From accac42c9e880823b69437406bffe50581656776 Mon Sep 17 00:00:00 2001
From: Test User <test@example.com>
Date: Tue, 5 May 2026 09:30:53 +0800
Subject: [PATCH] Fix escapeHTML missing double quote escaping

escapeHTML is used to sanitize text before injecting into innerHTML
via style attributes (<span style="...">). Without escaping double
quotes, text content containing " could break out of the style
attribute. Add &quot; escaping for defense in depth.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
---
 packages/@wterm/dom/src/renderer.ts | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/packages/@wterm/dom/src/renderer.ts b/packages/@wterm/dom/src/renderer.ts
index a5ed237..8bf28ad 100644
--- a/packages/@wterm/dom/src/renderer.ts
+++ b/packages/@wterm/dom/src/renderer.ts
@@ -93,7 +93,8 @@ function escapeHTML(text: string): string {
   return text
     .replace(/&/g, "&amp;")
     .replace(/</g, "&lt;")
-    .replace(/>/g, "&gt;");
+    .replace(/>/g, "&gt;")
+    .replace(/"/g, "&quot;");
 }
 
 function resolveColors(