Add audit to build for information

Added an audit to the build before we set the pipefail. This means that we can still get the audit information without failing the build in the case of vulnerabilities. This will help when evaluating yarn lock updates to be sure that the vulnerabilities have been addressed.