New image for single images

[adrinr]

Description

Updating single image docker in order to be able to be cachable. These changes are for now not applied in the actual single image release pipeline, but they are used in a test pipeline and the same Dockerfile is used for the feature branch environments.
This new image will not have dependencies with the npm registry, so we will be able to test the feature branches as a whole.
It will require some changes on the release side that can be found in this PR: https://github.com/Budibase/budibase-deploys/pull/130

This PR also contains multiple package updates in order to fix some security and performance issues and in order to remove the dependency of pulling down the Budibase dependencies from the registry

• Testing single image build and release: https://github.com/Budibase/budibase/actions/runs/6534924939
• Testing feature branch release: https://github.com/Budibase/budibase-deploys/actions/runs/6534615225/job/17742218626

Feature branch URL: http://fb-budi-7573-use-existing-image-cache.fb.qa.budibase.net/builder/auth/login

[codecov-commenter]

Codecov Report

Merging #11954 (55698d9) into master (762581f) will increase coverage by 13.15%.
Report is 36 commits behind head on master.
The diff coverage is n/a.

❗ Current head 55698d9 differs from pull request most recent head 54daf2f. Consider uploading reports for the commit 54daf2f to get more accurate results

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

@@             Coverage Diff             @@
##           master   #11954       +/-   ##
===========================================
+ Coverage   67.87%   81.02%   +13.15%     
===========================================
  Files         585       95      -490     
  Lines       21858     2161    -19697     
  Branches     4406      319     -4087     
===========================================
- Hits        14836     1751    -13085     
+ Misses       6495      385     -6110     
+ Partials      527       25      -502     

see 492 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

[mike12345567]

How does this work with loading the dependencies of the packages themselves? Like if we remove @budibase/backend-core from the package.json how do we fetch its dependencies?

I may be mis-understanding this as well - just trying to understand the script!

[adrinr]

This removes all the @budibase/* packages from the package.json.
With the current setup, all the packages are bundled using esbuild, and we only need to fetch the packages from worker and server. Without this, when running yarn install, it will try to pull the @budibase packages from the npm repo, and it would fail.
Note that we could not bundle string-templates, for this the image is pulling it and linking it

[mike12345567]

Ok cool - good to understand!

[shogunpurple]

LGTM Adri - I think we should write some documentation in confluence on how this build works though at a high level just for reference.

[mike12345567]

Looks good to me! If adding documentation to Confluence should probably also include the note about Node 18 and IPv6 vs v4 (issues with it) as the single image is the only thing that will be affected by this (nothing else needs to access local resources).

[adrinr]

Wrong push merged an unexpected node_modules. Removing it in here: #12081