From 1d5bc7b595164fb0fe66d1a00cee49f7cd416f6b Mon Sep 17 00:00:00 2001 From: traveler Date: Thu, 2 Apr 2026 21:45:35 -0500 Subject: [PATCH] audit(gremlin): database FAIL 2026-04-03 --- Netgrimoire/Audits/database-2026-04-03.md | 52 +++++++++++++++++++++++ 1 file changed, 52 insertions(+) create mode 100644 Netgrimoire/Audits/database-2026-04-03.md diff --git a/Netgrimoire/Audits/database-2026-04-03.md b/Netgrimoire/Audits/database-2026-04-03.md new file mode 100644 index 0000000..a962181 --- /dev/null +++ b/Netgrimoire/Audits/database-2026-04-03.md @@ -0,0 +1,52 @@ +--- +title: Audit - database.yaml +description: Gremlin audit report 2026-04-03 +published: true +date: 2026-04-03T02:45:35.594Z +tags: gremlin,audit +editor: markdown +dateCreated: 2026-04-03T02:45:35.594Z +--- + +# Audit Report — database.yaml + +**Date:** 2026-04-03 +**File:** swarm/database.yaml +**Type:** Docker Swarm +**Verdict:** FAIL + +--- + +### Audit of `swarm/database.yaml` + +#### 1. Homepage labels: homepage.group, homepage.name, homepage.icon, homepage.href, homepage.description + +**PASS**: All homepage labels are present and correctly configured. + +#### 2. Uptime Kuma labels: kuma..http.name, kuma..http.url + +**FAIL**: No Uptime Kuma services or labels found in the configuration. +- **Fix**: Add a section for Uptime Kuma if necessary, including the required labels. + +#### 3. Caddy labels on exposed services: caddy=, caddy.reverse_proxy + +**PASS**: The `pgadmin4` service has the correct Caddy labels: +- `caddy=pgadmin.netgrimoire.com` +- `caddy.import=authentik` +- `caddy.reverse_proxy="{{upstreams 80}}"` + +#### 4. Placement constraints: node.hostname + +**FAIL**: There are no placement constraints defined in the configuration. +- **Fix**: Consider adding constraints to ensure services run on specific nodes if necessary. + +#### 5. Volumes use /DockerVol/ path convention + +**FAIL**: No volumes are specified in the configuration. +- **Fix**: If volumes are needed, add them following the `/DockerVol/` path convention. + +#### 6. Network references external netgrimoire overlay + +**PASS**: The service references an external network named `netgrimoire`. + +### VERDICT: FAIL \ No newline at end of file