fix(compiler-sfc): make transformAssetUrl compatible with Node.js subpath imports patterns

[haoqunjiang]

Fixes #9919

The implementation is quite straightforward as shown in the first commit.
However I found the getImportsExpressionExp is getting more and more complex, so I refactored it to improve readability.
I can revert that commit if it presents a hurdle for merging this PR. But IMO, with so many existing test cases, the refactoring is quite safe.

Summary by CodeRabbit

• New Features

  • Asset URLs in templates now support transforming subpath imports (e.g., paths starting with “#src/”).
  • Improved handling of asset URLs that combine a file path with a hash.

• Bug Fixes

  • Correctly distinguishes true hash-fragment references (e.g., for ) from asset URLs starting with “#”, ensuring they’re transformed as imports.
  • More reliable import reuse and path decoding to prevent duplicate imports and handle encoded paths.

• Tests

  • Added coverage for subpath imports and hash-fragment scenarios.

[github-actions]

Size Report

Bundles

File	Size	Gzip	Brotli
runtime-dom.global.prod.js	101 kB	38.4 kB	34.6 kB
vue.global.prod.js	159 kB	58.5 kB	52.1 kB

Usages

Name	Size	Gzip	Brotli
createApp (CAPI only)	46.5 kB	18.2 kB	16.7 kB
createApp	54.5 kB	21.2 kB	19.4 kB
createSSRApp	58.7 kB	22.9 kB	20.9 kB
defineCustomElement	59.5 kB	22.8 kB	20.8 kB
overall	68.5 kB	26.4 kB	24 kB

[pkg-pr-new]

Open in StackBlitz

@vue/compiler-core

npm i https://pkg.pr.new/@vue/compiler-core@13045

@vue/compiler-dom

npm i https://pkg.pr.new/@vue/compiler-dom@13045

@vue/compiler-sfc

npm i https://pkg.pr.new/@vue/compiler-sfc@13045

@vue/compiler-ssr

npm i https://pkg.pr.new/@vue/compiler-ssr@13045

@vue/reactivity

npm i https://pkg.pr.new/@vue/reactivity@13045

@vue/runtime-core

npm i https://pkg.pr.new/@vue/runtime-core@13045

@vue/runtime-dom

npm i https://pkg.pr.new/@vue/runtime-dom@13045

@vue/server-renderer

npm i https://pkg.pr.new/@vue/server-renderer@13045

@vue/shared

npm i https://pkg.pr.new/@vue/shared@13045

vue

npm i https://pkg.pr.new/vue@13045

@vue/compat

npm i https://pkg.pr.new/@vue/compat@13045

commit: 802cf04

[haoqunjiang]

/ecosystem-ci run

[vue-bot]

📝 Ran ecosystem CI: Open

suite	result	latest scheduled
nuxt	✅ success	✅ success
quasar	✅ success	✅ success
language-tools	✅ success	✅ success
radix-vue	✅ success	✅ success
primevue	✅ success	✅ success
test-utils	✅ success	✅ success
router	✅ success	✅ success
vite-plugin-vue	✅ success	✅ success
vueuse	✅ success	✅ success
vue-simple-compiler	✅ success	✅ success
vuetify	✅ success	✅ success
vitepress	✅ success	✅ success
vue-i18n	✅ success	✅ success
vue-macros	✅ success	✅ success
vant	✅ success	✅ success
pinia	✅ success	✅ success

[edison1105]

LGTM

[coderabbitai]

Walkthrough

Adds support for transforming Node.js subpath import-style URLs beginning with “#” in asset URLs by updating relative URL detection and transform logic, refines hash-fragment skipping to only SVG fragment refs, introduces an import registration helper, adjusts hoisting for path+hash cases, and adds a test for “#src/…”.

Changes

Cohort / File(s)	Summary
Tests: subpath import with # packages/compiler-sfc/__tests__/templateTransformAssetUrl.spec.ts	Adds test asserting transformation of #src/assets/vue.svg into an import binding.
URL utils packages/compiler-sfc/src/template/templateUtils.ts	Updates isRelativeUrl to treat # as a relative URL indicator.
Asset URL transform logic packages/compiler-sfc/src/template/transformAssetUrl.ts	Refines hash-fragment skip to only SVG <use> refs; adds resolveOrRegisterImport helper; expands import expression generation for path/hash combinations; supports hoisting combined expressions; decodes import sources before registration; adds documentation comments.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  actor SFC as SFC Template
  participant T as transformAssetUrl
  participant U as isRelativeUrl
  participant R as resolveOrRegisterImport
  participant C as Context(hoist/imports)

