Block access to sensitive files and directories

New blocked files/directories:
    .env - Environment variables
    .svn - Subversion
    composer.json, composer.lock - PHP dependencies

    package.json, package-lock.json - Node dependencies
    .user.ini - PHP configuration
    .bak, .config, .sql, .log, .sh, .ini, .inc, .swp, .dist

Author: Ym0T

nginx/conf.d/default.conf

@@ -35,11 +35,36 @@ server {
         fastcgi_read_timeout 300;
     }
 
+    # Block access to sensitive files and directories
     location ~ /\.git {
         deny all;
     }
 
     location ~ /\.ht {
         deny all;
     }
+
+    location ~ /\.env {
+        deny all;
+    }
+
+    location ~ /\.svn {
+        deny all;
+    }
+
+    location ~ /composer\.(json|lock)$ {
+        deny all;
+    }
+
+    location ~ /package(-lock)?\.json$ {
+        deny all;
+    }
+
+    location ~ /\.user\.ini$ {
+        deny all;
+    }
+
+    location ~ /\.(bak|config|sql|fla|psd|ini|log|sh|inc|swp|dist)$ {
+        deny all;
+    }
 }