NAS-C01 試験問題を無料オンラインアクセス

You are packaging a Snowflake Native App that includes a file. During the packaging process, you encounter an error stating that a required Python package, 'pandas', is not found. However, you have included a 'requirements.txt' file in the application bundle with 'pandas' listed as a dependency. What is the MOST likely cause of this error, and what steps can you take to resolve it?

• A.The 'requirements.txt' file needs to be converted to a 'setup.py' file for Snowflake to recognize the dependencies correctly.
• B.Snowflake does not automatically install packages from 'requirements.txt' during packaging. You must manually upload the pandas package to a Snowflake stage and import it within your 'streamlit.py' file.
• C.The 'requirements.txt' file is not being correctly processed by the Snowflake Native App build system. Ensure the file is in the root directory of the application bundle and is properly formatted.
• D.Snowflake automatically installs all packages listed in 'requirements.txt' when the application is packaged, so the issue must lie elsewhere, such as a typo in the package name.

A consumer installs a Snowflake Native Application from the Marketplace. The application requires access to a specific table, 'CUSTOMER DATA' , in the consumer's account. Which of the following steps are essential for the consumer to properly grant the application the necessary permissions, following least privilege principles, and ensuring the application functions as intended? Assume the application developer has properly requested the table grant in the setup script.

• A.Grant the 'USAGE privilege on the database and schema containing 'CUSTOMER_DATA' to the application role and then grant 'SELECT on the 'CUSTOMER DATA table to the application role.
• B.Grant the 'SELECT privilege directly on the 'CUSTOMER_DATA' table to the 'SNOWFLAKE.APP_ROLE' role associated with the application instance.
• C.Grant 'OWNERSHIP' on the "CUSTOMER_DATR table to the application role. This provides the application with complete control over the table.
• D.Grant the 'IMPORTED PRIVILEGES privilege on the database containing 'CUSTOMER_DATX to the application role created during installation.
• E.Create a share from the provider account granting access to the 'CUSTOMER DATA' table and import it into the consumer account.

A data science team is developing a Native App on Snowflake that requires access to data from multiple customer accounts (Reader Accounts). They need to ensure strict data governance and minimize the risk of data leakage. Which of the following approaches provides the MOST secure and scalable solution for accessing and managing this cross-account data?

• A.Create a shared database from each consumer account containing views over the required tables, granting SELECT privileges on these views to the application role.
• B.Utilize secure data sharing with data clean rooms, exposing the required datasets via views on each data clean room.
• C.Implement a data access service within the Native App that uses external functions to query data from consumer accounts, relying on network policies for security.
• D.Grant SELECT privileges directly to the application role on all relevant tables in the consumer accounts.
• E.Package the data extraction logic directly into the Native App using User-Defined Functions (UDFs) that establish secure connections to each consumer account using separate credentials stored securely within the application package.

You are building a Snowflake Native Application that needs to store configuration data within the application package. This configuration data needs to be accessible by all components of the application, but should not be directly exposed to the consumer. What is the RECOMMENDED approach to securely store and access this configuration data?

• A.Store the configuration data in a JSON file within a stage in the provider account and grant the application role USAGE privilege to the stage.
• B.Store the configuration in a file within the application package and load it into a temporary table during application initialization. Only grant access to the application role.
• C.Encrypt the configuration data and store it in a named internal stage within the application package. Create a UDF within the application to decrypt and retrieve the data when needed.
• D.Store the configuration data as environment variables within the application's setup script.
• E.Store the configuration data in a dedicated table within the application database and grant SELECT privilege only to the application role.

A Native Application package contains a secure view that exposes customer dat a. The application provider wants to ensure that only the application itself, and not the consumer's roles, can access the underlying table. They have granted OWNERSHIP on the table to the application. Which of the following SQL statements would be MOST effective in managing privileges so that the application package can securely access customer data and consumers cannot directly access it via their own roles?

• A.GRANT SELECT ON TABLE .. TO APPLICATION PACKAGE;
• B.REVOKE ALL PRIVILEGES ON TABLE .. FROM ROLE PUBLIC; GRANT SELECT ON TABLE .. TO APPLICATION PACKAGE;
• C.GRANT SELECT ON TABLE .. TO APPLICATION PACKAGE; REVOKE SELECT ON TABLE FROM ROLE PUBLIC;
• D.No additional privileges are needed as the application package has ownership of the object.
• E.GRANT SELECT ON TABLE .. TO APPLICATION ROLE ;