diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..0db06de
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,12 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-567746:
+    - jest > jest-cli > jest-config > @babel/core > lodash:
+        patched: '2022-08-19T20:57:00.223Z'
+    - jest > jest-cli > jest-config > @babel/core > @babel/traverse > lodash:
+        patched: '2022-08-19T20:57:00.223Z'
+    - jest > jest-cli > jest-config > jest-environment-jsdom > jsdom > request-promise-native > request-promise-core > lodash:
+        patched: '2022-08-19T20:57:00.223Z'
diff --git a/package.json b/package.json
index 0ef5939..1b84975 100644
--- a/package.json
+++ b/package.json
@@ -8,9 +8,10 @@
     "unit": "jest",
     "postinstall": "node ./dist/index.js",
     "build": "tsc -p tsconfig.json",
-    "prepare": "npm run build",
+    "prepare": "npm run snyk-protect && npm run build",
     "start": "npm run build && npm run postinstall",
-    "lint": "tslint -c tslint.json -p tsconfig.json \"src/**/*.ts\""
+    "lint": "tslint -c tslint.json -p tsconfig.json \"src/**/*.ts\"",
+    "snyk-protect": "snyk-protect"
   },
   "repository": {
     "type": "git",
@@ -52,7 +53,8 @@
     "fs-extra": "^8.0.1",
     "in-gfw": "^1.2.0",
     "nugget": "^2.0.1",
-    "string-width": "^4.1.0"
+    "string-width": "^4.1.0",
+    "@snyk/protect": "latest"
   },
   "jest": {
     "moduleFileExtensions": [
@@ -71,5 +73,6 @@
     "testMatch": [
       "**/__tests__/**/*-test.+(ts|tsx|js)"
     ]
-  }
+  },
+  "snyk": true
 }