Snowflake’s managed MCP servers work with external OAuth tokens — JWT-signed, role-scoped, and RBAC-enforced. Tested end-to-end with tool discovery and SQL execution.
A proof-of-concept that layers authentication, encryption, and multi-agent coordination onto MCP — with four security tiers from API keys to enterprise OAuth2 with audit trails.
A set of Rust-backed extensions for the Robyn web framework — Pydantic v2 validation, JWT/OAuth2 auth, token-bucket rate limiting, and auto-generated OpenAPI docs. Sub-microsecond overhead.
How to send security alerts from Snowflake directly to your SIEM using native webhook notification integrations — with working examples for Splunk HEC and Microsoft Sentinel, plus a hybrid approach for dynamic OAuth tokens.
How to execute SQL across Snowflake accounts using the SQL API with OAuth — covering Client Credentials (Entra ID), Self-Signed JWT (GCP), PAT, and Key-Pair authentication with full architecture diagrams and code.
A visual, hands-on explanation of JSON Web Tokens — what they contain, how signing works, why they expire, and how Snowflake uses them for External OAuth authentication.
The core challenge of AI agents: passing the human user’s identity through to Snowflake. This toolkit demonstrates JWT-to-PAT token exchange so agents execute as the actual user — with their roles, permissions, and full audit trail.
A patched, ready-to-deploy Apache NiFi 2.6.0 on SPCS — with fixes for ingress compatibility, a token debug UI, and a sample PostgreSQL-to-Snowflake CDC flow.