvSJANnHque+uIZwz/E=,tag:jP18Ewe1fM4koB8mYKKXZA==,type:bool]",
+						"auto_rotate_period": "ENC[AES256_GCM,data:0g==,iv:bknEMmtZnceMWaoyeKqfR1PgQRCU/GNsuf2ZsTANOok=,tag:3iE9Epjt53cvo/k06pJX8g==,type:float]",
+						"backend": "ENC[AES256_GCM,data:Jjlm5xgZvw==,iv:iz51l+kvkyFJZS+shKyFc6FpJGJkd4xuHIEYIumUtxo=,tag:FZO+dnl0/vYpJ42m/f7hiQ==,type:str]",
+						"convergent_encryption": "ENC[AES256_GCM,data:dpvoIi4=,iv:Cs4m9OOPSnuKxpSvSbOvVZJpS89huyQrd1NhNdnBwRs=,tag:wfdYwrIsTPhCAb7TrZk+Lg==,type:bool]",
+						"deletion_allowed": "ENC[AES256_GCM,data:yBFQXRU=,iv:+I6QpOhvitmK5y5/pMYOTqY/Kl5cZT7ws29VDWU3rz8=,tag:XK+XQiusHDjQ8yJqEqRBBA==,type:bool]",
+						"derived": "ENC[AES256_GCM,data:PECLmcA=,iv:ROQTNw150snmaRKSHwDYZU6fdcj2Ay6COJJy9YkQklo=,tag:fYLvmzrgjk7+39h/G3ROgA==,type:bool]",
+						"exportable": "ENC[AES256_GCM,data:ZyQRGLI=,iv:HAqTObbGbVV7GJkb+MFgVJlyEli1ybaBYeCEhYFcHyc=,tag:lgqWU5K8MWVjcZqJGcQvpg==,type:bool]",
 						"hybrid_key_type_ec": null,
 						"hybrid_key_type_pqc": null,
-						"id": "ENC[AES256_GCM,data:3IZsp0PsdAcG6y1QjdPKUG/IYgAx5a7i2p1gmclI1VMlTKJwgA==,iv:DLURUSU5xVX/zzlrZn6NGy1R9cfmYF45c+tZQxg9M+8=,tag:Al8A4kbG4cKblyE+V0WFNw==,type:str]",
+						"id": "ENC[AES256_GCM,data:6Z0nZ1qUtN8e0EFVvC1L9MpfIg7RJcM2frwUXJU2j+X8UHl13A==,iv:zBmUfbzyUX9Fv8yQY89OhJyr5EWMr13lF8DPm3g5zAM=,tag:dsVkUZJcHpihaTAni+oMCw==,type:str]",
 						"key_size": null,
 						"keys": [
 							{
-								"id": "ENC[AES256_GCM,data:Ok7Nl+Jypx3LKA==,iv:gsb2gr7iFzCoilgUsptdNGYrA6BHKPmurrp8fN6tlnA=,tag:yfNdg4jjzVd3ZyGWImt/aA==,type:str]"
+								"id": "ENC[AES256_GCM,data:/YMSK/7xoTLzsQ==,iv:xJAHFMuYbGGPJhIjTtkeOfAhOuufwgs2+feznOk+RjY=,tag:4iyWRa5jlpHHzo5jI/IBeA==,type:str]"
 							}
 						],
-						"latest_version": "ENC[AES256_GCM,data:ZA==,iv:7d4MtSgOhtcAQ/hVAhCmTZKaPNjqRIo+Ilp1J0uGCIo=,tag:n5jP5w7WoCdgVujdpE2rtw==,type:float]",
-						"min_available_version": "ENC[AES256_GCM,data:Og==,iv:3GxIMZQceLDX7MGpijZOaudFMTCCu0wq0+PztkIyjo0=,tag:m0GDNphCgKK2SMinVGiUOA==,type:float]",
-						"min_decryption_version": "ENC[AES256_GCM,data:1g==,iv:DRu6daE2w66XP25RVCEb3e82cMFiuZwYoslOePrjylM=,tag:vYcYK//3HUEHUDz/Lvg0EA==,type:float]",
-						"min_encryption_version": "ENC[AES256_GCM,data:2A==,iv:Y/QjQ+REwbeGkuXm4sknjOE0kvVjkthyjaOCOfI3gNE=,tag:ZeuzpoljasLfAuRUSAimiw==,type:float]",
-						"name": "ENC[AES256_GCM,data:8h+MQz2XMWxcEi6x7WEJvCRkDaC6nVk3,iv:9XgExdIIMpGHhiQXcFuTMSTclSvaALfo875htU0leuU=,tag:sP04lBBZ26zIBMivvU+wPg==,type:str]",
+						"latest_version": "ENC[AES256_GCM,data:Vw==,iv:ups5WxQIsH5yG4+sI+fLrS7rKbVS4ZSXdLshhnCC3dc=,tag:0EXS0c9UOm/m+JE7xPTGmw==,type:float]",
+						"min_available_version": "ENC[AES256_GCM,data:+A==,iv:tKIju8AvJsLgr9Zzv6v4bUwPas4EQgpWjZb2kXkYINw=,tag:mRsZT3MtZJxBlG1zuECo2A==,type:float]",
+						"min_decryption_version": "ENC[AES256_GCM,data:HQ==,iv:Z7BHPtq7Vt7jQ5lLmu5aCB9dRb8UGdLD6b8biYV0cmo=,tag:/mIECrUoRXynW8Ktie/4Cw==,type:float]",
+						"min_encryption_version": "ENC[AES256_GCM,data:Vw==,iv:BymuiJTGWNf1lshVEo+Bi/oKeLuwvUgOZvD1SZsuhUY=,tag:T5sbRFFwsU5iSUTrezEoCQ==,type:float]",
+						"name": "ENC[AES256_GCM,data:YahdsLY86IXYKtFpYiR6XIrOVKYdYqkJ,iv:IppC5EMD6ZajosdOfjOLPlIw0JsSI4LIE/+TpTCeabw=,tag:qNa/+5cvQ7d+MlFch+O6+w==,type:str]",
 						"namespace": null,
 						"parameter_set": null,
-						"supports_decryption": "ENC[AES256_GCM,data:QJf0Mg==,iv:qORF3w922N1s22XnAbLABXEfDLUYd2mux+26+y7hNic=,tag:BWeCvbrzKWbZO0NWsXxWLw==,type:bool]",
-						"supports_derivation": "ENC[AES256_GCM,data:IcgTKg==,iv:dEPOFwr0CuqLyrgh0LzGp2or6uu9hue6pB8Uo3gcrUA=,tag:IPxNNQ2wrTCa62+26DJKbA==,type:bool]",
-						"supports_encryption": "ENC[AES256_GCM,data:52+ToA==,iv:OkrGtGFd/vYmGFp0n71V6QZhpL/ZExXgdx2QLlrZ+cs=,tag:/yU7pntFb5xj4dSm/ZzM/g==,type:bool]",
-						"supports_signing": "ENC[AES256_GCM,data:xFY3EGg=,iv:NXYKKj8Me96a1w/k+J/cN1FgdUG8HnGJvCHAvkhvYVw=,tag:Q2eSeL3qoPgug775Hds3qg==,type:bool]",
-						"type": "ENC[AES256_GCM,data:W2F3bQIutVvCWomN,iv:B6gWtQRW45jbs4GvNnH5AwJ8PM+9tZ6d7TdRaHRz7uY=,tag:Te3Q4sDV/NrEEcOyME9EPg==,type:str]"
+						"supports_decryption": "ENC[AES256_GCM,data:O0079Q==,iv:Q8uiWMTIEGv0orsB+CRdNTsoThz24eXi6lbZdtLn8uo=,tag:FjQdEDQh7qc70bn2mpmt2Q==,type:bool]",
+						"supports_derivation": "ENC[AES256_GCM,data:5fJYeA==,iv:b/pPotonJrHyDAr1zCEq3vbM6hfFGOyris8s+cjPNHU=,tag:/i+4/GaR9wEHh7RPpMoybg==,type:bool]",
+						"supports_encryption": "ENC[AES256_GCM,data:5XmjVw==,iv:zVNoruhHuT0Ymw+pNjLUXC1PFnDJeKdcodFZrJevAWs=,tag:1tnCOmRry3PCHIWbnwMYWA==,type:bool]",
+						"supports_signing": "ENC[AES256_GCM,data:ZC/hL2o=,iv:zBYIMu7RskfL7/wwnk57yzKgilxzcBV3OGLnl1MUPhw=,tag:lbL2M2TkKngx0gQbXx1JAQ==,type:bool]",
+						"type": "ENC[AES256_GCM,data:wxCPpj2zDr28PDGH,iv:kZjs5VsiGOnPfdUfZUkJEo0Dps4FE+QvlpttaBq7W9Y=,tag:UUW39GdYPtFueOcDcDMtKQ==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:DA==,iv:8a+Bo8OcvhAZjeHLNWWN7StbDIZcTS82nrM/hsrqmZY=,tag:cWEsasWbEOyoHEGizzEi4g==,type:float]",
-					"private": "ENC[AES256_GCM,data:6D/IjrMkIHUnp9M1SkaE6xv04bsvXOGa7TlfiQWyucg=,iv:dY2CZgMD+O6kuza1+dYfcmYf7pl3xvyu2VypZYNI5mo=,tag:Lw4A40B7YvoCbl3sSbCuGA==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:Ew==,iv:jSfmFVGDj3DxH8ue9KGoOYbqrI6hEDx/8lG0UZpE8e8=,tag:cXyfeVQdn4J5zuvfNW4SzA==,type:float]",
+					"private": "ENC[AES256_GCM,data:uvMdeM76Gv6yBNd23VZ4RGc3BE4C18AEG07a+CP7hnI=,iv:XKb8YpZJRrZfJ8FLwtzKhGhWmgNQYA9CvmjqnrPDgvw=,tag:rn1eqmhg+P/6y/umAPv/Gg==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:1kvfH/l96ZrRj52w6z0QEcZwVeDvZVFx+ilquVFH0OQ=,iv:qBX7wLLU3Y331dcdhIDENxZDWVE6X0MggoX9V0phoMg=,tag:T8AKgJK/ILdZMIAHBbYvMg==,type:str]",
-						"ENC[AES256_GCM,data:VyegJtpRnLr1sWeXqsfvVV0h,iv:M/sEJotvWZ2x84zANFIg0Us93ddNhegYoEx+viWYLGE=,tag:+aDpDerJrsLVd2NNWyxBLg==,type:str]",
-						"ENC[AES256_GCM,data:vuOogXgJi8grmrHagkq2RaR8bY8jFtNPG08=,iv:x862QzbuKkJPDsjugude5c9sE3OTxFcka/BJYJuBoSY=,tag:6HaYh2t7terpYQFFypMhDw==,type:str]",
-						"ENC[AES256_GCM,data:xxwi5RgkctEE6hD3KoKx2MvIXg==,iv:nTzt8K9RRt8+E+ezcAidB2iwEG9fTIF0lIU15jO6MKw=,tag:DJEOlzRf+SwbBLRh+dZcvw==,type:str]"
+						"ENC[AES256_GCM,data:bQWU1DViBplj22LmNL3G+z8Xhrq3UoGHmNS11hLLPJA=,iv:afjLQxrIJhGffuLNvIGsyEAOWKR8lm3ZnUTUBGQ/nf4=,tag:ycgFYrvsllTFDnUHz1NsaQ==,type:str]",
+						"ENC[AES256_GCM,data:7kU5rlTWmq7HwvWzZciMGpRN,iv:nSV5Dy7DiItt2thxXRlUIj/tagmLibO+LshVXt0Db1w=,tag:DebEM/Afi2ldtG4vmR/CPQ==,type:str]",
+						"ENC[AES256_GCM,data:TY4lAaa9xderNNwtNMq+v8N2AIOfv1YakKI=,iv:NqfNbfHjyo1ov7X90/wfdMacsfHEtT2HBbtGmNpKnlQ=,tag:lVuNkzElo5nFgbm/nn3W/A==,type:str]",
+						"ENC[AES256_GCM,data:g9nEkRzCzskSjQTHH0hnad2WfA==,iv:VWdFUp8eGxmduf2uSFo+CBgxDatXKo079WrO2N6CQ54=,tag:yXUAGjb5xs8OEutlzkqM+w==,type:str]"
 					]
 				},
 				{
-					"index_key": "ENC[AES256_GCM,data:PqmElr2IoCo=,iv:/RLAvom2Gu5i1eSVjFAeFFfsZ3rDKffmJPAO0cJlCBY=,tag:KxH82m02wXGw63acIoRq8g==,type:str]",
-					"schema_version": "ENC[AES256_GCM,data:Wg==,iv:couJcS6PVhD2nV19+5SrH6XCXQrs858CHTGcf9GYY7o=,tag:5y75hhfuOUbBhtDoyotr6w==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:VR6sTCpuZdE=,iv:+kgCRreOWim5mzyi/Hf/xlgOeBLXQEiVzxaMyPjjsjk=,tag:NC20i4T9rp0432hFHpX/Jg==,type:str]",
+					"schema_version": "ENC[AES256_GCM,data:SQ==,iv:spB61Xzq+md/iKwD2p7KK5kcSooGT66/Jlo8b/KduZQ=,tag:hKskgZoZBdyrJZzGO5151Q==,type:float]",
 					"attributes": {
-						"allow_plaintext_backup": "ENC[AES256_GCM,data:qRyiKfM=,iv:S8m2F7tFjsLlnjSYlXSAosN06z8ZLerD4jryFMpFh2g=,tag:oOV/XpSMn4498JVnCAz6Nw==,type:bool]",
-						"auto_rotate_period": "ENC[AES256_GCM,data:uQ==,iv:YxbO+YemfFBZ+sNA2/QivAjmtgIlyEn0BlvF6P9qqDo=,tag:BHQkFmP2+ripYofgA3bvCw==,type:float]",
-						"backend": "ENC[AES256_GCM,data:NKmbgpWvnA==,iv:yllD5/nCmuuLE1Uf0wBGxt3BKi0WNbCJTWMFR5F5RjY=,tag:Qpw+QpsmPJqi/fiD9i61Yg==,type:str]",
-						"convergent_encryption": "ENC[AES256_GCM,data:M2XcKEw=,iv:M2CPkx1HSEx2/YyxqC7o+v32im9Y2T/SHDd+TViSSxk=,tag:rsAk93Sr/6RxDXeH8ClMpg==,type:bool]",
-						"deletion_allowed": "ENC[AES256_GCM,data:8bPNmBg=,iv:gyLv1zOKpXca7bV+4WnNaZ0bvGiIJPDxePlB4DY3DgY=,tag:6cUB3AZdNHN/q0ukUiF+uA==,type:bool]",
-						"derived": "ENC[AES256_GCM,data:iHpPI2s=,iv:xlcWqzTu3sQp6biqRxeARp0gOibvEvXJQQb5d+48VlI=,tag:NP7VbExaNEbhM8RjHyIr1g==,type:bool]",
-						"exportable": "ENC[AES256_GCM,data:NqaFFc0=,iv:lBOtWLepKKytW322l2f1AzkfwDINf9VmTIiXaq3CwXQ=,tag:QB2CCLmwlDylQ5/E/UKKcg==,type:bool]",
+						"allow_plaintext_backup": "ENC[AES256_GCM,data:/jSr6D0=,iv:bjrwP4m2emJYk+LbXsTDVJqQJo2L8h7uNJb+9ue57e8=,tag:XKInCKEgBdARMlITnNX2gg==,type:bool]",
+						"auto_rotate_period": "ENC[AES256_GCM,data:Ag==,iv:kdYU/cYRS0lc3WEQd/PqxHHMzR99tdl/TP2QpDz54AA=,tag:AflsdhSknSNF65AlUoD+4g==,type:float]",
+						"backend": "ENC[AES256_GCM,data:rNu6sqe6jg==,iv:c13vhFT9T3wv/FHjLnG9BULd6s7L82PT7Y1NVw985c0=,tag:RSOYy6VfPIKpghg1Qx3eZg==,type:str]",
+						"convergent_encryption": "ENC[AES256_GCM,data:D4dV2Ps=,iv:SRD9nfqo8JT/1kErfV9cXR1Ydy1NmSYmnFFaqDrn2zY=,tag:XpnnMr9+4FNUck3A4rBe/g==,type:bool]",
+						"deletion_allowed": "ENC[AES256_GCM,data:Xxcc34M=,iv:Dlq2lwjClAQWZPhbqk0K9G8rEMVlGP46i7Dr5MqIK5U=,tag:1iHbkdGzAy3TYxS4aLOBeA==,type:bool]",
+						"derived": "ENC[AES256_GCM,data:M8cvnE0=,iv:OcA15SolRTKC396QoB4DuSvq2l46UC7Hv7WxDlD2m8s=,tag:kGpS0+LdCXRtbfrz2zN2BQ==,type:bool]",
+						"exportable": "ENC[AES256_GCM,data:Cj4m5Bs=,iv:CuhQMh17mjI0/gHswXJmiX2kcUJaggkyNsSb6S4pRd0=,tag:CtYriphr51nw+2sNYRtpXg==,type:bool]",
 						"hybrid_key_type_ec": null,
 						"hybrid_key_type_pqc": null,
-						"id": "ENC[AES256_GCM,data:6lfu73ti6TefC+UwCCZDfNb/Eb25AnWYYJPHwMLDOhY=,iv:islKi+mIsoXHKqjKfVlyZ9Xj2gzVFLZ3U0a0Ik5rAqs=,tag:YgsCi/X96wNFys41xl0QAQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:X1+flLIbS2FgX9gyZSc1TxkbQavYanRGbG4KCPmCUhQ=,iv:ClJ74rG2aPblUlrQ50pOTLhPi5z6/D7Fb2yOiqSgnmo=,tag:defEqdoLHaEegTSErXDPDg==,type:str]",
 						"key_size": null,
 						"keys": [
 							{
-								"id": "ENC[AES256_GCM,data:ieFeDoKdn1yMZw==,iv:cUOa4pD8Bmtqe75pbiZGlCJvqoJ84ipL/2WmsgTaT58=,tag:3zRl2xKM33vvExhRTPycGQ==,type:str]"
