- . "
f"Got: {out!r}. Likely cause: prefix-strip leaves a leading "
f"space, list regex `^( )?[-*+] ` can't match one-space prefix."
)
assert "
- one " in out assert "
- two " in out def test_task_list_inside_blockquote(self, driver_path): """Task lists inside blockquotes render checkbox spans, not literal [x].""" out = _render(driver_path, "> - [x] done\n> - [ ] todo") assert 'class="task-done"' in out, ( f"`- [x]` inside a blockquote must produce a task-done span. " f"Got: {out!r}" ) assert 'class="task-todo"' in out # ───────────────────────────────────────────────────────────────────────────── # Common LLM output shapes — sanity-check the most frequent constructs render # the way a user would expect. # ───────────────────────────────────────────────────────────────────────────── class TestRendererSanitization: """Raw/model-provided HTML must not survive with executable attributes or schemes.""" @pytest.mark.parametrize( "payload, forbidden", [ ('
- Point one " in out assert "
- Point two " in out assert "And a closing remark." in out # No leading-space artifacts in the quoted text assert "\n " not in out.replace("
- {item} in {out!r}" ) class TestBugHorizontalRuleInsideBlockquote: """Bug 6: --- inside a blockquote rendered as literal text instead of
hover
', 'onmouseover'),
('x', 'javascript:'),
],
)
def test_raw_html_dangerous_attributes_and_schemes_are_removed(self, driver_path, payload, forbidden):
out = _render(driver_path, payload).lower()
assert forbidden not in out, f"dangerous HTML survived sanitization: {out!r}"
assert 'alert(1)' not in out, f"executable payload text should not remain executable: {out!r}"
def test_generated_image_markdown_uses_delegated_lightbox_not_inline_js(self, driver_path):
out = _render(driver_path, "").lower()
assert '" in out and "wrong" in out def test_top_level_task_list(self, driver_path): out = _render(driver_path, "- [x] done\n- [ ] todo\n- regular item") assert 'class="task-done"' in out assert 'class="task-todo"' in out assert "regular item" in out def test_nested_blockquote_recurses(self, driver_path): out = _render(driver_path, ">>> deeply nested") assert out.count("") == 3 assert out.count("") == 3 def test_quote_then_heading(self, driver_path): out = _render(driver_path, "> Note this.\n\n## Heading") assert "" in out assert "Note this.
Heading
" in out def test_crlf_does_not_leak_carriage_return(self, driver_path): out = _render(driver_path, "Line1\r\nLine2\r\nLine3") assert "\r" not in out, f"CRLF must be normalised; got {out!r}" def test_llm_multiparagraph_quote_with_list(self, driver_path): """The shape an LLM emits when summarising decisions inside a quote.""" src = ( "> Here are the key points:\n" ">\n" "> - Point one\n" "> - Point two\n" ">\n" "> And a closing remark." ) out = _render(driver_path, src) assert "" in out assert "", "") # ───────────────────────────────────────────────────────────────────────────── # Block-level constructs INSIDE blockquotes — the six bugs documented in # blockquote-rendering-bugs.md. Each test feeds the exact input from the # bug report and asserts the rendered HTML structure. # # Root cause of all six: every block-level pass (fenced code, headings, hr, # ordered lists) used to run BEFORE the blockquote handler, on > -prefixed # lines those passes don't recognise. The fix moved blockquote handling to a # pre-pass that strips > prefixes and recursively renders the inner content. # ───────────────────────────────────────────────────────────────────────────── class TestBugFencedCodeInBlockquote: """Bug 1: fenced code blocks inside blockquotes leaked > prefixes inside the rendered" in out assert "
