# Block direct access to sensitive files
<FilesMatch "^(\.env|config\.php|db\.php|sessions\.json|last_update_id\.txt|bot_debug\.log|error_log|cron_reminders\.php)$">
    Order allow,deny
    Deny from all
</FilesMatch>

# Block access to the vendor directory
<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteRule ^vendor/ - [F,L]
</IfModule>
