Dockerfile

FROM python:3.12

RUN useradd -m -u 1000 user
USER user
ENV PATH="/home/user/.local/bin:$PATH"

WORKDIR /app

COPY --chown=user ./requirements.txt requirements.txt
RUN pip install --no-cache-dir --upgrade -r requirements.txt
RUN --mount=type=secret,id=OPENAI_API_KEY,mode=0444,required=true
RUN --mount=type=secret,id=OPENAI_BASE_URL,mode=0444,required=true

COPY --chown=user . /app
EXPOSE 8000
CMD ["python", "server.py"]