  SFC->>T: Encounter asset URL (e.g., "#src/assets/vue.svg")
  T->>U: isRelativeUrl(url)
  U-->>T: true (with '#' now treated as relative)
  alt SVG <use> with href starting "#"
    T-->>SFC: Skip transform (hash fragment)
  else Other tags/attrs
    alt url has path and/or hash
      opt path part exists
        T->>R: register path import
        R->>C: reuse or add _imports_N
        R-->>T: { name, exp }
      end
      opt hash part exists
        T->>R: register hash import (if treated as source)
        R-->>T: { name, exp }
      end
      alt hoist combined (path + hash) and hoist enabled
        T->>C: hoist or reuse _hoisted_N
        C-->>T: hoisted expression
      end
      T-->>SFC: Transformed expression
    end
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Assessment against linked issues

Objective	Addressed	Explanation
Support transforming #-prefixed subpath import URLs in asset src (e.g., #src/assets/logo.svg) [#9919]	✅
Restrict skipping of #... only to SVG <use> hash fragments, not general asset URLs [#9919]	✅

Assessment against linked issues: Out-of-scope changes

Code Change	Explanation
Decode import sources with decodeURIComponent before registering (packages/compiler-sfc/src/template/transformAssetUrl.ts)	The issue targets supporting # subpath imports and refining hash-fragment skipping. Decoding import paths alters resolution semantics and isn’t explicitly required; uncertain necessity for the stated objective.

Poem

I nibble code like clover leaves,
Hop—now “#src” resolves with ease!
No more lost logos in the breeze,
While SVG hashes do as they please.
Thump! A hoist, a helper—cheese!
Ship it swift on bunny knees. 🐇✨

✨ Finishing Touches

• 📝 Generate Docstrings

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

• Add @coderabbitai ignore or @coderabbit ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Status, Documentation and Community

• Visit our Status Page to check the current availability of CodeRabbit.
• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (4)

packages/compiler-sfc/src/template/transformAssetUrl.ts (3)

206-215: Only-hash case: treat bare '#' as empty, not an import

A literal src="#" (placeholder) would now generate import _imports_0 from '#';, which is invalid. Guard for hash.length === 1 and return ''.

Apply this diff:

-  if (!path && hash) {
+  if (!path && hash) {
+    if (hash.length === 1) {
+      return createSimpleExpression(`''`, false, loc, ConstantTypes.CAN_STRINGIFY)
+    }
     const { exp } = resolveOrRegisterImport(hash, loc, context)
     return exp
   }

---

223-238: Const type for dynamic concat may be too optimistic

name + '${hash}' isn’t a static string; using ConstantTypes.CAN_STRINGIFY could mislead later passes. Consider ConstantTypes.NOT_CONSTANT here to reflect dynamism.

Apply this diff:

-  const finalExp = createSimpleExpression(
+  const finalExp = createSimpleExpression(
     hashExp,
     false,
     loc,
-    ConstantTypes.CAN_STRINGIFY,
+    ConstantTypes.NOT_CONSTANT,
   )

---

240-258: Linear scan for hoist reuse is fine; optional memoization

The O(n) scan over context.hoists is acceptable here. If this becomes hot, consider a small map keyed by hashExp to avoid repeated scans.

packages/compiler-sfc/__tests__/templateTransformAssetUrl.spec.ts (1)

117-121: Good coverage for subpath import paths

Test asserts emitted import for #src/... as intended.

Add two follow-ups:

• Dedupe encoded vs decoded paths:

+  test('dedupes encoded vs decoded asset paths', () => {
+    const { code } = compileWithAssetUrls(
+      `<div><img src="./foo%20bar.png"/><img src="./foo bar.png"/></div>`
+    )
+    expect(code.match(/import _imports_\d+ from '\.\/foo bar\.png'/g)?.length).toBe(1)
+  })

• Bare # placeholder doesn’t import:

+  test('does not import bare hash placeholder', () => {
+    const { code } = compileWithAssetUrls(`<img src="#" />`)
+    expect(code).not.toMatch(`from '#'`)
+  })

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between d11cdd4 and 802cf04.

