Example project: EACCES in npm install

[brettwillis]

Commit 4a1cfa5 introduced use of the non-privileged user in docker install and run, both to allow use of patch-package without unsafe permissions (user needs to be set before install), and as security best-practice (user can be set after install).

While this works for local Docker build, it does not work for remote cloud build using gcloud as reported by @zirho. I could just move the user statement to after the install command but I want to understand why it works for local build but not remote build...