Abstract: Systems and methods for generating object references with selectable scopes are provided. The systems and methods perform operations including calling, by a first entity, a reference generator function using one or more arguments associated with a database object that the first entity is authorized to access according to a first set of access privileges, the one or more arguments comprising a scope definition that defines persistence of a reference. The operations include obtaining, from the reference generator function, a reference to the database object, the reference persisting according to the scope definition. The operations include passing the reference to a second entity to enable the second entity to perform one or more database operations on the database object according to a second set of access privileges derived from the first set of access privileges.

Abstract: Row-level security (RLS) may provide fine-grained access control based on flexible, user-defined access policies to databases, tables, objects, and other data structures. A RLS policy may be an entity or object that defines rules for row access. A RLS policy may be decoupled or independent from any specific table. This allows more robust and flexible control. A RLS policy may then be attached to one or more tables. The RLS policy may include a Boolean-valued expression.

Abstract: A noisy aggregation constraint system receives a query for a shared dataset, where the query identifies an operation. The noisy aggregation constraint system accesses a set of data from the shared dataset to perform the operation, the set of data comprises data accessed from a table of the shared dataset. The system determines that an aggregation constraint policy is attached to the table, the policy restricts output of data values stored in the table. Based on the context of the query, the system determines that the aggregation constraint policy should be enforced in relation to the query. The system assigns a specified noise level to the shared dataset and generates an output based on the set of data and the operation; the output comprises data values added to the table based on the specified noise level.

Abstract: A method of manufacturing a tissue expander for implanting into a body of a living subject can include mixing granules of a solute with an elastomer. The method can further include forming a matrix with the elastomer. The granules can be embedded within the elastomer. The elastomer can define boundaries of a plurality of chambers within the matrix. The method can further include curing the elastomer, such that the boundaries of the matrix are permeable to water at a temperature between a desired temperature range.

Abstract: The invention provides a passive fluidics circuit for directing different fluids to a common volume, such as a reaction chamber or flow cell, without intermixing or cross contamination. The direction and rate of flow through junctions, nodes and passages of the fluidics circuit are controlled by the states of upstream valves (e.g. opened or closed), differential fluid pressures at circuit inlets or upstream reservoirs, flow path resistances, and the like. Free diffusion or leakage of fluids from unselected inlets into the common outlet or other inlets at junctions or nodes is prevented by the flow of the selected inlet fluid, a portion of which sweeps by the inlets of unselected fluids and exits the fluidics circuit by waste ports, thereby creating a barrier against undesired intermixing with the outlet flow through leakage or diffusion.

Abstract: An apparatus for use in manufacturing a component of an implantable medical device comprises a fixture comprising a first fixture member having a plurality of semi-circular recesses in a lower surface thereof, and a second fixture member having a plurality of semi-circular recesses in an upper surface thereof, the first and second fixture members being configured to be selectively fastened together via a plurality of fasteners, wherein in an assembled state of the fixture, each of the semi-circular recesses of the first fixture member lower surface is aligned with an opposing semi-circular recess in the second fixture member upper surface to define a plurality of workpiece openings each dimensioned to receive and secure a respective work piece to be machined to the fixture.

Abstract: Systems and methods for managing column hiding are provided. The systems and methods receive, from a client device, a query associated with a table. The systems and methods determine an access restriction associated with the client device. The systems and methods identify a column of the table that is restricted by the access restriction associated with the client device. In response to identifying the column of the table that is restricted by the access restriction associated with the client device, the systems and methods provide a result of the query that excludes data corresponding to the column.

Abstract: A control system for a building includes a controller configured to control a heating, ventilation, and air conditioning (HVAC) system configured to condition a space within the building. An electronic device is configured to be in electronic communication with the controller and provides a first output to the controller that corresponds to a first state of the electronic device. The electronic device provides a second output to the controller that corresponds to a second state of the electronic device. In response to receiving one of the first output or the second output, the controller is configured to change a state of the HVAC system from a first state to a second state. In response to receiving the other of the first output or the second output, the controller is configured to change the state of the HVAC system from the second state to a third state.

Abstract: The cloud data platform receives a first query directed towards a shared dataset, the first query identifying a first operation. The platform accesses a first set of data from the shared dataset to perform the first operation, the first set of data including data accessed from a first table of the shared dataset. The cloud data platform determines that an aggregation constraint policy is attached to the first table, the aggregation constraint policy restricts output of data values stored in the first table and enforces the aggregation constraint policy on the first query based on a context of the first query. The cloud data platform generates an output to the first query based on the first set of data and the first operation, based on enforcing the aggregation constraint policy on the first query.