+								"id": "ENC[AES256_GCM,data:iCVvSwwGYdeeUQ==,iv:wiahWRfKw6/yCC9FjNQVgVZNk1odYinGQ9FiOx66pZQ=,tag:QiVifyZdIFIOhu5z7OGQiw==,type:str]"
 							}
 						],
-						"latest_version": "ENC[AES256_GCM,data:aA==,iv:TsGl+pI5x3oQ6HtuDdFE6nVFSO0fr0LP4nb4BkoxuoI=,tag:L6tmahHy7uucoaGVYL1oLg==,type:float]",
-						"min_available_version": "ENC[AES256_GCM,data:cA==,iv:legIYpYIzgFfHEPctekL8hrFb5BnixNGHICgPVCVYXM=,tag:o48jIOSkmZk+iLOmEkG1zg==,type:float]",
-						"min_decryption_version": "ENC[AES256_GCM,data:7w==,iv:0hYkx6JYvTXXC/EPjPJs3zSwr8yLrq5diGA3tzipL2k=,tag:OpzAmCvyErvIgxzsMKblsw==,type:float]",
-						"min_encryption_version": "ENC[AES256_GCM,data:Yw==,iv:K3ryTvK36Lv2D+NfXcnkujCVtaqHxm84nUWvc+riXyE=,tag:jCBZQ889wn4QFWClnwq7nQ==,type:float]",
-						"name": "ENC[AES256_GCM,data:hAVuUdxBtKuCW0Qvru5M+xDVeQ==,iv:9jyvVWIHJpYrgG4VMiCoSj4OP4aGWwHOiDhIvpHZ0SY=,tag:QSYRh6SC4eEGY+5lJ/VK/w==,type:str]",
+						"latest_version": "ENC[AES256_GCM,data:lw==,iv:B4sKO6DXUOiqdTaYMnCce2ILV/TbGrNs+OQeqbvgaa0=,tag:SDLxbCktO6pSmgnJA4f3Wg==,type:float]",
+						"min_available_version": "ENC[AES256_GCM,data:HQ==,iv:B90YWqrAdYWO7ShtwMm61NDdPpF08UpXu72SrGu8AU0=,tag:xFcfVxkOnxansgYuf0ijvg==,type:float]",
+						"min_decryption_version": "ENC[AES256_GCM,data:9A==,iv:yIB6SSRaDzZpGZ3K+GqZaOB4SiNKdxfBLG8vwlXPHGI=,tag:rvVS8YS/Ss6iB8CVmxK0VQ==,type:float]",
+						"min_encryption_version": "ENC[AES256_GCM,data:cA==,iv:o26hynHjB5DW6PiTahbFvFhlGhXNOh/sr8Kmti3wBUE=,tag:aZd9pdwnTDcI3PBZLc//eg==,type:float]",
+						"name": "ENC[AES256_GCM,data:GdlxVTByaarln/xahRH9X31DFQ==,iv:++vHM7C4MjneL+lKxdLftEmVsnfagkl8nSdgZTrxopU=,tag:op/9GwS4ATb4dAZZv2dRiw==,type:str]",
 						"namespace": null,
 						"parameter_set": null,
-						"supports_decryption": "ENC[AES256_GCM,data:oqh6gQ==,iv:A9dVIrgBMTLQ280T2Oia7cUN01jlDeQ2qB8a8yOw3fY=,tag:+HBYD8BQMI54AFMwZl93PA==,type:bool]",
-						"supports_derivation": "ENC[AES256_GCM,data:FblYwA==,iv:vliejnnmd6Oz4xOf9jCe6XXAh3PaFUDziRYBN/JXa0o=,tag:nw82Tjtu69LP8ZmEzwctcQ==,type:bool]",
-						"supports_encryption": "ENC[AES256_GCM,data:H/7sTA==,iv:v+u7OKQu9vrog1Ut7cXrTuvrTzpU+yaSfxD8QWRd51U=,tag:JzVX4xSFBev8jrpvoIbZ/g==,type:bool]",
-						"supports_signing": "ENC[AES256_GCM,data:N0xGvRo=,iv:U/RD9aBpnnOZTPDG2DY3+BnOCSPIlrxziMtuRIzVpFo=,tag:VQh/FGEO5l+YIYdRuVEVxw==,type:bool]",
-						"type": "ENC[AES256_GCM,data:anxUDK7XKutURAlO,iv:A+BTAyMi15L1UHgLqxDAW3CdM90/uebUg+uW5vAw8cQ=,tag:sXbgPG9AV8dGLuQfUoSU6Q==,type:str]"
+						"supports_decryption": "ENC[AES256_GCM,data:8MpJuA==,iv:gv7MPm+ozBl8ptyi3ZXZKyVKlzNgG03Y1Ct0iUg3gO0=,tag:dGW/TBbWIxh9IW5DB5aL7Q==,type:bool]",
+						"supports_derivation": "ENC[AES256_GCM,data:FVk9mw==,iv:/+8Bd7wXe5MtjH1oQKwPw8IpysRUurL9sKPiOhs8Zg4=,tag:6gOl4D7ubzjwfqzyT0M4tw==,type:bool]",
+						"supports_encryption": "ENC[AES256_GCM,data:uen/2A==,iv:NRTzZUvF8BiU1UyP0BUQ1mr+Q0wETU0OqjDIZBRBNBI=,tag:DuG6veIZJwiavVL61HRxMA==,type:bool]",
+						"supports_signing": "ENC[AES256_GCM,data:edHQIx0=,iv:E+TBlu1PvE3FAMy/LV4DoTDqzgZGbnxn8i2MgqgJ4C4=,tag:j+kwJxw/zlP9/o26lL9S7g==,type:bool]",
+						"type": "ENC[AES256_GCM,data:rl69DSEy6uSEjL4v,iv:mb95iYCjeLve7WRZsj1YXVsQAInECH5UueEQkzF7BMg=,tag:xofHqNrJ9RWO0JaAZtBgDQ==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:rA==,iv:GzTSVsPIvHiLEzMoSKIc6tI/JscLLM/gC0Df3Ne/z4c=,tag:CwHSMXPk8s+t1YSQBTZvwQ==,type:float]",
-					"private": "ENC[AES256_GCM,data:B516eSGudlZf5ov6lwZ1d86qVCgAMew1EqjFefGjAdc=,iv:87Er0ebtjh1p5ZJhbVyrmEp2rHMR4kn2GjzEy4YB0kk=,tag:OHY2yZc6B+SMCdkoVIa2iQ==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:qw==,iv:GW1mm7Ptgp5KbiT8mUwGqM3j4V0VcKO+lHj0b9lmeX4=,tag:fhDTmGpuuyxmeAU4qfJHjw==,type:float]",
+					"private": "ENC[AES256_GCM,data:VQFDz4bCEiI3dVYYcG2GUayRKU0BCjvWUUkqojN00Ls=,iv:GV6QZ1UAN+Tkh2/ZhnWyy1xkYEEZYkNGePD15QdTvnE=,tag:OaJkEdIMvgobt9FsRpNGmA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:UmunExjWS6mW1XiWtxOg6SBlRFUISvHjLvc2BKWxGC0=,iv:23YdCfNTJwGMzOUmzam75pEK+fmN8gT1ap48uR0kvd4=,tag:rE/tpJ2k4Abe5tPEk/9nrg==,type:str]",
-						"ENC[AES256_GCM,data:i38Bq0VmYaouuxHvl5XAoMzO,iv:vh0dsFElWKmP1dSurTD9cbOqdnQXEBepZxT5H0NTnfE=,tag:kVyQllnn4uwsl5lRk8jNnw==,type:str]",
-						"ENC[AES256_GCM,data:ipYuSWv6WcgXidFaG+PEXjvX+RiGc8NkKxc=,iv:xaoVkrYfonp5V8qvg1bcMKgKnP8MT7tYvKPnPmnpmbo=,tag:3l4ndrAEp1gkekyh9mveGQ==,type:str]",
-						"ENC[AES256_GCM,data:98goRP8Qtko8ALhJwo+dI8xVJg==,iv:p5S58mgHhHMNuPztX13qdp5ggv0upM2+AYvaLgxEOc4=,tag:Rltsu4chhCwdiyR2Czg4aw==,type:str]"
+						"ENC[AES256_GCM,data:QFZrzAW/+0UeaZaph7Qspn8ZZ14aRykkak+k0Yk83Gs=,iv:IirEwOAHldaCjN6pe2JqErHdNSykUMy7WrTJXOwXpqs=,tag:OuZUOSgRBATnSq5p6wcsTw==,type:str]",
+						"ENC[AES256_GCM,data:q5SeG2wCjvGywyLQRsGQBRwn,iv:nZCWD+TOzEqO40xJn3tYoJoMFK92jpAxMK4nRYugiP8=,tag:p90GHpAdID9ZBcGcPD71jA==,type:str]",
+						"ENC[AES256_GCM,data:3mskxbskSj/ZgZRXTTub3F2a25PT0Tb/YKY=,iv:gdEtUbGxcnSb4SHVqLiII/hIrgF0bICflG5afZe6vP4=,tag:MlgfrmcuyUstPIe8LZRMJw==,type:str]",
+						"ENC[AES256_GCM,data:67xjDSqS2IxV6RhV+GX/pQeHDw==,iv:oXluZQsr1XNXP44aj/lHC8/UyLW73WF33XyNO+2obHQ=,tag:HTMlG1TkoxCWD37ZHRsYmw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:3/4BDyVQlLQ8j5K7V90=,iv:+lvZ9Bf+L4vvgoMN9And/leGyv1Pi9k5g7x4KizIKOw=,tag:w0FbuC+RMwa8r/Y1ZJM3SQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:QDUAZvkhGg==,iv:0POtqGqQe2aKA9Jd2ANxhseL48JDiPTX+EaoMp7j95Q=,tag:UlqVxtffT95pJZu2Y+QlJA==,type:str]",
-			"type": "ENC[AES256_GCM,data:qUZTPDn6bfHCpRodgrmTaTA=,iv:N9qhQCQmcYSnmRWYgkbyJb6+zCQdMA7GJtTcZyKjLpU=,tag:Gcg3reaRZTNGu5hXoJoUVQ==,type:str]",
-			"name": "ENC[AES256_GCM,data:QLr2XdydGw==,iv:yVkOdAPCllmdsmZ6TQdbNByadB2oNxHXXA46A7iW868=,tag:p082+fPBsyr364ONuFraZQ==,type:str]",
-			"provider": "ENC[AES256_GCM,data:yMRq3cDJVXxNzXIumz7QA9E3zyr1KtoHQivd6zgWsjfJN2mgybLEiFJ9m+VyDjkEmoqDeI0mZg==,iv:lSbbx3+S7iqJ6xVpccWpzkf7gfd+aFg0ojY7pDhV4mk=,tag:gPqUwb5NvUoXKIln2LVXcg==,type:str]",
+			"module": "ENC[AES256_GCM,data:s4N8Clc0fZRjbg9kpXU=,iv:Gb7qgCiWPr+Fuct+2P+I7ttPms9nKRwJfd7ii5WYKTw=,tag:0XTCHaBbuLcprVkn54xmQA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:oIP7ScpCMQ==,iv:VJHt+7Ayvs3Ps6gf8XnrHuvsRWIXvCK2WullPcw+2vQ=,tag:qKPlZt74RDgdmxh5XfR5MA==,type:str]",
+			"type": "ENC[AES256_GCM,data:NGH3i39k3xOoing3z3wI6hg=,iv:Jr4xPTEAFUI3CLgz9GVB+zvwvDFpWCzF7/2ljPlUJSI=,tag:GPdwPPIYBsld9p3WSZJYAQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:5EGo9vBmMA==,iv:vQe8WooMj9Adk+LSMF7MXcjE1iEqu3ABHGG2Rx9VStQ=,tag:GXyJ7SKP4T9vJgwt9JVr7w==,type:str]",
+			"provider": "ENC[AES256_GCM,data:r/tuD1XMMY4D7MKK4dTyhyYcKXVFznLp+9bxs9vew65M0Xrm60M+jKxoz8igyJ0KExHeH4Zqgw==,iv:xGjq5pN9O4WZiEtkWCSeYTuo9eTVtSvEsTMg+begYTc=,tag:AzZPvPPbTA6iUMSt6hLxRw==,type:str]",
 			"instances": [
 				{
-					"index_key": "ENC[AES256_GCM,data:aQ==,iv:lWbxAbKQUtEfsfkvAvwkIjWc3HhUDhZJxplsbGM4guo=,tag:rNIBSVf+wr/+/6rNWMay1A==,type:float]",
-					"schema_version": "ENC[AES256_GCM,data:Fw==,iv:xPSBxRI8Yf8u4jeSNCfGZvime7V9hxtwNWydz65A2Z8=,tag:Ov83CD3GHqQz5cEE/w4RRw==,type:float]",
+					"index_key": "ENC[AES256_GCM,data:eQ==,iv:/eeAs9kAmBYkiT2JT9pSfKDUsL94XvOTp4FDvUy6cBI=,tag:1sLbm4U8o5x/x+dGZqRzuw==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:GQ==,iv:o51ergx7JObxax4qiyUqqooG+ugx13kH0mR7WV7yGV0=,tag:mf/bKYbJ0kdLx5K0YEiP1g==,type:float]",
 					"attributes": {
-						"allow_overwrite": "ENC[AES256_GCM,data:zuHqDw==,iv:ejNopHDIw0/WuJE7B5jIG6DI1mDGNgwRehEwm/SwZ7Y=,tag:ZicJ1wYJPBJ3YrxpCqtYUA==,type:bool]",
+						"allow_overwrite": "ENC[AES256_GCM,data:jWUlQQ==,iv:hOybxy6pgl4f10ZmFLmitYSMu/YXpdSCLkm0mmSYAIU=,tag:V/7M3GDaYhI0ANwX1+foEw==,type:bool]",
 						"comment": "",
-						"content": "ENC[AES256_GCM,data:OShpIlknTYllydA8kJkueqIhYBT+dMZUwwRg2HKrkLMaRT0yB8KkvzSU+FY7mmc6KCETiAw=,iv:g6pUpDIlhArsYjvedNuT8ZKwwt8hr1328I6PxXgKjiA=,tag:m/3ob+yKFcgd4tbAheuBPQ==,type:str]",
-						"created_on": "ENC[AES256_GCM,data:sLb4h4PUlTxxtprBAvGiGg0UvrAu/LyXD+Kq,iv:oBXrpRg6XcPgzEyNoIFjt0BHo9udODroCHcq6uHc8vI=,tag:X5hjIgTkYKWPnnAHhXv4/w==,type:str]",
+						"content": "ENC[AES256_GCM,data:n49MoeWStezZ153LWxnpO03ADfeyi6pou3CLfytSum8FJ7vAe1bNW5h4cEdEeKxN1v1TlZ8=,iv:E6f7VzL3nZgZ5nGLPyBDj/TknlzZlcZtzD0PcmwnJJs=,tag:c78IWgQmTnFQ7bkd9/jpOw==,type:str]",
+						"created_on": "ENC[AES256_GCM,data:8BTQP+MpBIdaxeBkunLrOJUS6iBb0CO3UKKA,iv:sl0t5kwP5ncFSqzKWabYedCMZEee7ls01IJZfVCm5FA=,tag:0kUcAYezHLtB4kDr7spLmQ==,type:str]",
 						"data": [],
-						"hostname": "ENC[AES256_GCM,data:X1dxqH+WwyBUDnXJCQn4BmhinRIn,iv:Lk/zrD7McSYEPZBsiHLTSp1qiY3+WVPANbPe8tgd7Y0=,tag:6Q6i1sTTBmxh2rdX6dJ35Q==,type:str]",
-						"id": "ENC[AES256_GCM,data:gZQwjTEs23iCr/D1n43wI0jW/Q1h4E1eCR7E0rV/iJQ=,iv:aY2xJWAmDqp9TXWH3xrvMFdtd/JwG2P72hVZn4QJ3cg=,tag:ctDoF3bDMd5q1xSzWEJg6A==,type:str]",
+						"hostname": "ENC[AES256_GCM,data:hAgk/HgrMGeI69otV/jX3xWAT1/+,iv:uIHW0pnwtZX62wHEByqCiS1F15V3pkos1+OFKpBNtVI=,tag:8sl+EC0yz5aYZVuxkftPmQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:cJ/RSk8e1HS1zMAiKhCxHypI9JlNyOasnz9rgQrUqrI=,iv:bJTIMaCCHVYkSE9EfTRV/ciOE6sWuKzwkOBl1DxN2aU=,tag:7DKMOn+93+AesYZHgr8tZg==,type:str]",
 						"metadata": {},
-						"modified_on": "ENC[AES256_GCM,data:tXmqRQ9lF43E2Z4yxQ24LykfyBzC7rS/nusp,iv:nMrv2cmSdpIP3KbkIXMpJx9Ijr6AystGnGXIWpNFxZ8=,tag:KpNfe77VMq8BBQbb7mUSZg==,type:str]",
-						"name": "ENC[AES256_GCM,data:tDLBPv8=,iv:EJZOzoO9pfSELrmWVVmB9jq51DtdMVdyNUY8RxWF6xg=,tag:4z/pfXSk6lWamOu1etGNbg==,type:str]",
+						"modified_on": "ENC[AES256_GCM,data:quFjqcJq2AhcZEv2a6B/0uKJ5rHMnvPgwE2z,iv:qopdQE3T8kPzFQ/ip75hfSHh1XEPZOnlSgiCX1TsRlg=,tag:5jqwckpv+v6igenn2tTYTw==,type:str]",
+						"name": "ENC[AES256_GCM,data:36pYMQk=,iv:s0W1rPnHp45EUq+HO495H3l4ok+sEm/M8LS2xTBpFC0=,tag:kIQs0ZM43uaHWKbka2ZjIw==,type:str]",
 						"priority": null,
-						"proxiable": "ENC[AES256_GCM,data:h3rSYw==,iv:UdHhfedrWYMUn9hmf5zTKKAN0uOTGUgp32HJqFU3t1g=,tag:P8EZa99vmstf2Wh4H9qaAA==,type:bool]",
-						"proxied": "ENC[AES256_GCM,data:+nOKPQ==,iv:/HQNgITlfa65avPqbK1zqdb5fU3CsMjOYkxrdQynHKo=,tag:p06Q4701G4KuraCzPPz3sQ==,type:bool]",
