diff --git a/Netgrimoire/Audits/scanopy-2026-04-20.md b/Netgrimoire/Audits/scanopy-2026-04-20.md
new file mode 100644
index 0000000..2029e10
--- /dev/null
+++ b/Netgrimoire/Audits/scanopy-2026-04-20.md
@@ -0,0 +1,49 @@
+---
+title: Audit - scanopy.yaml
+description: Gremlin audit report 2026-04-20
+published: true
+date: 2026-04-20T11:34:56.912Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-20T11:34:56.912Z
+---
+
+# Audit Report — scanopy.yaml
+
+**Date:** 2026-04-20  
+**File:** swarm/scanopy.yaml  
+**Type:** Docker Swarm  
+**Verdict:** PASS
+
+---
+
+**SWARM AUDIT REPORT**
+
+1. **Homepage labels**:
+   - `homepage.group`: "Monitoring" (PASS)
+   - `homepage.name`: "Scanopy" (PASS)
+   - `homepage.icon`: "scanopy.png" (PASS, though the file path should be validated for existence)
+   - `homepage.href`: "https://scn.netgrimoire.com" (PASS)
+   - `homepage.description`: "Network discovery & topology" (PASS)
+
+2. **Uptime Kuma labels**:
+   - No Uptime Kuma services are listed in the YAML file, so this section is irrelevant. (PASS)
+
+3. **Caddy labels on exposed services**:
+   - `caddy: scn.netgrimoire.com` (PASS)
+   - `caddy.reverse_proxy`: `{{upstreams 60072}}` (PASS)
+
+4. **Placement constraints**:
+   - All services are constrained to run on `node.hostname == docker4`. (PASS)
+
+5. **Volumes use `/DockerVol/<service>` path convention**:
+   - `postgres`: `/DockerVol/scanopy/postgres` (PASS)
+   - `server`: `/DockerVol/scanopy/server-data` (PASS)
+   - `daemon-config`: `/DockerVol/scanopy/daemon-config` (PASS)
+
+6. **Network references external `netgrimoire` overlay**:
+   - All services reference the external `netgrimoire` network. (PASS)
+
+**VERDICT: PASS**
+
+All checks have been successfully verified according to the provided criteria.
\ No newline at end of file