Skip to main content

Anomalies

Anomaly detection runs automatically on memory operations and surfaces through the Audit router. Novyx monitors for unusual patterns — rapid bulk operations, unexpected deletions, and behavioral outliers — and flags them in your audit trail.

Base URL: https://novyx-ram-api.fly.dev

Tier: Pro+

How anomaly detection works

Anomaly detection is not a separate API — it runs inline during memory operations and reports through existing endpoints:

  1. Audit summary — The anomaly_count field in GET /v1/audit/summary counts server errors (5xx) that may indicate anomalous behavior
  2. Audit verifyGET /v1/audit/verify (Pro+) runs Sentinel validation to check SHA-256 integrity of all memories, detecting tampering
  3. Webhook alerts — If you have webhooks configured, anomaly events are delivered in real-time

Check for anomalies via audit summary

from novyx import Novyx

nx = Novyx(api_key="nram_your_key")

summary = nx.audit_summary(since="2026-03-08T00:00:00Z")
print(f"Total operations: {summary['total_operations']}")
print(f"Errors: {summary['error_count']}")
print(f"Anomalies: {summary['anomaly_count']}")

Verify memory integrity

result = nx.audit_verify()
if result["valid"]:
    print("All memories pass integrity check")
else:
    print(f"Failures: {result['integrity_failures']}")

Response

{
  "valid": true,
  "timestamp": "2026-03-09T12:00:00Z"
}
EndpointWhat it tells you
GET /v1/audit/summaryanomaly_count — number of 5xx errors in the period
GET /v1/audit/verifySHA-256 integrity check across all memories
GET /v1/auditFull audit trail with per-entry status codes
POST /v1/webhooksSubscribe to anomaly events in real-time