diff --git a/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap b/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap
index b96003fda5412ae7319dcee18ba3b42fb9ef4987..e4f34d30fdc9a1d71c40e324db745f812e75acbb 100644
--- a/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap
+++ b/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap
@@ -3,7 +3,6 @@
 exports[`workers/repository/init/vulnerability detectVulnerabilityAlerts() returns alerts and remediations 1`] = `
 Array [
   Object {
-    "enabled": false,
     "matchCurrentVersion": "= 1.8.2",
     "matchDatasources": Array [
       "npm",
diff --git a/lib/workers/repository/init/vulnerability.ts b/lib/workers/repository/init/vulnerability.ts
index b0dc3e7d29b991b49d3b32c4880c11766ce24e6d..439f1e944328aea593e1cbb59f8262a4c583e805 100644
--- a/lib/workers/repository/init/vulnerability.ts
+++ b/lib/workers/repository/init/vulnerability.ts
@@ -208,8 +208,6 @@ export async function detectVulnerabilityAlerts(
               prBodyNotes,
             };
             config.remediations[fileName].push(remediation);
-            // Disable the package rule as all vulnerabilities will be remediated via the lock file
-            matchRule.enabled = false;
           } else {
             // Remediate only direct dependencies
             matchRule = {