diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..feec808
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,9 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.8.0
+# ignores vulnerabilities until expiry date; change duration by modifying expiry date
+ignore:
+  'npm:string:20170907':
+    - remark-lint-are-links-valid-alive > broken-link-checker > bhttp > string:
+        reason: None given
+        expires: '2017-12-16T20:29:28.612Z'
+patch: {}
diff --git a/package.json b/package.json
index 5f0d7dd..222f5a1 100644
--- a/package.json
+++ b/package.json
@@ -4,7 +4,9 @@
   "description": "A curated list of cryptography resources and links.",
   "main": "index.js",
   "scripts": {
-    "test": "remark README.md CONTRIBUTING.md -f"
+    "test": "remark README.md CONTRIBUTING.md -f",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "repository": {
     "type": "git",
@@ -28,7 +30,8 @@
     "remark-lint-alphabetize-lists": "^2.0.0",
     "remark-lint-are-links-valid-alive": "^0.2.1",
     "remark-lint-are-links-valid-duplicate": "^0.2.1",
-    "remark-preset-lint-recommended": "^3.0.0"
+    "remark-preset-lint-recommended": "^3.0.0",
+    "snyk": "^1.49.3"
   },
   "remarkConfig": {
     "plugins": [
@@ -44,5 +47,6 @@
     "settings": {
       "commonmark": true
     }
-  }
+  },
+  "snyk": true
 }