►
From YouTube: Cloud Custodian Community Meeting 2023-06-13
Description
A few topics from this meeting:
- Review initial work on the Oracle Cloud provider
- Docker build failures
- Our reliance on the Azure CLI
You can find the notes for this meeting on our github repo: https://github.com/orgs/cloud-custodian/discussions or at HackMD:
- https://github.com/orgs/cloud-custodian/discussions/8659
- https://hackmd.io/@c7n/ryyiU-Lv2
Check out our Slack for more info! http://slack.cloudcustodian.io
A
B
A
A
B
A
D
E
A
B
E
A
Yet
okay
I
find
it
that
that's
there's
a
couple
examples
in
the
docs
around
using
sending
out
to
teams,
but
it's
not
it's
not
as
fleshed
out
as
some
of
the
some
of
like
the
slack
integration.
I
think
the
tips
and
tricks
might
be
a
good
way.
We've
had
some
slack
discussion
there,
some
ways
to
make
that
stuff
a
little
clearer.
A
A
D
A
D
A
C
I
also
wanted
to
add
in
there
was
a
question
about
the
Azure
CLI,
like
the
the
fact
that
we
depend
on
the
Azure
CLI
for
the
for
getting
information.
It
wasn't
clear
because,
on
that
one
I
wanted
to
just
walk
through.
Why?
Why
we
couldn't
just
read
the
follow
ourselves
and
said,
depending
on
the
you'll,
see
a
lot.
A
A
And
this
one,
what
happened
there
was
a.
There
was
a
change
to
the
Azure
SDK,
where
it
added
it.
Had
this
internal
method,
a
run
command
method
and
they
added
a
required
timeout
parameter,
and
we
weren't
using
that.
So
so
some
calls
started
breaking
and
it
looked
like
where
we
were
using
that
it
was
to
have
I
mean
we
include
the
Azure
identity,
SDK
and
that
supports
CLI
credentials,
which
it
can.
A
A
Basically
what
that's
doing
is
parsing
the
the
Azure
profile.json
file
in
your
home
directory
and
it
looked
like
that's
what
it
did
in
like
90
plus
percent
of
cases,
but
it
seemed
like
it
was
also
possible
that
that
config
information
would
get
stored
somewhere
else
like
a
Mac
keychain
or
something
like
that.
And
so,
if
we
tried
to
parse
that
file
directly,
there
would
be
edge
cases
where
it
would
fail.
I.
C
C
C
A
Yeah,
that
seems
reasonably
me,
I.
Think
the
where
I
tripped
was
that
I
am
not
as
familiar
with
Azure
and
it
looked
like.
There
was
a
potential
Edge
case
and
I
thought.
Oh,
let
me
just
fix
the
most
the
simplest
thing
and
then
we'll
come
back
to
this.
So
if
the
next
pass
is
to
parse
Json
file
that
works
for
me
and
again,
no
pressure
but
Mandy.
If
you
do
have
any
input
on
this,
if
any
of
this
sounds
like
something
you've
bumped
into
inside,
welcome
yeah.
C
E
A
C
They
are
open
issues
with
c7n
left
I
I,
don't
know
that
I
want
to
go
down
this
VR
route
because
it
feels
strange
sure,
generally
speaking,
we
we
build.
We
build
the
full
image
from
entry,
and
the
way
this
is
set
up
is
that
it'll
build
the
image
from
release
artifacts
as
well,
which
doesn't
allow
for
testing
off
a
branch.
Let's
say
it
did
put
in
mind
the
question
of
why
this
wasn't
failing
in
CI
I.
C
Think
it's
gonna
be
only
do
the
docker
build
for
Maine
NCI
as
far
as
the
seven
unlocked
image,
the
other
issues
that
we
actually
need
to
get
binary
to
be
installed.
We're
currently
using
the
C7
left
images
a
little
bit
different
because
we're
using
chain
guards
Wolfie
images,
because
it's
all
to
have
better
supply
chain
security,
minimal
images,
stuff,
I
think
in
unfortunately,
modifying
those
images
requires
adopting
a
bunch
more
custom
stuff
which
isn't
going
to
work
in
our
Matrix,
build
on
Docker
images.
C
C
C
I'm
hopeful
that
we'll
at
least
be
practicing
our
release,
automation,
stuff
for
July.
So
we
that's
it's
more
push
button,
but
yeah
this.
This
is
definitely
a
blocker
like
because
it
prevented
the
less
our
signed
images
for
the
last
release
going
out,
as
well
as
blocking
you
out
on
the
daily
day
of
images.
C
A
A
C
C
So
anything
we're
also
going
to
commit
to
the
pr
we'll
effectively
do
a
single
merge
as
a
single
commit
back
into
the
history.
I
mean
generally,
the
the
request
would
be.
You
know
if,
if
you're
getting
reviews
on
things
to
leave
separate
commits
after
the
reviews,
just
so
that
it's
obvious,
what's
being
addressed
from
review
feedback.
