Extract rule: template-no-forbidden-elements

Author: NullVoxPopuli

README.md

@@ -203,6 +203,7 @@ rules in templates can be disabled with eslint directives with mustache or html
 | [template-no-chained-this](docs/rules/template-no-chained-this.md)                                     | disallow redundant `this.this` in templates                     |    | 🔧 |    |
 | [template-no-debugger](docs/rules/template-no-debugger.md)                                             | disallow {{debugger}} in templates                              |    |    |    |
 | [template-no-element-event-actions](docs/rules/template-no-element-event-actions.md)                   | disallow element event actions (use {{on}} modifier instead)    |    |    |    |
+| [template-no-forbidden-elements](docs/rules/template-no-forbidden-elements.md)                         | disallow specific HTML elements                                 |    |    |    |
 | [template-no-inline-event-handlers](docs/rules/template-no-inline-event-handlers.md)                   | disallow DOM event handler attributes                           |    |    |    |
 | [template-no-inline-styles](docs/rules/template-no-inline-styles.md)                                   | disallow inline styles                                          |    |    |    |
 | [template-no-input-placeholder](docs/rules/template-no-input-placeholder.md)                           | disallow placeholder attribute on input elements                |    |    |    |

docs/rules/template-no-forbidden-elements.md

@@ -0,0 +1,57 @@
+# ember/template-no-forbidden-elements
+
+<!-- end auto-generated rule header -->
+
+This rule disallows the use of forbidden elements in template files.
+
+The rule is configurable so teams can add their own disallowed elements.
+The default list of forbidden elements are `meta`, `style`, `html`, and `script`.
+
+## Examples
+
+This rule **forbids** the following:
+
+```gjs
+<template><script></script></template>
+```
+
+```gjs
+<template><style></style></template>
+```
+
+```gjs
+<template><html></html></template>
+```
+
+```gjs
+<template><meta charset='utf-8' /></template>
+```
+
+This rule **allows** the following:
+
+```gjs
+<template><header></header></template>
+```
+
+```gjs
+<template><div></div></template>
+```
+
+```gjs
+<template>
+  <head>
+    <meta charset='utf-8' />
+  </head>
+</template>
+```
+
+Note: `<meta>` inside `<head>` is allowed as an exception.
+
+## Configuration
+
+- `boolean` — `true` to enable with defaults / `false` to disable
+- `string[]` — an array of element names to forbid (default: `['meta', 'style', 'html', 'script']`)
+
+## References
+
+- [Ember guides/template restrictions](https://guides.emberjs.com/release/components/#toc_restrictions)

lib/rules/template-no-forbidden-elements.js

@@ -0,0 +1,64 @@
+const DEFAULT_FORBIDDEN = ['meta', 'style', 'html', 'script'];
+
+/** @type {import('eslint').Rule.RuleModule} */
+module.exports = {
+  meta: {
+    type: 'suggestion',
+    docs: {
+      description: 'disallow specific HTML elements',
+      category: 'Best Practices',
+      recommendedGjs: false,
+      recommendedGts: false,
+      url: 'https://github.com/ember-cli/eslint-plugin-ember/tree/master/docs/rules/template-no-forbidden-elements.md',
+    },
+    schema: [
+      {
+        oneOf: [{ type: 'array', items: { type: 'string' } }, { type: 'boolean' }],
+      },
+    ],
+    messages: { forbidden: 'Use of forbidden element <{{element}}>' },
+    originallyFrom: {
+      name: 'ember-template-lint',
+      rule: 'lib/rules/no-forbidden-elements.js',
+      docs: 'docs/rule/no-forbidden-elements.md',
+      tests: 'test/unit/rules/no-forbidden-elements-test.js',
+    },
+  },
+  create(context) {
+    const rawConfig = context.options[0];
+    let forbiddenList;
+
+    if (rawConfig === true || rawConfig === undefined) {
+      forbiddenList = DEFAULT_FORBIDDEN;
+    } else if (Array.isArray(rawConfig)) {
+      forbiddenList = rawConfig;
+    } else {
+      forbiddenList = [];
+    }
+
+    const forbidden = new Set(forbiddenList);
+
+    // Track element stack for <meta> in <head> exception
+    const elementStack = [];
+
+    return {
+      GlimmerElementNode(node) {
+        elementStack.push(node.tag);
+
+        if (!forbidden.has(node.tag)) {
+          return;
+        }
+
+        // Exception: <meta> inside <head> is allowed
+        if (node.tag === 'meta' && elementStack.includes('head')) {
+          return;
+        }
+
+        context.report({ node, messageId: 'forbidden', data: { element: node.tag } });
+      },
+      'GlimmerElementNode:exit'() {
+        elementStack.pop();
+      },
+    };
+  },
+};

tests/lib/rules/template-no-forbidden-elements.js

@@ -0,0 +1,47 @@
+const rule = require('../../../lib/rules/template-no-forbidden-elements');
+const RuleTester = require('eslint').RuleTester;
+
+const ruleTester = new RuleTester({
+  parser: require.resolve('ember-eslint-parser'),
+  parserOptions: { ecmaVersion: 2022, sourceType: 'module' },
+});
+ruleTester.run('template-no-forbidden-elements', rule, {
+  valid: [
+    { code: '<template><div></div></template>', options: [['script']] },
+    // Test cases ported from ember-template-lint
+    '<template><header></header></template>',
+    '<template><footer></footer></template>',
+    '<template><p></p></template>',
+    '<template><head><meta charset="utf-8"></head></template>',
+  ],
+  invalid: [
+    {
+      code: '<template><script></script></template>',
+      output: null,
+      options: [['script']],
+      errors: [{ messageId: 'forbidden' }],
+    },
+
+    // Test cases ported from ember-template-lint
+    {
+      code: '<template><html></html></template>',
+      output: null,
+      errors: [{ messageId: 'forbidden' }],
+    },
+    {
+      code: '<template><style></style></template>',
+      output: null,
+      errors: [{ messageId: 'forbidden' }],
+    },
+    {
+      code: '<template><meta charset="utf-8"></template>',
+      output: null,
+      errors: [{ messageId: 'forbidden' }],
+    },
+    {
+      code: '<template><head><html></html></head></template>',
+      output: null,
+      errors: [{ messageId: 'forbidden' }],
+    },
+  ],
+});