patrick/sojorn
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Security update for .gitignore: catch all common secret and certificate file extensions and remove tracked environment files

Browse source
This commit is contained in:
Patrick Britton 2026-02-03 17:26:47 -06:00
parent 5f2c3a971f
commit ffdd77ce76
2 changed files with 84 additions and 52 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

118
.gitignore vendored
View file

@ -1,22 +1,63 @@
# Environment variables # Environment variables
.env
.env.*
!.env.example
*.env *.env
.env.local *.tfvars
.env.*.local *.tfvars.json
# SSH & Keys
*.pem
*.key
id_rsa*
*.pub
ssh_config
authorized_keys
*.p12
*.pfx
*.jks
*.keystore
*.cer
*.crt
*.der
*.gpg
*.pgp
*.asc
# Platform / Auth Secrets
firebase-auth-*.json
google-services.json
GoogleService-Info.plist
*credentials.json
account_key.json
*secret*.json
*config*.json.bak
*.p8
# Supabase # Supabase
.branches .branches
.temp .temp
supabase/.temp/
supabase/functions/**/.env
# OS # OS
.DS_Store .DS_Store
Thumbs.db Thumbs.db
desktop.ini
# IDE # IDE
.vscode/ .vscode/*
!.vscode/extensions.json
!.vscode/launch.json
!.vscode/tasks.json
.idea/ .idea/
*.swp *.swp
*.swo *.swo
*~ *~
*.iml
*.iws
*.ipr
# Large build artifacts and debug files # Large build artifacts and debug files
*.zip *.zip
@ -28,16 +69,13 @@ Thumbs.db
*.db *.db
*.sqlite *.sqlite
*.sqlite3 *.sqlite3
*.iso
# HAR files # HAR files & Logs
*.har *.har
localhost.har localhost.har
localhost.txt
# Claude AI logs/
.claude/
# Logs
logs
*.log *.log
npm-debug.log* npm-debug.log*
yarn-debug.log* yarn-debug.log*
@ -47,47 +85,39 @@ yarn-error.log*
node_modules/ node_modules/
.pnp .pnp
.pnp.js .pnp.js
.yarn/cache/
.yarn/unplugged/
.yarn/build-state.yml
.yarn/install-state.gz
.pnp.*
# Testing # Testing
coverage/ coverage/
.nyc_output .nyc_output
.shippable
# Build # Build
dist/ dist/
build/ build/
out/ out/
sources/ bin/
obj/
release/
debug/
# Flutter # Flutter specific
.dart_tool/ .dart_tool/
.flutter-plugins .flutter-plugins
.flutter-plugins-dependencies .flutter-plugins-dependencies
.packages .packages
.pub-cache/ .pub-cache/
.pub/ .pub/
build/ /build/
/sojorn_app/build/
*.g.dart *.g.dart
*.freezed.dart *.freezed.dart
# Secrets # Project Specific Exclusions
*.pem
*.key
secrets/
credentials/
# Documentation (keep locally, not on GitHub)
docs/
# Temporary files
tmp/
temp/
*.tmp
# Documentation and SQL
# Remove broad exclusion to allow go-backend files
# !go-backend/**/*.md
# !go-backend/**/*.sql
logo.ai logo.ai
sojorn_app/analysis_results_final.txt sojorn_app/analysis_results_final.txt
go-backend/.env go-backend/.env
@ -100,6 +130,26 @@ go-backend/verify*
go-backend/migrate* go-backend/migrate*
go-backend/fixdb* go-backend/fixdb*
go-backend/api.exe go-backend/api.exe
localhost.txt temp_server.env
*.txt.bak *.txt.bak
*.har
# Miscellaneous Security
*.history
*.bash_history
*.zsh_history
*.mysql_history
*.psql_history
*.sqlite_history
.netrc
.shittiest_secrets
.vault
*.kdb
*.kdbx
*.sops
.node_repl_history
.python_history
.bash_profile
.bashrc
.zshrc
.profile

18
temp_server.env
View file

@ -1,18 +0,0 @@
PORT=8080
ENV=development
LOG_LEVEL=debug
DATABASE_URL=postgres://postgres:A24Zr7AEoch4eO0N@localhost:5432/sojorn?sslmode=disable
JWT_SECRET=your-jwt-secret-here
CORS_ORIGINS=*
RATE_LIMIT_RPS=100
R2_ACCOUNT_ID=7041ca6e0f40307190dc2e65e2fb5e0f
R2_PUBLIC_BASE_URL=http://api.gosojorn.com:8080/uploads
R2_IMG_DOMAIN=img.gosojorn.com
R2_VID_DOMAIN=quips.gosojorn.com
R2_API_TOKEN=oR7Vk0Realtx0D6SAGMuYA8pXopSoCYKv8t3JEuk
SMTP_HOST=smtp-pulse.com
SMTP_PORT=587
SMTP_USER=patrickbritton3@gmail.com
SMTP_PASS=8s4jQBnAFTCXPNM
SENDPULSE_ID=584394b6777c4cea5ad02630d85df9c4
SENDPULSE_SECRET=2c1cfb9f9d1f4dd660cd7f4a1608cec1