Skip to content

The Path to a Well Managed Cloud

Cloud Custodian enables you to manage your cloud resources by filtering, tagging, and then applying actions to them. The YAML DSL allows defininition of rules to enable well-managed cloud infrastructure that's both secure and cost optimized.

Replace ad-hoc cloud-specific scripts with simpler syntax, and Cloud Custodian will apply those policies to your infrastructure:

Cloud Custodian

Join our Slack

Custodian supports managing AWS, Azure, and GCP public cloud environments with Kubernetes, Tencent Cloud, and OpenStack support in beta.

  • Real-time Compliance

    Custodian can actively enforce security policies by natively integrating with the cloud provider's control plane and remediating in real-time. Includes with unified metrics and reporting.

    Getting started

  • Cost Management

    Setup off-hours to save money by turning off resources when they're not being used. Garbage collect unused resources by looking into utilization metrics. Easily tag and reap unused resources.

    Off Hours

  • Shift Left

    Integrate Custodian with Terraform to ensure your infrastructure comes up compliant right from the start, all defined in git for true "Governance as Code" benefits. This feature is currently in Alpha.

    Shift Left

  • Run Anywhere

    Custodian can be run locally, on an instance, or Serverless in AWS Lambda.


  • Open Source

    Cloud Custodian is open source and free for everyone to use and is a CNCF Incubating Project under the Apache 2.0 license.


  • Simple DSL

    Use Custodian to build complex workflows or simple queries, millions of policies can be constructed using our easy to read DSL (Domain Specific Language).


Last update: 2023-03-06 18:53:48