Update Dockerfile with proper user permissions

Dockerfile

@@ -10,30 +10,37 @@ RUN apt-get update && apt-get install -y \
     curl \
     && rm -rf /var/lib/apt/lists/*
 
-# Create necessary directories
-RUN mkdir -p logs src/static
+# Create necessary directories with proper permissions
+RUN mkdir -p /app/logs /app/src/static /home/user/.cache/huggingface /home/user/.local \
+    && chmod -R 777 /app/logs /home/user/.cache/huggingface /home/user/.local
+
+# Create non-root user
+RUN useradd -m -u 1000 user \
+    && chown -R user:user /app /home/user/.cache /home/user/.local
+
+# Switch to non-root user
+USER user
 
 # Upgrade pip and install numpy first
-RUN pip install --upgrade pip
-RUN pip install --no-cache-dir "numpy<2.0.0"
+RUN pip install --user --no-cache-dir --upgrade pip
+RUN pip install --user --no-cache-dir "numpy<2.0.0"
 
 # Copy requirements first to leverage Docker cache
-COPY requirements.txt .
+COPY --chown=user:user requirements.txt .
 
 # Install Python dependencies
-RUN pip install --no-cache-dir -r requirements.txt
+RUN pip install --user --no-cache-dir -r requirements.txt
 
 # Copy application code
-COPY . .
-
-# Ensure proper permissions for logs directory
-RUN chmod 777 logs
+COPY --chown=user:user . .
 
 # Set environment variables
 ENV PYTHONPATH=/app
 ENV PYTHONUNBUFFERED=1
 ENV PYTHONDONTWRITEBYTECODE=1
 ENV PORT=7860
+ENV PATH="/home/user/.local/bin:${PATH}"
+ENV HF_HOME=/home/user/.cache/huggingface
 
 # Expose port for Hugging Face Spaces
 EXPOSE 7860