C7N Community Meeting Minutes 2023-05-16

# C7N Community Meeting Minutes 2023-05-16 ## May 16th 2023 :::info - **URL:** meet.google.com/mii-evqh-esh - **Date:** May 16, 2023 (2:00 PM (ET) / 11:00 AM (PT) / 7PM (UTC)) - **[Timezone Converter (Click me)](https://www.timeanddate.com/worldclock/converter.html?iso=20220621T180000&p1=263&p2=224&p3=136&p4=37&p5=367&p6=438&p7=248&p8=22)** - **Agenda** 1. Intros `10m` 1. Agenda Items `20m` 1. PR Party `30m` - **Meeting Contact:** AJ: <aj@stacklet.io> - **Video Archive and Transcripts**: https://mtngs.io/cloud-custodian/community-meetings/ ::: ## Agenda Items - Intros, etc. - We're moving on from Python 3.7 this year, details TBD, heads up: - https://github.com/cloud-custodian/cloud-custodian/issues/8092 - Tips and Tricks section in Discussions - https://github.com/cloud-custodian/cloud-custodian/discussions/categories/tips-and-tricks - Next release. Potential blockers: - Poetry-related updates - GCP cloud run metadata issue ### PR/Issue Discussion - [#6667 (copy-related-tag rds-snapshot AssertionError Cross Accounts)](https://github.com/cloud-custodian/cloud-custodian/issues/6667) - Reopened. Previous fix attempted to work around the issue at the individual resource-level, but need higher-level fix. - https://github.com/cloud-custodian/cloud-custodian/issues/8501 suggests the same issue affects Redshift - [#8218 (aws - values_from support dynamodb)](https://github.com/cloud-custodian/cloud-custodian/pull/8218) - Needs tests - Good time to break provider-specific functionality (DynamoDB/S3 lookups) into a separate derived class and keep the core logic provider-neutral # Weekly Report Weekly status report for cloud-custodian/cloud-custodian Week #20 2023 ## Here's what the team has focused on this week: * ## Weekly Stats | | Opened this week| Closed this week| |--|---|-----| |Issues| 7 | 3| |PR's| 26 | 27| | | | |--|--| | New stars | 28| | New forks | 7| ## PR's Opened * [#8565](https://github.com/cloud-custodian/cloud-custodian/pull/8565): core - report validation errors per file * [#8564](https://github.com/cloud-custodian/cloud-custodian/pull/8564): aws - s3 - lifecycle - add schema for newer rule options * [#8563](https://github.com/cloud-custodian/cloud-custodian/pull/8563): releng - require urllib3 <2.0 to speed up dependency resolution * [#8562](https://github.com/cloud-custodian/cloud-custodian/pull/8562): releng - update dependencies 2023-05 * [#8561](https://github.com/cloud-custodian/cloud-custodian/pull/8561): Use new artifactory * [#8560](https://github.com/cloud-custodian/cloud-custodian/pull/8560): Bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible in /tools/cask * [#8559](https://github.com/cloud-custodian/cloud-custodian/pull/8559): output - strip trailing slashes from s3 output url paths * [#8558](https://github.com/cloud-custodian/cloud-custodian/pull/8558): add-azure-resources-to-support-spring-apps * :boom: [#8557](https://github.com/cloud-custodian/cloud-custodian/pull/8557): Enable labels for GKE clusters and add tests * [#8556](https://github.com/cloud-custodian/cloud-custodian/pull/8556): tools/dev - aws csm observability using vector.dev * [#8555](https://github.com/cloud-custodian/cloud-custodian/pull/8555): Use new artifactory * :boom: [#8554](https://github.com/cloud-custodian/cloud-custodian/pull/8554): Added resources for cdn customdomain and cdn endpoint * [#8552](https://github.com/cloud-custodian/cloud-custodian/pull/8552): add everyone_only as a filter for EBS snapshots * [#8551](https://github.com/cloud-custodian/cloud-custodian/pull/8551): Cdn custom domain resource * [#8546](https://github.com/cloud-custodian/cloud-custodian/pull/8546): add-azure-resource-servicebus-namespace-networkruleset * [#8545](https://github.com/cloud-custodian/cloud-custodian/pull/8545): Chore/bump ubi * [#8544](https://github.com/cloud-custodian/cloud-custodian/pull/8544): gcp - recommender filter * [#8542](https://github.com/cloud-custodian/cloud-custodian/pull/8542): Adding new filter to examine resources contained within a resource group * [#8541](https://github.com/cloud-custodian/cloud-custodian/pull/8541): Add azure resource servicebus namespace authrules * [#8540](https://github.com/cloud-custodian/cloud-custodian/pull/8540): gcp - deployment-manager normalize label format * [#8539](https://github.com/cloud-custodian/cloud-custodian/pull/8539): feat: get header's value from AWS SecretManager secret * [#8538](https://github.com/cloud-custodian/cloud-custodian/pull/8538): Adds ECR repository policy to saved resource for reporting * [#8536](https://github.com/cloud-custodian/cloud-custodian/pull/8536): Azure new resource service bus * [#8535](https://github.com/cloud-custodian/cloud-custodian/pull/8535): azure new resource servicebus-namespace * [#8534](https://github.com/cloud-custodian/cloud-custodian/pull/8534): tests - kms - patch executor to avoid flaky test * [#8533](https://github.com/cloud-custodian/cloud-custodian/pull/8533): core - add ability to add custom functions to jmespath ## PR's Closed * [#8564](https://github.com/cloud-custodian/cloud-custodian/pull/8564): aws - s3 - lifecycle - add schema for newer rule options * [#8563](https://github.com/cloud-custodian/cloud-custodian/pull/8563): releng - require urllib3 <2.0 to speed up dependency resolution * [#8562](https://github.com/cloud-custodian/cloud-custodian/pull/8562): releng - update dependencies 2023-05 * [#8561](https://github.com/cloud-custodian/cloud-custodian/pull/8561): Use new artifactory * [#8560](https://github.com/cloud-custodian/cloud-custodian/pull/8560): Bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible in /tools/cask * [#8559](https://github.com/cloud-custodian/cloud-custodian/pull/8559): output - strip trailing slashes from s3 output url paths * [#8558](https://github.com/cloud-custodian/cloud-custodian/pull/8558): add-azure-resources-to-support-spring-apps * [#8555](https://github.com/cloud-custodian/cloud-custodian/pull/8555): Use new artifactory * [#8552](https://github.com/cloud-custodian/cloud-custodian/pull/8552): add everyone_only as a filter for EBS snapshots * [#8551](https://github.com/cloud-custodian/cloud-custodian/pull/8551): Cdn custom domain resource * [#8545](https://github.com/cloud-custodian/cloud-custodian/pull/8545): Chore/bump ubi * [#8544](https://github.com/cloud-custodian/cloud-custodian/pull/8544): gcp - recommender filter * [#8540](https://github.com/cloud-custodian/cloud-custodian/pull/8540): gcp - deployment-manager normalize label format * [#8536](https://github.com/cloud-custodian/cloud-custodian/pull/8536): Azure new resource service bus * [#8535](https://github.com/cloud-custodian/cloud-custodian/pull/8535): azure new resource servicebus-namespace * [#8534](https://github.com/cloud-custodian/cloud-custodian/pull/8534): tests - kms - patch executor to avoid flaky test * [#8533](https://github.com/cloud-custodian/cloud-custodian/pull/8533): core - add ability to add custom functions to jmespath * [#8527](https://github.com/cloud-custodian/cloud-custodian/pull/8527): aws - post-finding - document usage of the title parameter * [#8520](https://github.com/cloud-custodian/cloud-custodian/pull/8520): core - fix memory cache reference data issue causing policy issues * [#8518](https://github.com/cloud-custodian/cloud-custodian/pull/8518): Added resources for Azure CDN custom Domain and Azure CDN Endpoint * [#8509](https://github.com/cloud-custodian/cloud-custodian/pull/8509): core - don't expand {now} placeholder during provisioning * [#8505](https://github.com/cloud-custodian/cloud-custodian/pull/8505): aws - convert key alias to key id before cache lookup * [#8496](https://github.com/cloud-custodian/cloud-custodian/pull/8496): updating ecs insights * [#8494](https://github.com/cloud-custodian/cloud-custodian/pull/8494): aws - fsx - rds - register aws_backup count filter * [#8489](https://github.com/cloud-custodian/cloud-custodian/pull/8489): releng - consolidate mailer dependencies * [#8461](https://github.com/cloud-custodian/cloud-custodian/pull/8461): gcp - added gce-project, regions * [#8444](https://github.com/cloud-custodian/cloud-custodian/pull/8444): gcp - add artifact-repository resource ## Issues Opened * [#8566](https://github.com/cloud-custodian/cloud-custodian/issues/8566): get errors after putting the slack_token in the mailer configuration * [#8550](https://github.com/cloud-custodian/cloud-custodian/issues/8550): New tool functionality needed - Identify and tag resources which were not created via IaC * [#8549](https://github.com/cloud-custodian/cloud-custodian/issues/8549): aws.distribution - add realtime-log-config to schema * [#8547](https://github.com/cloud-custodian/cloud-custodian/issues/8547): Lambda to S3 client authentication issue in AWS GovCloud * [#8543](https://github.com/cloud-custodian/cloud-custodian/issues/8543): Add resource for Amazon MemoryDB for Redis * [#8537](https://github.com/cloud-custodian/cloud-custodian/issues/8537): The action set-wafv2 doesn't seem to accept my regex in the web-acl parameter * [#8532](https://github.com/cloud-custodian/cloud-custodian/issues/8532): S3 life cycle policy based on objectsize ## Issues Closed * [#8532](https://github.com/cloud-custodian/cloud-custodian/issues/8532): S3 life cycle policy based on objectsize * [#8504](https://github.com/cloud-custodian/cloud-custodian/issues/8504): Cache lookup doesn't return correct results with kms key alias * [#8503](https://github.com/cloud-custodian/cloud-custodian/issues/8503): "{now}" throws an error with c7n 0.9.26