Upwind Plugin for Steampipe

Use SQL to query vulnerabilities, configurations, and security findings from Upwind.

Quick start

Installation

Clone and build the plugin locally:

git clone https://github.com/tektite-io/steampipe-plugin-upwind.git
cd steampipe-plugin-upwind
make install-dev

Configuration

Configure your credentials in ~/.steampipe/config/upwind.spc:

connection "upwind" {
  plugin = "tektite-io/upwind"

  # Upwind API credentials (required)
  # Get your credentials from: https://console.upwind.io/settings/api-keys
  client_id     = "your-client-id"
  client_secret = "your-client-secret"
  org_id        = "your-organization-id"

  # Optional: Number of results per page (default: 100, max: 10000)
  # per_page = 100
}

Query Examples

Run a query to find critical vulnerabilities:

select
  id,
  vulnerability_name,
  vulnerability_cvss_v3_severity,
  resource_name,
  resource_type
from
  upwind_vulnerability_findings
where
  vulnerability_cvss_v3_severity = 'CRITICAL';

Developing

Prerequisites

• Steampipe
• Go 1.23 or higher

Clone the Repository

git clone https://github.com/tektite-io/steampipe-plugin-upwind.git
cd steampipe-plugin-upwind

Build and Install

Build for development (installs to local plugin path):

make install-dev

Build for production (linux/amd64):

make install-prod

Configuration

cp config/upwind.spc ~/.steampipe/config/upwind.spc
vi ~/.steampipe/config/upwind.spc

Test the Plugin

steampipe query
> .inspect upwind
> select * from upwind_vulnerability_findings limit 5;

Version Management

The plugin version is managed in upwind/version.go. To check the current version:

make version

Documentation

• Writing Steampipe plugins
• Writing your first table
• Upwind API Documentation

License

This project is licensed under the Mozilla Public License 2.0.

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.