feat(docker): add containerization support with multi-stage build

[puwun]

Description

• Add multi-stage Dockerfile with TUI binary compilation and Python dependency installation
• Add docker-compose.yml for production-ready multi-service deployment
• Add comprehensive DOCKER_USAGE.md with operational guide
• Add .dockerignore to optimize build context
• Update README.md with Docker installation option and quick start
• Support all Rogue modes: default (server+TUI), server-only, web UI, and CLI
• Include health checks and persistent volumes for production deployment

Type of Change

• ✨ New feature (non-breaking change which adds functionality)

• 📝 Documentation update

• 🔧 Configuration/build changes

Screenshots/Examples (if applicable)

Quick Start Commands

Build and run with TUI:

docker build -t rogue-app .
docker run -it --rm \
  -e OPENAI_API_KEY="sk-..." \
  -p 8000:8000 \
  rogue-app

Production deployment:

docker-compose up -d
# Access: http://localhost:8000/docs (API) and http://localhost:7860 (Web UI)

Related Issues/PRs

• Fixes [Feature] - Create a Dockerfile for rogue #94

---

[coderabbitai]

Summary by CodeRabbit

• New Features

  • Added containerized deployment support enabling Docker-based execution
  • Docker Compose configuration for multi-service orchestration with persistent storage

• Documentation

  • Updated README with Docker installation and usage instructions
  • Added comprehensive Docker usage guide with deployment examples and troubleshooting

• Chores

  • Added Dockerfile for container image builds
  • Added docker-compose.yml for coordinated service management
  • Added .dockerignore for optimized container builds

Walkthrough

This pull request introduces Docker containerization support for Rogue. It adds a multi-stage Dockerfile that bundles Python dependencies and the TUI component, a Docker Compose configuration orchestrating server and UI services with health checks and persistent storage, comprehensive Docker documentation, and updates the README with Docker installation instructions.

Changes

Cohort / File(s)	Summary
Docker Configuration .dockerignore, Dockerfile, docker-compose.yml	New .dockerignore excludes development and runtime artifacts. Multi-stage Dockerfile compiles TUI binary, installs Python dependencies via uv, and assembles runtime image. docker-compose.yml defines rogue-server and rogue-ui services with health checks, networking, persistent volumes, and service dependencies.
Documentation DOCKER_USAGE.md, README.md	New DOCKER_USAGE.md provides comprehensive guide covering Docker build options, component-specific runs, Docker Compose workflows, environment configuration, storage, networking, and troubleshooting. README.md updated with Docker installation option and Docker deployment section referencing the new guide.

Sequence Diagram

sequenceDiagram
    actor User
    participant rogue-server
    participant rogue-ui
    participant rogue-network
    participant rogue-data

    User->>rogue-server: docker-compose up
    activate rogue-server
    rogue-server->>rogue-network: connect
    rogue-server->>rogue-data: mount /app/.rogue
    rogue-server->>rogue-server: run healthcheck
    note over rogue-server: waiting for healthy status
    
    rogue-server-->>rogue-ui: service_healthy condition met
    activate rogue-ui
    rogue-ui->>rogue-network: connect
    rogue-ui->>rogue-data: mount /app/.rogue
    rogue-ui->>rogue-server: http://rogue-server:8000
    note over rogue-ui: initialized and running
    
    User->>rogue-server: access :8000
    User->>rogue-ui: access :7860
    deactivate rogue-ui
    deactivate rogue-server

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

• Dockerfile validation: Verify multi-stage build logic, uv dependency installation, TUI binary compilation, and file permissions (execute bits for binaries).
• Docker Compose orchestration: Confirm service interdependencies (healthcheck logic, depends_on condition), networking setup, volume mounting paths, and environment variable placeholders align with application requirements.
• Documentation accuracy: Ensure DOCKER_USAGE.md troubleshooting scenarios and commands match Dockerfile/Compose behavior; verify README updates reference correct guide sections.
• Integration testing: Check that the default rogue-ai command works in the final runtime image and that both server and UI components communicate correctly over the network.

Suggested reviewers

• yuval-qf

Poem

🐰 A containerized burrow so fine,
With Docker and Compose aligned,
TUI and server in harmony dance,
Through volumes they share their glance,
In networks and health checks, we find,
A Rogue deployment, perfectly designed!

