-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathDockerfile
More file actions
50 lines (40 loc) · 1.38 KB
/
Dockerfile
File metadata and controls
50 lines (40 loc) · 1.38 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
FROM python:3.13-slim
# 设置工作目录
WORKDIR /app
# 使用uv安装依赖到虚拟环境,添加重试机制
ENV PATH="/app/venv/bin:$PATH"
# 复制项目文件
COPY pyproject.toml ./
COPY uv.lock ./
COPY README.md ./
# 合并系统依赖、Node.js、uv安装、版本验证和用户创建为单层
RUN apt-get update && apt-get install -y --no-install-recommends \
curl \
ca-certificates \
gnupg \
&& curl -fsSL https://deb.nodesource.com/setup_lts.x | bash - \
&& apt-get install -y nodejs \
&& pip install uv \
&& node --version && npm --version \
&& groupadd -r botuser && useradd -r -g botuser -d /app -s /bin/bash botuser \
&& rm -rf /var/lib/apt/lists/* \
&& mkdir -p /app/.npm /app/.npm-global /app/.cache \
&& chown -R botuser:botuser /app
# 配置npm环境变量
ENV HOME=/app
ENV NPM_CONFIG_CACHE=/app/.npm
ENV NPM_CONFIG_PREFIX=/app/.npm-global
ENV NPM_CONFIG_USERCONFIG=/app/.npmrc
ENV PATH="/app/.venv/bin:/app/.npm-global/bin:$PATH"
# 切换到非root用户
USER botuser
# 创建虚拟环境并安装依赖(以botuser身份)
RUN uv venv ./venv \
&& uv pip install --no-cache .
COPY main.py ./
COPY src/ ./src/
# 健康检查 - 验证Python和Node.js环境
HEALTHCHECK --interval=30s --timeout=10s --start-period=5s --retries=3 \
CMD python -c "import sys; sys.exit(0)" && node --version
# 启动命令
CMD ["python", "main.py"]