alezmad/claudemesh
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refactor(deploy): trim docker images via pnpm deploy --legacy
Some checks failed
CI / Lint (push) Has been cancelled
Details
CI / Typecheck (push) Has been cancelled
Details
CI / Broker tests (Postgres) (push) Has been cancelled
Details
CI / Docker build (linux/amd64) (push) Has been cancelled
Details

Browse Source 
Use pnpm deploy to flatten each package's runtime subset into /deploy,
then copy ONLY that into the runtime stage. Catalog + workspace:*
specifiers previously forced full-workspace resolution into every
image's node_modules — unnecessary for either runtime.

Results (arm64, same smoke tests pass):
- broker:   3.26GB → 341MB  (-90%, drops all devDeps incl. drizzle-kit)
- migrate:  3.27GB → 653MB  (-80%, keeps drizzle-kit which IS runtime)

Broker /health confirms GIT_SHA build-arg still propagates (gitSha:
"30bc24f" in smoke test). Migrate still reads drizzle.config.ts and
attempts the connection correctly.

--legacy flag needed because pnpm 10 defaults to inject-workspace-
packages mode which the monorepo doesn't opt into; legacy is safe here.
--ignore-scripts on deploy skips the root postinstall (sherif lint:ws)
which has nothing to do with runtime.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Alejandro Gutiérrez
2026-04-05 15:37:21 +01:00
parent 30bc24f20d
commit f4bcad91b0
2 changed files with 16 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
packages/db/Dockerfile
View File

@@ -5,7 +5,7 @@
#
# Build from repo root: docker build -f packages/db/Dockerfile -t claudemesh-migrate .
# Stage 1: resolve pnpm workspace + install deps (Bun base + standalone pnpm)
# Stage 1: resolve pnpm workspace + flatten db's subset to /deploy via pnpm deploy
FROM oven/bun:1.2 AS deps
WORKDIR /app
@@ -17,25 +17,20 @@ RUN apt-get update && apt-get install -y --no-install-recommends curl ca-certifi
# pnpm needs full workspace context to resolve workspace:* and catalog: specifiers
COPY . .
# drizzle-kit is a devDependency → install the full dep graph (NOT --prod).
# Filter to db + its transitive deps only → ~20x smaller install than the whole workspace.
RUN pnpm install --frozen-lockfile --ignore-scripts --filter "@turbostarter/db..."
# Install full workspace, then flatten the db package's deploy subset.
# Keeps devDependencies (--no `--prod`) because drizzle-kit IS the runtime here.
RUN pnpm install --frozen-lockfile --ignore-scripts && \
pnpm deploy --legacy --ignore-scripts --filter=@turbostarter/db /deploy
# Stage 2: minimal Bun runtime (executes drizzle-kit CLI + TS config)
# Stage 2: minimal Bun runtime — copy only /deploy
FROM oven/bun:1.2-slim AS runtime
WORKDIR /app
ENV NODE_ENV=production
# Copy workspace metadata, the db package (schema + migrations + config), shared (transitive)
COPY --from=deps --chown=bun:bun /app/package.json /app/pnpm-workspace.yaml /app/pnpm-lock.yaml /app/.npmrc ./
COPY --from=deps --chown=bun:bun /app/node_modules ./node_modules
COPY --from=deps --chown=bun:bun /app/packages/db ./packages/db
COPY --from=deps --chown=bun:bun /app/packages/shared ./packages/shared
COPY --from=deps --chown=bun:bun /app/tooling/typescript ./tooling/typescript
COPY --from=deps --chown=bun:bun /deploy /app
USER bun
WORKDIR /app/packages/db
# drizzle-kit reads DATABASE_URL from env via ./src/env.ts, runs pending migrations,
# exits 0 on success / non-zero on failure. No long-running process.