deps: upgrade npm to 2.7.1

npm@2.7.1 is a pretty hefty release. I've included the four most significant changes below, and there are many others in the full release notes.

• 6823807 #7121 npm install --save for Git dependencies saves the URL passed in, instead of the temporary directory used to clone the remote repo. Fixes using Git dependencies when shrinkwwapping. In the process, rewrote the Git dependency caching code. Again. No more single-letter variable names, and a much clearer workflow. (@othiym23)
• abdd040 read-package-json@1.3.2: Provide more helpful error messages when JSON parse errors are encountered by using a more forgiving JSON parser than JSON.parse. (@smikes)
• c56cfcd #7525 npm dedupe handles scoped packages. (@KidkArolis)
• 4ef1412 #7075 If you try to tag a release as a valid semver range, npm publish and npm tag will error early instead of proceeding. (@smikes)

I've also applied the floating patch to node-gyp to make it work properly with io.js