Upgrade Lodash

[djscheuf]

Received Security/Vulnerability Warning from Github. Need to upgrade Lodash to 4.17.11, or else move it to devDependency.

Given this is a static site generator, devDependency should be sufficient, should do both to be sure. Since this may impact Hexo generation, should do these steps in 2 commits for testing.

Reference: Lodah Alert

[djscheuf]

May have been resolved by Github Dependabot's merges. Thank you Dependabot.