Sonar hasn't been updated in quite some time, and several of our

dependencies (both direct and indirect) have known security issues. This

change starts the process of modernizing.
Some of these are related to build: gulp, babel, and webpack (and

associated plugins). These are all now running on the latest releases.

We're still using the legacy mode for JS decorators, but otherwise

everything is up to date.
For some reason, the update to webpack broke the gzip step for

bundle.js. I've changed things over to use brotli for compression and

the newish express-static-gzip to serve it, which gets us even better

file size savings.
The rest of the dep changes are more runtime oriented. The biggest

change is the switch from the old apollo-boost package to the new

@apollo/client. As part of this, we're now on the newest versions of

graphql and graphql-tools.

Verified that I could log in, navigate around, and edit data.