Simple Cloud Custodian Policy - Cloud-custodian Typing CST Test
Loading…
Simple Cloud Custodian Policy — Cloud-custodian Code
A simple Cloud Custodian policy to stop unused EC2 instances in AWS.
# cloud_custodian/demo/stop_unused_ec2.yaml
policies:
- name: stop-unused-ec2
resource: aws.ec2
filters:
- State: running
- type: value
key: "tag:Environment"
value: absent
actions:
- stopCloud-custodian Language Guide
Cloud Custodian is an open-source cloud governance and policy-as-code tool that enables organizations to define, enforce, and automate cloud resource policies across AWS, Azure, GCP, and other cloud providers.
Primary Use Cases
- ▸Enforcing cloud security policies
- ▸Cost optimization via unused resource cleanup
- ▸Compliance auditing and reporting
- ▸Automated remediation of policy violations
- ▸Governance of multi-cloud environments
Notable Features
- ▸Policy-as-code using YAML manifests
- ▸Supports AWS, Azure, GCP, and Kubernetes
- ▸Filters and actions for fine-grained resource control
- ▸Automated remediation and notifications
- ▸Integration with CI/CD and event-driven triggers
Origin & Creator
Developed by Capital One in 2016, now maintained by a community under the Cloud Custodian GitHub organization.
Industrial Note
Cloud Custodian is widely adopted in highly regulated industries for automated enforcement of security, compliance, and cost management policies at scale.