# Git attributes for DoD/MilSpec compliance
# Ensures proper handling of sensitive files

# Prevent diffing of binary files that might contain secrets
*.key binary
*.pem binary
*.p12 binary
*.pfx binary
*.crt binary
*.cert binary
*.p7b binary
*.p7c binary
*.p7m binary
*.p7s binary

# Prevent merging of configuration files with secrets
*.env merge=ours
*.secret merge=ours
*credentials*.yaml merge=ours
*secret*.yaml merge=ours

# Mark sensitive files for git-secrets
*.env filter=git-secrets
*.secret filter=git-secrets
*credentials*.yaml filter=git-secrets
*secret*.yaml filter=git-secrets

# Prevent auto-conversion of line endings for sensitive files
*.key text eol=lf
*.pem text eol=lf
*.env text eol=lf

