Docker and containerization standards -- Dockerfile, docker-compose, multi-stage builds, production patterns. Use when project has Dockerfile or docker-compose.yml.
Detection: Check for Dockerfile, docker-compose.yml, or docker-compose.yaml at project root. If absent, skip.
# Stage 1: Dependencies
FROM node:22-alpine AS deps
WORKDIR /app
COPY package.json pnpm-lock.yaml ./
RUN corepack enable && pnpm install --frozen-lockfile
# Stage 2: Build
FROM node:22-alpine AS builder
WORKDIR /app
COPY --from=deps /app/node_modules ./node_modules
COPY . .
RUN pnpm build
# Stage 3: Production
FROM node:22-alpine AS runner
WORKDIR /app
ENV NODE_ENV=production
RUN addgroup --system --gid 1001 app && adduser --system --uid 1001 app
COPY --from=builder --chown=app:app /app/dist ./dist
COPY --from=builder --chown=app:app /app/node_modules ./node_modules
COPY --from=builder --chown=app:app /app/package.json ./
USER app
EXPOSE 3000
CMD ["node", "dist/main.js"]
FROM php:8.4-fpm-alpine AS base
RUN apk add --no-cache libpq-dev && docker-php-ext-install pdo_pgsql opcache
COPY --from=composer:latest /usr/bin/composer /usr/bin/composer
FROM base AS deps
WORKDIR /app
COPY composer.json composer.lock ./
RUN composer install --no-dev --no-scripts --prefer-dist
FROM node:22-alpine AS frontend
WORKDIR /app
COPY package.json pnpm-lock.yaml ./
RUN corepack enable && pnpm install --frozen-lockfile
COPY . .
RUN pnpm build
FROM base AS runner
WORKDIR /app
COPY --from=deps /app/vendor ./vendor
COPY --from=frontend /app/public/build ./public/build
COPY . .
RUN php artisan config:cache && php artisan route:cache && php artisan view:cache
EXPOSE 9000
CMD ["php-fpm"]
node:22-alpine), never latestUSER app)package.json/lock before source code — leverages Docker layer caching--frozen-lockfile for reproducible buildsNODE_ENV=production in runtime stage.dockerignore must exclude: node_modules, .git, .env, dist, .next# docker-compose.yml