���� JFIF 


 ` `  �� ;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85
�� C 	!"$"$�� C
�� 
h
h
" 

��   






        
	
�� � 
  
}
 !1AQa"q2���#B��R��$3br�	
%&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz��������������������������������������������������������������������������� 
 








      
	
�� � 
 
w 
!1AQaq"2�B����	#3R�br�
$4�%�&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz�������������������������������������������������������������������������� 
  ? �.�(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(�+�QI�3L��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��@y� -�#y�����IޚX���P2�$���袊 (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� 3FE �a����(�d�N^M���4�G�Ӂ��Mo���O��
��$ds�sYz��4]4�����+��HM����9վ2�#OL�@ܟH���
O����@}�L���YW�=�p�3�! 7'���Z����&;"� z��ם���g�|I�j���~D��Ƕr^�2��s��I🆒T��S�(2���?���y}��x����m
�ux�#��s�ھ[Cqg0m�r\�
ҏĺ�ҋ{��d^��Rrr��#mO��Ŭ]\�>��uK�c���q�*?ɯL���<zW�>񆥥�Ƕ��[Ć
���l��O�� ���b[��
2���+��'c9Yl{I`:�R�
f�ڽ���;�g��8�j�c��}�Z��C�)ʑ��X�匌J@:�(�P�Hz�h@�#֌��<�a�N>�6Y��$ʹ �-ڛhJ�ۆq�i7��s��^{�|c��)�]z�y���ۿP+�𗈬�Ma��H��_?��Lf�G����/����U �(��
(��
(��
(��
(��
(��
(��
(��"iX1?.�ቨ�.a�?6I"|�O�+��<.2����
���H�]��aiz�hV�3�G�8���v|�t"��.R�c��R�7�t+d�(������E���~0
z���D�$r2�ۜ~���oC����+Qsvx��~�%�8 �~��_|@�N�կ81�\�gNM�I�#�x� Þ������Ơ�� �W�����
�C�i���d�����lu;��$��1�G��5��xh\NM��#�o�L� Z��v6u��+�fd��$H�b�aKi���ܻ�N?ʥ�t���0F۟��+g��
��]�����Q���+��r{8"�2��8<c5�bc/]��*�oi+� ��ی�W~?�U���<ZIJƻ�
M�>S�4�.ofX�ɑ�����|֗��� x���&�s_�Мp{�W.�14��h�~RME�;X�V�X�`q���֡���|���:���֢oB�1�f�S����<��uҰ;�/�i7:|H&E2J��g� �U�m����v��J��_�PuyR=��'�Y:���T2y��'�*Ԭ.[�!m����e�m�}ҝZ�_�p�����]���9��=�é���eZ5<��Ծ#���D��0�}����W)�~�����H|G�<��kn� � ���������&����(�1��A��Ǹ���M�Dz�H�������i�ZQ#�J���Y���ӌ��~����
