From 83cd815876c2ed5f2b23cd5b4f96c33454e1b826 Mon Sep 17 00:00:00 2001
From: bolaji-ai <165820060+bolaji-ai@users.noreply.github.com>
Date: Tue, 31 Mar 2026 09:26:55 -0400
Subject: [PATCH] security: enforce frozen lockfile in Docker builds

---
 Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 7a37802bf6..75068b63b6 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -57,14 +57,14 @@ COPY src/interfaces/assistants_web/.env.development .
 COPY src/interfaces/assistants_web/.env.production .
 
 ENV NEXT_PUBLIC_API_HOSTNAME='/api'
-RUN npm install \
+RUN npm ci \
     && npm run next:build
 
 # Terrarium
 WORKDIR /usr/src/app
 COPY --from=terrarium /usr/src/app/package*.json ./
 RUN npm install -g ts-node \
-    && npm install \
+    && npm ci \
     && npm prune --production
 COPY --from=terrarium /usr/src/app/. .
 ENV ENV_RUN_AS "docker"