From a55c2d7733be6ac49b259950301b4b423f3cb4c2 Mon Sep 17 00:00:00 2001
From: tangowithfoxtrot <5676771+tangowithfoxtrot@users.noreply.github.com>
Date: Thu, 16 Nov 2023 12:25:30 -0800
Subject: [PATCH 01/55] [BEEEP] SM-1005 - Add env output option (#320)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

## Type of change

- [ ] Bug fix
- [x] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other

## Objective

Add an env output option to `bws`. This allows for easier command-line
usage in scripts, particularly where a JSON or YAML parser is not
desirable or available.

Basic usage examples in Bash:

- `source <(bws secret get ec9e0489-244e-4b3f-8782-b0a800fe562f -o env)`
- `bws secret list -o env > .env`

## Code changes

- **`crates/bws/src/render.rs`:** Output secrets in `key="value"` format

## Screenshots


![image](https://github.com/bitwarden/sdk/assets/5676771/72201357-dc4c-471e-b1f0-011297dbb978)

## Before you submit

- Please add **unit tests** where it makes sense to do so (encouraged
but not required)

---------

Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
---
 Cargo.lock               |  1 +
 crates/bws/Cargo.toml    |  1 +
 crates/bws/src/render.rs | 26 ++++++++++++++++++++++++++
 3 files changed, 28 insertions(+)

diff --git a/Cargo.lock b/Cargo.lock
index 184066772..6a02ad594 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -539,6 +539,7 @@ dependencies = [
  "env_logger",
  "log",
  "openssl",
+ "regex",
  "serde",
  "serde_json",
  "serde_yaml",
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 00ec40da7..9ccd5c546 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -37,6 +37,7 @@ thiserror = "1.0.40"
 tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
 toml = "0.8.0"
 uuid = { version = "^1.3.3", features = ["serde"] }
+regex = { version = "1.10.2", features=["std", "perf"], default-features=false }
 
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = ["secrets"] }
 
diff --git a/crates/bws/src/render.rs b/crates/bws/src/render.rs
index 4f2a32e9a..83c5cd532 100644
--- a/crates/bws/src/render.rs
+++ b/crates/bws/src/render.rs
@@ -9,6 +9,7 @@ use serde::Serialize;
 pub(crate) enum Output {
     JSON,
     YAML,
+    Env,
     Table,
     TSV,
     None,
@@ -49,6 +50,31 @@ pub(crate) fn serialize_response<T: Serialize + TableSerialize<N>, const N: usiz
             let text = serde_yaml::to_string(&data).unwrap();
             pretty_print("yaml", &text, color);
         }
+        Output::Env => {
+            let valid_key_regex = regex::Regex::new("^[a-zA-Z_][a-zA-Z0-9_]*$").unwrap();
+
+            let mut commented_out = false;
+            let mut text: Vec<String> = data
+                .get_values()
+                .into_iter()
+                .map(|row| {
+                    if valid_key_regex.is_match(&row[1]) {
+                        format!("{}=\"{}\"", row[1], row[2])
+                    } else {
+                        commented_out = true;
+                        format!("# {}=\"{}\"", row[1], row[2].replace('\n', "\n# "))
+                    }
+                })
+                .collect();
+
+            if commented_out {
+                text.push(String::from(
+                    "\n# one or more secrets have been commented-out due to a problematic key name",
+                ));
+            }
+
+            pretty_print("sh", &format!("{}\n", text.join("\n")), color);
+        }
         Output::Table => {
             let mut table = Table::new();
             table

From c4b041197652a67e52fafc9dbf772f043e5b393f Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 20 Nov 2023 10:30:53 +0100
Subject: [PATCH 02/55] Update npm minor (#336)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend Renovate logo
banner](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| [quicktype-core](https://togithub.com/quicktype/quicktype) |
[`23.0.77` ->
`23.0.79`](https://renovatebot.com/diffs/npm/quicktype-core/23.0.77/23.0.79)
|
[![age](https://developer.mend.io/api/mc/badges/age/npm/quicktype-core/23.0.79?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/quicktype-core/23.0.79?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/quicktype-core/23.0.77/23.0.79?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/quicktype-core/23.0.77/23.0.79?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
| [ts-loader](https://togithub.com/TypeStrong/ts-loader) | [`9.5.0` ->
`9.5.1`](https://renovatebot.com/diffs/npm/ts-loader/9.5.0/9.5.1) |
[![age](https://developer.mend.io/api/mc/badges/age/npm/ts-loader/9.5.1?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/ts-loader/9.5.1?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/ts-loader/9.5.0/9.5.1?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/ts-loader/9.5.0/9.5.1?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|

---

### Release Notes

<details>
<summary>quicktype/quicktype (quicktype-core)</summary>

###
[`v23.0.79`](https://togithub.com/quicktype/quicktype/compare/317deefa6a0c8ba0201b9b2b50d00c7e93c41d78...958d199d74b507175d9a49871c5d3770eaaf7873)

[Compare
Source](https://togithub.com/quicktype/quicktype/compare/317deefa6a0c8ba0201b9b2b50d00c7e93c41d78...958d199d74b507175d9a49871c5d3770eaaf7873)

###
[`v23.0.78`](https://togithub.com/quicktype/quicktype/compare/55dc6a7912715b7db45419958bf89d00637cd4cd...317deefa6a0c8ba0201b9b2b50d00c7e93c41d78)

[Compare
Source](https://togithub.com/quicktype/quicktype/compare/55dc6a7912715b7db45419958bf89d00637cd4cd...317deefa6a0c8ba0201b9b2b50d00c7e93c41d78)

</details>

<details>
<summary>TypeStrong/ts-loader (ts-loader)</summary>

###
[`v9.5.1`](https://togithub.com/TypeStrong/ts-loader/blob/HEAD/CHANGELOG.md#951)

[Compare
Source](https://togithub.com/TypeStrong/ts-loader/compare/v9.5.0...v9.5.1)

- [fix: inputSourceMap can be
null](https://togithub.com/TypeStrong/ts-loader/pull/1639)
\[[#&#8203;1638](https://togithub.com/TypeStrong/ts-loader/issues/1638)]
- thanks [@&#8203;johnnyreilly](https://togithub.com/johnnyreilly) and
[@&#8203;michaeltford](https://togithub.com/michaeltford)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "every weekend" (UTC), Automerge - At
any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config help](https://togithub.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/bitwarden/sdk).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy41OS44IiwidXBkYXRlZEluVmVyIjoiMzcuNTkuOCIsInRhcmdldEJyYW5jaCI6Im1hc3RlciJ9-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 languages/js_webassembly/package-lock.json | 8 ++++----
 languages/js_webassembly/package.json      | 2 +-
 package-lock.json                          | 8 ++++----
 package.json                               | 2 +-
 4 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/languages/js_webassembly/package-lock.json b/languages/js_webassembly/package-lock.json
index 066f862be..e3e20e9aa 100644
--- a/languages/js_webassembly/package-lock.json
+++ b/languages/js_webassembly/package-lock.json
@@ -7,7 +7,7 @@
       "devDependencies": {
         "html-webpack-plugin": "5.5.3",
         "text-encoding": "0.7.0",
-        "ts-loader": "9.5.0",
+        "ts-loader": "9.5.1",
         "wasm-pack": "0.12.1",
         "webpack": "5.89.0",
         "webpack-cli": "5.1.4",
@@ -3613,9 +3613,9 @@
       }
     },
     "node_modules/ts-loader": {
-      "version": "9.5.0",
-      "resolved": "https://registry.npmjs.org/ts-loader/-/ts-loader-9.5.0.tgz",
-      "integrity": "sha512-LLlB/pkB4q9mW2yLdFMnK3dEHbrBjeZTYguaaIfusyojBgAGf5kF+O6KcWqiGzWqHk0LBsoolrp4VftEURhybg==",
+      "version": "9.5.1",
+      "resolved": "https://registry.npmjs.org/ts-loader/-/ts-loader-9.5.1.tgz",
+      "integrity": "sha512-rNH3sK9kGZcH9dYzC7CewQm4NtxJTjSEVRJ2DyBZR7f8/wcta+iV44UPCXc5+nzDzivKtlzV6c9P4e+oFhDLYg==",
       "dev": true,
       "dependencies": {
         "chalk": "^4.1.0",
diff --git a/languages/js_webassembly/package.json b/languages/js_webassembly/package.json
index 95d7002a5..d5d7342df 100644
--- a/languages/js_webassembly/package.json
+++ b/languages/js_webassembly/package.json
@@ -6,7 +6,7 @@
   "devDependencies": {
     "html-webpack-plugin": "5.5.3",
     "text-encoding": "0.7.0",
-    "ts-loader": "9.5.0",
+    "ts-loader": "9.5.1",
     "wasm-pack": "0.12.1",
     "webpack": "5.89.0",
     "webpack-cli": "5.1.4",
diff --git a/package-lock.json b/package-lock.json
index 7791b3b69..ac70b185d 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -12,7 +12,7 @@
         "@openapitools/openapi-generator-cli": "2.7.0",
         "handlebars": "^4.7.8",
         "prettier": "3.1.0",
-        "quicktype-core": "23.0.77",
+        "quicktype-core": "23.0.79",
         "rimraf": "5.0.5",
         "ts-node": "10.9.1",
         "typescript": "5.2.2"
@@ -1494,9 +1494,9 @@
       }
     },
     "node_modules/quicktype-core": {
-      "version": "23.0.77",
-      "resolved": "https://registry.npmjs.org/quicktype-core/-/quicktype-core-23.0.77.tgz",
-      "integrity": "sha512-QABFgMHVsyW7CAcLGWvIQXgjZ7ehPnebfV/3x9c5HtuJVXgYLrEG/+zyQd1O+OPWpQrhbwU97doJTZRw+acA6A==",
+      "version": "23.0.79",
+      "resolved": "https://registry.npmjs.org/quicktype-core/-/quicktype-core-23.0.79.tgz",
+      "integrity": "sha512-Auzy8AhorFt6YGeB53/dzUSINmKKassAyCsr2wpNgG9XoC3i6oUoLuySNUzYIkyCFCGmKdBRBQeyAqPOVteoYw==",
       "dev": true,
       "dependencies": {
         "@glideapps/ts-necessities": "2.1.3",
diff --git a/package.json b/package.json
index ad38f3a10..97f08c571 100644
--- a/package.json
+++ b/package.json
@@ -23,7 +23,7 @@
     "@openapitools/openapi-generator-cli": "2.7.0",
     "handlebars": "^4.7.8",
     "prettier": "3.1.0",
-    "quicktype-core": "23.0.77",
+    "quicktype-core": "23.0.79",
     "rimraf": "5.0.5",
     "ts-node": "10.9.1",
     "typescript": "5.2.2"

From 9fab1fa4ddbdcae7b597bbb674da4e2fd11fd287 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 20 Nov 2023 10:58:19 +0100
Subject: [PATCH 03/55] Update Rust crate itertools to 0.12.0 (#338)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend Renovate logo
banner](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [itertools](https://togithub.com/rust-itertools/itertools) |
dependencies | minor | `0.11.0` -> `0.12.0` |

---

### Release Notes

<details>
<summary>rust-itertools/itertools (itertools)</summary>

###
[`v0.12.0`](https://togithub.com/rust-itertools/itertools/blob/HEAD/CHANGELOG.md#0120)

[Compare
Source](https://togithub.com/rust-itertools/itertools/compare/v0.11.0...v0.12.0)

##### Breaking

- Made `take_while_inclusive` consume iterator by value
([#&#8203;709](https://togithub.com/rust-itertools/itertools/issues/709))
- Added `Clone` bound to `Unique`
([#&#8203;777](https://togithub.com/rust-itertools/itertools/issues/777))

##### Added

- Added `Itertools::try_len`
([#&#8203;723](https://togithub.com/rust-itertools/itertools/issues/723))
- Added free function `sort_unstable`
([#&#8203;796](https://togithub.com/rust-itertools/itertools/issues/796))
- Added `GroupMap::fold_with`
([#&#8203;778](https://togithub.com/rust-itertools/itertools/issues/778),
[#&#8203;785](https://togithub.com/rust-itertools/itertools/issues/785))
- Added `PeekNth::{peek_mut, peek_nth_mut}`
([#&#8203;716](https://togithub.com/rust-itertools/itertools/issues/716))
- Added `PeekNth::{next_if, next_if_eq}`
([#&#8203;734](https://togithub.com/rust-itertools/itertools/issues/734))
- Added conversion into `(Option<A>,Option<B>)` to `EitherOrBoth`
([#&#8203;713](https://togithub.com/rust-itertools/itertools/issues/713))
- Added conversion from `Either<A, B>` to `EitherOrBoth<A, B>`
([#&#8203;715](https://togithub.com/rust-itertools/itertools/issues/715))
- Implemented `ExactSizeIterator` for `Tuples`
([#&#8203;761](https://togithub.com/rust-itertools/itertools/issues/761))
- Implemented `ExactSizeIterator` for `(Circular)TupleWindows`
([#&#8203;752](https://togithub.com/rust-itertools/itertools/issues/752))
- Made `EitherOrBoth<T>` a shorthand for `EitherOrBoth<T, T>`
([#&#8203;719](https://togithub.com/rust-itertools/itertools/issues/719))

##### Changed

- Added missing `#[must_use]` annotations on iterator adaptors
([#&#8203;794](https://togithub.com/rust-itertools/itertools/issues/794))
- Made `Combinations` lazy
([#&#8203;795](https://togithub.com/rust-itertools/itertools/issues/795))
- Made `Intersperse(With)` lazy
([#&#8203;797](https://togithub.com/rust-itertools/itertools/issues/797))
- Made `Permutations` lazy
([#&#8203;793](https://togithub.com/rust-itertools/itertools/issues/793))
- Made `Product` lazy
([#&#8203;800](https://togithub.com/rust-itertools/itertools/issues/800))
- Made `TupleWindows` lazy
([#&#8203;602](https://togithub.com/rust-itertools/itertools/issues/602))
- Specialized `Combinations::{count, size_hint}`
([#&#8203;729](https://togithub.com/rust-itertools/itertools/issues/729))
- Specialized `CombinationsWithReplacement::{count, size_hint}`
([#&#8203;737](https://togithub.com/rust-itertools/itertools/issues/737))
- Specialized `Powerset::fold`
([#&#8203;765](https://togithub.com/rust-itertools/itertools/issues/765))
- Specialized `Powerset::count`
([#&#8203;735](https://togithub.com/rust-itertools/itertools/issues/735))
- Specialized `TupleCombinations::{count, size_hint}`
([#&#8203;763](https://togithub.com/rust-itertools/itertools/issues/763))
- Specialized `TupleCombinations::fold`
([#&#8203;775](https://togithub.com/rust-itertools/itertools/issues/775))
- Specialized `WhileSome::fold`
([#&#8203;780](https://togithub.com/rust-itertools/itertools/issues/780))
- Specialized `WithPosition::fold`
([#&#8203;772](https://togithub.com/rust-itertools/itertools/issues/772))
- Specialized `ZipLongest::fold`
([#&#8203;774](https://togithub.com/rust-itertools/itertools/issues/774))
- Changed `{min, max}_set*` operations require `alloc` feature, instead
of `std`
([#&#8203;760](https://togithub.com/rust-itertools/itertools/issues/760))
- Improved documentation of `tree_fold1`
([#&#8203;787](https://togithub.com/rust-itertools/itertools/issues/787))
- Improved documentation of `permutations`
([#&#8203;724](https://togithub.com/rust-itertools/itertools/issues/724))
- Fixed typo in documentation of `multiunzip`
([#&#8203;770](https://togithub.com/rust-itertools/itertools/issues/770))

##### Notable Internal Changes

- Improved specialization tests
([#&#8203;799](https://togithub.com/rust-itertools/itertools/issues/799),
[#&#8203;786](https://togithub.com/rust-itertools/itertools/issues/786),
[#&#8203;782](https://togithub.com/rust-itertools/itertools/issues/782))
- Simplified implementation of `Permutations`
([#&#8203;739](https://togithub.com/rust-itertools/itertools/issues/739),
[#&#8203;748](https://togithub.com/rust-itertools/itertools/issues/748),
[#&#8203;790](https://togithub.com/rust-itertools/itertools/issues/790))
- Combined `Merge`/`MergeBy`/`MergeJoinBy` implementations
([#&#8203;736](https://togithub.com/rust-itertools/itertools/issues/736))
- Simplified `Permutations::size_hint`
([#&#8203;739](https://togithub.com/rust-itertools/itertools/issues/739))
- Fix wrapping arithmetic in benchmarks
([#&#8203;770](https://togithub.com/rust-itertools/itertools/issues/770))
- Enforced `rustfmt` in CI
([#&#8203;751](https://togithub.com/rust-itertools/itertools/issues/751))
- Disallowed compile warnings in CI
([#&#8203;720](https://togithub.com/rust-itertools/itertools/issues/720))
- Used `cargo hack` to check MSRV
([#&#8203;754](https://togithub.com/rust-itertools/itertools/issues/754))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "every weekend" (UTC), Automerge - At
any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/bitwarden/sdk).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy41OS44IiwidXBkYXRlZEluVmVyIjoiMzcuNTkuOCIsInRhcmdldEJyYW5jaCI6Im1hc3RlciJ9-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock                    | 4 ++--
 crates/sdk-schemas/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 6a02ad594..7ca15b625 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -1647,9 +1647,9 @@ checksum = "616cde7c720bb2bb5824a224687d8f77bfd38922027f01d825cd7453be5099fb"
 
 [[package]]
 name = "itertools"
-version = "0.11.0"
+version = "0.12.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b1c173a5686ce8bfa551b3563d0c2170bf24ca44da99c7ca4bfdab5418c3fe57"
+checksum = "25db6b064527c5d482d0423354fcd07a89a2dfe07b67892e62411946db7f07b0"
 dependencies = [
  "either",
 ]
diff --git a/crates/sdk-schemas/Cargo.toml b/crates/sdk-schemas/Cargo.toml
index c6de9eaca..64ce34274 100644
--- a/crates/sdk-schemas/Cargo.toml
+++ b/crates/sdk-schemas/Cargo.toml
@@ -15,7 +15,7 @@ internal = [
 schemars = { version = "0.8.12", features = ["preserve_order"] }
 serde_json = "1.0.96"
 anyhow = "1.0.71"
-itertools = "0.11.0"
+itertools = "0.12.0"
 
 bitwarden = { path = "../bitwarden" }
 bitwarden-json = { path = "../bitwarden-json" }

From 8788f184750fef3045d0fc38666ddf82627d34b2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Mon, 20 Nov 2023 11:03:45 +0100
Subject: [PATCH 04/55] Split initializeCrypto (#329)

## Type of change
```
- [ ] Bug fix
- [ ] New feature development
- [x] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
Split initializeCrypto into separate user and organization methods, so
clients won't need to hold on to the master password until after sync is
done to initialize the organization keys.
---
 crates/bitwarden-uniffi/README.md             |  1 +
 crates/bitwarden-uniffi/src/crypto.rs         | 35 +++++++
 crates/bitwarden-uniffi/src/docs.rs           |  5 +-
 crates/bitwarden-uniffi/src/lib.rs            | 22 +----
 .../src/client/encryption_settings.rs         |  4 +
 crates/bitwarden/src/mobile/client_crypto.rs  | 13 ++-
 crates/bitwarden/src/mobile/crypto.rs         | 57 +++++++----
 crates/bitwarden/tests/register.rs            | 16 ++-
 .../bitwarden/myapplication/MainActivity.kt   | 21 ++--
 languages/kotlin/doc.md                       | 99 +++++++++++++++----
 languages/swift/iOS/App/ContentView.swift     | 14 ++-
 11 files changed, 212 insertions(+), 75 deletions(-)
 create mode 100644 crates/bitwarden-uniffi/src/crypto.rs

diff --git a/crates/bitwarden-uniffi/README.md b/crates/bitwarden-uniffi/README.md
index 7dff0b291..1be7706bb 100644
--- a/crates/bitwarden-uniffi/README.md
+++ b/crates/bitwarden-uniffi/README.md
@@ -5,6 +5,7 @@
 ```bash
 cargo +nightly rustdoc -p bitwarden -- -Zunstable-options --output-format json
 cargo +nightly rustdoc -p bitwarden-uniffi -- -Zunstable-options --output-format json
+npm run schemas
 
 npx ts-node ./support/docs/docs.ts > languages/kotlin/doc.md
 ```
diff --git a/crates/bitwarden-uniffi/src/crypto.rs b/crates/bitwarden-uniffi/src/crypto.rs
new file mode 100644
index 000000000..1792a5bbc
--- /dev/null
+++ b/crates/bitwarden-uniffi/src/crypto.rs
@@ -0,0 +1,35 @@
+use std::sync::Arc;
+
+use bitwarden::mobile::crypto::{InitOrgCryptoRequest, InitUserCryptoRequest};
+
+use crate::{error::Result, Client};
+
+#[derive(uniffi::Object)]
+pub struct ClientCrypto(pub(crate) Arc<Client>);
+
+#[uniffi::export]
+impl ClientCrypto {
+    /// Initialization method for the user crypto. Needs to be called before any other crypto operations.
+    pub async fn initialize_user_crypto(&self, req: InitUserCryptoRequest) -> Result<()> {
+        Ok(self
+            .0
+             .0
+            .write()
+            .await
+            .crypto()
+            .initialize_user_crypto(req)
+            .await?)
+    }
+
+    /// Initialization method for the organization crypto. Needs to be called after `initialize_user_crypto` but before any other crypto operations.
+    pub async fn initialize_org_crypto(&self, req: InitOrgCryptoRequest) -> Result<()> {
+        Ok(self
+            .0
+             .0
+            .write()
+            .await
+            .crypto()
+            .initialize_org_crypto(req)
+            .await?)
+    }
+}
diff --git a/crates/bitwarden-uniffi/src/docs.rs b/crates/bitwarden-uniffi/src/docs.rs
index bc47a19c3..45fabb0b7 100644
--- a/crates/bitwarden-uniffi/src/docs.rs
+++ b/crates/bitwarden-uniffi/src/docs.rs
@@ -1,7 +1,7 @@
 use bitwarden::{
     auth::password::MasterPasswordPolicyOptions,
     client::kdf::Kdf,
-    mobile::crypto::InitCryptoRequest,
+    mobile::crypto::{InitOrgCryptoRequest, InitUserCryptoRequest},
     tool::{ExportFormat, PassphraseGeneratorRequest, PasswordGeneratorRequest},
     vault::{
         Cipher, CipherView, Collection, Folder, FolderView, Send, SendListView, SendView,
@@ -24,7 +24,8 @@ pub enum DocRef {
     SendListView(SendListView),
 
     // Crypto
-    InitCryptoRequest(InitCryptoRequest),
+    InitUserCryptoRequest(InitUserCryptoRequest),
+    InitOrgCryptoRequest(InitOrgCryptoRequest),
 
     // Generators
     PasswordGeneratorRequest(PasswordGeneratorRequest),
diff --git a/crates/bitwarden-uniffi/src/lib.rs b/crates/bitwarden-uniffi/src/lib.rs
index 6e5415d38..5035f22b9 100644
--- a/crates/bitwarden-uniffi/src/lib.rs
+++ b/crates/bitwarden-uniffi/src/lib.rs
@@ -4,9 +4,10 @@ use std::sync::Arc;
 
 use async_lock::RwLock;
 use auth::ClientAuth;
-use bitwarden::{client::client_settings::ClientSettings, mobile::crypto::InitCryptoRequest};
+use bitwarden::client::client_settings::ClientSettings;
 
 pub mod auth;
+pub mod crypto;
 mod error;
 pub mod tool;
 mod uniffi_support;
@@ -15,6 +16,7 @@ pub mod vault;
 #[cfg(feature = "docs")]
 pub mod docs;
 
+use crypto::ClientCrypto;
 use error::Result;
 use tool::ClientGenerators;
 use vault::ClientVault;
@@ -22,9 +24,6 @@ use vault::ClientVault;
 #[derive(uniffi::Object)]
 pub struct Client(RwLock<bitwarden::Client>);
 
-#[derive(uniffi::Object)]
-pub struct ClientCrypto(Arc<Client>);
-
 #[uniffi::export]
 impl Client {
     /// Initialize a new instance of the SDK client
@@ -58,18 +57,3 @@ impl Client {
         msg
     }
 }
-
-#[uniffi::export]
-impl ClientCrypto {
-    /// Initialization method for the crypto. Needs to be called before any other crypto operations.
-    pub async fn initialize_crypto(&self, req: InitCryptoRequest) -> Result<()> {
-        Ok(self
-            .0
-             .0
-            .write()
-            .await
-            .crypto()
-            .initialize_crypto(req)
-            .await?)
-    }
-}
diff --git a/crates/bitwarden/src/client/encryption_settings.rs b/crates/bitwarden/src/client/encryption_settings.rs
index da5398a12..6533c7d2e 100644
--- a/crates/bitwarden/src/client/encryption_settings.rs
+++ b/crates/bitwarden/src/client/encryption_settings.rs
@@ -80,6 +80,10 @@ impl EncryptionSettings {
 
         let private_key = self.private_key.as_ref().ok_or(Error::VaultLocked)?;
 
+        // Make sure we only keep the keys given in the arguments and not any of the previous
+        // ones, which might be from organizations that the user is no longer a part of anymore
+        self.org_keys.clear();
+
         // Decrypt the org keys with the private key
         for (org_id, org_enc_key) in org_enc_keys {
             let data = match org_enc_key {
diff --git a/crates/bitwarden/src/mobile/client_crypto.rs b/crates/bitwarden/src/mobile/client_crypto.rs
index 67f69d8f1..c0edb1982 100644
--- a/crates/bitwarden/src/mobile/client_crypto.rs
+++ b/crates/bitwarden/src/mobile/client_crypto.rs
@@ -2,7 +2,9 @@ use crate::Client;
 #[cfg(feature = "internal")]
 use crate::{
     error::Result,
-    mobile::crypto::{initialize_crypto, InitCryptoRequest},
+    mobile::crypto::{
+        initialize_org_crypto, initialize_user_crypto, InitOrgCryptoRequest, InitUserCryptoRequest,
+    },
 };
 
 pub struct ClientCrypto<'a> {
@@ -11,8 +13,13 @@ pub struct ClientCrypto<'a> {
 
 impl<'a> ClientCrypto<'a> {
     #[cfg(feature = "internal")]
-    pub async fn initialize_crypto(&mut self, req: InitCryptoRequest) -> Result<()> {
-        initialize_crypto(self.client, req).await
+    pub async fn initialize_user_crypto(&mut self, req: InitUserCryptoRequest) -> Result<()> {
+        initialize_user_crypto(self.client, req).await
+    }
+
+    #[cfg(feature = "internal")]
+    pub async fn initialize_org_crypto(&mut self, req: InitOrgCryptoRequest) -> Result<()> {
+        initialize_org_crypto(self.client, req).await
     }
 }
 
diff --git a/crates/bitwarden/src/mobile/crypto.rs b/crates/bitwarden/src/mobile/crypto.rs
index f4d26dc6c..2cf850279 100644
--- a/crates/bitwarden/src/mobile/crypto.rs
+++ b/crates/bitwarden/src/mobile/crypto.rs
@@ -9,23 +9,32 @@ use crate::{client::kdf::Kdf, crypto::EncString, error::Result, Client};
 #[derive(Serialize, Deserialize, Debug, JsonSchema)]
 #[serde(rename_all = "camelCase", deny_unknown_fields)]
 #[cfg_attr(feature = "mobile", derive(uniffi::Record))]
-pub struct InitCryptoRequest {
+pub struct InitUserCryptoRequest {
     /// The user's KDF parameters, as received from the prelogin request
     pub kdf_params: Kdf,
     /// The user's email address
     pub email: String,
-    /// The user's master password
-    pub password: String,
-    /// The user's encrypted symmetric crypto key
-    pub user_key: String,
-    /// The user's encryptred private key
+    /// The user's encrypted private key
     pub private_key: String,
-    /// The encryption keys for all the organizations the user is a part of
-    pub organization_keys: HashMap<uuid::Uuid, String>,
+    /// The initialization method to use
+    pub method: InitUserCryptoMethod,
 }
 
 #[cfg(feature = "internal")]
-pub async fn initialize_crypto(client: &mut Client, req: InitCryptoRequest) -> Result<()> {
+#[derive(Serialize, Deserialize, Debug, JsonSchema)]
+#[serde(rename_all = "camelCase", deny_unknown_fields)]
+#[cfg_attr(feature = "mobile", derive(uniffi::Enum))]
+pub enum InitUserCryptoMethod {
+    Password {
+        /// The user's master password
+        password: String,
+        /// The user's encrypted symmetric crypto key
+        user_key: String,
+    },
+}
+
+#[cfg(feature = "internal")]
+pub async fn initialize_user_crypto(client: &mut Client, req: InitUserCryptoRequest) -> Result<()> {
     let login_method = crate::client::LoginMethod::User(crate::client::UserLoginMethod::Username {
         client_id: "".to_string(),
         email: req.email,
@@ -33,18 +42,30 @@ pub async fn initialize_crypto(client: &mut Client, req: InitCryptoRequest) -> R
     });
     client.set_login_method(login_method);
 
-    let user_key = req.user_key.parse::<EncString>()?;
-    let private_key = req.private_key.parse::<EncString>()?;
+    let private_key: EncString = req.private_key.parse()?;
 
-    client.initialize_user_crypto(&req.password, user_key, private_key)?;
+    match req.method {
+        InitUserCryptoMethod::Password { password, user_key } => {
+            let user_key: EncString = user_key.parse()?;
+            client.initialize_user_crypto(&password, user_key, private_key)?;
+        }
+    }
 
-    let organization_keys = req
-        .organization_keys
-        .into_iter()
-        .map(|(k, v)| Ok((k, v.parse::<EncString>()?)))
-        .collect::<Result<Vec<_>>>()?;
+    Ok(())
+}
 
-    client.initialize_org_crypto(organization_keys)?;
+#[cfg(feature = "internal")]
+#[derive(Serialize, Deserialize, Debug, JsonSchema)]
+#[serde(rename_all = "camelCase", deny_unknown_fields)]
+#[cfg_attr(feature = "mobile", derive(uniffi::Record))]
+pub struct InitOrgCryptoRequest {
+    /// The encryption keys for all the organizations the user is a part of
+    pub organization_keys: HashMap<uuid::Uuid, EncString>,
+}
 
+#[cfg(feature = "internal")]
+pub async fn initialize_org_crypto(client: &mut Client, req: InitOrgCryptoRequest) -> Result<()> {
+    let organization_keys = req.organization_keys.into_iter().collect();
+    client.initialize_org_crypto(organization_keys)?;
     Ok(())
 }
diff --git a/crates/bitwarden/tests/register.rs b/crates/bitwarden/tests/register.rs
index d4e632e55..956fe86ce 100644
--- a/crates/bitwarden/tests/register.rs
+++ b/crates/bitwarden/tests/register.rs
@@ -4,7 +4,11 @@
 async fn test_register_initialize_crypto() {
     use std::num::NonZeroU32;
 
-    use bitwarden::{client::kdf::Kdf, mobile::crypto::InitCryptoRequest, Client};
+    use bitwarden::{
+        client::kdf::Kdf,
+        mobile::crypto::{InitUserCryptoMethod, InitUserCryptoRequest},
+        Client,
+    };
 
     let mut client = Client::new(None);
 
@@ -22,13 +26,15 @@ async fn test_register_initialize_crypto() {
     // Ensure we can initialize the crypto with the new keys
     client
         .crypto()
-        .initialize_crypto(InitCryptoRequest {
+        .initialize_user_crypto(InitUserCryptoRequest {
             kdf_params: kdf,
             email: email.to_owned(),
-            password: password.to_owned(),
-            user_key: register_response.encrypted_user_key,
             private_key: register_response.keys.private.to_string(),
-            organization_keys: Default::default(),
+
+            method: InitUserCryptoMethod::Password {
+                password: password.to_owned(),
+                user_key: register_response.encrypted_user_key,
+            },
         })
         .await
         .unwrap();
diff --git a/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt b/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt
index 2d204e075..13dec7d0e 100644
--- a/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt
+++ b/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt
@@ -12,7 +12,9 @@ import androidx.compose.ui.Modifier
 import androidx.compose.ui.tooling.preview.Preview
 import com.bitwarden.core.DateTime
 import com.bitwarden.core.Folder
-import com.bitwarden.core.InitCryptoRequest
+import com.bitwarden.core.InitOrgCryptoRequest
+import com.bitwarden.core.InitUserCryptoMethod
+import com.bitwarden.core.InitUserCryptoRequest
 import com.bitwarden.core.Kdf
 import com.bitwarden.core.Uuid
 import com.bitwarden.myapplication.ui.theme.MyApplicationTheme
@@ -117,7 +119,7 @@ class MainActivity : ComponentActivity() {
             }.body<JsonObject>()
 
             val folders = (syncBody["folders"] as JsonArray).map {
-                val o = it as JsonObject;
+                val o = it as JsonObject
                 Folder(
                     (o["id"] as JsonPrimitive).content,
                     (o["name"] as JsonPrimitive).content,
@@ -136,13 +138,20 @@ class MainActivity : ComponentActivity() {
                 orgKeys[(o["id"] as JsonPrimitive).content] = (o["key"] as JsonPrimitive).content
             }
 
-            client.crypto().initializeCrypto(
-                InitCryptoRequest(
+            client.crypto().initializeUserCrypto(
+                InitUserCryptoRequest(
                     kdfParams = kdf,
                     email = EMAIL,
-                    password = PASSWORD,
-                    userKey = loginBody.Key,
                     privateKey = loginBody.PrivateKey,
+                    method = InitUserCryptoMethod.Password(
+                        password = PASSWORD,
+                        userKey = loginBody.Key
+                    )
+                )
+            )
+
+            client.crypto().initializeOrgCrypto(
+                InitOrgCryptoRequest(
                     organizationKeys = orgKeys
                 )
             )
diff --git a/languages/kotlin/doc.md b/languages/kotlin/doc.md
index 6174df750..70446bd8f 100644
--- a/languages/kotlin/doc.md
+++ b/languages/kotlin/doc.md
@@ -182,14 +182,26 @@ Decrypt collection list
 
 ## ClientCrypto
 
-### `initialize_crypto`
+### `initialize_user_crypto`
 
-Initialization method for the crypto. Needs to be called before any other crypto operations.
+Initialization method for the user crypto. Needs to be called before any other crypto operations.
 
 **Arguments**:
 
 - self:
-- req: [InitCryptoRequest](#initcryptorequest)
+- req: [InitUserCryptoRequest](#initusercryptorequest)
+
+**Output**: std::result::Result<,BitwardenError>
+
+### `initialize_org_crypto`
+
+Initialization method for the organization crypto. Needs to be called after
+&#x60;initialize_user_crypto&#x60; but before any other crypto operations.
+
+**Arguments**:
+
+- self:
+- req: [InitOrgCryptoRequest](#initorgcryptorequest)
 
 **Output**: std::result::Result<,BitwardenError>
 
@@ -492,6 +504,11 @@ implementations.
     <th>array</th>
     <th></th>
 </tr>
+<tr>
+    <th>key</th>
+    <th></th>
+    <th>More recent ciphers uses individual encryption keys to encrypt the other fields of the Cipher.</th>
+</tr>
 <tr>
     <th>name</th>
     <th></th>
@@ -617,6 +634,11 @@ implementations.
     <th>array</th>
     <th></th>
 </tr>
+<tr>
+    <th>key</th>
+    <th></th>
+    <th></th>
+</tr>
 <tr>
     <th>name</th>
     <th>string</th>
@@ -835,7 +857,7 @@ implementations.
 </tr>
 </table>
 
-## `InitCryptoRequest`
+## `InitOrgCryptoRequest`
 
 <table>
 <tr>
@@ -844,34 +866,75 @@ implementations.
     <th>Description</th>
 </tr>
 <tr>
-    <th>kdfParams</th>
-    <th></th>
-    <th>The user&#x27;s KDF parameters, as received from the prelogin request</th>
+    <th>organizationKeys</th>
+    <th>object</th>
+    <th>The encryption keys for all the organizations the user is a part of</th>
 </tr>
+</table>
+
+## `InitUserCryptoMethod`
+
+<table>
 <tr>
-    <th>email</th>
-    <th>string</th>
-    <th>The user&#x27;s email address</th>
+    <th>Key</th>
+    <th>Type</th>
+    <th>Description</th>
 </tr>
 <tr>
     <th>password</th>
-    <th>string</th>
-    <th>The user&#x27;s master password</th>
+    <th>object</th>
+    <th></th>
+</tr>
+<tr>
+    <td colspan="3">
+        <table>
+        <tr>
+            <th>Key</th>
+            <th>Type</th>
+            <th>Description</th>
+        </tr>
+            <tr>
+                <td>password</td>
+                <td>string</td>
+                <td>The user's master password</td>
+            </tr>
+            <tr>
+                <td>user_key</td>
+                <td>string</td>
+                <td>The user's encrypted symmetric crypto key</td>
+            </tr>
+        </table>
+    </td>
+</tr>
+</table>
+
+## `InitUserCryptoRequest`
+
+<table>
+<tr>
+    <th>Key</th>
+    <th>Type</th>
+    <th>Description</th>
+</tr>
+<tr>
+    <th>kdfParams</th>
+    <th></th>
+    <th>The user&#x27;s KDF parameters, as received from the prelogin request</th>
 </tr>
 <tr>
-    <th>userKey</th>
+    <th>email</th>
     <th>string</th>
-    <th>The user&#x27;s encrypted symmetric crypto key</th>
+    <th>The user&#x27;s email address</th>
 </tr>
 <tr>
     <th>privateKey</th>
     <th>string</th>
-    <th>The user&#x27;s encryptred private key</th>
+    <th>The user&#x27;s encrypted private key</th>
 </tr>
 <tr>
-    <th>organizationKeys</th>
-    <th>object</th>
-    <th>The encryption keys for all the organizations the user is a part of</th>
+    <th>method</th>
+    <th></th>
+    <th>The initialization method to use</th>
 </tr>
 </table>
 
diff --git a/languages/swift/iOS/App/ContentView.swift b/languages/swift/iOS/App/ContentView.swift
index 4b3555403..484caf14f 100644
--- a/languages/swift/iOS/App/ContentView.swift
+++ b/languages/swift/iOS/App/ContentView.swift
@@ -136,13 +136,19 @@ struct ContentView: View {
 
             ///////////////////////////// Initialize crypto /////////////////////////////
 
-            try await client.crypto().initializeCrypto(
-                req: InitCryptoRequest(
+            try await client.crypto().initializeUserCrypto(
+                req: InitUserCryptoRequest(
                     kdfParams: kdf,
                     email: EMAIL,
-                    password: PASSWORD,
-                    userKey: loginData.Key,
                     privateKey: loginData.PrivateKey,
+                    method: InitUserCryptoMethod.password(
+                        password: PASSWORD,
+                        userKey: loginData.Key
+                    )
+                ))
+            
+            try await client.crypto().initializeOrgCrypto(
+                req: InitOrgCryptoRequest(
                     organizationKeys: Dictionary.init(
                         uniqueKeysWithValues: syncData.profile.organizations.map { ($0.id, $0.key) }
                     )

From 4c68256820e65572313d209c5c09e07f0f2d29e1 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 20 Nov 2023 11:38:19 +0100
Subject: [PATCH 05/55] Update pyo3 non-major (#289)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend Renovate logo
banner](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [pyo3](https://togithub.com/pyo3/pyo3) | dependencies | minor |
`0.19.1` -> `0.20.0` |
| [pyo3-asyncio](https://togithub.com/awestlake87/pyo3-asyncio) |
dependencies | minor | `0.19.0` -> `0.20.0` |
| [pyo3-build-config](https://togithub.com/pyo3/pyo3) |
build-dependencies | minor | `0.19.1` -> `0.20.0` |
| [pyo3-log](https://togithub.com/vorner/pyo3-log) | dependencies |
minor | `0.8.3` -> `0.9.0` |

---

### Release Notes

<details>
<summary>pyo3/pyo3 (pyo3)</summary>

###
[`v0.20.0`](https://togithub.com/pyo3/pyo3/blob/HEAD/CHANGELOG.md#0200---2023-10-11)

[Compare
Source](https://togithub.com/pyo3/pyo3/compare/v0.19.2...v0.20.0)

##### Packaging

- Dual-license PyO3 under either the Apache 2.0 OR the MIT license. This
makes the project GPLv2 compatible.
[#&#8203;3108](https://togithub.com/PyO3/pyo3/pull/3108)
- Update MSRV to Rust 1.56.
[#&#8203;3208](https://togithub.com/PyO3/pyo3/pull/3208)
- Bump `indoc` dependency to 2.0 and `unindent` dependency to 0.2.
[#&#8203;3237](https://togithub.com/PyO3/pyo3/pull/3237)
- Bump `syn` dependency to 2.0.
[#&#8203;3239](https://togithub.com/PyO3/pyo3/pull/3239)
- Drop support for debug builds of Python 3.7.
[#&#8203;3387](https://togithub.com/PyO3/pyo3/pull/3387)
- Bump `chrono` optional dependency to require 0.4.25 or newer.
[#&#8203;3427](https://togithub.com/PyO3/pyo3/pull/3427)
- Support Python 3.12.
[#&#8203;3488](https://togithub.com/PyO3/pyo3/pull/3488)

##### Added

- Support `__lt__`, `__le__`, `__eq__`, `__ne__`, `__gt__` and `__ge__`
in `#[pymethods]`.
[#&#8203;3203](https://togithub.com/PyO3/pyo3/pull/3203)
- Add FFI definition `Py_GETENV`.
[#&#8203;3336](https://togithub.com/PyO3/pyo3/pull/3336)
- Add `as_ptr` and `into_ptr` inherent methods for `Py`, `PyAny`,
`PyRef`, and `PyRefMut`.
[#&#8203;3359](https://togithub.com/PyO3/pyo3/pull/3359)
- Implement `DoubleEndedIterator` for `PyTupleIterator` and
`PyListIterator`.
[#&#8203;3366](https://togithub.com/PyO3/pyo3/pull/3366)
- Add `#[pyclass(rename_all = "...")]` option: this allows renaming all
getters and setters of a struct, or all variants of an enum. Available
renaming rules are: `"camelCase"`, `"kebab-case"`, `"lowercase"`,
`"PascalCase"`, `"SCREAMING-KEBAB-CASE"`, `"SCREAMING_SNAKE_CASE"`,
`"snake_case"`, `"UPPERCASE"`.
[#&#8203;3384](https://togithub.com/PyO3/pyo3/pull/3384)
- Add FFI definitions `PyObject_GC_IsTracked` and
`PyObject_GC_IsFinalized` on Python 3.9 and up (PyPy 3.10 and up).
[#&#8203;3403](https://togithub.com/PyO3/pyo3/pull/3403)
- Add types for `None`, `Ellipsis`, and `NotImplemented`.
[#&#8203;3408](https://togithub.com/PyO3/pyo3/pull/3408)
- Add FFI definitions for the `Py_mod_multiple_interpreters` constant
and its possible values.
[#&#8203;3494](https://togithub.com/PyO3/pyo3/pull/3494)
- Add FFI definitions for `PyInterpreterConfig` struct, its constants
and `Py_NewInterpreterFromConfig`.
[#&#8203;3502](https://togithub.com/PyO3/pyo3/pull/3502)

##### Changed

- Change `PySet::discard` to return `PyResult<bool>` (previously
returned nothing).
[#&#8203;3281](https://togithub.com/PyO3/pyo3/pull/3281)
- Optimize implmentation of `IntoPy` for Rust tuples to Python tuples.
[#&#8203;3321](https://togithub.com/PyO3/pyo3/pull/3321)
- Change `PyDict::get_item` to no longer suppress arbitrary exceptions
(the return type is now `PyResult<Option<&PyAny>>` instead of
`Option<&PyAny>`), and deprecate `PyDict::get_item_with_error`.
[#&#8203;3330](https://togithub.com/PyO3/pyo3/pull/3330)
- Deprecate FFI definitions which are deprecated in Python 3.12.
[#&#8203;3336](https://togithub.com/PyO3/pyo3/pull/3336)
- `AsPyPointer` is now an `unsafe trait`.
[#&#8203;3358](https://togithub.com/PyO3/pyo3/pull/3358)
- Accept all `os.PathLike` values in implementation of `FromPyObject`
for `PathBuf`. [#&#8203;3374](https://togithub.com/PyO3/pyo3/pull/3374)
- Add `__builtins__` to globals in `py.run()` and `py.eval()` if they're
missing. [#&#8203;3378](https://togithub.com/PyO3/pyo3/pull/3378)
- Optimize implementation of `FromPyObject` for `BigInt` and `BigUint`.
[#&#8203;3379](https://togithub.com/PyO3/pyo3/pull/3379)
- `PyIterator::from_object` and `PyByteArray::from` now take a single
argument of type `&PyAny` (previously took two arguments `Python` and
`AsPyPointer`). [#&#8203;3389](https://togithub.com/PyO3/pyo3/pull/3389)
- Replace `AsPyPointer` with `AsRef<PyAny>` as a bound in the blanket
implementation of `From<&T> for PyObject`.
[#&#8203;3391](https://togithub.com/PyO3/pyo3/pull/3391)
- Replace blanket `impl IntoPy<PyObject> for &T where T: AsPyPointer`
with implementations of `impl IntoPy<PyObject>` for `&PyAny`, `&T where
T: AsRef<PyAny>`, and `&Py<T>`.
[#&#8203;3393](https://togithub.com/PyO3/pyo3/pull/3393)
- Preserve `std::io::Error` kind in implementation of
`From<std::io::IntoInnerError>` for `PyErr`
[#&#8203;3396](https://togithub.com/PyO3/pyo3/pull/3396)
- Try to select a relevant `ErrorKind` in implementation of
`From<PyErr>` for `OSError` subclass.
[#&#8203;3397](https://togithub.com/PyO3/pyo3/pull/3397)
- Retrieve the original `PyErr` in implementation of
`From<std::io::Error>` for `PyErr` if the `std::io::Error` has been
built using a Python exception (previously would create a new exception
wrapping the `std::io::Error`).
[#&#8203;3402](https://togithub.com/PyO3/pyo3/pull/3402)
- `#[pymodule]` will now return the same module object on repeated
import by the same Python interpreter, on Python 3.9 and up.
[#&#8203;3446](https://togithub.com/PyO3/pyo3/pull/3446)
- Truncate leap-seconds and warn when converting `chrono` types to
Python `datetime` types (`datetime` cannot represent leap-seconds).
[#&#8203;3458](https://togithub.com/PyO3/pyo3/pull/3458)
- `Err` returned from `#[pyfunction]` will now have a non-None
`__context__` if called from inside a `catch` block.
[#&#8203;3455](https://togithub.com/PyO3/pyo3/pull/3455)
- Deprecate undocumented `#[__new__]` form of `#[new]` attribute.
[#&#8203;3505](https://togithub.com/PyO3/pyo3/pull/3505)

##### Removed

- Remove all functionality deprecated in PyO3 0.18, including `#[args]`
attribute for `#[pymethods]`.
[#&#8203;3232](https://togithub.com/PyO3/pyo3/pull/3232)
- Remove `IntoPyPointer` trait in favour of `into_ptr` inherent methods.
[#&#8203;3385](https://togithub.com/PyO3/pyo3/pull/3385)

##### Fixed

- Handle exceptions properly in `PySet::discard`.
[#&#8203;3281](https://togithub.com/PyO3/pyo3/pull/3281)
- The `PyTupleIterator` type returned by `PyTuple::iter` is now public
and hence can be named by downstream crates.
[#&#8203;3366](https://togithub.com/PyO3/pyo3/pull/3366)
- Linking of `PyOS_FSPath` on PyPy.
[#&#8203;3374](https://togithub.com/PyO3/pyo3/pull/3374)
- Fix memory leak in `PyTypeBuilder::build`.
[#&#8203;3401](https://togithub.com/PyO3/pyo3/pull/3401)
- Disable removed FFI definitions `_Py_GetAllocatedBlocks`,
`_PyObject_GC_Malloc`, and `_PyObject_GC_Calloc` on Python 3.11 and up.
[#&#8203;3403](https://togithub.com/PyO3/pyo3/pull/3403)
- Fix `ResourceWarning` and crashes related to GC when running with
debug builds of CPython.
[#&#8203;3404](https://togithub.com/PyO3/pyo3/pull/3404)
- Some-wrapping of `Option<T>` default arguments will no longer re-wrap
`Some(T)` or expressions evaluating to `None`.
[#&#8203;3461](https://togithub.com/PyO3/pyo3/pull/3461)
- Fix `IterNextOutput::Return` not returning a value on PyPy.
[#&#8203;3471](https://togithub.com/PyO3/pyo3/pull/3471)
- Emit compile errors instead of ignoring macro invocations inside
`#[pymethods]` blocks.
[#&#8203;3491](https://togithub.com/PyO3/pyo3/pull/3491)
- Emit error on invalid arguments to `#[new]`, `#[classmethod]`,
`#[staticmethod]`, and `#[classattr]`.
[#&#8203;3484](https://togithub.com/PyO3/pyo3/pull/3484)
- Disable `PyMarshal_WriteObjectToString` from
`PyMarshal_ReadObjectFromString` with the `abi3` feature.
[#&#8203;3490](https://togithub.com/PyO3/pyo3/pull/3490)
- Fix FFI definitions for `_PyFrameEvalFunction` on Python 3.11 and up
(it now receives a `_PyInterpreterFrame` opaque struct).
[#&#8203;3500](https://togithub.com/PyO3/pyo3/pull/3500)

###
[`v0.19.2`](https://togithub.com/pyo3/pyo3/blob/HEAD/CHANGELOG.md#0192---2023-08-01)

[Compare
Source](https://togithub.com/pyo3/pyo3/compare/v0.19.1...v0.19.2)

##### Added

- Add FFI definitions `PyState_AddModule`, `PyState_RemoveModule` and
`PyState_FindModule` for PyPy 3.9 and up.
[#&#8203;3295](https://togithub.com/PyO3/pyo3/pull/3295)
- Add FFI definitions `_PyObject_CallFunction_SizeT` and
`_PyObject_CallMethod_SizeT`.
[#&#8203;3297](https://togithub.com/PyO3/pyo3/pull/3297)
- Add a "performance" section to the guide collecting
performance-related tricks and problems.
[#&#8203;3304](https://togithub.com/PyO3/pyo3/pull/3304)
- Add `PyErr::Display` for all Python versions, and FFI symbol
`PyErr_DisplayException` for Python 3.12.
[#&#8203;3334](https://togithub.com/PyO3/pyo3/pull/3334)
- Add FFI definition `PyType_GetDict()` for Python 3.12.
[#&#8203;3339](https://togithub.com/PyO3/pyo3/pull/3339)
- Add `PyAny::downcast_exact`.
[#&#8203;3346](https://togithub.com/PyO3/pyo3/pull/3346)
- Add `PySlice::full()` to construct a full slice (`::`).
[#&#8203;3353](https://togithub.com/PyO3/pyo3/pull/3353)

##### Changed

- Update `PyErr` for 3.12 betas to avoid deprecated ffi methods.
[#&#8203;3306](https://togithub.com/PyO3/pyo3/pull/3306)
- Update FFI definitions of `object.h` for Python 3.12.0b4.
[#&#8203;3335](https://togithub.com/PyO3/pyo3/pull/3335)
- Update `pyo3::ffi` struct definitions to be compatible with 3.12.0b4.
[#&#8203;3342](https://togithub.com/PyO3/pyo3/pull/3342)
- Optimize conversion of `float` to `f64` (and `PyFloat::value`) on
non-abi3 builds.
[#&#8203;3345](https://togithub.com/PyO3/pyo3/pull/3345)

##### Fixed

- Fix timezone conversion bug for FixedOffset datetimes that were being
incorrectly converted to and from UTC.
[#&#8203;3269](https://togithub.com/PyO3/pyo3/pull/3269)
- Fix `SystemError` raised in `PyUnicodeDecodeError_Create` on PyPy
3.10. [#&#8203;3297](https://togithub.com/PyO3/pyo3/pull/3297)
- Correct FFI definition `Py_EnterRecursiveCall` to return `c_int` (was
incorrectly returning `()`).
[#&#8203;3300](https://togithub.com/PyO3/pyo3/pull/3300)
- Fix case where `PyErr::matches` and `PyErr::is_instance` returned
results inconsistent with `PyErr::get_type`.
[#&#8203;3313](https://togithub.com/PyO3/pyo3/pull/3313)
- Fix loss of panic message in `PanicException` when unwinding after the
exception was "normalized".
[#&#8203;3326](https://togithub.com/PyO3/pyo3/pull/3326)
- Fix `PyErr::from_value` and `PyErr::into_value` losing traceback on
conversion. [#&#8203;3328](https://togithub.com/PyO3/pyo3/pull/3328)
- Fix reference counting of immortal objects on Python 3.12.0b4.
[#&#8203;3335](https://togithub.com/PyO3/pyo3/pull/3335)

</details>

<details>
<summary>vorner/pyo3-log (pyo3-log)</summary>

###
[`v0.9.0`](https://togithub.com/vorner/pyo3-log/blob/HEAD/CHANGELOG.md#090)

[Compare
Source](https://togithub.com/vorner/pyo3-log/compare/v0.8.4...v0.9.0)

- Bump lowest allowed version of pyo3 to 0.15 ‒ this prevents linking
multiple
    pyo3 versions together.

###
[`v0.8.4`](https://togithub.com/vorner/pyo3-log/blob/HEAD/CHANGELOG.md#084)

[Compare
Source](https://togithub.com/vorner/pyo3-log/compare/v0.8.3...v0.8.4)

-   Allow pyo3 0.20.

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "every weekend" (UTC), Automerge - At
any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config help](https://togithub.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/bitwarden/sdk).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy44LjEiLCJ1cGRhdGVkSW5WZXIiOiIzNy40Ni4wIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIn0=-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock                     | 45 +++++++++++++++++-----------------
 crates/bitwarden-py/Cargo.toml |  8 +++---
 2 files changed, 27 insertions(+), 26 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 7ca15b625..e4ad7e61e 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -1577,9 +1577,9 @@ dependencies = [
 
 [[package]]
 name = "indoc"
-version = "1.0.9"
+version = "2.0.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bfa799dd5ed20a7e349f3b4639aa80d74549c81716d9ec4f994c9b5815598306"
+checksum = "1e186cfbae8084e513daff4240b4797e342f988cecda4fb6c939150f96315fd8"
 
 [[package]]
 name = "infer"
@@ -2274,9 +2274,9 @@ dependencies = [
 
 [[package]]
 name = "pyo3"
-version = "0.19.2"
+version = "0.20.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e681a6cfdc4adcc93b4d3cf993749a4552018ee0a9b65fc0ccfad74352c72a38"
+checksum = "04e8453b658fe480c3e70c8ed4e3d3ec33eb74988bd186561b0cc66b85c3bc4b"
 dependencies = [
  "cfg-if",
  "indoc",
@@ -2291,9 +2291,9 @@ dependencies = [
 
 [[package]]
 name = "pyo3-asyncio"
-version = "0.19.0"
+version = "0.20.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a2cc34c1f907ca090d7add03dc523acdd91f3a4dab12286604951e2f5152edad"
+checksum = "6ea6b68e93db3622f3bb3bf363246cf948ed5375afe7abff98ccbdd50b184995"
 dependencies = [
  "futures",
  "once_cell",
@@ -2305,9 +2305,9 @@ dependencies = [
 
 [[package]]
 name = "pyo3-asyncio-macros"
-version = "0.19.0"
+version = "0.20.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e4045f06429547179e4596f5c0b13c82efc8b04296016780133653ed69ce26b3"
+checksum = "56c467178e1da6252c95c29ecf898b133f742e9181dca5def15dc24e19d45a39"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -2316,9 +2316,9 @@ dependencies = [
 
 [[package]]
 name = "pyo3-build-config"
-version = "0.19.2"
+version = "0.20.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "076c73d0bc438f7a4ef6fdd0c3bb4732149136abd952b110ac93e4edb13a6ba5"
+checksum = "a96fe70b176a89cff78f2fa7b3c930081e163d5379b4dcdf993e3ae29ca662e5"
 dependencies = [
  "once_cell",
  "target-lexicon",
@@ -2326,9 +2326,9 @@ dependencies = [
 
 [[package]]
 name = "pyo3-ffi"
-version = "0.19.2"
+version = "0.20.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e53cee42e77ebe256066ba8aa77eff722b3bb91f3419177cf4cd0f304d3284d9"
+checksum = "214929900fd25e6604661ed9cf349727c8920d47deff196c4e28165a6ef2a96b"
 dependencies = [
  "libc",
  "pyo3-build-config",
@@ -2336,9 +2336,9 @@ dependencies = [
 
 [[package]]
 name = "pyo3-log"
-version = "0.8.4"
+version = "0.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c09c2b349b6538d8a73d436ca606dab6ce0aaab4dad9e6b7bdd57a4f556c3bc3"
+checksum = "4c10808ee7250403bedb24bc30c32493e93875fef7ba3e4292226fe924f398bd"
 dependencies = [
  "arc-swap",
  "log",
@@ -2347,25 +2347,26 @@ dependencies = [
 
 [[package]]
 name = "pyo3-macros"
-version = "0.19.2"
+version = "0.20.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dfeb4c99597e136528c6dd7d5e3de5434d1ceaf487436a3f03b2d56b6fc9efd1"
+checksum = "dac53072f717aa1bfa4db832b39de8c875b7c7af4f4a6fe93cdbf9264cf8383b"
 dependencies = [
  "proc-macro2",
  "pyo3-macros-backend",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.38",
 ]
 
 [[package]]
 name = "pyo3-macros-backend"
-version = "0.19.2"
+version = "0.20.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "947dc12175c254889edc0c02e399476c2f652b4b9ebd123aa655c224de259536"
+checksum = "7774b5a8282bd4f25f803b1f0d945120be959a36c72e08e7cd031c792fdfd424"
 dependencies = [
+ "heck",
  "proc-macro2",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.38",
 ]
 
 [[package]]
@@ -3581,9 +3582,9 @@ dependencies = [
 
 [[package]]
 name = "unindent"
-version = "0.1.11"
+version = "0.2.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e1766d682d402817b5ac4490b3c3002d91dfa0d22812f341609f97b08757359c"
+checksum = "c7de7d73e1754487cb58364ee906a499937a0dfabd86bcb980fa99ec8c8fa2ce"
 
 [[package]]
 name = "unsafe-libyaml"
diff --git a/crates/bitwarden-py/Cargo.toml b/crates/bitwarden-py/Cargo.toml
index 5d8d95575..613203c84 100644
--- a/crates/bitwarden-py/Cargo.toml
+++ b/crates/bitwarden-py/Cargo.toml
@@ -10,17 +10,17 @@ name = "bitwarden_py"
 crate-type = ["cdylib"]
 
 [dependencies]
-pyo3 = { version = "0.19.1", features = ["extension-module"] }
-pyo3-log = "0.8.3"
+pyo3 = { version = "0.20.0", features = ["extension-module"] }
+pyo3-log = "0.9.0"
 
 bitwarden-json = { path = "../bitwarden-json", features = ["secrets"] }
 
 [build-dependencies]
-pyo3-build-config = { version = "0.19.1" }
+pyo3-build-config = { version = "0.20.0" }
 
 [target.'cfg(not(target_arch="wasm32"))'.dependencies]
 tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
-pyo3-asyncio = { version = "0.19.0", features = [
+pyo3-asyncio = { version = "0.20.0", features = [
     "attributes",
     "tokio-runtime",
 ] }

From d64782e7bf4937eb50500556057a70b686ac57ff Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 20 Nov 2023 15:32:10 +0100
Subject: [PATCH 06/55] Lock file maintenance (#324)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend Renovate logo
banner](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Update | Change |
|---|---|
| lockFileMaintenance | All locks refreshed |

🔧 This Pull Request updates lock files to use the latest dependency
versions.

---

### Configuration

📅 **Schedule**: Branch creation - "before 4am on Monday" (UTC),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config help](https://togithub.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/bitwarden/sdk).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4zMS41IiwidXBkYXRlZEluVmVyIjoiMzcuNDYuMCIsInRhcmdldEJyYW5jaCI6Im1hc3RlciJ9-->

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
---
 Cargo.lock                                 | 283 +++++++++++----------
 crates/bitwarden-napi/package-lock.json    |   6 +-
 crates/bitwarden-napi/src/client.rs        |   1 -
 crates/bitwarden-wasm/Cargo.toml           |   2 +-
 languages/js_webassembly/package-lock.json | 168 ++++++------
 package-lock.json                          |  30 +--
 6 files changed, 247 insertions(+), 243 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index e4ad7e61e..f9fbba7e7 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -156,7 +156,7 @@ dependencies = [
  "proc-macro2",
  "quote",
  "serde",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -203,11 +203,11 @@ dependencies = [
 
 [[package]]
 name = "async-lock"
-version = "3.0.0"
+version = "3.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "45e900cdcd39bb94a14487d3f7ef92ca222162e6c7c3fe7cb3550ea75fb486ed"
+checksum = "655b9c7fe787d3b25cc0f804a1a8401790f0c5bc395beb5a64dc77d8de079105"
 dependencies = [
- "event-listener 3.0.1",
+ "event-listener 3.1.0",
  "event-listener-strategy",
  "pin-project-lite",
 ]
@@ -220,7 +220,7 @@ checksum = "a66537f1bb974b254c98ed142ff995236e81b9d0fe4db0575f46612cb15eb0f9"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -332,7 +332,7 @@ dependencies = [
  "bitwarden-api-identity",
  "cbc",
  "chrono",
- "getrandom 0.2.10",
+ "getrandom 0.2.11",
  "hkdf",
  "hmac",
  "lazy_static",
@@ -495,9 +495,9 @@ dependencies = [
 
 [[package]]
 name = "bstr"
-version = "1.7.0"
+version = "1.8.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c79ad7fb2dd38f3dabd76b09c6a5a20c038fc0213ef1e9afd30eb777f120f019"
+checksum = "542f33a8835a0884b006a0c3df3dadd99c0c3f296ed26c2fdc8028e01ad6230c"
 dependencies = [
  "memchr",
  "serde",
@@ -547,7 +547,7 @@ dependencies = [
  "tempfile",
  "thiserror",
  "tokio",
- "toml 0.8.6",
+ "toml 0.8.8",
  "uuid",
 ]
 
@@ -586,9 +586,9 @@ dependencies = [
 
 [[package]]
 name = "cargo-platform"
-version = "0.1.4"
+version = "0.1.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "12024c4645c97566567129c204f65d5815a8c9aecf30fcbe682b2fe034996d36"
+checksum = "e34637b3140142bdf929fb439e8aa4ebad7651ebf7b1080b3930aa16ac1459ff"
 dependencies = [
  "serde",
 ]
@@ -656,9 +656,9 @@ dependencies = [
 
 [[package]]
 name = "clap"
-version = "4.4.7"
+version = "4.4.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ac495e00dcec98c83465d5ad66c5c4fabd652fd6686e7c6269b117e729a6f17b"
+checksum = "2275f18819641850fa26c89acc84d465c1bf91ce57bc2748b28c420473352f64"
 dependencies = [
  "clap_builder",
  "clap_derive",
@@ -666,9 +666,9 @@ dependencies = [
 
 [[package]]
 name = "clap_builder"
-version = "4.4.7"
+version = "4.4.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c77ed9a32a62e6ca27175d00d29d05ca32e396ea1eb5fb01d8256b669cec7663"
+checksum = "07cdf1b148b25c1e1f7a42225e30a0d99a615cd4637eae7365548dd4529b95bc"
 dependencies = [
  "anstream",
  "anstyle",
@@ -694,7 +694,7 @@ dependencies = [
  "heck",
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -732,9 +732,9 @@ dependencies = [
 
 [[package]]
 name = "color-spantrace"
-version = "0.2.0"
+version = "0.2.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1ba75b3d9449ecdccb27ecbc479fdc0b87fa2dd43d2f8298f9bf0e59aacc8dce"
+checksum = "cd6be1b2a7e382e2b98b43b2adcca6bb0e465af0bdd38123873ae61eb17a72c2"
 dependencies = [
  "once_cell",
  "owo-colors",
@@ -925,7 +925,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "37e366bff8cd32dd8754b0991fb66b279dc48f598c3a18914852a6673deef583"
 dependencies = [
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -1002,9 +1002,9 @@ dependencies = [
 
 [[package]]
 name = "dyn-clone"
-version = "1.0.14"
+version = "1.0.16"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "23d2f3407d9a573d666de4b5bdf10569d73ca9478087346697dcbae6244bfbcd"
+checksum = "545b22097d44f8a9581187cdf93de7a71e4722bf51200cfaba810865b49a495d"
 
 [[package]]
 name = "either"
@@ -1029,9 +1029,9 @@ dependencies = [
 
 [[package]]
 name = "env_logger"
-version = "0.10.0"
+version = "0.10.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "85cdab6a89accf66733ad5a1693a4dcced6aeff64602b634530dd73c1f3ee9f0"
+checksum = "95b3f3e67048839cb0d0781f445682a35113da7121f7c949db0e2be96a4fbece"
 dependencies = [
  "humantime",
  "is-terminal",
@@ -1048,9 +1048,9 @@ checksum = "5443807d6dff69373d433ab9ef5378ad8df50ca6298caf15de6e52e24aaf54d5"
 
 [[package]]
 name = "errno"
-version = "0.3.5"
+version = "0.3.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ac3e13f66a2f95e32a39eaa81f6b95d42878ca0e1db0c7543723dfe12557e860"
+checksum = "f258a7194e7f7c2a7837a8913aeab7fd8c383457034fa20ce4dd3dcb813e8eb8"
 dependencies = [
  "libc",
  "windows-sys 0.48.0",
@@ -1064,9 +1064,9 @@ checksum = "0206175f82b8d6bf6652ff7d71a1e27fd2e4efde587fd368662814d6ec1d9ce0"
 
 [[package]]
 name = "event-listener"
-version = "3.0.1"
+version = "3.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "01cec0252c2afff729ee6f00e903d479fba81784c8e2bd77447673471fdfaea1"
+checksum = "d93877bcde0eb80ca09131a08d23f0a5c18a620b01db137dba666d18cd9b30c2"
 dependencies = [
  "concurrent-queue",
  "parking",
@@ -1079,15 +1079,15 @@ version = "0.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d96b852f1345da36d551b9473fa1e2b1eb5c5195585c6c018118bc92a8d91160"
 dependencies = [
- "event-listener 3.0.1",
+ "event-listener 3.1.0",
  "pin-project-lite",
 ]
 
 [[package]]
 name = "eyre"
-version = "0.6.8"
+version = "0.6.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4c2b6b5a29c02cdc822728b7d7b8ae1bab3e3b05d44522770ddd49722eeac7eb"
+checksum = "80f656be11ddf91bd709454d15d5bd896fbaf4cc3314e69349e4d1569f5b46cd"
 dependencies = [
  "indenter",
  "once_cell",
@@ -1150,9 +1150,12 @@ dependencies = [
 
 [[package]]
 name = "fs-err"
-version = "2.9.0"
+version = "2.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0845fa252299212f0389d64ba26f34fa32cfe41588355f21ed507c59a0f64541"
+checksum = "fb5fd9bcbe8b1087cbd395b51498c01bc997cef73e778a80b77a811af5e2d29f"
+dependencies = [
+ "autocfg",
+]
 
 [[package]]
 name = "futures"
@@ -1225,7 +1228,7 @@ checksum = "53b153fd91e4b0147f4aced87be237c98248656bb01050b96bf3ee89220a8ddb"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -1300,9 +1303,9 @@ dependencies = [
 
 [[package]]
 name = "getrandom"
-version = "0.2.10"
+version = "0.2.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "be4136b2a15dd319360be1c07d9933517ccf0be8f16bf62a3bee4f0d618df427"
+checksum = "fe9006bed769170c11f845cf00c7c1e9092aeb3f268e007c3e760ac68008070f"
 dependencies = [
  "cfg-if",
  "js-sys",
@@ -1349,9 +1352,9 @@ dependencies = [
 
 [[package]]
 name = "h2"
-version = "0.3.21"
+version = "0.3.22"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "91fc23aa11be92976ef4729127f1a74adf36d8436f7816b185d18df956790833"
+checksum = "4d6250322ef6e60f93f9a2162799302cd6f68f79f6e5d85c8c16f14d1d958178"
 dependencies = [
  "bytes",
  "fnv",
@@ -1359,7 +1362,7 @@ dependencies = [
  "futures-sink",
  "futures-util",
  "http",
- "indexmap 1.9.3",
+ "indexmap 2.1.0",
  "slab",
  "tokio",
  "tokio-util",
@@ -1419,9 +1422,9 @@ dependencies = [
 
 [[package]]
 name = "http"
-version = "0.2.9"
+version = "0.2.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bd6effc99afb63425aff9b05836f029929e345a6148a14b7ecd5ab67af944482"
+checksum = "8947b1a6fad4393052c7ba1f4cd97bed3e953a95c79c92ad9b051a04611d9fbb"
 dependencies = [
  "bytes",
  "fnv",
@@ -1567,9 +1570,9 @@ dependencies = [
 
 [[package]]
 name = "indexmap"
-version = "2.0.2"
+version = "2.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8adf3ddd720272c6ea8bf59463c04e0f93d0bbf7c5439b691bca2987e0270897"
+checksum = "d530e1a18b1cb4c484e6e34556a0d948706958449fca0cab753d649f2bce3d1f"
 dependencies = [
  "equivalent",
  "hashbrown 0.14.2",
@@ -1680,18 +1683,18 @@ dependencies = [
 
 [[package]]
 name = "libc"
-version = "0.2.149"
+version = "0.2.150"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a08173bc88b7955d1b3145aa561539096c421ac8debde8cbc3612ec635fee29b"
+checksum = "89d92a4743f9a61002fae18374ed11e7973f530cb3a3255fb354818118b2203c"
 
 [[package]]
 name = "libloading"
-version = "0.7.4"
+version = "0.8.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b67380fd3b2fbe7527a606e18729d21c6f3951633d0500574c4dc22d2d638b9f"
+checksum = "c571b676ddfc9a8c12f1f3d3085a7b163966a8fd8098a90640953ce5f6170161"
 dependencies = [
  "cfg-if",
- "winapi",
+ "windows-sys 0.48.0",
 ]
 
 [[package]]
@@ -1700,6 +1703,17 @@ version = "0.2.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4ec2a862134d2a7d32d7983ddcdd1c4923530833c9f2ea1a44fc5fa473989058"
 
+[[package]]
+name = "libredox"
+version = "0.0.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "85c833ca1e66078851dba29046874e38f08b2c883700aa29a03ddd3b23814ee8"
+dependencies = [
+ "bitflags 2.4.1",
+ "libc",
+ "redox_syscall",
+]
+
 [[package]]
 name = "line-wrap"
 version = "0.1.1"
@@ -1711,9 +1725,9 @@ dependencies = [
 
 [[package]]
 name = "linux-raw-sys"
-version = "0.4.10"
+version = "0.4.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "da2479e8c062e40bf0066ffa0bc823de0a9368974af99c9f6df941d2c231e03f"
+checksum = "969488b55f8ac402214f3f5fd243ebb7206cf82de60d3172994707a4bcc2b829"
 
 [[package]]
 name = "lock_api"
@@ -1814,9 +1828,9 @@ dependencies = [
 
 [[package]]
 name = "napi"
-version = "2.13.3"
+version = "2.14.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fd063c93b900149304e3ba96ce5bf210cd4f81ef5eb80ded0d100df3e85a3ac0"
+checksum = "1133249c46e92da921bafc8aba4912bf84d6c475f7625183772ed2d0844dc3a7"
 dependencies = [
  "bitflags 2.4.1",
  "ctor",
@@ -1828,15 +1842,15 @@ dependencies = [
 
 [[package]]
 name = "napi-build"
-version = "2.0.1"
+version = "2.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "882a73d9ef23e8dc2ebbffb6a6ae2ef467c0f18ac10711e4cc59c5485d41df0e"
+checksum = "d4b4532cf86bfef556348ac65e561e3123879f0e7566cca6d43a6ff5326f13df"
 
 [[package]]
 name = "napi-derive"
-version = "2.13.0"
+version = "2.14.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "da1c6a8fa84d549aa8708fcd062372bf8ec6e849de39016ab921067d21bde367"
+checksum = "a0cca5738c6e81eb5ffd2c8ff2b4f05ece9c4c60c7e2b36cec6524492cf7f330"
 dependencies = [
  "cfg-if",
  "convert_case",
@@ -1848,9 +1862,9 @@ dependencies = [
 
 [[package]]
 name = "napi-derive-backend"
-version = "1.0.52"
+version = "1.0.55"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "20bbc7c69168d06a848f925ec5f0e0997f98e8c8d4f2cc30157f0da51c009e17"
+checksum = "35960e5f33228192a9b661447d0dfe8f5a3790ff5b4058c4d67680ded4f65b91"
 dependencies = [
  "convert_case",
  "once_cell",
@@ -1863,9 +1877,9 @@ dependencies = [
 
 [[package]]
 name = "napi-sys"
-version = "2.2.3"
+version = "2.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "166b5ef52a3ab5575047a9fe8d4a030cdd0f63c96f071cd6907674453b07bae3"
+checksum = "2503fa6af34dc83fb74888df8b22afe933b58d37daf7d80424b1c60c68196b8b"
 dependencies = [
  "libloading",
 ]
@@ -2043,9 +2057,9 @@ dependencies = [
 
 [[package]]
 name = "openssl"
-version = "0.10.57"
+version = "0.10.59"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bac25ee399abb46215765b1cb35bc0212377e58a061560d8b29b024fd0430e7c"
+checksum = "7a257ad03cd8fb16ad4172fedf8094451e1af1c4b70097636ef2eac9a5f0cc33"
 dependencies = [
  "bitflags 2.4.1",
  "cfg-if",
@@ -2064,7 +2078,7 @@ checksum = "a948666b637a0f465e8564c73e89d4dde00d72d4d473cc972f390fc3dcee7d9c"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -2084,9 +2098,9 @@ dependencies = [
 
 [[package]]
 name = "openssl-sys"
-version = "0.9.93"
+version = "0.9.95"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "db4d56a4c0478783083cfafcc42493dd4a981d41669da64b4572a2a089b51b1d"
+checksum = "40a4130519a360279579c2053038317e40eff64d13fd3f004f9e1b72b8a6aaf9"
 dependencies = [
  "cc",
  "libc",
@@ -2137,7 +2151,7 @@ checksum = "4c42a9226546d68acdd9c0a280d17ce19bfe27a46bf68784e4066115788d008e"
 dependencies = [
  "cfg-if",
  "libc",
- "redox_syscall 0.4.1",
+ "redox_syscall",
  "smallvec",
  "windows-targets 0.48.5",
 ]
@@ -2239,12 +2253,12 @@ checksum = "b4596b6d070b27117e987119b4dac604f3c58cfb0b191112e24771b2faeac1a6"
 
 [[package]]
 name = "plist"
-version = "1.5.1"
+version = "1.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9a4a0cfc5fb21a09dc6af4bf834cf10d4a32fccd9e2ea468c4b1751a097487aa"
+checksum = "e5699cc8a63d1aa2b1ee8e12b9ad70ac790d65788cd36101fa37f87ea46c4cef"
 dependencies = [
  "base64 0.21.5",
- "indexmap 1.9.3",
+ "indexmap 2.1.0",
  "line-wrap",
  "quick-xml",
  "serde",
@@ -2354,7 +2368,7 @@ dependencies = [
  "proc-macro2",
  "pyo3-macros-backend",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -2366,14 +2380,14 @@ dependencies = [
  "heck",
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
 name = "quick-xml"
-version = "0.30.0"
+version = "0.31.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "eff6510e86862b57b210fd8cbe8ed3f0d7d600b9c2863cd4549a2e033c66e956"
+checksum = "1004a344b30a54e2ee58d66a71b32d2db2feb0a31f9a2d302bf0536f15de2a33"
 dependencies = [
  "memchr",
 ]
@@ -2446,7 +2460,7 @@ version = "0.6.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "ec0be4795e2f6a28069bec0b5ff3e2ac9bafc99e6a9a7dc3547996c5c816922c"
 dependencies = [
- "getrandom 0.2.10",
+ "getrandom 0.2.11",
 ]
 
 [[package]]
@@ -2458,15 +2472,6 @@ dependencies = [
  "rand_core 0.5.1",
 ]
 
-[[package]]
-name = "redox_syscall"
-version = "0.2.16"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fb5a58c1855b4b6819d59012155603f0b22ad30cad752600aadfcb695265519a"
-dependencies = [
- "bitflags 1.3.2",
-]
-
 [[package]]
 name = "redox_syscall"
 version = "0.4.1"
@@ -2478,12 +2483,12 @@ dependencies = [
 
 [[package]]
 name = "redox_users"
-version = "0.4.3"
+version = "0.4.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b033d837a7cf162d7993aded9304e30a83213c648b6e389db233191f891e5c2b"
+checksum = "a18479200779601e498ada4e8c1e1f50e3ee19deb0259c25825a98b5603b2cb4"
 dependencies = [
- "getrandom 0.2.10",
- "redox_syscall 0.2.16",
+ "getrandom 0.2.11",
+ "libredox",
  "thiserror",
 ]
 
@@ -2619,9 +2624,9 @@ checksum = "d626bb9dae77e28219937af045c257c28bfd3f69333c512553507f5f9798cb76"
 
 [[package]]
 name = "rustix"
-version = "0.38.21"
+version = "0.38.25"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2b426b0506e5d50a7d8dafcf2e81471400deb602392c7dd110815afb4eaf02a3"
+checksum = "dc99bc2d4f1fed22595588a013687477aedf3cdcfb26558c559edb67b4d9b22e"
 dependencies = [
  "bitflags 2.4.1",
  "errno",
@@ -2668,9 +2673,9 @@ dependencies = [
 
 [[package]]
 name = "schemars"
-version = "0.8.15"
+version = "0.8.16"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1f7b0ce13155372a76ee2e1c5ffba1fe61ede73fbea5630d61eee6fac4929c0c"
+checksum = "45a28f4c49489add4ce10783f7911893516f15afe45d015608d41faca6bc4d29"
 dependencies = [
  "chrono",
  "dyn-clone",
@@ -2683,9 +2688,9 @@ dependencies = [
 
 [[package]]
 name = "schemars_derive"
-version = "0.8.15"
+version = "0.8.16"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e85e2a16b12bdb763244c69ab79363d71db2b4b918a2def53f80b02e0574b13c"
+checksum = "c767fd6fa65d9ccf9cf026122c1b555f2ef9a4f0cea69da4d7dbc3e258d30967"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -2722,7 +2727,7 @@ checksum = "1db149f81d46d2deba7cd3c50772474707729550221e69588478ebf9ada425ae"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -2772,22 +2777,22 @@ dependencies = [
 
 [[package]]
 name = "serde"
-version = "1.0.190"
+version = "1.0.192"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "91d3c334ca1ee894a2c6f6ad698fe8c435b76d504b13d436f0685d648d6d96f7"
+checksum = "bca2a08484b285dcb282d0f67b26cadc0df8b19f8c12502c13d966bf9482f001"
 dependencies = [
  "serde_derive",
 ]
 
 [[package]]
 name = "serde_derive"
-version = "1.0.190"
+version = "1.0.192"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "67c5609f394e5c2bd7fc51efda478004ea80ef42fee983d5c67a65e34f32c0e3"
+checksum = "d6c7207fbec9faa48073f3e3074cbe553af6ea512d7c21ba46e434e70ea9fbc1"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -2842,7 +2847,7 @@ checksum = "3081f5ffbb02284dda55132aa26daecedd7372a42417bbbab6f14ab7d6bb9145"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -2872,7 +2877,7 @@ version = "0.9.27"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "3cc7a1570e38322cfe4154732e5110f887ea57e22b76f4bfd32b5bdd3368666c"
 dependencies = [
- "indexmap 2.0.2",
+ "indexmap 2.1.0",
  "itoa",
  "ryu",
  "serde",
@@ -2942,9 +2947,9 @@ dependencies = [
 
 [[package]]
 name = "signature"
-version = "2.1.0"
+version = "2.2.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5e1788eed21689f9cf370582dfc467ef36ed9c707f073528ddafa8d83e3b8500"
+checksum = "77549399552de45a898a580c1b41d445bf730df867cc44e6c0233bbc4b8329de"
 dependencies = [
  "digest",
  "rand_core 0.6.4",
@@ -2967,9 +2972,9 @@ dependencies = [
 
 [[package]]
 name = "smallvec"
-version = "1.11.1"
+version = "1.11.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "942b4a808e05215192e39f4ab80813e599068285906cc91aa64f923db842bd5a"
+checksum = "4dccd0940a2dcdf68d092b8cbab7dc0ad8fa938bf95787e1b916b0e3d0e8e970"
 
 [[package]]
 name = "socket2"
@@ -3041,7 +3046,7 @@ dependencies = [
  "proc-macro2",
  "quote",
  "rustversion",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -3073,9 +3078,9 @@ dependencies = [
 
 [[package]]
 name = "syn"
-version = "2.0.38"
+version = "2.0.39"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e96b79aaa137db8f61e26363a0c9b47d8b4ec75da28b7d1d614c2303e232408b"
+checksum = "23e78b90f2fcf45d3e842032ce32e3f2d1545ba6636271dcbf24fa306d87be7a"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -3136,16 +3141,16 @@ checksum = "7ef1adac450ad7f4b3c28589471ade84f25f731a7a0fe30d71dfa9f60fd808e5"
 dependencies = [
  "cfg-if",
  "fastrand 2.0.1",
- "redox_syscall 0.4.1",
+ "redox_syscall",
  "rustix",
  "windows-sys 0.48.0",
 ]
 
 [[package]]
 name = "termcolor"
-version = "1.3.0"
+version = "1.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6093bad37da69aab9d123a8091e4be0aa4a03e4d601ec641c327398315f62b64"
+checksum = "ff1bc3d3f05aff0403e8ac0d92ced918ec05b666a43f83297ccef5bea8a3d449"
 dependencies = [
  "winapi-util",
 ]
@@ -3167,7 +3172,7 @@ checksum = "266b2e40bc00e5a6c09c3584011e08b06f123c00362c92b975ba9843aaaa14b8"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -3226,9 +3231,9 @@ checksum = "1f3ccbac311fea05f86f61904b462b55fb3df8837a366dfc601a0161d0532f20"
 
 [[package]]
 name = "tokio"
-version = "1.33.0"
+version = "1.34.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4f38200e3ef7995e5ef13baec2f432a6da0aa9ac495b2c0e8f3b7eec2c92d653"
+checksum = "d0c014766411e834f7af5b8f4cf46257aab4036ca95e9d2c144a10f59ad6f5b9"
 dependencies = [
  "backtrace",
  "bytes",
@@ -3243,13 +3248,13 @@ dependencies = [
 
 [[package]]
 name = "tokio-macros"
-version = "2.1.0"
+version = "2.2.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "630bdcf245f78637c13ec01ffae6187cca34625e8c63150d424b59e55af2675e"
+checksum = "5b8a1e28f2deaa14e508979454cb3a223b10b938b45af148bc0986de36f1923b"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -3287,9 +3292,9 @@ dependencies = [
 
 [[package]]
 name = "toml"
-version = "0.8.6"
+version = "0.8.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8ff9e3abce27ee2c9a37f9ad37238c1bdd4e789c84ba37df76aa4d528f5072cc"
+checksum = "a1a195ec8c9da26928f773888e0742ca3ca1040c6cd859c919c9f59c1954ab35"
 dependencies = [
  "serde",
  "serde_spanned",
@@ -3308,11 +3313,11 @@ dependencies = [
 
 [[package]]
 name = "toml_edit"
-version = "0.20.7"
+version = "0.21.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "70f427fce4d84c72b5b732388bf4a9f4531b53f74e2887e3ecb2481f68f66d81"
+checksum = "d34d383cd00a163b4a5b85053df514d45bc330f6de7737edfe0a93311d1eaa03"
 dependencies = [
- "indexmap 2.0.2",
+ "indexmap 2.1.0",
  "serde",
  "serde_spanned",
  "toml_datetime",
@@ -3344,7 +3349,7 @@ checksum = "34704c8d6ebcbc939824180af020566b01a7c01f80641264eba0999f6c2b6be7"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -3369,20 +3374,20 @@ dependencies = [
 
 [[package]]
 name = "tracing-log"
-version = "0.1.3"
+version = "0.2.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "78ddad33d2d10b1ed7eb9d1f518a5674713876e97e5bb9b7345a7984fbb4f922"
+checksum = "ee855f1f400bd0e5c02d150ae5de3840039a3f54b025156404e34c23c03f47c3"
 dependencies = [
- "lazy_static",
  "log",
+ "once_cell",
  "tracing-core",
 ]
 
 [[package]]
 name = "tracing-subscriber"
-version = "0.3.17"
+version = "0.3.18"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "30a651bc37f915e81f087d86e62a18eec5f79550c7faff886f7090b4ea757c77"
+checksum = "ad0f048c97dbd9faa9b7df56362b8ebcaa52adb06b498c050d2f4e32f90a7a8b"
 dependencies = [
  "matchers",
  "nu-ansi-term 0.46.0",
@@ -3510,7 +3515,7 @@ version = "0.25.0"
 source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
 dependencies = [
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
 ]
 
 [[package]]
@@ -3540,7 +3545,7 @@ dependencies = [
  "proc-macro2",
  "quote",
  "serde",
- "syn 2.0.38",
+ "syn 2.0.39",
  "toml 0.5.11",
  "uniffi_build",
  "uniffi_meta",
@@ -3612,9 +3617,9 @@ checksum = "711b9620af191e0cdc7468a8d14e709c3dcdb115b36f838e601583af800a370a"
 
 [[package]]
 name = "uuid"
-version = "1.5.0"
+version = "1.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "88ad59a7560b41a70d191093a945f0b87bc1deeda46fb237479708a1d6b6cdfc"
+checksum = "c58fe91d841bc04822c9801002db4ea904b9e4b8e6bbad25127b46eff8dc516b"
 dependencies = [
  "serde",
 ]
@@ -3697,7 +3702,7 @@ dependencies = [
  "once_cell",
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
  "wasm-bindgen-shared",
 ]
 
@@ -3731,7 +3736,7 @@ checksum = "54681b18a46765f095758388f2d0cf16eb8d4169b639ab575a8f5693af210c7b"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.38",
+ "syn 2.0.39",
  "wasm-bindgen-backend",
  "wasm-bindgen-shared",
 ]
@@ -3967,9 +3972,9 @@ checksum = "ed94fce61571a4006852b7389a063ab983c02eb1bb37b47f8272ce92d06d9538"
 
 [[package]]
 name = "winnow"
-version = "0.5.17"
+version = "0.5.19"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a3b801d0e0a6726477cc207f60162da452f3a95adb368399bef20a946e06f65c"
+checksum = "829846f3e3db426d4cee4510841b71a8e58aa2a76b1132579487ae430ccd9c7b"
 dependencies = [
  "memchr",
 ]
@@ -3986,9 +3991,9 @@ dependencies = [
 
 [[package]]
 name = "wiremock"
-version = "0.5.19"
+version = "0.5.21"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c6f71803d3a1c80377a06221e0530be02035d5b3e854af56c6ece7ac20ac441d"
+checksum = "079aee011e8a8e625d16df9e785de30a6b77f80a6126092d76a57375f96448da"
 dependencies = [
  "assert-json-diff",
  "async-trait",
@@ -4008,6 +4013,6 @@ dependencies = [
 
 [[package]]
 name = "zeroize"
-version = "1.6.0"
+version = "1.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2a0956f1ba7c7909bfb66c2e9e4124ab6f6482560f6628b5aaeba39207c9aad9"
+checksum = "525b4ec142c6b68a2d10f01f7bbf6755599ca3f81ea53b8431b7dd348f5fdb2d"
diff --git a/crates/bitwarden-napi/package-lock.json b/crates/bitwarden-napi/package-lock.json
index 65266d1e4..3ccf3a7cb 100644
--- a/crates/bitwarden-napi/package-lock.json
+++ b/crates/bitwarden-napi/package-lock.json
@@ -95,9 +95,9 @@
       "dev": true
     },
     "node_modules/@types/node": {
-      "version": "20.8.9",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.8.9.tgz",
-      "integrity": "sha512-UzykFsT3FhHb1h7yD4CA4YhBHq545JC0YnEz41xkipN88eKQtL6rSgocL5tbAP6Ola9Izm/Aw4Ora8He4x0BHg==",
+      "version": "20.9.2",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.9.2.tgz",
+      "integrity": "sha512-WHZXKFCEyIUJzAwh3NyyTHYSR35SevJ6mZ1nWwJafKtiQbqRTIKSRcw3Ma3acqgsent3RRDqeVwpHntMk+9irg==",
       "dev": true,
       "peer": true,
       "dependencies": {
diff --git a/crates/bitwarden-napi/src/client.rs b/crates/bitwarden-napi/src/client.rs
index 840fd2533..d794b18f4 100644
--- a/crates/bitwarden-napi/src/client.rs
+++ b/crates/bitwarden-napi/src/client.rs
@@ -1,7 +1,6 @@
 extern crate log;
 
 use bitwarden_json::client::Client as JsonClient;
-use napi::bindgen_prelude::*;
 use napi_derive::napi;
 
 #[napi]
diff --git a/crates/bitwarden-wasm/Cargo.toml b/crates/bitwarden-wasm/Cargo.toml
index 6055388fb..add03f0f3 100644
--- a/crates/bitwarden-wasm/Cargo.toml
+++ b/crates/bitwarden-wasm/Cargo.toml
@@ -11,7 +11,7 @@ crate-type = ["cdylib", "rlib"]
 [dependencies]
 js-sys = "0.3.63"
 serde = {version = "1.0.163", features = ["derive"] }
-wasm-bindgen = { version = "0.2.86", features = ["serde-serialize"] }
+wasm-bindgen = { version = "=0.2.87", features = ["serde-serialize"] }
 wasm-bindgen-futures = "0.4.36"
 console_error_panic_hook = "0.1.7"
 console_log = { version = "1.0.0", features = ["color"] }
diff --git a/languages/js_webassembly/package-lock.json b/languages/js_webassembly/package-lock.json
index e3e20e9aa..d5345c00a 100644
--- a/languages/js_webassembly/package-lock.json
+++ b/languages/js_webassembly/package-lock.json
@@ -88,9 +88,9 @@
       "dev": true
     },
     "node_modules/@types/body-parser": {
-      "version": "1.19.4",
-      "resolved": "https://registry.npmjs.org/@types/body-parser/-/body-parser-1.19.4.tgz",
-      "integrity": "sha512-N7UDG0/xiPQa2D/XrVJXjkWbpqHCd2sBaB32ggRF2l83RhPfamgKGF8gwwqyksS95qUS5ZYF9aF+lLPRlwI2UA==",
+      "version": "1.19.5",
+      "resolved": "https://registry.npmjs.org/@types/body-parser/-/body-parser-1.19.5.tgz",
+      "integrity": "sha512-fB3Zu92ucau0iQ0JMCFQE7b/dv8Ot07NI3KaZIkIUNXq82k4eBAqUaneXfleGY9JWskeS9y+u0nXMyspcuQrCg==",
       "dev": true,
       "dependencies": {
         "@types/connect": "*",
@@ -98,27 +98,27 @@
       }
     },
     "node_modules/@types/bonjour": {
-      "version": "3.5.12",
-      "resolved": "https://registry.npmjs.org/@types/bonjour/-/bonjour-3.5.12.tgz",
-      "integrity": "sha512-ky0kWSqXVxSqgqJvPIkgFkcn4C8MnRog308Ou8xBBIVo39OmUFy+jqNe0nPwLCDFxUpmT9EvT91YzOJgkDRcFg==",
+      "version": "3.5.13",
+      "resolved": "https://registry.npmjs.org/@types/bonjour/-/bonjour-3.5.13.tgz",
+      "integrity": "sha512-z9fJ5Im06zvUL548KvYNecEVlA7cVDkGUi6kZusb04mpyEFKCIZJvloCcmpmLaIahDpOQGHaHmG6imtPMmPXGQ==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
       }
     },
     "node_modules/@types/connect": {
-      "version": "3.4.37",
-      "resolved": "https://registry.npmjs.org/@types/connect/-/connect-3.4.37.tgz",
-      "integrity": "sha512-zBUSRqkfZ59OcwXon4HVxhx5oWCJmc0OtBTK05M+p0dYjgN6iTwIL2T/WbsQZrEsdnwaF9cWQ+azOnpPvIqY3Q==",
+      "version": "3.4.38",
+      "resolved": "https://registry.npmjs.org/@types/connect/-/connect-3.4.38.tgz",
+      "integrity": "sha512-K6uROf1LD88uDQqJCktA4yzL1YYAK6NgfsI0v/mTgyPKWsX1CnJ0XPSDhViejru1GcRkLWb8RlzFYJRqGUbaug==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
       }
     },
     "node_modules/@types/connect-history-api-fallback": {
-      "version": "1.5.2",
-      "resolved": "https://registry.npmjs.org/@types/connect-history-api-fallback/-/connect-history-api-fallback-1.5.2.tgz",
-      "integrity": "sha512-gX2j9x+NzSh4zOhnRPSdPPmTepS4DfxES0AvIFv3jGv5QyeAJf6u6dY5/BAoAJU9Qq1uTvwOku8SSC2GnCRl6Q==",
+      "version": "1.5.3",
+      "resolved": "https://registry.npmjs.org/@types/connect-history-api-fallback/-/connect-history-api-fallback-1.5.3.tgz",
+      "integrity": "sha512-6mfQ6iNvhSKCZJoY6sIG3m0pKkdUcweVNOLuBBKvoWGzl2yRxOJcYOTRyLKt3nxXvBLJWa6QkW//tgbIwJehmA==",
       "dev": true,
       "dependencies": {
         "@types/express-serve-static-core": "*",
@@ -126,9 +126,9 @@
       }
     },
     "node_modules/@types/eslint": {
-      "version": "8.44.6",
-      "resolved": "https://registry.npmjs.org/@types/eslint/-/eslint-8.44.6.tgz",
-      "integrity": "sha512-P6bY56TVmX8y9J87jHNgQh43h6VVU+6H7oN7hgvivV81K2XY8qJZ5vqPy/HdUoVIelii2kChYVzQanlswPWVFw==",
+      "version": "8.44.7",
+      "resolved": "https://registry.npmjs.org/@types/eslint/-/eslint-8.44.7.tgz",
+      "integrity": "sha512-f5ORu2hcBbKei97U73mf+l9t4zTGl74IqZ0GQk4oVea/VS8tQZYkUveSYojk+frraAVYId0V2WC9O4PTNru2FQ==",
       "dev": true,
       "dependencies": {
         "@types/estree": "*",
@@ -136,9 +136,9 @@
       }
     },
     "node_modules/@types/eslint-scope": {
-      "version": "3.7.6",
-      "resolved": "https://registry.npmjs.org/@types/eslint-scope/-/eslint-scope-3.7.6.tgz",
-      "integrity": "sha512-zfM4ipmxVKWdxtDaJ3MP3pBurDXOCoyjvlpE3u6Qzrmw4BPbfm4/ambIeTk/r/J0iq/+2/xp0Fmt+gFvXJY2PQ==",
+      "version": "3.7.7",
+      "resolved": "https://registry.npmjs.org/@types/eslint-scope/-/eslint-scope-3.7.7.tgz",
+      "integrity": "sha512-MzMFlSLBqNF2gcHWO0G1vP/YQyfvrxZ0bF+u7mzUdZ1/xK4A4sru+nraZz5i3iEIk1l1uyicaDVTB4QbbEkAYg==",
       "dev": true,
       "dependencies": {
         "@types/eslint": "*",
@@ -146,15 +146,15 @@
       }
     },
     "node_modules/@types/estree": {
-      "version": "1.0.3",
-      "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.3.tgz",
-      "integrity": "sha512-CS2rOaoQ/eAgAfcTfq6amKG7bsN+EMcgGY4FAFQdvSj2y1ixvOZTUA9mOtCai7E1SYu283XNw7urKK30nP3wkQ==",
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.5.tgz",
+      "integrity": "sha512-/kYRxGDLWzHOB7q+wtSUQlFrtcdUccpfy+X+9iMBpHK8QLLhx2wIPYuS5DYtR9Wa/YlZAbIovy7qVdB1Aq6Lyw==",
       "dev": true
     },
     "node_modules/@types/express": {
-      "version": "4.17.20",
-      "resolved": "https://registry.npmjs.org/@types/express/-/express-4.17.20.tgz",
-      "integrity": "sha512-rOaqlkgEvOW495xErXMsmyX3WKBInbhG5eqojXYi3cGUaLoRDlXa5d52fkfWZT963AZ3v2eZ4MbKE6WpDAGVsw==",
+      "version": "4.17.21",
+      "resolved": "https://registry.npmjs.org/@types/express/-/express-4.17.21.tgz",
+      "integrity": "sha512-ejlPM315qwLpaQlQDTjPdsUFSc6ZsP4AN6AlWnogPjQ7CVi7PYF3YVz+CY3jE2pwYf7E/7HlDAN0rV2GxTG0HQ==",
       "dev": true,
       "dependencies": {
         "@types/body-parser": "*",
@@ -164,9 +164,9 @@
       }
     },
     "node_modules/@types/express-serve-static-core": {
-      "version": "4.17.39",
-      "resolved": "https://registry.npmjs.org/@types/express-serve-static-core/-/express-serve-static-core-4.17.39.tgz",
-      "integrity": "sha512-BiEUfAiGCOllomsRAZOiMFP7LAnrifHpt56pc4Z7l9K6ACyN06Ns1JLMBxwkfLOjJRlSf06NwWsT7yzfpaVpyQ==",
+      "version": "4.17.41",
+      "resolved": "https://registry.npmjs.org/@types/express-serve-static-core/-/express-serve-static-core-4.17.41.tgz",
+      "integrity": "sha512-OaJ7XLaelTgrvlZD8/aa0vvvxZdUmlCn6MtWeB7TkiKW70BQLc9XEPpDLPdbo52ZhXUCrznlWdCHWxJWtdyajA==",
       "dev": true,
       "dependencies": {
         "@types/node": "*",
@@ -182,60 +182,60 @@
       "dev": true
     },
     "node_modules/@types/http-errors": {
-      "version": "2.0.3",
-      "resolved": "https://registry.npmjs.org/@types/http-errors/-/http-errors-2.0.3.tgz",
-      "integrity": "sha512-pP0P/9BnCj1OVvQR2lF41EkDG/lWWnDyA203b/4Fmi2eTyORnBtcDoKDwjWQthELrBvWkMOrvSOnZ8OVlW6tXA==",
+      "version": "2.0.4",
+      "resolved": "https://registry.npmjs.org/@types/http-errors/-/http-errors-2.0.4.tgz",
+      "integrity": "sha512-D0CFMMtydbJAegzOyHjtiKPLlvnm3iTZyZRSZoLq2mRhDdmLfIWOCYPfQJ4cu2erKghU++QvjcUjp/5h7hESpA==",
       "dev": true
     },
     "node_modules/@types/http-proxy": {
-      "version": "1.17.13",
-      "resolved": "https://registry.npmjs.org/@types/http-proxy/-/http-proxy-1.17.13.tgz",
-      "integrity": "sha512-GkhdWcMNiR5QSQRYnJ+/oXzu0+7JJEPC8vkWXK351BkhjraZF+1W13CUYARUvX9+NqIU2n6YHA4iwywsc/M6Sw==",
+      "version": "1.17.14",
+      "resolved": "https://registry.npmjs.org/@types/http-proxy/-/http-proxy-1.17.14.tgz",
+      "integrity": "sha512-SSrD0c1OQzlFX7pGu1eXxSEjemej64aaNPRhhVYUGqXh0BtldAAx37MG8btcumvpgKyZp1F5Gn3JkktdxiFv6w==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
       }
     },
     "node_modules/@types/json-schema": {
-      "version": "7.0.14",
-      "resolved": "https://registry.npmjs.org/@types/json-schema/-/json-schema-7.0.14.tgz",
-      "integrity": "sha512-U3PUjAudAdJBeC2pgN8uTIKgxrb4nlDF3SF0++EldXQvQBGkpFZMSnwQiIoDU77tv45VgNkl/L4ouD+rEomujw==",
+      "version": "7.0.15",
+      "resolved": "https://registry.npmjs.org/@types/json-schema/-/json-schema-7.0.15.tgz",
+      "integrity": "sha512-5+fP8P8MFNC+AyZCDxrB2pkZFPGzqQWUzpSeuuVLvm8VMcorNYavBqoFcxK8bQz4Qsbn4oUEEem4wDLfcysGHA==",
       "dev": true
     },
     "node_modules/@types/mime": {
-      "version": "1.3.4",
-      "resolved": "https://registry.npmjs.org/@types/mime/-/mime-1.3.4.tgz",
-      "integrity": "sha512-1Gjee59G25MrQGk8bsNvC6fxNiRgUlGn2wlhGf95a59DrprnnHk80FIMMFG9XHMdrfsuA119ht06QPDXA1Z7tw==",
+      "version": "1.3.5",
+      "resolved": "https://registry.npmjs.org/@types/mime/-/mime-1.3.5.tgz",
+      "integrity": "sha512-/pyBZWSLD2n0dcHE3hq8s8ZvcETHtEuF+3E7XVt0Ig2nvsVQXdghHVcEkIWjy9A0wKfTn97a/PSDYohKIlnP/w==",
       "dev": true
     },
     "node_modules/@types/node": {
-      "version": "20.8.9",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.8.9.tgz",
-      "integrity": "sha512-UzykFsT3FhHb1h7yD4CA4YhBHq545JC0YnEz41xkipN88eKQtL6rSgocL5tbAP6Ola9Izm/Aw4Ora8He4x0BHg==",
+      "version": "20.9.2",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.9.2.tgz",
+      "integrity": "sha512-WHZXKFCEyIUJzAwh3NyyTHYSR35SevJ6mZ1nWwJafKtiQbqRTIKSRcw3Ma3acqgsent3RRDqeVwpHntMk+9irg==",
       "dev": true,
       "dependencies": {
         "undici-types": "~5.26.4"
       }
     },
     "node_modules/@types/node-forge": {
-      "version": "1.3.8",
-      "resolved": "https://registry.npmjs.org/@types/node-forge/-/node-forge-1.3.8.tgz",
-      "integrity": "sha512-vGXshY9vim9CJjrpcS5raqSjEfKlJcWy2HNdgUasR66fAnVEYarrf1ULV4nfvpC1nZq/moA9qyqBcu83x+Jlrg==",
+      "version": "1.3.9",
+      "resolved": "https://registry.npmjs.org/@types/node-forge/-/node-forge-1.3.9.tgz",
+      "integrity": "sha512-meK88cx/sTalPSLSoCzkiUB4VPIFHmxtXm5FaaqRDqBX2i/Sy8bJ4odsan0b20RBjPh06dAQ+OTTdnyQyhJZyQ==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
       }
     },
     "node_modules/@types/qs": {
-      "version": "6.9.9",
-      "resolved": "https://registry.npmjs.org/@types/qs/-/qs-6.9.9.tgz",
-      "integrity": "sha512-wYLxw35euwqGvTDx6zfY1vokBFnsK0HNrzc6xNHchxfO2hpuRg74GbkEW7e3sSmPvj0TjCDT1VCa6OtHXnubsg==",
+      "version": "6.9.10",
+      "resolved": "https://registry.npmjs.org/@types/qs/-/qs-6.9.10.tgz",
+      "integrity": "sha512-3Gnx08Ns1sEoCrWssEgTSJs/rsT2vhGP+Ja9cnnk9k4ALxinORlQneLXFeFKOTJMOeZUFD1s7w+w2AphTpvzZw==",
       "dev": true
     },
     "node_modules/@types/range-parser": {
-      "version": "1.2.6",
-      "resolved": "https://registry.npmjs.org/@types/range-parser/-/range-parser-1.2.6.tgz",
-      "integrity": "sha512-+0autS93xyXizIYiyL02FCY8N+KkKPhILhcUSA276HxzreZ16kl+cmwvV2qAM/PuCCwPXzOXOWhiPcw20uSFcA==",
+      "version": "1.2.7",
+      "resolved": "https://registry.npmjs.org/@types/range-parser/-/range-parser-1.2.7.tgz",
+      "integrity": "sha512-hKormJbkJqzQGhziax5PItDUTMAM9uE2XXQmM37dyd4hVM+5aVl7oVxMVUiVQn2oCQFN/LKCZdvSM0pFRqbSmQ==",
       "dev": true
     },
     "node_modules/@types/retry": {
@@ -245,9 +245,9 @@
       "dev": true
     },
     "node_modules/@types/send": {
-      "version": "0.17.3",
-      "resolved": "https://registry.npmjs.org/@types/send/-/send-0.17.3.tgz",
-      "integrity": "sha512-/7fKxvKUoETxjFUsuFlPB9YndePpxxRAOfGC/yJdc9kTjTeP5kRCTzfnE8kPUKCeyiyIZu0YQ76s50hCedI1ug==",
+      "version": "0.17.4",
+      "resolved": "https://registry.npmjs.org/@types/send/-/send-0.17.4.tgz",
+      "integrity": "sha512-x2EM6TJOybec7c52BX0ZspPodMsQUd5L6PRwOunVyVUhXiBSKf3AezDL8Dgvgt5o0UfKNfuA0eMLr2wLT4AiBA==",
       "dev": true,
       "dependencies": {
         "@types/mime": "^1",
@@ -255,18 +255,18 @@
       }
     },
     "node_modules/@types/serve-index": {
-      "version": "1.9.3",
-      "resolved": "https://registry.npmjs.org/@types/serve-index/-/serve-index-1.9.3.tgz",
-      "integrity": "sha512-4KG+yMEuvDPRrYq5fyVm/I2uqAJSAwZK9VSa+Zf+zUq9/oxSSvy3kkIqyL+jjStv6UCVi8/Aho0NHtB1Fwosrg==",
+      "version": "1.9.4",
+      "resolved": "https://registry.npmjs.org/@types/serve-index/-/serve-index-1.9.4.tgz",
+      "integrity": "sha512-qLpGZ/c2fhSs5gnYsQxtDEq3Oy8SXPClIXkW5ghvAvsNuVSA8k+gCONcUCS/UjLEYvYps+e8uBtfgXgvhwfNug==",
       "dev": true,
       "dependencies": {
         "@types/express": "*"
       }
     },
     "node_modules/@types/serve-static": {
-      "version": "1.15.4",
-      "resolved": "https://registry.npmjs.org/@types/serve-static/-/serve-static-1.15.4.tgz",
-      "integrity": "sha512-aqqNfs1XTF0HDrFdlY//+SGUxmdSUbjeRXb5iaZc3x0/vMbYmdw9qvOgHWOyyLFxSSRnUuP5+724zBgfw8/WAw==",
+      "version": "1.15.5",
+      "resolved": "https://registry.npmjs.org/@types/serve-static/-/serve-static-1.15.5.tgz",
+      "integrity": "sha512-PDRk21MnK70hja/YF8AHfC7yIsiQHn1rcXx7ijCFBX/k+XQJhQT/gw3xekXKJvx+5SXaMMS8oqQy09Mzvz2TuQ==",
       "dev": true,
       "dependencies": {
         "@types/http-errors": "*",
@@ -275,18 +275,18 @@
       }
     },
     "node_modules/@types/sockjs": {
-      "version": "0.3.35",
-      "resolved": "https://registry.npmjs.org/@types/sockjs/-/sockjs-0.3.35.tgz",
-      "integrity": "sha512-tIF57KB+ZvOBpAQwSaACfEu7htponHXaFzP7RfKYgsOS0NoYnn+9+jzp7bbq4fWerizI3dTB4NfAZoyeQKWJLw==",
+      "version": "0.3.36",
+      "resolved": "https://registry.npmjs.org/@types/sockjs/-/sockjs-0.3.36.tgz",
+      "integrity": "sha512-MK9V6NzAS1+Ud7JV9lJLFqW85VbC9dq3LmwZCuBe4wBDgKC0Kj/jd8Xl+nSviU+Qc3+m7umHHyHg//2KSa0a0Q==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
       }
     },
     "node_modules/@types/ws": {
-      "version": "8.5.8",
-      "resolved": "https://registry.npmjs.org/@types/ws/-/ws-8.5.8.tgz",
-      "integrity": "sha512-flUksGIQCnJd6sZ1l5dqCEG/ksaoAg/eUwiLAGTJQcfgvZJKF++Ta4bJA6A5aPSJmsr+xlseHn4KLgVlNnvPTg==",
+      "version": "8.5.9",
+      "resolved": "https://registry.npmjs.org/@types/ws/-/ws-8.5.9.tgz",
+      "integrity": "sha512-jbdrY0a8lxfdTp/+r7Z4CkycbOFN8WX+IOchLJr3juT/xzbJ8URyTVSJ/hvNdadTgM1mnedb47n+Y31GsFnQlg==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
@@ -836,9 +836,9 @@
       }
     },
     "node_modules/caniuse-lite": {
-      "version": "1.0.30001558",
-      "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001558.tgz",
-      "integrity": "sha512-/Et7DwLqpjS47JPEcz6VnxU9PwcIdVi0ciLXRWBQdj1XFye68pSQYpV0QtPTfUKWuOaEig+/Vez2l74eDc1tPQ==",
+      "version": "1.0.30001563",
+      "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001563.tgz",
+      "integrity": "sha512-na2WUmOxnwIZtwnFI2CZ/3er0wdNzU7hN+cPYz/z2ajHThnkWjNBOpEPP4n+4r2WPM847JaMotaJE3bnfzjyKw==",
       "dev": true,
       "funding": [
         {
@@ -1278,9 +1278,9 @@
       "dev": true
     },
     "node_modules/electron-to-chromium": {
-      "version": "1.4.569",
-      "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.569.tgz",
-      "integrity": "sha512-LsrJjZ0IbVy12ApW3gpYpcmHS3iRxH4bkKOW98y1/D+3cvDUWGcbzbsFinfUS8knpcZk/PG/2p/RnkMCYN7PVg==",
+      "version": "1.4.588",
+      "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.588.tgz",
+      "integrity": "sha512-soytjxwbgcCu7nh5Pf4S2/4wa6UIu+A3p03U2yVr53qGxi1/VTR3ENI+p50v+UxqqZAfl48j3z55ud7VHIOr9w==",
       "dev": true
     },
     "node_modules/encodeurl": {
@@ -1315,9 +1315,9 @@
       }
     },
     "node_modules/envinfo": {
-      "version": "7.10.0",
-      "resolved": "https://registry.npmjs.org/envinfo/-/envinfo-7.10.0.tgz",
-      "integrity": "sha512-ZtUjZO6l5mwTHvc1L9+1q5p/R3wTopcfqMW8r5t8SJSKqeVI/LtajORwRFEKpEFuekjD0VBjwu1HMxL4UalIRw==",
+      "version": "7.11.0",
+      "resolved": "https://registry.npmjs.org/envinfo/-/envinfo-7.11.0.tgz",
+      "integrity": "sha512-G9/6xF1FPbIw0TtalAMaVPpiq2aDEuKLXM314jPVAO9r2fo2a4BLqMNkmRS7O/xPPZ+COAhGIz3ETvHEV3eUcg==",
       "dev": true,
       "bin": {
         "envinfo": "dist/cli.js"
@@ -1327,9 +1327,9 @@
       }
     },
     "node_modules/es-module-lexer": {
-      "version": "1.3.1",
-      "resolved": "https://registry.npmjs.org/es-module-lexer/-/es-module-lexer-1.3.1.tgz",
-      "integrity": "sha512-JUFAyicQV9mXc3YRxPnDlrfBKpqt6hUYzz9/boprUJHs4e4KVr3XwOF70doO6gwXUor6EWZJAyWAfKki84t20Q==",
+      "version": "1.4.1",
+      "resolved": "https://registry.npmjs.org/es-module-lexer/-/es-module-lexer-1.4.1.tgz",
+      "integrity": "sha512-cXLGjP0c4T3flZJKQSuziYoq7MlT+rnvfZjfp7h+I7K9BNX54kP9nyWvdbwjQ4u1iWbOL4u96fgeZLToQlZC7w==",
       "dev": true
     },
     "node_modules/escalade": {
@@ -2845,9 +2845,9 @@
       }
     },
     "node_modules/punycode": {
-      "version": "2.3.0",
-      "resolved": "https://registry.npmjs.org/punycode/-/punycode-2.3.0.tgz",
-      "integrity": "sha512-rRV+zQD8tVFys26lAGR9WUuS4iUAngJScM+ZRSKtvl5tKeZ2t5bvdNFdNHBW9FWR4guGHlgmsZ1G7BSm2wTbuA==",
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/punycode/-/punycode-2.3.1.tgz",
+      "integrity": "sha512-vYt7UD1U9Wg6138shLtLOvdAu+8DsC/ilFtEVHcH+wydcSpNE20AfSOduf6MkRFahL5FY7X1oU7nKVZFtfq8Fg==",
       "dev": true,
       "engines": {
         "node": ">=6"
@@ -3521,9 +3521,9 @@
       }
     },
     "node_modules/terser": {
-      "version": "5.23.0",
-      "resolved": "https://registry.npmjs.org/terser/-/terser-5.23.0.tgz",
-      "integrity": "sha512-Iyy83LN0uX9ZZLCX4Qbu5JiHiWjOCTwrmM9InWOzVeM++KNWEsqV4YgN9U9E8AlohQ6Gs42ztczlWOG/lwDAMA==",
+      "version": "5.24.0",
+      "resolved": "https://registry.npmjs.org/terser/-/terser-5.24.0.tgz",
+      "integrity": "sha512-ZpGR4Hy3+wBEzVEnHvstMvqpD/nABNelQn/z2r0fjVWGQsN3bpOLzQlqDxmb4CDZnXq5lpjnQ+mHQLAOpfM5iw==",
       "dev": true,
       "dependencies": {
         "@jridgewell/source-map": "^0.3.3",
diff --git a/package-lock.json b/package-lock.json
index ac70b185d..6ee8982ec 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -363,9 +363,9 @@
       "dev": true
     },
     "node_modules/@types/node": {
-      "version": "20.8.9",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.8.9.tgz",
-      "integrity": "sha512-UzykFsT3FhHb1h7yD4CA4YhBHq545JC0YnEz41xkipN88eKQtL6rSgocL5tbAP6Ola9Izm/Aw4Ora8He4x0BHg==",
+      "version": "20.9.2",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.9.2.tgz",
+      "integrity": "sha512-WHZXKFCEyIUJzAwh3NyyTHYSR35SevJ6mZ1nWwJafKtiQbqRTIKSRcw3Ma3acqgsent3RRDqeVwpHntMk+9irg==",
       "dev": true,
       "peer": true,
       "dependencies": {
@@ -373,9 +373,9 @@
       }
     },
     "node_modules/@types/urijs": {
-      "version": "1.19.22",
-      "resolved": "https://registry.npmjs.org/@types/urijs/-/urijs-1.19.22.tgz",
-      "integrity": "sha512-qnYBwfN7O/+i6E1Kr8JaCKsrCLpRCiQ1XxkSxNIYuJ/5Aagt0+HlMX78DJMUrNzDULMz0eu2gcprlxJaDtACOw==",
+      "version": "1.19.23",
+      "resolved": "https://registry.npmjs.org/@types/urijs/-/urijs-1.19.23.tgz",
+      "integrity": "sha512-3Zbk6RzmIpvKTNEHO2RcPOGHM++BQEITMqBRR1Ju32WbruhV/pygYgxiP3xA0b1B88zjzs0Izzjxsbj768+IjA==",
       "dev": true
     },
     "node_modules/abort-controller": {
@@ -1252,9 +1252,9 @@
       }
     },
     "node_modules/lru-cache": {
-      "version": "10.0.1",
-      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-10.0.1.tgz",
-      "integrity": "sha512-IJ4uwUTi2qCccrioU6g9g/5rvvVl13bsdczUUcqbciD9iLr095yj8DQKdObriEvuNSx325N1rV1O0sJFszx75g==",
+      "version": "10.0.3",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-10.0.3.tgz",
+      "integrity": "sha512-B7gr+F6MkqB3uzINHXNctGieGsRTMwIBgxkp0yq/5BwcuDzD4A8wQpHQW6vDAm1uKSLQghmRdD9sKqf2vJ1cEg==",
       "dev": true,
       "engines": {
         "node": "14 || >=16.14"
@@ -2007,9 +2007,9 @@
       "dev": true
     },
     "node_modules/universalify": {
-      "version": "2.0.0",
-      "resolved": "https://registry.npmjs.org/universalify/-/universalify-2.0.0.tgz",
-      "integrity": "sha512-hAZsKq7Yy11Zu1DE0OzWjw7nnLZmJZYTDZZyEFHZdUhV8FkH5MCfoU1XMaxXovpyW5nq5scPqq0ZDP9Zyl04oQ==",
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/universalify/-/universalify-2.0.1.tgz",
+      "integrity": "sha512-gptHNQghINnc/vTGIk0SOFGFNXw7JVrlRUtConJRlvaw6DuX0wO5Jeko9sWrMBhh+PsYAZ7oXAiOnf/UKogyiw==",
       "dev": true,
       "engines": {
         "node": ">= 10.0.0"
@@ -2130,9 +2130,9 @@
       }
     },
     "node_modules/yaml": {
-      "version": "2.3.3",
-      "resolved": "https://registry.npmjs.org/yaml/-/yaml-2.3.3.tgz",
-      "integrity": "sha512-zw0VAJxgeZ6+++/su5AFoqBbZbrEakwu+X0M5HmcwUiBL7AzcuPKjj5we4xfQLp78LkEMpD0cOnUhmgOVy3KdQ==",
+      "version": "2.3.4",
+      "resolved": "https://registry.npmjs.org/yaml/-/yaml-2.3.4.tgz",
+      "integrity": "sha512-8aAvwVUSHpfEqTQ4w/KMlf3HcRdt50E5ODIQJBw1fQ5RL34xabzxtUlzTXVqc4rkZsPbvrXKWnABCD7kWSmocA==",
       "dev": true,
       "engines": {
         "node": ">= 14"

From 27045bf2c33c1906685742e230841e6fe33e9cb0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Mon, 20 Nov 2023 15:32:38 +0100
Subject: [PATCH 07/55] Generate immutable records in uniffi bindings (#332)

## Type of change
```
- [ ] Bug fix
- [ ] New feature development
- [x] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
Update the uniffi code generation to output immutable structs. I've
pointed the dependencies to my fork until this is included in the main
uniffi repo, but it should be enough to let the mobile devs test if the
solution is appropiate for them.
---
 Cargo.lock                          | 38 ++++++++++++++---------------
 Cargo.toml                          | 12 ++++-----
 crates/bitwarden-uniffi/Cargo.toml  |  4 +--
 crates/bitwarden-uniffi/uniffi.toml |  2 ++
 crates/bitwarden/Cargo.toml         |  2 +-
 crates/bitwarden/uniffi.toml        |  2 ++
 crates/uniffi-bindgen/Cargo.toml    |  2 +-
 7 files changed, 33 insertions(+), 29 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index f9fbba7e7..c040eb279 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -3457,8 +3457,8 @@ checksum = "e51733f11c9c4f72aa0c160008246859e340b00807569a0da0e7a1079b27ba85"
 
