# --- Claude Code worktrees (never commit) ---
.claude/worktrees/

# --- Secrets & env ---
.env
.env.*
!.env.example
*.pem
*.key
credentials*
secrets*

# --- Python ---
__pycache__/
*.py[cod]
*$py.class
*.so
.Python
build/
develop-eggs/
dist/
downloads/
eggs/
.eggs/
*.egg-info/
.installed.cfg
*.egg
MANIFEST

# Virtual envs
.venv/
venv/
env/
ENV/

# pytest / coverage / mypy / ruff
.pytest_cache/
.coverage
.coverage.*
htmlcov/
.cache
.tox/
.nox/
.mypy_cache/
.ruff_cache/

# SQLite local dbs
*.sqlite
*.sqlite3
*.db

# --- Node / Frontend ---
node_modules/
npm-debug.log*
yarn-debug.log*
yarn-error.log*
pnpm-debug.log*
.pnpm-store/

# Vite / build outputs
frontend/dist/
frontend/.vite/
*.local

# --- Playwright ---
e2e/test-results/
e2e/playwright-report/
e2e/playwright/.cache/

# --- Editors / OS ---
.vscode/
.idea/
*.swp
*.swo
.DS_Store
Thumbs.db

# --- Docker ---
*.pid

# --- Build artifacts / payloads (per CLAUDE.md OPSEC) ---
*.exe
*.dll
*.bin
*.o
*.obj
*.exp
*.lib

# --- MITRE bundle if huge (kept by default — uncomment to ignore) ---
# backend/data/mitre/enterprise-attack.json