traveler/Netgrimoire
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

audit(gremlin): caddy FAIL 2026-04-20

Browse source
This commit is contained in:
traveler 2026-04-20 06:48:12 -05:00
parent 1c34139c66
commit 762d227a85
1 changed files with 42 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

42
Netgrimoire/Audits/caddy-2026-04-20.md Normal file
View file

@ -0,0 +1,42 @@
---
title: Audit - caddy.yaml
description: Gremlin audit report 2026-04-20
published: true
date: 2026-04-20T11:48:12.843Z
tags: gremlin,audit
editor: markdown
dateCreated: 2026-04-20T11:48:12.843Z
---
# Audit Report — caddy.yaml
**Date:** 2026-04-20
**File:** swarm/stack/caddy/caddy.yaml
**Type:** Docker Swarm
**Verdict:** FAIL
---
### SWARM AUDIT REPORT
#### 1. Homepage labels: homepage.group, homepage.name, homepage.icon, homepage.href, homepage.description
**FAIL**: No homepage labels are present in the configuration.
#### 2. Uptime Kuma labels: kuma.<n>.http.name, kuma.<n>.http.url
**FAIL**: No Uptime Kuma labels or references are found.
#### 3. Caddy labels on exposed services:
- **PASS**: Found `caddy=<domain>` and `caddy.reverse_proxy` labels on the `caddy` service.
- **FAIL**: No other services have Caddy-related labels.
#### 4. Placement constraints: node.hostname
**PASS**: Both services (`caddy` and `crowdsec`) are correctly constrained to run on a node with the hostname `znas`.
#### 5. Volumes use /DockerVol/<service> path convention:
- **FAIL**: The volume paths do not follow the `/DockerVol/<service>` convention.
- **Fix**: Update volume paths to use the convention, e.g., `/DockerVol/caddy/data` instead of `/export/Docker/caddy:/data`.
#### 6. Network references external netgrimoire overlay
**PASS**: Both `netgrimoire` and `crowdsec_net` networks are correctly referenced as external.
### VERDICT: FAIL