The queries return fine, it was just a general question about how to do scheduled queries. For example a scheduled query that joins rows from socket_events and process_events every 30 seconds, should itbalso have a WHERE clause restricting the results being joined to only those that were generated since the last query ran 30 seconds ago? But then I see the audit_expiry flag that when set to 1 means results will only last one query, so maybe it's not needed.