Improve docker

.dockerignore

@@ -0,0 +1,10 @@
+# .dockerignore is used to exclude files and directories from being copied into the Docker image during the build process. This helps to reduce the size of the image and improve build times by only including necessary files.
+# keep it at the root of the project to ensure that we don't copy unnecessary files into the Docker image.
+
+node_modules
+**/.turbo
+**/.cache
+**/apps/*/.next
+**/packages/*/dist
+**/packages/*/docs
+**/.eslintcache

.yarnrc.yml

@@ -74,6 +74,7 @@ npmPreapprovedPackages:
   - ws
   - "@vitest/*"
   - "shadcn"
+  - "@oxc-project/*"
 
 npmPublishProvenance: true
 

docker/otel-lgtm/compose.yml

@@ -2,7 +2,7 @@ name: flowblade-otel-lgtm
 
 services:
   otel-lgtm:
-    image: grafana/otel-lgtm:0.21.0
+    image: grafana/otel-lgtm:0.22.0
     # 4000 is for the web ui
     ports: ['4000:3000', '4317:4317', '4318:4318', '4040:4040', '9090:9090']
     networks:

examples/apps/fastify-app/package.json

@@ -43,7 +43,7 @@
     "@httpx/assert": "0.16.8",
     "@httpx/dsn-parser": "1.9.9",
     "@httpx/exception": "3.1.9",
-    "@httpx/lru": "0.13.1",
+    "@httpx/lru": "0.13.2",
     "@httpx/memo-intl": "1.4.10",
     "@httpx/plain-object": "2.1.8",
     "@httpx/treeu": "0.5.8",
@@ -66,8 +66,8 @@
     "@typescript-eslint/eslint-plugin": "8.57.1",
     "@typescript-eslint/parser": "8.57.1",
     "@typescript/native-preview": "catalog:",
-    "@vitest/coverage-v8": "4.1.0",
-    "@vitest/ui": "4.1.0",
+    "@vitest/coverage-v8": "4.1.1",
+    "@vitest/ui": "4.1.1",
     "cross-env": "10.1.0",
     "eslint": "8.57.1",
     "execa": "9.6.1",
@@ -76,7 +76,7 @@
     "tiny-glob": "0.2.9",
     "tsx": "4.21.0",
     "typescript": "5.9.3",
-    "vitest": "4.1.0"
+    "vitest": "4.1.1"
   },
   "engines": {
     "node": ">=20.11.0"

examples/apps/nextjs-app/.env

@@ -21,7 +21,7 @@ DB_FLOWBLADE_MARIADB_DSN="mysql://admin:flowblade@localhost:3306/flowblade"
 
 BETTER_AUTH_SECRET=
 
-OTEL_EXPORTER_OTLP_ENDPOINT=http://localhost:4317
+OTEL_EXPORTER_OTLP_ENDPOINT=
 OTEL_EXPORTER_OTLP_PROTOCOL=grpc
 #OTEL_EXPORTER_OTLP_ENDPOINT=http://localhost:4317
 

examples/apps/nextjs-app/docker/.dockerignore

@@ -1,2 +1,10 @@
+# this file should won't be read unless it exists in the
+# context directory specified in the docker compose file
+
 node_modules
-**/node_modules
+#**/.turbo
+#**/.cache
+#**/apps/*/.next
+#**/packages/*/dist
+#**/packages/*/docs
+#**/.eslintcache

examples/apps/nextjs-app/docker/Dockerfile

@@ -1,19 +1,19 @@
 ARG NODE_VERSION=24.14
 ARG DEBIAN_VERSION=trixie-slim
+ARG COREPACK_VERSION=0.34.6
 
 #############################################################
 # Stage 1 - App extraction / pruning                        #
 #############################################################
 
-FROM node:${NODE_VERSION}-${DEBIAN_VERSION} AS app-builder
+FROM node:${NODE_VERSION}-${DEBIAN_VERSION} AS prepare
 
-#RUN rm -f /etc/apt/apt.conf.d/docker-clean; echo 'Binary::apt::APT::Keep-Downloaded-Packages "true";' > /etc/apt/apt.conf.d/keep-cache
-#RUN --mount=type=cache,id=apt-cache,target=/var/cache/apt,sharing=locked \
-#    --mount=type=cache,id=apt-lib,target=/var/lib/apt,sharing=locked \
 RUN apt-get update \
   #&& apt-get install build-essential cmake curl unzip ca-certificates git jq --no-install-recommends -y \
   && apt-get install git jq --no-install-recommends -y \
-  && corepack enable
+  && rm -rf /var/cache/apt/* \
+  ## Corepack won't be bundled in node 25+
+  && npm i -g corepack@${COREPACK_VERSION} && corepack enable
 
