Never store sensitive information like passwords, API keys, or database backups in a directory that is accessible via the web.
: Contain API keys, database passwords, and app secrets. backup.sql : Full database dumps.