From 762d227a8518322e8816d80b19da74119d218407 Mon Sep 17 00:00:00 2001 From: traveler Date: Mon, 20 Apr 2026 06:48:12 -0500 Subject: [PATCH] audit(gremlin): caddy FAIL 2026-04-20 --- Netgrimoire/Audits/caddy-2026-04-20.md | 42 ++++++++++++++++++++++++++ 1 file changed, 42 insertions(+) create mode 100644 Netgrimoire/Audits/caddy-2026-04-20.md diff --git a/Netgrimoire/Audits/caddy-2026-04-20.md b/Netgrimoire/Audits/caddy-2026-04-20.md new file mode 100644 index 0000000..b8ff15f --- /dev/null +++ b/Netgrimoire/Audits/caddy-2026-04-20.md @@ -0,0 +1,42 @@ +--- +title: Audit - caddy.yaml +description: Gremlin audit report 2026-04-20 +published: true +date: 2026-04-20T11:48:12.843Z +tags: gremlin,audit +editor: markdown +dateCreated: 2026-04-20T11:48:12.843Z +--- + +# Audit Report — caddy.yaml + +**Date:** 2026-04-20 +**File:** swarm/stack/caddy/caddy.yaml +**Type:** Docker Swarm +**Verdict:** FAIL + +--- + +### SWARM AUDIT REPORT + +#### 1. Homepage labels: homepage.group, homepage.name, homepage.icon, homepage.href, homepage.description +**FAIL**: No homepage labels are present in the configuration. + +#### 2. Uptime Kuma labels: kuma..http.name, kuma..http.url +**FAIL**: No Uptime Kuma labels or references are found. + +#### 3. Caddy labels on exposed services: +- **PASS**: Found `caddy=` and `caddy.reverse_proxy` labels on the `caddy` service. +- **FAIL**: No other services have Caddy-related labels. + +#### 4. Placement constraints: node.hostname +**PASS**: Both services (`caddy` and `crowdsec`) are correctly constrained to run on a node with the hostname `znas`. + +#### 5. Volumes use /DockerVol/ path convention: +- **FAIL**: The volume paths do not follow the `/DockerVol/` convention. + - **Fix**: Update volume paths to use the convention, e.g., `/DockerVol/caddy/data` instead of `/export/Docker/caddy:/data`. + +#### 6. Network references external netgrimoire overlay +**PASS**: Both `netgrimoire` and `crowdsec_net` networks are correctly referenced as external. + +### VERDICT: FAIL \ No newline at end of file