+						"proxiable": "ENC[AES256_GCM,data:p6xn7w==,iv:B5MpysKSHDYOhsIvQH6oCTVJADGxWdNUEcfuIkDplWc=,tag:yur/UaE8dMyUS55WnUhMmQ==,type:bool]",
+						"proxied": "ENC[AES256_GCM,data:uIgOFg==,iv:vIHb7G2DXUT2akoN8NZBz/loFNHyFLde7ThuEg//cCk=,tag:VPBDukgLSTgfPxtoVIP5iQ==,type:bool]",
 						"tags": [],
 						"timeouts": null,
-						"ttl": "ENC[AES256_GCM,data:8Q==,iv:25nS1Bnlnkt1Al02yOEKmL55NuvpltXsf2gNtq1Xx9A=,tag:jZGQD4dcg1+MoLD1IcjJwQ==,type:float]",
-						"type": "ENC[AES256_GCM,data:ZTDbnWo=,iv:kRW+pH74nIVOjaLACYAIissojI2+UxK5XKLCZkCAB6I=,tag:GhQYpU41KDHWtwEg1SRWUw==,type:str]",
+						"ttl": "ENC[AES256_GCM,data:zA==,iv:8STsuUMMsBcnxVinKP7rfIOP3Mg8Gaft7L99Sq8WSQQ=,tag:ctK+9pBidlLwWHTuGogCcw==,type:float]",
+						"type": "ENC[AES256_GCM,data:VghMrfU=,iv:9xJ3/9qmC/One+isZQqn2EVELfDT+bZKTrvKFuN8zuQ=,tag:w7OrIIT5r6DqldFV7FGxzA==,type:str]",
 						"value": null,
-						"zone_id": "ENC[AES256_GCM,data:shoAQNWhJ2P10i74TCm7IY1MSlO0SAB5h78jOskIehA=,iv:qCpZF2Z2qU2YwGM8MVRVEPsQCFtiO4eUf1btDOPKDlw=,tag:QEz6+54C5Z/dfcEkdRy/4A==,type:str]"
+						"zone_id": "ENC[AES256_GCM,data:HOL6yNS4J7ErnnwShASpML6lH8btiSrRgevmP/lfT/c=,iv:N5fg7VS5nwOV/OmOwOjyIXqq73PmTlrou3Det7opGmI=,tag:6YD5Ir7HESUaUCaZtQMKgQ==,type:str]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:wg==,iv:ze7ssdRA5KkG+sARTZz3oPqiKiJmsmepB/RCXNsmJnQ=,tag:uDs8gtlbECl0ApfobcxkAw==,type:float]",
-					"private": "ENC[AES256_GCM,data:LZPRMWCP60h332500h5JDU767xu1m9c8/GSPX/URNxFAy7sWDa3KYVMHbWDwPlTvaKmLCFdo1HxYaRATO+NcPCdQW8LUC93+jxPw1e2V9qvBJgj9W++X5tPPjHeGSX80jUiCiblJDlabNGBExKbU4dg5n8GcNFjmbp4I2GtCnf595cWk/gtD21O1JNk=,iv:B0++Vk0ZPJs1fH3fCtMbWVYl8sZsqbMWaNlhiT9slIc=,tag:bvyaiC4zAiYvDLCyMYCyfw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:fQ==,iv:fuJrqs46//tJM+fnnDppKl8bY6xDGMqrwLFBHgD7YjY=,tag:68kYgZdt6mHwbzEaN47Nrg==,type:float]",
+					"private": "ENC[AES256_GCM,data:gBAcBKxL85+FVbJUFd2bqsEtoebMW4OohshdztJMaSq7SItA9pnT1lIDhrPRsfSFtxMLV0O9NfpJUZQ2UQSXqHKxrScMMl9mVHDxmf8aeeGY9i4she162yUQ63P0UZhXy0mNRreao1fhOcPMRHwdb2ThxissTqyhlL+ZnkyyQkbA5Z7SDL6MeQEaYkU=,iv:p46lafxIr0S9Bcm+ca7hcd9zzfj9kJClIRJotIdg7SM=,tag:gVb/IYU3xbIqWylEXaLFQA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:lsFleFXo0YM5Rz3fBOMejMan8GV27xDuP5D9aTcZrW1mbXY=,iv:Np1u7mhxJztUu/nBxa2FvdGRQczaTy1GienJ+Mqwuq0=,tag:00AByDgKFDHFZJujqwWpEw==,type:str]"
+						"ENC[AES256_GCM,data:q0Rw9TOCqPNvBvqLqgYRAYuy7ALVLHO8y9nE7i3MUOnv1d8=,iv:513CZIAbWreqhVX1fWRQyk3Q1HDMJG88UTjQQpRSDvg=,tag:6GcTIct4WUGFYTaE39TVrQ==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:0N02q1ldKFy4w3OnIj0=,iv:6yPqN2J3Kfwuw3ATjCQFxDDXDbdK9ywzaRmpmWFEKhA=,tag:YvY0rCP4dhuUwxHliUkTxw==,type:str]",
-			"mode": "ENC[AES256_GCM,data:lzCMiuk0OQ==,iv:14iM6FsN1nzAFNAHmJEajo673E20NHmqeig26lQ1KNo=,tag:tRK2rNnPvCp7uRg2imzmXA==,type:str]",
-			"type": "ENC[AES256_GCM,data:6O08VIi+0i+IuHT4QnqzzjfqTC7Y,iv:ib70iF9SMeNy2e5q2fkVv2wh8PHk49CfXsGI4LLPsPs=,tag:WWzROvLNahT3ZfoOeBfJuA==,type:str]",
-			"name": "ENC[AES256_GCM,data:rl7R6+36Pc0IJlIy5eYz,iv:cfaINY/elU8xg66Qmj8quiUhebtzcoRq3J8wQwMQJi4=,tag:9gw/L2flYS2CINxWdhSYyw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:fhJ8ERrS0iYFW0PRJwyYxfVgEl+oZoo/wzg68XJUWu6MPck4Ca+EhmFj/5VXiSdVZ+O1dBrS,iv:M33SIMwJvOeUjC7J2VM3A6iJWCjdxLYzByjxBe5kSqY=,tag:EqcId7c9tO5Y+yvxxMCvPA==,type:str]",
+			"module": "ENC[AES256_GCM,data:K1XLQWfEw2w5eEgrDDY=,iv:2cGUPOGSDcBUfMltM5kTZMSMDlyS9HI5D7BN/ZWUKHQ=,tag:Go3XtDnfgyDyj6es6vfaFA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:GEN6IPssjw==,iv:JrEQErSxmcZyO827L38hBQjpXtk9bzNtYKeW5XF8gr8=,tag:DI7gcNL2r6/OzRbsNGIkkA==,type:str]",
+			"type": "ENC[AES256_GCM,data:+C1r1dlko9S1a371SRk/QBBigcT1,iv:RC7AH1C9xAMgG/fJGyH6cjVCMcOaNnoq2v3pLxhcpWo=,tag:8p4JvPY0y4YAwv94RKCoSQ==,type:str]",
+			"name": "ENC[AES256_GCM,data:IQHA2mK3r7e/JohZYO3Z,iv:Z2RoEn7vD6GYeH1G30t2KvH/ic85wlnKLFqCu50Ve7M=,tag:bCNwN9LFVuZcsAIec89Y2A==,type:str]",
+			"provider": "ENC[AES256_GCM,data:DlAM3KV0WCRt2kQg0OnsiTlu9MCiRIF7EkevFpLtutjaX5NyAQu3pBQsfT62KT/rhoNDHUwC,iv:d4KeXsPlDdCTepfNlD2k2ydE0zjXoIs7kUJKalHpzsU=,tag:/llnHDcu4h5mqaLVCMx57w==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:9g==,iv:MCd1K2Y8wvFk8+oGkmtpIuFxX5RRWuO/CbOiRnOgEMk=,tag:fPVlW58PRTDY0UqXNbU7lA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:YQ==,iv:IQbaN4cpvZ8MT93PRLiRoPQ/9RVHwkfd03wMxtWSqDw=,tag:0VB8MQPWMEbrRQu4FhiuFw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:9ueQTwJlCZJ15Tg=,iv:VAoyQWP7uT7dwx+f4TmjbWj2FNuuGwqozhJL5pmdtjE=,tag:YXZ6/Hg5BpEPMNEXCvKCaQ==,type:str]",
+						"id": "ENC[AES256_GCM,data:OzJDgXMQFqAFWF4=,iv:7gXEttCE7MftYS5A+bD5+ncr/NvSpSWflOjYFALIt5s=,tag:peKnG8KvFTOTY1mFENZQLA==,type:str]",
 						"metadata": [
 							{
 								"annotations": {
-									"cloudflare.viktorbarzin.me/dns-type": "ENC[AES256_GCM,data:IWGj+/3BoA==,iv:0mkq7E3LIUWok4t2+Iy9c7xjUVM6Udg2xGw6B4tu+q0=,tag:as/UzLyh5gv+gVMbcZiQLw==,type:str]",
-									"gethomepage.dev/description": "ENC[AES256_GCM,data:A4gQGxhVjxLnDwJ2i3I+dyZVo4n/2kPq1ifbuAiiD+hK7WZp,iv:BR1om/UDnO+5Ep7nZKpGB61d6ub60qfwI9WaYnBdfeY=,tag:B2RMtFfLUW7IU2p3abjlfw==,type:str]",
-									"gethomepage.dev/enabled": "ENC[AES256_GCM,data:jXWOMQ==,iv:7XPMacdHFQnIGNrj4VEWs71cGa1/DvIzKlL4rSL34Fc=,tag:F0oigPYjoQShE6WYGlX78w==,type:str]",
-									"gethomepage.dev/group": "ENC[AES256_GCM,data:O0MaRQktl3Lw8Uudyw==,iv:oPzi0SADzuc2HwqQgBCyWCHpZw7tYjrCbse/Xi9Jnzk=,tag:VmIiZwiykS7S+AavIeOhJw==,type:str]",
-									"gethomepage.dev/href": "ENC[AES256_GCM,data:PDxRju5hJZXD0u7xAd4/LvcGv379SpO8AwNT3gU=,iv:kuy2bi60+aSdpmGLROtHHCzf0b3Bf1PbY+X3xWFJCK0=,tag:1R6hTQ74/p5KDiiFUmW+IA==,type:str]",
-									"gethomepage.dev/icon": "ENC[AES256_GCM,data:IOzGBi0foG3p,iv:j+4JGOs8CfqOH5z33bKMbU+17fCsXP9/WQkn0zCtzmc=,tag:LgnLfOe17XozhD16+OtfcA==,type:str]",
-									"gethomepage.dev/name": "ENC[AES256_GCM,data:TjiUJkg=,iv:xOljCvte8JtJyTnZxbvfyQ2t+9h8/o1fTAJNnFBiKqY=,tag:TxtquAaRF+BaaZybGZ7WOw==,type:str]",
+									"cloudflare.viktorbarzin.me/dns-type": "ENC[AES256_GCM,data:0f9PlohdtQ==,iv:OORCrCHF2DMF9XD+8pExi4EnFpyfTNJHgaRshM4gtO4=,tag:xw1JZimuknyE5EtUlsrHeg==,type:str]",
+									"gethomepage.dev/description": "ENC[AES256_GCM,data:io/bteTw63GwA+bfy9Zi1UAU4HgGBMDZW1KYTuoLZ1orYatd,iv:PWUz0zC4rnsKm/keSylhmZGhZW5wFk+RdV7mFQBf0uU=,tag:5p6FE/SM5uth9KLRSeq2/g==,type:str]",
+									"gethomepage.dev/enabled": "ENC[AES256_GCM,data:uVQuFg==,iv:8lxVelrOCFXk4QLUySjoO+sCTDNlHveLOvDWBC0KIjg=,tag:9E2sWFyRmJgzvchGvPXYQg==,type:str]",
+									"gethomepage.dev/group": "ENC[AES256_GCM,data:6jtwf2uwbsgv9QngCg==,iv:F94SNSDaEyTf4O/aZx1mdAmSpf8HzDyAQ9ffTWvLOnI=,tag:OyzFt3ilM/hYtpDUSxPNdA==,type:str]",
+									"gethomepage.dev/href": "ENC[AES256_GCM,data:2yxyYfx38q3QvIGITjSaaMEakHLbSUCXKFUlE/E=,iv:XJWCxdK5httFuyVae6uZFmBafOBbRnlTHxgZSqyle5w=,tag:tfE8gGbamQyXWlf8a5kWGg==,type:str]",
+									"gethomepage.dev/icon": "ENC[AES256_GCM,data:MeLOQ0azzwzH,iv:6WNXNnB7sQ6sL22AObGoqkA+86TvaEzhi3MKKxfwxdA=,tag:DNb9VHGvpGWzq5pUp00XFw==,type:str]",
+									"gethomepage.dev/name": "ENC[AES256_GCM,data:KmVWF/8=,iv:zU57ZCqTyGbjo7E7C7zaNegQfTOQlv6FvISvThP23q4=,tag:KRz0BRVZoEXjAnQcD5Eklg==,type:str]",
 									"gethomepage.dev/pod-selector": "",
-									"traefik.ingress.kubernetes.io/router.entrypoints": "ENC[AES256_GCM,data:lEDUT/MDoH6T,iv:8PA9JY2Dka2Huy9ixAJaeUzj7zzAEf3C724t7XPMgoI=,tag:DV6rlGtiPoKDo2+FpXLJfA==,type:str]",
-									"traefik.ingress.kubernetes.io/router.middlewares": "ENC[AES256_GCM,data:YUiA+sxYIZsK/BVJg5DC30lgUb2eBqh/FUJBHSP1y4OcyelpTUah5/N5hXBxEPALXs0wbJQSebMprzqS6p4jw1Oz5iNdEERAHOCqbaeykHW8yORhId2YC6YScdiOXNDvjKCcHNiV0Q/YLQNODLB9thgy/sPeEka2oZsfangH1mRyadamC/+dCkn+TL2A1o7VJHJSaRvqxwywsTdA92LHYABfjqkZPfvlh9xjghVOlsKJd4DyNVbybwRNTJsZrOy34I5Fd3ugrP/Se2uX1kOiK1aRoAUs0fQnRDgzKx3ebizyMGH90NLHMg==,iv:zvTIRywW3GaxvNrPyhIluFwvM8HiPswtyTo7FnQ7120=,tag:0SsdPdDL2lKBJxuaSyq/0w==,type:str]",
-									"uptime.viktorbarzin.me/external-monitor": "ENC[AES256_GCM,data:4FAEmQ==,iv:QNBqTbh6hgiciVBMJa0iVHgKa49T7ZecThh54choMGQ=,tag:C34CtNYV0trh1PC4/dfxSg==,type:str]"
+									"traefik.ingress.kubernetes.io/router.entrypoints": "ENC[AES256_GCM,data:pxPmrM485Sjc,iv:O0/VeytePxAGqUovscFYk7XwNRP0B4XnVPaO54Y3pWE=,tag:q2sGUtGyKpT9VNPzsV5Mow==,type:str]",
+									"traefik.ingress.kubernetes.io/router.middlewares": "ENC[AES256_GCM,data:PG2XAO529sT62/xP0o17rghdO/M6OFkaCgL9LCZNxM7ZPj/n+6TYEFXBM0tgIYxJTiBP6OXDR77iab1KFCnaobJ6ZJmtRKnjevs7kuj2+owYeVrrJG7FMMi7X0R/q0WZrrPLxgHG/dEFxm5W9W6WXItXyUCurEigJ+8OeBZBUtzcCBM8QI8+6FYup6wNYCSZ4WP/ZG1txLpNZ+cfuU1cp7H/pvOf/bgH7kOpRPD69bWUaCiPNEpApj82w8ATUzazx7QUAfJ9HAmSsgyrHzS200vtbpu+MkJdNSfweRJcE/f3aYCTS6uQrQ==,iv:1Nqk32AlmihaDxyOFx7iW6pG0OZvqvKFZAKGvA4mT8Q=,tag:TQjn3ZvmWeiBtYPs+j+/gg==,type:str]",
+									"uptime.viktorbarzin.me/external-monitor": "ENC[AES256_GCM,data:tn/aIQ==,iv:yedsfZ0f7xopkMrPKy5rkI9skQ23R76zPTmLlmYx2pY=,tag:Fh4JhtmNQ9DbARyTfMnhbw==,type:str]"
 								},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:Ow==,iv:UJlKAEkXVSNL/Sn21S5nReCKI81DvEuPcLD52i5sgUs=,tag:Zj4vX4S7tARHVvYOtl75yQ==,type:float]",
+								"generation": "ENC[AES256_GCM,data:Iw==,iv:8hqn/zPPzl247pLsUZS8pV9rwnluvfJgvVeoXHv42Lw=,tag:eiqguauHO2pxpxIQqvDy2Q==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:42ae7sM=,iv:aedoph5ABtJne58VL9Xcm4Fm1+yuw50sAi2wmLZCAIM=,tag:bL5z5dCiSJPBtbKonX4rug==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:n5UFZdc=,iv:MXRKObdLYRqyEIPGACvTjPaaaDRzc+FkFiyEZ6y6Ad0=,tag:IcFXjxGxurTcIjQXpmeqvg==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:XsWaTe6gq0wk,iv:o1xPg9PjVqTXxdmPBYXTrJXUQQrmqaiyibh7jc/LC7o=,tag:/5WSb8Dt+cdD1yD6WvqWTQ==,type:str]",
-								"uid": "ENC[AES256_GCM,data:iwi2EK2TLnGlhPSDhPl5WY/CUOjK1oBs8cpM2Wi7McrI4nZ1,iv:nnFtSBCTqXZuic6tjXib8lU3V6waTNFG7XM5gbdVKJQ=,tag:O4DiKgMyIAUONMTnaTDAuA==,type:str]"
+								"name": "ENC[AES256_GCM,data:DlvOEnY=,iv:mk/MCezQX6J8WaONFFQWxrgcNf79RL0PFeJs0vkBJm8=,tag:0p5CI4XlsF8NBZHmhqiaXQ==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:PeiQlaM=,iv:yz5Ks/HvCOhHdU9WXHnCb75MEuiputVTAn92fr1SEnQ=,tag:Hwc0aJn9f+j+Dpnoe52S8A==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:MSP2KUNi/mXe,iv:ko4fBx5ZTSdV1Mp3Du8l2h99lWStXOXHD3X25mnxFLk=,tag:G/Z/K6dcvi3KneqlH7d9Hw==,type:str]",