 |���|�O���>B�P_�����WI�~Ծ<0��4%a�r��� ��UΉ�>��c��y� �~1��b�5����w��|I�ϊ1�ٯ��4D`A �y�{�-+N��
�S�kڲ�V�CXR��)����M�^Ѡ�����S��c��^3��!�
�}b}VBَ'�
��9�ִ�/j~!�]/D�Y_�'�׿�}������U��Q��DRBͲ>GL�s���SnJ�Q(�W�� ���C�x���`rb�F������
}G��:~��çiv��Z�1Q�
=�V��&,gߥI�}kds�ѻ4R�V
EP
EP
EP
EP
EP
EP
H)I����1@�(;�=7JkO�8�j���_	ٛ�Vr�\�Q�0� "�=����_���Z;-8�*ᛯ��[�i��no�ZU��>�#/����9�]��x����0]�>� �3u&��%���S�9/PQ������Vҭ�tIb�xP�� ==*9
<�I�,��w�p<��۽}!<�0��<�s��O�>�j��PX�7�����u�Mr���3�<`�Z\��g�:^�q�V\���W������K��g�.잹ȩ�Z]�]�<�nJ��}+v-"�L��xP1s�}?ȥr�9MS@���-	h�d�5���i�E�kg��ڵ1q4��$�]���oh��~H�
jU�d6�`�	j����Z�|Aa1mR1��,홾f.M�z0<d*��2D�� ^
�mDR��5[��6fA�=jV�m�%%�&��ܣ
Lg�-���/���Q^k�U�.�����!S����/�+�Tä�w��F���Ka6zS���~\�f��N�y1n�W�7� <i;
gjG l~��C���~,�eنmn@�1��{�p=�ڄ8��������qڷ4�
�j��id�� �ֺx[���r1��O���p�T$��5e���%�D���s^�����3��Q���PeVQ��� ֧�q9���[���Fہ�3� ֮3�����kϽ}C�ߥ���ac��r~��֦[�mF��\�'�$ruF�88'���'X{Ǒj6p;�
�T0�"/�Ӡ��\�Au��0H�Ş���fD���2�6��X��Eֵ6�������
��.�
��_q|)���#�6nl���f����8���W���E�h���u����C����O=FU[�{�*�
���)-J����+s0��( ��( ��( ��( ��( ��
 RRs�Rn�8�FJ�?����[g���:��J��⭧����ټ���ь㯸�����~ x��4� ~Kt�+��x��������r��
kо�B�N�_33t9��V��|�n����]n�ʷBF7@;�+6�jxR�O�H�l���d��4�����9_aRM�k��7W�q���˵mk0�]���\�d�5<̾RƩ�ì�z8��- (�d�2'�,
��� l09��
;���$
����1�����Թ6>[Pi��۬h����=�V��'O2V�K0� ��� T��I�`z'_֚C�H�/�G Է���4�V��� ���5,up��쇖?夿w�5j9]����A��Pn��<����:�c��s[V���5��7��� �]v��Al�*��բ��p֖Z��	P�u���{� _N�����]�6�@ȫ��aՏ���@6���s���X��+�W�1�q@ tX鴫��`I8��h�3�D��� G���m�
vC�ċ�i�ҝ�zR�zP!�Ҕ`p:�P
�}��>5|4��VR��!�-��䝒�I���,O9�8�(=�e"��|��ۦ�u����K�*pl��?�����B�
����k@u=$Mz%%S��r~S��s�W��۴�ͧ�1��;Lg��9�9�qw:)Ծ��~Ǟ+��|7s�]M�d�� 9)�V5�"���ھ;��/��?�p�� ML�G��N=���ҾÈ�67c<t��_	�U��(��3
(��
(��
(��
(��
(��

�FI# ���>&X�L1#�}0�瞾�o��};��^��̠yJ}}ǡ�����Ǿ%������!<�z��b��f���E�e��}�I�]���ֽN��zZ�-�T0�I�� ��Wiie�h�R�in��-�l����P��N׉b���g��f�I���ìh% �$�L��v�ˆ��*n.Kr{wa��ҷ�����R�<Lr�:����k�5�n��:ԥ|������m����o
�Ʊ-܋��)������]5��c���B�]�u�s��Т��8�� �c�������G�
��kQ=
w,�#
ό��k-�;�^�ҥGg��m��J�������m!�{3�c��� ���n6!J�MCź^�)��_�\�@�� �+cß��#`Ĉ#=��߮j
ᔶ��/2�>nG�z�<+d�6�3G� <��M4��Ҽ�����'�� 
�m4��H� Ǫ���������Յ�$q�����pxZZ)�gڊ(��(��(��(��(��(��	�W�|s�Z|ak���m�D���:rJ��EL�r��~wkM�����CX��
�����_v�4�E��|!e�u�.W%1�zu?θߎb�%�#��QB�#A��pN9��^7�8��R�����᭭��D�dA&Ӷ
��J:h9>c�t`l�ҝQ+9 erGn�"  0=*��(��(��(��(��(��<py�+�^(��#��oU�c���q�A[3K1�#����?�|�������B_M�� Uo��ny<�1�BW&N���K⏍�ֵX���4�
�\�s^��� jQ�4ӤM�ب���9�O	�i~M������8� 
[���$�a��7 烚%e�1��;�����z7�a�X���y?�E�ѧ�Y�� ���n� *G�1�#9��U�j:�z���ċ���s\E�5��d������/S.�8�m��9&�:!O�����?�ڤ�Ii`"���ݺ��zUχ�
[)R�S��.OA�ҽ"Eh
�J�[���K4@#W؜
YٳU5f�<�7CIwv�tJ
T� ���v�-�~e��3�5���%w����Ҷ�9�l��߇o5)��K���v�lDڧ��n�� bpǠ����z���dP�ch�aRm���K�h�� ���`QE QE QE QE QE QE QE P(����y�s:���k��t���.�f' rq���h�`3|=�������w=ȁv�&��3�p � 00(��Q@Q@Q@Q@���M
��W�V �漫�� ��o�/R��PF3�y��"���~џ��L^�������Lu_���ڣ�k�Ӵ8�#ے���y��+M*�>&�4�u+��`=cp������oōj���:-�p�wp~���Q*�%*nH�/�=�6�a#4��׎��cÚ�w��yC
�޾��W����})�������ǚ�EE�Q4�w��_J��ȨÔ��jf�5�>�<�QLաk�F��0$ۏ�i���Qi�<Qܩ���ߣ{qR�\^j�F
"PF��c��wЧRƼ����}�7r#^����n�����Z[vo������>��Ϟ[<�t����(c~��m�1����K#�S��I
�1S���@���Z@5F)�E0
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
)8;q�z��j6�:s�3yv�
��ӥ b|J��
ͭj'*�"
�����㔃T�y�ėc�^lb=$<rx��w�]������O��[���?g��N����?�=�J����QK�-Gn��vp��q����+��|Ku�k��/4E��5��6�o#����k��v�.���Z�U�jЏ3Q#�G���̭o�=�uȴY4�_�6��<��#��+�� ]f7��O�Z�^��<�9鎃ڹ��w:��z���F�;K R%��Ͽ���b?�N���~T��7�8�mp��:v����_�q����k��g�����j2��D|�Ǔ�ڵP!���|'����^k[R 2��~X��s��޽SC��u��$��,���a���\cV�X͑�j0�Ԙ��SQE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE R
�-DYD���� ye����/x��◌��te�-q%��p�����ںߎ>7����
N�4a�.� R�#�!{�\ts� �'᳣xja�o%� T��9�ڔ�����4|Q��w�Z|Z20�k�� G�>��x��O�^;�]�o..�t�n7��h���� �ֆ��[\��y5��/glKv:��x��u����^)����-��_ۏL��w����O�Y5y`�� ��6��gҴ�/�ɬ��i��[X��~77O��_	x>}NU���� �=?�=����6;XDa�+XSH�R���l��AQ��<7ֺ8�@���Ԋ�zS�A7qB�
Z(�AEP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
^W���Z�#GkM-<�n�G��B�?;�ߗd��J�~,x�F�O�n|K�[4�
��
�s���sI�
�ƃ�Y�%�]���~{_K6��� d�`We�^�Z�����.	�+��!�g={����$�|=����Zv��,\:����]ǁ�uqn���[?
!?�o�Q�ˑ͝	��7C�LwfbYoG
܋��?�^��_5�[����r�º/
�n�I�8 �
�9��[��"Sy\��>]eR�H-#��#0'�������TH����( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( �����^���c��e��f��������6�b8�8�l���r�1ڀ<�����&[�^d�B���>��ץYY�h�#��0���JpP
  c4��� QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE
��<!DOCTYPE html>
'use strict'
exports.generate = generate
exports.generateFromInstall = generateFromInstall
exports.submitForInstallReport = submitForInstallReport
exports.submitForFullReport = submitForFullReport
exports.printInstallReport = printInstallReport
exports.printParseableReport = printParseableReport
exports.printFullReport = printFullReport