 [[package]]
 name = "uniffi"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "anyhow",
  "camino",
@@ -3478,8 +3478,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_bindgen"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "anyhow",
  "askama",
@@ -3501,8 +3501,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_build"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "anyhow",
  "camino",
@@ -3511,8 +3511,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_checksum_derive"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "quote",
  "syn 2.0.39",
@@ -3520,8 +3520,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_core"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "anyhow",
  "bytes",
@@ -3535,8 +3535,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_macros"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "bincode",
  "camino",
@@ -3553,8 +3553,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_meta"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "anyhow",
  "bytes",
@@ -3564,8 +3564,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_testing"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "anyhow",
  "camino",
@@ -3576,8 +3576,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_udl"
-version = "0.25.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+version = "0.25.1"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "anyhow",
  "uniffi_meta",
@@ -3784,7 +3784,7 @@ dependencies = [
 [[package]]
 name = "weedle2"
 version = "4.0.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=b369e7c15b1b7ebca34de9028209db11b7ff353d#b369e7c15b1b7ebca34de9028209db11b7ff353d"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
 dependencies = [
  "nom",
 ]
diff --git a/Cargo.toml b/Cargo.toml
index da8805342..c7c2906dc 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -22,10 +22,10 @@ codegen-units = 1
 # This is fine as long as we don't have any unhandled panics, but let's keep it disabled for now
 # strip = true
 
-# Using master until 0.25.1 is released to fix https://github.com/mozilla/uniffi-rs/issues/1798
+# Using git dependency temporarily to add support for immutable records in generated code
 [patch.crates-io]
-uniffi = { git = "https://github.com/mozilla/uniffi-rs", rev = "b369e7c15b1b7ebca34de9028209db11b7ff353d" }
-uniffi_build = { git = "https://github.com/mozilla/uniffi-rs", rev = "b369e7c15b1b7ebca34de9028209db11b7ff353d" }
-uniffi_bindgen = { git = "https://github.com/mozilla/uniffi-rs", rev = "b369e7c15b1b7ebca34de9028209db11b7ff353d" }
-uniffi_core = { git = "https://github.com/mozilla/uniffi-rs", rev = "b369e7c15b1b7ebca34de9028209db11b7ff353d" }
-uniffi_macros = { git = "https://github.com/mozilla/uniffi-rs", rev = "b369e7c15b1b7ebca34de9028209db11b7ff353d" }
+uniffi = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
+uniffi_build = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
+uniffi_bindgen = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
+uniffi_core = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
+uniffi_macros = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
diff --git a/crates/bitwarden-uniffi/Cargo.toml b/crates/bitwarden-uniffi/Cargo.toml
index a7b774c3c..53da0eb8d 100644
--- a/crates/bitwarden-uniffi/Cargo.toml
+++ b/crates/bitwarden-uniffi/Cargo.toml
@@ -18,13 +18,13 @@ chrono = { version = ">=0.4.26, <0.5", features = [
     "std",
 ], default-features = false }
 env_logger = "0.10.0"
-uniffi = "=0.25.0"
+uniffi = "=0.25.1"
 schemars = { version = ">=0.8, <0.9", optional = true }
 
 bitwarden = { path = "../bitwarden", features = ["mobile", "internal"] }
 
 [build-dependencies]
-uniffi = { version = "=0.25.0", features = ["build"] }
+uniffi = { version = "=0.25.1", features = ["build"] }
 
 [target.'cfg(any(target_os = "android", target_os = "ios"))'.dependencies]
 openssl = { version = "0.10", features = ["vendored"] }
diff --git a/crates/bitwarden-uniffi/uniffi.toml b/crates/bitwarden-uniffi/uniffi.toml
index 456a3676e..c9cb0899c 100644
--- a/crates/bitwarden-uniffi/uniffi.toml
+++ b/crates/bitwarden-uniffi/uniffi.toml
@@ -1,7 +1,9 @@
 [bindings.kotlin]
 package_name = "com.bitwarden.sdk"
 cdylib_name = "bitwarden_uniffi"
+generate_immutable_records = true
 
 [bindings.swift]
 ffi_module_name = "BitwardenFFI"
 module_name = "BitwardenSDK"
+generate_immutable_records = true
diff --git a/crates/bitwarden/Cargo.toml b/crates/bitwarden/Cargo.toml
index 65db9db7d..fea9a2fd7 100644
--- a/crates/bitwarden/Cargo.toml
+++ b/crates/bitwarden/Cargo.toml
@@ -50,7 +50,7 @@ chrono = { version = ">=0.4.26, <0.5", features = [
     "serde",
     "std",
 ], default-features = false }
-uniffi = { version = "=0.25.0", optional = true }
+uniffi = { version = "=0.25.1", optional = true }
 
 # We don't use this directly (it's used by rand), but we need it here to enable WASM support
 getrandom = { version = ">=0.2.9", features = ["js"] }
diff --git a/crates/bitwarden/uniffi.toml b/crates/bitwarden/uniffi.toml
index 5c66e5382..bc4a9d9ec 100644
--- a/crates/bitwarden/uniffi.toml
+++ b/crates/bitwarden/uniffi.toml
@@ -1,6 +1,8 @@
 [bindings.kotlin]
 package_name = "com.bitwarden.core"
+generate_immutable_records = true
 
 [bindings.swift]
 ffi_module_name = "BitwardenCoreFFI"
 module_name = "BitwardenCore"
+generate_immutable_records = true
diff --git a/crates/uniffi-bindgen/Cargo.toml b/crates/uniffi-bindgen/Cargo.toml
index 980434e89..825f923e3 100644
--- a/crates/uniffi-bindgen/Cargo.toml
+++ b/crates/uniffi-bindgen/Cargo.toml
@@ -10,4 +10,4 @@ name = "uniffi-bindgen"
 path = "uniffi-bindgen.rs"
 
 [dependencies]
-uniffi = { version = "=0.25.0", features = ["cli"] }
+uniffi = { version = "=0.25.1", features = ["cli"] }

From bebf731307d4a93ef4dba8c80373b3de22be60ca Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Tue, 21 Nov 2023 14:03:25 +0100
Subject: [PATCH 08/55] AES tests (#340)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
---
 crates/bitwarden/src/crypto/aes_ops.rs    | 100 +++++++++++++++++++---
 crates/bitwarden/src/crypto/enc_string.rs |  12 ++-
 crates/bitwarden/src/crypto/master_key.rs |  11 ++-
 crates/bitwarden/src/crypto/rsa.rs        |   4 +-
 4 files changed, 110 insertions(+), 17 deletions(-)

diff --git a/crates/bitwarden/src/crypto/aes_ops.rs b/crates/bitwarden/src/crypto/aes_ops.rs
index 132718349..3deedabd8 100644
--- a/crates/bitwarden/src/crypto/aes_ops.rs
+++ b/crates/bitwarden/src/crypto/aes_ops.rs
@@ -13,10 +13,9 @@ use aes::cipher::{
     BlockEncryptMut, KeyIvInit,
 };
 use hmac::Mac;
-use rand::RngCore;
 
 use crate::{
-    crypto::{EncString, PbkdfSha256Hmac, PBKDF_SHA256_HMAC_OUT_SIZE},
+    crypto::{PbkdfSha256Hmac, PBKDF_SHA256_HMAC_OUT_SIZE},
     error::{CryptoError, Result},
 };
 
@@ -63,10 +62,11 @@ pub fn decrypt_aes256_hmac(
 ///
 /// A AesCbc256_B64 EncString
 #[allow(unused)]
-pub fn encrypt_aes256(data_dec: &[u8], key: GenericArray<u8, U32>) -> Result<EncString> {
-    let (iv, data) = encrypt_aes256_internal(data_dec, key);
+pub fn encrypt_aes256(data_dec: &[u8], key: GenericArray<u8, U32>) -> ([u8; 16], Vec<u8>) {
+    let rng = rand::thread_rng();
+    let (iv, data) = encrypt_aes256_internal(rng, data_dec, key);
 
-    Ok(EncString::AesCbc256_B64 { iv, data })
+    (iv, data)
 }
 
 /// Encrypt using AES-256 in CBC mode with MAC.
@@ -80,11 +80,12 @@ pub fn encrypt_aes256_hmac(
     data_dec: &[u8],
     mac_key: GenericArray<u8, U32>,
     key: GenericArray<u8, U32>,
-) -> Result<EncString> {
-    let (iv, data) = encrypt_aes256_internal(data_dec, key);
+) -> Result<([u8; 16], [u8; 32], Vec<u8>)> {
+    let rng = rand::thread_rng();
+    let (iv, data) = encrypt_aes256_internal(rng, data_dec, key);
     let mac = validate_mac(&mac_key, &iv, &data)?;
 
-    Ok(EncString::AesCbc256_HmacSha256_B64 { iv, mac, data })
+    Ok((iv, mac, data))
 }
 
 /// Encrypt using AES-256 in CBC mode.
@@ -92,9 +93,13 @@ pub fn encrypt_aes256_hmac(
 /// Used internally by:
 /// - [encrypt_aes256]
 /// - [encrypt_aes256_hmac]
-fn encrypt_aes256_internal(data_dec: &[u8], key: GenericArray<u8, U32>) -> ([u8; 16], Vec<u8>) {
+fn encrypt_aes256_internal(
+    mut rng: impl rand::RngCore,
+    data_dec: &[u8],
+    key: GenericArray<u8, U32>,
+) -> ([u8; 16], Vec<u8>) {
     let mut iv = [0u8; 16];
-    rand::thread_rng().fill_bytes(&mut iv);
+    rng.fill_bytes(&mut iv);
     let data = cbc::Encryptor::<aes::Aes256>::new(&key, &iv.into())
         .encrypt_padded_vec_mut::<Pkcs7>(data_dec);
 
@@ -112,3 +117,78 @@ fn validate_mac(mac_key: &[u8], iv: &[u8], data: &[u8]) -> Result<[u8; 32]> {
 
     Ok(mac)
 }
+
+#[cfg(test)]
+mod tests {
+    use aes::cipher::generic_array::sequence::GenericSequence;
+    use base64::Engine;
+    use rand::SeedableRng;
+
+    use crate::util::BASE64_ENGINE;
+
+    use super::*;
+
+    /// Helper function for generating a `GenericArray` of size 32 with each element being
+    /// a multiple of a given increment, starting from a given offset.
+    fn generate_generic_array(offset: u8, increment: u8) -> GenericArray<u8, U32> {
+        GenericArray::generate(|i| offset + i as u8 * increment)
+    }
+
+    /// Helper function for generating a vector of a given size with each element being
+    /// a multiple of a given increment, starting from a given offset.
+    fn generate_vec(length: usize, offset: u8, increment: u8) -> Vec<u8> {
+        (0..length).map(|i| offset + i as u8 * increment).collect()
+    }
+
+    #[test]
+    fn test_encrypt_aes256_internal() {
+        let key = generate_generic_array(0, 1);
+
+        let rng = rand_chacha::ChaCha8Rng::from_seed([0u8; 32]);
+        let result = encrypt_aes256_internal(rng, "EncryptMe!".as_bytes(), key);
+        assert_eq!(
+            result,
+            (
+                [62, 0, 239, 47, 137, 95, 64, 214, 127, 91, 184, 232, 31, 9, 165, 161],
+                vec![214, 76, 187, 97, 58, 146, 212, 140, 95, 164, 177, 204, 179, 133, 172, 148]
+            )
+        );
+    }
+
+    #[test]
+    fn test_validate_mac() {
+        let mac_key = generate_vec(16, 0, 16);
+
+        let iv = generate_vec(16, 0, 16);
+        let data = generate_vec(16, 0, 16);
+
+        let result = validate_mac(&mac_key, &iv, &data);
+
+        assert!(result.is_ok());
+        let mac = result.unwrap();
+        assert_eq!(mac.len(), 32);
+    }
+
+    #[test]
+    fn test_decrypt_aes256() {
+        let iv = generate_vec(16, 0, 1);
+        let iv: &[u8; 16] = iv.as_slice().try_into().unwrap();
+        let key = generate_generic_array(0, 1);
+        let data = BASE64_ENGINE.decode("ByUF8vhyX4ddU9gcooznwA==").unwrap();
+
+        let decrypted = decrypt_aes256(iv, data, key).unwrap();
+
+        assert_eq!(String::from_utf8(decrypted).unwrap(), "EncryptMe!");
+    }
+
+    #[test]
+    fn test_encrypt_decrypt_aes256() {
+        let key = generate_generic_array(0, 1);
+        let data = "EncryptMe!";
+
+        let (iv, encrypted) = encrypt_aes256(data.as_bytes(), key);
+        let decrypted = decrypt_aes256(&iv, encrypted, key).unwrap();
+
+        assert_eq!(String::from_utf8(decrypted).unwrap(), "EncryptMe!");
+    }
+}
diff --git a/crates/bitwarden/src/crypto/enc_string.rs b/crates/bitwarden/src/crypto/enc_string.rs
index ac7f3fc6b..09f877c50 100644
--- a/crates/bitwarden/src/crypto/enc_string.rs
+++ b/crates/bitwarden/src/crypto/enc_string.rs
@@ -1,5 +1,6 @@
 use std::{fmt::Display, str::FromStr};
 
+use aes::cipher::{generic_array::GenericArray, typenum::U32};
 use base64::Engine;
 use serde::{de::Visitor, Deserialize};
 
@@ -331,6 +332,15 @@ impl serde::Serialize for EncString {
 }
 
 impl EncString {
+    pub(crate) fn encrypt_aes256_hmac(
+        data_dec: &[u8],
+        mac_key: GenericArray<u8, U32>,
+        key: GenericArray<u8, U32>,
+    ) -> Result<EncString> {
+        let (iv, mac, data) = super::encrypt_aes256_hmac(data_dec, mac_key, key)?;
+        Ok(EncString::AesCbc256_HmacSha256_B64 { iv, mac, data })
+    }
+
     /// The numerical representation of the encryption type of the [EncString].
     const fn enc_type(&self) -> u8 {
         match self {
@@ -357,7 +367,7 @@ fn invalid_len_error(expected: usize) -> impl Fn(Vec<u8>) -> EncStringParseError
 impl LocateKey for EncString {}
 impl KeyEncryptable<EncString> for &[u8] {
     fn encrypt_with_key(self, key: &SymmetricCryptoKey) -> Result<EncString> {
-        super::encrypt_aes256_hmac(self, key.mac_key.ok_or(CryptoError::InvalidMac)?, key.key)
+        EncString::encrypt_aes256_hmac(self, key.mac_key.ok_or(CryptoError::InvalidMac)?, key.key)
     }
 }
 
diff --git a/crates/bitwarden/src/crypto/master_key.rs b/crates/bitwarden/src/crypto/master_key.rs
index b2c8e6e5f..fdcf93dde 100644
--- a/crates/bitwarden/src/crypto/master_key.rs
+++ b/crates/bitwarden/src/crypto/master_key.rs
@@ -4,8 +4,8 @@ use rand::Rng;
 use sha2::Digest;
 
 use super::{
-    encrypt_aes256_hmac, hkdf_expand, EncString, KeyDecryptable, PbkdfSha256Hmac,
-    SymmetricCryptoKey, UserKey, PBKDF_SHA256_HMAC_OUT_SIZE,
+    hkdf_expand, EncString, KeyDecryptable, PbkdfSha256Hmac, SymmetricCryptoKey, UserKey,
+    PBKDF_SHA256_HMAC_OUT_SIZE,
 };
 use crate::{client::kdf::Kdf, error::Result, util::BASE64_ENGINE};
 
@@ -61,8 +61,11 @@ fn make_user_key(
     rng.fill(&mut user_key);
 
     let stretched_key = stretch_master_key(master_key)?;
-    let protected =
-        encrypt_aes256_hmac(&user_key, stretched_key.mac_key.unwrap(), stretched_key.key)?;
+    let protected = EncString::encrypt_aes256_hmac(
+        &user_key,
+        stretched_key.mac_key.unwrap(),
+        stretched_key.key,
+    )?;
 
     let u: &[u8] = &user_key;
     Ok((UserKey::new(SymmetricCryptoKey::try_from(u)?), protected))
diff --git a/crates/bitwarden/src/crypto/rsa.rs b/crates/bitwarden/src/crypto/rsa.rs
index 0d2d135b9..f105dbfe2 100644
--- a/crates/bitwarden/src/crypto/rsa.rs
+++ b/crates/bitwarden/src/crypto/rsa.rs
@@ -5,7 +5,7 @@ use rsa::{
 };
 
 use crate::{
-    crypto::{encrypt_aes256_hmac, EncString, SymmetricCryptoKey},
+    crypto::{EncString, SymmetricCryptoKey},
     error::{Error, Result},
     util::BASE64_ENGINE,
 };
@@ -33,7 +33,7 @@ pub(super) fn make_key_pair(key: &SymmetricCryptoKey) -> Result<RsaKeyPair> {
         .to_pkcs8_der()
         .map_err(|_| Error::Internal("unable to create private key"))?;
 
-    let protected = encrypt_aes256_hmac(pkcs.as_bytes(), key.mac_key.unwrap(), key.key)?;
+    let protected = EncString::encrypt_aes256_hmac(pkcs.as_bytes(), key.mac_key.unwrap(), key.key)?;
 
     Ok(RsaKeyPair {
         public: b64,

From 24f0dfdbb09dbc5ff0ca879b89948d7be7d7ae1e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Thu, 23 Nov 2023 12:49:46 +0100
Subject: [PATCH 09/55] [PM-4695] Implement unlock with user key and update
 examples to use biometrics (#330)

```
- [ ] Bug fix
- [x] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
Enable the SDK to export the decrypted user key and expose a way to
initialize the SDK with it. The Android and iOS examples have been
revamped to allow choosing how to unlock the client.

Some small notes:
- The iOS example is directly storing the user key in a biometric
protected keychain, while that doesn't seem possible in Android.
Instead, we generate a key in the secure keystore and use it to
encrypt/decrypt the user key.
- The iOS example biometrics don't seem to work on the simulator and
require a real device for testing.

This depends on the refactor done on #329
---
 crates/bitwarden-uniffi/src/crypto.rs         |  13 +
 crates/bitwarden/src/client/client.rs         |  17 +
 .../src/client/encryption_settings.rs         |  38 +-
 crates/bitwarden/src/mobile/client_crypto.rs  |   8 +-
 crates/bitwarden/src/mobile/crypto.rs         |  24 +-
 languages/kotlin/app/build.gradle             |   1 +
 .../com/bitwarden/myapplication/Biometrics.kt | 132 ++++++
 .../bitwarden/myapplication/MainActivity.kt   | 369 +++++++++++-----
 languages/kotlin/doc.md                       |  32 ++
 .../swift/iOS/App.xcodeproj/project.pbxproj   |  12 +-
 languages/swift/iOS/App/Biometrics.swift      |  92 ++++
 languages/swift/iOS/App/ContentView.swift     | 405 +++++++++++-------
 12 files changed, 848 insertions(+), 295 deletions(-)
 create mode 100644 languages/kotlin/app/src/main/java/com/bitwarden/myapplication/Biometrics.kt
 create mode 100644 languages/swift/iOS/App/Biometrics.swift

diff --git a/crates/bitwarden-uniffi/src/crypto.rs b/crates/bitwarden-uniffi/src/crypto.rs
index 1792a5bbc..804202e2f 100644
--- a/crates/bitwarden-uniffi/src/crypto.rs
+++ b/crates/bitwarden-uniffi/src/crypto.rs
@@ -32,4 +32,17 @@ impl ClientCrypto {
             .initialize_org_crypto(req)
             .await?)
     }
+
+    /// Get the uses's decrypted encryption key. Note: It's very important
+    /// to keep this key safe, as it can be used to decrypt all of the user's data
+    pub async fn get_user_encryption_key(&self) -> Result<String> {
+        Ok(self
+            .0
+             .0
+            .write()
+            .await
+            .crypto()
+            .get_user_encryption_key()
+            .await?)
+    }
 }
diff --git a/crates/bitwarden/src/client/client.rs b/crates/bitwarden/src/client/client.rs
index 213a12fb2..960ca9bda 100644
--- a/crates/bitwarden/src/client/client.rs
+++ b/crates/bitwarden/src/client/client.rs
@@ -222,6 +222,23 @@ impl Client {
         Ok(self.encryption_settings.as_ref().unwrap())
     }
 
+    #[cfg(feature = "mobile")]
+    pub(crate) fn initialize_user_crypto_decrypted_key(
+        &mut self,
+        decrypted_user_key: &str,
+        private_key: EncString,
+    ) -> Result<&EncryptionSettings> {
+        let user_key = decrypted_user_key.parse::<SymmetricCryptoKey>()?;
+        self.encryption_settings = Some(EncryptionSettings::new_decrypted_key(
+            user_key,
+            private_key,
+        )?);
+        Ok(self
+            .encryption_settings
+            .as_ref()
+            .expect("It was initialized on the previous line"))
+    }
+
     pub(crate) fn initialize_crypto_single_key(
         &mut self,
         key: SymmetricCryptoKey,
diff --git a/crates/bitwarden/src/client/encryption_settings.rs b/crates/bitwarden/src/client/encryption_settings.rs
index 6533c7d2e..7c16725e7 100644
--- a/crates/bitwarden/src/client/encryption_settings.rs
+++ b/crates/bitwarden/src/client/encryption_settings.rs
@@ -27,6 +27,7 @@ impl std::fmt::Debug for EncryptionSettings {
 }
 
 impl EncryptionSettings {
+    /// Initialize the encryption settings with the user password and their encrypted keys
     #[cfg(feature = "internal")]
     pub(crate) fn new(
         login_method: &UserLoginMethod,
@@ -45,24 +46,33 @@ impl EncryptionSettings {
                 // Decrypt the user key
                 let user_key = master_key.decrypt_user_key(user_key)?;
 
-                // Decrypt the private key with the user key
-                let private_key = {
-                    let dec: Vec<u8> = private_key.decrypt_with_key(&user_key)?;
-                    Some(
-                        rsa::RsaPrivateKey::from_pkcs8_der(&dec)
-                            .map_err(|_| CryptoError::InvalidKey)?,
-                    )
-                };
-
-                Ok(EncryptionSettings {
-                    user_key,
-                    private_key,
-                    org_keys: HashMap::new(),
-                })
+                Self::new_decrypted_key(user_key, private_key)
             }
         }
     }
 
+    /// Initialize the encryption settings with the decrypted user key and the encrypted user private key
+    /// This should only be used when unlocking the vault via biometrics or when the vault is set to lock: "never"
+    /// Otherwise handling the decrypted user key is dangerous and discouraged
+    #[cfg(feature = "internal")]
+    pub(crate) fn new_decrypted_key(
+        user_key: SymmetricCryptoKey,
+        private_key: EncString,
+    ) -> Result<Self> {
+        let private_key = {
+            let dec: Vec<u8> = private_key.decrypt_with_key(&user_key)?;
+            Some(rsa::RsaPrivateKey::from_pkcs8_der(&dec).map_err(|_| CryptoError::InvalidKey)?)
+        };
+
+        Ok(EncryptionSettings {
+            user_key,
+            private_key,
+            org_keys: HashMap::new(),
+        })
+    }
+
+    /// Initialize the encryption settings with only a single decrypted key.
+    /// This is used only for logging in Secrets Manager with an access token
     pub(crate) fn new_single_key(key: SymmetricCryptoKey) -> Self {
         EncryptionSettings {
             user_key: key,
diff --git a/crates/bitwarden/src/mobile/client_crypto.rs b/crates/bitwarden/src/mobile/client_crypto.rs
index c0edb1982..118e02726 100644
--- a/crates/bitwarden/src/mobile/client_crypto.rs
+++ b/crates/bitwarden/src/mobile/client_crypto.rs
@@ -3,7 +3,8 @@ use crate::Client;
 use crate::{
     error::Result,
     mobile::crypto::{
-        initialize_org_crypto, initialize_user_crypto, InitOrgCryptoRequest, InitUserCryptoRequest,
+        get_user_encryption_key, initialize_org_crypto, initialize_user_crypto,
+        InitOrgCryptoRequest, InitUserCryptoRequest,
     },
 };
 
@@ -21,6 +22,11 @@ impl<'a> ClientCrypto<'a> {
     pub async fn initialize_org_crypto(&mut self, req: InitOrgCryptoRequest) -> Result<()> {
         initialize_org_crypto(self.client, req).await
     }
+
+    #[cfg(feature = "internal")]
+    pub async fn get_user_encryption_key(&mut self) -> Result<String> {
+        get_user_encryption_key(self.client).await
+    }
 }
 
 impl<'a> Client {
diff --git a/crates/bitwarden/src/mobile/crypto.rs b/crates/bitwarden/src/mobile/crypto.rs
index 2cf850279..9c2c8478f 100644
--- a/crates/bitwarden/src/mobile/crypto.rs
+++ b/crates/bitwarden/src/mobile/crypto.rs
@@ -3,7 +3,12 @@ use std::collections::HashMap;
 use schemars::JsonSchema;
 use serde::{Deserialize, Serialize};
 
-use crate::{client::kdf::Kdf, crypto::EncString, error::Result, Client};
+use crate::{
+    client::kdf::Kdf,
+    crypto::EncString,
+    error::{Error, Result},
+    Client,
+};
 
 #[cfg(feature = "internal")]
 #[derive(Serialize, Deserialize, Debug, JsonSchema)]
@@ -31,6 +36,10 @@ pub enum InitUserCryptoMethod {
         /// The user's encrypted symmetric crypto key
         user_key: String,
     },
+    DecryptedKey {
+        /// The user's decrypted encryption key, obtained using `get_user_encryption_key`
+        decrypted_user_key: String,
+    },
 }
 
 #[cfg(feature = "internal")]
@@ -49,6 +58,9 @@ pub async fn initialize_user_crypto(client: &mut Client, req: InitUserCryptoRequ
             let user_key: EncString = user_key.parse()?;
             client.initialize_user_crypto(&password, user_key, private_key)?;
         }
+        InitUserCryptoMethod::DecryptedKey { decrypted_user_key } => {
+            client.initialize_user_crypto_decrypted_key(&decrypted_user_key, private_key)?;
+        }
     }
 
     Ok(())
@@ -69,3 +81,13 @@ pub async fn initialize_org_crypto(client: &mut Client, req: InitOrgCryptoReques
     client.initialize_org_crypto(organization_keys)?;
     Ok(())
 }
+
+#[cfg(feature = "internal")]
+pub async fn get_user_encryption_key(client: &mut Client) -> Result<String> {
+    let user_key = client
+        .get_encryption_settings()?
+        .get_key(&None)
+        .ok_or(Error::VaultLocked)?;
+
+    Ok(user_key.to_base64())
+}
diff --git a/languages/kotlin/app/build.gradle b/languages/kotlin/app/build.gradle
index 709e32889..ef42d43bb 100644
--- a/languages/kotlin/app/build.gradle
+++ b/languages/kotlin/app/build.gradle
@@ -60,6 +60,7 @@ dependencies {
     implementation 'androidx.compose.ui:ui-graphics'
     implementation 'androidx.compose.ui:ui-tooling-preview'
     implementation 'androidx.compose.material3:material3'
+    implementation "androidx.biometric:biometric:1.1.0"
     implementation "io.ktor:ktor-client-core:2.3.3"
     implementation "io.ktor:ktor-client-cio:2.3.3"
     implementation "io.ktor:ktor-client-content-negotiation:2.3.3"
diff --git a/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/Biometrics.kt b/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/Biometrics.kt
new file mode 100644
index 000000000..8f8115e8d
--- /dev/null
+++ b/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/Biometrics.kt
@@ -0,0 +1,132 @@
+package com.bitwarden.myapplication
+
+import android.os.Build
+import android.security.keystore.KeyGenParameterSpec
+import android.security.keystore.KeyProperties
+import android.util.Log
+import androidx.biometric.BiometricManager
+import androidx.biometric.BiometricManager.Authenticators
+import androidx.biometric.BiometricPrompt
+import androidx.biometric.BiometricPrompt.CryptoObject
+import androidx.core.content.ContextCompat
+import androidx.fragment.app.FragmentActivity
+import kotlinx.coroutines.CoroutineScope
+import kotlinx.coroutines.Dispatchers
+import kotlinx.coroutines.async
+import java.security.KeyStore
+import java.util.Base64
+import javax.crypto.Cipher
+import javax.crypto.KeyGenerator
+import javax.crypto.SecretKey
+import javax.crypto.spec.GCMParameterSpec
+
+/**
+ *   IMPORTANT: This file is provided only for the purpose of demostrating the use of the biometric unlock functionality.
+ *   It hasn't gone through a throrough security review and should not be considered production ready. It also doesn't 
+ *   handle a lot of errors and edge cases that a production application would need to deal with. 
+ *   Developers are encouraged to review and improve the code as needed to meet their security requirements. 
+ *   Additionally, we recommend to consult with security experts and conduct thorough testing before using the code in production.
+ */
+
+class Biometric(private var activity: FragmentActivity) {
+    private var promptInfo: BiometricPrompt.PromptInfo =
+        BiometricPrompt.PromptInfo.Builder().setTitle("Unlock")
+            .setSubtitle("Bitwarden biometric unlock")
+            .setDescription("Confirm biometric to continue").setConfirmationRequired(true)
+            .setNegativeButtonText("Use account password").build()
+
+    suspend fun encryptString(
+        keyName: String, plaintext: String, callback: (String, String) -> Unit
+    ) {
+        if (canAuthenticate()) {
+            val cipher = getCipher()
+            cipher.init(Cipher.ENCRYPT_MODE, getSecretKey(keyName))
+
+            val bio = createBiometricPrompt {
+                val ciphertext = it.cipher!!.doFinal(plaintext.toByteArray())
+                callback(
+                    String(Base64.getEncoder().encode(ciphertext)),
+                    String(Base64.getEncoder().encode(cipher.iv))
+                )
+            }
+            CoroutineScope(Dispatchers.Main).async {
+                bio.authenticate(promptInfo, CryptoObject(cipher))
+            }.await()
+        }
+    }
+
+    suspend fun decryptString(
+        keyName: String, encrypted: String, initializationVector: String, callback: (String) -> Unit
+    ) {
+        if (canAuthenticate()) {
+            val enc = Base64.getDecoder().decode(encrypted)
+            val iv = Base64.getDecoder().decode(initializationVector)
+
+            val cipher = getCipher()
+            cipher.init(Cipher.DECRYPT_MODE, getSecretKey(keyName), GCMParameterSpec(128, iv))
+
+            val bio = createBiometricPrompt {
+                callback(String(it.cipher!!.doFinal(enc)))
+            }
+
+            CoroutineScope(Dispatchers.Main).async {
+                bio.authenticate(promptInfo, CryptoObject(cipher))
+            }.await()
+        }
+    }
+
+    private fun canAuthenticate() = BiometricManager.from(activity)
+        .canAuthenticate(Authenticators.BIOMETRIC_STRONG) == BiometricManager.BIOMETRIC_SUCCESS
+
+    private fun createBiometricPrompt(processData: (CryptoObject) -> Unit): BiometricPrompt {
+        return BiometricPrompt(activity,
+            ContextCompat.getMainExecutor(activity),
+            object : BiometricPrompt.AuthenticationCallback() {
+                override fun onAuthenticationError(errorCode: Int, errString: CharSequence) {
+                    super.onAuthenticationError(errorCode, errString)
+                    Log.e("Biometric", "$errorCode :: $errString")
+                }
+
+                override fun onAuthenticationFailed() {
+                    super.onAuthenticationFailed()
+                    Log.e("Biometric", "Authentication failed for an unknown reason")
+                }
+
+                override fun onAuthenticationSucceeded(result: BiometricPrompt.AuthenticationResult) {
+                    super.onAuthenticationSucceeded(result)
+                    processData(result.cryptoObject!!)
+                }
+            })
+    }
+
+    private fun getCipher(): Cipher {
+        val transform =
+            "${KeyProperties.KEY_ALGORITHM_AES}/${KeyProperties.BLOCK_MODE_GCM}/${KeyProperties.ENCRYPTION_PADDING_NONE}"
+        return Cipher.getInstance(transform)
+    }
+
+    private fun getSecretKey(keyName: String): SecretKey {
+        // If the SecretKey exists, return it
+        val keyStore = KeyStore.getInstance("AndroidKeyStore")
+        keyStore.load(null)
+        keyStore.getKey(keyName, null)?.let { return it as SecretKey }
+
+        // Otherwise, we generate a new one
+        val keyGenParams = KeyGenParameterSpec.Builder(
+            keyName, KeyProperties.PURPOSE_ENCRYPT or KeyProperties.PURPOSE_DECRYPT
+        ).apply {
+            setBlockModes(KeyProperties.BLOCK_MODE_GCM)
+            setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_NONE)
+            setKeySize(256)
+            setUserAuthenticationRequired(true)
+            if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.R) {
+                setUserAuthenticationParameters(0, KeyProperties.AUTH_BIOMETRIC_STRONG)
+            }
+        }.build()
+
+        val keyGenerator =
+            KeyGenerator.getInstance(KeyProperties.KEY_ALGORITHM_AES, "AndroidKeyStore")
+        keyGenerator.init(keyGenParams)
+        return keyGenerator.generateKey()
+    }
+}
diff --git a/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt b/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt
index 13dec7d0e..3c03c6bca 100644
--- a/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt
+++ b/languages/kotlin/app/src/main/java/com/bitwarden/myapplication/MainActivity.kt
@@ -1,15 +1,27 @@
 package com.bitwarden.myapplication
 
+import android.content.Context
 import android.os.Bundle
-import androidx.activity.ComponentActivity
 import androidx.activity.compose.setContent
+import androidx.compose.foundation.layout.Column
+import androidx.compose.foundation.layout.Row
 import androidx.compose.foundation.layout.fillMaxSize
+import androidx.compose.foundation.layout.padding
+import androidx.compose.material3.Button
+import androidx.compose.material3.Checkbox
+import androidx.compose.material3.Divider
 import androidx.compose.material3.MaterialTheme
 import androidx.compose.material3.Surface
 import androidx.compose.material3.Text
-import androidx.compose.runtime.Composable
+import androidx.compose.runtime.MutableState
+import androidx.compose.runtime.mutableStateOf
+import androidx.compose.runtime.remember
+import androidx.compose.ui.Alignment
+import androidx.compose.ui.Alignment.Companion.CenterVertically
 import androidx.compose.ui.Modifier
-import androidx.compose.ui.tooling.preview.Preview
+import androidx.compose.ui.graphics.Color
+import androidx.compose.ui.unit.dp
+import androidx.fragment.app.FragmentActivity
 import com.bitwarden.core.DateTime
 import com.bitwarden.core.Folder
 import com.bitwarden.core.InitOrgCryptoRequest
@@ -44,151 +56,272 @@ import java.security.cert.X509Certificate
 import java.util.Base64
 import javax.net.ssl.X509TrustManager
 
-class MainActivity : ComponentActivity() {
+/**
+ *   IMPORTANT: This file is provided only for the purpose of demostrating the use of the SDK functionality.
+ *   It hasn't gone through a throrough security review and should not be considered production ready. It also doesn't 
+ *   handle a lot of errors and edge cases that a production application would need to deal with. 
+ *   Developers are encouraged to review and improve the code as needed to meet their security requirements. 
+ *   Additionally, we recommend to consult with security experts and conduct thorough testing before using the code in production.
+ */
+
+const val SERVER_URL = "https://10.0.2.2:8080/"
+const val API_URL = SERVER_URL + "api/"
+const val IDENTITY_URL = SERVER_URL + "identity/"
+
+const val EMAIL = "test@bitwarden.com"
+const val PASSWORD = "asdfasdfasdf"
+
+// We should separate keys for each user by appending the user_id
+const val BIOMETRIC_KEY = "biometric_key"
+
+class MainActivity : FragmentActivity() {
+    private lateinit var biometric: Biometric
+    private lateinit var client: Client
+    private lateinit var http: HttpClient
+
+    private var accessToken = ""
+
     override fun onCreate(savedInstanceState: Bundle?) {
         super.onCreate(savedInstanceState)
+        biometric = Biometric(this)
+        client = Client(null)
+        http = httpClient()
+
+        setContent {
+            MyApplicationTheme {
+                // A surface container using the 'background' color from the theme
+                Surface(
+                    modifier = Modifier.fillMaxSize(), color = MaterialTheme.colorScheme.background
+                ) {
+                    Column(
+                        horizontalAlignment = Alignment.CenterHorizontally
+                    ) {
 
-        val SERVER_URL = "https://10.0.2.2:8080/"
-        val API_URL = SERVER_URL + "api/"
-        val IDENTITY_URL = SERVER_URL + "identity/"
+                        val setupBiometrics = remember { mutableStateOf(true) }
+                        val outputText = remember { mutableStateOf("") }
 
-        val EMAIL = "test@bitwarden.com"
-        val PASSWORD = "asdfasdfasdf"
+                        Row {
+                            Checkbox(checked = setupBiometrics.value,
+                                onCheckedChange = { isChecked ->
+                                    setupBiometrics.value = isChecked
+                                })
+                            Text(
+                                "Setup biometric unlock after login",
+                                modifier = Modifier.align(CenterVertically)
+                            )
+                        }
 
-        GlobalScope.launch {
-            var client = Client(null)
-            val http = httpClient()
+                        Button({
+                            GlobalScope.launch {
+                                clientExamplePassword(
+                                    client, http, outputText, setupBiometrics.value
+                                )
+                            }
+                        }) {
+                            Text("Login with username + password")
+                        }
 
-            ///////////////////////////// Get master password hash /////////////////////////////
-            @Serializable
-            data class PreloginRequest(val email: String)
+                        Divider(
+                            color = Color.Black,
+                            thickness = 1.dp,
+                            modifier = Modifier.padding(30.dp)
+                        )
 
-            @Serializable
-            data class PreloginResponse(
-                val kdf: UInt,
-                val kdfIterations: UInt,
-                val kdfMemory: UInt?,
-                val kdfParallelism: UInt?
-            )
+                        Button({
+                            GlobalScope.launch {
+                                clientExampleBiometrics(client, http, outputText)
+                            }
+                        }) {
+                            Text("Unlock with biometrics")
+                        }
 
-            val prelogin_body = http.post(IDENTITY_URL + "accounts/prelogin") {
-                contentType(ContentType.Application.Json)
-                setBody(PreloginRequest(EMAIL))
-            }.body<PreloginResponse>()
-            val kdf = if (prelogin_body.kdf == 0u) {
-                Kdf.Pbkdf2(prelogin_body.kdfIterations)
-            } else {
-                Kdf.Argon2id(
-                    prelogin_body.kdfIterations,
-                    prelogin_body.kdfMemory!!,
-                    prelogin_body.kdfParallelism!!
-                )
+                        Button({
+                            GlobalScope.launch {
+                                client.destroy()
+                                client = Client(null)
+                                outputText.value = "OK"
+                            }
+                        }) {
+                            Text("Lock & reset client")
+                        }
+
+                        Text(
+                            "Output: " + outputText.value,
+                            modifier = Modifier.padding(vertical = 10.dp)
+                        )
+                    }
+                }
             }
-            val masterPasswordHash = client.auth().hashPassword(EMAIL, PASSWORD, kdf)
+        }
+    }
+
+    private suspend fun clientExamplePassword(
+        client: Client, http: HttpClient, outputText: MutableState<String>, setupBiometrics: Boolean
+    ) {
+        println("### Logging in with username and password ###")
+        ///////////////////////////// Get master password hash /////////////////////////////
+        @Serializable
+        data class PreloginRequest(val email: String)
 
-            ///////////////////////////// Login /////////////////////////////
+        @Serializable
+        data class PreloginResponse(
+            val kdf: UInt, val kdfIterations: UInt, val kdfMemory: UInt?, val kdfParallelism: UInt?
+        )
 
-            @Serializable
-            data class LoginResponse(
-                val Key: String,
-                val PrivateKey: String,
-                val access_token: String,
-                val refresh_token: String,
+        val prelogin_body = http.post(IDENTITY_URL + "accounts/prelogin") {
+            contentType(ContentType.Application.Json)
+            setBody(PreloginRequest(EMAIL))
+        }.body<PreloginResponse>()
+        val kdf = if (prelogin_body.kdf == 0u) {
+            Kdf.Pbkdf2(prelogin_body.kdfIterations)
+        } else {
+            Kdf.Argon2id(
+                prelogin_body.kdfIterations,
+                prelogin_body.kdfMemory!!,
+                prelogin_body.kdfParallelism!!
             )
+        }
+        val masterPasswordHash = client.auth().hashPassword(EMAIL, PASSWORD, kdf)
 
-            val loginBody = http.post(IDENTITY_URL + "connect/token") {
-                contentType(ContentType.Application.Json)
-                header("Auth-Email", Base64.getEncoder().encodeToString(EMAIL.toByteArray()))
-                setBody(FormDataContent(Parameters.build {
-                    append("scope", "api offline_access")
-                    append("client_id", "web")
-                    append("deviceType", "12")
-                    append("deviceIdentifier", "0745d426-8dab-484a-9816-4959721d77c7")
-                    append("deviceName", "edge")
-
-                    append("grant_type", "password")
-                    append("username", EMAIL)
-                    append("password", masterPasswordHash)
-                }))
-            }.body<LoginResponse>()
-
-            ///////////////////////////// Sync /////////////////////////////
-
-            val syncBody = http.get(API_URL + "sync?excludeDomains=true") {
-                bearerAuth(loginBody.access_token)
-            }.body<JsonObject>()
-
-            val folders = (syncBody["folders"] as JsonArray).map {
-                val o = it as JsonObject
-                Folder(
-                    (o["id"] as JsonPrimitive).content,
-                    (o["name"] as JsonPrimitive).content,
-                    DateTime.parse(
-                        (o["revisionDate"] as JsonPrimitive).content
-                    )
-                )
-            }
+        ///////////////////////////// Login /////////////////////////////
 
-            ///////////////////////////// Initialize crypto /////////////////////////////
-            val orgs = ((syncBody["profile"] as JsonObject)["organizations"]) as JsonArray
-            val orgKeys = HashMap<Uuid, String>()
+        @Serializable
+        data class LoginResponse(
+            val Key: String,
+            val PrivateKey: String,
+            val access_token: String,
+            val refresh_token: String,
+        )
 
-            for (org in orgs) {
-                val o = org as JsonObject
-                orgKeys[(o["id"] as JsonPrimitive).content] = (o["key"] as JsonPrimitive).content
-            }
+        val loginBody = http.post(IDENTITY_URL + "connect/token") {
+            contentType(ContentType.Application.Json)
+            header("Auth-Email", Base64.getEncoder().encodeToString(EMAIL.toByteArray()))
+            setBody(FormDataContent(Parameters.build {
+                append("scope", "api offline_access")
+                append("client_id", "web")
+                append("deviceType", "12")
+                append("deviceIdentifier", "0745d426-8dab-484a-9816-4959721d77c7")
+                append("deviceName", "edge")
 
-            client.crypto().initializeUserCrypto(
-                InitUserCryptoRequest(
-                    kdfParams = kdf,
-                    email = EMAIL,
-                    privateKey = loginBody.PrivateKey,
-                    method = InitUserCryptoMethod.Password(
-                        password = PASSWORD,
-                        userKey = loginBody.Key
-                    )
-                )
-            )
+                append("grant_type", "password")
+                append("username", EMAIL)
+                append("password", masterPasswordHash)
+            }))
+        }.body<LoginResponse>()
 
-            client.crypto().initializeOrgCrypto(
-                InitOrgCryptoRequest(
-                    organizationKeys = orgKeys
+        client.crypto().initializeUserCrypto(
+            InitUserCryptoRequest(
+                kdfParams = kdf,
+                email = EMAIL,
+                privateKey = loginBody.PrivateKey,
+                method = InitUserCryptoMethod.Password(
+                    password = PASSWORD, userKey = loginBody.Key
                 )
             )
+        )
 
-            ///////////////////////////// Decrypt some folders /////////////////////////////
+        accessToken = loginBody.access_token
 
-            val decryptedFolders = client.vault().folders().decryptList(folders)
+        decryptVault(client, http, outputText)
 
-            println(decryptedFolders)
+        if (setupBiometrics) {
+            // Save values for future logins
+            val sharedPref = getPreferences(Context.MODE_PRIVATE)
+            with(sharedPref.edit()) {
+                putString("accessToken", accessToken)
+                putString("privateKey", loginBody.PrivateKey)
 
-        }
+                putInt("kdfType", prelogin_body.kdf.toInt())
+                putInt("kdfIterations", prelogin_body.kdfIterations.toInt())
+                putInt("kdfMemory", (prelogin_body.kdfMemory ?: 0u).toInt())
+                putInt("kdfParallelism", (prelogin_body.kdfParallelism ?: 0u).toInt())
 
-        setContent {
-            MyApplicationTheme {
-                // A surface container using the 'background' color from the theme
-                Surface(
-                    modifier = Modifier.fillMaxSize(), color = MaterialTheme.colorScheme.background
-                ) {
-                    Greeting("Hey")
+                // TODO: This should be protected by Android's secure KeyStore
+                val decryptedKey = client.crypto().getUserEncryptionKey()
+
+                biometric.encryptString(BIOMETRIC_KEY, decryptedKey) { key, iv ->
+                    putString("encryptedUserKey", key)
+                    putString("encryptedUserKeyIv", iv)
+                    apply()
                 }
             }
         }
     }
-}
 
-@Composable
-fun Greeting(name: String, modifier: Modifier = Modifier) {
-    Text(
-        text = "Hello $name!", modifier = modifier
-    )
-}
+    private suspend fun clientExampleBiometrics(
+        client: Client, http: HttpClient, outputText: MutableState<String>
+    ) {
+        println("### Unlocking with Biometrics ###")
+
+        val pref = getPreferences(Context.MODE_PRIVATE)
+        accessToken = pref.getString("accessToken", "").orEmpty()
+        val privateKey = pref.getString("privateKey", "")
+
+        val kdf = if (pref.getInt("kdfType", 0) == 0) {
+            Kdf.Pbkdf2(pref.getInt("kdfIterations", 0).toUInt())
+        } else {
+            Kdf.Argon2id(
+                pref.getInt("kdfIterations", 0).toUInt(),
+                pref.getInt("kdfMemory", 0).toUInt(),
+                pref.getInt("kdfParallelism", 0).toUInt()
+            )
+        }
+
+        val encryptedUserKey = pref.getString("encryptedUserKey", "")!!
+        val encryptedUserKeyIv = pref.getString("encryptedUserKeyIv", "")!!
+
+        biometric.decryptString(
+            BIOMETRIC_KEY, encryptedUserKey, encryptedUserKeyIv
+        ) { key ->
+            GlobalScope.launch {
+                client.crypto().initializeUserCrypto(
+                    InitUserCryptoRequest(
+                        kdfParams = kdf,
+                        email = EMAIL,
+                        privateKey = privateKey!!,
+                        method = InitUserCryptoMethod.DecryptedKey(decryptedUserKey = key)
+                    )
+                )
+
+                decryptVault(client, http, outputText)
+            }
+        }
+    }
+
+    suspend fun decryptVault(client: Client, http: HttpClient, outputText: MutableState<String>) {
+        ///////////////////////////// Sync /////////////////////////////
+
+        val syncBody = http.get(API_URL + "sync?excludeDomains=true") {
+            bearerAuth(accessToken)
+        }.body<JsonObject>()
+
+        val folders = (syncBody["folders"] as JsonArray).map {
+            val o = it as JsonObject
+            Folder(
+                (o["id"] as JsonPrimitive).content,
+                (o["name"] as JsonPrimitive).content,
+                DateTime.parse(
+                    (o["revisionDate"] as JsonPrimitive).content
+                )
+            )
+        }
+
+        ///////////////////////////// Initialize org crypto /////////////////////////////
+        val orgs = ((syncBody["profile"] as JsonObject)["organizations"]) as JsonArray
+        val orgKeys = HashMap<Uuid, String>()
+
+        for (org in orgs) {
+            val o = org as JsonObject
+            orgKeys[(o["id"] as JsonPrimitive).content] = (o["key"] as JsonPrimitive).content
+        }
+
+        client.crypto().initializeOrgCrypto(InitOrgCryptoRequest(organizationKeys = orgKeys))
+
+        ///////////////////////////// Decrypt some folders /////////////////////////////
 
-@Preview(showBackground = true)
-@Composable
-fun GreetingPreview() {
-    MyApplicationTheme {
-        Greeting("Sdk")
+        val decryptedFolders = client.vault().folders().decryptList(folders)
+        outputText.value = decryptedFolders.toString()
+        println(decryptedFolders)
     }
 }
 
diff --git a/languages/kotlin/doc.md b/languages/kotlin/doc.md
index 70446bd8f..fd65c7b71 100644
--- a/languages/kotlin/doc.md
+++ b/languages/kotlin/doc.md
@@ -205,6 +205,17 @@ Initialization method for the organization crypto. Needs to be called after
 
 **Output**: std::result::Result<,BitwardenError>
 
+### `get_user_encryption_key`
+
+Get the uses&#x27;s decrypted encryption key. Note: It&#x27;s very important to keep this key safe,
+as it can be used to decrypt all of the user&#x27;s data
+
+**Arguments**:
+
+- self:
+
+**Output**: std::result::Result<String,BitwardenError>
+
 ## ClientExporters
 
 ### `export_vault`
@@ -906,6 +917,27 @@ implementations.
         </table>
     </td>
 </tr>
+<tr>
+    <th>decryptedKey</th>
+    <th>object</th>
+    <th></th>
+</tr>
+<tr>
+    <td colspan="3">
+        <table>
+        <tr>
+            <th>Key</th>
+            <th>Type</th>
+            <th>Description</th>
+        </tr>
+            <tr>
+                <td>decrypted_user_key</td>
+                <td>string</td>
+                <td>The user's decrypted encryption key, obtained using `get_user_encryption_key`</td>
+            </tr>
+        </table>
+    </td>
+</tr>
 </table>
 
 ## `InitUserCryptoRequest`
diff --git a/languages/swift/iOS/App.xcodeproj/project.pbxproj b/languages/swift/iOS/App.xcodeproj/project.pbxproj
index 003c09c0d..e8b3519fd 100644
--- a/languages/swift/iOS/App.xcodeproj/project.pbxproj
+++ b/languages/swift/iOS/App.xcodeproj/project.pbxproj
@@ -7,6 +7,7 @@
 	objects = {
 
 /* Begin PBXBuildFile section */
+		33F2B0502B0511C700E1E91C /* Biometrics.swift in Sources */ = {isa = PBXBuildFile; fileRef = 33F2B04F2B0511C700E1E91C /* Biometrics.swift */; };
 		55B6153E2A8678B300BE93F4 /* testApp.swift in Sources */ = {isa = PBXBuildFile; fileRef = 55B6153D2A8678B300BE93F4 /* testApp.swift */; };
 		55B615402A8678B300BE93F4 /* ContentView.swift in Sources */ = {isa = PBXBuildFile; fileRef = 55B6153F2A8678B300BE93F4 /* ContentView.swift */; };
 		55B615422A8678B400BE93F4 /* Assets.xcassets in Resources */ = {isa = PBXBuildFile; fileRef = 55B615412A8678B400BE93F4 /* Assets.xcassets */; };
@@ -15,6 +16,7 @@
 /* End PBXBuildFile section */
 
 /* Begin PBXFileReference section */
+		33F2B04F2B0511C700E1E91C /* Biometrics.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = Biometrics.swift; sourceTree = "<group>"; };
 		55B6153A2A8678B300BE93F4 /* App.app */ = {isa = PBXFileReference; explicitFileType = wrapper.application; includeInIndex = 0; path = App.app; sourceTree = BUILT_PRODUCTS_DIR; };
 		55B6153D2A8678B300BE93F4 /* testApp.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = testApp.swift; sourceTree = "<group>"; };
 		55B6153F2A8678B300BE93F4 /* ContentView.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = ContentView.swift; sourceTree = "<group>"; };
@@ -60,6 +62,7 @@
 				55B6153F2A8678B300BE93F4 /* ContentView.swift */,
 				55B615412A8678B400BE93F4 /* Assets.xcassets */,
 				55B615432A8678B400BE93F4 /* Preview Content */,
+				33F2B04F2B0511C700E1E91C /* Biometrics.swift */,
 			);
 			path = App;
 			sourceTree = "<group>";
@@ -118,7 +121,7 @@
 			attributes = {
 				BuildIndependentTargetsInParallel = 1;
 				LastSwiftUpdateCheck = 1420;
-				LastUpgradeCheck = 1420;
+				LastUpgradeCheck = 1500;
 				TargetAttributes = {
 					55B615392A8678B300BE93F4 = {
 						CreatedOnToolsVersion = 14.2;
@@ -160,6 +163,7 @@
 			isa = PBXSourcesBuildPhase;
 			buildActionMask = 2147483647;
 			files = (
+				33F2B0502B0511C700E1E91C /* Biometrics.swift in Sources */,
 				55B615402A8678B300BE93F4 /* ContentView.swift in Sources */,
 				55B6153E2A8678B300BE93F4 /* testApp.swift in Sources */,
 			);
@@ -172,6 +176,7 @@
 			isa = XCBuildConfiguration;
 			buildSettings = {
 				ALWAYS_SEARCH_USER_PATHS = NO;
+				ASSETCATALOG_COMPILER_GENERATE_SWIFT_ASSET_SYMBOL_EXTENSIONS = YES;
 				CLANG_ANALYZER_NONNULL = YES;
 				CLANG_ANALYZER_NUMBER_OBJECT_CONVERSION = YES_AGGRESSIVE;
 				CLANG_CXX_LANGUAGE_STANDARD = "gnu++20";
@@ -204,6 +209,7 @@
 				DEBUG_INFORMATION_FORMAT = dwarf;
 				ENABLE_STRICT_OBJC_MSGSEND = YES;
 				ENABLE_TESTABILITY = YES;
+				ENABLE_USER_SCRIPT_SANDBOXING = YES;
 				GCC_C_LANGUAGE_STANDARD = gnu11;
 				GCC_DYNAMIC_NO_PIC = NO;
 				GCC_NO_COMMON_BLOCKS = YES;
@@ -232,6 +238,7 @@
 			isa = XCBuildConfiguration;
 			buildSettings = {
 				ALWAYS_SEARCH_USER_PATHS = NO;
+				ASSETCATALOG_COMPILER_GENERATE_SWIFT_ASSET_SYMBOL_EXTENSIONS = YES;
 				CLANG_ANALYZER_NONNULL = YES;
 				CLANG_ANALYZER_NUMBER_OBJECT_CONVERSION = YES_AGGRESSIVE;
 				CLANG_CXX_LANGUAGE_STANDARD = "gnu++20";
@@ -264,6 +271,7 @@
 				DEBUG_INFORMATION_FORMAT = "dwarf-with-dsym";
 				ENABLE_NS_ASSERTIONS = NO;
 				ENABLE_STRICT_OBJC_MSGSEND = YES;
+				ENABLE_USER_SCRIPT_SANDBOXING = YES;
 				GCC_C_LANGUAGE_STANDARD = gnu11;
 				GCC_NO_COMMON_BLOCKS = YES;
 				GCC_WARN_64_TO_32_BIT_CONVERSION = YES;
@@ -293,6 +301,7 @@
 				DEVELOPMENT_TEAM = LTZ2PFU5D6;
 				ENABLE_PREVIEWS = YES;
 				GENERATE_INFOPLIST_FILE = YES;
+				INFOPLIST_KEY_NSFaceIDUsageDescription = "Unlock vault with biometrics";
 				INFOPLIST_KEY_UIApplicationSceneManifest_Generation = YES;
 				INFOPLIST_KEY_UIApplicationSupportsIndirectInputEvents = YES;
 				INFOPLIST_KEY_UILaunchScreen_Generation = YES;
@@ -323,6 +332,7 @@
 				DEVELOPMENT_TEAM = LTZ2PFU5D6;
 				ENABLE_PREVIEWS = YES;
 				GENERATE_INFOPLIST_FILE = YES;
+				INFOPLIST_KEY_NSFaceIDUsageDescription = "Unlock vault with biometrics";
 				INFOPLIST_KEY_UIApplicationSceneManifest_Generation = YES;
 				INFOPLIST_KEY_UIApplicationSupportsIndirectInputEvents = YES;
 				INFOPLIST_KEY_UILaunchScreen_Generation = YES;
diff --git a/languages/swift/iOS/App/Biometrics.swift b/languages/swift/iOS/App/Biometrics.swift
new file mode 100644
index 000000000..2fc5ef2a3
--- /dev/null
+++ b/languages/swift/iOS/App/Biometrics.swift
@@ -0,0 +1,92 @@
+//
+//  Biometrics.swift
+//  App
+//
+//  Created by Dani on 15/11/23.
+//
+
+/**
+ *   IMPORTANT: This file is provided only for the purpose of demostrating the use of the biometric unlock functionality.
+ *   It hasn't gone through a throrough security review and should not be considered production ready. It also doesn't 
+ *   handle a lot of errors and edge cases that a production application would need to deal with. 
+ *   Developers are encouraged to review and improve the code as needed to meet their security requirements. 
+ *   Additionally, we recommend to consult with security experts and conduct thorough testing before using the code in production.
+ */
+
+import Foundation
+import LocalAuthentication
+
+let SERVICE: String = "com.example.app"
+
+// We should separate keys for each user by appending the user_id
+let KEY: String = "biometric_key"
+
+
+func biometricStoreValue(value: String) {
+    var error: Unmanaged<CFError>?
+    let accessControl = SecAccessControlCreateWithFlags(
+        nil,
+        kSecAttrAccessibleWhenUnlockedThisDeviceOnly,
+        .biometryCurrentSet,
+        &error)
+    
+    guard accessControl != nil && error == nil else {
+        fatalError("SecAccessControlCreateWithFlags failed")
+    }
+        
+    let query = [
+        kSecClass: kSecClassGenericPassword,
+        kSecAttrService: SERVICE,
+        kSecAttrAccount: KEY,
+        kSecValueData: value.data(using: .utf8)!,
+        kSecAttrAccessControl: accessControl as Any
+    ] as CFDictionary
+    
+    // Try to delete the previous secret, if it exists
+    // Otherwise we get `errSecDuplicateItem`
+    SecItemDelete(query)
+    
+    let status = SecItemAdd(query, nil)    
+    guard status == errSecSuccess else {
+        fatalError("Unable to store the secret: " + errToString(status: status))
+    }
+}
+
+private func errToString(status: OSStatus) -> String {
+    if let err = SecCopyErrorMessageString(status, nil) as String? {
+        err
+    } else {
+        "Unknown error"
+    }
+}
+
+func biometricRetrieveValue() -> String? {
+    let searchQuery = [
+        kSecClass: kSecClassGenericPassword,
+        kSecAttrService: SERVICE,
+        kSecAttrAccount: KEY,
+        kSecMatchLimit: kSecMatchLimitOne,
+        kSecReturnData: true,
+        kSecReturnAttributes: true,
+    ] as CFDictionary
+    
+    var item: AnyObject?
+    let status = SecItemCopyMatching(searchQuery, &item)
+
+    // If the item is not found, we just return nil
+    if status == errSecItemNotFound {
+        return nil
+    }
+
+    // TODO: We probably want to handle these errors better
+    guard status == noErr else {
+        fatalError("Unable to retrieve the secret: " + errToString(status: status))
+    }
+    
+    if let resultDictionary = item as? [String: Any],
+        let data = resultDictionary[kSecValueData as String] as? Data {
+        return String(decoding: data, as: UTF8.self)
+    }
+    
+    return nil
+}
diff --git a/languages/swift/iOS/App/ContentView.swift b/languages/swift/iOS/App/ContentView.swift
index 484caf14f..5df7dc3fd 100644
--- a/languages/swift/iOS/App/ContentView.swift
+++ b/languages/swift/iOS/App/ContentView.swift
@@ -8,176 +8,261 @@
 import BitwardenSdk
 import SwiftUI
 
-struct ContentView: View {
-
-    @State private var msg: String
-
-    init() {
-        let client = Client(settings: nil)
+/**
+ *   IMPORTANT: This file is provided only for the purpose of demostrating the use of the SDK functionality.
+ *   It hasn't gone through a throrough security review and should not be considered production ready. It also doesn't 
+ *   handle a lot of errors and edge cases that a production application would need to deal with. 
+ *   Developers are encouraged to review and improve the code as needed to meet their security requirements. 
+ *   Additionally, we recommend to consult with security experts and conduct thorough testing before using the code in production.
+ */
 
-        _msg = State(initialValue: client.echo(msg: "Sdk"))
+let SERVER_URL = "https://localhost:8080/"
+let API_URL = SERVER_URL + "api/"
+let IDENTITY_URL = SERVER_URL + "identity/"
 
-        let SERVER_URL = "https://localhost:8080/"
-        let API_URL = SERVER_URL + "api/"
-        let IDENTITY_URL = SERVER_URL + "identity/"
-
-        let EMAIL = "test@bitwarden.com"
-        let PASSWORD = "asdfasdfasdf"
+let EMAIL = "test@bitwarden.com"
+let PASSWORD = "asdfasdfasdf"
 
+struct ContentView: View {
+    private var http: URLSession
+    
+    @State private var client: Client
+    
+    @State private var accessToken: String = ""
+    
+    init() {
         // Disable SSL Cert validation. Don't do this in production
-        let ignoreHttpsDelegate = IgnoreHttpsDelegate()
-        let http = URLSession(
-            configuration: URLSessionConfiguration.default, delegate: ignoreHttpsDelegate,
+        http = URLSession(
+            configuration: URLSessionConfiguration.default, delegate: IgnoreHttpsDelegate(),
             delegateQueue: nil)
-
-        Task {
-
-            ////////////////////////////// Get master password hash //////////////////////////////
-
-            struct PreloginRequest: Codable { let email: String }
-            struct PreloginResponse: Codable {
-                let kdf: UInt32
-                let kdfIterations: UInt32
-                let kdfMemory: UInt32?
-                let kdfParallelism: UInt32?
-
-            }
-
-            let (preloginDataJson, _) = try await http.data(
-                for: request(
-                    method: "POST", url: IDENTITY_URL + "accounts/prelogin",
-                    fn: { r in
-                        r.setValue("application/json", forHTTPHeaderField: "Content-Type")
-                        r.httpBody = try JSONEncoder().encode(PreloginRequest(email: EMAIL))
-                    }))
-            let preloginData = try JSONDecoder().decode(
-                PreloginResponse.self, from: preloginDataJson)
-
-            let kdf: Kdf
-            if preloginData.kdf == 0 {
-                kdf = Kdf.pbkdf2(iterations: preloginData.kdfIterations)
-            } else {
-                kdf = Kdf.argon2id(
-                    iterations: preloginData.kdfIterations, memory: preloginData.kdfMemory!,
-                    parallelism: preloginData.kdfParallelism!)
-            }
-
-            let passwordHash = try await client.auth().hashPassword(
-                email: EMAIL, password: PASSWORD, kdfParams: kdf)
-
-            ///////////////////////////// Login /////////////////////////////
-
-            struct LoginResponse: Codable {
-                let Key: String
-                let PrivateKey: String
-                let access_token: String
-                let refresh_token: String
-            }
-
-            let (loginDataJson, _) = try await http.data(
-                for: request(
-                    method: "POST", url: IDENTITY_URL + "connect/token",
-                    fn: { r in
-                        r.setValue(
-                            EMAIL.data(using: .utf8)?.base64EncodedString(),
-                            forHTTPHeaderField: "Auth-Email")
-                        r.setValue(
-                            "application/x-www-form-urlencoded", forHTTPHeaderField: "Content-Type")
-
-                        var comp = URLComponents()
-                        comp.queryItems = [
-                            URLQueryItem(name: "scope", value: "api offline_access"),
-                            URLQueryItem(name: "client_id", value: "web"),
-                            URLQueryItem(name: "deviceType", value: "12"),
-                            URLQueryItem(
-                                name: "deviceIdentifier",
-                                value: "0745d426-8dab-484a-9816-4959721d77c7"),
-                            URLQueryItem(name: "deviceName", value: "edge"),
-                            URLQueryItem(name: "grant_type", value: "password"),
-                            URLQueryItem(name: "username", value: EMAIL),
-                            URLQueryItem(name: "password", value: passwordHash),
-                        ]
-                        r.httpBody = comp.percentEncodedQuery!
-                            .replacingOccurrences(of: "@", with: "%40")
-                            .replacingOccurrences(of: "+", with: "%2B")
-                            .data(using: .utf8)
-                    }))
-            let loginData = try JSONDecoder().decode(LoginResponse.self, from: loginDataJson)
-
-            ///////////////////////////// Sync /////////////////////////////
-
-            struct SyncOrganization: Codable {
-                let id: String
-                let key: String
-            }
-            struct SyncProfile: Codable {
-                let organizations: [SyncOrganization]
-
-            }
-            struct SyncFolder: Codable {
-                let id: String
-                let name: String
-                let revisionDate: String
-            }
-            struct SyncResponse: Codable {
-                let profile: SyncProfile
-                let folders: [SyncFolder]
-            }
-
-            let (syncDataJson, _) = try await http.data(
-                for: request(
-                    method: "GET", url: API_URL + "sync?excludeDomains=true",
-                    fn: { r in
-                        r.setValue(
-                            "Bearer " + loginData.access_token, forHTTPHeaderField: "Authorization")
-                    }))
-
-            let syncData = try JSONDecoder().decode(SyncResponse.self, from: syncDataJson)
-
-            ///////////////////////////// Initialize crypto /////////////////////////////
-
-            try await client.crypto().initializeUserCrypto(
-                req: InitUserCryptoRequest(
-                    kdfParams: kdf,
-                    email: EMAIL,
-                    privateKey: loginData.PrivateKey,
-                    method: InitUserCryptoMethod.password(
-                        password: PASSWORD,
-                        userKey: loginData.Key
-                    )
-                ))
-            
-            try await client.crypto().initializeOrgCrypto(
-                req: InitOrgCryptoRequest(
-                    organizationKeys: Dictionary.init(
-                        uniqueKeysWithValues: syncData.profile.organizations.map { ($0.id, $0.key) }
-                    )
-                ))
-
-            ///////////////////////////// Decrypt some folders /////////////////////////////
-
-            let dateFormatter = ISO8601DateFormatter()
-            dateFormatter.formatOptions = [.withFractionalSeconds]
-
-            let decryptedFolders = try await client.vault().folders().decryptList(
-                folders: syncData.folders.map {
-                    Folder(
-                        id: $0.id, name: $0.name,
-                        revisionDate: dateFormatter.date(from: $0.revisionDate)!)
-                })
-            print(decryptedFolders)
-        }
+        
+        client = Client(settings: nil)
     }
-
+    
+    @State var setupBiometrics: Bool = true
+    @State var outputText: String = ""
+    
     var body: some View {
         VStack {
-            Image(systemName: "globe")
-                .imageScale(.large)
-                .foregroundColor(.accentColor)
-            Text("Hello " + msg)
+            Toggle("Setup biometric unlock after login", isOn: $setupBiometrics).padding(.init(top: 0, leading: 20, bottom: 0, trailing: 20))
+            
+            Button(action: {
+                Task {
+                    do {
+                    try await clientExamplePassword(clientAuth: client.auth(), clientCrypto: client.crypto(), setupBiometrics: setupBiometrics)
+                    try await decryptVault(clientCrypto: client.crypto(), clientVault: client.vault())
+                    } catch {
+                        print("ERROR:", error)
+                    }
+                }
+            }, label: {
+                Text("Login with username + password")
+            })
+            
+            Divider().padding(30)
+            
+            Button(action: {
+                Task {
+                    do {
+                    try await clientExampleBiometrics(clientCrypto: client.crypto())
+                        try await decryptVault(clientCrypto: client.crypto(), clientVault: client.vault())
+                    } catch {
+                        print("ERROR:", error)
+                    }
+                }
+            }, label: {
+                Text("Unlock with biometrics")
+            })
+            
+            Button(action: {
+                client = Client(settings: nil)
+            }, label: {
+                Text("Lock & reset client")
+            }).padding()
+            
+            Text("Output: " + outputText).padding(.top)
         }
         .padding()
     }
+    
+    func clientExamplePassword(clientAuth: ClientAuthProtocol, clientCrypto: ClientCryptoProtocol, setupBiometrics: Bool) async throws {
+        ////////////////////////////// Get master password hash //////////////////////////////
+        
+        struct PreloginRequest: Codable { let email: String }
+        struct PreloginResponse: Codable {
+            let kdf: UInt32
+            let kdfIterations: UInt32
+            let kdfMemory: UInt32?
+            let kdfParallelism: UInt32?
+            
+        }
+        
+        let (preloginDataJson, _) = try await http.data(
+            for: request(
+                method: "POST", url: IDENTITY_URL + "accounts/prelogin",
+                fn: { r in
+                    r.setValue("application/json", forHTTPHeaderField: "Content-Type")
+                    r.httpBody = try JSONEncoder().encode(PreloginRequest(email: EMAIL))
+                }))
+        let preloginData = try JSONDecoder().decode(
+            PreloginResponse.self, from: preloginDataJson)
+        
+        let kdf: Kdf
+        if preloginData.kdf == 0 {
+            kdf = Kdf.pbkdf2(iterations: preloginData.kdfIterations)
+        } else {
+            kdf = Kdf.argon2id(
+                iterations: preloginData.kdfIterations, memory: preloginData.kdfMemory!,
+                parallelism: preloginData.kdfParallelism!)
+        }
+        
+        let passwordHash = try await clientAuth.hashPassword(
+            email: EMAIL, password: PASSWORD, kdfParams: kdf)
+        
+        ///////////////////////////// Login /////////////////////////////
+        
+        struct LoginResponse: Codable {
+            let Key: String
+            let PrivateKey: String
+            let access_token: String
+            let refresh_token: String
+        }
+        
+        let (loginDataJson, _) = try await http.data(
+            for: request(
+                method: "POST", url: IDENTITY_URL + "connect/token",
+                fn: { r in
+                    r.setValue(
+                        EMAIL.data(using: .utf8)?.base64EncodedString(),
+                        forHTTPHeaderField: "Auth-Email")
+                    r.setValue(
+                        "application/x-www-form-urlencoded", forHTTPHeaderField: "Content-Type")
+                    
+                    var comp = URLComponents()
+                    comp.queryItems = [
+                        URLQueryItem(name: "scope", value: "api offline_access"),
+                        URLQueryItem(name: "client_id", value: "web"),
+                        URLQueryItem(name: "deviceType", value: "12"),
+                        URLQueryItem(
+                            name: "deviceIdentifier",
+                            value: "0745d426-8dab-484a-9816-4959721d77c7"),
+                        URLQueryItem(name: "deviceName", value: "edge"),
+                        URLQueryItem(name: "grant_type", value: "password"),
+                        URLQueryItem(name: "username", value: EMAIL),
+                        URLQueryItem(name: "password", value: passwordHash),
+                    ]
+                    r.httpBody = comp.percentEncodedQuery!
+                        .replacingOccurrences(of: "@", with: "%40")
+                        .replacingOccurrences(of: "+", with: "%2B")
+                        .data(using: .utf8)
+                }))
+        let loginData = try JSONDecoder().decode(LoginResponse.self, from: loginDataJson)
+        
+        try await clientCrypto.initializeUserCrypto(
+            req: InitUserCryptoRequest(
+                kdfParams: kdf,
+                email: EMAIL,
+                privateKey: loginData.PrivateKey,
+                method: InitUserCryptoMethod.password(
+                    password: PASSWORD,
+                    userKey: loginData.Key
+                )
+            ))
+        
+        accessToken = loginData.access_token
+        
+        if (setupBiometrics) {
+            let defaults = UserDefaults.standard
+            defaults.set(loginData.PrivateKey, forKey: "privateKey")
+            defaults.set(preloginData.kdf, forKey: "kdfType")
+            defaults.set(preloginData.kdfIterations, forKey: "kdfIterations")
+            defaults.set(preloginData.kdfMemory, forKey: "kdfMemory")
+            defaults.set(preloginData.kdfParallelism, forKey: "kdfParallelism")
+            defaults.synchronize()
+            
+            let key = try await clientCrypto.getUserEncryptionKey()
+            biometricStoreValue(value: key)
+        }
+    }
+    
+    func clientExampleBiometrics(clientCrypto: ClientCryptoProtocol) async throws {
+        let defaults = UserDefaults.standard
+        let privateKey = defaults.string(forKey: "privateKey")!
+        let kdf = if defaults.integer(forKey: "kdfType") == 0 {
+            Kdf.pbkdf2(iterations: UInt32(defaults.integer(forKey: "kdfIterations")))
+        } else {
+            Kdf.argon2id(
+                iterations: UInt32(defaults.integer(forKey: "kdfIterations")),
+                memory: UInt32(defaults.integer(forKey: "kdfMemory")),
+                parallelism: UInt32(defaults.integer(forKey: "kdfParallelism"))
+            )
+        }
+        
+        let key = biometricRetrieveValue()!
+        
+        try await clientCrypto.initializeUserCrypto(req: InitUserCryptoRequest(
+            kdfParams: kdf,
+            email: EMAIL,
+            privateKey: privateKey,
+            method: InitUserCryptoMethod.decryptedKey(
+                decryptedUserKey: key
+            )
+        ))
+    }
+    
+    func decryptVault(clientCrypto: ClientCryptoProtocol, clientVault: ClientVaultProtocol) async throws {
+        ///////////////////////////// Sync /////////////////////////////
+        
+        struct SyncOrganization: Codable {
+            let id: String
+            let key: String
+        }
+        struct SyncProfile: Codable {
+            let organizations: [SyncOrganization]
+            
+        }
+        struct SyncFolder: Codable {
+            let id: String
+            let name: String
+            let revisionDate: String
+        }
+        struct SyncResponse: Codable {
+            let profile: SyncProfile
+            let folders: [SyncFolder]
+        }
+        
+        let (syncDataJson, _) = try await http.data(
+            for: request(
+                method: "GET", url: API_URL + "sync?excludeDomains=true",
+                fn: { r in
+                    r.setValue(
+                        "Bearer " + accessToken, forHTTPHeaderField: "Authorization")
+                }))
+        
+        let syncData = try JSONDecoder().decode(SyncResponse.self, from: syncDataJson)
+        
+        ///////////////////////////// Initialize org crypto /////////////////////////////
+        
+        try await clientCrypto.initializeOrgCrypto(
+            req: InitOrgCryptoRequest(
+                organizationKeys: Dictionary.init(
+                    uniqueKeysWithValues: syncData.profile.organizations.map { ($0.id, $0.key) }
+                )
+            ))
+        
+        ///////////////////////////// Decrypt some folders /////////////////////////////
+        
+        let dateFormatter = ISO8601DateFormatter()
+        dateFormatter.formatOptions = [.withFractionalSeconds]
+        
+        let decryptedFolders = try await clientVault.folders().decryptList(
+            folders: syncData.folders.map {
+                Folder(
+                    id: $0.id, name: $0.name,
+                    revisionDate: dateFormatter.date(from: $0.revisionDate)!)
+            })
+        print(decryptedFolders)
+    }
 }
 
 struct ContentView_Previews: PreviewProvider {
@@ -202,7 +287,7 @@ extension IgnoreHttpsDelegate: URLSessionDelegate {
     ) {
         //Trust the certificate even if not valid
         let urlCredential = URLCredential(trust: challenge.protectionSpace.serverTrust!)
-
+        
         completionHandler(.useCredential, urlCredential)
     }
 }

From 47e1a5de5ee220eda5cff77fb0cad8009a3f3b13 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Thu, 23 Nov 2023 16:38:56 +0100
Subject: [PATCH 10/55] Improve MAC validation (#333)

## Type of change
```
- [ ] Bug fix
- [ ] New feature development
- [x] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
Change the name of the function `validate_mac` to the more appropiate
`generate_mac`, and change the mac comparison to be constant time with
the use of the `subtle` crate.

