Docker: Init python venv with non-root user

[VietND96]

User description

Thanks for contributing to the Docker-Selenium project!
A PR well described will help maintainers to quickly review and merge it

Before submitting your PR, please check our contributing guidelines, applied for this repository.
Avoid large PRs, help reviewers by making them as simple and short as possible.

Description

Fixes #2768

Motivation and Context

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to change)

Checklist

• I have read the contributing document.
• My change requires a change to the documentation.
• I have updated the documentation accordingly.
• I have added tests to cover my changes.
• All new and existing tests passed.

---

PR Type

Bug fix, Enhancement

---

Description

• Fixed permission issues with /opt/venv directory by initializing Python venv as a non-root user.

• Moved Python venv initialization to run under non-privileged user.

• Updated environment variables to include VENV_PATH and adjusted PATH accordingly.

• Improved Dockerfile structure for Python venv setup and dependency installation.

---

Changes walkthrough 📝

	Relevant files
Bug fix	Dockerfile Fixed Python venv setup and permissions in Dockerfile        Base/Dockerfile Added VENV_PATH environment variable and updated PATH. Moved Python venv initialization to non-root user section. Adjusted Python dependency installation to align with non-root user permissions. Removed redundant commands and improved Dockerfile structure. +15/-16

---

Need help?

Type /help how to ... in the comments thread for any questions about Qodo Merge usage.

Check out the documentation for more information.

[qodo-merge-pro]

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

🎫 Ticket compliance analysis ✅ 2768 - Fully compliant Compliant requirements: • Fix permission issues with the /opt/venv directory that is causing Poetry installs to fail • Address the problem where the /opt/venv directory is owned by the root user, causing permission denied errors • Ensure Python virtual environment setup works correctly for non-root users

⏱️ Estimated effort to review: 2 🔵🔵⚪⚪⚪

🧪 No relevant tests

🔒 No security concerns identified

⚡ Recommended focus areas for review Dependency Changes The PR removes python3-setuptools from the apt-get install list. Verify this won't cause issues with Python package installations. python3 python3-pip python3-venv \ && rm -rf /var/lib/apt/lists/* /var/cache/apt/* \

[qodo-merge-pro]

PR Code Suggestions ✨

Explore these optional code suggestions:

Category	Suggestion	Impact
Possible issue	✅ Fix missing command continuation Suggestion Impact: The commit implemented exactly what was suggested - adding the '&&' operator before the echo command to properly continue the RUN instruction, which prevents a build failure code diff: - echo "source $VENV_PATH/bin/activate" >> /etc/bash.bashrc + && echo "source $VENV_PATH/bin/activate" >> /etc/bash.bashrc The command is missing a backslash continuation character after the package installation line, which will cause the echo command to fail. Add a backslash after the apt cleanup command. Base/Dockerfile [76-81] RUN apt-get -qqy update \ && apt-get upgrade -yq \ && apt-get -qqy --no-install-recommends install \ python3 python3-pip python3-venv \ && rm -rf /var/lib/apt/lists/* /var/cache/apt/* \ - echo "source $VENV_PATH/bin/activate" >> /etc/bash.bashrc + && echo "source $VENV_PATH/bin/activate" >> /etc/bash.bashrc [Suggestion has been applied] Suggestion importance[1-10]: 10 __ Why: The suggestion correctly identifies a critical syntax error in the Dockerfile. Without the '&&' operator before the echo command, the build would fail as the echo command would be executed as a separate command outside the RUN instruction, causing a syntax error. This is a high-impact fix that prevents build failure.	High
Update

[Copilot]

Copilot wasn't able to review any files in this pull request.

Files not reviewed (1)

• Base/Dockerfile: Language not supported