CVE Threat Lens is a combination of 4 Microservices that work together to provide a chatbot that can answer questions about CVEs and their associated threats. The Chatbot uses these vector embeddings to answer questions about CVEs and their associated threats.

• Producer Microservice: The first microservice written using golang is the Producer which is responsible for sending CVE data to the Kafka topic.

• Consumer Microservice The second microservice is the Consumer which consumes the data from the Kafka topic and stores it in the Postgres Database.

• Kubernetes Operator Kubernetes Operator that fetches the latest CVE Records and then creates a processor job every hour.

• Embeddings Job A job that fetches the records present in the postgres database and then creates vector embeddings for each record while storing them in PGVECTOR.

• Chatbot The chatbot is built using Streamlit and uses the embeddings to answer questions about CVEs and their associated threats.

• Cluster Security Features The cluster is secured using a istio service mesh for service to service communication and a network policy that only allows traffic from the istio sidecar. Cert-manager is used to manage the certificates for the services.

• Monitoring and Metrics Prometheus is used to store metrics from all the services and Grafana is used to visualize them. Custom metric scrapers are written for kafka, postgres and the chatbot.

• CI/CD Packer is used to create a custom Jenkins AMI that is used to run the CI/CD pipeline. The pipeline is written using Groovy scripts and everything is baked into the AMI. Semantic versioning is used for the docker images and helm charts.