# Python
__pycache__/
*.py[cod]
.venv/
venv/
*.egg-info/
build/
dist/

# Engine runtime data (PHI may live here — never commit)
*.db
*.db-wal
*.db-shm
*.pid
out/
harness_io/
*.log

# One-time bootstrap admin credential written next to the store (consumed + deleted by the operator) — never commit
bootstrap-admin.txt

# Secrets / credentials — never commit (no such files exist today; these are foot-gun guards)
.env
.env.*
*.key
*.pem
*.pfx
secrets/

# Generated, regenerable test corpus (build with: python -m messagefoundry.generators.adt)
/samples/messages/adt/

# Corepoint migration artifacts contain real partner/site/host data — keep them OUT of this
# public repo. They live in the local MEFOR staging folder (source exports + parser), never here.
/docs/migration/
# CBORD dietary transform worked example is derived from the real Corepoint estate (partner/site
# data) — same rule: stays in the local MEFOR staging folder, never committed.
/samples/cbord/
# Workflow agent self-verification temp dirs (an isolated copy of a ported migration module + codesets
# + fixture for a check/dryrun). Mercy-derived — never commit. Delete after a porting batch.
/_verify_*/
# Corepoint migration staging, relocated from OneDrive into the repo as a gitignored subfolder:
# corepoint-config (ported engine config) + corepoint-migration-docs (real partner/site/host source
# exports). Mercy customer data — NEVER commit. `git archive` (the publish path) excludes it by
# construction; this is the local-only working area.
/migration-local/

# Tooling
.mypy_cache/
.ruff_cache/
.pytest_cache/
.vscode/
.idea/

# Claude Code: settings.json is shared/tracked; settings.local.json is machine-local (never commit)
.claude/settings.local.json

# Local reference notes pointing at machine-specific Claude Code transcript paths — never commit
TRANSCRIPTS.md

# Local planning/marketing/security working docs — keep out of the repo
/docs/DUAL_LICENSING_PLAN.md
/docs/marketing/
/docs/security/CISO-REVIEW.md