 
 WORKDIR /app
@@ -33,16 +33,18 @@ RUN turbo prune --scope=@examples/nextjs-app --docker --out-dir=./out/nextjs-app
 # Stage 2 - App installation                                #
 #############################################################
 
-FROM app-builder AS app-installer
+FROM prepare AS builder
 
 ENV TZ=Etc/UTC
 
 # Optimize for YARN installation speed
 ENV YARN_ENABLE_GLOBAL_CACHE=false
 ENV YARN_ENABLE_MIRROR=false
+ENV YARN_ENABLE_TELEMETRY=false
 ENV YARN_NODE_LINKER=node-modules
 ENV YARN_NM_MODE=hardlinks-local
 ENV YARN_ENABLE_HARDENED_MODE=0
+ENV YARN_ENABLE_CONSTRAINTS_CHECKS=false
 # If using different compression level than in local (recommended: prefer to not do this)
 #ENV YARN_COMPRESSION_LEVEL 0
 #ENV YARN_CHECKSUM_BEHAVIOR ignore
@@ -55,20 +57,19 @@ WORKDIR /app
 
 # First install the dependencies (as they change less often)
 COPY --link .gitignore ./
-COPY --from=app-builder --link /app/out/nextjs-app/json/ .
-COPY --from=app-builder --link /app/out/nextjs-app/yarn.lock ./yarn.lock
-
+COPY --from=prepare --link /app/out/nextjs-app/json/ .
+COPY --from=prepare --link /app/out/nextjs-app/yarn.lock ./yarn.lock
 
 # Option 1: run install without cache
 #RUN yarn install --inline-builds
 
 # Option 2: run install with buildx cache mount (buildx)
-RUN --mount=type=cache,target=/root/.yarn3-cache,id=yarn3-cache \
+RUN --mount=type=cache,target=/root/.yarn3-cache,id=yarn3-cache,sharing=locked \
     YARN_CACHE_FOLDER=/root/.yarn3-cache \
     yarn install --inline-builds
 
 # Build the project
-COPY --from=app-builder /app/out/nextjs-app/full/ .
+COPY --link --from=prepare /app/out/nextjs-app/full/ .
 COPY --link .gitignore turbo.jsonc tsconfig.base.json ./
 
 ENV NEXT_BUILD_IGNORE_ESLINT=true
@@ -78,15 +79,17 @@ ENV NODE_ENV=production
 # ENV NEXT_BUILD_ENV_SENTRY_ENABLED=false
 # ENV NEXT_BUILD_ENV_SENTRY_TRACING=false
 
-
 RUN yarn workspace @examples/db-sqlserver prisma-generate
-RUN yarn turbo run build --filter=@examples/nextjs-app...
+
+RUN yarn turbo run build --filter=@examples/nextjs-app
+# Alternative we can also
+#RUN yarn turbo run build --filter=@examples/nextjs-app...
 
 #############################################################
 # Stage 3 - App runner                                      #
 #############################################################
 
-FROM node:${NODE_VERSION}-${DEBIAN_VERSION} AS app-runner
+FROM node:${NODE_VERSION}-${DEBIAN_VERSION} AS runner
 
 ARG NEXTJS_APP_PORT
 
@@ -96,11 +99,12 @@ ENV PORT=${NEXTJS_APP_PORT:-3000}
 ENV TZ=Etc/UTC
 ENV NODE_ENV=production
 
-#RUN --mount=type=cache,id=apt-cache,target=/var/cache/apt,sharing=locked \
-#    --mount=type=cache,id=apt-lib,target=/var/lib/apt,sharing=locked \
 RUN apt-get update \
   && apt-get install bash tzdata --no-install-recommends -y \
-  && corepack enable
+  && rm -rf /var/cache/apt/* \
+  # If needed, we can enable corepack in the runner as well, but for now we don't need it  \
+  # since we're running the built server.js directly with node.
+  && npm i -g corepack@${COREPACK_VERSION} && corepack enable
 
 
 WORKDIR /app
@@ -114,15 +118,15 @@ RUN chown nextjs:nodejs .next
 
 USER nextjs
 
-COPY --from=app-installer --chown=nextjs:nodejs /app/examples/apps/nextjs-app/next.config.mjs \
+COPY --from=builder --chown=nextjs:nodejs /app/examples/apps/nextjs-app/next.config.mjs \
                     /app/examples/apps/nextjs-app/package.json \
                     ./
 