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title Check	✅ Passed	The title "feat(docker): add containerization support with multi-stage build" clearly summarizes the main changes in the pull request. All modifications—including the Dockerfile, docker-compose.yml, DOCKER_USAGE.md, .dockerignore, and README.md updates—directly relate to adding containerization support with a multi-stage build process. The title is specific, concise, and immediately conveys the primary feature being added without unnecessary jargon or noise.
Linked Issues Check	✅ Passed	Issue #94 requires creating a Dockerfile for rogue that includes Python packages and the rogue-tui. The pull request fully satisfies this requirement by delivering a multi-stage Dockerfile that compiles the TUI binary and installs Python dependencies. The changeset also includes complementary additions—docker-compose.yml for production deployment, DOCKER_USAGE.md for operational guidance, .dockerignore for build optimization, and README.md updates—all of which support and enhance the core Dockerfile feature without detracting from the primary objective.
Out of Scope Changes Check	✅ Passed	All changes in the pull request remain within the scope of Docker containerization support as defined by issue #94 and the PR objectives. While the PR extends beyond the minimal requirement of "create a Dockerfile" by adding docker-compose.yml, DOCKER_USAGE.md, .dockerignore, and README.md updates, these additions are directly related and supportive of the containerization feature. The .dockerignore optimizes the Dockerfile build, DOCKER_USAGE.md provides necessary operational documentation, docker-compose.yml enables production deployment, and README.md updates document the new Docker option—all are complementary and appropriate for a complete containerization solution.
Description Check	✅ Passed	The pull request description covers the most critical sections of the template: a clear description with detailed bullet points, marked type of change checkboxes (New feature, Documentation update, Configuration/build changes), screenshots and quick start command examples, and linked related issues (Fixes #94). While the description lacks some template sections such as a dedicated Motivation and Context explanation, the Checklist items, and Testing instructions, it provides sufficient detail and examples to understand the changes and their purpose. The description is mostly complete with essential information for reviewers.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (4)

.dockerignore (1)

36-37: Broad .md exclusion warrants consideration if docs are runtime-needed.

The pattern *.md on line 36 with the exception !README.md is appropriate for most builds. However, verify that no other root-level markdown files (e.g., DOCKER_USAGE.md, ARCHITECTURE.md) are referenced or needed within the container at runtime. If they are embedded in the application or needed for runtime operations, consider explicitly preserving them or reconsidering the scope of the exclusion.

README.md (2)

118-179: Consolidate duplicated Docker sections.

The README contains two Docker-focused sections with substantial overlap:

• Lines 118–179: "Option 3: Docker Installation" (procedural: how to install & run)
• Lines 479–537: "Docker Deployment" (architectural: deployment options)

Both cover similar ground (build command, quick start, component table, docker-compose reference), creating maintenance burden and potential for divergence. Consider consolidating these into a single, comprehensive section that covers both the procedural steps (from Option 3) and the architectural overview (from Deployment), keeping the distinction clear with subsections.

Alternatively, if both perspectives serve distinct audiences, clearly differentiate their purpose in introductory text to avoid reader confusion.

Also applies to: 479-537

---

533-534: Wrap bare URLs in inline code formatting.

Per Markdown best practices (markdownlint MD034), bare URLs should be wrapped in backticks or angle brackets to improve rendering and accessibility. This also applies to lines 625–627 in the Quick Reference table.

Apply this diff:

-**Access:**
-- API Docs: http://localhost:8000/docs
-- Web UI: http://localhost:7860
+**Access:**
+- API Docs: `http://localhost:8000/docs`
+- Web UI: `http://localhost:7860`

Similarly, update the Quick Reference table (lines 625–627):

 | Server | 8000 | `http://localhost:8000/docs` |
 | Web UI | 7860 | `http://localhost:7860` |
 | Example Agent | 10001 | `http://localhost:10001` |

docker-compose.yml (1)

35-35: Clarify purpose of GRADIO_SERVER_NAME=0.0.0.0.

Line 35 sets GRADIO_SERVER_NAME=0.0.0.0 for the rogue-ui container. This tells Gradio to listen on all network interfaces within the container, which is necessary for Docker networking but may conflict with or complement the port mapping on line 37.

Document why this is needed (e.g., "Required for Gradio to accept external connections in Docker") or verify it doesn't cause unexpected behavior with Gradio's security model.

