fix(dockerfile): correct env vars, install gunicorn in builder, and improve runtime setup

Dockerfile

@@ -1,6 +1,6 @@
 FROM python:3.10-slim AS builder
 
-ENV PYTHONDONTWRITEBTYECODE=1 \
+ENV PYTHONDONTWRITEBYTECODE=1 \
     PYTHONUNBUFFERED=1 \
     PIP_NO_CACHE_DIR=1
 
@@ -13,27 +13,29 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
 COPY requirements.txt .
 
 RUN python -m pip install --upgrade pip && \
-    pip wheel --no-deps -r requirements.txt -w /wheels
+    pip wheel --no-deps -r requirements.txt -w /wheels && \
+    pip wheel --no-deps gunicorn -w /wheels
 
-FROM python:3.10 AS runtime
 
-ENV PYTHONDONTWRITEBTYECODE=1 \
+FROM python:3.10-slim AS runtime
+
+ENV PYTHONDONTWRITEBYTECODE=1 \
     PYTHONUNBUFFERED=1 \
     PIP_NO_CACHE_DIR=1 \
     PORT=8000 \
     WSGI_MODULE=server:app \
     GUNICORN_WORKERS=2 \
-    GUNICORN_THREDS=4 \
+    GUNICORN_THREADS=4 \
-    GUNICORN_TIMEOUT=60 \
+    GUNICORN_TIMEOUT=60 
-    GUNICORN_CMD_ARGS="--bind=0.0.0.0:${PORT} --workers=${GUNICORN_WORKERS} --threads=${GUNICORN_THREADS} --timeout=${GUNICORN_TIMEOUT} --access-logfile=- --error-logfile=- --keep-alive=5"
 
 WORKDIR /app
 
 RUN groupadd -g 10001 app && useradd -m -u 10001 -g app app
-USER app
 
 COPY --from=builder /wheels /wheels
-RUN pip install --no-cache-dir /wheels/* && pip install --no-cache-dir gunicorn && rm -rf /wheels
+RUN pip install --no-cache-dir /wheels/* && rm -rf /wheels
+
+USER app
 
 COPY --chown=app:app . .
 
@@ -42,4 +44,4 @@ EXPOSE 8000
 HEALTHCHECK --interval=30s --timeout=3s --start-period=10s --retries=3 \
   CMD python -c "import os,socket; s=socket.socket(); s.settimeout(2); s.connect(('127.0.0.1', int(os.getenv('PORT', '8000')))); s.close()"
 
-CMD sh -c "exec gunicorn ${WSGI_MODULE}"
+CMD ["sh", "-c", "exec gunicorn $WSGI_MODULE --bind=0.0.0.0:$PORT --workers=$GUNICORN_WORKERS --threads=$GUNICORN_THREADS --timeout=$GUNICORN_TIMEOUT --access-logfile=- --error-logfile=- --keep-alive=5"]