# Deny access to config files and sensitive data
<FilesMatch "\.(ini|log|py|pyc|md)$">
    Require all denied
</FilesMatch>

# Alternative for older Apache versions
<IfModule !mod_authz_core.c>
    <FilesMatch "\.(ini|log|py|pyc|md)$">
        Order allow,deny
        Deny from all
    </FilesMatch>
</IfModule>
