# Keep secrets, runtime state and VCS metadata OUT of the Docker build context
# entirely — they must never reach the build stage, let alone the final image.
.env
*.local
state/
ai-bot
.git
.gitignore
README.md