The CNCF Technical Oversight Committee (TOC) has voted to accept Cloud Custodian as a CNCF incubating project. Cloud Custodian is a governance as a code tool that allows organizations to use code to manage and automate enforcement of policies for cloud security, compliance, operations, and cost optimization without hindering developer velocity.
As organizations scale operations in the cloud, enforcing best practice policies and ensuring cloud infrastructure is safe and cost-optimized becomes challenging due to multiple deployment tools, scripts, and teams. Kapil Thangavelu created the project at Capital One when the company was at the beginning of its cloud journey in 2016. Capital One contributed Cloud Custodian to CNCF Sandbox in August 2020 and since then, the project has been downloaded over 100 million times while expanding depth and breath of resource support across all three cloud providers.
Cloud Custodian publishes a roadmap on GitHub. New features this fall include Kubernetes support, AWSCC API support, and GA support for Google Cloud. This year has been focused on project sustainability which are expected to land this year including: governance updates, full ARM64 support, and signing Docker images as part of a newly automated release process.
As a CNCF-hosted project, Cloud Custodian is part of a neutral foundation aligned with its technical interests, as well as the larger Linux Foundation, which provides governance, marketing support, and community outreach.