# Rust
/target/
**/target/
**/*.rs.bk

# Packaging output: scripts/bundle-{macos,tarball,appimage}.sh write here.
# Generated artifacts, not source.
/dist/
# Occasional rustc `--emit=link` leftovers at the repo root (name chosen by
# the compiler when stdout is piped to a file). Ignored because they can be
# multi-MB binaries with no reason to exist in the tree.
/rust_out

# IDE
.idea/
.vscode/
*.swp
*.swo
*~

# OS
.DS_Store
Thumbs.db

# Environment
.env
.env.*
!.env.example

# Logs
*.log
LOG_*.text

# Local development artifacts
.codex

# Local-only release plans and internal deep-dives (kept out of the public repo)
/RELEASE_MACOS_PLAN.md
/RELEASE_V0.2.0_PLAN.md
/RELEASE_WINDOWS_PLAN.md
/ZED_TERMINAL_DEEP_DIVE.md
/CMUX_ANALYSIS.md
/CMUX_PULL_REPORT.md
/zed-terminal-architecture.md

# Local-only PRDs, spikes, and task-tracking notes (kept out of the public repo)
/tasks/
/paneflow-site/tasks/

# Local-only logo explorations (kept out of the public repo)
/logo-concepts/

# Local Claude Code agent state (memory, scheduled tasks) — never share publicly
**/.claude/
.vercel

# Local-only security pipeline artifacts (vuln-scan/triage/patch). Contain
# exploit recipes for live findings — never publish to the OSS repo.
/VULN-FINDINGS.json
/VULN-FINDINGS.md
/TRIAGE.json
/TRIAGE.md
/PATCHES/
/PATCHES.json
/PATCHES.md
/.patch-state/

# Local-only /ultron deep-audit reports (finding details, same class as the
# security pipeline output above) — never publish to the OSS repo.
/ULTRON/

# Local-only LinkedIn post drafts (personal marketing, not project source).
/linkedin/
