Update Dockerfile

Dockerfile

@@ -4,20 +4,31 @@ FROM python:3.9-slim
 # Set the working directory in the container
 WORKDIR /code
 
-# Copy the requirements file into the container at /code
-COPY ./requirements.txt /code/requirements.txt
+# ROOT CAUSE FIX: Create a non-root user and grant permissions.
+# This is a best practice for security and avoids permission errors.
+RUN useradd -m -u 1000 user
+USER user
 
-# Install any needed packages specified in requirements.txt
-RUN pip install --no-cache-dir --upgrade -r /code/requirements.txt
+# Set environment variables for the new user
+ENV HOME=/home/user
+ENV PATH=/home/user/.local/bin:$PATH
+# Crucially, tell transformers to use a local cache directory we own
+ENV HF_HOME=/code/.cache
 
-# Copy the rest of the application's code into the container at /code
-COPY ./app /code/app
-COPY ./frontend /code/frontend
-COPY ./main.py /code/main.py
+# Set the working directory again for the new user context
+WORKDIR $HOME/app
+
+# Copy the requirements file and install dependencies
+COPY --chown=user ./requirements.txt $HOME/app/requirements.txt
+RUN pip install --no-cache-dir --upgrade -r $HOME/app/requirements.txt
+
+# Copy the application code, ensuring the 'user' owns the files
+COPY --chown=user ./app $HOME/app/app
+COPY --chown=user ./frontend $HOME/app/frontend
+COPY --chown=user ./main.py $HOME/app/main.py
 
 # Expose the port the app runs on
 EXPOSE 8000
 
-# Define the command to run your app using uvicorn
-# This will start the FastAPI server
+# Define the command to run your app
 CMD ["uvicorn", "main:app", "--host", "0.0.0.0", "--port", "8000"]