fix: add --chown to Dockerfile COPY so app files are owned by bedrock_agentcore (#358)

COPY after USER still defaults to root:root ownership. Without --chown,
application files in the container are owned by root even though the
process runs as bedrock_agentcore, which customers may cargo-cult.

Author: tejaskash

src/assets/container/python/Dockerfile

@@ -14,7 +14,7 @@ RUN uv pip install -r pyproject.toml
 RUN useradd -m -u 1000 bedrock_agentcore
 USER bedrock_agentcore
 
-COPY . .
+COPY --chown=bedrock_agentcore:bedrock_agentcore . .
 
 # 8080: AgentCore runtime endpoint
 # 8000: Local dev server (uvicorn)