Fix/dockerfile non root user

[okyashgajjar]

Description

Added a non-root user directive to both Dockerfile and
backend/Dockerfile. Neither file specified a USER directive,
meaning containers ran as root by default. If an attacker gains
container access, they would have full root control — violating
the principle of least privilege.

Fix applied to both files:

RUN adduser --disabled-password --gecos "" appuser
USER appuser

Related Issue

Fixes #389

Type of change

• Bug fix

Checklist

• I have read CONTRIBUTING.md
• My branch is up to date with main
• I have run pytest -v and all tests pass
• I have not introduced duplicate issues or features
• My PR title follows the format: fix: add non-root USER directive to Dockerfiles
• No hardcoded secrets or API keys in my code
• This PR is linked to a GSSoC 2026 issue

Test evidence

pytest -v
# 93 passed in 3.96s

[imDarshanGK]

@okyashgajjar update your branch with the latest main changes

[okyashgajjar]

Done @imDarshanGK Check this now.

[okyashgajjar]

whoever contributed to this an updates is failing due to frontend checks errors.

[okyashgajjar]

Although I updated my branches with latest main changes

You can merge it

also issued PR #437 - check this and allow me i'll update the code.

[imDarshanGK]

@okyashgajjar update the branch with the latest main changes

[okyashgajjar]

@imDarshanGK Done updated, please merge this.