snowflake-policy-guardrails

Solid

Implement Snowflake governance guardrails with network rules, session policies, authentication policies, and automated compliance checks. Use when enforcing security policies, implementing data governance, or configuring automated compliance for Snowflake. Trigger with phrases like "snowflake policy", "snowflake guardrails", "snowflake governance", "snowflake compliance", "snowflake enforce".

AI & Automation 2,266 stars 315 forks Updated today MIT

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Snowflake Policy & Guardrails ## Overview Automated policy enforcement and governance guardrails using Snowflake-native features: network rules, authentication policies, session policies, and object-level governance. ## Instructions ### Step 1: Network Rules and Policies ```sql -- Network rules (more granular than legacy network policies) CREATE OR REPLACE NETWORK RULE corp_vpn_rule TYPE = IPV4 MODE = INGRESS VALUE_LIST = ('203.0.113.0/24', '198.51.100.0/24'); CREATE OR REPLACE NETWORK RULE cloud_services_rule TYPE = HOST_PORT MODE = EGRESS VALUE_LIST = ('api.company.com:443', 'events.company.com:443'); -- Create network policy using rules CREATE OR REPLACE NETWORK POLICY prod_network_policy ALLOWED_NETWORK_RULE_LIST = (corp_vpn_rule) BLOCKED_NETWORK_RULE_LIST = (); -- Apply at account level ALTER ACCOUNT SET NETWORK_POLICY = prod_network_policy; -- Or per-user (service accounts can have different rules) ALTER USER svc_etl SET NETWORK_POLICY = prod_network_policy; ``` ### Step 2: Authentication Policies ```sql -- Require MFA for interactive users CREATE OR REPLACE AUTHENTICATION POLICY interactive_auth MFA_AUTHENTICATION_METHODS = ('TOTP') CLIENT_TYPES = ('SNOWFLAKE_UI', 'SNOWSQL') SECURITY_INTEGRATIONS = ('saml_sso'); -- Service accounts: key pair only, no password CREATE OR REPLACE AUTHENTICATION POLICY service_auth AUTHENTICATION_METHODS = ('KEYPAIR') CLIENT_TYPES = ('SNOWFLAKE_DRIVER') MFA_AUTHENTICATION_METHODS = (); -- Apply po...

Details

Author
jeremylongshore
Repository
jeremylongshore/claude-code-plugins-plus-skills
Created
7 months ago
Last Updated
today
Language
Python
License
MIT

Integrates with

Anthropic · AI

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

snowflake-security-basics

Apply Snowflake security best practices: network policies, key rotation, MFA, encryption, and least-privilege access. Use when securing Snowflake access, implementing network policies, or auditing security configuration. Trigger with phrases like "snowflake security", "snowflake network policy", "secure snowflake", "snowflake MFA", "snowflake encryption".

2,266 Updated today
jeremylongshore
AI & Automation Featured

snowflake-data-handling

Implement Snowflake data governance with masking policies, row access policies, tagging, and GDPR/CCPA compliance patterns. Use when handling PII, implementing column masking, configuring data classification, or ensuring compliance with privacy regulations in Snowflake. Trigger with phrases like "snowflake data governance", "snowflake masking", "snowflake PII", "snowflake GDPR", "snowflake row access policy", "snowflake tags".

2,266 Updated today
jeremylongshore
AI & Automation Featured

snowflake-enterprise-rbac

Configure Snowflake enterprise RBAC with system roles, custom role hierarchies, SSO/SCIM integration, and least-privilege access patterns. Use when implementing role-based access control, configuring SSO with SAML/OIDC, or setting up organization-level governance in Snowflake. Trigger with phrases like "snowflake RBAC", "snowflake roles", "snowflake SSO", "snowflake SCIM", "snowflake permissions", "snowflake access control".

2,266 Updated today
jeremylongshore
AI & Automation Solid

snowflake-reliability-patterns

Implement Snowflake reliability patterns: replication, failover, Time Travel recovery, and application-level resilience for Snowflake integrations. Use when building fault-tolerant pipelines, configuring disaster recovery, or adding resilience to production Snowflake services. Trigger with phrases like "snowflake reliability", "snowflake failover", "snowflake replication", "snowflake disaster recovery", "snowflake Time Travel".

2,266 Updated today
jeremylongshore
AI & Automation Featured

snowflake-known-pitfalls

Identify and avoid Snowflake anti-patterns and common mistakes in SQL, warehouse management, data loading, and access control. Use when reviewing Snowflake configurations, onboarding new users, or auditing existing Snowflake deployments for best practices. Trigger with phrases like "snowflake mistakes", "snowflake anti-patterns", "snowflake pitfalls", "snowflake what not to do", "snowflake code review".

2,266 Updated today
jeremylongshore