# =============================================================================
# .gitignore - Files to exclude from version control
# =============================================================================


# -----------------------------------------------------------------------------
# Docs & Plans
# -----------------------------------------------------------------------------
docs/reports/performance_diagnostics.md
docs/plans/chores.md
docs/plans/blockers.md

# -----------------------------------------------------------------------------
# Python (pre-commit, tooling)
# -----------------------------------------------------------------------------
__pycache__/
*.py[cod]
*$py.class
*.so
.Python
.venv/
venv/
env/
ENV/
.pytest_cache/
.coverage
*.cover
.hypothesis/
htmlcov/

# -----------------------------------------------------------------------------
# Node/Frontend
# -----------------------------------------------------------------------------
node_modules/
frontend/node_modules/
backend/node_modules/
frontend/dist/
frontend/coverage/
frontend/test-results/
frontend/.vite/
frontend/*.tsbuildinfo
/frontend/.cache/
/frontend/.eslintcache
/backend/.vscode/
/data/geoip/
/frontend/frontend/

# -----------------------------------------------------------------------------
# Go/Backend - Build artifacts & coverage
# -----------------------------------------------------------------------------
backend/api
backend/bin/
backend/*.out
backend/*.cover
backend/*.html
backend/coverage/
backend/coverage*.out
backend/coverage*.txt
backend/*.coverage.out
backend/handler_coverage.txt
backend/handlers.out
backend/services.test
backend/*.test
backend/test-output.txt
backend/test-output*.txt
backend/test_output*.txt
backend/tr_no_cover.txt
backend/nohup.out
backend/charon
backend/main
backend/codeql-db/
backend/codeql-db-*/
backend/.venv/
backend/internal/api/tests/data/
backend/lint*.txt
backend/fix_*.sh
backend/node_modules/
backend/package.json
backend/package-lock.json

# Root-level artifact files (non-documentation)
FIREFOX_E2E_FIXES_SUMMARY.md
verify-security-state-for-ui-tests
categories.txt

# -----------------------------------------------------------------------------
# Databases
# -----------------------------------------------------------------------------
*.db
*.sqlite
*.sqlite3
backend/data/
backend/data/*.db
backend/data/**/*.db
backend/cmd/api/data/*.db
cpm.db
charon.db

# -----------------------------------------------------------------------------
# IDE & Editor
# -----------------------------------------------------------------------------
.idea/
*.swp
*.swo
*~
.DS_Store
*.xcf
**.code-workspace

# -----------------------------------------------------------------------------
# Logs & Temp Files
# -----------------------------------------------------------------------------
.trivy_logs/
*.log
logs/
npm-debug.log*
yarn-debug.log*
yarn-error.log*
nohup.out
hub_index.json
temp_index.json
backend/temp_index.json

# -----------------------------------------------------------------------------
# Environment Files
# -----------------------------------------------------------------------------
.env
.env.*
!.env.example

# -----------------------------------------------------------------------------
# OS Files
# -----------------------------------------------------------------------------
Thumbs.db

# -----------------------------------------------------------------------------
# Caddy Runtime Data
# -----------------------------------------------------------------------------
backend/data/caddy/
/data/
/data/backups/

# -----------------------------------------------------------------------------
# CrowdSec Runtime Data
# -----------------------------------------------------------------------------
*.key

# -----------------------------------------------------------------------------
# Docker Overrides
# -----------------------------------------------------------------------------
docker-compose.override.yml

# -----------------------------------------------------------------------------
# GoReleaser
# -----------------------------------------------------------------------------
dist/

# -----------------------------------------------------------------------------
# Testing & Coverage
# -----------------------------------------------------------------------------
coverage/
coverage.out
coverage.txt
*.xml
*.crdownload
provenance*.json

# -----------------------------------------------------------------------------
# CodeQL & Security Scanning
# -----------------------------------------------------------------------------
codeql-db/
codeql-db-*/
codeql-agent-results/
codeql-custom-queries-*/
codeql-results-go.sarif
codeql-results-js.sarif
codeql-results-javascript.sarif
*.sarif
.codeql/
.codeql/**
my-codeql-db/
codeql-linux64.zip

