C7n Community Meeting Minutes

# C7n Community Meeting Minutes # August 2nd 2022 :::info - **URL:** meet.google.com/mii-evqh-esh - **Date:** August 2nd, 2022 (2:00 PM (ET) / 11:00 PM (PT) / 6PM (UTC)) - **[Timezone Converter (Click me)](https://www.timeanddate.com/worldclock/converter.html?iso=20220621T180000&p1=263&p2=224&p3=136&p4=37&p5=367&p6=438&p7=248&p8=22)** - **Agenda** 1. Intros `10m` 1. Agenda Items `20m` 1. PR Party `30m` - **Meeting Contact:** Jorge: <jorge@stacklet.io> - **Video Archive and Transcripts**: https://mtngs.io/cloud-custodian/community-meetings/ ::: [![Video Recording](https://img.youtube.com/vi/VOreGoQNgfc/0.jpg)](https://youtu.be/VOreGoQNgfc) ## Agenda Item - Intros, etc. - Governance Updates - See this [GitHub issue](https://github.com/cloud-custodian/cloud-custodian/issues/7149) for the latest draft revisions. - Quick SCaLE update [castrojo] - Quick reinforce update [kapilt] - NOTE: pycodestyle change might affect your linting results: https://github.com/PyCQA/pycodestyle/blob/44b3d2895b39b1eff8cb5048ae3464a033b4ede8/CHANGES.txt#L13 ## Weekly Stats | | Opened this week| Closed this week| |--|---|-----| |Issues| 16 | 7| |PR's| 21 | 18| | | | |--|--| | New stars | 23| | New forks | 7| ## PR's Opened * :boom: [#7525](https://github.com/cloud-custodian/cloud-custodian/pull/7525): aws - sns and sqs- add reusable "has-statement" filter * [#7594](https://github.com/cloud-custodian/cloud-custodian/pull/7594): fix: skip incorrect action_date instead of failing c7n * :boom: [#7592](https://github.com/cloud-custodian/cloud-custodian/pull/7592): Get Bucket Encryption Fails When No Encryption Configuration Is Present but KMS Bucket Key is Enabled * :boom: [#7588](https://github.com/cloud-custodian/cloud-custodian/pull/7588): aws - waf - cloud trail support for cloudfront and appelb resources * [#7586](https://github.com/cloud-custodian/cloud-custodian/pull/7586): tools/c7n-mailer - fix null exception of notify_action_to * [#7585](https://github.com/cloud-custodian/cloud-custodian/pull/7585): AWS - RedshiftParameterGroup Added new resource type param-group * [#7579](https://github.com/cloud-custodian/cloud-custodian/pull/7579): chore: cleanup the blob output handlers. * [#7578](https://github.com/cloud-custodian/cloud-custodian/pull/7578): Created a filter on account resource to check if s3 bucket i.e.registered for lake-formation belongs to same account or not * [#7576](https://github.com/cloud-custodian/cloud-custodian/pull/7576): aws - cloudfront - post-finding fix webacl attribute * [#7575](https://github.com/cloud-custodian/cloud-custodian/pull/7575): aws - kinesis - config source attribute adaptation fix * [#7574](https://github.com/cloud-custodian/cloud-custodian/pull/7574): aws - apigw waf - fix for #7573 and cloudtrail mode support for apigw * [#7572](https://github.com/cloud-custodian/cloud-custodian/pull/7572): aws - quotas - include aws default service quotas * [#7570](https://github.com/cloud-custodian/cloud-custodian/pull/7570): core - structural validate handle explicit null filters or actions * [#7569](https://github.com/cloud-custodian/cloud-custodian/pull/7569): aws - vpc - flow-logs - bugfix LogDestination key error * [#7568](https://github.com/cloud-custodian/cloud-custodian/pull/7568): aws - budget execution mode * [#7565](https://github.com/cloud-custodian/cloud-custodian/pull/7565): Add Darren Dao as a maintainer * [#7562](https://github.com/cloud-custodian/cloud-custodian/pull/7562): update vscode tasks * [#7561](https://github.com/cloud-custodian/cloud-custodian/pull/7561): AWS - Connect - Create new Connect resource and instance-attribute filter * [#7560](https://github.com/cloud-custodian/cloud-custodian/pull/7560): aws - artifact - fix cfn type metadata * [#7556](https://github.com/cloud-custodian/cloud-custodian/pull/7556): gcp - sql - Add labels filters and actions to the GCP SQL * [#7552](https://github.com/cloud-custodian/cloud-custodian/pull/7552): aws - fsx subnet filter ## PR's Closed * [#7591](https://github.com/cloud-custodian/cloud-custodian/pull/7591): Get Bucket Encryption Fails When No Encryption Configuration Is Present but KMS Bucket Key is Enabled * [#7579](https://github.com/cloud-custodian/cloud-custodian/pull/7579): chore: cleanup the blob output handlers. * [#7576](https://github.com/cloud-custodian/cloud-custodian/pull/7576): aws - cloudfront - post-finding fix webacl attribute * [#7575](https://github.com/cloud-custodian/cloud-custodian/pull/7575): aws - kinesis - config source attribute adaptation fix * [#7570](https://github.com/cloud-custodian/cloud-custodian/pull/7570): core - structural validate handle explicit null filters or actions * [#7569](https://github.com/cloud-custodian/cloud-custodian/pull/7569): aws - vpc - flow-logs - bugfix LogDestination key error * [#7568](https://github.com/cloud-custodian/cloud-custodian/pull/7568): aws - budget execution mode * [#7565](https://github.com/cloud-custodian/cloud-custodian/pull/7565): Add Darren Dao as a maintainer * [#7562](https://github.com/cloud-custodian/cloud-custodian/pull/7562): update vscode tasks * [#7560](https://github.com/cloud-custodian/cloud-custodian/pull/7560): aws - artifact - fix cfn type metadata * [#7556](https://github.com/cloud-custodian/cloud-custodian/pull/7556): gcp - sql - Add labels filters and actions to the GCP SQL * [#7552](https://github.com/cloud-custodian/cloud-custodian/pull/7552): aws - fsx subnet filter * [#7543](https://github.com/cloud-custodian/cloud-custodian/pull/7543): aws - asg - fix tagging interpolate values * [#7534](https://github.com/cloud-custodian/cloud-custodian/pull/7534): gcp - labels - support resourceLabels for gke * [#7519](https://github.com/cloud-custodian/cloud-custodian/pull/7519): aws - waf/wafv2 - ability to associate apigateway, cloudfront and elb resources between waf and wafv2 web-acls * [#7500](https://github.com/cloud-custodian/cloud-custodian/pull/7500): Config poll rule fix * [#7200](https://github.com/cloud-custodian/cloud-custodian/pull/7200): [Issue #6152] Error while executing policy flow-logs-enabled * [#3519](https://github.com/cloud-custodian/cloud-custodian/pull/3519): wip/ignore me - tools/mailer - sqs queue processor tests backfill, refactor ## Issues Opened * :boom: [#7593](https://github.com/cloud-custodian/cloud-custodian/issues/7593): Error when sending logs from Lambda to s3 buckets in another region * [#7590](https://github.com/cloud-custodian/cloud-custodian/issues/7590): Custodian GCP Http cache issue * [#7587](https://github.com/cloud-custodian/cloud-custodian/issues/7587): AWS Lakeformation registered location for S3 and role * [#7584](https://github.com/cloud-custodian/cloud-custodian/issues/7584): Service Limits are not showing updated limits * [#7583](https://github.com/cloud-custodian/cloud-custodian/issues/7583): Add Secrets Manager secrets resource * [#7582](https://github.com/cloud-custodian/cloud-custodian/issues/7582): Usage of `fallback_schedule` option in RDS offhours policy * :boom: [#7577](https://github.com/cloud-custodian/cloud-custodian/issues/7577): c7n-org Out of Memory (OOM) Condition When Running Merged Policy File Across 500+ Accounts * [#7573](https://github.com/cloud-custodian/cloud-custodian/issues/7573): APIGateway resources returned are tuples * [#7567](https://github.com/cloud-custodian/cloud-custodian/issues/7567): NoneType Issue * [#7566](https://github.com/cloud-custodian/cloud-custodian/issues/7566): account-service-limits for s3 * [#7564](https://github.com/cloud-custodian/cloud-custodian/issues/7564): Error using event-rule invalid-targets filter * [#7559](https://github.com/cloud-custodian/cloud-custodian/issues/7559): Add 'parent' filter to azure.armresource * [#7558](https://github.com/cloud-custodian/cloud-custodian/issues/7558): RDS Cluster Resize Offhours * [#7555](https://github.com/cloud-custodian/cloud-custodian/issues/7555): Unhandled exception when deleting protected instances * [#7554](https://github.com/cloud-custodian/cloud-custodian/issues/7554): aws.ec2 returns terminated instances * [#7553](https://github.com/cloud-custodian/cloud-custodian/issues/7553): Define and use of integer variables (YAML-files) - c7n-org ## Issues Closed * [#7567](https://github.com/cloud-custodian/cloud-custodian/issues/7567): NoneType Issue * [#7554](https://github.com/cloud-custodian/cloud-custodian/issues/7554): aws.ec2 returns terminated instances * [#7548](https://github.com/cloud-custodian/cloud-custodian/issues/7548): post-finding action of aws.distribution resource is throwing error * [#7470](https://github.com/cloud-custodian/cloud-custodian/issues/7470): Using `config-rule` mode with `aws.kinesis` resource results in `KeyError: 'StreamName'` * [#7158](https://github.com/cloud-custodian/cloud-custodian/issues/7158): Error installing c7n-gcp * [#6152](https://github.com/cloud-custodian/cloud-custodian/issues/6152): Error while executing policy flow-logs-enabled * [#1714](https://github.com/cloud-custodian/cloud-custodian/issues/1714): New policies to forbid S3 objects from having public ACLs