Skip to content

Polylingua Translation service #2298

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Polylingua Translation service #2298

wants to merge 6 commits into from

Conversation

dittops
Copy link

@dittops dittops commented Oct 7, 2025

Description

This PR introduces PolyLingua, a new OPEA example demonstrating a complete production-ready translation service using OPEA's microservices architecture. The service features a modern Next.js UI, automatic language detection.

@github-actions GitHub Actions
Copy link

github-actions bot commented Oct 7, 2025
edited
Loading

Dependency Review

The following issues were found:
  • ❌ 1 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 4 package(s) with unknown licenses.
See the Details below.

Vulnerabilities

PolyLingua/ui/package.json

NameVersionVulnerabilitySeverity
next14.2.5Authorization Bypass in Next.js Middlewarecritical
Next.js Cache Poisoninghigh
Next.js authorization bypass vulnerabilityhigh
Denial of Service condition in Next.js image optimizationmoderate
Next.js Allows a Denial of Service (DoS) with Server Actionsmoderate
Next.js Affected by Cache Key Confusion for Image Optimization API Routesmoderate
Next.js Content Injection Vulnerability for Image Optimizationmoderate
Next.js Improper Middleware Redirect Handling Leads to SSRFmoderate
Information exposure in Next.js dev server due to lack of origin verificationlow
Next.js Race Condition to Cache Poisoninglow

License Issues

PolyLingua/requirements.txt

PackageVersionLicenseIssue Type
aiohttp>= 3.9.0NullUnknown License
langdetect>= 1.0.9NullUnknown License
python-multipart>= 0.0.9NullUnknown License

PolyLingua/ui/package.json

PackageVersionLicenseIssue Type
lucide-react^0.424.0NullUnknown License

Scanned Files

  • PolyLingua/requirements.txt
  • PolyLingua/ui/package.json

@dittops dittops force-pushed the example/polylingua branch from ef5934f to 481aea9 Compare October 8, 2025 09:15
@joshuayao joshuayao added this to OPEA Oct 9, 2025
@joshuayao joshuayao added this to the v1.5 milestone Oct 9, 2025
@dittops dittops force-pushed the example/polylingua branch from 5e5f6f7 to 2f46916 Compare October 9, 2025 07:11
@dittops dittops marked this pull request as ready for review October 9, 2025 07:11
@dittops dittops changed the title WIP: Polylingua Translation service Polylingua Translation service Oct 9, 2025
@joshuayao
Copy link
Collaborator

Dependency Review

The following issues were found:

  • ❌ 1 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 4 package(s) with unknown licenses.

See the Details below.

Vulnerabilities

PolyLingua/ui/package.json

Name Version Vulnerability Severity
next 14.2.5 Authorization Bypass in Next.js Middleware critical
Next.js Cache Poisoning high
Next.js authorization bypass vulnerability high
Denial of Service condition in Next.js image optimization moderate
Next.js Allows a Denial of Service (DoS) with Server Actions moderate
Next.js Affected by Cache Key Confusion for Image Optimization API Routes moderate
Next.js Content Injection Vulnerability for Image Optimization moderate
Next.js Improper Middleware Redirect Handling Leads to SSRF moderate
Information exposure in Next.js dev server due to lack of origin verification low
Next.js Race Condition to Cache Poisoning low

License Issues

PolyLingua/requirements.txt

Package Version License Issue Type
aiohttp >= 3.9.0 Null Unknown License
langdetect >= 1.0.9 Null Unknown License
python-multipart >= 0.0.9 Null Unknown License

PolyLingua/ui/package.json

Package Version License Issue Type
lucide-react ^0.424.0 Null Unknown License

Scanned Files

  • PolyLingua/requirements.txt
  • PolyLingua/ui/package.json

Hi @dittops please help fix the critical and high CVEs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lvliang-intel lvliang-intel Awaiting requested review from lvliang-intel lvliang-intel is a code owner

@ftian1 ftian1 Awaiting requested review from ftian1 ftian1 is a code owner

@chensuyue chensuyue Awaiting requested review from chensuyue chensuyue is a code owner

@lkk12014402 lkk12014402 Awaiting requested review from lkk12014402 lkk12014402 is a code owner

@minmin-intel minmin-intel Awaiting requested review from minmin-intel minmin-intel is a code owner

@rbrugaro rbrugaro Awaiting requested review from rbrugaro rbrugaro is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

OPEA
Status: No status

Milestone

v1.5

Development

Successfully merging this pull request may close these issues.

2 participants

@dittops @joshuayao