From 08edc9e9a0a1bc5d4846c63293c156b71267b6dc Mon Sep 17 00:00:00 2001
From: traveler <traveler@wasted-bandwidth.net>
Date: Thu, 2 Apr 2026 21:52:02 -0500
Subject: [PATCH] audit(gremlin): forgejo FAIL 2026-04-03

---
 Netgrimoire/Audits/forgejo-2026-04-03.md | 53 ++++++++++++++++++++++++
 1 file changed, 53 insertions(+)
 create mode 100644 Netgrimoire/Audits/forgejo-2026-04-03.md

diff --git a/Netgrimoire/Audits/forgejo-2026-04-03.md b/Netgrimoire/Audits/forgejo-2026-04-03.md
new file mode 100644
index 0000000..95d8959
--- /dev/null
+++ b/Netgrimoire/Audits/forgejo-2026-04-03.md
@@ -0,0 +1,53 @@
+---
+title: Audit - forgejo.yaml
+description: Gremlin audit report 2026-04-03
+published: true
+date: 2026-04-03T02:52:02.048Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-03T02:52:02.048Z
+---
+
+# Audit Report — forgejo.yaml
+
+**Date:** 2026-04-03  
+**File:** swarm/forgejo.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+### SWARM AUDIT
+
+1. **Homepage labels**:
+   - `homepage.group`: Applications (PASS)
+   - `homepage.name`: Forgejo (PASS)
+   - `homepage.icon`: forgejo.png (FAIL)
+     - Issue: The icon file path should be relative to the service's working directory or a valid URL.
+   - `homepage.href`: https://git.netgrimoire.com (PASS)
+   - `homepage.description`: Git Repository (PASS)
+
+2. **Uptime Kuma labels**:
+   - `kuma.git.http.name`: Forgejo (PASS)
+   - `kuma.git.http.url`: http://forgejo:3000 (PASS)
+
+3. **Caddy labels on exposed services**:
+   - `caddy=git.netgrimoire.com` (PASS)
+   - `caddy.reverse_proxy=forgejo:3000` (PASS)
+
+4. **Placement constraints**:
+   - `node.hostname==znas` (PASS)
+
+5. **Volumes use /DockerVol/<service> path convention**:
+   - `/DockerVol/forgejo:/data` (PASS)
+   - `/etc/timezone:/etc/timezone:ro` (FAIL)
+     - Issue: The timezone files should be mounted from a local path within the host or a valid network location.
+   - `/etc/localtime:/etc/localtime:ro` (FAIL)
+     - Same issue as above.
+
+6. **Network references external netgrimoire overlay**:
+   - `netgrimoire`: (PASS)
+
+### Final Line
+
+VERDICT: FAIL
\ No newline at end of file