diff --git a/src/.snyk b/src/.snyk
new file mode 100644
index 00000000..0d8dfe81
--- /dev/null
+++ b/src/.snyk
@@ -0,0 +1,19 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.19.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:hoek:20180212':
+    - deep-db > vogels > joi > hoek:
+        patched: '2021-04-09T03:18:05.356Z'
+    - deep-db > vogels > joi > topo > hoek:
+        patched: '2021-04-09T03:18:05.356Z'
+    - deep-db > deep-validation > vogels > joi > hoek:
+        patched: '2021-04-09T03:18:05.356Z'
+    - deep-db > deep-validation > vogels > joi > topo > hoek:
+        patched: '2021-04-09T03:18:05.356Z'
+  'npm:lodash:20180130':
+    - deep-db > vogels > lodash:
+        patched: '2021-04-09T03:18:05.356Z'
+    - deep-db > deep-validation > vogels > lodash:
+        patched: '2021-04-09T03:18:05.356Z'
diff --git a/src/package.json b/src/package.json
index 0481337b..a9f65bec 100644
--- a/src/package.json
+++ b/src/package.json
@@ -51,7 +51,8 @@
   "scripts": {
     "compile-travis": "bash ../bin/compile-lib.sh .",
     "compile": "bash node-bin/compile.sh && node node-bin/bootstrap-dist.js > lib.compiled/bootstrap.dist.js",
-    "prepublish": "bash node-bin/assure-deps.sh && bash node-bin/compile.sh"
+    "prepublish": "npm run snyk-protect && bash node-bin/assure-deps.sh && bash node-bin/compile.sh",
+    "snyk-protect": "snyk protect"
   },
   "dependencies": {
     "amazon-cognito-js": "MitocGroup/amazon-cognito-js",
@@ -88,7 +89,8 @@
     "string2stream": "MitocGroup/string2stream",
     "sync-exec": "^0.6.x",
     "tar-stream": "^1.5.x",
-    "tmp": "^0.0.x"
+    "tmp": "^0.0.x",
+    "snyk": "^1.529.0"
   },
   "optionalDependencies": {
     "aws-sdk": "^2.140.x"
@@ -101,5 +103,6 @@
     "npm": ">=3.0"
   },
   "preferGlobal": false,
-  "analyze": true
+  "analyze": true,
+  "snyk": true
 }