The UID for the DSMR nginx is hardcoded 100. That means the process runs as a user which may clash with another (it usurps the permissions of that user, e.g. _apt on ubuntu). While it is containerised, it is less secure than running as some separate guaranteed non-privileged user. Having the container work well with --user (or docker compose user: setting) would be an improvement.
The nginx config contains both conf.d and http.d of which only the latter is used
The nginx config accepts TLS v1.1. Time to be more strict.
Request
Security improvements.
Additional information
No response