1.7 KiB
1.7 KiB
| title | description | published | date | tags | editor | dateCreated |
|---|---|---|---|---|---|---|
| Audit - portainer-agent-stack.yml | Gremlin audit report 2026-04-13 | true | 2026-04-13T11:31:08.685Z | gremlin,audit | markdown | 2026-04-13T11:31:08.685Z |
Audit Report — portainer-agent-stack.yml
Date: 2026-04-13
File: swarm/portainer-agent-stack.yml
Type: Docker Swarm
Verdict: FAIL
Audit Results:
-
Homepage labels: homepage.group, homepage.name, homepage.icon, homepage.href, homepage.description
- PASS: All required labels are present and configured.
-
Uptime Kuma labels: kuma..http.name, kuma..http.url
- FAIL: No Uptime Kuma labels found in the configuration.
- Fix: Add Uptime Kuma labels under the
deploysection of theportainerservice.
- Fix: Add Uptime Kuma labels under the
- FAIL: No Uptime Kuma labels found in the configuration.
-
Caddy labels on exposed services: caddy=, caddy.reverse_proxy
- PASS: Caddy labels are present and correctly configured for exposing the Portainer service.
-
Placement constraints: node.hostname
- FAIL: A placement constraint is commented out (
# constraints: [node.platform.os == linux]).- Fix: Uncomment and modify the constraint if necessary, or remove it if not needed.
- PASS: An explicit hostname constraint is used for the
portainerservice (constraints: - node.hostname == znas).
- FAIL: A placement constraint is commented out (
-
Volumes use /DockerVol/ path convention
- FAIL: The volume path
/DockerVol/portainer:/datadoes not follow the expected pattern.- Fix: Change the volume path to
/DockerVol/portainer/data.
- Fix: Change the volume path to
- FAIL: The volume path
-
Network references external netgrimoire overlay
- PASS: The
netgrimoirenetwork is referenced correctly and marked as external.
- PASS: The
VERDICT: FAIL