Provide the ability to read composer.lock file to get module version list

To help support other systems other than Drupal, we should look at being able to read a composer.lock file to process and get all the different package versions.

We can then use something like the follow to check for security vulnerabilities: https://github.com/sensiolabs/security-checker