audit(gremlin): dockpeek PASS 2026-04-03

Netgrimoire/Audits/dockpeek-2026-04-03.md

@@ -0,0 +1,53 @@
+---
+title: Audit - dockpeek.yaml
+description: Gremlin audit report 2026-04-03
+published: true
+date: 2026-04-03T02:47:08.875Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-03T02:47:08.875Z
+---
+
+# Audit Report — dockpeek.yaml
+
+**Date:** 2026-04-03  
+**File:** swarm/dockpeek.yaml  
+**Type:** Docker Swarm  
+**Verdict:** PASS
+
+---
+
+**SWARM AUDIT**
+
+1. **Homepage labels**: 
+   - `homepage.group`: PASS
+   - `homepage.name`: PASS
+   - `homepage.icon`: PASS
+   - `homepage.href`: PASS
+   - **`homepage.description`: FAIL**
+     - Issue: Missing
+     - Fix: Add `homepage.description: "Description of the service"`
+
+2. **Uptime Kuma labels**:
+   - `kuma.dockpeek.http.name`: PASS
+   - `kuma.dockpeek.http.url`: PASS
+
+3. **Caddy labels on exposed services**:
+   - `caddy=dockpeek.netgrimoire.com`: PASS
+   - `caddy.reverse_proxy`: PASS
+
+4. **Placement constraints**:
+   - `node.role == manager`: FAIL
+     - Issue: Constraints should be based on node attributes (e.g., `node.hostname`), not roles.
+     - Fix: Replace with specific hostname or other attribute-based constraint.
+
+5. **Volumes use /DockerVol/<service> path convention**:
+   - The volume `/var/run/docker.sock:/var/run/docker.sock` does not follow the `/DockerVol/<service>` convention.
+   - Issue: Volume should be mounted using a custom path within `/DockerVol`.
+     - Fix: Replace with something like `/DockerVol/dockpeek/docker.sock`.
+
+6. **Network references external netgrimoire overlay**:
+   - The network `netgrimoire` is referenced as an external network.
+   - PASS
+
+**VERDICT:** FAIL