update to jpeg-js 0.4.0 to avoid security vulnerability

[MrP]

I saw this warning:

https://github.com/MrP/node-image-compare-promise/network/alert/package-lock.json/jpeg-js/open

about jpeg-js, and decided to submit a PR to fix it upstream. Let me know if you want something done differently. It passed all tests.

[mirzazeyrek]

thanks that's already handled and merged in https://github.com/lksv/node-resemble.js/pull/48