+								"uid": "ENC[AES256_GCM,data:dwzwklAqA1vzuVFltEwg5m1Vh0F0MZT9eBvDqSPSyr1wxMau,iv:QwXBBjT+DTpxVaPKWZiIe9v4ky5rNlEkEUwL7XudAcs=,tag:LONEPtMBekiYu8q36Nixrg==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"default_backend": [],
-								"ingress_class_name": "ENC[AES256_GCM,data:Pr8GfD5smg==,iv:jlUjK1ePHmTCObrQgXx75Liux+zyfVdQ3KzqHwPbiDE=,tag:2zOWl7KR9CgyDcIU/zKWyg==,type:str]",
+								"ingress_class_name": "ENC[AES256_GCM,data:lXUbQNshLg==,iv:gKk0f6ktysmcYdw2q/9/leQQC7ol3XyQhFYVgVtn9kQ=,tag:aqX8Yczp+4MT7nY1yB8OlQ==,type:str]",
 								"rule": [
 									{
-										"host": "ENC[AES256_GCM,data:LHjhvWqxGFllf2vdOYNXcrJ/y1I1,iv:jZ5Bh6OpkJUVbtwspkVCsi3nT2dBxI3NNGm4Etg/0/Q=,tag:IOG+JlCxj7p1h/TY12ElEQ==,type:str]",
+										"host": "ENC[AES256_GCM,data:VWKd9zCbTddwaYbSb7Z7U7rST8vO,iv:n8OmVRVcxUj+Vei1Wpyjbek+YW2yIohM/K8OwDak11s=,tag:YIq2jZZoWA7vIQC6UljgTg==,type:str]",
 										"http": [
 											{
 												"path": [
@@ -3646,19 +3507,19 @@
 																"resource": [],
 																"service": [
 																	{
-																		"name": "ENC[AES256_GCM,data:HCsqewfEUyycYAJe,iv:ANM6x5c5K0lJlcO7pLytCylXdBFnBg4jUnGTfrT1ido=,tag:IfCajTjxXK4w94uGsZdEiA==,type:str]",
+																		"name": "ENC[AES256_GCM,data:/0Q8bxCFoXULqCM/,iv:AULA5K/sVkzJKyhRjutnaTV1vsNT5jYR63xSUDKniv4=,tag:wyaNBq1tLXQSEuoHhiKGig==,type:str]",
 																		"port": [
 																			{
 																				"name": "",
-																				"number": "ENC[AES256_GCM,data:ErUwqw==,iv:UnOF05G44zCVfysyQ//cC8AiRCH8LqG7uC9UH1hE0p0=,tag:+WMpf1o8zPFDw/cqqmbVhQ==,type:float]"
+																				"number": "ENC[AES256_GCM,data:vfxFxw==,iv:OnDrrh9/hurSGTlbDDH5UaWHSg5IBw/WGTVrDsso3so=,tag:bFHTSsLZSoRwVxXsWnq+wA==,type:float]"
 																			}
 																		]
 																	}
 																]
 															}
 														],
-														"path": "ENC[AES256_GCM,data:GA==,iv:UDfzl5yiTHtIFSy22aABZSaMnnU7VWEb+1JRLkoB54Y=,tag:/d4Em+2Qhi03hk6XukhmMw==,type:str]",
-														"path_type": "ENC[AES256_GCM,data:o0Ykyq3lfpexZdn30sWpIPhLiFJfkQ==,iv:ixv45vyKe8jb+PZmjAmC6p0q43iS6FDeEcszoimuAfg=,tag:8bFiRTYAkOKgHWJG44Ubwg==,type:str]"
+														"path": "ENC[AES256_GCM,data:EQ==,iv:/xwKa/kWi9q3Ajj6GVV9Agn/ZMfkBzaNTQojLXfD4qc=,tag:3wIk9mOXNM5LCWHYxxqjcQ==,type:str]",
+														"path_type": "ENC[AES256_GCM,data:AYExj1M7qc5uQjtQn98HJRs5R3xD4Q==,iv:NhYUZqISb/gupf7vUkvtnmJiieMHTCzKLU1Ab8+qUow=,tag:cYan5HJoDEnpCFeFMQ2qaw==,type:str]"
 													}
 												]
 											}
@@ -3668,9 +3529,9 @@
 								"tls": [
 									{
 										"hosts": [
-											"ENC[AES256_GCM,data:CweD4N0wb4r7RUd0naa5T6/f3dEP,iv:jRYBcy3FNP4iwsl8xT04A9ygsrDSpb2K71FwBRRyFB4=,tag:6KGv+NtI1meLPdekNhk2gw==,type:str]"
+											"ENC[AES256_GCM,data:DKkcTmSr2k5Y9I75s/o4hFnDeAVZ,iv:guyC2tbCDSXyMVqDcCNSwRXBQwcsWpIUKvcEgCEaraI=,tag:xO4uNkUC/Slv4OP9QcL7DA==,type:str]"
 										],
-										"secret_name": "ENC[AES256_GCM,data:Cdc3GWfnhMbqYg==,iv:eOMbQe5OEzuVq9dRhzkPu7bEBvDR4aaJ88f4Kc3O/0U=,tag:MJSbtQOAFww8M4STBfsOiA==,type:str]"
+										"secret_name": "ENC[AES256_GCM,data:6UWtrVhsYx6xpw==,iv:+w/es5cSdzRZCqGlyk8zSYdbqn1Ie+W6IxTbVUvec2I=,tag:ZOytXNAtbuqD7lz027nLTw==,type:str]"
 									}
 								]
 							}
@@ -3682,7 +3543,7 @@
 										"ingress": [
 											{
 												"hostname": "",
-												"ip": "ENC[AES256_GCM,data:7TNtygxKl/qWvrc=,iv:4YfsdBcz7oPOhtMqbl0WovMzpo119BdvUdqm0lUOGq4=,tag:o6HrJUVXRc+FbOiwlR+m6A==,type:str]"
+												"ip": "ENC[AES256_GCM,data:psjFKtrvdbWiBgg=,iv:wvoKSuOE7ZhPS6WQ/utGrM8wZ3jtxDjHqsuFILkgiyc=,tag:8+Lx0wTOjNlIBJF3Y/CTLg==,type:str]"
 											}
 										]
 									}
@@ -3695,189 +3556,173 @@
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:/FgHXZkhvSQ=,iv:VQ0nnzPGf7buv0injOsmIr2LyNWeag1lTSx0q4IaZso=,tag:5JbJjSD5QNYblNbKHUA7Tg==,type:str]",
-								"value": "ENC[AES256_GCM,data:EQi2LA==,iv:NFO2VkI2ZHcdIBLnFsys0G+EW9JaYbJmW8Z01GT7AVI=,tag:EKDoX7rSA85GRpXSlaT4WQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:Yhw4bmUboGU=,iv:l5azHWyW7AxysFBtBInxJzgCjOZcohR5C/ODNuQQ7Rc=,tag:d+AZBM+npa9XMMqYiI/ZSw==,type:str]",
+								"value": "ENC[AES256_GCM,data:osgGrw==,iv:0XGZiQYz9kb2TFaRg+OVWn74e2T0dyryY9n1jYgnwAg=,tag:tFY9Mz0Ysg5qbfRRKBa5QA==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:2hhiiM0=,iv:BJd4GcLOpEoXTFiF96vhe49CYGi8X1xNia2EkztbYAc=,tag:Q1HHI9L2G+uKTx//dBYxLQ==,type:str]",
+								"type": "ENC[AES256_GCM,data:cMUjid8=,iv:uLz5Hlgiym/34JcriSxej9PC5OYj9wx/GIyHvNy0d4M=,tag:/u3FQNJm0uYFfNpG9sKalg==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:Rw==,iv:I5R1wWCuFlnCqvjScSG2zIheLcgFtz0Mj1IzU0sLD8Q=,tag:Q3eg8TYifWNUNhn5/LxZjQ==,type:float]",
-									"type": "ENC[AES256_GCM,data:4JiDq2Sv,iv:JdgW9o635xCvCueNLw1uCYH6Md3+3s3b/V0bNjAt7nE=,tag:YMyYc+Lym1zhIbo9xjfLQQ==,type:str]"
+									"value": "ENC[AES256_GCM,data:Yg==,iv:B+q3bOq/5lQI5ZNhN0hadZFtEhh4D07HZ4GOHeUU2IU=,tag:rkRQr9tTteo4r33JTIm84w==,type:float]",
+									"type": "ENC[AES256_GCM,data:M6mFo2+u,iv:mDBSOTaiVTnlOTGcymBIf78DS4fO0WJJ6YSbD21H85Y=,tag:GYjnan7FmvPtHyUNBfePLw==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:BmZau96+EWM=,iv:pNDkoTcrQWA13TLywI6eplhgmR6cfusyqvUjSWGC/C8=,tag:crjWUHRyz/Gw2g3WHB9cRw==,type:str]",
-								"value": "ENC[AES256_GCM,data:tJas,iv:0300xCS/fHHMi6EDjPyBL65jdgBrduzExwWNmVBiDVc=,tag:KiAkjiN8qn0OCxn8PRi4qw==,type:str]"
+								"type": "ENC[AES256_GCM,data://nL3A1Kbf4=,iv:tX51V7f3YVHPmIygj1y2OyyR7vFpOqP406cpSQVhs20=,tag:8pskxPb+vc6/2jmv1gRsXQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:ZXP6,iv:t8c1GG1miioWMtLigin6okfnJ6H/sA3W0gX0bGF2so0=,tag:dGs9wuKYIPCt6hA29uruqg==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:G0Hf4cA=,iv:LP3hLmW2zzgZ/zcScrIVMNxCMjq54KVRnobpoG1IunI=,tag:BmFuLML3uWshdH0kpOlLVg==,type:str]",
+								"type": "ENC[AES256_GCM,data:88KSGwE=,iv:oSIoG4igqUZjkeP2bWJ9MW8VZuIDz1rKdYkk35kxY/4=,tag:He1JfHfQ1X0d4qyh8NylLA==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:iQ==,iv:DFtKg6w/VmppMIJk0ayK/k+4+OasgclLHH0McTwZ3L4=,tag:W0VAmipdtZ3lf7XPGq2wYQ==,type:float]",
-									"type": "ENC[AES256_GCM,data:6qynbBga,iv:Mp+nEm6Q/cAWcEB2TRg2XF/tIedbaV1yUdiYx4KJVg0=,tag:VlRZVRSTZPWyPxNe3BYPFw==,type:str]"
+									"value": "ENC[AES256_GCM,data:cA==,iv:S83UMQcSCTpv4QjxVVzEtyXRQeK43PanJCAXmKPvL04=,tag:XFX6A8yL16v/BSZDYYvIvw==,type:float]",
+									"type": "ENC[AES256_GCM,data:uz0Y1LWW,iv:q3cM4UAXDU4y0sSJc290V7xDl7MgRcsmLU8St/FdNas=,tag:y1DVBbG30dqdvkcXGjg4fw==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:IY3pebMK9fQ=,iv:tlVeOT2bKbqjmBP/u8niOnOOVYLC0qvAG4a1YSfsrr4=,tag:Np31wDIQte0jjV3Xl/enSQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:F0mO08cwcZIk09Y=,iv:gP5mQLqH73GpwfDSwsp3GF8zL05ZZhjP4AhJC5bnP90=,tag:QGpSu1AUFT68MuXXStCM9g==,type:str]"
+								"type": "ENC[AES256_GCM,data:yuhkZ2mHOt4=,iv:9f3vjbURUJHUvL/Jrd/5O6k+mX85Au70fZykhIuYSDw=,tag:nyGa8k2L+YspZrZ7RoGBuA==,type:str]",
+								"value": "ENC[AES256_GCM,data:nDQddej8sfIov3w=,iv:V6/nYVfEKxsLR0wOnogrbtMdMzyV4+z7HUmXbxxA6Ss=,tag:Xz7FRYbrSHR15lbAeW3P4g==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:0Q==,iv:+Oq117gbxdBq+EhlSD8VjFh/KhG8p3bN7OQwLeNq6iM=,tag:/VjGyqzLAp8EwvuQwFTrSg==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:gQ==,iv:NuQS4101+YzO42RQU/PzKlR91oSVka9MjzEiTGLRcEg=,tag:XSaxBYHGYHKwSbTM8Iw2SA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:yiXGcUMHIK+ALqEmC8U87hzZTS8=,iv:xNiqtUKUjuB1jsHvp6Ra/6Nn97slvjIOlcvdWF6OZdc=,tag:5hya3k1zm6xZGxJEGKJHog==,type:str]",
-						"kind": "ENC[AES256_GCM,data:YN3o6zZ7HA==,iv:8orwSuXj3+aBySyvEx2nDMTMRWaWeBcneEswNRXJfjg=,tag:5/QLx7HiD8C3Rd0Vsu0wOQ==,type:str]",
-						"name": "ENC[AES256_GCM,data:+xHQe1I=,iv:S6YCzRA58Mlp4EgIZ/BIzTMOWrSaYngiAK65TX/sJAs=,tag:YDJFGzfCNhGXHYblbgmmRQ==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:YuJ0Cms=,iv:w5aOhtKMakEO0N8W+XLCkXM7uXAJzyourFy/oQRRbC4=,tag:d0L7/Bk4gcagodMaG3IFeQ==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:0d4lXQ/JN1l/Xj8FkC7AfFRFXKk=,iv:Lt1R8yYC7lyvTZO0dUfYKU1mb4tMaOu+Poxe8RffGxQ=,tag:jt5zja9zMu4IHrWABsCCqg==,type:str]",
+						"kind": "ENC[AES256_GCM,data:EdA678UA9g==,iv:Aw1awS9LJH/QIhL4iYDuWFRM+gNs6B1e5G/VJFuwKRM=,tag:Xo86jYmfZiRG0yxlls/HGQ==,type:str]",
+						"name": "ENC[AES256_GCM,data:cGHdpKQ=,iv:EJaNS5fb2hhEWUDg/h+ZVOjTfhVX6I+JYmR/FXGtFL0=,tag:SuYHpFul40sikpb67N6wFQ==,type:str]",
+						"namespace": "ENC[AES256_GCM,data:ZNl6UC4=,iv:fV+TesxmJ7BjYRUhe2R1VbPp2kFz+X022KUtnwQvhzc=,tag:akEf37H3xI62ZhpqSGt53g==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:zdDcC0OwZscsyz63vFGlXNzObYoKWdaV9MhH0LVTrRESTeYTtW03DGQnjShjGIUF3/5cWG4waictUxa3C6KpwhEgojBuDzuJSvoP+DlOIkTL2rZjYfw5T+HUv2yGmF8EZI0PYCLnOvJCalY4K4IlxtujOTL0u1sr,iv:cW7KMnNaTw5I2NIbZhm9bigCDYnJfYGlUOIeh59i6Po=,tag:61j/os1uuXAK1Rp/Mf/x4g==,type:str]",
+					"private": "ENC[AES256_GCM,data:qedPzzcHtaenZFrCkzJpUQRuU2yGSh/8+7IlluwoAqM6TPIc9GZ30YHJHrgWTdjeORzWJGSgiKgW6nbXbn+KuQGDthWD33+RWAlHvVEPHcwzGrL7hDqApMt9DriX12+L/a4k8X5jMt/7BCm1LKLyptNy3KxFuKNc,iv:ufzn8Yv0xBvlUL6CV7KqSB27Iai2kiQusqXhIECinyM=,tag:AabrcyoqvgP+Fm675nPWMQ==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:pn0uXkLCmHWcY6mosxLtjWym8pY3OYOpaE0=,iv:nLumLN/8g8rgidN3l9X7M0n4rbXDQwT3kQfT3dza7yc=,tag:xmygzCJPg2h9X/hAh8TuOg==,type:str]"
+						"ENC[AES256_GCM,data:L7W4Q+5lMNqh9xb5lam1rLD29DJAonwxnOk=,iv:EhG2ulRv8kJBXdiUTPs6VAKwmW7SoHaYpvTHiuL3VvQ=,tag:6y4WoIPAkCnmw4+YfpzHbg==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:WhJunHPWUsvc15WdKTXrSa8=,iv:yjKIdWkDYzW3iPs8FXQ2+hpiziHne+TQSP01+PFG/tA=,tag:L/y13upcCTO4Kkh+sB4/lQ==,type:str]",
-			"mode": "ENC[AES256_GCM,data:KmQVNVOOxg==,iv:p9HXHyKS1QbQ1/HyIva1Em5/V70XFxfmwYJnwe731jc=,tag:TV4a+2eykUEcvKiC4PlPHQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:RYUt/EyvN96y6GtnuvOf1a8=,iv:Q+BS7iVvuvL+PwrXnHVNFbqQIkkUnTGU30ZtoldamGU=,tag:12xBX+6M/Uae6829jVHVOg==,type:str]",
