# Python-generated files
__pycache__/
*.py[oc]
build/
dist/
wheels/
*.egg-info

# Virtual environments
.venv

# Environment variables — never commit credentials or PHI values
.env

# SQLite databases — may contain PHI; exclude from version control
*.db
*.sqlite3

# PhiScan internal state — stores SHA-256 hashes, never raw PHI
.phi-scanner/

# PhiScan scan output
phi-report.json

# Test coverage artifacts
.coverage
coverage.xml

# Ephemeral output from the S9 pip-audit runner — regenerated in CI
# and locally on every invocation via uv export. See docs/supply-chain.md.
pip-audit-requirements.txt
sbom.cyclonedx.json

# Claude Code local configuration — IDE settings and skill definitions.
# This is development tooling for the maintainer; it has no value to contributors.
.claude/

# Claude Code self-heal runtime state — session log generated by the self-heal skill.
.self-heal/

# AI pair-programming instructions — private development context for the maintainer.
# Public-facing contribution guidelines belong in CONTRIBUTING.md.
CLAUDE.md

# Internal sprint plan — task-level detail, checkboxes, and implementation notes.
# The public roadmap lives in ROADMAP.md.
PLAN.md

# User-local scanner config overrides — personal tuning that should not be shared.
# The project's .phi-scanner.yml is committed; this pattern covers personal overrides
# named with a .local suffix (e.g. .phi-scanner.local.yml).
.phi-scanner.local.yml
