State of the Mop: Cloud Custodian in 2023

Cloud Custodian is an open source rules engine for cloud management that allows users to define policies and take actions on resources. The presentation covers updates on the project's development and roadmap for 2023, as well as the contribution process.

• Cloud Custodian is an open source rules engine for cloud management that allows users to define policies and take actions on resources
• Updates on the project's development include new core maintainers, new providers, and improvements to policy authoring experiences
• The roadmap for 2023 includes improving policy authoring experiences, adding policy tracing and debugging capabilities, and expanding built-in policy testing
• The contribution process involves running everything out of the make file, laying out the source tree, and running tests and metrics on different providers
• C7n-left currently only works with Terraform, but the team is working on adding support for CloudFormation

Cloud Custodian is like a Swiss army knife for cloud management, allowing users to filter and take actions on resources based on arbitrary policies. The project has had about 70 authors contribute 280 different commits across different resources and providers. The team has added new core maintainers and providers, and is working on improving policy authoring experiences and adding new capabilities like policy tracing and debugging. The contribution process involves running everything out of the make file and running tests and metrics on different providers. C7n-left currently only works with Terraform, but the team is working on adding support for CloudFormation.

2022 has been an impactful year for Cloud Custodian as the intersection of compliance and finops continues to grow. This session will cover the past year's worth of development and discuss where we're planning on going for 2023: - General project health updates - Overview of Kubernetes usage with c7n - Overview of c7n-left, a new module to enforce policies at the planning stage of deployment The bulk of the session will be dedicated to a tour/outline of how the project is laid out and organized so that attendees can understand the contribution process: - Project architecture and organization - Overview of the testing processes and pipelines - Release processes - Contribution and review examples and tutorial We will also cover our progress in other project goals as they relate to project graduation: - Dedicated maintainer process and workflow - Governance model All skill levels welcome, knowledge of Python and typical cloud stacks (AWS, Azure, GCP, and K8s) helps.