diff --git a/trace/.snyk b/trace/.snyk
new file mode 100644
index 0000000000..82f56ba1d8
--- /dev/null
+++ b/trace/.snyk
@@ -0,0 +1,22 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.12.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:hoek:20180212':
+    - '@google/cloud-trace > gcp-metadata > retry-request > request > hawk > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
+    - '@google/cloud-trace > gcp-metadata > retry-request > request > hawk > boom > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
+    - '@google/cloud-trace > gcp-metadata > retry-request > request > hawk > sntp > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
+    - '@google/cloud-trace > gcp-metadata > retry-request > request > hawk > cryptiles > boom > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
+    - '@google/cloud-trace > @google-cloud/common > retry-request > request > hawk > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
+    - '@google/cloud-trace > @google-cloud/common > retry-request > request > hawk > boom > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
+    - '@google/cloud-trace > @google-cloud/common > retry-request > request > hawk > sntp > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
+    - '@google/cloud-trace > @google-cloud/common > retry-request > request > hawk > cryptiles > boom > hoek':
+        patched: '2018-06-19T03:09:45.049Z'
diff --git a/trace/package.json b/trace/package.json
index 7d2bcdfd80..d1c53023f3 100644
--- a/trace/package.json
+++ b/trace/package.json
@@ -8,11 +8,15 @@
     "node": ">=4.3.2"
   },
   "scripts": {
-    "start": "node app.js"
+    "start": "node app.js",
+    "snyk-protect": "snyk protect",
+    "prepare": "npm run snyk-protect"
   },
   "dependencies": {
     "@google/cloud-trace": "0.6.1",
     "express": "4.14.1",
-    "request": "2.79.0"
-  }
+    "request": "2.82.0",
+    "snyk": "^1.83.0"
+  },
+  "snyk": true
 }