# Block sensitive files in the project root from web access
<FilesMatch "^(audit_report\.txt|README\.md)$">
    Require all denied
</FilesMatch>