const auditReport = require('npm-audit-report')
const npmConfig = require('../config/figgy-config.js')
const figgyPudding = require('figgy-pudding')
const treeToShrinkwrap = require('../shrinkwrap.js').treeToShrinkwrap
const packageId = require('../utils/package-id.js')
const output = require('../utils/output.js')
const npm = require('../npm.js')
const qw = require('qw')
const regFetch = require('npm-registry-fetch')
const perf = require('../utils/perf.js')
const npa = require('npm-package-arg')
const uuid = require('uuid')
const ssri = require('ssri')
const cloneDeep = require('lodash.clonedeep')

// used when scrubbing module names/specifiers
const runId = uuid.v4()

const InstallAuditConfig = figgyPudding({
  color: {},
  json: {},
  unicode: {}
}, {
  other (key) {
    return /:registry$/.test(key)
  }
})

function submitForInstallReport (auditData) {
  const opts = InstallAuditConfig(npmConfig())
  const scopedRegistries = [...opts.keys()].filter(
    k => /:registry$/.test(k)
  ).map(k => opts[k])
  scopedRegistries.forEach(registry => {
    // we don't care about the response so destroy the stream if we can, or leave it flowing
    // so it can eventually finish and clean up after itself
    regFetch('/-/npm/v1/security/audits/quick', opts.concat({
      method: 'POST',
      registry,
      gzip: true,
      body: auditData
    })).then(_ => {
      _.body.on('error', () => {})
      if (_.body.destroy) {
        _.body.destroy()
      } else {
        _.body.resume()
      }
    }, _ => {})
  })
  perf.emit('time', 'audit submit')
  return regFetch('/-/npm/v1/security/audits/quick', opts.concat({
    method: 'POST',
    gzip: true,
    body: auditData
  })).then(response => {
    perf.emit('timeEnd', 'audit submit')
    perf.emit('time', 'audit body')
    return response.json()
  }).then(result => {
    perf.emit('timeEnd', 'audit body')
    return result
  })
}

function submitForFullReport (auditData) {
  perf.emit('time', 'audit submit')
  const opts = InstallAuditConfig(npmConfig())
  return regFetch('/-/npm/v1/security/audits', opts.concat({
    method: 'POST',
    gzip: true,
    body: auditData
  })).then(response => {
    perf.emit('timeEnd', 'audit submit')
    perf.emit('time', 'audit body')
    return response.json()
  }).then(result => {
    perf.emit('timeEnd', 'audit body')
    result.runId = runId
    return result
  })
}

function printInstallReport (auditResult) {
  const opts = InstallAuditConfig(npmConfig())
  return auditReport(auditResult, {
    reporter: 'install',
    withColor: opts.color,
    withUnicode: opts.unicode
  }).then(result => output(result.report))
}

function printFullReport (auditResult) {
  const opts = InstallAuditConfig(npmConfig())
  return auditReport(auditResult, {
    log: output,
    reporter: opts.json ? 'json' : 'detail',
    withColor: opts.color,
    withUnicode: opts.unicode
  }).then(result => output(result.report))
}

function printParseableReport (auditResult) {
  const opts = InstallAuditConfig(npmConfig())
  return auditReport(auditResult, {
    log: output,
    reporter: 'parseable',
    withColor: opts.color,
    withUnicode: opts.unicode
  }).then(result => output(result.report))
}

function generate (shrinkwrap, requires, diffs, install, remove) {
  const sw = cloneDeep(shrinkwrap)
  delete sw.lockfileVersion
  sw.requires = scrubRequires(requires)
  scrubDeps(sw.dependencies)

  // sw.diffs = diffs || {}
  sw.install = (install || []).map(scrubArg)
  sw.remove = (remove || []).map(scrubArg)
  return generateMetadata().then((md) => {
    sw.metadata = md
    return sw
  })
}

const scrubKeys = qw`version`
const deleteKeys = qw`from resolved`

function scrubDeps (deps) {
  if (!deps) return
  Object.keys(deps).forEach(name => {
    if (!shouldScrubName(name) && !shouldScrubSpec(name, deps[name].version)) return
    const value = deps[name]
    delete deps[name]
    deps[scrub(name)] = value
  })
  Object.keys(deps).forEach(name => {
    for (let toScrub of scrubKeys) {
      if (!deps[name][toScrub]) continue
      deps[name][toScrub] = scrubSpec(name, deps[name][toScrub])
    }
    for (let toDelete of deleteKeys) delete deps[name][toDelete]

