chore: production infrastructure and CI/CD pipeline

[The-Leyn]

No description provided.

[Copilot]

Pull request overview

This PR introduces production/development Docker Compose infrastructure and a GitHub-based deployment pipeline intended to deploy the app to a VPS, plus a small frontend ignore-list update.

Changes:

• Add compose.dev.yml for local development (Node container + Mosquitto).
• Add compose.prod.yml for production deployment (build frontend image + Mosquitto with persistent volumes).
• Add a GitHub deployment workflow and update frontend/.gitignore with OS/model ignores.

Reviewed changes

Copilot reviewed 3 out of 4 changed files in this pull request and generated 4 comments.

File	Description
frontend/.gitignore	Ignore model assets and OS-specific files in the frontend workspace.
compose.prod.yml	Define production services (frontend build + Mosquitto) and persistence volumes.
compose.dev.yml	Define development services (pnpm dev server in Node container + Mosquitto).
.github/deploy.yml	Add an automated VPS deployment pipeline using SCP + SSH.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Using eclipse-mosquitto:latest makes deployments non-reproducible and can unexpectedly pull breaking/security changes. Pin the Mosquitto image to a specific version tag for production stability (and ideally align dev/prod tags).

[Copilot]

Mosquitto is published on host ports 1883/9001; combined with the current mqtt/mosquitto.conf settings (allow_anonymous true on both listeners), this allows unauthenticated access from the network. For production, restrict exposure (bind to localhost / private network, or remove public port mappings) and/or enable authentication/TLS in Mosquitto.