Note that `hmac.finalize()` returns a type `CtOutput` that supports
constant time comparison by using the `subtle` crate internally, but
`CtOutput` doesn't allow getting a reference to the internal array which
would complicate the implementation of `EncString`, so I chose to use
the `subtle` constant time comparison directly.
---
 Cargo.lock                             |  1 +
 crates/bitwarden/Cargo.toml            |  1 +
 crates/bitwarden/src/crypto/aes_ops.rs | 15 ++++++++-------
 3 files changed, 10 insertions(+), 7 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index c040eb279..fb1768bee 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -351,6 +351,7 @@ dependencies = [
  "serde_repr",
  "sha1",
  "sha2",
+ "subtle",
  "thiserror",
  "tokio",
  "uniffi",
diff --git a/crates/bitwarden/Cargo.toml b/crates/bitwarden/Cargo.toml
index fea9a2fd7..31e39c350 100644
--- a/crates/bitwarden/Cargo.toml
+++ b/crates/bitwarden/Cargo.toml
@@ -42,6 +42,7 @@ pbkdf2 = { version = ">=0.12.1, <0.13", default-features = false }
 argon2 = { version = ">=0.5.0, <0.6", features = [
     "alloc",
 ], default-features = false }
+subtle = ">=2.5.0, <3.0"
 rand = ">=0.8.5, <0.9"
 num-bigint = ">=0.4, <0.5"
 num-traits = ">=0.2.15, <0.3"
diff --git a/crates/bitwarden/src/crypto/aes_ops.rs b/crates/bitwarden/src/crypto/aes_ops.rs
index 3deedabd8..182986c3b 100644
--- a/crates/bitwarden/src/crypto/aes_ops.rs
+++ b/crates/bitwarden/src/crypto/aes_ops.rs
@@ -13,6 +13,7 @@ use aes::cipher::{
     BlockEncryptMut, KeyIvInit,
 };
 use hmac::Mac;
+use subtle::ConstantTimeEq;
 
 use crate::{
     crypto::{PbkdfSha256Hmac, PBKDF_SHA256_HMAC_OUT_SIZE},
@@ -47,8 +48,8 @@ pub fn decrypt_aes256_hmac(
     mac_key: GenericArray<u8, U32>,
     key: GenericArray<u8, U32>,
 ) -> Result<Vec<u8>> {
-    let res = validate_mac(&mac_key, iv, &data)?;
-    if res != *mac {
+    let res = generate_mac(&mac_key, iv, &data)?;
+    if res.ct_ne(mac).into() {
         return Err(CryptoError::InvalidMac.into());
     }
     decrypt_aes256(iv, data, key)
@@ -83,7 +84,7 @@ pub fn encrypt_aes256_hmac(
 ) -> Result<([u8; 16], [u8; 32], Vec<u8>)> {
     let rng = rand::thread_rng();
     let (iv, data) = encrypt_aes256_internal(rng, data_dec, key);
-    let mac = validate_mac(&mac_key, &iv, &data)?;
+    let mac = generate_mac(&mac_key, &iv, &data)?;
 
     Ok((iv, mac, data))
 }
@@ -106,8 +107,8 @@ fn encrypt_aes256_internal(
     (iv, data)
 }
 
-/// Validate a MAC using HMAC-SHA256.
-fn validate_mac(mac_key: &[u8], iv: &[u8], data: &[u8]) -> Result<[u8; 32]> {
+/// Generate a MAC using HMAC-SHA256.
+fn generate_mac(mac_key: &[u8], iv: &[u8], data: &[u8]) -> Result<[u8; 32]> {
     let mut hmac = PbkdfSha256Hmac::new_from_slice(mac_key).expect("HMAC can take key of any size");
     hmac.update(iv);
     hmac.update(data);
@@ -156,13 +157,13 @@ mod tests {
     }
 
     #[test]
-    fn test_validate_mac() {
+    fn test_generate_mac() {
         let mac_key = generate_vec(16, 0, 16);
 
         let iv = generate_vec(16, 0, 16);
         let data = generate_vec(16, 0, 16);
 
-        let result = validate_mac(&mac_key, &iv, &data);
+        let result = generate_mac(&mac_key, &iv, &data);
 
         assert!(result.is_ok());
         let mac = result.unwrap();

From a026cdaf44025900062a197251281e4a1ff88022 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Thu, 23 Nov 2023 17:46:11 +0100
Subject: [PATCH 11/55] Sync renovate config to be inline with other repos
 (#342)

---
 .github/renovate.json | 28 +++++-----------------------
 1 file changed, 5 insertions(+), 23 deletions(-)

diff --git a/.github/renovate.json b/.github/renovate.json
index 71e131e43..16222e52c 100644
--- a/.github/renovate.json
+++ b/.github/renovate.json
@@ -2,44 +2,26 @@
   "$schema": "https://docs.renovatebot.com/renovate-schema.json",
   "extends": [
     "config:base",
-    "schedule:weekends",
     ":combinePatchMinorReleases",
     ":dependencyDashboard",
     ":maintainLockFilesWeekly",
     ":prConcurrentLimit10",
     ":rebaseStalePrs",
-    ":separateMajorReleases"
+    ":separateMajorReleases",
+    "group:monorepos",
+    "schedule:weekends"
   ],
   "separateMajorMinor": true,
   "enabledManagers": ["cargo", "github-actions", "npm", "nuget"],
+  "commitMessagePrefix": "[deps]:",
+  "commitMessageTopic": "{{depName}}",
   "packageRules": [
-    {
-      "groupName": "npm minor",
-      "matchManagers": ["npm"],
-      "matchUpdateTypes": ["minor", "patch"]
-    },
-    {
-      "matchManagers": ["cargo"],
-      "matchUpdateTypes": ["patch"],
-      "enabled": false
-    },
-    {
-      "matchManagers": ["cargo"],
-      "matchUpdateTypes": ["minor"],
-      "matchCurrentVersion": ">=1.0.0",
-      "enabled": false
-    },
     {
       "matchManagers": ["cargo"],
       "matchPackagePatterns": ["pyo3*"],
       "matchUpdateTypes": ["minor", "patch"],
       "groupName": "pyo3 non-major"
     },
-    {
-      "groupName": "nuget minor",
-      "matchManagers": ["nuget"],
-      "matchUpdateTypes": ["minor", "patch"]
-    },
     {
       "groupName": "gh minor",
       "matchManagers": ["github-actions"],

From 2f04f8c3223f4dd1ac9a59d76c2dd8a82b7ec3c8 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Thu, 23 Nov 2023 17:49:50 +0100
Subject: [PATCH 12/55] Use reqwest header constants (#343)

---
 crates/bitwarden/src/auth/api/request/mod.rs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/crates/bitwarden/src/auth/api/request/mod.rs b/crates/bitwarden/src/auth/api/request/mod.rs
index 1277fa969..85b36a983 100644
--- a/crates/bitwarden/src/auth/api/request/mod.rs
+++ b/crates/bitwarden/src/auth/api/request/mod.rs
@@ -35,10 +35,10 @@ async fn send_identity_connect_request(
             &configurations.identity.base_path
         ))
         .header(
-            "Content-Type",
+            reqwest::header::CONTENT_TYPE,
             "application/x-www-form-urlencoded; charset=utf-8",
         )
-        .header("Accept", "application/json")
+        .header(reqwest::header::ACCEPT, "application/json")
         .header("Device-Type", configurations.device_type as usize);
 
     if let Some(ref user_agent) = configurations.identity.user_agent {

From 94dae37ca20279f5c139a6e88f0f3462088c8ba8 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Thu, 23 Nov 2023 18:29:15 +0100
Subject: [PATCH 13/55] Sort cargo.toml files (#344)

---
 crates/bitwarden-c/Cargo.toml      |  1 -
 crates/bitwarden-json/Cargo.toml   |  2 +-
 crates/bitwarden-napi/Cargo.toml   |  6 ++--
 crates/bitwarden-py/Cargo.toml     |  1 -
 crates/bitwarden-uniffi/Cargo.toml |  2 +-
 crates/bitwarden-wasm/Cargo.toml   |  9 +++---
 crates/bitwarden/Cargo.toml        | 52 ++++++++++++++----------------
 crates/bw/Cargo.toml               |  8 ++---
 crates/bws/Cargo.toml              |  7 ++--
 crates/sdk-schemas/Cargo.toml      |  4 +--
 10 files changed, 43 insertions(+), 49 deletions(-)

diff --git a/crates/bitwarden-c/Cargo.toml b/crates/bitwarden-c/Cargo.toml
index 9181bedae..20f3f5229 100644
--- a/crates/bitwarden-c/Cargo.toml
+++ b/crates/bitwarden-c/Cargo.toml
@@ -4,7 +4,6 @@ version = "0.1.0"
 edition = "2021"
 rust-version = "1.57"
 
-# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
 [lib]
 crate-type = ["lib", "staticlib", "cdylib"]
 bench = false
diff --git a/crates/bitwarden-json/Cargo.toml b/crates/bitwarden-json/Cargo.toml
index 579a8bdab..f7c0fd58d 100644
--- a/crates/bitwarden-json/Cargo.toml
+++ b/crates/bitwarden-json/Cargo.toml
@@ -18,9 +18,9 @@ internal = ["bitwarden/internal"] # Internal testing methods
 secrets = ["bitwarden/secrets"]   # Secrets manager API
 
 [dependencies]
+log = ">=0.4.18, <0.5"
 schemars = ">=0.8.12, <0.9"
 serde = { version = ">=1.0, <2.0", features = ["derive"] }
 serde_json = ">=1.0.96, <2.0"
-log = ">=0.4.18, <0.5"
 
 bitwarden = { path = "../bitwarden" }
diff --git a/crates/bitwarden-napi/Cargo.toml b/crates/bitwarden-napi/Cargo.toml
index 505b68e57..2e86fefe2 100644
--- a/crates/bitwarden-napi/Cargo.toml
+++ b/crates/bitwarden-napi/Cargo.toml
@@ -16,10 +16,10 @@ rust-version = "1.57"
 crate-type = ["cdylib", "rlib"]
 
 [dependencies]
-napi = {version="2", features=["async"]}
-napi-derive = "2"
+env_logger = "0.10.0"
 log = "0.4.18"
-env_logger="0.10.0"
+napi = { version = "2", features = ["async"] }
+napi-derive = "2"
 
 bitwarden-json = { path = "../bitwarden-json", version = "0.3.0", features = ["secrets"] }
 
diff --git a/crates/bitwarden-py/Cargo.toml b/crates/bitwarden-py/Cargo.toml
index 613203c84..5c1fa5cac 100644
--- a/crates/bitwarden-py/Cargo.toml
+++ b/crates/bitwarden-py/Cargo.toml
@@ -4,7 +4,6 @@ version = "0.1.0"
 edition = "2021"
 rust-version = "1.57"
 
-# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
 [lib]
 name = "bitwarden_py"
 crate-type = ["cdylib"]
diff --git a/crates/bitwarden-uniffi/Cargo.toml b/crates/bitwarden-uniffi/Cargo.toml
index 53da0eb8d..098c5b2bf 100644
--- a/crates/bitwarden-uniffi/Cargo.toml
+++ b/crates/bitwarden-uniffi/Cargo.toml
@@ -18,8 +18,8 @@ chrono = { version = ">=0.4.26, <0.5", features = [
     "std",
 ], default-features = false }
 env_logger = "0.10.0"
-uniffi = "=0.25.1"
 schemars = { version = ">=0.8, <0.9", optional = true }
+uniffi = "=0.25.1"
 
 bitwarden = { path = "../bitwarden", features = ["mobile", "internal"] }
 
diff --git a/crates/bitwarden-wasm/Cargo.toml b/crates/bitwarden-wasm/Cargo.toml
index add03f0f3..fcb0c2b15 100644
--- a/crates/bitwarden-wasm/Cargo.toml
+++ b/crates/bitwarden-wasm/Cargo.toml
@@ -4,18 +4,17 @@ version = "0.1.0"
 edition = "2021"
 rust-version = "1.57"
 
-# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
 [lib]
 crate-type = ["cdylib", "rlib"]
 
 [dependencies]
-js-sys = "0.3.63"
-serde = {version = "1.0.163", features = ["derive"] }
-wasm-bindgen = { version = "=0.2.87", features = ["serde-serialize"] }
-wasm-bindgen-futures = "0.4.36"
 console_error_panic_hook = "0.1.7"
 console_log = { version = "1.0.0", features = ["color"] }
+js-sys = "0.3.63"
 log = "0.4.18"
+serde = { version = "1.0.163", features = ["derive"] }
+wasm-bindgen = { version = "=0.2.87", features = ["serde-serialize"] }
+wasm-bindgen-futures = "0.4.36"
 
 bitwarden-json = { path = "../bitwarden-json", features = ["secrets"] }
 
diff --git a/crates/bitwarden/Cargo.toml b/crates/bitwarden/Cargo.toml
index 31e39c350..b0135dfa3 100644
--- a/crates/bitwarden/Cargo.toml
+++ b/crates/bitwarden/Cargo.toml
@@ -20,44 +20,42 @@ internal = []                   # Internal testing methods
 mobile = ["uniffi", "internal"] # Mobile-specific features
 
 [dependencies]
+aes = ">=0.8.2, <0.9"
+argon2 = { version = ">=0.5.0, <0.6", features = [
+    "alloc",
+], default-features = false }
+assert_matches = ">=1.5.0, <2.0"
 base64 = ">=0.21.2, <0.22"
+bitwarden-api-api = { path = "../bitwarden-api-api", version = "=0.2.2" }
+bitwarden-api-identity = { path = "../bitwarden-api-identity", version = "=0.2.2" }
+cbc = { version = ">=0.1.2, <0.2", features = ["alloc"] }
+chrono = { version = ">=0.4.26, <0.5", features = [
+    "serde",
+    "std",
+], default-features = false }
+# We don't use this directly (it's used by rand), but we need it here to enable WASM support
+getrandom = { version = ">=0.2.9", features = ["js"] }
+hkdf = ">=0.12.3, <0.13"
+hmac = ">=0.12.1, <0.13"
 lazy_static = ">=1.4.0, <2.0"
+log = ">=0.4.18, <0.5"
+num-bigint = ">=0.4, <0.5"
+num-traits = ">=0.2.15, <0.3"
+pbkdf2 = { version = ">=0.12.1, <0.13", default-features = false }
+rand = ">=0.8.5, <0.9"
 reqwest = { version = ">=0.11, <0.12", features = ["json"] }
+rsa = ">=0.9.2, <0.10"
+schemars = { version = ">=0.8, <0.9", features = ["uuid1", "chrono"] }
 serde = { version = ">=1.0, <2.0", features = ["derive"] }
 serde_json = ">=1.0.96, <2.0"
 serde_qs = ">=0.12.0, <0.13"
 serde_repr = ">=0.1.12, <0.2"
-schemars = { version = ">=0.8, <0.9", features = ["uuid1", "chrono"] }
-log = ">=0.4.18, <0.5"
-assert_matches = ">=1.5.0, <2.0"
-thiserror = ">=1.0.40, <2.0"
-aes = ">=0.8.2, <0.9"
-cbc = { version = ">=0.1.2, <0.2", features = ["alloc"] }
-hkdf = ">=0.12.3, <0.13"
-hmac = ">=0.12.1, <0.13"
-rsa = ">=0.9.2, <0.10"
 sha1 = ">=0.10.5, <0.11"
 sha2 = ">=0.10.6, <0.11"
-pbkdf2 = { version = ">=0.12.1, <0.13", default-features = false }
-argon2 = { version = ">=0.5.0, <0.6", features = [
-    "alloc",
-], default-features = false }
 subtle = ">=2.5.0, <3.0"
-rand = ">=0.8.5, <0.9"
-num-bigint = ">=0.4, <0.5"
-num-traits = ">=0.2.15, <0.3"
-uuid = { version = ">=1.3.3, <2.0", features = ["serde"] }
-chrono = { version = ">=0.4.26, <0.5", features = [
-    "serde",
-    "std",
-], default-features = false }
+thiserror = ">=1.0.40, <2.0"
 uniffi = { version = "=0.25.1", optional = true }
-
-# We don't use this directly (it's used by rand), but we need it here to enable WASM support
-getrandom = { version = ">=0.2.9", features = ["js"] }
-
-bitwarden-api-identity = { path = "../bitwarden-api-identity", version = "=0.2.2" }
-bitwarden-api-api = { path = "../bitwarden-api-api", version = "=0.2.2" }
+uuid = { version = ">=1.3.3, <2.0", features = ["serde"] }
 
 [dev-dependencies]
 rand_chacha = "0.3.1"
diff --git a/crates/bw/Cargo.toml b/crates/bw/Cargo.toml
index 0793470b3..349087818 100644
--- a/crates/bw/Cargo.toml
+++ b/crates/bw/Cargo.toml
@@ -12,15 +12,13 @@ Bitwarden Password Manager CLI
 """
 keywords = ["bitwarden", "password-manager", "cli"]
 
-# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
-
 [dependencies]
 clap = { version = "4.3.0", features = ["derive", "env"] }
-tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
-log = "0.4.18"
-env_logger = "0.10.0"
 color-eyre = "0.6"
+env_logger = "0.10.0"
 inquire = "0.6.2"
+log = "0.4.18"
+tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
 
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = [
     "internal",
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 9ccd5c546..91d75de69 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -12,8 +12,6 @@ Bitwarden Secrets Manager CLI
 """
 keywords = ["bitwarden", "secrets-manager", "cli"]
 
-# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
-
 [dependencies]
 bat = { version = "0.24.0", features = [
     "regex-onig",
@@ -29,6 +27,10 @@ comfy-table = "^7.0.1"
 directories = "5.0.1"
 env_logger = "0.10.0"
 log = "0.4.18"
+regex = { version = "1.10.2", features = [
+    "std",
+    "perf",
+], default-features = false }
 serde = "^1.0.163"
 serde_json = "^1.0.96"
 serde_yaml = "0.9"
@@ -37,7 +39,6 @@ thiserror = "1.0.40"
 tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
 toml = "0.8.0"
 uuid = { version = "^1.3.3", features = ["serde"] }
-regex = { version = "1.10.2", features=["std", "perf"], default-features=false }
 
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = ["secrets"] }
 
diff --git a/crates/sdk-schemas/Cargo.toml b/crates/sdk-schemas/Cargo.toml
index 64ce34274..86a73cd19 100644
--- a/crates/sdk-schemas/Cargo.toml
+++ b/crates/sdk-schemas/Cargo.toml
@@ -12,10 +12,10 @@ internal = [
 ]
 
 [dependencies]
-schemars = { version = "0.8.12", features = ["preserve_order"] }
-serde_json = "1.0.96"
 anyhow = "1.0.71"
 itertools = "0.12.0"
+schemars = { version = "0.8.12", features = ["preserve_order"] }
+serde_json = "1.0.96"
 
 bitwarden = { path = "../bitwarden" }
 bitwarden-json = { path = "../bitwarden-json" }

From 62c7c1932532eeba68e278c11c9b6c0a2e4de062 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Fri, 24 Nov 2023 11:47:53 +0100
Subject: [PATCH 14/55] [deps]: Update Rust crate thiserror to 1.0.50 (#345)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bws/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 91d75de69..fe94dfcb2 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -35,7 +35,7 @@ serde = "^1.0.163"
 serde_json = "^1.0.96"
 serde_yaml = "0.9"
 supports-color = "2.0.0"
-thiserror = "1.0.40"
+thiserror = "1.0.50"
 tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
 toml = "0.8.0"
 uuid = { version = "^1.3.3", features = ["serde"] }

From 03c5d6b57713c0c2a56168e12e1a72f315580794 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Fri, 24 Nov 2023 11:48:06 +0100
Subject: [PATCH 15/55] [deps]: Update Rust crate toml to 0.8.8 (#346)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bws/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index fe94dfcb2..225c99bcd 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -37,7 +37,7 @@ serde_yaml = "0.9"
 supports-color = "2.0.0"
 thiserror = "1.0.50"
 tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
-toml = "0.8.0"
+toml = "0.8.8"
 uuid = { version = "^1.3.3", features = ["serde"] }
 
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = ["secrets"] }

From 5407db721214d35b7498a46a99c71a05087e4929 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Fri, 24 Nov 2023 18:27:01 +0100
Subject: [PATCH 16/55] Fix VSCode tasks (#347)

## Type of change
```
- [x] Bug fix
- [ ] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
Fix invalid path in VSCode tasks
---
 .vscode/tasks.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.vscode/tasks.json b/.vscode/tasks.json
index 55dc10eb2..fa97b8fc7 100644
--- a/.vscode/tasks.json
+++ b/.vscode/tasks.json
@@ -6,7 +6,7 @@
       "command": "build",
       "problemMatcher": ["$rustc"],
       "options": {
-        "cwd": "${workspaceFolder}/bitwarden-c/"
+        "cwd": "${workspaceFolder}/crates/bitwarden-c/"
       },
       "group": {
         "kind": "build",
@@ -19,7 +19,7 @@
       "command": "build",
       "args": ["--release"],
       "options": {
-        "cwd": "${workspaceFolder}/bitwarden-c/"
+        "cwd": "${workspaceFolder}/crates/bitwarden-c/"
       },
       "problemMatcher": ["$rustc"],
       "label": "rust: bitwarden-c release build"

From 422a9e4cfb5aa7d3e7f022d6a1fc539f709019d4 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:15:58 +0100
Subject: [PATCH 17/55] Change all dependencies to be ranges (#357)

---
 crates/bitwarden-api-api/Cargo.toml      | 14 +++++++-------
 crates/bitwarden-api-identity/Cargo.toml | 14 +++++++-------
 crates/bitwarden/Cargo.toml              |  6 +++---
 3 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/crates/bitwarden-api-api/Cargo.toml b/crates/bitwarden-api-api/Cargo.toml
index 518cc33ed..2e05088e0 100644
--- a/crates/bitwarden-api-api/Cargo.toml
+++ b/crates/bitwarden-api-api/Cargo.toml
@@ -13,14 +13,14 @@ categories = ["api-bindings"]
 edition = "2018"
 
 [dependencies]
-serde = "^1.0.163"
-serde_derive = "^1.0.163"
-serde_json = "^1.0.96"
-serde_repr = "^0.1.12"
-url = "^2.3.1"
-uuid = { version = "^1.3.3", features = ["serde"] }
+serde = ">=1.0.163, <2"
+serde_derive = ">=1.0.163, <2"
+serde_json = ">=1.0.96, <2"
+serde_repr = ">=0.1.12, <0.2"
+url = ">=2.3.1, <3"
+uuid = { version = ">=1.3.3, <2", features = ["serde"] }
 [dependencies.reqwest]
-version = "^0.11.18"
+version = ">=0.11.18, <0.12"
 features = ["json", "multipart"]
 
 [dev-dependencies]
diff --git a/crates/bitwarden-api-identity/Cargo.toml b/crates/bitwarden-api-identity/Cargo.toml
index 70be0560b..7207c5f8e 100644
--- a/crates/bitwarden-api-identity/Cargo.toml
+++ b/crates/bitwarden-api-identity/Cargo.toml
@@ -13,14 +13,14 @@ categories = ["api-bindings"]
 edition = "2018"
 
 [dependencies]
-serde = "^1.0.163"
-serde_derive = "^1.0.163"
-serde_json = "^1.0.96"
-serde_repr = "^0.1.12"
-url = "^2.3.1"
-uuid = { version = "^1.3.3", features = ["serde"] }
+serde = ">=1.0.163, <2"
+serde_derive = ">=1.0.163, <2"
+serde_json = ">=1.0.96, <2"
+serde_repr = ">=0.1.12, <0.2"
+url = ">=2.3.1, <3"
+uuid = { version = ">=1.3.3, <2", features = ["serde"] }
 [dependencies.reqwest]
-version = "^0.11.18"
+version = ">=0.11.18, <0.12"
 features = ["json", "multipart"]
 
 [dev-dependencies]
diff --git a/crates/bitwarden/Cargo.toml b/crates/bitwarden/Cargo.toml
index b0135dfa3..e52c03723 100644
--- a/crates/bitwarden/Cargo.toml
+++ b/crates/bitwarden/Cargo.toml
@@ -34,7 +34,7 @@ chrono = { version = ">=0.4.26, <0.5", features = [
     "std",
 ], default-features = false }
 # We don't use this directly (it's used by rand), but we need it here to enable WASM support
-getrandom = { version = ">=0.2.9", features = ["js"] }
+getrandom = { version = ">=0.2.9, <0.3", features = ["js"] }
 hkdf = ">=0.12.3, <0.13"
 hmac = ">=0.12.1, <0.13"
 lazy_static = ">=1.4.0, <2.0"
@@ -59,5 +59,5 @@ uuid = { version = ">=1.3.3, <2.0", features = ["serde"] }
 
 [dev-dependencies]
 rand_chacha = "0.3.1"
-tokio = { version = "1.28.2", features = ["rt", "macros"] }
-wiremock = "0.5.18"
+tokio = { version = "1.34.0", features = ["rt", "macros"] }
+wiremock = "0.5.21"

From afe290dae16adee7ca543418059f3bcb1f1e85e2 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:16:24 +0100
Subject: [PATCH 18/55] [deps]: Update Rust crate log to 0.4.20 (#352)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bitwarden-napi/Cargo.toml | 2 +-
 crates/bitwarden-wasm/Cargo.toml | 2 +-
 crates/bw/Cargo.toml             | 2 +-
 crates/bws/Cargo.toml            | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/crates/bitwarden-napi/Cargo.toml b/crates/bitwarden-napi/Cargo.toml
index 2e86fefe2..5139d17ca 100644
--- a/crates/bitwarden-napi/Cargo.toml
+++ b/crates/bitwarden-napi/Cargo.toml
@@ -17,7 +17,7 @@ crate-type = ["cdylib", "rlib"]
 
 [dependencies]
 env_logger = "0.10.0"
-log = "0.4.18"
+log = "0.4.20"
 napi = { version = "2", features = ["async"] }
 napi-derive = "2"
 
diff --git a/crates/bitwarden-wasm/Cargo.toml b/crates/bitwarden-wasm/Cargo.toml
index fcb0c2b15..0c8a60c56 100644
--- a/crates/bitwarden-wasm/Cargo.toml
+++ b/crates/bitwarden-wasm/Cargo.toml
@@ -11,7 +11,7 @@ crate-type = ["cdylib", "rlib"]
 console_error_panic_hook = "0.1.7"
 console_log = { version = "1.0.0", features = ["color"] }
 js-sys = "0.3.63"
-log = "0.4.18"
+log = "0.4.20"
 serde = { version = "1.0.163", features = ["derive"] }
 wasm-bindgen = { version = "=0.2.87", features = ["serde-serialize"] }
 wasm-bindgen-futures = "0.4.36"
diff --git a/crates/bw/Cargo.toml b/crates/bw/Cargo.toml
index 349087818..85df34109 100644
--- a/crates/bw/Cargo.toml
+++ b/crates/bw/Cargo.toml
@@ -17,7 +17,7 @@ clap = { version = "4.3.0", features = ["derive", "env"] }
 color-eyre = "0.6"
 env_logger = "0.10.0"
 inquire = "0.6.2"
-log = "0.4.18"
+log = "0.4.20"
 tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
 
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = [
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 225c99bcd..a35d7f642 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -26,7 +26,7 @@ color-eyre = "0.6"
 comfy-table = "^7.0.1"
 directories = "5.0.1"
 env_logger = "0.10.0"
-log = "0.4.18"
+log = "0.4.20"
 regex = { version = "1.10.2", features = [
     "std",
     "perf",

From 8815cfd1ddcd0f32c339c7bbd5ff6d9d96ceffbe Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 10:17:17 +0000
Subject: [PATCH 19/55] [deps]: Update Rust crate anyhow to 1.0.75 (#348)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/sdk-schemas/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/sdk-schemas/Cargo.toml b/crates/sdk-schemas/Cargo.toml
index 86a73cd19..017d74a10 100644
--- a/crates/sdk-schemas/Cargo.toml
+++ b/crates/sdk-schemas/Cargo.toml
@@ -12,7 +12,7 @@ internal = [
 ]
 
 [dependencies]
-anyhow = "1.0.71"
+anyhow = "1.0.75"
 itertools = "0.12.0"
 schemars = { version = "0.8.12", features = ["preserve_order"] }
 serde_json = "1.0.96"

From 736f2d03780cf7feb2aef36b4b928eef849dc888 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 10:17:33 +0000
Subject: [PATCH 20/55] [deps]: Update Rust crate chrono to 0.4.31 (#349)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bws/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index a35d7f642..ebf917ab1 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -16,7 +16,7 @@ keywords = ["bitwarden", "secrets-manager", "cli"]
 bat = { version = "0.24.0", features = [
     "regex-onig",
 ], default-features = false }
-chrono = { version = "0.4.26", features = [
+chrono = { version = "0.4.31", features = [
     "clock",
     "std",
 ], default-features = false }

From 8073952c0c5c5376832bb34624462a9df3abce40 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:27:22 +0100
Subject: [PATCH 21/55] [deps]: Update Rust crate env_logger to 0.10.1 (#350)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bitwarden-napi/Cargo.toml   | 2 +-
 crates/bitwarden-uniffi/Cargo.toml | 2 +-
 crates/bw/Cargo.toml               | 2 +-
 crates/bws/Cargo.toml              | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/crates/bitwarden-napi/Cargo.toml b/crates/bitwarden-napi/Cargo.toml
index 5139d17ca..8ab71c56d 100644
--- a/crates/bitwarden-napi/Cargo.toml
+++ b/crates/bitwarden-napi/Cargo.toml
@@ -16,7 +16,7 @@ rust-version = "1.57"
 crate-type = ["cdylib", "rlib"]
 
 [dependencies]
-env_logger = "0.10.0"
+env_logger = "0.10.1"
 log = "0.4.20"
 napi = { version = "2", features = ["async"] }
 napi-derive = "2"
diff --git a/crates/bitwarden-uniffi/Cargo.toml b/crates/bitwarden-uniffi/Cargo.toml
index 098c5b2bf..474f5f299 100644
--- a/crates/bitwarden-uniffi/Cargo.toml
+++ b/crates/bitwarden-uniffi/Cargo.toml
@@ -17,7 +17,7 @@ chrono = { version = ">=0.4.26, <0.5", features = [
     "serde",
     "std",
 ], default-features = false }
-env_logger = "0.10.0"
+env_logger = "0.10.1"
 schemars = { version = ">=0.8, <0.9", optional = true }
 uniffi = "=0.25.1"
 
diff --git a/crates/bw/Cargo.toml b/crates/bw/Cargo.toml
index 85df34109..244ecf51e 100644
--- a/crates/bw/Cargo.toml
+++ b/crates/bw/Cargo.toml
@@ -15,7 +15,7 @@ keywords = ["bitwarden", "password-manager", "cli"]
 [dependencies]
 clap = { version = "4.3.0", features = ["derive", "env"] }
 color-eyre = "0.6"
-env_logger = "0.10.0"
+env_logger = "0.10.1"
 inquire = "0.6.2"
 log = "0.4.20"
 tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index ebf917ab1..bf91adda8 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -25,7 +25,7 @@ clap_complete = "4.3.2"
 color-eyre = "0.6"
 comfy-table = "^7.0.1"
 directories = "5.0.1"
-env_logger = "0.10.0"
+env_logger = "0.10.1"
 log = "0.4.20"
 regex = { version = "1.10.2", features = [
     "std",

From 9b752bafcd5a32c0ceb671f435d7355e71180e93 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:27:33 +0100
Subject: [PATCH 22/55] [deps]: Update Rust crate schemars to 0.8.16 (#354)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/sdk-schemas/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/sdk-schemas/Cargo.toml b/crates/sdk-schemas/Cargo.toml
index 017d74a10..f3e70c04c 100644
--- a/crates/sdk-schemas/Cargo.toml
+++ b/crates/sdk-schemas/Cargo.toml
@@ -14,7 +14,7 @@ internal = [
 [dependencies]
 anyhow = "1.0.75"
 itertools = "0.12.0"
-schemars = { version = "0.8.12", features = ["preserve_order"] }
+schemars = { version = "0.8.16", features = ["preserve_order"] }
 serde_json = "1.0.96"
 
 bitwarden = { path = "../bitwarden" }

From b88ce1341cfbb683b006046a8bd25d434439a74a Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:33:35 +0100
Subject: [PATCH 23/55] [deps]: Update Rust crate tokio to 1.34.0 (#358)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bitwarden-py/Cargo.toml | 2 +-
 crates/bw/Cargo.toml           | 2 +-
 crates/bws/Cargo.toml          | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/crates/bitwarden-py/Cargo.toml b/crates/bitwarden-py/Cargo.toml
index 5c1fa5cac..94e9e6a43 100644
--- a/crates/bitwarden-py/Cargo.toml
+++ b/crates/bitwarden-py/Cargo.toml
@@ -18,7 +18,7 @@ bitwarden-json = { path = "../bitwarden-json", features = ["secrets"] }
 pyo3-build-config = { version = "0.20.0" }
 
 [target.'cfg(not(target_arch="wasm32"))'.dependencies]
-tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
+tokio = { version = "1.34.0", features = ["rt-multi-thread", "macros"] }
 pyo3-asyncio = { version = "0.20.0", features = [
     "attributes",
     "tokio-runtime",
diff --git a/crates/bw/Cargo.toml b/crates/bw/Cargo.toml
index 244ecf51e..4659caac8 100644
--- a/crates/bw/Cargo.toml
+++ b/crates/bw/Cargo.toml
@@ -18,7 +18,7 @@ color-eyre = "0.6"
 env_logger = "0.10.1"
 inquire = "0.6.2"
 log = "0.4.20"
-tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
+tokio = { version = "1.34.0", features = ["rt-multi-thread", "macros"] }
 
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = [
     "internal",
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index bf91adda8..649015b10 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -36,7 +36,7 @@ serde_json = "^1.0.96"
 serde_yaml = "0.9"
 supports-color = "2.0.0"
 thiserror = "1.0.50"
-tokio = { version = "1.28.2", features = ["rt-multi-thread", "macros"] }
+tokio = { version = "1.34.0", features = ["rt-multi-thread", "macros"] }
 toml = "0.8.8"
 uuid = { version = "^1.3.3", features = ["serde"] }
 

From 6f84712b7a611c3aeaf2ce7c1cc5e0f843391770 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:34:58 +0100
Subject: [PATCH 24/55] [deps]: Update Rust crate clap to 4.4.8 (#359)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bitwarden-cli/Cargo.toml | 2 +-
 crates/bw/Cargo.toml            | 2 +-
 crates/bws/Cargo.toml           | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/crates/bitwarden-cli/Cargo.toml b/crates/bitwarden-cli/Cargo.toml
index 606e24856..bedf57e58 100644
--- a/crates/bitwarden-cli/Cargo.toml
+++ b/crates/bitwarden-cli/Cargo.toml
@@ -5,7 +5,7 @@ edition = "2021"
 rust-version = "1.57"
 
 [dependencies]
-clap = { version = "4.3.0", features = ["derive"] }
+clap = { version = "4.4.8", features = ["derive"] }
 color-eyre = "0.6"
 inquire = "0.6.2"
 supports-color = "2.0.0"
diff --git a/crates/bw/Cargo.toml b/crates/bw/Cargo.toml
index 4659caac8..4c2d6b012 100644
--- a/crates/bw/Cargo.toml
+++ b/crates/bw/Cargo.toml
@@ -13,7 +13,7 @@ Bitwarden Password Manager CLI
 keywords = ["bitwarden", "password-manager", "cli"]
 
 [dependencies]
-clap = { version = "4.3.0", features = ["derive", "env"] }
+clap = { version = "4.4.8", features = ["derive", "env"] }
 color-eyre = "0.6"
 env_logger = "0.10.1"
 inquire = "0.6.2"
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 649015b10..770f5f6db 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -20,7 +20,7 @@ chrono = { version = "0.4.31", features = [
     "clock",
     "std",
 ], default-features = false }
-clap = { version = "4.3.0", features = ["derive", "env", "string"] }
+clap = { version = "4.4.8", features = ["derive", "env", "string"] }
 clap_complete = "4.3.2"
 color-eyre = "0.6"
 comfy-table = "^7.0.1"

From a2597217349c3fac94ed8606fdfdee2bcfa091fa Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:35:22 +0100
Subject: [PATCH 25/55] [deps]: Update Rust crate tempfile to 3.8.1 (#362)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bw/Cargo.toml  | 2 +-
 crates/bws/Cargo.toml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/crates/bw/Cargo.toml b/crates/bw/Cargo.toml
index 4c2d6b012..9ceb2b153 100644
--- a/crates/bw/Cargo.toml
+++ b/crates/bw/Cargo.toml
@@ -27,4 +27,4 @@ bitwarden = { path = "../bitwarden", version = "0.3.1", features = [
 bitwarden-cli = { path = "../bitwarden-cli", version = "0.1.0" }
 
 [dev-dependencies]
-tempfile = "3.5.0"
+tempfile = "3.8.1"
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 770f5f6db..c8afd73e4 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -43,7 +43,7 @@ uuid = { version = "^1.3.3", features = ["serde"] }
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = ["secrets"] }
 
 [dev-dependencies]
-tempfile = "3.5.0"
+tempfile = "3.8.1"
 
 [target.'cfg(target_os = "linux")'.dependencies]
 openssl = { version = "0.10", features = ["vendored"] }

From 78c5fa23174902dd33eaccf12cb25d076e560758 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 10:36:13 +0000
Subject: [PATCH 26/55] [deps]: Update Rust crate serde_json to v1.0.108 (#355)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bws/Cargo.toml         | 2 +-
 crates/sdk-schemas/Cargo.toml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index c8afd73e4..2a1561b8e 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -32,7 +32,7 @@ regex = { version = "1.10.2", features = [
     "perf",
 ], default-features = false }
 serde = "^1.0.163"
-serde_json = "^1.0.96"
+serde_json = "^1.0.108"
 serde_yaml = "0.9"
 supports-color = "2.0.0"
 thiserror = "1.0.50"
diff --git a/crates/sdk-schemas/Cargo.toml b/crates/sdk-schemas/Cargo.toml
index f3e70c04c..2e7706200 100644
--- a/crates/sdk-schemas/Cargo.toml
+++ b/crates/sdk-schemas/Cargo.toml
@@ -15,7 +15,7 @@ internal = [
 anyhow = "1.0.75"
 itertools = "0.12.0"
 schemars = { version = "0.8.16", features = ["preserve_order"] }
-serde_json = "1.0.96"
+serde_json = "1.0.108"
 
 bitwarden = { path = "../bitwarden" }
 bitwarden-json = { path = "../bitwarden-json" }

From 520608dbe0e4fa245cd9414d3b909295195e85d3 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:36:36 +0100
Subject: [PATCH 27/55] [deps]: Update Rust crate supports-color to 2.1.0
 (#361)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bitwarden-cli/Cargo.toml | 2 +-
 crates/bws/Cargo.toml           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/crates/bitwarden-cli/Cargo.toml b/crates/bitwarden-cli/Cargo.toml
index bedf57e58..0966f7885 100644
--- a/crates/bitwarden-cli/Cargo.toml
+++ b/crates/bitwarden-cli/Cargo.toml
@@ -8,4 +8,4 @@ rust-version = "1.57"
 clap = { version = "4.4.8", features = ["derive"] }
 color-eyre = "0.6"
 inquire = "0.6.2"
-supports-color = "2.0.0"
+supports-color = "2.1.0"
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 2a1561b8e..32a189988 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -34,7 +34,7 @@ regex = { version = "1.10.2", features = [
 serde = "^1.0.163"
 serde_json = "^1.0.108"
 serde_yaml = "0.9"
-supports-color = "2.0.0"
+supports-color = "2.1.0"
 thiserror = "1.0.50"
 tokio = { version = "1.34.0", features = ["rt-multi-thread", "macros"] }
 toml = "0.8.8"

From 57352eb3bf13a445da6f0dfe297748be8d5f0393 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:40:15 +0100
Subject: [PATCH 28/55] [deps]: Update Rust crate clap_complete to 4.4.4 (#360)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bws/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 32a189988..39cf92a85 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -21,7 +21,7 @@ chrono = { version = "0.4.31", features = [
     "std",
 ], default-features = false }
 clap = { version = "4.4.8", features = ["derive", "env", "string"] }
-clap_complete = "4.3.2"
+clap_complete = "4.4.4"
 color-eyre = "0.6"
 comfy-table = "^7.0.1"
 directories = "5.0.1"

From 7a216991aefdec3e2e6b02f38436eb8c68dae91f Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:42:15 +0100
Subject: [PATCH 29/55] [deps]: Update Rust crate uuid to ^1.6.1 (#365)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock            | 4 ++--
 crates/bws/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index fb1768bee..232b823b4 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -3618,9 +3618,9 @@ checksum = "711b9620af191e0cdc7468a8d14e709c3dcdb115b36f838e601583af800a370a"
 
 [[package]]
 name = "uuid"
-version = "1.6.0"
+version = "1.6.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c58fe91d841bc04822c9801002db4ea904b9e4b8e6bbad25127b46eff8dc516b"
+checksum = "5e395fcf16a7a3d8127ec99782007af141946b4795001f876d54fb0d55978560"
 dependencies = [
  "serde",
 ]
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 39cf92a85..3580446b9 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -38,7 +38,7 @@ supports-color = "2.1.0"
 thiserror = "1.0.50"
 tokio = { version = "1.34.0", features = ["rt-multi-thread", "macros"] }
 toml = "0.8.8"
-uuid = { version = "^1.3.3", features = ["serde"] }
+uuid = { version = "^1.6.1", features = ["serde"] }
 
 bitwarden = { path = "../bitwarden", version = "0.3.1", features = ["secrets"] }
 

From cd93d42ae3bd82b353005d5b1af28f047da769a7 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 11:42:47 +0100
Subject: [PATCH 30/55] [deps]: Update Rust crate comfy-table to ^7.1.0 (#363)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bws/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 3580446b9..c0dfc7bac 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -23,7 +23,7 @@ chrono = { version = "0.4.31", features = [
 clap = { version = "4.4.8", features = ["derive", "env", "string"] }
 clap_complete = "4.4.4"
 color-eyre = "0.6"
-comfy-table = "^7.0.1"
+comfy-table = "^7.1.0"
 directories = "5.0.1"
 env_logger = "0.10.1"
 log = "0.4.20"

From b9ca9e5928441beb98d3ad98ee2b2a66a0d0faf7 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 12:38:14 +0100
Subject: [PATCH 31/55] [deps]: Update Rust crate napi-build to 2.1.0 (#364)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bitwarden-napi/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/bitwarden-napi/Cargo.toml b/crates/bitwarden-napi/Cargo.toml
index 8ab71c56d..63eae2b8b 100644
--- a/crates/bitwarden-napi/Cargo.toml
+++ b/crates/bitwarden-napi/Cargo.toml
@@ -24,7 +24,7 @@ napi-derive = "2"
 bitwarden-json = { path = "../bitwarden-json", version = "0.3.0", features = ["secrets"] }
 
 [build-dependencies]
-napi-build = "2.0.1"
+napi-build = "2.1.0"
 
 [profile.release]
 lto = true

From 2c01cd3ff4d2fca565e14dfa479e44ee3d68cce7 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 13:07:30 +0100
Subject: [PATCH 32/55] [deps]: Update Rust crate serde to v1.0.193 (#367)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock                       | 8 ++++----
 crates/bitwarden-wasm/Cargo.toml | 2 +-
 crates/bws/Cargo.toml            | 2 +-
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 232b823b4..ff741ead5 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2778,18 +2778,18 @@ dependencies = [
 
 [[package]]
 name = "serde"
-version = "1.0.192"
+version = "1.0.193"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bca2a08484b285dcb282d0f67b26cadc0df8b19f8c12502c13d966bf9482f001"
+checksum = "25dd9975e68d0cb5aa1120c288333fc98731bd1dd12f561e468ea4728c042b89"
 dependencies = [
  "serde_derive",
 ]
 
 [[package]]
 name = "serde_derive"
-version = "1.0.192"
+version = "1.0.193"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d6c7207fbec9faa48073f3e3074cbe553af6ea512d7c21ba46e434e70ea9fbc1"
+checksum = "43576ca501357b9b071ac53cdc7da8ef0cbd9493d8df094cd821777ea6e894d3"
 dependencies = [
  "proc-macro2",
  "quote",
diff --git a/crates/bitwarden-wasm/Cargo.toml b/crates/bitwarden-wasm/Cargo.toml
index 0c8a60c56..7ad0d1c3e 100644
--- a/crates/bitwarden-wasm/Cargo.toml
+++ b/crates/bitwarden-wasm/Cargo.toml
@@ -12,7 +12,7 @@ console_error_panic_hook = "0.1.7"
 console_log = { version = "1.0.0", features = ["color"] }
 js-sys = "0.3.63"
 log = "0.4.20"
-serde = { version = "1.0.163", features = ["derive"] }
+serde = { version = "1.0.193", features = ["derive"] }
 wasm-bindgen = { version = "=0.2.87", features = ["serde-serialize"] }
 wasm-bindgen-futures = "0.4.36"
 
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index c0dfc7bac..95dbef003 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -31,7 +31,7 @@ regex = { version = "1.10.2", features = [
     "std",
     "perf",
 ], default-features = false }
-serde = "^1.0.163"
+serde = "^1.0.193"
 serde_json = "^1.0.108"
 serde_yaml = "0.9"
 supports-color = "2.1.0"

From af31957425d007926f0ec72a9ae1b5c434244f5d Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 Nov 2023 13:07:56 +0100
Subject: [PATCH 33/55] [deps]: Update Rust crate async-lock to 3.1.2 (#368)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock                         | 16 ++++++++--------
 crates/bitwarden-uniffi/Cargo.toml |  2 +-
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index ff741ead5..2a4d3b6aa 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -203,11 +203,11 @@ dependencies = [
 
 [[package]]
 name = "async-lock"
-version = "3.1.1"
+version = "3.1.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "655b9c7fe787d3b25cc0f804a1a8401790f0c5bc395beb5a64dc77d8de079105"
+checksum = "dea8b3453dd7cc96711834b75400d671b73e3656975fa68d9f277163b7f7e316"
 dependencies = [
- "event-listener 3.1.0",
+ "event-listener 4.0.0",
  "event-listener-strategy",
  "pin-project-lite",
 ]
@@ -1065,9 +1065,9 @@ checksum = "0206175f82b8d6bf6652ff7d71a1e27fd2e4efde587fd368662814d6ec1d9ce0"
 
 [[package]]
 name = "event-listener"
-version = "3.1.0"
+version = "4.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d93877bcde0eb80ca09131a08d23f0a5c18a620b01db137dba666d18cd9b30c2"
+checksum = "770d968249b5d99410d61f5bf89057f3199a077a04d087092f58e7d10692baae"
 dependencies = [
  "concurrent-queue",
  "parking",
@@ -1076,11 +1076,11 @@ dependencies = [
 
 [[package]]
 name = "event-listener-strategy"
-version = "0.3.0"
+version = "0.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d96b852f1345da36d551b9473fa1e2b1eb5c5195585c6c018118bc92a8d91160"
+checksum = "958e4d70b6d5e81971bebec42271ec641e7ff4e170a6fa605f2b8a8b65cb97d3"
 dependencies = [
- "event-listener 3.1.0",
+ "event-listener 4.0.0",
  "pin-project-lite",
 ]
 
diff --git a/crates/bitwarden-uniffi/Cargo.toml b/crates/bitwarden-uniffi/Cargo.toml
index 474f5f299..405642d71 100644
--- a/crates/bitwarden-uniffi/Cargo.toml
+++ b/crates/bitwarden-uniffi/Cargo.toml
@@ -12,7 +12,7 @@ crate-type = ["lib", "staticlib", "cdylib"]
 bench = false
 
 [dependencies]
-async-lock = "3.0.0"
+async-lock = "3.1.2"
 chrono = { version = ">=0.4.26, <0.5", features = [
     "serde",
     "std",

From 92a67b194e59ba445531abbdd76971c250d56f3e Mon Sep 17 00:00:00 2001
From: Colton Hurst <colton@coltonhurst.com>
Date: Mon, 27 Nov 2023 11:00:44 -0500
Subject: [PATCH 34/55] SM-874: Fix Python Integration (#229)

## Type of change

<!-- (mark with an `X`) -->

```
- [x] Bug fix
- [ ] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective

<!--Describe what the purpose of this PR is. For example: what bug
you're fixing or what new feature you're adding-->

The Python integration is out of date and is not currently working. This
PR fixes the Python integration by adding the ability to log in via
access token, which is currently the supported way to interact with the
Bitwarden Secrets Manager SDK. This PR also adds a `ProjectsClient` to
`bitwarden_client.py` for easy use, and updates the error handling on
Project or Secret deletes in the SDK.

## Code changes

<!--Explain the changes you've made to each file or major component.
This should help the reviewer understand your changes-->
<!--Also refer to any related changes or PRs in other repositories-->

- **crates/sdk-schemas/src/main.rs:** We need the
`AccessTokenLoginResponse` struct to be generated so access token auth
is available to integrations
- **languages/python/BitwardenClient/bitwarden_client.py:**
  - Import the following from `.schemas`:
    - `AccessTokenLoginRequest`
    - `AccessTokenLoginResponse`
    - `ResponseForAccessTokenLoginResponse`
- Define a new function `access_token_login` to support authenticating
with an access token
- Add the `project_ids` parameter to the `create` and `update` functions
for `SecretsClient`
- Add a `ProjectsClient` class and `projects()` to the `BitwardenClient`
  - Removed the password login methods, as they are not supported
- Removed the imports that are not needed, and add one that are (like
`sys`, etc.)
- **languages/python/README.md:** Update the readme instructions, give
more examples
- **languages/python/login.py:** Renamed `login.py` to `example.py`
- **languages/python/example.py:** Update the example to showcase auth
with an access token

## Before you submit

- Please add **unit tests** where it makes sense to do so (encouraged
but not required)
---
 crates/sdk-schemas/src/main.rs                |  1 +
 .../BitwardenClient/bitwarden_client.py       | 90 +++++++++++++------
 languages/python/README.md                    |  6 +-
 languages/python/example.py                   | 44 +++++++++
 languages/python/login.py                     | 24 -----
 5 files changed, 115 insertions(+), 50 deletions(-)
 create mode 100644 languages/python/example.py
 delete mode 100644 languages/python/login.py

diff --git a/crates/sdk-schemas/src/main.rs b/crates/sdk-schemas/src/main.rs
index 9d7e52a47..ef7a2db83 100644
--- a/crates/sdk-schemas/src/main.rs
+++ b/crates/sdk-schemas/src/main.rs
@@ -99,6 +99,7 @@ fn main() -> Result<()> {
     write_schema_for_response! {
         bitwarden::auth::login::ApiKeyLoginResponse,
         bitwarden::auth::login::PasswordLoginResponse,
+        bitwarden::auth::login::AccessTokenLoginResponse,
         bitwarden::secrets_manager::secrets::SecretIdentifiersResponse,
         bitwarden::secrets_manager::secrets::SecretResponse,
         bitwarden::secrets_manager::secrets::SecretsResponse,
diff --git a/languages/python/BitwardenClient/bitwarden_client.py b/languages/python/BitwardenClient/bitwarden_client.py
index 6a0a77ed8..cb669a40e 100644
--- a/languages/python/BitwardenClient/bitwarden_client.py
+++ b/languages/python/BitwardenClient/bitwarden_client.py
@@ -1,8 +1,8 @@
 import json
-from typing import Any, List
+from typing import Any, List, Optional
+from uuid import UUID
 import bitwarden_py
-from .schemas import ClientSettings, Command, PasswordLoginRequest, PasswordLoginResponse, ResponseForPasswordLoginResponse, ResponseForSecretIdentifiersResponse, ResponseForSecretResponse, ResponseForSecretsDeleteResponse, ResponseForSyncResponse, ResponseForUserAPIKeyResponse, SecretCreateRequest, SecretGetRequest, SecretIdentifiersRequest, SecretIdentifiersResponse, SecretPutRequest, SecretResponse, SecretVerificationRequest, SecretsCommand, SecretsDeleteRequest, SecretsDeleteResponse, SyncRequest, SyncResponse, UserAPIKeyResponse
-
+from .schemas import ClientSettings, Command, ResponseForSecretIdentifiersResponse, ResponseForSecretResponse, ResponseForSecretsDeleteResponse, SecretCreateRequest, SecretGetRequest, SecretIdentifiersRequest, SecretIdentifiersResponse, SecretPutRequest, SecretResponse, SecretsCommand, SecretsDeleteRequest, SecretsDeleteResponse, AccessTokenLoginRequest, AccessTokenLoginResponse, ResponseForAccessTokenLoginResponse, ResponseForProjectResponse, ProjectsCommand, ProjectCreateRequest, ProjectGetRequest, ProjectPutRequest, ProjectsListRequest, ResponseForProjectsResponse, ResponseForProjectsDeleteResponse, ProjectsDeleteRequest
 
 class BitwardenClient:
     def __init__(self, settings: ClientSettings = None):
@@ -12,32 +12,25 @@ def __init__(self, settings: ClientSettings = None):
             settings_json = json.dumps(settings.to_dict())
             self.inner = bitwarden_py.BitwardenClient(settings_json)
 
-    def password_login(self, email: str, password: str) -> ResponseForPasswordLoginResponse:
-        result = self._run_command(
-            Command(password_login=PasswordLoginRequest(email, password))
-        )
-        return ResponseForPasswordLoginResponse.from_dict(result)
-
-    def get_user_api_key(self, secret: str, is_otp: bool = False) -> ResponseForUserAPIKeyResponse:
-        result = self._run_command(
-            Command(get_user_api_key=SecretVerificationRequest(
-                secret if not is_otp else None, secret if is_otp else None))
+    def access_token_login(self, access_token: str):
+        self._run_command(
+            Command(access_token_login=AccessTokenLoginRequest(access_token))
         )
-        return ResponseForUserAPIKeyResponse.from_dict(result)
-
-    def sync(self, exclude_subdomains: bool = False) -> ResponseForSyncResponse:
-        result = self._run_command(
-            Command(sync=SyncRequest(exclude_subdomains))
-        )
-        return ResponseForSyncResponse.from_dict(result)
 
     def secrets(self):
         return SecretsClient(self)
 
+    def projects(self):
+        return ProjectsClient(self)
+
     def _run_command(self, command: Command) -> Any:
         response_json = self.inner.run_command(json.dumps(command.to_dict()))
-        return json.loads(response_json)
+        response = json.loads(response_json)
 
+        if response["success"] == False:
+            raise Exception(response["errorMessage"])
+        
+        return response
 
 class SecretsClient:
     def __init__(self, client: BitwardenClient):
@@ -52,10 +45,12 @@ def get(self, id: str) -> ResponseForSecretResponse:
     def create(self, key: str,
                note: str,
                organization_id: str,
-               value: str) -> ResponseForSecretResponse:
+               value: str,
+               project_ids: Optional[List[UUID]] = None
+               ) -> ResponseForSecretResponse:
         result = self.client._run_command(
             Command(secrets=SecretsCommand(
-                create=SecretCreateRequest(key, note, organization_id, value)))
+                create=SecretCreateRequest(key, note, organization_id, value, project_ids)))
         )
         return ResponseForSecretResponse.from_dict(result)
 
@@ -70,10 +65,12 @@ def update(self, id: str,
                key: str,
                note: str,
                organization_id: str,
-               value: str) -> ResponseForSecretResponse:
+               value: str,
+               project_ids: Optional[List[UUID]] = None
+               ) -> ResponseForSecretResponse:
         result = self.client._run_command(
             Command(secrets=SecretsCommand(update=SecretPutRequest(
-                id, key, note, organization_id, value)))
+                id, key, note, organization_id, value, project_ids)))
         )
         return ResponseForSecretResponse.from_dict(result)
 
@@ -82,3 +79,46 @@ def delete(self, ids: List[str]) -> ResponseForSecretsDeleteResponse:
             Command(secrets=SecretsCommand(delete=SecretsDeleteRequest(ids)))
         )
         return ResponseForSecretsDeleteResponse.from_dict(result)
+
+class ProjectsClient:
+    def __init__(self, client: BitwardenClient):
+        self.client = client
+
+    def get(self, id: str) -> ResponseForProjectResponse:
+        result = self.client._run_command(
+            Command(projects=ProjectsCommand(get=ProjectGetRequest(id)))
+        )
+        return ResponseForProjectResponse.from_dict(result)
+
+    def create(self,
+               name: str,
+               organization_id: str,
+               ) -> ResponseForProjectResponse:
+        result = self.client._run_command(
+            Command(projects=ProjectsCommand(
+                create=ProjectCreateRequest(name, organization_id)))
+        )
+        return ResponseForProjectResponse.from_dict(result)
+
+    def list(self, organization_id: str) -> ResponseForProjectsResponse:
+        result = self.client._run_command(
+            Command(projects=ProjectsCommand(
+                list=ProjectsListRequest(organization_id)))
+        )
+        return ResponseForProjectsResponse.from_dict(result)
+
+    def update(self, id: str,
+               name: str,
+               organization_id: str,
+               ) -> ResponseForProjectResponse:
+        result = self.client._run_command(
+            Command(projects=ProjectsCommand(update=ProjectPutRequest(
+                id, name, organization_id)))
+        )
+        return ResponseForProjectResponse.from_dict(result)
+
+    def delete(self, ids: List[str]) -> ResponseForProjectsDeleteResponse:
+        result = self.client._run_command(
+            Command(projects=ProjectsCommand(delete=ProjectsDeleteRequest(ids)))
+        )
+        return ResponseForProjectsDeleteResponse.from_dict(result)
diff --git a/languages/python/README.md b/languages/python/README.md
index 03a4ce572..871be274f 100644
--- a/languages/python/README.md
+++ b/languages/python/README.md
@@ -9,6 +9,10 @@
   ```bash
   pip install setuptools_rust
   ```
+- dateutil
+  ```bash
+  pip install python-dateutil
+  ```
 
 # Installation
 
@@ -18,7 +22,7 @@ From the `languages/python/` directory,
 python3 ./setup.py develop
 ```
 
-Move the the resulting `.so` file to `bitwarden_py.so`, if it isn't already there.
+Rename the the resulting `.so` file to `bitwarden_py.so`, if it isn't already there.
 
 # Run
 
diff --git a/languages/python/example.py b/languages/python/example.py
new file mode 100644
index 000000000..2ee1cb280
--- /dev/null
+++ b/languages/python/example.py
@@ -0,0 +1,44 @@
+import json
+import logging
+import sys
+from BitwardenClient.bitwarden_client import BitwardenClient
+from BitwardenClient.schemas import client_settings_from_dict, DeviceType
+
+# Create the BitwardenClient, which is used to interact with the SDK
+client = BitwardenClient(client_settings_from_dict({
+    "apiUrl": "http://localhost:4000",
+    "deviceType": DeviceType.SDK,
+    "identityUrl": "http://localhost:33656",
+    "userAgent": "Python",
+}))
+
+# Add some logging & set the org id
+logging.basicConfig(level=logging.DEBUG)
+organization_id = "org_id_here"
+
+# Attempt to authenticate with the Secrets Manager Access Token
+client.access_token_login("access_token_here")
+
+# -- Example Project Commands --
+
+project = client.projects().create("ProjectName", organization_id)
+project2 = client.projects().create("Project - Don't Delete Me!", organization_id)
+updated_project = client.projects().update(project.data.id, "Cool New Project Name", organization_id)
+get_that_project = client.projects().get(project.data.id)
+
+input("Press Enter to delete the project...")
+client.projects().delete([project.data.id])
+
+print(client.projects().list(organization_id))
+
+# -- Example Secret Commands --
+
+secret = client.secrets().create("TEST_SECRET", "This is a test secret", organization_id, "Secret1234!", [project2.data.id])
+secret2 = client.secrets().create("Secret - Don't Delete Me!", "This is a test secret that will stay", organization_id, "Secret1234!", [project2.data.id])
+secret_updated = client.secrets().update(secret.data.id, "TEST_SECRET_UPDATED", "This as an updated test secret", organization_id, "Secret1234!_updated", [project2.data.id])
+secret_retrieved = client.secrets().get(secret.data.id)
+
+input("Press Enter to delete the secret...")
+client.secrets().delete([secret.data.id])
+
+print(client.secrets().list(organization_id))
diff --git a/languages/python/login.py b/languages/python/login.py
deleted file mode 100644
index 9b756a005..000000000
--- a/languages/python/login.py
+++ /dev/null
@@ -1,24 +0,0 @@
-import json
-import logging
-from BitwardenClient.bitwarden_client import BitwardenClient
-from BitwardenClient.schemas import client_settings_from_dict
-
-client = BitwardenClient(client_settings_from_dict({
-    "api_url": "http://localhost:4000",
-    "identity_url": "http://localhost:33656",
-    "user_agent": "Python",
-}))
-
-logging.basicConfig(level=logging.DEBUG)
-
-result = client.password_login("test@bitwarden.com", "asdfasdf")
-print(result)
-print(client.get_user_api_key("asdfasdf"))
-
-sync = client.sync()
-
-secret = client.secrets().create("TEST_SECRET", "This is a test secret",
-                                 sync.data.profile.organizations[0].id, "Secret1234!")
-print(secret)
-
-client.secrets().delete([secret.data.id])

From 56fb552b312c47340122ad7c6181c55e878ae929 Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Tue, 28 Nov 2023 15:06:50 +0100
Subject: [PATCH 35/55] Lock SDK to 6.0.100 and ignore with Renovate updates
 (#294)

---
 .github/renovate.json        | 3 ++-
 languages/csharp/global.json | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/.github/renovate.json b/.github/renovate.json
index 16222e52c..42f5f93f2 100644
--- a/.github/renovate.json
+++ b/.github/renovate.json
@@ -27,5 +27,6 @@
       "matchManagers": ["github-actions"],
       "matchUpdateTypes": ["minor", "patch"]
     }
-  ]
+  ],
+  "ignoreDeps": ["dotnet-sdk"]
 }
diff --git a/languages/csharp/global.json b/languages/csharp/global.json
index 527fd31d3..10b65be86 100644
--- a/languages/csharp/global.json
+++ b/languages/csharp/global.json
@@ -1,6 +1,6 @@
 {
   "sdk": {
-    "version": "6.0.413",
+    "version": "6.0.100",
     "rollForward": "latestFeature"
   }
 }

From f18020de098c43ce30fbc81a6424a707f1aa593e Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 28 Nov 2023 10:06:16 -0500
Subject: [PATCH 36/55] [deps]: Update gh minor (#366)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 .github/workflows/build-android.yml       | 2 +-
 .github/workflows/publish-rust-crates.yml | 2 +-
 .github/workflows/release-cli.yml         | 2 +-
 .github/workflows/release-napi.yml        | 2 +-
 .github/workflows/version-bump.yml        | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/build-android.yml b/.github/workflows/build-android.yml
index 110e3758b..d04d15a45 100644
--- a/.github/workflows/build-android.yml
+++ b/.github/workflows/build-android.yml
@@ -102,7 +102,7 @@ jobs:
         run: ./build-schemas.sh
 
       - name: Publish
-        uses: gradle/gradle-build-action@842c587ad8aa4c68eeba24c396e15af4c2e9f30a # v2.9.0
+        uses: gradle/gradle-build-action@87a9a15658c426a54dd469d4fc7dc1a73ca9d4a6 # v2.10.0
         with:
           arguments: sdk:publish
           build-root-directory: languages/kotlin
diff --git a/.github/workflows/publish-rust-crates.yml b/.github/workflows/publish-rust-crates.yml
index 468570cd8..b5a03ad47 100644
--- a/.github/workflows/publish-rust-crates.yml
+++ b/.github/workflows/publish-rust-crates.yml
@@ -103,7 +103,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Login to Azure
-        uses: Azure/login@92a5484dfaf04ca78a94597f4f19fea633851fa2 # v1.4.7
+        uses: Azure/login@4c88f01b0e3a5600e08a37889921afd060f75cf0 # v1.5.0
         with:
           creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
 
diff --git a/.github/workflows/release-cli.yml b/.github/workflows/release-cli.yml
index 4c52529e8..9ef782b7f 100644
--- a/.github/workflows/release-cli.yml
+++ b/.github/workflows/release-cli.yml
@@ -128,7 +128,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Login to Azure
-        uses: Azure/login@92a5484dfaf04ca78a94597f4f19fea633851fa2 # v1.4.7
+        uses: Azure/login@4c88f01b0e3a5600e08a37889921afd060f75cf0 # v1.5.0
         with:
           creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
 
diff --git a/.github/workflows/release-napi.yml b/.github/workflows/release-napi.yml
index daa450c0b..1e7b2e022 100644
--- a/.github/workflows/release-napi.yml
+++ b/.github/workflows/release-napi.yml
@@ -126,7 +126,7 @@ jobs:
         run: npm run tsc
 
       - name: Login to Azure
-        uses: Azure/login@92a5484dfaf04ca78a94597f4f19fea633851fa2 # v1.4.7
+        uses: Azure/login@4c88f01b0e3a5600e08a37889921afd060f75cf0 # v1.5.0
         with:
           creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
 
diff --git a/.github/workflows/version-bump.yml b/.github/workflows/version-bump.yml
index d902c5700..9fb441fa9 100644
--- a/.github/workflows/version-bump.yml
+++ b/.github/workflows/version-bump.yml
@@ -43,7 +43,7 @@ jobs:
         run: cargo install cargo-edit
 
       - name: Login to Azure - Prod Subscription
-        uses: Azure/login@92a5484dfaf04ca78a94597f4f19fea633851fa2 # v1.4.7
+        uses: Azure/login@4c88f01b0e3a5600e08a37889921afd060f75cf0 # v1.5.0
         with:
           creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
 

From 31c005f9d53656b39088f700a798789add32b1b7 Mon Sep 17 00:00:00 2001
From: Luka Potkonjak <46886659+lukpotSym@users.noreply.github.com>
Date: Tue, 28 Nov 2023 18:59:07 +0100
Subject: [PATCH 37/55] Java wrapper for SDK (#179)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

## Type of change

```
- [ ] Bug fix
- [x] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective

Added a Maven-based Java project that wraps native C library for the SDK
and exposed its commands through BitwardenClient class.

## Code changes

- Updated schemas.ts to generate Java classes for the API - difference
with current generators is that it creates multiple files
- Added BitWardenClient class as a wrapper for the native SDK library
- BitwardenLibrary inteface uses JNA to link to the native lib
- AutoCloseable inteface implemented to deal with freeing memory, client
can be used with try-with-resources or close() can be called explicitly
(finalize() method is deprecated in newer Java versions)

---------

Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
Co-authored-by: Oscar Hinton <Hinton@users.noreply.github.com>
---
 .github/workflows/build-java.yml              |  68 +++++
 .github/workflows/generate_schemas.yml        |   7 +
 .gitignore                                    |   1 +
 .vscode/tasks.json                            |  11 +
 languages/java/.gitignore                     |   3 +
 languages/java/README.md                      |  73 +++++
 languages/java/build.gradle                   |  90 +++++++
 .../java/gradle/wrapper/gradle-wrapper.jar    | Bin 0 -> 63721 bytes
 .../gradle/wrapper/gradle-wrapper.properties  |   7 +
 languages/java/gradlew                        | 249 ++++++++++++++++++
 languages/java/gradlew.bat                    |  92 +++++++
 languages/java/settings.gradle                |   5 +
 .../com/bitwarden/sdk/BitwardenClient.java    |  87 ++++++
 .../sdk/BitwardenClientException.java         |   8 +
 .../com/bitwarden/sdk/BitwardenLibrary.java   |  13 +
 .../com/bitwarden/sdk/BitwardenSettings.java  |  32 +++
 .../java/com/bitwarden/sdk/CommandRunner.java |  45 ++++
 .../com/bitwarden/sdk/ExampleProgram.java     |  42 +++
 .../com/bitwarden/sdk/ProjectsClient.java     | 109 ++++++++
 .../java/com/bitwarden/sdk/SecretsClient.java | 115 ++++++++
 .../com/bitwarden/sdk/ThrowingFunction.java   |   7 +
 support/scripts/schemas.ts                    |  25 +-
 22 files changed, 1088 insertions(+), 1 deletion(-)
 create mode 100644 .github/workflows/build-java.yml
 create mode 100644 languages/java/.gitignore
 create mode 100644 languages/java/README.md
 create mode 100644 languages/java/build.gradle
 create mode 100644 languages/java/gradle/wrapper/gradle-wrapper.jar
 create mode 100644 languages/java/gradle/wrapper/gradle-wrapper.properties
 create mode 100755 languages/java/gradlew
 create mode 100644 languages/java/gradlew.bat
 create mode 100644 languages/java/settings.gradle
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/BitwardenClient.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/BitwardenClientException.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/BitwardenLibrary.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/BitwardenSettings.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/CommandRunner.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/ExampleProgram.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/ProjectsClient.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/SecretsClient.java
 create mode 100644 languages/java/src/main/java/com/bitwarden/sdk/ThrowingFunction.java

