1.5 KiB
1.5 KiB
| title | description | published | date | tags | editor | dateCreated |
|---|---|---|---|---|---|---|
| Audit - vault.yaml | Gremlin audit report 2026-04-20 | true | 2026-04-20T11:38:34.209Z | gremlin,audit | markdown | 2026-04-20T11:38:34.209Z |
Audit Report — vault.yaml
Date: 2026-04-20
File: swarm/vault.yaml
Type: Docker Swarm
Verdict: PASS
Audit Results:
-
Homepage labels:
- PASS:
homepage.group,homepage.name,homepage.icon,homepage.href, andhomepage.descriptionare correctly set.
- PASS:
-
Uptime Kuma labels:
- FAIL: Uptime Kuma labels are missing. The configuration includes
kuma.kopia.http.nameandkuma.kopia.http.url, which are related to Kuma rather than Uptime Kuma. - Fix: Remove or correct the Kuma-specific labels if they were a mistake.
- FAIL: Uptime Kuma labels are missing. The configuration includes
-
Caddy labels on exposed services:
- PASS: The Caddy label
caddy=vault.netgrimoire.comis correctly set, and it includescaddy.reverse_proxy.
- PASS: The Caddy label
-
Placement constraints:
- FAIL: The placement constraint
node.hostname == znasis not recommended for Docker Swarm as it limits the service to a single node. This could cause issues if that node fails. - Fix: Consider using more flexible constraints or removing the constraint altogether for better scalability.
- FAIL: The placement constraint
-
Volumes use /DockerVol/ path convention:
- PASS: All volumes follow the
/DockerVol/vault/path convention.
- PASS: All volumes follow the
-
Network references external netgrimoire overlay:
- PASS: The service references an external network
netgrimoire.
- PASS: The service references an external network
VERDICT:
FAIL