-			"name": "ENC[AES256_GCM,data:Xv71shXCVO+iJA==,iv:CYlKgyZk2exWKhoFnZFf2+H84CglMd92LD6Uuw+bSZY=,tag:Vq8i+ApiL4FVWrbdNodHFw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:jr3H04W+vZ2uOVpvG5spOWSzZ3akzfHOQHQSDZJheQ0fxXdgSsXV46KiHPiBwi+KOJ4hEhfg,iv:2LFRN6qqt07F+gdn1/rhUTK6vdpDECDVATFXZ0wqiYQ=,tag:J8JmOHX8A3fxRqJx1gDycg==,type:str]",
+			"module": "ENC[AES256_GCM,data:jcU3VpsSq3L7ay0R+oNh+Yc=,iv:VJwIho0EqmR5/kSFdjrNGLhK1/AzysAjwLn+3jaAj1k=,tag:DRCEPjv2/VOodxZFP2V1dg==,type:str]",
+			"mode": "ENC[AES256_GCM,data:miA3nysdyg==,iv:u3matdDdWheWYczOubWTxm6KpHFuPPsPpbs3VtMNq8U=,tag:e6qkH4liLMEjuFVLlM9Xfw==,type:str]",
+			"type": "ENC[AES256_GCM,data:FfhY4rpb/2wLN5F3NbjJJ3c=,iv:xQrXRndjgm9IilGKEyr+dNmHTKRvBO5maylKXWpTJyw=,tag:WJzbaUrvHl2Rs3uB/UxRcA==,type:str]",
+			"name": "ENC[AES256_GCM,data:MvSQQs3MM5rPNg==,iv:nj1i/PYHFBLlAi9GOvDnHzEwYB4sh0ygv+mT62da1O0=,tag:wCsKv7cHObf26sd3IaI/5Q==,type:str]",
+			"provider": "ENC[AES256_GCM,data:eExA5tzOMGOgv7kvLYMnqGs4rdtBt7Xn9KLKDoEYyj08uJmGCLdL2zBWcF47cZYDKJ9ulXNl,iv:UlxdyJlC8Z32jHMsVmWdHsYOnMau4+9Umy6G0ESCiGc=,tag:E6CA8ejMfU+/puiY5VzE7A==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:ww==,iv:fpL2+SfFdQW9VDz4U4uGMN+mbaNMgj0UALC3oLlE/pE=,tag:vvAeT7w+T3skNtKU24HyrQ==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:gg==,iv:5ujxLmH6OXOWW6Fwi6heqOXSKOoNsbd1VGVq8O4WTtM=,tag:QXo4EsqRCeXhwZ69iKzFQw==,type:float]",
 					"attributes": {
 						"binary_data": null,
 						"binary_data_wo": null,
 						"binary_data_wo_revision": null,
 						"data": {
-							"tls.crt": "ENC[AES256_GCM,data:zRUNfaL9RuieC1ZOvKqwOvEuu11bnMY7RtwZZAJeJ0ImC3RqruRU9N47HxLQXWxgbv4d2FUs6Zp1MArhSmO6bZf3G/9zQze8f6ddb/ISytII5j2gaDj9d007nkzYaTHH09Dh6Ux7zJ51G7kTq5r7XTqtA2N5jtpKtqtvVNEK3EFlStFTqW9Nkg8PeSqmzDRvgu5Bg9Yb8nw318leUbNpS4tfae8DT6h646J80vL2lH76rI/7rz2B/1khZQK+Fyp/8KT7JbL4ngrkujaasS2ZdLHz3A8TSy3kxgSmPyH1sQhk0Ylc4BdY1L5h+J9wiZ2OGj9hqxJaZeqbZyd+nlb9006FsS89QYgnt6rx3mJnaj/WDLIF6TQsdt4SBZ6anXQgYkP4j7ATfUxsf8wuC/UHMS3D/YxiHCEvO00/k+jma8vUtTuyClX1FlaxyjQQNkt4eyffjpKaAr2UDKeD36+KUjGVUWo/78nJ4gDYfAjLGE0BqB7WHe4BcUL0UsSzIuErOJwX8yxXKzSI/Cc22JBYHzz2PauExJ6IrUt4uxSTerR7CEcR2E8/7Mayv6HdYiVPzUxSG6mpRIrYde1y39k/2rml0d9CaQXG1i+oqXlfW8aTSrpZ/JIf+XxKAJJ1Eb9RZMEbU9OM7M5vMK9XmHPmC+SEx7K1Wo7vcYvi+YYETXu1vcGH9Aem07lHunTOgxYbK5p3oJKGcievcawslS2leT7lStjBbSnGhefzgVIfa+tTtngOBl0r3h7dXFfE5w9imnSihmVLIH9EJqB38ZCK1fWwmVn52j7WcCBxOvDAn93Gq0mP0FVagYRWwbN2+YBs4zrs37XKGUybola8CtlprCVRd0G45ihYlF3Aw+H4/xlPnGEZ/4LzENdp4zdeG9nWRDUsHE6ctgxlPiCHbAlIowP6cVORnob2GdB+NiQ4fUqkxbtx1yXFoEgpF+Bsz5qC2DG0bRuo8M42FII8Pmz1LXHI7qlA/U4OD7Znzxl/HULiZhccdCNxA3jqGIYwKMzfaEu8oFbILdyyON6AdhUeGPEL43+vvy7G8+GdwfcggQ6ZAnf/67o2Zn6K5VDpGc4YTfdbmq2fvPBuxb0X+2MuihG5j8Mj6bWj3MhFFgso55XiksWZ3xbfPrSB96K7M0Va3ewyKetRvM7lznDbcvrEzkf17FdgKQix1tudAf/44QXuZ7n7L/laM1CCK+w8ZV4IEjnL5FLZBEg1hNdewtm7hXjoNy3AtSv5/DFuY4kIVxCJrUcEx/MqQiYGUac/3wdBrBug1rkeWS8YWmNarErPImUjtIQkFV/d//Pn3y0VzSHnGonrmqDewDJ23ZaDyRbR3B/k13q2qBy0xPCVJO0ibnNc5HQCB6Dz2UlsjIYMrCpIzHW5fhJGQyWgiNoCsul6naHA0wDF/2JPqdfUBFuY7Cz6RvIms45lAHM6ZDlXcqWqwpaFxXeGicXT6JDwrvN4vOkPwESXEX9eAa6HH6g32KUbY3GsVJqZYnIsclRT0y3Cd9Du5fX7lPv5asmbbyooI9ikmYQ9Pwyc3h+wnXYOTWmjCkAG902eutFbXiVI1JDSqImcDldLMsDUwvoTwRhAJnmHlpJ3R9x7LzeEtOSbg0Ui2tAIZxWQ/Or9RP28USNjaV5z5tBXd6f1aYcOoR1si7pAvSI0eui2LTyKuQAWSzw/ZLcokOJbRJaXxxiOuYGDhZoUA2401hZ4Tf66lL5F6/Cp1d61Z/IOZJYP8ck5FlIvaoNbVSjYEe2vYVLwSOUnO6XF6fd5halS69d1RDXb5y7YUTjc8uZ5VNkviLDGku489K/Q+AcKjn5qehLUlwVVjPn+MS11nk96CLysP41r76GCcARe0iHdkfQwH+0g+5ZRp6N/YApzKgyAHLo10EfnzKB7BCDpOtEHU6840a2N0PbutyO7rH3w8bm6N2hyNYm2TPczeEuocO2jAE4vZYq1b8Tb1bUsWHxbeJmaMVS07IfhKt5GsvB4VocIRjS5fk3T20/Po6ZqWtLxA5mhRLtAiXHh7aXrV7R0vw8xKhHiZTIvBNKW+wKBTqku0PdD5upin6ROD+E8UfgVHclGf+H8ZEvFQg+ghMP8gH60NCteEVppYjqdXD1o7YbH1ftl2aI7AZmEpeINm1tvLZnZy6LQ3vVn8d9pvbKn8aNOm5Vvhp890SEb4XlCn1zli8N0ywmQrnqXe0HyMaJcIj/ZYVKE1D06GLDGdmeiqxtUsvZi574uzrh9Q23H9v/Fv5lNkKtIu9pi0unDyOnodq6rBUpTI+R5VEPamMv4fn6r0HYHIFTS7XYaNxQEFOfdXVaj5YOxCYbo4M1pyu6oJpyqZR5u9F3sT+gSB67vgG89ijJchxfdJOiqWmrLCmENy4qUXiKn7gPOsKq6gsgxYG4LGdnzW4TpPQqwvQq/hN4QvqM6RXIwaTdgQAdd6MQuo397PSj4leCicaEj0T3yab1ScgTZo3YqR+U5vzCXQmLzJR2Uxc2fW36MAExaVzNMkcoPbglU9qWCBBjCCxtkgrNNQXtvxAu1deoGQqOo9uK/0sUTdhJ5afWvpre2EAKGi+D0ILe8TuziKZ5B/E7/TxpEK/4g7cvLLkanZ05XsswjwjW3yOaHi3QHRnJA3qU8uq3C532SYEIbI4GkyuuTd+ON5fYpegnATENV0IPVBtzsw/50JyoL16znRPA8OspFAaSaMbimNBUTv2uU0+khOwMnsX+w0UU3IZuje5ivuQkac/U2tQ6WbINI74oDXTpYYgyQktOJYsOmUWt4JSLenNM3goELHm5q9ls/BTth3P+cgXxmjrw/Rhv2KQ2mAIFbNa0iO8SDt341c/00wIJllyr8yB7NfMMu/nPCe0FGWHN+70j6+iBILm6KgBqrVskotq3kDLfqJVBx3um1nUmiwTs5w+rlyp9mS+6fUfzbkPoJRHXPbam9+7OtxaPJqQNXW1jrgJoNrU6XT0iPF1JEmB7chvsBomJiRKdgxjQkyxlbk4lVAWZFK2pFbZVX814WodkNFxXX7dfJDvGvy+nJFM5ml5nZYjaH/+JjpwSxEyFethmgWyxk0TAMENlBQEJSarou3htkYgqJd8VzmpcmlgBfiEEoWa6paaXDWwHANyn5/o3LSQhqkhNEze3Y6MX5Tmk31frO09ddvQFm33t7GC9ABGgNGYGwL+wFeXEFzU6UuKDMx4sP/m+poOGB/sw57uR6TNFXhHEJuJ8P96byifco2d79lSLT/4IhKu8HObwRzziEQMj6W6aPB1E7gkGf9gAxNish5p9+GwgBadbyDe1PUav+ernKEmHl8P4qL5kHwZEUUHLc+sPpFeeWKGjotZMKnq92bvalD9UTap1L9V9CBvmg7LpPPo+qTBKbOQjb4cWS+05PWXOG2XDIQVPqfr88mAzT+DHm8D2PTnueddH0ervyHuc5IDeRU3OHvVpS0LOdR45ICOSWJ+TQotsbCiob/BgXAwy9Jp20ij1LGNkPLG0TVT9Dv1iVwD7ydhetTsur4/6WZ26VJItqNd0wsUS6vLzOndc73ummoN47EEBgHIDASWBdr/WZN2PzCe93XQVbfuo6Psmjw5X4kAlFfAT+w1fT3mDJB7sipiZWiSXA6ybBSenJbVMYCKOwgqUCMO9awMq0hmy1BifuZcDOPrZmN2J/16DZfPBWasajyfVqu5olGdRgjxbqImnx4Qd5qCCjKXCYumZcOdOG6vnK3wkT9kJBh4FKeJrSimvVgP6vpOoVmyFa/K7lyOX2thnhdt7V1Uz/Cer4f0Z7R6vavypV4JVjbSUocSePV9ezNM7FhGwdM72PRVGHrpTn4cY=,iv:Sh73vymM1+rDYVhPrftbTq7mF1sqe0iYV9FD2Dk+mvw=,tag:1R/BOgZPkteH534aQwaAHg==,type:str]",
-							"tls.key": "ENC[AES256_GCM,data:zhrE9QvR6KsNCzdu0iTRp5xNlMz8ldtj+0Cyzf7em4/atBojBMK+NeSfmHP63llVt0HFk1YtZvuCcf6g6NUrOgOdaVBG9lD459aQqcqurm4I/+BEEyIV3AdYVPkVn7uGYgBzprG9GwSQ8ytX8+mqIF6pZRQ0FK1wHvHcPSU8dwLq0WEEEGPBSmqXNIJjOHdraLnXmGcb5A1zgQckBS71XmriWcRPcMednH2sv2FKZhOLEJ3dclyIlhDNHHbpFZqql01538rfMIZa8qdHANrmbhkw3UwLQo7LXH6U83ioxyjxux6KSsTExdTnQHrKtOcROA==,iv:g9QEYeoCTaUNnBc75+slDg3QJ5/OFRSem2yKFl0rg6Y=,tag:pZLdS7g+VAZakgjpz6DMBQ==,type:str]"
+							"tls.crt": "ENC[AES256_GCM,data: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,iv:6UIyHL0H21bin8oStebBYrMwBi66VKztZC32THaOahY=,tag:DbhVqdpcthaPAzobsnW3Rg==,type:str]",
+							"tls.key": "ENC[AES256_GCM,data:plehSDEGM14HkgzYyARdULH/TWEfZUDr4oOWc5n0/gGuOhFjoiWau9nsMox8yQg1sPuuaQIyerVJ2ilyVMNfpjbS/z5DwKEhQh5cZ4OgRPFgmcEhFd3iJ5xmVee07kcf+hyrA4vlCnElNpTHBIphKCDYjBA8iJy7wNIk7gkN3mZxqViwvA0gZ8I3Q0Mvv3tuXX6qtmNepN/y3PglAVaZ4Rd/4H6BEzZPNvf1rBKGsLuYVKF0I+/Vqub0U7pP8oIIXCWMX3r6n5mrHWjrRO2Rb0kEQHdzpD/ohOEjzHasHn8qoNni6Lhai69wvX9+f5mPRw==,iv:Ny1BFMVdg9WEu4A9+JoXcxUA5QC0KRyZw3vgKHY8+hM=,tag:kxCXH5KVWFF7PlkXoBwUpg==,type:str]"
 						},
 						"data_wo": null,
 						"data_wo_revision": null,
-						"id": "ENC[AES256_GCM,data:kTYZ+m4dfXab7pE9zFAdOA==,iv:OggChkgSpSqnJn3pFhJr5P6ZPanishWwipccjjHiEO4=,tag:u53JVKkK9XHa3SvCNeP1IA==,type:str]",
-						"immutable": "ENC[AES256_GCM,data:vY85JOY=,iv:wDMgW5XQDhWNJRyNdOUUXthwKlhD+sjRR5mmx0b0mZ4=,tag:FdQdoiuhYRFOgP+LGUtyoQ==,type:bool]",
+						"id": "ENC[AES256_GCM,data:rvt4jqcQ7StZIwiqToQONw==,iv:N18XuO85o/A62KZgHpyaxm+L1Z4iTrOYjXJQXAd47xA=,tag:NfQdg5l3EEWQco7doGMtVQ==,type:str]",
+						"immutable": "ENC[AES256_GCM,data:Wnwe2xE=,iv:TNXjO0OzYmDUErM99kLaU994g/3SP0ZnMeKDeQwzdDs=,tag:p5nS4/vkOkLgxi+d6Jq5kw==,type:bool]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:lg==,iv:BtE1KcjIgQq67kKWuyPyuh+2jQP1PGU09KXSii1/z4w=,tag:jMUTV3IVzqLfOwBfREJzxA==,type:float]",
-								"labels": {
-									"app.kubernetes.io/managed-by": "ENC[AES256_GCM,data:WAUL4m+WQg==,iv:L9aD046cdwoFp73TC2/SB8onZkWb7BL55Sv6CA+zKqA=,tag:pOWxMb0agWnCz/sW8JvRDQ==,type:str]",
-									"generate.kyverno.io/clone-source": "",
-									"generate.kyverno.io/policy-name": "ENC[AES256_GCM,data:yYEh/Fo3EH8KtexP9EpY,iv:xrBXu+JUqVa8y+p9Cb02UcAfBwa8vzz1dEd11Lfyd1k=,tag:lnrBpVPCUzy9fouLUqEYNg==,type:str]",
-									"generate.kyverno.io/policy-namespace": "",
-									"generate.kyverno.io/rule-name": "ENC[AES256_GCM,data:hUNucjc0hLvYTQObnbWw,iv:Wctnih/v/2syGXUI8KkeP6vgZlzUMAGuMxRtLF6GYUs=,tag:VSXYAEg4HXqCTfmNOTB9jw==,type:str]",
-									"generate.kyverno.io/source-group": "",
-									"generate.kyverno.io/source-kind": "ENC[AES256_GCM,data:SA0Bzzu3,iv:aKLPF95sWr9b7qZDMMpKiJWmPFfpbYKBFyGttifqHc0=,tag:0l/xEfOqhqJoeUbN4oekuw==,type:str]",
-									"generate.kyverno.io/source-namespace": "ENC[AES256_GCM,data:rdemCwJWkg==,iv:vNnxCOZjLqFEXpdgpLn1noIW/UzxM/KN3wTZrlqu7to=,tag:AjLq9dSjEjYXW80Nuclkfw==,type:str]",
-									"generate.kyverno.io/source-uid": "ENC[AES256_GCM,data:vq4PuZHC2WkZi2Z91/Z+Oj0UA8BECwyaBUiJWJAr/TX+173z,iv:U7WgpHtWcSRnGDDJwskLV6iBV/sR+j33FjMlxXaRRBI=,tag:u54Eh1DVz+TVrLFQWgIJWw==,type:str]",
-									"generate.kyverno.io/source-version": "ENC[AES256_GCM,data:nfQ=,iv:t6RUTVeqMsWZaXAe4sksRtBX1PbnViKxhmIXAhAOYkw=,tag:/4ZE3k6zqzW4nYgoXd4KFQ==,type:str]",
-									"generate.kyverno.io/trigger-group": "",
-									"generate.kyverno.io/trigger-kind": "ENC[AES256_GCM,data:ECgE316oGJzi,iv:55BkF0TE6+60a48II8T4wxHbdzdDNyultF8drNkIgi0=,tag:KXghWWQkzMoq5908s6mAeQ==,type:str]",
-									"generate.kyverno.io/trigger-namespace": "",
-									"generate.kyverno.io/trigger-uid": "ENC[AES256_GCM,data:mbibiJd5sf/W9njdxHHUTJ3ewu+wEFiTwsnOwhr5kDsd+mye,iv:Tn19tJ0q7TW0HFuvw/li8fRd3lS78ElhpYXhER2s7Ao=,tag:S6PZ7rN3vXniDdWyOQPmBQ==,type:str]",
-									"generate.kyverno.io/trigger-version": "ENC[AES256_GCM,data:/Sk=,iv:26/ovvGtnKs7T/lw3GDE2OtYeaYyWpSN+IhYs5THouk=,tag:mBHYJwph7gspCRT0G4z8ug==,type:str]"
-								},
-								"name": "ENC[AES256_GCM,data:U5Zo95ci6MuA6Q==,iv:EEOxzQ1WyCudkx/AEC9v1jtiogA221jmncVnem4odls=,tag:HpN3K6yXdhsJlcqvdrgwHA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:D+d2zKY=,iv:YrAK3z8+msvENYdiMW1rzot1BwNNipknBeAsE+UmXe8=,tag:GYTOP5xHebBfO78wKasdgQ==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:4XrJ/KgCJNzu,iv:Xg+3OaONJ+d+B1DnO1cvWzQLwUjUa3PnDZ9qk9Og46w=,tag:VbXMvFmVV92bDuI29eYmoA==,type:str]",
