@futzle these are good things, an opportunity to make your systems run well and reliably under the auspices of security compliance. You can choose _how_ to comply as long as you are willing to explain it to the auditor. Be proud of what you build and that shouldn't be a problem 💪