Initial commit: Google Gemini CLI Docker container

- Dockerfile with Node 22 slim base and Gemini CLI
- docker-compose.yml for easy local running
- Entrypoint script with config initialization
- Support for API key, Google account, and Vertex AI auth
- GitHub Actions workflow for multi-arch builds
- Comprehensive README with usage examples

MIT License

Author: bryant-ung

.dockerignore

@@ -0,0 +1,21 @@
+# Git
+.git
+.gitignore
+
+# Documentation
+README.md
+LICENSE
+
+# Environment files
+.env
+.env.*
+
+# Workspace
+workspace/
+
+# GitHub
+.github/
+
+# OS
+.DS_Store
+Thumbs.db

.env.example

@@ -0,0 +1,9 @@
+# Google API Key (get one at https://aistudio.google.com/apikey)
+GOOGLE_API_KEY=your-api-key-here
+
+# Optional: For Vertex AI instead of AI Studio
+# GOOGLE_CLOUD_PROJECT=your-project-id
+# GOOGLE_CLOUD_REGION=us-central1
+
+# Optional: Custom model
+# GEMINI_MODEL=gemini-2.5-pro

.github/workflows/docker-publish.yml

@@ -0,0 +1,61 @@
+name: Build and Push Docker Image
+
+on:
+  push:
+    branches:
+      - main
+    tags:
+      - 'v*'
+  pull_request:
+    branches:
+      - main
+
+env:
+  REGISTRY: docker.io
+  IMAGE_NAME: ungb/gemini-cli
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v3
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Log in to Docker Hub
+        if: github.event_name != 'pull_request'
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Extract metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=ref,event=branch
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=raw,value=latest,enable={{is_default_branch}}
+
+      - name: Build and push
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          platforms: linux/amd64,linux/arm64
+          push: ${{ github.event_name != 'pull_request' }}
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max

.gitignore

@@ -0,0 +1,16 @@
+# Environment files
+.env
+.env.local
+
+# Workspace directory (user's code)
+workspace/
+
+# OS files
+.DS_Store
+Thumbs.db
+
+# IDE
+.idea/
+.vscode/
+*.swp
+*.swo

Dockerfile

@@ -0,0 +1,40 @@
+FROM node:22-slim
+
+LABEL maintainer="ungb"
+LABEL description="Google Gemini CLI in a Docker container"
+LABEL org.opencontainers.image.source="https://github.com/ungb/gemini-cli-docker"
+
+# Install system dependencies
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    git \
+    curl \
+    openssh-client \
+    ca-certificates \
+    jq \
+    && rm -rf /var/lib/apt/lists/*
+
+# Install Google Gemini CLI globally
+RUN npm install -g @google/gemini-cli
+
+# Create non-root user for security
+RUN useradd -m -s /bin/bash coder \
+    && mkdir -p /home/coder/.gemini \
+    && chown -R coder:coder /home/coder
+
+# Set up workspace directory
+RUN mkdir -p /workspace && chown coder:coder /workspace
+
+# Copy entrypoint script
+COPY --chown=coder:coder entrypoint.sh /entrypoint.sh
+RUN chmod +x /entrypoint.sh
+
+# Switch to non-root user
+USER coder
+WORKDIR /workspace
+
+# Environment variables
+ENV HOME=/home/coder
+ENV GEMINI_CONFIG_DIR=/home/coder/.gemini
+
+ENTRYPOINT ["/entrypoint.sh"]
+CMD ["gemini"]

