# Byte-compiled / optimized / DLL files
__pycache__/
*.py[cod]
*$py.class

# C extensions
*.so

# Distribution / packaging
.Python
build/
develop-eggs/
dist/
downloads/
eggs/
.eggs/
# Python library directories (but not frontend lib)
lib/
!platform/web-ui/frontend/lib/
!platform/web-ui/lib/
!infra/ops-dashboard/app/lib/
!infra/ecspresso/lib/
lib64/
parts/
sdist/
var/
wheels/
share/python-wheels/
*.egg-info/
.installed.cfg
*.egg
MANIFEST

# PyInstaller
#  Usually these files are written by a python script from a template
#  before PyInstaller builds the exe, so as to inject date/other infos into it.
*.manifest
*.spec

# Installer logs
pip-log.txt
pip-delete-this-directory.txt

# Unit test / coverage reports
htmlcov/
.tox/
.nox/
.coverage
.coverage.*
.cache
.agenticsec_logs
nosetests.xml
coverage.xml
*.cover
*.py,cover
.hypothesis/
.pytest_cache/
cover/

# Translations
*.mo
*.pot

# Django stuff:
local_settings.py
db.sqlite3
db.sqlite3-journal

# Flask stuff:
instance/
.webassets-cache

# Scrapy stuff:
.scrapy

# Sphinx documentation
docs/_build/

# PyBuilder
.pybuilder/
/target/

# Jupyter Notebook
.ipynb_checkpoints

# IPython
profile_default/
ipython_config.py

# pyenv
#   For a library or package, you might want to ignore these files since the code is
#   intended to run in multiple environments; otherwise, check them in:
# .python-version

# pipenv
#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
#   However, in case of collaboration, if having platform-specific dependencies or dependencies
#   having no cross-platform support, pipenv may install dependencies that don't work, or not
#   install all needed dependencies.
#Pipfile.lock

# UV
#   Similar to Pipfile.lock, it is generally recommended to include uv.lock in version control.
#   This is especially recommended for binary packages to ensure reproducibility, and is more
#   commonly ignored for libraries.
#uv.lock

# poetry
#   Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
#   This is especially recommended for binary packages to ensure reproducibility, and is more
#   commonly ignored for libraries.
#   https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
#poetry.lock

# pdm
#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
#pdm.lock
#   pdm stores project-wide configurations in .pdm.toml, but it is recommended to not include it
#   in version control.
#   https://pdm.fming.dev/latest/usage/project/#working-with-version-control
.pdm.toml
.pdm-python
.pdm-build/

# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
__pypackages__/

# Celery stuff
celerybeat-schedule
celerybeat.pid

# SageMath parsed files
*.sage.py

# Environments
.env
.venv
env/
!**/src/**/env/
venv/
ENV/
env.bak/
venv.bak/

# Environment files
.env.*
!.env.example
!.env.enc

# commit tag
.commit-tag.env

# Spyder project settings
.spyderproject
.spyproject

# Rope project settings
.ropeproject

# mkdocs documentation
/site
docs/developer/site/
docs/user/site/
platform/web-ui/public/docs/

# mypy
.mypy_cache/
.dmypy.json
dmypy.json

# Pyre type checker
.pyre/

# pytype static type analyzer
.pytype/

# Cython debug symbols
cython_debug/

# PyCharm
#  JetBrains specific template is maintained in a separate JetBrains.gitignore that can
#  be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
#  and can be added to the global gitignore or merged into this file.  For a more nuclear
#  option (not recommended) you can uncomment the following to ignore the entire idea folder.
#.idea/

# Ruff stuff:
.ruff_cache/

# PyPI configuration file
.pypirc

logs/
!pentest/cloud/agenticsec-run-entrypoint/logs/
!experiment/results/**/logs/
pentest/cloud/agenticsec-run-entrypoint/logs/*/inprogress/
pentest/cloud/agenticsec-run-entrypoint/logs/*/ng/
pentest/cloud/agenticsec-run-entrypoint/logs/agenticsec-run_*/master.jsonl

*.ovpn

# Grafana MCP tokens (all environments)
.grafana-mcp-token*

# Vendor directories
vendor/
**/vendor/

# AWS SAM build artifacts
.aws-sam/
**/.aws-sam/

# Additional build artifacts
*.egg-info/
**/*.egg-info/

# AgenticSec results
*/agenticsec-results/*.json

# Hydra restore files
./runner/hydra.restore

# sprout
.sprout/

# tmp
tmp/
runner/tmp/

# Playwright MCP working directory (auto-generated snapshots & console logs)
.playwright-mcp/

# serena
.serena/cache/

# Generated API documentation
platform/agenticsec-hub/docs/html/

# Generated test artifacts
pentest/cloud/agenticsec/nmap_scans/

# Development configuration files (generated from templates, modified at runtime)
pentest/edge/agenticsec-supervisor/dev-config/installer_config.json
pentest/edge/agenticsec-supervisor/dev-config/state.json

# Grafana dashboards (auto-generated from Jsonnet templates)
infra/local/grafana/dashboards/*.json
infra/cloud/grafana/dashboards/*.json

# Fluent Bit configuration (auto-generated from YAML template)
infra/local/fluent-bit/fluent-bit.conf

# Metabase dashboards/cards (exported from prd, not git-managed)
infra/local/metabase/dashboards/*.json
infra/local/metabase/cards/*.json
# Metasploit knowledge intermediate files
knowledges/metasploit/intermediate/

# Generated documentation
docs/developer/development/dependency-graph.html

# dbt build outputs
infra/data-pipeline/target/
infra/data-pipeline/dbt_packages/
infra/data-pipeline/logs/

# Semgrep scan results
semgrep-results.sarif

# Claude Code local settings (personal permission history)
.claude/settings.local.json

# Claude Code worktrees
.claude/worktrees/

# Miscellaneous
.DS_Store
