# July 27th 2021 # Cloud Custodian (C7n) Community Meeting Minutes ###### tags: `Meeting` :::info - **Meeting URL:** [meet.google.com/mii-evqh-esh](meet.google.com/mii-evqh-esh) - **Date:** July 27th, 2021 (2:00 PM (ET) / 11:00 PM (PT) / 6PM (UTC)) - **[Timezone Converter (Click me)](https://www.timeanddate.com/worldclock/converter.html?iso=20210629T180000&p1=tz_et&p2=tz_pt&p3=22&p4=240&p5=136&p6=176&p7=37&p8=248)** - **Host:** Jorge Castro - - **Meeting Contact:** Jorge: <jorge@stacklet.io> - **Permalink:** - **Video Link:** https://youtu.be/rfIV5rcm5P8 - **Board**: [Community Board](https://github.com/cloud-custodian/community/projects/1) - **Participants:** ::: ## Agenda Items - Introduction [@castrojo]`5m` - Kick off items [@castrojo] `5m` - Meta: How the meeting will work, where to find notes, etc. - Calendar things, time slot, etc. - [Community Repo](https://github.com/cloud-custodian/community) - [Community Project Board](https://github.com/cloud-custodian/community/projects/1) - Agenda Items `15m` - Policy Testing ([spec](https://github.com/cloud-custodian/cloud-custodian/issues/6407)) [@marcoceppi] - Soliciting feedback, please check it out and comment on the issue! - Make-gitter-easier (@castrojo) - More to report in the future. - Regular weekly doc sprints sessions [@liz-acosta] - Starting this friday! - :new: Rename master->main in github [@kapilt] - https://github.com/github/renaming#renaming-existing-branches - GitHub how supports this, we can try this now. - afaict it's low risk, I'll keep investigating. - We're always looking at supporting more cloud providers with Cloud Custodian but we'd like to get some idea on how users are using it. We're casting a net to see how/if you're using c7n on Oracle Cloud. - Are you a custodian user who has a need/want to have an Oracle Cloud integration into Cloud Custodian via a provider? - If yes, what in particular what do you want to use c7n to monitor or do with Oracle Cloud? - How do you deal without this integration now? What’s the workaround? Any pain points? Would this make your life easier? - If you have any feedback on this please feel free to mail logan.kleier@oracle.com or ping jorge@stacklet.io. - Aakif Shaikh dropped by to say hello - [Blog post](https://ismsguy.medium.com/tried-replacing-the-cloud-custodian-with-something-else-1ffcf9c76dc8) - Pull Request Party `15m` - Spare/Extra time will be dedicated to PR reviews. - Feedback from Aakif - It'd be nice to have other topics outside of core, for users who are using c7n, but perhaps want info on the mailer, etc. - kapil - we should just have sessions on everything in the tools folder. - Faan - how to manage an org wide approach vs. account wide? - Document best practices - "You have 100 policies how do you manage them?" - What's the git workflow? - What does the operational lifecycle look like? - Optimization! - Jamison: Workshop or talk about this? - Things like deployment schedules etc so you can deploy remediations as a team so everyone in the org can see what's happening in advance - Teams can talk about the policies way ahead of time before they go to canary->dev->prod - that whole process of getting the right people together, they can plan ahead up to a year with their sprints, setting their dev goals, etc. This visibility helps people move faster. - Faan - a workshop just on the mailer would be useful. - 1/3 of the questions I've gotten are on the mailer. - Docs need love on this section. :books: Backlog --- - @kapilt - Priority backlog for the cloud providers. - GCP provider maintainer update? - Enhancements/Feature Process [@kapilt] - :house: Events - Upcoming Cloud Custodian Days - [Workshop (for beginners)](https://app.livestorm.co/stacklet-io/cloud-custodian-101-workshop?type=detailed) - Use the dropdown to choose the session in Aug and Sept! - Had this today, 50+ attendees! - Bring your cloud creds, play with the tool - More advanced topics will be coming up! - Intro to Cloud Custodian - [Session](https://app.livestorm.co/stacklet-io/introduction-to-cloud-custodian?type=detailed) - Presentation, good for beginners https://app.livestorm.co/stacklet-io :mag: PR Review --- - aq17 - GCP IAM filter