Documentation Index
Fetch the complete documentation index at: https://docs.maximem.ai/llms.txt
Use this file to discover all available pages before exploring further.
Authentication and Security
Credential management is the foundation of a secure Synap integration. A compromised API key gives an attacker full access to your instance’s memory store.API key stored in a secrets manager
Never hardcode API keys in source code, environment files committed to version control, or Docker images. Use a proper secrets manager:
- AWS: Secrets Manager or SSM Parameter Store
- GCP: Secret Manager
- Azure: Key Vault
- Self-hosted: HashiCorp Vault
API key is stored in a secrets manager (not in code,
.env files, or container images)Webhook signature verification implemented
If you receive webhooks from Synap, always verify the signature before processing the payload. Unverified webhooks can be spoofed by attackers.
Webhook signature verification is implemented and tested
API key rotation schedule established
API keys should be rotated periodically. You can have multiple active keys per instance, so rotation is zero-downtime: generate a new key, roll it out, then revoke the old one.
- Recommended rotation cadence: every 90 days for standard deployments, every 30 days for high-security environments
- Document the rotation procedure in your team’s runbook
- Automate rotation if possible (e.g., via a cron job or CI/CD step)
API key rotation schedule is established and documented
SDK Configuration
Proper SDK configuration ensures your integration performs well under production load and does not generate excessive logging or resource usage.Log level set appropriately
In production, set
log_level to "WARNING" or "ERROR". The "DEBUG" and "INFO" levels generate high-volume output that degrades performance and can expose sensitive information in log aggregators.log_level is set to "WARNING" or "ERROR" (not "DEBUG" or "INFO")Timeouts configured for your SLA
Default timeouts are suitable for most applications, but review them against your latency requirements:
| Timeout | Default | Guidance |
|---|---|---|
connect | 5s | Increase to 10s if your infrastructure has high network latency |
read | 30s | Decrease for latency-sensitive paths; increase for large batch operations |
write | 10s | Usually sufficient; increase for large document ingestion |
stream_idle | 60s | gRPC streaming idle timeout; increase for low-traffic streams |
Timeouts are reviewed and aligned with your application’s SLA requirements
Retry policy tuned
The default retry policy (3 attempts, exponential backoff with jitter) is appropriate for most use cases. Adjust if needed:
- High-throughput systems: Reduce
max_attemptsto 2 to avoid retry storms - Critical operations: Increase
max_attemptsto 5 for reliability - Low-latency paths: Reduce
backoff_maxto limit total retry time
Retry policy is reviewed and tuned for your workload profile
Cache backend enabled
The SQLite cache backend significantly improves retrieval performance for repeated queries. Ensure it is enabled:
cache_backend is set to "sqlite" for production performanceSession timeout configured
The
session_timeout_minutes setting controls how long an authenticated session lasts before requiring re-authentication. The default is appropriate for most cases, but adjust based on your security requirements:- Standard applications: 60-480 minutes (1-8 hours)
- High-security environments: 5-30 minutes
- Long-running batch processes: 720-1440 minutes (12-24 hours)
session_timeout_minutes is configured appropriately (range: 5-1440)Memory Architecture
Synap generates each Instance’s memory configuration automatically from the use-case file you upload. Before going to production, make sure that file reflects the agent you are actually deploying.Use-case file accurately describes the production agent
The use-case Markdown you uploaded at instance creation drives every memory decision: which categories are extracted, how scopes are partitioned, what retention behavior applies. Review it now and re-upload an updated version if the agent’s purpose, audience, or compliance requirements have shifted since you created the Instance.
Use-case file reflects the production agent’s behavior, audience, and compliance posture
Verify retrieval quality on representative queries
Before going live, run a handful of representative production queries against the Instance and confirm the returned memories are relevant and complete. Catch retrieval drift before users do.
Retrieval quality validated on at least 10 representative queries
Confirm the Instance is in the active state
Check the Dashboard to confirm your Instance has moved from
initializing to active and that its memory architecture has been generated and applied. Do not start production traffic on an Instance that is still initializing.
Instance status is
active and ready to accept trafficError Handling
Robust error handling ensures your application degrades gracefully when Synap encounters issues, rather than crashing or returning empty responses.All SynapError subtypes caught appropriately
Handle transient and permanent errors differently:
Error handling distinguishes between transient and permanent errors
Transient errors logged with correlation_id
Every
SynapError includes a correlation_id field. Always log it — this is the primary identifier Synap support uses to trace issues.All error logs include the
correlation_id from the Synap errorGraceful degradation implemented
Your application should continue functioning when Synap is unavailable — just without memory context. This is the single most important resilience pattern.
