node_modules/
.pnpm-store/
dist/
build/
*.tsbuildinfo
coverage/
.env
.env.local
.env.*.local
# Catch every other local env variant + backups (e.g. .env.live, .env.test.bak,
# .env.*.from-vercel-*.txt) so real secrets can never be committed by `git add .`.
# Any *.example file is a safe, secret-free template and stays tracked
# (.env.example, .env.docker.example, .env.local.example, ...).
.env.*
!.env*.example
logs/
*.log
.DS_Store
Thumbs.db
*.db

# Design assets (stored separately)
brand-assets/
figma-plugin-components/
figma-plugin-dashboard/
figma-plugin-design-tokens/
figma-plugin-mobile/
figma-plugin-website/
panguard design/

# Community rules (pulled by scripts/update-*-rules.sh at build time)
config/sigma-rules/community/
config/yara-rules/community/

# Next.js
packages/website/.next/
.next/
.vercel/
.vercel
pancore/

# Build artifacts
bundled-rules/
package-lock.json

# Test results
test-results/

# Tool state
.claude/
.gstack/

# Internal files (not for public release)
marketing/
progress.md
.env.production
threat-cloud.db
threat-cloud.db-shm
threat-cloud.db-wal
