audit(gremlin): Calibre-web FAIL 2026-04-03

Netgrimoire/Audits/Calibre-web-2026-04-03.md

@@ -0,0 +1,44 @@
+---
+title: Audit - Calibre-web.yaml
+description: Gremlin audit report 2026-04-03
+published: true
+date: 2026-04-03T01:20:03.438Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-03T01:20:03.438Z
+---
+
+# Audit Report — Calibre-web.yaml
+
+**Date:** 2026-04-03  
+**File:** swarm/Calibre-web.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+**SWARM AUDIT REPORT**
+
+1. **Homepage labels: homepage.group, homepage.name, homepage.icon, homepage.href, homepage.description**
+   - **PASS**: All homepage labels are present and correctly configured.
+
+2. **Uptime Kuma labels: kuma.<n>.http.name, kuma.<n>.http.url**
+   - **FAIL**: Uptime Kuma labels are not defined in the provided YAML file.
+     **Fix**: Add appropriate Uptime Kuma labels to monitor the service.
+
+3. **Caddy labels on exposed services: caddy=<domain>, caddy.reverse_proxy**
+   - **PASS**: Caddy labels `caddy=books.netgrimoire.com , books.pncharris.com` and `caddy.reverse_proxy=calibre-web-automated:8083` are present.
+
+4. **Placement constraints: node.hostname**
+   - **PASS**: The service is constrained to run on the node with hostname `znas`.
+
+5. **Volumes use /DockerVol/<service> path convention**
+   - **FAIL**: The volume `/data/nfs/znas/Data/media/books/library/Netgrimoire:/calibre-library:shared` does not follow the `/DockerVol/<service>` path convention.
+     **Fix**: Update the volume path to match the convention, e.g., `/DockerVol/calibre-web-automated`.
+
+6. **Network references external netgrimoire overlay**
+   - **PASS**: The service uses an external network `netgrimoire` which is correctly referenced.
+
+**VERDICT: FAIL**
+
+The audit found issues with Uptime Kuma labels and the volume path convention that need to be addressed before marking the service as fully compliant.