geeksbsmrt · geeksbsmrt · Feb 21, 2026 · Feb 21, 2026 · Feb 21, 2026 · Feb 21, 2026
diff --git a/.antigravity/rules.md b/.antigravity/rules.md
@@ -62,4 +62,11 @@ To ensure the home lab remains secure and stable, the following standards apply:
   - In a "Service Down" situation, manual fixes may be applied to the live instance **ONLY after explicit USER permission**.
   - Once verified, changes **MUST** be immediately committed to Git.
 - **Idempotency**: All setup scripts must be safe to run multiple times.
-- **Documentation**: Maintain `ReadMe.md` parity with cluster changes.
+
+## 6. Monitoring & Observability
+
+Every new service added MUST be onboarded to the monitoring stack using native tools to avoid sidecar vulnerabilities:
+
+1. **Uptime Kuma**: Add the public/internal URL for immediate up/down status tracking.
+2. **Prometheus / Blackbox**: Add HTTP and/or DNS probes to the `website_and_http_checks` or `dns_service_checks` in `prometheus.yml.template`.
+3. **Alerts**: Any new probes must be covered by the generic "EndpointDown" rule in `alert_rules.yml`. Do not add custom third-party exporters unless explicitly required.
diff --git a/ReadMe.md b/ReadMe.md
@@ -1,6 +1,6 @@
-[![Deploy Docker Stack to Prod](https://github.com/geeksbsmrt/RaspberryPi/actions/workflows/deploy-prod.yaml/badge.svg)](https://github.com/geeksbsmrt/RaspberryPi/actions/workflows/deploy-prod.yaml)
+# geeksbsmrt/RaspberryPi Home Lab Configuration
 
-# RaspberryPi Home Lab Configuration
+[![Deploy Docker Stack to Prod](https://github.com/geeksbsmrt/RaspberryPi/actions/workflows/deploy-prod.yaml/badge.svg)](https://github.com/geeksbsmrt/RaspberryPi/actions/workflows/deploy-prod.yaml)
 
 This repository contains configuration files and resources for setting up and managing a Raspberry Pi-based home lab environment. It leverages tools like Docker, pre-commit hooks, and encrypted secrets management to ensure a secure and maintainable setup.
 
@@ -21,3 +21,9 @@ This repository contains configuration files and resources for setting up and ma
 docker/                  # Docker configurations and Dockerfiles
 secrets.sops.env         # Encrypted environment variables
 ```
+
+## Monitoring
+
+- **Uptime Kuma**: External and internal status page (`uptime.home`).
+- **Prometheus & Grafana**: Time-series metrics & visualization (`grafana.home`).
+- **Resource Scope**: Node Exporter (Host), cAdvisor (Containers), Blackbox (Endpoints), Caddy (Web Traffic).
diff --git a/docker/docker-compose.yml b/docker/docker-compose.yml
@@ -207,6 +207,7 @@ services:
     environment:
       - GF_SECURITY_ADMIN_USER=admin
       - GF_SECURITY_ADMIN_PASSWORD=${GRAFANA_ADMIN_PASSWORD}
+      - GF_DASHBOARDS_DEFAULT_HOME_DASHBOARD_PATH=/etc/grafana/provisioning/dashboards/json/homelab-overview.json
       - TZ="America/New_York"
     networks:
       macvlan:

diff --git a/docker/grafana/provisioning/dashboards/dashboards.yaml b/docker/grafana/provisioning/dashboards/dashboards.yaml
@@ -0,0 +1,13 @@
+apiVersion: 1
+
+providers:
+  - name: "Homelab"
+    orgId: 1
+    folder: "Homelab"
+    type: file
+    disableDeletion: false
+    editable: true
+    updateIntervalSeconds: 30
+    options:
+      path: /etc/grafana/provisioning/dashboards/json
+      foldersFromFilesStructure: false