go.chromium.org/luci@v0.0.0-20240309015107-7cdc2e660f33/analysis/frontend/ui/src/components/sanitized_html/sanitized_html.test.tsx (about) 1 // Copyright 2023 The LUCI Authors. 2 // 3 // Licensed under the Apache License, Version 2.0 (the "License"); 4 // you may not use this file except in compliance with the License. 5 // You may obtain a copy of the License at 6 // 7 // http://www.apache.org/licenses/LICENSE-2.0 8 // 9 // Unless required by applicable law or agreed to in writing, software 10 // distributed under the License is distributed on an "AS IS" BASIS, 11 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12 // See the License for the specific language governing permissions and 13 // limitations under the License. 14 15 import '@testing-library/jest-dom'; 16 import { render, screen } from '@testing-library/react'; 17 18 import { SanitizedHtml } from './sanitized_html'; 19 20 const DIRTY_HTML = ` 21 <div data-testid="safe-content">Safe Content</div> 22 <a data-testid="unsafe-link" href="javascript:alert('unsafe')">unsafe_link</a> 23 <script data-testid="unsafe-script"> 24 throw new Error('Unsafe content'); 25 </script> 26 `; 27 28 describe('SanitizedHtml', () => { 29 it('should sanitize HTML', () => { 30 render(<SanitizedHtml html={DIRTY_HTML} />); 31 32 const safeContent = screen.getByTestId('safe-content'); 33 expect(safeContent).toBeInTheDocument(); 34 expect(safeContent).toHaveTextContent('Safe Content'); 35 36 const unsafeLink = screen.getByTestId('unsafe-link'); 37 expect(unsafeLink).toBeInTheDocument(); 38 expect(unsafeLink).not.toHaveAttribute('href'); 39 expect(unsafeLink).toHaveTextContent('unsafe_link'); 40 41 const unsafeScript = screen.queryByTestId('unsafe-script'); 42 expect(unsafeScript).not.toBeInTheDocument(); 43 }); 44 });