fix: review docker for prod version

Dockerfile

@@ -4,17 +4,25 @@ FROM node:20-alpine AS builder
 # Set working directory
 WORKDIR /app
 
+# Install dependencies for node-gyp
+RUN apk add --no-cache python3 make g++
+
 # Enable Yarn
 RUN corepack enable
 
-# Copy package files
-COPY package.json yarn.lock* ./
+# Copy package files first to leverage Docker cache
+COPY package.json yarn.lock ./
+
+# Copy configuration files
+COPY tsconfig.json next-env.d.ts .eslintrc.json ./
+COPY tailwind.config.ts postcss.config.js .env ./
 
 # Install dependencies with Yarn
 RUN yarn install --frozen-lockfile
 
-# Copy the rest of the application
-COPY . .
+# Copy source files
+COPY src ./src
+COPY public ./public
 
 # Build the application
 RUN yarn build
@@ -24,16 +32,25 @@ FROM node:20-alpine AS runner
 
 WORKDIR /app
 
-# Enable Yarn
-RUN corepack enable
-
-# Copy package files and install production dependencies only
-COPY package.json yarn.lock* ./
-RUN yarn install --production --frozen-lockfile
+# Install production dependencies only
+COPY package.json yarn.lock ./
+RUN corepack enable && \
+    yarn install --production --frozen-lockfile && \
+    yarn cache clean
 
 # Copy built application from builder stage
 COPY --from=builder /app/.next ./.next
 COPY --from=builder /app/public ./public
+COPY --from=builder /app/next-env.d.ts ./
+COPY --from=builder /app/tailwind.config.ts ./
+COPY --from=builder /app/.env ./
+
+# Add non-root user for security
+RUN addgroup --system --gid 1001 nodejs && \
+    adduser --system --uid 1001 nextjs && \
+    chown -R nextjs:nodejs /app
+
+USER nextjs
 
 # Set environment variables
 ENV NODE_ENV=production
@@ -42,5 +59,9 @@ ENV NEXT_TELEMETRY_DISABLED=1
 # Expose the port the app runs on
 EXPOSE 3000
 
-# Start the application in production mode
+# Healthcheck
+HEALTHCHECK --interval=30s --timeout=3s \
+  CMD wget --no-verbose --tries=1 --spider http://localhost:3000/api/health || exit 1
+
+# Start the application
 CMD ["yarn", "start"]