feat: add local Safari testing via safaridriver

[marcoscaceres]

Enables pnpm start --browser Safari for local testing and adds Safari to CI.

Problem

karma-safari-launcher@1.0.0 (the published package) uses a redirect.html hack that modern Safari treats as a file download rather than opening it. @onslap/karma-safari-launcher (the replacement) depends on wd@1.x which requires a native build that doesn't compile on Node 24+.

Solution

A minimal custom karma launcher (tests/karma.safari.cjs) that talks directly to safaridriver over W3C WebDriver HTTP protocol using Node's built-in http module. No new npm dependencies.

Also fixes Safari-specific issues discovered during testing:

• postMessage from srcdoc iframes: skip when parent.location.origin throws SecurityError (Safari opaque-origin restriction) instead of falling back to targetOrigin: "*"
• ev.data guard in message handler to prevent crashes from non-object payloads
• Error normalization in SpecHelper.js for Safari (undefined rejection reasons crash jasmine-core)
• Polling fallback in waitReady for Safari where ev.source !== iframe.contentWindow
• textContent instead of innerText for highlight (Safari returns empty for closed <details>)
• parseInfoString null guard for Safari's marked tokenizer

Setup (one-time per machine)

sudo safaridriver --enable

CI

Safari runs on macos-latest in both PR and push workflows. macOS runners cost more than Linux but catching Safari-specific regressions is worth it.

Closes #2894

[Copilot]

Pull request overview

Adds a custom Karma launcher to enable running the project’s unit tests locally in Safari via safaridriver, replacing the deprecated/broken third-party Safari launcher dependency.

Changes:

• Introduces tests/karma.safari.cjs, a minimal W3C WebDriver client/launcher that spawns safaridriver and navigates to the Karma URL.
• Wires the custom launcher into the shared Karma config (tests/karma.conf.base.cjs).
• Removes karma-safari-launcher from dependencies/lockfile.

Reviewed changes

Copilot reviewed 3 out of 4 changed files in this pull request and generated 4 comments.

File	Description
tests/karma.safari.cjs	New custom Safari launcher using safaridriver + Node http.
tests/karma.conf.base.cjs	Replaces karma-safari-launcher plugin with the local Safari launcher.
package.json	Drops karma-safari-launcher dependency.
pnpm-lock.yaml	Removes karma-safari-launcher entries.

Files not reviewed (1)

• pnpm-lock.yaml: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 3 out of 4 changed files in this pull request and generated 2 comments.

Files not reviewed (1)

• pnpm-lock.yaml: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 3 out of 4 changed files in this pull request and generated 1 comment.

Files not reviewed (1)

• pnpm-lock.yaml: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 5 out of 6 changed files in this pull request and generated 2 comments.

Files not reviewed (1)

• pnpm-lock.yaml: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[marcoscaceres]

@copilot i think we should enable this by default to run alongside Chrome and Firefox, even if it’s more expensive to run on macOS in CI. We care that we don’t regress on WebKit/Safari so it’s worth it.

[Copilot]

@copilot i think we should enable this by default to run alongside Chrome and Firefox, even if it’s more expensive to run on macOS in CI. We care that we don’t regress on WebKit/Safari so it’s w...

Done in bd0debf — Safari is now enabled in CI on macos-latest runners alongside Chrome and Firefox:

• pr.yml: extended the test-karma matrix to include Safari / macos-latest (with sudo safaridriver --enable as a conditional step before installing deps).
• push.yml: added a new test-karma-safari job on macos-latest that runs both test:unit and test:integration with BROWSERS: Safari.

[marcoscaceres]

@copilot Can you check and fix ci?

[Copilot]

@copilot Can you check and fix ci?

Fixed in a7d2784. The CI failure had two root causes on cold macOS runners:

1. Fixed 500ms startup wait was too short — safaridriver wasn't listening yet, so POST /session got ECONNREFUSED immediately. Replaced with a waitForReady() helper that polls GET /status every 250ms for up to 15s, only proceeding once safaridriver responds.
2. 10s POST /session timeout was too short — Safari itself takes time to launch on a cold runner. Increased to 30s for that call.

The waitForReady also properly races against the process error/exit events (with a settle-once guard), so early failures are still reported quickly with a clear message.

[marcoscaceres]

@copilot Couple of lint errors to fix. See ci.

[Copilot]

@copilot Couple of lint errors to fix. See ci.

Fixed in dab0d02 — two prettier formatting errors in tests/karma.safari.cjs:

1. Long reject(new Error(...)) call on line 108 → wrapped to multi-line
2. Curried arrow const finish = fn => (...args) => { on lines 157–161 → reformatted to prettier's preferred style for curried arrows

[marcoscaceres]

Seeing a lot ci fails @copilot. Do your thing, my good every so helpful little digital marvel.

[Copilot]

Seeing a lot ci fails @copilot. Do your thing, my good every so helpful little digital marvel.

Fixed in ad409ca — two root causes identified from the Safari CI log:

1. src/core/pubsubhub.js: window.parent.location.origin throws SecurityError in Safari when srcdoc iframes are treated as opaque-origin. Wrapped in try/catch with "*" as a safe fallback (these messages are test-only, contain no sensitive data).

2. tests/unit/SpecHelper.js: the waitReady message handler used ev.source.document, which also throws SecurityError cross-origin in Safari, silently preventing the "end-all" message from being handled and leaving tests hanging. Replaced with ev.source !== iframe.contentWindow (safe cross-origin Window identity comparison). Also changed the timeout from throw inside setTimeout (which Safari converts to an unhandled rejection with undefined, crashing jasmine-core) to a proper reject() inside the Promise.

[marcoscaceres]

@copilot can you review this again and fix any issues you find and any resolve any unresolved comments?

[marcoscaceres]

@copilot can you fix the CI issues?

[Copilot]

@copilot can you fix the CI issues?

Fixed in 9a55b96. The 4 Safari-specific test failures had the same root cause: Safari returns '' for innerText on elements inside closed <details> elements (no layout is computed for hidden content).

• data-tests-spec.js (3 failures): File/emoji anchor elements live inside <details class="respec-tests-details"> which is closed by default — changed to textContent.
• issues-notes-spec.js (1 failure at line 447): The processed .note div — changed div.innerText to div.textContent.

[marcoscaceres]

@copilot still seeing issues?

[Copilot]

@copilot still seeing issues?

Fixed in 79aec16. The root cause was that tests/spec/SpecHelper.js had the same Safari postMessage bug that was previously fixed in tests/unit/SpecHelper.js — ev.source.document throws SecurityError in Safari for opaque-origin srcdoc iframes, causing the "end-all" message handler to fail silently and tests to time out.

The fix applies the same pattern: settle() guard for single resolution, try/catch around the ev.source.document check, ev.data type guard, and a 100ms polling fallback on doc.respec.ready.