diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..442a0a1
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,14 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.7.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:uglify-js:20151024':
+    - jade > transformers > uglify-js:
+        patched: '2016-12-24T19:53:44.732Z'
+  'npm:ms:20170412':
+    - morgan > debug > ms:
+        patched: '2017-05-21T15:18:02.643Z'
+  'npm:uglify-js:20150824':
+    - jade > transformers > uglify-js:
+        patched: '2017-05-21T15:18:02.643Z'
diff --git a/package.json b/package.json
index d19ffa3..d0b3d38 100644
--- a/package.json
+++ b/package.json
@@ -7,7 +7,9 @@
     "start-redis": "redis-server > /dev/null & echo $! > redis.pid",
     "stop-redis": "kill -TERM $(cat redis.pid) && rm redis.pid",
     "create-config": "cp .env.config .env",
-    "start": "node app.js"
+    "start": "node app.js",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "repository": {
     "type": "git",
@@ -26,18 +28,20 @@
   "homepage": "https://github.com/Detry322/redisred",
   "dependencies": {
     "body-parser": "^1.13.2",
-    "connect-redis": "^2.4.0",
+    "connect-redis": "^3.0.0",
     "cookie-parser": "^1.3.5",
     "csurf": "^1.8.3",
     "dotenv": "^1.2.0",
     "express": "^4.13.1",
     "express-session": "^1.11.3",
     "hiredis": "^0.4.0",
-    "ioredis": "^1.5.11",
+    "ioredis": "^2.0.0",
     "jade": "^1.11.0",
     "morgan": "^1.6.1",
     "passport": "^0.2.2",
     "passport-local": "^1.0.0",
-    "serve-favicon": "^2.3.0"
-  }
+    "serve-favicon": "^2.3.0",
+    "snyk": "^1.30.1"
+  },
+  "snyk": true
 }