Update *less* and *marked* dependencies

[pdehaan]

See https://nodesecurity.io/advisories/qs_dos_extended_event_loop_blocking, https://nodesecurity.io/advisories/qs_dos_memory_exhaustion, and https://nodesecurity.io/advisories/marked_multiple_content_injection_vulnerabilities.

Steps to reproduce:

$ git clone https://github.com/sintaxi/terraform.git .

$ npm install

$ npm shrinkwrap --dev
wrote npm-shrinkwrap.json

$ # sudo npm i nsp -g
$ nsp audit-shrinkwrap
Name    Installed  Patched  Vulnerable Dependency
qs        0.6.6     >= 1.x  terraform > less > request
marked    0.2.9    >=0.3.1  terraform

$ npm outdated --depth 0
Package        Current  Wanted     Latest  Location
autoprefixer     2.2.0   2.2.0      3.1.0  autoprefixer
coffee-script    1.7.1   1.7.1      1.8.0  coffee-script
jade            0.35.0  0.35.0      1.7.0  jade
less             1.7.4   1.7.4      1.7.5  less
marked           0.2.9   0.2.9      0.3.2  marked
mocha            1.8.2   1.8.2     1.21.4  mocha
node-sass        0.9.3   0.9.3  0.9.5-rc1  node-sass
should           1.2.2   1.2.2      4.0.4  should
stylus          0.47.3  0.47.3     0.49.1  stylus

$ travis-lint # http://lint.travis-ci.org/sintaxi/terraform

$ # sudo npm i pjv -g
$ pjv -wr
{ valid: true,
  warnings:
   [ 'Missing recommended field: keywords',
     'Missing recommended field: bugs' ],
  recommendations:
   [ 'Missing optional field: homepage',
     'Missing optional field: engines' ] }

[kennethormandy]

Fixed in Terraform v0.11.0 and Harp v0.17.0