As someone who is currently implementing NPM audit in our front-end pipelines, this is sooooooo much better than just running npm audit and then linking to the console, which I was doing earler...real life saver!
Only issue I found (if you can call it an issue) was that I had to escape all the backslashes in the regex.. in other words
def newParser = new io.jenkins.plugins.analysis.warnings.groovy.GroovyParser(
'npm-audit',
'NPM Audit Parser',
'\w+\t(\S+)\t(\w+)\t(\S| )+\t((\S| )+)\t(\S+)\t(\S+)',
...
->
def newParser = new io.jenkins.plugins.analysis.warnings.groovy.GroovyParser(
'npm-audit',
'NPM Audit Parser',
'\\w+\\t(\\S+)\\t(\\w+)\\t(\\S| )+\\t((\\S| )+)\\t(\\S+)\\t(\\S+)',