# Allow image files to be served directly
<FilesMatch ".(jpg|jpeg|png|gif|webp)$">
    Allow from all
</FilesMatch>

# Prevent script execution in uploads directory
<FilesMatch ".(php|php5|php7|phtml|shtml|phar)$">
    Deny from all
</FilesMatch>
