公开(公告)号：US20240281530A1

公开(公告)日：2024-08-22

申请号：US18650636

申请日：2024-04-30

申请人： Snowflake Inc.

发明人： Damien Carru ,  Pui Kei Johnston Chu ,  Benoit Dageville ,  Iulia Ion ,  Unmesh Jagtap ,  Subramanian Muralidhar ,  James Pan ,  Nihar Pasala ,  Hrushikesh Shrinivas Paralikar ,  Jake Tsuyemura ,  Ryan Charles Quistorff ,  Rishabh Gupta

IPC分类号： G06F21/56 ,  G06F8/60

CPC分类号： G06F21/565 ,  G06F8/60 ,  G06F2221/033

摘要： An anti-abuse system is provided for a data-platform. An anti-abuse scanner of the data-platform detects a creation of an application package by a provider of content to the data platform where the application package includes a set of files for deployment on the data platform. The anti-abuse scanner performs a review o the set of files to detect malicious content where the review is based on a set of analysis rules and generates a deployment decision for the application package based on a result of the review.

公开(公告)号：US20240273179A1

公开(公告)日：2024-08-15

申请号：US18524999

申请日：2023-11-30

申请人： Snowflake Inc.

发明人： Rishabh Gupta ,  Hrushikesh Shrinivas Paralikar ,  Ryan Charles Quistorff ,  Sasha Leila Ronaghi

IPC分类号： G06F21/51 ,  G06F21/56 ,  G06F21/57

CPC分类号： G06F21/51 ,  G06F21/562 ,  G06F21/577 ,  G06F2221/033

摘要： An anti-abuse scanning system and method for an application deployment platform is provided. In some examples, when a provider submits a new application package, a scan scheduler periodically polls for and detects the new submission. An anti-abuse scan service parses the installer script to determine dependencies between a primary application source code scan, and secondary container image scans. The primary and secondary scans are queued by writing records to status tables. A scan manager polls the tables, detects pending scans, and invokes scanner services to analyze the application files and container images based on configured rules. An image service extracts and uploads container images. The anti-abuse scan service aggregates the primary and secondary scan results to determine an overall verdict for the application package. In some examples, the verdict can be an automatic approval, automatic rejection, or trigger a manual review.

公开(公告)号：US12001552B1

公开(公告)日：2024-06-04

申请号：US18168852

申请日：2023-02-14

申请人： Snowflake Inc.

发明人： Damien Carru ,  Pui Kei Johnston Chu ,  Benoit Dageville ,  Iulia Ion ,  Unmesh Jagtap ,  Subramanian Muralidhar ,  James Pan ,  Nihar Pasala ,  Hrushikesh Shrinivas Paralikar ,  Jake Tsuyemura ,  Ryan Charles Quistorff ,  Rishabh Gupta

IPC分类号： G06F21/56 ,  G06F8/60

CPC分类号： G06F21/565 ,  G06F8/60 ,  G06F2221/033

摘要： An anti-abuse system is provided for a data-platform. An anti-abuse scanner of the data-platform detects a creation of an application package by a provider of content to the data platform where the application package includes a set of files for deployment on the data platform. The anti-abuse scanner performs a review of the set of files to detect malicious content where the review is based on a set of analysis rules and generates a deployment decision for the application package based on a result of the review.