From 392ce162dccfb9b4b1908532225d210439f10bbd Mon Sep 17 00:00:00 2001
From: kitos <kitos@aegis.local>
Date: Fri, 12 Jun 2026 12:10:09 +0200
Subject: [PATCH] chore(docker): use npm ci instead of npm install in frontend
 Dockerfile

npm ci installs exact versions from package-lock.json with no implicit
resolution, making builds fully reproducible and guaranteed to use the
audited safe dependency versions.
---
 frontend/Dockerfile | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/frontend/Dockerfile b/frontend/Dockerfile
index ef59e9b..99352f7 100644
--- a/frontend/Dockerfile
+++ b/frontend/Dockerfile
@@ -6,8 +6,8 @@ WORKDIR /app
 # Copy package files
 COPY package*.json ./
 
-# Install dependencies
-RUN npm install
+# Install dependencies — use ci for reproducible installs (exact lock file versions)
+RUN npm ci
 
 # Copy source code
 COPY . .
@@ -25,7 +25,7 @@ FROM node:20-alpine AS build
 WORKDIR /app
 
 COPY package*.json ./
-RUN npm install
+RUN npm ci
 
 COPY . .
 RUN npm run build