[CIVIS-11019] update to use ubuntu 22.04 fips enabled base image (#1)

* ubuntu fips

* Improve Dockerfile formatting and readability

- Use consistent 2-space indentation throughout
- Remove unnecessary comment blocks
- Better organize ARG declarations
- Improve line continuation formatting

🤖 Generated with [opencode](https://opencode.ai)

Co-Authored-By: opencode <noreply@opencode.ai>

* remove extraneous file

* remove jenkins things

* remove extra files

* Add docker-compose configuration for FIPS-compliant code-server

- Add docker-compose.yml with build args for VERSION and CODE_RELEASE
- Add .env.example with configurable environment variables
- Update .gitignore and .dockerignore to exclude .env files
- Set CODE_RELEASE default to 4.102.1 for stable builds
- Configure image name: gabemendoza1/codecloud-code-server

🤖 Generated with [opencode](https://opencode.ai)

Co-Authored-By: opencode <noreply@opencode.ai>

* simplify

* update image

* update image

* update image

* add netcat-openbsd

* netcat

* default ids 0

* remove extra files

* remove more workflows

* upgrade Python to 3.12

🤖 Generated with [opencode](https://opencode.ai)

Co-Authored-By: opencode <noreply@opencode.ai>

* add buildspec

* update buildspec defs

* update buildspec defs

* ubuntu-fips-2

* fixed buildspec args

* FIPS_REPOSITORY_URI

* styling

* update placeholders

* latest

* latest

* put that thing back where it came from or so help me

* only need 1

* simplify Dockerfile

* no need ignores

* no need ignores

* simplify

* remove comment

* trigger codebuild

* jammy

---------

Co-authored-by: opencode <noreply@opencode.ai>

Author: thatguyinabeanie

.github/PULL_REQUEST_TEMPLATE.md

@@ -1,43 +1,38 @@
-<!--- Provide a general summary of your changes in the Title above -->
+## Description
 
-[linuxserverurl]: https://linuxserver.io
-[![linuxserver.io](https://raw.githubusercontent.com/linuxserver/docker-templates/master/linuxserver.io/img/linuxserver_medium.png)][linuxserverurl]
+Required: Please provide a brief description of what this pull request is trying to accomplish.
 
+>
 
-<!--- Before submitting a pull request please check the following -->
+## Context, Consequences, & Considerations
 
-<!---  If this is a fix for a typo (in code, documentation, or the README) please file an issue and let us sort it out. We do not need a PR  -->
-<!---  Ask yourself if this modification is something the whole userbase will benefit from, if this is a specific change for corner case functionality or plugins please look at making a Docker Mod or local script  https://blog.linuxserver.io/2019/09/14/customizing-our-containers/ -->
-<!---  That if the PR is addressing an existing issue include, closes #<issue number> , in the body of the PR commit message   -->
-<!---  You have included links to any files / patches etc your PR may be using in the body of the PR commit message -->
-<!--- We maintain a changelog of major revisions to the container at the end of readme-vars.yml in the root of this repository, please add your changes there if appropriate -->
+Required: Please step through the following list, pausing at each item to consider your change in relation to the item's context.
+Check the box to mark that it applies, and enter your relevant notes under the item.
 
+- [ ] Security: This has security implications. This includes (but not limited to) adding users, modifying user/app permissions, network rules/policies, changing a system interconnection, or changing an authorization strategy.
+  - [ ] This PR does not require security review. These changes are part of a project plan that has already undergone security review. The link is provided below.
+  - [ ] This PR requires security review. Add the `security` label to this PR then request a review from the [Security Code Reviewers Team](https://github.com/orgs/civisanalytics/teams/security-code-reviewers).
 
-<!--- Coding guidelines: -->
-<!--- 1. Installed packages in the Dockerfiles should be in alphabetical order -->
-<!--- 2. Changes to Dockerfile should be replicated in Dockerfile.armhf and Dockerfile.aarch64 if applicable -->
-<!--- 3. Indentation style (tabs vs 4 spaces vs 1 space) should match the rest of the document -->
-<!--- 4. Readme is auto generated from readme-vars.yml, make your changes there -->
+>
 
-------------------------------
+- [ ] Execution: This change requires commands to be run outside of the normal merge.
 