, broke thewrapper, and sometimes left raw/as visible text.""" def test_fenced_code_inside_blockquote_renders_pre(self, driver_path): src = ( "> Here is some code:\n" ">\n" "> ```python\n" "> x = 1\n" "> y = 2\n" "> ```\n" ">\n" "> That was the code." ) out = _render(driver_path, src) assert "" in out and "" in out, ( f"Fenced code inside blockquote must render as: {out!r}" ) # The > prefixes must be stripped from the code content, not preserved # inside the. assert "> x = 1" not in out, ( f"Code content insidemust not contain > prefixes: {out!r}" ) # Rawor pre-header tags must NOT appear as visible text assert "<pre>" not in out assert "<div class="pre-header" not in out # Singlewrapping everything (not split by the) assert out.count("") == 1, ( f"Expected ONE, got {out.count('')}: {out!r}" ) def test_fenced_code_with_lang_class(self, driver_path): src = "> ```python\n> x = 1\n> ```" out = _render(driver_path, src) assert 'class="language-python"' in out assert "x = 1" in out class TestFencedCodeFenceLength: """CommonMark §4.5 requires the closer to be at least as long as the opener.""" def test_five_backtick_outer_fence_preserves_inner_triple_fence(self, driver_path): src = ( "- optionally also support fenced code blocks\n\n" "`````md\n" "`md\n" "```novelcrafter\n" "{#if novel.hasSeries}\n" "...\n" "{#endif}\n" "```\n" "`````\n\n" "That is much more correct than pretending" ) out = _render(driver_path, src) assert out.count("") == 1 assert out.count("") == 1 assert 'md' in out assert "```novelcrafter" in out assert "{#if novel.hasSeries}" in out assert "That is much more correct than pretending" in out assert "`````" not in out assert "
`````" not in out def test_four_backtick_outer_fence_preserves_inner_triple_fence(self, driver_path): out = _render(driver_path, "````md\n```inner\nfoo\n```\n````\n") assert out.count("") == 1 assert out.count("") == 1 assert 'md' in out assert "```inner" in out assert "foo" in out assert "````" not in out def test_three_backtick_fence_still_renders_language_class(self, driver_path): out = _render(driver_path, "```js\nconsole.log('ok')\n```") assert out.count("
") == 1 assert 'js' in out assert 'class="language-js"' in out assert "console.log('ok')" in out class TestBugBlankContinuationInBlockquote: """Bug 2: blank > lines between paragraphs fragmented the blockquote into separate elements with literal > characters between them.""" def test_three_paragraphs_one_blockquote(self, driver_path): src = ( "> First paragraph of the quote.\n" ">\n" "> Second paragraph of the quote.\n" ">\n" "> Third paragraph of the quote." ) out = _render(driver_path, src) # All three paragraphs in ONEassert out.count("") == 1, ( f"Expected ONE, got {out.count('')}: {out!r}" ) assert "First paragraph" in out assert "Second paragraph" in out assert "Third paragraph" in out # No literal > between paragraphs (would indicate fragmented blockquote) text_only = re.sub(r"<[^>]+>", "", out) assert ">" not in text_only, ( f"Literal > in rendered text indicates fragmented blockquote: {text_only!r}" ) class TestBugHeadingsInsideBlockquote: """Bug 3: # headings inside blockquotes rendered as literal '##' text because the heading pass ran before the blockquote pass.""" def test_h2_inside_blockquote(self, driver_path): src = ( "> ## Bug description\n" ">\n" "> The widget is broken.\n" ">\n" "> ## Steps to reproduce\n" ">\n" "> Click the button." ) out = _render(driver_path, src) assert "Bug description
" in out, ( f"## inside blockquote must render as: {out!r}" ) assert "
Steps to reproduce
" in out # No literal '##' as visible text text_only = re.sub(r"<[^>]+>", "", out) assert "##" not in text_only, ( f"Literal ## in rendered text — heading pass missed it: {text_only!r}" ) def test_h1_h2_h3_all_render(self, driver_path): src = "> # H1\n> ## H2\n> ### H3" out = _render(driver_path, src) assert "H1
" in out assert "H2
" in out assert "H3
" in out class TestBugOrderedListInsideBlockquote: """Bug 4: ordered (numbered) lists inside blockquotes rendered as plain text — the OL pass had no equivalent of the UL branch in the old blockquote handler.""" def test_ordered_list_renders_as_ol(self, driver_path): src = ( "> Steps to reproduce:\n" ">\n" "> 1. Open the app\n" "> 2. Click the button\n" "> 3. Observe the crash" ) out = _render(driver_path, src) assert "" in out and "
" in out, ( f"Numbered list inside blockquote must render as: {out!r}" ) # All three list items present for item in ["Open the app", "Click the button", "Observe the crash"]: assert f">{item}" in out, ( f"Missing
.""" def test_hr_renders_inside_blockquote(self, driver_path): src = "> Above the rule\n>\n> ---\n>\n> Below the rule" out = _render(driver_path, src) assert "
" in out, ( f"--- inside blockquote must render as
: {out!r}" ) assert "Above the rule" in out assert "Below the rule" in out # No literal '---' as text text_only = re.sub(r"<[^>]+>", "", out) assert "---" not in text_only, ( f"Literal --- in rendered text: {text_only!r}" ) class TestBugComplexBlockquoteAllFeatures: """Bug 5 (worst-case): a blockquote with headings, paragraphs, inline code, fenced code, and an ordered list. Old behaviour collapsed the entire thing into a monospace blob with raw markdown syntax leaking everywhere.""" def test_complex_blockquote_renders_all_constructs(self, driver_path): src = ( "> ## Description\n" ">\n" "> The widget is broken when X happens.\n" ">\n" "> ## Root cause\n" ">\n" "> The `MIME_MAP` in `api/config.py` is missing entries.\n" ">\n" "> ## Fix\n" ">\n" "> Add two entries:\n" ">\n" "> ```python\n" '> ".html": "text/html",\n' '> ".htm": "text/html",\n' "> ```\n" ">\n" "> ## Workflow rules\n" ">\n" "> 1. Never edit the file directly\n" "> 2. Create a worktree\n" "> 3. Run the tests\n" ">\n" "> Target branch is `master`." ) out = _render(driver_path, src) # Multipleheadings assert out.count("
") >= 4, ( f"Expected at least 4
headings, got {out.count('
')}: {out!r}" ) # Fenced code block assert "
" in out assert 'class="language-python"' in out # Ordered list assert "" in out # Inline code assert "
MIME_MAP" in out assert "api/config.py" in out assert "master" in out # No literal markdown syntax leaking text_only = re.sub(r"<[^>]+>", "", out) assert "##" not in text_only, f"Literal ## in {text_only!r}" # Singlewraps everything assert out.count("") == 1, ( f"Expected ONE, got {out.count('')}: {out!r}" ) # No raw/as escaped text assert "<pre>" not in out assert "<div class="pre-header" not in out class TestBlockquoteRegressionsDontTouchOutsideContent: """Make sure the blockquote pre-pass doesn't grab > -prefixed lines that sit inside a non-blockquote fenced code block (e.g. shell prompts in ```bash``` examples).""" def test_shell_prompt_in_bash_fence_not_treated_as_blockquote(self, driver_path): src = "```bash\n> echo hello\n```" out = _render(driver_path, src) # The > line is part of the bash code, not a blockquote assert "" not in out, ( f"> line inside ```bash``` must NOT become a blockquote: {out!r}" ) assert "" in out # Escaped > preserved as code content assert "> echo hello" in out def test_two_separate_blockquotes_stay_separate(self, driver_path): src = "> First quote\n\nSome plain text.\n\n> Second quote" out = _render(driver_path, src) assert out.count("") == 2, ( f"Two separated blockquotes must stay separate: {out!r}" ) assert "Some plain text." in out def test_nested_double_blockquote(self, driver_path): src = "> outer line\n> > inner line" out = _render(driver_path, src) # Should produce nestedassert out.count("") == 2, ( f"Expected 2: {out!r}" ) class TestBlockquoteEntityEncodedInput: """Blockquotes sent as HTML-entity-encoded text must still render correctly. LLMs sometimes emit > instead of > — the entity-decode pass must run BEFORE the blockquote pre-pass, not after it.""" def test_amp_gt_prefix_becomes_blockquote(self, driver_path): src = "> Hello quote" out = _render(driver_path, src) assert "" in out, ( f">-prefixed line must render as: {out!r}" ) text_only = re.sub(r"<[^>]+>", "", out) assert "Hello quote" in text_only # Should not see a literal > or > in the rendered text assert ">" not in out, f"> should have been decoded: {out!r}" def test_amp_gt_fenced_code_in_blockquote(self, driver_path): src = "> ```python\n> x = 1\n> ```" out = _render(driver_path, src) assert "" in out, ( f"Entity-encoded blockquote with fenced code must render: {out!r}" ) assert "" in out, f"Fenced code inside entity-encoded blockquote must render: {out!r}" class TestMermaidToolOutputGuard: """Line-numbered tool excerpts must not be auto-rendered as Mermaid.""" def test_line_numbered_mermaid_fence_renders_as_code_block(self, driver_path): src = "```mermaid\n23|flowchart TB\n24| A --> B\n```" out = _render(driver_path, src) assert 'class="mermaid-block"' not in out, ( f"Line-numbered read_file excerpts are not valid Mermaid and must not auto-render: {out!r}" ) assert 'mermaid' in out assert '' in out assert '23|flowchart TB' in out def test_valid_mermaid_fence_still_creates_mermaid_block(self, driver_path): out = _render(driver_path, "```mermaid\nflowchart TB\n A --> B\n```") assert 'class="mermaid-block"' in out, ( f"Valid Mermaid fences should still be queued for Mermaid rendering: {out!r}" ) assert 'flowchart TB' in out def test_valid_mermaid_c4_fence_still_creates_mermaid_block(self, driver_path): out = _render(driver_path, "```mermaid\nC4Context\n title System Context\n```") assert 'class="mermaid-block"' in out, ( f"Valid C4 Mermaid fences should still be queued for Mermaid rendering: {out!r}" ) assert 'C4Context' in out def test_valid_mermaid_frontmatter_fence_still_creates_mermaid_block(self, driver_path): out = _render(driver_path, "```mermaid\n---\ntitle: Demo\n---\nflowchart TB\n A --> B\n```") assert 'class="mermaid-block"' in out, ( f"Valid Mermaid fences with frontmatter should still be queued for Mermaid rendering: {out!r}" ) assert 'title: Demo' in out def test_prose_mention_of_mermaid_fence_renders_as_code_block(self, driver_path): src = "```mermaid\n` fence should not be auto-rendered too aggressively.\n\nSome prose, not a diagram.\n```" out = _render(driver_path, src) assert 'class="mermaid-block"' not in out, ( f"Prose captured by a mermaid fence is not valid Mermaid and must not auto-render: {out!r}" ) assert 'mermaid' in out assert '' in out assert 'Some prose, not a diagram.' in out class TestRawPreCodePreservation: """RawHTML from model output should remain structurally intact.""" def test_multiline_pre_code_blocks_do_not_degrade_to_backticks(self, driver_path): src = ( "\n\n" "After paragraph.\n\n" "line 1\n" "line 2\n" "\n\n" "Done." ) out = _render(driver_path, src) assert out.count("line 3\n" "line 4\n" "") == 2 and out.count("") == 2, ( f"Expected two balancedblocks, got: {out!r}" ) assert out.count("" not in out, ( f"") == 2 and out.count("") == 2, ( f"Expected two balancedblocks, got: {out!r}" ) assert "`line 1" not in out and "line 2\n`content insidemust not be rewritten to backticks: {out!r}" ) assert "After paragraph." in out and "Done." in out class TestHeadingLevelsH1ThroughH6: """Issue #1258 — `####`, `#####`, `######` previously fell through the heading pass and emitted as literal text starting with `#`. Pin all six levels so a future edit cannot silently regress h4–h6 again.""" def test_all_six_heading_levels_render(self, driver_path): src = "# H1\n## H2\n### H3\n#### H4\n##### H5\n###### H6" out = _render(driver_path, src) assert "H1
" in out, f"h1 missing: {out!r}" assert "H2
" in out, f"h2 missing: {out!r}" assert "H3
" in out, f"h3 missing: {out!r}" assert "H4
" in out, f"h4 missing: {out!r}" assert "H5
" in out, f"h5 missing: {out!r}" assert "H6
" in out, f"h6 missing: {out!r}" def test_h6_does_not_partial_match_as_lower_level(self, driver_path): """Replacers must run longest-first; otherwise `###### H6` could be captured by the `^### ` rule and emit `### H6
`.""" out = _render(driver_path, "###### H6") assert "H6
" in out, f"h6 must not be partial-matched: {out!r}" assert "" not in out and "###" not in out def test_h4_inline_markdown_still_processes(self, driver_path): out = _render(driver_path, "#### **bold** in h4") assert "
bold in h4
" in out, ( f"inline markdown inside h4 must still render: {out!r}" )