# Secrets & env
.env
**/.env
.env.*
!.env.example

# Dependencies
node_modules/

# Rust
target/

# Next.js
.next/
out/

# Local Solana / Anchor / validator (no secrets; avoid Windows indexing issues on ledger files)
**/.anchor/test-ledger/
**/.axiom-local-validator-ledger/
**/test-ledger/
**/*axiom-solana-validator-ledger/
**/axiom-solana-validator-ledger/
# Never commit key material
**/*-keypair.json
**/*keypair.json
validator.log
**/validator*.log

# Python
venv/
.venv/
**/.venv/
**/__pycache__/

# Backend / local artifacts
backend/verify-payment/logs/
logs/

# Misc
# Shell redirect mistakes at repo root (e.g. `cmd =0.2`)
/=*
*.pdf
*.zip
Mar 01, 2026 to Mar 31, 2026/

Oracle/

# Build output (added in Sprint 6E — repo hygiene cleanup)
# dist/ folders contain compiled output from TypeScript builds.
# These are regenerated by SAM (sam build), npm publish (prepublishOnly),
# and CI deploy workflows. They should not be committed.
**/dist/
**/dist

# Sprint 6 §9.2 hygiene — security finding 2026-05-11 (Sprint 6 Phase 6.1)
# Solana/Anchor tooling temp keypairs and devnet-id artifacts.
# These files are auto-generated during deploy operations and must
# never be committed (they contain raw Ed25519 secret bytes).
*.tmp-*
*-devnet-id.json
*-mainnet-id.json
*-localnet-id.json
.tmp-*
