Feature request: indicate if it's a dev dependency

[stevendarby]

Include whether a vulnerability stems from dependencies or devDependencies. I believe this used to be a feature in previous versions. If possible, please consider adding it back, as it would greatly help us decide on the resolution.

e.g.

vulnerable versions <0.5.0 found in:
 - devDependencies: @angular-devkit/build-angular>protractor>selenium-webdriver>xml2js