diff --git a/.github/workflows/build-java.yml b/.github/workflows/build-java.yml
new file mode 100644
index 000000000..e500424dd
--- /dev/null
+++ b/.github/workflows/build-java.yml
@@ -0,0 +1,68 @@
+name: Build Java SDK
+
+on:
+  pull_request:
+    branches:
+      - master
+
+jobs:
+  generate_schemas:
+    uses: ./.github/workflows/generate_schemas.yml
+
+  build_rust:
+    uses: ./.github/workflows/build-rust-cross-platform.yml
+
+  build_java:
+    name: Build Java
+    runs-on: ubuntu-22.04
+    needs:
+      - generate_schemas
+      - build_rust
+
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+
+      - name: Download Java schemas artifact
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: sdk-schemas-java
+          path: languages/java/src/main/java/bit/sdk/schema/
+
+      - name: Setup Java
+        uses: actions/setup-java@0ab4596768b603586c0de567f2430c30f5b0d2b0 # v3.13.0
+        with:
+          distribution: temurin
+          java-version: 17
+
+      - name: Download x86_64-apple-darwin files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-apple-darwin
+          path: languages/java/src/main/resources/darwin-x64
+
+      - name: Download aarch64-apple-darwin files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-aarch64-apple-darwin
+          path: languages/java/src/main/resources/darwin-aarch64
+
+      - name: Download x86_64-unknown-linux-gnu files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-unknown-linux-gnu
+          path: languages/java/src/main/resources/ubuntu-x64
+
+      - name: Download x86_64-pc-windows-msvc files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-pc-windows-msvc
+          path: languages/java/src/main/resources/windows-x64
+
+      - name: Publish Maven
+        uses: gradle/gradle-build-action@b5126f31dbc19dd434c3269bf8c28c315e121da2 # v2.8.1
+        with:
+          arguments: publish
+          build-root-directory: languages/java
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/generate_schemas.yml b/.github/workflows/generate_schemas.yml
index 5f5742da0..675f53c1e 100644
--- a/.github/workflows/generate_schemas.yml
+++ b/.github/workflows/generate_schemas.yml
@@ -63,3 +63,10 @@ jobs:
           name: sdk-schemas-json
           path: ${{ github.workspace }}/support/schemas/*
           if-no-files-found: error
+
+      - name: Upload java schemas artifact
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        with:
+          name: sdk-schemas-java
+          path: ${{ github.workspace }}/languages/java/src/main/java/com/bitwarden/sdk/schema/*
+          if-no-files-found: error
diff --git a/.gitignore b/.gitignore
index 3f459493b..38b074349 100644
--- a/.gitignore
+++ b/.gitignore
@@ -49,3 +49,4 @@ crates/bitwarden-napi/src-ts/bitwarden_client/schemas.ts
 languages/csharp/Bitwarden.Sdk/schemas.cs
 languages/js_webassembly/bitwarden_client/schemas.ts
 languages/python/BitwardenClient/schemas.py
+languages/java/src/main/java/com/bitwarden/sdk/schema
diff --git a/.vscode/tasks.json b/.vscode/tasks.json
index fa97b8fc7..71400c06e 100644
--- a/.vscode/tasks.json
+++ b/.vscode/tasks.json
@@ -46,6 +46,17 @@
       "options": {
         "cwd": "${workspaceFolder}/languages/python"
       }
+    },
+    {
+      "label": "buildJava",
+      "type": "shell",
+      "command": "gradle",
+      "args": ["build"],
+      "dependsOrder": "sequence",
+      "dependsOn": ["rust: bitwarden-c build"],
+      "options": {
+        "cwd": "${workspaceFolder}/languages/java"
+      }
     }
   ]
 }
diff --git a/languages/java/.gitignore b/languages/java/.gitignore
new file mode 100644
index 000000000..b5b6c5697
--- /dev/null
+++ b/languages/java/.gitignore
@@ -0,0 +1,3 @@
+target
+.gradle
+src/main/resources
diff --git a/languages/java/README.md b/languages/java/README.md
new file mode 100644
index 000000000..06f1ffec3
--- /dev/null
+++ b/languages/java/README.md
@@ -0,0 +1,73 @@
+# Bitwarden Secrets Manager SDK
+
+Java bindings for interacting with the [Bitwarden Secrets Manager]. This is a beta release and might be missing some
+functionality.
+
+## Create access token
+
+Review the help documentation on [Access Tokens]
+
+## Usage code snippets
+
+### Create new Bitwarden client
+
+```java
+BitwardenSettings bitwardenSettings = new BitwardenSettings();
+bitwardenSettings.setApiUrl("https://api.bitwarden.com");
+bitwardenSettings.setIdentityUrl("https://identity.bitwarden.com");
+BitwardenClient bitwardenClient = new BitwardenClient(bitwardenSettings);
+bitwardenClient.accessTokenLogin("<access-token>");
+```
+
+### Create new project
+
+```java
+UUID organizationId = UUID.fromString("<organization-id>");
+var projectResponse = bitwardenClient.projects().create(organizationId, "TestProject");
+```
+
+### List all projects
+
+```java
+var projectsResponse = bitwardenClient.projects().list(organizationId);
+```
+
+### Update project
+
+```java
+UUID projectId = projectResponse.getID();
+projectResponse = bitwardenClient.projects().get(projectId);
+projectResponse = bitwardenClient.projects.update(projectId, organizationId, "TestProjectUpdated");
+```
+
+### Add new secret
+
+```java
+String key = "key";
+String value = "value";
+String note = "note";
+var secretResponse = bitwardenClient.secrets().create(key, value, note, organizationId, new UUID[]{projectId});
+UUID secretId = secretResponse.getID();
+```
+
+### Update secret
+
+```java
+bitwardenClient.secrets().update(secretId, key2, value2, note2, organizationId, new UUID[]{projectId});
+```
+
+### List secrets
+
+```java
+var secretIdentifiersResponse secretIdentifiersResponse = bitwardenClient.secrets().list(organizationId);
+```
+
+# Delete secret or project
+
+```java
+bitwardenClient.secrets().delete(new UUID[]{secretId});
+bitwardenClient.projects().delete(new UUID[]{projectId});
+```
+
+[Access Tokens]: https://bitwarden.com/help/access-tokens/
+[Bitwarden Secrets Manager]: https://bitwarden.com/products/secrets-manager/
\ No newline at end of file
diff --git a/languages/java/build.gradle b/languages/java/build.gradle
new file mode 100644
index 000000000..dc17386c4
--- /dev/null
+++ b/languages/java/build.gradle
@@ -0,0 +1,90 @@
+/*
+ * This file was generated by the Gradle 'init' task.
+ */
+
+plugins {
+    id 'java-library'
+    id 'maven-publish'
+}
+
+repositories {
+    mavenLocal()
+    maven {
+        url = uri('https://repo.maven.apache.org/maven2/')
+    }
+
+    dependencies {
+        api 'com.fasterxml.jackson.core:jackson-core:2.9.10'
+        api 'com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.9.10'
+        api 'net.java.dev.jna:jna-platform:5.12.1'
+    }
+
+    description = 'BitwardenSDK'
+    java.sourceCompatibility = JavaVersion.VERSION_1_8
+
+    publishing {
+        publications {
+            maven(MavenPublication) {
+                groupId = 'com.bitwarden'
+                artifactId = 'sdk'
+
+                // Determine the version from the git history.
+                //
+                // PRs: use the branch name.
+                // Master: Grab it from `crates/bitwarden/Cargo.toml`
+
+                def branchName = "git branch --show-current".execute().text.trim()
+
+                if (branchName == "master") {
+                    def content = ['grep', '-o', '^version = ".*"', '../../crates/bitwarden/Cargo.toml'].execute().text.trim()
+                    def match = ~/version = "(.*)"/
+                    def matcher = match.matcher(content)
+                    matcher.find()
+
+                    version = "${matcher.group(1)}-SNAPSHOT"
+                } else {
+                    // branchName-SNAPSHOT
+                    version = "${branchName.replaceAll('/', '-')}-SNAPSHOT"
+                }
+
+                afterEvaluate {
+                    from components.java
+                }
+            }
+        }
+        repositories {
+            maven {
+                name = "GitHubPackages"
+                url = "https://maven.pkg.github.com/bitwarden/sdk"
+                credentials {
+                    username = System.getenv("GITHUB_ACTOR")
+                    password = System.getenv("GITHUB_TOKEN")
+                }
+            }
+        }
+    }
+}
+
+tasks.withType(JavaCompile) {
+    options.encoding = 'UTF-8'
+}
+
+tasks.withType(Javadoc) {
+    options.encoding = 'UTF-8'
+}
+
+//  Gradle build requires GitHub workflow to copy native library to resources
+//  Uncomment copyNativeLib and jar tasks to use the local build (modify architecture if needed)
+//tasks.register('copyNativeLib', Copy) {
+//    delete 'src/main/resources/darwin-aarch64'
+//    from '../../target/debug'
+//    include '*libbitwarden_c*.dylib'
+//    include '*libbitwarden_c*.so'
+//    include '*bitwarden_c*.dll'
+//    into 'src/main/resources/darwin-aarch64'
+//}
+//
+//jar {
+//    dependsOn tasks.named("copyNativeLib").get()
+//    from 'src/main/resources'
+//}
diff --git a/languages/java/gradle/wrapper/gradle-wrapper.jar b/languages/java/gradle/wrapper/gradle-wrapper.jar
new file mode 100644
index 0000000000000000000000000000000000000000..7f93135c49b765f8051ef9d0a6055ff8e46073d8
GIT binary patch
literal 63721
zcmb5Wb9gP!wgnp7wrv|bwr$&XvSZt}Z6`anZSUAlc9NHKf9JdJ;NJVr`=eI(_pMp0
zy1VAAG3FfAOI`{X1O)&90s;U4K;XLp008~hCjbEC_fbYfS%6kTR+JtXK>nW$ZR+`W
ze|#J8f4A@M|F5BpfUJb5h>|j$jOe}0<b<>oE!`Zf6fM>C<V>R?!y@zU(cL8NsKk`a
z6tx5mAk<liamrzlCS@BsX~|&`RS-HU8cGq`t>djD;J=LcJ;;Aw8p!v#ouk>mUDZF@
zK>yvw%+bKu+T{N<MgC_~H%9||dlSch>k@LZ;zkYy0HBKw06_IWcM<!q!PNfx0T}}e
zTRJ0a11G0!b#QO&CEQP4n)k!|A)#qSG|8;N24)yY|3OH|n9Ef#Qn-}F#h?W3i%43c
z)2szbS#t|1^laxjK<9Y@_Ix3>Ho*0HKpTsEFZhn<oTMi&w}vW*Ra?K_!_)1rk7w^0
zcz%y-9{{$<M=0I0eaFor!J){*JHz%a;XWx9WpR5@-ICoSDBGt4RNpQ|Al>5qCHH9j
z)|XpN&{`!0a>Vl+PmdQc)Yg4A(AG-z!+@Q#eHr&g<9D?7E)_aEB?s_rx>UE9TUq|?
z;(ggJt>9l?C|zoO@5)tu?<y?2z)*Z;1quxvz;2Wr$0J)*8MlO}_`_m{D`H0p@e^(M
z$iAC}1xU~1A4L(ddtDLl_Pr6{Hx8(|zsON}%665gG;b|X+4q@!y;YHT4o3!{_{jPB
z>EV0x_7T17q4fF-q3{yZ^ipUbKcRZ4Qftd!xO(#UGhb2y>?*@{xq%`(-`2T^vc=#<
zx!+@4pRdk&*1ht2OWk^Z5IAQ0YTAXLkL{(D*$gENaD)7A%^XXrCchN&<gtMWk{spc
zdf)IQ%Esm7d(=p(gnM#+I?kJb&Lb5@<u)2i>z2x+*>o2FwPFjWpeaL=!tzv#JOW#(
z$B)Nel<+$bkH1KZv3&-}=SiG~w2sbDbAWarg%5>YbC|}*d9hBjBkR(@tyM0T)FO$#
zPtRXukGPnOd)~z=?avu+4Co@wF}1T)-uh5jI<1$HLtyDrVak{gw`mcH@Q-@wg{v^c
zRzu}hMKFHV<8w}o*yg6p@Sq%=gkd~;`_VGTS?L@yVu`xuGy+dH6YOwcP6ZE`_0rK%
zAx5!FjDuss`FQ3eF|mhrWkjux(Pny^k$u_)dyCSEbAsecHsq#8B3n3kDU(zW5yE|(
zgc>sFQywFj5}U*qtF9Y(bi*;>B7WJykcAXF86@)z|0-Vm<fczTCmKxlM?(K(U1MI{
zH7CsNY39I?b2iW&6QmO%p`j~N;r{IyO6k!4?8&O+JtB37&qWiLadcH|I)VEU4X_&G
z2Ff&+i<CegULNGA;Rqo82kZIenL`+2Sql2b=gdn7-sCd|*$dW%v3%JHM_jz-$G*h(
z2Zhp66mL0wC-)~7Dg~G4tT5AYOjgU1YJq|3QV~+nZV4#kZI8ONh{_OOoJD(-6)TQN
zW~`V4m}~|uOv@KO-ydJ-Zh&N$+FY<g0*jjHHbxmR>@jt!EPoLA6>r)?@DIobIZ5Sx
zsc@OC{b|3%vaMbyeM|O^UxEYlEMHK4r)V-{r)_yz`w1*xV0|lh-LQOP`OP`Pk1aW(
z8DSlG<ofVg|3LaJ-=P0V))`RIkE+lq+qJ{`jPVl(|5Va1SGyg3MTkZ3a5}sBX&c*A
ztSA~lX)HnZl`w$}6pc6PwMwbP#y;;c$+yzscOU^s%U^DuE7fk%u_oE_r4U9DlvWzf
zB&zu$+)hR%%$d2sDve|n{X>N>Ts|n*xj+%If~+E_B<wY#42?CSY)Lp9f}%hd8G2BV
zYz5{>xK)~5T#w6Q1WEKt{!Xtbd`J;`2a>8boRo;7u2M&iOop4qcy<)z023=oghSFV
zST;?S;ye+dRQe>ygiJ6HCv4;~3DHtJ({fWeE~$H@mKn@Oh6Z(_sO>01JwH5oA4nvK
zr5<Xf@p4l8GDDqq9Ca=)oYjzaL8(efxR9(LX_X`~m?l6@BVW;!8T+Uyif6_AH70S3
z1&@6Mj!ceBBfVQ`!9u3Zf{wVpf0C(t(aC=1R{{IVv+00AMAS(+n-xbkL&B4F#nFqZ
ztPDBX@p?jtnq^cL=+U%~e$BEw+yxI)sZyO4JhtoSg*p=}x1?BGLbn0LMY>Sr^g+LC
zLt(i&ecdmqsIJGNOSUyUpglvhhrY8lGkzO=0USEKNL%8zHshS>Qziu|`eyWP^5xL4
zRP122_dCJl>hZc~?58w~><cp^hJ_ZV5fj>`P_s18VoU|7(|Eit0-lZRgLTZKNq5{k
zE?V=`7=R&ro(X%LTS*f+#H-mGo_j3dm@F_krAYegDLk6UV{`UKE;{<k$0*s;%bL~F
z;<2lwblZB7HV^gmjYfnL$(oz3yiwuVBNdItsJS*edKT4)myLcW$QJUM;r94>YSsn$
z(yz{v1@p|p!0>g04!eRSrSVb>MQYPr8_MA|MpoGzqyd*$@4j|)cD_%^Hrd>SorF>@
zBX+V<@vEB5PRLGR(uP9&U&5=(HVc?6B58NJT_igiAH*q~Wb`dDZpJSKfy5#Aag4IX
zj~uv74EQ_Q_1qaXWI!7Vf@ZrdUhZFE;L&P_Xr8l@GMkhc#=plV0+g(ki>+7fO%?Jb
zl+b<?C%WXJNEX{LzvH<usRTrr8A!~O>Ty7q{w^pTb{>(Xf2q1BVdq?#f=!geqssXp
z4pMu*q;iiHmA*IjOj4`4S&|8@gSw*^{|PT}Aw~}ZXU`6=vZ<Hcy3%$%v9V&0Kee&a
zKV!#7+J;9|6x<uodo*>B=GGeMm}V6W46|pU&58~P+?LUs%n@J}CSrICkeng6YJ^M?
zS(W?K4nOtoBe4tvBXs@@`i<!ZAMR~@rqD5uMjjRS2DHf>?4G$S2W&;$z8VBSM;Mn9
zxcaEiQ9=v<fz_-ouh|d?S}QqE(0qsl4bj8_Oo|Bt%%h=cX$JXg7?LJ&<ET0ro2;%t
z1-1gS%DOru2m?YDj1D3wKn1f3YvfFowv0`#z<)Q7Eu0mY1aD;Bp(<0D*dvtLJmX0i
zAI;vT=wP6!8*)iKc4+k{>S|bIJ>*tf9AH~m&U%2+Dim<)E=<ebn)#5-YItTnbgMqQ
zt=Y>}KORp+cZ^!@wI`h1NVBXu{@%hB2Cq(dXx_aQ9x3mr*fwL5!ZryQqi|KFJuzvP
zK1)nrKZ7U+B{1ZmJub?4)Ln^J6k!i0t~VO#=q1{?T)%OV?MN}k5M{}vjyZu#M0_*u
z8jwZKJ#Df~1jcLXZL7bnCEhB6IzQZ-GcoQJ!16I*39iazoVGugcKA{lhiHg4Ta2fD
zk1Utyc<n(<e1-Rj>5%QzZ$s3;p0N+N8VX{sd!~l*Ta3|t>lhI&G`sr6L~G5Lul`>m
z{!^INm?J|&7X=;{XveF!(b*=?9NAp4y&r&N3(GKcW4rS(Ejk|Lzs1PrxPI_owB-`H
zg3(Rruh^&)`TKA6+_!n>RdI6pw>Vt1_j&+bKIaMTYLiqhZ#y_=J8`TK{Jd<7l9&sY
z^^`hmi7^14s16B6)1O;vJWOF$=$B5ONW;;2&|pUvJlmeUS&F;DbSHCrEb0QBDR|my
zIs+pE0Y^`q<Mo02TIpLU)qh7WQ?@rM6U&!Z;VW(ggXdTSsIrFphI+dpATgu%)3IHs
z@+Xj*BwLyZ=r@R=;kqR6lCAdnF<CWp%t6J7J#JoVQ!Q2LM-rk#T_J^oRW%%3=2#t<
zlx+Py@hbE`=>JTyH-_mP=)Y+u^LHcuZhsM3+P||?+W#V!_6E-8boP#R-*na4!o-Q1
zVthtYhK{mDhF(&7Okzo9dTi03X(AE{8cH$JIg%MEQc<ZbLh@dc$w|qk{r@1?l>a`S
zy@8{Fjft~~BdzWC(di#X{ny;!yYGK9b@=b|zcKZ{vv4D8i+`ilOPl;PJl{!&5-0!w
z<G-5=7&<vS8W=eX+1c0_*cwY)*qR90*}8t;u!-Ye>^fOl#|}vVg%=n)@_e1BrP)`A
zKPgs`O0EO}Y2KWLuo`iGaKu1k#YR6BMySxQf2V++Wo{6EH<oD|H%>mK>A~Q5o73yM
z-RbxC7Qdh0Cz!nG+7BRZE>~FLI-?&W_rJUl-8FDIaXoNBL)@1hwKa^wOr1($*5h~T
zF;%f^%<$p8Y_yu(JEg=c_O!aZ#)Gjh$n(hfJAp$C2he555W5zdrBqjFmo|VY+el;o
z=*D_w|GXG|p0**hQ7~9-n|y5k%B}TAF0iarDM!q-jYbR^us(>&y;n^2l0C%@2B}KM
zyeRT9)oMt97Agvc4sEKUEy%M<cvw&A<E0smes0HD4KT3M{WaOQQ;89w>pXr2vz*lb
zh*L}}iG>-pqDRw7ud{=FvTD?}<cu3Tk)KD+t)3BG<`{7$)a-(xssJsd76$3kXZ|K+
zux7WJ7n@%B)`GvtXt2vB^wx3Cq%hbMjsz#YIUp6%4@(wA$XOe1;039$$Hc7QvIpbU
zLS8D9A2JK!>xjD)w{`KzjNom-$jS^;iw0+7n<H%EYFc(Oy%QoCT$qyKODp6T3?dHk
z!A)db&e@dFRGDaEZ1f6Uhkq#S5W3t3q@<p|gafXRD$(FZPe|Di#nme60l3B9fVDQI
z7v|md<AFmDM_>XSnt1R@G|VqoRh<xeTuMLt3A;kkH;cO*#r^ytgz}n?7coM19}rK`
z);^|be>E%12<OWj>nm+PH?9`(4rM0kfrZzIK9JU=^$YNyLvAIoxl#Q)xxDz!^0@zZ
zSCs$nfcxK_vRYM34O<1}Q<iD$7sC+}q<B7R-C|JDpp;azgo0#wbVy`Lz$zBEbO-~2
z>HZ|hp4`ioX3x8(UV(FU$J@o%tw3t4k1QPmlEpZa2IujG&(roX_q*%e`Hq|);0;@k
z0z=fZiFckp#JzW0p+2A+D$PC~IsakhJJkG(c;CqAgFfU0Z`u$PzG~-9I1oPHrC<wq
zp!=`znU^{;qwI4(IwPTBbeO&*i}Y=rKz<}0qd2sSuD;n+Mp~oxu2u^U_@*f$2SH4&
zl?ba0Bgc;6q%NBUleYBwY{7zE^Vfp-*+^4E--SmUnP*kpPGgQ7i#F(|?Htpi_BGIr
zb@Gxu5=<~CQJoX};=}ZoAqI?aQ`aURT7|_bL85cc5*32Ec(l3BkkWJ!;u(fz)0rjQ
zM$>w&)@s^Dc~^)#<wKTL<XKhL5mN0<#J&V|X6YXFoTAHh1v3e?`1qzOHJxAfrJ&Ia
z>HPW0Ra}J^=|h7Fs*<8|b13ZzG6MP*Q1dkoZ6&A^!}|hbjM{2HpqlSXv_UUg1U4gn
z3Q)2VjU^ti1myod<e*tXJ``;<uRxWgHj9DL9reuUk;3Yai3$ZVxc$Lik!QkFkY_p-
zQ0zfew$syu%`J??OaA$e3yhROoyi??MOs)*6Y|FoRjo5YG8>v+tjhSZp%D978m~p&
z43uZUrraHs80Mq&vcetqfQpQP?m!CFj)44t8Z}k`E798wxg&~aCm+DBoI+nKq}&j^
zlPY3W$)K;KtEajks1`G?-@me7C>{PiiBu+41#yU_c(dITaqE?IQ(DBu+c^Ux!>pCj
zLC|HJGU*v+!it1(;3e`6igkH(VA)-S+k(*yqxM<DMa${DuB@U~n2TvsN>gUah3$@C
zz`7hEM47xr>j8^g`%*f=6S5n>z%Bt_Fg{Tvmr+MIsCx=0gsu_sF`q2hlkEmisz#Fy
zj_0;zUWr;Gz}$BS%Y`meb(=$d%@Crs(<S5im8rZJ+hXaeF4?)$Bxlh$wotZoqo;9C
zoV$lbzz-{=kDm#H-UEvsDLF6Q650PW_m^)`Fnl2k7$|cT<4p%DP+QQ%Pm<dng5Tlm
zJY!}F9=K|jqEaN6rLUGWH!wZ0U(TSP7a_ulN!0{(D76G_DCCMYc~&1UiwGoGVvr{o
zKJ*3=vWF1EmCF?ngO(A#QHO73AHw39x4#7x|2*uRJP=H^WAL{ITtOufKQPefaR-dw
z;G$VL`0sIgw-zB%E@}zvSQFs9-~l@jy~i@_j=aHRkdEWSDI;LT_XD0ffYvUye7<si
z2Fb>OoJ|}m#<7=-A~PQbyN$x%2iXP2@e*nO0b7AwfH8cCUa*Wfu@b)D_>I*%uE4O3
z(lfnB`-Xf<Eah_TH0`p#iJ%bwIruYbtv4=i&#2ev1%ADQ5<nqfk9TiY>*L<pJwX*6
z6rk6>fC)E}e?%X2kK7DItK6Tf<+M^mX0Ijf_!IP>7c8IZX%8_#0060P{QMuV^B<Nc
z0Y@_z8xvb+5qBdKduI!~zgMP`<EJEn8Bv1e-k1xUTQqH`&-$;LRKPb?p@^XRcl%SW
z7A(?4O_9bX%W97*cKg9^@&`$1Rhl479TL49uifNE-$%}|e=@U3QRq(u*`T|i!vY;=
zLFYU{oP~b!`V{F3i<~?v4T-GsVj-c>9i<^E`_Qf0pv9(P%_<ZnXV3#<!Itln<wgcO
z_ag@&>s8D`qvDE9LK9u-jB}J2S`(mCO&XHTS04Z5Ez*vl^T%!^$<HtTbQGA?-M`Fa
zN~3r+{;f4I^wTt)Y$;V0A?b}t39$3`u-!SmQRz2~BgR0Y22AtoiqyTce$gRQ#;)xn
z(H=h1rzHb3B0D>~EH8M-UdwhegL>3IQ*)(MtuH2Xt1p!fS4o~*rR?WLxlA!sjc2(O
znjJn~wQ!Fp9s2e^IWP1C<4%sFF}T4omr}7+4asciyo3DntTgWIzhQpQirM$9{EbQd
z3jz9vS@{<x6RjX4HShz$XJL7Gv9^MIhKL19l!vXDKtut8g2a8N<h+4&Yt&WgZG-0p
z_>aOqTQHI|l#aUV@2Q^Wko4T0T04Me4!2nsdrA8QY1%fnAYb~d2GDz@lAtfcHq(P7
zaMBAGo}+NcE-K*@9y;Vt3*(aCaMKXBB*BJcD_Qnx<UAAx@pFpd`WS-_yK7SJSHbCM
zJ+sycj{FkEU&9Ysa-wV2!;2(ImdDdIZgJ}`9j;jTiYPXEDq*CO`T4-t*|XS#9~HNC
zu96BV=Ry2qi)VUChoa}C_CB44h;*&oc0EWPU$hYH8{zPphs-sTrb;$I`Tk25Ef6wI
z)-7g@DMK6f){DP<6&$RnaJ4vp86eii6XT#?kKzCG^Hnm1S^@(5e!g%30A&B?^OgGt
zSI<_}azj?Z*h(zPW=Yo#YqH4KJ|wab#BOfNtKQV48`7O!MvH)0FqQ@{NoPp6N4$3X
z1K#yg(se^X=dYqMag+$(^NRillP<Mw#+WO8vuGkT>pt75r?GeAQ}*|>pYJE=uZb73
zC>sv)18)q#EGrTG6io*}JLuB_jP3AU1Uiu$D7r|2<a!(dEKJOdD7OJ~`mJ#&3lVWo
z2(|vK+K6Dp{tAw<@IDkF-OU~{Fey=i5LyAY`xe{ZP)J-QHDxPH%5%%ni&>_zlIGb9
zjhst#ni)Y`$)!fc#reM*$~iaYoz~_Cy7J3ZTiPm)E?%`fbk`3Tu-F#`{i!l5pNEn5
zO-Tw-=TojYhzT{J=?SZj=Z8#|eoF>434b-DXiU<dJw*iNTYgDXXO3%H4$mrD2+2if
zR#sZlF&7^<X^ey&*l`pd(b870Yl;d^q~$DJ4j>si<i1L1H7=S6VPERSA>gnxXNaR3
zm_}4iWU$gt2Mw5NvZ5(Vp<B5%4ml4%u2XX{cb%`vs{9^lq|NV~2Us}ADnGUgJZqX-
zvwS;i%5bY0rx<UeBWyPSiTAfxZ8Te<Y^2=Q6Uyjb@`B9@uPO^RqSGRQ8L=vx?~S*{
zt!O7dY09tk+Q(K@^7dsqbRFj3D?R)D=uSPhZfFr)&^PL7B^!(GLR_d(Kw!yNd&IP$
znV)B>F`?X*f2UZDs1TEa1oZCif?Jdgr{>O~7}-$|BZ7I(IKW`{f;@|IZFX*R8&iT=
zoWstN8&R;}@2Ka%d3vrLtR|O??ben;k8QbS-WB0VgiCz;<$pBmIZdN!aalyCS<xwK
zC7(yN8jDThv(|6XTqj5k)nXJHl?i2Q&>Em)crpS9dcD^Y@XT1a3+zpi-`D}e#HV<}
z$Y(G&o~PvL-xSVD5D?JqF3?B9rxGWeb=oEGJ3vRp5xfBPlngh1O$yI95EL+T8{GC@
z98i1H9KhZGFl|;`)_=QpM6H?eDPpw~^(aFQWwyXZ8_EEE4#@QeT_URray*mEOGsGc
z6|sdXtq!hVZo=d#+9^@lm&L5|q&-GDCyUx#YQiccq;spOBe3V+VKdjJA=IL=Zn%P}
zNk=_8u}VhzFf{UYZV0`lUwcD&)9AFx0@Fc6LD9A6Rd1=ga>Mi0)_QxM2ddCVRmZ0d
z+J=uXc(?5JLX3=)e)Jm$HS2yF`44IKhwRnm2*669_J=<i2xqPYPe_t`z^~U4bI&mS
zeK8h(VJQzW*&0F;1J5rkP14OFRVV|<ULvN%7sx(;Rti9xZLhau-~!P2{WfUAn2q*`
zd|=*_Vb!;8;KGMfl41$VF7fE>2LlwuF5$1tAo@ROSU@-y+;Foy2IEl2^V1N;fk~YR
z?&EP8#t&m0B=?aJeuz~lH<ij*LuuHi5!4Rd8ZU2wg>jAzRBX>&x=A;gIvb>MD{XEV
zV%l-+9N-)i;YH%nKP?>f`=?#`>B(`*t`aiPLoQM(a6(qs4p5KFjDBN?8JGrf3z8>=
zi7sD)c)Nm~x{e<^jy4nTx${P~cwz_*a>%0_;ULou<DyN^`2@H+<{3q_pZ|fCRGf^h
zvtT4FGJj|vS-l9;nX`=;6AMdLY77qfRlAH(xzJbez);$Wc|j0JS86%Riccga7l&Q^
z7DDh5jhBvJ0eBnJZoBnclA)#bn$D1A`JT3aY&tu3wlfU}!It+X%B_(|pGP1-6at%6
z9G;Q{hFp?BH`-HYKrn-(5-7%bIR8)}bl%^bc}8y}>3kHCAD7EYkw@l$8TN#LO9jC(
z1B<i{*|v`>eFW`k+bu5e8Ns^a8dPcjEVHM;r6UX+cN=Uy7HU)j-myRU0wHd$<r<rS
z?gfFH3ULExuxO;h09`>A1fNI~`4;I~`zC)3ul#8#^rXVSO*m}Ag>c%_;nj=Nv$rCZ
z*~L@C@OZg%Q^m)lc-kcX&a*a5`y&DaRxh6O*dfhLfF+fU5wKs(1v*!TkZidw*)YBP
za@r`3+^IHRFeO%!ai%rxy;R;;V^Fr=OJlpBX;(b*3+SIw<j-Y9ZSgmH9DO&6{}V;z
z4IG_J97!1eDmMg22|)ETAc%aKH#bAM9(9CS1?uKgKtu$Phh55R&4VPI?P<FMz>}7=
zIq$*Thr(Zft-RlY)D3e8V;BmD&HOfX+E$H#Y@B3?UL5L~_fA-@*IB-!gItK7PIgG9
zgWuGZK_nuZjHVT_Fv(XxtU%)58;W39vzTI2n&)&4Dmq7&JX6G>XFaAR{7_3QB6zsT
z?$L8c*WdN~nZGiscY%5KljQARN;`w$gho=p006z;n(qIQ*Zu<``TMO3n0{ARL@gYh
zoRwS*|Niw~cR!?hE{m*y@F`1)vx-JRfqET=dJ5_(076st(=lFfjtKHoYg`k3oNmo_
zNbQEw8&sO5jAYmkD|Zaz_yUb0rC})U<yhPFxA*<jTKd}k{c~z90FpaZKIj}7mLZZR
zVlskQe<0xI9>!rCHOl}JhbYIDLzLvrZVw0~JO`d*6f;X&?V=#T@ND*cv^I;`sFeq4
z##H5;gpZTb^0Hz@3C*~u0AqqNZ-r%rN3KD~%Gw`0XsIq$(^MEb<~H(2*5G^<2(*aI
z%7}WB+TRlMIrEK<z8Y-G_4JTi0dxbex2YwD(&eIklPGFZaWLB&GD=ZnUD^~B#;k{<
zjP^KiL#JbSns`pE$?*&<=bFPwu*}^i6&=HjW3#5UHflvIkmn+HmO8$)V)qRxk*3l@
zOO9ib60_+Zpll9hiP2eYZBRUKjvXd)MdN}}smA0!UK^qy;<^pk_jf6elpJ`B)>#s0
z93xn*Ohb=kWFc)BNHG4I(~RPn-R8#0lqyBBz5OM6o5|>x9LK@%HaM}}Y5goCQRt2C
z{j*2TtT4ne!Z}vh89mjwiSXG=%DURar~=kGNNaO_+Nkb+tRi~Rkf!7a$*QlavziD(
z83s4GmQ^Wf*0Bd04f#0H<rzc{Zw2|AZqo(GiNDwicoG{misd0-Mku7fEh(b%bV@{&
zro_rCgoAMr<vEX067x&DjEdA&lB?SNTC@l2#eL4j&Fx~(S<U2Qj$}%g_p>X@ua_d8
z23~z*53ePD6@xwZ(vdl0DLc=>cPIOPOdca&MyR^jhhKrdQO?_jJh`xV3GKz&2lvP8
zEOwW6L*ufvK;TN{=S&R@pzV^U=Q<n5LbrjaQ=f5@7_~`mTQ9mj1lTX|puGXCkhc-%
zDqQ!ov(P;Fh`r;zNT#tw6ShQ_Wb=wsd)-t85jQ<PT~cSb(KG~zb^;j9%nmc1=u1J=
znM6vCx;p+afnlGOK^Z(FtJX%b2Laq9%EC)v3-}QHS=dL;;3Z|eP=v~{8Igl4x<in+
zs+~^lyBk3)zB{QIT=g<UC4Dvc@uY$A(I$Qm(r%M)rb;eRGv~cUyVvsbhIKxiBZOdE
z&4GjvPs^czPS?~yx=kmokn<?z^Iu|gjSZTs;5%U;1OKb!`@bg*{}`ix5nQLgVzWB=
zOBPuGVWiiKw%d`msf^&W1_DTJ7XVcxDttFKPMJj@Q@p^`V#d*Pi+Mxn7SS91D^8en
zZty#+i)vgc%xXIPl}6Ud+}N0#zLvf5`S$Ta{!?R<CC_N_2bR$mN%T1dmbl^kFBBTw
z1ujzzCe&Kp;{r{`peY9BJL9Pe30)VP%6+b7BRXtX7mFD)e?pfD#2CL!17n(PpRUO`
z?Yjz)8OniiQ=hFAxt9*96eH5w{w=1|n0X<i`5k*Km^JQNZ!JF0bM74Zvj&6~ZAXtn
zgG9^ASe$T762j2Jcgl0`Y(Mo@H6OZ<lK6bTs)vl;gOmx8Db2@XVoT@)D;P*RE2{Pu
zkq|sNVFWHy%(o0jW-8h@<pE7_$58cKk*4~kS1*H4Ot~s|!`6&RJxm(c3R*s0mV_8;
zn2FG~1NRH*S@8AcCakja5ctO6KJ`a7lcApLvK|cc`*cNA(|7?@ShdEJko*Iz0dJa*
za(Cjc=YoMHSiGhp!^zXOoFUjrW@)@~Kuoe2$0wLZF+12d?*qAHgQiPS_>Nk^Ec}5H
z+2~JvEVA{`uMAr)?Kf|aW>33`)UL@bnfIUQc~L;TsTQ6>r-<^rB8uoNOJ>HWgqMI8
zSW}pZmp_;z_2O5_RD|fGyTxaxk53Hg_3Khc<8AUzV|ZeK{fp|Ne933=1&_^Dbv5^u
zB9n=*)k*tjHDRJ@$bp9mrh}qFn*s}npMl5BMDC%Hs0M0g-hW~P*3CNG06G!MOPEQ_
zi}Qs-6M8aMt;sL$vlmVBR^+Ry<64jrm1EI1%#j?c?4b*7>)a{aDw#TfTYKq+SjEFA
z(aJ&z_0?0JB83D-i3Vh+o|XV4UP+YJ$9Boid2^M2en@APw&wx7vU~t$r2V`F|7Qfo
z>WKgI@eNBZ-+Og<{u2ZiG%>YvH2L3fNpV9J;WLJoBZda)01Rn;o@){01{7E#ke(7U
zHK>S#qZ(N=aoae*4X!0A{)nu0R_sKpi1{)u>GVjC+b5Jyl6#AoQ-1_3UDovNSo`T>
z?c-@7XX*2GMy?k?{g)7?Sv;SJkmxYPJPs!&QqB12ejq`Lee^-cDveVWL^CTUldb(G
zjDGe(O4P=S{4fF=#~oAu>LG>wrU^z<Zw*_46AZG)LPZf(N{7;dl4f;=ChNJ&((0HR
z>_?3yt24FOx>}{^lCGh8?vtvY$^hbZ)9I0E3r3NOlb9I?F-Yc=r$*~l`4N^xzlV~N
zl~#oc>U)Yjl0BxV>O*Kr@lKT{Z09OXt2GlvE38nfs+DD7exl|&vT;)>VFXJVZp9Np
zDK}aO;R3~ag$X*|hRVY3OPax|PG`@_ESc8E!mHRByJbZQR<iP3ONA)u3T^sr$hJu)
z!;4BKQQ3Ke*v_=`LpX`s9^P!rY`x6m`OB{xdu)~9l-PrYu_eSHL`$3Jn77r}HXM<V
zt(63|ZNf?J_G2$D@(>S38V2F__7MW~sgh!a>98Q2%lUNFO=^x<M$kfz5r<ep4<gy2
zqj#v58_1DTD9KgRF!$T?T|hpgQFqS{y9=z}$c192Is9kheW211%6d$Lv95L2Dj6<Y
zb#^>U52|?D=IK#QjwBky-C>zO<IBf}7iok}7&M@d#5zo!yo-N`Xt*z8pz#W=a}edt
zZG-pIp+-`FRdYN5kGiz~5pI5v{UL@+ll7;0f%sl_#Rz#s#c=hclIZch%vfdNL6kTn
zr*OojJocIA;LUP<Ni!nCp8^IKsKOF;%d~A3Zec1Z)onv06oLt;&zK*gg)?kMAG~wt
z$?%9ZDd#C*i@r2pEnc3pbg`;ZSgHhk8hnJ=MZQDKa})LR^M<VYo_<&7>WlsiiM&1n
z;!&1((Xn1$9K}xabq~222gYvx3hnZPg}VMF_GV~5ocE=-v>V=T&RsLBo&`)DOyIj*
zLV{h)JU_y*7SdRtDajP_Y+rBkNN*1_TXiKwHH2&p51d(#zv~s#HwbNy?<+(=9WBvo
zw2hkk2Dj%kTFhY+$T+W-b7@qD!bkfN#Z2ng@Pd=i3-i?xYfs5Z*1hO?kd7Sp^9`;Y
zM2jeGg<-nJD1er@Pc_cSY7wo5dzQX44=%6rn}P_SRbpzsA{6B+!$3B0#;}qwO37G^
zL(V_5JK`XT?OH<!?|M@&0-Z{-IE8Y%j&9{KOrqhAFsdE>Vk|{_$vQ|oNEpab*BO4F
zUTNQ7RUhnRsU`TK#~`)$icsvKh~(pl=3p6m98@k3P#~upd=k*u20SNcb{l^<aLnRI
zIQFl^{&&$2$-fmuufLTX(f?#w5i)Qxk+5|#v30U=ws193a(1+^HT!10f0I0&?f$MZ
z7Axt<A%ClkjrclcTIHY>1rUa)>qO997)pYRWMncC8A&&MHlbW?7i^7M`+B$hH~Y|J
zd>FYOGQ;j>Zc2e7R{KK7)0>>nn_jYJy&o@sK!4G>-rLKM8Hv)f;hi1D2fAc$+six2
zyVZ@wZ6x|fJ!4KrpCJY=!Mq0;)X)OoS~{<zp2fNOj3=!d#J-DZOZZGDsQytEg`t+g
z3s*%5CrGI0LC#hm)1QTr3)Q~mP=>Lkh6u8J<B0%4?J^Iw+=WHCe(yhjohQDag#Q-y
zuxp6&sgx+NVPxq!=P=H(FOhwRd2_*m=|$Mcn3vF&f(Fz>`eK%u0WtKh6B>GW_)PVc
zl}-k`p09qwGtZ@VbYJC!>29V?Dr>>vk?)o(x?!z*9DJ||9qG-&G~#kXxbw{KKYy}J
zQKa-dPt<oy^t}rwUk4E{A=4M9sOFfr7Ds9yI!q0r@t|+qU_|sPwWo~)0N*{XeSJ2j
zt||$@K&w$2s%KuI4R}Av!VN4FKqSw8V4~H!Grt8-#>~M~E}V?PhW0R26xdA%<ogsP
zN|DDB6`HT`^}UE=1A}Thaak~Emv(0YF@z$Cl+aE_pyty?6u<ojo%}e0uS=bI+~z8+
zN@qxB>1T*%ra6SguGu50YHngOTIv)@N|YttEXo#OZfgtP7;H?EeZZxo<}3YlYxtBq
znJ!W<Tk7rKF4_TgJoZCW5Z^!*fTJ-Zk)y;)2fnZbAE(sksf_kg&-X&Eg#6@NPIv)e
zPk4oG=#<n+u~!?2Waj@D(b4RIBp>FR^tmGf0Py}N?kZ(#=VtpC@%xJkDmfcCoBTxq
zr_|5gP?u1@vJZbxPZ|G0AW4=tpb84gM2DpJU||(b8kMOV1S3|(yuwZJ&rIiFW(U;5
zUtAW`O6F6Zy+eZ1EDuP~AAHlSY-+A_eI5Gx)%*uro5tljy}kCZU*_d7)oJ>oQSZ3*
zneTn`{gnNC&uJd)0aMBzAg021?YJ~b(fmkwZAd696a=0NzBAqBN54KuNDwa*no(^O
z6p05bioXUR^uXjpTol*ppHp%1v9e)vkoUAUJyBx3lw0UO39b0?^{}yb!$yca(@DUn
zCquRF?t=Zb9`Ed3AI6|L{eX~ijVH`VzSMheKoP7LSSf4g>md>`yi!TkoG5P>Ofp+n
z(v~rW+(5L96L{vBb<M(xcH!jFDY91P;>^g51B=(o)?%%xhvT*A5btOpw(TKh^g^4c
zw>0%X!_0`{iN%RbVk+A^f{w-4-SSf*fu@FhruNL##F~sF<TNlh3Zu<wDObc>24O~u
zyYF<3el2b$$wZ_|uW#@Ak+VAGk#e|kS8nL1g>2B-SNMjMp^8;-FfeofY2fphFHO!{
z*!o4oTb{4e;S<|JEs<1_hPsmAlVNk?_5-Fp5KKU&d#FiNW~Y+pVFk@Cua1I{T+1|+
zHx6rFMor)7L)krbilqsWwy@T+g3DiH5MyVf8Wy}XbE<yUx>aoFIDr~y;@r&I>FMW{
z?Q+(IgyebZ)-i4jNoXQhq4Muy9Fv+OxU;9_Jmn+<`mEC#%2Q_2bpcgzcinygNI!&^
z=V$)o2&Yz04~+&pPWWn`rrWxJ&}8k<h1nlJpEW7DYjzCm^(#wnSe&>hR)6B(--!9Q
zubo}h+1T)>a@c)H^i``@<^j?|r4*{<Pxu7~B&!$dLmL9Ys=1M8gJeDpJrYz<2V9nr
zTvmS4mM<@Hxmfnk<1RI6FD*TtRhU+s9@>;tQf78(xn0g39IoZw0(CwY1f<%F>kEaJ
zp9u|IeMY5mRdAlw*+gSN^5$Q)ShM<~E=(c8QM+T-Qk)FyKz#<J1rUcxa8T8CP^@o-
z9LUqXz6y%L)dYBeo?hHD`m4vf;Ko!GhH#gWIg{IB<GEyusoLX^qjW_iBFR#|P|H$t
z1PVdv4xB@M4hvXb%aZB@j?)`0DTujf<&yn?+Ww^h>Sw0EJ*edYcuOtO#~Cx^(M7w5
z3)rl#L)rF|(Vun2LkFr!rg8Q@=r>9p>(t3Gf_auiJ2Xx9HmxYTa|=MH_SUlYL`mz9
zTTS$`%;D-|Jt}AP1&k7PcnfFNTH0A-*FmxstjBDiZX?}%u%Yq94$fUT&z6od+(Uk>
zuqsld#G(b$G8tus=M!<V>N#oPd|PVFX)?M?tCD0tS%2IGTfh}3YA3f&UM)W$_GNV8
zQo+a(ml2Km4o6O%gKTCSDNq+#zCTIQ1<zRinbW1<P#|UQotg93waYH2w1*h*jWPj6
z^zMSH#dD)R!pp{n89hOchS-cu?Yi0ISv7!)1hAHH{1T%@r!ud3;HLw5<Vb67p@OE@
zP1TDxu7L{<vN=z>*`TIJh~k6Gp;htHBFnne))rlFdGqwC6dx2+La1&Mnko*352k0y
z+tQcwndQlX`nc6nb$A9?<-o|r*%aWXV#=6PQic0Ok_D;q>wbv&j7cKc!w4~KF#-{6
z(S%6Za)WpGIWf7jZ3svNG5OLs0>vCL9{V7cgO%zevIVMH{WgP*^D9ws&OqA{yr|m|
zKD4*07dGXshJHd#e%x%J+qmS^lS|0Bp?{drv;{@{l9ArPO&?Q5=?OO9=}h$oVe#3b
z3Yofj&Cb}WC$PxmRRS)H%&$1-)z7jELS}!u!zQ?A^Y{Tv4QVt*vd@uj-^t2fYRzQj
zfxGR>-q|o$3sGn^#VzZ!QQx?h9`njeJry}@x?|k0-GTTA4y3t2E`3DZ!A~D?GiJup
z)8%PK2^9OVRlP(24P^4_<|D=H^7}WlWu#LgsdHzB%cPy|f8dD3|A^mh4WXxhLTVu_
z@abE{6Saz|Y{rXYPd4$tfPYo}ef(oQWZ=4Bct-=_9`#Qgp4ma$n$`tOwq#&E18$B;
z@Bp)bn3&rEi0>fWWZ@7k5WazfoX`SCO4jQWwVuo+$PmSZn^Hz?O(-tW@*DGxuf)V1
zO_xm&;NVCaHD4dqt(-MlszI3F-p?0!-e$fbiCeuaw66h^TTDLWuaV<@C-`=Xe5WL)
zwooG7h>4&*)p3pKMS3O!4>-4jQUN}iAMQ)2*70?hP~)TzzR?-f@?Aqy$$1Iy8VGG$
zMM?8;j!pUX7QQD$gRc_#+=raAS577ga-w?jd`vCiN5lu)dEUkkUPl9!?{$IJNxQys
z*E4e$eF&n&+AMRQR2gcaFEjAy*r)G!s(P6D&TfoApMFC_*Ftx0|D0@E-=B7tezU@d
zZ{hGiN;YLIoSeRS;9o%dEua4b%4R3;$SugDjP$x;Z!M!@QibuSBb)HY!3zJ7M;^jw
zlx6AD50FD&p3JyP*>o+t9YWW8(7P2t!VQQ21pHJOcG_SXQD;(5aX#M6x##5H_<Vgo
zXaA`|b1qI$OB^nkP*k8;>Re>6lPyDCjxr*R(+HE%c&QN+b^tbT<D}=?S8O%T8tX+C
zcq<H{RI|G2B9m%Rvp=d?PUf-1CZ*M)qUmtvLRWz*mFB-QNI1$Q(ryDe(K%5UcMcw>
zXBJk?p)zhJj#<NYmRaIG#%{yKso~Jl);(QZ{BXnYyStuZE8Z;ST(ba;;Cf6`eaY~e
zro&T_@|5eV&LV-Vdlye+OlA8HSGS?PEP0tn!gk^nHiROTHF+mL6DBZ*<LBy0zzNW0
z?K`Dd6_+8u^4Tx%YqyDRx3oaO`51F%4~hz9FS=g55uAbZ9<uEXv*DeH(f5XqNd{@0
zp<n?$CoIPaZ{u=WOkQK=>I?&Y2n&~XiytG9!1ox;bw5Rbj~)7c(MFBb4>IiRATdhg
zmiEFlj@S_hwYYI(ki{}&<;_7(Z0Qkf<vz98R4^QE*0+j0Yt5Bq_8W~pIEsdB>q>am
z&LtL=2qc7rWguk3BtE4zL41@#S;NN*-jWw|7Kx7H7~_%7fPt;TIX}Ubo>;Rmj94V>
zN<mGWxPciFI#UK&1{)&R+tKETKKJppI5eS&4QOQDb2gC@9#amL!Z4`6_?sgG50#TO
zUE{XN@zEh;wAcp{%1UraASTco@__6>B1=;-9AR7s`Pxn}t_6^3ahlq53e&!Lh85uG
zec0vJY_6e`tg7LgfrJ3k!DjR)Bi#L@DHIrZ`sK=<5O0Ip!fxGf*OgGSpP@Hbbe&$9
z;ZI}8lEoC2_7;%L2=w?tb%1oL0V+=Z`7b=P&lNGY;yVBazXRYu;+cQ<d^ZC}lYirx
z)hZjd3qKHeGus^Y+enhww8u%4lE|(|Z6qnX?I}@3Q1b~uMX2mD2SFAFYnI`H<@TW6
z_W((t!X&)`@PpH2wi2iW=uqjmv(p=oqs&Y%b9;Nf0OWslW9*Nb&oWZEt+0AVS&R~u
z_Wf#$fP|$gQ9fiHWGF1iGfW}Wb;*#iU5QAsVTwY*RhU@;t!16`ZZ<f|b==EnUgA$9
z4GDXmcVu4RoyBc?5+IzLNU`y7!@x5Q-0Qn*X9{dMTclVEa<*>DKvm*7NCxu&i;zub
zAJ<l&f69)KP9=Oa-e|<}G6{v&t3Gsy-GA$_$uw;4(^(<e6x2^i-<E!;86)%4VjM%-
z<_j^P(DEMAyY~*<c=R4aPSMdD=QV?HQb>h#11%?w>E2rf2e~C4+rAb-&$^vsdACs7
z@|<k_fU+PhC9U|KK^m>Ra!OfVM(ke{vyiqh7puf&Yp6cd6{DptUteYfIRWG3pI+5<
zBVBI_xkBAc<(p<um#S5<Wtzr=ckJ6;=I>cb$!Y%dTW(b;B;2pOI-(QCsLv@U-D1XJ
z(Gk8Q3l7Ws46Aktuj>|s{$6zA&xCPuXL-kB`CgYMs}4IeyG*P51IDwW?8UNQd+$i~
zlxOPtSi5L|gJcF@DwmJA5Ju8HEJ>o{{upwIpb!f{2(vLNBw`7xMbvcw<^{Fj@E~1(
z?w`iIMieunS#>nXlmUcSMU+D3rX28f?s7z;X=se6bo8;5vM|O^(D6{A9*ChnGH!RG
zP##3>LDC3jZPE4PH32<r6$U<HX=R_L2D`8>AxrqPk|yIIrq~`aL-=}`okhNu9aT%q
z1b<WnlSbT*V4<ymTCe0MD#5~7Whz|=;>)7iJ)CN=V#Ly84N_r7U^SH2FGdE5FpTO2
z630TF$P>GNMu8`rOytb(lB2};`;P4YNwW1<5d3Q~AX#P0aX}R2b2)`rgkp#zTxcGj
zAV^cvFbhP|JgWrq_e`~exr~sIR$6p5V?o4Wym3kQ3HA+;Pr$bQ0(PmADVO%MKL!^q
z?zAM8j1l4jrq|5X+V!8S*2<l)&qsCusW$QhU{vI`y!|$e;d+{bf(RH@<)nJ517c7s
zDim)TBb^~cK*c)35Gg|q1$&KAYNncsQOHJ|nu#)~+T76>Wl@=7*pPgciTVK6kS1Ge
zMsd_u6DFK$jTnvVtE;qa+8(1sGBu~n&F%dh(&c(Zs4Fc#A=gG^^%^AyH}1^?|8quj
zl@Z47h$){PlEL<j^JXcV*jDSt#inW`1Gn}CBm-N=8TRh<K)!JpM`mq>JgYZCIHHL=
z{U8O>Tw4x3<1{?$8>k-P<}1y9DmAZP_;(3Y*{<b??kNj&VqPGa79d@(m$2L68%nd!
z{_JjeX;XQdwTu-^XN2zhv1k+fQHndX43k}u83t_z&A52ZBFI*?6D8Q{uBSWGwQ#nR
zSnaCVwkuW{YP1TLJ@kJx_A>Sk^H^A=_iSJ@+s5ktgwTXz_2$~W9>VVZsfwCm@s0sQ
zeB50_yu@uS+e7QoPvdCwDz{prjo(AFwR%C?z`EL{1`|coJHQTk^nX=tvs1<0arUOJ
z!^`*x&&BvTYmemyZ)2p~{%eYX=JVR?DYr(rNgqRMA5<s3FN;{WX^H?!5dAC7_ToT&
z049v%;5~bT4K%9GqC;d+sXL`9S9+;oZpLE#7knG~OKbHmpUA?yU6n&99^Z!ZI?xYz
z{BGz0U$>E1PR1Iw=prk=L2ldy3r3Vg@27IZx43+ywyzr-X*p*d@tZV+!U#~$-q=8c
zgdSuh#r?b4GhEGNai)ayHQpk>5(%j5c@C1K3(W1pb~HeHpaqijJZa-e6vq_8t-^M^
zBJxq|MqZc?pjXPIH}70a5vt!IUh;l}<>VX<-Qcv^u@5(@@M2CHSe_hD$VG-eiV^V(
zj7*9T0?di?P$FaD6oo?)<)QT>Npf6Og!GO^GmPV(Km0!=<c9QK{JSBnxbTl~S4d3F
zZhX~`iBZf``YC!s;R3x;^$k-@k$#)|!OTN1novAwmG;&P2)PD!FyXg4r(4gHh?ySe
z7<%V?@*d*j&#%W*MAHm*B6GjS8B_74D&Msq691~iVscJ{Zps}t4Abjxm(LlYOjt<z
z0=dj7A`k(bp)&5Hm__k9JT(e0PyOe3?@>+dE&bk#SNI+C9RGQ|{~O*VC+tXK3!n`5
zHfl6>lwf_aEVV3`0T!aHNZLsj$paS$=LL(?b!Czaa5bbSuZ6#$_@LK<(7yrrl+80|
z{tOFd=|ta2Z`^ssozD9BINn45NxUeCQis?-BKmU*Kt=FY-NJ+)8S1ecuFtN-M?&42
zl2$G>u!iNhAk*HoJ^4v^9#ORYp5t^wDj6|lx~5w45#E5wVqI1JQ~9l?nPp1YINf++
zMAdSif~_ETv@Er(EFBI^@L4BULFW>)NI+ejHFP*<T<d*k5U>T}UhWNN`I)RRS8za?
z*@`1>9ZB}An%aT5K=_2iQmfE;GcBVHLF!$`I99o5GO`O%O_zLr9AG18>&^HkG(;=V
z%}c!OBQ~?MX(9h~tajX{=x)+!cbM7$YzTlmsPOdp2L-?GoW`@{lY9U3f;OUo*BwRB
z8A+nv(br0-SH#VxGy#ZrgnGD(=@;HME;yd46EgWJ`EL%oXc&lFpc@Y}^>G(W>h_v_
zlN!`idhX+OjL+~T?19sroAFVGfa5tX-D49w$1g2g_-T|EpHL6}K_aX4$K=LTvwtlF
zL*z}j{f+Uoe7{-px3_5iKPA<_7W=>Izkk)!l9ez2w%vi(?Y;i8AxRNLSOGDzNoqoI
zP!1uAl}r=_871(G?y`i&)-7{u=%nxk<TF^9;4ekh$qpT49mIUTo!QB3IxD^Xo8$2N
z0jCW$vUnPpla#O+%Oja`23x?g8&sst<rR<!i-fJAT!pW4qQWcl7>7CZ_Qh#!|ITec
zwQn`33GTUM`;D2POWnkqngqJhJRlM>CTONzTG}>^Q0wUunQyn|TAiHzyX2_%ATx%P
z%7gW)%4rA9^)M<_%k@`Y?RbC<29sWU&5;@|9thf2#zf8z12$hRcZ!CSb>kUp=4N#y
zl3hE#y6>kkA8VY2`W`g5Ip?2qC_BY$>R`iGQLhz2-S>x(RuWv)SPaGdl^)gGw7tjR
zH@;jwk!jIaCgSg_*9iF|a);sRUTq30(8I(obh^|}S~}P4U^BIGYqcz;MPpC~Y@k_m
zaw4WG1_vz2GdCAX!$_a%GHK**@IrHSkGoN>)e}>yzUTm52on`hYot7cB=oA-h1u|R
ztH$11t?54Qg2L+i33FPFKKRm1aOjKST{l1*(nps`>sv%VqeVMWjl5+Gh+9);hIP8?
zA<Q7k-wX5MjEY4*mC%%h!I%wsiVeW4+`u*(F}G%hLu4v_No<?+)c0h3mM0wvOcTzb
z6mLpttd1pgh;LPDfUyEl9?m3fSr8}4WkXDbERL<t;7gDrg+uTPTiBati$g>@$?}Sc
z3qIRpba+y5yf{R6G(u8Z^vkg0Fu&D-7?1s=QZU`Ub{-!Y`I?AGf1VNuc^L3v>)>i#
z{DV9W$)>34<d17om!!)9&{`T5uHYJXV$G;?A+9420_wrs59Q5xU_?zk<S-MZw#YF!
z)5TK_({W1E10+oWfpH?yLthllM<4BAQSN*>wnzAXUiV^ZpYKw>UElrN_5Xj6{r_3|
z$X5PK`e5$7>~9Dj7gK5ash(dvs`vwfk}&RD`>04;j62zoXESkFBklYaKm5seyiX(P
z<ID{omUfJz++3+6M6A3|He)%RuG>qQ-;XxlV*yg?Dhlx%xt!b0N3GHp@(p$A;8|%#
zZ5m2KL|{on4nr>2_s9Yh=r5ScQ0;aMF)G$-9-Ca6%wA`Pa)i?NGFA|#Yi?{X-4ZO_
z^}%7%vkzvUHa$-^Y#aA+aiR5sa%S|Ebyn`EV<3Pc?ax_f>@sBZF1S<H?5z{)#QL{V
zr*a_q>;7y$CXd5t5=WGsTKBk8$OfH4v|0?0I=Yp}7c=WBSCg!{0n)XmiU;lfx)<uN
zPvr+1FFDIM@A4#y;a<?S=xTH`XYK!+^->**zZaYqmDJelxk$)nZyx5`x$6R|fz(;u
zEje5Dtm|a%zK!!tk3{i9$I2b{vXNFy%Bf{50X!x{98+BsDr_u9i>G5%*sqEX|06J0
z^IY{UcEbj6LDwuMh7cH`H@9sVt1l1#8kEQ(LyT@&+K}(ReE`ux8gb0r6L_#bDUo^P
z3Ka2l<H7(tNv_ycRF43oWEx{?2ychJaXYk!nafC$;QPt)Dhl%pHY&kHF=u*jMxFxR
z8hs|e%r39oE}ts%zE`x;@(JZF%`*hV&TQs;k7&^PC%_|U=Z^yM6XVPX3WWp6H|w9J
z45Q%jM?z_P7Kg74lHMQ_-ZVr_NbHvg3EMK85#qK7Y#v#ov_?2?Wu|DHo1}82@XlNo
z*7dav>Ro52Hdtl_%+pwVs14=q`{d^L58PsU@AMf(hENumaxM{7iAT5sYmWh@hQCO^
zK&}ijo=`VqZ#a3vE?`7QW0ZREL17ZvDfdqKGD?0D4fg{7v%|Yj&_jcKJAB)>=*RS*
zto8p6@k%;&^ZF>hvXm&$PCuEp{uqw3VPG$9VMdW5$w-fy2CNNT>E;>ejBgy-m_6`&
z97L1p{%srn@O_JQgFpa_#f(_)eb#YS>o>q3(*uB;uZb605(iqM$=NK{nHY=+X2*G)
zO3-_Xh%aG}fHWe*==58zBwp<ewOv=l7F;`(EW(2I^P`O~+>%&`mg<U+`XEp_tI#7M
zlHXq!JFASK8=TxtsItown-vYtx@G%cb7t%FpgERtlejdO-?8O0py|EQiBWNJ#diHb
z8h^Y>e<8uq8;xIxOd=P%9EK!34^E9sk|(Zq1QSz-JVeP12Fp)-`F|KY$LPwUE?rku
zY@OJ)Z9A!ojfzfeyJ9;zv2EM7ZQB)AR5xGa-tMn^bl)FmoIiVyJ@!~@%{}qXXD&Ns
zPnfe5U+&ohKefILu_1mPfLGuapX@btta5C#gPB2cjk5m4T}Nfi+Vfka!Yd(L?-c~5
z#ZK4VeQEXNPc4r$K00F<wRh*06<c<Cw!0P4***aS+tgLJ2H$n=v+UM@P`jG9HJHW0
zeqBot9>g>g#_W!YZ)cJ?JTS<&68_$#cZT-ME`}tcwqg3#``3M3UPvn+pi}(VNNx6y
zFIMVb6OwYU(2`at$gHba*qrMVUl8xk5z-z~fb@Q3Y_+aXuEKH}L+>eW__!IAd@V}L
zkw#s%H0v2k5-=vh$^vPCuAi22Luu3uKTf6fPo?*nvj$9(u)4$6tvF-%IM+3pt*cgs
z_?wW}J7VAA{_~!?))?s6{M=KPpVhg4fNuU*|3THp@_(q!b*hdl{fjRVFWtu^1dV(f
z6iOux9hi&+UK=|%M*~|aqFK{Urfl!TA}UWY#`w(0P!KMe1Si<jiK`FCX|r(xrQ!0U
zNF-2!m|??dd%b!3w5!;b;@Y>{8|o))Gy6d7;!JQYhgMYmXl?3FfOM2nQGN@~Ap6(G
z3+d_5y<nkN(o+zEYZBPE7qE4X4RTq~xP<0UuT}eq);wA`P~5mS&}Ni6sX$kQ!#Y14
zw<=&7Ca^#oAVnvbz-T-b@50=C)>@=nkpKAhRqf{qQ~k7Z$v&l&@m7Ppt#FSNzKPZM
z8LhihcE6i=<(#87E|Wr~HKvVWhkll4iSK$^mUHaxgy8*K$_Zj;zJ`L$naPj+^3zTi
z-3NTaaKnD5FPY-~?Tq6QHnmDDRxu0mh0D|zD~Y=vv_qig5r-cIbCpxlju&8Sya)@{
zsmv6XUSi)@(?PvItkiZEeN*)AE~I_?#+Ja-r8$(XiXei2d@Hi7<U!}O-C%Wp93|!6
z_maftKQVDsmc-oSX^Wf5%~c*ohRjQuXO7WUoJr4mKQ1O_S_G_rS=b~3S&JLLEOKDV
z{3LUpGl1vt1pkI#r_j=V*y<p!g}(O0?op0V5}i0e<PEWYB8x5J4<%9#9y9X9M*bUx
zicdfReJ#lhlVUp=<yC<tza847t{vKR$R*ci-p`+Gl}ts*E09J&7%h92yemiDYmk~}
zTm@z(hV@tXo`0Xdz4V~IJu7i|)?jOn6Nt~0dUv^z2PHbxR-jssAHfY`%7{ql=vzVB
zs_4Na@y!!YjTV?bkxAK(=I=549YO&vP5F{dsX_6-68_n)LiIx2IwV=E#EmY<Yodu6
z9z7+@5zk>Rx8+rZZb?ZLa{;@*EHeRQ-YDadz~M*YCM4&F-r;E#M+@CSJMJ0oU|PQ^
z=E!HBJDMQ2TN*Y(Ag(ynAL8%^v;=~q?s4plA_hig&5Z0x_^Oab!T)@6kRN$)qEJ6E
zNuQjg|G7iwU(N8pI@_6==0CL;lRh<Er=!!1>1dQF#wePhmu@hADFd3B5KIH#dx(2A
zp~K&;Xw}F_N6CU~0)<woWpm{<(lL~%8t8hZ?O>QpQk7s$a+LcTOj1%=WXI(U=Dv!6
z{#<#-)2+gCyyv=Jw?Ab#PV<kuPJ4UouiQa>kxPDeH|sAxyG`|Ys}A$PW4TdBv%zDz
z^?lwrxWR<%Vzc8Sgt|?FL6ej_*e&rhqJZ3Y>k=X(^dytycR;XDU16}Pc9Vn0>_@H+
zQ;a`GSMEG64=JRAOg%~L)x*w{2re6DVprNp+FcNra4VdNjiaF0M^*<Z21jxz28!z4
z)+Qw^>>Cd<OYjfTeBDpnxINod_ps<v{(V~~r+~z4oEIjOYCK|$#(JnCT7;!!Y}f=y
zFNsGLXIqR_Lc24Epk`I91kx04#KNLQB=sN}`>Pkt(m150rCue?FVdL0nFL$V%5y6N
z%eLr5%YN7D06k5ji5*p4v$UMM)G??Q%RB27IvH7vYr_^3>1D-M66#MN8tWGw>WED}
z5AhlsanO=STFYFs)Il_0i)l)f<8qn|$DW7ZXhf5xI;m+7M5-%P63XFQrG9>DMqHc}
zsgNU9nR`b}E^mL5=@7<1_R~j@q_2U^3h|+`7YH-?C=vme1C3m`Fe0HC>pjt6f_XMh
zy~-i-8R46QNYneL4t@)<0VU7({aUO?aH`z4V2+kxgH5pYD5)wCh75JqQY)jIPN=U6
z+qi8cGiOtXG2tXm;_CfpH9ESCz#i5B(42}rBJJF$jh<1sbpj^8&L;gzGHb8M{of+}
zzF^8VgML2O9nxBW7AvdEt90vp+#kZxWf@A)o<TP7Iv6D<p-`geitU42O0|5*#cI2&
zD#rHm-Vc3+vP+a)$@(=16*wM+J-aXvee~$jPN+y)1J;9JyU$}nCH;?MkiD^?^{YXd
z()hszm1?+Vl-hdUHRO1qu43l7<f-+JFAVi;sMe)sVUTGeF5*U18gVs~b3a#HICwn?
zOc3D$MdBtKd+A-2`!?hp+dNtbrf)b+gMTQ^qA%J;1l0Bf$I4T>9f9}vKJy9NDBjBW
zSt=Hcs=YWCwnfY1UYx*+msp{g!w0HC<_SM!VL1(I2PE?CS}r(eh?{I)mQixmo5^p#
zV?2R!R@3GV6hwTCrfHiK#3Orj>I!GS2kYhk1S;aFBD_}u2v;0HYFq}Iz1Z(I4oca4
zxquja8$+8JW_EagDHf$a1OTk5S97umGSDaj)gH=fLs9>_=XvVj^Xj9a#gLdk=&3tl
zf<JQN-rLl3?(b@3I(eFE1!7*!5QjuNkUcQB*{SCO?Dz6>mK9MNnIX9v{?%xdw7568
zNrZ|roYs(vC4pHB5RJ8>)^*OuyNC>x7ad)tB_}3SgQ96+-JT^Qi<`xi=)_=$Skwv~
zdqeT9Pa`LYvCAn&rMa2aCDV(TMI#PA5g#RtV|CWpgDYRA^|55LLN^u<JFRGA?x);o
z`Z~}R6`4W#%h(d)aQ>Nh*gOU>Z=a06qJ;$C9z8;n-Pq=qZnc1zUwJ@t)L;&NN+E5m
zRkQ(SeM8=l-aoAKGKD>!@?mWTW&~)uF2PYUJ;tB^my`r9n|Ly~0c%diYzqs9W#<S`
z2%`mn3A&KL|FUYx1DDYTb2GMnO1WEyfJ-eVoSqd~=r!kw@InSGE<>FTjy?h&X3TnH
zXqA{QI82sdjPO->f=^K^f>N`+B`q9&rN0bOXO79S&a9XX8zund(kW7O76f4dcWhIu
zER`XSMSFbSL>b;Rp#`CuGJ&p$s~G|76){d?xSA5wVg##_O0DrmyEYppyBr%fyWbbv
zp`K84JwRNP$d-pJ!Qk|(RMr?*!wi1if-9G#0p>>1QXKXWFy)eB3ai)l3601q8!9JC
zvU#ZWWDNKq9g6fYs?JQ)Q4C_cgTy3FhgKb8s&m)DdmL5zhNK#8wWg!J*7G7Qhe9VU
zha?^AQTDpYcuN!B+<Y^i3NB&h=8l2*^8*j@dwN-$SX`JG4?X#EO)n_d+Mm*qNtLvW
z1{=j+)$5S8QKKaCKpO>#1dE*X{<#!M%zfUQbj=zL<r~1!%Q56_&?RVt*j39RdBbdU
zvt>E{dW0XeQ7-oIsGY6RbkP2re@Q{}r_$iiH0xU%iN*ST`A)-EH6eaZB$GA#v)cLi
z*MpA(3bYk$oBDKAzu^kJoSUsDd|856DApz={3u8sbQV@JnRkp2nC|)m;#T=DvIL-O
zI4vh;g7824l}*`_p@MT4+d`JZ<NgM|d-wED*_BDR=X2CYG0s+@tH~}mHA<v@@*LLa
zcTk2OQd|qCF;Irq7ZT2t<bCnFzjKHMYi_FEX5uA1sMB~b=-gExnk*fx9Jolk@GBaP
zo2{A-B!6SMvS~u~??*1DY*%B^{i&5Xid$7&jHLv;Csgpyh12H&Wr+sb8jR356U$OH
z#keINf2882?;$z(=9b`_o!xWZsvxb)AId~zQ-ypi#22f~snWv+_Q$md&MYLZH1*5&
zgU2`BbMmltaER}JO!m5!`^u~)I>2%6NQh=N9bmgJ#q!hK@_<`HQq3}Z8Ij>3%~<*=
zcv=!oT#5xmeGI92lqm9sGVE%#X$ls;St|F#u!?5Y7syhx6q#MVRa&lBmmn%$C0QzU
z);*ldgwwCmzM3ug<bwv^{e8k-I_Ia))Ca<<K85KO7s<Z8_qINV*w7o<JN><pez`8$
z*U(_%(Oddx;Dy@<By6!p<ae@SHe5;+DISJZbTAq-U`Q`A1)YLa`3xqvnU#=JMDwvc
zT=fd_B(g|SbuM?{hEp2{k!4hh2k1}qTl{TSl*cD|duWT^U1%zqX9UbNuTdGS)?ic-
zFWu0OzODT7)oL^9a3Iy*#7Rk@72_$KGruLmz}W@8{rhO(Lndv7z61c>lr}!Z2G+?&
zf%Dpo&mD%2ZcNFiN-Z0f;c_Q;A%f@>26f?{d1kxIJD}LxsQkB47SAdwinfMILZdN3
zfj^HmTzS3Ku5BxY>ANutS8WPQ-G>v4^_Qndy==P3pDm+Xc?>rUHl-4+^%Sp5atOja
z2oP}ftw-rqnb}+khR3CrRg^ibi6?QYk1*i^;kQGirQ<G&YKu_KEA~r2_|MY6U!vEc
zYq^WKw2*I=^(R7(!~~v`>=uB9Sd1NTfT-Rbv;hqnY4neE5H1YUrjS2m+2&@uXiAo-
zrKUX|Ohg7(6F(AoP~tj;NZlV#xsfo-5reuQHB$&EIAhyZk;bL;k9ouDmJNBAun;H&
zn;Of1z_Qj`x&M;5X;{s~iGzBQTY^kv-k{ksbE*Dl%Qf%N@hQCfY~iUw!=F-*$cpf2
z3wix|aL<TqR7Y;}gRV7Q6u)-qpm%oMjSmV6D=p0OrNXwr5;y^b5cF7C7&Mp&D`?Ob
z8ESq3ScyN7w@J>BV0b;W@z^%7S{>9Z^T^fLOI68_;l@+Qzaxo`nAI8emTV@rRhEKZ
z?*z_{oGdI~R*#<2{bkz$G~^Qef}$*4OYTgtL$e9q!FY7EqxJ2`zk6SQc}M(k(_MaV
zSLJnTXw&@djco1~a(vhBl^&w=$fa9{Sru>7g8SHahv$&Bl(D@(Zwxo_3r=;VH|uc5
zi1Ny)J!<(KN-EcQ(xlw%PNwK8U>4$9nVOhj(y0l9X^vP1TA>r_7WtSExIOsz`nDOP
zs}d>Vxb2Vo2e5x8p(n~Y5ggAyvib>d)6?)|E@{FIz?G3PVGLf7-;BxaP;c?7ddH$z
zA+{~k^V=bZuXafOv!RPsE1GrR3J2TH<Ny`yVx$sah_BnMO|Vl_4M%y|BVBOcD(&Tf
zIi%w5mBkQA-m8WhIS+m)@HEq^i=}^RPX#BvtKJYieRDhM9CpMXBxjmn?hoV<pKsfM
zQ3`)(<)?1Do&LG^9T4w<TIx#Djhk>9uB=Z67gok+u`V#}BR86hB1xl}H4v`F+mRfr
zYhortD%@IGfh!JB(NUNSDh+qDz?4ztEgCz&bIG-Wg7w-ua4ChgQR_c+z8dT3<1?uX
z*G(DKy_LTl*Ea!%v!RhpCXW1WJO6F`bgS-SB;Xw9<cxOL&fF^435YAz<*2lIsx>#!
z<*K}=#wVu9$`Yo|e!z-CPYH!nj7s9dEPr-E`DXUBu0n!xX~&|%#G=BeM?X@shQQMf
zMvr2!y7p_gD5-!Lnm|a@z8Of^EKboZsTMk%5VsJEm>Vs<fWSaAAk=E0a4xz;CoE+n
zvV|`k(cS-gI#<~znD&6(Dyi8%>J4W7Kv{<|#4f-qDE$D-W>gWT%<wM^e7+vR+ZVxu
zJA%k!wV1jm=-?CPfHci1I%oS6_$rRC_i%Dy1_C}}(R>z-!qXnDHhOvLk=?^a1*|0j
z{pW{M0{#1VcR5;F!!fIl<yJC4LQf<m+NFcvrhH-9Oq`TslF!sxh9CTya<1|Z@Sf8S
z#)!cL{VHJYkWIKNj^M2D@K4#yCJQKlT2}zO7tRTvNED*cmVv~6G8g$V6W>LVNh_Gj
zbnW(_j?0c2q$EHIi@fSMR{OUKBcLr{Y&$hrM8XhPByyZa<R$b|!F4rBVu<@_&`m0`
zvC-aJ+X!p>Xy|dd&{hYQRJ9@Fn%h3p7*VQolBIV@Eq`=y%5BU~3RPa^$a?ixp^cCg
z+}Q*X+CW9~TL29@OOng(#OAOd!)e$d%sr}^KBJ-?-X&|4HTmtemxmp?cT3uA?md4%
zT8yZ0U;6Rg6JHy3fJae{6TMGS?ZUX6+gGTT{Q{)SI85$5FD{g-eR%O0KMpWPY`4@O
zx!hen1*8^E(*}{m^V_?}(b5k3hYo=T+$&M32+B`}81~KKZhY;2H{7O-M@vbCzuX0n
zW-&HXeyr1%I3$@ns-V1~Lb@wIpkmx|8I~ob1Of7i6BTNysEwI}=!nU%q7(V_^+d*G
z7G;07m(CRTJup!`cdYi93r^+LY+`M*>aMuHJm(A8_O8C#A*$!Xvddgpjx5)?_EB*q
zgE8o5O>e~9IiSC@WtZpF{4Bj2J5eZ>uUzY%TgWF7wdDE!fSQIAWCP)V{;HsU3ap?4
znRsiiDbtN7i9hapO;(|Ew>Ip2TZSvK9Z^N21%J?OiA_&eP1{(Pu_=%JjKy|HOardq
ze?zK^<n_C~sSO$T&zHJ&gqMJm2ooswNa9fe;pI&q8BGtsLvsv{E`UcDopP-qDeO>K
zA%sj<KGR#nku^U`P7U%dm^(-)^vJ8a7zEx#hISA%f9a1Ybx@Dr&>F64*Wufad%H<)
z^|t>e*h+Z1#l=5wHexzt9HNDNXgM=-OPWKd^5p!~%SIl>Fo&7BvNpbf8{NXmH)o{r
zO=aBJ;meX1^{O%q;kqdw*5k<?!FYD}X~SRg{bAptI6CT~WZcECii<d{!~H9SptJA{
z(IMO5d`_qI=h*DGo=n0v@_q*TN1Rb~B&ITpk8DJlRXa*ROudIg-K94et8*W|ahl(A
z2RLvW1}v%VuO9`Ef9t?PKUXTW2f&D}3vrtNJ87$D?Y9if%$|t@;m`i#_BSRV)jj(n
z<)v7wOK4@tW$UKKWR0fsc^c<~vm5M`u2vnP<@`C7-1h}V)vH?GIQ6kut>!Y7%t_30
zy{nGRVc&5qt?dBwLs+^Sfp;f`YVMSB#C>z^a9@fpZ!xb|b-JEz1LBX7ci)V@W+k<d
z?qR|O?7_P?Q6<qQfw{t}<omxO-y4wzz13f^3s3)!sA+n!=}0n9^jL6z6UFtDDE}Mp
z!BsppJn%YvdkxcpH0L^o3RScOB1lQrKBaMr+6<a345~U+wL$oOCB}VtK17ZH;V1Ue
zdj4e4ug6v=rEE8!n9=MxEf@easRS`JT*=LVd(P_|@2%P^bJF0dJak~<TFSD+7ZH;0
zk0}Z5&3UxSBxu~{Rz*8BKG13&fcf@9dyUN>vQ89KWA0T~L<vZ;GW*aTR}HF1-jedY
z#-MsfGyBFAcQAdcd`Yx-bcvlJbsoc$%4C5;EuOf%FC1$=NHxR@P$wjlROtPJ?~8@j
z{p*zq)|ri!j1uu-Pw*x?ETPT6(jkMz{tB)03YK+l%8c_vwo>j$aCcfW#nD5bt&Y_<
z-q{4ZXDqVg?|0o)j1%l0^_it0WF*LCn-+)c!2y5yS7aZIN$>0LqNnkujV*YVes(v$
zY@_-!Q;!ZyJ}Bg|G-~w@or&u0RO?vlt5*9~yeoPV_UWrO2J54b4#{D(D>jF(R88u2
zo#B^@iF_%S>{iXSol8jpmsZuJ?+;epg>k=$d`?GSegAVp3n$`GVDvK${N*#L_1`44
z{w0fL{2%)0|E+qgZtjX}itZz^KJt4Y;*8uSK}Ft38+3>j|K(PxIXXR-t4VopXo#9#
zt|F{LWr-?34y`$nLBVV_*UEgA6AUI65dYIbqpNq9cl&uLJ0~L}<=ESlOm?Y-S@L*d
z<7vt}`)TW#f%Rp$Q}6@3=j$7Tze@_uZ<ObsOT=LjG!@YPQ+Y%TP2q;%&e6bD0<;#D
zn1mKO23ndd^;;2ec_vb`0m}1R5{A-e6@I<Gaf6P$y+!C|ZytXPFNr}*6sJD;{rbI+
zRwg~nC(gjZ<H0G$h5d*YGLSy%7k#zcB&IGLVazVInCg9bgF6KKKSeDarF+`2IFlWj
z%#J~%w5&}@qlKlZ9XX8WVB)+9_$hOD{jg_1meULyOnTAY(X(RGDVFl%IWWYYn*#Gf
zs5wy97!DZR>O@aMn<|si{?S}~maII`VTjs&?}jQ4_cut9$)PEqMukwoXobzaKx^MV
z2fQwl+;LSZ$qy%Tys0oo^K=jOw$!YwCv^e<e%~cuMqeXJnyNEIpgKcP&BSGZ3-V#G
zgnyc%fsRb47ImAxDT<IihCipil@oTF)0wHSZ%ab4RM$MVn<5Pqo=k;p=s1{wkr4K3
zPn=Vq->i4NBVauL)tN%=wz9M{uf{IB(BxK|lT*pFkmN<Z(NFM5`sDgUq1$L^2{X$m
zQ<@5WTkRGfqF>K_1tV`nb%jH=a0~VNq2RCKY(rG7jz!-D^k)Ec)yS%17pE#o6&eY+
z^qN(hQT$}5F(=4lgNQhlxj?nB4N6ntUY<e6n(3tLO%M0YHj0diWfkmtmb0?9X&BDU
zs6Tl5CHz~g>6(?+R#B?W3hY_a*)hnr4PA|v<bL3cOEhhyT5k=(qGlmAL3eDw%3aS)
z+mMt2HXmQhxUE+tIpq`0N<C;yWn7~iBEGnslqQO0EY^z~!M$i!^_m>J<6p`K3Z5Hy
z{{8(|ux~NLUW=!?9Qe&WXMTAkQnLXg(g=I@(VG3{HE13OaUT|DljyWXPs2FE@?`iU
z4GQlM&Q=T<4&v@Fe<+TuXiZQT3G~v<S1*NrZ8z<H*IRys?O`Oqz|}FcV<W%7zks=K
zjhgy^OR8^T{XcG5A)q#Ixd7)hWJZgOgp%s-!KiICJ<7)nHG%9IeF-=|(W+fGO(~eL
zUZW|&`a8*ZnEW_JOqB-k$82w~>Z&^POfmI1K2h6t4eD}Gk5XFGpbj1n_g*{qmD6Xy
z`6<o)fI|_!EcP+Bw?+2|y3t!@@OewwE@am14Pw<&ymmicd%g=pQX-4Dl6iXM5Mi<r
zx3XG;>Vv|lLZtLmrnv*{Q%xxtcWVj3K4M%$bdBk_a&ar{{GWyu#ljM;dII;*jP;QH
z#+^o-A4np{@|Mz+LphTD0`FTyxYq#wY)*&Ls5o{0z9yg2K+K7ZN>j1>N&;r+Z`vI|
zDzG1LJZ+sE?m?>x{5LJx^)g&pGEpY=fQ-4}{x=ru;}FL$inHemOg%|R*ZXPodU}Kh
zFEd5#+8rGq$Y<_?k-}r5zgQ3jRV=ooHiF|@z_#D4pKVEmn5CGV(9VKCyG|sT9nc=U
zEoT67<jXapz33SQGdVleW*J=p6l-iq5HGgGZNX3gcnDtqDqT6Lxf&Cy#Ap6*__@(N
zI9l&1+PZ(2&t7;rjbr<N3;GXPQmR+Jb=l@GOikZr!v7KeKwAmIz6g%ucSA?oWgocV
zk;d7L7JWl9$p0E+2q4zN?=f=Aph6SF??-{0uw#y<{6dXC$UJvvFots-eZ*CWmiR<m
z^L^@#CZ2{u<>R`C->KY8Wp-fEcjjFm^;Cg(ls|*ABVHq8clBE(;~K^b+S>6uj70g?
z&{XQ5U&!Z$SO7zfP+y^8XBbiu*Cv-yJG|l-oe*!s5$@Lh_KpxYL2sx`<G0?@o|1&5
z++RB?zrCfT7`A&iZHeO}uiAn(9Y;?H+|QxaD&F$T&wYPv^@%QzORq4V7h)QaA?IS+
zFB!z6yTuA4F{2w*bnO?o`KM7U>B|V=dETN>5K+C+CU~a_3cI8{vbu$TNVdGf15*>D
zz@f{zIlorkY>TRh7mKuAlN9A0>N>SV`X)+bEHms=mfYTMWt_AJtz_h+JMmrgH?mZt
zm=lfdF`t^J*XLg7v+iS)XZROygK=CS@CvUaJo&w2W!Wb@aa?~Drtf`JV^cCMjngVZ
zv&xaIBEo8EYWuML+vxCpjjY^s1-ahXJzAV6hTw%ZIy!FjI}aJ+{rE&u#>rs)vzuxz
z+$5z=7W?zH2>Eb32dvgHYZtCAf!=OLY-pb4>Ae79rd68E2LkVPj-|jFeyqtBCCwiW
zkB@kO_(3wFq)7qwV}bA=zD!*@UhT`geq}ITo%@O(Z5Y80nEX~;0-8kO{oB6|(4fQh
z);73T!>3@{ZobPwRv*W?7<u$fR#FIIDQ|?d;-=4~nL_DQNR_L(s2gGB|Bi%bXbI)!
ztn@6?NW&ORN!+hVmb|xpUMHeP-Y*-8YoeQ$=7K(Sd>m0Ml9GmJBCJd&6E?hdj9lV=
z4flNfsc(J*DyPv?RCOx!MSvk(M952PJ-G|JeVxWVjN~SN<fFWRb2=9964Bd}-9L0#
za&bfyJOi!#T%8p@)e{#M*HC~_RDcB;kF@?XCf0o$;#0Tz<%{^IxQ6b()`kCzGw`pn
zvVV06qCVS*7lZ)(o7Gp6ekOkuzzxs?O%%&Yp1+cWnn|fKYX<Z-8@MV#wqF)qqV5*o
zSnWk1rIdh6FPQo!-hS8qsY!O5JD<AlIn95(ae6Jd?fWIAFM+L&sw_o{)ZY*mza^{a
zFgSda?4Av^CAF7cj@(}R6JgOpyFKsFTD;d44h4&<Jz-_1F5J{G+LW?&6IhxYcs@xb
zl@w&aT)k@tK}w%(8c;t<C(7s<T@#tgO(Q)4E9>S6n-_Ge3Q;TGE;EQvZg86%wZ`MB
zSMQua(i*R8a75!6$QRO^(o7sGoomb+Y{OMy;m~Oa`;P9Yqo><o$qrN{Uy#{EYZAYV
zhkQ~i`~tBVbX%VYXh`B$bAR$*>?bJAhqXxLr7_3g_n>f#UVtxG!^F#1+y@os6x(sg
z^28bsQ@8rw%Gxk-stAEPRbv^}5sLe=VMbkc@J<s@rA3iE(48`CbnWn(=&3DF#J=}a
z4FTXYopd?mZI}}1ZlC8~VV`QLNWV;~TVEZ~uaDc-&}W%0xomagCDhH<gooe&naXnn
z<tUH-X!YNVZ5{|0$(F_l%}+PcEZ$(<;b4&E&i=){rcO+Hkk=zdTK^Ffd=*LS^6eUA
zUbs7^NXMxkl#^HyJ=dcJiSCooRo<stw%BQ{lj}<*D~N?4*Cut%z#~2r#dSIApv9<Q
zjHtNwb#+f5agUh9@-@^){GvYFJ5KG7zCVqj%Df~m{m3x+{p&MW3!dR+pvL^5ZRmC0
zC309}MqA9m^d9B_Vk}86VV~U#6&}A3g}?sHV+qTd>jimqjvmd!3E7+QnL>|(^3!R}
zD-l1l7*Amu@j+PWLGHXXaFG0Ct2Q=}5YNUxEQHCAU7gA$sSC<5OGylNnQUa>>l%sM
zyu}z6i&({U@x^hln**o6r2s-(C-L50tQvz|zHTqW!ir?w&V23tuYEDJVV#5pE|OJu
z7^R!A$iM$YCe?8n67l*J-okwfZ+ZTkGvZ)tVPfR;|3gyFjF<h<Cj<zZh5#4y5>)8V
zyXXN=!*bpyRg9#~Bg1+U<pnWYhrolu{FPCsV0iobLA4JkV_p&4r@K1M;NHG>DYCt0
ztp4&?t1X0q>uz;an<Pmca*5{xy^4kc>n$OrZs{5*r`(oNvw=$7O#rD|Wuv*wIi)4b
zGtq4%BX+kkagv3F9Id6~-c+1&?zny%w5j&nk9SQfo0k4LhdSU_kWGW7axkfpgR`8*
z!?UTG*Zi_baA1^0<wK9e#G~fPDt@KdN$SZ|%nA9j-17!`BH9vUH0o`1P&6J*h<;ef
zVW;53QYa7AXJdrlTA-n?%wp6d3?_b6<x05IZ{WEejqFp)B0lVPV-bRe>eda8S|@&F
z{)Rad0kiLjB|=}XFJhD(S3ssKlveFFmkN{Vl^_nb!o5M!RC=m)V&v2%e?ZoRC@h3>
zJ(?pvToFd`*Zc@HFPL#=otWKwtuuQ_dT-Hr{S%pQX<6dqVJ8;f(o)4~VM_kEQkMR+
zs1SCVi~k>M`u1u2xc}>#D!V&6nOOh-E$O&SzYrjJdZpaDv1!R-QGA141WjQe2s0J~
zQ;AXG)F+K#K8_5HVqRoRM%^EduqOnS(j2)|ctA6Q^=|s_WJYU;Z%5bHp08HPL`YF2
zR)Ad1z{zh`=sDs<zGHk8(=f(sFR?;R<HJ%pYo-KSa+@gOo;(hTO4p7NJfbujY~Kee
zGHQPHC}zX0H$dR?nrR`jLKzUvcA{-a5@SQ^UbQXYN=CS}aw?OAqkUt?H8F&>^&V}J
z%$Z$!jd7BY5AkT?j`eqMs%!Gm@T8)4w3GYEX~IwgE~`d|@T{WYHkudy(47brgHXx&
zBL1yFG6!!!VOSmDxBpefy2{L_u5yTwja&HA!mYA#wg#bc-m%~8aRR|~AvMnind@zs
zy>wkShe5&*un^zvSOdlVu%kHsEo>@puMQ`b1}(|)l~E{5)f7gC=E$fP(FC2=F<^|A
zxeIm?{EE!3sO!Gr7e{w)Dx(uU#3WrFZ>ibmKSQ1tY?*-Nh1TDHLe+k*;{Rp!Bmd_m
zb#^kh`Y*8l|9Cz2e{;RL%_lg{#^Ar+NH|3z*Zye>!alpt{z;4dFAw^^H!6ING*EFc
z_yqhr8d!;%nHX9AKhFQZBGrSzfzYCi%C!(Q5*~hX>)0N`vbhZ@N|i;_972WSx*>LH
z87?en(;2_`{_JHF`Sv6Wlps;dCcj+8IJ8ca6`DsOQCMb<Z@pezuQ&fWzt;cz#SUWI
zcqV2XJ90lftQ?~%HDz)~)GJXKcKN}4st=)aT3chrg_EA{?3LcT)!JaRZ}=sv*>3n#
z3)_w%FuJ3>fjeOOtWyq)ag|PmgQbC-s}KRHG~enBcIwqIiGW8R8jFeBNY9|YswRY5
zjGUxdGgUD26wOpwM#8a!Nuqg68*dG@VM~SbOroL_On0N6QdT9?)NeB3@0FCC?Z|E0
z6TPZj<t(m7DtKHBH@$**2Zo{c79USiF>(AsPtwCw>*{eDEE}Gby>0q{*lI+g2e&<d
zeHwJP(&NSri;iaCB`Kw+7PmoLhp%WLBbMtYj3S7->(YQrsY&uGM{O~}(oM@YWmb*F
zA0^rr5~UD^qmNljq$F#ARXRZ1igP`MQx4aS6*MS;Ot(1L5jF2NJ;de!NujUYg$dr#
z=TEL_zTj2@>ZZN(NYCeVX2==~=aT)R30gETO{G&GM4XN<+!&W&(WcDP%oL8PyIVUC
zs5AvMgh6qr-2?^unB@mXK*Dbil^y-GTC+>&N5HkzXtozVf93m~xOUHn8`HpX=$_v2
z61H;Z1qK9o;>->tb8y%#4H)765W4E>TQ1o0PFj)uTOPEvv&}%(_<LSzDTRe;Ie+2@
ztS!_=d%s5$G(s@--l3N6rQ)s8U_l;8K^1JNd@9$&rF%j>mG0ISmyhnQV33Z$#&yd{
zc{>8V8XK$3u8}04CmAQ#I@XvtmB*s4t8va?-IY4@CN>;)mLb_4!&P3XSw4pA_NzDb
zORn!blT-aHk1%Jpi>T~oGLuh{DB)JIGZ9KOsciWs2N7mM1JWM+lna4vkDL?Q)z_Ct
z`!mi0jtr+4*L&N7jk&LodVO#6?_qRGVaucqVB8*us6i3BTa<Q)$L85GR#EfdqV+R=
zf3l>^^EI0x%EREQSXV@f!lak6Wf1cNZ8>*artIJ(ADO*=<-an`3zB4d*oO*8D1K!f
z*<txU<LU~pP7SiW&ptI|Ssyh1rN!%<&LcD}5;B1lVw_<Fz9i;*7Icnh+iR{wkbxFv
zHQ>A@P1bZCNtU=p!742MrAj%&5v%Xp_dSX@4YCw%F|%Dk=u|1BOmo)HsVz)nD5USa
zR~??e61sO(;PR)iaxK{M%QM_rIua9C^4ppVS$qCT9j2%?*em?`4Z;4@>I(c%M&#cH
z>4}*;ej<4cKkbCAjjDsyKS8rIm90O)Jjgyxj5^venBx&7B!xLmzxW3jhj7sR(^3Fz
z84EY|p1NauwXUr;FfZjdaAfh%ivyp+^!jBjJuAaKa!yCq=?T_)R!>16?{~<b2tOP~
z47Nm=L%=a2H5%-;PoTI9Zf8Q{gX)6FgL99Sq~HCCHEEWym2icXnIe}8P_;ArgG0CO
zf`4Rr(ciS_AIGt|OsCGh)=l12V2IHdqu&-WW<-O!NRu$)_PXwf_YA1=lIto-SBdBp
zc;mWJN=QE`GD!ww=QztESZcD3U_Jx*+2x>p)FQ3LDoMyG%hL#pR!f@P%*;#90rs_y
z@9}@r1BmM-SJ#DeuqCQk=J?ixDSwL*wh|G#us;dd{H}3*-Y7Tv5m=<O-p8_PlVR?L
zh4I(^CY;zbW$TKH9!Xrci9D`~7Tt_MnPoyJiw3E%9=)V8`no!#&SD?Z3i8z<VyM}0
zABD#E*H)<&R|%HW;*e1VGvE8RGjpVF<el}tkQ-ZH>bQJMcH+_S`zVtf;!0kt*(zwJ
zs+kedTm!A}cMiM!qv(c$o5K%}Yd0|nOd0iLjus&;s0Acvoi-PFrWm?+q9f^FslxGi
z6ywB`QpL$rJzWDg(4)C4+!2cLE}UPCTBLa*_=c#*$b2PWrRN46$y~yST3a2$7hEH=
zNjux+wna^AzQ=KEa_5#9Ph=G1{S0#hh1L3hQ`@HrVnCx{!fw_a0N5xV(iPdKZ-HOM
za)LdgK}1ww*C_>V7hbQnTzjURJL`S%`6nTHcg<XB+ozL*{rR!_$M~K9Ao~6H!H^=h
zwoacr(!lN?6COXY0RI?8^Y3)nD5dew#%KWle2X)4QJ|3aSbkvB3|XvJ4T7PtDp@RC
zL=FRTdKkZak;Ble+c&|%U<4_;=Pv@V_7`H`L@;$HHik1Cov%9Y?v|ejzhoH-_ORGg
z?z#NpZ8<kuALb{N_e(NeGkem>S+dB6b_;PY1FsrdE8(2K6<T$5h-ID+y%Pgc&YiJj
zQSx)n1qnTmVVNMYY68M{^SPS)&CE>FN>37!62j_cBlui{jO^$dPkGHV>pXvW0EiOA
z<TH9~Xay1oO$zQ#3a3<TF-+#*^SkQT;5{#&5>qW`YaSUBWg_v^Y5tPJfWLcLpsA8T
zG)<v7DAcVy#7Wn65S?qZDrUX35PlA`Aoi+&wVKj813Fm5$JK2HOhK_!#&jYh-6-UE
z?+!tn`6hPZXOsq_tvt7v))8yvK|C^QB-3YDBn&zFRg<%>!x>pKMpt!lv3&KV!-um=
zKCir6`bEL_LCFx4Z5bAFXW$g3Cq`?Q%)3q0r852XI*Der*JNuKUZ`C{cCuu8R8nkt
z%pnF>R$uY8L+D!V{s^9>IC+bmt<05h**>49R*#vpM*4i0qRB2uPbg8{{s#9yC;Z18
zD7|4m<9qneQ84uX|J&f-g8a|nFKFt34@Bt{CU`v(SYbbn95Q67*)_Esl_;v291s=9
z+#2F2apZU4Tq=x+?V}CjwD(P=U~d<=mfEFuyPB`Ey82V9G#Sk8H_Ob_RnP3s?)S_3
zr%}Pb?;lt_)Nf>@zX~D~TBr;-LS<1I##8z`;0ZCvI_QbXNh8Iv)$LS=*gHr;<k-Rm
zCOX3iwRBMS%2HbhB&55bKxXVrjksHaE!$yhFQVOkB9&b;RXWYu12Q{oZxRnIOVr=+
zV;u%|w58=ulh(mY=94oS*pT{cO%ppm(zvJWm<qAqWJ+tsD$mc#zQ-$!O_aUVS(xv&
zlic&3<NOINl%vfa(YE-09OenqqI00N?`6YZ&y5jRWu1$*;ND0xgkIT8GGJ<pZ_BqS
zfzf6E9oArEF5xqlU<TZaFS?_~jIlVR?u(-sg0I7Ln4&`lfjy*Sukl^_TcEsDm~(l}
z+s}VbwTMn&y0~O&Noc7}EK>}dgb=w5$3k2la1keIm|=7<-JD>)U%=Avl0Vj@+&vxn
zt-)`vJxJr88D&!}2^{GPXc^nmRf#}nb$4MMkBA21GzB`-Or`-3lq^O^svO7Vs~FdM
zv`NvzyG+0T!P8l_&8gH|pzE{N(gv_tgDU7SWeiI-iHC#0Ai%Ixn4&nt{5y3(GQs)i
z&uA;~_0shP$0Wh0VooIeyC|lak__#KVJfxa7*mYmZ22@(<^W}FdKjd*U1CqSjNKW%
z*z$5$=t^+;Ui=MoDW~A7;)Mj%ibX1_p4gu>RC}Z_pl`U*{_z@+HN?AF{_<AT&sf>W
z?M_X@o%w8fgFIJ$fIzBeK=v#*`mtY$HC3tqw7q^GCT!P$I%=2N4FY7j9nG8aIm$c9
zeKTxVKN!UJ{#W)zxW|Q^K!3s;(*7Gbn;e@pQBCDS(I|Y0euK#dSQ_W^)sv5pa%<^o
zyu}3d?Lx`)3-n5Sy9r#`I{+t6x%I%G(iewGbvor&I^{lhu-!#}*Q3^itvY<Y65Bs!
z6}9J&T3Jmx%Jeo0UA1RUWfC4^3~`bOw#&=(RdYfoBOtonl9x?Q%%ud_8xGfac}V3S
z_t?8@P9D{AMY+HQj#M?0#<Loprwk<zPs3>(^UWXgvthH52zLy&T+B)Pw;5>4D6>74
zO_EBS)>l!zLTVkX@NDqyN2cXTwsUVao7$HcqV2%t$YzdAC&T)dwzExa3*kt9d(}al
zA~M}=%2NVNUjZiO7c>04YH)sRelXJYpWSn^aC$|Ji|E13a^-v2MB!Nc*b+=KY7MCm
zqIteKfNkONq}uM;PB?vvgQvfKLPMB8u5+Am=d#<Ofl>>g+o&Ys<k|1Ag^|(Lcq#YS
zJ3m+ShjMEKKXbb?#zc6~_{8T^k&I4kx<j?2OLnw(e9?2R%ab*KIh|OcYkV*-ppCU+
z&<4=VL>b>dX9EC8q?D$pJH!MTA<fJX`-o>qa=DS5$cb+;hEvjwVfF{4;M{5U&^_+r
zvZdu_rildI!*|*A$TzJ&apQWV@p{!W`=?t(o0{?9y&vM)V)ycGSlI3`;ps(vf2PUq
zX745#`cmT*ra7XECC0gKkpu2eyhFEUb?;4@X7weEnLjXj_F~?<g~DII^Bcx&poTYi
zLVuwObActGKn>OzL1U1L0|s6M+kIhmi%`n5vvDALMagi4`wM<y{<R6>c=JV{XiO+^
z?s9i7;GgrRW{Mx)d7rj)?(;|b-`iBNPqdwtt%32se@?w4<^KU&585_kZ=`Wy^oLu9
z?DQAh5z%q;UkP48jgMFH<isTC5e=i>Tf#m<K<awZyB<dC!4ZWVVj?0l^>j?#z|=w=
z(q6~17Vn}P)J3M?O)x))%a5+>TFW3No~TgP;f}K$#icBh;rSS+R|}l&#X9BCa%1Et
zwk~hMkhq;MOw^Q5`7oC{CUUyTw9x>^%*FHx^qJw(LB+E0WBX@{Ghw;)6aA-KyYg8p
z7XDveQOpEr;B4je@2~usI5BlFadedX^ma{b{ypd|RNYqo#~d*mj&y`^iojR}s%~vF
z(H!u`yx68D1Tj(3(m;Q+Ma}s2n#;O~bcB1`lYk%Irx60&-nWIUBr2x&@}@76+*zJ5
ze&4?q8?m%L9c6h=J$WBzbiTf1Z-0Eb5$IZs>lvm$>1n_Mezp*qw_pr8<8$6f)5f<@
zyV#tzMCs51nTv_5ca`x`yfE5YA^*%O_H<xfnQ6>?;tWYdM_kHPubA%vy47i=9>Bq)
zRQ&0UwLQHeswmB1yP)+Bi<gYuF=;5%P5fb($ua)vN{<dTS}pc$-noYj&~P(-vz}$v
zu3jpy02nRu2m5&K8!o)7k}0wq<;X00@Xx7A<mINk!<+VpN#`s2^mC5Ofe4$`&tl#*
z>R;S+Vc-5TX84KUA;8VY9}yEj0eESSO`7HQ4lO<y)w_Q~B}%2$aGK(6Ummn<`kl%;
z`ex#21X!9UBm3Vc-U~%seDuubCS=6He};CM149#aL;PRFuT<U<#xD2*e6V!HB9TS@
z-1@gJDr5k3GW(TMRP`M0C}32Sp)@iN+m7Q7FVkR-!Q93t0T{<wiGM)0t%$WJc@v;>
z4(CyA8y1G7_C;6kd4U3K-aNOK!sHE}KL_-^EDl(vB42P$2Km7<xlD85HX*0-hkMZF
zkjr5ZvT-#;Mth(cu<tj#atu~`yerH!&_Rq;m6S6;E=E^t8E;_e)$<aCEe^z9S}-Gm
zR}d6r*AN)OHk0vR$wldVl&!rNQoW*!$WBpDRw`=6+$-g54384TvT>$WGqNy=%fqB+
zSLdrlcbEH=T@W8V4(TgoXZ*G1_aq$K^@ek=TVhoKRjw;HyI&coln|uRr5mMOy2GXP
zwr*F^Y|!Sjr2YQXX(Fp^*`Wk905K%$bd03R<H!tySet(EP)5Lj`0&gFCZ@coqtHFV
zq;TC+Ud)isOY`?v*vYVa0u2u<OuzeQhQx-th#lEeb|E85m0u7j#xz<Q(27O50YNZG
z_X!_ZeKj36XsF4fNkWJ-X&&`{PiP|d5I{)ntoL7!_lyc3!C3?s@K?fxx2uj~W~|6a
z@37XYDSt)e<cy5Hg6yFElSnilL`l_9#54dfOVI=v!_cyZ8P0}j&eAUCbFyagF03t)
ziN>4(igl0&7IIm*#f`A!DCarW9$h$z`kYk9MjjqN&5-DsH@8xh63!fTNPxWsFQhNv
z#|3RjnP$Thdb#Ys7M+v|>AHm0BVTw)EH}>x@_f4zca&3tXJhTZ8pO}aN?(dHo)44Z
z_5j+YP=jMlFqwvf3lq!57-SAuRV2_gJ*wsR_!Y4Z(trO}0wmB9%f#jNDHPdQGHFR;
zZXzS-$`;7DQ5vF~oSgP3bNV$6Z(rwo6W(U07b1n3UHqml>{=6&-4PALATsH@Bh^W?
z)ob%oAPaiw{?9HfMzpGb)@Kys^J$CN{uf*HX?)z=g`J(uK1YO^8~s1(ZIbG%Et(|q
z$D@_QqltVZu9Py4R0Ld8!U|#`5~^M=b>fnHthzKBRr=i+w@0Vr^l|W;=zFT#PJ?*a
zbC}G#It}rQP^Ait^W&aa6B;+0gNvz4cWUMzpv(1gvfw-X4xJ2Sv;mt;zb2Tsn|kSS
zo*U9N?I{=-;a-OybL4r;PolCfiaL=y@o9{%`>+&FI#D^uy#>)R@b^1ue&AKKwuI*`
zx%+6r48EIX6nF4o;>)zhV_8(IEX})NGU6Vs(yslrx{5fII}o3SMHW7wG<xJ7RkURX
zL?-%U*5SbEvYh>tK9oIO4OM&@@ECtXSICLcPXoS|{;=_yj>hh*%hP27yZwOmj4&Lh
z*Nd@OMkd!aKReoqNOkp5cW*lC)&C$P?+H3*%8)6HcpBg&IhGP^77XPZpc%WKYLX$T
zsSQ$|ntaVVOoRat$6lvZO(G-QM5s#N4j*|N_;8cc2v_k4n6zx9c1L4JL*83F-C1Cn
zaJhd;>rHXB%%ZN=3_o3&Qd2YOxrK~&?1=UuN9QhL$~OY-Qyg&})#ez*8Np<qwhY!r
zPGi5Uv36_KU&P;Ysny7Yn7Aq*w^YJk+j;r5!{54y2KTRW=n4P9Q$RrUV@IzXwTG1s
zzW93%6>QW_*<cOtWE@YNsI)L#ntpV!%&tkEA2b<G(kTCfol|w3coc&So$?P2SFmWk
zBWp7V`+IlUb`e$B*<dRPJ-ehhZQ$M{k7#onRlEE~dw{L=-9ElX-V5A(;-ZBE+Yf{^
z{+-Mf7yUbWUdboXPA1sh*z~xCt^6m6c{6_JCok9HQbYRhr51?*l;sOM;AIxuJ4Q$p
z`CgAJ+<9O64PUJ^k}^%FQclq}Wk!;S2TZ^{;?u15<et5AgcPi>a&kD&ANjedxT0Ar
z<6r{eaVz3`d~+N~vkMaV8{F?RBVemN(jD@S8qO~L{rUw#=2a$V(7rLE+kGUZ<%pdr
z?$DP|Vg#gZ9S}w((O2NbxzQ^zTot=89!0^~hE{|c9q1hVzv0?YC5s42Yx($;hAp*E
zyoGuRyphQY{Q2ee0Xx`1&lv(l-SeC$NEyS~8iil3_aNlnqF_G|;zt#F%1;J)jnPT&
z@iU0S;wHJ2$f!juqEzPZeZkjcQ+Pa@eE<F$7REzl$4Vg!h~1-QZGdPJ^bJ@K4OS*c
zP-fR4iXy^QA;#1=y2VI*LRPhjykLV({@6o-twx$xfBE}QnTt6vqFElm=UM-(NfZCi
z=lx&9)JZKEFO|hbLCVw#&(sbpFfqulk`VBkNi?$lD5(B0WM5ff*mCA1f5%740p~O|
ztQOb8UFr=BBea^EKn!z+v}nk*YvS7NtKQ8K+R4>RSLKsWf=`{R@yv7AuRh&ALRTAy
z8=g&nxsSJCe!QLchJ=}6|LshnX<g_y(YX??7D<ya@4%V<9h+|Ic_N&p+^6cL1%rRw
zI`_<$r7i-QeU%G7oxJ6b$}<GVE+7g7j;H#VPbD7FMNK~{pfkqz8k&Qk100>IK)SNd
zRkJNiqHwKK{SO;N5m5wdL&qK`v|d?5<4!(FAsDxR>Ky#0#t$8XCMptvNo?|SY?d8b
z`*8dVBlXTUanlh6n)!EHf2<Z;<pqvCOZ=A2H>&PDG8sXNAt6~u-_1EjPI1|<=33T8
zEnA00E!`4Ave0d&VVh0e>)Dc}=FfAFxpsC1u9ATfQ`-Cu;mhc8Z>2;uyXtqpLb7(P
zd2F9<3cXS<T6BO6%Wff4)w8RK^!PZ}fJ&%B?D(O0phg;sxkMq1g;&s2yVy|dlo7$&
zut6p%Pt5t7R%%o@lpz7mamy48(tCjGd57eFCrjgxV_IjQOo{Eq=LdqW@am;MINbXP
zIQr$cxXwNaQ_H6v`p4(aUBXrmz}**&%<Zzfbtj+pDbBMu#7x_{KfkOxH1}OCyx<aM
zu@SXrn_{seG?|N7mo)o<BmjNPRWwBLiQLKA5vhgn!8ZTe76=gv#-hh7?ex$Xtz9>}
znMg?{&8_YFTGRQZEPU-XPq55%51}RJpw@LO_|)CFAt62-_!u_Uq$csc+7|3+TV_!h
z+2a7Yh^5AA{q^m|=KSJL+w-EWDBc&I_I1vOr^}P8i?cKMhGy$CP0XKrQzCheG$}G#
zuglf8*PAFO8%xop7KSwI8||liTaQ9NCAFarr~psQt)g*pC@9bORZ>m`_GA`_K@~&%
zijH0z;T$fd;-Liw8%EKZas>BH8nYTqsK7F;>>@YsE=Rqo?_8}UO-S#|6~CAW0Oz1}
z3F(1=+#wrBJh4H)9jTQ_$~@#9|Bc1Pd3rAIA_&vOpvvbgDJOM(yNPhJJq2%PCcMaI
zrbe~toYzvkZYQ{ea(Wiyu#4WB#RRN%bMe=SOk!CbJZv^m?Flo5p{W8|0i3`hI3Np#
zvCZqY%o258CI=SGb+A3yJe~J<XAm<h+@x%=dk!>H^i{uU`#U#fvSC~rWTq+K`E%J@
zasU07&pB6A4w3b?d?q<ZUdN`d9`jSQ6}@hE_t>}2=0rA#SA7D`X+zg@&zm^iA*HVi
z009#PUH<%lk4z~p^l0S{lCJk1Uxi=F4e_DwlfHA`X`rv(|JqWKAA5nH+u4Da+E_p+
zVmH@lg^n4ixs~*@gm_dgQ&eDmE1mnw5wBz9Yg?QdZwF|an67Xd*x!He)Gc8&2!urh
z4_uXzbYz-aX)X1>&iUjGp;P1u8&7TID<T*k)hrSs$ZMYU#eY?f%J<TYM`ZV5WD$80
zG6we^sim<v0ffzyR3HV@k#_?T5yB1?r-E~gnJ!jx=#l~KWX=|*TsGqUMbMy7&Dlm$
zkg`~ug9}A)NTCqAmF?i{?tn%$xnbe}sXgn0Ns#1Tz9yxnXess97ti7|9c?mVx|E|M
zsw|@!R#sWRksSuwE0qkq{xVpVBsF7Y5`nBxFc=Vb@S*=tu3_rkiM*j^3$OH{X3IB$
zsB0-+Fdr>0bTH-jCL&Xk8b&<MC!nk<L_l*|?aq$M0{!H9`RQ21GGD+c^BcX*2|SYI
zugFZ`gqDwwr<(%$82O_6nOWDm!eA(RGpBfa<+B;MKzgz`W@E7E&XQR*%r|=RjJ(AQ
z1GcBC!v)wKu_J~RfHh}+ZjQp_Xx>;;6p2op_=y^m@Nq*0{#o!!A;wNAFG@0%Z9rHo
zcJs?Th>Ny6+hI`+1XoU*ED$Yf@9f91m9Y=#N(HJP^Y@ZEYR6I?oM{>&Wq4|v0IB(p
zqX#Z<_3X(&{H+{3Tr|sFy}~=bv+l=P;|sBz$wk-n^R`G3p0(p>p=5ahpaD7>r|>pm
zv;V`_IR@tvZreIuv2EM7ZQHhO+qUgw#kOs%*ekY^n|=1#x9&c;Ro&I~{rG-#_3ZB1
z?|9}IFdbP}^DneP*T-JaoYHt~r@EfvnPE5<mj|3vYvi%XA!0DTe17}~aG2h7eq*~r
z9|l2u19&ExDJOsRZ$@8=z;;HhZw$_SviSm}uAwc_ow2rT=iX2K1>EKUwIxjPbsr$%
zfWW83pgWST7*B(o=kmo)74$8UU)v0{@4DI+ci&%=#90}!CZz|rnH+Mz=HN~97G3~@
z;v5(9_2%eca(9iu@J@aqaMS6*$TM<otkyEUfDAtMmVO5=3I}?EG6T26ue>w!S>H(b
z4(*B!|H|8&EuB%mITr~O?vV<E-8Z6S)k5lzkIaVLJC566nZk>Ef%(Gr)6E=>H~1VR
z&1YOXluJSG1!?TnT)_*YmJ*o_Q@om~(GdrhI{$Fsx_zrkupc#y{DK1WOUR>tk>ZE)
ziOLoBkhZZ?0Uf}cm>GsA>Rd6V8@JF)J*EQlQ<=JD@m<)hyElXR0`pTku*3MU`HJn|
zIf7$)RlK^pW-$87U;431;<klhG5_ER>Ye4Ie+l~_B3*bH1>*yKzn23cH0u(i5pXV!
z4K?{3oF7ZavmmtTq((wtml)m6i)8X6ot_mrE-QJCW}Yn!(3~aUHYG=^fA<^~`e3yc
z-NWTb{gR;DOUcK#zPbN^D*e=2eR^_!(!RKkiwMW@@yYtEoOp4XjOGgzi`;=8<Yusf
zN5l6kO$1L;ws<m1`Zh#?`63unV{T(2V21gcCYV&FhZqe6Nass1MK|Z4KyXbkzmY5}
zZ?_?UexvC&zoC0o1N+Vde1)9v5Lgfss-n~Y`wrFPCpU&f2y~X5VS8!)_$jxG?x+Q>
zi3`Ccw1%L*y(FDj=C7Ro-V?q)-%p?Ob2ZElu`eZ99n14-ZkEV#y5C+{Pq87Gu3&>g
zFy~Wk7^6v*)4pF3@F@rE__k3ikx(hzN3@e*^0=KNA6|jC^B5nf(XaoQaZN?Xi}Rn3
z$8&m*KmWvPaUQ(V<#J+S&zO|8P-#!f%7G+n_%sXp9=J%Z4&9OkWXeuZN}ssgQ#Tcj
z8p6ErJQJWZ+fXLCco=RN8D{W%+*kko*2-LEb))xcHwNl~Xmir>kmAxW?eW50Osw3#
zki8Fl$#fvw*7rqd?%E?}ZX4`c5-R&w!Y0#EBbelVXSng+kUfeUiqofPehl}$ormli
zg%r)}?<O#LIQ<x^r>%=?_pHb9`Cq9Z|B`L8b>(!+8HSX?`5+5mm81AFXfnAt1*R3F
z%b2RPIacKAddx%JfQ8l{3U|vK@W7KB$CdLqn@wP^?azRks@x8z59#$Q*7q!KilY-P
zHUbs(IFYRGG1{~@RF;Lqyho$~7^hNC`NL3kn^Td%A7dRgr_&`2k=t+}D-o9&C!y^?
z6MsQ=tc3g0xkK(O%DzR9nbNB(r@L;1zQrs8mzx&4dz}?3KNYozOW5;=w18U6$G4U2
z#2^qRLT*Mo4bV1Oeo1PKQ2WQS2Y-hv&S|C7`xh6=Pj7MNLC5K-zokZ67S)C;(F0Dd
zloDK2_o1$Fmza>EMj3X9je7e%Q`$39Dk~GoOj89-6q9|_WJlSl!!+*{R=t<I5W)Q1
zkAGZ6mVbAZdwNx+cM^(`G%H7T29zgao{aSHP_2`opHKbyoo@LZV-ND6*ct<1X->Gp
z8u|MuSwm^t7K^nUe+^0G3dkGZr3@(X+T<R{A2|{q4h1HZkio;YA1t6>L5eah)K^Tn
zXEtHmR9UIaEYgD5Nhh(s*fcG_lh-mfy5iUF3xxpRZ0q3nZ=1qAtUa?(LnT9I&~uxX
z`pV?+=|-Gl(kz?w!zIieXT}o}7@`QO>;u$Z!QB${a08_bW0_o@&9cjJUXzVyNGCm8
zm=W+$H!;_Kzp6WQqxUI;JlPY&`V}9C$8HZ^m?NvI*JT@~BM<?RV=J&{dty%0kuvcV
zvDY*i(P?K=6~(~xZAsj_c^PMb&#Z`Y|Lurd8fSVQU$p5WH?x?Xpj)rsBdv*QxJ##A
zM=~|M*Y>=()T()Ii#+*$y@lTZBkmMMda><ZXF}$122DAC4inciHEXN*L_tT(?E|%+
zt7Py*&-=;dUzJ7C=EUZz8ph9x9vB|ACLKw@s&c^<^F0YA3k;p}2F-(+6L*|cO&Kx|
zGV=>7s#O(1YZR+zTG@&<R7(G2<E$<wduz9!FnD8M=}U%cAl$d*6}Sq3Sm>}!EXFG{
zEWPSDI5bFi;NT>Yj*FjH((=oe%t%xYmE~AGaOc4#9K_XsVpl<4SP@E!TgC0qpe1oi
zNpxU2b0(lEMcoibQ-G^cxO?ySVW26HoBNa;n0}CWL*{k)oBu1>F18X061$SP{Gu67
z-v-Fa=Fl^u3lnGY^o5v)Bux}<gD3`?Qhv)PX)U=^-kffCXQ$p2csKZNM5x8!RMUOX
zrn9?t`{WKqC0A+hrI3CS?R@viwL~gPCU^BRur-hw0CEwaK7f#%S}_w7_H%2lZVcgk
zQL;J=ry;kmi}ZUr-!!m`rCH2ERpwJ6Q|G`5r-Xy0r?6;<g{<5%zr{9CmP^vf>bNZ~
z5pL+7F_Esoun8^5>z8NFoIdb$sNS&xT8_|`GTe8zSXQzs4r^<Z>g0kZjg(b0b<J|)
z&kyXHVzP24v$IxevEHN?k6>Jvz`g<70u9Z3fQILX1Lj@;@+##bP|FAOl)U^9U>0rx
zGi)M1(Hce)LAvQO-pW!MN$;#ZMX?VE(22lTlJrk#pB0FJNqVwC+*%${Gt#r_tH9I_
z;+#)#8cWAl?d@R+O+}@1A^hAR1s3UcW{G+>;X4utD2d9X(jF555}!TVN-hByV6t+A
zdFR^aE@GNNgSxxixS2p=on4(+*+f<8xrwAObC)D5)4!z7)}m<cS(iD4<A0N$g+SqA
zl%O;ERC__&2rvP%TMdpBGey$+i_(aSuJSoOVG@%hWSWo?*uZz-46eyt;fOY4@j*cs
z(Nlf$ie?ANAv6K4_-a2q*kk+$A3)y-+s^rqkRC|T=Yj2fF?eZ}!9uZg3msy525K;C
zG$r&@M9n%7`Sgm&aIl}13Vz%ip9hGWt!og5bdx1qTG)j2nL>Tpb7&ofF3u&9&wPS<
zB62WHLGMhmrmOAgmJ+|c>qEWTD#jd~lHNgT0?t-p{T<Fhnjc^O*n1^SI<&BNNFb%X
zHxbuJadh!4YtYH|wpEljX5ubnIb*m`KO@(XQ|K!ErMf$l_=~Nst8I^_;~LFMY;jPd
z>=~#E<K9VH{%))?p1uEh9GO_D_^6?&!kOhc5(&300G7)A4!13Ozm(lvh<tIpVpv;w
z$Zq4R)GbGst(09X1uL^1TcWYOO$_QS5|?mAC8?<QY1GusEAbgtUMGPRN?~sU>McB|
z=AoDKOL+qXCfk~F)-Rv**V}}gWFl>liXOl7Uec_8v)(S#av99PX1sQIVZ9eNLkhq$
zt|qu0b?GW_uo}TbU8!jYn8iJeIP)r@;!Ze_7mj{AUV$GEz6bDSDO=D!&C9!M@*S2!
zfGyA|EPlXGMjkH6x7OMF?gKL7{GvGfED=Jte^p=91FpCu)#{whAMw`vSLa`K#atdN
zThnL+7!ZNmP{rc=Z>%$meH;Qi1=m1E3Lq2D_O1-X5C;!I0L>zur@tPAC<By>9*7<!
z3r5ih2IB%6&?*r6Z<C9~bdv;$Jz)vwe<Nu0(L5l%QJ@HdxjvyfFnvb*!a}9oGNK6E
zqHxM7juWe=SSnY{v&Q7EoMOb}E}wD)CsC?77@`e0AQsRgp-@%+t|BGqN=<`p&67Ay
z|1Ca)Xw?J?`0+tpDJa4VbOI+nCoMRhc94J)*YTm*Cvm6NKcmS0S8lEaP@BDlDO2j!
z3B#9mbQbob%QSF`NGB1uJE%GFPC5TQVb=AS_#@8Xn3od@{x#f5jU7spPqbI@;gM2n
zy<$hk+Hy??zt_V4Zq9&R;7&^l#vS@`iD+}{y4jLIDKXTJNC<QY9H?-HD>Je<e@N~V
zM8{whHc_Y)oJRTaE@}6XBK;XqJh6DOZ%b~};oF1$Ja8>h)`;eec}1`nkRP(%iv-`N
zZ@ip-g|7l6Hz%j%gcAM}6<zu1Fy2Y69l>-nrC8oA$BkOTz^?dakvX?`^=ZkYh%vUE
z9+&)K1UTK=ahYiaNn&G5nHUY5niLGus@p5E2@RwZufRvF{@$hW{;{3QhjvEHMvduO
z#Wf-@oYU4ht?#uP{N3utVzV49mEc9>*TV_W2TVC`6+oI)zAjy$KJrr=*q##&kobiQ
z1vNbya&OVjK`<C+)|Y=S6qD0g+yj}rJu+*{Nv+8EH`6C*w=QvJZy_0aJA=(RR*FuE
z=Ve*%{0>2pdRr<aX@8G=KRVz8TtomBSpcq@r(_ajX~o2yoaeZ}oez2h)8-QBk)?}3
z07=L4P3BU4*%bpPu*ZY*FM)E8NlN*R9eF#VQ}7$t%LL}o3#|L+gi2ok?oW7%M=|~p
zC5<%;sq@8S<pakq(618P52%D<(#5rYl@k)nhPsY1k)aFy(uH>M?LuK6BgrLN7H_3m
z!qpNKg~87XgCwb#I=Q&0rI*l$wM!qTkXrx1ko5q-f;=R2fImRMwt5Qs{P*p^z@9ex
z`2#v(qE&F%MXlHpdO#QEZyZftn4f05ab^f2vjxuFaat2}jke{j?5GrF=WYBR?gS(^
z9SBiNi}anzBDBRc+QqizTTQuJrzm^bNA~A{j%ugXP7McZqJ}65l10({wk++$=e8O{
zxWjG!Qp#5OmI#XRQQM?n6?1ztl6^D40hDJr?4$Wc&O<sMJO3^;cmzln7W^zYPW<c)
z|Nn)@|5@a8iRp(7<VO~{rdqT_5uSV!nd9F~6^REIQGA!cD-9=NGWybr;?0kXWZrN^
z3+v>_{*OfMfxe)V0=e{|N?J#fgE>j9jA<EEh|%C%>ajze$iN!*yeF%jJU#G1c@@rm
zolGW!j?W6Q8pP=lkctNFdfgUMg92wlM4E$aks1??M$~WQfzzzXtS)wKrr2sJeCN4X
zY(X^H_c^PzfcO8Bq(Q*p4c_v@F$Y8cH<tNdh?t1Gk+qA{Pne*ng|&%*k<pK?D`Q}5
zVD>LrH$`pJ2}=#*8%JYdqsqnGqEdBQMpl!Ot04tUGSXTQdsX&GDtjbWD=prcCT9(+
z&UM%lW%Q3yrl1yiYs;LxzIy>2G}EPY6|sBhL&X&RAQrSAV4Tlh2nITR?{6xO9ujGu
zr*)^E`>o!c=gT*_@6S&>0POxcXYNQd&HMw6<|#{eSute2C3{&h?Ah|cw56-AP^f8l
zT^kvZY$YiH8j)sk7_=;gx)vx-PW`hbSBXJGCTkpt;ap(}G2GY=2bbjABU5)ty%G#x
zAi07{Bjhv}>OD#5zh#$0w;-vvC@^}<H!J~9x8ns3P(-h{dr(SdVxo7mkj}AsjC5HV
zo6g6-m3quL?mvNQgld&;Wk&NDE-R7EZ)*~rtG<Lq_zyu{lXW&{xOyIFvsws8eo>F!
z#X$@)zIs1L^E;2xDAwEjaXhTBw2<{&JkF*`;c3<1U@A4MaLPe{M5DGGkL}#{cHL%*
zYMG+-Fm0#qzPL#V)TvQVI|?_M>=zVJr9>(<nvsf&9hvsWr%#7CsQ**Fe-0<7veWn*
zbd^GxM~>6ib*#z8q@mYKXDP`k&A4A};xMK0h=yrMp~JW{L?mE~ph&1Y1a#4%SO)@{
zK2juwynUOC)U*hVlJU17%llUxAJFuKZh3K0gU`a<X-1W{<+F6zY3jg>P)pc~b<Vo8
zn2YAtCd;B0Avz@7p^Po{xMRCQYS{JVW8Z`GH$zG=#SS&KZ2A$u^x!Isx6mLPi?<ZN
z*{kt-YdG0}`9!9hbnjn<=b=7lTPuWEpF+k^SZAjar2B<DQb{uEO;vTv3FqIDI3!LU
zvasv6BD^}y#db_7<6NwPQSk6X)=~uy$Zd95xS~u)s@;O!EALmaQ@kYB`EY75*h2)s
z-R#8r)o{~&P%kZgz*(Kw!pn_O3rshJwHWRYI|!$r!a4#|kLw{Kz&k3CZ#RtrYB!Yu
z*A++a?kRokM)%Uo3N_uT!~ugsw#&4oIID7K+!k+)I;<)Si^E{(i)cD@HTao5;+q!0
zbwB*KzCL0ZC~g-PH7MbBVgTO07?^K#9=bcG8FQEIE=(6id^)U|^hS5OYQT5$J-!Sa
zBvfO%E+b9eID~Xvvo@#oSJO3E?jiXTQ<upuXRYN+dqAs$<{%yP2cnwB9G5^{RErN2
z5a`n%B*&Qd&SoW|&P~{87+q;P_bbKnMD-j91aHnUm-Ol<>E~mM!i1mi!~LTf>1Wp<
zuG+ah<cN%^mGc@zm->p^gH8g8-M$u{HUWh0m^9Rg@cQ{&DAO{PTMudV6c?ka7+AO&
z746QylZ&Oj`1aqfu?l&zGtJnpEQOt;OAFq19MXTcI~`ZcoZmyMrIKDFRIDi`FH)w;
z8+*8tdevMDv*VtQi|e}CnB_JWs>fhLOH-+Os2Lh!&)Oh2utl{*AwR)QVLS49iTp{6
z;|172Jl!Ml17unF+pd+Ff@jIE-{Oxv)5|pOm@CkHW?{l}b@1>Pe!l}VccX#xp@xgJ
zyE<&ep<?&Ja!<vf;^Rc_Ext&<l)$GW^vhyI+JCe2O3`LUd|)s%0qsYi2%EvJz-tM3
zKY=mZW?7k^N!wTSw*{;yb$3mRD9vNKYL6QIU4KGF{JZXpqeFF?UNh<Hsu=#~nZ?*`
z8?`-sY#3wWljoYqahkg_LR+fxC=Ok@srcz_lf5JG(Aw?<nC(WNHZ^iNeqvbZ784f|
zUF|zFa%ZSkIT}iZS*J5%>$=*vT=}7vtvif0B?9xw_3Gej7mN*dOHdQPtW5kA5_zGD
zpA4tV2*0E^OUimSsV#?Tg#oiQ<Gc63Xnq8{B?9(QSV36W&7QYB_fY=P6DiK#CwX}S
zgr8jyAKT1k<~JoNlpe8K#uDWD6A;w{rqu&jtmBFgY_BM6uK=HK6yOqhbD)4G&d4Zx
zgx}5JZQcjx2iiz|qys{K@f>>%4D@1F5@AHwT8Kgen$bSMHD3sXCkq8^(uo7CWk`mT
zuslYq`6Yz;L%wJh$3l1%SZv#QnG3=NZ=BK4yzk#HAPbqXa92;3K5?0kn4TQ`%E%X}
z&>Lbt!!QclYKd6+J7Nl@xv!uD%)*bY-;p`y^ZCC<%LEHUi$l5biu!sT3TGGSTPA21
zT8@B&a0lJH<Is)g$je?v)zrGnVnN*a?`1A_B7jSFYFL!G^YdU54T8BJ`&=Grt0wbK
zm=GTh#mq0;L&QL~1)M*45{rzjOV&&Ibr2i!Ltb})&Q3g>Vn1I$I3I1I{W9fJAYc+8
zVj8>HvD}&O`TqU2AAb={?eT;0hyL(R{|h23=4fDSZKC32;wWxsV<K&5XXRr5uQ}LF
z+0CB-DJWvs=zyhUDM(~V3gV_A(2WHskwSfbLhWS!Vr~&q4bY$lqS1mvz2zv7a&eyv
zq27v0&hua?e7Hjc)2G9WDUS0kzHi?zAo?IsP=#m-cTywmevo}cL`cE(<Xi1(J>j`P
z3J3{M$PwdH!ro*Cn!D&=jnFR>BNGR<<|I8CI@+@658Dy(lhqbhXfPTVecY@L8%`3Q
z1Fux2w?2C3th60jI~%OC9BtpNF$QPqcG+Pz96qZJ71_`0o0w_q7|h&O>`6U+^BA&5
zXd5Zp1Xkw~>M%RixTm&OqpNl8Q+ue=92Op_>T~_9UON?ZM2c0aGm=^A4ejrXj3dV9
zhh_bCt-b9`uOX#cFLj!vhZ#lS8Tc47OH>*)y#{O9?AT~KR9LntM|#l#Dlm^8{nZdk
zjMl#>ZM%#^nK2TPzLcKxqx24P7R1FPlBy7LSBrRvx>fE$9AJ;7{PQm~^LBX^k#6Zq
zw*Z(zJC|`!6_)EFR}8|n8&&Rbj8y028~P~sFXBFRt+tmqH-S3<%N;C&WGH!f3{7cm
zy_fCAb9@HqaXa1Y5vFbxWf%#zg6SI$C+Uz5=CTO}e|2fjWkZ;Dx|84Ow~bkI=LW+U
zuq;KSv9VMboRvs<muUdEos4J@28PT^*5txvGZbKDaszyz$QdH{051B8A}wS50ihLR
z^}*xLvwA_M{Vi%9v2EHPcjW2dClsn~)MPlr{(wj9a}gF+Q-M)HC}0<xaSL~ZQN-$F
z7pVo2NF$PZ!~7c5`YO~K2nWlk*2_#MS>9)}2PAO|b(JCEC_A0wq{uEj|3x@}*=bOd
zwr{TgeCGG>HT<@Zeq8y}vTpwDg#UBvD)BEs@1KP$^3$sh&_joQPn{hjBXmLPJ{tC)
z*HS`*2+VtJO{|e$mM^|q<Nl<aNnR+M;uGuLoy^|5_yMTrUl*Jc;J-xFCNFUlNS9`1
z>v1R*8i(m1`%)}g=SU#T#0KlTM2RSvYUc1fP+va|4;5}Bfz98UvDCpq7}+SMV&;nX
zQw~N6qOX{P55{#LQkrZk(e5YGzr|(B;Q;ju;2a`q+S9bsEH@i1{_Y0;hWYn1-79jl
z5c&bytD*k)GqrVcHn6t-7kinadiD>B{Tl`ZY@`g|b~pvHh5!gKP4({rp?D0aFd_cN
zhHRo4dd5^S6ViN(>(28qZT6E>??aRhc($kP`>@<+lIKS5HdhjVU;>f7<4))E*5|g{
z&d1}<wI2Yxf4k?!umu<cm>D|vpuV^eRj5j|xx9nwaCxXFG?Qbjn~_WSy=N}P0W>MP
zG-F%70lX5Xr$a)2i6?i|iMyM|;Jtf*hO?=Jxj12oz&>P=1#h~lf%#fc73M2_(SUM-
zf&qnjS80|_Y0lDgl&I?*eMumUklLe_=Td!9G@eR*tcPOgIShJipp3{A10u(4eT~DY
zHezEj8V+7m!knn7)W!-5QI3=IvC<r`G1r;-#=KH#^bDsbD^<>^as5+TW1@Ern@yX|
z7Nn~xVx&fGSr+L%4iohtS3w^{-H1A_5=r&x8}R!YZvp<2T^YFvj8G_vm}5q;^UOJf
ztl=X3iL;;^^a#`t{Ae-%5Oq{?M#s6Npj+L(n-*LMI-yMR{)qki!~{5z{&`-iL}lgW
zxo+tnvICK=lImjV$<vu==Ri_*yyu6*srp=+w%VMI++>Z|O_c<d`u5Z43azu#^&ypv
z2XQf<KjK;)X-?wB*Sewpf;vW`6)cGyqY0^Kmt<sX6AgDavh{KfTqndPyGjf#w5CPH
zd5wvsmzb)a>Yj_PlEYCzu-XBz&XC-JVxUh9;6*z4fuBG+H{voCC;`~GYV|hj%j_&I
zDZCj>Q_0RCwFauYoVMiUSB+*Mx`tg)bWmM^SwMA+?lBg12QUF_x2b)b?qb88K-YUd
z0dO}3k#QirBV<5%jL$#wlf!60dizu;tsp(7XLdI=eQs?P`tOZYMjVq&jE)qK*6B^$
zBe>VvH5TO>s>izhwJJ$<`a8fakTL!yM^Zfr2hV9`f}}VVUXK39p@G|xYRz{fTI+Yq
z20d=)iwjuG9RB$%$^&8#(c0_j0t_C~^|n+c`Apu|x7~;#cS-s=X1|C*YxX3ailh<R
zTW0JnWEDqjPC~D*L>g_|0`g!E&GZJEr?bh#T<kIti^!4|N+ecge$#dzW2oYeVA6W^
zTf=2ts!v<D6N@P&^Yk^QSZQdun$SpPGW!lb8i(GI;CLFfP&>pb8siR=JxWKc{#w7g
zWznLwi;zLFmM1g8V5-P#RsM@iX>TK$xsWuujcsVR^7TQ@!+vCD<>Bk9tdCo7Mzgq5
zv8<xjOE`)Xl$&nfKK_(a*GxWq=IP<8*TsiQ<?73@Fo<n&f=T#zZE61~c1WExC#Z*C
zBR?0KIU<_708sM|Ni}WhSK@G4$2@TsRGI0k6P~Edb~#f7+1%73{4^^R;XGADxxf+k
zSKP@Qw?N!!n%j~Ps{Av<y>d>dK9x8C@Qoh01u@3h0X_`SZ<H1Jt*l+r%vhj38gu7(
zi%Y(Yu(yCRu7j&QPtzY&|NIVK<{aX%!5|>luTb@5o;{4{{eF!-4405x8X7hewZWpz
z2qEi4UTiXTvsa(0X7kQH{3VMF>W|6;6iTrrYD2fMggFA&-CBEfSqPlQDxqsa>{e2M
z(R5PJ7uOooFc|9GU0ELA%m4&4Ja#cQpNw8i8ACAoK6?-px+oBl_yKmenZut#Xumjz
zk8p^OV2KY&?5MUwGrB<d@yk90?8kfe*7#9+-#&)Q0>Oo?ki`Sxo#?-Q4gw*Sh0k`@
zFTaYK2;}%Zk-68`#5DXU$2#=%YL#S&<HGFJsB^*5Aw|=c;4ki9<qCK7e%Vj(VHL~6
z&DTbldm(&0B0fTx|5re(!MJSE^QU1#`&m2qUm7Nf|9k}h=kY)0pa1#ZNlE^hgpfxc
z$@}d>MTN8bF+!J2VT6x^XBci6O)Q#JfW{<sb5)HkTF~_Sa_M^vi<UXTocVSE>YMz)
zOBM>t2rSj)n#0a3cjvu}r|k3od6W(SN}V-cL?bi<J46HHYSLL&OeFRm%u#)=VN9PH
zxaTYq?JHLwz2fTT`H!RbdHX@6n6p6?mn|3kIU%%1k}C2(3hi^IDh(udokZ1xF-p+u
z0u<3zht=l5wn_zAAWK?U0XT-L6xs5k3ZJ=V1H`#dpB4>*Iz-8uOcCcsX0L>ZXjLqk
zZu2uHq5B|Kt>e+=pPKu=1P@1r9WLgYFq_TNV1p9pu0erHGd!+bBp!qGi+~4<N?Fq)
zn=ndP#eVyN4)AOmF>A(RsYN@CyXNrC&hxGmW)u5m35Om<gLIl43|ftfxD;4@0U%W{
zfCt<dp}9hk8dzvf-#}P{$rRcsI2FbF%>WwX`I+0yByglO`}HC4nGE^_HUs^&A(uaM
zKPj^=qI{&ayOq#z=p&pnx@@k&I1JI>cttJcu@Ihljt?6p^6{|ds`0MoQwp+I{3l6`
zB<9S((RpLG^>=Kic`1LnhpW2=Gu!x`m~=y;A`Qk!-w`IN;S8S930#vBVMv2vCKi}u
z6<-VPrU0AnE&vzwV(CFC0gnZYcpa-l5T0ZS$P6(?9AM;`Aj~XDvt;Jua=jIgF=Fm?
zdp=M$>`phx%+Gu};;-&7T|B1AcC#L4@mW5SV_^1BRbo6;2PWe$r+npRV`yc;T1mo&
z+~_?7rA<BY)cqU~+}^_%&5(AuHg02IxD?AG?j^Zhn%1`rT{GFYPZA>+(Um&o@Tddl
zL_hxvWk~a)yY}%j`Y+200D%9$bWHy&;(yj{jpi?Rtz{J66ANw)UyPOm;t6FzY3$hx
zcn)Ir79nhFvNa7^a{SHN7XH*|Vlsx`CddPnA&Qvh8aNhEA;mPV<ryWQl0P?MiPwBL
z+vex2kKClH;6k1Et=IFG!&SyN$8+S#_UnR?aFa6Eq|~rBS)8W_vwKAj+o^X)(9027
z*WrGQ$Ej`dD5*y_K^!R^&+N3W?cTJmXL9S<fpm^mH*?0O@w{qI>v;Ah=k<*u!Zq^7
z<=xs*iQTQOMMcg|(NA_auh@x`3#_LFt=)}%SQppP{E>mu_LgquAWvh<>L7tf9+~rO
znwUDS52u)OtY<~!d$;m9+87aO+&`#2ICl@Y>&F{jI=H(K+@3M1$rr=*H^dye#~TyD
z!){#Pyfn+|ugUu}G;a~!&&0aqQ59U@UT3|_JuBlYUpT$2+11;}JBJ`{+lQN9T@QFY
z5+`t;6(TS0F?OlBTE!@7D`8#URDNqx2t6`GZ{ZgXeS@v%-eJzZOHz18aS|svxII$a
zZeFjrJ*$IwX$f-Rz<J3Ld3QGgbbgt9L|A^RC+}TLgII?Lz8a4l887}}cuTMGGhsX*
z9&mmFqP?djyuRYNLb|y#gPeE?&x5*{yL4yV`z1bx{$hup<=h=EzEhKN_egi{3sPw}
z!?<6KVR?6VYA;nDAIyA2AKd4Ab>r_G>xbu@euGl)B7pC&S+CmDJBg$BoV~jxSO#>y
z33`bupN#LDoW0feZe0%q8un0rYN|eRAnwDHQ6e_)xBTbtoZtTA=Fvk){q}9Os~6mQ
zKB80VI_&6iSq`LnK7*kfHZoeX6?WE}8yjuDn=2#JG$+;-TOA1%^=DnXx%w{b=w}tS
zQbU3XxtOI8E(!%`64r2`zog;5<0b4i)xBmGP^jiDZ2%HNSxIf3@wKs~uk4%3Mxz;~
zts_S~E4>W+YwI<-*-$U8*^HKDEa8oLbmqGg?3vewnaNg%Mm)W=)lcC_J+1ov^u*N3
zXJ?!BrH-+wGYziJq2Y#vyry6Z>NPgkEk+Ke`^DvNRdb>Q2Nlr#v%O@<5hbflI6EKE
z9dWc0-ORk^T}jP!nkJ1imyjdVX@GrjOs%cpgA8-c&FH&$(4od#x6Y&=LiJZPINVyW
z0snY$8JW@>tc2}DlrD3StQmA0Twck~@>8dSix9CyQOALcREdxoM$Sw*l!}bXKq9&r
zysMWR@%OY24@e`?+#xV2bk{T^C_xSo8v2ZI=lBI*l{RciPwuE>L5<W5z;@6p;6;|O
z%1xS<PrHS@9bs_>@uhz@{!l)rtVlWC>)6(G)1~n=Q|S!{E9~6*f<w%m`;Qd>dpa*n
z!()-8EpTdj=zr_Lswi;#{TxbtH$8*G=UM`I+icz7sr_SdnHXrv=?iEOF1UL+*6O;%
zPw>t^kb<Y!37E>W9X@oEXx<97%lBm-9?O_7L!DeD)Me#rwE5<?Y(}PPRapoJOytLr
zH%=!UQ}Y5J_(3KVTFf%D7DXvmTFStSsvMk1_bhZw*QC=UXI9MplG;au>4t~UBu9VZ
zl_I1tBB~>jm@bw<SOr`xU7_Kg$PU){Os_I8cve<UKbUg-U~fB$8f2Y<)c>0Aljz8!
zXBB6ATG6i<ky6{p$)@{!N}M!yKr)m#;X?<H(Z75&7#=qg5yAe!nNXMBxO$uuu4{+;
zB;Z$SC9Hkye>ByKIxs!qr%pz%wgqbg(l{65DP4#v(vqhhL{0b#0C8mq`bnqZ1OwFV
z7mlZZJFMACm>h9v^2J9+^_zc1<NQ`E;}bmano=+KqF=1iDw+>=JjL#qM5ZHaThH&n
zXPTsR8(+)cj&>Un{6v*z?@VTLr{TmZ@-fY%*o2G}*G}#!bmqpoo*<pdMvH^(qd~4b
z&U$~Fo(WzrnMy~ykcI{stgLy~unZF&M1>Ay@U!JI^Q@7gj;Kg-HIrLj4}#ec<Vnys
z#0P7P+6h@<uM?dbofaPCeGw4^GKj)BhZ;UWJ+<6Nx^ge1;*1yP2rFzRz&wW{MTEr2
zHXxRizPbhoG%+`mqNb$aK0~}2_bn~FMY2@vFZ0AA!pFio4f|r;(+@Q1=`h#RqX!CO
zrKiCBy`_GlRuCrdEk+*L2qw)Xi3a$4Yu;T-ek#YzAVQMsU=A4R@x`B#O+Rf$w;qdW
z?}xS=&C)dEt1bY5wPQ*Qhbfh3qM{iKuWW?ZRgK1yH>4~D2~X6vo;ghep-@&yOivYP
zC19L0D`jjKy1Yi-SGPAn94(768<MS&a!S%v@?~BDz5em7uiJCVng8mCX4kKzoQ6PZ
z2Tk0a6O=C#;z%H(u6zVb=|H2_?Mkm8Gc%N0k^Pp7o_nH69Yyq@mT_v(ZVS($NBa&F
z6xwW+#+_X3s)pC4l=DX;IIvOLHG0qBsgo?lu%3&9euMN`&SyK73Bo<x@&AHA*=am&
z1@no;r9Z{@*~p)rGlS`fyJCBB`|!&7#=qvn{2=@K-S4-@S0u|BDv=7_-i!Ic_QmBs
zjXb>Tcf$urAf{)1)9W58P`6MA{YG%O?|07!g9(b`8PXG1B1Sh0?HQmeJtP0M$O$hI
z{5G`&9XzYhh|y@qsF1GnHN|~^ru~HVf#)lOTSrv=S<uFZ_;?KwDx~9UUr?%y@ex}8
z_9H~!Xc3m^qNrtT@3y|;1c?=J#VjGm2#~m8gbETU8K{z_hDYEnF$+2Q2Oc9Mp&ga4
z#Mhq}0`Jk@q}^00F79AOKffu=y|_%9nA^(yl2kj(9G$y+k?BKg2^S**>@DyR$UKQk
zjdEPFDz{uHM&UM;=mG!xKvp;xAGHOBo~>_=WFTmh$chpC7c`~7?36h)7$fF~Ii}8q
zF|YXxH-Z?d+Q+27Rs3X9S&K3N+)OBxMHn1u(vlrUC6ckBY@@jl+mgr#KQUKo#VeFm
zFwNYgv0<%~Wn}KeLeD9e1$S>jhOq&(e*I@L<=I5b(?G(zpqI*WBqf|Zge0&aoDUsC
zngMRA_Kt0>La+Erl=Uv_J^p(z=!?XHpenzn$%EA`JIq#yYF?JLDMYiPfM(&Csr#f{
zdd+LJL1by?xz|D8+(fgzRs~(N1k9DSyK@LJygwaYX8dZl0W!I&c^K?7)z{2is;OkE
zd$VK-(uH#AUaZrp=1z;O*n=b?QJkxu`Xsw&7yrX0?(CX=I-C#T;yi8a<{E~?vr3W>
zQrpPqOW2M+AnZ&p{hqmHZU-;Q(7<pG4gt)B4$6wsrn;hWv_Oig17Y?jJ&7E4<tmZn
zOCP%0<fYi!jPBWOw9w}#K7$n=jY!?ZAO-w*mO9|G92xj4(OrW0?2j);##sDv4x>?-
zP8L|Q0RM<y7372ia7WA3T&finv`tA1B}OSEw3SiAZho>~sB0w1w53f&Kd*y}ofx@c
z5Y6B8qGel+uT1JMot$nT1!Tim6{>oZzJXdyA+4euOLME?5Fd_85Uk%#E*ln%y{u8Q
z$|?|R@Hpb~yTVK-Yr_S#%NUy7EBfYGAg>b({J|5b+j-PBpPy$Ns`PaJin4JdRfOaS
zE|<<io8>HjH%NuJgsd2wOlv>~y=np%=2)$M9LS|>P)zJ+Fei5vYo_N~B0XCn+GM76
z)Xz3tg*FRVFgIl9zpESgdpWAavvVViGlU8|UFY{{gVJskg*I!ZjWyk~OW-Td4(mZ6
zB&SQreAAMqwp}rjy`HsG<WwCuHn5_unq_y9e#cRc8<%lnA}KbA9;x1=pR7&&N!F-G
zjdr@AW->({l2&q5Y52<@AULVAu~rWI$UbFuZs>Sc*x+XI<+ez%$U)|a^unjpiW0l0
zj1!<ZReHVMm7dlC$9b#yLY{IPu{3a%?*mdb?Ln7M9kK-6dElH{UJFdM&-U|~tV)|A
zbcx=;RI5^&eB34O5VoIsgM>K0(b6$8LOjzRqQ~K&dfbMIE=TF}XFAi)$+h}5SD3lo
z%%Qd>p9se=VtQG{kQ;N`sI)G^u|DN#7{aoEd<IbwTtn<2Y5Nlu3=6HqY@ID|;XJ`>
zkksYP%_X$Rq08);-s6o>CGJ<}v`qs%eYf+J%DQ^2k68C%nvikRsN?$ap--f+vCS`K
z#&~)f7!N^;sdUXu54gl3L=LN>FB^tuK=y2e#|hWiWUls__n@L|>xH{%8lIJTd5`w?
zSwZbnS;W~DawT4OwSJVdAylbY+u5S+ZH{4hAi2&}Iv~W(UvHg(1GTZRPz`@{SOqzy
z(8g&Dz=$PfRV=6FgxN~zo+G8OoPI&d-thcGVR*_^(R8COTM@bq?fDwY{}WhsQS1AK
zF6R1t8!RdFmfocpJ6?9Yv~;WYi~XPgs(|>{5})j!<TEFe=Er$+pf$t`J5iiJseKY6
zOKcLAm!-S>AR!voO7y9&cMPo#80A(`za@t>cx<0;qxM<p_$AQsg0LlIt|lbiT;}c3
zw^mT}aw%3C?rkh$t46uo%m3)>@S*m(jYP)dMXr*?q0E`oL;12}VAep179uEr8c<=D
zr5?A*C{eJ`z9Ee;E$8)ME<J+@MZh2qBdMetA0Ap@SWv(BczRx8QLfufLwM}8P0mCM
zqL)NPc0jmFO8S}^g)dV@LX%jnUO0Nfp9J$lfwZiNA(bY@QLPrgG(eM{>CqatHkbHH
z&Y+ho0B$31MIB-xm&;xyaFCtg<{m~M-Q<p|>DbY)fQ>Q*Xibb~8ytxZQ?QMf9!%cV
zU0_X1@b4d+Pg#R!`OJ~DOrQz3@cpi<UUDp%7N@Va%&%d{hBCU%M}b3(4mHNaXl%^x
zy!Jj<1JK)G8qrZwHKQaxXMHgDJ>Gy~XSKjZQQ|^4J1puvwKeScrH8o{bscBsowomu
z^f12kTvje`yEI3eEXDHJ6L+O{Jv$HVj%IKb<P1JL_~J>|J{IvD*l6IG8WUgDJ*UGz
z3!C%>?=dlfSJ>4U88)V+`U-!9r^@AxJBx8R;)J4Fn@`~k>8>v0M9xp90OJElWP&R5
zM#v*vtT}*Gm1<v7k$Q8)e+>^)Bv!s7<Pmunc}KvQIoTurYA$VFfn68@NS2!fMC<J7
zU5k+UNB7w2H5=t<P?=shL{5Ib0NG240C`@MTdpWV847hZ=*V+;L(?h<*^25EoClgz
zyD7a#m?)n<0d;}sfn7Zdh>2T3PB0yVIjJW)H7a)ilkAvoaH?)jjb`MP>2z{%Y?}83
zUIwBKn`-MSg)=?R)1Q0z3b>dHE^)D8LFs}6ASG1|da<c-!XQ(Z6e^nFF6CW&kh!QD
zJBO*^4S)F;_i)EMF6B*oE&=d8{@I29Wcz|o39n|gU$iV{0mmf~bE{AKN63AsId2PB
zg*_mqkTRn*8K3S&kIzHn;I0dhO)-->Dly_^lOSy&zIIhm*HXm1?VS=_iacG);_I9c
zUQH1>i#*?oPIwBMJkzi_*>HoUe}_4o>2(SHWzqQ=;TyhAHS;Enr7!#8;sdlty&(>d
zl%5cjri8`2X^Ds`jnw7>A`X|bl=U8n+3LKLy(1dAu8`g@9=5iw$R0qk)w8Vh_Dt^U
zIglK}sn^)W7aB(Q<l{uKGQ*rm=eJZ(-a1nFbLMjzjPyq^Zl*<ly16J->>HvrX=rxB
z+*L)3DiqpQ_%~|m=44LcD4-bxO3OO*LPjsh%p(k?&<Y@4%3KJjIC&Ci<sWjP2Dfw=
zuyvM4SPH14EA{O`2rzE>jvLp0py57oMH|*IMa(<|{m1(0S|x)?R-mqJ=I;_YUZA>J
z62v*eSK;5w!h8J+6Z2~oyGdZ68waWfy09?4fU&m7%u~zi?YPHPgK6LDwphgaYu%0j
zurtw)AYOpYKgHBrkX189mlJ`q)w-f|6>IER{5Lk97%P~<Lp)MD3iR}ejbGt7Rtt!H
zbM>a-JyCRFjejW@L>n4vt6#hq;!|m;hNE||LK3nw1{bJOy+eBJjK=QqNjI;Q6;Rp5
z&035pZDUZ#%Oa;&_7x0T<7!RW`#YBOj}F380Bq?MjjEhrvlCATPdkCTTl+2efTX$k
zH&0zR1n^`C3ef~^sXzJK-)52(T}uTG%OF8yDhT76L~|^+hZ2hiSM*QA9*D5odI1>&
z9kV9<p~_g)xTTw=X;R>jC~twA5MwyOx(lsGD_ggYmztXPD`2=_V|ks_FOx!_J8!zM
zTzh^cc+=VNZ&(OdN<cEfx!)Rv#OxA~Op%fRB@%V*lRYTee=t2@R^;Yw?#mEg+C=Q=
zojy#mB^&>=y4Juw)@8-85lwf_#VMN!Ed(eQiRiLB2^2e`4dp286h@v@`O%_b)Y~A;
zv}r6U?zs&@uD_+(_4bwoy7*uozNvp?bXFoB8?l8yG0qsm1JYzIvB_OH4_2G*IIOwT
zVl%HX1562vLVcxM_RG*~w_`FbIc!(T=3>r528#%mwwMK}uEhJ()3ME<NoNRheH>by
zQQjzqjWkwfI~;Fuj(Lj=Ug0y`>~C7`w&wzjK(rPw+Hpd~EvQ-ufQOiB4OMpyUKJhw
zqEt~jle9d7S~LI~$6Z->J~QJ{Vdn3!c}g9}*KG^Kzr^(7V<ce%+9mXv^Yaa3Jhd!0
zVk?95!P$`MAquqor+9D#c(4q*0U*gkAX5okY6G!AZg^p?IbWVd!~IAXj%<mibcw^E
z0M3HMVXuXDmhDXxE;Vjmfy%F+0X%+{&lK~`;T7cS`cLHThTCpHZupIqw|&Aqppk3r
z-&np;eZoZM2&XOVoZ;>I5Gk(mHLL{itj_hG?&K4Ws0+T4gLfi3eu$N=`s36geNC?c
zm<tGIMBC*Y4;VwmbLfiAj7y{1&1Jb>!~}vG6lx9Uf^5M;bWntF<-{p^bruy~f?sk9
zcETAPQZLoJ8JzMMg<-=ju4keY@SY%Wo?u9Gx=j&dfa6LIAB|IrbORLV1-H==Z1zCM
zeZcOYpm5><v|;Qz(!vWawg1_tKdRVrHI_W5DOUncaXPaZDhIYYS>U2fU7V*h;%n`8
zN95Qh<STRuU64jVjbmKjdqZSJY%8zw4$Tfj@Wvru9*X0H8*3HTGDxdEq_neggWPUu
z?xft@*y1f4!?2gYA)>fD994={1*<2vKLCNF)feKOGk`R#K~G=;rfq}|)s20&MCa65
zUM?xF5!&e0lF%|U!#rD@I{~OsS_?=;s_MQ_b_s=PuWdC)q|UQ&ea)DMRh5>fpQjXe
z<T?`@;|?};a~ft^83ljDfAQ3!94d~hNv5n{)4AwKJATa`zA71ee}fN!jaN8Z#4EjL
z-f$?vQg}|9Xo{%n!=1Mx&dq=e%YrtN37{wyLgfqAgdwo({~~Q__5WR5p+@9NOz51F
zn`CL;9K(yDAz%jg^1P_Hc`Bi##Ur7V7Egt@oIK-E#LjT)$}{W%w45C#V=-fOXxI=t
z^7_J*h#~Pik#Js#zy5ys39=Vz5a6#V82w{&CtitoXAwOl8~H^TQXd+vIaX<UxmEZ+
zVA?E;a0GBuKV>%9#*x=7{iRCtBKT#H>#v%>77|{4_slZ)XCY{s3<vj3F!Lf~Ms<;i
zbhaGgzo{F~=cvK)<7sgUCyNidX;S2p_?WD^=yZOmYaGxQQ-~@!!w5=kxBhe-MppxS
zf%rYJdpz6$k?w>j_r{tdpvb#|r|sbS^dU1x70$eJMU!h{Y7Kd{dl}9&vxQl6Jt1a`
zHQZrWyY0?!vqf@u-fxU_@+}u(%Wm>0<h|8_^}%F!#OlpyrbcO<dw!GUDNyxENZ?*z
zXa;m>I#KP48tiAPYY!T<suq7MlJU4p2C@*^!}?Z}Bs+ffZEdwIV~rhP4EI#LVSE#E
zKAv&oq@=|P;@PtQ@(J{wnUWAbS17e!I7@`^bq|U&TSNB%V@)WhqU`zr*SYoRa15`t
zq@?ryhS#AfQ#j8*PNC?6U-qg<^sQ_jI^Oh8HLIjwIVAJWx<QIp$*(EZ9$rxFs<o(f
z&qU=|nW^RP$x<u*s5N|2WXF}vN|`Y{xjc0I<5vRQ@T4U1{aj`*N<gWmUnEJdAd=LM
zS<sS>dW(o|KtVI|EUB9V`CBBN<Jb6P#IAaNVgj&r>aBLVih7+yMVF|GSoIQD0Jfb{
z!OXq;(>Z?O`1gap(L~bUcp>Lc@Jl-})^=6P%<~~9ywY=$iu8pJ0m*hOPzr~q`23eX
zgbs;VOxxENe0UMVeN*>uCn9Gk!4siN-e>x)pIKAbQ<D_NGuAv_X}p9rcKdkJ-CY72
zY;M@t?NA)MG(kc+%pPv#HrW@CR&+GK&%ZfgLEA^}da`PjtxP`2he{N2tMkOQBzSdU
zqbmpW3;gHqz$`asO$luCw6=w|wgSS|BN5dhU^m;NTBn4zBEe1bKmQJTcIjeq=_4;-
z<%Lk#6J$}CB#|%0(w^Q++N0xCR7{uhNVvN{SCZ__oxC7+<4L39n=PVh0~(Pz$Z2kz
zsD-eU@YACA>z!G)TcqIJ0`JBBaX>1-4_XO_-HCS^vr2vjv#7KltDZdyQ{tlWh4$Gm
zB>|O1cBDC)yG(sbnc*@w6e%e}r*|IhpXckx&;sQCwGdKH+3oSG-2)Bf#x`@<4ETAr
z0My%7RFh6ZLi<P3fz)VD6=F(UIjNi&4<Piytn-i3OvEhi7O_1<!4Bb=elUisJ5+JC
zX3<Z{mUVV<bu6}1{$m+MIUKl?IZ(DneHsoYb;kLtxDj9+Q`hKxkGfO!F3`9no26-x
zqe3&#LrJ-tqEc7B*%q?Pp5?r>Z_;X6Mu1YmXx7C$lSZ^}1h;j`EZd6@%JNUe=btBE
z%s=Xmo1Ps?8G`}9+6>iaB8bgjUdXT?=trMu|4yLX^m0Dg{m7rpKNJey|EwHI+nN1e
zL^>qN%5Fg)dGs4DO~uwIdXImN)QJ*Jhpj7$fq_^`{3fwpztL@WBB}OwQ#Epo-mqMO
zsM$UgpFiG&d#)lzEQ{3Q;)&zTw;SzGOah-Dpm{!q7<8*)Ti_;xvV2TYXa}=faXZy?
z3y?~GY@kl)>G&EvEijk9y1S`*=zBJSB1iet>0;x1Ai)*`^{pj0JMs)KAM=@UyOGtO
z3y0BouW$N&TnwU6!%<gf6*u=C<iEed;KBwJxLRtV%EsYYZE^_I&am&FwOQIrs&rNv
zsJkfwCitU8wV%PAV4*8&C!5{qUgyYY#T}|<>zS%nIrnANvZF&vB1~P5_d`x-giHuG
zPJ;>XkVoghm#kZXRf>qxxEix;2;D1CC~NrbO6NBX!`&_$iXwP~P*c($EVV|669kDO
zKoTLZNF4Cskh!Jz5ga9uZ`3o%7Pv`d^;a=cXI|>y;zC3rYPFLQkF*nv(r>SQvD*##
z(Vo%^9g`%XwS0t#94zPq;mYGLKu4LU3;txF26?V~A0xZbU4Lmy`)>SoQX^m7fd^*E
z+%{R4eN!rIk~K)M&UEzxp9dbY;_I^<z6SRx&;ge+MnfR=LP4lbl*GlbJMl=;M7>c}
zOc{wlIrN_P(PPqi51k_$>Lt|X6A^|CGYgKAmoI#Li?;Wq%q~q*L7ehZkUrMxW67Jl
zhsb~+U?33QS>eqyN{(odAkbopo=Q$Az?L+NZW>j;#~@wCDX?=L5SI|OxI~7!Pli;e
zELMFcZ<bg~PJE<rY>tJY3!|=Gr2L4>z8yQ-{To>(f80*#;6`4IAiqUw`=Pg$%C?#1
z_g@hIGerILSU>=P>z{gM|DS91A4cT@PEIB^hSop!uhMo#2G;+tQSpDO_6nOnPWSLU
zS;a9m^DFMXR4?*X=<qwp0>}d7l;nXuHk&0|m`NQn%d?8|Ab3A9l9Jh5s120ibWBdB
z$5YwsK3;wvp!Kn@)Qae{ef`0#NwlRpQ}k^r>yos_Ne1;xyKLO?4)t_G4eK<Q62tM^
zi3!pz7{^fEGTr8{(f#W&Re=O*i3#l1dMP2CM@R9Dz7(}LH_=oT4s2({F6)NqjLkfn
zWyb9}W9)`Eu!Z8~Tk)-$ftsw64V9oQ!&L>~wkUS2A&@_;)K0-03XGBzU+5f+uMDxC
z(s8!8!RvdC#@`~fx$r)TKdLD6fWEVdEYtV#{ncT-ZMX~eI#UeQ-+H(Z43vVn%Yj9X
zLdu9>o%wnWdvzA-#d6Z~vzj-}V3FQ5;axDIZ;i(95IIU=GQ4WuU{tl-{gk!5{l4_d
zvvb&uE{%!iFwpymz{wh?bKr1*qzeZb5f6e<hIoTpEPx(5QYd%^TYj)|S%=LSr!JTs
zz!;*wB%3?qZoTm|(U@GJ+#WuaK@<xquK@r4JW{I|?LhkR#^Q(lZ<%iY8sqr4Yy6*A
zRP{^`YZZkjC>6m_ozRF&zux2mlK=v_(_s^R6b5l<OklUMWKH5m9CK)GA(}BNrnAhY
z)mdhvSSE{gE9<H_hJ>u?_W4W3#<$zeG~Pd)^!4tzhs}-Sx$FJP>)ZGF(hVTH|C3(U
zs0PO&*<Bq@X!wy{g3X=$ULK*~ws9t@GTdzNv=8$q3p#^9{iAshe2<iFXWu|*=#t*^
zHiMowYBuE7!#m)z7kwaYz#Uc(_5ibIU;zg~@927U0DWlH<0UlQF4CPh*e--2*e>h_
zNA-&qZpTP$$LtIgfiCn07}XDbK#HIXdmv8zdz4TY;ifNIH-0jy(gMSByG2<C3EzZ8
zhJn#!of$=`Z!hW|DTzs`N(xHpzG~5_y<$0J`1RsK1TZ1v{7!~LCAC@6G637W!~rk|
zLx+h*<9F&&V-5Ie2REOa1?BIx`oEMIjt$k+8IcS%|EII70E=pQ-+-W`(g+CBps;jE
zhtk~$2oej@U6M;lmo$jPN{1kgAl)GCrAtadSp-2s|A(twE-P34{pWf1IZMp@&U{nf
zIWy<|G__isvfkx&jFyQpKg<vGx_3kCalUAl^%NntK#6(2lW1e<U)CGbFQUPSU&Hih
zN~SsTvwJ7vUK%oWe<^FW<$VJlS91FR+Ang7i@BCO7_QPS9$yRY9L+a`GWU$_BS$My
z%KO<mCE#1|s27xKI4jobQyI#G#shn67pXsz&cAj4?7POazD<?>EF~Th#eb_TueZC`
zE?3I>UTMpKQ})=C;6p!?G)M6w^u*A57bD?2X`m3X^6;&4%i_m(uGJ3Z5h`nwxM<)H
z$I5m?wN>O~8`BGnZ=y^p6;0+%_0K}Dcg|K;+fEi|qoBqvHj(M&aHGqNF48~XqhtU?
z^ogwBzRlOfpAJ+Rw7IED8lRbTdBdyEK$gPUpUG}j-M42xDj_&qEAQEtbs>D#dRd7Y
z<&TpSZ(quQDHiCFn&0xsrz~4`4tz!CdL8m~HxZM_agu@IrBpyeL1Ft}V$HX_ZqDPm
z-f89)pjuEzGdq-PRu`b1m+qBGY{zr_>{6Ss>F|<HR3fdmQIEk)2Sh}0yO~96C1H<%
z?QzVeMOyeG53X0w(8tYWACBt{TjL#WIIj{m`My#tMB;vJ{a~L+FxMlWMgTKK^KR0o
zJ;X}EooSp!+2+G$e0wWSL-uZ;icHwY>xHZlJj9dt5HD$u`1*WZe)qEIuDSR)%z+|n
zatVlhQ?$w#XRS7xUrFE;Y8vMGhQS5*T{ZnY=q1P?w5g$OKJ#M&e??tAmPWHMj3xhS
ziGxapy?kn@$~2%ZY;M8Bc@%$pkl%Rvj!?o%agBvpQ-Q61n9kznC4ttrRNQ4%GFR5u
zyv%Yo9~yxQJWJSf<lJl-iWu&1UwGnK(pvra?!Ge}y|x}g-8E3%rQnB2p@S*aS0l>j
z?#HY$y=O<nlXsK9%dUnfsdN1u-Swe<-W_b&r&^uHFD7qA9zLa8;*KhGP$Wd1TRU3&
ztEwlUTD>~F|2pZs22pu|_&Ajd<gZcA$Jk5{2YpKm>+D(Mt!nPUG{|1nlvP`=R#kKH
zO*s$r_%ss5h1YO7k0bHJ2CXN)Y<zvl5N}16U~{2_GuG6q#_|JfMPqxfGtP5?Y4Mg|
zyuvVEU!;&g*bD4Uw&V&*(NB>d6C<gbrz78@@`&t*Y)2+zhDQ!r1~__bZ$!MIY{hdK
zBvhOU_=wf9=WDc_17is97>Hn~W!R=SqkWe=&nAZu(Q1G!xgcUilM@YVei@2@a`8he
z9@pM`)VB*=e7-MWgLlXlc)t;fF&-AwM{E-EX}pViFn0I0CNw2bNEnN2dj!^4(^zS3
zobUm1uQnpqk_4q{pl*n06=TfK_C>UgurKFjRXsK_LEn};=79`TB12tv6KzwSu*-C8
z;=~ohDLZylHQ|Mpx-?yql>|e=vI1Z!epyUpAcDCp4T|*RV&X`Q$0ogNwy6mFALo^@
z9=&(9txO8V@E!@6^(W0{*~CT>+-MA~vnJULBxCTUW>X5>r7*eXYUT0B6+w@lzw%n>
z_VjJ<2qf|(d6jYq2(x$(ZDf!yVkfnbvNmb5c|hhZ^2TV_LBz`9w!e_V*W_(MiA7|=
z&EeIIkw*+$Xd!)j<aFr1R~xS}s~%p?Tvbh^pTwhKxj)!tQV8+Fl)bzUj`73ZqG~f+
zWSqF|`Gl$F?L)li$PwFjgAh#|DN8z!3tX5Sk_}`_4}-ZspoOseDU{j7Ti8%*vj}b6
z!IL&Z(PW4r+7(`f(&N9n^0NAMH0{AUeVSnnjZI%3h9AB_P13b({Q?6h@ewu{vztxi
zi*&5Pl_mU)Ysqz^vmyhLIWWvN)Hw=`Cx$Vrwrqq?{hpCEd*k5Ph0hP@wEBG#s4-aR
zr>8<@_<}A5;~A_>3JT*kX^@}cDoLd>Qj<`Se^wdUa(j0dp+Tl8EptwBm{9OGsdFEq
zM`!pjf(Lm(`$e3<VugKu#}L&f$tPP-i|8Q%zt8Y0zy98R@0)>FLOjqA5LnN5o!}z{
zNf}rJuZh@yUtq&ErjHeGzX4(!luV!jB&;FAP|!R_QHYw#^Z1LwTePAKJ6X&IDNO#;
z)#I@Xnnzyij~C@UH~X51JCgQeF0&hTXnuoElz#m{heZRexWc<T<>0k4<>0+ClX7%0
zEBqCCld1tD9Zwkr4{?Nor19#E5-YKfB8d?qgR82-Ow2^AuNevly2*tHA|sK!ybYkX
zm-sLQH72P&{vEAW6+z~O5d0qd=xW~rua~5a?ymYFSD@8&gV)E5@RNNBAj^C99+Z5Z
zR@Pq55mbCQbz+Mn$<DWdXQ3R#5&V?~bks;#i}6WLoWplVhIsF#fA%#X=}+{bA9=wr
zM^>d_CMW<-+?TU960agEk1J<>d>0K=pF19yN))a~4>m^G&tc*xR+yMD*S=yip-q=H
zIlredHpsJV8H(32@Zxc@bX6a21dUV95Th--8pE6C&3F>pk=yv$yd6@Haw;$v4+Fcb
zRwn{Qo@0`7aPa2LQOP}j9v>sjO<JEcz!71PwCy&w1EL#RH@3db^Ta;FM00H0|Mp0R
zTpn{$THw|Y^1IL=kOtj&J`-2ec-4zB&kyxvlF+QM;i6t6y+_@6dbj@S^owU3pQ_HH
z9V4D!R*q77p6}D`1gWi#=H#L`<?!BK(-r>o5K<lY0`DON8bR;qp%j?!ikO3v{CO;C
zr0hoVGpgX&#zAv@v~t0WKK3UWhFI@!4za_cZypgom@RlHWXjhb*zkH>qvn|`FLizX
zB+@<Q$;$QqzF2GLY>-u4Lw|jsvz{p^>n8Vo8H2peIqJJnMN}A)q6%$Tmig7eu^}K2
zrh$X?T|ZMsoh{6pdw1G$_T<`Ds-G=jc;qcGdK4{?dN2-XxjDNbb(7pk|3JUVCU4y;
z)?LXR>f+AAu)JEiti_Zy#z5{RgsC}R(@jl%9YZ>zu~hKQ*AxbvhC378-I@{~#%Y`Z
zy=a=9YpewPIC+gkEUUwtUL7|RU7=!^Aa}Mk^6uxOgRGA#JXjWLsjFUnix|Mau{hDT
z7mn*z1m5g`vP(#tjT0Zy4eAY(br&!RiiXE=ZI!{sE1#^#%x^Z7t1U)b<;%Y}Q9=5v
z;wp<LcU26iy~^KE9SueUhM9hSw5kFoch;KoAlT!eZTy6~rH?gNli?L&L}beKU`4T0
z({~FKWDwz-RkBOo`jHu$QZ~kQ5hqg(17SNo!H8^sKoQ@sO@9*??XWU5dC7fKZfAM^
z2&bW;u5NQsiN78LoRoCLadg3L1V;2%Am2iq%z(Q$=@X7Rr39Bjk?oA-7B^0IaaHoZ
z3%j;&y}ZdKT?VLFIiCAzK=`ZWp2^>DCEZ@OE36TWT=|gxigT@VaW9BvHS05;_P(#s
z8z<ixvefPSW(R``v-ey(C3!C1-J|HQHNtMWDk@k-%_AI{727f2fp)E3nzP2zne83t
z(KHQ3Yp(UnUc1B>I4XFQys}q)<X?lz9;PIDH}W2ejg(xq4^Dln*?prNo2!$AYL(&x
zQ^n*upjhh><`tkX$WnSarn{3e!s}4(J!=Yf>+Y>cP3f;vr63f2{|S^`_pWc)^5_!R
z*(x-fuBxL51@xe!lnDBKi}Br$c$BMZ3%f2Sa6kLabiBS{pq*yj;q|k(86x`PiC{p6
z_bxCW{>Q2BA8~Ggz&0jkrcU+-$ANBsOop*ms>34K9lNYil@}jC;?cYP(m^P}nR6FV
zk(M%48Z&%2Rx$A&FhOEirEhY0(dn;-k(qkTU)sFQ`+-ih+s@A8g?r8Pw+}2;35WYf
zi}VO`jS`p(tc)$X$a>-#WXoW!phhatC*$}|rk>|wUU71eUJG^$c6_jwX?iSHM@6__
zvV|6%U*$sSXJu9SX?2%M^kK|}a2QJ8AhF{fuX<l$E^Sy6fzZeBWpXwtZtJ*+^5CvK
zm5o@)Vb`rsjDy{;ty&^h;yuf(Qr~Ixfg8~=YlY3#vkGe-He?J$+-qAU_lqZP;hegA
zk*AEh4ihR~5Jo#08klD@qHx90U57vSVf9#s#`LJAUz(qMmmvGKi`3#h#kmAJjG9h6
zQ)B)8jyj(255#*8@2i<tO5B5CO)}P|yt3DVt)qJDZd`sE+o{(_Ii^q?>rHZxXsI~O
zGKX45!K7p*MCPEQ=gp?eu&#AW*pR{lhQR##P_*{c_DjMGL|3T3-bSJ(o$|M{ytU}>
zAV>wq*uE*qFo9KvnA^@juy{x<-u*#2NvkV={Ly}ysKYB-k`K3@K#^S1Bb$8Y#0L0#
z`6IkSG&|Z$ODy|VLS+y5pFJx&8tvPmMd8c9FhCyiU8~k6FwkakUd^(_ml8`rnl>JS
zZV){9G*)xBqPz^LDqRwyS6w86#D^~xP4($150M)SOZRe9sn=>V#aG0Iy(_^Yc<Qa{
zc=f(3k0FXE4g8yHjnttlIF~$;u0A21@bchm@(lE%*(K8|UX&n%>PpIz8QYM-#s+n%
z@Jd?xQq?Xk6=<3xSY7XYP$$yd&Spu{A#uafiIfy8gRC`o0nk{ezEDjb=q_qRAlR1d
zFq^*9Gn)yTG4b}R{!+3hWQ+u3GT~8nwl2S1lpw`s<ATc7q8AYRlt3+=;0YO5Kh=m6
zcJQSxR8f1@n@G{FQOYA>0X_qpxv)g+JIkVKl${sYf_nV~B>Em>M;RlqGb5WVil(89
zs<BCtUSSVUPQs2-L)cP6#hn*j_NRz!rNALK#^L&c9rXdhSPT_+NmK*)Z5xF$xiJ=3
z8+Mc<!WJ?e3I&g_14W8h)QxMzSB66MIj*RP^*N)W9*O3{I9!<#lwG5$#G;69c_Ici
z`@Ou~cYuw(AE3NQtoUi`%GvRnV9k1A0~o8pga`->=ld@|#;dq1*vQGz=7--Br-|l)
zZ%Xh@v8>B7P?~}?Cg$q9_={59l%m~O&*a6TKsCMAzG&vD>k2WDzJ6!tc!V)+oxF;h
zJH;apM=wO?r_+*#;ulohuP=E>^zon}a$<j`_j%GZX3(oc_SxO~-G*=c4ZAbD8%BzP
zd)Pi)VtGNDLDj>NnlcQ{1$SO*i=jnGVcQa^>QOILc)e6;eNTI>os=eaJ{*^DE+~jc
zS}TYeOykDmJ=6O%>m`i*>&pO_S;qMySJIyP=}4E&J%#1zju$RpVAkZbEl+p%?ZP^C
z*$$2b4t%a(e+%>a>d_f_<<lO{*K50r$dT8<<B_m+L}7)kTP?9nuT8`~rXnwmPpNu&
z_<Hj7^*-8j&~7D0OWBmB6J|2NeYzm{G=39Rh<aW*6|DbSdXI^GaeRfwgIs@eF%-$X
z>JjxI#J1x;=hPd1zFPx=6T$;;X1TD*2(edZ3f46zaAoW>L53vS_J*N8TMB|n+;LD|
zC=GkQPpyDY#Am4l49chDv*gojhRj_?63&&8#doW`INATAo(qY#{q}%nf@eTIXmtU<
zdB<7YWfyCmBs|c)cK>1)v&M#!yNj#4d$~pVfDWQc_ke1?fw{T1Nce_b`v|Vp5ig(H
zJvRD^+p<xU1eMV2Dp)d&jL}1T-4yJBks?w&E4)Bl#ayf5z?e)=tGbQS;h3(gA$e=k
z6KY(=q)^im5{@d1i=Ix4={^<VU*;0T*7?%g*~`NlJ)S&FWzzYph<0?QcO=pLP8?e$
z*FaH6Y-^O^gO|=h>s46^hLX;=e2!2e;w9y1D@!D$c@Jc&%%%IL=<b6daWfefB)Aj<
zmFAkvPGmuOH|UXs98|Izd34i4mjd%!t1Qfh2QG#C`?Q72>+xzw55&2?darw=9g~>P
z9>?Kdc$r?6c$m%x2S$sdpPl>GQZ{rC9mPS63*<SW1ss4Nyr-0;)>qjCVa?OIBj!fW
zm|g?>CVfG<LKn)qVK&7vOUVLdB{HCz?|MJr^jJ<qMG*a<=xVmP)}?vXFtiYfxJQ@S
z#a>XNjOfcyqImXR_(tXS(F{FcoNzKvG5R$IgGaxC@)i(e+$ME}vPVIhd|mx2IIE+f
zM?9opQHIVgBWu)^A|RzXw!^??S!x)SZOwZaJkGjc<_}2l^eSBm!eAJG9T>EC6I_sy
z?bxzDIAn&K5*mX)$RQzDA?s)-no-XF(g*yl4%+GBf`##bDXJ==AQk*xmnatI;SsLp
zP9XTHq5mmS=iWu~9E<z?vk<wVk?axOB(w*1mgxPEOC4Q_bKOg8aZS|<Jy7e5qZiZy
zi_|O~v^<Tb8jU^hW(}=ov(p@txag^UbHjwTdt5JHG|siOz_cTtZE_L!P;3VdkA;2O
zLo^GkBN2HNqX9mQqP?;}M=Weu;f8w@!h2(}g9(ObqEVL=EgisIBV{7fu4ome13nCE
zdwW~^rkG^r1c_Jwl>S>b%Q=1aMa|ya^vj$@qz9S!ih{T8_PD%Sf_QrNKwgrXw9ldm
zHRVR98*{C?_XNpJn{<p15xt>abA!oix_mowRMu^2lV-LPi;0+?-F(>^5#OHX-fPED
zCu^l7u3E%STI}c4{J2!)9S<WqRBxZXWrLfD3v(g<)+j7~DBJ!D1`Yc*cLPVUN6i!o
z<WHr{5RdXyi7LHb^NKbKUg}tH*PPH!`V-!@Sd!s(E-vzsn6!5N&eAaqoX%HxTMM{P
zIJeCXkWwFSIEY&)8%SeRPki$2eJ?TcIF$5@j`=f}32hbX8_y10W!UQZL+acoY3HWL
z^6U9-tleDkD!6JsRBj>UlGP_@!d?5W^QJXOI-Ea`hFMKjR7TluLvzC-ozCPn1`Tpy
z!vlv@_Z58ILX6>nDjTp-1LlFMx~-%GA`aJvG$?8*Ihn;mH37eK**rmOEwqegf-Ccx
zrIX4;{c~RK>XuTXxYo5kMiWMy)!IC{*DHG@E$hx?RwP@+wuad(P1{@%tRkyJRqD)3
zMHHHZ4boqDn>-=DgR5VlhQTpfVy182Gk;A_S8A1-;U1RR>+$62>(MUx@Nox$vTjHq
z%QR=j!6Gdyb5wu7y(YUktwMuW5<@jl?m4cv4BODiT5o8qVdC0MBqGr@-YBIwnpZAY
znX9(_uQjP}JJ=!~Ve9#5I~rUnN|P_3D$LqZcvBnywYhjlMSFHm`;u9GPla{5Q<X)1
z%$Q)YQ_xs_u@fVbNBxjMBTpgM&=XlBlp}w#R&41H+3NH%W*0}&d|5rv#al8&><AlF
z8HoEcIWb_>D7(7*6Tb3Svr8;(nuAd81q$*uq6HC_&~je*Ca7hP4sJp0av{M8480wF
zxASi7Qv+~@2U%Nu1Ud;s-G4CTVWIPyx!sg&8ZG0<u*j8bI(fE4R+~6W9t@%ANP1F@
zp$eJoBlfrurBBjoT#vaVVYUuEOoWffDHI4t?-V4p5pZZ3DkD`0^rkb1n)as8WP>Wq
zG_}i3C(6_1>q3w!EH7$Kwq8uBp2F2N7}l65mk1p*9v0&+;th=_E-W)E;w}P(j&it;
zv5o9#E7!G0XmdzfsS{efPNi`1b44~SZ4Z8f<yhFr_4W{*sa2b)64y#l+N#ywviYKA
zHs^$|vSmQ9h25pfc|F}ni`8kid}w)OD+3UEhP%9Dlwy33NMgJ*oN!k%?qfbTx#r!J
zY-dPtmtNT~GY1Wt*spshItZ8i4R+jh2L%btp^)9t=mbb(EpeeR#tnR}gtoxxvFD|m
zhb}`&kCesZUqA7FVifG~RXu8NP->uX!I}#8g+(wxzQwUT#Xb2(t<I|Vdp4<hf#R}E
zO$m~GhlyfnIij1YM1#7L8*;8lzFA>bY1+EUhG<XbGlkEvuzFKy+tnOPm$r=L#YRzV
zwl2E?nbHJTp_m!TZ`;N8RAqq@pSx_H9#jNyRdy^@&BAm<aBE+@>KoT@KEU9Ktl>_0
z%bjDJg;#*gtJZv!-Zs`?^}<Hop~&Xqn<t%=;~lIDY-u92ye&Z%8~1AbQ5!`jhH%qI
zx(5`}Haa*r;yTwa;Iry8BUl6}+9-EGitaF$Aq_C?<%Xbp{$*-bSPHf$IdY92oxi$9
zcggG$CBdW=NKdNvJ@yJUY`u+>v5eKmnbjqlvnSzE@_SP|LG_PJ6CYU+6zY6>92%E+
z=j@TZf-iW4(%U{lnYxQA;7Q!b;^brF<nu9$;OS+a41|h`ofOZC21#Y@_xv+k3^Ljg
zEP^3r*gL6M9RW3lIubK}wzMJ3Vq#cPO<cz7xXnc!R;|M8d|v`nL0G&xB&n;gb?&kd
z#fHl)FBAfL#Kd5aQG;&jsz|6*t@OWoiXQ1Qs^e+x9z47f=xOXd8X%iV!R%6NpDAQ2
zTW=KVlc2NZatQ2fBO>8n0D>)`q5>|WDDXLrqYU_tKN2>=#@~OE7grMnNh?UOz-O~6
z6%rHy{#h9K0AT+lDC7q4{hw^|q6*Ry;;L%Q@)Ga}$60_q%D)rv(CtS$CQbpq9|y1e
zRSrN4;$Jyl{m5bZw`$8TGvb}(LpY{-cQ)fcyJv7l3S52TLXVDsphtv&aPuDk1OzCA
z4A^QtC(!11`IsNx_HnSy?>EKpHJWT^wmS~hc^p^zIIh@9f<nT83VyE*=trSIMwSK+
z4z|GFEwin?jV;*T(G2VW4|oi4V$|b?I7v{*;m?4!2KEM4VBj1m$Qrmh{2}a>6U@I2
zC=Mve{j2^)mS#U$e{@Q?SO6%LDsXz@SY+=cK_QMmXBIU)j!$ajc-zLx3V60EXJ!qC
zi<%2x<u`s6FSLLTv<|cn{|Pp5g+jgo+oN!0JAnt({C-&Q&xt&X`rRaf=9UHOa<(4N
zfldWS^e<RZds8PXAUYACtOvF|eLw<Vj~BBG`@{geDFA=A=_Ck#1^*lKsG6XUA_1@M
zoBr4<KCuuKk`3G@{&%Sre^J!KjgXRO0MHWfIlj?6Nl?i8wO?T>8Q24YN+&8U@CIlN
zrZkcT9yh%LrlGS9`G)KdP(@9Eo-AQz@8GEFWcb7U=a0H^ZVbLmz{+&M7W(nXJ4sN8
zJLR7eeK(K8`2-}j(T7JsO`L!+CvbueT%izanm-^A1Dn{`1Nw`9P?cq<h|F<+{0IyH
zi8D-XK*RiZ>;7no+XfC`K(GO9?O^5zNIt4M+M8LM0=7Gz8UA@Z0N+lg+cX)NfazRu
z5D)~<a5^&n0jI1r5GnDy`M#F|h(qiMKHrd*pVsPffa+}n9r&yvC)xjiO5V)D0jSV-
zGGG|~f~m<FCo&&kY6Y0iR%(jt514*XxER=je_N@~Rw;NXK<|(S7GRz;_L~O|?EJRP
zzEl0Kks34-UgZF@NftnKd<^I$K_P>HA^(u%w^cz+@2@_#S|u>GpB+j4KzQ^&Wcl9f
z&hG#bCA(Yk0D&t&aJE^xME^&E-&xGHhXn%}psEIj641H+Nl-}boj;)Zt*t(4wZ5DN
z@GXF$bL=&pBq-#v<R9RxTU-1O0|)yvA4xba;H&`N3f&14aD_soWPVR}ep`@)E(vu3
zg+~Bz&teka`w8=Ja~S`ahL2bA^D*6KQ5+`#qlg3T%XFrkbl~4(ejf_wBkMZ1i+KP8
z00S5Rd}okl9{h}KZ(|NNa{T{z1?aDD2_Ewt0=3{h!$WTV6A%3M@xSczn`QhM8DRK3
zVgI-y{Oy6kEY8q4IhtAi<boY%ILQqtp!`V34lt$V&$-R4ftA$S;AfcY{Zw*wfIWkO
zN%HJ)*Zw68;IpdP8#sgQ9Ski076v-mF^6ATl(pNMM1g`517i@FK>kTkh>7hl%K5|3
z{`Vn9b$iR-SoGENp}bn4;fR3>9sA%X2@1L3aE9yTra;Wb#_`xWwLSLdfu+PAu+o3|
zGVnpzPr=ch{uuoHjtw7+_!L_2;knQ!DuDl0R`|%jr+}jFzXtrHIKc323?JO{l&;VF
z*L1+}JU7%QJOg|<!Bd8Mzh5$(Z*X{#@KZSM#9zVz<vk}ZGJI*_HMvjW>5|Tc|D8fN
zJORAg=_vsy{ak|o);@)Yh8Lkcg@$FG3k@ep36BRa^>~UmnRPziS>Z=`Jb2x*Q#`%A
zU*i3&Vg?TluO@X0O<nja==1v+{2K<RX!qLBMf>;r2Jl6LKLUOVhSqg1*qOt^|8*c7
zo(298@+r$k_wQNGHv{|$tW(T8L+4_`FQ{kEW5Jgg{yf7ey4ss_(SNKfz(N9lx&a;<
je(UuV8hP?p&}TPdm1I$XmG#(RzlD&B2izSj9sl%y5~4qc