📒 Files selected for processing (3)

• packages/compiler-sfc/__tests__/templateTransformAssetUrl.spec.ts (1 hunks)
• packages/compiler-sfc/src/template/templateUtils.ts (1 hunks)
• packages/compiler-sfc/src/template/transformAssetUrl.ts (2 hunks)

🧰 Additional context used

🧬 Code graph analysis (1)

packages/compiler-sfc/src/template/transformAssetUrl.ts (2)

packages/compiler-sfc/src/template/templateUtils.ts (2)

• isExternalUrl (15-17)
• isDataUrl (20-22)

packages/compiler-core/src/ast.ts (4)

• SourceLocation (77-81)
• SimpleExpressionNode (225-247)
• createSimpleExpression (685-698)
• ExpressionNode (91-91)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)

• GitHub Check: test / e2e-test
• GitHub Check: test / unit-test-windows

🔇 Additional comments (4)

packages/compiler-sfc/src/template/templateUtils.ts (1)

6-11: Adding '#' to relative URL check aligns with subpath imports

Change looks correct and scoped. The transform now considers #-prefixed specifiers as relative while true hash fragments are filtered in transformAssetUrl. No further action.

packages/compiler-sfc/src/template/transformAssetUrl.ts (3)

104-118: Limit hash-fragment skip to hrefs — good guardrail

Scoping the “hash fragment” exclusion to <use> + (href|xlink:href) avoids skipping Node-style # imports elsewhere. This is the right fix.

---

217-221: Path-only import branch — LGTM

Straightforward reuse of the new helper; maintains prior behavior.

---

260-262: Hoisting path+hash expression — LGTM

Uses existing hoist API correctly and returns the hoisted node.

[coderabbitai]

🛠️ Refactor suggestion

Dedupe mismatch when paths differ only by encoding; also guard decode errors

findIndex(i => i.path === source) compares encoded input against a decoded value you push (decodeURIComponent(source)), so 'foo%20bar.svg' and 'foo bar.svg' won’t dedupe. Also, decodeURIComponent can throw on malformed encodings.

Refactor to normalize once, use it for lookup and push, and catch decode errors.

Apply this diff:

-  const existingIndex = context.imports.findIndex(i => i.path === source)
+  // Normalize once for stable matching (handles 'foo%20bar.svg' vs 'foo bar.svg')
+  let normalized = source
+  try {
+    normalized = decodeURIComponent(source)
+  } catch {
+    // keep original if not valid percent-encoding
+  }
+  const existingIndex = context.imports.findIndex(i => i.path === normalized)
@@
-  context.imports.push({
-    exp,
-    path: decodeURIComponent(source),
-  })
+  context.imports.push({
+    exp,
+    path: normalized,
+  })

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	function resolveOrRegisterImport(
	source: string,
	loc: SourceLocation,
	context: TransformContext,
	): {
	name: string
	exp: SimpleExpressionNode
	} {
	const existingIndex = context.imports.findIndex(i => i.path === source)
	if (existingIndex > -1) {
	return {
	name: `_imports_${existingIndex}`,
	exp: context.imports[existingIndex].exp as SimpleExpressionNode,
	}
	}
	const name = `_imports_${context.imports.length}`
	const exp = createSimpleExpression(
	name,
	false,
	loc,
	ConstantTypes.CAN_STRINGIFY,
	)
	// We need to ensure the path is not encoded (to %2F),
	// so we decode it back in case it is encoded
	context.imports.push({
	exp,
	path: decodeURIComponent(source),
	})
	return { name, exp }
	}
	function resolveOrRegisterImport(
	source: string,
	loc: SourceLocation,
	context: TransformContext,
	): {
	name: string
	exp: SimpleExpressionNode
	} {
	// Normalize once for stable matching (handles 'foo%20bar.svg' vs 'foo bar.svg')
	let normalized = source
	try {
	normalized = decodeURIComponent(source)
	} catch {
	// keep original if not valid percent-encoding
	}
	const existingIndex = context.imports.findIndex(i => i.path === normalized)
	if (existingIndex > -1) {
	return {
	name: `_imports_${existingIndex}`,
	exp: context.imports[existingIndex].exp as SimpleExpressionNode,
	}
	}
	const name = `_imports_${context.imports.length}`
	const exp = createSimpleExpression(
	name,
	false,
	loc,
	ConstantTypes.CAN_STRINGIFY,
	)
	context.imports.push({
	exp,
	path: normalized,
	})
	return { name, exp }
	}

🤖 Prompt for AI Agents

In packages/compiler-sfc/src/template/transformAssetUrl.ts around lines 163 to
195, the import dedupe logic currently compares the raw source against a decoded
path and calls decodeURIComponent without handling errors; normalize the source
once into a safePath variable by attempting decodeURIComponent(source) inside a
try/catch (on decode error, fall back to the original source), use safePath for
both the findIndex lookup and for the path stored on the pushed import, and keep
the created exp/name logic unchanged so the same normalized path dedupes
correctly even when inputs differ only by encoding.