B
C
Good
I
I
would
mean
my
I
mean
if
it's
operator,
email
addresses,
yeah
less
concerns
just
because
we
already
pulled
out
with
some
tags
anyways
for
delivery
purposes.
So
we
don't
feel
like
we're
done
anything
it's
like
in
customer
type
stuff,
then
that
would
be
a
different
concern
and
what
I'm
significant
concerned.
B
C
B
C
F
B
C
B
A
C
Yeah,
this
isn't
actually
it.
This
will
end
up
double
encoding
messages,
the
antennas
that
we
actually
assembled
the
envelope
manually
at
the
end
too,
so
we
don't
get
because
right
now
this
is
serializing
the
message:
there's
still
housing,
each
individual
resource
adding
to
a
batch
and
then
saying
Json
serial
is
the
batch,
which
means
you
get
a
double
encoding
on
the
resources.
So
it
just
isn't
quite
right.
C
A
I
did
want
to
point
out
this
one.
This
8614
I
think
that
this
came
through
as
a
fix
to
the
propagate
tags,
National,
Property
or
copy
copy
related
text
for
RDS
and
redshift,
but
it
was
we
made.
You
ended
up
making
the
change
at
a
at
a
higher
level
here
in
in
queries,
I
think
we
were
it's
just
worth
calling
out
in
case.
Anyone
comes
across.
This
may
fix
other
things,
which
means
there's
always
an
outside
chance
that
it
will
break
other
things.
A
F
A
D
C
A
A
Yeah
and
that's
what
it's
not
configured
there
it's
configured
for
rough,
but
not
for
black,
so
yeah
I
was
gonna.
Let
him
know
that
we
should
add
that
configuration
there
and
add
mailer
to
the
format
set
as
part
of
this
PR.
Also,
if
there's
gonna,
if
we're
gonna,
combine
a
black
with
a
refactor
I'm
wondering
if
we
should
split
it
out
and
then
add
the
format
pass
to
like
an
excluded
commit
list.
So
we
can
filter
those
out
later
or
if
we,
if
we
care
that
much.
C
Related
to
the
the
mouse
reformat
I'm,
okay
like
leaving
it
out
suppose
we
get
like
a
you
know.
The
rinky
dig
one-liner
commit
I
mean
which
is
fine
but
like
it
feels
it
feels
part
and
parcel,
like
otherwise,
I
think
if
we
were
to
structure
it,
otherwise
I
guess
doesn't
matter
if
it
comes
before
or
after,
but
I
mean
I.
Think
it's
it's
pretty
reasonable
to
I
understand
what
you're
saying
you're
like
a
semantic
change
here,
but
it's
a
one-liner
so
I'm!
Okay
with
that.
A
Yeah
I'm
fine
with
it
and
just
I,
know
that,
as
we
start
doing,
and
this
ties
in
a
little
bit
to
the
the
oci
commit
too,
because
I
think
there
was,
there
was
a
different
length
there
and
I
was
thinking.
Well,
if
we're
gonna,
if
we're
gonna,
have
a
formatting,
we
should
just
keep
that
the
same
the
same
line
length
and
then
add
oci
to
the
format
specs
so
that
that
lint
pass
touches,
touch
that
out
of
the
gate.
C
A
Okay,
so
I
think
that's
it
for
this
meeting,
then
thanks
everybody
for
coming
more
questions,
any
other
follow-up
stuff
that
comes
up
after
we
can
handle
in
slack
and
oh
Kapil.
You
also
pointed
out.
We
should
have
these
notes
going
in
as
GitHub
discussions.
So
if
we
have
any
direct
meeting
follow-up,
we
can
have
it
right
in
GitHub
and
I
had
not
been
posting
those
there.
So
I'm
going
to
start
doing
that
with
today's
actually.
C
A
We're
putting
them
in
it's
a
bit
of
a
manual
thing
actually,
unless
somebody
knows
of
a
way
to
do
it
directly
from
the
Google
me
to
YouTube,
but
we've
been
putting
those
over
there
and
then
because
they
get
added
to
the
community
meeting
playlist.
They
also
end
up
in
that
they
get
transcribed
and
they
end
up
in
that
list
at
where
is
this
spot?
A
A
C
A
A
A
Yeah
I
saw
something
about
live
streams
and
I
was
hesitant
to
do
that
because
occasionally,
we'll
have
a
discussion
on
someone
asked
a
question
and
they
post
credits
or
account
IDs
sensitive
info
and
it's
nice
to
have
that
editing
a
while,
but
I
like
the
option
of
having
the
edit
pass
to
pull
that
stuff
out.
Maybe
we
don't
need
it
anymore,
though.
Maybe
we're
in
a
live
streaming
world
and
we
should
just
live
stream.
The
thing
do
we
is
since
we're
we're
in
a
community
meeting.