ironikart
commented
7 years ago I was able to replicate with just the source HTML of that page so we can probably rule out conflicts with other (external) JS running on the page as the direct cause. What I did find on line 993 of the source code was a (possible) stray open div tag that when removed allowed HTMLCS to run to completion. I've tried isolating it but it has some odd interaction with a
tags starting at line 1700. Removing either the div or the break and HTMLCS runs fine.
The page has a number of HTML validation errors the combination of which seems to throw HTMLCS into an infinite loop.
A short term workaround for automation it may be best to check HTML validation first and bail, or convert the content to valid HTML before passing it to HTMLCS. Both of those don't really sit well with me since it happily parses many other invalid sites, and scanning fixed content may also obscure some issues because the source has been manipulated and is also very difficult to achieve with a headless browser.
Longer term, I will look at isolating this loop and implementing a timeout.
micahsaul
Discovered while working on https://github.com/18F/domain-scan and https://github.com/18F/pulse:
When running https://github.com/pa11y/pa11y against https://portal.hud.gov/hudportal/HUD, the scan locks up. I raised an issue there (https://github.com/pa11y/pa11y/issues/274) and in further investigation they noticed two things: 1) The lock appears to happen when the page has a particular js method in the body onload, which involves a timer in the global scope; and 2) HTML_CodeSniffer is locking up on the same page, and they rely on HTML_CodeSniffer for their scans.
Let me know if you need any more information!
cc: @hollsk @rowanmanning