diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..5151487
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,10 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.14.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-567746:
+    - '@google-cloud/translate > @google-cloud/common > google-auto-auth > async > lodash':
+        patched: '2020-04-30T21:25:29.318Z'
+    - '@google-cloud/translate > @google-cloud/common > split-array-stream > async > lodash':
+        patched: '2020-04-30T21:25:29.318Z'
diff --git a/package.json b/package.json
index 03015ac..ce193f6 100644
--- a/package.json
+++ b/package.json
@@ -13,7 +13,9 @@
     "pdf": "yarn generator && node src/pdf.js",
     "pdf-gen": "node src/pdf.js",
     "generate-all": "NO_LINKS=true node src/generator.js && node src/pdf.js && mv ./docs/pdfs ./pdfs && NO_LINKS=false node src/generator.js && mv ./pdfs ./docs/pdfs",
-    "prettier": "prettier --write --single-quote --trailing-comma es5 --print-width 100 --tab-width 2 --jsx-bracket-same-line \"*.js\""
+    "prettier": "prettier --write --single-quote --trailing-comma es5 --print-width 100 --tab-width 2 --jsx-bracket-same-line \"*.js\"",
+    "snyk-protect": "snyk protect",
+    "prepare": "yarn run snyk-protect"
   },
   "dependencies": {
     "@google-cloud/translate": "1.1.0",
@@ -23,6 +25,8 @@
     "nodemon": "1.18.9",
     "prettier": "1.11.1",
     "rimraf": "2.6.2",
-    "showdown": "1.8.6"
-  }
+    "showdown": "1.8.6",
+    "snyk": "^1.316.1"
+  },
+  "snyk": true
 }