P2.5-001: Secrets scanning CI - GitHub Actions workflow with Gitleaks - Fallback grep scan for common patterns - Runs on PR + push to main/production P2.5-002: Build + lint workflow - Installs deps, runs lint, typecheck, build - Runs redaction tests - Verifies dist output exists P2.5-003: CONTRIBUTING.md - Local dev setup instructions - PR checklist (tests + secrets) - Coding conventions - Key rotation guide (docs/security/KEY_ROTATION.md) QA smoke results: - Build passes - Workflows syntax valid - .github no longer gitignored
27 lines
378 B
Plaintext
27 lines
378 B
Plaintext
node_modules
|
|
.DS_Store
|
|
dist
|
|
dist-ssr
|
|
*.local
|
|
count.txt
|
|
.env
|
|
.nitro
|
|
.tanstack
|
|
.wrangler
|
|
.output
|
|
.vinxi
|
|
todos.json
|
|
releases/
|
|
|
|
# Internal docs (not for public repo)
|
|
SHIP-REPORT.md
|
|
CURRENT-STATUS.md
|
|
BUG-REPORT.md
|
|
LINT-FIX-TASK.md
|
|
docs/OVERNIGHT-SHIP-REPORT.md
|
|
docs/RELEASE-SETUP.md
|
|
docs/PHASE-3-ACTION-PLAN.md
|
|
docs/TAURI-PACKAGING-PLAN.md
|
|
.env.local
|
|
# Keep .github/workflows for CI
|