Spaces:
Sleeping
Sleeping
Update Dockerfile
Browse files- Dockerfile +12 -2
Dockerfile
CHANGED
|
@@ -11,13 +11,23 @@ RUN apt-get update && apt-get install -y \
|
|
| 11 |
|
| 12 |
WORKDIR /code
|
| 13 |
|
| 14 |
-
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 15 |
RUN pip install --no-cache-dir --upgrade -r /code/requirements.txt
|
| 16 |
|
| 17 |
# For headless matplotlib
|
| 18 |
ENV MPLBACKEND=Agg
|
| 19 |
|
| 20 |
-
COPY . /code/
|
|
|
|
|
|
|
|
|
|
| 21 |
|
| 22 |
# Make sure the app.py file is correctly named
|
| 23 |
CMD ["uvicorn", "app:app", "--host", "0.0.0.0", "--port", "7860"]
|
|
|
|
| 11 |
|
| 12 |
WORKDIR /code
|
| 13 |
|
| 14 |
+
# Create a non-root user to run the application
|
| 15 |
+
RUN useradd -m appuser
|
| 16 |
+
|
| 17 |
+
# Create directories with appropriate permissions
|
| 18 |
+
RUN mkdir -p /code/output && \
|
| 19 |
+
chown -R appuser:appuser /code
|
| 20 |
+
|
| 21 |
+
COPY --chown=appuser:appuser ./requirements.txt /code/requirements.txt
|
| 22 |
RUN pip install --no-cache-dir --upgrade -r /code/requirements.txt
|
| 23 |
|
| 24 |
# For headless matplotlib
|
| 25 |
ENV MPLBACKEND=Agg
|
| 26 |
|
| 27 |
+
COPY --chown=appuser:appuser . /code/
|
| 28 |
+
|
| 29 |
+
# Switch to the non-root user
|
| 30 |
+
USER appuser
|
| 31 |
|
| 32 |
# Make sure the app.py file is correctly named
|
| 33 |
CMD ["uvicorn", "app:app", "--host", "0.0.0.0", "--port", "7860"]
|