Abstract: Systems, computer program products, and methods are described herein for assessing entity strategic impact using aggregated data sources. The method includes receiving at least one strategic impact indicator from each of at least two strategic impact data sources. The at least one strategic impact indicator relates to an entity strategic impact of an entity. The method also includes determining, via a machine learning model, a strategic impact confidence level for the entity. The strategic impact confidence level indicates a likelihood of an emerging strategic impact relating to the entity. The method further includes generating a strategic impact assessment report. The strategic impact assessment report indicates at least the strategic impact confidence level for the entity. The strategic impact assessment report also includes a strategic impact alert in an instance in which the strategic impact confidence level is below a threshold strategic impact level.

Abstract: Systems and methods for analyzing ultra-low level concentration nanoparticles in semiconductor cleaning chemicals by single particle inductively coupled plasma mass spectrometry (spICP-MS) are described. In aspects, the methods described herein include determination factors that are specific to each of the chemical matrix and the type of analyte associated with the nanoparticles present in a fluid sample for both a particle baseline intensity value and a nanoparticle detection threshold.

Abstract: Systems and methods for managing column hiding are provided. The systems and methods receive, from a client device, a query associated with a table. The systems and methods determine an access restriction associated with the client device. The systems and methods identify a column of the table that is restricted by the access restriction associated with the client device. In response to identifying the column of the table that is restricted by the access restriction associated with the client device, the systems and methods provide a result of the query that excludes data corresponding to the column.

Abstract: Techniques for creating, sharing, and using bundles (also referred to as packages) in a multi-tenant database are described herein. A bundle is a schema object with associated hidden schemas. A bundle can be created by a provider user and can be shared with a plurality of consumer users. The bundle can be used to enable code sharing and distribution without losing control while maintaining security protocols.

Abstract: A microphone module comprises a housing, an audio bus, and a first plurality of microphones in communication with the audio bus. The microphone module further comprises a module processor in communication with the first plurality of microphones and the audio bus. The module processor is configured to detect the presence of an array processor in communication with the audio bus, detect the presence of a second microphone module in communication with the audio bus, and configure the audio bus to pass audio signals from both the first plurality of microphones and the second microphone module to the array processor.

Abstract: An anti-tip bracket assembly for a window air conditioning unit is disclosed, and more particularly, an anti-tip bracket assembly that pertains to securing a window air conditioning unit within a window assembly while allowing a user to open and close the window assembly in a safe and convenient manner is disclosed.

Abstract: The disclosure describes an environmental control device with a head unit including processing circuitry and one or more sensors configured to send signals to an environmental control system to make adjustments to the room environment. The head unit is configured to connect to a wall plate that supports the head unit. The wall plate may include an ID device configured to identify the type environmental control equipment to which the wall plate is configured to connect. Once connected to the wall plate the head unit may detect the ID device, determine an ID value from the ID device and customize a presentation of setup parameters for the head unit.

Abstract: A method includes identifying a middlebox receiving network flow and communicating with one or more backend virtual machines. The method also includes receiving flow statistics corresponding to the network flow of the middlebox and determining whether the flow statistics satisfy an offload rule. The offload rule indicates when to migrate the network flow from the middlebox to an end host. When the flow statistics satisfy the offload rule, the method also includes migrating the network flow from the middlebox to the end host.

Abstract: A database system facilitates secure data sharing by implementing projection constraints within a query processing framework. Upon receiving a query directed to a shared dataset, the system, utilizing hardware processors, identifies a subset of data within the dataset that is subject to a projection constraint policy. The applicability of the projection constraint is determined based on the context of the query, which is derived from a data sharing agreement. The system processes the query by selectively restricting the projection of data values from constrained columns, while allowing specific operations to be performed on the data. The output generated in response to the query is compliant with the projection constraint policy, providing derived data based on the allowed operations without revealing the actual data values. This ensures the confidentiality of sensitive information while enabling collaborative data analysis and sharing among various users of the database system.

Abstract: A system for enforcing projection constraints on data values stored in specified variables of a shared dataset of a cloud data platform. A request is received from a first account of the cloud data platform that identifies a first operation to be performed on the shared dataset. A first set of data, including data accessed from a first variable, is accessed from the shared dataset to use in performing the first operation. A projection constraint policy attached to the first variable of the shared dataset is determined, and the projection constraint policy is further determined to be enforced based on the request. Based on the first set of data and the first operation, an output to the first request is generated.

Abstract: Aspects of the present disclosure address systems, methods, and devices for tracking object dependencies in a cloud database system. An object dependency created between a referencing object and a referenced object is detected. Based on detecting the object dependency, a dependency record is generated. The dependency record includes dependency information describing the object dependency between the reference object and the referenced object. The dependency record is stored in a database of dependency records.