diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..43b97c1
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,8 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.14.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-567746:
+    - restify-errors > lodash:
+        patched: '2020-05-01T03:56:35.170Z'
diff --git a/package.json b/package.json
index fe277c2..3da306f 100644
--- a/package.json
+++ b/package.json
@@ -58,7 +58,9 @@
     "build": "rm -rf lib && npx tsc -p tsconfig.build.json",
     "barrels": "npx barrelsby --delete -p ./src -l top -q -e \"test|@types\"",
     "lint": "NODE_OPTIONS=--max-old-space-size=4096 tslint --fix --project tsconfig.build.json -c tslint.json 'src/**/*.ts'",
-    "check:circular": "yarn build && npx madge --circular lib"
+    "check:circular": "yarn build && npx madge --circular lib",
+    "snyk-protect": "snyk protect",
+    "prepare": "yarn run snyk-protect"
   },
   "bin": {
     "yakbak": "lib/cli.js",
@@ -82,7 +84,8 @@
     "lokijs": "^1.5.6",
     "mkdirp": "^0.5.1",
     "restify-errors": "^6.1.1",
-    "xxhashjs": "^0.2.2"
+    "xxhashjs": "^0.2.2",
+    "snyk": "^1.316.1"
   },
   "keywords": [
     "http",
@@ -113,5 +116,6 @@
       "prettier --write",
       "git add"
     ]
-  }
+  },
+  "snyk": true
 }