From fdae6027596280d30091ffe6d0edd3ca454db760 Mon Sep 17 00:00:00 2001
From: Alexander Song <axiomofjoy@gmail.com>
Date: Mon, 6 May 2024 12:37:57 -0700
Subject: [PATCH 1/2] fix: run docker as nonroot user

---
 Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 0caeedfd44..f023bf52de 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -50,7 +50,7 @@ RUN pip install --target ./env .[container]
 # https://github.com/GoogleContainerTools/distroless?tab=readme-ov-file#debug-images
 #
 # Append :debug to the following line to build the debug image.
-FROM gcr.io/distroless/python3-debian12
+FROM gcr.io/distroless/python3-debian12:nonroot
 WORKDIR /phoenix
 COPY --from=backend-builder /phoenix/env/ ./env
 ENV PYTHONPATH="/phoenix/env:$PYTHONPATH"

From d850d6721a3fdfd9f3cab5ed9eeae45445635c93 Mon Sep 17 00:00:00 2001
From: Alexander Song <axiomofjoy@gmail.com>
Date: Mon, 6 May 2024 12:39:35 -0700
Subject: [PATCH 2/2] update comment

---
 Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index f023bf52de..3ad838c526 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -49,7 +49,7 @@ RUN pip install --target ./env .[container]
 #
 # https://github.com/GoogleContainerTools/distroless?tab=readme-ov-file#debug-images
 #
-# Append :debug to the following line to build the debug image.
+# Use the debug tag in the following line to build the debug image.
 FROM gcr.io/distroless/python3-debian12:nonroot
 WORKDIR /phoenix
 COPY --from=backend-builder /phoenix/env/ ./env