Use case
Synthetic Test Monitoring
- Pushkar Khatavkar
About the Customer
CyvexTech was established by seasoned veterans in cybersecurity and cryptography who share a mission to develop a comprehensive solution for software supply chain security. Their platform focuses on safeguarding software products at every stage of the lifecycle, ensuring security and operational efficiency. CyvexTech’s innovative approach combines cutting-edge concepts and modern frameworks to provide full-scale protection for software artifacts, from production to delivery.
Customer Challenge
CyvexTech faced a challenge in verifying the end-to-end process for uploading product artifacts, such as SBOMs (Software Bill of Materials), to the CyvexTech Hub. There was no automated validation to ensure that critical checks—such as integrity, SLSA compliance, SBOM generation, and digital signatures—were properly applied. This gap in verification led to unnoticed failures in SBOM uploads, creating potential risks for integrity and compliance. The challenge was to implement an automated testing process that ensures all system functionality, including validation checks, operates reliably.
Solution
IAMOPS provided a solution through synthetic testing, which was implemented using GitHub Actions and AWS Lambda, orchestrated within a Kubernetes (K8s) environment. This setup allowed CyvexTech to automate the process of uploading SBOMs and performing integrity checks on these artifacts.
- SBOM Upload via GitHub Actions: The SBOM upload process was automated using a K8s runner in GitHub Actions, enabling scalable and efficient management of the CI/CD pipelines. This simulated real user interactions and automated the upload of product artifacts.
- Synthetic Testing with AWS Lambda: A synthetic test was triggered using AWS Lambda and an API Gateway Endpoint to validate the functionality of package uploads. The tests confirmed package integrity, ensured compliance, and verified that digital signatures were applied correctly.
This solution provided a reliable and automated way to validate the system’s basic functionality, identifying and resolving any issues promptly.
Master/Slave architecture
Results & Benefits
The implementation of synthetic testing brought several benefits to CyvexTech’s software supply chain security processes:
Cost Optimization: The use of serverless architecture with AWS Lambda, Step Functions, and S3, combined with a Kubernetes environment, resulted in a highly cost-effective solution. The total cost for running these tests was approximately $0.95 per month.
Increased Reliability: By automating the validation process, CyvexTech reduced the risk of publishing faulty or non-compliant artifacts. This ensured that only validated and secure packages were uploaded to the CyvexTech Hub.
Improved Incident Response: Tools such as Zenduty and UptimeRobot were integrated to monitor system health and alert the operations team in case of any issues, enabling rapid response to incidents.
Consistency: Automation eliminated human errors, ensuring that all validation processes ran consistently across all deployments.
This solution provided a reliable and automated way to validate the system’s basic functionality, identifying and resolving any issues promptly.
About IAMOPS
IAMOPS is a full DevOps suite company that supports technology companies to achieve intense production readiness.
Our mission is to ensure that our clients’ infrastructure and CI/CD pipelines are scalable, mitigate failure points, optimize performance, ensure uptime, and minimize costs.
Our DevOps suite includes DevOps Core, NOC 24/7, FinOps, QA Automation, and DevSecOps to accelerate overall exponential growth.
As an AWS Advanced Tier Partner and Reseller, we focus on two key pillars: Professionalism by adhering to best practices and utilizing advanced technologies, and Customer Experience with responsiveness, availability, clear project management, and transparency to provide an exceptional experience for our clients.