diff --git a/.snyk b/.snyk
new file mode 100644
index 00000000..e007b42f
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,33 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:debug:20170905':
+    - socketio > socket.io > socket.io-parser > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-adapter > socket.io-parser > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-client > socket.io-parser > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > engine.io > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-adapter > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-client > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-client > engine.io-client > debug:
+        patched: '2023-03-25T00:39:30.186Z'
+  'npm:ms:20170412':
+    - socketio > socket.io > debug > ms:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > engine.io > debug > ms:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-adapter > debug > ms:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-client > debug > ms:
+        patched: '2023-03-25T00:39:30.186Z'
+    - socketio > socket.io > socket.io-client > engine.io-client > debug > ms:
+        patched: '2023-03-25T00:39:30.186Z'
diff --git a/package.json b/package.json
index fb39ed91..5cca6e29 100644
--- a/package.json
+++ b/package.json
@@ -11,7 +11,7 @@
   "license": "MIT",
   "dependencies": {
     "async": "2.1.4",
-    "bignum": "^0.12.5",
+    "bignum": "^0.13.0",
     "bluebird": "3.4.7",
     "body-parser": "^1.16.0",
     "bufferutil": "^1.3.0",
@@ -20,9 +20,9 @@
     "concat-stream": "^1.6.0",
     "cors": "^2.8.1",
     "crypto": "0.0.3",
-    "debug": "2.5.1",
-    "express": "4.14.0",
-    "jsonwebtoken": "^7.2.1",
+    "debug": "2.6.9",
+    "express": "4.16.0",
+    "jsonwebtoken": "^8.0.0",
     "minimist": "1.2.0",
     "moment": "2.17.1",
     "mysql": "2.12.0",
@@ -32,17 +32,23 @@
     "range": "0.0.3",
     "redis": "^2.6.5",
     "request": "^2.79.0",
-    "request-json": "0.6.1",
+    "request-json": "0.6.3",
     "shapeshift.io": "1.3.0",
     "socketio": "^1.0.0",
     "sprintf-js": "^1.0.3",
     "sticky-cluster": "^0.3.1",
     "uuid": "3.0.1",
     "wallet-address-validator": "0.1.0",
-    "zmq": "^2.15.3"
+    "zmq": "^2.15.3",
+    "@snyk/protect": "latest"
   },
   "optionalDependencies": {
     "cryptonote-util": "git://github.com/Snipa22/node-cryptonote-util.git#xmr-Nan-2.0",
     "multi-hashing": "git+https://github.com/Snipa22/node-multi-hashing-aesni.git"
-  }
+  },
+  "scripts": {
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
+  },
+  "snyk": true
 }