npm audit generates noise claiming security vulnerabilities.

[BurtHarris]

The npm package manager is a pain, it generates false positives all the time regarding security vulnerabilities. By updating the devDependencies, we can probably silence these at this point.

You may want to consider switching to yarn, it doesn't go crying wolf as much.