v0.19.0: Dynamic table aggregation, Kubernetes CRDs →

select * from cloud;

 

Get Steampipe

Open source
No DB required
200+ data sources
Download CLI
Features

Query like it's 1992

Stop hacking around with scripts; get real work done with
the data access standard that's been rocking it for 4 decades.

>
select 
  runtime,
  count(*)
from 
  aws_lambda_function
group by 
  runtime;
 +------------+-------+
 |  runtime   | count |
 +------------+-------+
 | nodejs12.x |     1 |
 | python3.7  |     1 |
 | python3.8  |     2 |
 +------------+-------+
SQL? Really?

Yes, SQL. It is an elegant and powerful tool that makes working with multiple APIs simple. SQL levels the playing field for your team, easily integrates with other systems and accelerates delivery.

>
select
  aws.name aws_user_name,
  slack.id as slack_user_id,
  slack.display_name as slack_name
from
  aws_iam_user as aws,
  slack_user as slack
where
  aws.name = slack.email;
+--------------------------+---------------+------------+
|     aws_user_name        | slack_user_id | slack_name |
+--------------------------+---------------+------------+
| dwight@dundermifflin.com | U2EMB8HLP     | dwight     |
| jim@dundermifflin.com    | U02HE4Z7E     | jim        |
+--------------------------+---------------+------------+
Explore, connect and join data.

Painlessly join live cloud configuration data with internal or external data sets to create new insights.

>
select 
  domain, 
  expiration_date 
from 
  whois_domain 
where 
  domain in ('apple.com','steampipe.io');
+--------------+---------------------+
|    domain    |   expiration_date   |
+--------------+---------------------+
| apple.com    | 2021-02-20 05:00:00 |
| steampipe.io | 2021-10-13 19:28:29 |
+--------------+---------------------+
The cloud is a live database.

Stop building and maintaining out-of-sync lists and point-in-time environment snapshots; Steampipe's live tables give you the current view of any resource right now.

Use Cases

You've got questions, Steampipe has answers.

Which users have MFA enabled right now?
Compliance
select
  id,
  display_name,
  real_name,
  has_2fa
from
  slack_user;
What security groups are open to the world?
Security
select 
  group_name,
  group_id
from
  aws_vpc_security_group_rule
where 
  type = 'ingress'
  and cidr_ip = '0.0.0.0/0';
Which resources aren't tagged correctly?
Operations
select 
  id,
  name
from
  azure_compute_image
where
  tags -> 'owner' is null or
  tags -> 'app_id' is null;
What storage volumes are not in use?
Cost
select 
  volume_id,
  volume_type
from 
  aws_ebs_volume
where
  attachments is null;
How it works

Get SQL Superpowers in < 60 Seconds

$
steampipe plugin install aws
⠇ Installing plugin aws...
Installed plugin: aws
Install your first plugin

Steampipe relies on plugins to implement the specific interfaces to cloud services, files, and other resources. Without a plugin, there is nothing to query!

>
.tables
+----------------------+-------------------------+
| Table                | Description             |
+----------------------+-------------------------+
| aws_ebs_snapshot     | AWS EBS Snapshots       |
| aws_ebs_volume       | AWS EBS Volumes         |
| aws_iam_user         | AWS IAM Users           |
| aws_iam_role         | AWS IAM Roles           |
  ...                    ...
| aws_vpc_route_table  | AWS VPC Route Tables    |
| aws_vpc_subnet       | AWS VPC Subnets         |
+------------------+-----------------------------+
Browse available tables

Use one of Steampipe's 300+ data sources or roll your own. Explore metadata and documentation for our community plugins on the Steampipe Hub.

>
.inspect aws.aws_iam_role
+----------------------+------------+--------------
| Column               | Type       | Description 
+----------------------+------------+--------------
| name                 | text       | The friendly 
| role_id              | text       | The stable an
| path                 | text       | The path asso
| arn                  | text       | The AWS resou
| create_date          | timestamp  | The date and 
| assume_role_policy   | jsonb      | The IAM Polic
Explore some metadata

Steampipe organizes your cloud metadata into tables and fields that are easily discoverable and readable by humans!

>
select create_date, arn 
from   aws_iam_role;
+----------------------+---------------------------
| Create Date          | ARN        
+----------------------+---------------------------
| 2019-08-12 16:42 EST | arn:aws:iam::123456789012:
| 2020-02-29 12:12 EST | arn:aws:iam::123456789012:
| 2020-10-11 13:24 EST | arn:aws:iam::123456789012:
| 2020-12-02 18:01 EST | arn:aws:iam::123456789012:
+----------------------+---------------------------
Write your first query

Every journey begins with the first step. Let us know what your first query was @steampipeio and we will send you a steampipe sticker.

Get cloud
work done.

Get cloud
work done.

Download Steampipe CLI