diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..885578b
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,8 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.22.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:handlebars:20151207':
+    - '@bigcommerce/stencil-paper-handlebars > handlebars':
+        patched: '2021-12-17T23:44:42.562Z'
diff --git a/package.json b/package.json
index 6930b5f..d1f664e 100644
--- a/package.json
+++ b/package.json
@@ -9,7 +9,9 @@
     "lint": "eslint .",
     "lint-and-fix": "eslint . --fix",
     "test": "lab -v -t 94 --ignore i18n,WebAssembly,SharedArrayBuffer,Atomics,BigUint64Array,BigInt64Array,BigInt,URL,URLSearchParams,TextEncoder,TextDecoder,queueMicrotask,FinalizationRegistry,WeakRef,plural,en,number,select spec",
-    "coverage": "lab -c -r console -o stdout -r html -o coverage.html spec"
+    "coverage": "lab -c -r console -o stdout -r html -o coverage.html spec",
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
   },
   "repository": {
     "type": "git",
@@ -26,12 +28,14 @@
   "dependencies": {
     "@bigcommerce/stencil-paper-handlebars": "4.4.9",
     "@messageformat/core": "^3.0.0",
-    "accept-language-parser": "~1.4.1"
+    "accept-language-parser": "~1.4.1",
+    "@snyk/protect": "latest"
   },
   "devDependencies": {
     "code": "~4.0.0",
     "eslint": "^7.8.1",
     "lab": "~13.0.1",
     "sinon": "~7.5.0"
-  }
+  },
+  "snyk": true
 }