diff --git a/.snyk b/.snyk
index 80a26636..3e4e3ad0 100644
--- a/.snyk
+++ b/.snyk
@@ -1,5 +1,5 @@
 # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
-version: v1.13.1
+version: v1.13.5
 ignore: {}
 # patches apply the minimum changes required to fix a vulnerability
 patch:
@@ -8,3 +8,33 @@ patch:
         patched: '2018-12-04T08:04:29.242Z'
     - express-jwt > jsonwebtoken > joi > topo > hoek:
         patched: '2018-12-04T08:04:29.242Z'
+  SNYK-JS-LODASH-450202:
+    - snyk > snyk-nuget-plugin > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - express-validation > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - express-winston > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - mongoose > async > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > inquirer > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > snyk-config > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > snyk-nodejs-lockfile-parser > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > snyk-php-plugin > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > @snyk/dep-graph > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > @snyk/dep-graph > graphlib > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > snyk-go-plugin > graphlib > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+    - snyk > snyk-nodejs-lockfile-parser > graphlib > lodash:
+        patched: '2019-07-03T17:05:22.771Z'
+  'npm:moment:20170905':
+    - express-jwt > jsonwebtoken > joi > moment:
+        patched: '2019-07-03T17:05:22.771Z'
diff --git a/package.json b/package.json
index def07cd4..2a48df56 100644
--- a/package.json
+++ b/package.json
@@ -24,7 +24,8 @@
     "test:check-coverage": "yarn test:coverage && istanbul check-coverage",
     "report-coverage": "coveralls < ./coverage/lcov.info",
     "snyk-protect": "snyk protect",
-    "prepare": "npm run snyk-protect"
+    "prepare": "npm run snyk-protect",
+    "prepublish": "npm run snyk-protect"
   },
   "repository": {
     "type": "git",
@@ -63,7 +64,7 @@
     "mongoose": "^4.12.3",
     "morgan": "^1.9.1",
     "winston": "^2.4.0",
-    "snyk": "^1.124.1"
+    "snyk": "^1.189.0"
   },
   "devDependencies": {
     "@commitlint/config-angular": "^4.2.1",