audit(gremlin): beszel_agents FAIL 2026-04-03

Netgrimoire/Audits/beszel_agents-2026-04-03.md

@@ -0,0 +1,46 @@
+---
+title: Audit - beszel_agents.yaml
+description: Gremlin audit report 2026-04-03
+published: true
+date: 2026-04-03T02:40:11.085Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-03T02:40:11.085Z
+---
+
+# Audit Report — beszel_agents.yaml
+
+**Date:** 2026-04-03  
+**File:** swarm/beszel_agents.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+**SWARM AUDIT**
+
+1. **Homepage labels**: No homepage labels are specified in the file.
+   - **Fix**: Add `homepage.group`, `homepage.name`, `homepage.icon`, `homepage.href`, and `homepage.description` to your Docker Swarm configuration.
+
+2. **Uptime Kuma labels**: No Uptime Kuma labels are specified in the file.
+   - **Fix**: If you are using Uptime Kuma, add the appropriate labels as per its documentation.
+
+3. **Caddy labels on exposed services**:
+   - `beszel-agent-docker2`, `beszel-agent-docker3`, `beszel-agent-docker4`, `beszel-agent-znas`, `beszel-agent-dockerpi1`: No Caddy labels are specified.
+     - **Fix**: Add Caddy labels to specify the domain and reverse proxy configuration for these services.
+
+4. **Placement constraints**:
+   - All services use `node.hostname` placement constraints.
+   - **PASS**: This is correctly configured.
+
+5. **Volumes use /DockerVol/<service> path convention**:
+   - No volumes follow this specific path convention in the file.
+     - **Fix**: Ensure that all volumes are specified with paths like `/DockerVol/beszel-agent-docker2`, `/DockerVol/beszel-agent-docker3`, etc.
+
+6. **Network references external netgrimoire overlay**:
+   - All services reference an external `netgrimoire` network.
+   - **PASS**: This is correctly configured.
+
+**VERDICT: FAIL**
+
+The file fails the audit due to missing homepage, Uptime Kuma, and Caddy labels, and volumes not following the specified path convention.