https://github.com/cloud-custodian/cloud-custodian/pull/6771 - [Prior PR](https://github.com/cloud-custodian/cloud-custodian/compare/master...kapilt:gcp-iam-filter?expand=1) - (@kapilt) - GCP familiar folks welcome to take a look. - kapilt - GCP Folder https://github.com/cloud-custodian/cloud-custodian/pull/6557 - Needs more unit tests so it can pass CI - @kapilt - No change this week - Metrics - and associated PR https://github.com/cloud-custodian/cloud-custodian/issues/6301 - @ajkerrigan to take a look - [Comment](https://github.com/cloud-custodian/cloud-custodian/pull/6310) - Automatic Layers for AWS Policies https://github.com/cloud-custodian/cloud-custodian/pull/3886 - Needs a rethink but in general we want to do this, there's a number of issues around this. - tjstansell - Convert tags https://github.com/cloud-custodian/cloud-custodian/pull/6691 - Do we need this? Oneliners in the filters/actions swapped out for additional complexity in a function. Tags are endemic to the resource itself, and it’s only considered once when writing the filter or action - PratMis - aws.codedeploy | application and deployment https://github.com/cloud-custodian/cloud-custodian/pull/6806 - kylejohnson514 - CEL Implementation for Filtering https://github.com/cloud-custodian/cloud-custodian/pull/6469 - This one needs a spec. ### Backlog for next time Dynamodb value filter integration - Lambda policy support destinations - https://github.com/cloud-custodian/cloud-custodian/pull/5250 - prereq for policy testing, leave as is - Value Item Array Filter - https://github.com/cloud-custodian/cloud-custodian/issues/6797 - Would this be useful to people writing policies today? :mag: Issue Review --- (If necessary) :closed_book: Action Items -- - [ ] @castrojo to investigate a c7n-level gsuite doc/org? - [x] @castrojo fix meeting invite to point to a future proof meeting URL - [ ] @castrojo @marcoceppi - Start a weekly meeting wrt. Policy testing. - [ ] @castrojo Investigate more channels in gitter, see if we can do less friction. - [ ] @castrojo Investigations videos section in README.md ## Chat Logs 00:04:07.181,00:04:10.181 Umair Khan: Here is Aakif's blog https://ismsguy.medium.com/tried-replacing-the-cloud-custodian-with-something-else-1ffcf9c76dc8 00:07:30.453,00:07:33.453 Liz Acosta: hi karl!!! 00:07:37.720,00:07:40.720 Karl Fonseca: Hey guys! 00:09:04.519,00:09:07.519 AJ Kerrigan: I came in a bit late, but hello everyone! Aakif and Karl, first time crossing paths in this meeting I believe, welcome! :) 00:10:25.095,00:10:28.095 Mandeep Bal: are the docs still mkdocs? 00:10:41.343,00:10:44.343 AJ Kerrigan: Useful spot for doc work unless you find something better - Slack configuration. We've gotten questions a few times recently in gitter. 00:11:00.377,00:11:03.377 David Filiatrault: How to add support for a new resource would be a great add to docs, unless it's been already added, have not looked in a few months 00:12:17.203,00:12:20.203 Liz Acosta: great suggestions! 00:12:56.341,00:12:59.341 Kapil Thangavelu: There is one of those now :-) 00:14:06.648,00:14:09.648 Liz Acosta: eee! this is so awesome! in a past life i was a copywriter and i actually looove writing technical documentation, so i love getting the chance to write!!! 00:16:57.136,00:17:00.136 AJ Kerrigan: Regarding docs for adding new resources, this was a solid addition from a recent PR: https://cloudcustodian.io/docs/aws/contribute.html#adding-new-aws-resources 00:19:01.667,00:19:04.667 Umair Khan: https://app.livestorm.co/stacklet-io/cloud-custodian-101-workshop?type=detailed 00:19:57.104,00:20:00.104 Umair Khan: https://app.livestorm.co/stacklet-io/introduction-to-cloud-custodian?type=detailed 00:20:46.251,00:20:49.251 Liz Acosta: also here is the stacklet event page as well https://app.livestorm.co/stacklet-io 00:30:03.440,00:30:06.440 AJ Kerrigan: That is a great suggestion Aakif 00:31:14.288,00:31:17.288 Liz Acosta: yah +1! 00:34:40.249,00:34:43.249 Umair Khan: great meeting everyone again.. have to drop off to pick kids from school 00:36:29.421,00:36:32.421 Liz Acosta: i totally struggled with the mailer docs too! 00:36:55.090,00:36:58.090 Liz Acosta: so you are not alone!