Created attachment 465640 [details] Partial Patch for Merge - Local Testing (Build) .cpp side Hi Team, While going through Chromium's Monorail, I came across another failing test case: What steps will reproduce the problem? (1) Open the following URL data:text/html;charset=utf-8,<body> <div id=target><a href="javascript:"foobar"">link</a></div> <pre></pre> <script> alert(document.querySelector('div').innerHTML); </script> </body> What is the expected result? It should show an alert dialog with: <a href="javascript:"foobar"">link</a> What happens instead? It shows an alert dialog with: <a href='javascript:"foobar"'>link</a> Chrome Bug - https://bugs.chromium.org/p/chromium/issues/detail?id=927164 Blink Commit - https://chromium.googlesource.com/chromium/src.git/+/a806a0593906b75b9396d3bbd092bdda9161bf4c WPT Tests Progression - Two subtests of http://wpt.live/html/syntax/serializing-html-fragments/serializing.html Just wanted to raise so we can fix and get more WPT wins and browser compat wins. Thanks!
Created attachment 465641 [details] Partial Merge (.cpp) - MarkupAccumulator.cpp Actual Patch.
Committed 262267@main (948db072bd94): <https://commits.webkit.org/262267@main> Reviewed commits have been landed. Closing PR #12075 and removing active labels.
<rdar://problem/107362610>