audit(gremlin): hydra FAIL 2026-04-27

Netgrimoire/Audits/hydra-2026-04-27.md

@@ -0,0 +1,51 @@
+---
+title: Audit - hydra.yaml
+description: Gremlin audit report 2026-04-27
+published: true
+date: 2026-04-27T11:16:34.636Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-27T11:16:34.636Z
+---
+
+# Audit Report — hydra.yaml
+
+**Date:** 2026-04-27  
+**File:** swarm/hydra.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+1. **Homepage labels**: 
+   - `homepage.group`: "Media Search"
+   - `homepage.name`: "NZBHydra"
+   - `homepage.icon`: "nzbhydra2.png"
+   - `homepage.href`: "https://hydra.netgrimoire.com"
+   - `homepage.description`: "Usenet Search"
+   - **PASS**: All homepage labels are correctly set.
+
+2. **Uptime Kuma labels**:
+   - No Uptime Kuma labels are present.
+   - **FAIL**: Uptime Kuma labels (`kuma.<n>.http.name` and `kuma.<n>.http.url`) are missing. Add the required labels to ensure proper integration with Uptime Kuma.
+
+3. **Caddy labels on exposed services**:
+   - `caddy`: "hydra.netgrimoire.com"
+   - `caddy.reverse_proxy`: "hydra2:5076"
+   - **PASS**: Caddy labels are correctly set for reverse proxying.
+
+4. **Placement constraints**:
+   - `node.labels.general == true`
+   - **FAIL**: The placement constraint should reference the node's hostname (`node.hostname`) instead of a general label to ensure proper scheduling.
+
+5. **Volumes use /DockerVol/<service> path convention**:
+   - `/data/nfs/znas/Docker/hydra2/config` and `/data/nfs/znas/Docker/hydra2/downloads`
+   - **FAIL**: Volumes do not follow the `/DockerVol/<service>` path convention. Update the volume paths to match the convention.
+
+6. **Network references external netgrimoire overlay**:
+   - `netgrimoire` network is externally referenced.
+   - **PASS**: The network reference is correct and points to an external overlay network.
+
+**VERDICT: FAIL**
+
+- Address Uptime Kuma labels and update the placement constraints and volume paths to meet the specified requirements.