package-lock.json is out of date but can be refreshed to correct issue

[gdennie]

package-lock.json references node-forge:0.9.0 which has a severe security vulnerability.

The problem is resolved by invoking npm install --package-lock

[Zaid-Ajaj]

Hi there @gdennie,

It is possible that more dependencies are out of date and need to be bumped up. Would it be possible for you to send a PR with updated packages? 😄 That would be really great!