diff --git a/Netgrimoire/Audits/ntfy-2026-04-20.md b/Netgrimoire/Audits/ntfy-2026-04-20.md
new file mode 100644
index 0000000..8325791
--- /dev/null
+++ b/Netgrimoire/Audits/ntfy-2026-04-20.md
@@ -0,0 +1,56 @@
+---
+title: Audit - ntfy.yaml
+description: Gremlin audit report 2026-04-20
+published: true
+date: 2026-04-20T11:27:50.274Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-20T11:27:50.274Z
+---
+
+# Audit Report — ntfy.yaml
+
+**Date:** 2026-04-20  
+**File:** swarm/ntfy.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+### SWARM AUDIT - ntfy.yaml
+
+#### 1. Homepage Labels
+- **PASS**: homepage.group=Services
+- **PASS**: homepage.name=ntfy
+- **PASS**: homepage.icon=ntfy.png
+- **PASS**: homepage.href=https://ntfy.netgrimoire.com
+- **PASS**: homepage.description=Push Notifications
+
+#### 2. Uptime Kuma Labels
+- **PASS**: kuma.ntfy.http.name=ntfy
+- **PASS**: kuma.ntfy.http.url=https://ntfy.netgrimoire.com
+
+#### 3. Caddy Labels on Exposed Services
+- **FAIL**: No `caddy` labels are set on exposed services.
+
+**Fix**:
+Add the following labels to the `services.ntfy` section:
+```yaml
+labels:
+  caddy: ntfy.netgrimoire.com
+  caddy.reverse_proxy: ntfy:80
+```
+
+#### 4. Placement Constraints
+- **FAIL**: The placement constraints are using `node.platform.arch`, but there is no specific hostname constraint.
+
+**Fix**:
+Add a specific hostname constraint if needed, or remove the platform architecture constraints if not relevant.
+
+#### 5. Volumes Use /DockerVol/<service> Path Convention
+- **PASS**: Volumes follow the `/data/nfs/znas/Docker/ntfy` convention.
+
+#### 6. Network References External netgrimoire Overlay
+- **PASS**: The network `netgrimoire` is referenced as an external overlay.
+
+### VERDICT: FAIL
\ No newline at end of file