literal 0
HcmV?d00001

diff --git a/languages/java/gradle/wrapper/gradle-wrapper.properties b/languages/java/gradle/wrapper/gradle-wrapper.properties
new file mode 100644
index 000000000..ac72c34e8
--- /dev/null
+++ b/languages/java/gradle/wrapper/gradle-wrapper.properties
@@ -0,0 +1,7 @@
+distributionBase=GRADLE_USER_HOME
+distributionPath=wrapper/dists
+distributionUrl=https\://services.gradle.org/distributions/gradle-8.3-bin.zip
+networkTimeout=10000
+validateDistributionUrl=true
+zipStoreBase=GRADLE_USER_HOME
+zipStorePath=wrapper/dists
diff --git a/languages/java/gradlew b/languages/java/gradlew
new file mode 100755
index 000000000..0adc8e1a5
--- /dev/null
+++ b/languages/java/gradlew
@@ -0,0 +1,249 @@
+#!/bin/sh
+
+#
+# Copyright © 2015-2021 the original authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+##############################################################################
+#
+#   Gradle start up script for POSIX generated by Gradle.
+#
+#   Important for running:
+#
+#   (1) You need a POSIX-compliant shell to run this script. If your /bin/sh is
+#       noncompliant, but you have some other compliant shell such as ksh or
+#       bash, then to run this script, type that shell name before the whole
+#       command line, like:
+#
+#           ksh Gradle
+#
+#       Busybox and similar reduced shells will NOT work, because this script
+#       requires all of these POSIX shell features:
+#         * functions;
+#         * expansions «$var», «${var}», «${var:-default}», «${var+SET}»,
+#           «${var#prefix}», «${var%suffix}», and «$( cmd )»;
+#         * compound commands having a testable exit status, especially «case»;
+#         * various built-in commands including «command», «set», and «ulimit».
+#
+#   Important for patching:
+#
+#   (2) This script targets any POSIX shell, so it avoids extensions provided
+#       by Bash, Ksh, etc; in particular arrays are avoided.
+#
+#       The "traditional" practice of packing multiple parameters into a
+#       space-separated string is a well documented source of bugs and security
+#       problems, so this is (mostly) avoided, by progressively accumulating
+#       options in "$@", and eventually passing that to Java.
+#
+#       Where the inherited environment variables (DEFAULT_JVM_OPTS, JAVA_OPTS,
+#       and GRADLE_OPTS) rely on word-splitting, this is performed explicitly;
+#       see the in-line comments for details.
+#
+#       There are tweaks for specific operating systems such as AIX, CygWin,
+#       Darwin, MinGW, and NonStop.
+#
+#   (3) This script is generated from the Groovy template
+#       https://github.com/gradle/gradle/blob/HEAD/subprojects/plugins/src/main/resources/org/gradle/api/internal/plugins/unixStartScript.txt
+#       within the Gradle project.
+#
+#       You can find Gradle at https://github.com/gradle/gradle/.
+#
+##############################################################################
+
+# Attempt to set APP_HOME
+
+# Resolve links: $0 may be a link
+app_path=$0
+
+# Need this for daisy-chained symlinks.
+while
+    APP_HOME=${app_path%"${app_path##*/}"}  # leaves a trailing /; empty if no leading path
+    [ -h "$app_path" ]
+do
+    ls=$( ls -ld "$app_path" )
+    link=${ls#*' -> '}
+    case $link in             #(
+      /*)   app_path=$link ;; #(
+      *)    app_path=$APP_HOME$link ;;
+    esac
+done
+
+# This is normally unused
+# shellcheck disable=SC2034
+APP_BASE_NAME=${0##*/}
+# Discard cd standard output in case $CDPATH is set (https://github.com/gradle/gradle/issues/25036)
+APP_HOME=$( cd "${APP_HOME:-./}" > /dev/null && pwd -P ) || exit
+
+# Use the maximum available, or set MAX_FD != -1 to use that value.
+MAX_FD=maximum
+
+warn () {
+    echo "$*"
+} >&2
+
+die () {
+    echo
+    echo "$*"
+    echo
+    exit 1
+} >&2
+
+# OS specific support (must be 'true' or 'false').
+cygwin=false
+msys=false
+darwin=false
+nonstop=false
+case "$( uname )" in                #(
+  CYGWIN* )         cygwin=true  ;; #(
+  Darwin* )         darwin=true  ;; #(
+  MSYS* | MINGW* )  msys=true    ;; #(
+  NONSTOP* )        nonstop=true ;;
+esac
+
+CLASSPATH=$APP_HOME/gradle/wrapper/gradle-wrapper.jar
+
+
+# Determine the Java command to use to start the JVM.
+if [ -n "$JAVA_HOME" ] ; then
+    if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
+        # IBM's JDK on AIX uses strange locations for the executables
+        JAVACMD=$JAVA_HOME/jre/sh/java
+    else
+        JAVACMD=$JAVA_HOME/bin/java
+    fi
+    if [ ! -x "$JAVACMD" ] ; then
+        die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+    fi
+else
+    JAVACMD=java
+    if ! command -v java >/dev/null 2>&1
+    then
+        die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+    fi
+fi
+
+# Increase the maximum file descriptors if we can.
+if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then
+    case $MAX_FD in #(
+      max*)
+        # In POSIX sh, ulimit -H is undefined. That's why the result is checked to see if it worked.
+        # shellcheck disable=SC3045
+        MAX_FD=$( ulimit -H -n ) ||
+            warn "Could not query maximum file descriptor limit"
+    esac
+    case $MAX_FD in  #(
+      '' | soft) :;; #(
+      *)
+        # In POSIX sh, ulimit -n is undefined. That's why the result is checked to see if it worked.
+        # shellcheck disable=SC3045
+        ulimit -n "$MAX_FD" ||
+            warn "Could not set maximum file descriptor limit to $MAX_FD"
+    esac
+fi
+
+# Collect all arguments for the java command, stacking in reverse order:
+#   * args from the command line
+#   * the main class name
+#   * -classpath
+#   * -D...appname settings
+#   * --module-path (only if needed)
+#   * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables.
+
+# For Cygwin or MSYS, switch paths to Windows format before running java
+if "$cygwin" || "$msys" ; then
+    APP_HOME=$( cygpath --path --mixed "$APP_HOME" )
+    CLASSPATH=$( cygpath --path --mixed "$CLASSPATH" )
+
+    JAVACMD=$( cygpath --unix "$JAVACMD" )
+
+    # Now convert the arguments - kludge to limit ourselves to /bin/sh
+    for arg do
+        if
+            case $arg in                                #(
+              -*)   false ;;                            # don't mess with options #(
+              /?*)  t=${arg#/} t=/${t%%/*}              # looks like a POSIX filepath
+                    [ -e "$t" ] ;;                      #(
+              *)    false ;;
+            esac
+        then
+            arg=$( cygpath --path --ignore --mixed "$arg" )
+        fi
+        # Roll the args list around exactly as many times as the number of
+        # args, so each arg winds up back in the position where it started, but
+        # possibly modified.
+        #
+        # NB: a `for` loop captures its iteration list before it begins, so
+        # changing the positional parameters here affects neither the number of
+        # iterations, nor the values presented in `arg`.
+        shift                   # remove old arg
+        set -- "$@" "$arg"      # push replacement arg
+    done
+fi
+
+
+# Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
+DEFAULT_JVM_OPTS='"-Xmx64m" "-Xms64m"'
+
+# Collect all arguments for the java command;
+#   * $DEFAULT_JVM_OPTS, $JAVA_OPTS, and $GRADLE_OPTS can contain fragments of
+#     shell script including quotes and variable substitutions, so put them in
+#     double quotes to make sure that they get re-expanded; and
+#   * put everything else in single quotes, so that it's not re-expanded.
+
+set -- \
+        "-Dorg.gradle.appname=$APP_BASE_NAME" \
+        -classpath "$CLASSPATH" \
+        org.gradle.wrapper.GradleWrapperMain \
+        "$@"
+
+# Stop when "xargs" is not available.
+if ! command -v xargs >/dev/null 2>&1
+then
+    die "xargs is not available"
+fi
+
+# Use "xargs" to parse quoted args.
+#
+# With -n1 it outputs one arg per line, with the quotes and backslashes removed.
+#
+# In Bash we could simply go:
+#
+#   readarray ARGS < <( xargs -n1 <<<"$var" ) &&
+#   set -- "${ARGS[@]}" "$@"
+#
+# but POSIX shell has neither arrays nor command substitution, so instead we
+# post-process each arg (as a line of input to sed) to backslash-escape any
+# character that might be a shell metacharacter, then use eval to reverse
+# that process (while maintaining the separation between arguments), and wrap
+# the whole thing up as a single "set" statement.
+#
+# This will of course break if any of these variables contains a newline or
+# an unmatched quote.
+#
+
+eval "set -- $(
+        printf '%s\n' "$DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS" |
+        xargs -n1 |
+        sed ' s~[^-[:alnum:]+,./:=@_]~\\&~g; ' |
+        tr '\n' ' '
+    )" '"$@"'
+
+exec "$JAVACMD" "$@"
diff --git a/languages/java/gradlew.bat b/languages/java/gradlew.bat
new file mode 100644
index 000000000..6689b85be
--- /dev/null
+++ b/languages/java/gradlew.bat
@@ -0,0 +1,92 @@
+@rem
+@rem Copyright 2015 the original author or authors.
+@rem
+@rem Licensed under the Apache License, Version 2.0 (the "License");
+@rem you may not use this file except in compliance with the License.
+@rem You may obtain a copy of the License at
+@rem
+@rem      https://www.apache.org/licenses/LICENSE-2.0
+@rem
+@rem Unless required by applicable law or agreed to in writing, software
+@rem distributed under the License is distributed on an "AS IS" BASIS,
+@rem WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+@rem See the License for the specific language governing permissions and
+@rem limitations under the License.
+@rem
+
+@if "%DEBUG%"=="" @echo off
+@rem ##########################################################################
+@rem
+@rem  Gradle startup script for Windows
+@rem
+@rem ##########################################################################
+
+@rem Set local scope for the variables with windows NT shell
+if "%OS%"=="Windows_NT" setlocal
+
+set DIRNAME=%~dp0
+if "%DIRNAME%"=="" set DIRNAME=.
+@rem This is normally unused
+set APP_BASE_NAME=%~n0
+set APP_HOME=%DIRNAME%
+
+@rem Resolve any "." and ".." in APP_HOME to make it shorter.
+for %%i in ("%APP_HOME%") do set APP_HOME=%%~fi
+
+@rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
+set DEFAULT_JVM_OPTS="-Xmx64m" "-Xms64m"
+
+@rem Find java.exe
+if defined JAVA_HOME goto findJavaFromJavaHome
+
+set JAVA_EXE=java.exe
+%JAVA_EXE% -version >NUL 2>&1
+if %ERRORLEVEL% equ 0 goto execute
+
+echo.
+echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
+echo.
+echo Please set the JAVA_HOME variable in your environment to match the
+echo location of your Java installation.
+
+goto fail
+
+:findJavaFromJavaHome
+set JAVA_HOME=%JAVA_HOME:"=%
+set JAVA_EXE=%JAVA_HOME%/bin/java.exe
+
+if exist "%JAVA_EXE%" goto execute
+
+echo.
+echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME%
+echo.
+echo Please set the JAVA_HOME variable in your environment to match the
+echo location of your Java installation.
+
+goto fail
+
+:execute
+@rem Setup the command line
+
+set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar
+
+
+@rem Execute Gradle
+"%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %*
+
+:end
+@rem End local scope for the variables with windows NT shell
+if %ERRORLEVEL% equ 0 goto mainEnd
+
+:fail
+rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of
+rem the _cmd.exe /c_ return code!
+set EXIT_CODE=%ERRORLEVEL%
+if %EXIT_CODE% equ 0 set EXIT_CODE=1
+if not ""=="%GRADLE_EXIT_CONSOLE%" exit %EXIT_CODE%
+exit /b %EXIT_CODE%
+
+:mainEnd
+if "%OS%"=="Windows_NT" endlocal
+
+:omega
diff --git a/languages/java/settings.gradle b/languages/java/settings.gradle
new file mode 100644
index 000000000..961795f50
--- /dev/null
+++ b/languages/java/settings.gradle
@@ -0,0 +1,5 @@
+/*
+ * This file was generated by the Gradle 'init' task.
+ */
+
+rootProject.name = 'BitwardenSDK'
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/BitwardenClient.java b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenClient.java
new file mode 100644
index 000000000..9e1948184
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenClient.java
@@ -0,0 +1,87 @@
+package com.bitwarden.sdk;
+
+import com.bitwarden.sdk.schema.*;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.sun.jna.Native;
+import com.sun.jna.Pointer;
+
+import java.util.function.Function;
+
+public class BitwardenClient implements AutoCloseable {
+
+    private final Pointer client;
+
+    private final BitwardenLibrary library;
+
+    private final CommandRunner commandRunner;
+
+    private boolean isClientOpen;
+
+    private final ProjectsClient projects;
+
+    private final SecretsClient secrets;
+
+    public BitwardenClient(BitwardenSettings bitwardenSettings) {
+        ClientSettings clientSettings = new ClientSettings();
+        clientSettings.setAPIURL(bitwardenSettings.getApiUrl());
+        clientSettings.setIdentityURL(bitwardenSettings.getIdentityUrl());
+        clientSettings.setDeviceType(DeviceType.SDK);
+        clientSettings.setUserAgent("Bitwarden JAVA-SDK");
+
+        library = Native.load("bitwarden_c", BitwardenLibrary.class);
+
+        try {
+            client = library.init(Converter.ClientSettingsToJsonString(clientSettings));
+        } catch (JsonProcessingException e) {
+            throw new BitwardenClientException("Error while processing client settings");
+        }
+
+        commandRunner = new CommandRunner(library, client);
+        projects = new ProjectsClient(commandRunner);
+        secrets = new SecretsClient(commandRunner);
+        isClientOpen = true;
+    }
+
+    static <T, R> Function<T, R> throwingFunctionWrapper(ThrowingFunction<T, R, Exception> throwingFunction) {
+
+        return i -> {
+            try {
+                return throwingFunction.accept(i);
+            } catch (Exception ex) {
+                throw new BitwardenClientException("Response deserialization failed");
+            }
+        };
+    }
+
+    public APIKeyLoginResponse accessTokenLogin(String accessToken) {
+        Command command = new Command();
+        AccessTokenLoginRequest accessTokenLoginRequest = new AccessTokenLoginRequest();
+        accessTokenLoginRequest.setAccessToken(accessToken);
+        command.setAccessTokenLogin(accessTokenLoginRequest);
+
+        ResponseForAPIKeyLoginResponse response = commandRunner.runCommand(command,
+            throwingFunctionWrapper(Converter::ResponseForAPIKeyLoginResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Login failed");
+        }
+
+        return response.getData();
+    }
+
+    public ProjectsClient projects() {
+        return projects;
+    }
+
+    public SecretsClient secrets() {
+        return secrets;
+    }
+
+    @Override
+    public void close() {
+        if (isClientOpen) {
+            library.free_mem(client);
+            isClientOpen = false;
+        }
+    }
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/BitwardenClientException.java b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenClientException.java
new file mode 100644
index 000000000..7b6025be8
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenClientException.java
@@ -0,0 +1,8 @@
+package com.bitwarden.sdk;
+
+public class BitwardenClientException extends RuntimeException {
+
+    public BitwardenClientException(String message) {
+        super(message);
+    }
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/BitwardenLibrary.java b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenLibrary.java
new file mode 100644
index 000000000..73d81452c
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenLibrary.java
@@ -0,0 +1,13 @@
+package com.bitwarden.sdk;
+
+import com.sun.jna.Library;
+import com.sun.jna.Pointer;
+
+public interface BitwardenLibrary extends Library {
+
+    Pointer init(String clientSettings);
+
+    void free_mem(Pointer client);
+
+    String run_command(String command, Pointer client);
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/BitwardenSettings.java b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenSettings.java
new file mode 100644
index 000000000..7112297b4
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/BitwardenSettings.java
@@ -0,0 +1,32 @@
+package com.bitwarden.sdk;
+
+public class BitwardenSettings {
+
+    private String apiUrl;
+
+    private String identityUrl;
+
+    public BitwardenSettings() {
+    }
+
+    public BitwardenSettings(String apiUrl, String identityUrl) {
+        this.apiUrl = apiUrl;
+        this.identityUrl = identityUrl;
+    }
+
+    public String getApiUrl() {
+        return apiUrl;
+    }
+
+    public void setApiUrl(String apiUrl) {
+        this.apiUrl = apiUrl;
+    }
+
+    public String getIdentityUrl() {
+        return identityUrl;
+    }
+
+    public void setIdentityUrl(String identityUrl) {
+        this.identityUrl = identityUrl;
+    }
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/CommandRunner.java b/languages/java/src/main/java/com/bitwarden/sdk/CommandRunner.java
new file mode 100644
index 000000000..11a100814
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/CommandRunner.java
@@ -0,0 +1,45 @@
+package com.bitwarden.sdk;
+
+import com.bitwarden.sdk.schema.Command;
+import com.bitwarden.sdk.schema.Converter;
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.sun.jna.Pointer;
+
+import java.io.IOException;
+import java.util.function.Function;
+
+class CommandRunner {
+
+    private final BitwardenLibrary library;
+
+    private final Pointer client;
+
+    CommandRunner(BitwardenLibrary library, Pointer client) {
+        this.library = library;
+        this.client = client;
+    }
+
+    <T> T runCommand(Command command, Function<String, T> deserializer) {
+        String response = null;
+
+        try {
+            response = library.run_command(commandToString(command), client);
+        } catch (IOException e) {
+            throw new RuntimeException(e);
+        }
+
+        return deserializer.apply(response);
+    }
+
+    private String commandToString(Command command) throws IOException {
+        // Removes null properties from the generated converter output to avoid command errors
+        String inputJson = Converter.CommandToJsonString(command);
+
+        ObjectMapper mapper = new ObjectMapper();
+        mapper.setSerializationInclusion(JsonInclude.Include.NON_NULL);
+
+        Object inputObject = mapper.readValue(inputJson, Object.class);
+        return mapper.writeValueAsString(inputObject);
+    }
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/ExampleProgram.java b/languages/java/src/main/java/com/bitwarden/sdk/ExampleProgram.java
new file mode 100644
index 000000000..f3ad53036
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/ExampleProgram.java
@@ -0,0 +1,42 @@
+package com.bitwarden.sdk;
+
+import com.bitwarden.sdk.schema.*;
+
+import java.util.UUID;
+
+public class ExampleProgram {
+
+    public static void main(String[] args) {
+        BitwardenSettings bitwardenSettings = new BitwardenSettings();
+        bitwardenSettings.setApiUrl("https://api.bitwarden.com");
+        bitwardenSettings.setIdentityUrl("https://identity.bitwarden.com");
+
+        try (BitwardenClient bitwardenClient = new BitwardenClient(bitwardenSettings)) {
+            APIKeyLoginResponse apiKeyLoginResponse = bitwardenClient.accessTokenLogin("<access-token>");
+
+            UUID organizationId = UUID.fromString("<organization-id>");
+            ProjectResponse projectResponse = bitwardenClient.projects().create(organizationId, "NewTestProject");
+            UUID projectId = projectResponse.getID();
+            ProjectsResponse projectsResponse = bitwardenClient.projects().list(organizationId);
+            projectResponse = bitwardenClient.projects().get(projectId);
+            projectResponse = bitwardenClient.projects().update(projectId, organizationId, "NewTestProject2");
+
+            String key = "key";
+            String value = "value";
+            String note = "note";
+            SecretResponse secretResponse = bitwardenClient.secrets().create(key, value, note, organizationId,
+                new UUID[]{projectId});
+            UUID secretId = secretResponse.getID();
+            SecretIdentifiersResponse secretIdentifiersResponse = bitwardenClient.secrets().list(organizationId);
+            secretResponse = bitwardenClient.secrets().get(secretId);
+            key = "key2";
+            value = "value2";
+            note = "note2";
+            secretResponse = bitwardenClient.secrets().update(secretId, key, value, note, organizationId,
+                new UUID[]{projectId});
+
+            SecretsDeleteResponse secretsDeleteResponse = bitwardenClient.secrets().delete(new UUID[]{secretId});
+            ProjectsDeleteResponse projectsDeleteResponse = bitwardenClient.projects().delete(new UUID[]{projectId});
+        }
+    }
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/ProjectsClient.java b/languages/java/src/main/java/com/bitwarden/sdk/ProjectsClient.java
new file mode 100644
index 000000000..73b87440c
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/ProjectsClient.java
@@ -0,0 +1,109 @@
+package com.bitwarden.sdk;
+
+import com.bitwarden.sdk.schema.*;
+
+import java.util.UUID;
+
+public class ProjectsClient {
+
+    private final CommandRunner commandRunner;
+
+    ProjectsClient(CommandRunner commandRunner) {
+        this.commandRunner = commandRunner;
+    }
+
+    public ProjectResponse get(UUID id) {
+        Command command = new Command();
+        ProjectsCommand projectsCommand = new ProjectsCommand();
+        ProjectGetRequest projectGetRequest = new ProjectGetRequest();
+        projectGetRequest.setID(id);
+        projectsCommand.setGet(projectGetRequest);
+        command.setProjects(projectsCommand);
+
+        ResponseForProjectResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForProjectResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Project not found");
+        }
+
+        return response.getData();
+    }
+
+    public ProjectResponse create(UUID organizationId, String name) {
+        Command command = new Command();
+        ProjectsCommand projectsCommand = new ProjectsCommand();
+        ProjectCreateRequest projectCreateRequest = new ProjectCreateRequest();
+        projectCreateRequest.setOrganizationID(organizationId);
+        projectCreateRequest.setName(name);
+        projectsCommand.setCreate(projectCreateRequest);
+        command.setProjects(projectsCommand);
+
+        ResponseForProjectResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForProjectResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Project create failed");
+        }
+
+        return response.getData();
+    }
+
+    public ProjectResponse update(UUID id, UUID organizationId, String name) {
+        Command command = new Command();
+        ProjectsCommand projectsCommand = new ProjectsCommand();
+        ProjectPutRequest projectPutRequest = new ProjectPutRequest();
+        projectPutRequest.setID(id);
+        projectPutRequest.setOrganizationID(organizationId);
+        projectPutRequest.setName(name);
+        projectsCommand.setUpdate(projectPutRequest);
+        command.setProjects(projectsCommand);
+
+        ResponseForProjectResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForProjectResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Project update failed");
+        }
+
+        return response.getData();
+    }
+
+    public ProjectsDeleteResponse delete(UUID[] ids) {
+        Command command = new Command();
+        ProjectsCommand projectsCommand = new ProjectsCommand();
+        ProjectsDeleteRequest projectsDeleteRequest = new ProjectsDeleteRequest();
+        projectsDeleteRequest.setIDS(ids);
+        projectsCommand.setDelete(projectsDeleteRequest);
+        command.setProjects(projectsCommand);
+
+        ResponseForProjectsDeleteResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForProjectsDeleteResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ?
+                response.getErrorMessage() : "Projects update failed");
+        }
+
+        return response.getData();
+    }
+
+    public ProjectsResponse list(UUID organizationId) {
+        Command command = new Command();
+        ProjectsCommand projectsCommand = new ProjectsCommand();
+        ProjectsListRequest projectsListRequest = new ProjectsListRequest();
+        projectsListRequest.setOrganizationID(organizationId);
+        projectsCommand.setList(projectsListRequest);
+        command.setProjects(projectsCommand);
+
+        ResponseForProjectsResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForProjectsResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ?
+                response.getErrorMessage() : "No projects for given organization");
+        }
+
+        return response.getData();
+    }
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/SecretsClient.java b/languages/java/src/main/java/com/bitwarden/sdk/SecretsClient.java
new file mode 100644
index 000000000..f1a97fdc7
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/SecretsClient.java
@@ -0,0 +1,115 @@
+package com.bitwarden.sdk;
+
+import com.bitwarden.sdk.schema.*;
+
+import java.util.UUID;
+
+public class SecretsClient {
+
+    private final CommandRunner commandRunner;
+
+    SecretsClient(CommandRunner commandRunner) {
+        this.commandRunner = commandRunner;
+    }
+
+    public SecretResponse get(UUID id) {
+        Command command = new Command();
+        SecretsCommand secretsCommand = new SecretsCommand();
+        SecretGetRequest secretGetRequest = new SecretGetRequest();
+        secretGetRequest.setID(id);
+        secretsCommand.setGet(secretGetRequest);
+        command.setSecrets(secretsCommand);
+
+        ResponseForSecretResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForSecretResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Secret not found");
+        }
+
+        return response.getData();
+    }
+
+    public SecretResponse create(String key, String value, String note, UUID organizationId, UUID[] projectIds) {
+        Command command = new Command();
+        SecretsCommand secretsCommand = new SecretsCommand();
+        SecretCreateRequest secretCreateRequest = new SecretCreateRequest();
+        secretCreateRequest.setKey(key);
+        secretCreateRequest.setValue(value);
+        secretCreateRequest.setNote(note);
+        secretCreateRequest.setOrganizationID(organizationId);
+        secretCreateRequest.setProjectIDS(projectIds);
+        secretsCommand.setCreate(secretCreateRequest);
+        command.setSecrets(secretsCommand);
+
+        ResponseForSecretResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForSecretResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Secret create failed");
+        }
+
+        return response.getData();
+    }
+
+    public SecretResponse update(UUID id, String key, String value, String note, UUID organizationId,
+                                 UUID[] projectIds) {
+        Command command = new Command();
+        SecretsCommand secretsCommand = new SecretsCommand();
+        SecretPutRequest secretPutRequest = new SecretPutRequest();
+        secretPutRequest.setID(id);
+        secretPutRequest.setKey(key);
+        secretPutRequest.setValue(value);
+        secretPutRequest.setNote(note);
+        secretPutRequest.setOrganizationID(organizationId);
+        secretPutRequest.setProjectIDS(projectIds);
+        secretsCommand.setUpdate(secretPutRequest);
+        command.setSecrets(secretsCommand);
+
+        ResponseForSecretResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForSecretResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Secret update failed");
+        }
+
+        return response.getData();
+    }
+
+    public SecretsDeleteResponse delete(UUID[] ids) {
+        Command command = new Command();
+        SecretsCommand secretsCommand = new SecretsCommand();
+        SecretsDeleteRequest secretsDeleteRequest = new SecretsDeleteRequest();
+        secretsDeleteRequest.setIDS(ids);
+        secretsCommand.setDelete(secretsDeleteRequest);
+        command.setSecrets(secretsCommand);
+
+        ResponseForSecretsDeleteResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForSecretsDeleteResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ? response.getErrorMessage() : "Secrets delete failed");
+        }
+
+        return response.getData();
+    }
+
+    public SecretIdentifiersResponse list(UUID organizationId) {
+        Command command = new Command();
+        SecretsCommand secretsCommand = new SecretsCommand();
+        SecretIdentifiersRequest secretIdentifiersRequest = new SecretIdentifiersRequest();
+        secretIdentifiersRequest.setOrganizationID(organizationId);
+        secretsCommand.setList(secretIdentifiersRequest);
+        command.setSecrets(secretsCommand);
+
+        ResponseForSecretIdentifiersResponse response = commandRunner.runCommand(command,
+            BitwardenClient.throwingFunctionWrapper(Converter::ResponseForSecretIdentifiersResponseFromJsonString));
+
+        if (response == null || !response.getSuccess()) {
+            throw new BitwardenClientException(response != null ?
+                response.getErrorMessage() : "No secrets for given organization");
+        }
+
+        return response.getData();
+    }
+}
diff --git a/languages/java/src/main/java/com/bitwarden/sdk/ThrowingFunction.java b/languages/java/src/main/java/com/bitwarden/sdk/ThrowingFunction.java
new file mode 100644
index 000000000..cab5b1041
--- /dev/null
+++ b/languages/java/src/main/java/com/bitwarden/sdk/ThrowingFunction.java
@@ -0,0 +1,7 @@
+package com.bitwarden.sdk;
+
+@FunctionalInterface
+public interface ThrowingFunction<T, R, E extends Exception> {
+
+    R accept(T t) throws E;
+}
diff --git a/support/scripts/schemas.ts b/support/scripts/schemas.ts
index 148b089e6..7181d6010 100644
--- a/support/scripts/schemas.ts
+++ b/support/scripts/schemas.ts
@@ -1,4 +1,10 @@
-import { quicktype, InputData, JSONSchemaInput, FetchingJSONSchemaStore } from "quicktype-core";
+import {
+  quicktype,
+  quicktypeMultiFile,
+  InputData,
+  JSONSchemaInput,
+  FetchingJSONSchemaStore,
+} from "quicktype-core";
 
 import fs from "fs";
 import path from "path";
@@ -63,6 +69,23 @@ async function main() {
   });
 
   writeToFile("./languages/csharp/Bitwarden.Sdk/schemas.cs", csharp.lines);
+
+  const java = await quicktypeMultiFile({
+    inputData,
+    lang: "java",
+    rendererOptions: {
+      package: "com.bitwarden.sdk.schema",
+      "java-version": "8",
+    },
+  });
+
+  const javaDir = "./languages/java/src/main/java/com/bitwarden/sdk/schema/";
+  if (!fs.existsSync(javaDir)) {
+    fs.mkdirSync(javaDir);
+  }
+  java.forEach((file, path) => {
+    writeToFile(javaDir + path, file.lines);
+  });
 }
 
 main();

From 9f775961f2122555a5fc9e332573281d20a849f7 Mon Sep 17 00:00:00 2001
From: Vladimir Cvetic <vladimir@ferdinand.rs>
Date: Thu, 30 Nov 2023 16:25:03 +0100
Subject: [PATCH 38/55] Golang SDK (#218)

## Type of change

<!-- (mark with an `X`) -->

```
- [ ] Bug fix
- [ x] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective

The objective is to develop a Golang wrapper for the Bitwarden client
that interacts with a native rust library. This is to ensure that a
consistent interface is provided, and the details of the Bitwarden rust
library can be abstracted away.

## Code changes
BitwardenClient.go

Defines the BitwardenClient struct with dependencies and submodules for
handling projects and secrets.
Implements the NewBitwardenClient function that creates a new client.
    Implements methods for access token login and cleanup.

BitwardenLibrary_native.go

Implements the BitwardenLibrary interface using cgo for interacting with
the native C library.
Provides methods for initialization, memory release, and running
commands on the client.

BitwardenLibrary_custom.go

An alternative implementation of the BitwardenLibrary interface,
possibly for testing or alternative backends. The code is currently the
same as BitwardenLibrary_native.go.

CommandRunner.go

Implements the CommandRunner struct that takes care of running commands
via the library interface.
    Centralizes command-running logic.

Projects.go

Implements a Projects struct with methods to create, list, get, update,
and delete projects.
    Utilizes the CommandRunner interface to run these commands.

Secrets.go

Implements a Secrets struct with methods to create, list, get, update,
and delete secrets.
    Utilizes the CommandRunner interface to run these commands.


*Notes*

- The code is designed to be modular, separating concerns into different
components (like Projects, Secrets, and CommandRunner).
- Interfaces are used where possible to make it easier to mock these
components for testing.
- The native C API is encapsulated neatly, making it easier to switch
out or update the underlying library without affecting the rest of the
code.

---------

Co-authored-by: Boris Bujak <boris.bujak@carvana.com>
Co-authored-by: Boris Bujak <bujakboris@gmail.com>
---
 .github/workflows/generate_schemas.yml        |   6 +
 .github/workflows/golang-release.yml          |  73 +++++++++++
 .gitignore                                    |   1 +
 languages/go/README.md                        | 113 +++++++++++++++++
 languages/go/bitwarden_client.go              |  63 ++++++++++
 languages/go/command_runner.go                |  37 ++++++
 languages/go/example/example.go               |  86 +++++++++++++
 languages/go/example/go.mod                   |  10 ++
 languages/go/example/go.sum                   |   2 +
 languages/go/go.mod                           |   5 +
 languages/go/go.sum                           |   2 +
 .../internal/cinterface/bitwarden_library.go  |  55 +++++++++
 languages/go/project.go                       | 107 ++++++++++++++++
 languages/go/secrets.go                       | 114 ++++++++++++++++++
 languages/go/util.go                          |  33 +++++
 support/scripts/schemas.ts                    |  11 ++
 16 files changed, 718 insertions(+)
 create mode 100644 .github/workflows/golang-release.yml
 create mode 100644 languages/go/README.md
 create mode 100644 languages/go/bitwarden_client.go
 create mode 100644 languages/go/command_runner.go
 create mode 100644 languages/go/example/example.go
 create mode 100644 languages/go/example/go.mod
 create mode 100644 languages/go/example/go.sum
 create mode 100644 languages/go/go.mod
 create mode 100644 languages/go/go.sum
 create mode 100644 languages/go/internal/cinterface/bitwarden_library.go
 create mode 100644 languages/go/project.go
 create mode 100644 languages/go/secrets.go
 create mode 100644 languages/go/util.go

diff --git a/.github/workflows/generate_schemas.yml b/.github/workflows/generate_schemas.yml
index 675f53c1e..7eba684c4 100644
--- a/.github/workflows/generate_schemas.yml
+++ b/.github/workflows/generate_schemas.yml
@@ -64,6 +64,12 @@ jobs:
           path: ${{ github.workspace }}/support/schemas/*
           if-no-files-found: error
 
+      - name: Upload Go schemas artifact
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        with:
+          name: schemas.go
+          path: ${{ github.workspace }}/languages/go/schema.go
+
       - name: Upload java schemas artifact
         uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         with:
diff --git a/.github/workflows/golang-release.yml b/.github/workflows/golang-release.yml
new file mode 100644
index 000000000..6f41bcd3e
--- /dev/null
+++ b/.github/workflows/golang-release.yml
@@ -0,0 +1,73 @@
+name: Go Release
+
+on:
+  workflow_dispatch:
+    inputs:
+      version_number:
+        description: "New Version"
+        required: true
+
+env:
+  GO111MODULE: on
+  GO_VERSION: "^1.18"
+
+jobs:
+  build_rust:
+    uses: ./.github/workflows/build-rust-cross-platform.yml
+
+  generate-schemas:
+    uses: ./.github/workflows/generate_schemas.yml
+
+  build:
+    name: Build
+    needs:
+      - build_rust
+      - generate-schemas
+    runs-on: ubuntu-22.04
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+
+      - name: Setup Go environment
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        with:
+          go-version: ${{ env.GO_VERSION }}
+
+      - name: Cache dependencies
+        uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3.3.2
+        with:
+          path: ~/go/pkg/mod
+          key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
+          restore-keys: |
+            ${{ runner.os }}-go-
+
+      - name: Build
+        run: go build -v ./...
+
+      - name: Test
+        run: go test -v ./...
+
+  release:
+    name: Release
+    needs: build
+    runs-on: ubuntu-22.04
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+
+      - name: Setup Go environment
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        with:
+          go-version: ${{ env.GO_VERSION }}
+
+      - name: Set release version
+        run: echo "VERSION=${{ github.event.inputs.version_number }}" >> $GITHUB_ENV
+
+      - name: Install Goreleaser
+        run: go install github.com/goreleaser/goreleaser@v1.21.2
+
+      - name: Run Goreleaser
+        run: goreleaser release --rm-dist --skip-validate
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          VERSION: ${{ env.VERSION }}
diff --git a/.gitignore b/.gitignore
index 38b074349..37d652453 100644
--- a/.gitignore
+++ b/.gitignore
@@ -49,4 +49,5 @@ crates/bitwarden-napi/src-ts/bitwarden_client/schemas.ts
 languages/csharp/Bitwarden.Sdk/schemas.cs
 languages/js_webassembly/bitwarden_client/schemas.ts
 languages/python/BitwardenClient/schemas.py
+languages/go/schema.go
 languages/java/src/main/java/com/bitwarden/sdk/schema
diff --git a/languages/go/README.md b/languages/go/README.md
new file mode 100644
index 000000000..e57badf7e
--- /dev/null
+++ b/languages/go/README.md
@@ -0,0 +1,113 @@
+# Bitwarden SDK in Go
+
+This SDK is designed to interact with Bitwarden services in Go. It includes implementations for
+managing projects and secrets, as well as a client interface to facilitate operations like login.
+
+## Prerequisites
+
+- Go installed
+- C environment to run CGO
+
+## Installation
+
+Download the SDK files and place them in your Go project directory.
+
+## Table of Contents
+
+- [Initialization](#initialization)
+- [Login](#login)
+- [Projects](#projects)
+- [Secrets](#secrets)
+- [Close Client](#close-client)
+
+---
+
+### Initialization
+
+To initialize the client, you need to import the SDK and create a new `BitwardenClient` instance.
+
+```go
+import "github.com/bitwarden/sdk/languages/go"
+
+bitwardenClient, _ := sdk.NewBitwardenClient(&apiURL, &identityURL)
+```
+
+---
+
+### Login
+
+To login using an access token:
+
+```go
+apiKeyLogin, err := bitwardenClient.AccessTokenLogin(accessToken)
+```
+
+---
+
+### Projects
+
+#### Create a Project
+
+```go
+project, err := client.Projects.Create("organization_id", "project_name")
+```
+
+#### List Projects
+
+```go
+projects, err := client.Projects.List("organization_id")
+```
+
+#### Update a Project
+
+```go
+project, err := client.Projects.Update("project_id", "organization_id", "new_project_name")
+```
+
+#### Delete Projects
+
+```go
+project, err := client.Projects.Delete([]string{"project_id_1", "project_id_2"})
+```
+
+---
+
+### Secrets
+
+#### Create a Secret
+
+```go
+secret, err := client.Secrets.Create("key", "value", "note", "organization_id", []string{"project_id"})
+```
+
+#### List Secrets
+
+```go
+secrets, err := client.Secrets.List("organization_id")
+```
+
+#### Update a Secret
+
+```go
+secret, err := client.Secrets.Update("secret_id", "new_key", "new_value", "new_note", "organization_id", []string{"project_id"})
+```
+
+#### Delete Secrets
+
+```go
+secret, err := client.Secrets.Delete([]string{"secret_id_1", "secret_id_2"})
+```
+
+---
+
+### Close Client
+
+To free up resources:
+
+```go
+defer bitwardenClient.Close()
+```
+
+---
+
+For more detailed information, refer to the code comments and method signatures.
diff --git a/languages/go/bitwarden_client.go b/languages/go/bitwarden_client.go
new file mode 100644
index 000000000..5e1108ce1
--- /dev/null
+++ b/languages/go/bitwarden_client.go
@@ -0,0 +1,63 @@
+package sdk
+
+import (
+	"encoding/json"
+
+	"github.com/bitwarden/sdk/languages/go/internal/cinterface"
+)
+
+type BitwardenClient struct {
+	client        cinterface.ClientPointer
+	lib           cinterface.BitwardenLibrary
+	commandRunner CommandRunnerInterface
+	Projects      ProjectsInterface
+	Secrets       SecretsInterface
+}
+
+func NewBitwardenClient(apiURL *string, identityURL *string) (*BitwardenClient, error) {
+	deviceType := DeviceType("SDK")
+	userAgent := "Bitwarden GOLANG-SDK"
+	clientSettings := ClientSettings{
+		APIURL:      apiURL,
+		IdentityURL: identityURL,
+		UserAgent:   &userAgent,
+		DeviceType:  &deviceType,
+	}
+
+	settingsJSON, err := json.Marshal(clientSettings)
+	if err != nil {
+		return nil, err
+	}
+
+	lib := cinterface.NewBitwardenLibrary()
+	client, err := lib.Init(string(settingsJSON))
+	if err != nil {
+		return nil, err
+	}
+	runner := NewCommandRunner(client, lib)
+
+	return &BitwardenClient{
+		lib:           lib,
+		client:        client,
+		commandRunner: runner,
+		Projects:      NewProjects(runner),
+		Secrets:       NewSecrets(runner),
+	}, nil
+}
+
+func (c *BitwardenClient) AccessTokenLogin(accessToken string) error {
+	req := AccessTokenLoginRequest{AccessToken: accessToken}
+	command := Command{AccessTokenLogin: &req}
+
+	responseStr, err := c.commandRunner.RunCommand(command)
+	if err != nil {
+		return err
+	}
+
+	var response APIKeyLoginResponse
+	return checkSuccessAndError(responseStr, &response)
+}
+
+func (c *BitwardenClient) Close() {
+	c.lib.FreeMem(c.client)
+}
diff --git a/languages/go/command_runner.go b/languages/go/command_runner.go
new file mode 100644
index 000000000..3f79f7149
--- /dev/null
+++ b/languages/go/command_runner.go
@@ -0,0 +1,37 @@
+package sdk
+
+import (
+	"encoding/json"
+
+	"github.com/bitwarden/sdk/languages/go/internal/cinterface"
+)
+
+type CommandRunnerInterface interface {
+	RunCommand(command Command) (string, error)
+}
+
+type CommandRunner struct {
+	client cinterface.ClientPointer
+	lib    cinterface.BitwardenLibrary
+}
+
+func NewCommandRunner(client cinterface.ClientPointer, lib cinterface.BitwardenLibrary) *CommandRunner {
+	return &CommandRunner{
+		client: client,
+		lib:    lib,
+	}
+}
+
+func (c *CommandRunner) RunCommand(command Command) (string, error) {
+	commandJSON, err := json.Marshal(command)
+	if err != nil {
+		return "", err
+	}
+
+	responseStr, err := c.lib.RunCommand(string(commandJSON), c.client)
+	if err != nil {
+		return "", err
+	}
+
+	return responseStr, nil
+}
diff --git a/languages/go/example/example.go b/languages/go/example/example.go
new file mode 100644
index 000000000..5935d8002
--- /dev/null
+++ b/languages/go/example/example.go
@@ -0,0 +1,86 @@
+package main
+
+import (
+	"fmt"
+	"os"
+
+	sdk "github.com/bitwarden/sdk/languages/go"
+	"github.com/gofrs/uuid"
+)
+
+func main() {
+	apiURL := os.Getenv("API_URL")
+	identityURL := os.Getenv("IDENTITY_URL")
+
+	bitwardenClient, _ := sdk.NewBitwardenClient(&apiURL, &identityURL)
+
+	accessToken := os.Getenv("ACCESS_TOKEN")
+	organizationIDStr := os.Getenv("ORGANIZATION_ID")
+	projectName := os.Getenv("PROJECT_NAME")
+
+	if projectName == "" {
+		projectName = "NewTestProject" // default value
+	}
+
+	err := bitwardenClient.AccessTokenLogin(accessToken)
+	if err != nil {
+		panic(err)
+	}
+
+	organizationID, err := uuid.FromString(organizationIDStr)
+	if err != nil {
+		panic(err)
+	}
+
+	project, err := bitwardenClient.Projects.Create(organizationID.String(), projectName)
+	if err != nil {
+		panic(err)
+	}
+	fmt.Println(project)
+	projectID := project.ID
+	fmt.Println(projectID)
+
+	if _, err = bitwardenClient.Projects.List(organizationID.String()); err != nil {
+		panic(err)
+	}
+
+	if _, err = bitwardenClient.Projects.Get(projectID); err != nil {
+		panic(err)
+	}
+
+	if _, err = bitwardenClient.Projects.Update(projectID, organizationID.String(), projectName+"2"); err != nil {
+		panic(err)
+	}
+
+	key := "key"
+	value := "value"
+	note := "note"
+
+	secret, err := bitwardenClient.Secrets.Create(key, value, note, organizationID.String(), []string{projectID})
+	if err != nil {
+		panic(err)
+	}
+	secretID := secret.ID
+
+	if _, err = bitwardenClient.Secrets.List(organizationID.String()); err != nil {
+		panic(err)
+	}
+
+	if _, err = bitwardenClient.Secrets.Get(secretID); err != nil {
+		panic(err)
+	}
+
+	if _, err = bitwardenClient.Secrets.Update(secretID, key, value, note, organizationID.String(), []string{projectID}); err != nil {
+		panic(err)
+	}
+
+	if _, err = bitwardenClient.Secrets.Delete([]string{secretID}); err != nil {
+		panic(err)
+	}
+
+	if _, err = bitwardenClient.Projects.Delete([]string{projectID}); err != nil {
+		panic(err)
+	}
+
+	defer bitwardenClient.Close()
+}
diff --git a/languages/go/example/go.mod b/languages/go/example/go.mod
new file mode 100644
index 000000000..bbde28fd5
--- /dev/null
+++ b/languages/go/example/go.mod
@@ -0,0 +1,10 @@
+module example
+
+replace github.com/bitwarden/sdk/languages/go => ../
+
+go 1.20
+
+require (
+	github.com/bitwarden/sdk/languages/go v0.0.0-00010101000000-000000000000
+	github.com/gofrs/uuid v4.4.0+incompatible
+)
diff --git a/languages/go/example/go.sum b/languages/go/example/go.sum
new file mode 100644
index 000000000..c0ad68738
--- /dev/null
+++ b/languages/go/example/go.sum
@@ -0,0 +1,2 @@
+github.com/gofrs/uuid v4.4.0+incompatible h1:3qXRTX8/NbyulANqlc0lchS1gqAVxRgsuW1YrTJupqA=
+github.com/gofrs/uuid v4.4.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM=
diff --git a/languages/go/go.mod b/languages/go/go.mod
new file mode 100644
index 000000000..a9e125453
--- /dev/null
+++ b/languages/go/go.mod
@@ -0,0 +1,5 @@
+module github.com/bitwarden/sdk/languages/go
+
+go 1.18
+
+require github.com/gofrs/uuid v4.4.0+incompatible
diff --git a/languages/go/go.sum b/languages/go/go.sum
new file mode 100644
index 000000000..c0ad68738
--- /dev/null
+++ b/languages/go/go.sum
@@ -0,0 +1,2 @@
+github.com/gofrs/uuid v4.4.0+incompatible h1:3qXRTX8/NbyulANqlc0lchS1gqAVxRgsuW1YrTJupqA=
+github.com/gofrs/uuid v4.4.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM=
diff --git a/languages/go/internal/cinterface/bitwarden_library.go b/languages/go/internal/cinterface/bitwarden_library.go
new file mode 100644
index 000000000..42327adb2
--- /dev/null
+++ b/languages/go/internal/cinterface/bitwarden_library.go
@@ -0,0 +1,55 @@
+package cinterface
+
+import (
+	"fmt"
+	"unsafe"
+)
+
+/*
+#cgo LDFLAGS: -lbitwarden_c
+#cgo linux LDFLAGS: -L/usr/local/lib -L/usr/lib -L ./lib
+#cgo darwin LDFLAGS: -L/usr/local/lib -L/usr/lib -L ./lib
+#include <stdlib.h>
+typedef void* ClientPtr;
+extern char* run_command(const char *command, ClientPtr client);
+extern ClientPtr init(const char *clientSettings);
+extern void free_mem(ClientPtr client);
+*/
+import "C"
+
+type ClientPointer struct {
+	Pointer C.ClientPtr
+}
+
+type BitwardenLibrary interface {
+	Init(clientSettings string) (ClientPointer, error)
+	FreeMem(client ClientPointer)
+	RunCommand(command string, client ClientPointer) (string, error)
+}
+
+type BitwardenLibraryImpl struct{}
+
+func NewBitwardenLibrary() BitwardenLibrary {
+	return &BitwardenLibraryImpl{}
+}
+
+func (b *BitwardenLibraryImpl) Init(clientSettings string) (ClientPointer, error) {
+	ptr := C.init(C.CString(clientSettings))
+	if ptr == nil {
+		return ClientPointer{}, fmt.Errorf("initialization failed")
+	}
+	return ClientPointer{Pointer: ptr}, nil
+}
+
+func (b *BitwardenLibraryImpl) FreeMem(client ClientPointer) {
+	C.free_mem(client.Pointer)
+}
+
+func (b *BitwardenLibraryImpl) RunCommand(command string, client ClientPointer) (string, error) {
+	cstr := C.run_command(C.CString(command), client.Pointer)
+	if cstr == nil {
+		return "", fmt.Errorf("run command failed")
+	}
+	defer C.free(unsafe.Pointer(cstr))
+	return C.GoString(cstr), nil
+}
diff --git a/languages/go/project.go b/languages/go/project.go
new file mode 100644
index 000000000..24a30a7ac
--- /dev/null
+++ b/languages/go/project.go
@@ -0,0 +1,107 @@
+package sdk
+
+type ProjectsInterface interface {
+	Create(organizationID string, name string) (*ProjectResponse, error)
+	List(organizationID string) (*ProjectsResponse, error)
+	Get(projectID string) (*ProjectResponse, error)
+	Update(projectID string, organizationID string, name string) (*ProjectResponse, error)
+	Delete(projectIDs []string) (*ProjectsDeleteResponse, error)
+}
+
+type Projects struct {
+	CommandRunner CommandRunnerInterface
+}
+
+func NewProjects(commandRunner CommandRunnerInterface) *Projects {
+	return &Projects{CommandRunner: commandRunner}
+}
+
+func (p *Projects) Get(id string) (*ProjectResponse, error) {
+	command := Command{
+		Projects: &ProjectsCommand{
+			Get: &ProjectGetRequest{
+				ID: id,
+			},
+		},
+	}
+	var response ProjectResponse
+	if err := p.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (p *Projects) Create(organizationID string, name string) (*ProjectResponse, error) {
+	command := Command{
+		Projects: &ProjectsCommand{
+			Create: &ProjectCreateRequest{
+				OrganizationID: organizationID,
+				Name:           name,
+			},
+		},
+	}
+
+	var response ProjectResponse
+	if err := p.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (p *Projects) List(organizationID string) (*ProjectsResponse, error) {
+	command := Command{
+		Projects: &ProjectsCommand{
+			List: &ProjectsListRequest{
+				OrganizationID: organizationID,
+			},
+		},
+	}
+
+	var response ProjectsResponse
+	if err := p.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (p *Projects) Update(projectID, organizationID, name string) (*ProjectResponse, error) {
+	command := Command{
+		Projects: &ProjectsCommand{
+			Update: &ProjectPutRequest{
+				ID:             projectID,
+				OrganizationID: organizationID,
+				Name:           name,
+			},
+		},
+	}
+
+	var response ProjectResponse
+	if err := p.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (p *Projects) Delete(projectIDs []string) (*ProjectsDeleteResponse, error) {
+	command := Command{
+		Projects: &ProjectsCommand{
+			Delete: &ProjectsDeleteRequest{
+				IDS: projectIDs,
+			},
+		},
+	}
+
+	var response ProjectsDeleteResponse
+	if err := p.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (p *Projects) executeCommand(command Command, target interface{}) error {
+	responseStr, err := p.CommandRunner.RunCommand(command)
+	if err != nil {
+		return err
+	}
+	return checkSuccessAndError(responseStr, target)
+}
diff --git a/languages/go/secrets.go b/languages/go/secrets.go
new file mode 100644
index 000000000..e6863c459
--- /dev/null
+++ b/languages/go/secrets.go
@@ -0,0 +1,114 @@
+package sdk
+
+type SecretsInterface interface {
+	Create(key, value, note string, organizationID string, projectIDs []string) (*SecretResponse, error)
+	List(organizationID string) (*SecretIdentifiersResponse, error)
+	Get(secretID string) (*SecretResponse, error)
+	Update(secretID string, key, value, note string, organizationID string, projectIDs []string) (*SecretResponse, error)
+	Delete(secretIDs []string) (*SecretsDeleteResponse, error)
+}
+
+type Secrets struct {
+	CommandRunner CommandRunnerInterface
+}
+
+func NewSecrets(commandRunner CommandRunnerInterface) *Secrets {
+	return &Secrets{CommandRunner: commandRunner}
+}
+
+func (s *Secrets) executeCommand(command Command, target interface{}) error {
+	responseStr, err := s.CommandRunner.RunCommand(command)
+	if err != nil {
+		return err
+	}
+	return checkSuccessAndError(responseStr, target)
+}
+
+func (s *Secrets) Create(key, value, note string, organizationID string, projectIDs []string) (*SecretResponse, error) {
+	command := Command{
+		Secrets: &SecretsCommand{
+			Create: &SecretCreateRequest{
+				Key:            key,
+				Value:          value,
+				Note:           note,
+				OrganizationID: organizationID,
+				ProjectIDS:     projectIDs,
+			},
+		},
+	}
+
+	var response SecretResponse
+	if err := s.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (s *Secrets) List(organizationID string) (*SecretIdentifiersResponse, error) {
+	command := Command{
+		Secrets: &SecretsCommand{
+			List: &SecretIdentifiersRequest{
+				OrganizationID: organizationID,
+			},
+		},
+	}
+
+	var response SecretIdentifiersResponse
+	if err := s.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (s *Secrets) Get(id string) (*SecretResponse, error) {
+	command := Command{
+		Secrets: &SecretsCommand{
+			Get: &SecretGetRequest{
+				ID: id,
+			},
+		},
+	}
+
+	var response SecretResponse
+	if err := s.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (s *Secrets) Update(id string, key, value, note string, organizationID string, projectIDs []string) (*SecretResponse, error) {
+	command := Command{
+		Secrets: &SecretsCommand{
+			Update: &SecretPutRequest{
+				ID:             id,
+				Key:            key,
+				Value:          value,
+				Note:           note,
+				OrganizationID: organizationID,
+				ProjectIDS:     projectIDs,
+			},
+		},
+	}
+
+	var response SecretResponse
+	if err := s.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
+
+func (s *Secrets) Delete(ids []string) (*SecretsDeleteResponse, error) {
+	command := Command{
+		Secrets: &SecretsCommand{
+			Delete: &SecretsDeleteRequest{
+				IDS: ids,
+			},
+		},
+	}
+
+	var response SecretsDeleteResponse
+	if err := s.executeCommand(command, &response); err != nil {
+		return nil, err
+	}
+	return &response, nil
+}
diff --git a/languages/go/util.go b/languages/go/util.go
new file mode 100644
index 000000000..01ab3578d
--- /dev/null
+++ b/languages/go/util.go
@@ -0,0 +1,33 @@
+package sdk
+
+import (
+	"encoding/json"
+	"fmt"
+)
+
+func checkSuccessAndError(responseStr string, v interface{}) error {
+	var wrapper struct {
+		Success      bool             `json:"success"`
+		ErrorMessage *string          `json:"errorMessage"`
+		Data         *json.RawMessage `json:"data"`
+	}
+
+	err := json.Unmarshal([]byte(responseStr), &wrapper)
+	if err != nil {
+		return fmt.Errorf("failed to unmarshal wrapper response: %v", err)
+	}
+
+	if !wrapper.Success {
+		if wrapper.ErrorMessage != nil {
+			return fmt.Errorf("API error: %s", *wrapper.ErrorMessage)
+		}
+		return fmt.Errorf("API error: unknown")
+	}
+
+	err = json.Unmarshal(*wrapper.Data, &v)
+	if err != nil {
+		return fmt.Errorf("failed to unmarshal response: %v", err)
+	}
+
+	return nil
+}
diff --git a/support/scripts/schemas.ts b/support/scripts/schemas.ts
index 7181d6010..98c0c39cb 100644
--- a/support/scripts/schemas.ts
+++ b/support/scripts/schemas.ts
@@ -70,6 +70,17 @@ async function main() {
 
   writeToFile("./languages/csharp/Bitwarden.Sdk/schemas.cs", csharp.lines);
 
+  const go = await quicktype({
+    inputData,
+    lang: "go",
+    rendererOptions: {
+      package: "sdk",
+      "just-types-and-package": true,
+    },
+  });
+
+  writeToFile("./languages/go/schema.go", go.lines);
+
   const java = await quicktypeMultiFile({
     inputData,
     lang: "java",

From 0f5f11bc5767b86baa514300fa17262a3b89abf3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Slobodan=20Todosijevi=C4=87?=
 <68587964+slobokv83@users.noreply.github.com>
Date: Thu, 30 Nov 2023 16:42:45 +0100
Subject: [PATCH 39/55] Cpp Wrapper for sdk (#259)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

## Type of change

<!-- (mark with an `X`) -->

```
- [ ] Bug fix
- [x ] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective

Implemented C++ library that wraps native C library and exposed its
commands through BitwardenClient class.

