Update Dockerfile

Dockerfile

@@ -1,7 +1,16 @@
 FROM python:3.13.5-slim
 
-WORKDIR /app
+# Create non-root user
+RUN useradd -m -u 1000 user
 
+ENV HOME=/home/user \
+    PATH=/home/user/.local/bin:$PATH
+WORKDIR $HOME/app
+
+# Switch to root
+USER root
+
+# Install dependencies
 RUN apt-get update && apt-get install -y \
     build-essential \
     curl \
@@ -10,22 +19,22 @@ RUN apt-get update && apt-get install -y \
     nginx \
     && rm -rf /var/lib/apt/lists/*
 
-COPY requirements.txt ./
-COPY src/ ./src/
-#COPY data/ ./data/
-#COPY results/ ./results/
-COPY nginx.conf /etc/nginx/nginx.conf
-COPY start.sh ./
-RUN chmod +x /app/start.sh
+# Fix nginx permissions
+RUN mkdir -p /var/cache/nginx /var/log/nginx /var/lib/nginx && \
+    touch /var/run/nginx.pid && \
+    chown -R user:user /var/cache/nginx /var/log/nginx /var/lib/nginx /var/run/nginx.pid
 
-RUN pip3 install -r requirements.txt
+# Switch to user
+USER user
 
-EXPOSE 8501
+# Install Python dependencies
+COPY --chown=user requirements.txt ./
+RUN pip install --no-cache-dir -r requirements.txt
 
-HEALTHCHECK CMD curl --fail http://localhost:8501/_stcore/health
+# Copy code and config
+COPY --chown=user nginx.conf /etc/nginx/sites-available/default
+COPY --chown=user run.sh /home/user/app/run.sh
+COPY --chown=user src /home/user/app/src
 
-#CMD streamlit run src/streamlit_app.py --server.port 8502 --server.address 0.0.0.0 & \
-#    uvicorn src.api_server:api --host 0.0.0.0 --port 8000 & \
-#    nginx -g "daemon off;"
-ENTRYPOINT ["./start.sh"]
-#ENTRYPOINT ["streamlit", "run", "src/streamlit_app.py", "--server.port=8501", "--server.address=0.0.0.0"]
+EXPOSE 8501
+CMD ["bash", "run.sh"]