Add an inline comment to clarify:

     environment:
       - OPENAI_API_KEY=${OPENAI_API_KEY:-}
-      - GRADIO_SERVER_NAME=0.0.0.0
+      - GRADIO_SERVER_NAME=0.0.0.0  # Required for Gradio to listen on all interfaces

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 54296be and 8e74fb7.

📒 Files selected for processing (5)

• .dockerignore (1 hunks)
• DOCKER_USAGE.md (1 hunks)
• Dockerfile (1 hunks)
• README.md (2 hunks)
• docker-compose.yml (1 hunks)

🧰 Additional context used

🪛 markdownlint-cli2 (0.18.1)

DOCKER_USAGE.md

89-89: Bare URL used

(MD034, no-bare-urls)

---

146-146: Bare URL used

(MD034, no-bare-urls)

---

237-237: Bare URL used

(MD034, no-bare-urls)

---

238-238: Bare URL used

(MD034, no-bare-urls)

---

625-625: Bare URL used

(MD034, no-bare-urls)

---

626-626: Bare URL used

(MD034, no-bare-urls)

---

627-627: Bare URL used

(MD034, no-bare-urls)

README.md

533-533: Bare URL used

(MD034, no-bare-urls)

---

534-534: Bare URL used

(MD034, no-bare-urls)

🔇 Additional comments (3)

DOCKER_USAGE.md (1)

1-627: Comprehensive and well-structured Docker documentation.

DOCKER_USAGE.md is thorough and well-organized, covering all major use cases from basic runs to advanced troubleshooting. The inclusion of Windows-specific guidance (PowerShell syntax), real-world pain points (port conflicts, permissions, memory), and practical examples (host.docker.internal, named volumes) demonstrates consideration for diverse user environments.

Strengths:

• Clear progression from basic to advanced scenarios
• Practical troubleshooting section with concrete solutions
• Good networking and storage guidance
• Well-explained CLI flags and options

Optional linting note:
Bare URLs throughout (lines 89, 146, 237–238, 625–627) are flagged by markdownlint (MD034). While acceptable for documentation, wrapping them in backticks would improve consistency:

- **Server API:** `http://localhost:8000/docs`
- **Web UI:** `http://localhost:7860`

This is a minor stylistic preference and not required for functionality.

docker-compose.yml (1)

21-26: No issues found—healthcheck endpoint is properly implemented and configured.

The /api/v1/health endpoint exists in rogue/server/api/health.py and returns HTTP 200 with a reliable response. The docker-compose healthcheck will function as expected.

Dockerfile (1)

90-90: All verification concerns are valid and properly implemented.

• Entry point availability: pyproject.toml defines rogue-ai = "rogue.__main__:main", and pip install -e . in the Dockerfile installs it correctly into PATH.
• Default behavior verified: rogue/__main__.py shows that running rogue-ai without arguments (when args.mode is None) installs TUI, starts server in background, and launches the TUI—matching the documented default.
• Non-interactive Docker requirement documented: DOCKER_USAGE.md explicitly states "-it: Interactive terminal (required for TUI)" and provides examples requiring -it flags for default mode, plus separate instructions for server-only mode without TUI.

The CMD ["rogue-ai"] is correct and all documented prerequisites are in place.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Add build context to rogue-ui service for image consistency.

The rogue-server service (line 4) has build: ., but rogue-ui (line 30) only specifies image: rogue-app:latest without a build context. This creates an inconsistency:

1. If rogue-app:latest doesn't exist locally, docker-compose up will fail for rogue-ui with an image-not-found error.
2. Build-time updates (e.g., source changes) will only rebuild for rogue-server, leaving rogue-ui stale.
3. First-time users may be confused why rogue-server builds but rogue-ui doesn't.

Both services use the same image, so both should trigger the build process in a compose workflow.

Apply this diff:

   # Rogue Web UI - Gradio interface
   rogue-ui:
+    build: .
     image: rogue-app:latest
     command: rogue-ai ui --port 7860 --rogue-server-url http://rogue-server:8000

Alternatively, if rogue-ui should intentionally use a pre-built image from a registry, document this clearly and remove the image tag to avoid confusion.

