Ignore GHSA-c2qf-rxjj-qqgw when auditing for v1 main branch (#484)

The dependency is only introduced through development dependencies and
there this vulnerability has limited impact.

.nsprc

@@ -2,5 +2,9 @@
   "GHSA-ww39-953v-wcq6": {
     "active": true,
     "notes": "ReDoS introduced through transitive dependency of ESLint@6. Since ESLint@6 is only used for compatibility testing the risk is accepted"
+  },
+  "GHSA-c2qf-rxjj-qqgw": {
+    "active": true,
+    "notes": "ReDoS in various devDependency trees with limited impact. Updates may come in over time."
   }
 }