# -----------------------------------------------------------------------------
# Scripts & Temp Files (project-specific)
# -----------------------------------------------------------------------------
create_issues.sh
cookies.txt
cookies.txt.bak
test.caddyfile

# -----------------------------------------------------------------------------
# Project Documentation (implementation notes - not needed in repo)
# -----------------------------------------------------------------------------
*.md.bak
ACME_STAGING_IMPLEMENTATION.md*
ARCHITECTURE_PLAN.md
AUTO_VERSIONING_CI_FIX_SUMMARY.md
CODEQL_EMAIL_INJECTION_REMEDIATION_COMPLETE.md
COMMIT_MSG.txt
COVERAGE_ANALYSIS.md
COVERAGE_REPORT.md
DOCKER_TASKS.md*
DOCUMENTATION_POLISH_SUMMARY.md
GHCR_MIGRATION_SUMMARY.md
ISSUE_*_IMPLEMENTATION.md*
ISSUE_*.md
PATCH_COVERAGE_IMPLEMENTATION_SUMMARY.md
PHASE_*_SUMMARY.md
PROJECT_BOARD_SETUP.md
PROJECT_PLANNING.md
SECURITY_REMEDIATION_COMPLETE.md
VERSIONING_IMPLEMENTATION.md
backend/internal/api/handlers/import_handler.go.bak

# -----------------------------------------------------------------------------
# Agent Skills - Runtime Data Only (DO NOT ignore skill definitions)
# -----------------------------------------------------------------------------
# ⚠️ IMPORTANT: Only runtime artifacts are ignored. All .SKILL.md files and
# scripts MUST be committed for CI/CD workflows to function.

# Runtime temporary files
.github/skills/.cache/
.github/skills/temp/
.github/skills/tmp/
.github/skills/**/*.tmp

# Execution logs
.github/skills/logs/
.github/skills/**/*.log
.github/skills/**/nohup.out

# Test/coverage artifacts
.github/skills/coverage/
.github/skills/**/*.cover
.github/skills/**/*.html
.github/skills/**/test-output*.txt
.github/skills/**/*.db

# OS and editor files
.github/skills/**/.DS_Store
.github/skills/**/Thumbs.db

# -----------------------------------------------------------------------------
# Import Directory (user uploads)
# -----------------------------------------------------------------------------
import/
test-results/charon.hatfieldhosted.com.har
test-results/local.har
.cache

# -----------------------------------------------------------------------------
# Test artifacts at root
# -----------------------------------------------------------------------------
/block*.txt
/final_block_test.txt

# -----------------------------------------------------------------------------
# Debug/temp config files at root
# -----------------------------------------------------------------------------
/caddy_*.json

# -----------------------------------------------------------------------------
# Trivy scan outputs at root
# -----------------------------------------------------------------------------
/trivy-*.txt

# -----------------------------------------------------------------------------
# SBOM and vulnerability scan artifacts
# -----------------------------------------------------------------------------
sbom*.json
grype-results*.json
grype-results*.sarif

# -----------------------------------------------------------------------------
# Docker
# -----------------------------------------------------------------------------
.docker/compose/docker-compose.override.yml
.docker/compose/docker-compose.test.yml

# Personal test compose file (contains local paths - user-specific)
docker-compose.test.yml

# Note: docker-compose.playwright.yml is NOT ignored - it must be committed
# for CI/CD E2E testing workflows
.github/agents/prompt_template/
**.out
docs/plans/supply_chain_security_implementation.md.backup

# Playwright
/test-results/
/playwright-report/
/blob-report/
/playwright/.cache/
/playwright/.auth/
test-data/**

# GORM Security Scanner Reports
docs/reports/gorm-scan-*.txt
frontend/trivy-results.json
docs/plans/current_spec_notes.md
tests/etc/passwd
trivy-image-report.json
trivy-fs-report.json
trivy-report.json
backend/# Tools Configuration.md
docs/plans/requirements.md
docs/plans/design.md
docs/plans/tasks.md
frontend/coverage_output.txt
frontend/temp**
playwright-output/**
validation-evidence/**
.github/agents/# Tools Configuration.md
docs/reports/codecove_patch_report.md
vuln-results.json
test_output.txt
coverage_results.txt
final-results.json
new-results.json