audit(gremlin): caddy FAIL 2026-04-13

2026-04-13 06:48:15 -05:00 · 2026-04-13 06:48:15 -05:00 · be725e7080
commit be725e7080
parent 1b7587703f
1 changed files with 49 additions and 0 deletions
--- a/Netgrimoire/Audits/caddy-2026-04-13.md
+++ b/Netgrimoire/Audits/caddy-2026-04-13.md
@ -0,0 +1,49 @@
+---
+title: Audit - caddy.yaml
+description: Gremlin audit report 2026-04-13
+published: true
+date: 2026-04-13T11:48:15.807Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-13T11:48:15.807Z
+---
+
+# Audit Report — caddy.yaml
+
+**Date:** 2026-04-13  
+**File:** swarm/stack/caddy/caddy.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+```plaintext
+1. Homepage labels:
+   - homepage.group: FAIL - Missing
+   - homepage.name: FAIL - Missing
+   - homepage.icon: FAIL - Missing
+   - homepage.href: FAIL - Missing
+   - homepage.description: FAIL - Missing
+
+2. Uptime Kuma labels:
+   - kuma.<n>.http.name: FAIL - Not applicable (no Uptime Kuma service found)
+   - kuma.<n>.http.url: FAIL - Not applicable (no Uptime Kuma service found)
+
+3. Caddy labels on exposed services:
+   - caddy=<domain>: PASS
+   - caddy.reverse_proxy: FAIL - Missing
+
+4. Placement constraints:
+   - node.hostname: PASS
+
+5. Volumes use /DockerVol/<service> path convention:
+   - caddy-logs: FAIL - Not following the convention (using /export/Docker/caddy/Caddyfile:/etc/caddy/Caddyfile)
+   - crowdsec-db: FAIL - Not following the convention (using default volume)
+
+6. Network references external netgrimoire overlay:
+   - netgrimoire: PASS
+   - vpn: FAIL - Using internal network, should be external
+   - crowdsec_net: PASS
+
+VERDICT: FAIL
+```