From 5b1a48442f470c305941f46f6fe127dfd2f9d365 Mon Sep 17 00:00:00 2001
From: Colin Mollenhour <colin@mollenhour.com>
Date: Wed, 3 Aug 2022 09:36:40 -0700
Subject: [PATCH 1/4] Block access to various project files

Note, this blocks access to files of these types in directories other than the root directory as well.
---
 .htaccess | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/.htaccess b/.htaccess
index 585273a3a4b..2985e2c2025 100644
--- a/.htaccess
+++ b/.htaccess
@@ -201,12 +201,17 @@
     Allow from all
 
 ###########################################
-## Deny access to release notes to prevent disclosure of the installed Magento version
+## Deny access to other project files to prevent disclosure of the installed Magento version
+## Only robots.txt should be allowed
 
-    <Files RELEASE_NOTES.txt>
+    <FilesMatch (?<!robots)\.txt$>
         order allow,deny
         deny from all
-    </Files>
+    </FilesMatch>
+    <FilesMatch \.(json|lock|md|sample|yml)$>
+        order allow,deny
+        deny from all
+    </FilesMatch>
 
 ############################################
 ## If running in cluster environment, uncomment this

From 3cc6cfc224adcdbfb56d20efcb84f3e5ebed6b2b Mon Sep 17 00:00:00 2001
From: Colin Mollenhour <colin@mollenhour.com>
Date: Mon, 8 Aug 2022 15:06:24 -0700
Subject: [PATCH 2/4] Allow manifest.json

---
 .htaccess | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.htaccess b/.htaccess
index 2985e2c2025..95246788323 100644
--- a/.htaccess
+++ b/.htaccess
@@ -208,7 +208,11 @@
         order allow,deny
         deny from all
     </FilesMatch>
-    <FilesMatch \.(json|lock|md|sample|yml)$>
+    <FilesMatch (?<!manifest)\.json$>
+        order allow,deny
+        deny from all
+    </FilesMatch>
+    <FilesMatch \.(lock|md|sample|yml)$>
         order allow,deny
         deny from all
     </FilesMatch>

From cac4c85e4dbd40cb377c16effcb5f10ef5928e6b Mon Sep 17 00:00:00 2001
From: Colin Mollenhour <colin@mollenhour.com>
Date: Mon, 8 Aug 2022 15:09:33 -0700
Subject: [PATCH 3/4] Update .htaccess

---
 .htaccess | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.htaccess b/.htaccess
index 95246788323..8a554ab34a2 100644
--- a/.htaccess
+++ b/.htaccess
@@ -202,7 +202,7 @@
 
 ###########################################
 ## Deny access to other project files to prevent disclosure of the installed Magento version
-## Only robots.txt should be allowed
+## Only robots.txt and manifest.json should be allowed by default
 
     <FilesMatch (?<!robots)\.txt$>
         order allow,deny

From efca27f9e3da157dc1ebafef5ca57b7ccc73c40a Mon Sep 17 00:00:00 2001
From: Colin Mollenhour <colin@mollenhour.com>
Date: Tue, 9 Aug 2022 12:57:34 -0700
Subject: [PATCH 4/4] Update .htaccess

---
 .htaccess | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/.htaccess b/.htaccess
index 8a554ab34a2..2f07c92af44 100644
--- a/.htaccess
+++ b/.htaccess
@@ -201,20 +201,20 @@
     Allow from all
 
 ###########################################
-## Deny access to other project files to prevent disclosure of the installed Magento version
+## Deny access to other project files to prevent disclosure of the installed Magento version or other information
 ## Only robots.txt and manifest.json should be allowed by default
 
     <FilesMatch (?<!robots)\.txt$>
-        order allow,deny
-        deny from all
+        Order allow,deny
+        Deny from all
     </FilesMatch>
     <FilesMatch (?<!manifest)\.json$>
-        order allow,deny
-        deny from all
+        Order allow,deny
+        Deny from all
     </FilesMatch>
-    <FilesMatch \.(lock|md|sample|yml)$>
-        order allow,deny
-        deny from all
+    <FilesMatch \.(lock|md|sample|sh|yml|yaml)$>
+        Order allow,deny
+        Deny from all
     </FilesMatch>
 
 ############################################