# Secrets and session data tokens.jsonl valid_tokens.txt .env *.sh # Encrypted database, temp files, backups uploads/* !uploads/.gitkeep !uploads/logs/ !uploads/logs/** # Database lock files (just in case) uploads/.qdb_lock uploads/*.lock # Logs / dumps / exports *.log logs/api/* !logs/api/.gitkeep *.sqlite *.db *.dump *.bak *.backup *.tmp *.temp # Node/npm artifacts (if website/js uses npm) node_modules/ npm-debug.log yarn.lock package-lock.json # PHP composer artifacts (if using composer in future) vendor/ composer.lock # IDE / editor .DS_Store Thumbs.db *.swp *.swo *~ .vscode/ .idea/ *.code-workspace # Misc *.orig *.rej *.md # Ignore browser build artifacts (if any) website/js/dist/ website/js/build/ # Ignore backups at project root *.tar *.tar.gz *.zip *.7z