audit(gremlin): kuma FAIL 2026-05-04

Netgrimoire/Audits/kuma-2026-05-04.md

@@ -0,0 +1,62 @@
+---
+title: Audit - kuma.yaml
+description: Gremlin audit report 2026-05-04
+published: true
+date: 2026-05-04T11:21:02.893Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-05-04T11:21:02.893Z
+---
+
+# Audit Report — kuma.yaml
+
+**Date:** 2026-05-04  
+**File:** swarm/kuma.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+1. **Homepage labels**:
+   - `homepage.group`: "Monitoring"
+   - `homepage.name`: "Kuma Uptime"
+   - `homepage.icon`: "uptime-kuma.png"
+   - `homepage.href`: "https://kuma.netgrimoire.com"
+   - `homepage.description`: "Services Monitor"
+
+   **PASS**: All homepage labels are correctly defined.
+
+2. **Uptime Kuma labels**:
+   - `kuma.kuma.http.name`: "Uptime Kuma"
+   - `kuma.kuma.http.url`: "https://kuma.netgrimoire.com"
+
+   **FAIL**: The key format is incorrect. It should be `kuma.<n>.http.name` and `kuma.<n>.http.url`. The correct labels are:
+   ```yaml
+   - kuma.1.http.name=Uptime Kuma
+   - kuma.1.http.url=https://kuma.netgrimoire.com
+   ```
+
+3. **Caddy labels on exposed services**:
+   - `caddy=kuma.netgrimoire.com`
+   - `caddy.reverse_proxy=kuma:3001`
+   - `caddy.import=authentik`
+
+   **PASS**: All Caddy labels are correctly defined.
+
+4. **Placement constraints**:
+   - `node.hostname==docker3`
+
+   **PASS**: The constraint is correctly defined.
+
+5. **Volumes use /DockerVol/<service> path convention**:
+   - `/DockerVol/kuma:/app/data`
+
+   **PASS**: The volume path follows the specified convention.
+
+6. **Network references external netgrimoire overlay**:
+
+   **PASS**: The network `netgrimoire` is correctly referenced and is an external network.
+
+**VERDICT: FAIL**
+
+The Uptime Kuma labels are incorrectly formatted. They should follow the pattern `kuma.<n>.http.name` and `kuma.<n>.http.url`.