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,215 @@
+# Gemini CLI Docker
+
+Run [Google Gemini CLI](https://github.com/google-gemini/gemini-cli) in a Docker container. Gemini CLI is an open-source AI agent that brings the power of Gemini directly into your terminal.
+
+## Quick Start
+
+```bash
+# Pull and run (replace with your API key)
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -e GOOGLE_API_KEY=your-key \
+  ungb/gemini-cli
+```
+
+## Prerequisites
+
+- [Docker](https://docs.docker.com/get-docker/) installed
+- [Google API key](https://aistudio.google.com/apikey) (free) or Google account
+
+## Usage
+
+### Using Docker Run
+
+```bash
+# Basic usage with API key
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -e GOOGLE_API_KEY=$GOOGLE_API_KEY \
+  ungb/gemini-cli
+
+# With persistent config (remembers settings between runs)
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -v gemini-config:/home/coder/.gemini \
+  -e GOOGLE_API_KEY=$GOOGLE_API_KEY \
+  ungb/gemini-cli
+
+# With git/ssh support
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -v gemini-config:/home/coder/.gemini \
+  -v ~/.ssh:/home/coder/.ssh:ro \
+  -v ~/.gitconfig:/home/coder/.gitconfig:ro \
+  -e GOOGLE_API_KEY=$GOOGLE_API_KEY \
+  ungb/gemini-cli
+```
+
+### Using Docker Compose
+
+1. Clone this repo or copy `docker-compose.yml` to your project:
+
+```bash
+curl -O https://raw.githubusercontent.com/ungb/gemini-cli-docker/main/docker-compose.yml
+```
+
+2. Create a `.env` file with your API key:
+
+```bash
+echo "GOOGLE_API_KEY=your-key-here" > .env
+```
+
+3. Run:
+
+```bash
+docker compose run --rm gemini
+```
+
+### Run a Specific Command
+
+```bash
+# Run gemini with a prompt
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -e GOOGLE_API_KEY=$GOOGLE_API_KEY \
+  ungb/gemini-cli \
+  gemini "explain this codebase"
+
+# Check version
+docker run -it --rm ungb/gemini-cli gemini --version
+
+# Run with specific model
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -e GOOGLE_API_KEY=$GOOGLE_API_KEY \
+  -e GEMINI_MODEL=gemini-2.5-pro \
+  ungb/gemini-cli
+```
+
+## Authentication
+
+### Option 1: API Key (Recommended for Docker)
+
+Get a free API key from [Google AI Studio](https://aistudio.google.com/apikey) and pass it as an environment variable:
+
+```bash
+-e GOOGLE_API_KEY=AI...
+```
+
+**Free tier includes:**
+- 60 requests per minute
+- 1,000 requests per day
+- Access to Gemini 2.5 Pro with 1M token context window
+
+### Option 2: Google Account Login
+
+For browser-based authentication (requires host network):
+
+```bash
+docker run -it --rm \
+  --network host \
+  -v $(pwd):/workspace \
+  -v gemini-config:/home/coder/.gemini \
+  ungb/gemini-cli
+```
+
+Then follow the prompts to authenticate with your Google account.
+
+### Option 3: Vertex AI
+
+For enterprise users with Google Cloud:
+
+```bash
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -v ~/.config/gcloud:/home/coder/.config/gcloud:ro \
+  -e GOOGLE_CLOUD_PROJECT=your-project \
+  ungb/gemini-cli
+```
+
+## Volume Mounts
+
+| Mount | Purpose |
+|-------|---------|
+| `/workspace` | Your project directory (required) |
+| `/home/coder/.gemini` | Gemini config and cache (optional, for persistence) |
+| `/home/coder/.ssh` | SSH keys for git operations (optional, read-only) |
+| `/home/coder/.gitconfig` | Git configuration (optional, read-only) |
+| `/home/coder/.config/gcloud` | Google Cloud credentials (optional, for Vertex AI) |
+
+## Environment Variables
+
+| Variable | Required | Description |
+|----------|----------|-------------|
+| `GOOGLE_API_KEY` | Yes* | Google AI Studio API key |
+| `GOOGLE_CLOUD_PROJECT` | No | GCP project ID (for Vertex AI) |
+| `GOOGLE_CLOUD_REGION` | No | GCP region (for Vertex AI) |
+| `GEMINI_MODEL` | No | Model to use (default: gemini-2.5-pro) |
+
+*Required unless using Google account login or Vertex AI
+
+## Features
+
+Gemini CLI includes built-in tools for:
+- Google Search grounding
+- File operations
+- Shell commands
+- Web fetching
+- MCP (Model Context Protocol) extensions
+
+## Building Locally
+
+```bash
+git clone https://github.com/ungb/gemini-cli-docker.git
+cd gemini-cli-docker
+docker build -t gemini-cli .
+```
+
+## Troubleshooting
+
+### Permission Denied on Mounted Files
+
+The container runs as user `coder` (UID 1000). If you have permission issues:
+
+```bash
+# Run with your user ID
+docker run -it --rm \
+  --user $(id -u):$(id -g) \
+  -v $(pwd):/workspace \
+  -e GOOGLE_API_KEY=$GOOGLE_API_KEY \
+  ungb/gemini-cli
+```
+
+### Git Operations Failing
+
+Ensure SSH keys are mounted and git is configured:
+
+```bash
+docker run -it --rm \
+  -v $(pwd):/workspace \
+  -v ~/.ssh:/home/coder/.ssh:ro \
+  -v ~/.gitconfig:/home/coder/.gitconfig:ro \
+  -e GOOGLE_API_KEY=$GOOGLE_API_KEY \
+  ungb/gemini-cli
+```
+
+### Authentication Issues
+
+Make sure your API key is valid:
+
+```bash
+# Test your API key
+curl -H "x-goog-api-key: $GOOGLE_API_KEY" \
+  "https://generativelanguage.googleapis.com/v1beta/models"
+```
+
+## License
+
+MIT License - see [LICENSE](LICENSE)
+
+## Links
+
+- [Gemini CLI Documentation](https://geminicli.com/)
+- [Gemini CLI GitHub](https://github.com/google-gemini/gemini-cli)
+- [Google AI Studio](https://aistudio.google.com/)
+- [Get API Key](https://aistudio.google.com/apikey)