node_modules package-lock.json .env security.log