Grant Usage permissions without allowing data to accesed

[MartinCairnsSQL]

I want to grant Alation the ability to run the get_ddl function without also granting read permissions.
From the documentation, the get_ddl function requires usage permissions on the database, schema and object.

Is there a way to grant usage permissions on all the functions, procedures and views in a database?
Similar to this grant Alation prerequisties
GRANT USAGE ON ALL FUNCTIONS IN DATABASE <database> TO ROLE <alation_role>;

[littleK0i]

For objects created via SnowDDL, you may add custom grants via technical roles. Technical role grants accept wildcards, like DATABASE.* or DATABASE.SCHEMA.*.

In general, these tools pretty much always end up requiring read access to data, one way or another. For example, they ask for this:

GRANT SELECT ON FUTURE TABLES IN SCHEMA <database.schema> TO ROLE <alation_role>;

This is it. Everything is exposed.

In my view, the best approach for such things is to run it inside your infrastructure or via Snowflake marketplace. SaaS which wants to hold credentials to your account should be disqualified.