feat: add eslint plugin no-html-links

[JohnVicke]

Pre-flight checklist

• I have read the Contributing Guidelines on pull requests.
• If this is a code change: I have written unit tests and/or added dogfooding pages to fully verify the new behavior.

Motivation

Described in: #6472

Test Plan

Jest unit tests are included.

Output of `yarn test no-html-plugins`

PASS packages/eslint-plugin/src/rules/__tests__/no-html-links.test.ts
  prefer-docusaurus-link
    valid
      ✓ <Link to="/test">test</Link> (239 ms)
      ✓ <Link to="https://twitter.com/docusaurus">Twitter</Link> (2 ms)
    invalid
      ✓ <a href="/test">test</a> (3 ms)
      ✓ <a href="https://twitter.com/docusaurus" target="_blank">test</a> (2 ms)
      ✓ <a href="https://twitter.com/docusaurus" target="_blank" rel="noopener noreferrer">test</a> (1 ms)

Test Suites: 1 passed, 1 total
Tests:       5 passed, 5 total
Snapshots:   0 total
Time:        0.67 s, estimated 1 s
Ran all test suites matching /no-html-links/i.

Test links

Docs preview: https://deploy-preview-8156--docusaurus-2.netlify.app/docs/api/misc/@docusaurus/eslint-plugin/no-html-links

Comments

The solution is fairly simple, I played around with when the message should be returned to the user (e.g. a tag has no attributes). However, if we want to enforce docusaurus links all the time this feels more accurate.

[netlify]

✅ [V2]

Name	Link
🔨 Latest commit	741e6ef
🔍 Latest deploy log	https://app.netlify.com/sites/docusaurus-2/deploys/639a04498d4ae30009f80f2e
😎 Deploy Preview	https://deploy-preview-8156--docusaurus-2.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site settings.

[github-actions]

⚡️ Lighthouse report for the deploy preview of this PR

URL	Performance	Accessibility	Best Practices	SEO	PWA	Report
/	🔴 36	🟢 97	🟢 100	🟢 100	🟢 90	Report
/docs/installation	🟠 73	🟢 100	🟢 100	🟢 100	🟢 90	Report

[slorber]

Thanks, LGTM 👍

Wonder if we want to be that strict and never allow any absolute URL by default, so maybe adding an option can be convenient?

We mostly want to prevent bad relative links IMHO

Any opinion @Josh-Cena ?

[slorber]

<Link> doesn't automatically apply nofollow.

Maybe use <Link rel="nofollow">. Open question: should the rel be merged into existing ones ("noreferrer noopener") or override?

I assume merging is fine because we generally don't want to remove "noopener noreferrer" from external links (and could use <a> as an escape hatch)

[slorber]

wonder if we could also allow <a> for hardcoded hash links?

(not all links can be evaluated but hardcoded ones could? Maybe eslint can know it starts with a hash? 🤷‍♂️)

[Josh-Cena]

It's not undoable. Even for template literals, you just need to check quasis[0][0] === "#".

[JohnVicke]

Good point!

Lets say that we add this to the plugin, should it still warn (encourage) the user to use <Link> instead of the a tag?

[slorber]

I guess we can just ignore hashes. This is a bonus, we can merge this PR without this feature if complicated to implement.

[Josh-Cena]

Wonder if we want to be that strict and never allow any absolute URL by default, so maybe adding an option can be convenient?

An option like ignoreFullyResolved would be my go-to, yes. It would be tricky to check template literal values, though. Recommending always using <Link> is not that bad and may allow us to do other useful things in the future.

[slorber]

ignoreFullyResolved seems fine, even if it only allows hardcoded href props that can already be convenient.

Not sure "fully resolved" is very common, where does it come from?

---

Recommending always using is not that bad and may allow us to do other useful things in the future.

Agree, but maybe we'll need to improve it for external links then , because for example not merging rel (current behavior) is a bit annoying

[JohnVicke]

ignoreFullyResolved seems fine, even if it only allows hardcoded href props that can already be convenient.

Thanks for the thorough feedback, will add some changes tomorrow 🙇 . ignoreFullyResolved got me thinking of another use-case we might want to consider. Should we add an option to ignore mailto or let them pass as default behaviour?

[Josh-Cena]

I'd say, anything that starts with a protocol should be ignored.

[slorber]

I'd say, anything that starts with a protocol should be ignored.

agree

At the same time is fullyResolved the term to use for an URL that starts with a protocol? 🤷‍♂️ I don't know.

It looks like the concept of "fully qualified" exist for domain names (https://www.rfc-editor.org/rfc/rfc6454 https://en.wikipedia.org/wiki/Fully_qualified_domain_name) but can't really find any official ref of "fully qualified URL" in any spec).

I don't know where "fully resolved" comes from but it doesn't seem like an existing concept either.

I'm more used to see the term "fully qualified" and some sources seem agree despite being web authorities (https://gateway.force.com/DPGCustHelp/s/article/Fully-qualified-URL)

[Josh-Cena]

I was thinking about "fully resolved paths". I don't know where that term crosses my mind either.

[slorber]

LGTM, good enough to merge

Just wondering if "ignoreFullyResolved" is the best term we can use to represent the option, any opinion before merging?

[slorber]

if "fully resolved" === "absolute url" then maybe we'd want to be consistent?

https://www.rfc-editor.org/rfc/rfc3986#section-4.3

Maybe we just want "ignoreAbsoluteUrls" instead, it would be easier for users to understand?

This is just wording, but it remains important.

Now we can still do a breaking change later if we change our mind, not a huge deal.

[Josh-Cena]

I want to review this before merging. I think I can find some time this weekend

[slorber]

conflict resolved

@Josh-Cena do you still want to review it?

[slorber]

@Josh-Cena ?

[Josh-Cena]

Extremely sorry for missing this @JohnVicke. The implementation looks good although I'd like to work on enhancements after this is merged. Just requesting a bit more tests (as ESLint plugin maintainers always do...) I could also do this myself this week so it gets merged ASAP

[Josh-Cena]

Could you add tests for when this is not a literal? Especially template literals. In the future I definitely want this rule to recognize some common interpolation patterns (e.g. if the template starts with / then it's definitely not fullyResolved), so it's better if we can have some tests to verify how the behaviors change.

[slorber]

@Josh-Cena let me know if you want to do something about this PR 🤪 otherwise I'll apply some suggestions, do a few minor changes and merge it

[Josh-Cena]

Mostly LGTM. I wonder if we should add an option to ignore fully dynamic and not statically analyzable href props, but that could be an extension because using Link can't harm in any case.

[slorber]

Look good enough to merge

Added some extra code to handle hardcoded/static template literal strings too href={"https://xyz.com"} as it wasn't the case.

For more dynamic cases where static analysis is possible, that can be handled in a follow-up PR

---

Was wondering if it's possible to pre-evaluate AST nodes with TSESTree @Josh-Cena @JoshuaKGoldberg

Apparently, Babel is able to do that successfully:

Feel free to complete the missing cases if you know how to ;)