## Code changes

- Implemented BitwardenLibrary for connection with `bitwarden_c` library
and its three functions: `init`, `run_command`, and `free_mem`
- Implemented CRUD operations for the Projects and Secrets for Bitwarden
Secrets Manager using the API
- Developed building mechanism that is building C++ dynamic library
using `Cmake`
- Added example in the `examples` directory
- Added documentation in .md files for CRUD operations use, building the
dynamic library, and for the client use

---------

Co-authored-by: Todosijevic-Slobodan <Todosijevic.Slobodan@bcg.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
---
 .gitignore                                |   2 +
 languages/cpp/CMakeBuild.md               |  33 +++++
 languages/cpp/CMakeLists.txt              |  36 ++++++
 languages/cpp/ExampleUse.md               |  70 ++++++++++
 languages/cpp/README.md                   |  97 ++++++++++++++
 languages/cpp/examples/Wrapper.cpp        |  73 +++++++++++
 languages/cpp/include/BitwardenClient.h   |  36 ++++++
 languages/cpp/include/BitwardenLibrary.h  |  27 ++++
 languages/cpp/include/BitwardenSettings.h |  19 +++
 languages/cpp/include/CommandRunner.h     |  45 +++++++
 languages/cpp/include/Projects.h          |  19 +++
 languages/cpp/include/Secrets.h           |  20 +++
 languages/cpp/src/BitwardenClient.cpp     | 145 +++++++++++++++++++++
 languages/cpp/src/BitwardenLibrary.cpp    | 107 ++++++++++++++++
 languages/cpp/src/CommandRunner.cpp       |  49 +++++++
 languages/cpp/src/Projects.cpp            | 132 +++++++++++++++++++
 languages/cpp/src/Secrets.cpp             | 149 ++++++++++++++++++++++
 support/scripts/schemas.ts                |  16 +++
 18 files changed, 1075 insertions(+)
 create mode 100644 languages/cpp/CMakeBuild.md
 create mode 100644 languages/cpp/CMakeLists.txt
 create mode 100644 languages/cpp/ExampleUse.md
 create mode 100644 languages/cpp/README.md
 create mode 100644 languages/cpp/examples/Wrapper.cpp
 create mode 100644 languages/cpp/include/BitwardenClient.h
 create mode 100644 languages/cpp/include/BitwardenLibrary.h
 create mode 100644 languages/cpp/include/BitwardenSettings.h
 create mode 100644 languages/cpp/include/CommandRunner.h
 create mode 100644 languages/cpp/include/Projects.h
 create mode 100644 languages/cpp/include/Secrets.h
 create mode 100644 languages/cpp/src/BitwardenClient.cpp
 create mode 100644 languages/cpp/src/BitwardenLibrary.cpp
 create mode 100644 languages/cpp/src/CommandRunner.cpp
 create mode 100644 languages/cpp/src/Projects.cpp
 create mode 100644 languages/cpp/src/Secrets.cpp

diff --git a/.gitignore b/.gitignore
index 37d652453..007c3e839 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,6 +1,7 @@
 /target
 .DS_Store
 .pytest_cache
+.vscode/c_cpp_properties.json
 
 # Build results
 [Dd]ebug/
@@ -49,5 +50,6 @@ crates/bitwarden-napi/src-ts/bitwarden_client/schemas.ts
 languages/csharp/Bitwarden.Sdk/schemas.cs
 languages/js_webassembly/bitwarden_client/schemas.ts
 languages/python/BitwardenClient/schemas.py
+languages/cpp/include/schemas.hpp
 languages/go/schema.go
 languages/java/src/main/java/com/bitwarden/sdk/schema
diff --git a/languages/cpp/CMakeBuild.md b/languages/cpp/CMakeBuild.md
new file mode 100644
index 000000000..4c7c29814
--- /dev/null
+++ b/languages/cpp/CMakeBuild.md
@@ -0,0 +1,33 @@
+# CMAKE build
+
+## INTRODUCTION
+
+Cmake is used to build the c++ Bitwarden client library. Output should be placed in the build directory. The output contains two dynamic libraries: one that we are building `BitwardenClient` and another that the building library uses `bitwarden_c`.
+
+## PREREQUISITES
+
+- Cmake installed, minimum version 3.15
+- `schemas.hpp` generated into `include` directory
+- installed `nlohmann-json` library
+- installed `boost` library
+
+## BUILD commands
+
+One should be in the root directory of the c++ wrapper (the same level where is CMakeLists.txt placed). Paths of the three libraries should be placed inside the cmake build command:
+
+$ mkdir build
+$ cd build
+$ cmake .. -DNLOHMANN=/path/to/include/nlohmann -DBOOST=/path/to/include/boost -DTARGET=relative/path/to/libbitwarden_c
+$ cmake --build .
+
+
+
+## Example
+
+macOS:
+
+$ mkdir build
+$ cd build
+$ cmake .. -DNLOHMANN=/opt/hombrew/include -DBOOST=/opt/homebrew/include -DTARGET=../../target/release/libbitwarden_c.dylib
+$ cmake --build .
+
diff --git a/languages/cpp/CMakeLists.txt b/languages/cpp/CMakeLists.txt
new file mode 100644
index 000000000..e513a32ed
--- /dev/null
+++ b/languages/cpp/CMakeLists.txt
@@ -0,0 +1,36 @@
+cmake_minimum_required(VERSION 3.15)
+project(BitwardenClient)
+
+set(CMAKE_CXX_STANDARD 20)
+
+# Set placeholders to be passed from command line
+set(NLOHMANN_JSON_INCLUDE_DIR_PLACEHOLDER ${NLOHMANN})
+set(BOOST_INCLUDE_DIR_PLACEHOLDER ${BOOST})
+set(TARGET_INCLUDE_DIR_PLACEHOLDER ${TARGET})
+
+# Specify the locations of nlohmann.json and Boost libraries
+find_path(NLOHMANN_JSON_INCLUDE_DIR nlohmann/json.hpp HINTS ${NLOHMANN_JSON_INCLUDE_DIR_PLACEHOLDER})
+find_path(BOOST_INCLUDE_DIR boost/optional.hpp HINTS ${BOOST_INCLUDE_DIR_PLACEHOLDER})
+
+# Include directories for library
+include_directories(include ${NLOHMANN_JSON_INCLUDE_DIR} ${BOOST_INCLUDE_DIR})
+
+# Add library source files
+file(GLOB SOURCES "src/*.cpp")
+
+# Add library source files along with the schemas.cpp file
+add_library(BitwardenClient SHARED ${SOURCES} ${SCHEMAS_SOURCE})
+
+# Set path for native library loading
+set(LIB_BITWARDEN_C "${CMAKE_SOURCE_DIR}/${TARGET}")
+
+# Copy the library to the build directory before building
+add_custom_command(
+    TARGET BitwardenClient PRE_BUILD
+    COMMAND ${CMAKE_COMMAND} -E copy
+        ${LIB_BITWARDEN_C}
+        $<TARGET_FILE_DIR:BitwardenClient>
+)
+
+# Link libraries
+target_link_libraries(BitwardenClient PRIVATE ${LIB_BITWARDEN_C})
diff --git a/languages/cpp/ExampleUse.md b/languages/cpp/ExampleUse.md
new file mode 100644
index 000000000..579cd0e67
--- /dev/null
+++ b/languages/cpp/ExampleUse.md
@@ -0,0 +1,70 @@
+# EXAMPLES
+
+
+## PREREQUISITES
+
+### BITWARDEN Libraries
+One should have two libraries at the same path:
+- `BitwardeClient`
+- `bitwarden_c`
+
+It should look like `libBitwardeClient.dylib` and `libbitwarden_c.dylib` for the macOS.
+
+For Linux: `libBitwardeClient.so` and `libbitwarden_c.so`
+For Windows: `BitwardeClient.dll` and `bitwarden_c.dll`
+
+### INCLUDE directory
+
+`include` directory contains:
+- `BitwardenLibrary.h`
+- `BitwardenClient.h`
+- `BitwardenSettings.h`
+- `CommandRunner.h`
+- `Projects.h`
+- `Secrets.h`
+- `schemas.hpp`
+
+### Other libraries
+- `nlohmann-json` (https://github.com/nlohmann/json) 
+- `boost` (https://www.boost.org/)
+
+
+### COMPILING
+
+One could use g++/clang++ for compiling.
+Example of the folder structure (macOS):
+
+--root
+    --build
+        `libBitwardenClient.dylib`
+        `libbitwarden_c.dylib`
+    --include
+        --`BitwardenLibrary.h`
+        --`BitwardenClient.h`
+        --`BitwardenSettings.h`
+        --`CommandRunner.h`
+        --`Projects.h`
+        --`Secrets.h`
+        --`schemas.hpp`
+    --examples
+        --`Wrapper.cpp`
+
+
+1. $ export ACCESS_TOKEN=<"access-token">
+2. $ export ORGANIZATION_ID=<"organization-id">
+3. $ export DYLD_LIBRARY_PATH=/path/to/your/library:$DYLD_LIBRARY_PATH
+
+The last step is neccessary to add the path for the dynamic library (macOS).
+For the Linux one should use:
+$ export LD_LIBRARY_PATH=/path/to/your/library:$LD_LIBRARY_PATH
+For the Windows:
+$ set PATH=%PATH%;C:\path\to\your\library
+
+4. $ cd examples
+5. $ clang++ -std=c++20 -I../include -I/path/to/include/nlohmann  -I/path/to/include/boost -L../build/ -o MyBitwardenApp Wrapper.cpp -lBitwardenClient -ldl
+
+for Windows `-ldl` should be excluded,
+
+The result is `MyBitwardenApp` in the `examples` directory, and one can run it from the `examples` directory:
+
+6. $ ./MyBitwardenApp
diff --git a/languages/cpp/README.md b/languages/cpp/README.md
new file mode 100644
index 000000000..23b59ac76
--- /dev/null
+++ b/languages/cpp/README.md
@@ -0,0 +1,97 @@
+# Bitwarden Secrets Manager SDK
+
+C++ bindings for interacting with the [Bitwarden Secrets Manager]. This is a beta release and might be missing some functionality.
+
+## Create access token
+
+Review the help documentation on [Access Tokens]
+
+## Usage code snippets
+
+### Client settings
+
+```c++
+// Optional - if not stressed, then default values are used
+BitwardenSettings bitwardenSettings;
+bitwardenSettings.set_api_url("<bitwarden-url>");
+bitwardenSettings.set_identity_url("<bitwarden-identity>");
+```
+
+
+### Create new Bitwarden client
+
+```c++
+std::string accessToken = "<access-token>";
+// Optional - argument in BitwardenClient
+BitwardenClient bitwardenClient = BitwardenClient(bitwardenSettings);
+bitwardenClient.accessTokenLogin(accessToken);
+```
+
+### Create new project
+
+```c++
+boost::uuids::uuid organizationUuid = boost::uuids::string_generator()("<organization-id>");
+ProjectResponse projectResponseCreate = bitwardenClient.createProject(organizationUuid, "TestProject");
+```
+
+### List all projects
+
+```c++
+ProjectsResponse projectResponseList = bitwardenClient.listProjects(organizationUuid);
+```
+
+### Get project details
+
+```c++
+boost::uuids::uuid projectId = boost::uuids::string_generator()(projectResponseCreate.get_id());
+ProjectResponse projectResponseGet = bitwardenClient.getProject(projectId);
+```
+
+### Update project
+
+```c++
+boost::uuids::uuid projectId = boost::uuids::string_generator()(projectResponseCreate.get_id());
+ProjectResponse projectResponseUpdate = bitwardenClient.updateProject(projectId, organizationUuid, "TestProjectUpdated");
+```
+
+### Delete projects
+
+```c++
+SecretsDeleteResponse secretsDeleteResponse = bitwardenClient.deleteSecrets({secretId});
+```
+
+### Add new secret
+
+```c++
+std::string key = "key";
+std::string value = "value";
+std::string note = "note";
+SecretResponse secretResponseCreate = bitwardenClient.createSecret(key, value, note, organizationUuid, {projectId});
+```
+
+### List secrets
+
+```c++
+SecretIdentifiersResponse secretIdentifiersResponse = bitwardenClient.listSecrets(organizationUuid);
+```
+
+### Get secret details
+
+```
+boost::uuids::uuid secretId = boost::uuids::string_generator()(secretResponseCreate.get_id());
+SecretResponse secretResponseGet = bitwardenClient.getSecret(secretId);
+```
+
+### Update secret
+```c++
+SecretResponse secretResponseUpdate = bitwardenClient.updateSecret(secretId, "key2", "value2", "note2", organizationUuid, {projectId});
+```
+
+# Delete secrets
+
+```c++
+SecretsDeleteResponse secretsDeleteResponse = bitwardenClient.deleteSecrets({secretId});
+```
+
+[Access Tokens]: https://bitwarden.com/help/access-tokens/
+[Bitwarden Secrets Manager]: https://bitwarden.com/products/secrets-manager/
diff --git a/languages/cpp/examples/Wrapper.cpp b/languages/cpp/examples/Wrapper.cpp
new file mode 100644
index 000000000..df4aa164c
--- /dev/null
+++ b/languages/cpp/examples/Wrapper.cpp
@@ -0,0 +1,73 @@
+#include "BitwardenClient.h"
+#include <boost/uuid/string_generator.hpp>
+#include <cstdlib>
+
+int main() {
+    // Retrieve access token and organization ID from environment variables
+    const char* accessTokenEnv = std::getenv("ACCESS_TOKEN");
+    const char* organizationIdEnv = std::getenv("ORGANIZATION_ID");
+
+    if (!accessTokenEnv || !organizationIdEnv) {
+        std::cerr << "Error: Environment variables ACCESS_TOKEN or ORGANIZATION_ID not set." << std::endl;
+        return 1;
+    }
+
+    std::string accessToken = accessTokenEnv;
+    std::string organizationId = organizationIdEnv;
+
+    
+
+    // Optional - commented to use default values
+    // BitwardenSettings bitwardenSettings;
+    // bitwardenSettings.set_api_url("<bitwarden-url>");
+    // bitwardenSettings.set_identity_url("<bitwarden-identity>");
+
+    // Create a Bitwarden client instance
+    BitwardenClient bitwardenClient = BitwardenClient();
+    // // Access token login
+    bitwardenClient.accessTokenLogin(accessToken);
+    // Organization ID
+    boost::uuids::uuid organizationUuid = boost::uuids::string_generator()(organizationId);    
+    
+    // // Create a new project
+    ProjectResponse projectResponseCreate = bitwardenClient.createProject(organizationUuid, "NewTestProject");
+    boost::uuids::uuid projectId = boost::uuids::string_generator()(projectResponseCreate.get_id());
+   
+    // List projects
+    ProjectsResponse projectResponseList = bitwardenClient.listProjects(organizationUuid);
+
+    // Get project details
+    ProjectResponse projectResponseGet = bitwardenClient.getProject(projectId);
+
+    // Update project
+    ProjectResponse ProjectResponseUpdate = bitwardenClient.updateProject(projectId, organizationUuid, "NewTestProject2");
+
+    // Secrets
+    std::string key = "key";
+    std::string value = "value";
+    std::string note = "note";
+
+    // Create a new secret
+    SecretResponse secretResponseCreate = bitwardenClient.createSecret(key, value, note, organizationUuid, {projectId});
+    boost::uuids::uuid secretId = boost::uuids::string_generator()(secretResponseCreate.get_id());
+
+    // List secrets
+    SecretIdentifiersResponse secretIdentifiersResponse = bitwardenClient.listSecrets(organizationUuid);
+
+    // Get secret details
+    SecretResponse secretResponseGet = bitwardenClient.getSecret(secretId);
+
+    // Update secret
+    key = "key2";
+    value = "value2";
+    note = "note2";
+    SecretResponse responseForSecretResponseUpdate = bitwardenClient.updateSecret(secretId, key, value, note, organizationUuid, {projectId});
+
+    // Delete secrets
+    SecretsDeleteResponse secretsDeleteResponse = bitwardenClient.deleteSecrets({secretId});
+
+    // Delete projects
+    ProjectsDeleteResponse projectsDeleteResponse = bitwardenClient.deleteProjects({projectId});
+
+    return 0;
+}
diff --git a/languages/cpp/include/BitwardenClient.h b/languages/cpp/include/BitwardenClient.h
new file mode 100644
index 000000000..a5cf72475
--- /dev/null
+++ b/languages/cpp/include/BitwardenClient.h
@@ -0,0 +1,36 @@
+#pragma once
+
+#include "CommandRunner.h"
+#include "BitwardenSettings.h"
+#include "Projects.h"
+#include "Secrets.h"
+#include <functional>
+#include <string>
+
+class BitwardenClient {
+public:
+    BitwardenClient(const BitwardenSettings& bitwardenSettings = BitwardenSettings());
+    ~BitwardenClient();
+    
+    void accessTokenLogin(const std::string& accessToken);
+    ProjectResponse getProject(const boost::uuids::uuid& id);
+    ProjectResponse createProject(const boost::uuids::uuid& organizationId, const std::string& name);
+    ProjectResponse updateProject(const boost::uuids::uuid& id, const boost::uuids::uuid& organizationId, const std::string& name);
+    ProjectsDeleteResponse deleteProjects(const std::vector<boost::uuids::uuid>& ids);
+    ProjectsResponse listProjects(const boost::uuids::uuid &organizationId);
+    SecretResponse getSecret(const boost::uuids::uuid& id);
+    SecretResponse createSecret(const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds);
+    SecretResponse updateSecret(const boost::uuids::uuid& id, const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds);
+    SecretsDeleteResponse deleteSecrets(const std::vector<boost::uuids::uuid>& ids);
+    SecretIdentifiersResponse listSecrets(const boost::uuids::uuid& organizationId);
+
+private:
+    BitwardenLibrary* library;
+    void* client;
+    CommandRunner* commandRunner;
+    Projects projects;
+    Secrets secrets;
+    bool isClientOpen;
+    ClientSettings clientSettings;
+
+};
diff --git a/languages/cpp/include/BitwardenLibrary.h b/languages/cpp/include/BitwardenLibrary.h
new file mode 100644
index 000000000..5fee78726
--- /dev/null
+++ b/languages/cpp/include/BitwardenLibrary.h
@@ -0,0 +1,27 @@
+#pragma once
+
+#include <string>
+
+#ifdef _WIN32
+#include <windows.h>
+#else
+#include <dlfcn.h>
+#endif
+
+class BitwardenLibrary {
+public:
+    BitwardenLibrary(const std::string& providedLibraryPath);
+    ~BitwardenLibrary();
+
+    void* init(const char* clientSettingsJson);
+    void free_mem(void* client);
+    const char* run_command(const char* commandJson, void* client);
+
+private:
+#ifdef _WIN32
+    HMODULE libraryHandle;
+#else
+    void* libraryHandle;
+#endif
+};
+
diff --git a/languages/cpp/include/BitwardenSettings.h b/languages/cpp/include/BitwardenSettings.h
new file mode 100644
index 000000000..4d075ed0a
--- /dev/null
+++ b/languages/cpp/include/BitwardenSettings.h
@@ -0,0 +1,19 @@
+#pragma once
+
+#include <string>
+
+class BitwardenSettings {
+public:
+    BitwardenSettings() = default;
+    ~BitwardenSettings() = default;
+
+    const std::string& get_api_url() const { return api_url; }
+    void set_api_url(const std::string& value) { api_url = value; }
+
+    const std::string& get_identity_url() const { return identity_url; }
+    void set_identity_url(const std::string& value) { identity_url = value; }
+
+private:
+    std::string api_url;
+    std::string identity_url;
+};
diff --git a/languages/cpp/include/CommandRunner.h b/languages/cpp/include/CommandRunner.h
new file mode 100644
index 000000000..9aa6cbe9c
--- /dev/null
+++ b/languages/cpp/include/CommandRunner.h
@@ -0,0 +1,45 @@
+#pragma once
+
+#include <string>
+#include <functional>
+#include "BitwardenLibrary.h"
+#include "schemas.hpp"
+#include <iostream>
+
+using namespace Bitwarden::Sdk;
+
+class CommandRunner {
+public:
+    CommandRunner(BitwardenLibrary* library, void* client);
+
+    template <typename T, typename R, typename Func>
+    R runCommand(const Command& command, Func deserializer);
+
+
+
+private:
+    BitwardenLibrary* library;
+    void* client;
+
+    std::string commandToString(const Command& command);
+    nlohmann::json filterNullObjects(const nlohmann::json& input);
+};
+
+template <typename T, typename R, typename Func>
+R CommandRunner::runCommand(const Command& command, Func deserializer) {
+    // Serialize the Command object to a JSON string
+    std::string jsonString = commandToString(command);
+    const char* jsonCStr = jsonString.c_str();
+    const char* response = library->run_command(jsonCStr, client);
+
+    // Deserialize the response using the provided deserializer function
+    T deserialized = deserializer(response);
+
+    // Unwrap the response and throw an exception if it was not successful
+    if (!deserialized.get_success()) {
+        throw std::runtime_error(*deserialized.get_error_message());
+    }
+
+    return deserialized.get_data().get();
+}
+
diff --git a/languages/cpp/include/Projects.h b/languages/cpp/include/Projects.h
new file mode 100644
index 000000000..9bef19b9c
--- /dev/null
+++ b/languages/cpp/include/Projects.h
@@ -0,0 +1,19 @@
+#pragma once
+
+#include <vector>
+#include <boost/uuid/uuid.hpp>
+#include "CommandRunner.h"
+
+class Projects {
+public:
+    Projects(CommandRunner* commandRunner);
+
+    ProjectResponse get(const boost::uuids::uuid& id);
+    ProjectResponse create(const boost::uuids::uuid& organizationId, const std::string& name);
+    ProjectResponse update(const boost::uuids::uuid& id, const boost::uuids::uuid& organizationId, const std::string& name);
+    ProjectsDeleteResponse deleteProjects(const std::vector<boost::uuids::uuid>& ids);
+    ProjectsResponse list(const boost::uuids::uuid& organizationId);
+
+private:
+    CommandRunner* commandRunner;
+};
diff --git a/languages/cpp/include/Secrets.h b/languages/cpp/include/Secrets.h
new file mode 100644
index 000000000..024ec3692
--- /dev/null
+++ b/languages/cpp/include/Secrets.h
@@ -0,0 +1,20 @@
+#pragma once
+
+#include <vector>
+#include <boost/uuid/uuid.hpp>
+#include "CommandRunner.h"
+
+class Secrets {
+public:
+    Secrets(CommandRunner* commandRunner);
+
+    SecretResponse get(const boost::uuids::uuid& id);
+    SecretResponse create(const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds);
+    SecretResponse update(const boost::uuids::uuid& id, const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds);
+    SecretsDeleteResponse deleteSecrets(const std::vector<boost::uuids::uuid>& ids);
+    SecretIdentifiersResponse list(const boost::uuids::uuid& organizationId);
+
+private:
+    CommandRunner* commandRunner;
+};
+
diff --git a/languages/cpp/src/BitwardenClient.cpp b/languages/cpp/src/BitwardenClient.cpp
new file mode 100644
index 000000000..fef9ea267
--- /dev/null
+++ b/languages/cpp/src/BitwardenClient.cpp
@@ -0,0 +1,145 @@
+#include "BitwardenClient.h"
+#include <iostream>
+#include <string>
+
+BitwardenClient::BitwardenClient(const BitwardenSettings& bitwardenSettings)
+    : library(nullptr), commandRunner(nullptr), isClientOpen(false), projects(nullptr), secrets(nullptr) {
+
+    // Set default values for optional strings
+    boost::optional<std::string> apiUrl = bitwardenSettings.get_api_url().empty()
+        ? boost::optional<std::string>("https://api.bitwarden.com")
+        : boost::optional<std::string>(bitwardenSettings.get_api_url());
+
+    boost::optional<std::string> identityUrl = bitwardenSettings.get_identity_url().empty()
+        ? boost::optional<std::string>("https://identity.bitwarden.com")
+        : boost::optional<std::string>(bitwardenSettings.get_identity_url());
+
+    boost::optional<std::string> user_agent = boost::optional<std::string>("Bitwarden CPP-SDK");
+
+    // Set values in clientSettings
+    clientSettings.set_device_type(Bitwarden::Sdk::DeviceType::SDK);
+    clientSettings.set_user_agent(user_agent);
+    clientSettings.set_api_url(apiUrl);
+    clientSettings.set_identity_url(identityUrl);
+
+    nlohmann::json jsonClientSettings;
+    Bitwarden::Sdk::to_json(jsonClientSettings, clientSettings);
+
+    std::string jsonClientSettingsString = jsonClientSettings.dump();
+    const char* jsonClientSettingsCStr = jsonClientSettingsString.c_str();
+
+    try {
+        library = new BitwardenLibrary("./");
+        client = library->init(jsonClientSettingsCStr);
+        commandRunner = new CommandRunner(library, client);
+        projects = Projects(commandRunner);
+        secrets = Secrets(commandRunner);
+        isClientOpen = true;
+    } catch (const std::exception& ex) {
+        std::cerr << "Failed to initialize: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+BitwardenClient::~BitwardenClient() {
+    if (library) {
+        delete commandRunner;
+        library->free_mem(client);
+        delete library;
+        isClientOpen = false;
+    }
+}
+
+void BitwardenClient::accessTokenLogin(const std::string& accessToken) {
+    Command command;
+    AccessTokenLoginRequest accessTokenLoginRequest;
+    accessTokenLoginRequest.set_access_token(accessToken);
+    command.set_access_token_login(accessTokenLoginRequest);
+
+    auto deserializer = [](const char* response) -> ResponseForApiKeyLoginResponse {
+        nlohmann::json jsonResponse = nlohmann::json::parse(response);
+        ResponseForApiKeyLoginResponse loginResponse;
+        Bitwarden::Sdk::from_json(jsonResponse, loginResponse);
+        return loginResponse;
+    };
+    try {
+        commandRunner->runCommand<ResponseForApiKeyLoginResponse, ApiKeyLoginResponse>(command, deserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in accessTokenLogin: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+ProjectResponse BitwardenClient::getProject(const boost::uuids::uuid& id){
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return projects.get(id);
+}
+
+ProjectResponse BitwardenClient::createProject(const boost::uuids::uuid& organizationId, const std::string& name){
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return projects.create(organizationId, name);
+}
+
+ProjectResponse BitwardenClient::updateProject(const boost::uuids::uuid& id, const boost::uuids::uuid& organizationId, const std::string& name){
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return projects.update(id, organizationId, name);
+}
+
+ProjectsDeleteResponse BitwardenClient::deleteProjects(const std::vector<boost::uuids::uuid>& ids) {
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return projects.deleteProjects(ids);
+
+}
+
+ProjectsResponse BitwardenClient::listProjects(const boost::uuids::uuid &organizationId) {
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return projects.list(organizationId);
+
+}
+
+SecretResponse BitwardenClient::getSecret(const boost::uuids::uuid& id){
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return secrets.get(id);
+}
+
+SecretResponse BitwardenClient::createSecret(const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds){
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return secrets.create(key, value, note, organizationId, projectIds);
+}
+
+SecretResponse BitwardenClient::updateSecret(const boost::uuids::uuid& id, const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds){
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return secrets.update(id, key, value, note, organizationId, projectIds);
+}
+
+SecretsDeleteResponse BitwardenClient::deleteSecrets(const std::vector<boost::uuids::uuid>& ids) {
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return secrets.deleteSecrets(ids);
+
+}
+
+SecretIdentifiersResponse BitwardenClient::listSecrets(const boost::uuids::uuid &organizationId) {
+    if (!isClientOpen) {
+        throw std::runtime_error("Client is not open.");
+    }
+    return secrets.list(organizationId);
+
+}
diff --git a/languages/cpp/src/BitwardenLibrary.cpp b/languages/cpp/src/BitwardenLibrary.cpp
new file mode 100644
index 000000000..0af592786
--- /dev/null
+++ b/languages/cpp/src/BitwardenLibrary.cpp
@@ -0,0 +1,107 @@
+#include "BitwardenLibrary.h"
+#include <iostream>
+
+BitwardenLibrary::BitwardenLibrary(const std::string& providedLibraryPath) : libraryHandle(nullptr) {
+    std::string libraryExtension;
+    std::string libraryNameUnix = "libbitwarden_c";
+    std::string libraryNameWin = "bitwarden_c";
+#if defined(_WIN32)
+    libraryExtension = ".dll";
+#elif defined(__linux__)
+    libraryExtension = ".so";
+#elif defined(__APPLE__)
+    libraryExtension = ".dylib";
+#else
+    // Unsupported platform
+    std::cerr << "Unsupported platform." << std::endl;
+    return;
+#endif
+
+    // Load the dynamic library
+#ifdef _WIN32
+    std::string libraryPath = providedLibraryPath + libraryNameWin + libraryExtension;
+    // Load the dynamic library on Windows
+    libraryHandle = LoadLibraryA(libraryPath.c_str());
+
+    if (!libraryHandle) {
+        std::cerr << "Failed to load the Bitwarden library." << std::endl;
+    }
+#else
+    std::string libraryPath = providedLibraryPath + libraryNameUnix + libraryExtension;
+    // Load the dynamic library on Unix-based systems (Linux, macOS)
+    libraryHandle = dlopen(libraryPath.c_str(), RTLD_NOW);
+
+    if (!libraryHandle) {
+        std::cerr << "Failed to load the Bitwarden library: " << dlerror() << std::endl;
+    }
+#endif
+}
+
+BitwardenLibrary::~BitwardenLibrary() {
+    if (libraryHandle) {
+#ifdef _WIN32
+        FreeLibrary(libraryHandle);
+#else
+        dlclose(libraryHandle);
+#endif
+    }
+}
+
+void* BitwardenLibrary::init(const char* clientSettingsJson) {
+    typedef void* (*InitFunction)(const char*);
+    InitFunction initFunction = nullptr;
+
+#ifdef _WIN32
+    // Get the address of the init function on Windows
+    initFunction = reinterpret_cast<InitFunction>(GetProcAddress(libraryHandle, "init"));
+#else
+    // Get the address of the init function on Unix-based systems
+    initFunction = reinterpret_cast<InitFunction>(dlsym(libraryHandle, "init"));
+#endif
+
+    if (initFunction) {
+        return initFunction(clientSettingsJson);
+    }
+
+    std::cerr << "Failed to load init function from the Bitwarden library: " << std::endl;
+    return nullptr;
+}
+
+void BitwardenLibrary::free_mem(void* client) {
+    typedef void (*FreeMemFunction)(void*);
+    FreeMemFunction freeMemFunction = nullptr;
+
+#ifdef _WIN32
+    // Get the address of the free_mem function on Windows
+    freeMemFunction = reinterpret_cast<FreeMemFunction>(GetProcAddress(libraryHandle, "free_mem"));
+#else
+    // Get the address of the free_mem function on Unix-based systems
+    freeMemFunction = reinterpret_cast<FreeMemFunction>(dlsym(libraryHandle, "free_mem"));
+#endif
+
+    if (freeMemFunction) {
+        freeMemFunction(client);
+    } else {
+        std::cerr << "Failed to load free_mem function from the Bitwarden library." << std::endl;
+    }
+}
+
+const char* BitwardenLibrary::run_command(const char* commandJson, void* client) {
+    typedef const char* (*RunCommandFunction)(const char*, void*);
+    RunCommandFunction runCommandFunction = nullptr;
+
+#ifdef _WIN32
+    // Get the address of the run_command function on Windows
+    runCommandFunction = reinterpret_cast<RunCommandFunction>(GetProcAddress(libraryHandle, "run_command"));
+#else
+    // Get the address of the run_command function on Unix-based systems
+    runCommandFunction = reinterpret_cast<RunCommandFunction>(dlsym(libraryHandle, "run_command"));
+#endif
+
+    if (runCommandFunction) {
+        return runCommandFunction(commandJson, client);
+    }
+
+    std::cerr << "Failed to load run_command function from the Bitwarden library." << std::endl;
+    return nullptr;
+}
diff --git a/languages/cpp/src/CommandRunner.cpp b/languages/cpp/src/CommandRunner.cpp
new file mode 100644
index 000000000..032347f34
--- /dev/null
+++ b/languages/cpp/src/CommandRunner.cpp
@@ -0,0 +1,49 @@
+#include "CommandRunner.h"
+#include <nlohmann/json.hpp>
+#include <iostream>
+#include <string>
+
+
+CommandRunner::CommandRunner(BitwardenLibrary* library, void* client) : library(library), client(client) {}
+
+// Function to recursively filter out objects with all null values
+nlohmann::json CommandRunner::filterNullObjects(const nlohmann::json& input) {
+    nlohmann::json result;
+    
+    for (auto it = input.begin(); it != input.end(); ++it) {
+        if (!it.value().is_null()) {
+            if (it.value().is_object()) {
+                // Recursively filter nested objects
+                json nestedFiltered = filterNullObjects(it.value());
+                if (!nestedFiltered.empty()) {
+                    result[it.key()] = nestedFiltered;
+                }
+            } else {
+                result[it.key()] = it.value();
+            }
+        }
+    }
+    
+    return result;
+}
+
+// Implement the commandToString function
+std::string CommandRunner::commandToString(const Command& command) {
+    try {
+        // Create an nlohmann::json object from the Command object
+        nlohmann::json jsonCommand;
+        nlohmann::json filteredJsonCommand;
+
+        Bitwarden::Sdk::to_json(jsonCommand, command);
+
+        filteredJsonCommand = filterNullObjects(jsonCommand);
+        
+        // Convert the JSON to a string
+        std::string jsonCommandString = filteredJsonCommand.dump();
+
+        return jsonCommandString;
+    } catch (const std::exception& ex) {
+        std::cerr << "Error: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
diff --git a/languages/cpp/src/Projects.cpp b/languages/cpp/src/Projects.cpp
new file mode 100644
index 000000000..d0aa6ed49
--- /dev/null
+++ b/languages/cpp/src/Projects.cpp
@@ -0,0 +1,132 @@
+#include "Projects.h"
+#include <vector>
+#include <boost/uuid/uuid.hpp>
+#include <boost/uuid/string_generator.hpp>
+#include <boost/uuid/uuid_io.hpp>
+#include <nlohmann/json.hpp>
+
+Projects::Projects(CommandRunner* commandRunner) : commandRunner(commandRunner) {}
+
+auto projectsDeserializer = [](const char* response) -> ResponseForProjectResponse {
+    nlohmann::json jsonResponse = nlohmann::json::parse(response);
+    ResponseForProjectResponse projectResponse;
+    Bitwarden::Sdk::from_json(jsonResponse, projectResponse);
+    return projectResponse;
+};
+
+auto deleteProjectsDeserializer = [](const char* response) -> ResponseForProjectsDeleteResponse {
+    nlohmann::json jsonResponse = nlohmann::json::parse(response);
+    ResponseForProjectsDeleteResponse deleteProjectsResponse;
+    Bitwarden::Sdk::from_json(jsonResponse, deleteProjectsResponse);
+    return deleteProjectsResponse;
+};
+
+auto projectListDeserializer = [](const char* response) -> ResponseForProjectsResponse {
+    nlohmann::json jsonResponse = nlohmann::json::parse(response);
+    ResponseForProjectsResponse listResponse;
+    Bitwarden::Sdk::from_json(jsonResponse, listResponse);
+    return listResponse;
+};
+
+ProjectResponse Projects::get(const boost::uuids::uuid& id) {
+    Command command;
+    ProjectsCommand projectsCommand;
+    ProjectGetRequest projectGetRequest;
+
+    std::string idStr = boost::uuids::to_string(id);
+    projectGetRequest.set_id(idStr);
+
+    projectsCommand.set_get(projectGetRequest);
+    command.set_projects(projectsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForProjectResponse, ProjectResponse>(command, projectsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in getProject: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+ProjectResponse Projects::create(const boost::uuids::uuid& organizationId, const std::string& name) {
+    Command command;
+    ProjectsCommand projectsCommand;
+    ProjectCreateRequest projectCreateRequest;
+
+    std::string orgIdStr = boost::uuids::to_string(organizationId);
+    projectCreateRequest.set_organization_id(orgIdStr);
+
+    projectCreateRequest.set_name(name);
+    projectsCommand.set_create(projectCreateRequest);
+    command.set_projects(projectsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForProjectResponse, ProjectResponse>(command, projectsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in createProject: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+ProjectResponse Projects::update(const boost::uuids::uuid& id, const boost::uuids::uuid& organizationId, const std::string& name) {
+    Command command;
+    ProjectsCommand projectsCommand;
+    ProjectPutRequest projectPutRequest;
+
+    std::string idStr = boost::uuids::to_string(id);
+    projectPutRequest.set_id(idStr);
+
+    std::string orgIdStr = boost::uuids::to_string(organizationId);
+    projectPutRequest.set_organization_id(orgIdStr);
+
+    projectPutRequest.set_name(name);
+    projectsCommand.set_update(projectPutRequest);
+    command.set_projects(projectsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForProjectResponse, ProjectResponse>(command, projectsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in updateProject: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+ProjectsDeleteResponse Projects::deleteProjects(const std::vector<boost::uuids::uuid>& ids) {
+    Command command;
+    ProjectsCommand projectsCommand;
+    ProjectsDeleteRequest projectsDeleteRequest;
+
+    std::vector<std::string> idStrs;
+    for (const auto& id : ids) {
+        idStrs.push_back(boost::uuids::to_string(id));
+    }
+    projectsDeleteRequest.set_ids(idStrs);
+
+    projectsCommand.set_projects_command_delete(projectsDeleteRequest);
+    command.set_projects(projectsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForProjectsDeleteResponse, ProjectsDeleteResponse>(command, deleteProjectsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in deleteProjects: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+ProjectsResponse Projects::list(const boost::uuids::uuid& organizationId) {
+    Command command;
+    ProjectsCommand projectsCommand;
+    ProjectsListRequest projectsListRequest;
+
+    std::string orgIdStr = boost::uuids::to_string(organizationId);
+    projectsListRequest.set_organization_id(orgIdStr);
+
+    projectsCommand.set_list(projectsListRequest);
+    command.set_projects(projectsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForProjectsResponse, ProjectsResponse>(command, projectListDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in listProjects: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
diff --git a/languages/cpp/src/Secrets.cpp b/languages/cpp/src/Secrets.cpp
new file mode 100644
index 000000000..e153ea7f1
--- /dev/null
+++ b/languages/cpp/src/Secrets.cpp
@@ -0,0 +1,149 @@
+#include "Secrets.h"
+#include <nlohmann/json.hpp>
+#include <boost/uuid/uuid_io.hpp>
+#include <boost/uuid/string_generator.hpp> 
+#include <boost/uuid/uuid_io.hpp>
+
+Secrets::Secrets(CommandRunner* commandRunner) : commandRunner(commandRunner) {}
+
+auto secretsDeserializer = [](const std::string& response) -> ResponseForSecretResponse {
+    nlohmann::json jsonResponse = nlohmann::json::parse(response);
+    ResponseForSecretResponse secretResponse;
+    Bitwarden::Sdk::from_json(jsonResponse, secretResponse);
+    return secretResponse;
+};
+
+auto deleteSecretsDeserializer = [](const std::string& response) -> ResponseForSecretsDeleteResponse {
+    nlohmann::json jsonResponse = nlohmann::json::parse(response);
+    ResponseForSecretsDeleteResponse deleteSecretsResponse;
+    Bitwarden::Sdk::from_json(jsonResponse, deleteSecretsResponse);
+    return deleteSecretsResponse;
+};
+
+auto secretListDeserializer = [](const std::string& response) -> ResponseForSecretIdentifiersResponse {
+    nlohmann::json jsonResponse = nlohmann::json::parse(response);
+    ResponseForSecretIdentifiersResponse listResponse;
+    Bitwarden::Sdk::from_json(jsonResponse, listResponse);
+    return listResponse;
+};
+
+SecretResponse Secrets::get(const boost::uuids::uuid& id) {
+    Command command;
+    SecretsCommand secretsCommand;
+    SecretGetRequest secretGetRequest;
+
+    std::string idStr = boost::uuids::to_string(id);
+    secretGetRequest.set_id(idStr);
+
+    secretsCommand.set_get(secretGetRequest);
+    command.set_secrets(secretsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForSecretResponse, SecretResponse>(command, secretsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in getSecret: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+SecretResponse Secrets::create(const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds) {
+    Command command;
+    SecretsCommand secretsCommand;
+    SecretCreateRequest secretCreateRequest;
+
+    std::string orgIdStr = boost::uuids::to_string(organizationId);
+    secretCreateRequest.set_organization_id(orgIdStr);
+
+    secretCreateRequest.set_key(key);
+    secretCreateRequest.set_value(value);
+    secretCreateRequest.set_note(note);
+
+    std::vector<std::string> projectIdsStr;
+    for (const auto& projectId : projectIds) {
+        projectIdsStr.push_back(boost::uuids::to_string(projectId));
+    }
+    secretCreateRequest.set_project_ids(projectIdsStr);
+
+    secretsCommand.set_create(secretCreateRequest);
+    command.set_secrets(secretsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForSecretResponse, SecretResponse>(command, secretsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in createSecret: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+SecretResponse Secrets::update(const boost::uuids::uuid& id, const std::string& key, const std::string& value, const std::string& note, const boost::uuids::uuid& organizationId, const std::vector<boost::uuids::uuid>& projectIds) {
+    Command command;
+    SecretsCommand secretsCommand;
+    SecretPutRequest secretPutRequest;
+
+    std::string idStr = boost::uuids::to_string(id);
+    secretPutRequest.set_id(idStr);
+
+    std::string orgIdStr = boost::uuids::to_string(organizationId);
+    secretPutRequest.set_organization_id(orgIdStr);
+
+    secretPutRequest.set_key(key);
+    secretPutRequest.set_value(value);
+    secretPutRequest.set_note(note);
+
+    std::vector<std::string> projectIdsStr;
+    for (const auto& projectId : projectIds) {
+        projectIdsStr.push_back(boost::uuids::to_string(projectId));
+    }
+    secretPutRequest.set_project_ids(projectIdsStr);
+
+    secretsCommand.set_update(secretPutRequest);
+    command.set_secrets(secretsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForSecretResponse, SecretResponse>(command, secretsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in updateSecret: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+SecretsDeleteResponse Secrets::deleteSecrets(const std::vector<boost::uuids::uuid>& ids) {
+    Command command;
+    SecretsCommand secretsCommand;
+    SecretsDeleteRequest secretsDeleteRequest;
+
+    std::vector<std::string> idsStr;
+    for (const auto& id : ids) {
+        idsStr.push_back(boost::uuids::to_string(id));
+    }
+    secretsDeleteRequest.set_ids(idsStr);
+
+    secretsCommand.set_secrets_command_delete(secretsDeleteRequest);
+    command.set_secrets(secretsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForSecretsDeleteResponse, SecretsDeleteResponse>(command, deleteSecretsDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in deleteSecrets: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
+
+SecretIdentifiersResponse Secrets::list(const boost::uuids::uuid& organizationId) {
+    Command command;
+    SecretsCommand secretsCommand;
+    SecretIdentifiersRequest secretIdentifiersRequest;
+
+    std::string orgIdStr = boost::uuids::to_string(organizationId);
+    secretIdentifiersRequest.set_organization_id(orgIdStr);
+
+    secretsCommand.set_list(secretIdentifiersRequest);
+    command.set_secrets(secretsCommand);
+
+    try {
+        return commandRunner->runCommand<ResponseForSecretIdentifiersResponse, SecretIdentifiersResponse>(command, secretListDeserializer);
+    } catch (const std::exception& ex) {
+        std::cerr << "Error in listSecret: " << ex.what() << std::endl;
+        throw ex;
+    }
+}
diff --git a/support/scripts/schemas.ts b/support/scripts/schemas.ts
index 98c0c39cb..2958efc18 100644
--- a/support/scripts/schemas.ts
+++ b/support/scripts/schemas.ts
@@ -70,6 +70,22 @@ async function main() {
 
   writeToFile("./languages/csharp/Bitwarden.Sdk/schemas.cs", csharp.lines);
 
+  const cpp = await quicktype({
+    inputData,
+    lang: "cpp",
+    rendererOptions: {
+      namespace: "Bitwarden::Sdk",
+      "include-location": "global-include",
+    },
+  });
+
+  cpp.lines.forEach((line, idx) => {
+    // Replace DOMAIN for URI_DOMAIN, because DOMAIN is an already defined macro
+    cpp.lines[idx] = line.replace(/DOMAIN/g, "URI_DOMAIN");
+  });
+
+  writeToFile("./languages/cpp/include/schemas.hpp", cpp.lines);
+
   const go = await quicktype({
     inputData,
     lang: "go",

From dd26683bdd9afedb76df4b9705ba3c982d8fbb5d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Thu, 30 Nov 2023 17:29:27 +0100
Subject: [PATCH 40/55] Update uniffi to add comments support (#371)

## Type of change
```
- [ ] Bug fix
- [ ] New feature development
- [x] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
This upgrade adds code comments to the generated uniffi code
---
 Cargo.lock                         | 63 +++++++++++++++++++++---------
 Cargo.toml                         | 10 ++---
 crates/bitwarden-uniffi/Cargo.toml |  4 +-
 crates/bitwarden/Cargo.toml        |  2 +-
 crates/uniffi-bindgen/Cargo.toml   |  2 +-
 5 files changed, 53 insertions(+), 28 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 2a4d3b6aa..50e263401 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2977,6 +2977,12 @@ version = "1.11.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4dccd0940a2dcdf68d092b8cbab7dc0ad8fa938bf95787e1b916b0e3d0e8e970"
 
+[[package]]
+name = "smawk"
+version = "0.3.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "b7c388c1b5e93756d0c740965c41e8822f866621d41acbdf6336a6a168f8840c"
+
 [[package]]
 name = "socket2"
 version = "0.4.10"
@@ -3156,6 +3162,17 @@ dependencies = [
  "winapi-util",
 ]
 
+[[package]]
+name = "textwrap"
+version = "0.16.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "222a222a5bfe1bba4a77b45ec488a741b3cb8872e5e499451fd7d0129c9c7c3d"
+dependencies = [
+ "smawk",
+ "unicode-linebreak",
+ "unicode-width",
+]
+
 [[package]]
 name = "thiserror"
 version = "1.0.50"
@@ -3435,6 +3452,12 @@ version = "1.0.12"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "3354b9ac3fae1ff6755cb6db53683adb661634f67557942dea4facebec0fee4b"
 
+[[package]]
+name = "unicode-linebreak"
+version = "0.1.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "3b09c83c3c29d37506a3e260c08c03743a6bb66a9cd432c6934ab501a190571f"
+
 [[package]]
 name = "unicode-normalization"
 version = "0.1.22"
@@ -3458,8 +3481,8 @@ checksum = "e51733f11c9c4f72aa0c160008246859e340b00807569a0da0e7a1079b27ba85"
 
 [[package]]
 name = "uniffi"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "anyhow",
  "camino",
@@ -3479,8 +3502,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_bindgen"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "anyhow",
  "askama",
@@ -3494,6 +3517,7 @@ dependencies = [
  "once_cell",
  "paste",
  "serde",
+ "textwrap",
  "toml 0.5.11",
  "uniffi_meta",
  "uniffi_testing",
@@ -3502,8 +3526,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_build"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "anyhow",
  "camino",
@@ -3512,8 +3536,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_checksum_derive"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "quote",
  "syn 2.0.39",
@@ -3521,8 +3545,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_core"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "anyhow",
  "bytes",
@@ -3536,8 +3560,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_macros"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "bincode",
  "camino",
@@ -3554,8 +3578,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_meta"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "anyhow",
  "bytes",
@@ -3565,8 +3589,8 @@ dependencies = [
 
 [[package]]
 name = "uniffi_testing"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "anyhow",
  "camino",
@@ -3577,10 +3601,11 @@ dependencies = [
 
 [[package]]
 name = "uniffi_udl"
-version = "0.25.1"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+version = "0.25.2"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "anyhow",
+ "textwrap",
  "uniffi_meta",
  "uniffi_testing",
  "weedle2",
@@ -3785,7 +3810,7 @@ dependencies = [
 [[package]]
 name = "weedle2"
 version = "4.0.0"
-source = "git+https://github.com/mozilla/uniffi-rs?rev=0a03b713306d6ce3de033157fc2ce92a238c2e24#0a03b713306d6ce3de033157fc2ce92a238c2e24"
+source = "git+https://github.com/mozilla/uniffi-rs?rev=23711c8151bbb794369aa1f9d383db386792dff9#23711c8151bbb794369aa1f9d383db386792dff9"
 dependencies = [
  "nom",
 ]
diff --git a/Cargo.toml b/Cargo.toml
index c7c2906dc..f841f07c9 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -24,8 +24,8 @@ codegen-units = 1
 
 # Using git dependency temporarily to add support for immutable records in generated code
 [patch.crates-io]
-uniffi = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
-uniffi_build = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
-uniffi_bindgen = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
-uniffi_core = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
-uniffi_macros = { git = "https://github.com/mozilla/uniffi-rs", rev = "0a03b713306d6ce3de033157fc2ce92a238c2e24" }
+uniffi = { git = "https://github.com/mozilla/uniffi-rs", rev = "23711c8151bbb794369aa1f9d383db386792dff9" }
+uniffi_build = { git = "https://github.com/mozilla/uniffi-rs", rev = "23711c8151bbb794369aa1f9d383db386792dff9" }
+uniffi_bindgen = { git = "https://github.com/mozilla/uniffi-rs", rev = "23711c8151bbb794369aa1f9d383db386792dff9" }
+uniffi_core = { git = "https://github.com/mozilla/uniffi-rs", rev = "23711c8151bbb794369aa1f9d383db386792dff9" }
+uniffi_macros = { git = "https://github.com/mozilla/uniffi-rs", rev = "23711c8151bbb794369aa1f9d383db386792dff9" }
diff --git a/crates/bitwarden-uniffi/Cargo.toml b/crates/bitwarden-uniffi/Cargo.toml
index 405642d71..c1a47ea29 100644
--- a/crates/bitwarden-uniffi/Cargo.toml
+++ b/crates/bitwarden-uniffi/Cargo.toml
@@ -19,12 +19,12 @@ chrono = { version = ">=0.4.26, <0.5", features = [
 ], default-features = false }
 env_logger = "0.10.1"
 schemars = { version = ">=0.8, <0.9", optional = true }
-uniffi = "=0.25.1"
+uniffi = "=0.25.2"
 
 bitwarden = { path = "../bitwarden", features = ["mobile", "internal"] }
 
 [build-dependencies]
-uniffi = { version = "=0.25.1", features = ["build"] }
+uniffi = { version = "=0.25.2", features = ["build"] }
 
 [target.'cfg(any(target_os = "android", target_os = "ios"))'.dependencies]
 openssl = { version = "0.10", features = ["vendored"] }
diff --git a/crates/bitwarden/Cargo.toml b/crates/bitwarden/Cargo.toml
index e52c03723..aea2cfe9e 100644
--- a/crates/bitwarden/Cargo.toml
+++ b/crates/bitwarden/Cargo.toml
@@ -54,7 +54,7 @@ sha1 = ">=0.10.5, <0.11"
 sha2 = ">=0.10.6, <0.11"
 subtle = ">=2.5.0, <3.0"
 thiserror = ">=1.0.40, <2.0"
-uniffi = { version = "=0.25.1", optional = true }
+uniffi = { version = "=0.25.2", optional = true }
 uuid = { version = ">=1.3.3, <2.0", features = ["serde"] }
 
 [dev-dependencies]
diff --git a/crates/uniffi-bindgen/Cargo.toml b/crates/uniffi-bindgen/Cargo.toml
index 825f923e3..cfbb5b554 100644
--- a/crates/uniffi-bindgen/Cargo.toml
+++ b/crates/uniffi-bindgen/Cargo.toml
@@ -10,4 +10,4 @@ name = "uniffi-bindgen"
 path = "uniffi-bindgen.rs"
 
 [dependencies]
-uniffi = { version = "=0.25.1", features = ["cli"] }
+uniffi = { version = "=0.25.2", features = ["cli"] }

From 9bdce5dafe28f6afb9f0ad8f5f1a2a876befcbee Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Thu, 30 Nov 2023 18:05:12 +0100
Subject: [PATCH 41/55] Update swagger (#273)

---
 README.md                                     |  28 +--
 .../.openapi-generator/FILES                  |  11 +-
 crates/bitwarden-api-api/README.md            |  18 +-
 .../src/apis/auth_requests_api.rs             |  51 ++++++
 .../bitwarden-api-api/src/apis/devices_api.rs | 151 +++++++++++-----
 crates/bitwarden-api-api/src/apis/mod.rs      |   3 +-
 .../src/apis/organization_users_api.rs        |  18 +-
 .../src/apis/organizations_api.rs             | 170 ++++++++++++------
 .../src/apis/service_accounts_api.rs          |   7 +-
 .../src/models/attachment_response_model.rs   |   2 +-
 .../src/models/billing_customer_discount.rs   |  26 +++
 .../models/cipher_details_response_model.rs   |   3 +
 .../cipher_mini_details_response_model.rs     |   3 +
 .../src/models/cipher_mini_response_model.rs  |   3 +
 .../src/models/cipher_request_model.rs        |   3 +
 .../src/models/cipher_response_model.rs       |   3 +
 .../models/cipher_with_id_request_model.rs    |   3 +
 .../device_keys_update_request_model.rs       |  29 +++
 .../src/models/device_response_model.rs       |  15 +-
 .../src/models/event_type.rs                  |   6 +
 .../src/models/global_domains.rs              |   2 +-
 crates/bitwarden-api-api/src/models/mod.rs    |  22 ++-
 .../organization_public_key_response_model.rs |  26 +++
 ...rganization_subscription_response_model.rs |   3 +
 ...reset_password_enrollment_request_model.rs |  15 --
 .../other_device_keys_update_request_model.rs |  33 ++++
 .../models/protected_device_response_model.rs |  44 +++++
 ...secrets_manager_subscribe_request_model.rs |  29 +++
 ..._account_secrets_details_response_model.rs |  41 +++++
 ...ails_response_model_list_response_model.rs |  29 +++
 .../src/models/subscription_response_model.rs |   3 +
 .../update_devices_trust_request_model.rs     |  43 +++++
 32 files changed, 669 insertions(+), 174 deletions(-)
 create mode 100644 crates/bitwarden-api-api/src/models/billing_customer_discount.rs
 create mode 100644 crates/bitwarden-api-api/src/models/device_keys_update_request_model.rs
 create mode 100644 crates/bitwarden-api-api/src/models/organization_public_key_response_model.rs
 create mode 100644 crates/bitwarden-api-api/src/models/other_device_keys_update_request_model.rs
 create mode 100644 crates/bitwarden-api-api/src/models/protected_device_response_model.rs
 create mode 100644 crates/bitwarden-api-api/src/models/secrets_manager_subscribe_request_model.rs
 create mode 100644 crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model.rs
 create mode 100644 crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model_list_response_model.rs
 create mode 100644 crates/bitwarden-api-api/src/models/update_devices_trust_request_model.rs

diff --git a/README.md b/README.md
index 18613d4dc..2de94b09c 100644
--- a/README.md
+++ b/README.md
@@ -57,10 +57,10 @@ The first step is to generate the swagger documents from the server repository.
 
 ```bash
 # src/Api
-dotnet swagger tofile --output ../../api.json .\bin\Debug\net6.0\Api.dll internal
+dotnet swagger tofile --output ../../api.json ./bin/Debug/net6.0/Api.dll internal
 
 # src/Identity
-dotnet swagger tofile --output ../../identity.json .\bin\Debug\net6.0\Identity.dll v1
+ASPNETCORE_ENVIRONMENT=development dotnet swagger tofile --output ../../identity.json ./bin/Debug/net6.0/Identity.dll v1
 ```
 
 ### OpenApi Generator
@@ -68,20 +68,20 @@ dotnet swagger tofile --output ../../identity.json .\bin\Debug\net6.0\Identity.d
 Runs from the root of the SDK project.
 
 ```bash
-npx openapi-generator-cli generate `
-    -i ../server/api.json `
-    -g rust `
-    -o crates/bitwarden-api-api `
-    --package-name bitwarden-api-api `
-    -t ./support/openapi-template `
+npx openapi-generator-cli generate \
+    -i ../server/api.json \
+    -g rust \
+    -o crates/bitwarden-api-api \
+    --package-name bitwarden-api-api \
+    -t ./support/openapi-template \
     --additional-properties=packageVersion=1.0.0
 
