docker-rocker

Production-grade Docker containerization for FastAPI, Pytest, SQLModel, and Pydantic projects. This skill should be used when users ask to dockerize FastAPI applications, create multi-stage Docker builds, optimize Docker images for Python APIs, set up CI/CD Docker pipelines, or deploy containerized Python web APIs with maximum performance and minimal image size.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "docker-rocker" with this command: npx skills add alijilani-dev/claude/alijilani-dev-claude-docker-rocker

Docker Rocker

Production-grade Docker automation for Python FastAPI web API projects using multi-stage builds, UV package manager, and performance optimization strategies.

What This Skill Does

  • Creates optimized multi-stage Dockerfiles (Builder → Runtime → Testing stages)
  • Configures UV package manager for 50-70% faster dependency installation
  • Implements layer caching strategies for rapid rebuilds
  • Sets up non-root user security configurations
  • Generates docker-compose files for development and production
  • Optimizes for SQLModel/Neon database connections in containers
  • Configures Pydantic settings for container environments

What This Skill Does NOT Do

  • Manage Kubernetes deployments (use dedicated k8s skills)
  • Handle cloud-specific container registries (AWS ECR, GCR, ACR)
  • Configure reverse proxies (Nginx, Traefik)
  • Manage container orchestration at scale
  • Handle secrets management beyond environment variables

Before Implementation

Gather context to ensure successful implementation:

SourceGather
CodebaseProject structure, existing Dockerfile, pyproject.toml/requirements.txt, app entry point
ConversationTarget deployment (dev/staging/prod), database connection requirements, special dependencies
Skill ReferencesMulti-stage patterns from references/, optimization strategies, security practices
User GuidelinesTeam Docker conventions, registry requirements, CI/CD integration needs

Ensure all required context is gathered before implementing. Only ask user for THEIR specific requirements (domain expertise is in this skill).

Required Clarifications

Ask about USER's context before generating Dockerfiles:

QuestionPurpose
Deployment target?Dev (hot-reload) vs Production (optimized) vs CI/CD (testing)
Package manager?UV (recommended) vs pip vs Poetry
Database type?Neon PostgreSQL, local PostgreSQL, SQLite, other
Special system deps?Libraries requiring apt packages (Pillow, psycopg2, etc.)
Port configuration?Default 80 or custom port

Docker Deployment Stages

Stage Overview

StagePurposeBase ImageFinal Size
BuilderInstall dependencies, compile packagespython:3.12-slim~400MB (discarded)
RuntimeProduction applicationpython:3.12-slim~150MB
TestingCI/CD test executionextends Builder~450MB
DevelopmentHot-reload for local devpython:3.12-slim~300MB

Stage Selection Logic

What is the deployment target?

Production deployment?
  → Use Builder + Runtime stages
  → Minimal image, no dev dependencies

CI/CD pipeline?
  → Use Builder + Testing stage
  → Include pytest, dev dependencies

Local development?
  → Use Development stage
  → Volume mounts, hot-reload enabled

All of the above?
  → Generate complete multi-stage Dockerfile with all targets

Workflow

1. Analyze Project Structure

# Check for existing configurations
ls -la pyproject.toml uv.lock requirements*.txt Dockerfile docker-compose.yml

Identify:

  • Package manager (UV if uv.lock exists, Poetry if poetry.lock, pip otherwise)
  • Entry point (app/main.py, src/main.py, main.py)
  • Dependencies requiring system packages

2. Select Dockerfile Template

Based on user's deployment target, use appropriate template from assets/templates/:

TargetTemplate
Production onlyDockerfile.production
With testingDockerfile.complete
DevelopmentDockerfile.dev
Full multi-stageDockerfile.multistage

3. Configure Environment Variables

# Performance optimizations
ENV UV_LINK_MODE=copy \
    UV_COMPILE_BYTECODE=1 \
    PYTHONDONTWRITEBYTECODE=1 \
    PYTHONUNBUFFERED=1

# Application settings
ENV APP_MODULE=app.main:app \
    PORT=80

4. Optimize Layer Caching

Order Dockerfile instructions by change frequency:

  1. Base image (rarely changes)
  2. System dependencies (rarely changes)
  3. Python dependencies (changes occasionally)
  4. Application code (changes frequently)

5. Configure Database Connections

For Neon/PostgreSQL in containers:

# Use NullPool - let external pooler handle connections
from sqlalchemy.pool import NullPool

engine = create_async_engine(
    DATABASE_URL,
    poolclass=NullPool,
    pool_pre_ping=True,
)

6. Generate docker-compose

Create appropriate compose file for target environment.

7. Validate Build

# Build and verify
docker build --target runtime -t app:latest .
docker run --rm app:latest python -c "import app; print('OK')"

Quick Commands

TaskCommand
Build production imagedocker build --target runtime -t app:prod .
Build test imagedocker build --target testing -t app:test .
Run tests in containerdocker run --rm app:test pytest -v
Build with no cachedocker build --no-cache -t app:latest .
Check image sizedocker images app:latest
Scan for vulnerabilitiesdocker scout cves app:latest

Error Handling

ErrorCauseSolution
uv: command not foundUV not installed in imageAdd COPY --from=ghcr.io/astral-sh/uv:latest /uv /bin/uv
ModuleNotFoundErrorDependencies not in runtimeVerify COPY of .venv from builder
Permission deniedNon-root user can't writeUse --chown=app:app on COPY
Connection refused to DBNetwork isolationUse docker-compose networks or host.docker.internal
OOM killedContainer memory limitIncrease memory limit or optimize workers
Build cache not workingLayer order wrongReorder: deps before code

Output Checklist

Before delivering Dockerfile, verify:

  • Multi-stage build separates builder and runtime
  • UV cache mounts configured for fast rebuilds
  • UV_COMPILE_BYTECODE=1 set for startup speed
  • Non-root user created and used
  • .dockerignore includes .venv, pycache, .git
  • Layer order optimized (deps before code)
  • Health check configured
  • --proxy-headers flag for FastAPI behind load balancer
  • Database connection uses NullPool for external pooling
  • Secrets not hardcoded (use environment variables)

Reference Files

FileWhen to Read
references/multi-stage-builds.mdUnderstanding stage architecture and patterns
references/optimization-strategies.mdReducing image size and build time
references/fastapi-patterns.mdFastAPI-specific Docker configurations
references/security-best-practices.mdContainer security hardening
references/database-connections.mdSQLModel/Neon connection patterns in containers

Asset Templates

TemplateUse Case
assets/templates/Dockerfile.multistageComplete multi-stage (Builder + Runtime + Testing)
assets/templates/Dockerfile.productionProduction-only optimized build
assets/templates/Dockerfile.devDevelopment with hot-reload
assets/templates/docker-compose.ymlFull development stack
assets/templates/docker-compose.prod.ymlProduction compose
assets/templates/.dockerignoreStandard ignore patterns

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Coding

github-assistant

No summary provided by upstream source.

Repository SourceNeeds Review
-5
alijilani-dev
Coding

fastapi_pytest_tddhelper

No summary provided by upstream source.

Repository SourceNeeds Review
-4
alijilani-dev
Coding

sqlmodel-orm-dbhelper

No summary provided by upstream source.

Repository SourceNeeds Review
-4
alijilani-dev