diff --git a/.snyk b/.snyk
index d88b927..1347d6e 100644
--- a/.snyk
+++ b/.snyk
@@ -1,8 +1,31 @@
 # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
-version: v1.10.1
+version: v1.13.5
 ignore: {}
 # patches apply the minimum changes required to fix a vulnerability
 patch:
   'npm:uglify-js:20151024':
     - jade > transformers > uglify-js:
         patched: '2018-01-18T00:15:09.152Z'
+  SNYK-JS-LODASH-450202:
+    - snyk > snyk-nodejs-lockfile-parser > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > snyk-nuget-plugin > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > @snyk/dep-graph > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > inquirer > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > snyk-config > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > snyk-mvn-plugin > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > snyk-go-plugin > graphlib > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > snyk-nodejs-lockfile-parser > graphlib > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > snyk-php-plugin > @snyk/composer-lockfile-parser > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
+    - snyk > @snyk/dep-graph > graphlib > lodash:
+        patched: '2019-07-04T04:53:52.898Z'
diff --git a/package.json b/package.json
index b091d65..c89f806 100644
--- a/package.json
+++ b/package.json
@@ -11,13 +11,12 @@
     "body-parser": "~1.18.2",
     "cookie-parser": "~1.3.4",
     "debug": "~2.6.9",
-    "morgan": "~1.9.0",
+    "morgan": "~1.5.1",
     "express": "~4.16.0",
     "jade": "~1.9.2",
-    "morgan": "~1.5.1",
     "serve-favicon": "~2.4.5",
     "oracledb": "~0.3.1",
-    "snyk": "^1.68.1"
+    "snyk": "^1.189.0"
   },
   "snyk": true
 }
\ No newline at end of file