diff --git a/roles/docker/templates/redlib-compose.yml.j2 b/roles/docker/templates/redlib-compose.yml.j2
new file mode 100644
index 0000000..c24ac66
--- /dev/null
+++ b/roles/docker/templates/redlib-compose.yml.j2
@@ -0,0 +1,24 @@
+services:
+  redlib:
+    image: quay.io/redlib/redlib:latest
+    restart: always
+    container_name: "redlib"
+    user: nobody
+    read_only: true
+    security_opt:
+      - no-new-privileges:true
+      # - seccomp=seccomp-redlib.json
+    cap_drop:
+      - ALL
+    env_file: .env
+    networks:
+      - redlib
+    healthcheck:
+      test: ["CMD", "wget", "--spider", "-q", "--tries=1", "http://localhost:8080/settings"]
+      interval: 5m
+      timeout: 3s
+
+networks:
+  default:
+    external: true
+    name: lava
\ No newline at end of file