# Python
__pycache__/
*.pyc
*.pyo
*.pyd
*.egg
*.egg-info/
pip-log.txt
pip-delete-this-directory.txt

# Build / distribution
dist/
build/
*.whl
*.tar.gz

# Test / Coverage
.pytest_cache/
.hypothesis/
.coverage
.coverage.*
coverage.xml
htmlcov/
.tox/
.nox/
junit.xml
pytest-report.xml
test-results/
tests/validation/fixtures/
docs/accuracy.md
.ci-audit-requirements.txt

# Local validation sweeps. Real company names and per-domain JSON output
# live here during accuracy work; never committed. Fictional-example
# discipline requires anything committed to use Contoso / Northwind /
# Fabrikam — validation artifacts use real targets and stay local.
# Generic tooling (runner, gap finder, diff, triage) is committed; the
# corpus and run outputs stay local so users can curate their own
# private test bed without leaking targets.
/validation/*
!/validation/audit_fingerprints.py
!/validation/run_corpus.py
!/validation/find_gaps.py
!/validation/diff_runs.py
!/validation/triage_candidates.py
!/validation/scan.py
!/validation/corpus-example.txt
!/validation/README.md
# v1.8 corpus-validation report — statistics + technical narrative;
# no per-domain data. The full result JSONs (v1.8-validation-results*.json)
# stay private under the /validation/* glob.
!/validation/v1.8-validation-summary.md
# User-curated private corpus + run outputs — never commit.
/validation/corpus-private/
/validation/runs-private/
/validation/local/

# Linting / Type checking
.ruff_cache/
.mypy_cache/
.dmypy.json
.pyre/
.pytype/
.pyright/

# IDE / editors
.vscode/
.vs/
.idea/
*.swp
*.swo
*~

# Merge / rebase artifacts
*.orig
*.rej

# Jupyter
.ipynb_checkpoints/

# direnv
.envrc
.direnv/

# Claude Code local settings
.claude/
CLAUDE.md
CLAUDE.local.md

# OS
.DS_Store
Thumbs.db
Desktop.ini
$RECYCLE.BIN/
*.stackdump

# Env
.env
.env.local
.env.*.local
.venv/
venv/
env/

# Credentials — defensive rules. A passive-recon tool should never
# commit keys or credentials, even local test ones. Prefer
# RECON_CONFIG_DIR or a secrets manager over dropping files in-tree.
*.pem
*.key
*.p12
*.pfx
*.jks
id_rsa
id_rsa.*
id_dsa
id_dsa.*
id_ecdsa
id_ecdsa.*
id_ed25519
id_ed25519.*
credentials.json
secrets.yaml
secrets.yml

# Logs
*.log

# Kiro
.kiro/
/archive
