Update package.json

[VinayaSathyanarayana]

Updated debug to 2.6.1 which in turn uses ms 0.7.2 to overcome security advisory https://nodesecurity.io/advisories/46

[BrandonCopley]

What can we do to pull this into master and push - we have a security issue with this, and this simple commit will fix it.

[faust64]

note: debug@2.6.1 is also vulnerable, according to https://snyk.io/test/npm/debug/2.6.1