diff --git a/Netgrimoire/Audits/hydra-2026-05-04.md b/Netgrimoire/Audits/hydra-2026-05-04.md new file mode 100644 index 0000000..fdbbdc2 --- /dev/null +++ b/Netgrimoire/Audits/hydra-2026-05-04.md @@ -0,0 +1,55 @@ +--- +title: Audit - hydra.yaml +description: Gremlin audit report 2026-05-04 +published: true +date: 2026-05-04T11:17:04.234Z +tags: gremlin,audit +editor: markdown +dateCreated: 2026-05-04T11:17:04.234Z +--- + +# Audit Report — hydra.yaml + +**Date:** 2026-05-04 +**File:** swarm/hydra.yaml +**Type:** Docker Swarm +**Verdict:** FAIL + +--- + +### Audit Results: + +1. **Homepage labels**: + - `homepage.group`: "Media Search" (PASS) + - `homepage.name`: "NZBHydra" (PASS) + - `homepage.icon`: "nzbhydra2.png" (PASS) + - `homepage.href`: "https://hydra.netgrimoire.com" (PASS) + - `homepage.description`: "Usenet Search" (PASS) + +2. **Uptime Kuma labels**: + - Both `kuma..http.name` and `kuma..http.url` are not set (FAIL). Uptime Kuma requires these labels to be defined for proper functionality. + Fix: Add the following labels: + ```yaml + kuma.http.name: "NZBHydra" + kuma.http.url: "http://hydra2:5076" + ``` + +3. **Caddy labels on exposed services**: + - `caddy`: "hydra.netgrimoire.com" (PASS) + - `caddy.reverse_proxy`: "hydra2:5076" (PASS) + +4. **Placement constraints**: + - `node.labels.general == true` is used, which looks correct based on the provided context (PASS). Ensure that this constraint aligns with your infrastructure requirements. + +5. **Volumes use /DockerVol/ path convention**: + - The volumes are not using the `/DockerVol/` path convention. They are mounted at `/data/nfs/znas/Docker/hydra2/config` and `/data/nfs/znas/Docker/hydra2/downloads`. + Fix: Change the volume paths to follow the convention, e.g., `/DockerVol/hydra2/config` and `/DockerVol/hydra2/downloads`. + +6. **Network references external netgrimoire overlay**: + - The network `netgrimoire` is correctly referenced as an external network (PASS). + +### VERDICT: FAIL + +Explanation: There are two main issues that need to be addressed to meet all the audit criteria: +1. Uptime Kuma labels are missing. +2. Volumes do not follow the recommended `/DockerVol/` path convention. \ No newline at end of file