Agents run read-only SQL to answer data questions.
Data
Snowflake MCP server
Give AI agents governed access to the Snowflake MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
What is the Snowflake MCP server?
The Snowflake MCP server is an open Model Context Protocol (MCP) server that connects AI agents to your Snowflake databases, schemas, and warehouses. Through it an agent can run queries, inspect schema, and read usage without bespoke integration code, while the Averta MCP Gateway keeps every query scoped and audited.
snowflake-execute-query
Run SQL queries against a warehouse.
snowflake-list-databases
List databases and their owners.
snowflake-list-tables
List tables in a schema.
snowflake-describe-table
Read a table's columns and types.
snowflake-list-warehouses
List warehouses and their sizes.
snowflake-query-history
Read recent query history and durations.
snowflake-list-schemas
List schemas within a database.
snowflake-sample-table
Read a sample of rows from a table.
snowflake-get-usage
Read credit and storage usage.
snowflake-list-roles
List roles and their grants.
Why the Averta MCP Gateway
Centralized governance
Unified authentication, audit logging, and rate control for every Snowflake MCP connection.
Observability and control
Real-time visibility into usage, anomalies, and SLA compliance across every request.
One-click deployment
Enable the Snowflake MCP server for your AI teams through one governed gateway, with no manual setup.
Enterprise hardening
High availability, security, and compliance alignment turn MCP from a developer utility into production-grade infrastructure.
OAuth and SSO enforcement
Enterprise authentication and SSO applied automatically to every Snowflake endpoint.
Shared and per-user auth
Configure service accounts or per-user access, with secrets protected and centralized revocation.
One managed endpoint
Connect agents to Snowflake through a single governed endpoint instead of locally run servers, improving your security posture.
Granular tool access control
Allow only the tools each role needs. Enable read-only access and block write tools like create and delete.
Works with every major AI platform
ChatGPT
Gemini
Mistral
Claude Code
Cursor
Windsurf
Cognition
OpenCode
Continue
Manus
Hermes
Lindy
OpenClaw
Your ownBuilt for enterprise teams.
Cloud, private VPC, embedded SDK, or gateway integration. Run Averta where your data, policies, and auditors need it.
Cloud (SaaS)
Fully managed by Averta. Fastest path to production, no infrastructure to run.
Private / VPC
Deploy in your own environment, so data never leaves your boundary.
Embedded SDK & Proxy
Drop Averta into your stack at the SDK or proxy layer, wherever your agents run.
Gateway Integration
Route agent traffic through the gateway, so policy and audit apply at the edge.
Snowflake MCP use cases
Where teams put the Snowflake MCP server to work, governed end to end through the Averta MCP Gateway.
Snowflake MCP · Analytics queriesWhat was revenue by region last quarter?
YouSummarized revenue by region.
- Running a read-only query
- Aggregating by region
All actions logged and governed
Powering safe AI execution at leading teams.
Cyfrin secures its production AI agents with Averta.
Book a demo“Averta gave our agents enforceable boundaries for the dev environment, so instructions like ‘don’t read .env files’ became policy instead of polite suggestions.”
Mikhail Karan
Head of Engineering
Explore other MCP servers
Browse all
Gmail MCP server
Productivity
Give AI agents governed access to the Gmail MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
AWS MCP server
Cloud infrastructure
Give AI agents governed access to the AWS MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
Sentry MCP server
Observability
Give AI agents governed access to the Sentry MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
Postgres MCP server
Database
Give AI agents governed access to the Postgres MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
GitLab MCP server
Developer tools
Give AI agents governed access to the GitLab MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
Figma MCP server
Design
Give AI agents governed access to the Figma MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
Jira MCP server
Project management
Give AI agents governed access to the Jira MCP server through one audited gateway. Scoped permissions, full observability, and tamper-evident logs on every tool call.
Snowflake MCP server, answered
Security and setup questions teams ask before connecting the Snowflake MCP server to AI agents.
Yes. The Averta MCP Gateway sits between your AI agents and any MCP server, giving each agent scoped, per-agent permissions, applying allow, escalate, or block policies on every tool call, and recording a tamper-evident audit of every action. The “Why the Averta MCP Gateway” section on this page covers what it enforces.
It is as safe as the controls around it. The server can run SQL against sensitive data through one connection, so unscoped access is the real risk. The Averta MCP Gateway enforces read-only or per-role limits and records every query.
Apply tool-level policy through the Averta MCP Gateway so reads run automatically while writes, schema changes, and drops escalate for approval. Every statement is logged.
Route agents through Averta's MCP Gateway for scoped per-agent permissions, tool-level policy, and tamper-evident audit across every Snowflake action.
Yes. The Snowflake MCP server can run the SQL that loads and transforms data, alongside read queries. That write power is exactly why governance matters: through the Averta MCP Gateway reads run automatically while loads and schema changes escalate for approval, all logged.
Yes. Snowflake provides an official MCP server. Routing it through the Averta MCP Gateway gives each agent scoped, read-first access with a tamper-evident audit trail.
See Averta OS in action
Book a demo and see how Averta OS secures your AI agents from input to execution.
Book a demo