 # Automatically leverage output traces to reduce image size
 # https://nextjs.org/docs/advanced-features/output-file-tracing
-COPY --from=app-installer --chown=nextjs:nodejs /app/examples/apps/nextjs-app/.next/standalone ./
-COPY --from=app-installer --chown=nextjs:nodejs /app/examples/apps/nextjs-app/.next/static ./examples/apps/nextjs-app/.next/static
-COPY --from=app-installer --chown=nextjs:nodejs /app/examples/apps/nextjs-app/public ./examples/apps/nextjs-app/public
+COPY --from=builder --chown=nextjs:nodejs /app/examples/apps/nextjs-app/.next/standalone ./
+COPY --from=builder --chown=nextjs:nodejs /app/examples/apps/nextjs-app/.next/static ./examples/apps/nextjs-app/.next/static
+COPY --from=builder --chown=nextjs:nodejs /app/examples/apps/nextjs-app/public ./examples/apps/nextjs-app/public
 
 EXPOSE ${PORT}
 

examples/apps/nextjs-app/docker/Dockerfile.alpine

@@ -7,12 +7,12 @@ ARG ALPINE_VERSION=3.23
 
 FROM node:${NODE_VERSION}-alpine${ALPINE_VERSION} AS app-builder
 
-# gcompat is required for duckdb neo to work
-RUN apk add --no-cache git jq && corepack enable
+# You might want to add gcompat for duckdb neo to work
+RUN apk add --no-cache git jq && rm -rf /var/cache/apk/* && npm i -g corepack && corepack enable
 
 WORKDIR /app
 
-COPY --link package.json turbo.json ./
+COPY --link package.json turbo.jsonc ./
 
 # We can't run turbo without yarn install first, let's install locally and make sure
 # both local and docker are aligned on the package.json version.
@@ -39,7 +39,7 @@ ENV NEXT_BUILD_ENV_OUTPUT=standalone
 # ENV NEXT_BUILD_ENV_SENTRY_ENABLED=false
 # ENV NEXT_BUILD_ENV_SENTRY_TRACING=false
 
-ENV TZ=Europe/Brussels
+ENV TZ=Etc/UTC
 
 # Optimize for YARN installation speed
 ENV YARN_ENABLE_GLOBAL_CACHE=false
@@ -70,8 +70,8 @@ RUN yarn install --inline-builds
 #    yarn install --inline-builds
 
 # Build the project
-COPY --from=app-builder /app/out/nextjs-app/full/ .
-COPY --link .gitignore turbo.json tsconfig.base.json ./
+COPY --link --from=app-builder /app/out/nextjs-app/full/ .
+COPY --link .gitignore turbo.jsonc tsconfig.base.json ./
 
 RUN yarn workspace @examples/db-sqlserver prisma-generate
 RUN yarn turbo run build --filter=@examples/nextjs-app...
@@ -87,9 +87,10 @@ ARG NEXTJS_APP_PORT
 # Bort PORT / HOSTNAME envs are respected by nextjs start/dev.
 ENV HOSTNAME=0.0.0.0
 ENV PORT=${NEXTJS_APP_PORT:-3000}
-ENV TZ=Europe/Brussels
 
-RUN apk add --no-cache tzdata bash && corepack enable
+ENV TZ=Etc/UTC
+
+RUN apk add --no-cache tzdata && rm -rf /var/cache/apk/* && npm i -g corepack && corepack enable
 
 WORKDIR /app
 

examples/apps/nextjs-app/docker/README.md

@@ -2,7 +2,6 @@
 
 ### Requirements
 
-- [x] [docker-engine](https://docs.docker.com/get-docker) >= 23 and [buildkit](https://docs.docker.com/build/buildkit/).
 - [x] docker compose v2: [repo](https://github.com/docker/compose) - [docs](https://docs.docker.com/compose/)
 - [x] optional: [lazydocker](https://github.com/jesseduffield/lazydocker), a beautiful tui.
 - [x] optional: [dive](https://github.com/wagoodman/dive) to debug layer sizes.
@@ -11,9 +10,13 @@
 
 ```bash
 cd ./docker
-docker compose build
-docker compose build --progress=plain # More verbose
-docker compose build --parallel       # Might be faster
+docker buildx bake --file docker-compose.yml
+
+# Alternatives
+# docker compose build
+# docker compose build --progress=plain # More verbose
+# docker compose build --parallel       # Might be faster
+
 docker compose up
 docker compose down
 ```
@@ -23,15 +26,15 @@ docker compose down
 #### Run bash in container
 
 ```bash
-docker compose run nextjs-app bash 
+docker compose run nextjs-app bash
 # equivalent to
 docker run --rm -it --entrypoint bash flowblade-nextjs-app-nextjs-app
 ```
 
