Merge pull request #3 from NicoMartinic/2_update_dockerfiles

2 Update Python version. Add normal user instead of root inside backe…

Author: NicoMartinic

backend/Dockerfile

@@ -1,4 +1,4 @@
-FROM python:3.12
+FROM python:3.14
 ENV PYTHONUNBUFFERED=1
 
 WORKDIR /code
@@ -12,6 +12,9 @@ COPY requirements.txt /code/requirements.txt
 
 RUN pip install --no-cache-dir -r requirements.txt
 
+RUN groupadd --system appgroup && useradd --system --gid appgroup appuser \
+    && chown -R appuser:appgroup /code
+
 COPY entrypoint.sh /
 RUN chmod +x /entrypoint.sh
 

frontend/Dockerfile.production

@@ -5,8 +5,8 @@ WORKDIR /app
 ARG BACKEND_URL
 ENV BACKEND_URL=${BACKEND_URL}
 
-COPY package.json ./
-RUN npm install
+COPY package.json package-lock.json ./
+RUN npm ci
 
 COPY . .
 RUN npm run build
@@ -26,5 +26,9 @@ COPY --from=build /app/.next/standalone ./
 COPY --from=build /app/.next/static     ./.next/static
 COPY --from=build /app/public           ./public
 
+RUN addgroup -S appgroup && adduser -S appuser -G appgroup \
+    && chown -R appuser:appgroup /app
+
+USER appuser
 EXPOSE ${PORT}
 CMD ["node", "server.js"]