    scrubRequires(deps[name].requires)
    scrubDeps(deps[name].dependencies)
  })
}

function scrubRequires (reqs) {
  if (!reqs) return reqs
  Object.keys(reqs).forEach(name => {
    const spec = reqs[name]
    if (shouldScrubName(name) || shouldScrubSpec(name, spec)) {
      delete reqs[name]
      reqs[scrub(name)] = scrubSpec(name, spec)
    } else {
      reqs[name] = scrubSpec(name, spec)
    }
  })
  return reqs
}

function getScope (name) {
  if (name[0] === '@') return name.slice(0, name.indexOf('/'))
}

function shouldScrubName (name) {
  const scope = getScope(name)
  const cfg = npm.config // avoid the no-dynamic-lookups test
  return Boolean(scope && cfg.get(scope + ':registry'))
}
function shouldScrubSpec (name, spec) {
  const req = npa.resolve(name, spec)
  return !req.registry
}

function scrubArg (arg) {
  const req = npa(arg)
  let name = req.name
  if (shouldScrubName(name) || shouldScrubSpec(name, req.rawSpec)) {
    name = scrubName(name)
  }
  const spec = scrubSpec(req.name, req.rawSpec)
  return name + '@' + spec
}

function scrubName (name) {
  return shouldScrubName(name) ? scrub(name) : name
}

function scrubSpec (name, spec) {
  const req = npa.resolve(name, spec)
  if (req.registry) return spec
  if (req.type === 'git') {
    return 'git+ssh://' + scrub(spec)
  } else if (req.type === 'remote') {
    return 'https://' + scrub(spec)
  } else if (req.type === 'directory') {
    return 'file:' + scrub(spec)
  } else if (req.type === 'file') {
    return 'file:' + scrub(spec) + '.tar'
  } else {
    return scrub(spec)
  }
}

module.exports.scrub = scrub
function scrub (value, rid) {
  return ssri.fromData((rid || runId) + ' ' + value, {algorithms: ['sha256']}).hexDigest()
}

function generateMetadata () {
  const meta = {}
  meta.npm_version = npm.version
  meta.node_version = process.version
  meta.platform = process.platform
  meta.node_env = process.env.NODE_ENV

  return Promise.resolve(meta)
}
/*
  const head = path.resolve(npm.prefix, '.git/HEAD')
  return readFile(head, 'utf8').then((head) => {
    if (!head.match(/^ref: /)) {
      meta.commit_hash = head.trim()
      return
    }
    const headFile = head.replace(/^ref: /, '').trim()
    meta.branch = headFile.replace(/^refs[/]heads[/]/, '')
    return readFile(path.resolve(npm.prefix, '.git', headFile), 'utf8')
  }).then((commitHash) => {
    meta.commit_hash = commitHash.trim()
    const proc = spawn('git', qw`diff --quiet --exit-code package.json package-lock.json`, {cwd: npm.prefix, stdio: 'ignore'})
    return new Promise((resolve, reject) => {
      proc.once('error', reject)
      proc.on('exit', (code, signal) => {
        if (signal == null) meta.state = code === 0 ? 'clean' : 'dirty'
        resolve()
      })
    })
  }).then(() => meta, () => meta)
*/

function generateFromInstall (tree, diffs, install, remove) {
  const requires = {}
  tree.requires.forEach((pkg) => {
    requires[pkg.package.name] = tree.package.dependencies[pkg.package.name] || tree.package.devDependencies[pkg.package.name] || pkg.package.version
  })

  const auditInstall = (install || []).filter((a) => a.name).map(packageId)
  const auditRemove = (remove || []).filter((a) => a.name).map(packageId)
  const auditDiffs = {}
  diffs.forEach((action) => {
    const mutation = action[0]
    const child = action[1]
    if (mutation !== 'add' && mutation !== 'update' && mutation !== 'remove') return
    if (!auditDiffs[mutation]) auditDiffs[mutation] = []
    if (mutation === 'add') {
      auditDiffs[mutation].push({location: child.location})
    } else if (mutation === 'update') {
      auditDiffs[mutation].push({location: child.location, previous: packageId(child.oldPkg)})
    } else if (mutation === 'remove') {
      auditDiffs[mutation].push({previous: packageId(child)})
    }
  })

  return generate(treeToShrinkwrap(tree), requires, auditDiffs, auditInstall, auditRemove)
}