# Rust
/target/
**/*.rs.bk
Cargo.lock

# Node.js
node_modules/
dist/
*.tsbuildinfo
.npm

# Nix
result
result-*
.direnv/

# IDE
.idea/
.vscode/
*.swp
*.swo
*~
.DS_Store

# Environment
.env
.env.local
.env.*.local

# Secrets (never commit)
*.pem
*.key
*.p12
*.pfx
*.jks
secrets/
.keys/
credentials*
# …but the module source files named credentials.ts/.js are CODE, not
# secrets, and they live under packages/*/src or packages/*/dist.
!packages/*/src/credentials.ts
!packages/*/src/credentials.js
!packages/*/dist/credentials.js
server-audit.md

# Runtime data
*.sqlite
*.db
*.log
*.bak

# Internal docs (not published — may contain server IPs, infra details)
docs/planning/
docs/SPRINT-*
docs/DEPLOY-*
docs/INDEX.md
docs/MONETIZATION.md
docs/ARCHETYPES.md
docs/DEMO-SCRIPT.md
docs/TWITTER-ROBOTICS.md
docs/PENTEST-PROCESS.md
docs/6NODE-TEST-FINDINGS.md
docs/GO-TO-MARKET.md
docs/AGENTOS-PRODUCT-HUNT-STRATEGY.md
docs/FRESH-INSTALL-TEST.md
docs/X402-TESTING.md
docs/*-INTEGRATION-PLAN.md
COMMENTS.md

# Internal test scripts (contain infrastructure references)
scripts/security-stress-test.sh
scripts/mesh-test-5node.sh
scripts/test-5-instances.sh

# Security audit artifacts (private)
strix-instructions.txt
strix-proxy.js
strix_runs/

# Apps (separate repos, not part of open source OS)
apps/

# Video production (Remotion — large binaries, local only)
videos/

# Build artifacts
*.o
*.so
*.dylib

# Memory system runtime data
/var/lib/osmoda/

# Python
__pycache__/
*.py[cod]
*.egg-info/
.venv/
