chore: use non-root user for alpine images

[debdutdeb]

Proposed changes (including videos or screenshots)

Issue(s)

Steps to test or reproduce

Further comments

VLN-82

[dionisio-bot]

Looks like this PR is not ready to merge, because of the following issues:

• This PR is missing the 'stat: QA assured' label
• This PR is missing the required milestone or project

Please fix the issues and try again

If you have any trouble, please check the PR guidelines

[changeset-bot]

⚠️ No Changeset found

Latest commit: 7ec4096

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[github-actions]

PR Preview Action v1.4.8
🚀 Deployed preview to https://RocketChat.github.io/Rocket.Chat/pr-preview/pr-34162/
on branch gh-pages at 2024-12-27 14:32 UTC

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 75.85%. Comparing base (1184b83) to head (7ec4096).
Report is 1 commits behind head on develop.

Additional details and impacted files

@@             Coverage Diff              @@
##           develop   #34162       +/-   ##
============================================
+ Coverage    59.37%   75.85%   +16.47%     
============================================
  Files         2819      514     -2305     
  Lines        67691    22353    -45338     
  Branches     15036     5426     -9610     
============================================
- Hits         40192    16955    -23237     
+ Misses       24682     4744    -19938     
+ Partials      2817      654     -2163     

Flag	Coverage Δ
e2e	?
e2e-api	?
unit	75.85% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

[debdutdeb]

may seem like an over-explanation, open to removing.

[debdutdeb]

we could add --chown to all COPYs, however, it's not really that many files, one could argue that with COPY --chown it will build faster, but that number hasn't been noticeable. this way, we dont have to do many USER switching shenanigans.

[sampaiodiego]

because you moved the apk del to another layer the image size increased in 200MB, crossing the 2GB mark.. not sure if we want to do something about this though. for reference:

$ docker images                                 
REPOSITORY                                           TAG                  IMAGE ID       CREATED         SIZE
ghcr.io/rocketchat/rocket.chat                       pr-34836.alpine      dd8d46039547   19 hours ago    1.81GB
ghcr.io/rocketchat/rocket.chat                       pr-34162.alpine      248d81b785c5   33 hours ago    2.07GB
ghcr.io/rocketchat/rocket.chat                       pr-34192.alpine      95935ad7c658   9 days ago      1.82GB