# Secrets and session data
tokens.jsonl
valid_tokens.txt
.env
*.sh

# Encrypted database, temp files, backups
uploads/*
!uploads/.gitkeep

# Database lock files (just in case)
uploads/.qdb_lock
uploads/*.lock

# Logs / dumps / exports
*.log
*.sqlite
*.db
*.dump
*.bak
*.backup
*.tmp
*.temp

# Node/npm artifacts (if website/js uses npm)
node_modules/
npm-debug.log
yarn.lock
package-lock.json

# PHP composer artifacts (if using composer in future)
vendor/
composer.lock

# IDE / editor
.DS_Store
Thumbs.db
*.swp
*.swo
*~
.vscode/
.idea/
*.code-workspace

# Misc
*.orig
*.rej

# Ignore schema if generated
schema.sql

# Ignore browser build artifacts (if any)
website/js/dist/
website/js/build/

# Ignore backups at project root
*.tar
*.tar.gz
*.zip
*.7z