fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/npm:braces:20180219
- https://snyk.io/vuln/npm:deep-extend:20180409
- https://snyk.io/vuln/npm:extend:20180424

package.json

@@ -22,7 +22,7 @@
     "pull": "git stash; git pull; yarn; git stash pop"
   },
   "dependencies": {
-    "bcrypt": "^2.0.0",
+    "bcrypt": "^2.0.1",
     "body-parser": "^1.18.2",
     "clamdjs": "^1.0.1",
     "express": "^4.16.3",
@@ -33,7 +33,7 @@
     "knex": "^0.14.6",
     "multer": "^1.3.0",
     "node-fetch": "^2.2.0",
-    "nunjucks": "^3.1.2",
+    "nunjucks": "^3.1.3",
     "randomstring": "^1.1.5",
     "readline": "^1.3.0",
     "sharp": "^0.21.0",