-								"uid": "ENC[AES256_GCM,data:ALbswaPoVzlnKYxq6EIlIT7dQTqNe66erncW877mVu4JS/Xr,iv:hn5SVyFOw8ArTfzDN0vIJEX2JP917gsr846OB1nvhk0=,tag:64otG1sDKQQbAkv3epTv0Q==,type:str]"
+								"generation": "ENC[AES256_GCM,data:hg==,iv:nRcdP/K4o5H6pM5nGf7PYbZbct2Xjai2DiP3svSJ+H8=,tag:Lt2vHBiVd0MjIDb+tLLyVA==,type:float]",
+								"labels": {},
+								"name": "ENC[AES256_GCM,data:oFfjJNy4Mq/qiw==,iv:6lBCj1kdyip5/FZM+bZ8rvUaGCZyAwQ2LTvNp5ZEyjM=,tag:aJ12LaVHQ7mzlTKDBKVH4A==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:HIGNsMY=,iv:0+sZlEFG3S/QlyDpzg7dPzTeQYRcCORyYQJO1qpXaig=,tag:uwMn4VPcj+Z5mLNJ96LcBg==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:+MXMR2pc5qrV,iv:kYN+BfLKWbOWUIHjkj1lMMvWsq4Q3Hm/RGiyjb8r5i4=,tag:rGLKShoXmSyW9iLVZrNLIA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:yMktIelAF6AU8+FUb4If4gVbsBahRFGuKJst+PQSZJKv2GYo,iv:OH9gmJHZ8djVAORjtaXuSKe838VBoNod6AVyYjPsIUM=,tag:cppb50hCzDbCY0b/jh6fWg==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"type": "ENC[AES256_GCM,data:4/tIPBgsPzm8b9HIajIJ7Jo=,iv:nIw4q6nTgiAvi99g/KUUhllpzfcyBdLIxR44ptHWT/E=,tag:U/7E0maU9QKdHfudSlQIHA==,type:str]",
-						"wait_for_service_account_token": "ENC[AES256_GCM,data:e/8kAQ==,iv:MsIvSTI2RUBRfY8b0pByNoo93KW97bJ9kSVTrozF9rk=,tag:ub+Kwqi3QHLOGJ1qVVbZfw==,type:bool]"
+						"type": "ENC[AES256_GCM,data:tXNYB822WN+K04aBCGqNf20=,iv:w6W8K5ax0CK+AroPcY4ZISkuvSHY27FCy5h4mqTvZg0=,tag:wwwBVf5ag6r0SkSgKoR2pw==,type:str]",
+						"wait_for_service_account_token": "ENC[AES256_GCM,data:Q945ow==,iv:yx5k/mWp7cF8od32gUDjfDu+Ey0fVk3iAkFTsuzR7D8=,tag:rQHJCNSASszNrBHsEGcBCQ==,type:bool]"
 					},
 					"sensitive_attributes": [
 						[
 							{
-								"type": "ENC[AES256_GCM,data:KDujcP1SLP8=,iv:8e4R0IxkdhPetoZa/YLHzG8I9ygI1b0ORcqauA15WYA=,tag:c2CwWUTH0fzksZS/S6VCXg==,type:str]",
-								"value": "ENC[AES256_GCM,data:k9EaOjJ40TRUebg=,iv:Wiycn/yLQNI1Q+o+wtQY9rpTIrwgGaU452PRwD6PPOY=,tag:33pJoUUtVR3T6+tlVqrrdQ==,type:str]"
+								"type": "ENC[AES256_GCM,data:G967jcvTyns=,iv:DU20C0oE3TQSAsydFOHE9qdrwrPNFhdAaOSlYEDnaxY=,tag:5LMGuvWTqClRWE7owrXIRg==,type:str]",
+								"value": "ENC[AES256_GCM,data:g2Lb7CUGyVI+5Gc=,iv:1J/vzKhj3HU9Fs1Vk6ZSE8o3AdpnT6wFUL9qKsZEvi8=,tag:eSqm5Mn7uZ4ECoGe6kTPCA==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:ewLYJx27LwI=,iv:rQpNgbnIXkMjdYAR0KPsJlZyCGoYnnzHbCsZGf2Eq1I=,tag:pbu5VooPCpK6MdDm+T//mQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:Pr78Sg==,iv:KSsWzLI1HI4Dr5jmcTbDQA8krUUxC2fKc13cti+0Cp8=,tag:oTePsmrWj2/dWITlfK7o2w==,type:str]"
+								"type": "ENC[AES256_GCM,data:PehvHQ4xPnY=,iv:NUP0crOkjbPVsw7TJN593uhFFemyD3TDDxXguvGyya0=,tag:ek3k9j95aBjMQgWPgClDMg==,type:str]",
+								"value": "ENC[AES256_GCM,data:wis9rA==,iv:Eoabgg6PRn4F8A8cxayGin3abAo1jxTCsCEoL0KYpyc=,tag:GB4dMsjKJk4D31TBtBsaHg==,type:str]"
 							}
 						],
 						[
 							{
-								"type": "ENC[AES256_GCM,data:itC66wImQKM=,iv:G0jf2SUa1955vtjsnpRABWpL+iRk7Icp6phbm0y1O30=,tag:fJbnMakCM7JgeQ45RKFkUw==,type:str]",
-								"value": "ENC[AES256_GCM,data:Vw5n3003ycc=,iv:vaB4xK8sFerh3i4s1dyHyaLMBrallbgZD+HBOojAJpc=,tag:fU6iOihI5XJVZJZ5fZHFOw==,type:str]"
+								"type": "ENC[AES256_GCM,data:1YBocElV/IE=,iv:RqwBQ4z3t1naX/csOumNGp6xf8S5d79ZsUycgaPPk4w=,tag:kNCYtyR716L++LWSsEWkjg==,type:str]",
+								"value": "ENC[AES256_GCM,data:sRdMSaxjvTw=,iv:7DKkQSbHzWX/3+2jbyQDaIeni901uz7b2X6bm6HM9Z0=,tag:FkedA3cpY35vWBewFBtGJQ==,type:str]"
 							},
 							{
-								"type": "ENC[AES256_GCM,data:c+UAVKQ=,iv:M0mnJSzHHPTZjKi1OQ2+lsRT8KrVvZ0ui9wHf9gPnhk=,tag:G3ZLul3uI6OMdcJcdlfYNQ==,type:str]",
+								"type": "ENC[AES256_GCM,data:TlwAW70=,iv:W0ZMWJfkWogNX0jYHFS6RoG0IxpITJbtDztot1jlcs0=,tag:rta5W2lnGHUrV4yrkz3jgQ==,type:str]",
 								"value": {
-									"value": "ENC[AES256_GCM,data:tw==,iv:tUOUvjAy+G1hjMuMAeUjEdKpyVDG29N/dJQSuYvsBt0=,tag:uUMUtlj7Mpo7Yg4cmgp++A==,type:float]",
-									"type": "ENC[AES256_GCM,data:au/kOSux,iv:L2NrzK7tFzA8OjvUO2Ithcd1QRJFBNUlnuLD2YN9Oqs=,tag:UG9Le/VwV9OIWyYRkt0RBQ==,type:str]"
+									"value": "ENC[AES256_GCM,data:HQ==,iv:btOb+jCfm0+V9yEE1bTRhWbNEkc0CVYfyfvr+TxVFdg=,tag:H8M9oPX0O7X6KzqgChsCUA==,type:float]",
+									"type": "ENC[AES256_GCM,data:obRAglIB,iv:v+nii8ndT/THigQKMCb5nUJwj/WJX7rkhXxUFGRQmtI=,tag:3z7vRN+VWbcqPaCC1soPzQ==,type:str]"
 								}
 							},
 							{
-								"type": "ENC[AES256_GCM,data:JqiS+YMm9nA=,iv:HO779q6Cho9AFlsCyyZW/yzTnXvUO7YOU8crnx+qCyc=,tag:f9lpXna+XDbrh0CGh42LmQ==,type:str]",
-								"value": "ENC[AES256_GCM,data:KFssBw==,iv:g+EIXL4/yTtgsIUHJUOM/WK4WYpmWQhhXYwOU6ZQZ7Q=,tag:cFlm6qG4WHFI/SNyUx7SKA==,type:str]"
+								"type": "ENC[AES256_GCM,data:L1ZHVmqgbUI=,iv:8Q8/GXDTfM+ltdAKOZhd4ttuM7RX5oLHCusF+LVDCaU=,tag:UYu/jubC0/DrDqqkJ5uQhQ==,type:str]",
+								"value": "ENC[AES256_GCM,data:RJVSpA==,iv:EaDA2JyLC5fmdhXSI+GQQpiMXyZbvK6OCaPianzxfBQ=,tag:U2TvuK8oJGT1Ni1EjZQMOg==,type:str]"
 							}
 						]
 					],
-					"identity_schema_version": "ENC[AES256_GCM,data:3A==,iv:o/EpsB04OzCtQk+ldZV628SJH4W8V2KxI7Meriymf9w=,tag:VZ+V30Any7oRVrDahI9+rQ==,type:float]",
+					"identity_schema_version": "ENC[AES256_GCM,data:mw==,iv:hP5OVlM6bwozK9eidkiWn5MRekdKSwRgHFmQkq/VW5c=,tag:gLpnCbS2QfrITOdK9Bt9PA==,type:float]",
 					"identity": {
-						"api_version": "ENC[AES256_GCM,data:sSo=,iv:Srr2ljlddDpApV1U93KofxvwQFwhR1VPo8Db5IBaQAc=,tag:RjvVV6WXCP8/LinUqpCpvA==,type:str]",
-						"kind": "ENC[AES256_GCM,data:JX6zUDha,iv:ta/U9sE8eU1DDYKW4aLf+QkDsM5C98iFVV1HMdxAf4k=,tag:tH5jK17qQr+gFw+8O1QOIw==,type:str]",
-						"name": "ENC[AES256_GCM,data:BhzwRZpNR1ZYgQ==,iv:TDvknuG+Mg/D3PvqsXtt+heqcTt0bZpAtWUkLtA5KKE=,tag:zM2zmWVBoqod+KbkauybcA==,type:str]",
-						"namespace": "ENC[AES256_GCM,data:GpIxoJc=,iv:AALbpsnnqwEvkKftIvrfO09MD2yda1DN5m+xxluKV00=,tag:jJFqrXnKnplE8bBPMW2g6Q==,type:str]"
+						"api_version": "ENC[AES256_GCM,data:b5M=,iv:J3iDLS2r6uee1lOmQEq5dNoDgo9SgXGPA2f7y2PB4kg=,tag:okYcX9bKaerLLwY3ZM1MMw==,type:str]",
+						"kind": "ENC[AES256_GCM,data:sj5gtUj2,iv:DSDEpTZLCY5LffVocMdoHVjZeYk7PzEtiaRmAwkBrWE=,tag:5J6zPF/byOZtt9yuOKGLhA==,type:str]",
+						"name": "ENC[AES256_GCM,data:XCfBGZrJ2vhwxw==,iv:tx+mWihYHLTxW6B6jUyK8RMBNFP/ZlhuXDcrc3f1/k4=,tag:HFzIVZLprQ+BC7ufmAE8lg==,type:str]",
+						"namespace": "ENC[AES256_GCM,data://FEesc=,iv:6RIxx0gVnXMtxQa+5U7gef+neGbmmGzxIiU33ocIhc4=,tag:C9GkSfv+0EJ8sylLvhLzpQ==,type:str]"
 					},
-					"private": "ENC[AES256_GCM,data:gE8jfUm7miMItTQRtpZRYXkxAP0ER5eEMK3UaN0458YEWr/BMRE4KtUncQbxcaj/3yNAuHq46SEgHACCZZ/mWlCpQYrTcjkOD0c9T7628+9TDnef,iv:kzELqchAW8EKAssGOFIcttioVQbfQKqSSSLmHzk9+cM=,tag:qRZvGpH3CQmNToTuUkxHHQ==,type:str]",
+					"private": "ENC[AES256_GCM,data:kU9Zjnl/6kWB9rQlZhmLpO4N5UOKx99a5oT8agrtJ6BRb3E5wPiU5PUdkZdVLeti5TipbeCjuUFwCHAD39lk3pLWXGX4hOu7H8eQPPO6c2wZY04i,iv:tcGgRutTFxI4i9bROsOz2z24E/XnO4NgEVtW1PvyvpM=,tag:WrRglr3wko9gl+E/E4ydNw==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:TnI8q5i3LEnFhZE+oev6HgG2bxiLIrMUOIU=,iv:IA7llxTpHrF/uXLKYChl/GwiqjR65IIiQ/jkflyYNz4=,tag:CKG/rnSA+iL+F6g96MGA8A==,type:str]"
+						"ENC[AES256_GCM,data:qBqiaHgZj0vvu3evjFKr4frSW/MlBUpNV0E=,iv:nzwW2kPMLQKdl5k0OHPNUwsK24KjiPOuAm3i1iTrHXM=,tag:lRHQxE7nZYbKPqlJ895/rw==,type:str]"
 					]
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:whSEq2oztXvADy7ZpB9YjLiWJG9SSlUwv90eQA==,iv:fvxq9bh68nlZKBKJZuUY9v37dXZzbeZgutrPffoM+aY=,tag:p8eRrLfwj/lXS+F/vymp3Q==,type:str]",
-			"mode": "ENC[AES256_GCM,data:FBrW8eTNYg==,iv:358Uu1hPVEMZwdn4hibgKcq8VXNivaKVUxVmfPPXoPo=,tag:OYcf5mAfOEtTGpf0sEUzVw==,type:str]",
-			"type": "ENC[AES256_GCM,data:s9WlL4X/zxkAixwjTkNVix9IXLAkRBWS3qvh9w==,iv:Q19tMU1cFbpNCuDm8Oj3eq0a3S/xvcnQwxCQZtwM5I4=,tag:S0pBgWnoN70ac5JQcNh/HA==,type:str]",
-			"name": "ENC[AES256_GCM,data:YzDtlw==,iv:rjgFcitWH0wcAEv1krALjyRhcPT/mL9RzKPWDMHgeL4=,tag:DajcWfX/CjkdZwKC+oDjyA==,type:str]",
-			"provider": "ENC[AES256_GCM,data:7H9MMVFNMzMj4euyQYBUm1fdwoHhT2ZBBSE4irHHFzEwOCSyS8HD7gO45jGRa//6o2gYHLFN,iv:AFUCO6oY8W6mkAeHSGKw9yZxkbLVyqGToFgE3cVhTsk=,tag:Qr3s4/+F4Cm5RLiv57hBJw==,type:str]",
+			"module": "ENC[AES256_GCM,data:3dPS1CCe0Ysxd908nDIok3OTv2VAak5ICPJbiA==,iv:/FOL+m4ELJ8QdmFERQWnFbiJOvKCuvUdxC7vRMQyM/g=,tag:dYHG41w2w1Ncp91rn9HrrA==,type:str]",
+			"mode": "ENC[AES256_GCM,data:N2P3FAXILA==,iv:kJWvyd7JhFrDK2OcAQLx3huUrl3QCKADZlVJpw8eP1I=,tag:sKfOzrZmPI+RcPlRcExkBg==,type:str]",
+			"type": "ENC[AES256_GCM,data:wpHcaYMRa37htM5YHYEnLXY6QHniPQX/lVah5A==,iv:mCr3T6gGS1uoq3RM81xp+jl/HwX0cmfrGqhUGGiEimw=,tag:VvcYncDh90zLhztT7TGitA==,type:str]",
+			"name": "ENC[AES256_GCM,data:uQrtSA==,iv:MwLEHwopPn5DyApl3v/tlgIXCOJ+KXX3qaPlcAqq9+A=,tag:n4WwZhcQo/2aIhz1P/44Pw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:AYsBSxyRDnYo06IJzmHr+t4GwfoiTBN/DAmbIae+lPTlhDVB6vQj5EOrh2TWIROqve1gN6lu,iv:84Ft6T0m5JRV1r9nvJ2rNy4kuLfgY1yLQGfgherUKmg=,tag:57FyL3SR5lF3uE4MYBgvRg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Mg==,iv:eSQA2ikaGaih9J2IBF3zhYhAngBhN9Y0GJwCAYQ388g=,tag:vcI0VCPGt/vFhYYO1P8T2w==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:oA==,iv:BGefdmA73S4l/I0XC+lcMSA7fMlQn1gRRdCfIw6gwrQ=,tag:dkpB71GDd8TOE5AQXNPf3g==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:eua2O7mh9CgJpocqyWuE3ss=,iv:lsRFFwAqbh0qL7sNRX44W20nlAIQ1jtKRlqtDVpkRX8=,tag:FroBdrHS5VEiQxjLfpqf9Q==,type:str]",
+						"id": "ENC[AES256_GCM,data:eTImjO+Aim44SUfpp7vqyyw=,iv:bTLjlWrzMM+94/Ppg1a8u5iWvFB50Ud3Em2K5D+8rGo=,tag:2bJ47Lw9CPzYE/O36Yl1jw==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
-								"generation": "ENC[AES256_GCM,data:bA==,iv:uU91IQxhkKoNg7ohzoFK2vnwp87CDhOJCC4RkTNq8kw=,tag:oXWGYONlZjNuaVj0ClCUgg==,type:float]",
+								"generation": "ENC[AES256_GCM,data:Ew==,iv:nCGqRtawCh7ig3vNNdUl5qDj7No2xIq8mAGJU5zzFEw=,tag:2HHe0CXdb8V6FSjHJ4ADCA==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:YsG5x4DyjzMoJQKZKpTEL9s=,iv:IG7pUfi9mERYMzvx0EZpBNRScp+/PF6LU4NZfatORhE=,tag:EYdjp9THSPsIhAqiuPEhQA==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:2SfaFa+HQ1qV,iv:mMViiRcMj0n8Q/KaWmSrieZlwlzx5Vf/nTvx70qxxhM=,tag:4P6u3U5WWNhuxRI0WxaEEw==,type:str]",
