# Large binary files — download/build these, don't commit them *.deb *.zip *.wim *.iso *.efi *.sdi # OneDrive download artifacts OneDrive_*/ # Error folders from OneDrive download __*/ ___*.txt # Original OneDrive folder structure (reorganized into autoinstall/ and playbook/) WestJeff*/ # Duplicate at root (canonical copy in unattend/) /FlatUnattendW10.xml # Offline packages (built by download-packages.sh) offline-packages/ # Boot tool binaries (built by prepare-boot-tools.sh) boot-tools/ # Track the Blancco GRUB config as source-of-truth for grubx64.efi rebuilds. # prepare-boot-tools.sh rebuilds grubx64.efi from this file via grub-mkstandalone. !boot-tools/blancco/grub-blancco.cfg # WinPE boot files (wimboot, boot.wim, BCD, ipxe.efi, etc.) boot-files/ # Exception: track undionly.kpxe (open-source iPXE BIOS-mode NBP for # legacy PXE clients, ~70KB, from boot.ipxe.org). Makes air-gapped USB # build self-contained without a separate fetch step. !boot-files/undionly.kpxe # Python wheels for offline install (built by download-packages.sh) pip-wheels/ # Deployment images (imported via webapp or USB) geastandardpbr/ # OS files .DS_Store Thumbs.db # Python __pycache__/ *.pyc *.pyo venv/ # MOK Secure Boot signing keys (contains private key) mok-keys/ # Secrets secrets.md **/eMxInfo*.txt *.ppkg enrollment/ drivers-staging/ bios-staging/ .claude/ # Secrets and credentials (defensive) .env .env.* !.env.example !.env.*.example *.pem *.key id_rsa id_rsa.* *.ppk *.p12 *.pfx secrets.json secrets.yaml secrets.yml *_secret *_secrets credentials.json # GE-internal WiFi / 802.1X profiles - contain SSID + trusted-root thumbprint. # Staged on PXE share at /srv/samba/enrollment/MachineAuth/ and copied to # bays during imaging. Never check these into git. AESFMA.xml 8021x.xml BLUESSO.xml WiFi-Profile.xml *.wlanprofile *.lanprofile # Pre-staged binary (142 MB) - track via LFS or stage on PXE server, not in regular git playbook/shopfloor-setup/Shopfloor/PrinterInstallerMap.exe # Keyence VR-6000 InstallShield payload (560 MB). InstallShield MSIs split # the compressed payload into Data1.cab; without it next to the MSI, msiexec # exits 1603 with "SECREPAIR: Failed to open Data1.cab" (see # /home/camp/pxe-images/keyence/Logs/Keyence/install.log for the signature). # Canonical source on the GE-Enforce SFLD share: # tsgwp00525\sfld$\v2\shared\dt\shopfloor\gea-shopfloor-keyence\apps\Data1.cab # before building the USB image. playbook/shopfloor-setup/gea-shopfloor-waxtrace/captured-binary/ # Keyence per-model installer payloads - too big for git, staged via sync-keyence.sh playbook/shopfloor-setup/gea-shopfloor-keyence/vr3000/installers/Data*.cab playbook/shopfloor-setup/gea-shopfloor-keyence/vr3000/installers/*.msi playbook/shopfloor-setup/gea-shopfloor-keyence/vr5000/installers/Data*.cab playbook/shopfloor-setup/gea-shopfloor-keyence/vr5000/installers/*.msi playbook/shopfloor-setup/gea-shopfloor-keyence/vr6000/installers/Data1.cab