john/tractatus
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

security(gitignore): add 23 missing protection patterns for sensitive files

Browse source 
SECURITY GAPS FIXED:
- Payment IDs: .stripe-ids.json
- Deployment configs: .rsyncignore
- Session closedowns: "closedown prompt", CLOSEDOWN*.txt/md
- Internal planning: SCHEDULED_TASKS.md, SITE_IMPROVEMENT_PRIORITIES.md,
  TRACTATUS_BRAND_SYSTEM.md, UI_TRANSFORMATION_PROJECT_PLAN.md
- Internal PDFs: CLAUDE_WEB_BRIEF.pdf, EXECUTIVE_BRIEF*.pdf
- Internal docs: docs/analysis/, docs/analysis-archive-*/,
  docs/FIND_STRIPE*.md, docs/FRAMEWORK_FAILURE*.md, docs/PRODUCTION_DEPLOYMENT*.md
- Temporary files: deployment-output.txt, migration-output.txt,
  PERPLEXITY_USER_PROMPT.txt, ECONOMIST_LETTER_*.docx

RESULT: .gitignore expanded from 171 → 193 lines
STATUS: All sensitive files now protected from accidental git commits

🤖 Generated with Claude Code
Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
TheFlow 2025-10-21 18:56:47 +13:00
parent 43fa6cca61
commit 65703afff3
2 changed files with 24 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

24
.gitignore vendored
View file

@ -79,15 +79,26 @@ SESSION-*.md
OPTIMAL_NEXT_SESSION*.md OPTIMAL_NEXT_SESSION*.md
NEXT_SESSION*.md NEXT_SESSION*.md
ARCHIVE_SUMMARY*.md ARCHIVE_SUMMARY*.md
CLOSEDOWN*.md
CLOSEDOWN*.txt
closedown prompt
old claude md file
# === INTERNAL PITCH DOCUMENTS === # === INTERNAL PITCH DOCUMENTS ===
PITCH-*.md PITCH-*.md
TRACTATUS-ELEVATOR-PITCHES.md TRACTATUS-ELEVATOR-PITCHES.md
CLAUDE_WEB_BRIEF.pdf
EXECUTIVE_BRIEF*.pdf
# === INTERNAL PLANNING === # === INTERNAL PLANNING ===
PHASE-*.md PHASE-*.md
MEETING_NOTES*.md MEETING_NOTES*.md
EXECUTIVE_BRIEF*.md EXECUTIVE_BRIEF*.md
SCHEDULED_TASKS.md
SITE_IMPROVEMENT_PRIORITIES.md
TRACTATUS_BRAND_SYSTEM.md
UI_TRANSFORMATION_PROJECT_PLAN.md
Tractatus-Website-Complete-Specification*.md
# === INTERNAL SCRIPTS === # === INTERNAL SCRIPTS ===
scripts/deploy-*.sh scripts/deploy-*.sh
@ -108,6 +119,8 @@ docs/stripe-analysis/
docs/economist-analysis/ docs/economist-analysis/
docs/framework-incidents/ docs/framework-incidents/
docs/deployment-logs/ docs/deployment-logs/
docs/analysis/
docs/analysis-archive-*/
# === INTERNAL DOCS FILES === # === INTERNAL DOCS FILES ===
docs/DEPLOYMENT*.md docs/DEPLOYMENT*.md
@ -119,8 +132,9 @@ docs/DOCUMENT_SECURITY*.md
docs/BLOG-POST-OUTLINES.md docs/BLOG-POST-OUTLINES.md
docs/PHASE-*.md docs/PHASE-*.md
docs/STRIPE_*.md docs/STRIPE_*.md
docs/FIND_STRIPE*.md
docs/KOHA*.md docs/KOHA*.md
docs/SECURITY_AUDIT*.md docs/SECURITY*.md
docs/BENCHMARK*.md docs/BENCHMARK*.md
docs/IMPLEMENTATION_PROGRESS*.md docs/IMPLEMENTATION_PROGRESS*.md
docs/BOOTSTRAPPING*.md docs/BOOTSTRAPPING*.md
@ -129,6 +143,8 @@ docs/SIMULATION*.md
docs/SESSION*.md docs/SESSION*.md
docs/API_MEMORY*.md docs/API_MEMORY*.md
docs/HOOKS*.md docs/HOOKS*.md
docs/FRAMEWORK_FAILURE*.md
docs/PRODUCTION_DEPLOYMENT*.md
# === SENSITIVE FILES === # === SENSITIVE FILES ===
*.key *.key
@ -139,6 +155,8 @@ secrets/
credentials/ credentials/
ADMIN_LOGIN_INSTRUCTIONS.md ADMIN_LOGIN_INSTRUCTIONS.md
.admin-credentials.local .admin-credentials.local
.stripe-ids.json
.rsyncignore
# === DATABASE DUMPS === # === DATABASE DUMPS ===
dump/ dump/
@ -160,6 +178,10 @@ production.json
# === TEMPORARY AUDIT FILES === # === TEMPORARY AUDIT FILES ===
/tmp/*.md /tmp/*.md
/tmp/*.txt /tmp/*.txt
deployment-output.txt
migration-output.txt
PERPLEXITY_USER_PROMPT.txt
ECONOMIST_LETTER_*.docx
# === SCREENSHOTS === # === SCREENSHOTS ===
Screenshot*.png Screenshot*.png

1
PUBLIC_REPO_CHECKLIST.md
View file

@ -161,6 +161,7 @@ Before pushing to public GitHub, verify:
**Last cleaned:** 2025-10-21 **Last cleaned:** 2025-10-21
**Files removed:** 226 internal/sensitive files **Files removed:** 226 internal/sensitive files
**.gitignore:** 193 lines (comprehensive protection)
--- ---