security: harden secret hygiene and pre-commit scanning

2026-02-08 10:27:23 +03:00
parent f609d2ce35
commit 0dbfe45353
5 changed files with 84 additions and 4 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -1,5 +1,16 @@
 # QuoteForge
 config.yaml
+.env
+.env.*
+*.pem
+*.key
+*.p12
+*.pfx
+*.crt
+id_rsa
+id_rsa.*
+secrets.yaml
+secrets.yml

 # Local SQLite database (contains encrypted credentials)
 /data/*.db