| FROM python:3.11-slim | |
| # 设置工作目录 | |
| WORKDIR /app | |
| # 复制依赖文件(利用 Docker 缓存加速) | |
| COPY requirements.txt . | |
| # 安装依赖 | |
| RUN pip install --no-cache-dir -r requirements.txt | |
| # 复制应用代码 | |
| COPY main.py . | |
| # 创建非 root 用户(Hugging Face 推荐) | |
| RUN useradd -m -u 1000 user | |
| USER user | |
| # 暴露端口 | |
| EXPOSE 7860 | |
| # 启动命令(必须绑定 0.0.0.0) | |
| CMD ["uvicorn", "main:app", "--host", "0.0.0.0", "--port", "7860"] |