Application continues working (without memory) when Synap is unavailable
Monitoring
Observability is critical for understanding how your Synap integration performs in production and catching issues before they impact users.Dashboard analytics reviewed regularly
The Synap Dashboard provides real-time analytics for each instance:
- API call volume and success rate
- Memory counts by category and scope
- Ingestion throughput and processing latency
- Retrieval latency percentiles (P50, P95, P99)
Dashboard analytics are reviewed on a regular schedule
Webhooks configured for critical events
Set up webhooks to receive notifications for important events:
ingestion.failed— ingestion pipeline errorscredential.expiring— credentials approaching expirationconfig.applied— configuration changesretention.cleanup— memory retention cleanup completed
Webhooks are configured for critical operational events
P95 latency baseline established
Before deploying to production, establish latency baselines by running representative queries in staging:
Adjust thresholds based on your staging measurements.
| Operation | Expected P95 | Alert Threshold |
|---|---|---|
memories.create() (fast) | <100ms | >300ms |
context.fetch() (fast) | <150ms | >500ms |
context.fetch() (accurate) | <600ms | >1500ms |
memories.batch_create() | <500ms | >2000ms |
P95 latency baselines are established from staging measurements
Error rate alerts configured
Set up alerts in your monitoring system (Datadog, PagerDuty, CloudWatch, etc.) for:
- Synap API error rate exceeding 1% over 5 minutes
- Authentication failures (any occurrence)
- Rate limit hits exceeding your expected threshold
- Retrieval returning zero results when memories are expected
Error rate alerts are configured in your monitoring platform
Cost tracking enabled
If your Synap plan includes usage-based pricing, track your usage against budget:
- API call volume (ingestion + retrieval)
- Storage usage (vector + graph)
- Bandwidth usage
Usage and cost tracking is enabled and reviewed regularly
Performance
Optimization ensures your integration meets latency requirements and minimizes unnecessary resource usage.Using fast mode for latency-sensitive paths
Use
mode="fast" for any operation in the critical path of user-facing requests. Reserve mode="accurate" for background tasks, research queries, or paths where the user is willing to wait.Fast mode is used for all latency-sensitive code paths
Batch ingestion for bulk operations
When ingesting multiple documents, use
batch_create() instead of multiple create() calls:Batch ingestion is used for all bulk operations
Context compaction enabled for long conversations
For conversations that span many turns, use context compaction to keep the context within your LLM’s token budget:
| Strategy | Compression | Best For |
|---|---|---|
conservative | ~70% retention | Important conversations, legal/compliance |
balanced | ~40% retention | General use |
aggressive | ~15% retention | Very long conversations, cost optimization |
adaptive | Variable | Recommended default — adjusts based on content |
Context compaction is configured for conversations that may exceed token budgets
Cache is enabled
Verify the cache backend is active and functioning:
cache.stats() is synchronous and returns a dict with enabled, client_id, base_path, total_entries, total_bytes, and per-backend stats under backends. If enabled is False or total_entries stays at 0 over time, your cache backend isn’t engaged — check SDKConfig.cache_backend.
Cache backend is enabled and accumulating entries
Operational Readiness
Beyond code and configuration, production readiness requires documented procedures and team alignment.Team roles assigned appropriately
In the Synap Dashboard, assign roles based on the principle of least privilege:
| Role | Capabilities | Assign To |
|---|---|---|
| Owner | Full access, billing, delete instance | Engineering lead, CTO |
| Admin | Config changes, key management, analytics | Senior engineers, DevOps |
| Developer | Read analytics, view config (no changes) | All developers |
| Viewer | Read-only Dashboard access | Product managers, support |
Team members have appropriate roles (not everyone is Owner)
Credential rotation runbook documented
Document the step-by-step procedure for rotating API keys:
- Generate new key in Dashboard
- Update secrets manager with new key
- Deploy application with updated secret reference
- Verify new key is working (check Dashboard for API calls)
- Revoke old key after grace period (48 hours)
Credential rotation runbook is documented and accessible to the operations team
Support channel documented
Ensure your team knows how to get help:
- Synap Documentation: docs.maximem.ai
- Community Discord: discord.gg/synap
- GitHub Issues: github.com/maximem-ai/maximem_synap_sdk/issues
- Email Support: [email protected] (include
correlation_idin all reports)
Support channels are documented and the team knows how to report issues
Quick Summary
Use this condensed checklist for quick pre-deployment reviews:| Area | Item | Status |
|---|---|---|
| Security | API key in secrets manager | |
| Security | Webhook signatures verified | |
| Security | API key rotation scheduled | |
| SDK | Log level set to WARNING/ERROR | |
| SDK | Timeouts match SLA | |
| SDK | Cache enabled (sqlite) | |
| Memory | Use-case file matches the production agent | |
| Memory | Retrieval quality validated on representative queries | |
| Memory | Instance status is active | |
| Errors | Transient vs permanent handling | |
| Errors | Graceful degradation | |
| Errors | correlation_id in logs | |
| Monitoring | Dashboard reviewed regularly | |
| Monitoring | Webhooks for critical events | |
| Monitoring | Latency alerts configured | |
| Performance | Fast mode for user-facing paths | |
| Performance | Batch ingestion for bulk ops | |
| Operations | Roles assigned (least privilege) | |
| Operations | Rotation + rollback runbooks |
Next Steps
Migrate from Competitors
Mapping your existing memory system (Mem0, Zep, Letta, SuperMemory) to Synap.
Monitoring and Analytics
Deep dive into Dashboard analytics and monitoring capabilities.
Error Handling
Complete reference for all Synap error types and handling patterns.
Webhooks
Configure webhooks for real-time event notifications.