The Path to a Well Managed Cloud¶
Cloud Custodian enables you to manage your cloud resources by filtering, tagging, and then applying actions to them. The YAML DSL allows defininition of rules to enable well-managed cloud infrastructure that's both secure and cost optimized.
Replace ad-hoc cloud-specific scripts with simpler syntax, and Cloud Custodian will apply those policies to your infrastructure:
Custodian supports managing AWS, Azure, and GCP public cloud environments with Kubernetes, Tencent Cloud, and OpenStack support in beta.
-
Real-time Compliance
Custodian can actively enforce security policies by natively integrating with the cloud provider's control plane and remediating in real-time. Includes with unified metrics and reporting.
-
Cost Management
Setup off-hours to save money by turning off resources when they're not being used. Garbage collect unused resources by looking into utilization metrics. Easily tag and reap unused resources.
-
Shift Left
Integrate Custodian with Terraform to ensure your infrastructure comes up compliant right from the start, all defined in git for true "Governance as Code" benefits. This feature is currently in Alpha.
-
Run Anywhere
Custodian can be run locally, on an instance, or Serverless in AWS Lambda.
-
Open Source
Cloud Custodian is open source and free for everyone to use and is a CNCF Incubating Project under the Apache 2.0 license.
-
Simple DSL
Use Custodian to build complex workflows or simple queries, millions of policies can be constructed using our easy to read DSL (Domain Specific Language).