-								"uid": "ENC[AES256_GCM,data:UfvBXO6yVR2j35NIxWuoi9v/wutRVYu0KRQfXDydK5YcGCFU,iv:bPS6MwOqY1EcrjimE0zIFSNnewYMDf3F9ddTajCI/5U=,tag:gNTmUtI22eNiIQyG/qHHgw==,type:str]"
+								"name": "ENC[AES256_GCM,data:LoiSITuqZ/XrG2RKoiJHLOQ=,iv:GLwxmp7+EwKIEuAHrdBsXLtco2uLT0mXnVmdddyeumY=,tag:ORj5Vvw4q7bmzFA/5NepIQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:fod78khqZBwl,iv:mhUSJVkXWOuld9cM1/gLc0uY2i41X40n0FYe93goS+s=,tag:iHjZa7uMYY0wJqe869huPA==,type:str]",
+								"uid": "ENC[AES256_GCM,data:jMDjaxhcxAU48BskgJbpFupSjrGfHHYmuaiq6Qnj4xfsBM6f,iv:JzshDb0PZcEvQ4WkY2yKIcGvguuUyIpfn7Mh0IKtz3s=,tag:jsU+me+ig1IXg2INcQT7xw==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"access_modes": [
-									"ENC[AES256_GCM,data:W9TnHs6tlVaaktP9+A==,iv:cFCyzf6vn/hrxJm5/7aM9c8kVp4lVyqL6ZD/6spMQ/A=,tag:tv5q9yo7poy62OUiDPivUw==,type:str]"
+									"ENC[AES256_GCM,data:dYWHK7hQDZajN8LUVg==,iv:VVkhpODX92batbxbV4i4jDsxqEBqyTm10DHj3QTr8fg=,tag:SRI+0EG6XAyRtjLK5lrf7g==,type:str]"
 								],
 								"capacity": {
-									"storage": "ENC[AES256_GCM,data:m9he,iv:f0ZUMPf6yHqp1sy+Wzr/OXu4qf4yxTUwX9GmU9LpzxQ=,tag:KfEri/KfSOEsY3mLtISh7A==,type:str]"
+									"storage": "ENC[AES256_GCM,data:tmLC,iv:f8caZVpe2q/xQOgZtirZNHd1IMXS8VBaUh+BH1D3SQ8=,tag:eTrXc5G/wHhzMarwwPIkzA==,type:str]"
 								},
 								"claim_ref": [
 									{
-										"name": "ENC[AES256_GCM,data:PbVpQVIOWIZ1qHa2tuh+A7Y=,iv:xgqch4kmLz0GQv9hJRF+XsgIDg8w0iTuF4xuMkZSoFE=,tag:DaJ1tspU83wjgHi7PoKNjg==,type:str]",
-										"namespace": "ENC[AES256_GCM,data:2npoMSY=,iv:cyRTrkq2BJNXU0n9vlr/xruNiQuE731DDJ52jk1DMCQ=,tag:uKk/wmtLKQSnY91Geql/tA==,type:str]"
+										"name": "ENC[AES256_GCM,data:IaFE4RueRHvJ99QTDDceI18=,iv:kuvwY99rPT3sAcMGdHY9U374TTW3FO/Ojgtop7/Sr5E=,tag:Necsa3Y0ztFxbduyEzqLQw==,type:str]",
+										"namespace": "ENC[AES256_GCM,data:X6MDXJY=,iv:eR9HyBBs/QEN2eOJaY90LP7FzK9vVXcRAX4BkZrTvO0=,tag:gmrZg1mIKa941bZfavO+ew==,type:str]"
 									}
 								],
 								"mount_options": [
-									"ENC[AES256_GCM,data:lIWSoFYPZSRF,iv:LDjI28LWPdcX8HZEK/K95rbU2koadO5q5yi/Z76eYFY=,tag:uX7m464w2rP70LPNBJMJig==,type:str]",
-									"ENC[AES256_GCM,data:BkztlqBfVB4h,iv:BqAOEqPfSddTsxL12ETTCDOxt2iL/ZKjGIdstT+kq2U=,tag:1yB3ifdPMLLwl+qB8jo2zg==,type:str]",
-									"ENC[AES256_GCM,data:JKxvFgtbyDsh,iv:MULnpAr05ima78ApRd7RWfhj2D71WrHVHob7q32SmwM=,tag:g1UmpxjntIWx5KWWA48kvw==,type:str]",
-									"ENC[AES256_GCM,data:vXYjSw==,iv:4yLw4X7onuMMknyrQUyld51JguICdI6Q+dN4frW2j5U=,tag:ysdyZbgct6NtK/ApVeMaoA==,type:str]",
-									"ENC[AES256_GCM,data:kr6h/lY33Zc=,iv:uvAXQwgzWzCMjdi3d4/eZwOLD28Yky83yGoysjM3izc=,tag:h36TFeWoKmDAf1jSz2Z5jg==,type:str]"
+									"ENC[AES256_GCM,data:z7tap0RBvybr,iv:QK08Igykw5fBh6fJsrRctGxT66KNJ3I6HWXXShtapnc=,tag:aRRKg7aeNxhuySJ97IvEfA==,type:str]",
+									"ENC[AES256_GCM,data:80YWhxogZmCY,iv:cMTihg7AveOuBO69l8hGfHDvxI9fS9FF7k78CXFK5/o=,tag:74aLkqvnITKwf0x63+daEg==,type:str]",
+									"ENC[AES256_GCM,data:UIbSuOGy0QPS,iv:ybqO1NHs9L4+xrFX1I5n8R8wp4vmiwiZFAekx1QUGw8=,tag:GQJ8X276XRYsb76p40udnA==,type:str]",
+									"ENC[AES256_GCM,data:b6vFCg==,iv:WYhiS9AwxtG6+G3tUaXJJIwN+3hv4UnA/YUt+7amt1E=,tag:0D31dGg8MwRaz/Ls24ImQA==,type:str]",
+									"ENC[AES256_GCM,data:iDA+g8RdpVw=,iv:TSG2jNQ00mlmo8k7kDRalnvraHJK3onMjaREzmKwBOk=,tag:1uvqZ7gkoBHA2CVtE3aWOA==,type:str]"
 								],
 								"node_affinity": [],
-								"persistent_volume_reclaim_policy": "ENC[AES256_GCM,data:HPknTSre,iv:BG+w6SVgU/JmfHzYKO5qFcAN2acxqISrI9L5hdfZLlU=,tag:QtbLsJdMXciGRlY/3IF3xg==,type:str]",
+								"persistent_volume_reclaim_policy": "ENC[AES256_GCM,data:YVy50hod,iv:LCg/eRIO6Tm+00pgeFUPLRWr+30fDrHiBTy8hxMtwcA=,tag:BPFGHPRv5UED+isxv4px7A==,type:str]",
 								"persistent_volume_source": [
 									{
 										"aws_elastic_block_store": [],
@@ -3889,16 +3734,16 @@
 											{
 												"controller_expand_secret_ref": [],
 												"controller_publish_secret_ref": [],
-												"driver": "ENC[AES256_GCM,data:EufZzwcquBRbM9c4pCo=,iv:OJgaiwqfzZR5Zbur7kesRk9zZb4x70s+mJzUBir5GdU=,tag:0mSfr8IO+159rZS6IXOV7g==,type:str]",
+												"driver": "ENC[AES256_GCM,data:oX4UOFGekXgXtsSedJQ=,iv:YWddprEvXZfxkud6ieQU1dQJ1TNMTXv4PTA/tl4czSY=,tag:MrNHW11G1e3T7sSpJfXxdg==,type:str]",
 												"fs_type": "",
 												"node_publish_secret_ref": [],
 												"node_stage_secret_ref": [],
-												"read_only": "ENC[AES256_GCM,data:M0fWkEo=,iv:ATOun9mF5Jr1dTGoRuSqEslOZpBAFzeRL1hNehzxpzc=,tag:AxsidBDuh3n2vS9iUNPjJQ==,type:bool]",
+												"read_only": "ENC[AES256_GCM,data:DIFXA7I=,iv:ukAKJKyTVWMm7dNBnmyefpss+M+r7dk0o00rVS3gUiA=,tag:cOGJkWTDeRWKOURT4d8ixQ==,type:bool]",
 												"volume_attributes": {
-													"server": "ENC[AES256_GCM,data:gdQogTua164l/iw3bg==,iv:2FUNNkmNFlZDcU/TLFeY6PsWPsZVG8n58bHYYzgn4uM=,tag:AjezZoC1NrmiBI0IXN68ow==,type:str]",
-													"share": "ENC[AES256_GCM,data:P41DglnzWF7tHKxMGAWyiL8ALL5e,iv:qwu1Y6lFgIlz/5OkMFA2Trwjf/GykiWs8ggDyBSVW20=,tag:j3KmWG3Ti5IZQ/zwP3M3+w==,type:str]"
+													"server": "ENC[AES256_GCM,data:m5SKMrNevTapRGK8GQ==,iv:I0AvO0Xy3XYOidSOj2usPSH625eewyLA/ZbFT3xT1nQ=,tag:fmyJQ5L9SMvTIYZz1aXEOA==,type:str]",
+													"share": "ENC[AES256_GCM,data:uFqmgPjiv7jrxUWU6ruBFlp0ClVc,iv:Jv2GTNzvh0Kzs8H+3ofki2uHyF9XlqdclSFUogTLbck=,tag:qILRzkpEx9VRU8Ed4Zbx3A==,type:str]"
 												},
-												"volume_handle": "ENC[AES256_GCM,data:WvWkL2D1Zp2XMKsoz1FncRg=,iv:Qv4cnJPwLzoruJ+2Yh3WCN9RIbrW9R8WX+BVmYVSe/Y=,tag:ZUXVPlcg6ut0M1sSZGwY/Q==,type:str]"
+												"volume_handle": "ENC[AES256_GCM,data:akSURar1/ag8jaanNvtpneM=,iv:D6J6Qlqrzhd3fjCKqD3gyAOOy08JumkigFpgdHTZZi0=,tag:jWGCqGq9/3lA880wz8IaeQ==,type:str]"
 											}
 										],
 										"fc": [],
@@ -3916,69 +3761,69 @@
 										"vsphere_volume": []
 									}
 								],
-								"storage_class_name": "ENC[AES256_GCM,data:J1LUGYH5Wu+E7b4=,iv:PkWdF169JH6scQRxZcemy9e3rd1ADrT50NbZ73X2o8U=,tag:qKi06tolfhJQO3ZZaW6OzA==,type:str]",
-								"volume_mode": "ENC[AES256_GCM,data:s6ZgHoCe/QfHFg==,iv:cjiooJ5arBp1vjO2249Mbu93m2LmsMoGjylORiIIfaw=,tag:v3kuotvutelf8+sHha+9Kw==,type:str]"
+								"storage_class_name": "ENC[AES256_GCM,data:X1Bmz/3rtw69VEQ=,iv:ccWS8Ukw0yaYXOE20hAq3VLAjcyOvpn/GEPymDxHe3A=,tag:XmsALz7mKRNlMobaShpoFw==,type:str]",
+								"volume_mode": "ENC[AES256_GCM,data:rnoidNZLHwhaWA==,iv:fUjWgTsht0rSExLfU1fIQgA312lSWiD+q/WqlW8pOHI=,tag:jBE6QgpA8jI2skmKD7ArZA==,type:str]"
 							}
 						],
 						"timeouts": null
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:RQ==,iv:1innSkVFaNORkkywZwcQfi7ChtQvJpMrwLEf+iy/VL8=,tag:tkrEZqYt4dhjxuECKgzVAA==,type:float]",
-					"private": "ENC[AES256_GCM,data:AfZ+gixNL6MhqRu0nG0ZmOgWiHCbwD4E3vaEEaABObSoI/qNZlkyAKclvNDXPskjgZ6w5Wt382xO9AQpwifSobIrPP85Ngkjc3xYmDqydJdHgUTAG+ZxQA==,iv:IgOIzuDqPhbrDMtNhrZjzCWxJPIwBFo0lxYgw43SNgQ=,tag:xgsxiBEQGrzDNHIFZNgNJw==,type:str]"
+					"identity_schema_version": "ENC[AES256_GCM,data:qw==,iv:J6zOD66RaO97NayIyixbe14Avah1q94BUuBTBfvYwPY=,tag:NYoe3Mxxp+aihWUuXKF25A==,type:float]",
+					"private": "ENC[AES256_GCM,data:+AYrk3EArX2FiDIM3W3R2Nt4DIUty08cjcXI1oFRp0NBuYclogPVkRGHgPrNXB/x6HXoFTVeQRBaAJ3+9T78YHhmxVvs68bKvMOyvAugS+OjIPyrG1S8Xw==,iv:BnjyfR5/EnNMpAYRNGkao19cPWldJRJcmSyGZYgLjNA=,tag:dCzcrEKeJkWAIcIt1N+fig==,type:str]"
 				}
 			]
 		},
 		{
-			"module": "ENC[AES256_GCM,data:hef7jAWnt9xOhkqvzbmtntQyl11AiaeZw6LcoQ==,iv:31uR38ntycnm6h/jkm3JkJZ9fkrv3PXEXyoJEwBkbGc=,tag:CbZ6EclhwpPyQE0b1Q5DqA==,type:str]",
-			"mode": "ENC[AES256_GCM,data:HMKBYcS8ow==,iv:i/FaokXPVblyuQIeJE1fghugSreUrS0iYRymFs9go74=,tag:g5YQHkgakHzTWVw6vSAgnQ==,type:str]",
-			"type": "ENC[AES256_GCM,data:V3wJYpV3AqdeqVUJG+Al3YjykJZznSZhVnHTP33Qvol05w==,iv:wHnu+QdGV400iN5MNtg8KH0z0Ab1LR/JJI3CUfDpm5w=,tag:5b3AND2y3GdilPTNqzj6HA==,type:str]",
-			"name": "ENC[AES256_GCM,data:keXlcg==,iv:6nuG0PrMTHZmrscuSGQp8VeDfNy2wjS3BgYZ4sDEkMY=,tag:T4sfn993LY/uM0UJ9ft8qw==,type:str]",
-			"provider": "ENC[AES256_GCM,data:4o4wfla1UtKFo6ILiz4s0Zxrn/h8dtHaEylmvVgJop9H214a9KPf1rkszqvWNV6jTcoITzdu,iv:tSBuBi98PfVgVzDCYEVYWYmhWJyi2ALd3rJCQURQjpc=,tag:GY/GQJh0xn2J8Jp7kHD1lQ==,type:str]",
+			"module": "ENC[AES256_GCM,data:Cy3lVNOwgfsxT8qF5fPQIURNXzKommEzznOiXg==,iv:t2YNlK/RkPQYnbfR1qko+RxVYHPIQv2g4S/uAWweP0I=,tag:J5mjy9Ur8iEWy228J0x+pQ==,type:str]",
+			"mode": "ENC[AES256_GCM,data:bW8DQy5YHw==,iv:RIcFY1xJ8RSk4w9W4ADd4e1G2RikQrB7DJI8K5Nqq9c=,tag:UhA91iiOS4k+kfhif2AD8Q==,type:str]",
+			"type": "ENC[AES256_GCM,data:9seQtREIy2kOB2PXwF8hl/KAeocj0G5y+SsRVXL4q8/FAA==,iv:fsWzWk0l3sR3sWUxL/NnHjCwHoO4sqJUrvjzMjqAXlw=,tag:isVMFbYmFVugOlicw0raHA==,type:str]",
+			"name": "ENC[AES256_GCM,data:xS4jaw==,iv:0JrLmgWfxu1aBgR/ThleTXcncSmAjgziisSOBiZL+z0=,tag:hJvUNBGmZC3DS0s0/TfaJw==,type:str]",
+			"provider": "ENC[AES256_GCM,data:qiV90+kRTYUPlPa69qF78A6MG7/S4iVgAuQ+St6D4M0gsHsAloIjSxVgVRIMgMdM/X3LTOuX,iv:rxxrqiLIi+JZNIXBaes+al9yolFehlN4+WT7e0o9gZY=,tag:Pa+RYuNx6jhVHNoySHynrg==,type:str]",
 			"instances": [
 				{
-					"schema_version": "ENC[AES256_GCM,data:Dg==,iv:kZmpNCAfjzaKDkgXjZGru+eBBWozQMsQf3HTlF5hbt0=,tag:IfouzuktSX13IEWCBtidpA==,type:float]",
+					"schema_version": "ENC[AES256_GCM,data:Ng==,iv:d110o5Nenc+VeZCY9J8SvaTJ8B9d6xvZ1OtOJvSk0eQ=,tag:Cfcbq6azYfdmgSXuGAPOjw==,type:float]",
 					"attributes": {
-						"id": "ENC[AES256_GCM,data:/G5Fa9og9sqwD52LRCu+m5z6vgAAeZA=,iv:4FSHLgMBN3AufTmfUdg/90i3HUSIse4VM4IshJGv7YI=,tag:6Hf2BOCUr/Ro3qrOnkaH9w==,type:str]",
+						"id": "ENC[AES256_GCM,data:IKD+HA73VuZ3iLfaqiN1ka5Yjyt1lBI=,iv:MqfzD/UxlWzDPxKzgsALCqB39U/V59NcPHSWfbZ9cp0=,tag:Tc9sF790iu0bfy1JrFUCRQ==,type:str]",
 						"metadata": [
 							{
 								"annotations": {},
 								"generate_name": "",
-								"generation": "ENC[AES256_GCM,data:nw==,iv:hcAjizPGpN6RCMQfRMsjVAGtxGd3KbZKpq6p121D6Cs=,tag:UqmWJRWabfWlOatvFcdRVA==,type:float]",
