235a9abbfe
- Replace hardcoded secret_key with os.environ.get('SECRET_KEY')
- RuntimeError if SECRET_KEY not set (fail fast)
- Restrict CORS to localhost:8765 origins (was allow all with credentials)
- Add .gitignore excluding db, env, __pycache__, backups
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
22 lines
170 B
Plaintext
22 lines
170 B
Plaintext
__pycache__/
|
|
*.pyc
|
|
*.pyo
|
|
.venv/
|
|
venv/
|
|
|
|
# Database (local data)
|
|
*.db
|
|
*.sqlite
|
|
|
|
# Environment secrets
|
|
.env
|
|
*.env
|
|
|
|
# Backup archives
|
|
Backup/
|
|
*.zip
|
|
|
|
# OS
|
|
.DS_Store
|
|
Thumbs.db
|