Improve Dockerfile with best practices and optimizations #1231
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
nponeccop
approved these changes
Apr 14, 2023
richbeales
approved these changes
Apr 14, 2023
|
This test plan didn't account for docker-compose usage, which it broke. This optimisation caused a bunch of regressions and didn't appear to provide any meaningful benefit. |
|
--no-cache-dir is not necessary if PIP_NO_CACHE_DIR is set |
|
@KissPeter You can switch to the Files Changed tab and do a code review commenting on the lines and even requiring changes. It doesn't require any privileges. |
|
Well, it's too late here. But you can file an issue :) |
|
@KissPeter all of this is cleaned up by #1199 |
sindlinger
pushed a commit
to Orgsindlinger/Auto-GPT-WebUI
that referenced
this pull request
Sep 25, 2024
…d-dockerfile Improve Dockerfile with best practices and optimizations
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Background
The existing Dockerfile in the project can be improved by incorporating best practices and optimizations, such as using a non-root user, setting appropriate environment variables, and reducing image size by disabling caching. These changes will make the Dockerfile more secure, efficient, and compliant with best practices.
Changes
Added environment variables to prevent Python from buffering the output and to disable writing
.pycfiles.Created a non-root user named
appuserto follow the principle of least privilege and updated the ownership of files and folders accordingly.Added the
--no-cache-dirflag to thepip installcommand to prevent caching and reduce the image size.Updated the
COPYcommand to set the appropriate user and group ownership for the copied files.Documentation
The changes have been explained in this pull request description. The improved Dockerfile itself includes comments that explain the purpose of each command and environment variable.
Test Plan
Build the Docker image using the updated Dockerfile with the command
docker build -t improved-dockerfile ..Run a container using the newly built image with
docker run --rm -it improved-dockerfile.Verify that the application runs as expected within the container, and that any relevant functionality still works as intended.
PR Quality Checklist