Consider blocking plugin submissions containing .git folders (among others?)

[JustinSainton]

Related: https://meta.trac.wordpress.org/ticket/6512

Separate from the SVN upload in that related ticket, we should consider blocking plugins upon submission if they contain .git folders.

[dd32]

Just noting, Plugin Check (hereby referred to as PC) does include a check for this: ​https://github.com/WordPress/plugin-check/blob/trunk/includes/Checker/Checks/File_Type_Check.php

Until such a time that PC blocks uploads (rather than just running on uploads), adding a "Lite" version of that check into the upload process on the directory seems reasonable to me - Especially for the highly common cases of .git and .svn which can often contain details we don't want to know and the plugin author most likely did not realise they were submitting it.

It doesn't need to be as complete as PCs check.

[dd32]

In 13135:

Plugin Directory: Upload: Reject submissions containing unexpected / invalid directories and file types.

Fixes #7415.

[dd32]

In 13136:

Plugin Directory: Add the 2nd half of [13135] allowing for directories to be listed.

See #7415.