diff --git a/.snyk b/.snyk
index c0fb5181..e8983c34 100644
--- a/.snyk
+++ b/.snyk
@@ -1,5 +1,5 @@
 # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
-version: v1.12.0
+version: v1.13.5
 ignore: {}
 # patches apply the minimum changes required to fix a vulnerability
 patch:
@@ -10,3 +10,10 @@ patch:
         patched: '2018-10-19T12:33:25.180Z'
     - '@dadi/logger > aws-kinesis-writable > lodash':
         patched: '2018-10-19T12:33:25.180Z'
+  SNYK-JS-LODASH-450202:
+    - async > lodash:
+        patched: '2019-07-03T21:17:05.205Z'
+    - '@dadi/cache > ioredis > lodash':
+        patched: '2019-07-03T21:17:05.205Z'
+    - aws-sdk > xml2js > xmlbuilder > lodash:
+        patched: '2019-07-03T21:17:05.205Z'
diff --git a/package.json b/package.json
index 1e81b156..487ac80e 100644
--- a/package.json
+++ b/package.json
@@ -11,7 +11,8 @@
     "posttest": "./scripts/coverage.js",
     "start": "node start.js --node_env=development",
     "snyk-protect": "snyk protect",
-    "prepare": "npm run snyk-protect"
+    "prepare": "npm run snyk-protect",
+    "prepublish": "npm run snyk-protect"
   },
   "commitlint": {
     "extends": [
@@ -62,7 +63,8 @@
     "stack-trace": "latest",
     "stream-cache": "0.0.2",
     "streamifier": "^0.1.1",
-    "vary": "^1.1.2"
+    "vary": "^1.1.2",
+    "snyk": "^1.189.0"
   },
   "devDependencies": {
     "@commitlint/cli": "^7.5.2",
@@ -87,7 +89,6 @@
     "proxyquire": "^1.7.4",
     "should": "4.0.4",
     "sinon": "2.3.2",
-    "snyk": "^1.147.3",
     "supertest": "^3.1.0",
     "uuid": "^3.3.2"
   },