{% hint style="warning" %}
Release status
Snowflake Data Share is in Closed Beta and available only for customers:
- Under the Enterprise plan. For more information, see Plans and pricing.
- For more information, contact your Snyk Account Executive.
- With an active Snowflake account.
Customers can try the integration for a 60-day beta period starting from their initial access date. For access beyond 60 days, the customer is expected to be on the Enterprise Plus SKU. During beta, the data share will be limited to a capacity of 10 million records per share. {% endhint %}
With the new Snowflake Data Share integration, your data science, BI and AppSec teams can securely access the same underlying data available in Snyk Reporting, but within your own Snowflake account, unlocking powerful new analytical tools to better understand and visualize Snyk data.
Use this integration to enable teams to rapidly build exploratory and custom analytics using the ecosystem of tools that Snowflake supports. Customers can connect Snyk data to BI tools like PowerBI, Tableau, and Looker Data Studio or build custom Streamlit apps.
Having Snyk datasets directly in your Snowflake account opens doors for combining Snyk data with additional data sources, which contributes a great deal to the organization-level holistic AppSec view.
Snowflake Data Share allows companies to provide data to their customers in a secure, simple, and quick manner. With Snowflake data shares, the data is not exchanged between the accounts; instead, the data consumer is granted with read-only access to the shared database through their own Snowflake account.
- Storage
As data is not being transferred during data sharing, there will be no additional storage costs attributed to your Snowflake account. - Compute Resources
Snowflake will charge for compute resources that are used to query the data share.
Snyk Snowflake Data Share can be used for various use cases and can answer countless security and business-related questions. Some of these use cases include:
- Enhance the AppSec posture visibility for the CISO and management team.
Streamline Snyk data to your BI platforms and existing security dashboards and reflect performance metrics and KPI's, for example, MTTR, SLA compliance, remediation trends, and so on. - Answer specific questions or surface unique insights.
Better understand risk exposure trends, such as tracking total issues above a specific risk score only affecting certain Project collections or tags across all Snyk Groups whilst filtering for only main or master branches.
Measure the performance of fix behaviour against SLA. For example, enter customer SLA targets and track towards those goals.
Build custom prevention reporting to understand shift left impact. For example, view trends in preventable Open Source vulnerabilities across all Snyk Groups, filtered by specific severities and risk scores.
Snyk Data Share for Snowflake is included within the Enterprise Plus package. Follow the steps below to join Snyk Enterprise Plus package and request a Snowflake Data Share access:
- Contact your Snyk Account Executive about the Snyk Enterprise Plus package
- To enable Snowflake Data Share, provide the following Snowflake account details to your Snyk contact person (see Finding the Organization and Account Name for an Account in the Snowflake documentation):
- Account Name.
- Organization Name.
- If you prefer to limit the data share to a specific set of Snyk Groups, mention the relevant Group IDs (the ID is available in the Snyk Group Settings).
- Once we receive the Snowflake account details, our team will prepare the Data Share. You should expect to see your data within 24 hours.
The data share will be provided as a Privately Shared Listing. If it is the first time that you consume Snowflake data shares, proceed with the steps below; otherwise, proceed to Create a database from Snyk Data Share:
- Your Snowflake Organization admin (requires ORGADMIN role) should accept Snowflake Provider and Consumer Terms of Service.
- Set up the required privileges (requires ACCOUNTADMIN role or another role with CREATE DATABASE and IMPORT SHARE privileges).
To get access and be able to query the data share, follow the steps below to create a database from the data share:
- A Snowflake user with ACCOUNTADMIN role (or a role with CREATE DATABASE and IMPORT SHARE privileges) should view the available shares.
- Create a database from Snyk data share.
Note: it can take about ten minutes for the data to be provisioned and ready to use, depending on your cloud region - Grant privileges to the shared database.
- Snyk Snowflake Data Share is scoped to the data of a requested set of Snyk Groups. A customer can request access to all Snyk groups or to specific ones.
- Snyk shares all the data that is available for the requested Snyk Groups as exists in the Snyk database, with no additional limitations in the data share itself.
- The data share itself is provided as a read-only database and is accessible according to Snowflake standard role-based access control.
Snyk Data Share focuses on issues data.
There are over 50 fields available to query, including:
- Issue details: Issue Type, Issue Severity, Issue Status, CVE, CWE, First/Last Introduced, Computed Fixability, Score, Exploit Maturity, and so on.
- Context details: Organization Name, Project Target, Project Name, Project Origin, etc.
Review the issue columns dictionary to learn more about the Snowflake data share fields that are also available in Snyk Reports.
{% hint style="info" %} To allow greater flexibility, the data share includes issues that are unavailable in Snyk reports:
- Deleted issues
- Issues of Projects that are not monitored
To reach the same figures as presented in Snyk reports, select only issues with:
- DELETED_AT is NULL
- IS_PROJECT_MONITORED = TRUE {% endhint %}
The data available within the share refreshes within approximately two hours. This process occurs automatically and doesn't require any action from the customer's end.