File tree Expand file tree Collapse file tree 1 file changed +5
-2
lines changed Expand file tree Collapse file tree 1 file changed +5
-2
lines changed Original file line number Diff line number Diff line change @@ -12,8 +12,8 @@ ENV UV_LINK_MODE=copy
1212
1313# Install the project's dependencies using the lockfile and settings
1414RUN --mount=type=cache,target=/root/.cache/uv \
15- --mount=type=bind,source=uv.lock,target=uv.lock \
16- --mount=type=bind,source=pyproject.toml,target=pyproject.toml \
15+ --mount=type=bind,source=uv.lock,target=uv.lock,Z \
16+ --mount=type=bind,source=pyproject.toml,target=pyproject.toml,Z \
1717 uv sync --frozen --no-install-project --no-dev --no-editable
1818
1919# Then, add the rest of the project source code and install it
@@ -27,6 +27,9 @@ FROM python:3.12-slim-bookworm
2727WORKDIR /app
2828
2929COPY --from=uv /root/.local /root/.local
30+
31+ # User app does not exist in base image (chown)
32+ RUN useradd -rUM -s /usr/sbin/nologin app
3033COPY --from=uv --chown=app:app /app/.venv /app/.venv
3134
3235# Place executables in the environment at the front of the path
You can’t perform that action at this time.
0 commit comments