The latest articles on Forem by Anurag Patel (@geekfarmer). https://forem.com/geekfarmer https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3837348%2F5d009a5d-04ca-49da-b64f-504f15958e14.jpeg https://forem.com/geekfarmer en Anurag Patel Sat, 21 Mar 2026 16:51:13 +0000 https://forem.com/geekfarmer/uignore-a-gitignore-for-ai-coding-tools-3h7 https://forem.com/geekfarmer/uignore-a-gitignore-for-ai-coding-tools-3h7 <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8fgdsrom7to6zomytyh1.jpeg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8fgdsrom7to6zomytyh1.jpeg" alt="Claude Code"></a></p> <p>AI coding tools are incredibly useful. They can read your codebase, understand context across dozens of files, and make changes in seconds.</p> <p>They can also read your <code>.env</code> file. Your <code>secrets/</code> directory.<br> Your SSH keys. Your AWS credentials.</p> <p>Not because they're malicious — but because <strong>nothing stops them by default.</strong></p> <p>I built <a href="https://github.com/otto-open-labs/uignore" rel="noopener noreferrer">uignore</a> to fix this.</p> <h2> What is uignore? </h2> <p>uignore gives you a single <code>.uignore</code> file — same syntax as <code>.gitignore</code> — that blocks file access across all supported AI tools simultaneously.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight conf"><code> <span class="n">gitignore</span> <span class="c"># .uignore </span> <span class="n">secrets</span>/ .<span class="n">env</span> .<span class="n">env</span>.* *.<span class="n">pem</span> *.<span class="n">key</span> </code></pre> </div> <p>Add a path once. Claude Code, Gemini CLI, Cursor, and Windsurf all respect it automatically.</p> <h2> How it works </h2> <p>Each AI tool has a native hook system:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> ┌─────────────┬────────────────┬─────────────────┐ │ Tool │ Hook │ Block mechanism │ ├─────────────┼────────────────┼─────────────────┤ │ Claude Code │ PreToolUse │ exit code 2 │ ├─────────────┼────────────────┼─────────────────┤ │ Gemini CLI │ BeforeTool │ exit code 2 │ ├─────────────┼────────────────┼─────────────────┤ │ Cursor │ beforeReadFile │ exit code 2 │ ├─────────────┼────────────────┼─────────────────┤ │ Windsurf │ pre_read_code │ exit code 2 │ └─────────────┴────────────────┴─────────────────┘ </code></pre> </div> <p>uignore registers a hook with each tool. Before every file read or write, the hook resolves the target path against your .uignore rules.<br> If it matches — the operation is blocked. The file content never reaches the model.</p> <h2> Getting started </h2> <p>No global install required:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> npx @ottoai/uignore init <span class="c"># creates a .uignore template</span> npx @ottoai/uignore <span class="nb">install</span> <span class="c"># registers hooks for all tools</span> </code></pre> </div> <p>Then commit to git:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> git add .uignore .claude/settings.json .gemini/settings.json <span class="se">\</span> .cursor/hooks.json .windsurf/hooks.json git commit <span class="nt">-m</span> <span class="s2">"chore: add uignore"</span> </code></pre> </div> <p>Your whole team now has the same protection automatically.<br> No per-developer setup required.</p> <p>Syntax<br> uignore follows .gitignore conventions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight conf"><code> <span class="c"># Block a directory </span> <span class="n">secrets</span>/ <span class="c"># Block specific file types </span> *.<span class="n">pem</span> *.<span class="n">key</span> <span class="c"># Block .env and all variants </span> .<span class="n">env</span> .<span class="n">env</span>.* <span class="c"># Block everything except README </span> *.<span class="n">md</span> !<span class="n">README</span>.<span class="n">md</span> </code></pre> </div> <p>Hierarchical .uignore files are supported — place one in any subdirectory for subtree-specific rules. A global ~/.uignore applies personal rules across every project.</p> <h2> CLI </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> uignore check secrets/apikey.txt <span class="c"># test if a file would be blocked</span> uignore list <span class="c"># show all active rules</span> uignore diff <span class="c"># show which tracked files are blocked</span> uignore doctor <span class="c"># diagnose config problems</span> uignore add <span class="k">*</span>.pem <span class="c"># add a pattern</span> uignore remove <span class="k">*</span>.pem <span class="c"># remove a pattern</span> </code></pre> </div> <h2> Open source </h2> <p>MIT licensed. Contributions welcome.</p> <ul> <li>GitHub: <a href="https://github.com/otto-open-labs/uignore" rel="noopener noreferrer">https://github.com/otto-open-labs/uignore</a> </li> <li>npm: <a href="https://npmjs.com/package/@ottoai/uignore" rel="noopener noreferrer">https://npmjs.com/package/@ottoai/uignore</a> </li> </ul> <p>If you use an AI tool that isn't supported yet, PRs are open.</p> ai security devtools opensource