Fix: escape double quote of url value in CSS url()

[Shinyaigeek]

Fixes: #7710

↪️ Pull Request

Hi team! 👋

In css transforming, CSSTransformer encloses URL value in CSS url() with " double quote, so I fixed this simply by escaping ” double quote in url value in url() , but honestly I'm worried that this way is too straightforward and I overlooked some context.

If there is something I missed, please be free to point out or close this PR 🙇

💻 Examples

<!DOCTYPE html>
<html>
  <head>
    <meta charset="utf-8" />
    <title>CSS Double</title>
  </head>
  <body>
    <h1>CSS Double</h1>
    <div class="background"></div>
    <style>
      .background {
        background-image: url('data:image/svg+xml;utf8,<svg xmlns="http://www.w3.org/2000/svg" version="1.1" width="32" height="24" viewBox="0 0 32 24"><polygon points="0,0 32,0 16,24" style="fill: rgb%2819, 80, 91%29"></polygon></svg>');
        width: 100px;
        height: 100px;
      }
    </style>
  </body>
</html>

🚨 Test instructions

simply, I checked with the case base64 encoded url value with "

✔️ PR Todo

• Added/updated unit tests for this change
• Filled out test instructions (In case there aren't any unit tests)
• Included links to related issues/PRs

[height]

Link Height tasks by mentioning a task ID in the pull request title or commit messages, or description and comments with the keyword link (e.g. "Link T-123").

💡Tip: You can also use "Close T-X" to automatically close a task when the pull request is merged.

[devongovett]

hmm I think this might cause an issue for resolvers because they won't expect pre-escaped values. Perhaps this replacement should be done in the packager. The util here is what does the replacement of placeholders to resolved urls. It might need an option to escape the url.

[Shinyaigeek]

Oh, indeed. As you say, escaping the background image’s URL in Transformer will cause the not found error in resolver. I will fix this 👍 Thank you for your advice!

I think escaping the quote in URL is needed in anyway because

• if URL is not enclosed with quotes, it is not a valid property that the quote exists in the URL
• if URL is enclosed with quotes, the quote should be escaped

#7564 as you can see in this PR, I think we need to enclose the URL in quotes and then escape the quotes.

[Shinyaigeek]

I was thinking about this issue, and I notice that parcel's resolver cannot resolve the filepath of the image where the quotes are escaped though such a URL is the correct URL in the first place. So I think escape should be done with CSSTransformer and the resolver should be modified.

[Shinyaigeek]

I thought about making the resolver able to handle escaped quotes, but I was concerned about performance degradation due to increased computation, so I made a change to remove escaped quotes from URLs with the CSSTransformer and re-escape them with the CSSPackager. ea56294

[devongovett]

I don't think this is necessary. The url will already be unescaped before it is passed to us.

[devongovett]

Thanks for getting this started @Shinyaigeek! I refactored it a little so that we handle the escaping differently depending on the asset type. For example, in HTML, quotes become ". Also supported escaping \ itself in CSS. Hopefully the changes make sense.

[Shinyaigeek]

Thank you for your help @devongovett !! I saw your commit, and feels reasonable. Sure, escaping only CSS text was short-circuited and should have been able to escape other files in the parcel pipeline! I learned a lot from that 👍