# False positive patterns — these are detected by the scanner but are safe to commit # .gitignore file itself (it contains patterns like .env, *.key, etc.) \.gitignore$ # Event topic hashes (keccak256 of event signatures like Transfer) 0xddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f5 # Stripe key names mentioned in code (not actual keys) STRIPE_SECRET_KEY STRIPE_PUBLISHABLE_KEY # These specific patterns are scanner false positives \.env$ \.env\.