refactor: Improve code readability in Sidebar component

[Aunshon]

All Submissions:

• My code follow the WordPress' coding standards
• My code satisfies feature requirements
• My code is tested
• My code passes the PHPCS tests
• My code has proper inline documentation
• I've included related pull request(s) (optional)
• I've included developer documentation (optional)
• I've added proper labels to this pull request

Changes proposed in this Pull Request:

Related Pull Request(s)

• WIP: React migration wepos#174

Closes

• Closes #

How to test the changes in this Pull Request:

• Steps or issue link

Changelog entry

Title

Detailed Description of the pull request. What was previous behaviour
and what will be changed in this PR.

Before Changes

Describe the issue before changes with screenshots(s).

After Changes

Describe the issue after changes with screenshot(s).

Feature Video (optional)

Link of detailed video if this PR is for a feature.

PR Self Review Checklist:

• Code is not following code style guidelines
• Bad naming: make sure you would understand your code if you read it a few months from now.
• KISS: Keep it simple, Sweetie (not stupid!).
• DRY: Don't Repeat Yourself.
• Code that is not readable: too many nested 'if's are a bad sign.
• Performance issues
• Complicated constructions that need refactoring or comments: code should almost always be self-explanatory.
• Grammar errors.

FOR PR REVIEWER ONLY:

As a reviewer, your feedback should be focused on the idea, not the person. Seek to understand, be respectful, and focus on constructive dialog.

As a contributor, your responsibility is to learn from suggestions and iterate your pull request should it be needed based on feedback. Seek to collaborate and produce the best possible contribution to the greater whole.

• Correct — Does the change do what it’s supposed to? ie: code 100% fulfilling the requirements?
• Secure — Would a nefarious party find some way to exploit this change? ie: everything is sanitized/escaped appropriately for any SQL or XSS injection possibilities?
• Readable — Will your future self be able to understand this change months down the road?
• Elegant — Does the change fit aesthetically within the overall style and architecture?

Summary by CodeRabbit

• Improvements
  • Enhanced navigation link behavior in the vendor dashboard sidebar by adding support for configurable link targets, allowing menu items to open in the same window or new tab as intended.

[coderabbitai]

📝 Walkthrough

Walkthrough

Refactored the Sidebar component with formatting improvements, reformatted boolean logic expressions for clarity, and extended external navigation support by adding target attributes to both top-level and submenu navigation links, defaulting to _self when not specified.

Changes

Cohort / File(s)	Summary
Sidebar Navigation Enhancements src/vendor-dashboard/layout/components/Sidebar.tsx	Reformatted className computation and active-state logic for improved readability. Added target attribute handling to top-level menu links and submenu anchors, enabling proper external navigation behavior with fallback to _self.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Suggested reviewers

• mrabbani
• kzamanbd

Poem

🐰 With a gentle brush, we tidy the code,
Adding targets to links down the navigation road,
Clearer logic flows, like meadows so bright,
The sidebar now handles its routes just right!
hop hop ✨

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The PR description uses the template structure but lacks critical content: 'Changes proposed' section is empty, no testing steps provided, and no changelog entry or before/after details included.	Fill in 'Changes proposed' with specific modifications, add clear testing steps, provide a changelog entry with previous vs. new behavior, and describe before/after state.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: improving code readability in the Sidebar component through reformatting and clarity enhancements.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch wepos/compatibility

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@src/vendor-dashboard/layout/components/Sidebar.tsx`:
- Around line 363-365: The link rendering in Sidebar.tsx currently sets target
from item.target / subitem.target (e.g., the anchor using target={item.target ||
'_self'} and the submenu anchor at the later block), which can open untrusted
browsing contexts; update both anchors to include rel="noopener noreferrer"
whenever the computed target may open a new context (e.g., target === '_blank'
or any target not equal to '_self' / when item.target/subitem.target is truthy
and not '_self'). Concretely: compute the effective target (target = item.target
|| '_self' / subTarget = subitem.target || '_self') and set rel to 'noopener
noreferrer' when that target is '_blank' or otherwise not '_self', then pass
rel={computedRel} into both anchor elements.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: ebbcc1af-7839-4be3-ae9c-9604aaee37bf

📥 Commits

Reviewing files that changed from the base of the PR and between 659ff61 and f945811.

📒 Files selected for processing (1)

• src/vendor-dashboard/layout/components/Sidebar.tsx

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Add rel="noopener noreferrer" when target may be _blank.

Now that target is driven by config (item.target / subitem.target), any value of _blank (or a named window) will open a new browsing context that can access window.opener and trigger reverse tabnabbing / referrer leakage. Since the nav config may be filterable/extensible, treat these as untrusted.

Apply the same fix to the submenu anchor at lines 492–495.

🛡️ Proposed fix

                                                 target={
                                                     item.target || '_self'
                                                 }
+                                                rel={
+                                                    item.target === '_blank'
+                                                        ? 'noopener noreferrer'
+                                                        : undefined
+                                                }

And for the submenu:

                                                                             target={
                                                                                 subitem.target ||
                                                                                 '_self'
                                                                             }
+                                                                            rel={
+                                                                                subitem.target ===
+                                                                                '_blank'
+                                                                                    ? 'noopener noreferrer'
+                                                                                    : undefined
+                                                                            }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	target={
	item.target || '_self'
	}
	target={
	item.target || '_self'
	}
	rel={
	item.target === '_blank'
	? 'noopener noreferrer'
	: undefined
	}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@src/vendor-dashboard/layout/components/Sidebar.tsx` around lines 363 - 365,
The link rendering in Sidebar.tsx currently sets target from item.target /
subitem.target (e.g., the anchor using target={item.target || '_self'} and the
submenu anchor at the later block), which can open untrusted browsing contexts;
update both anchors to include rel="noopener noreferrer" whenever the computed
target may open a new context (e.g., target === '_blank' or any target not equal
to '_self' / when item.target/subitem.target is truthy and not '_self').
Concretely: compute the effective target (target = item.target || '_self' /
subTarget = subitem.target || '_self') and set rel to 'noopener noreferrer' when
that target is '_blank' or otherwise not '_self', then pass rel={computedRel}
into both anchor elements.