FROM python:3.12-slim AS runtime

ENV PYTHONDONTWRITEBYTECODE=1 \
    PYTHONUNBUFFERED=1

WORKDIR /app

RUN apt-get update \
    && apt-get install -y --no-install-recommends docker.io git \
    && rm -rf /var/lib/apt/lists/*

COPY pyproject.toml README.md ./
COPY src ./src

RUN pip install --no-cache-dir .

RUN useradd --create-home --uid 10001 challenge \
    && mkdir -p /data/agents \
    && chown -R challenge:challenge /app /data

USER 10001:10001

EXPOSE 8000

CMD ["uvicorn", "agent_challenge.app:app", "--host", "0.0.0.0", "--port", "8000"]
