# August 3rd 2021 # Cloud Custodian (C7n) Community Meeting Minutes ###### tags: `Meeting` :::info - **Meeting URL:** [meet.google.com/mii-evqh-esh](meet.google.com/mii-evqh-esh) - **Date:** August 3rd, 2021 (2:00 PM (ET) / 11:00 PM (PT) / 6PM (UTC)) - **[Timezone Converter (Click me)](https://www.timeanddate.com/worldclock/converter.html?iso=20210629T180000&p1=tz_et&p2=tz_pt&p3=22&p4=240&p5=136&p6=176&p7=37&p8=248)** - **Host:** Jorge Castro - - **Meeting Contact:** Jorge: <jorge@stacklet.io> - **Permalink:** - **Video Link:** https://www.youtube.com/watch?v=vvfNZr2kz2g - **Board**: [Community Board](https://github.com/cloud-custodian/community/projects/1) - **Participants:** ::: ## Agenda Items - Introduction [@castrojo]`5m` - Agenda Items `15m` - Call for demos? [@castrojo] - Policy Testing ([spec](https://github.com/cloud-custodian/cloud-custodian/issues/6407)) [@marcoceppi] - Soliciting feedback, please check it out and comment on the issue! - Make-gitter-easier (@castrojo) - More to report in the future. - Regular weekly doc sprints sessions [@liz-acosta] - [Our first PR](https://github.com/cloud-custodian/cloud-custodian/pull/6830) - We're due for a release, 4-6 based cadence, we like to be time based - Makes things predictable - There's a deprecation framework, validate will log deprecation warnings - 1.0 at some point to enforce semantic versioning - probably needs a spec - Needs a deprecation policy, we needed a deprecation implementation, which we need to hash out. We've been trying to be as backwards compatible as possible but we need to remove some outdated syntax. - What does this look like from a semver version, do they line up? - Thinking a year as a deprecation->removal timeline. - Spec needed. - :new: Recommend [pipx](https://pypa.github.io/pipx/) for non-contributor installs? [@ajkerrigan] - Pro: [Installation](https://pypa.github.io/pipx/installation/) is fairly consistent across platforms - Pro: Avoids the need to manually create/manage/activate virtual environments - Con: Adds another tool/dependency - Con: Installing additional packages may be confusing - Possible alternative, build with something like [Nuitka](https://github.com/Nuitka/Nuitka/) - For example: `pipx install c7n` followed by `pipx inject c7n c7n_azure` - Kapil: Useful for people who aren't into python. I'd love to have a survey to know how people are installing c7n since we have many options. - Can it pull from git main? - Yes! - Package signing - In progress for pip - Kapil: we could sign the docker images with sigstore? - https://www.anaconda.com/blog/conda-signature-verification - https://github.com/pypa/warehouse/projects/3 - Publishing our images to dockerhub - Should we publish to cloud provider registries? - Would that be useful or not? - CI errors due to rate limiting. - Pull Request Party `15m` - Spare/Extra time will be dedicated to PR reviews. :books: Backlog --- - @kapilt - Priority backlog for the cloud providers. - GCP provider maintainer update? - Enhancements/Feature Process [@kapilt] - - Rename master->main in github [@kapilt] - https://github.com/github/renaming#renaming-existing-branches - GitHub how supports this, we can try this now. - afaict it's low risk, I'll keep investigating. - No progress this week, kapil will sanity check it this week if he can. :house: Events - Upcoming Cloud Custodian Days - [Workshop (for beginners)](https://app.livestorm.co/stacklet-io/cloud-custodian-101-workshop?type=detailed) - Use the dropdown to choose the session in Aug and Sept! - Had this today, 50+ attendees! - Bring your cloud creds, play with the tool - More advanced topics will be coming up! - Intro to Cloud Custodian - [Session](https://app.livestorm.co/stacklet-io/introduction-to-cloud-custodian?type=detailed) - Presentation, good for beginners :mag: PR Review --- - aq17 - GCP IAM filter https://github.com/cloud-custodian/cloud-custodian/pull/6771 - [Prior PR](https://github.com/cloud-custodian/cloud-custodian/compare/master...kapilt:gcp-iam-filter?expand=1) - (@kapilt) - GCP familiar folks welcome to take a look. - kapilt - GCP Folder https://github.com/cloud-custodian/cloud-custodian/pull/6557 - Needs more unit tests so it can pass CI - @kapilt - No change this week - Metrics - and associated PR https://github.com/cloud-custodian/cloud-custodian/issues/6301 - @ajkerrigan to take a look - [Comment](https://github.com/cloud-custodian/cloud-custodian/pull/6310) - Automatic Layers for AWS Policies https://github.com/cloud-custodian/cloud-custodian/pull/3886 - Needs a rethink but in general we want to do this, there's a number of issues around this. - tjstansell - Convert tags https://github.com/cloud-custodian/cloud-custodian/pull/6691 - Do we need this? Oneliners in the filters/actions swapped out for additional complexity in a function. Tags are endemic to the resource itself, and it’s only considered once when writing the filter or action - PratMis - aws.codedeploy | application and deployment https://github.com/cloud-custodian/cloud-custodian/pull/6806 ### Backlog for next time Dynamodb value filter integration - Lambda policy support destinations - https://github.com/cloud-custodian/cloud-custodian/pull/5250 - prereq for policy testing, leave as is. - Value Item Array Filter - https://github.com/cloud-custodian/cloud-custodian/issues/6797 - Would this be useful to people writing policies today? - kylejohnson514 - CEL Implementation for Filtering https://github.com/cloud-custodian/cloud-custodian/pull/6469 - This one needs a spec. - :mag: Issue Review --- (If necessary) :closed_book: Action Items -- - [ ] @castrojo to investigate a c7n-level gsuite doc/org? - [x] @castrojo fix meeting invite to point to a future proof meeting URL - [ ] @castrojo @marcoceppi - Start a weekly meeting wrt. Policy testing. - [ ] @castrojo Investigate more channels in gitter, see if we can do less friction. - [ ] @castrojo Investigations videos section in README.md ## Chat Logs 00:02:37.514,00:02:40.514 Liz Acosta: and if you don't have a demo and know someone else who does, please encourage them! 00:04:16.782,00:04:19.782 Liz Acosta: hi karl!!! 00:05:37.511,00:05:40.511 Wayne Witzel III: ICQ support? :D 00:17:42.320,00:17:45.320 Liz Acosta: ooooh! this is cool! 00:30:42.357,00:30:45.357 Aakif Shaikh: same contents as last time for that workshop 101? 00:31:13.325,00:31:16.325 Liz Acosta: yes, different presenters tho : ) 00:38:15.756,00:38:18.756 Karl Fonseca: cheers