mirror of
https://github.com/HKUDS/nanobot.git
synced 2026-07-03 17:02:33 +08:00
46 lines
1.5 KiB
Docker
46 lines
1.5 KiB
Docker
FROM node:24-bookworm-slim AS webui-builder
|
|
|
|
WORKDIR /app
|
|
COPY webui/package.json webui/package-lock.json ./webui/
|
|
WORKDIR /app/webui
|
|
RUN npm ci
|
|
COPY webui/ ./
|
|
RUN mkdir -p /app/nanobot/web && npm run build
|
|
|
|
FROM ghcr.io/astral-sh/uv:python3.12-bookworm-slim
|
|
|
|
RUN apt-get update && \
|
|
apt-get install -y --no-install-recommends ca-certificates git bubblewrap openssh-client libmagic1 && \
|
|
rm -rf /var/lib/apt/lists/*
|
|
|
|
WORKDIR /app
|
|
|
|
# Install Python dependencies first (cached layer). Hatch reads the custom build
|
|
# hook from hatch_build.py even for this metadata-only install.
|
|
COPY pyproject.toml README.md LICENSE THIRD_PARTY_NOTICES.md hatch_build.py ./
|
|
RUN mkdir -p nanobot && touch nanobot/__init__.py && \
|
|
NANOBOT_SKIP_WEBUI_BUILD=1 uv pip install --system --no-cache ".[whatsapp]" && \
|
|
rm -rf nanobot
|
|
|
|
# Copy the full source and install
|
|
COPY nanobot/ nanobot/
|
|
COPY --from=webui-builder /app/nanobot/web/dist/ nanobot/web/dist/
|
|
RUN NANOBOT_SKIP_WEBUI_BUILD=1 uv pip install --system --no-cache ".[whatsapp]"
|
|
|
|
# Create non-root user and config directory
|
|
RUN useradd -m -u 1000 -s /bin/bash nanobot && \
|
|
mkdir -p /home/nanobot/.nanobot && \
|
|
chown -R nanobot:nanobot /home/nanobot /app
|
|
|
|
COPY entrypoint.sh /usr/local/bin/entrypoint.sh
|
|
RUN sed -i 's/\r$//' /usr/local/bin/entrypoint.sh && chmod +x /usr/local/bin/entrypoint.sh
|
|
|
|
USER nanobot
|
|
ENV HOME=/home/nanobot
|
|
|
|
# Gateway health endpoint and optional WebUI/WebSocket channel ports
|
|
EXPOSE 18790 8765
|
|
|
|
ENTRYPOINT ["entrypoint.sh"]
|
|
CMD ["status"]
|