Use this skill to collect Snowflake AI and workload inventory as schema-valid
agent-bom inventory. Default to discover-only: write JSON to an
operator-selected path and stop.
read-only roles.
SNOWFLAKE_PASSWORD, private key contents, passphrases, or OAuth tokens.
is the evidence.
python examples/operator_pull/snowflake_inventory_adapter.py \
--account "$SNOWFLAKE_ACCOUNT" \
--user "$SNOWFLAKE_USER" \
--authenticator snowflake_jwt \
--source snowflake-skill-invoked \
--discovery-method skill_invoked_pull \
--output snowflake-inventory.json
Scan only when the operator asks for findings:
agent-bom agents --inventory snowflake-inventory.json --format json --output agent-bom-snowflake-findings.json
The emitted inventory carries `discovery_provenance.source_type:
skill_invoked_pull, observed_via: skill_invoked_pull, snowflake_sdk`,
sanitized metadata.permissions_used, and redacted credential material. If
schema validation fails, stop and fix the inventory instead of scanning a
best-effort summary.
共 8 个版本