package-lock.json is listed in .gitignore

[justinkambic]

Why do we have package-lock.json ignored?

This file is meant to be committed to the repo's version control, should we not remove that entry?

[justinkambic]

I created a PR that removes that entry from .gitignore and bumps the version of two packages that were out of date and causing npm to provide high/critical vulnerability warnings. https://github.com/bchr02/node-pre-gyp-github/pull/37

[daniellockyer]

Hey @justinkambic, I've just fixed this issue 🙂 I'll push dependency bumps soon