From 3f5fe002700d02551d462136bf9d7b5dc7621995 Mon Sep 17 00:00:00 2001
From: Kaiohz <yohan.goncalves@cosigma.io>
Date: Wed, 6 May 2026 07:17:43 +0200
Subject: [PATCH] Switch runtime image from Alpine to Debian slim

Avoid libc incompatibility issues with compiled wheels by using
debian:bookworm-slim instead of Alpine, matching the builder stage
base image. Also update package manager commands and user creation
syntax for the Debian-based runtime.
---
 Dockerfile | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index f104fb1..4ad1d0d 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -10,13 +10,13 @@ COPY pyproject.toml uv.lock ./
 # Install dependencies using uv
 RUN uv sync --frozen --no-dev
 
-# Stage 2: Runtime image (Alpine for smaller attack surface and fewer CVEs)
-FROM python:3.11-alpine
+# Stage 2: Runtime image (Debian slim to match builder libc and support compiled wheels)
+FROM python:3.11-slim-bookworm
 
 WORKDIR /app
 
 # Upgrade system packages to fix CVEs
-RUN apk update && apk upgrade && rm -rf /var/cache/apk/*
+RUN apt-get update && apt-get upgrade -y && rm -rf /var/lib/apt/lists/*
 
 # Copy virtual environment from builder
 COPY --from=builder /app/.venv /app/.venv
@@ -29,8 +29,8 @@ ENV PYTHONPATH=/app
 ENV PATH="/app/.venv/bin:$PATH"
 ENV PYTHONUNBUFFERED=1
 
-# Create non-root user for security (Alpine syntax)
-RUN adduser -D -u 1000 appuser && chown -R appuser:appuser /app
+# Create non-root user for security (Debian syntax)
+RUN useradd -m -u 1000 appuser && chown -R appuser:appuser /app
 USER appuser
 
 EXPOSE 8000