-npx openapi-generator-cli generate `
-    -i ../server/identity.json `
-    -g rust `
-    -o crates/bitwarden-api-identity `
-    --package-name bitwarden-api-identity `
-    -t ./support/openapi-template `
+npx openapi-generator-cli generate \
+    -i ../server/identity.json \
+    -g rust \
+    -o crates/bitwarden-api-identity \
+    --package-name bitwarden-api-identity \
+    -t ./support/openapi-template \
     --additional-properties=packageVersion=1.0.0
 ```
 
diff --git a/crates/bitwarden-api-api/.openapi-generator/FILES b/crates/bitwarden-api-api/.openapi-generator/FILES
index 4fbc2fbf9..586d4f2db 100644
--- a/crates/bitwarden-api-api/.openapi-generator/FILES
+++ b/crates/bitwarden-api-api/.openapi-generator/FILES
@@ -69,6 +69,7 @@ src/models/authenticator_attestation_raw_response.rs
 src/models/base_access_policy_response_model.rs
 src/models/base_secret_response_model.rs
 src/models/base_secret_response_model_list_response_model.rs
+src/models/billing_customer_discount.rs
 src/models/billing_history_response_model.rs
 src/models/billing_invoice.rs
 src/models/billing_payment_response_model.rs
@@ -122,6 +123,7 @@ src/models/collection_with_id_request_model.rs
 src/models/config_response_model.rs
 src/models/delete_recover_request_model.rs
 src/models/device_keys_request_model.rs
+src/models/device_keys_update_request_model.rs
 src/models/device_request_model.rs
 src/models/device_response_model.rs
 src/models/device_response_model_list_response_model.rs
@@ -201,10 +203,10 @@ src/models/organization_domain_response_model.rs
 src/models/organization_domain_response_model_list_response_model.rs
 src/models/organization_domain_sso_details_request_model.rs
 src/models/organization_domain_sso_details_response_model.rs
-src/models/organization_enroll_secrets_manager_request_model.rs
 src/models/organization_keys_request_model.rs
 src/models/organization_keys_response_model.rs
 src/models/organization_license.rs
+src/models/organization_public_key_response_model.rs
 src/models/organization_response_model.rs
 src/models/organization_seat_request_model.rs
 src/models/organization_sponsorship_create_request_model.rs
@@ -241,6 +243,7 @@ src/models/organization_user_update_request_model.rs
 src/models/organization_user_user_details_response_model.rs
 src/models/organization_user_user_details_response_model_list_response_model.rs
 src/models/organization_verify_bank_request_model.rs
+src/models/other_device_keys_update_request_model.rs
 src/models/password_hint_request_model.rs
 src/models/password_request_model.rs
 src/models/payment_method_type.rs
@@ -272,6 +275,7 @@ src/models/project_create_request_model.rs
 src/models/project_response_model.rs
 src/models/project_response_model_list_response_model.rs
 src/models/project_update_request_model.rs
+src/models/protected_device_response_model.rs
 src/models/provider_organization_add_request_model.rs
 src/models/provider_organization_create_request_model.rs
 src/models/provider_organization_organization_details_response_model.rs
@@ -316,6 +320,7 @@ src/models/secret_update_request_model.rs
 src/models/secret_verification_request_model.rs
 src/models/secret_with_projects_inner_project.rs
 src/models/secret_with_projects_list_response_model.rs
+src/models/secrets_manager_subscribe_request_model.rs
 src/models/secrets_manager_subscription_update_request_model.rs
 src/models/secrets_with_projects_inner_secret.rs
 src/models/secure_note_type.rs
@@ -337,7 +342,8 @@ src/models/service_account_create_request_model.rs
 src/models/service_account_project_access_policy_response_model.rs
 src/models/service_account_project_access_policy_response_model_list_response_model.rs
 src/models/service_account_response_model.rs
-src/models/service_account_response_model_list_response_model.rs
+src/models/service_account_secrets_details_response_model.rs
+src/models/service_account_secrets_details_response_model_list_response_model.rs
 src/models/service_account_update_request_model.rs
 src/models/set_key_connector_key_request_model.rs
 src/models/set_password_request_model.rs
@@ -370,6 +376,7 @@ src/models/two_factor_web_authn_request_model.rs
 src/models/two_factor_web_authn_response_model.rs
 src/models/two_factor_yubi_key_response_model.rs
 src/models/update_avatar_request_model.rs
+src/models/update_devices_trust_request_model.rs
 src/models/update_domains_request_model.rs
 src/models/update_key_request_model.rs
 src/models/update_profile_request_model.rs
diff --git a/crates/bitwarden-api-api/README.md b/crates/bitwarden-api-api/README.md
index 255041dc5..43cbc40e8 100644
--- a/crates/bitwarden-api-api/README.md
+++ b/crates/bitwarden-api-api/README.md
@@ -86,6 +86,7 @@ All URIs are relative to _http://localhost_
 | _AccountsApi_                           | [**accounts_verify_password_post**](docs/AccountsApi.md#accounts_verify_password_post)                                                                                                                                       | **POST** /accounts/verify-password                                                       |
 | _AccountsBillingApi_                    | [**accounts_billing_history_get**](docs/AccountsBillingApi.md#accounts_billing_history_get)                                                                                                                                  | **GET** /accounts/billing/history                                                        |
 | _AccountsBillingApi_                    | [**accounts_billing_payment_method_get**](docs/AccountsBillingApi.md#accounts_billing_payment_method_get)                                                                                                                    | **GET** /accounts/billing/payment-method                                                 |
+| _AuthRequestsApi_                       | [**auth_requests_admin_request_post**](docs/AuthRequestsApi.md#auth_requests_admin_request_post)                                                                                                                             | **POST** /auth-requests/admin-request                                                    |
 | _AuthRequestsApi_                       | [**auth_requests_get**](docs/AuthRequestsApi.md#auth_requests_get)                                                                                                                                                           | **GET** /auth-requests                                                                   |
 | _AuthRequestsApi_                       | [**auth_requests_id_get**](docs/AuthRequestsApi.md#auth_requests_id_get)                                                                                                                                                     | **GET** /auth-requests/{id}                                                              |
 | _AuthRequestsApi_                       | [**auth_requests_id_put**](docs/AuthRequestsApi.md#auth_requests_id_put)                                                                                                                                                     | **PUT** /auth-requests/{id}                                                              |
@@ -162,7 +163,6 @@ All URIs are relative to _http://localhost_
 | _CollectionsApi_                        | [**organizations_org_id_collections_id_users_put**](docs/CollectionsApi.md#organizations_org_id_collections_id_users_put)                                                                                                    | **PUT** /organizations/{orgId}/collections/{id}/users                                    |
 | _CollectionsApi_                        | [**organizations_org_id_collections_post**](docs/CollectionsApi.md#organizations_org_id_collections_post)                                                                                                                    | **POST** /organizations/{orgId}/collections                                              |
 | _ConfigApi_                             | [**config_get**](docs/ConfigApi.md#config_get)                                                                                                                                                                               | **GET** /config                                                                          |
-| _DevicesApi_                            | [**devices_exist_by_types_post**](docs/DevicesApi.md#devices_exist_by_types_post)                                                                                                                                            | **POST** /devices/exist-by-types                                                         |
 | _DevicesApi_                            | [**devices_get**](docs/DevicesApi.md#devices_get)                                                                                                                                                                            | **GET** /devices                                                                         |
 | _DevicesApi_                            | [**devices_id_delete**](docs/DevicesApi.md#devices_id_delete)                                                                                                                                                                | **DELETE** /devices/{id}                                                                 |
 | _DevicesApi_                            | [**devices_id_delete_post**](docs/DevicesApi.md#devices_id_delete_post)                                                                                                                                                      | **POST** /devices/{id}/delete                                                            |
@@ -176,9 +176,11 @@ All URIs are relative to _http://localhost_
 | _DevicesApi_                            | [**devices_identifier_identifier_token_put**](docs/DevicesApi.md#devices_identifier_identifier_token_put)                                                                                                                    | **PUT** /devices/identifier/{identifier}/token                                           |
 | _DevicesApi_                            | [**devices_identifier_keys_post**](docs/DevicesApi.md#devices_identifier_keys_post)                                                                                                                                          | **POST** /devices/{identifier}/keys                                                      |
 | _DevicesApi_                            | [**devices_identifier_keys_put**](docs/DevicesApi.md#devices_identifier_keys_put)                                                                                                                                            | **PUT** /devices/{identifier}/keys                                                       |
+| _DevicesApi_                            | [**devices_identifier_retrieve_keys_post**](docs/DevicesApi.md#devices_identifier_retrieve_keys_post)                                                                                                                        | **POST** /devices/{identifier}/retrieve-keys                                             |
 | _DevicesApi_                            | [**devices_knowndevice_email_identifier_get**](docs/DevicesApi.md#devices_knowndevice_email_identifier_get)                                                                                                                  | **GET** /devices/knowndevice/{email}/{identifier}                                        |
 | _DevicesApi_                            | [**devices_knowndevice_get**](docs/DevicesApi.md#devices_knowndevice_get)                                                                                                                                                    | **GET** /devices/knowndevice                                                             |
 | _DevicesApi_                            | [**devices_post**](docs/DevicesApi.md#devices_post)                                                                                                                                                                          | **POST** /devices                                                                        |
+| _DevicesApi_                            | [**devices_update_trust_post**](docs/DevicesApi.md#devices_update_trust_post)                                                                                                                                                | **POST** /devices/update-trust                                                           |
 | _EmergencyAccessApi_                    | [**emergency_access_granted_get**](docs/EmergencyAccessApi.md#emergency_access_granted_get)                                                                                                                                  | **GET** /emergency-access/granted                                                        |
 | _EmergencyAccessApi_                    | [**emergency_access_id_accept_post**](docs/EmergencyAccessApi.md#emergency_access_id_accept_post)                                                                                                                            | **POST** /emergency-access/{id}/accept                                                   |
 | _EmergencyAccessApi_                    | [**emergency_access_id_approve_post**](docs/EmergencyAccessApi.md#emergency_access_id_approve_post)                                                                                                                          | **POST** /emergency-access/{id}/approve                                                  |
@@ -304,7 +306,6 @@ All URIs are relative to _http://localhost_
 | _OrganizationsApi_                      | [**organizations_id_cancel_post**](docs/OrganizationsApi.md#organizations_id_cancel_post)                                                                                                                                    | **POST** /organizations/{id}/cancel                                                      |
 | _OrganizationsApi_                      | [**organizations_id_delete**](docs/OrganizationsApi.md#organizations_id_delete)                                                                                                                                              | **DELETE** /organizations/{id}                                                           |
 | _OrganizationsApi_                      | [**organizations_id_delete_post**](docs/OrganizationsApi.md#organizations_id_delete_post)                                                                                                                                    | **POST** /organizations/{id}/delete                                                      |
-| _OrganizationsApi_                      | [**organizations_id_enroll_secrets_manager_post**](docs/OrganizationsApi.md#organizations_id_enroll_secrets_manager_post)                                                                                                    | **POST** /organizations/{id}/enroll-secrets-manager                                      |
 | _OrganizationsApi_                      | [**organizations_id_get**](docs/OrganizationsApi.md#organizations_id_get)                                                                                                                                                    | **GET** /organizations/{id}                                                              |
 | _OrganizationsApi_                      | [**organizations_id_import_post**](docs/OrganizationsApi.md#organizations_id_import_post)                                                                                                                                    | **POST** /organizations/{id}/import                                                      |
 | _OrganizationsApi_                      | [**organizations_id_keys_get**](docs/OrganizationsApi.md#organizations_id_keys_get)                                                                                                                                          | **GET** /organizations/{id}/keys                                                         |
@@ -313,6 +314,7 @@ All URIs are relative to _http://localhost_
 | _OrganizationsApi_                      | [**organizations_id_license_get**](docs/OrganizationsApi.md#organizations_id_license_get)                                                                                                                                    | **GET** /organizations/{id}/license                                                      |
 | _OrganizationsApi_                      | [**organizations_id_payment_post**](docs/OrganizationsApi.md#organizations_id_payment_post)                                                                                                                                  | **POST** /organizations/{id}/payment                                                     |
 | _OrganizationsApi_                      | [**organizations_id_post**](docs/OrganizationsApi.md#organizations_id_post)                                                                                                                                                  | **POST** /organizations/{id}                                                             |
+| _OrganizationsApi_                      | [**organizations_id_public_key_get**](docs/OrganizationsApi.md#organizations_id_public_key_get)                                                                                                                              | **GET** /organizations/{id}/public-key                                                   |
 | _OrganizationsApi_                      | [**organizations_id_put**](docs/OrganizationsApi.md#organizations_id_put)                                                                                                                                                    | **PUT** /organizations/{id}                                                              |
 | _OrganizationsApi_                      | [**organizations_id_reinstate_post**](docs/OrganizationsApi.md#organizations_id_reinstate_post)                                                                                                                              | **POST** /organizations/{id}/reinstate                                                   |
 | _OrganizationsApi_                      | [**organizations_id_rotate_api_key_post**](docs/OrganizationsApi.md#organizations_id_rotate_api_key_post)                                                                                                                    | **POST** /organizations/{id}/rotate-api-key                                              |
@@ -321,6 +323,7 @@ All URIs are relative to _http://localhost_
 | _OrganizationsApi_                      | [**organizations_id_sso_get**](docs/OrganizationsApi.md#organizations_id_sso_get)                                                                                                                                            | **GET** /organizations/{id}/sso                                                          |
 | _OrganizationsApi_                      | [**organizations_id_sso_post**](docs/OrganizationsApi.md#organizations_id_sso_post)                                                                                                                                          | **POST** /organizations/{id}/sso                                                         |
 | _OrganizationsApi_                      | [**organizations_id_storage_post**](docs/OrganizationsApi.md#organizations_id_storage_post)                                                                                                                                  | **POST** /organizations/{id}/storage                                                     |
+| _OrganizationsApi_                      | [**organizations_id_subscribe_secrets_manager_post**](docs/OrganizationsApi.md#organizations_id_subscribe_secrets_manager_post)                                                                                              | **POST** /organizations/{id}/subscribe-secrets-manager                                   |
 | _OrganizationsApi_                      | [**organizations_id_subscription_get**](docs/OrganizationsApi.md#organizations_id_subscription_get)                                                                                                                          | **GET** /organizations/{id}/subscription                                                 |
 | _OrganizationsApi_                      | [**organizations_id_subscription_post**](docs/OrganizationsApi.md#organizations_id_subscription_post)                                                                                                                        | **POST** /organizations/{id}/subscription                                                |
 | _OrganizationsApi_                      | [**organizations_id_tax_get**](docs/OrganizationsApi.md#organizations_id_tax_get)                                                                                                                                            | **GET** /organizations/{id}/tax                                                          |
@@ -472,6 +475,7 @@ All URIs are relative to _http://localhost_
 - [BaseAccessPolicyResponseModel](docs/BaseAccessPolicyResponseModel.md)
 - [BaseSecretResponseModel](docs/BaseSecretResponseModel.md)
 - [BaseSecretResponseModelListResponseModel](docs/BaseSecretResponseModelListResponseModel.md)
+- [BillingCustomerDiscount](docs/BillingCustomerDiscount.md)
 - [BillingHistoryResponseModel](docs/BillingHistoryResponseModel.md)
 - [BillingInvoice](docs/BillingInvoice.md)
 - [BillingPaymentResponseModel](docs/BillingPaymentResponseModel.md)
@@ -525,6 +529,7 @@ All URIs are relative to _http://localhost_
 - [ConfigResponseModel](docs/ConfigResponseModel.md)
 - [DeleteRecoverRequestModel](docs/DeleteRecoverRequestModel.md)
 - [DeviceKeysRequestModel](docs/DeviceKeysRequestModel.md)
+- [DeviceKeysUpdateRequestModel](docs/DeviceKeysUpdateRequestModel.md)
 - [DeviceRequestModel](docs/DeviceRequestModel.md)
 - [DeviceResponseModel](docs/DeviceResponseModel.md)
 - [DeviceResponseModelListResponseModel](docs/DeviceResponseModelListResponseModel.md)
@@ -603,10 +608,10 @@ All URIs are relative to _http://localhost_
 - [OrganizationDomainResponseModelListResponseModel](docs/OrganizationDomainResponseModelListResponseModel.md)
 - [OrganizationDomainSsoDetailsRequestModel](docs/OrganizationDomainSsoDetailsRequestModel.md)
 - [OrganizationDomainSsoDetailsResponseModel](docs/OrganizationDomainSsoDetailsResponseModel.md)
-- [OrganizationEnrollSecretsManagerRequestModel](docs/OrganizationEnrollSecretsManagerRequestModel.md)
 - [OrganizationKeysRequestModel](docs/OrganizationKeysRequestModel.md)
 - [OrganizationKeysResponseModel](docs/OrganizationKeysResponseModel.md)
 - [OrganizationLicense](docs/OrganizationLicense.md)
+- [OrganizationPublicKeyResponseModel](docs/OrganizationPublicKeyResponseModel.md)
 - [OrganizationResponseModel](docs/OrganizationResponseModel.md)
 - [OrganizationSeatRequestModel](docs/OrganizationSeatRequestModel.md)
 - [OrganizationSponsorshipCreateRequestModel](docs/OrganizationSponsorshipCreateRequestModel.md)
@@ -644,6 +649,7 @@ All URIs are relative to _http://localhost_
 - [OrganizationUserUserDetailsResponseModel](docs/OrganizationUserUserDetailsResponseModel.md)
 - [OrganizationUserUserDetailsResponseModelListResponseModel](docs/OrganizationUserUserDetailsResponseModelListResponseModel.md)
 - [OrganizationVerifyBankRequestModel](docs/OrganizationVerifyBankRequestModel.md)
+- [OtherDeviceKeysUpdateRequestModel](docs/OtherDeviceKeysUpdateRequestModel.md)
 - [PasswordHintRequestModel](docs/PasswordHintRequestModel.md)
 - [PasswordRequestModel](docs/PasswordRequestModel.md)
 - [PaymentMethodType](docs/PaymentMethodType.md)
@@ -675,6 +681,7 @@ All URIs are relative to _http://localhost_
 - [ProjectResponseModel](docs/ProjectResponseModel.md)
 - [ProjectResponseModelListResponseModel](docs/ProjectResponseModelListResponseModel.md)
 - [ProjectUpdateRequestModel](docs/ProjectUpdateRequestModel.md)
+- [ProtectedDeviceResponseModel](docs/ProtectedDeviceResponseModel.md)
 - [ProviderOrganizationAddRequestModel](docs/ProviderOrganizationAddRequestModel.md)
 - [ProviderOrganizationCreateRequestModel](docs/ProviderOrganizationCreateRequestModel.md)
 - [ProviderOrganizationOrganizationDetailsResponseModel](docs/ProviderOrganizationOrganizationDetailsResponseModel.md)
@@ -719,6 +726,7 @@ All URIs are relative to _http://localhost_
 - [SecretVerificationRequestModel](docs/SecretVerificationRequestModel.md)
 - [SecretWithProjectsInnerProject](docs/SecretWithProjectsInnerProject.md)
 - [SecretWithProjectsListResponseModel](docs/SecretWithProjectsListResponseModel.md)
+- [SecretsManagerSubscribeRequestModel](docs/SecretsManagerSubscribeRequestModel.md)
 - [SecretsManagerSubscriptionUpdateRequestModel](docs/SecretsManagerSubscriptionUpdateRequestModel.md)
 - [SecretsWithProjectsInnerSecret](docs/SecretsWithProjectsInnerSecret.md)
 - [SecureNoteType](docs/SecureNoteType.md)
@@ -740,7 +748,8 @@ All URIs are relative to _http://localhost_
 - [ServiceAccountProjectAccessPolicyResponseModel](docs/ServiceAccountProjectAccessPolicyResponseModel.md)
 - [ServiceAccountProjectAccessPolicyResponseModelListResponseModel](docs/ServiceAccountProjectAccessPolicyResponseModelListResponseModel.md)
 - [ServiceAccountResponseModel](docs/ServiceAccountResponseModel.md)
-- [ServiceAccountResponseModelListResponseModel](docs/ServiceAccountResponseModelListResponseModel.md)
+- [ServiceAccountSecretsDetailsResponseModel](docs/ServiceAccountSecretsDetailsResponseModel.md)
+- [ServiceAccountSecretsDetailsResponseModelListResponseModel](docs/ServiceAccountSecretsDetailsResponseModelListResponseModel.md)
 - [ServiceAccountUpdateRequestModel](docs/ServiceAccountUpdateRequestModel.md)
 - [SetKeyConnectorKeyRequestModel](docs/SetKeyConnectorKeyRequestModel.md)
 - [SetPasswordRequestModel](docs/SetPasswordRequestModel.md)
@@ -773,6 +782,7 @@ All URIs are relative to _http://localhost_
 - [TwoFactorWebAuthnResponseModel](docs/TwoFactorWebAuthnResponseModel.md)
 - [TwoFactorYubiKeyResponseModel](docs/TwoFactorYubiKeyResponseModel.md)
 - [UpdateAvatarRequestModel](docs/UpdateAvatarRequestModel.md)
+- [UpdateDevicesTrustRequestModel](docs/UpdateDevicesTrustRequestModel.md)
 - [UpdateDomainsRequestModel](docs/UpdateDomainsRequestModel.md)
 - [UpdateKeyRequestModel](docs/UpdateKeyRequestModel.md)
 - [UpdateProfileRequestModel](docs/UpdateProfileRequestModel.md)
diff --git a/crates/bitwarden-api-api/src/apis/auth_requests_api.rs b/crates/bitwarden-api-api/src/apis/auth_requests_api.rs
index 476a94129..39c4dd7b4 100644
--- a/crates/bitwarden-api-api/src/apis/auth_requests_api.rs
+++ b/crates/bitwarden-api-api/src/apis/auth_requests_api.rs
@@ -13,6 +13,13 @@ use reqwest;
 use super::{configuration, Error};
 use crate::apis::ResponseContent;
 
+/// struct for typed errors of method [`auth_requests_admin_request_post`]
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(untagged)]
+pub enum AuthRequestsAdminRequestPostError {
+    UnknownValue(serde_json::Value),
+}
+
 /// struct for typed errors of method [`auth_requests_get`]
 #[derive(Debug, Clone, Serialize, Deserialize)]
 #[serde(untagged)]
@@ -48,6 +55,50 @@ pub enum AuthRequestsPostError {
     UnknownValue(serde_json::Value),
 }
 
+pub async fn auth_requests_admin_request_post(
+    configuration: &configuration::Configuration,
+    auth_request_create_request_model: Option<crate::models::AuthRequestCreateRequestModel>,
+) -> Result<crate::models::AuthRequestResponseModel, Error<AuthRequestsAdminRequestPostError>> {
+    let local_var_configuration = configuration;
+
+    let local_var_client = &local_var_configuration.client;
+
+    let local_var_uri_str = format!(
+        "{}/auth-requests/admin-request",
+        local_var_configuration.base_path
+    );
+    let mut local_var_req_builder =
+        local_var_client.request(reqwest::Method::POST, local_var_uri_str.as_str());
+
+    if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
+        local_var_req_builder =
+            local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
+    }
+    if let Some(ref local_var_token) = local_var_configuration.oauth_access_token {
+        local_var_req_builder = local_var_req_builder.bearer_auth(local_var_token.to_owned());
+    };
+    local_var_req_builder = local_var_req_builder.json(&auth_request_create_request_model);
+
+    let local_var_req = local_var_req_builder.build()?;
+    let local_var_resp = local_var_client.execute(local_var_req).await?;
+
+    let local_var_status = local_var_resp.status();
+    let local_var_content = local_var_resp.text().await?;
+
+    if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
+        serde_json::from_str(&local_var_content).map_err(Error::from)
+    } else {
+        let local_var_entity: Option<AuthRequestsAdminRequestPostError> =
+            serde_json::from_str(&local_var_content).ok();
+        let local_var_error = ResponseContent {
+            status: local_var_status,
+            content: local_var_content,
+            entity: local_var_entity,
+        };
+        Err(Error::ResponseError(local_var_error))
+    }
+}
+
 pub async fn auth_requests_get(
     configuration: &configuration::Configuration,
 ) -> Result<crate::models::AuthRequestResponseModelListResponseModel, Error<AuthRequestsGetError>> {
diff --git a/crates/bitwarden-api-api/src/apis/devices_api.rs b/crates/bitwarden-api-api/src/apis/devices_api.rs
index e7be0685e..95564464a 100644
--- a/crates/bitwarden-api-api/src/apis/devices_api.rs
+++ b/crates/bitwarden-api-api/src/apis/devices_api.rs
@@ -13,13 +13,6 @@ use reqwest;
 use super::{configuration, Error};
 use crate::apis::ResponseContent;
 
-/// struct for typed errors of method [`devices_exist_by_types_post`]
-#[derive(Debug, Clone, Serialize, Deserialize)]
-#[serde(untagged)]
-pub enum DevicesExistByTypesPostError {
-    UnknownValue(serde_json::Value),
-}
-
 /// struct for typed errors of method [`devices_get`]
 #[derive(Debug, Clone, Serialize, Deserialize)]
 #[serde(untagged)]
@@ -111,6 +104,13 @@ pub enum DevicesIdentifierKeysPutError {
     UnknownValue(serde_json::Value),
 }
 
+/// struct for typed errors of method [`devices_identifier_retrieve_keys_post`]
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(untagged)]
+pub enum DevicesIdentifierRetrieveKeysPostError {
+    UnknownValue(serde_json::Value),
+}
+
 /// struct for typed errors of method [`devices_knowndevice_email_identifier_get`]
 #[derive(Debug, Clone, Serialize, Deserialize)]
 #[serde(untagged)]
@@ -132,48 +132,11 @@ pub enum DevicesPostError {
     UnknownValue(serde_json::Value),
 }
 
-pub async fn devices_exist_by_types_post(
-    configuration: &configuration::Configuration,
-    device_type: Option<Vec<crate::models::DeviceType>>,
-) -> Result<bool, Error<DevicesExistByTypesPostError>> {
-    let local_var_configuration = configuration;
-
-    let local_var_client = &local_var_configuration.client;
-
-    let local_var_uri_str = format!(
-        "{}/devices/exist-by-types",
-        local_var_configuration.base_path
-    );
-    let mut local_var_req_builder =
-        local_var_client.request(reqwest::Method::POST, local_var_uri_str.as_str());
-
-    if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
-        local_var_req_builder =
-            local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
-    }
-    if let Some(ref local_var_token) = local_var_configuration.oauth_access_token {
-        local_var_req_builder = local_var_req_builder.bearer_auth(local_var_token.to_owned());
-    };
-    local_var_req_builder = local_var_req_builder.json(&device_type);
-
-    let local_var_req = local_var_req_builder.build()?;
-    let local_var_resp = local_var_client.execute(local_var_req).await?;
-
-    let local_var_status = local_var_resp.status();
-    let local_var_content = local_var_resp.text().await?;
-
-    if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
-        serde_json::from_str(&local_var_content).map_err(Error::from)
-    } else {
-        let local_var_entity: Option<DevicesExistByTypesPostError> =
-            serde_json::from_str(&local_var_content).ok();
-        let local_var_error = ResponseContent {
-            status: local_var_status,
-            content: local_var_content,
-            entity: local_var_entity,
-        };
-        Err(Error::ResponseError(local_var_error))
-    }
+/// struct for typed errors of method [`devices_update_trust_post`]
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(untagged)]
+pub enum DevicesUpdateTrustPostError {
+    UnknownValue(serde_json::Value),
 }
 
 pub async fn devices_get(
@@ -755,6 +718,55 @@ pub async fn devices_identifier_keys_put(
     }
 }
 
+pub async fn devices_identifier_retrieve_keys_post(
+    configuration: &configuration::Configuration,
+    identifier: &str,
+    secret_verification_request_model: Option<crate::models::SecretVerificationRequestModel>,
+) -> Result<
+    crate::models::ProtectedDeviceResponseModel,
+    Error<DevicesIdentifierRetrieveKeysPostError>,
+> {
+    let local_var_configuration = configuration;
+
+    let local_var_client = &local_var_configuration.client;
+
+    let local_var_uri_str = format!(
+        "{}/devices/{identifier}/retrieve-keys",
+        local_var_configuration.base_path,
+        identifier = crate::apis::urlencode(identifier.to_string())
+    );
+    let mut local_var_req_builder =
+        local_var_client.request(reqwest::Method::POST, local_var_uri_str.as_str());
+
+    if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
+        local_var_req_builder =
+            local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
+    }
+    if let Some(ref local_var_token) = local_var_configuration.oauth_access_token {
+        local_var_req_builder = local_var_req_builder.bearer_auth(local_var_token.to_owned());
+    };
+    local_var_req_builder = local_var_req_builder.json(&secret_verification_request_model);
+
+    let local_var_req = local_var_req_builder.build()?;
+    let local_var_resp = local_var_client.execute(local_var_req).await?;
+
+    let local_var_status = local_var_resp.status();
+    let local_var_content = local_var_resp.text().await?;
+
+    if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
+        serde_json::from_str(&local_var_content).map_err(Error::from)
+    } else {
+        let local_var_entity: Option<DevicesIdentifierRetrieveKeysPostError> =
+            serde_json::from_str(&local_var_content).ok();
+        let local_var_error = ResponseContent {
+            status: local_var_status,
+            content: local_var_content,
+            entity: local_var_entity,
+        };
+        Err(Error::ResponseError(local_var_error))
+    }
+}
+
 pub async fn devices_knowndevice_email_identifier_get(
     configuration: &configuration::Configuration,
     email: &str,
@@ -890,3 +902,44 @@ pub async fn devices_post(
         Err(Error::ResponseError(local_var_error))
     }
 }
+
+pub async fn devices_update_trust_post(
+    configuration: &configuration::Configuration,
+    update_devices_trust_request_model: Option<crate::models::UpdateDevicesTrustRequestModel>,
+) -> Result<(), Error<DevicesUpdateTrustPostError>> {
+    let local_var_configuration = configuration;
+
+    let local_var_client = &local_var_configuration.client;
+
+    let local_var_uri_str = format!("{}/devices/update-trust", local_var_configuration.base_path);
+    let mut local_var_req_builder =
+        local_var_client.request(reqwest::Method::POST, local_var_uri_str.as_str());
+
+    if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
+        local_var_req_builder =
+            local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
+    }
+    if let Some(ref local_var_token) = local_var_configuration.oauth_access_token {
+        local_var_req_builder = local_var_req_builder.bearer_auth(local_var_token.to_owned());
+    };
+    local_var_req_builder = local_var_req_builder.json(&update_devices_trust_request_model);
+
+    let local_var_req = local_var_req_builder.build()?;
+    let local_var_resp = local_var_client.execute(local_var_req).await?;
+
+    let local_var_status = local_var_resp.status();
+    let local_var_content = local_var_resp.text().await?;
+
+    if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
+        Ok(())
+    } else {
+        let local_var_entity: Option<DevicesUpdateTrustPostError> =
+            serde_json::from_str(&local_var_content).ok();
+        let local_var_error = ResponseContent {
+            status: local_var_status,
+            content: local_var_content,
+            entity: local_var_entity,
+        };
+        Err(Error::ResponseError(local_var_error))
+    }
+}
diff --git a/crates/bitwarden-api-api/src/apis/mod.rs b/crates/bitwarden-api-api/src/apis/mod.rs
index 623d5d0b6..492680582 100644
--- a/crates/bitwarden-api-api/src/apis/mod.rs
+++ b/crates/bitwarden-api-api/src/apis/mod.rs
@@ -1,5 +1,4 @@
-use std::error;
-use std::fmt;
+use std::{error, fmt};
 
 #[derive(Debug, Clone)]
 pub struct ResponseContent<T> {
diff --git a/crates/bitwarden-api-api/src/apis/organization_users_api.rs b/crates/bitwarden-api-api/src/apis/organization_users_api.rs
index f81290a86..5a8e99916 100644
--- a/crates/bitwarden-api-api/src/apis/organization_users_api.rs
+++ b/crates/bitwarden-api-api/src/apis/organization_users_api.rs
@@ -391,10 +391,7 @@ pub async fn organizations_org_id_users_enable_secrets_manager_patch(
     configuration: &configuration::Configuration,
     org_id: uuid::Uuid,
     organization_user_bulk_request_model: Option<crate::models::OrganizationUserBulkRequestModel>,
-) -> Result<
-    crate::models::OrganizationUserBulkResponseModelListResponseModel,
-    Error<OrganizationsOrgIdUsersEnableSecretsManagerPatchError>,
-> {
+) -> Result<(), Error<OrganizationsOrgIdUsersEnableSecretsManagerPatchError>> {
     let local_var_configuration = configuration;
 
     let local_var_client = &local_var_configuration.client;
@@ -423,7 +420,7 @@ pub async fn organizations_org_id_users_enable_secrets_manager_patch(
     let local_var_content = local_var_resp.text().await?;
 
     if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
-        serde_json::from_str(&local_var_content).map_err(Error::from)
+        Ok(())
     } else {
         let local_var_entity: Option<OrganizationsOrgIdUsersEnableSecretsManagerPatchError> =
             serde_json::from_str(&local_var_content).ok();
@@ -440,10 +437,7 @@ pub async fn organizations_org_id_users_enable_secrets_manager_put(
     configuration: &configuration::Configuration,
     org_id: uuid::Uuid,
     organization_user_bulk_request_model: Option<crate::models::OrganizationUserBulkRequestModel>,
-) -> Result<
-    crate::models::OrganizationUserBulkResponseModelListResponseModel,
-    Error<OrganizationsOrgIdUsersEnableSecretsManagerPutError>,
-> {
+) -> Result<(), Error<OrganizationsOrgIdUsersEnableSecretsManagerPutError>> {
     let local_var_configuration = configuration;
 
     let local_var_client = &local_var_configuration.client;
@@ -472,7 +466,7 @@ pub async fn organizations_org_id_users_enable_secrets_manager_put(
     let local_var_content = local_var_resp.text().await?;
 
     if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
-        serde_json::from_str(&local_var_content).map_err(Error::from)
+        Ok(())
     } else {
         let local_var_entity: Option<OrganizationsOrgIdUsersEnableSecretsManagerPutError> =
             serde_json::from_str(&local_var_content).ok();
@@ -1761,8 +1755,8 @@ pub async fn organizations_org_id_users_revoke_put(
 
 pub async fn organizations_org_id_users_user_id_reset_password_enrollment_put(
     configuration: &configuration::Configuration,
-    org_id: &str,
-    user_id: &str,
+    org_id: uuid::Uuid,
+    user_id: uuid::Uuid,
     organization_user_reset_password_enrollment_request_model: Option<
         crate::models::OrganizationUserResetPasswordEnrollmentRequestModel,
     >,
diff --git a/crates/bitwarden-api-api/src/apis/organizations_api.rs b/crates/bitwarden-api-api/src/apis/organizations_api.rs
index 1cd531b2f..6377ef6bf 100644
--- a/crates/bitwarden-api-api/src/apis/organizations_api.rs
+++ b/crates/bitwarden-api-api/src/apis/organizations_api.rs
@@ -62,13 +62,6 @@ pub enum OrganizationsIdDeletePostError {
     UnknownValue(serde_json::Value),
 }
 
-/// struct for typed errors of method [`organizations_id_enroll_secrets_manager_post`]
-#[derive(Debug, Clone, Serialize, Deserialize)]
-#[serde(untagged)]
-pub enum OrganizationsIdEnrollSecretsManagerPostError {
-    UnknownValue(serde_json::Value),
-}
-
 /// struct for typed errors of method [`organizations_id_get`]
 #[derive(Debug, Clone, Serialize, Deserialize)]
 #[serde(untagged)]
@@ -125,6 +118,13 @@ pub enum OrganizationsIdPostError {
     UnknownValue(serde_json::Value),
 }
 
+/// struct for typed errors of method [`organizations_id_public_key_get`]
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(untagged)]
+pub enum OrganizationsIdPublicKeyGetError {
+    UnknownValue(serde_json::Value),
+}
+
 /// struct for typed errors of method [`organizations_id_put`]
 #[derive(Debug, Clone, Serialize, Deserialize)]
 #[serde(untagged)]
@@ -181,6 +181,13 @@ pub enum OrganizationsIdStoragePostError {
     UnknownValue(serde_json::Value),
 }
 
+/// struct for typed errors of method [`organizations_id_subscribe_secrets_manager_post`]
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(untagged)]
+pub enum OrganizationsIdSubscribeSecretsManagerPostError {
+    UnknownValue(serde_json::Value),
+}
+
 /// struct for typed errors of method [`organizations_id_subscription_get`]
 #[derive(Debug, Clone, Serialize, Deserialize)]
 #[serde(untagged)]
@@ -549,55 +556,6 @@ pub async fn organizations_id_delete_post(
     }
 }
 
-pub async fn organizations_id_enroll_secrets_manager_post(
-    configuration: &configuration::Configuration,
-    id: uuid::Uuid,
-    organization_enroll_secrets_manager_request_model: Option<
-        crate::models::OrganizationEnrollSecretsManagerRequestModel,
-    >,
-) -> Result<(), Error<OrganizationsIdEnrollSecretsManagerPostError>> {
-    let local_var_configuration = configuration;
-
-    let local_var_client = &local_var_configuration.client;
-
-    let local_var_uri_str = format!(
-        "{}/organizations/{id}/enroll-secrets-manager",
-        local_var_configuration.base_path,
-        id = crate::apis::urlencode(id.to_string())
-    );
-    let mut local_var_req_builder =
-        local_var_client.request(reqwest::Method::POST, local_var_uri_str.as_str());
-
-    if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
-        local_var_req_builder =
-            local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
-    }
-    if let Some(ref local_var_token) = local_var_configuration.oauth_access_token {
-        local_var_req_builder = local_var_req_builder.bearer_auth(local_var_token.to_owned());
-    };
-    local_var_req_builder =
-        local_var_req_builder.json(&organization_enroll_secrets_manager_request_model);
-
-    let local_var_req = local_var_req_builder.build()?;
-    let local_var_resp = local_var_client.execute(local_var_req).await?;
-
-    let local_var_status = local_var_resp.status();
-    let local_var_content = local_var_resp.text().await?;
-
-    if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
-        Ok(())
-    } else {
-        let local_var_entity: Option<OrganizationsIdEnrollSecretsManagerPostError> =
-            serde_json::from_str(&local_var_content).ok();
-        let local_var_error = ResponseContent {
-            status: local_var_status,
-            content: local_var_content,
-            entity: local_var_entity,
-        };
-        Err(Error::ResponseError(local_var_error))
-    }
-}
-
 pub async fn organizations_id_get(
     configuration: &configuration::Configuration,
     id: &str,
@@ -693,7 +651,7 @@ pub async fn organizations_id_import_post(
 pub async fn organizations_id_keys_get(
     configuration: &configuration::Configuration,
     id: &str,
-) -> Result<crate::models::OrganizationKeysResponseModel, Error<OrganizationsIdKeysGetError>> {
+) -> Result<crate::models::OrganizationPublicKeyResponseModel, Error<OrganizationsIdKeysGetError>> {
     let local_var_configuration = configuration;
 
     let local_var_client = &local_var_configuration.client;
@@ -965,6 +923,53 @@ pub async fn organizations_id_post(
     }
 }
 
+pub async fn organizations_id_public_key_get(
+    configuration: &configuration::Configuration,
+    id: &str,
+) -> Result<
+    crate::models::OrganizationPublicKeyResponseModel,
+    Error<OrganizationsIdPublicKeyGetError>,
+> {
+    let local_var_configuration = configuration;
+
+    let local_var_client = &local_var_configuration.client;
+
+    let local_var_uri_str = format!(
+        "{}/organizations/{id}/public-key",
+        local_var_configuration.base_path,
+        id = crate::apis::urlencode(id.to_string())
+    );
+    let mut local_var_req_builder =
+        local_var_client.request(reqwest::Method::GET, local_var_uri_str.as_str());
+
+    if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
+        local_var_req_builder =
+            local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
+    }
+    if let Some(ref local_var_token) = local_var_configuration.oauth_access_token {
+        local_var_req_builder = local_var_req_builder.bearer_auth(local_var_token.to_owned());
+    };
+
+    let local_var_req = local_var_req_builder.build()?;
+    let local_var_resp = local_var_client.execute(local_var_req).await?;
+
+    let local_var_status = local_var_resp.status();
+    let local_var_content = local_var_resp.text().await?;
+
+    if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
+        serde_json::from_str(&local_var_content).map_err(Error::from)
+    } else {
+        let local_var_entity: Option<OrganizationsIdPublicKeyGetError> =
+            serde_json::from_str(&local_var_content).ok();
+        let local_var_error = ResponseContent {
+            status: local_var_status,
+            content: local_var_content,
+            entity: local_var_entity,
+        };
+        Err(Error::ResponseError(local_var_error))
+    }
+}
+
 pub async fn organizations_id_put(
     configuration: &configuration::Configuration,
     id: &str,
@@ -1332,6 +1337,57 @@ pub async fn organizations_id_storage_post(
     }
 }
 
+pub async fn organizations_id_subscribe_secrets_manager_post(
+    configuration: &configuration::Configuration,
+    id: uuid::Uuid,
+    secrets_manager_subscribe_request_model: Option<
+        crate::models::SecretsManagerSubscribeRequestModel,
+    >,
+) -> Result<
+    crate::models::ProfileOrganizationResponseModel,
+    Error<OrganizationsIdSubscribeSecretsManagerPostError>,
+> {
+    let local_var_configuration = configuration;
+
+    let local_var_client = &local_var_configuration.client;
+
+    let local_var_uri_str = format!(
+        "{}/organizations/{id}/subscribe-secrets-manager",
+        local_var_configuration.base_path,
+        id = crate::apis::urlencode(id.to_string())
+    );
+    let mut local_var_req_builder =
+        local_var_client.request(reqwest::Method::POST, local_var_uri_str.as_str());
+
+    if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
+        local_var_req_builder =
+            local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
+    }
+    if let Some(ref local_var_token) = local_var_configuration.oauth_access_token {
+        local_var_req_builder = local_var_req_builder.bearer_auth(local_var_token.to_owned());
+    };
+    local_var_req_builder = local_var_req_builder.json(&secrets_manager_subscribe_request_model);
+
+    let local_var_req = local_var_req_builder.build()?;
+    let local_var_resp = local_var_client.execute(local_var_req).await?;
+
+    let local_var_status = local_var_resp.status();
+    let local_var_content = local_var_resp.text().await?;
+
+    if !local_var_status.is_client_error() && !local_var_status.is_server_error() {
+        serde_json::from_str(&local_var_content).map_err(Error::from)
+    } else {
+        let local_var_entity: Option<OrganizationsIdSubscribeSecretsManagerPostError> =
+            serde_json::from_str(&local_var_content).ok();
+        let local_var_error = ResponseContent {
+            status: local_var_status,
+            content: local_var_content,
+            entity: local_var_entity,
+        };
+        Err(Error::ResponseError(local_var_error))
+    }
+}
+
 pub async fn organizations_id_subscription_get(
     configuration: &configuration::Configuration,
     id: &str,
diff --git a/crates/bitwarden-api-api/src/apis/service_accounts_api.rs b/crates/bitwarden-api-api/src/apis/service_accounts_api.rs
index 511fb3674..47045b475 100644
--- a/crates/bitwarden-api-api/src/apis/service_accounts_api.rs
+++ b/crates/bitwarden-api-api/src/apis/service_accounts_api.rs
@@ -72,8 +72,9 @@ pub enum ServiceAccountsIdPutError {
 pub async fn organizations_organization_id_service_accounts_get(
     configuration: &configuration::Configuration,
     organization_id: uuid::Uuid,
+    include_access_to_secrets: Option<bool>,
 ) -> Result<
-    crate::models::ServiceAccountResponseModelListResponseModel,
+    crate::models::ServiceAccountSecretsDetailsResponseModelListResponseModel,
     Error<OrganizationsOrganizationIdServiceAccountsGetError>,
 > {
     let local_var_configuration = configuration;
@@ -88,6 +89,10 @@ pub async fn organizations_organization_id_service_accounts_get(
     let mut local_var_req_builder =
         local_var_client.request(reqwest::Method::GET, local_var_uri_str.as_str());
 
+    if let Some(ref local_var_str) = include_access_to_secrets {
+        local_var_req_builder =
+            local_var_req_builder.query(&[("includeAccessToSecrets", &local_var_str.to_string())]);
+    }
     if let Some(ref local_var_user_agent) = local_var_configuration.user_agent {
         local_var_req_builder =
             local_var_req_builder.header(reqwest::header::USER_AGENT, local_var_user_agent.clone());
diff --git a/crates/bitwarden-api-api/src/models/attachment_response_model.rs b/crates/bitwarden-api-api/src/models/attachment_response_model.rs
index 86637a161..c9066488d 100644
--- a/crates/bitwarden-api-api/src/models/attachment_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/attachment_response_model.rs
@@ -21,7 +21,7 @@ pub struct AttachmentResponseModel {
     #[serde(rename = "key", skip_serializing_if = "Option::is_none")]
     pub key: Option<String>,
     #[serde(rename = "size", skip_serializing_if = "Option::is_none")]
-    pub size: Option<i64>,
+    pub size: Option<String>,
     #[serde(rename = "sizeName", skip_serializing_if = "Option::is_none")]
     pub size_name: Option<String>,
 }
diff --git a/crates/bitwarden-api-api/src/models/billing_customer_discount.rs b/crates/bitwarden-api-api/src/models/billing_customer_discount.rs
new file mode 100644
index 000000000..61f695d70
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/billing_customer_discount.rs
@@ -0,0 +1,26 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct BillingCustomerDiscount {
+    #[serde(rename = "id", skip_serializing_if = "Option::is_none")]
+    pub id: Option<String>,
+    #[serde(rename = "active", skip_serializing_if = "Option::is_none")]
+    pub active: Option<bool>,
+}
+
+impl BillingCustomerDiscount {
+    pub fn new() -> BillingCustomerDiscount {
+        BillingCustomerDiscount {
+            id: None,
+            active: None,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/cipher_details_response_model.rs b/crates/bitwarden-api-api/src/models/cipher_details_response_model.rs
index 448712702..289169e41 100644
--- a/crates/bitwarden-api-api/src/models/cipher_details_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/cipher_details_response_model.rs
@@ -51,6 +51,8 @@ pub struct CipherDetailsResponseModel {
     pub deleted_date: Option<String>,
     #[serde(rename = "reprompt", skip_serializing_if = "Option::is_none")]
     pub reprompt: Option<crate::models::CipherRepromptType>,
+    #[serde(rename = "key", skip_serializing_if = "Option::is_none")]
+    pub key: Option<String>,
     #[serde(rename = "folderId", skip_serializing_if = "Option::is_none")]
     pub folder_id: Option<uuid::Uuid>,
     #[serde(rename = "favorite", skip_serializing_if = "Option::is_none")]
@@ -85,6 +87,7 @@ impl CipherDetailsResponseModel {
             creation_date: None,
             deleted_date: None,
             reprompt: None,
+            key: None,
             folder_id: None,
             favorite: None,
             edit: None,
diff --git a/crates/bitwarden-api-api/src/models/cipher_mini_details_response_model.rs b/crates/bitwarden-api-api/src/models/cipher_mini_details_response_model.rs
index 28dafcdbb..1aa5b8e3b 100644
--- a/crates/bitwarden-api-api/src/models/cipher_mini_details_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/cipher_mini_details_response_model.rs
@@ -51,6 +51,8 @@ pub struct CipherMiniDetailsResponseModel {
     pub deleted_date: Option<String>,
     #[serde(rename = "reprompt", skip_serializing_if = "Option::is_none")]
     pub reprompt: Option<crate::models::CipherRepromptType>,
+    #[serde(rename = "key", skip_serializing_if = "Option::is_none")]
+    pub key: Option<String>,
     #[serde(rename = "collectionIds", skip_serializing_if = "Option::is_none")]
     pub collection_ids: Option<Vec<uuid::Uuid>>,
 }
@@ -77,6 +79,7 @@ impl CipherMiniDetailsResponseModel {
             creation_date: None,
             deleted_date: None,
             reprompt: None,
+            key: None,
             collection_ids: None,
         }
     }
diff --git a/crates/bitwarden-api-api/src/models/cipher_mini_response_model.rs b/crates/bitwarden-api-api/src/models/cipher_mini_response_model.rs
index 8ea52926d..c96ddfd18 100644
--- a/crates/bitwarden-api-api/src/models/cipher_mini_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/cipher_mini_response_model.rs
@@ -51,6 +51,8 @@ pub struct CipherMiniResponseModel {
     pub deleted_date: Option<String>,
     #[serde(rename = "reprompt", skip_serializing_if = "Option::is_none")]
     pub reprompt: Option<crate::models::CipherRepromptType>,
+    #[serde(rename = "key", skip_serializing_if = "Option::is_none")]
+    pub key: Option<String>,
 }
 
 impl CipherMiniResponseModel {
@@ -75,6 +77,7 @@ impl CipherMiniResponseModel {
             creation_date: None,
             deleted_date: None,
             reprompt: None,
+            key: None,
         }
     }
 }
diff --git a/crates/bitwarden-api-api/src/models/cipher_request_model.rs b/crates/bitwarden-api-api/src/models/cipher_request_model.rs
index 4ac3f62d7..2e445802b 100644
--- a/crates/bitwarden-api-api/src/models/cipher_request_model.rs
+++ b/crates/bitwarden-api-api/src/models/cipher_request_model.rs
@@ -20,6 +20,8 @@ pub struct CipherRequestModel {
     pub favorite: Option<bool>,
     #[serde(rename = "reprompt", skip_serializing_if = "Option::is_none")]
     pub reprompt: Option<crate::models::CipherRepromptType>,
+    #[serde(rename = "key", skip_serializing_if = "Option::is_none")]
+    pub key: Option<String>,
     #[serde(rename = "name")]
     pub name: String,
     #[serde(rename = "notes", skip_serializing_if = "Option::is_none")]
@@ -56,6 +58,7 @@ impl CipherRequestModel {
             folder_id: None,
             favorite: None,
             reprompt: None,
+            key: None,
             name,
             notes: None,
             fields: None,
diff --git a/crates/bitwarden-api-api/src/models/cipher_response_model.rs b/crates/bitwarden-api-api/src/models/cipher_response_model.rs
index 62a930e1f..59831e6fb 100644
--- a/crates/bitwarden-api-api/src/models/cipher_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/cipher_response_model.rs
@@ -51,6 +51,8 @@ pub struct CipherResponseModel {
     pub deleted_date: Option<String>,
     #[serde(rename = "reprompt", skip_serializing_if = "Option::is_none")]
     pub reprompt: Option<crate::models::CipherRepromptType>,
+    #[serde(rename = "key", skip_serializing_if = "Option::is_none")]
+    pub key: Option<String>,
     #[serde(rename = "folderId", skip_serializing_if = "Option::is_none")]
     pub folder_id: Option<uuid::Uuid>,
     #[serde(rename = "favorite", skip_serializing_if = "Option::is_none")]
@@ -83,6 +85,7 @@ impl CipherResponseModel {
             creation_date: None,
             deleted_date: None,
             reprompt: None,
+            key: None,
             folder_id: None,
             favorite: None,
             edit: None,
diff --git a/crates/bitwarden-api-api/src/models/cipher_with_id_request_model.rs b/crates/bitwarden-api-api/src/models/cipher_with_id_request_model.rs
index db4c3604f..093d2e5d9 100644
--- a/crates/bitwarden-api-api/src/models/cipher_with_id_request_model.rs
+++ b/crates/bitwarden-api-api/src/models/cipher_with_id_request_model.rs
@@ -20,6 +20,8 @@ pub struct CipherWithIdRequestModel {
     pub favorite: Option<bool>,
     #[serde(rename = "reprompt", skip_serializing_if = "Option::is_none")]
     pub reprompt: Option<crate::models::CipherRepromptType>,
+    #[serde(rename = "key", skip_serializing_if = "Option::is_none")]
+    pub key: Option<String>,
     #[serde(rename = "name")]
     pub name: String,
     #[serde(rename = "notes", skip_serializing_if = "Option::is_none")]
@@ -58,6 +60,7 @@ impl CipherWithIdRequestModel {
             folder_id: None,
             favorite: None,
             reprompt: None,
+            key: None,
             name,
             notes: None,
             fields: None,
diff --git a/crates/bitwarden-api-api/src/models/device_keys_update_request_model.rs b/crates/bitwarden-api-api/src/models/device_keys_update_request_model.rs
new file mode 100644
index 000000000..65d82513c
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/device_keys_update_request_model.rs
@@ -0,0 +1,29 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct DeviceKeysUpdateRequestModel {
+    #[serde(rename = "encryptedPublicKey")]
+    pub encrypted_public_key: String,
+    #[serde(rename = "encryptedUserKey")]
+    pub encrypted_user_key: String,
+}
+
+impl DeviceKeysUpdateRequestModel {
+    pub fn new(
+        encrypted_public_key: String,
+        encrypted_user_key: String,
+    ) -> DeviceKeysUpdateRequestModel {
+        DeviceKeysUpdateRequestModel {
+            encrypted_public_key,
+            encrypted_user_key,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/device_response_model.rs b/crates/bitwarden-api-api/src/models/device_response_model.rs
index 463d6f104..c6dc76d96 100644
--- a/crates/bitwarden-api-api/src/models/device_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/device_response_model.rs
@@ -22,15 +22,8 @@ pub struct DeviceResponseModel {
     pub identifier: Option<String>,
     #[serde(rename = "creationDate", skip_serializing_if = "Option::is_none")]
     pub creation_date: Option<String>,
-    #[serde(rename = "encryptedUserKey", skip_serializing_if = "Option::is_none")]
-    pub encrypted_user_key: Option<String>,
-    #[serde(rename = "encryptedPublicKey", skip_serializing_if = "Option::is_none")]
-    pub encrypted_public_key: Option<String>,
-    #[serde(
-        rename = "encryptedPrivateKey",
-        skip_serializing_if = "Option::is_none"
-    )]
-    pub encrypted_private_key: Option<String>,
+    #[serde(rename = "isTrusted", skip_serializing_if = "Option::is_none")]
+    pub is_trusted: Option<bool>,
 }
 
 impl DeviceResponseModel {
@@ -42,9 +35,7 @@ impl DeviceResponseModel {
             r#type: None,
             identifier: None,
             creation_date: None,
-            encrypted_user_key: None,
-            encrypted_public_key: None,
-            encrypted_private_key: None,
+            is_trusted: None,
         }
     }
 }
diff --git a/crates/bitwarden-api-api/src/models/event_type.rs b/crates/bitwarden-api-api/src/models/event_type.rs
index 3988c656f..f0cea8ebc 100644
--- a/crates/bitwarden-api-api/src/models/event_type.rs
+++ b/crates/bitwarden-api-api/src/models/event_type.rs
@@ -24,6 +24,7 @@ pub enum EventType {
     Variant1007 = 1007,
     Variant1008 = 1008,
     Variant1009 = 1009,
+    Variant1010 = 1010,
     Variant1100 = 1100,
     Variant1101 = 1101,
     Variant1102 = 1102,
@@ -61,6 +62,8 @@ pub enum EventType {
     Variant1510 = 1510,
     Variant1511 = 1511,
     Variant1512 = 1512,
+    Variant1513 = 1513,
+    Variant1514 = 1514,
     Variant1600 = 1600,
     Variant1601 = 1601,
     Variant1602 = 1602,
@@ -99,6 +102,7 @@ impl ToString for EventType {
             Self::Variant1007 => String::from("1007"),
             Self::Variant1008 => String::from("1008"),
             Self::Variant1009 => String::from("1009"),
+            Self::Variant1010 => String::from("1010"),
             Self::Variant1100 => String::from("1100"),
             Self::Variant1101 => String::from("1101"),
             Self::Variant1102 => String::from("1102"),
@@ -136,6 +140,8 @@ impl ToString for EventType {
             Self::Variant1510 => String::from("1510"),
             Self::Variant1511 => String::from("1511"),
             Self::Variant1512 => String::from("1512"),
+            Self::Variant1513 => String::from("1513"),
+            Self::Variant1514 => String::from("1514"),
             Self::Variant1600 => String::from("1600"),
             Self::Variant1601 => String::from("1601"),
             Self::Variant1602 => String::from("1602"),
diff --git a/crates/bitwarden-api-api/src/models/global_domains.rs b/crates/bitwarden-api-api/src/models/global_domains.rs
index f0582caa4..10a943482 100644
--- a/crates/bitwarden-api-api/src/models/global_domains.rs
+++ b/crates/bitwarden-api-api/src/models/global_domains.rs
@@ -11,7 +11,7 @@
 #[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
 pub struct GlobalDomains {
     #[serde(rename = "type", skip_serializing_if = "Option::is_none")]
-    pub r#type: Option<crate::models::GlobalEquivalentDomainsType>,
+    pub r#type: Option<i32>,
     #[serde(rename = "domains", skip_serializing_if = "Option::is_none")]
     pub domains: Option<Vec<String>>,
     #[serde(rename = "excluded", skip_serializing_if = "Option::is_none")]
diff --git a/crates/bitwarden-api-api/src/models/mod.rs b/crates/bitwarden-api-api/src/models/mod.rs
index 9d2aa9ae8..db4702827 100644
--- a/crates/bitwarden-api-api/src/models/mod.rs
+++ b/crates/bitwarden-api-api/src/models/mod.rs
@@ -42,6 +42,8 @@ pub mod base_secret_response_model;
 pub use self::base_secret_response_model::BaseSecretResponseModel;
 pub mod base_secret_response_model_list_response_model;
 pub use self::base_secret_response_model_list_response_model::BaseSecretResponseModelListResponseModel;
+pub mod billing_customer_discount;
+pub use self::billing_customer_discount::BillingCustomerDiscount;
 pub mod billing_history_response_model;
 pub use self::billing_history_response_model::BillingHistoryResponseModel;
 pub mod billing_invoice;
@@ -148,6 +150,8 @@ pub mod delete_recover_request_model;
 pub use self::delete_recover_request_model::DeleteRecoverRequestModel;
 pub mod device_keys_request_model;
 pub use self::device_keys_request_model::DeviceKeysRequestModel;
+pub mod device_keys_update_request_model;
+pub use self::device_keys_update_request_model::DeviceKeysUpdateRequestModel;
 pub mod device_request_model;
 pub use self::device_request_model::DeviceRequestModel;
 pub mod device_response_model;
@@ -304,14 +308,14 @@ pub mod organization_domain_sso_details_request_model;
 pub use self::organization_domain_sso_details_request_model::OrganizationDomainSsoDetailsRequestModel;
 pub mod organization_domain_sso_details_response_model;
 pub use self::organization_domain_sso_details_response_model::OrganizationDomainSsoDetailsResponseModel;
-pub mod organization_enroll_secrets_manager_request_model;
-pub use self::organization_enroll_secrets_manager_request_model::OrganizationEnrollSecretsManagerRequestModel;
 pub mod organization_keys_request_model;
 pub use self::organization_keys_request_model::OrganizationKeysRequestModel;
 pub mod organization_keys_response_model;
 pub use self::organization_keys_response_model::OrganizationKeysResponseModel;
 pub mod organization_license;
 pub use self::organization_license::OrganizationLicense;
+pub mod organization_public_key_response_model;
+pub use self::organization_public_key_response_model::OrganizationPublicKeyResponseModel;
 pub mod organization_response_model;
 pub use self::organization_response_model::OrganizationResponseModel;
 pub mod organization_seat_request_model;
@@ -386,6 +390,8 @@ pub mod organization_user_user_details_response_model_list_response_model;
 pub use self::organization_user_user_details_response_model_list_response_model::OrganizationUserUserDetailsResponseModelListResponseModel;
 pub mod organization_verify_bank_request_model;
 pub use self::organization_verify_bank_request_model::OrganizationVerifyBankRequestModel;
+pub mod other_device_keys_update_request_model;
+pub use self::other_device_keys_update_request_model::OtherDeviceKeysUpdateRequestModel;
 pub mod password_hint_request_model;
 pub use self::password_hint_request_model::PasswordHintRequestModel;
 pub mod password_request_model;
@@ -448,6 +454,8 @@ pub mod project_response_model_list_response_model;
 pub use self::project_response_model_list_response_model::ProjectResponseModelListResponseModel;
 pub mod project_update_request_model;
 pub use self::project_update_request_model::ProjectUpdateRequestModel;
+pub mod protected_device_response_model;
+pub use self::protected_device_response_model::ProtectedDeviceResponseModel;
 pub mod provider_organization_add_request_model;
 pub use self::provider_organization_add_request_model::ProviderOrganizationAddRequestModel;
 pub mod provider_organization_create_request_model;
@@ -536,6 +544,8 @@ pub mod secret_with_projects_inner_project;
 pub use self::secret_with_projects_inner_project::SecretWithProjectsInnerProject;
 pub mod secret_with_projects_list_response_model;
 pub use self::secret_with_projects_list_response_model::SecretWithProjectsListResponseModel;
+pub mod secrets_manager_subscribe_request_model;
+pub use self::secrets_manager_subscribe_request_model::SecretsManagerSubscribeRequestModel;
 pub mod secrets_manager_subscription_update_request_model;
 pub use self::secrets_manager_subscription_update_request_model::SecretsManagerSubscriptionUpdateRequestModel;
 pub mod secrets_with_projects_inner_secret;
@@ -578,8 +588,10 @@ pub mod service_account_project_access_policy_response_model_list_response_model
 pub use self::service_account_project_access_policy_response_model_list_response_model::ServiceAccountProjectAccessPolicyResponseModelListResponseModel;
 pub mod service_account_response_model;
 pub use self::service_account_response_model::ServiceAccountResponseModel;
-pub mod service_account_response_model_list_response_model;
-pub use self::service_account_response_model_list_response_model::ServiceAccountResponseModelListResponseModel;
+pub mod service_account_secrets_details_response_model;
+pub use self::service_account_secrets_details_response_model::ServiceAccountSecretsDetailsResponseModel;
+pub mod service_account_secrets_details_response_model_list_response_model;
+pub use self::service_account_secrets_details_response_model_list_response_model::ServiceAccountSecretsDetailsResponseModelListResponseModel;
 pub mod service_account_update_request_model;
 pub use self::service_account_update_request_model::ServiceAccountUpdateRequestModel;
 pub mod set_key_connector_key_request_model;
@@ -644,6 +656,8 @@ pub mod two_factor_yubi_key_response_model;
 pub use self::two_factor_yubi_key_response_model::TwoFactorYubiKeyResponseModel;
 pub mod update_avatar_request_model;
 pub use self::update_avatar_request_model::UpdateAvatarRequestModel;
+pub mod update_devices_trust_request_model;
+pub use self::update_devices_trust_request_model::UpdateDevicesTrustRequestModel;
 pub mod update_domains_request_model;
 pub use self::update_domains_request_model::UpdateDomainsRequestModel;
 pub mod update_key_request_model;
diff --git a/crates/bitwarden-api-api/src/models/organization_public_key_response_model.rs b/crates/bitwarden-api-api/src/models/organization_public_key_response_model.rs
new file mode 100644
index 000000000..c5849d3e6
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/organization_public_key_response_model.rs
@@ -0,0 +1,26 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct OrganizationPublicKeyResponseModel {
+    #[serde(rename = "object", skip_serializing_if = "Option::is_none")]
+    pub object: Option<String>,
+    #[serde(rename = "publicKey", skip_serializing_if = "Option::is_none")]
+    pub public_key: Option<String>,
+}
+
+impl OrganizationPublicKeyResponseModel {
+    pub fn new() -> OrganizationPublicKeyResponseModel {
+        OrganizationPublicKeyResponseModel {
+            object: None,
+            public_key: None,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/organization_subscription_response_model.rs b/crates/bitwarden-api-api/src/models/organization_subscription_response_model.rs
index c3789f17a..b08184d43 100644
--- a/crates/bitwarden-api-api/src/models/organization_subscription_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/organization_subscription_response_model.rs
@@ -102,6 +102,8 @@ pub struct OrganizationSubscriptionResponseModel {
     pub storage_name: Option<String>,
     #[serde(rename = "storageGb", skip_serializing_if = "Option::is_none")]
     pub storage_gb: Option<f64>,
+    #[serde(rename = "discount", skip_serializing_if = "Option::is_none")]
+    pub discount: Option<Box<crate::models::BillingCustomerDiscount>>,
     #[serde(rename = "subscription", skip_serializing_if = "Option::is_none")]
     pub subscription: Option<Box<crate::models::BillingSubscription>>,
     #[serde(rename = "upcomingInvoice", skip_serializing_if = "Option::is_none")]
@@ -162,6 +164,7 @@ impl OrganizationSubscriptionResponseModel {
             max_autoscale_sm_service_accounts: None,
             storage_name: None,
             storage_gb: None,
+            discount: None,
             subscription: None,
             upcoming_invoice: None,
             expiration_without_grace_period: None,
diff --git a/crates/bitwarden-api-api/src/models/organization_user_reset_password_enrollment_request_model.rs b/crates/bitwarden-api-api/src/models/organization_user_reset_password_enrollment_request_model.rs
index c21020f96..7287c58a3 100644
--- a/crates/bitwarden-api-api/src/models/organization_user_reset_password_enrollment_request_model.rs
+++ b/crates/bitwarden-api-api/src/models/organization_user_reset_password_enrollment_request_model.rs
@@ -10,17 +10,6 @@
 
 #[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
 pub struct OrganizationUserResetPasswordEnrollmentRequestModel {
-    #[serde(rename = "masterPasswordHash", skip_serializing_if = "Option::is_none")]
-    pub master_password_hash: Option<String>,
-    #[serde(rename = "otp", skip_serializing_if = "Option::is_none")]
-    pub otp: Option<String>,
-    #[serde(
-        rename = "authRequestAccessCode",
-        skip_serializing_if = "Option::is_none"
-    )]
-    pub auth_request_access_code: Option<String>,
-    #[serde(rename = "secret", skip_serializing_if = "Option::is_none")]
-    pub secret: Option<String>,
     #[serde(rename = "resetPasswordKey", skip_serializing_if = "Option::is_none")]
     pub reset_password_key: Option<String>,
 }
@@ -28,10 +17,6 @@ pub struct OrganizationUserResetPasswordEnrollmentRequestModel {
 impl OrganizationUserResetPasswordEnrollmentRequestModel {
     pub fn new() -> OrganizationUserResetPasswordEnrollmentRequestModel {
         OrganizationUserResetPasswordEnrollmentRequestModel {
-            master_password_hash: None,
-            otp: None,
-            auth_request_access_code: None,
-            secret: None,
             reset_password_key: None,
         }
     }
diff --git a/crates/bitwarden-api-api/src/models/other_device_keys_update_request_model.rs b/crates/bitwarden-api-api/src/models/other_device_keys_update_request_model.rs
new file mode 100644
index 000000000..c163a4343
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/other_device_keys_update_request_model.rs
@@ -0,0 +1,33 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct OtherDeviceKeysUpdateRequestModel {
+    #[serde(rename = "encryptedPublicKey")]
+    pub encrypted_public_key: String,
+    #[serde(rename = "encryptedUserKey")]
+    pub encrypted_user_key: String,
+    #[serde(rename = "deviceId")]
+    pub device_id: uuid::Uuid,
+}
+
+impl OtherDeviceKeysUpdateRequestModel {
+    pub fn new(
+        encrypted_public_key: String,
+        encrypted_user_key: String,
+        device_id: uuid::Uuid,
+    ) -> OtherDeviceKeysUpdateRequestModel {
+        OtherDeviceKeysUpdateRequestModel {
+            encrypted_public_key,
+            encrypted_user_key,
+            device_id,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/protected_device_response_model.rs b/crates/bitwarden-api-api/src/models/protected_device_response_model.rs
new file mode 100644
index 000000000..f34e1128d
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/protected_device_response_model.rs
@@ -0,0 +1,44 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct ProtectedDeviceResponseModel {
+    #[serde(rename = "object", skip_serializing_if = "Option::is_none")]
+    pub object: Option<String>,
+    #[serde(rename = "id", skip_serializing_if = "Option::is_none")]
+    pub id: Option<uuid::Uuid>,
+    #[serde(rename = "name", skip_serializing_if = "Option::is_none")]
+    pub name: Option<String>,
+    #[serde(rename = "type", skip_serializing_if = "Option::is_none")]
+    pub r#type: Option<crate::models::DeviceType>,
+    #[serde(rename = "identifier", skip_serializing_if = "Option::is_none")]
+    pub identifier: Option<String>,
+    #[serde(rename = "creationDate", skip_serializing_if = "Option::is_none")]
+    pub creation_date: Option<String>,
+    #[serde(rename = "encryptedUserKey", skip_serializing_if = "Option::is_none")]
+    pub encrypted_user_key: Option<String>,
+    #[serde(rename = "encryptedPublicKey", skip_serializing_if = "Option::is_none")]
+    pub encrypted_public_key: Option<String>,
+}
+
+impl ProtectedDeviceResponseModel {
+    pub fn new() -> ProtectedDeviceResponseModel {
+        ProtectedDeviceResponseModel {
+            object: None,
+            id: None,
+            name: None,
+            r#type: None,
+            identifier: None,
+            creation_date: None,
+            encrypted_user_key: None,
+            encrypted_public_key: None,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/secrets_manager_subscribe_request_model.rs b/crates/bitwarden-api-api/src/models/secrets_manager_subscribe_request_model.rs
new file mode 100644
index 000000000..2510d8f2c
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/secrets_manager_subscribe_request_model.rs
@@ -0,0 +1,29 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct SecretsManagerSubscribeRequestModel {
+    #[serde(rename = "additionalSmSeats")]
+    pub additional_sm_seats: i32,
+    #[serde(rename = "additionalServiceAccounts")]
+    pub additional_service_accounts: i32,
+}
+
+impl SecretsManagerSubscribeRequestModel {
+    pub fn new(
+        additional_sm_seats: i32,
+        additional_service_accounts: i32,
+    ) -> SecretsManagerSubscribeRequestModel {
+        SecretsManagerSubscribeRequestModel {
+            additional_sm_seats,
+            additional_service_accounts,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model.rs b/crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model.rs
new file mode 100644
index 000000000..5be4d8bb1
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model.rs
@@ -0,0 +1,41 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct ServiceAccountSecretsDetailsResponseModel {
+    #[serde(rename = "object", skip_serializing_if = "Option::is_none")]
+    pub object: Option<String>,
+    #[serde(rename = "id", skip_serializing_if = "Option::is_none")]
+    pub id: Option<uuid::Uuid>,
+    #[serde(rename = "organizationId", skip_serializing_if = "Option::is_none")]
+    pub organization_id: Option<uuid::Uuid>,
+    #[serde(rename = "name", skip_serializing_if = "Option::is_none")]
+    pub name: Option<String>,
+    #[serde(rename = "creationDate", skip_serializing_if = "Option::is_none")]
+    pub creation_date: Option<String>,
+    #[serde(rename = "revisionDate", skip_serializing_if = "Option::is_none")]
+    pub revision_date: Option<String>,
+    #[serde(rename = "accessToSecrets", skip_serializing_if = "Option::is_none")]
+    pub access_to_secrets: Option<i32>,
+}
+
+impl ServiceAccountSecretsDetailsResponseModel {
+    pub fn new() -> ServiceAccountSecretsDetailsResponseModel {
+        ServiceAccountSecretsDetailsResponseModel {
+            object: None,
+            id: None,
+            organization_id: None,
+            name: None,
+            creation_date: None,
+            revision_date: None,
+            access_to_secrets: None,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model_list_response_model.rs b/crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model_list_response_model.rs
new file mode 100644
index 000000000..5edfbefba
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/service_account_secrets_details_response_model_list_response_model.rs
@@ -0,0 +1,29 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct ServiceAccountSecretsDetailsResponseModelListResponseModel {
+    #[serde(rename = "object", skip_serializing_if = "Option::is_none")]
+    pub object: Option<String>,
+    #[serde(rename = "data", skip_serializing_if = "Option::is_none")]
+    pub data: Option<Vec<crate::models::ServiceAccountSecretsDetailsResponseModel>>,
+    #[serde(rename = "continuationToken", skip_serializing_if = "Option::is_none")]
+    pub continuation_token: Option<String>,
+}
+
+impl ServiceAccountSecretsDetailsResponseModelListResponseModel {
+    pub fn new() -> ServiceAccountSecretsDetailsResponseModelListResponseModel {
+        ServiceAccountSecretsDetailsResponseModelListResponseModel {
+            object: None,
+            data: None,
+            continuation_token: None,
+        }
+    }
+}
diff --git a/crates/bitwarden-api-api/src/models/subscription_response_model.rs b/crates/bitwarden-api-api/src/models/subscription_response_model.rs
index 2ebba2a44..c21cbdbea 100644
--- a/crates/bitwarden-api-api/src/models/subscription_response_model.rs
+++ b/crates/bitwarden-api-api/src/models/subscription_response_model.rs
@@ -22,6 +22,8 @@ pub struct SubscriptionResponseModel {
     pub upcoming_invoice: Option<Box<crate::models::BillingSubscriptionUpcomingInvoice>>,
     #[serde(rename = "subscription", skip_serializing_if = "Option::is_none")]
     pub subscription: Option<Box<crate::models::BillingSubscription>>,
+    #[serde(rename = "discount", skip_serializing_if = "Option::is_none")]
+    pub discount: Option<Box<crate::models::BillingCustomerDiscount>>,
     #[serde(rename = "license", skip_serializing_if = "Option::is_none")]
     pub license: Option<Box<crate::models::UserLicense>>,
     #[serde(rename = "expiration", skip_serializing_if = "Option::is_none")]
@@ -39,6 +41,7 @@ impl SubscriptionResponseModel {
             max_storage_gb: None,
             upcoming_invoice: None,
             subscription: None,
+            discount: None,
             license: None,
             expiration: None,
             using_in_app_purchase: None,
diff --git a/crates/bitwarden-api-api/src/models/update_devices_trust_request_model.rs b/crates/bitwarden-api-api/src/models/update_devices_trust_request_model.rs
new file mode 100644
index 000000000..e4d381d51
--- /dev/null
+++ b/crates/bitwarden-api-api/src/models/update_devices_trust_request_model.rs
@@ -0,0 +1,43 @@
+/*
+ * Bitwarden Internal API
+ *
+ * No description provided (generated by Openapi Generator https://github.com/openapitools/openapi-generator)
+ *
+ * The version of the OpenAPI document: latest
+ *
+ * Generated by: https://openapi-generator.tech
+ */
+
+#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
+pub struct UpdateDevicesTrustRequestModel {
+    #[serde(rename = "masterPasswordHash", skip_serializing_if = "Option::is_none")]
+    pub master_password_hash: Option<String>,
+    #[serde(rename = "otp", skip_serializing_if = "Option::is_none")]
+    pub otp: Option<String>,
+    #[serde(
+        rename = "authRequestAccessCode",
+        skip_serializing_if = "Option::is_none"
+    )]
+    pub auth_request_access_code: Option<String>,
+    #[serde(rename = "secret", skip_serializing_if = "Option::is_none")]
+    pub secret: Option<String>,
+    #[serde(rename = "currentDevice")]
+    pub current_device: Box<crate::models::DeviceKeysUpdateRequestModel>,
+    #[serde(rename = "otherDevices", skip_serializing_if = "Option::is_none")]
+    pub other_devices: Option<Vec<crate::models::OtherDeviceKeysUpdateRequestModel>>,
+}
+
+impl UpdateDevicesTrustRequestModel {
+    pub fn new(
+        current_device: crate::models::DeviceKeysUpdateRequestModel,
+    ) -> UpdateDevicesTrustRequestModel {
+        UpdateDevicesTrustRequestModel {
+            master_password_hash: None,
+            otp: None,
+            auth_request_access_code: None,
+            secret: None,
+            current_device: Box::new(current_device),
+            other_devices: None,
+        }
+    }
+}

From b51a5d6b522906d277895ee3eb8e893e80744d1d Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Thu, 30 Nov 2023 19:00:54 +0100
Subject: [PATCH 42/55] [PM-4272] Expose fingerprint to uniffi (#372)

---
 crates/bitwarden-uniffi/src/docs.rs           |  4 +++
 crates/bitwarden-uniffi/src/lib.rs            |  6 ++++
 crates/bitwarden-uniffi/src/platform/mod.rs   | 16 +++++++++
 crates/bitwarden/src/client/client.rs         |  2 +-
 .../src/platform/generate_fingerprint.rs      |  1 +
 languages/kotlin/doc.md                       | 33 +++++++++++++++++++
 support/docs/docs.ts                          |  1 +
 7 files changed, 62 insertions(+), 1 deletion(-)
 create mode 100644 crates/bitwarden-uniffi/src/platform/mod.rs

diff --git a/crates/bitwarden-uniffi/src/docs.rs b/crates/bitwarden-uniffi/src/docs.rs
index 45fabb0b7..d66c78002 100644
--- a/crates/bitwarden-uniffi/src/docs.rs
+++ b/crates/bitwarden-uniffi/src/docs.rs
@@ -2,6 +2,7 @@ use bitwarden::{
     auth::password::MasterPasswordPolicyOptions,
     client::kdf::Kdf,
     mobile::crypto::{InitOrgCryptoRequest, InitUserCryptoRequest},
+    platform::FingerprintRequest,
     tool::{ExportFormat, PassphraseGeneratorRequest, PasswordGeneratorRequest},
     vault::{
         Cipher, CipherView, Collection, Folder, FolderView, Send, SendListView, SendView,
@@ -34,6 +35,9 @@ pub enum DocRef {
     // Exporters
     ExportFormat(ExportFormat),
 
+    // Platform
+    FingerprintRequest(FingerprintRequest),
+
     // Auth
     MasterPasswordPolicyOptions(MasterPasswordPolicyOptions),
 
diff --git a/crates/bitwarden-uniffi/src/lib.rs b/crates/bitwarden-uniffi/src/lib.rs
index 5035f22b9..13253d9a6 100644
--- a/crates/bitwarden-uniffi/src/lib.rs
+++ b/crates/bitwarden-uniffi/src/lib.rs
@@ -9,6 +9,7 @@ use bitwarden::client::client_settings::ClientSettings;
 pub mod auth;
 pub mod crypto;
 mod error;
+pub mod platform;
 pub mod tool;
 mod uniffi_support;
 pub mod vault;
@@ -18,6 +19,7 @@ pub mod docs;
 
 use crypto::ClientCrypto;
 use error::Result;
+use platform::ClientPlatform;
 use tool::ClientGenerators;
 use vault::ClientVault;
 
@@ -42,6 +44,10 @@ impl Client {
         Arc::new(ClientVault(self))
     }
 
+    pub fn platform(self: Arc<Self>) -> Arc<ClientPlatform> {
+        Arc::new(ClientPlatform(self))
+    }
+
     /// Generator operations
     pub fn generators(self: Arc<Self>) -> Arc<ClientGenerators> {
         Arc::new(ClientGenerators(self))
diff --git a/crates/bitwarden-uniffi/src/platform/mod.rs b/crates/bitwarden-uniffi/src/platform/mod.rs
new file mode 100644
index 000000000..f4eaaa095
--- /dev/null
+++ b/crates/bitwarden-uniffi/src/platform/mod.rs
@@ -0,0 +1,16 @@
+use std::sync::Arc;
+
+use bitwarden::platform::FingerprintRequest;
+
+use crate::{error::Result, Client};
+
+#[derive(uniffi::Object)]
+pub struct ClientPlatform(pub(crate) Arc<Client>);
+
+#[uniffi::export]
+impl ClientPlatform {
+    /// Fingerprint
+    pub async fn fingerprint(&self, req: FingerprintRequest) -> Result<String> {
+        Ok(self.0 .0.read().await.fingerprint(&req)?.fingerprint)
+    }
+}
diff --git a/crates/bitwarden/src/client/client.rs b/crates/bitwarden/src/client/client.rs
index 960ca9bda..5133a5c01 100644
--- a/crates/bitwarden/src/client/client.rs
+++ b/crates/bitwarden/src/client/client.rs
@@ -262,7 +262,7 @@ impl Client {
     }
 
     #[cfg(feature = "internal")]
-    pub fn fingerprint(&mut self, input: &FingerprintRequest) -> Result<FingerprintResponse> {
+    pub fn fingerprint(&self, input: &FingerprintRequest) -> Result<FingerprintResponse> {
         generate_fingerprint(input)
     }
 }
diff --git a/crates/bitwarden/src/platform/generate_fingerprint.rs b/crates/bitwarden/src/platform/generate_fingerprint.rs
index 800d6e847..e9562ab34 100644
--- a/crates/bitwarden/src/platform/generate_fingerprint.rs
+++ b/crates/bitwarden/src/platform/generate_fingerprint.rs
@@ -7,6 +7,7 @@ use crate::{crypto::fingerprint, error::Result, util::BASE64_ENGINE};
 
 #[derive(Serialize, Deserialize, Debug, JsonSchema)]
 #[serde(rename_all = "camelCase", deny_unknown_fields)]
+#[cfg_attr(feature = "mobile", derive(uniffi::Record))]
 pub struct FingerprintRequest {
     /// The input material, used in the fingerprint generation process.
     pub fingerprint_material: String,
diff --git a/languages/kotlin/doc.md b/languages/kotlin/doc.md
index fd65c7b71..652e09813 100644
--- a/languages/kotlin/doc.md
+++ b/languages/kotlin/doc.md
@@ -327,6 +327,19 @@ Decrypt password history
 
 **Output**: std::result::Result<Vec,BitwardenError>
 
+## ClientPlatform
+
+### `fingerprint`
+
+Fingerprint
+
+**Arguments**:
+
+- self:
+- req: [FingerprintRequest](#fingerprintrequest)
+
+**Output**: std::result::Result<String,BitwardenError>
+
 ## ClientSends
 
 ### `encrypt`
@@ -818,6 +831,26 @@ implementations.
 </tr>
 </table>
 
+## `FingerprintRequest`
+
+<table>
+<tr>
+    <th>Key</th>
+    <th>Type</th>
+    <th>Description</th>
+</tr>
+<tr>
+    <th>fingerprintMaterial</th>
+    <th>string</th>
+    <th>The input material, used in the fingerprint generation process.</th>
+</tr>
+<tr>
+    <th>publicKey</th>
+    <th>string</th>
+    <th>The user&#x27;s public key encoded with base64.</th>
+</tr>
+</table>
+
 ## `Folder`
 
 <table>
diff --git a/support/docs/docs.ts b/support/docs/docs.ts
index 14603dd57..b547b4502 100644
--- a/support/docs/docs.ts
+++ b/support/docs/docs.ts
@@ -28,6 +28,7 @@ const rootElements = [
   "ClientFolders",
   "ClientGenerators",
   "ClientPasswordHistory",
+  "ClientPlatform",
   "ClientSends",
   "ClientVault",
 ];

From b6c6532c441990e1c87bd9817449b1c128154377 Mon Sep 17 00:00:00 2001
From: Milos Trifunovic <MaliRobot@users.noreply.github.com>
Date: Thu, 30 Nov 2023 19:36:04 +0100
Subject: [PATCH 43/55] Ruby SDK (#245)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

## Type of change

<!-- (mark with an `X`) -->

```
- [ ] Bug fix
- [ x] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective

Ruby wrapper for Bitwarden SDK.

## Code changes

<!--Explain the changes you've made to each file or major component.
This should help the reviewer understand your changes-->
<!--Also refer to any related changes or PRs in other repositories-->

First version which introduces basic functionality to interact with
projects and clients.

---------

Co-authored-by: Milos Trifunovic <milos.trifunovic@symphony.is>
Co-authored-by: Miloš Trifunović <84377717+milost77@users.noreply.github.com>
Co-authored-by: Oscar Hinton <Hinton@users.noreply.github.com>
Co-authored-by: Vince Grassia <593223+vgrassia@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
---
 .github/workflows/generate_schemas.yml        |   7 +
 .github/workflows/publish-ruby.yml            |  88 +++++++++++++
 languages/ruby/.gitignore                     |   3 +
 languages/ruby/CHANGELOG.md                   |   5 +
 languages/ruby/README.md                      |  95 ++++++++++++++
 languages/ruby/bitwarden_sdk/Rakefile         |   8 ++
 .../ruby/bitwarden_sdk/bitwarden-sdk.gemspec  |  47 +++++++
 .../ruby/bitwarden_sdk/lib/bitwarden-sdk.rb   |  56 ++++++++
 .../ruby/bitwarden_sdk/lib/bitwarden_error.rb |   9 ++
 .../ruby/bitwarden_sdk/lib/bitwarden_lib.rb   |  35 +++++
 .../ruby/bitwarden_sdk/lib/command_runner.rb  |  15 +++
 .../lib/extended_schemas/schemas.rb           |  64 +++++++++
 languages/ruby/bitwarden_sdk/lib/projects.rb  | 116 ++++++++++++++++
 languages/ruby/bitwarden_sdk/lib/secrets.rb   | 124 ++++++++++++++++++
 languages/ruby/bitwarden_sdk/lib/version.rb   |   5 +
 .../ruby/bitwarden_sdk/sig/bitwarden-sdk.rbs  |  13 ++
 .../bitwarden_sdk/sig/bitwarden_settings.rbs  |   8 ++
 .../ruby/bitwarden_sdk/sig/command_runner.rbs |   4 +
 .../bitwarden_sdk/sig/projects_client.rbs     |  17 +++
 languages/ruby/bitwarden_sdk/sig/sdk.rbs      |   3 +
 .../ruby/bitwarden_sdk/sig/secrets_client.rbs |  18 +++
 languages/ruby/examples/example.rb            |  67 ++++++++++
 sig/bitwarden_sdk/bitwarden_client.rbs        |   5 +
 support/scripts/schemas.ts                    |  10 ++
 24 files changed, 822 insertions(+)
 create mode 100644 .github/workflows/publish-ruby.yml
 create mode 100644 languages/ruby/.gitignore
 create mode 100644 languages/ruby/CHANGELOG.md
 create mode 100644 languages/ruby/README.md
 create mode 100644 languages/ruby/bitwarden_sdk/Rakefile
 create mode 100644 languages/ruby/bitwarden_sdk/bitwarden-sdk.gemspec
 create mode 100644 languages/ruby/bitwarden_sdk/lib/bitwarden-sdk.rb
 create mode 100644 languages/ruby/bitwarden_sdk/lib/bitwarden_error.rb
 create mode 100644 languages/ruby/bitwarden_sdk/lib/bitwarden_lib.rb
 create mode 100644 languages/ruby/bitwarden_sdk/lib/command_runner.rb
 create mode 100644 languages/ruby/bitwarden_sdk/lib/extended_schemas/schemas.rb
 create mode 100644 languages/ruby/bitwarden_sdk/lib/projects.rb
 create mode 100644 languages/ruby/bitwarden_sdk/lib/secrets.rb
 create mode 100644 languages/ruby/bitwarden_sdk/lib/version.rb
 create mode 100644 languages/ruby/bitwarden_sdk/sig/bitwarden-sdk.rbs
 create mode 100644 languages/ruby/bitwarden_sdk/sig/bitwarden_settings.rbs
 create mode 100644 languages/ruby/bitwarden_sdk/sig/command_runner.rbs
 create mode 100644 languages/ruby/bitwarden_sdk/sig/projects_client.rbs
 create mode 100644 languages/ruby/bitwarden_sdk/sig/sdk.rbs
 create mode 100644 languages/ruby/bitwarden_sdk/sig/secrets_client.rbs
 create mode 100644 languages/ruby/examples/example.rb
 create mode 100644 sig/bitwarden_sdk/bitwarden_client.rbs

diff --git a/.github/workflows/generate_schemas.yml b/.github/workflows/generate_schemas.yml
index 7eba684c4..b0517ea36 100644
--- a/.github/workflows/generate_schemas.yml
+++ b/.github/workflows/generate_schemas.yml
@@ -57,6 +57,13 @@ jobs:
           path: ${{ github.workspace }}/languages/python/BitwardenClient/schemas.py
           if-no-files-found: error
 
+      - name: Upload ruby schemas artifact
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        with:
+          name: schemas.rb
+          path: ${{ github.workspace }}/languages/ruby/bitwarden_sdk/lib/schemas.rb
+          if-no-files-found: error
+
       - name: Upload json schemas artifact
         uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         with:
diff --git a/.github/workflows/publish-ruby.yml b/.github/workflows/publish-ruby.yml
new file mode 100644
index 000000000..da641dce5
--- /dev/null
+++ b/.github/workflows/publish-ruby.yml
@@ -0,0 +1,88 @@
+name: Publish Ruby SDK
+
+on:
+  pull_request:
+    branches:
+      - master
+
+jobs:
+  generate_schemas:
+    uses: ./.github/workflows/generate_schemas.yml
+
+  build_rust:
+    uses: ./.github/workflows/build-rust-cross-platform.yml
+
+  build_ruby:
+    name: Build Ruby
+    runs-on: ubuntu-22.04
+    needs:
+      - generate_schemas
+      - build_rust
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@54a18e26dbbb1eabc604f317ade9a5788dddef81 # v1.159.0
+        with:
+          ruby-version: 3.2
+
+      - name: Download Ruby schemas artifact
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: schemas.rb
+          path: languages/ruby/bitwarden_sdk/lib
+
+      - name: Download x86_64-apple-darwin files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-apple-darwin
+          path: temp/macos-x64
+
+      - name: Download aarch64-apple-darwin files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-aarch64-apple-darwin
+          path: temp/macos-arm64
+
+      - name: Download x86_64-unknown-linux-gnu files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-unknown-linux-gnu
+          path: temp/ubuntu-x64
+
+      - name: Download x86_64-pc-windows-msvc files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-pc-windows-msvc
+          path: temp/windows-x64
+
+      - name: Copy lib files
+        run: |
+          mkdir -p languages/ruby/bitwarden_sdk/lib/macos-arm64
+          mkdir -p languages/ruby/bitwarden_sdk/lib/ubuntu-x64
+          mkdir -p languages/ruby/bitwarden_sdk/lib/macos-x64
+          mkdir -p languages/ruby/bitwarden_sdk/lib/windows-x64
+
+          platforms=("macos-arm64" "ubuntu-x64" "macos-x64" "windows-x64")
+          files=("libbitwarden_c.dylib" "libbitwarden_c.so" "libbitwarden_c.dylib" "bitwarden_c.dll")
+
+          for ((i=0; i<${#platforms[@]}; i++)); do
+            cp "temp/${platforms[$i]}/${files[$i]}" "languages/ruby/bitwarden_sdk/lib/${platforms[$i]}/${files[$i]}"
+          done
+        shell: bash
+
+      - name: Build gem
+        run: gem build bitwarden-sdk.gemspec
+        working-directory: languages/ruby/bitwarden_sdk
+
+      - name: Push gem to Rubygems
+        run: |
+          mkdir -p $HOME/.gem
+          touch $HOME/.gem/credentials
+          chmod 0600 $HOME/.gem/credentials
+          printf -- "---\n:rubygems_api_key: ${GEM_HOST_API_KEY}\n" > $HOME/.gem/credentials
+          gem push *.gem
+        env:
+          GEM_HOST_API_KEY: ${{ secrets.GEM_HOST_API_KEY }}
+        working-directory: languages/ruby/bitwarden_sdk
diff --git a/languages/ruby/.gitignore b/languages/ruby/.gitignore
new file mode 100644
index 000000000..f0e7bd4c1
--- /dev/null
+++ b/languages/ruby/.gitignore
@@ -0,0 +1,3 @@
+*.lock
+*.gem
+bitwarden_sdk/lib/schemas.rb
diff --git a/languages/ruby/CHANGELOG.md b/languages/ruby/CHANGELOG.md
new file mode 100644
index 000000000..91c5ee3c2
--- /dev/null
+++ b/languages/ruby/CHANGELOG.md
@@ -0,0 +1,5 @@
+## [Unreleased]
+
+## [0.1.0] - 2023-09-19
+
+- Initial release
diff --git a/languages/ruby/README.md b/languages/ruby/README.md
new file mode 100644
index 000000000..d02d5c500
--- /dev/null
+++ b/languages/ruby/README.md
@@ -0,0 +1,95 @@
+# Bitwarden Secrets Manager SDK
+
+Ruby bindings for interacting with the [Bitwarden Secrets Manager]. This is a beta release and might be missing some functionality.
+
+## Installation
+
+Requirements: Ruby >= 3.0
+
+Install gem: `gem install bitwarden-sdk`
+
+Import it: require 'bitwarden-sdk'
+
+
+## Usage
+
+To interact with client first you need to obtain access token from Bitwarden.
+Client will be initialized with default client settings if they are not provided
+via env variables.
+
+```ruby
+require 'bitwarden-sdk'
+
+# then you can initialize BitwardenSettings:
+bitwarden_settings = BitwardenSDK::BitwardenSettings.new(
+  'https://api.bitwarden.com',
+  'https://identity.bitwarden.com'
+)
+
+# By passing these setting you can initialize BitwardenClient
+
+bw_client = BitwardenSDK::BitwardenClient.new(bitwarden_settings)
+response = bw_client.access_token_login(token)
+puts response
+```
+
+After successful authorization you can interact with client to manage your projects and secrets.
+```ruby
+
+# CREATE project
+project_name = 'Test project 1'
+response = bw_client.project_client.create_project(project_name, organization_id)
+puts response
+project_id = response['id']
+
+# GET project
+response = bw_client.project_client.get(project_id)
+puts response
+
+# LIST projects
+response = bw_client.project_client.list_projects(organization_id)
+puts response
+
+# UPDATE projects
+name = 'Updated test project 1'
+response = bw_client.project_client.update_project(project_id, name, organization_id)
+puts response
+
+# DELETE project
+response = bw_client.project_client.delete_projects([project_id])
+puts response
+```
+
+Similarly, you interact with secrets:
+```ruby
+# CREATE secret
+key = 'AWS-SES'
+note = 'Private account'
+value = '8t27.dfj;'
+response = bw_client.secrets_client.create(key, note, organization_id, [project_id], value)
+puts response
+secret_id = response['id']
+
+# GET secret
+response = bw_client.secrets_client.get(secret_id)
+puts response
+
+# GET secret by ids
+response = bw_client.secrets_client.get_by_ids([secret_id])
+puts response
+
+# LIST secrets
+response = bw_client.secrets_client.list(organization_id)
+puts response
+
+# UPDATE secret
+note = 'updated password'
+value = '7I.ert10AjK'
+response = bw_client.secrets_client.update(secret_id, key, note,organization_id, [project_id], value)
+puts response
+
+# DELETE secret
+response = bw_client.secrets_client.delete_secret([secret_id])
+puts response
+```
+[Bitwarden Secrets Manager]: https://bitwarden.com/products/secrets-manager/
diff --git a/languages/ruby/bitwarden_sdk/Rakefile b/languages/ruby/bitwarden_sdk/Rakefile
new file mode 100644
index 000000000..192414345
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/Rakefile
@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+
+require "bundler/gem_tasks"
+require "rubocop/rake_task"
+
+RuboCop::RakeTask.new
+
+task default: :rubocop
diff --git a/languages/ruby/bitwarden_sdk/bitwarden-sdk.gemspec b/languages/ruby/bitwarden_sdk/bitwarden-sdk.gemspec
new file mode 100644
index 000000000..12a4f5fdc
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/bitwarden-sdk.gemspec
@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+require_relative 'lib/version'
+
+Gem::Specification.new do |spec|
+  spec.name = 'bitwarden-sdk'
+  spec.version = BitwardenSDK::VERSION
+  spec.authors = ['Bitwarden Inc.']
+  spec.email = ['hello@bitwarden_sdk.com']
+
+  spec.summary = 'Bitwarden Secrets Manager SDK.'
+  spec.description = 'Ruby wrapper for Bitwarden secrets manager SDK.'
+  spec.homepage = 'https://bitwarden.com/products/secrets-manager/'
+  spec.required_ruby_version = '>= 3.0.0'
+
+  spec.metadata['homepage_uri'] = spec.homepage
+  spec.metadata['source_code_uri'] = 'https://github.com/bitwarden/sdk'
+  spec.metadata['changelog_uri'] = 'https://github.com/bitwarden/sdk/blob/master/languages/ruby/CHANGELOG.md'
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files = Dir.chdir(__dir__) do
+    `git ls-files -z`.split("\x0").reject do |f|
+      (File.expand_path(f) == __FILE__) || f.start_with?(*%w[bin/ test/ spec/ features/ .git .circleci appveyor])
+    end
+  end
+
+  spec.files += Dir.glob('lib/ubuntu-x64/**/*')
+  spec.files += Dir.glob('lib/macos-x64/**/*')
+  spec.files += Dir.glob('lib/windows-x64/**/*')
+  spec.files += Dir.glob('lib/macos-arm64/**/*')
+  spec.files += Dir.glob('lib/schemas.rb')
+
+  spec.bindir = 'exe'
+  spec.executables = spec.files.grep(%r{\Aexe/}) { |f| File.basename(f) }
+  spec.require_paths = ['lib']
+
+  # Uncomment to register a new dependency of your gem
+  # spec.add_dependency "example-gem", "~> 1.0"
+  spec.add_dependency 'dry-struct', '~> 1.6'
+  spec.add_dependency 'dry-types', '~> 1.7'
+  spec.add_dependency 'ffi', '~> 1.15'
+  spec.add_dependency 'json', '~> 2.6'
+  spec.add_dependency 'rake', '~> 13.0'
+  spec.add_dependency 'rubocop', '~> 1.21'
+
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/bitwarden-sdk.rb b/languages/ruby/bitwarden_sdk/lib/bitwarden-sdk.rb
new file mode 100644
index 000000000..c2ce7e576
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/bitwarden-sdk.rb
@@ -0,0 +1,56 @@
+# frozen_string_literal: true
+
+require 'json'
+require 'dry-types'
+
+require_relative 'schemas'
+require_relative 'extended_schemas/schemas'
+require_relative 'command_runner'
+require_relative 'bitwarden_lib'
+require_relative 'bitwarden_error'
+require_relative 'projects'
+require_relative 'secrets'
+
+module BitwardenSDK
+  class BitwardenSettings
+    attr_accessor :api_url, :identity_url
+
+    def initialize(api_url, identity_url)
+      # if api_url.nil? || identity_url.nil?
+      #   raise ArgumentError, "api_url and identity_url cannot be nil"
+      # end
+
+      @api_url = api_url
+      @identity_url = identity_url
+    end
+  end
+
+  class BitwardenClient
+    attr_reader :bitwarden, :project_client, :secrets_client
+
+    def initialize(bitwarden_settings)
+      client_settings = ClientSettings.new(
+        api_url: bitwarden_settings.api_url,
+        identity_url: bitwarden_settings.identity_url,
+        user_agent: 'Bitwarden RUBY-SDK',
+        device_type: nil
+      )
+
+      @bitwarden = BitwardenLib
+      @handle = @bitwarden.init(client_settings.to_json)
+      @command_runner = CommandRunner.new(@bitwarden, @handle)
+      @project_client = ProjectsClient.new(@command_runner)
+      @secrets_client = SecretsClient.new(@command_runner)
+    end
+
+    def access_token_login(access_token)
+      access_token_request = AccessTokenLoginRequest.new(access_token: access_token)
+      @command_runner.run(SelectiveCommand.new(access_token_login: access_token_request))
+      nil
+    end
+
+    def free_mem
+      @bitwarden.free_mem(@handle)
+    end
+  end
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/bitwarden_error.rb b/languages/ruby/bitwarden_sdk/lib/bitwarden_error.rb
new file mode 100644
index 000000000..ec9adf932
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/bitwarden_error.rb
@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+module BitwardenSDK
+  class BitwardenError < StandardError
+    def initialize(message = 'Error getting response')
+      super(message)
+    end
+  end
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/bitwarden_lib.rb b/languages/ruby/bitwarden_sdk/lib/bitwarden_lib.rb
new file mode 100644
index 000000000..e09541788
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/bitwarden_lib.rb
@@ -0,0 +1,35 @@
+# frozen_string_literal: true
+
+require 'ffi'
+
+module BitwardenSDK
+  module BitwardenLib
+    extend FFI::Library
+
+    def self.mac_with_intel?
+      `uname -m`.strip == 'x86_64'
+    end
+
+    ffi_lib case RUBY_PLATFORM
+            when /darwin/
+              local_file = if mac_with_intel?
+                             File.expand_path('macos-x64/libbitwarden_c.dylib', __dir__)
+                           else
+                             File.expand_path('macos-arm64/libbitwarden_c.dylib', __dir__)
+                           end
+              File.exist?(local_file) ? local_file : File.expand_path('../../../../target/debug/libbitwarden_c.dylib', __dir__)
+            when /linux/
+              local_file = File.expand_path('ubuntu-x64/libbitwarden_c.so', __dir__)
+              File.exist?(local_file) ? local_file : File.expand_path('../../../../target/debug/libbitwarden_c.so', __dir__)
+            when /mswin|mingw/
+              local_file = File.expand_path('windows-x64/bitwarden_c.dll', __dir__)
+              File.exist?(local_file) ? local_file : File.expand_path('../../../../target/debug/bitwarden_c.dll', __dir__)
+            else
+              raise "Unsupported platform: #{RUBY_PLATFORM}"
+            end
+
+    attach_function :init, [:string], :pointer
+    attach_function :run_command, %i[string pointer], :string
+    attach_function :free_mem, [:pointer], :void
+  end
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/command_runner.rb b/languages/ruby/bitwarden_sdk/lib/command_runner.rb
new file mode 100644
index 000000000..7da2269b6
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/command_runner.rb
@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module BitwardenSDK
+  class CommandRunner
+    def initialize(bitwarden_sdk, handle)
+      @bitwarden_sdk = bitwarden_sdk
+      @handle = handle
+    end
+
+    # @param [Dry-Struct] cmd
+    def run(cmd)
+      @bitwarden_sdk.run_command(cmd.to_json, @handle)
+    end
+  end
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/extended_schemas/schemas.rb b/languages/ruby/bitwarden_sdk/lib/extended_schemas/schemas.rb
new file mode 100644
index 000000000..be7ca2cbc
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/extended_schemas/schemas.rb
@@ -0,0 +1,64 @@
+
+module BitwardenSDK
+    class SelectiveCommand < Command
+      attribute :password_login,     PasswordLoginRequest.optional.default(nil)
+      attribute :api_key_login,      APIKeyLoginRequest.optional.default(nil)
+      attribute :access_token_login, AccessTokenLoginRequest.optional.default(nil)
+      attribute :get_user_api_key,   SecretVerificationRequest.optional.default(nil)
+      attribute :fingerprint,        FingerprintRequest.optional.default(nil)
+      attribute :sync,               SyncRequest.optional.default(nil)
+      attribute :secrets,            SecretsCommand.optional.default(nil)
+      attribute :projects,           ProjectsCommand.optional.default(nil)
+
+      def to_dynamic
+        {
+          "passwordLogin"    => password_login&.to_dynamic,
+          "apiKeyLogin"      => api_key_login&.to_dynamic,
+          "accessTokenLogin" => access_token_login&.to_dynamic,
+          "getUserApiKey"    => get_user_api_key&.to_dynamic,
+          "fingerprint"      => fingerprint&.to_dynamic,
+          "sync"             => sync&.to_dynamic,
+          "secrets"          => secrets&.to_dynamic,
+          "projects"         => projects&.to_dynamic,
+        }.compact
+      end
+    end
+
+    class SelectiveProjectsCommand < ProjectsCommand
+      attribute :get,    ProjectGetRequest.optional.default(nil)
+      attribute :create, ProjectCreateRequest.optional.default(nil)
+      attribute :list,   ProjectsListRequest.optional.default(nil)
+      attribute :update, ProjectPutRequest.optional.default(nil)
+      attribute :delete, ProjectsDeleteRequest.optional.default(nil)
+
+      def to_dynamic
+        {
+          "get"    => get&.to_dynamic,
+          "create" => create&.to_dynamic,
+          "list"   => list&.to_dynamic,
+          "update" => update&.to_dynamic,
+          "delete" => delete&.to_dynamic,
+        }.compact
+      end
+    end
+
+    class SelectiveSecretsCommand < SecretsCommand
+      attribute :get,        SecretGetRequest.optional.default(nil)
+      attribute :get_by_ids, SecretsGetRequest.optional.default(nil)
+      attribute :create,     SecretCreateRequest.optional.default(nil)
+      attribute :list,       SecretIdentifiersRequest.optional.default(nil)
+      attribute :update,     SecretPutRequest.optional.default(nil)
+      attribute :delete,     SecretsDeleteRequest.optional.default(nil)
+
+      def to_dynamic
+        {
+          "get"      => get&.to_dynamic,
+          "getByIds" => get_by_ids&.to_dynamic,
+          "create"   => create&.to_dynamic,
+          "list"     => list&.to_dynamic,
+          "update"   => update&.to_dynamic,
+          "delete"   => delete&.to_dynamic,
+        }.compact
+      end
+    end
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/projects.rb b/languages/ruby/bitwarden_sdk/lib/projects.rb
new file mode 100644
index 000000000..4363fcb9e
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/projects.rb
@@ -0,0 +1,116 @@
+# frozen_string_literal: true
+
+require_relative 'bitwarden_error'
+
+module BitwardenSDK
+  class ProjectsClient
+    def initialize(command_runner)
+      @command_runner = command_runner
+    end
+
+    def create_project(project_name, organization_id)
+      project_create_request = ProjectCreateRequest.new(
+        project_create_request_name: project_name,
+        organization_id: organization_id
+      )
+      command = create_command(
+        create: project_create_request
+      )
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+        projects_response.key?('data')
+        return projects_response['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def get(project_id)
+      project_get_request = ProjectGetRequest.new(id: project_id)
+      command = create_command(get: project_get_request)
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+        projects_response.key?('data')
+        return projects_response['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def list_projects(organization_id)
+      project_list_request = ProjectsListRequest.new(organization_id: organization_id)
+      command = create_command(list: project_list_request)
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectsResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+         projects_response.key?('data') && projects_response['data'].key?('data')
+        return projects_response['data']['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def update_project(id, project_put_request_name, organization_id)
+      project_put_request = ProjectPutRequest.new(
+        id: id,
+        project_put_request_name: project_put_request_name,
+        organization_id: organization_id
+      )
+      command = create_command(
+        update: project_put_request
+      )
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+         projects_response.key?('data')
+        return projects_response['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    def delete_projects(ids)
+      project_delete_request = ProjectsDeleteRequest.new(ids: ids)
+      command = create_command(delete: project_delete_request)
+      response = parse_response(command)
+
+      projects_response = ResponseForProjectsDeleteResponse.from_json!(response).to_dynamic
+
+      if projects_response.key?('success') && projects_response['success'] == true &&
+         projects_response.key?('data') && projects_response['data'].key?('data')
+        return projects_response['data']['data']
+      end
+
+      error_response(projects_response)
+    end
+
+    private
+
+    def error_response(response)
+      raise BitwardenError, response['errorMessage'] if response.key?('errorMessage')
+
+      raise BitwardenError, 'Error while getting response'
+    end
+
+    def create_command(commands)
+      SelectiveCommand.new(projects: SelectiveProjectsCommand.new(commands))
+    end
+
+    def parse_response(command)
+      response = @command_runner.run(command)
+      raise BitwardenError, 'Error getting response' if response.nil?
+
+      response
+    end
+  end
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/secrets.rb b/languages/ruby/bitwarden_sdk/lib/secrets.rb
new file mode 100644
index 000000000..0eca98993
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/secrets.rb
@@ -0,0 +1,124 @@
+# frozen_string_literal: true
+
+require 'json'
+
+module BitwardenSDK
+  class SecretsClient
+    def initialize(command_runner)
+      @command_runner = command_runner
+    end
+
+    def get(id)
+      command = create_command(get: SecretGetRequest.new(id: id))
+      response = run_command(command)
+
+      secrets_response = ResponseForSecretResponse.from_json!(response).to_dynamic
+
+      if secrets_response.key?('success') && secrets_response['success'] == true &&
+         secrets_response.key?('data')
+        return secrets_response['data']
+      end
+
+      error_response(secrets_response)
+    end
+
+    def get_by_ids(ids)
+      command = create_command(get_by_ids: SecretsGetRequest.new(ids: ids))
+      response = run_command(command)
+
+      secrets_response = ResponseForSecretIdentifiersResponse.from_json!(response).to_dynamic
+
+      if secrets_response.key?('success') && secrets_response['success'] == true &&
+        secrets_response.key?('data') && secrets_response['data'].key?('data')
+        return secrets_response['data']['data']
+      end
+
+      error_response(secrets_response)
+    end
+
+    def create(key, note, organization_id, project_ids, value)
+      command = create_command(
+        create: SecretCreateRequest.new(
+          key: key, note: note, organization_id: organization_id, project_ids: project_ids, value: value
+        )
+      )
+      response = run_command(command)
+
+      secrets_response = ResponseForSecretResponse.from_json!(response).to_dynamic
+
+      if secrets_response.key?('success') && secrets_response['success'] == true &&
+         secrets_response.key?('data')
+        return secrets_response['data']
+      end
+
+      error_response(secrets_response)
+    end
+
+    def list(organization_id)
+      command = create_command(list: SecretIdentifiersRequest.new(organization_id: organization_id))
+      response = run_command(command)
+
+      secrets_response = ResponseForSecretIdentifiersResponse.from_json!(response).to_dynamic
+
+      if secrets_response.key?('success') && secrets_response['success'] == true &&
+        secrets_response.key?('data') && secrets_response['data'].key?('data')
+        return secrets_response['data']['data']
+      end
+
+      error_response(secrets_response)
+    end
+
+    def update(id, key, note, organization_id, project_ids, value)
+      command = create_command(
+        update: SecretPutRequest.new(
+          id: id, key: key, note: note, organization_id: organization_id, project_ids: project_ids, value: value
+        )
+      )
+      response = run_command(command)
+
+      secrets_response = ResponseForSecretResponse.from_json!(response).to_dynamic
+
+      if secrets_response.key?('success') && secrets_response['success'] == true &&
+         secrets_response.key?('data')
+        return secrets_response['data']
+      end
+
+      error_response(secrets_response)
+    end
+
+    def delete_secret(ids)
+      command = create_command(delete: SecretsDeleteRequest.new(ids: ids))
+      response = run_command(command)
+
+      secrets_response = ResponseForSecretsDeleteResponse.from_json!(response).to_dynamic
+
+      if secrets_response.key?('success') && secrets_response['success'] == true &&
+         secrets_response.key?('data') && secrets_response['data'].key?('data')
+        return secrets_response['data']['data']
+      end
+
+      error_response(secrets_response)
+    end
+
+    private
+
+    def error_response(response)
+      if response['errorMessage']
+        raise BitwardenError, response['errorMessage'] if response.key?('errorMessage')
+      else
+        raise BitwardenError, 'Error while getting response'
+      end
+    end
+
+    def create_command(commands)
+      SelectiveCommand.new(secrets: SelectiveSecretsCommand.new(commands))
+    end
+
+    def run_command(command)
+      response = @command_runner.run(command)
+      raise BitwardenError, 'Error getting response' if response.nil?
+
+      response
+    end
+  end
+end
diff --git a/languages/ruby/bitwarden_sdk/lib/version.rb b/languages/ruby/bitwarden_sdk/lib/version.rb
new file mode 100644
index 000000000..1fd8c02c1
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/lib/version.rb
@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+module BitwardenSDK
+  VERSION = '0.0.0'
+end
diff --git a/languages/ruby/bitwarden_sdk/sig/bitwarden-sdk.rbs b/languages/ruby/bitwarden_sdk/sig/bitwarden-sdk.rbs
new file mode 100644
index 000000000..3f6a73f6a
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/sig/bitwarden-sdk.rbs
@@ -0,0 +1,13 @@
+require_relative '../lib/schemas'
+
+class BitwardenClient
+  @command_runner: CommandRunner
+
+  attr_reader bitwarden: Module
+  attr_reader project_client: ProjectsClient
+  attr_reader secrets_client: SecretsClient
+
+  def initialize: (BitwardenSettings) -> void
+  def access_token_login: (String) -> JSON
+  def free_mem: () -> nil
+end
diff --git a/languages/ruby/bitwarden_sdk/sig/bitwarden_settings.rbs b/languages/ruby/bitwarden_sdk/sig/bitwarden_settings.rbs
new file mode 100644
index 000000000..154ee16e5
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/sig/bitwarden_settings.rbs
@@ -0,0 +1,8 @@
+require_relative '../lib/schemas'
+
+class BitwardenSettings
+  attr_accessor api_url: String
+  attr_accessor identity_url: String
+
+  def initialize: (String, String) -> void
+end
diff --git a/languages/ruby/bitwarden_sdk/sig/command_runner.rbs b/languages/ruby/bitwarden_sdk/sig/command_runner.rbs
new file mode 100644
index 000000000..7a7a17dd9
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/sig/command_runner.rbs
@@ -0,0 +1,4 @@
+class CommandRunner
+  @bitwarden_sdk: Module
+  def run: -> String
+end
diff --git a/languages/ruby/bitwarden_sdk/sig/projects_client.rbs b/languages/ruby/bitwarden_sdk/sig/projects_client.rbs
new file mode 100644
index 000000000..00c9e578d
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/sig/projects_client.rbs
@@ -0,0 +1,17 @@
+require_once '../lib/extended_schemas/schemas.rbs'
+require_once '../schemas.rbs'
+
+class ProjectsClient
+  @command_runner: CommandRunner
+  def initialize: (command_runner: CommandRunner) -> void
+  def create_project: (project_name: String, organization_id: String) -> ProjectsResponse
+  def get: (project_id: String) -> ProjectsResponse
+  def list_projects: (organization_id: String) -> Array(DatumElement)
+  def update_project: (id: String, project_put_request_name: String, organization_id: String) -> ProjectsResponse
+  def delete_projects: (ids: Array[String]) -> Array(ProjectDeleteResponse)
+
+  private
+
+  def create_command: (SelectiveProjectsCommand) -> SelectiveCommand
+  def parse_response: (ResponseForProjectResponse) -> ResponseForProjectResponse
+end
diff --git a/languages/ruby/bitwarden_sdk/sig/sdk.rbs b/languages/ruby/bitwarden_sdk/sig/sdk.rbs
new file mode 100644
index 000000000..260fa1420
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/sig/sdk.rbs
@@ -0,0 +1,3 @@
+module BitwardenSDK
+  VERSION: String
+end
diff --git a/languages/ruby/bitwarden_sdk/sig/secrets_client.rbs b/languages/ruby/bitwarden_sdk/sig/secrets_client.rbs
new file mode 100644
index 000000000..ccebcecd8
--- /dev/null
+++ b/languages/ruby/bitwarden_sdk/sig/secrets_client.rbs
@@ -0,0 +1,18 @@
+require_once '../lib/extended_schemas/schemas.rbs'
+require_once '../schemas.rbs'
+
+class SecretsClient
+  # @command_runner: CommandRunner
+  def initialize: (command_runner: CommandRunner) -> void
+  def get: (id: String) -> SecretResponse
+  def get_by_ids: (ids: Array[String]) -> Array(SecretIdentifierResponse)
+  def create: (key: String, note: String, organization_id: String, project_ids: Array[String], value: String) -> SecretResponse
+  def list: (organization_id: String) -> Array(SecretIdentifierResponse)
+  def update: (id: String, key: String, note: String, organization_id: String, project_ids: Array[String], value: String) -> SecretResponse
+  def delete_secret: (ids: Array[String]) -> Array(SecretDeleteResponse)
+
+  private
+
+  def create_command: (SelectiveSecretsCommand) -> SelectiveCommand
+  def parse_response: (SelectiveSecretCommand) -> ResponseForSecretResponse
+end
diff --git a/languages/ruby/examples/example.rb b/languages/ruby/examples/example.rb
new file mode 100644
index 000000000..c0deeb437
--- /dev/null
+++ b/languages/ruby/examples/example.rb
@@ -0,0 +1,67 @@
+# NOTE - for example purpose only - import gem instead
+require 'bitwarden-sdk'
+
+token = '<insert access token here>'
+organization_id = '<organization id here>'
+
+bitwarden_settings = BitwardenSDK::BitwardenSettings.new(
+  'https://api.bitwarden.com',
+  'https://identity.bitwarden.com/connect/token'
+)
+
+bw_client = BitwardenSDK::BitwardenClient.new(bitwarden_settings)
+response = bw_client.access_token_login(token)
+puts response
+
+# CREATE project
+project_name = 'Test project 1'
+response = bw_client.project_client.create_project(project_name, organization_id)
+puts response
+project_id = response['id']
+
+# GET project
+response = bw_client.project_client.get(project_id)
+puts response
+
+# LIST projects
+response = bw_client.project_client.list_projects(organization_id)
+puts response
+
+# UPDATE projects
+name = 'Updated test project 1'
+response = bw_client.project_client.update_project(project_id, name, organization_id)
+puts response
+
+# CREATE secret
+key = 'AWS-SES'
+note = 'Private account'
+value = '8t27.dfj;'
+response = bw_client.secrets_client.create(key, note, organization_id, [project_id], value)
+puts response
+secret_id = response['id']
+
+# GET secret
+response = bw_client.secrets_client.get(secret_id)
+puts response
+
+# GET secret by ids
+response = bw_client.secrets_client.get_by_ids([secret_id])
+puts response
+
+# LIST secrets
+response = bw_client.secrets_client.list(organization_id)
+puts response
+
+# UPDATE secret
+note = 'updated password'
+value = '7I.ert10AjK'
+response = bw_client.secrets_client.update(secret_id, key, note,organization_id, [project_id], value)
+puts response
+
+# DELETE secret
+response = bw_client.secrets_client.delete_secret([secret_id])
+puts response
+
+# DELETE project
+response = bw_client.project_client.delete_projects([project_id])
+puts response
diff --git a/sig/bitwarden_sdk/bitwarden_client.rbs b/sig/bitwarden_sdk/bitwarden_client.rbs
new file mode 100644
index 000000000..1ff97eb92
--- /dev/null
+++ b/sig/bitwarden_sdk/bitwarden_client.rbs
@@ -0,0 +1,5 @@
+module BitwardenSDK
+  class BitwardenClient
+    attr_reader project_client: ProjectsClient
+  end
+end
diff --git a/support/scripts/schemas.ts b/support/scripts/schemas.ts
index 2958efc18..9e25bedc5 100644
--- a/support/scripts/schemas.ts
+++ b/support/scripts/schemas.ts
@@ -58,6 +58,16 @@ async function main() {
 
   writeToFile("./languages/python/BitwardenClient/schemas.py", python.lines);
 
+  const ruby = await quicktype({
+    inputData,
+    lang: "ruby",
+    rendererOptions: {
+      "ruby-version": "3.0",
+    },
+  });
+
+  writeToFile("./languages/ruby/bitwarden_sdk/lib/schemas.rb", ruby.lines);
+
   const csharp = await quicktype({
     inputData,
     lang: "csharp",

From e219efa40d9f9d04a8f69e55dd6409b6ff43f069 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Milo=C5=A1=20Trifunovi=C4=87?=
 <84377717+milost77@users.noreply.github.com>
Date: Fri, 1 Dec 2023 13:35:44 +0100
Subject: [PATCH 44/55] PHP SDK implementation (#316)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