- - [ ] I have read the [contributing](https://github.com/linuxserver/docker-code-server/blob/master/.github/CONTRIBUTING.md) guideline and understand that I have made the correct modifications
+>
 
-------------------------------
+- [ ] Impact: This change may cause service interruptions.
 
-<!--- We welcome all PR’s though this doesn’t guarantee it will be accepted. -->
+>
 
-## Description:
-<!--- Describe your changes in detail -->
+- [ ] Testing: How did you test this change (unit tests, acceptance tests, etc.)? Did you do any manual testing?
 
-## Benefits of this PR and context:
-<!--- Please explain why we should accept this PR. If this fixes an outstanding bug, please reference the issue # -->
+>
 
-## How Has This Been Tested?
-<!--- Please describe in detail how you tested your changes. -->
-<!--- Include details of your testing environment, and the tests you ran to -->
-<!--- see how your change affects other areas of the code, etc. -->
+- [ ] Testing: How will you confirm this change once it's merged?
 
+>
 
-## Source / References:
-<!--- Please include any forum posts/github links relevant to the PR -->
+- [ ] Documentation: Documentation to reflect this change has been added to Confluence or Zendesk.
+
+>
+
+- [ ] **All items of the checklist have been considered and this PR description is complete.**

.github/workflows/call_issue_pr_tracker.yml

@@ -1,13 +1,47 @@
 # syntax=docker/dockerfile:1
 
-FROM ghcr.io/linuxserver/baseimage-ubuntu:noble
+ARG ECR_ACCOUNT_ID
+ARG ECR_REGION=us-east-1
+ARG BASE_IMAGE_NAME=docker-linuxserver-ubuntu-fips
+ARG BASE_IMAGE_TAG=jammy
+ARG ECR_URI=${ECR_ACCOUNT_ID}.dkr.ecr-fips.${ECR_REGION}.amazonaws.com/${BASE_IMAGE_NAME}:${BASE_IMAGE_TAG}
 
-# set version label
+FROM ${ECR_URI} as docker-code-server-python
+
+ARG DEBIAN_FRONTEND="noninteractive"
+
+# Install Python 3.12
+RUN echo "**** install Python 3.12 ****" && \
+  apt-get update && \
+  apt-get install -y \
+    software-properties-common \
+    gpg-agent && \
+  curl -fsSL https://keyserver.ubuntu.com/pks/lookup?op=get\&search=0xF23C5A6CF475977595C89F51BA6932366A755776 | apt-key add - && \
+  echo "deb https://ppa.launchpadcontent.net/deadsnakes/ppa/ubuntu jammy main" > /etc/apt/sources.list.d/deadsnakes.list && \
+  apt-get update && \
+  apt-get install -y \
+    python3.12 \
+    python3.12-dev \
+    python3.12-venv && \
+  update-alternatives --install /usr/bin/python3 python3 /usr/bin/python3.12 1 && \
+  update-alternatives --install /usr/bin/python python /usr/bin/python3.12 1 && \
+  curl -sS https://bootstrap.pypa.io/get-pip.py | python3.12 && \
+  pip3 install --upgrade pip setuptools wheel && \
+  python3 --version && \
+  pip3 --version && \
+  echo "**** clean up ****" && \
+  apt-get clean && \
+  rm -rf \
+    /var/lib/apt/lists/* \
+    /tmp/*
+
+FROM docker-code-server-python
 ARG BUILD_DATE
 ARG VERSION
 ARG CODE_RELEASE
+
 LABEL build_version="Linuxserver.io version:- ${VERSION} Build-date:- ${BUILD_DATE}"
-LABEL maintainer="aptalca"
+LABEL maintainer="civisanalytics"
 
 # environment settings
 ARG DEBIAN_FRONTEND="noninteractive"
@@ -21,6 +55,7 @@ RUN \
     libatomic1 \
     nano \
     net-tools \
+    netcat-openbsd \
     sudo && \
   echo "**** install code-server ****" && \
   if [ -z ${CODE_RELEASE+x} ]; then \