+								"generation": "ENC[AES256_GCM,data:sQ==,iv:dpndA6iheovLE4rJNEoHGR5Mo90/zOEIMeLHIcAULgo=,tag:6lDJYdKX6dEZPMASo0GREg==,type:float]",
 								"labels": {},
-								"name": "ENC[AES256_GCM,data:mu+XuOJXy7JJmB7evGWIrmU=,iv:eXEKonI45XJBmRKiNjYnrRYD2E0wRrQFJ2bXqHvhUQo=,tag:IhOKjHc30QaQ7x16bYb3XA==,type:str]",
-								"namespace": "ENC[AES256_GCM,data:1GbtyXs=,iv:07tbOd3VJQr3CwMWaFtlwoOhdyb5+yc+6hkcpFto3a4=,tag:PTNk+89JR0HCJA3yP1xFgg==,type:str]",
-								"resource_version": "ENC[AES256_GCM,data:ExaFGFxcCpTd,iv:CoMmzZnmpKMGEErhwowyqbstfu7EeYlnp4P1w/uZseM=,tag:CfnZggM+Ros/ZWOj/SYedQ==,type:str]",
-								"uid": "ENC[AES256_GCM,data:1O62rwvKGEz1wZtGHuSHtW1UUxCGiFkNXK66eihEeosCltiz,iv:wdDC95T8yDWF0yQdZUydU/J8FmCrHc/wAisKaavAIco=,tag:wPsqxWlZ5YQ37ilqh3A9BA==,type:str]"
+								"name": "ENC[AES256_GCM,data:X3z9CClqTM1PcZLDdgZp8b8=,iv:UoZAzx75r0DV5peNL/Yinnm9jK2aivEQyBhV32voxjQ=,tag:+dxtpxh6KVhfoY5RCVOwxg==,type:str]",
+								"namespace": "ENC[AES256_GCM,data:xABIwkw=,iv:kt7Z84fy5ksQfbvrhjWBrX+VGY1ZokBfhWsUQQIYz58=,tag:+QKaOGzOBzHbn+ilwkqaEQ==,type:str]",
+								"resource_version": "ENC[AES256_GCM,data:T2QprtY8yynG,iv:8/DJ11QFLeveWrSOBipeHGz3G2hSbn7oHK1AMoxe5P4=,tag:H5kIj3WQVbONr3NvYZJX0w==,type:str]",
+								"uid": "ENC[AES256_GCM,data:UFEOY/JW76g93JQ893eVAhvbG/l5fEuSogDkRUxk+Njqdf4j,iv:93apsL3+x2S+mqmxOJsRMJqE72+2Q4lG7Y7zX6iv0Yw=,tag:CtwDEk/OvXSgwmoH0kmP+Q==,type:str]"
 							}
 						],
 						"spec": [
 							{
 								"access_modes": [
-									"ENC[AES256_GCM,data:JdM6k8GUSqJtaBKq1Q==,iv:YV+0MFklH60XbLiV7QVuUBJMa1xXIjjQgEHWVPSsNxM=,tag:d2jUP21mrNrz+iuozw/4/Q==,type:str]"
+									"ENC[AES256_GCM,data:Z9K/yPVVGdmPpiFdsg==,iv:xcHkPEOlhmCz31F6MCEyX+2HWUuWD1lbXM4LK7axxac=,tag:fExPtvVTiRuFIXX2Me1HCQ==,type:str]"
 								],
 								"resources": [
 									{
 										"limits": {},
 										"requests": {
-											"storage": "ENC[AES256_GCM,data:z1EK,iv:X+zk+IXsMh3zlF90Wv6vrY3Y+vfxNNXcHTdIVTt/p88=,tag:fB9v78QSpGzZP93TF/KoeA==,type:str]"
+											"storage": "ENC[AES256_GCM,data:+V30,iv:BTAisnzMmT7hhR8uGicnci/5WZJVhAlJReou6oY5dXU=,tag:vlDVKE9hXmIn2w8tRkjg1Q==,type:str]"
 										}
 									}
 								],
 								"selector": [],
-								"storage_class_name": "ENC[AES256_GCM,data:UFzHvj5pypH6a5Q=,iv:x2Lx2FXcjZ4htgOW2NaIz9pblrPDJmsz2d5J52PaQxs=,tag:6az4FJ5gk69b3eo+b8wVgQ==,type:str]",
-								"volume_mode": "ENC[AES256_GCM,data:renfHZtnG2H0ag==,iv:E3TAaeN6aRCjxXhLa+pY9A2XTxCSFjhhmLcT/vgnpHw=,tag:w75Wics9E+QMQcLbO7V/wA==,type:str]",
-								"volume_name": "ENC[AES256_GCM,data:Hqc0mPCyh8rnUePNhTbJztE=,iv:4/T1eIgppY8QMpU79oZ/8jFkk15Q31jPpDy3oofBL1s=,tag:geNq/80pf3x9xG4xMU9qWg==,type:str]"
+								"storage_class_name": "ENC[AES256_GCM,data:4Rkyzm4hnJu7hIQ=,iv:N38904gzAlQqYjBraycL9LbOi6urk680qoXMTO7vSAw=,tag:EQHqBj8/uEar0wxdMCHjGg==,type:str]",
+								"volume_mode": "ENC[AES256_GCM,data:k328pW+cDbgURg==,iv:2vqfyHkn2//0cPlnG13mtST9XCKE3DQGB+cE1rI4QJQ=,tag:n/UvlA5xyeyD2V60tx6KYQ==,type:str]",
+								"volume_name": "ENC[AES256_GCM,data:/ciDxeGbRGI2V/Lu6FoILTU=,iv:aAiiY+F30vgAAYHe2/2cVWFcTs004y5Zai+R4B9s+H0=,tag:gh6FGBrareuIV6apDPBD9A==,type:str]"
 							}
 						],
 						"timeouts": null,
-						"wait_until_bound": "ENC[AES256_GCM,data:QQ6K9A==,iv:ECFTvDXjvLvCZk/tpl4ppi1+1eXDr84tgN6v1+nISTs=,tag:7FY/4GQu1Y8IdRgIrnm+Dg==,type:bool]"
+						"wait_until_bound": "ENC[AES256_GCM,data:yzFzGw==,iv:+Hjhtvfi+yd6+ocaVFaTaMaoJ14raVcRsYb5jvvN4k4=,tag:5bz16rLc1yDVcQcC/v48Xw==,type:bool]"
 					},
 					"sensitive_attributes": [],
-					"identity_schema_version": "ENC[AES256_GCM,data:2w==,iv:U8j5WpRSqZX62Vs6HFq0M8M4uyYdYXUeXQkv4WBXoRE=,tag:wqwezelR0HrgToiMNseywg==,type:float]",
-					"private": "ENC[AES256_GCM,data:k8qG2GlUmEEnZringNbA7L1wXXLITNwBWWrNcDQlZe82WrLLhwiZ1MfYQMkei2cGg+0SunxYwCkbLy56MABLH4WaOIjSuvTsohpM31Hjl84LMYw0hP1xLw==,iv:ar+sUYbgX+ML2IH/I77qrvaUjemRtQkCTE4glxtWU/I=,tag:SnBVWUrxM/ptfIPvPmYkOw==,type:str]",
+					"identity_schema_version": "ENC[AES256_GCM,data:LQ==,iv:BGRNrYK0pr+XSa+yqFVJBNq1HWQj0CNt+8pHH2y07UQ=,tag:ST++kl6kBUbUDoRO4bcVCw==,type:float]",
+					"private": "ENC[AES256_GCM,data:fgGufmGi4rPlqKDmo4SdnsQGdHIU2QVNjASn19X4UamLN2I5TZkLXLKVWZ0/Q5/9jy9ha5/m5wAOwQ1Mgz3qcgbSQWeYNS5EMank1p4dG+vrNoYch1uoJg==,iv:oq6JoUvuP02HZON6/cv/IyinoEw+KTQUCRbgyhTpzqQ=,tag:5h0R7bJEbAi2SFJd+O2VzA==,type:str]",
 					"dependencies": [
-						"ENC[AES256_GCM,data:wpn9tHTEF/vU9bErIou/G+cAhAugJoVDV0c=,iv:k2l2yWprAJbwx4C5XLUoWPYWuXAw1rk3ei7OqXyjVnw=,tag:EwI3rYieUi/1bKOIT4EoFA==,type:str]",
-						"ENC[AES256_GCM,data:vxpC4cu/sRw2z7s7iF/dYJBIozzY+qR446qcLCSnYn4PUbRW6Xj0F19owEn45BHcQl0F6GUtK9T/uDLg6D8=,iv:ZNf70BygkBR8mWDOQJ41jl9bS5A33XQeNqkDo0W558Y=,tag:+fxU5jfbYTQajS3yjsaoVQ==,type:str]"
+						"ENC[AES256_GCM,data:G4p2YKNi9HiOA4gInEjrJlTrNeNmys66qNI=,iv:GxO49z5/i7G/3atacS7VFIkmv61nSIUSDHTX63VIa4w=,tag:e4Lxg7HCRLR8uEicJO9G0Q==,type:str]",
+						"ENC[AES256_GCM,data:q9TK3hczuCpy8o35anXk1NHUHrUUDhhOQPAvfROExpFFoxyjN3LpB89TL3AlW/YpSGF3vlcCo0d3AQFb3tw=,iv:eCuUBqWUFME/vI44VcV31ztrwsV8yM7Zzyy+S0h5ofo=,tag:c5afYVmJ/qlxly2vonLkMA==,type:str]"
 					]
 				}
 			]
@@ -3986,13 +3831,13 @@
 	],
 	"check_results": [
 		{
-			"object_kind": "ENC[AES256_GCM,data:yH0K,iv:wnPB3WlTyNZe2uela7tibL0x3uJudjXbCFxS8zNk15Q=,tag:JMQ81SaDfHUIsn2mMazLCA==,type:str]",
-			"config_addr": "ENC[AES256_GCM,data:PLeWGRxZupWISauL6roEvxjLoCNeoEg+KJy0,iv:xSjYjsSoHV+S9qBu+h8tuJvrb8kZJn9HG+3tbDBu16A=,tag:tPEieXU8uItSXNma08qIvA==,type:str]",
-			"status": "ENC[AES256_GCM,data:ikULdQ==,iv:8r3OMCqXACg7N/z8tjffKR5rM6CaKuE/tca5HM2t1A4=,tag:EV8devK0CESWpptRd+wlNw==,type:str]",
+			"object_kind": "ENC[AES256_GCM,data:gY8S,iv:VHgH5fm/VFR12Kj1M8Woth4JgqhXUXNr208KY3H5T9s=,tag:srGosIeXWmtUtSfBS57Z2g==,type:str]",
+			"config_addr": "ENC[AES256_GCM,data:WDejD3qXOvapfSq1W207URpvTVVIDm1Vf1rM,iv:C5L65Ex+rSxahuOmx8sdbOPoekqBrtoe8cxWcPUq3CU=,tag:O+USeeoIXvWgXrGm1I0ghQ==,type:str]",
+			"status": "ENC[AES256_GCM,data:WfPakQ==,iv:0ZCRemcWvk90pdjY3quqc/xaJfKa97Dsb+A4mPXO8KA=,tag:+2WnMjy5ycehS1CAdtxzcw==,type:str]",
 			"objects": [
 				{
-					"object_addr": "ENC[AES256_GCM,data:LQHrgsPwkqppH7RcoPnYyJH8jEPGmuvdLzoy,iv:gOE2+PUpqhAkCOuGt/CM360F8CWzB1TZm/B79kwz9VQ=,tag:ANgOKos1I0MfNdaqlRI6qw==,type:str]",
-					"status": "ENC[AES256_GCM,data:omH4GQ==,iv:7ysh4Cjj2O83N1IZC5WpyoTXafedmLi1ucYSC1djZjY=,tag:+rrgkYfPgEqxYbab/pCvQw==,type:str]"
+					"object_addr": "ENC[AES256_GCM,data:Jt2dtAMKqBmkp5Ol6n+FnRqjGSqqw6Jwx1so,iv:uZPDlneHmyCrxKF5PDdi35APBAFfheMzbGBsDrGpMRg=,tag:emogtezEJjEdWPifuNsWcA==,type:str]",
+					"status": "ENC[AES256_GCM,data:OTkzYA==,iv:s+8KSCAg+KhAgcTznleq6fNd6x4DcpFCTyXZuUrkKfQ=,tag:9USFTgTu/2IQ9k2Q0A0wyA==,type:str]"
 				}
 			]
 		}
@@ -4003,22 +3848,22 @@
 				"vault_address": "https://vault.viktorbarzin.me",
 				"engine_path": "transit",
 				"key_name": "sops-state-vault",
-				"created_at": "2026-05-07T22:53:03Z",
-				"enc": "vault:v1:BemHnj2YrcUj71+J+l/mCiJ1YITnayUa8WAX1/k1wiGgf/8ZGvZjIQRNVB+TWc+YBwlHFlkuTnPxgNgN"
+				"created_at": "2026-04-17T14:14:04Z",
+				"enc": "vault:v1:2U3E5DtPI++2bIvgZOQDsGFtemDN9Nqs2oGQnt1yd0CrKdDqTPTo1+XoQU9zXH5gKCEVeCOTQNp3EKBC"
 			}
 		],
 		"age": [
 			{
 				"recipient": "age1z64h9t3acsm2rr74pz7j4846kwj5tutx9sk78jqv46y8fln4vs2sy920ce",
-				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBidWMyejFpQ1JISkd6TW45\nKzdQUmw0dHZ6YmY4MkJKWEJ2RHNFTm5RQTFBClZ6ZlBHQnAxNWtiNzFOSXpKZy9Y\nOWR6WjJvMHBDRHpVcndPMVdZeE1ZRlUKLS0tIGJKMXhtSHZHZzI2bDhZMHFNMVkz\nWSsyVXRtSDNxZFF0eFFVdFFHaTd0YWMK3LI4fgz62Q6JcYoTz2pfm1Wia09KpQDe\ns+TMRnmBKiOLaoprCnZXQ36Y0qEheJJRTxwsf/waRWnkUjFbECYu9Q==\n-----END AGE ENCRYPTED FILE-----\n"
+				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBzYmp1VmJjUVJhSEpSckJZ\nbmtuVVo4ZWhjeFYzckFqb2tnRFFtVXhWUGhJCkthWVVNNGIwRm1NREF2RStMZWNk\nR1RyN2d2NFFBRkhqRkhURXB0K0NsTmcKLS0tIDA1ZnhCWjM2VGgwME1TUVVIeWtp\nZGZtdUJCUlJBWTI3STJHQjRERHRhaWcKunzf5AXnne8PrJ4Cn2fmLKMfR3QlIs4G\noXILRik+OZ7VQljYSxKx+6DEF6cgo2pATZwefINzqQk5P2rG0C32FQ==\n-----END AGE ENCRYPTED FILE-----\n"
 			},
 			{
 				"recipient": "age1rekkad48r2wzhwqgfetw5yugu3ln3qlht4xg3txmx55tee8cveess60r90",
-				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBVSDJWTWNPcnFSVU9MS0E4\ndFAyUnhLckRxeVFhUXRvTUFOVktsRTlsNUhvCi8xVkVjTVRzZnEvOVV2Q0R1Y1hz\nOTFjRFVmM3hRMndGSkc3RjhMNmM4V28KLS0tIHFQVDk0aVdXMUtHaWpLbmVXMlpy\naDlyVVZVUU9Xbk9nNG9hTW11cm1GSUUKwURQm8DB9tpaAs3PpqAvY6ym4HIe433b\nd4dXTFQg9hQmu/qQuVZJych/hNpbj/aIfdEFIh7mZccIIS05FECzSQ==\n-----END AGE ENCRYPTED FILE-----\n"
+				"enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB5MS9wK3dLcGxsUVRIZVJ2\nck9Kd2pKeldpM25LVXRZM2h5N0VwS2R3TENZCnlLMVc2TUw4L0RJNTV1YjRyK3JX\na3hmVEZYRzlJTVVPOGZRZzMrVEE2dncKLS0tIHVrY0VRT3NGNFRVamtSS2w4THNz\nM2ZJU2NxOHVpTU1HRnpJdFM3K2Y0SFUKq2ZXstf2XnQqihtQeHp7UVSOXPOruEws\nx+ZV5Yi32FyLgt528eaC4YkU3eX53aWcOGe3ZefvTCfViId2A9HnGA==\n-----END AGE ENCRYPTED FILE-----\n"
 			}
 		],
-		"lastmodified": "2026-05-07T22:53:04Z",
-		"mac": "ENC[AES256_GCM,data:GXlTcxoHIGRDEphxjgJu83CwTT2SeZ1/d1MeTJ/iZ8KoTiwwANP4SlTZAEc79b/LPJdM1GXNk8sZeUl5Y84Iyh+eBEoLBrN7Cfwi+BS+0V0N9o1xWSWhQ3QSLzBVLT2YSo58lyX8KDTkwUN9HVepGlTG7OP4PtpiYhIZpCYAlsQ=,iv:osGhK3bsTLtRmeYqjT8M/owkxYDzxJjDeOaVJDOZQK4=,tag:zlE33GS6bEJNj2ae244oiA==,type:str]",
+		"lastmodified": "2026-04-17T14:14:05Z",
+		"mac": "ENC[AES256_GCM,data:lPP9XkEQHWIRw4wCUJvYAu9oWduBmWLwR306lx2nxNm1i/YT1UqekrELUz3j84jNilaI078hu0NM3EAgMvEMtb7CQubl+6Sk9H8jAX4Fm9E/VB7iF+/py6yyWIhaF4cpZIVj2yn8cNeWeRV4xJr7EEquxxS2WpEnoEeaNNBpj28=,iv:zeyQYWevx1ekQG6Z1/ZRKozCVEoAn2tPfoCwabiw6Kk=,tag:UpKlkXVrfPbrCmEmkH39VQ==,type:str]",
 		"unencrypted_suffix": "_unencrypted",
 		"version": "3.12.1"
 	}
diff --git a/terragrunt.hcl b/terragrunt.hcl
index 0376f6ed..d11f8b93 100644
--- a/terragrunt.hcl
+++ b/terragrunt.hcl
@@ -62,10 +62,6 @@ terraform {
       source  = "cloudflare/cloudflare"
       version = "~> 4"
     }
-    authentik = {
-      source  = "goauthentik/authentik"
-      version = "~> 2024.10"
-    }
   }
 }