## Type of change

Implemented PHP library that wraps native C library and exposed its
commands through BitwardenClient class.

```
- [ ] Bug fix
- [ x] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective

To provide PHP interface for bitwarden c library files by which you can
use PHP code to work with Bitwarden API. It implements CRUD requests for
projects and secrets.

## Code changes

TODO: Updating package repository - will hosted on Packagist.

---------

Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
---
 .github/workflows/publish-php.yml             |  75 ++++++
 languages/php/.gitignore                      |   2 +
 languages/php/README.md                       | 100 +++++++
 languages/php/composer.json                   |  22 ++
 languages/php/composer.lock                   | 247 ++++++++++++++++++
 languages/php/example.php                     |  43 +++
 languages/php/src/BitwardenClient.php         |  64 +++++
 languages/php/src/BitwardenLib.php            |  79 ++++++
 languages/php/src/BitwardenSettings.php       |  26 ++
 languages/php/src/CommandRunner.php           |  37 +++
 languages/php/src/ProjectsClient.php          |  81 ++++++
 languages/php/src/SecretsClient.php           |  98 +++++++
 .../src/schemas/AccessTokenLoginRequest.php   |  39 +++
 .../src/schemas/BitwardenClassStructure.php   |  11 +
 .../schemas/BitwardenClassStructureTrait.php  | 189 ++++++++++++++
 languages/php/src/schemas/ClientSettings.php  | 133 ++++++++++
 languages/php/src/schemas/Command.php         |  44 ++++
 .../php/src/schemas/ProjectCreateRequest.php  |  43 +++
 .../php/src/schemas/ProjectGetRequest.php     |  37 +++
 .../php/src/schemas/ProjectPutRequest.php     |  50 ++++
 languages/php/src/schemas/ProjectsCommand.php |  55 ++++
 .../php/src/schemas/ProjectsDeleteRequest.php |  39 +++
 .../php/src/schemas/ProjectsListRequest.php   |  38 +++
 .../php/src/schemas/SecretCreateRequest.php   |  58 ++++
 .../php/src/schemas/SecretGetRequest.php      |  38 +++
 .../src/schemas/SecretIdentifiersRequest.php  |  38 +++
 .../php/src/schemas/SecretPutRequest.php      |  64 +++++
 .../src/schemas/SecretVerificationRequest.php |  35 +++
 languages/php/src/schemas/SecretsCommand.php  |  56 ++++
 .../php/src/schemas/SecretsDeleteRequest.php  |  39 +++
 .../php/src/schemas/SecretsGetRequest.php     |  39 +++
 31 files changed, 1919 insertions(+)
 create mode 100644 .github/workflows/publish-php.yml
 create mode 100644 languages/php/.gitignore
 create mode 100644 languages/php/README.md
 create mode 100644 languages/php/composer.json
 create mode 100644 languages/php/composer.lock
 create mode 100644 languages/php/example.php
 create mode 100644 languages/php/src/BitwardenClient.php
 create mode 100644 languages/php/src/BitwardenLib.php
 create mode 100644 languages/php/src/BitwardenSettings.php
 create mode 100644 languages/php/src/CommandRunner.php
 create mode 100644 languages/php/src/ProjectsClient.php
 create mode 100644 languages/php/src/SecretsClient.php
 create mode 100644 languages/php/src/schemas/AccessTokenLoginRequest.php
 create mode 100644 languages/php/src/schemas/BitwardenClassStructure.php
 create mode 100644 languages/php/src/schemas/BitwardenClassStructureTrait.php
 create mode 100644 languages/php/src/schemas/ClientSettings.php
 create mode 100644 languages/php/src/schemas/Command.php
 create mode 100644 languages/php/src/schemas/ProjectCreateRequest.php
 create mode 100644 languages/php/src/schemas/ProjectGetRequest.php
 create mode 100644 languages/php/src/schemas/ProjectPutRequest.php
 create mode 100644 languages/php/src/schemas/ProjectsCommand.php
 create mode 100644 languages/php/src/schemas/ProjectsDeleteRequest.php
 create mode 100644 languages/php/src/schemas/ProjectsListRequest.php
 create mode 100644 languages/php/src/schemas/SecretCreateRequest.php
 create mode 100644 languages/php/src/schemas/SecretGetRequest.php
 create mode 100644 languages/php/src/schemas/SecretIdentifiersRequest.php
 create mode 100644 languages/php/src/schemas/SecretPutRequest.php
 create mode 100644 languages/php/src/schemas/SecretVerificationRequest.php
 create mode 100644 languages/php/src/schemas/SecretsCommand.php
 create mode 100644 languages/php/src/schemas/SecretsDeleteRequest.php
 create mode 100644 languages/php/src/schemas/SecretsGetRequest.php

diff --git a/.github/workflows/publish-php.yml b/.github/workflows/publish-php.yml
new file mode 100644
index 000000000..b443f2057
--- /dev/null
+++ b/.github/workflows/publish-php.yml
@@ -0,0 +1,75 @@
+name: Publish PHP SDK
+
+on:
+  pull_request:
+    branches:
+      - master
+
+jobs:
+  build_rust:
+    uses: ./.github/workflows/build-rust-cross-platform.yml
+
+  setup_php:
+    name: Setup PHP
+    runs-on: ubuntu-22.04
+    needs:
+      - build_rust
+
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+
+      - name: Setup PHP with PECL extension
+        uses: shivammathur/setup-php@7fdd3ece872ec7ec4c098ae5ab7637d5e0a96067 # 2.26.0
+        with:
+          php-version: "8.0"
+          tools: composer
+          extensions: ext-ffi
+
+      - name: Composer check
+        run: |
+          composer install
+          composer validate
+        working-directory: languages/php/
+
+      - name: Download x86_64-apple-darwin files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-apple-darwin
+          path: temp/macos-x64
+
+      - name: Download aarch64-apple-darwin files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-aarch64-apple-darwin
+          path: temp/macos-arm64
+
+      - name: Download x86_64-unknown-linux-gnu files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-unknown-linux-gnu
+          path: temp/ubuntu-x64
+
+      - name: Download x86_64-pc-windows-msvc files
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: libbitwarden_c_files-x86_64-pc-windows-msvc
+          path: temp/windows-x64
+
+      - name: Copy lib files
+        run: |
+          mkdir -p languages/php/src/lib/macos-arm64
+          mkdir -p languages/php/src/lib/ubuntu-x64
+          mkdir -p languages/php/src/lib/macos-x64
+          mkdir -p languages/php/src/lib/windows-x64
+
+          platforms=("macos-arm64" "ubuntu-x64" "macos-x64" "windows-x64")
+          files=("libbitwarden_c.dylib" "libbitwarden_c.so" "libbitwarden_c.dylib" "bitwarden_c.dll")
+
+          for ((i=0; i<${#platforms[@]}; i++)); do
+            cp "temp/${platforms[$i]}/${files[$i]}" "languages/php/src/lib/${platforms[$i]}/${files[$i]}"
+          done
+
+      - name: Publish version
+        run: curl -XPOST -H'content-type:application/json' 'https://packagist.org/api/update-package?username=malirobot&apiToken=${{secrets.PACKAGIST_KEY}}' -d'{"repository":{"url":"https://packagist.org/packages/bitwarden/sdk"}}'
+        working-directory: languages/php/
diff --git a/languages/php/.gitignore b/languages/php/.gitignore
new file mode 100644
index 000000000..b2a69e9a0
--- /dev/null
+++ b/languages/php/.gitignore
@@ -0,0 +1,2 @@
+.DS_Store
+vendor
diff --git a/languages/php/README.md b/languages/php/README.md
new file mode 100644
index 000000000..9e4a9385d
--- /dev/null
+++ b/languages/php/README.md
@@ -0,0 +1,100 @@
+# Bitwarden Secrets Manager SDK wrapper for PHP
+
+PHP bindings for interacting with the [Bitwarden Secrets Manager]. This is a beta release and might be missing some functionality.
+Supported are CRUD operations on project and secret entities.
+
+## Installation
+
+Requirements:
+- PHP >= 8.0
+- Composer
+- Bitwarden C libraries which you can generate using BitwardenSDK and following instructions in its readme (requires Rust). https://github.com/bitwarden/sdk
+If you are not using the standalone version of this library, file will be placed in `target/debug` folder if you are using from BitwardenSDK repository.
+- Access token for the Bitwarden account
+
+
+## Usage
+
+To interact with the client first you need to obtain the access token from Bitwarden.
+You can then initialize BitwardenSettings passing $api_url and $identity_url if needed. These parameteres are
+optional and if they are not defined, BitwardenSettings instance will try to get these values from ENV, and
+if they are not defined there as well, it will use defaults: `https://api.bitwarden.com` as api_url and
+`https://identity.bitwarden.com` as identity_url. You can also pass device type as argument but that is entirely
+optional.
+
+Passing BitwardenSettings instance to BitwardenClient will initialize it. Before using the client you must
+be authorized by calling the access_token_login method passing your Bitwarden access token to it.
+
+
+```php
+$access_token = '<your token here>';
+$api_url = "<api url>";
+$identity_url = "<identity url>";
+$bitwarden_settings = new \Bitwarden\Sdk\BitwardenSettings($api_url, $identity_url);
+
+$bitwarden_client = new \Bitwarden\Sdk\BitwardenClient($bitwarden_settings);
+$bitwarden_client->access_token_login($access_token);
+```
+
+After successful authorization you can interact with client to manage your projects and secrets.
+```php
+$organization_id = "<your organization id here>";
+
+$bitwarden_client = new \Bitwarden\Sdk\BitwardenClient($bitwarden_settings);
+$res = $bitwarden_client->access_token_login($access_token);
+
+// create project
+$name = "PHP project"
+$res = $bitwarden_client->projects->create($name, $organization_id);
+$project_id = $res->id;
+
+// get project
+$res = $bitwarden_client->projects->get($project_id);
+
+// list projects
+$res = $bitwarden_client->projects->list($organization_id);
+
+// update project
+$name = "Updated PHP project"
+$res = $bitwarden_client->projects->put($project_id, $name, $organization_id);
+
+// get secret
+$res = $bitwarden_client->secrets->get($secret_id);
+
+// list secrets
+$res = $bitwarden_client->secrets->list($organization_id);
+
+// delete project
+$res = $bitwarden_client->projects->delete([$project_id]);
+
+```
+
+Similarly, you interact with secrets:
+```php
+$organization_id = "<your organization id here>";
+
+// create secret
+$key = "AWS secret key";
+$note = "Private account";
+$secret = "76asaj,Is_)"
+$res = $bitwarden_client->secrets->create($key, $note, $organization_id, [$project_id], $secret);
+$secret_id = $res->id;
+
+// get secret
+$res = $bitwarden_sdk->secrets->get($secret_id);
+
+// list secrets
+$res = $bitwarden_client->secrets->list($organization_id);
+
+// update secret
+$note = "Updated account";
+$key = "AWS private updated"
+$secret = "7uYTE,:Aer"
+$res = $bitwarden_client->secrets->update($secret_id, $key, $note, $organization_id, [$project_id], $secret);
+
+// delete secret
+$res = $bitwarden_sdk->secrets->delete([$secret_id]);
+```
+
+
+[Bitwarden Secrets Manager]: https://bitwarden.com/products/secrets-manager/
diff --git a/languages/php/composer.json b/languages/php/composer.json
new file mode 100644
index 000000000..18b333eac
--- /dev/null
+++ b/languages/php/composer.json
@@ -0,0 +1,22 @@
+{
+  "name": "bitwarden/sdk",
+  "description": "PHP bindings for interacting with the Bitwarden Secrets Manager. This is a beta release and might be missing some functionality.",
+  "type": "library",
+  "keywords": ["bitwarden","sdk","password-manager"],
+  "homepage": "https://github.com/bitwarden/sdk",
+  "require": {
+    "php": "^8.0",
+    "swaggest/json-schema": "^0.12.42",
+    "ext-ffi": "*"
+  },
+  "autoload": {
+    "psr-4": {
+      "Bitwarden\\Sdk\\": "src/"
+    }
+  },
+  "authors": [
+    {
+      "name": "Bitwarden Inc."
+    }
+  ]
+}
diff --git a/languages/php/composer.lock b/languages/php/composer.lock
new file mode 100644
index 000000000..fc6b42c4f
--- /dev/null
+++ b/languages/php/composer.lock
@@ -0,0 +1,247 @@
+{
+    "_readme": [
+        "This file locks the dependencies of your project to a known state",
+        "Read more about it at https://getcomposer.org/doc/01-basic-usage.md#installing-dependencies",
+        "This file is @generated automatically"
+    ],
+    "content-hash": "7081b1bfe099982a63ad06d5ab9fa66d",
+    "packages": [
+        {
+            "name": "phplang/scope-exit",
+            "version": "1.0.0",
+            "source": {
+                "type": "git",
+                "url": "https://github.com/phplang/scope-exit.git",
+                "reference": "239b73abe89f9414aa85a7ca075ec9445629192b"
+            },
+            "dist": {
+                "type": "zip",
+                "url": "https://api.github.com/repos/phplang/scope-exit/zipball/239b73abe89f9414aa85a7ca075ec9445629192b",
+                "reference": "239b73abe89f9414aa85a7ca075ec9445629192b",
+                "shasum": ""
+            },
+            "require-dev": {
+                "phpunit/phpunit": "*"
+            },
+            "type": "library",
+            "autoload": {
+                "psr-4": {
+                    "PhpLang\\": "src/"
+                }
+            },
+            "notification-url": "https://packagist.org/downloads/",
+            "license": [
+                "BSD"
+            ],
+            "authors": [
+                {
+                    "name": "Sara Golemon",
+                    "email": "pollita@php.net",
+                    "homepage": "https://twitter.com/SaraMG",
+                    "role": "Developer"
+                }
+            ],
+            "description": "Emulation of SCOPE_EXIT construct from C++",
+            "homepage": "https://github.com/phplang/scope-exit",
+            "keywords": [
+                "cleanup",
+                "exit",
+                "scope"
+            ],
+            "support": {
+                "issues": "https://github.com/phplang/scope-exit/issues",
+                "source": "https://github.com/phplang/scope-exit/tree/master"
+            },
+            "time": "2016-09-17T00:15:18+00:00"
+        },
+        {
+            "name": "swaggest/json-diff",
+            "version": "v3.10.4",
+            "source": {
+                "type": "git",
+                "url": "https://github.com/swaggest/json-diff.git",
+                "reference": "f4e511708060ff7511a3743fab4aa484a062bcfb"
+            },
+            "dist": {
+                "type": "zip",
+                "url": "https://api.github.com/repos/swaggest/json-diff/zipball/f4e511708060ff7511a3743fab4aa484a062bcfb",
+                "reference": "f4e511708060ff7511a3743fab4aa484a062bcfb",
+                "shasum": ""
+            },
+            "require": {
+                "ext-json": "*"
+            },
+            "require-dev": {
+                "phperf/phpunit": "4.8.37"
+            },
+            "type": "library",
+            "autoload": {
+                "psr-4": {
+                    "Swaggest\\JsonDiff\\": "src/"
+                }
+            },
+            "notification-url": "https://packagist.org/downloads/",
+            "license": [
+                "MIT"
+            ],
+            "authors": [
+                {
+                    "name": "Viacheslav Poturaev",
+                    "email": "vearutop@gmail.com"
+                }
+            ],
+            "description": "JSON diff/rearrange/patch/pointer library for PHP",
+            "support": {
+                "issues": "https://github.com/swaggest/json-diff/issues",
+                "source": "https://github.com/swaggest/json-diff/tree/v3.10.4"
+            },
+            "time": "2022-11-09T13:21:05+00:00"
+        },
+        {
+            "name": "swaggest/json-schema",
+            "version": "v0.12.42",
+            "source": {
+                "type": "git",
+                "url": "https://github.com/swaggest/php-json-schema.git",
+                "reference": "d23adb53808b8e2da36f75bc0188546e4cbe3b45"
+            },
+            "dist": {
+                "type": "zip",
+                "url": "https://api.github.com/repos/swaggest/php-json-schema/zipball/d23adb53808b8e2da36f75bc0188546e4cbe3b45",
+                "reference": "d23adb53808b8e2da36f75bc0188546e4cbe3b45",
+                "shasum": ""
+            },
+            "require": {
+                "ext-json": "*",
+                "php": ">=5.4",
+                "phplang/scope-exit": "^1.0",
+                "swaggest/json-diff": "^3.8.2",
+                "symfony/polyfill-mbstring": "^1.19"
+            },
+            "require-dev": {
+                "phperf/phpunit": "4.8.37"
+            },
+            "suggest": {
+                "ext-mbstring": "For better performance"
+            },
+            "type": "library",
+            "autoload": {
+                "psr-4": {
+                    "Swaggest\\JsonSchema\\": "src/"
+                }
+            },
+            "notification-url": "https://packagist.org/downloads/",
+            "license": [
+                "MIT"
+            ],
+            "authors": [
+                {
+                    "name": "Viacheslav Poturaev",
+                    "email": "vearutop@gmail.com"
+                }
+            ],
+            "description": "High definition PHP structures with JSON-schema based validation",
+            "support": {
+                "email": "vearutop@gmail.com",
+                "issues": "https://github.com/swaggest/php-json-schema/issues",
+                "source": "https://github.com/swaggest/php-json-schema/tree/v0.12.42"
+            },
+            "time": "2023-09-12T14:43:42+00:00"
+        },
+        {
+            "name": "symfony/polyfill-mbstring",
+            "version": "v1.28.0",
+            "source": {
+                "type": "git",
+                "url": "https://github.com/symfony/polyfill-mbstring.git",
+                "reference": "42292d99c55abe617799667f454222c54c60e229"
+            },
+            "dist": {
+                "type": "zip",
+                "url": "https://api.github.com/repos/symfony/polyfill-mbstring/zipball/42292d99c55abe617799667f454222c54c60e229",
+                "reference": "42292d99c55abe617799667f454222c54c60e229",
+                "shasum": ""
+            },
+            "require": {
+                "php": ">=7.1"
+            },
+            "provide": {
+                "ext-mbstring": "*"
+            },
+            "suggest": {
+                "ext-mbstring": "For best performance"
+            },
+            "type": "library",
+            "extra": {
+                "branch-alias": {
+                    "dev-main": "1.28-dev"
+                },
+                "thanks": {
+                    "name": "symfony/polyfill",
+                    "url": "https://github.com/symfony/polyfill"
+                }
+            },
+            "autoload": {
+                "files": [
+                    "bootstrap.php"
+                ],
+                "psr-4": {
+                    "Symfony\\Polyfill\\Mbstring\\": ""
+                }
+            },
+            "notification-url": "https://packagist.org/downloads/",
+            "license": [
+                "MIT"
+            ],
+            "authors": [
+                {
+                    "name": "Nicolas Grekas",
+                    "email": "p@tchwork.com"
+                },
+                {
+                    "name": "Symfony Community",
+                    "homepage": "https://symfony.com/contributors"
+                }
+            ],
+            "description": "Symfony polyfill for the Mbstring extension",
+            "homepage": "https://symfony.com",
+            "keywords": [
+                "compatibility",
+                "mbstring",
+                "polyfill",
+                "portable",
+                "shim"
+            ],
+            "support": {
+                "source": "https://github.com/symfony/polyfill-mbstring/tree/v1.28.0"
+            },
+            "funding": [
+                {
+                    "url": "https://symfony.com/sponsor",
+                    "type": "custom"
+                },
+                {
+                    "url": "https://github.com/fabpot",
+                    "type": "github"
+                },
+                {
+                    "url": "https://tidelift.com/funding/github/packagist/symfony/symfony",
+                    "type": "tidelift"
+                }
+            ],
+            "time": "2023-07-28T09:04:16+00:00"
+        }
+    ],
+    "packages-dev": [],
+    "aliases": [],
+    "minimum-stability": "stable",
+    "stability-flags": [],
+    "prefer-stable": false,
+    "prefer-lowest": false,
+    "platform": {
+        "php": "^8.0",
+        "ext-ffi": "*"
+    },
+    "platform-dev": [],
+    "plugin-api-version": "2.6.0"
+}
diff --git a/languages/php/example.php b/languages/php/example.php
new file mode 100644
index 000000000..0fdb6930a
--- /dev/null
+++ b/languages/php/example.php
@@ -0,0 +1,43 @@
+<?php
+
+require_once 'vendor/autoload.php';
+
+$access_token = '<you access token here>';
+$organization_id = "<your organization id here>";
+
+$client_settings = new \Bitwarden\Sdk\BitwardenSettings();
+
+$bitwarden_client = new \Bitwarden\Sdk\BitwardenClient($client_settings);
+$bitwarden_client->access_token_login($access_token);
+
+// create project
+$res = $bitwarden_client->projects->create('php project', $organization_id);
+$project_id = $res->id;
+
+// get project
+$res = $bitwarden_client->projects->get($project_id);
+
+// list projects
+$res = $bitwarden_client->projects->list($organization_id);
+
+// update project
+$res = $bitwarden_client->projects->put($project_id, 'php test awesome', $organization_id);
+
+// create secret
+$res = $bitwarden_client->secrets->create("New Key", "hello world", $organization_id, [$project_id], "123");
+$secret_id = $res->id;
+
+// get secret
+$res = $bitwarden_client->secrets->get($secret_id);
+
+// list secrets
+$res = $bitwarden_client->secrets->list($organization_id);
+
+// update secret
+$res = $bitwarden_client->secrets->update($secret_id, "hello world 2", "hello", $organization_id, [$project_id], "123");
+
+// delete secret
+$res = $bitwarden_client->secrets->delete([$secret_id]);
+
+// delete project
+$res = $bitwarden_client->projects->delete([$project_id]);
diff --git a/languages/php/src/BitwardenClient.php b/languages/php/src/BitwardenClient.php
new file mode 100644
index 000000000..79fccdf9c
--- /dev/null
+++ b/languages/php/src/BitwardenClient.php
@@ -0,0 +1,64 @@
+<?php
+
+namespace Bitwarden\Sdk;
+
+use Bitwarden\Sdk\Schemas\AccessTokenLoginRequest;
+use Bitwarden\Sdk\schemas\ClientSettings;
+use Bitwarden\Sdk\Schemas\Command;
+use FFI;
+use Swaggest\JsonDiff\Exception;
+
+
+class BitwardenClient
+{
+    private BitwardenLib $bitwarden_lib;
+
+    private ClientSettings $clientSettings;
+
+    public ProjectsClient $projects;
+
+    public SecretsClient $secrets;
+
+    private CommandRunner $commandRunner;
+
+    private FFI\CData $handle;
+
+    public function __construct(BitwardenSettings $bitwardenSettings)
+    {
+        $this->clientSettings = new ClientSettings();
+        $this->clientSettings->apiUrl = $bitwardenSettings->get_api_url();
+        $this->clientSettings->identityUrl = $bitwardenSettings->get_identity_url();
+        $this->clientSettings->userAgent = "Bitwarden PHP-SDK";
+
+        $this->bitwarden_lib = new BitwardenLib();
+        $this->handle = $this->bitwarden_lib->init($this->clientSettings);
+
+        $this->commandRunner = new CommandRunner($this->bitwarden_lib, $this->handle);
+        $this->projects = new ProjectsClient($this->commandRunner);
+        $this->secrets = new SecretsClient($this->commandRunner);
+    }
+
+    /**
+     * @throws \Exception
+     */
+    public function access_token_login(string $access_token)
+    {
+        $access_token_request = new AccessTokenLoginRequest();
+        $access_token_request->accessToken = $access_token;
+        $command = new Command();
+        $command->accessTokenLogin = $access_token_request->jsonSerialize();
+        $result = $this->commandRunner->run($command);
+        if (!isset($result->authenticated)) {
+            throw new \Exception("Authorization error");
+        }
+
+        if ($result->authenticated == False) {
+            throw new \Exception("Unauthorized");
+        }
+    }
+
+    public function __destruct()
+    {
+        $this->bitwarden_lib->free_mem();
+    }
+}
diff --git a/languages/php/src/BitwardenLib.php b/languages/php/src/BitwardenLib.php
new file mode 100644
index 000000000..3eb3ed5f4
--- /dev/null
+++ b/languages/php/src/BitwardenLib.php
@@ -0,0 +1,79 @@
+<?php
+
+namespace Bitwarden\Sdk;
+
+use Bitwarden\Sdk\Schemas\ClientSettings;
+use Bitwarden\Sdk\Schemas\Command;
+use FFI;
+use Swaggest\JsonDiff\Exception;
+use Swaggest\JsonSchema\JsonSchema;
+
+
+class BitwardenLib
+{
+    public FFI $ffi;
+    public FFI\CData $handle;
+
+    /**
+     * @throws \Exception
+     */
+    public function __construct()
+    {
+        $lib_file = null;
+
+        if (PHP_OS === 'WINNT') {
+            $lib_file = '/lib/windows-x64/bitwarden_c.dll';
+            if (file_exists($lib_file) == false) {
+                $lib_file = __DIR__.'/../../../target/debug/bitwarden_c.dll';
+            }
+        } elseif (PHP_OS === 'Linux') {
+            $lib_file = '/lib/ubuntu-x64/libbitwarden_c.so';
+            if (file_exists($lib_file) == false) {
+                $lib_file = __DIR__.'/../../../target/debug/libbitwarden_c.so';
+            }
+        } elseif (PHP_OS === 'Darwin') {
+            $architecture = trim(exec('uname -m'));
+            if ($architecture === 'x86_64' || $architecture === 'amd64') {
+                $lib_file = __DIR__.'/lib/macos-x64/libbitwarden_c.dylib';
+            } elseif ($architecture === 'arm64') {
+                $lib_file = __DIR__.'/lib/macos-arm64/libbitwarden_c.dylib';
+            }
+            if (file_exists($lib_file) == false) {
+                $lib_file = __DIR__.'/../../../target/debug/libbitwarden_c.dylib';
+            }
+        }
+
+        if ($lib_file == null || is_file($lib_file) == false) {
+            throw new \Exception("Lib file not found");
+        }
+
+        $this->ffi = FFI::cdef('
+            void* init(const char* param);
+            char* run_command(void* c_str_ptr, void* client_ptr);
+            void free_mem(void* client_ptr);',
+            $lib_file
+        );
+    }
+
+    public function init(ClientSettings $client_settings): FFI\CData
+    {
+        $this->handle = $this->ffi->init(json_encode($client_settings->jsonSerialize()));
+        return $this->handle;
+    }
+
+    public function run_command(Command $command): \stdClass
+    {
+        $encoded_json = json_encode($command->jsonSerialize());
+        try {
+            $result = $this->ffi->run_command($encoded_json, $this->handle);
+            return json_decode(FFI::string($result));
+        } catch (\FFI\Exception $e) {
+            throw new \RuntimeException('Error occurred during FFI operation: ' . $e->getMessage());
+        }
+    }
+
+    public function free_mem(): void
+    {
+        $this->ffi->free_mem($this->handle);
+    }
+}
diff --git a/languages/php/src/BitwardenSettings.php b/languages/php/src/BitwardenSettings.php
new file mode 100644
index 000000000..b3d62bc2e
--- /dev/null
+++ b/languages/php/src/BitwardenSettings.php
@@ -0,0 +1,26 @@
+<?php
+
+namespace Bitwarden\Sdk;
+
+class BitwardenSettings
+{
+    private ?string $api_url;
+
+    private ?string $identity_url;
+
+    public function __construct($api_url = null, $identity_url = null)
+    {
+        $this->api_url = $api_url;
+        $this->identity_url = $identity_url;
+    }
+
+    public function get_api_url(): ?string
+    {
+        return $this->api_url;
+    }
+
+    public function get_identity_url(): ?string
+    {
+        return $this->identity_url;
+    }
+}
diff --git a/languages/php/src/CommandRunner.php b/languages/php/src/CommandRunner.php
new file mode 100644
index 000000000..9eec68b2d
--- /dev/null
+++ b/languages/php/src/CommandRunner.php
@@ -0,0 +1,37 @@
+<?php
+
+namespace Bitwarden\Sdk;
+
+
+use Bitwarden\Sdk\Schemas\Command;
+use FFI;
+
+class CommandRunner
+{
+    private FFI\CData $handle;
+
+    private BitwardenLib $bitwardenLib;
+
+    public function __construct(BitwardenLib $bitwardenLib, $handle)
+    {
+        $this->bitwardenLib = $bitwardenLib;
+        $this->handle = $handle;
+    }
+
+    /**
+     * @throws \Exception
+     */
+    public function run(Command $command): \stdClass
+    {
+        $result = $this->bitwardenLib->run_command($command);
+        if ($result->success == true) {
+            return $result->data;
+        }
+
+        if (isset($result->errorMessage))
+        {
+            throw new \Exception($result->errorMessage);
+        }
+        throw new \Exception("Unknown error occurred");
+    }
+}
diff --git a/languages/php/src/ProjectsClient.php b/languages/php/src/ProjectsClient.php
new file mode 100644
index 000000000..6b6f9fb6a
--- /dev/null
+++ b/languages/php/src/ProjectsClient.php
@@ -0,0 +1,81 @@
+<?php
+
+namespace Bitwarden\Sdk;
+
+use Bitwarden\Sdk\Schemas\Command;
+use Bitwarden\Sdk\Schemas\ProjectCreateRequest;
+use Bitwarden\Sdk\Schemas\ProjectGetRequest;
+use Bitwarden\Sdk\Schemas\ProjectPutRequest;
+use Bitwarden\Sdk\Schemas\ProjectsCommand;
+use Bitwarden\Sdk\Schemas\ProjectsDeleteRequest;
+use Bitwarden\Sdk\Schemas\ProjectsListRequest;
+
+class ProjectsClient
+{
+    private CommandRunner $commandRunner;
+
+    public function __construct(CommandRunner $commandRunner)
+    {
+        $this->commandRunner = $commandRunner;
+    }
+
+    public function get(string $project_id): \stdClass
+    {
+        $project_get_request = new ProjectGetRequest();
+        $project_get_request->id = $project_id;
+        $project_get_request->validate();
+        $project_command = new ProjectsCommand();
+        $project_command->get = $project_get_request->jsonSerialize();
+        return $this->run_project_command($project_command);
+    }
+
+    public function list(string $organization_id): \stdClass
+    {
+        $project_list_request = new ProjectsListRequest();
+        $project_list_request->organizationId = $organization_id;
+        $project_list_request->validate();
+        $project_command = new ProjectsCommand();
+        $project_command->list = $project_list_request->jsonSerialize();
+        return $this->run_project_command($project_command);
+    }
+
+    public function create(string $project_name, string $organization_id): \stdClass
+    {
+        $project_create_request = new ProjectCreateRequest();
+        $project_create_request->name = $project_name;
+        $project_create_request->organizationId = $organization_id;
+        $project_create_request->validate();
+        $project_command = new ProjectsCommand();
+        $project_command->create = $project_create_request->jsonSerialize();
+        return $this->run_project_command($project_command);
+    }
+
+    public function put(string $project_id, string $project_name, string $organization_id): \stdClass
+    {
+        $project_put_request = new ProjectPutRequest();
+        $project_put_request->organizationId = $organization_id;
+        $project_put_request->name = $project_name;
+        $project_put_request->id = $project_id;
+        $project_put_request->validate();
+        $project_command = new ProjectsCommand();
+        $project_command->update = $project_put_request->jsonSerialize();
+        return $this->run_project_command($project_command);
+    }
+
+    public function delete(array $ids): \stdClass
+    {
+        $projects_delete_request = new ProjectsDeleteRequest();
+        $projects_delete_request->ids = $ids;
+        $projects_delete_request->validate();
+        $project_command = new ProjectsCommand();
+        $project_command->delete = $projects_delete_request->jsonSerialize();
+        return $this->run_project_command($project_command);
+    }
+
+    public function run_project_command($projectCommand): \stdClass
+    {
+        $command = new Command();
+        $command->projects = $projectCommand;
+        return $this->commandRunner->run($command);
+    }
+}
diff --git a/languages/php/src/SecretsClient.php b/languages/php/src/SecretsClient.php
new file mode 100644
index 000000000..d5c0b0cef
--- /dev/null
+++ b/languages/php/src/SecretsClient.php
@@ -0,0 +1,98 @@
+<?php
+
+namespace Bitwarden\Sdk;
+
+use Bitwarden\Sdk\Schemas\Command;
+use Bitwarden\Sdk\Schemas\SecretCreateRequest;
+use Bitwarden\Sdk\Schemas\SecretGetRequest;
+use Bitwarden\Sdk\Schemas\SecretIdentifiersRequest;
+use Bitwarden\Sdk\Schemas\SecretPutRequest;
+use Bitwarden\Sdk\Schemas\SecretsCommand;
+use Bitwarden\Sdk\Schemas\SecretsDeleteRequest;
+use Bitwarden\Sdk\Schemas\SecretsGetRequest;
+
+class SecretsClient
+{
+    private CommandRunner $commandRunner;
+
+    public function __construct(CommandRunner $commandRunner)
+    {
+        $this->commandRunner = $commandRunner;
+    }
+
+    public function get(string $secret_id): \stdClass
+    {
+        $secret_get_request = new SecretGetRequest();
+        $secret_get_request->id = $secret_id;
+        $secret_get_request->validate();
+        $secret_command = new SecretsCommand();
+        $secret_command->get = $secret_get_request->jsonSerialize();
+        return $this->run_secret_command($secret_command);
+    }
+
+    public function get_by_ids(array $secret_ids): \stdClass
+    {
+        $project_get_by_ids_request = new SecretsGetRequest();
+        $project_get_by_ids_request->ids = $secret_ids;
+        $project_get_by_ids_request->validate();
+        $secrets_command = new SecretsCommand();
+        $secrets_command->get_by_ids = $project_get_by_ids_request->jsonSerialize();
+        return $this->run_secret_command($secrets_command);
+    }
+
+    public function list(string $organization_id): \stdClass
+    {
+        $secrets_list_request = new SecretIdentifiersRequest();
+        $secrets_list_request->organizationId = $organization_id;
+        $secrets_list_request->validate();
+        $secrets_command = new SecretsCommand();
+        $secrets_command->list = $secrets_list_request->jsonSerialize();
+        return $this->run_secret_command($secrets_command);
+    }
+
+    public function create(string $key, string $note, string $organization_id, array $project_ids, string $value): \stdClass
+    {
+        $secrets_create_request = new SecretCreateRequest();
+        $secrets_create_request->organizationId = $organization_id;
+        $secrets_create_request->projectIds = $project_ids;
+        $secrets_create_request->key = $key;
+        $secrets_create_request->note = $note;
+        $secrets_create_request->value = $value;
+        $secrets_create_request->validate();
+        $secrets_command = new SecretsCommand();
+        $secrets_command->create = $secrets_create_request->jsonSerialize();
+        return $this->run_secret_command($secrets_command);
+    }
+
+    public function update(string $id, string $key, string $note, string $organization_id, array $project_ids, string $value): \stdClass
+    {
+        $secrets_put_request = new SecretPutRequest();
+        $secrets_put_request->id = $id;
+        $secrets_put_request->organizationId = $organization_id;
+        $secrets_put_request->projectIds = $project_ids;
+        $secrets_put_request->key = $key;
+        $secrets_put_request->note = $note;
+        $secrets_put_request->value = $value;
+        $secrets_put_request->validate();
+        $secrets_command = new SecretsCommand();
+        $secrets_command->update = $secrets_put_request->jsonSerialize();
+        return $this->run_secret_command($secrets_command);
+    }
+
+    public function delete(array $secrets_ids): \stdClass
+    {
+        $secrets_delete_request = new SecretsDeleteRequest();
+        $secrets_delete_request->ids = $secrets_ids;
+        $secrets_delete_request->validate();
+        $secrets_command = new SecretsCommand();
+        $secrets_command->delete = $secrets_delete_request->jsonSerialize();
+        return $this->run_secret_command($secrets_command);
+    }
+
+    public function run_secret_command($secretsCommand): \stdClass
+    {
+        $command = new Command();
+        $command->secrets = $secretsCommand;
+        return $this->commandRunner->run($command);
+    }
+}
diff --git a/languages/php/src/schemas/AccessTokenLoginRequest.php b/languages/php/src/schemas/AccessTokenLoginRequest.php
new file mode 100644
index 000000000..a08805f92
--- /dev/null
+++ b/languages/php/src/schemas/AccessTokenLoginRequest.php
@@ -0,0 +1,39 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Login to Bitwarden with access token
+ * Built from #/definitions/AccessTokenLoginRequest
+ */
+class AccessTokenLoginRequest extends ClassStructure
+{
+    /** @var string Bitwarden service API access token */
+    public $accessToken;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->accessToken = Schema::string();
+        $properties->accessToken->description = "Bitwarden service API access token";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->description = "Login to Bitwarden with access token";
+        $ownerSchema->required = array(
+            self::names()->accessToken,
+        );
+        $ownerSchema->setFromRef('#/definitions/AccessTokenLoginRequest');
+    }
+}
diff --git a/languages/php/src/schemas/BitwardenClassStructure.php b/languages/php/src/schemas/BitwardenClassStructure.php
new file mode 100644
index 000000000..fd50354d4
--- /dev/null
+++ b/languages/php/src/schemas/BitwardenClassStructure.php
@@ -0,0 +1,11 @@
+<?php
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Structure\ClassStructureContract;
+use Swaggest\JsonSchema\Structure\WithResolvedValue;
+
+abstract class BitwardenClassStructure implements ClassStructureContract, WithResolvedValue
+{
+    use BitwardenClassStructureTrait;
+}
diff --git a/languages/php/src/schemas/BitwardenClassStructureTrait.php b/languages/php/src/schemas/BitwardenClassStructureTrait.php
new file mode 100644
index 000000000..45cece5c8
--- /dev/null
+++ b/languages/php/src/schemas/BitwardenClassStructureTrait.php
@@ -0,0 +1,189 @@
+<?php
+
+namespace Bitwarden\SDK\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Context;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ObjectItemTrait;
+use Swaggest\JsonSchema\Wrapper;
+use Swaggest\JsonSchema\NameMirror;
+
+trait BitwardenClassStructureTrait
+{
+    use ObjectItemTrait;
+
+    /**
+     * @return Wrapper
+     */
+    public static function schema()
+    {
+        static $schemas = array();
+        $className = get_called_class();
+        $schemaWrapper = &$schemas[$className];
+
+        if (null === $schemaWrapper) {
+            $schema = new Schema();
+            $properties = new Properties();
+            $schema->properties = $properties;
+            $schema->objectItemClass = $className;
+            $schemaWrapper = new Wrapper($schema);
+            static::setUpProperties($properties, $schema);
+            if (null === $schema->getFromRefs()) {
+                $schema->setFromRef('#/definitions/' . $className);
+            }
+            if ($properties->isEmpty()) {
+                $schema->properties = null;
+            }
+            $properties->lock();
+        }
+
+        return $schemaWrapper;
+    }
+
+    /**
+     * @return Properties|static|null
+     */
+    public static function properties()
+    {
+        return static::schema()->getProperties();
+    }
+
+    /**
+     * @param mixed $data
+     * @param Context $options
+     * @return static|mixed
+     * @throws \Swaggest\JsonSchema\Exception
+     * @throws \Swaggest\JsonSchema\InvalidValue
+     */
+    public static function import($data, Context $options = null)
+    {
+        return static::schema()->in($data, $options);
+    }
+
+    /**
+     * @param mixed $data
+     * @param Context $options
+     * @return mixed
+     * @throws \Swaggest\JsonSchema\InvalidValue
+     * @throws \Exception
+     */
+    public static function export($data, Context $options = null)
+    {
+        return static::schema()->out($data, $options);
+    }
+
+    /**
+     * @param ObjectItemContract $objectItem
+     * @return static
+     */
+    public static function pick(ObjectItemContract $objectItem)
+    {
+        $className = get_called_class();
+        return $objectItem->getNestedObject($className);
+    }
+
+    /**
+     * @return static
+     */
+    public static function create()
+    {
+        return new static;
+    }
+
+    protected $__validateOnSet = true; // todo skip validation during import
+
+    /**
+     * @return \stdClass
+     */
+    #[\ReturnTypeWillChange]
+    public function jsonSerialize()
+    {
+        $result = new \stdClass();
+        $schema = static::schema();
+        $properties = $schema->getProperties();
+        $processed = array();
+        if (null !== $properties) {
+            foreach ($properties->getDataKeyMap() as $propertyName => $dataName) {
+                $value = $this->$propertyName ?? null;
+
+                // Value is exported if exists.
+                if (null !== $value || array_key_exists($propertyName, $this->__arrayOfData)) {
+                    $result->$dataName = $value;
+                    $processed[$propertyName] = true;
+                    continue;
+                }
+
+                // Non-existent value is only exported if belongs to nullable property (having 'null' in type array).
+                $property = $schema->getProperty($propertyName);
+                if ($property instanceof Schema) {
+                    $types = $property->type;
+                    if ($types === Schema::NULL || (is_array($types) && in_array(Schema::NULL, $types))) {
+                        $result->$dataName = $value;
+                    }
+                }
+            }
+        }
+        foreach ($schema->getNestedPropertyNames() as $name) {
+            /** @var ObjectItem $nested */
+            $nested = $this->$name;
+            if (null !== $nested) {
+                foreach ((array)$nested->jsonSerialize() as $key => $value) {
+                    $result->$key = $value;
+                }
+            }
+        }
+
+        if (!empty($this->__arrayOfData)) {
+            foreach ($this->__arrayOfData as $name => $value) {
+                if (!isset($processed[$name])) {
+                    $result->$name = $this->{$name};
+                }
+            }
+        }
+
+        return $result;
+    }
+
+    /**
+     * @return static|NameMirror
+     */
+    public static function names(Properties $properties = null, $mapping = Schema::DEFAULT_MAPPING)
+    {
+        if ($properties !== null) {
+            return new NameMirror($properties->getDataKeyMap($mapping));
+        }
+
+        static $nameflector = null;
+        if (null === $nameflector) {
+            $nameflector = new NameMirror();
+        }
+        return $nameflector;
+    }
+
+    public function __set($name, $column) // todo nested schemas
+    {
+        if ($this->__validateOnSet) {
+            if ($property = static::schema()->getProperty($name)) {
+                $property->out($column);
+            }
+        }
+        $this->__arrayOfData[$name] = $column;
+        return $this;
+    }
+
+    public static function className()
+    {
+        return get_called_class();
+    }
+
+    /**
+     * @throws \Exception
+     * @throws \Swaggest\JsonSchema\InvalidValue
+     */
+    public function validate()
+    {
+        static::schema()->out($this);
+    }
+}
+
diff --git a/languages/php/src/schemas/ClientSettings.php b/languages/php/src/schemas/ClientSettings.php
new file mode 100644
index 000000000..c27cc3322
--- /dev/null
+++ b/languages/php/src/schemas/ClientSettings.php
@@ -0,0 +1,133 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * ClientSettings
+ * Basic client behavior settings. These settings specify the various targets and behavior of the Bitwarden Client. They are optional and uneditable once the client is initialized.
+ *
+ * Defaults to
+ *
+ * ``` # use bitwarden::client::client_settings::{ClientSettings, DeviceType}; # use assert_matches::assert_matches; let settings = ClientSettings { identity_url: "https://identity.bitwarden.com".to_string(), api_url: "https://api.bitwarden.com".to_string(), user_agent: "Bitwarden Rust-SDK".to_string(), device_type: DeviceType::SDK, }; let default = ClientSettings::default(); assert_matches!(settings, default); ```
+ *
+ * Targets `localhost:8080` for debug builds.
+ */
+class ClientSettings extends ClassStructure
+{
+    const ANDROID = 'Android';
+
+    const I_OS = 'iOS';
+
+    const CHROME_EXTENSION = 'ChromeExtension';
+
+    const FIREFOX_EXTENSION = 'FirefoxExtension';
+
+    const OPERA_EXTENSION = 'OperaExtension';
+
+    const EDGE_EXTENSION = 'EdgeExtension';
+
+    const WINDOWS_DESKTOP = 'WindowsDesktop';
+
+    const MAC_OS_DESKTOP = 'MacOsDesktop';
+
+    const LINUX_DESKTOP = 'LinuxDesktop';
+
+    const CHROME_BROWSER = 'ChromeBrowser';
+
+    const FIREFOX_BROWSER = 'FirefoxBrowser';
+
+    const OPERA_BROWSER = 'OperaBrowser';
+
+    const EDGE_BROWSER = 'EdgeBrowser';
+
+    const IE_BROWSER = 'IEBrowser';
+
+    const UNKNOWN_BROWSER = 'UnknownBrowser';
+
+    const ANDROID_AMAZON = 'AndroidAmazon';
+
+    const UWP = 'UWP';
+
+    const SAFARI_BROWSER = 'SafariBrowser';
+
+    const VIVALDI_BROWSER = 'VivaldiBrowser';
+
+    const VIVALDI_EXTENSION = 'VivaldiExtension';
+
+    const SAFARI_EXTENSION = 'SafariExtension';
+
+    const SDK = 'SDK';
+
+    /** @var string The identity url of the targeted Bitwarden instance. Defaults to `https://identity.bitwarden.com` */
+    public $identityUrl;
+
+    /** @var string The api url of the targeted Bitwarden instance. Defaults to `https://api.bitwarden.com` */
+    public $apiUrl;
+
+    /** @var string The user_agent to sent to Bitwarden. Defaults to `Bitwarden Rust-SDK` */
+    public $userAgent;
+
+    /** @var string Device type to send to Bitwarden. Defaults to SDK */
+    public $deviceType;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->identityUrl = Schema::string();
+        $properties->identityUrl->description = "The identity url of the targeted Bitwarden instance. Defaults to `https://identity.bitwarden.com`";
+        $properties->identityUrl->default = "https://identity.bitwarden.com";
+        $properties->apiUrl = Schema::string();
+        $properties->apiUrl->description = "The api url of the targeted Bitwarden instance. Defaults to `https://api.bitwarden.com`";
+        $properties->apiUrl->default = "https://api.bitwarden.com";
+        $properties->userAgent = Schema::string();
+        $properties->userAgent->description = "The user_agent to sent to Bitwarden. Defaults to `Bitwarden Rust-SDK`";
+        $properties->userAgent->default = "Bitwarden Rust-SDK";
+        $properties->deviceType = new Schema();
+        $propertiesDeviceTypeAllOf0 = Schema::string();
+        $propertiesDeviceTypeAllOf0->enum = array(
+            self::ANDROID,
+            self::I_OS,
+            self::CHROME_EXTENSION,
+            self::FIREFOX_EXTENSION,
+            self::OPERA_EXTENSION,
+            self::EDGE_EXTENSION,
+            self::WINDOWS_DESKTOP,
+            self::MAC_OS_DESKTOP,
+            self::LINUX_DESKTOP,
+            self::CHROME_BROWSER,
+            self::FIREFOX_BROWSER,
+            self::OPERA_BROWSER,
+            self::EDGE_BROWSER,
+            self::IE_BROWSER,
+            self::UNKNOWN_BROWSER,
+            self::ANDROID_AMAZON,
+            self::UWP,
+            self::SAFARI_BROWSER,
+            self::VIVALDI_BROWSER,
+            self::VIVALDI_EXTENSION,
+            self::SAFARI_EXTENSION,
+            self::SDK,
+        );
+        $propertiesDeviceTypeAllOf0->setFromRef('#/definitions/DeviceType');
+        $properties->deviceType->allOf[0] = $propertiesDeviceTypeAllOf0;
+        $properties->deviceType->description = "Device type to send to Bitwarden. Defaults to SDK";
+        $properties->deviceType->default = "SDK";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->schema = "http://json-schema.org/draft-07/schema#";
+        $ownerSchema->title = "ClientSettings";
+        $ownerSchema->description = "Basic client behavior settings. These settings specify the various targets and behavior of the Bitwarden Client. They are optional and uneditable once the client is initialized.\n\nDefaults to\n\n``` # use bitwarden::client::client_settings::{ClientSettings, DeviceType}; # use assert_matches::assert_matches; let settings = ClientSettings { identity_url: \"https://identity.bitwarden.com\".to_string(), api_url: \"https://api.bitwarden.com\".to_string(), user_agent: \"Bitwarden Rust-SDK\".to_string(), device_type: DeviceType::SDK, }; let default = ClientSettings::default(); assert_matches!(settings, default); ```\n\nTargets `localhost:8080` for debug builds.";
+    }
+}
diff --git a/languages/php/src/schemas/Command.php b/languages/php/src/schemas/Command.php
new file mode 100644
index 000000000..cbd649c2f
--- /dev/null
+++ b/languages/php/src/schemas/Command.php
@@ -0,0 +1,44 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\JsonSchema;
+use Swaggest\JsonSchema\Schema;
+
+
+class Command extends BitwardenClassStructure
+{
+    /** @var ProjectsCommand|null */
+    public $projects;
+
+    /** @var SecretsCommand|null */
+    public $secrets;
+
+    /** @var AccessTokenLoginRequest|null */
+    public $accessTokenLogin;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->projects = ProjectsCommand::schema();
+        $properties->secrets = SecretsCommand::schema();
+        $properties->accessTokenLogin = AccessTokenLoginRequest::schema();
+
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+
+        $ownerSchema->oneOf = array(
+          self::names()->projects,
+          self::names()->secrets,
+          self::names()->accessTokenLogin,
+        );
+    }
+}
diff --git a/languages/php/src/schemas/ProjectCreateRequest.php b/languages/php/src/schemas/ProjectCreateRequest.php
new file mode 100644
index 000000000..6a4e0f082
--- /dev/null
+++ b/languages/php/src/schemas/ProjectCreateRequest.php
@@ -0,0 +1,43 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/ProjectCreateRequest
+ */
+class ProjectCreateRequest extends ClassStructure
+{
+    /** @var string Organization where the project will be created */
+    public $organizationId;
+
+    /** @var string */
+    public $name;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->organizationId = Schema::string();
+        $properties->organizationId->description = "Organization where the project will be created";
+        $properties->organizationId->format = "uuid";
+        $properties->name = Schema::string();
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->name,
+            self::names()->organizationId,
+        );
+        $ownerSchema->setFromRef('#/definitions/ProjectCreateRequest');
+    }
+}
diff --git a/languages/php/src/schemas/ProjectGetRequest.php b/languages/php/src/schemas/ProjectGetRequest.php
new file mode 100644
index 000000000..972bf18ec
--- /dev/null
+++ b/languages/php/src/schemas/ProjectGetRequest.php
@@ -0,0 +1,37 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+
+
+/**
+ * Built from #/definitions/ProjectGetRequest
+ */
+class ProjectGetRequest extends BitwardenClassStructure
+{
+    /** @var string ID of the project to retrieve */
+    public $id;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->id = Schema::string();
+        $properties->id->description = "ID of the project to retrieve";
+        $properties->id->format = "uuid";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->id,
+        );
+        $ownerSchema->setFromRef('#/definitions/ProjectGetRequest');
+    }
+}
diff --git a/languages/php/src/schemas/ProjectPutRequest.php b/languages/php/src/schemas/ProjectPutRequest.php
new file mode 100644
index 000000000..96b9705e7
--- /dev/null
+++ b/languages/php/src/schemas/ProjectPutRequest.php
@@ -0,0 +1,50 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/ProjectPutRequest
+ */
+class ProjectPutRequest extends ClassStructure
+{
+    /** @var string ID of the project to modify */
+    public $id;
+
+    /** @var string Organization ID of the project to modify */
+    public $organizationId;
+
+    /** @var string */
+    public $name;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->id = Schema::string();
+        $properties->id->description = "ID of the project to modify";
+        $properties->id->format = "uuid";
+        $properties->organizationId = Schema::string();
+        $properties->organizationId->description = "Organization ID of the project to modify";
+        $properties->organizationId->format = "uuid";
+        $properties->name = Schema::string();
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->id,
+            self::names()->name,
+            self::names()->organizationId,
+        );
+        $ownerSchema->setFromRef('#/definitions/ProjectPutRequest');
+    }
+}
diff --git a/languages/php/src/schemas/ProjectsCommand.php b/languages/php/src/schemas/ProjectsCommand.php
new file mode 100644
index 000000000..22645db3c
--- /dev/null
+++ b/languages/php/src/schemas/ProjectsCommand.php
@@ -0,0 +1,55 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\JsonSchema;
+use Swaggest\JsonSchema\Schema;
+
+
+/**
+ * > Requires Authentication > Requires using an Access Token for login or calling Sync at least once Deletes all the projects whose IDs match the provided ones
+ *
+ * Returns: [ProjectsDeleteResponse](bitwarden::secrets_manager::projects::ProjectsDeleteResponse)
+ */
+class ProjectsCommand extends BitwardenClassStructure
+{
+    public ?\stdClass $delete;
+
+    public ?\stdClass $get;
+
+    public ?\stdClass $list;
+
+    public ?\stdClass $create;
+
+    public ?\stdClass $update;
+
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->delete = ProjectsDeleteRequest::schema() ? ProjectsDeleteRequest::schema() : null;
+        $properties->get = ProjectGetRequest::schema() ? ProjectGetRequest::schema() : null;
+        $properties->list = ProjectsListRequest::schema() ? ProjectsListRequest::schema() : null;
+        $properties->update = ProjectPutRequest::schema() ? ProjectPutRequest::schema() : null;
+        $properties->create = ProjectCreateRequest::schema() ? ProjectCreateRequest::schema() : null;
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->description = "> Requires Authentication > Requires using an Access Token for login or calling Sync at least once Deletes all the projects whose IDs match the provided ones\n\nReturns: [ProjectsDeleteResponse](bitwarden::secrets_manager::projects::ProjectsDeleteResponse)";
+
+        $ownerSchema->oneOf = array(
+            self::names()->create,
+            self::names()->delete,
+            self::names()->get,
+            self::names()->list,
+            self::names()->update,
+        );
+    }
+}
diff --git a/languages/php/src/schemas/ProjectsDeleteRequest.php b/languages/php/src/schemas/ProjectsDeleteRequest.php
new file mode 100644
index 000000000..87a7cfad7
--- /dev/null
+++ b/languages/php/src/schemas/ProjectsDeleteRequest.php
@@ -0,0 +1,39 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/ProjectsDeleteRequest
+ */
+class ProjectsDeleteRequest extends ClassStructure
+{
+    /** @var string[]|array IDs of the projects to delete */
+    public $ids;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->ids = Schema::arr();
+        $properties->ids->items = Schema::string();
+        $properties->ids->items->format = "uuid";
+        $properties->ids->description = "IDs of the projects to delete";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->ids,
+        );
+        $ownerSchema->setFromRef('#/definitions/ProjectsDeleteRequest');
+    }
+}
diff --git a/languages/php/src/schemas/ProjectsListRequest.php b/languages/php/src/schemas/ProjectsListRequest.php
new file mode 100644
index 000000000..cc1a9474f
--- /dev/null
+++ b/languages/php/src/schemas/ProjectsListRequest.php
@@ -0,0 +1,38 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/ProjectsListRequest
+ */
+class ProjectsListRequest extends ClassStructure
+{
+    /** @var string Organization to retrieve all the projects from */
+    public $organizationId;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->organizationId = Schema::string();
+        $properties->organizationId->description = "Organization to retrieve all the projects from";
+        $properties->organizationId->format = "uuid";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->organizationId,
+        );
+        $ownerSchema->setFromRef('#/definitions/ProjectsListRequest');
+    }
+}
diff --git a/languages/php/src/schemas/SecretCreateRequest.php b/languages/php/src/schemas/SecretCreateRequest.php
new file mode 100644
index 000000000..d34b36e98
--- /dev/null
+++ b/languages/php/src/schemas/SecretCreateRequest.php
@@ -0,0 +1,58 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/SecretCreateRequest
+ * @property string[]|array|null $projectIds IDs of the projects that this secret will belong to
+ */
+class SecretCreateRequest extends ClassStructure
+{
+    /** @var string Organization where the secret will be created */
+    public $organizationId;
+
+    /** @var string */
+    public $key;
+
+    /** @var string */
+    public $value;
+
+    /** @var string */
+    public $note;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->organizationId = Schema::string();
+        $properties->organizationId->description = "Organization where the secret will be created";
+        $properties->organizationId->format = "uuid";
+        $properties->key = Schema::string();
+        $properties->value = Schema::string();
+        $properties->note = Schema::string();
+        $properties->projectIds = (new Schema())->setType([Schema::_ARRAY, Schema::NULL]);
+        $properties->projectIds->items = Schema::string();
+        $properties->projectIds->items->format = "uuid";
+        $properties->projectIds->description = "IDs of the projects that this secret will belong to";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->key,
+            self::names()->note,
+            self::names()->organizationId,
+            self::names()->value,
+        );
+        $ownerSchema->setFromRef('#/definitions/SecretCreateRequest');
+    }
+}
diff --git a/languages/php/src/schemas/SecretGetRequest.php b/languages/php/src/schemas/SecretGetRequest.php
new file mode 100644
index 000000000..f31f7cad3
--- /dev/null
+++ b/languages/php/src/schemas/SecretGetRequest.php
@@ -0,0 +1,38 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/SecretGetRequest
+ */
+class SecretGetRequest extends ClassStructure
+{
+    /** @var string ID of the secret to retrieve */
+    public $id;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->id = Schema::string();
+        $properties->id->description = "ID of the secret to retrieve";
+        $properties->id->format = "uuid";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->id,
+        );
+        $ownerSchema->setFromRef('#/definitions/SecretGetRequest');
+    }
+}
diff --git a/languages/php/src/schemas/SecretIdentifiersRequest.php b/languages/php/src/schemas/SecretIdentifiersRequest.php
new file mode 100644
index 000000000..b4e75b801
--- /dev/null
+++ b/languages/php/src/schemas/SecretIdentifiersRequest.php
@@ -0,0 +1,38 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/SecretIdentifiersRequest
+ */
+class SecretIdentifiersRequest extends ClassStructure
+{
+    /** @var string Organization to retrieve all the secrets from */
+    public $organizationId;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->organizationId = Schema::string();
+        $properties->organizationId->description = "Organization to retrieve all the secrets from";
+        $properties->organizationId->format = "uuid";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->organizationId,
+        );
+        $ownerSchema->setFromRef('#/definitions/SecretIdentifiersRequest');
+    }
+}
diff --git a/languages/php/src/schemas/SecretPutRequest.php b/languages/php/src/schemas/SecretPutRequest.php
new file mode 100644
index 000000000..d890a909d
--- /dev/null
+++ b/languages/php/src/schemas/SecretPutRequest.php
@@ -0,0 +1,64 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/SecretPutRequest
+ * @property string[]|array|null $projectIds
+ */
+class SecretPutRequest extends ClassStructure
+{
+    /** @var string ID of the secret to modify */
+    public $id;
+
+    /** @var string Organization ID of the secret to modify */
+    public $organizationId;
+
+    /** @var string */
+    public $key;
+
+    /** @var string */
+    public $value;
+
+    /** @var string */
+    public $note;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->id = Schema::string();
+        $properties->id->description = "ID of the secret to modify";
+        $properties->id->format = "uuid";
+        $properties->organizationId = Schema::string();
+        $properties->organizationId->description = "Organization ID of the secret to modify";
+        $properties->organizationId->format = "uuid";
+        $properties->key = Schema::string();
+        $properties->value = Schema::string();
+        $properties->note = Schema::string();
+        $properties->projectIds = (new Schema())->setType([Schema::_ARRAY, Schema::NULL]);
+        $properties->projectIds->items = Schema::string();
+        $properties->projectIds->items->format = "uuid";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->id,
+            self::names()->key,
+            self::names()->note,
+            self::names()->organizationId,
+            self::names()->value,
+        );
+        $ownerSchema->setFromRef('#/definitions/SecretPutRequest');
+    }
+}
diff --git a/languages/php/src/schemas/SecretVerificationRequest.php b/languages/php/src/schemas/SecretVerificationRequest.php
new file mode 100644
index 000000000..95cfd1e15
--- /dev/null
+++ b/languages/php/src/schemas/SecretVerificationRequest.php
@@ -0,0 +1,35 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/SecretVerificationRequest
+ * @property string|null $masterPassword The user's master password to use for user verification. If supplied, this will be used for verification purposes.
+ * @property string|null $otp Alternate user verification method through OTP. This is provided for users who have no master password due to use of Customer Managed Encryption. Must be present and valid if master_password is absent.
+ */
+class SecretVerificationRequest extends ClassStructure
+{
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->masterPassword = (new Schema())->setType([Schema::STRING, Schema::NULL]);
+        $properties->masterPassword->description = "The user's master password to use for user verification. If supplied, this will be used for verification purposes.";
+        $properties->otp = (new Schema())->setType([Schema::STRING, Schema::NULL]);
+        $properties->otp->description = "Alternate user verification method through OTP. This is provided for users who have no master password due to use of Customer Managed Encryption. Must be present and valid if master_password is absent.";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->setFromRef('#/definitions/SecretVerificationRequest');
+    }
+}
diff --git a/languages/php/src/schemas/SecretsCommand.php b/languages/php/src/schemas/SecretsCommand.php
new file mode 100644
index 000000000..1ed8c97c5
--- /dev/null
+++ b/languages/php/src/schemas/SecretsCommand.php
@@ -0,0 +1,56 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+//use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * > Requires Authentication > Requires using an Access Token for login or calling Sync at least once Deletes all the secrets whose IDs match the provided ones
+ *
+ * Returns: [SecretsDeleteResponse](bitwarden::secrets_manager::secrets::SecretsDeleteResponse)
+ */
+class SecretsCommand extends BitwardenClassStructure
+{
+    public ?\stdClass $delete;
+
+    public ?\stdClass $get;
+
+    public ?\stdClass $getByIds;
+
+    public ?\stdClass $list;
+
+    public ?\stdClass $create;
+
+    public ?\stdClass $put;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->delete = SecretsDeleteRequest::schema() ? SecretsDeleteRequest::schema() : null;
+        $properties->getByIds = SecretsGetRequest::schema() ? SecretGetRequest::schema() : null;
+        $properties->create = SecretCreateRequest::schema() ? SecretCreateRequest::schema() : null;
+        $properties->put = SecretPutRequest::schema() ? SecretPutRequest::schema() : null;
+        $properties->list = SecretIdentifiersRequest::schema() ? SecretIdentifiersRequest::schema() : null;
+        $properties->get = SecretsGetRequest::schema() ? SecretGetRequest::schema() : null;
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->description = "> Requires Authentication > Requires using an Access Token for login or calling Sync at least once Deletes all the secrets whose IDs match the provided ones\n\nReturns: [SecretsDeleteResponse](bitwarden::secrets_manager::secrets::SecretsDeleteResponse)";
+        $ownerSchema->oneOf = array(
+            self::names()->create,
+            self::names()->put,
+            self::names()->list,
+            self::names()->getByIds,
+            self::names()->delete,
+        );
+    }
+}
diff --git a/languages/php/src/schemas/SecretsDeleteRequest.php b/languages/php/src/schemas/SecretsDeleteRequest.php
new file mode 100644
index 000000000..35138fcb1
--- /dev/null
+++ b/languages/php/src/schemas/SecretsDeleteRequest.php
@@ -0,0 +1,39 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/SecretsDeleteRequest
+ */
+class SecretsDeleteRequest extends ClassStructure
+{
+    /** @var string[]|array IDs of the secrets to delete */
+    public $ids;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->ids = Schema::arr();
+        $properties->ids->items = Schema::string();
+        $properties->ids->items->format = "uuid";
+        $properties->ids->description = "IDs of the secrets to delete";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->ids,
+        );
+        $ownerSchema->setFromRef('#/definitions/SecretsDeleteRequest');
+    }
+}
diff --git a/languages/php/src/schemas/SecretsGetRequest.php b/languages/php/src/schemas/SecretsGetRequest.php
new file mode 100644
index 000000000..4758dabf4
--- /dev/null
+++ b/languages/php/src/schemas/SecretsGetRequest.php
@@ -0,0 +1,39 @@
+<?php
+/**
+ * @file ATTENTION!!! The code below was carefully crafted by a mean machine.
+ * Please consider to NOT put any emotional human-generated modifications as the splendid AI will throw them away with no mercy.
+ */
+
+namespace Bitwarden\Sdk\Schemas;
+
+use Swaggest\JsonSchema\Constraint\Properties;
+use Swaggest\JsonSchema\Schema;
+use Swaggest\JsonSchema\Structure\ClassStructure;
+
+
+/**
+ * Built from #/definitions/SecretsGetRequest
+ */
+class SecretsGetRequest extends ClassStructure
+{
+    /** @var string[]|array IDs of the secrets to retrieve */
+    public $ids;
+
+    /**
+     * @param Properties|static $properties
+     * @param Schema $ownerSchema
+     */
+    public static function setUpProperties($properties, Schema $ownerSchema)
+    {
+        $properties->ids = Schema::arr();
+        $properties->ids->items = Schema::string();
+        $properties->ids->items->format = "uuid";
+        $properties->ids->description = "IDs of the secrets to retrieve";
+        $ownerSchema->type = Schema::OBJECT;
+        $ownerSchema->additionalProperties = false;
+        $ownerSchema->required = array(
+            self::names()->ids,
+        );
+        $ownerSchema->setFromRef('#/definitions/SecretsGetRequest');
+    }
+}

From 12fa28a5b94dc7274b9f158ceca1f233aa334205 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Fri, 1 Dec 2023 14:12:29 +0100
Subject: [PATCH 45/55] Unpin wasm-bindgen (#373)

## Type of change
```
- [ ] Bug fix
- [ ] New feature development
- [x] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
wasm-bindgen was pinned because version 0.2.88 had some accidental
backwards incompatible breaking changes. Those are fixed in 0.2.89 so we
can remove the pin now
---
 Cargo.lock                       | 20 ++++++++++----------
 crates/bitwarden-wasm/Cargo.toml |  2 +-
 2 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 50e263401..ad20c5f96 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -3707,9 +3707,9 @@ checksum = "9c8d87e72b64a3b4db28d11ce29237c246188f4f51057d65a7eab63b7987e423"
 
 [[package]]
 name = "wasm-bindgen"
-version = "0.2.87"
+version = "0.2.89"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7706a72ab36d8cb1f80ffbf0e071533974a60d0a308d01a5d0375bf60499a342"
+checksum = "0ed0d4f68a3015cc185aff4db9506a015f4b96f95303897bfa23f846db54064e"
 dependencies = [
  "cfg-if",
  "serde",
@@ -3719,9 +3719,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-backend"
-version = "0.2.87"
+version = "0.2.89"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5ef2b6d3c510e9625e5fe6f509ab07d66a760f0885d858736483c32ed7809abd"
+checksum = "1b56f625e64f3a1084ded111c4d5f477df9f8c92df113852fa5a374dbda78826"
 dependencies = [
  "bumpalo",
  "log",
@@ -3746,9 +3746,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-macro"
-version = "0.2.87"
+version = "0.2.89"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dee495e55982a3bd48105a7b947fd2a9b4a8ae3010041b9e0faab3f9cd028f1d"
+checksum = "0162dbf37223cd2afce98f3d0785506dcb8d266223983e4b5b525859e6e182b2"
 dependencies = [
  "quote",
  "wasm-bindgen-macro-support",
@@ -3756,9 +3756,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-macro-support"
-version = "0.2.87"
+version = "0.2.89"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "54681b18a46765f095758388f2d0cf16eb8d4169b639ab575a8f5693af210c7b"
+checksum = "f0eb82fcb7930ae6219a7ecfd55b217f5f0893484b7a13022ebb2b2bf20b5283"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -3769,9 +3769,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-shared"
-version = "0.2.87"
+version = "0.2.89"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ca6ad05a4870b2bf5fe995117d3728437bd27d7cd5f06f13c17443ef369775a1"
+checksum = "7ab9b36309365056cd639da3134bf87fa8f3d86008abf99e612384a6eecd459f"
 
 [[package]]
 name = "wasm-bindgen-test"
diff --git a/crates/bitwarden-wasm/Cargo.toml b/crates/bitwarden-wasm/Cargo.toml
index 7ad0d1c3e..9a14d26b7 100644
--- a/crates/bitwarden-wasm/Cargo.toml
+++ b/crates/bitwarden-wasm/Cargo.toml
@@ -13,7 +13,7 @@ console_log = { version = "1.0.0", features = ["color"] }
 js-sys = "0.3.63"
 log = "0.4.20"
 serde = { version = "1.0.193", features = ["derive"] }
-wasm-bindgen = { version = "=0.2.87", features = ["serde-serialize"] }
+wasm-bindgen = { version = "0.2.89", features = ["serde-serialize"] }
 wasm-bindgen-futures = "0.4.36"
 
 bitwarden-json = { path = "../bitwarden-json", features = ["secrets"] }

From 20c38c91d168ceadf807a6c24570cc997c954047 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Fri, 1 Dec 2023 16:45:50 +0100
Subject: [PATCH 46/55] Reduce the number of CI jobs that are run on PRs (#375)

## Type of change
```
- [ ] Bug fix
- [ ] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [x] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
With the recent addition of all the SDK language bindings, we've added a
lot of CI jobs on PRs that are unnecessary and slow down builds. By
switching them to run only on merge we should save some CI time.

Ultimately, we'd want some way to make it so that the `Build Rust Cross
Platform` get only called once and reused for every language SDK, but
for now this should help.
---
 .github/workflows/build-dotnet.yml | 2 +-
 .github/workflows/build-java.yml   | 2 +-
 .github/workflows/publish-php.yml  | 2 +-
 .github/workflows/publish-ruby.yml | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/build-dotnet.yml b/.github/workflows/build-dotnet.yml
index 272fec363..1889d5656 100644
--- a/.github/workflows/build-dotnet.yml
+++ b/.github/workflows/build-dotnet.yml
@@ -1,7 +1,7 @@
 name: Build .NET SDK
 
 on:
-  pull_request:
+  push:
     branches:
       - master
 
diff --git a/.github/workflows/build-java.yml b/.github/workflows/build-java.yml
index e500424dd..aa99523a7 100644
--- a/.github/workflows/build-java.yml
+++ b/.github/workflows/build-java.yml
@@ -1,7 +1,7 @@
 name: Build Java SDK
 
 on:
-  pull_request:
+  push:
     branches:
       - master
 
diff --git a/.github/workflows/publish-php.yml b/.github/workflows/publish-php.yml
index b443f2057..bc1478bc5 100644
--- a/.github/workflows/publish-php.yml
+++ b/.github/workflows/publish-php.yml
@@ -1,7 +1,7 @@
 name: Publish PHP SDK
 
 on:
-  pull_request:
+  push:
     branches:
       - master
 
diff --git a/.github/workflows/publish-ruby.yml b/.github/workflows/publish-ruby.yml
index da641dce5..b4e022243 100644
--- a/.github/workflows/publish-ruby.yml
+++ b/.github/workflows/publish-ruby.yml
@@ -1,7 +1,7 @@
 name: Publish Ruby SDK
 
 on:
-  pull_request:
+  push:
     branches:
       - master
 

From 267d79fe6055db6f911317c4605d3812f1adcb49 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20Garc=C3=ADa?=
 <dani-garcia@users.noreply.github.com>
Date: Fri, 1 Dec 2023 17:17:45 +0100
Subject: [PATCH 47/55] Add binary files to gitignore (#376)

## Type of change
```
- [ ] Bug fix
- [ ] New feature development
- [x] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [ ] Other
```

## Objective
These files have to be copied in specific places when building the SDK
bindings, and having them tracked by git is quite annoying.
---
 .gitignore | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/.gitignore b/.gitignore
index 007c3e839..18d2d6639 100644
--- a/.gitignore
+++ b/.gitignore
@@ -15,6 +15,13 @@ bld/
 [Bb]in/
 [Oo]bj/
 
+# Binary files
+*.dylib
+*.a
+*.so
+*.dll
+*.class
+
 # Editor directories and files
 .idea
 xcuserdata/

From 87327115365d0e75ac32e5714c12566dae647cfd Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 00:12:38 +0100
Subject: [PATCH 48/55] [deps]: Update Rust crate wiremock to 0.5.22 (#379)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [wiremock](https://togithub.com/LukeMathWalker/wiremock-rs) |
dev-dependencies | patch | `0.5.21` -> `0.5.22` |

---

### Release Notes

<details>
<summary>LukeMathWalker/wiremock-rs (wiremock)</summary>

###
[`v0.5.22`](https://togithub.com/LukeMathWalker/wiremock-rs/compare/v0.5.21...v0.5.22)

[Compare
Source](https://togithub.com/LukeMathWalker/wiremock-rs/compare/v0.5.21...v0.5.22)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "every weekend" (UTC), Automerge - At
any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/bitwarden/sdk).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy41OS44IiwidXBkYXRlZEluVmVyIjoiMzcuODEuMyIsInRhcmdldEJyYW5jaCI6Im1hc3RlciJ9-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock                  | 4 ++--
 crates/bitwarden/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index ad20c5f96..49abafb26 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -4017,9 +4017,9 @@ dependencies = [
 
 [[package]]
 name = "wiremock"
-version = "0.5.21"
+version = "0.5.22"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "079aee011e8a8e625d16df9e785de30a6b77f80a6126092d76a57375f96448da"
+checksum = "13a3a53eaf34f390dd30d7b1b078287dd05df2aa2e21a589ccb80f5c7253c2e9"
 dependencies = [
  "assert-json-diff",
  "async-trait",
diff --git a/crates/bitwarden/Cargo.toml b/crates/bitwarden/Cargo.toml
index aea2cfe9e..308f98850 100644
--- a/crates/bitwarden/Cargo.toml
+++ b/crates/bitwarden/Cargo.toml
@@ -60,4 +60,4 @@ uuid = { version = ">=1.3.3, <2.0", features = ["serde"] }
 [dev-dependencies]
 rand_chacha = "0.3.1"
 tokio = { version = "1.34.0", features = ["rt", "macros"] }
-wiremock = "0.5.21"
+wiremock = "0.5.22"

From ac167df7ecbf39e90e5df8fcd8b809c697ebb961 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 00:13:46 +0100
Subject: [PATCH 49/55] [deps]: Update Rust crate clap to 4.4.10 (#378)

---
 Cargo.lock                      | 8 ++++----
 crates/bitwarden-cli/Cargo.toml | 2 +-
 crates/bw/Cargo.toml            | 2 +-
 crates/bws/Cargo.toml           | 2 +-
 4 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 49abafb26..cc507ac33 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -657,9 +657,9 @@ dependencies = [
 
 [[package]]
 name = "clap"
-version = "4.4.8"
+version = "4.4.10"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2275f18819641850fa26c89acc84d465c1bf91ce57bc2748b28c420473352f64"
+checksum = "41fffed7514f420abec6d183b1d3acfd9099c79c3a10a06ade4f8203f1411272"
 dependencies = [
  "clap_builder",
  "clap_derive",
@@ -667,9 +667,9 @@ dependencies = [
 
 [[package]]
 name = "clap_builder"
-version = "4.4.8"
+version = "4.4.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "07cdf1b148b25c1e1f7a42225e30a0d99a615cd4637eae7365548dd4529b95bc"
+checksum = "63361bae7eef3771745f02d8d892bec2fee5f6e34af316ba556e7f97a7069ff1"
 dependencies = [
  "anstream",
  "anstyle",
diff --git a/crates/bitwarden-cli/Cargo.toml b/crates/bitwarden-cli/Cargo.toml
index 0966f7885..86ca2fac1 100644
--- a/crates/bitwarden-cli/Cargo.toml
+++ b/crates/bitwarden-cli/Cargo.toml
@@ -5,7 +5,7 @@ edition = "2021"
 rust-version = "1.57"
 
 [dependencies]
-clap = { version = "4.4.8", features = ["derive"] }
+clap = { version = "4.4.10", features = ["derive"] }
 color-eyre = "0.6"
 inquire = "0.6.2"
 supports-color = "2.1.0"
diff --git a/crates/bw/Cargo.toml b/crates/bw/Cargo.toml
index 9ceb2b153..706628f53 100644
--- a/crates/bw/Cargo.toml
+++ b/crates/bw/Cargo.toml
@@ -13,7 +13,7 @@ Bitwarden Password Manager CLI
 keywords = ["bitwarden", "password-manager", "cli"]
 
 [dependencies]
-clap = { version = "4.4.8", features = ["derive", "env"] }
+clap = { version = "4.4.10", features = ["derive", "env"] }
 color-eyre = "0.6"
 env_logger = "0.10.1"
 inquire = "0.6.2"
diff --git a/crates/bws/Cargo.toml b/crates/bws/Cargo.toml
index 95dbef003..cef520b1a 100644
--- a/crates/bws/Cargo.toml
+++ b/crates/bws/Cargo.toml
@@ -20,7 +20,7 @@ chrono = { version = "0.4.31", features = [
     "clock",
     "std",
 ], default-features = false }
-clap = { version = "4.4.8", features = ["derive", "env", "string"] }
+clap = { version = "4.4.10", features = ["derive", "env", "string"] }
 clap_complete = "4.4.4"
 color-eyre = "0.6"
 comfy-table = "^7.1.0"

From 4dfc1150e7a82b68b271e625eeca8f8237e750a5 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 00:15:07 +0100
Subject: [PATCH 50/55] [deps]: Update System.Text.Json to v7.0.4 (#380)

---
 languages/csharp/Bitwarden.Sdk/Bitwarden.Sdk.csproj | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/languages/csharp/Bitwarden.Sdk/Bitwarden.Sdk.csproj b/languages/csharp/Bitwarden.Sdk/Bitwarden.Sdk.csproj
index c110785a9..951b893ab 100644
--- a/languages/csharp/Bitwarden.Sdk/Bitwarden.Sdk.csproj
+++ b/languages/csharp/Bitwarden.Sdk/Bitwarden.Sdk.csproj
@@ -24,7 +24,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="System.Text.Json" Version="7.0.3" />
+    <PackageReference Include="System.Text.Json" Version="7.0.4" />
     <None Include="bitwarden.png" Pack="true" PackagePath="\" />
     <None Include="../README.md" Pack="true" PackagePath="\" />
     <None Include="../LICENSE.txt" Pack="true" PackagePath="\" />

From ac340edb88d7813caecd2c552fef2b85204e19da Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 00:15:50 +0100
Subject: [PATCH 51/55] [deps]: Update quicktype-core to v23.0.80 (#382)

---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 6ee8982ec..71dd5d501 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -12,7 +12,7 @@
         "@openapitools/openapi-generator-cli": "2.7.0",
         "handlebars": "^4.7.8",
         "prettier": "3.1.0",
-        "quicktype-core": "23.0.79",
+        "quicktype-core": "23.0.80",
         "rimraf": "5.0.5",
         "ts-node": "10.9.1",
         "typescript": "5.2.2"
@@ -1494,9 +1494,9 @@
       }
     },
     "node_modules/quicktype-core": {
-      "version": "23.0.79",
-      "resolved": "https://registry.npmjs.org/quicktype-core/-/quicktype-core-23.0.79.tgz",
-      "integrity": "sha512-Auzy8AhorFt6YGeB53/dzUSINmKKassAyCsr2wpNgG9XoC3i6oUoLuySNUzYIkyCFCGmKdBRBQeyAqPOVteoYw==",
+      "version": "23.0.80",
+      "resolved": "https://registry.npmjs.org/quicktype-core/-/quicktype-core-23.0.80.tgz",
+      "integrity": "sha512-dd+aJRzAl3MzkaXJMjUu0j60y82gwX/RRr3EvW/aScQKycvkgwliNDN2tIiLB06EKBzjgC9mtlMqKyRg2rYKhQ==",
       "dev": true,
       "dependencies": {
         "@glideapps/ts-necessities": "2.1.3",
diff --git a/package.json b/package.json
index 97f08c571..3c475897d 100644
--- a/package.json
+++ b/package.json
@@ -23,7 +23,7 @@
     "@openapitools/openapi-generator-cli": "2.7.0",
     "handlebars": "^4.7.8",
     "prettier": "3.1.0",
-    "quicktype-core": "23.0.79",
+    "quicktype-core": "23.0.80",
     "rimraf": "5.0.5",
     "ts-node": "10.9.1",
     "typescript": "5.2.2"

From c4ee7bcf568d265947e1469f76dc8e8fc0a5393e Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 10:53:52 +0100
Subject: [PATCH 52/55] [deps]: Update Rust crate async-lock to 3.2.0 (#389)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [async-lock](https://togithub.com/smol-rs/async-lock) | dependencies |
minor | `3.1.2` -> `3.2.0` |

---

### Release Notes

<details>
<summary>smol-rs/async-lock (async-lock)</summary>

###
[`v3.2.0`](https://togithub.com/smol-rs/async-lock/blob/HEAD/CHANGELOG.md#Version-320)

[Compare
Source](https://togithub.com/smol-rs/async-lock/compare/v3.1.2...v3.2.0)

- Add missing methods for blocking on locking with types wrapped in
`Arc` ([#&#8203;71](https://togithub.com/smol-rs/async-lock/issues/71)).

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "every weekend" (UTC), Automerge - At
any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/bitwarden/sdk).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy44MS4zIiwidXBkYXRlZEluVmVyIjoiMzcuODEuMyIsInRhcmdldEJyYW5jaCI6Im1hc3RlciJ9-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock                         | 4 ++--
 crates/bitwarden-uniffi/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index cc507ac33..5aa51175d 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -203,9 +203,9 @@ dependencies = [
 
 [[package]]
 name = "async-lock"
-version = "3.1.2"
+version = "3.2.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dea8b3453dd7cc96711834b75400d671b73e3656975fa68d9f277163b7f7e316"
+checksum = "7125e42787d53db9dd54261812ef17e937c95a51e4d291373b670342fa44310c"
 dependencies = [
  "event-listener 4.0.0",
  "event-listener-strategy",
diff --git a/crates/bitwarden-uniffi/Cargo.toml b/crates/bitwarden-uniffi/Cargo.toml
index c1a47ea29..ecde30a4b 100644
--- a/crates/bitwarden-uniffi/Cargo.toml
+++ b/crates/bitwarden-uniffi/Cargo.toml
@@ -12,7 +12,7 @@ crate-type = ["lib", "staticlib", "cdylib"]
 bench = false
 
 [dependencies]
-async-lock = "3.1.2"
+async-lock = "3.2.0"
 chrono = { version = ">=0.4.26, <0.5", features = [
     "serde",
     "std",

From 9244d76b7e910d72f19f780d6e9189d58e268838 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 10:57:27 +0100
Subject: [PATCH 53/55] [deps]: Lock file maintenance (#391)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Update | Change |
|---|---|
| lockFileMaintenance | All locks refreshed |

🔧 This Pull Request updates lock files to use the latest dependency
versions.

---

### Configuration

📅 **Schedule**: Branch creation - "before 4am on Monday" (UTC),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config help](https://togithub.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/bitwarden/sdk).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy44MS4zIiwidXBkYXRlZEluVmVyIjoiMzcuODEuMyIsInRhcmdldEJyYW5jaCI6Im1hc3RlciJ9-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 Cargo.lock                                 | 177 ++++++++++++++-------
 crates/bitwarden-napi/package-lock.json    |  12 +-
 languages/js_webassembly/package-lock.json |  72 ++++-----
 package-lock.json                          |  30 ++--
 4 files changed, 179 insertions(+), 112 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 5aa51175d..d1c2dc9c0 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -763,9 +763,9 @@ dependencies = [
 
 [[package]]
 name = "concurrent-queue"
-version = "2.3.0"
+version = "2.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f057a694a54f12365049b0958a1685bb52d567f5593b355fbf685838e873d400"
+checksum = "d16048cd947b08fa32c24458a22f5dc5e835264f689f4f5653210c69fd107363"
 dependencies = [
  "crossbeam-utils",
 ]
@@ -830,9 +830,9 @@ dependencies = [
 
 [[package]]
 name = "core-foundation"
-version = "0.9.3"
+version = "0.9.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "194a7a9e6de53fa55116934067c844d9d749312f75c6f6d0980e8c252f8c2146"
+checksum = "91e195e091a93c46f7102ec7818a2aa394e1e1771c3ab4825963fa03e45afb8f"
 dependencies = [
  "core-foundation-sys",
  "libc",
@@ -840,9 +840,9 @@ dependencies = [
 
 [[package]]
 name = "core-foundation-sys"
-version = "0.8.4"
+version = "0.8.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e496a50fda8aacccc86d7529e2c1e0892dbd0f898a6b5645b5561b89c3210efa"
+checksum = "06ea2b9bc92be3c2baa9334a323ebca2d6f074ff852cd1d7b11064035cd3868f"
 
 [[package]]
 name = "cpufeatures"
@@ -961,9 +961,9 @@ dependencies = [
 
 [[package]]
 name = "deranged"
-version = "0.3.9"
+version = "0.3.10"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0f32d04922c60427da6f9fef14d042d9edddef64cb9d4ce0d64d0685fbeb1fd3"
+checksum = "8eb30d70a07a3b04884d2677f06bec33509dc67ca60d92949e5535352d3191dc"
 dependencies = [
  "powerfmt",
 ]
@@ -1049,12 +1049,12 @@ checksum = "5443807d6dff69373d433ab9ef5378ad8df50ca6298caf15de6e52e24aaf54d5"
 
 [[package]]
 name = "errno"
-version = "0.3.7"
+version = "0.3.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f258a7194e7f7c2a7837a8913aeab7fd8c383457034fa20ce4dd3dcb813e8eb8"
+checksum = "a258e46cdc063eb8519c00b9fc845fc47bcfca4130e2f08e88665ceda8474245"
 dependencies = [
  "libc",
- "windows-sys 0.48.0",
+ "windows-sys 0.52.0",
 ]
 
 [[package]]
@@ -1142,18 +1142,18 @@ checksum = "00b0228411908ca8685dba7fc2cdd70ec9990a6e753e89b6ac91a84c40fbaf4b"
 
 [[package]]
 name = "form_urlencoded"
-version = "1.2.0"
+version = "1.2.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a62bc1cf6f830c2ec14a513a9fb124d0a213a629668a4186f329db21fe045652"
+checksum = "e13624c2627564efccf4934284bdd98cbaa14e79b0b5a141218e507b3a823456"
 dependencies = [
  "percent-encoding",
 ]
 
 [[package]]
 name = "fs-err"
-version = "2.10.0"
+version = "2.11.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fb5fd9bcbe8b1087cbd395b51498c01bc997cef73e778a80b77a811af5e2d29f"
+checksum = "88a41f105fe1d5b6b34b2055e3dc59bb79b46b48b2040b9e6c7b4b5de097aa41"
 dependencies = [
  "autocfg",
 ]
@@ -1317,9 +1317,9 @@ dependencies = [
 
 [[package]]
 name = "gimli"
-version = "0.28.0"
+version = "0.28.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6fb8d784f27acf97159b40fc4db5ecd8aa23b9ad5ef69cdd136d3bc80665f0c0"
+checksum = "4271d37baee1b8c7e4b708028c57d816cf9d2434acb33a549475f78c181f6253"
 
 [[package]]
 name = "glob"
@@ -1329,15 +1329,15 @@ checksum = "d2fabcfbdc87f4758337ca535fb41a6d701b65693ce38287d856d1674551ec9b"
 
 [[package]]
 name = "globset"
-version = "0.4.13"
+version = "0.4.14"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "759c97c1e17c55525b57192c06a267cda0ac5210b222d6b82189a2338fa1c13d"
+checksum = "57da3b9b5b85bd66f31093f8c408b90a74431672542466497dcbdfdc02034be1"
 dependencies = [
  "aho-corasick",
  "bstr",
- "fnv",
  "log",
- "regex",
+ "regex-automata 0.4.3",
+ "regex-syntax 0.8.2",
 ]
 
 [[package]]
@@ -1378,9 +1378,9 @@ checksum = "8a9ee70c43aaf417c914396645a0fa852624801b24ebb7ae78fe8272889ac888"
 
 [[package]]
 name = "hashbrown"
-version = "0.14.2"
+version = "0.14.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f93e7192158dbcda357bdec5fb5788eebf8bbac027f3f33e719d29135ae84156"
+checksum = "290f1a1d9242c78d09ce40a5e87e7554ee637af1351968159f4952f028f75604"
 
 [[package]]
 name = "heck"
@@ -1544,9 +1544,9 @@ dependencies = [
 
 [[package]]
 name = "idna"
-version = "0.4.0"
+version = "0.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7d20d6b07bfbc108882d88ed8e37d39636dcc260e15e30c45e6ba089610b917c"
+checksum = "634d9b1461af396cad843f47fdba5597a4f9e6ddd4bfb6ff5d85028c25cb12f6"
 dependencies = [
  "unicode-bidi",
  "unicode-normalization",
@@ -1576,7 +1576,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d530e1a18b1cb4c484e6e34556a0d948706958449fca0cab753d649f2bce3d1f"
 dependencies = [
  "equivalent",
- "hashbrown 0.14.2",
+ "hashbrown 0.14.3",
 ]
 
 [[package]]
@@ -1666,9 +1666,9 @@ checksum = "af150ab688ff2122fcef229be89cb50dd66af9e01a4ff320cc137eecc9bacc38"
 
 [[package]]
 name = "js-sys"
-version = "0.3.64"
+version = "0.3.66"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c5f195fe497f702db0f318b07fdd68edb16955aed830df8363d837542f8f935a"
+checksum = "cee9c64da59eae3b50095c18d3e74f8b73c0b86d2792824ff01bbce68ba229ca"
 dependencies = [
  "wasm-bindgen",
 ]
@@ -1726,9 +1726,9 @@ dependencies = [
 
 [[package]]
 name = "linux-raw-sys"
-version = "0.4.11"
+version = "0.4.12"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "969488b55f8ac402214f3f5fd243ebb7206cf82de60d3172994707a4bcc2b829"
+checksum = "c4cd1a83af159aa67994778be9070f0ae1bd732942279cabb14f86f986a21456"
 
 [[package]]
 name = "lock_api"
@@ -2058,9 +2058,9 @@ dependencies = [
 
 [[package]]
 name = "openssl"
-version = "0.10.59"
+version = "0.10.60"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7a257ad03cd8fb16ad4172fedf8094451e1af1c4b70097636ef2eac9a5f0cc33"
+checksum = "79a4c6c3a2b158f7f8f2a2fc5a969fa3a068df6fc9dbb4a43845436e3af7c800"
 dependencies = [
  "bitflags 2.4.1",
  "cfg-if",
@@ -2099,9 +2099,9 @@ dependencies = [
 
 [[package]]
 name = "openssl-sys"
-version = "0.9.95"
+version = "0.9.96"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "40a4130519a360279579c2053038317e40eff64d13fd3f004f9e1b72b8a6aaf9"
+checksum = "3812c071ba60da8b5677cc12bcb1d42989a65553772897a7e0355545a819838f"
 dependencies = [
  "cc",
  "libc",
@@ -2203,9 +2203,9 @@ dependencies = [
 
 [[package]]
 name = "percent-encoding"
-version = "2.3.0"
+version = "2.3.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9b2a4787296e9989611394c33f193f676704af1686e70b8f8033ab5ba9a35a94"
+checksum = "e3148f5046208a5d56bcfc03053e3ca6334e51da8dfb19b6cdc8b306fae3283e"
 
 [[package]]
 name = "pin-project-lite"
@@ -2280,9 +2280,9 @@ checksum = "5b40af805b3121feab8a3c29f04d8ad262fa8e0561883e7653e024ae4479e6de"
 
 [[package]]
 name = "proc-macro2"
-version = "1.0.69"
+version = "1.0.70"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "134c189feb4956b20f6f547d2cf727d4c0fe06722b20a0eec87ed445a97f92da"
+checksum = "39278fbbf5fb4f646ce651690877f89d1c5811a3d4acb27700c1cb3cdb78fd3b"
 dependencies = [
  "unicode-ident",
 ]
@@ -2599,9 +2599,9 @@ dependencies = [
 
 [[package]]
 name = "rsa"
-version = "0.9.3"
+version = "0.9.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "86ef35bf3e7fe15a53c4ab08a998e42271eab13eb0db224126bc7bc4c4bad96d"
+checksum = "5d0e5124fcb30e76a7e79bfee683a2746db83784b86289f6251b54b7950a0dfc"
 dependencies = [
  "const-oid",
  "digest",
@@ -2625,15 +2625,15 @@ checksum = "d626bb9dae77e28219937af045c257c28bfd3f69333c512553507f5f9798cb76"
 
 [[package]]
 name = "rustix"
-version = "0.38.25"
+version = "0.38.26"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dc99bc2d4f1fed22595588a013687477aedf3cdcfb26558c559edb67b4d9b22e"
+checksum = "9470c4bf8246c8daf25f9598dca807fb6510347b1e1cfa55749113850c79d88a"
 dependencies = [
  "bitflags 2.4.1",
  "errno",
  "libc",
  "linux-raw-sys",
- "windows-sys 0.48.0",
+ "windows-sys 0.52.0",
 ]
 
 [[package]]
@@ -3011,9 +3011,9 @@ checksum = "6e63cff320ae2c57904679ba7cb63280a3dc4613885beafb148ee7bf9aa9042d"
 
 [[package]]
 name = "spki"
-version = "0.7.2"
+version = "0.7.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9d1e996ef02c474957d681f1b05213dfb0abab947b446a62d37770b23500184a"
+checksum = "d91ed6c858b01f942cd56b37a94b3e0a1798290327d1236e4d9cf4eaca44d29d"
 dependencies = [
  "base64ct",
  "der",
@@ -3625,9 +3625,9 @@ checksum = "f28467d3e1d3c6586d8f25fa243f544f5800fec42d97032474e17222c2b75cfa"
 
 [[package]]
 name = "url"
-version = "2.4.1"
+version = "2.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "143b538f18257fac9cad154828a57c6bf5157e1aa604d4816b5995bf6de87ae5"
+checksum = "31e6302e3bb753d46e83516cae55ae196fc0c309407cf11ab35cc51a4c2a4633"
 dependencies = [
  "form_urlencoded",
  "idna",
@@ -3734,9 +3734,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-futures"
-version = "0.4.37"
+version = "0.4.39"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c02dbc21516f9f1f04f187958890d7e6026df8d16540b7ad9492bc34a67cea03"
+checksum = "ac36a15a220124ac510204aec1c3e5db8a22ab06fd6706d881dc6149f8ed9a12"
 dependencies = [
  "cfg-if",
  "js-sys",
@@ -3775,9 +3775,9 @@ checksum = "7ab9b36309365056cd639da3134bf87fa8f3d86008abf99e612384a6eecd459f"
 
 [[package]]
 name = "wasm-bindgen-test"
-version = "0.3.37"
+version = "0.3.39"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6e6e302a7ea94f83a6d09e78e7dc7d9ca7b186bc2829c24a22d0753efd680671"
+checksum = "2cf9242c0d27999b831eae4767b2a146feb0b27d332d553e605864acd2afd403"
 dependencies = [
  "console_error_panic_hook",
  "js-sys",
@@ -3789,19 +3789,20 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-test-macro"
-version = "0.3.37"
+version = "0.3.39"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ecb993dd8c836930ed130e020e77d9b2e65dd0fbab1b67c790b0f5d80b11a575"
+checksum = "794645f5408c9a039fd09f4d113cdfb2e7eba5ff1956b07bcf701cf4b394fe89"
 dependencies = [
  "proc-macro2",
  "quote",
+ "syn 2.0.39",
 ]
 
 [[package]]
 name = "web-sys"
-version = "0.3.64"
+version = "0.3.66"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9b85cbef8c220a6abc02aefd892dfc0fc23afb1c6a426316ec33253a3877249b"
+checksum = "50c24a44ec86bb68fbecd1b3efed7e85ea5621b39b35ef2766b66cd984f8010f"
 dependencies = [
  "js-sys",
  "wasm-bindgen",
@@ -3882,6 +3883,15 @@ dependencies = [
  "windows-targets 0.48.5",
 ]
 
+[[package]]
+name = "windows-sys"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "282be5f36a8ce781fad8c8ae18fa3f9beff57ec1b52cb3de0789201425d9a33d"
+dependencies = [
+ "windows-targets 0.52.0",
+]
+
 [[package]]
 name = "windows-targets"
 version = "0.42.2"
@@ -3912,6 +3922,21 @@ dependencies = [
  "windows_x86_64_msvc 0.48.5",
 ]
 
+[[package]]
+name = "windows-targets"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "8a18201040b24831fbb9e4eb208f8892e1f50a37feb53cc7ff887feb8f50e7cd"
+dependencies = [
+ "windows_aarch64_gnullvm 0.52.0",
+ "windows_aarch64_msvc 0.52.0",
+ "windows_i686_gnu 0.52.0",
+ "windows_i686_msvc 0.52.0",
+ "windows_x86_64_gnu 0.52.0",
+ "windows_x86_64_gnullvm 0.52.0",
+ "windows_x86_64_msvc 0.52.0",
+]
+
 [[package]]
 name = "windows_aarch64_gnullvm"
 version = "0.42.2"
@@ -3924,6 +3949,12 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2b38e32f0abccf9987a4e3079dfb67dcd799fb61361e53e2882c3cbaf0d905d8"
 
+[[package]]
+name = "windows_aarch64_gnullvm"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "cb7764e35d4db8a7921e09562a0304bf2f93e0a51bfccee0bd0bb0b666b015ea"
+
 [[package]]
 name = "windows_aarch64_msvc"
 version = "0.42.2"
@@ -3936,6 +3967,12 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "dc35310971f3b2dbbf3f0690a219f40e2d9afcf64f9ab7cc1be722937c26b4bc"
 
+[[package]]
+name = "windows_aarch64_msvc"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "bbaa0368d4f1d2aaefc55b6fcfee13f41544ddf36801e793edbbfd7d7df075ef"
+
 [[package]]
 name = "windows_i686_gnu"
 version = "0.42.2"
@@ -3948,6 +3985,12 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a75915e7def60c94dcef72200b9a8e58e5091744960da64ec734a6c6e9b3743e"
 
+[[package]]
+name = "windows_i686_gnu"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "a28637cb1fa3560a16915793afb20081aba2c92ee8af57b4d5f28e4b3e7df313"
+
 [[package]]
 name = "windows_i686_msvc"
 version = "0.42.2"
@@ -3960,6 +4003,12 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "8f55c233f70c4b27f66c523580f78f1004e8b5a8b659e05a4eb49d4166cca406"
 
+[[package]]
+name = "windows_i686_msvc"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ffe5e8e31046ce6230cc7215707b816e339ff4d4d67c65dffa206fd0f7aa7b9a"
+
 [[package]]
 name = "windows_x86_64_gnu"
 version = "0.42.2"
@@ -3972,6 +4021,12 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "53d40abd2583d23e4718fddf1ebec84dbff8381c07cae67ff7768bbf19c6718e"
 
+[[package]]
+name = "windows_x86_64_gnu"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "3d6fa32db2bc4a2f5abeacf2b69f7992cd09dca97498da74a151a3132c26befd"
+
 [[package]]
 name = "windows_x86_64_gnullvm"
 version = "0.42.2"
@@ -3984,6 +4039,12 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0b7b52767868a23d5bab768e390dc5f5c55825b6d30b86c844ff2dc7414044cc"
 
+[[package]]
+name = "windows_x86_64_gnullvm"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "1a657e1e9d3f514745a572a6846d3c7aa7dbe1658c056ed9c3344c4109a6949e"
+
 [[package]]
 name = "windows_x86_64_msvc"
 version = "0.42.2"
@@ -3996,6 +4057,12 @@ version = "0.48.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "ed94fce61571a4006852b7389a063ab983c02eb1bb37b47f8272ce92d06d9538"
 
+[[package]]
+name = "windows_x86_64_msvc"
+version = "0.52.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "dff9641d1cd4be8d1a070daf9e3773c5f67e78b4d9d42263020c057706765c04"
+
 [[package]]
 name = "winnow"
 version = "0.5.19"
diff --git a/crates/bitwarden-napi/package-lock.json b/crates/bitwarden-napi/package-lock.json
index 3ccf3a7cb..a53303523 100644
--- a/crates/bitwarden-napi/package-lock.json
+++ b/crates/bitwarden-napi/package-lock.json
@@ -95,9 +95,9 @@
       "dev": true
     },
     "node_modules/@types/node": {
-      "version": "20.9.2",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.9.2.tgz",
-      "integrity": "sha512-WHZXKFCEyIUJzAwh3NyyTHYSR35SevJ6mZ1nWwJafKtiQbqRTIKSRcw3Ma3acqgsent3RRDqeVwpHntMk+9irg==",
+      "version": "20.10.3",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.3.tgz",
+      "integrity": "sha512-XJavIpZqiXID5Yxnxv3RUDKTN5b81ddNC3ecsA0SoFXz/QU8OGBwZGMomiq0zw+uuqbL/krztv/DINAQ/EV4gg==",
       "dev": true,
       "peer": true,
       "dependencies": {
@@ -196,9 +196,9 @@
       }
     },
     "node_modules/typescript": {
-      "version": "5.2.2",
-      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.2.2.tgz",
-      "integrity": "sha512-mI4WrpHsbCIcwT9cF4FZvr80QUeKvsUsUvKDoR+X/7XHQH98xYD8YHZg7ANtz2GtZt/CBq2QJ0thkGJMHfqc1w==",
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.3.2.tgz",
+      "integrity": "sha512-6l+RyNy7oAHDfxC4FzSJcz9vnjTKxrLpDG5M2Vu4SHRVNg6xzqZp6LYSR9zjqQTu8DU/f5xwxUdADOkbrIX2gQ==",
       "dev": true,
       "bin": {
         "tsc": "bin/tsc",
diff --git a/languages/js_webassembly/package-lock.json b/languages/js_webassembly/package-lock.json
index d5345c00a..c4a2126e6 100644
--- a/languages/js_webassembly/package-lock.json
+++ b/languages/js_webassembly/package-lock.json
@@ -116,9 +116,9 @@
       }
     },
     "node_modules/@types/connect-history-api-fallback": {
-      "version": "1.5.3",
-      "resolved": "https://registry.npmjs.org/@types/connect-history-api-fallback/-/connect-history-api-fallback-1.5.3.tgz",
-      "integrity": "sha512-6mfQ6iNvhSKCZJoY6sIG3m0pKkdUcweVNOLuBBKvoWGzl2yRxOJcYOTRyLKt3nxXvBLJWa6QkW//tgbIwJehmA==",
+      "version": "1.5.4",
+      "resolved": "https://registry.npmjs.org/@types/connect-history-api-fallback/-/connect-history-api-fallback-1.5.4.tgz",
+      "integrity": "sha512-n6Cr2xS1h4uAulPRdlw6Jl6s1oG8KrVilPN2yUITEs+K48EzMJJ3W1xy8K5eWuFvjp3R74AOIGSmp2UfBJ8HFw==",
       "dev": true,
       "dependencies": {
         "@types/express-serve-static-core": "*",
@@ -126,9 +126,9 @@
       }
     },
     "node_modules/@types/eslint": {
-      "version": "8.44.7",
-      "resolved": "https://registry.npmjs.org/@types/eslint/-/eslint-8.44.7.tgz",
-      "integrity": "sha512-f5ORu2hcBbKei97U73mf+l9t4zTGl74IqZ0GQk4oVea/VS8tQZYkUveSYojk+frraAVYId0V2WC9O4PTNru2FQ==",
+      "version": "8.44.8",
+      "resolved": "https://registry.npmjs.org/@types/eslint/-/eslint-8.44.8.tgz",
+      "integrity": "sha512-4K8GavROwhrYl2QXDXm0Rv9epkA8GBFu0EI+XrrnnuCl7u8CWBRusX7fXJfanhZTDWSAL24gDI/UqXyUM0Injw==",
       "dev": true,
       "dependencies": {
         "@types/estree": "*",
@@ -209,18 +209,18 @@
       "dev": true
     },
     "node_modules/@types/node": {
-      "version": "20.9.2",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.9.2.tgz",
-      "integrity": "sha512-WHZXKFCEyIUJzAwh3NyyTHYSR35SevJ6mZ1nWwJafKtiQbqRTIKSRcw3Ma3acqgsent3RRDqeVwpHntMk+9irg==",
+      "version": "20.10.3",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.3.tgz",
+      "integrity": "sha512-XJavIpZqiXID5Yxnxv3RUDKTN5b81ddNC3ecsA0SoFXz/QU8OGBwZGMomiq0zw+uuqbL/krztv/DINAQ/EV4gg==",
       "dev": true,
       "dependencies": {
         "undici-types": "~5.26.4"
       }
     },
     "node_modules/@types/node-forge": {
-      "version": "1.3.9",
-      "resolved": "https://registry.npmjs.org/@types/node-forge/-/node-forge-1.3.9.tgz",
-      "integrity": "sha512-meK88cx/sTalPSLSoCzkiUB4VPIFHmxtXm5FaaqRDqBX2i/Sy8bJ4odsan0b20RBjPh06dAQ+OTTdnyQyhJZyQ==",
+      "version": "1.3.10",
+      "resolved": "https://registry.npmjs.org/@types/node-forge/-/node-forge-1.3.10.tgz",
+      "integrity": "sha512-y6PJDYN4xYBxwd22l+OVH35N+1fCYWiuC3aiP2SlXVE6Lo7SS+rSx9r89hLxrP4pn6n1lBGhHJ12pj3F3Mpttw==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
@@ -284,9 +284,9 @@
       }
     },
     "node_modules/@types/ws": {
-      "version": "8.5.9",
-      "resolved": "https://registry.npmjs.org/@types/ws/-/ws-8.5.9.tgz",
-      "integrity": "sha512-jbdrY0a8lxfdTp/+r7Z4CkycbOFN8WX+IOchLJr3juT/xzbJ8URyTVSJ/hvNdadTgM1mnedb47n+Y31GsFnQlg==",
+      "version": "8.5.10",
+      "resolved": "https://registry.npmjs.org/@types/ws/-/ws-8.5.10.tgz",
+      "integrity": "sha512-vmQSUcfalpIq0R9q7uTo2lXs6eGIpt9wtnLdMv9LVpIjCA/+ufZRozlVoVelIYixx1ugCBKDhn89vnsEGOCx9A==",
       "dev": true,
       "dependencies": {
         "@types/node": "*"
@@ -765,9 +765,9 @@
       }
     },
     "node_modules/browserslist": {
-      "version": "4.22.1",
-      "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.22.1.tgz",
-      "integrity": "sha512-FEVc202+2iuClEhZhrWy6ZiAcRLvNMyYcxZ8raemul1DYVOVdFsbqckWLdsixQZCpJlwe77Z3UTalE7jsjnKfQ==",
+      "version": "4.22.2",
+      "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.22.2.tgz",
+      "integrity": "sha512-0UgcrvQmBDvZHFGdYUehrCNIazki7/lUP3kkoi/r3YB2amZbFM9J43ZRkJTXBUZK4gmx56+Sqk9+Vs9mwZx9+A==",
       "dev": true,
       "funding": [
         {
@@ -784,9 +784,9 @@
         }
       ],
       "dependencies": {
-        "caniuse-lite": "^1.0.30001541",
-        "electron-to-chromium": "^1.4.535",
-        "node-releases": "^2.0.13",
+        "caniuse-lite": "^1.0.30001565",
+        "electron-to-chromium": "^1.4.601",
+        "node-releases": "^2.0.14",
         "update-browserslist-db": "^1.0.13"
       },
       "bin": {
@@ -836,9 +836,9 @@
       }
     },
     "node_modules/caniuse-lite": {
-      "version": "1.0.30001563",
-      "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001563.tgz",
-      "integrity": "sha512-na2WUmOxnwIZtwnFI2CZ/3er0wdNzU7hN+cPYz/z2ajHThnkWjNBOpEPP4n+4r2WPM847JaMotaJE3bnfzjyKw==",
+      "version": "1.0.30001566",
+      "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001566.tgz",
+      "integrity": "sha512-ggIhCsTxmITBAMmK8yZjEhCO5/47jKXPu6Dha/wuCS4JePVL+3uiDEBuhu2aIoT+bqTOR8L76Ip1ARL9xYsEJA==",
       "dev": true,
       "funding": [
         {
@@ -917,9 +917,9 @@
       }
     },
     "node_modules/clean-css": {
-      "version": "5.3.2",
-      "resolved": "https://registry.npmjs.org/clean-css/-/clean-css-5.3.2.tgz",
-      "integrity": "sha512-JVJbM+f3d3Q704rF4bqQ5UUyTtuJ0JRKNbTKVEeujCCBoMdkEi+V+e8oktO9qGQNSvHrFTM6JZRXrUvGR1czww==",
+      "version": "5.3.3",
+      "resolved": "https://registry.npmjs.org/clean-css/-/clean-css-5.3.3.tgz",
+      "integrity": "sha512-D5J+kHaVb/wKSFcyyV75uCn8fiY4sV38XJoe4CUyGQ+mOU/fMVYUdH1hJC+CJQ5uY3EnW27SbJYS4X8BiLrAFg==",
       "dev": true,
       "dependencies": {
         "source-map": "~0.6.0"
@@ -1278,9 +1278,9 @@
       "dev": true
     },
     "node_modules/electron-to-chromium": {
-      "version": "1.4.588",
-      "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.588.tgz",
-      "integrity": "sha512-soytjxwbgcCu7nh5Pf4S2/4wa6UIu+A3p03U2yVr53qGxi1/VTR3ENI+p50v+UxqqZAfl48j3z55ud7VHIOr9w==",
+      "version": "1.4.601",
+      "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.4.601.tgz",
+      "integrity": "sha512-SpwUMDWe9tQu8JX5QCO1+p/hChAi9AE9UpoC3rcHVc+gdCGlbT3SGb5I1klgb952HRIyvt9wZhSz9bNBYz9swA==",
       "dev": true
     },
     "node_modules/encodeurl": {
@@ -2544,9 +2544,9 @@
       }
     },
     "node_modules/node-releases": {
-      "version": "2.0.13",
-      "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.13.tgz",
-      "integrity": "sha512-uYr7J37ae/ORWdZeQ1xxMJe3NtdmqMC/JZK+geofDrkLUApKRHPd18/TxtBOJ4A0/+uUIliorNrfYV6s1b02eQ==",
+      "version": "2.0.14",
+      "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.14.tgz",
+      "integrity": "sha512-y10wOWt8yZpqXmOgRo77WaHEmhYQYGNA6y421PKsKYWEK8aW+cqAphborZDhqfyKrbZEN92CN1X2KbafY2s7Yw==",
       "dev": true
     },
     "node_modules/normalize-path": {
@@ -3661,9 +3661,9 @@
       }
     },
     "node_modules/typescript": {
-      "version": "5.2.2",
-      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.2.2.tgz",
-      "integrity": "sha512-mI4WrpHsbCIcwT9cF4FZvr80QUeKvsUsUvKDoR+X/7XHQH98xYD8YHZg7ANtz2GtZt/CBq2QJ0thkGJMHfqc1w==",
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.3.2.tgz",
+      "integrity": "sha512-6l+RyNy7oAHDfxC4FzSJcz9vnjTKxrLpDG5M2Vu4SHRVNg6xzqZp6LYSR9zjqQTu8DU/f5xwxUdADOkbrIX2gQ==",
       "dev": true,
       "peer": true,
       "bin": {
diff --git a/package-lock.json b/package-lock.json
index 71dd5d501..d9f57608b 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -19,9 +19,9 @@
       }
     },
     "node_modules/@babel/runtime": {
-      "version": "7.23.2",
-      "resolved": "https://registry.npmjs.org/@babel/runtime/-/runtime-7.23.2.tgz",
-      "integrity": "sha512-mM8eg4yl5D6i3lu2QKPuPH4FArvJ8KhTofbE7jwMUv9KX5mBvwPAqnV3MlyBNqdp9RyRKP6Yck8TrfYrPvX3bg==",
+      "version": "7.23.5",
+      "resolved": "https://registry.npmjs.org/@babel/runtime/-/runtime-7.23.5.tgz",
+      "integrity": "sha512-NdUTHcPe4C99WxPub+K9l9tK5/lV4UXIoaHSYgzco9BCyjKAAwzdBI+wWtYqHt7LJdbo74ZjRPJgzVweq1sz0w==",
       "dev": true,
       "dependencies": {
         "regenerator-runtime": "^0.14.0"
@@ -363,9 +363,9 @@
       "dev": true
     },
     "node_modules/@types/node": {
-      "version": "20.9.2",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.9.2.tgz",
-      "integrity": "sha512-WHZXKFCEyIUJzAwh3NyyTHYSR35SevJ6mZ1nWwJafKtiQbqRTIKSRcw3Ma3acqgsent3RRDqeVwpHntMk+9irg==",
+      "version": "20.10.3",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.10.3.tgz",
+      "integrity": "sha512-XJavIpZqiXID5Yxnxv3RUDKTN5b81ddNC3ecsA0SoFXz/QU8OGBwZGMomiq0zw+uuqbL/krztv/DINAQ/EV4gg==",
       "dev": true,
       "peer": true,
       "dependencies": {
@@ -373,9 +373,9 @@
       }
     },
     "node_modules/@types/urijs": {
-      "version": "1.19.23",
-      "resolved": "https://registry.npmjs.org/@types/urijs/-/urijs-1.19.23.tgz",
-      "integrity": "sha512-3Zbk6RzmIpvKTNEHO2RcPOGHM++BQEITMqBRR1Ju32WbruhV/pygYgxiP3xA0b1B88zjzs0Izzjxsbj768+IjA==",
+      "version": "1.19.25",
+      "resolved": "https://registry.npmjs.org/@types/urijs/-/urijs-1.19.25.tgz",
+      "integrity": "sha512-XOfUup9r3Y06nFAZh3WvO0rBU4OtlfPB/vgxpjg+NRdGU6CN6djdc6OEiH+PcqHCY6eFLo9Ista73uarf4gnBg==",
       "dev": true
     },
     "node_modules/abort-controller": {
@@ -584,9 +584,9 @@
       }
     },
     "node_modules/cli-spinners": {
-      "version": "2.9.1",
-      "resolved": "https://registry.npmjs.org/cli-spinners/-/cli-spinners-2.9.1.tgz",
-      "integrity": "sha512-jHgecW0pxkonBJdrKsqxgRX9AcG+u/5k0Q7WPDfi8AogLAdwxEkyYYNWwZ5GvVFoFx2uiY1eNcSK00fh+1+FyQ==",
+      "version": "2.9.2",
+      "resolved": "https://registry.npmjs.org/cli-spinners/-/cli-spinners-2.9.2.tgz",
+      "integrity": "sha512-ywqV+5MmyL4E7ybXgKys4DugZbX0FC6LnwrhjuykIjnK9k8OQacQ7axGKnjDXWNhns0xot3bZI5h55H8yo9cJg==",
       "dev": true,
       "engines": {
         "node": ">=6"
@@ -1252,9 +1252,9 @@
       }
     },
     "node_modules/lru-cache": {
-      "version": "10.0.3",
-      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-10.0.3.tgz",
-      "integrity": "sha512-B7gr+F6MkqB3uzINHXNctGieGsRTMwIBgxkp0yq/5BwcuDzD4A8wQpHQW6vDAm1uKSLQghmRdD9sKqf2vJ1cEg==",
+      "version": "10.1.0",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-10.1.0.tgz",
+      "integrity": "sha512-/1clY/ui8CzjKFyjdvwPWJUYKiFVXG2I2cY0ssG7h4+hwk+XOIX7ZSG9Q7TW8TW3Kp3BUSqgFWBLgL4PJ+Blag==",
       "dev": true,
       "engines": {
         "node": "14 || >=16.14"

From d1ddaa7916ce29dbda28d116bb9fa485ba65a337 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 11:35:07 +0100
Subject: [PATCH 54/55] [deps]: Update typescript to v5.3.2 (#385)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index d9f57608b..bb67d4e04 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -15,7 +15,7 @@
         "quicktype-core": "23.0.80",
         "rimraf": "5.0.5",
         "ts-node": "10.9.1",
-        "typescript": "5.2.2"
+        "typescript": "5.3.2"
       }
     },
     "node_modules/@babel/runtime": {
@@ -1936,9 +1936,9 @@
       }
     },
     "node_modules/typescript": {
-      "version": "5.2.2",
-      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.2.2.tgz",
-      "integrity": "sha512-mI4WrpHsbCIcwT9cF4FZvr80QUeKvsUsUvKDoR+X/7XHQH98xYD8YHZg7ANtz2GtZt/CBq2QJ0thkGJMHfqc1w==",
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.3.2.tgz",
+      "integrity": "sha512-6l+RyNy7oAHDfxC4FzSJcz9vnjTKxrLpDG5M2Vu4SHRVNg6xzqZp6LYSR9zjqQTu8DU/f5xwxUdADOkbrIX2gQ==",
       "dev": true,
       "bin": {
         "tsc": "bin/tsc",
diff --git a/package.json b/package.json
index 3c475897d..363d8b34c 100644
--- a/package.json
+++ b/package.json
@@ -26,6 +26,6 @@
     "quicktype-core": "23.0.80",
     "rimraf": "5.0.5",
     "ts-node": "10.9.1",
-    "typescript": "5.2.2"
+    "typescript": "5.3.2"
   }
 }

From 3d6b4a48c668346938425041273a8b27068578fa Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 11:35:29 +0100
Subject: [PATCH 55/55] [deps]: Update rust-wasm-bindgen monorepo (#383)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 crates/bitwarden-wasm/Cargo.toml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/crates/bitwarden-wasm/Cargo.toml b/crates/bitwarden-wasm/Cargo.toml
index 9a14d26b7..dc5bf9ba5 100644
--- a/crates/bitwarden-wasm/Cargo.toml
+++ b/crates/bitwarden-wasm/Cargo.toml
@@ -10,13 +10,13 @@ crate-type = ["cdylib", "rlib"]
 [dependencies]
 console_error_panic_hook = "0.1.7"
 console_log = { version = "1.0.0", features = ["color"] }
-js-sys = "0.3.63"
+js-sys = "0.3.66"
 log = "0.4.20"
 serde = { version = "1.0.193", features = ["derive"] }
 wasm-bindgen = { version = "0.2.89", features = ["serde-serialize"] }
-wasm-bindgen-futures = "0.4.36"
+wasm-bindgen-futures = "0.4.39"
 
 bitwarden-json = { path = "../bitwarden-json", features = ["secrets"] }
 
 [dev-dependencies]
-wasm-bindgen-test = "0.3.36"
+wasm-bindgen-test = "0.3.39"