 #### Get the exported size
 
 ```bash
-export IMAGE=flowblade-nextjs-app
+export IMAGE=flowblade-example-nextjs-app-debian
 
 # Inspect the image
 docker image inspect ${IMAGE}

examples/apps/nextjs-app/docker/docker-compose.alpine.yml

@@ -0,0 +1,17 @@
+name: flowblade-example-nextjs
+services:
+  app-alpine:
+    build:
+      # Start from root of the monorepo
+      context: ../../../../
+      dockerfile: ./examples/apps/nextjs-app/docker/Dockerfile.alpine
+    restart: no
+    networks:
+      - flowblade-net
+    ports:
+      - 3000:3000
+
+networks:
+  flowblade-net:
+    driver: bridge
+    enable_ipv6: false

examples/apps/nextjs-app/docker/docker-compose.yml

@@ -1,6 +1,6 @@
-name: flowblade-nextjs-app
+name: flowblade-example-nextjs
 services:
-  nextjs-app:
+  app-debian:
     build:
       # Start from root of the monorepo
       context: ../../../../

examples/apps/nextjs-app/package.json

@@ -34,10 +34,12 @@
     "lint": "next typegen && eslint . --ext .ts,.tsx,.js,.jsx,.mjs,.cjs,.mts,.cts --cache --cache-location ../../../.cache/eslint/nextjs-app.eslintcache",
     "fix-staged": "lint-staged --allow-empty",
     "codegen": "run-s codegen-api",
-    "codegen-api": "tsx ./scripts/codegen-openapi-json-schema.ts && kubb generate"
+    "codegen-api": "tsx ./scripts/codegen-openapi-json-schema.ts && kubb generate",
+    "docker-build": "cd docker && docker buildx bake --file ./docker-compose.yml",
+    "docker-build-alpine": "cd docker && docker buildx bake --file ./docker-compose.alpine.yml"
   },
   "dependencies": {
-    "@duckdb/duckdb-wasm": "1.31.0",
+    "@duckdb/duckdb-wasm": "1.33.1-dev20.0",
     "@duckdb/node-api": "1.5.0-r.1",
     "@examples/base-auth": "workspace:^",
     "@examples/base-ui": "workspace:^",
@@ -52,19 +54,19 @@
     "@hono/node-server": "1.19.11",
     "@hono/standard-validator": "0.2.2",
     "@httpx/assert": "0.16.8",
-    "@httpx/compress": "0.3.11",
+    "@httpx/compress": "0.3.12",
     "@httpx/dsn-parser": "1.9.9",
     "@httpx/encode": "0.1.8",
     "@httpx/exception": "3.1.9",
     "@httpx/hash": "0.2.5",
-    "@httpx/jwt-verify": "0.2.1",
-    "@httpx/lru": "0.13.1",
-    "@httpx/md5": "1.0.2",
+    "@httpx/jwt-verify": "0.2.2",
+    "@httpx/lru": "0.13.2",
+    "@httpx/md5": "1.0.3",
     "@httpx/memo-intl": "1.4.10",
     "@httpx/plain-object": "2.1.8",
     "@httpx/stable-hash": "0.3.8",
     "@httpx/treeu": "0.5.8",
-    "@httpx/xcache": "0.4.12",
+    "@httpx/xcache": "0.5.0",
     "@logtape/logtape": "2.0.4",
     "@logtape/otel": "2.0.4",
     "@logtape/pretty": "2.0.4",
@@ -99,7 +101,7 @@
     "class-variance-authority": "0.7.1",
     "clsx": "2.1.1",
     "hast-util-to-jsx-runtime": "2.3.6",
-    "hono": "4.12.8",
+    "hono": "4.12.9",
     "hono-openapi": "1.3.0",
     "json-schema-walker": "3.2.0",
     "ky": "1.14.3",
@@ -153,8 +155,8 @@
     "@typescript/native-preview": "catalog:",
     "@valibot/to-json-schema": "1.6.0",
     "@vitejs/plugin-react": "6.0.1",
-    "@vitest/coverage-v8": "4.1.0",
-    "@vitest/ui": "4.1.0",
+    "@vitest/coverage-v8": "4.1.1",
+    "@vitest/ui": "4.1.1",
     "cross-env": "10.1.0",
     "eslint": "8.57.1",
     "happy-dom": "20.8.4",
@@ -168,7 +170,7 @@
     "tsx": "4.21.0",
     "tw-animate-css": "1.4.0",
     "typescript": "5.9.3",
-    "vitest": "4.1.0"
+    "vitest": "4.1.1"
   },
   "engines": {
     "node": ">=20.19.0"