# Python virtual environments & build artifacts
.venv/
venv/
__pycache__/
*.pyc
.pytest_cache/
.ruff_cache/
build/
dist/
*.egg-info/

# Local dependencies and lock files
uv.lock

# Generated by ai-repo-safety during local testing/runs.
# All root-anchored so that files of the same name inside
# src/ai_repo_safety/assets/... (package templates) are NOT excluded
# from wheel/sdist artifact inclusion.
/.repo-safety.json
/.repo-safety/
/.serena/
/.dockerignore
/.env.example
/.pre-commit-config.yaml
/.opengrepignore
# AGENTS.md and SECURITY.md are normally generated by `init`;
# un-ignore them here so the source repository can commit its own
# hand-curated copies for dogfooding.
#/AGENTS.md
#/SECURITY.md
/bandit.yaml
/pyproject.ai-repo-safety.toml
/src/app/
/tests/test_security_basics.py
/scripts/security/

# Generated docs (keep docs/tooling.md and docs/release-checklist.md in git)
docs/*
!docs/tooling.md
!docs/release-checklist.md
!docs/tooling.md

# >>> AI REPO SAFETY >>>
# secrets and credentials
.env
.env.*
!.env.example
*.pem
*.key
*.crt
*.p12
*.pfx
id_rsa
id_ed25519
credentials.json
credentials.*.json
service-account*.json
token.json
tokens.json
secrets.json
*.ovpn

# MCP / agent local configs that often contain tokens
.mcp.json
claude_desktop_config.json

# agent logs / local AI context
.claude/
.codex/
.cursor/
.windsurf/
.gemini/
.agent/
.ai/
*.session
*.transcript

# OS / IDE
.DS_Store
Thumbs.db
.idea/
.vscode/

# logs / temp
*.log
logs/
tmp/
temp/
.cache/
# <<< AI REPO SAFETY <<<
