C7N Community Meeting Minutes 2023-11-28

# C7N Community Meeting Minutes 2023-11-28 ## November 28th 2023 :::info - **URL:** meet.google.com/mii-evqh-esh - **Date:** November 28, 2023 (2:00 PM (ET) / 11:00 AM (PT) / 7PM (UTC)) - **[Timezone Converter (Click me)](https://www.timeanddate.com/worldclock/converter.html?iso=20220621T180000&p1=263&p2=224&p3=136&p4=37&p5=367&p6=438&p7=248&p8=22)** - **Agenda** 1. Intros `10m` 1. Agenda Items `20m` 1. PR Party `30m` - **Meeting Contact:** AJ: <aj@stacklet.io> - **Video Archive and Transcripts**: https://mtngs.io/cloud-custodian/community-meetings/ ::: ## Agenda Items - Intros, etc. - Early reinvent talk - Ideas: Execution modes for budget limits and anomaly detection ### PR/Issue Discussion - Python 3.12 support - almost - # Weekly Report Weekly status report for cloud-custodian/cloud-custodian Week #48 2023 ## Weekly Stats | | Opened this week| Closed this week| |--|---|-----| |Issues| 14 | 4| |PR's| 17 | 11| | | | |--|--| | New stars | 16| | New forks | -1| ## PR's Opened * [#9177](https://github.com/cloud-custodian/cloud-custodian/pull/9177): aws: Add defence against possible zip bomb attack * [#9176](https://github.com/cloud-custodian/cloud-custodian/pull/9176): policystream: Fix possible DoS attack * [#9174](https://github.com/cloud-custodian/cloud-custodian/pull/9174): aws: Fix improper url substring validation * [#9173](https://github.com/cloud-custodian/cloud-custodian/pull/9173): mailer: Escape HTML markup template and subject * [#9172](https://github.com/cloud-custodian/cloud-custodian/pull/9172): Kubernetes: Replace deprecated ssl.wrap_socket function * [#9171](https://github.com/cloud-custodian/cloud-custodian/pull/9171): azure: Replace deprecated mktemp function with mkstemp * [#9170](https://github.com/cloud-custodian/cloud-custodian/pull/9170): aws - update asg launch-config filter to work with LT * [#9167](https://github.com/cloud-custodian/cloud-custodian/pull/9167): aws - ec2 query parser should be scoped to describe source only * [#9165](https://github.com/cloud-custodian/cloud-custodian/pull/9165): awscc - update test to use a more stable resource for attribute checking * [#9164](https://github.com/cloud-custodian/cloud-custodian/pull/9164): feat: expand source jsonschema * [#9163](https://github.com/cloud-custodian/cloud-custodian/pull/9163): aws - update glue connection to handle cases where theres no VPC on the resource * [#9161](https://github.com/cloud-custodian/cloud-custodian/pull/9161): aws - bedrock custom models * [#9160](https://github.com/cloud-custodian/cloud-custodian/pull/9160): aws - vpc add in operator to network-location filter * [#9157](https://github.com/cloud-custodian/cloud-custodian/pull/9157): aws - vpc add in operator to network-location filter * [#9155](https://github.com/cloud-custodian/cloud-custodian/pull/9155): Fix EC2 Capacity Reservation Id * [#9154](https://github.com/cloud-custodian/cloud-custodian/pull/9154): aws - update tag permissions, expand s3 assembly permissions, add missing config_types * [#9147](https://github.com/cloud-custodian/cloud-custodian/pull/9147): Add AWS EC2 Capacity Reservation Resource ## PR's Closed * [#9172](https://github.com/cloud-custodian/cloud-custodian/pull/9172): Kubernetes: Replace deprecated ssl.wrap_socket function * [#9167](https://github.com/cloud-custodian/cloud-custodian/pull/9167): aws - ec2 query parser should be scoped to describe source only * [#9165](https://github.com/cloud-custodian/cloud-custodian/pull/9165): awscc - update test to use a more stable resource for attribute checking * [#9164](https://github.com/cloud-custodian/cloud-custodian/pull/9164): feat: expand source jsonschema * [#9163](https://github.com/cloud-custodian/cloud-custodian/pull/9163): aws - update glue connection to handle cases where theres no VPC on the resource * [#9161](https://github.com/cloud-custodian/cloud-custodian/pull/9161): aws - bedrock custom models * [#9157](https://github.com/cloud-custodian/cloud-custodian/pull/9157): aws - vpc add in operator to network-location filter * [#9155](https://github.com/cloud-custodian/cloud-custodian/pull/9155): Fix EC2 Capacity Reservation Id * [#9147](https://github.com/cloud-custodian/cloud-custodian/pull/9147): Add AWS EC2 Capacity Reservation Resource * [#9145](https://github.com/cloud-custodian/cloud-custodian/pull/9145): openstack - container * [#9061](https://github.com/cloud-custodian/cloud-custodian/pull/9061): azure - defender-assessment, defender-contacts, defender-jit-policies, defender-jit-policies-filter ## Issues Opened * [#9175](https://github.com/cloud-custodian/cloud-custodian/issues/9175): Please add apache license to https://github.com/cloud-custodian/www.cloudcustodian.io * [#9169](https://github.com/cloud-custodian/cloud-custodian/issues/9169): aws - unable to filter for AssociatePublicIpAddress on LaunchTemplates under the asg launch-config filter * [#9168](https://github.com/cloud-custodian/cloud-custodian/issues/9168): Add support for tagging of aws batch resources * [#9166](https://github.com/cloud-custodian/cloud-custodian/issues/9166): Option to explicitly disable caching in Custodian report command * [#9162](https://github.com/cloud-custodian/cloud-custodian/issues/9162): aws - glue connection has NoneType error when no VPC * [#9159](https://github.com/cloud-custodian/cloud-custodian/issues/9159): Add support for CloudFormation StackSets * [#9158](https://github.com/cloud-custodian/cloud-custodian/issues/9158): releng - meta test for validating id / report fields attributes against resource shapes. * [#9156](https://github.com/cloud-custodian/cloud-custodian/issues/9156): Migrating resources and filters from the EPAM repository * [#9153](https://github.com/cloud-custodian/cloud-custodian/issues/9153): Run validate on policies using c7n-org * [#9152](https://github.com/cloud-custodian/cloud-custodian/issues/9152): aws - backup plan/vault - add delete action * [#9151](https://github.com/cloud-custodian/cloud-custodian/issues/9151): aws - ecs - add delete action * [#9150](https://github.com/cloud-custodian/cloud-custodian/issues/9150): aws - vpc endpoints - add delete action * [#9149](https://github.com/cloud-custodian/cloud-custodian/issues/9149): aws - vpn connection/gateway - add delete action * [#9148](https://github.com/cloud-custodian/cloud-custodian/issues/9148): aws - transit gateway - add delete action ## Issues Closed * [#9166](https://github.com/cloud-custodian/cloud-custodian/issues/9166): Option to explicitly disable caching in Custodian report command * [#9162](https://github.com/cloud-custodian/cloud-custodian/issues/9162): aws - glue connection has NoneType error when no VPC * [#9133](https://github.com/cloud-custodian/cloud-custodian/issues/9133): Support for AWS Bedrock * [#6976](https://github.com/cloud-custodian/cloud-custodian/issues/6976): Creating an EC2 Resource for Capacity Reservations