Update dependencies and restructure webpack config

[ang-zeyu]

What is the purpose of this pull request? (put "X" next to an item, remove the rest)

• [x] New feature

What is the rationale for this request?
As mentioned here #118 (comment), the version of vue-loader vue-strap is using is outdated since support for it was dropped long ago, which prevents us from using some useful features:

• deep selectors for scoped css
• functional components which can help with performance ( and hence FOUC )

To upgrade vue-loader, almost all devDependencies had to be updated to accomodate webpack 4, which, going forward, can help with some things:

• We can use miniCssExtractPlugin to load vue-strap styles in the <head> of html files, which is a standard technique in production to reduce FOUC.
• Additionally, once we merge vue-strap into markbind as a scoped package, we can:
  • tree shake bootstrap vue to only import the components we actually need (popovers, modals, tooltips)
  • Introduce hot-reload ( or at least live reload ) with webpack-dev-server when we change source files to test changes, which can be used with markbind serve -o to accelerate the development process
  • integrate a bundling + minification process when running markbind build for asset files, helping with FOUC
  • ...

What changes did you make? (Give an overview)

Dependencies upgraded:

• vue-loader
• webpack ( vue-loader needs it )
• webpack loader packages ( babel, css, less, sass, expose, ... ), consequently less and sass packages
• eslint-plugin-vue ( for new vue-loader features ), and consequently all other eslint plugins for compatibility

Dependencies removed:

• prismjs ( we arent using this )
• uglifyJs ( TerserPlugin is the recommended default minifier which is included with webpack now, which has better performance and slightly better results ( -10kb for the minified bundle ))
• vue-html-loader ( vue-loader no longer needs it )

Dependencies added:

• webpack-merge ( highly used package to provide a semantic way to seperate dev and build webpack configs )

Webpack configs and npm scripts:

• rewrote webpack configs to comply with many webpack v1 - v4 changes
• split webpack configs with a commonly used structure ( common, dev, production ) using webpack-merge
• Small QoL improvement: npm run build now only uses the production webpack-merge config which builds the minified css file.
  • npm run builddev builds the unminified files with sourcemaps ( we aren't using these currently, but I preserved it as it may be useful once we merge vue-strap into markbind for certain tasks )

Testing instructions:

• Delete your node_modules folder and npm/yarn install
• npm run build and copy over the minified bundle, components should work as per usual. ( components page in docs would be a good place to test )

Proposed commit message: (wrap lines at 72 characters)
Update dependencies and restructure webpack config

The vue-strap fork is using highly outdated dependencies, which results
in being unable to use some new features of vue-loader which can be
helpful in development.

Let’s update these dependencies, and restructure the webpack configs to
accommodate webpack 4.
Let’s also refactor the npm build script to only build the minified
bundle, while also preserving the ability to build the non-minified
bundle with a builddev script.

[openorclose]

About treeshaking bootstrap-vue:

Let's raise this as an issue first.

Currently it's an undocumented? feature that authors can use any bootstrap-vue components in their site.

[openorclose]

Do we need both yarn.lock and package-lock.json?

[ang-zeyu]

About treeshaking bootstrap-vue:

Let's raise this as an issue first.

Currently it's an undocumented? feature that authors can use any bootstrap-vue components in their site.

Good idea, will post all the other points as issues as well once this MarkBind/markbind#981 is done.

Do we need both yarn.lock and package-lock.json?

https://classic.yarnpkg.com/blog/2018/06/04/yarn-import-package-lock/
Don't think we want devs to have to run yarn import individually

[yamgent]

Apologies if I missed something... Is there a reason why we still need the non-minfied version? Afaik the non-minfied version has never been used anywhere, we just inherited it from the original project (which is no longer been updated).

[ang-zeyu]

Apologies if I missed something... Is there a reason why we still need the non-minfied version? Afaik the non-minfied version has never been used anywhere, we just inherited it from the original project (which is no longer been updated).

It can be useful in the future once this is a scoped package in /markbind, I'm preserving it as more of a skeleton right now.

For e.g., I'm thinking of ( will be raised as issues once its a scoped package ):

• setting up the dev config to use the unminified version with sourcemaps which allows us to use vue devtools properly and can further help with build times ( minification takes time ).
• reconfiguring the dev command so that changes to @markbind/vue-strap files will automatically build and be copied to the template site(s) in /markbind, so no manual copying of files / writing our own copy scripts are required.

[marvinchin]

Mostly LGTM, just a question :)

Do we use yarn or npm as the package manager for markbind or vue-strap? I think it would make sense for us to stick to just one, so we won't need to keep updating both lockfiles. It would make our dev environment more consistent as well.

[ang-zeyu]

Mostly LGTM, just a question :)

Do we use yarn or npm as the package manager for markbind or vue-strap? I think it would make sense for us to stick to just one, so we won't need to keep updating both lockfiles. It would make our dev environment more consistent as well.

I think most devs here use npm since the main repo uses it as well; Should we remove yarn here?

[marvinchin]

Should we remove yarn here?

I think we should be fine to remove it. But let's check with @yamgent to see if there's any historical context for it's existence.

[yamgent]

But let's check with @yamgent to see if there's any historical context for it's existence.

I am unaware of anybody using yarn other than the original MarkBind developer (the original project that we fork from doesn't use yarn either). It is fine to remove yarn.lock, the npm one is more important.

[ang-zeyu]

It is fine to remove yarn.lock, the npm one is more important.

Updated with yarn removed

[marvinchin]

LGTM 🚀

[ang-zeyu]

Thanks for reviewing this! @openorclose @yamgent @marvinchin