diff --git a/packages/example/.snyk b/packages/example/.snyk
new file mode 100644
index 0000000000..184414017a
--- /dev/null
+++ b/packages/example/.snyk
@@ -0,0 +1,12 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.13.5
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-450202:
+    - lodash:
+        patched: '2019-07-04T01:47:02.469Z'
+    - '@jsonforms/react > lodash':
+        patched: '2019-07-04T01:47:02.469Z'
+    - '@jsonforms/examples > @jsonforms/core > lodash':
+        patched: '2019-07-04T01:47:02.469Z'
diff --git a/packages/example/package.json b/packages/example/package.json
index f32decb714..88275acb78 100644
--- a/packages/example/package.json
+++ b/packages/example/package.json
@@ -10,10 +10,14 @@
     "lodash": "^4.17.4",
     "react": "^16.4.0",
     "react-dom": "^16.4.0",
-    "redux": "^4.0.1"
+    "redux": "^4.0.1",
+    "snyk": "^1.189.0"
   },
   "scripts": {
     "build": "echo 'Nothing to do'",
-    "test": "echo 'Nothing to do'"
-  }
+    "test": "echo 'Nothing to do'",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
+  },
+  "snyk": true
 }