Add ESLint rule to prevent v-html

This enables an eslint rule to prevent
usage of v-html to avoid potential
XSS vulnerabilities

.eslintrc.yml

@@ -36,7 +36,7 @@ rules:
   # Disabled for now, to make the plugin-vue 4.5 -> 5.0 update smoother
   vue/no-confusing-v-for-v-if: error
   vue/no-use-v-if-with-v-for: off
-  vue/no-v-html: off
+  vue/no-v-html: error
   vue/use-v-on-exact: off
   # all offenses of no-jquery/no-animate-toggle are false positives ( $toast.show() )
   no-jquery/no-animate-toggle: off

app/assets/javascripts/alert_management/components/alert_details.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import * as Sentry from '@sentry/browser';
 import {
   GlAlert,

app/assets/javascripts/alert_management/components/alert_management_table.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import {
   GlLoadingIcon,
   GlTable,

app/assets/javascripts/alert_management/components/system_notes/system_note.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import NoteHeader from '~/notes/components/note_header.vue';
 import { spriteIcon } from '~/lib/utils/common_utils';
 

app/assets/javascripts/badges/components/badge_form.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { escape, debounce } from 'lodash';
 import { mapActions, mapState } from 'vuex';
 import { GlLoadingIcon, GlFormInput, GlFormGroup } from '@gitlab/ui';

app/assets/javascripts/batch_comments/components/draft_note.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { mapActions, mapGetters, mapState } from 'vuex';
 import { GlButton } from '@gitlab/ui';
 import NoteableNote from '~/notes/components/noteable_note.vue';

app/assets/javascripts/batch_comments/components/review_bar.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { mapActions, mapState, mapGetters } from 'vuex';
 import { GlModal, GlModalDirective, GlButton } from '@gitlab/ui';
 import { sprintf, s__ } from '~/locale';

app/assets/javascripts/blob/suggest_gitlab_ci_yml/components/popover.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { GlPopover, GlSprintf, GlButton } from '@gitlab/ui';
 import { parseBoolean, scrollToElement, setCookie, getCookie } from '~/lib/utils/common_utils';
 import { s__ } from '~/locale';

app/assets/javascripts/boards/components/modal/empty_state.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { __, sprintf } from '~/locale';
 import ModalStore from '../../stores/modal_store';
 import modalMixin from '../../mixins/modal_mixins';

app/assets/javascripts/clusters/components/remove_cluster_confirmation.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { escape } from 'lodash';
 import { GlModal, GlButton, GlDeprecatedButton, GlFormInput, GlSprintf } from '@gitlab/ui';
 import SplitButton from '~/vue_shared/components/split_button.vue';

app/assets/javascripts/clusters/components/uninstall_application_confirmation_modal.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { GlModal } from '@gitlab/ui';
 import trackUninstallButtonClickMixin from 'ee_else_ce/clusters/mixins/track_uninstall_button_click';
 import { sprintf, s__ } from '~/locale';

app/assets/javascripts/clusters/components/update_application_confirmation_modal.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { GlModal } from '@gitlab/ui';
 import { sprintf, s__ } from '~/locale';
 import { ELASTIC_STACK } from '../constants';

app/assets/javascripts/create_cluster/eks_cluster/components/eks_cluster_configuration_form.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { createNamespacedHelpers, mapState, mapActions, mapGetters } from 'vuex';
 import { escape } from 'lodash';
 import { GlFormInput, GlFormCheckbox } from '@gitlab/ui';

app/assets/javascripts/create_cluster/eks_cluster/components/service_credentials_form.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { GlFormInput, GlButton } from '@gitlab/ui';
 import { escape } from 'lodash';
 import { mapState, mapActions } from 'vuex';

app/assets/javascripts/cycle_analytics/components/banner.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import iconCycleAnalyticsSplash from 'icons/_icon_cycle_analytics_splash.svg';
 import { GlIcon } from '@gitlab/ui';
 

app/assets/javascripts/cycle_analytics/components/stage_staging_component.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { GlIcon } from '@gitlab/ui';
 import userAvatarImage from '../../vue_shared/components/user_avatar/user_avatar_image.vue';
 import iconBranch from '../svg/icon_branch.svg';

app/assets/javascripts/cycle_analytics/components/stage_test_component.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { GlIcon } from '@gitlab/ui';
 import iconBuildStatus from '../svg/icon_build_status.svg';
 import iconBranch from '../svg/icon_branch.svg';

app/assets/javascripts/design_management/components/design_notes/design_note.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { ApolloMutation } from 'vue-apollo';
 import { GlTooltipDirective, GlIcon } from '@gitlab/ui';
 import updateNoteMutation from '../../graphql/mutations/update_note.mutation.graphql';

app/assets/javascripts/design_management_legacy/components/design_notes/design_note.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { ApolloMutation } from 'vue-apollo';
 import { GlTooltipDirective, GlIcon } from '@gitlab/ui';
 import updateNoteMutation from '../../graphql/mutations/update_note.mutation.graphql';

app/assets/javascripts/diffs/components/commit_item.vue

 <script>
+/* eslint-disable vue/no-v-html */
 import { mapActions } from 'vuex';
 import { GlButtonGroup, GlButton, GlIcon, GlTooltipDirective } from '@gitlab/ui';