v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/snowflake_compliance
Overview
1Dashboards
18Controls
11Queries
3Variables
GitHub

Query: monitoring_user_password_rotated_regularly

Usage

powerpipe query snowflake_compliance.query.monitoring_user_password_rotated_regularly

Steampipe Tables

snowflake_user
Snowflake plugin

SQL

select
  name as resource,
  case
    when name = 'SNOWFLAKE' then 'skip'
    when not has_password then 'skip'
    when now()::date - password_last_set_time::date > $1::int then 'alarm'
    else 'ok'
  end as status,
  case
    when name = 'SNOWFLAKE' then name || ' is a Snowflake Support user.'
    when not has_password then name || ' password not set.'
    else name || ' password rotated ' || (now()::date - password_last_set_time::date) || ' days ago.'
  end as reason,
  account
from
  snowflake_user;

Controls

The query is being used by the following controls: