chore(security): .gitignore + .gitleaks.toml защита от CMS-export leak
All checks were successful
deploy / deploy (push) Successful in 1m2s
security / security (push) Successful in 2m45s

Превентивная защита от случайной публикации content/logs, content/data, ghost.*.json (см. инцидент moovg_ru 2026-05-24).

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
Dmitry Gusev
2026-05-24 20:09:23 +03:00
parent 2a539705e7
commit 23c8deebd2
2 changed files with 20 additions and 1 deletions

12
.gitignore vendored
View File

@@ -1,3 +1,13 @@
# Security: НЕ коммитить production logs и CMS data exports
# (могут содержать API keys, JWT, private_key). См. инцидент 2026-05-24.
content/logs/
content/data/
*.production.log
*.production.log.*
ghost.json
ghost.*.json
*.ghost.*.json
# build output
dist/
.astro/
@@ -21,4 +31,4 @@ pnpm-debug.log*
.DS_Store
# jetbrains setting folder
.idea/
.idea/