Also applies to: 30-30

🤖 Prompt for AI Agents

In docker-compose.yml around lines 4-5 and line 30, rogue-server is configured
with build: . while rogue-ui only has image: rogue-app:latest, causing
inconsistent behavior and possible image-not-found or stale UI builds; fix by
adding build: . to the rogue-ui service so both services build from the same
local context (you may keep image: rogue-app:latest to tag the built image), or
if rogue-ui should intentionally come from a registry, remove the local build
and add a clear comment documenting that it must be pulled from the registry.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Remove redundant package reinstall in final stage.

Lines 83–84 reinstall local packages using pip, but these packages were already installed in the builder stage (lines 54–55) and their site-packages have been copied to the final image (line 70). This reinstallation is redundant, adds unnecessary build time, and introduces inconsistency by switching from uv to pip.

Since the entire source code is already present in the container (line 80), the pre-installed editable installs in site-packages should remain valid.

Apply this diff to remove the redundant reinstall:

 # Copy the application source code
 COPY . .
 
-# Install the local packages in editable mode (same as builder stage)
-RUN pip install -e ./sdks/python
-RUN pip install -e .
-
 # Expose port 8000 (default server port)
 EXPOSE 8000

If the reinstall is genuinely needed (e.g., due to path resolution issues with editable installs), please document why and consider using uv for consistency.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	COPY . .
	# Install the local packages in editable mode (same as builder stage)
	RUN pip install -e ./sdks/python
	RUN pip install -e .
	COPY . .

🤖 Prompt for AI Agents

In Dockerfile around lines 80 to 84, remove the redundant reinstall steps:
delete the two RUN pip install -e ./sdks/python and RUN pip install -e . lines
because the editable packages were already installed in the builder stage and
their site-packages were copied into the final image; if there is a concrete
reason the reinstall is required (e.g., editable install path resolution),
document that in a comment and, for consistency with the builder stage, perform
the install using the same tool (`uv`) rather than switching to `pip`.

[yuval-qf]

Is the tui also supported?

[yuval-qf]

I think we should not hard-code the architecture. We should take it from the result of uname -m.

Without this, building the docker on ARM machines (any MacBook with Apple Silicon for example) will fail since the arch of the base image (golang:1.23-alpine) will match the host's architecture (unless specified otherwise)

Suggested change

	RUN CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build \
	RUN CGO_ENABLED=0 GOOS=linux GOARCH=$(uname -m) go build \

[yuval-qf]

Suggested change

	FROM python:3.11-slim AS builder
	FROM python:3.13-slim AS builder

[yuval-qf]

Suggested change

	FROM python:3.11-slim AS final
	FROM python:3.13-slim AS final

[yuval-qf]

I don't think we need this final layer. We can simply copy the tui to the previous builder layer.

[yuval-qf]

Since we don't build the package here, can we just do this?

Suggested change

	# Install uv
	RUN pip install uv
	# Set environment variables for uv
	ENV UV_NO_INTERACTION=1 \
	UV_VIRTUALENVS_CREATE=false
	# Set working directory
	WORKDIR /app
	# Copy dependency files
	COPY pyproject.toml uv.lock ./
	# Copy the VERSION file (required for dynamic version)
	COPY VERSION ./
	# Copy the README.md file (required for package metadata)
	COPY README.md ./
	# Copy the SDK directory (required for the local dependency)
	COPY sdks/python/ ./sdks/python/
	# Copy the main source code (needed for editable install)
	COPY rogue/ ./rogue/
	# Install dependencies (excluding dev dependencies)
	RUN uv sync --frozen --no-dev
	# Install the local packages in editable mode
	RUN uv pip install -e ./sdks/python
	RUN uv pip install -e .
	# Install the local packages in editable mode
	RUN pip install -e ./sdks/python
	RUN pip install -e .

[yuval-qf]

this is not currently supported in the docker file (the os and arch are static in the go build)

[Phoenix4201]

Not sure how it all works can sosome one help me i watch as many times as vids as I can but you guys are doinggreat

[yuval-qf]

Hi @puwun, is there any update regarding this PR?

[yuval-qf]

Not sure how it all works can sosome one help me i watch as many times as vids as I can but you guys are doinggreat

Thanks @Phoenix4201, Please feel free to join our Discord community!
There, we will be able to explain and assist you.

[puwun]

@yuval-qf im not working on this currently, so it's up for grabs