diff --git a/Dockerfile b/Dockerfile index 678cb2b36f..e49eeee832 100644 --- a/Dockerfile +++ b/Dockerfile @@ -95,6 +95,18 @@ RUN uv sync --locked --compile-bytecode && \ # Install PowerShell modules RUN .venv/bin/python prowler/providers/m365/lib/powershell/m365_powershell.py +USER root + +# Remove build-only packages from the final image after Python dependencies are installed. +RUN apt-get purge -y --auto-remove \ + build-essential \ + pkg-config \ + libzstd-dev \ + zlib1g-dev \ + && rm -rf /var/lib/apt/lists/* + +USER prowler + # Remove deprecated dash dependencies RUN pip uninstall dash-html-components -y && \ pip uninstall dash-core-components -y diff --git a/api/Dockerfile b/api/Dockerfile index bb9da0b280..0433258721 100644 --- a/api/Dockerfile +++ b/api/Dockerfile @@ -102,6 +102,23 @@ RUN uv sync --locked --no-install-project && \ RUN .venv/bin/python .venv/lib/python3.12/site-packages/prowler/providers/m365/lib/powershell/m365_powershell.py +USER root + +# Remove build-only packages from the final image after Python dependencies are installed. +RUN apt-get purge -y --auto-remove \ + gcc \ + g++ \ + make \ + libxml2-dev \ + libxmlsec1-dev \ + pkg-config \ + libtool \ + libxslt1-dev \ + python3-dev \ + && rm -rf /var/lib/apt/lists/* + +USER prowler + COPY --chown=prowler:prowler src/backend/ ./backend/ COPY --chown=prowler:prowler docker-entrypoint.sh ./docker-entrypoint.sh