Osquery uses basic SQL commands to leverage a relational data-model to describe a device.

osquery

ok how do I make the magical mdfind table do my bidding, this is the complement from the CLI that works:
```mdfind -name pip- info```
but no matter what iteration I try (kMDItemFSName, kMDItemDisplayName, glob's, spaces) I can't seem to get any results from mdfind.query, using <@U1YQUKL3X>'s file table join syntax, e.g.:
```&gt; SELECT f.path FROM file AS f JOIN mdfind ON mdfind.path = f.path AND mdfind.query = "kMDItemFSName == 'pip-*info'";
&gt; SELECT f.path FROM file AS f JOIN mdfind ON mdfind.path = f.path AND mdfind.query = "kMDItemDisplayName == 'pip- info'"; ```
