Security & Observability Private

CORE

A centralized security and observability platform that gives engineering teams real-time visibility into what every connected application is doing.

Node.jsExpressPostgreSQLNPM SDKReactDockerNginxDigitalOceanREST APIMiddleware

What it is

CORE is a security and observability platform built for Xyplix's internal product suite. As the company grew and added more applications — a CRM, a ticketing system, internal tooling — there was no centralized way to see what was happening across all of them. CORE solves that.

Every connected application streams telemetry into CORE in real time: HTTP requests, response codes, latency, authentication events, errors, and custom security events. The CORE dashboard gives you a live, unified view across the entire stack.

The SDK

The core of the system (no pun intended) is an NPM package published as @xyplix/core. Any Node.js application can connect to CORE by installing the SDK and adding a single middleware line:

  • Automatically captures every inbound request — method, path, status, latency
  • Attaches the source app name so events are filterable by service
  • Supports custom event tracking for things like failed logins or privilege escalations
  • Batches and flushes events to the CORE API on a configurable interval
  • Fails silently — if CORE is unreachable, the host app is not affected

The Dashboard

The React frontend gives security and engineering teams a real-time view of everything flowing through connected apps. The events feed updates live, showing each request with its source, status, and timestamp. Filters let you drill into a single app or event type instantly.

  • Live event stream with per-source filtering
  • Request volume and error rate over time
  • Security event flagging — auth failures, unusual patterns
  • Source management — add or revoke connected applications

Infrastructure

CORE runs on its own DigitalOcean droplet, fully Dockerized with a PostgreSQL database and Nginx reverse proxy. The API is separate from the frontend, so other applications hit a clean REST endpoint to post events. SSL is handled via Certbot with auto-renewal.

Why it matters

Security tooling at this level — a custom SDK, a live telemetry pipeline, per-source event ingestion — is typically the domain of enterprise observability products like Datadog or Splunk. CORE is a ground-up implementation of those concepts, built specifically for an internal product suite. It demonstrates not just the ability to write code, but to think in systems.

Key achievement

Built a full observability pipeline from SDK design to real-time dashboard — the kind of system typically handled by enterprise tools like Datadog.

Project Details

TypeInternal Platform
ClientXyplix
StatusShipped, Private
RoleSole Developer

Stack

BackendNode.js, Express
FrontendReact
DatabasePostgreSQL
InfraDocker, Nginx, DigitalOcean
DistributionNPM SDK