diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..3b6f2cb
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,35 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.7.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:debug:20170905':
+    - fh-mbaas-api > debug:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > body-parser > debug:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > debug:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > send > debug:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > serve-static > send > debug:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-sync > debug:
+        patched: '2017-10-11T14:40:17.288Z'
+  'npm:ms:20170412':
+    - fh-mbaas-api > debug > ms:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > serve-static > send > ms:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > body-parser > debug > ms:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > debug > ms:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > send > debug > ms:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > serve-static > send > debug > ms:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-mbaas-express > express > send > ms:
+        patched: '2017-10-11T14:40:17.288Z'
+    - fh-mbaas-api > fh-sync > debug > ms:
+        patched: '2017-10-11T14:40:17.288Z'
diff --git a/package.json b/package.json
index f452110..cb72995 100644
--- a/package.json
+++ b/package.json
@@ -2,14 +2,15 @@
   "name": "fh-service-sharepoint-cloud",
   "version": "0.2.0",
   "dependencies": {
-    "express": "4.0.0",
+    "express": "4.16.0",
     "fh-mbaas-api": "~8.0.2",
-    "body-parser": "~1.0.2",
+    "body-parser": "~1.17.1",
     "cors": "~2.2.0",
     "node-uuid": "^1.4.3",
     "sharepointer": "^1.3.2",
     "underscore": "^1.8.3",
-    "request": "2.79.0"
+    "request": "2.81.0",
+    "snyk": "^1.42.6"
   },
   "devDependencies": {
     "grunt": "0.4.5",
@@ -23,8 +24,11 @@
   },
   "scripts": {
     "test": "grunt test",
-    "start": "node application.js"
+    "start": "node application.js",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "license": "Apache-2.0",
-  "main": "application.js"
+  "main": "application.js",
+  "snyk": true
 }