# Dependencies
node_modules/
.pnpm-store/

# Environment — NEVER commit real credentials
.env
.env.local
.env.*.local
.env.mainnet
.env.mainnet.local
.dev.vars
MASTER_KEYS.md

# NOTE: frontend/.env.production IS committed intentionally — it only contains
# NEXT_PUBLIC_* values (network id, chain id, subgraph url) which Next.js
# bakes into the client bundle at build time. No secrets. See the file header
# for the deploy-time secret story (those live in Vercel, not here).

# Build outputs
dist/
build/
.next/
out/

# Hardhat artifacts
artifacts/
cache/
typechain-types/

# TypeScript
*.tsbuildinfo

# Logs
*.log
logs/

# OS
.DS_Store
Thumbs.db

# Binary blobs at repo root — scratch files from earlier design iterations.
# If you need to archive a build or export, put it in a releases/ dir, not
# the repo root.
/*.zip

# IDE
.vscode/settings.json
.idea/

# Docker
*.override.yml

# Foundry broadcast (contains tx data with deployer info)
contracts/broadcast/
contracts/cache/

# Subgraph generated files
subgraph/generated/
subgraph/build/

# Claude Code
.claude/
frontend/.claude/

# Session logs
docs/session-logs/

# Cloudflare
.wrangler/

# Sensitive files — LOCAL ONLY, NEVER COMMIT
MASTER_KEYS.md
*Recovery-Codes*
*recovery-codes*
OPENHEDGE NPM.txt

# Python cache
__pycache__/
*.pyc

.vercel
