feat(docker): Adding Dockerfile

[t0mbombadil]

Adding possiblity to run tool, in isolated container.

I made image as small as possible.
Although some additional complilation options targetting specific architecture might optimize it a little more.

For paranoid people image additional security hardening best practices were followed.

Overview

Run howto app in docker/podman container

Set up on shell

One time set up

./build.sh

# Set API key
## Could be set also in ~/.bashrc file or similar
read -s OPENAI_API_KEY ; echo "export OPENAI_API_KEY=$OPENAI_API_KEY" >> <some_rc_file_loaded_at_shell>

# Set alias 
echo "alias howto=\"$(realpath)/run.sh\"" >> ~/.bashrc

Usage

./run.sh "tar a file"

# Or with alias
howto "tar a file"

Security hardening

Image runs:

• without (almost) any other filesystem files than binary itself (FROM scratch)
• with non-root user

And provided run.sh script runs it with readonly container filesystem