Verbum Comments: optimize block filtering performance with Block_Scanner pre-filtering

[LiamSarsfield]

Fixes HOG-297: Investigate usability of Block_Scanner within Verbum_Block_Utils

Proposed changes:

• Optimize Verbum comment block filtering performance using hybrid Block_Scanner approach
• Add Block_Scanner-based pre-filtering to detect disallowed blocks without expensive parse_blocks() processing
• Fall back to existing parse_blocks() approach only when disallowed blocks are detected
• Add block-delimiter package dependency to jetpack-mu-wpcom
• Maintain 100% backward compatibility and identical filtering behavior

Other information:

• Have you written new tests for your changes, if applicable?
• Have you checked the E2E test CI results, and verified that your changes do not break them?
• Have you tested your changes on WordPress.com, if applicable (if so, you'll see a generated comment below with a script to run)?

Jetpack product discussion

N/A

Does this pull request change what data or activity we track or use?

N/A

Testing instructions:

This needs to be tested in both Atomic and Simple.

• Create, or use an existing Atomic/Simple (depending on which one you're testing) site.
• Follow the instructions in this comment to ensure your Sandbox has the branch code.
• For simple only: ensure your hosts file has said simple site's domain pointed to your sandbox IP.
• Open the network tab on your dev console.
• While network tab is opened, go to a post that you can comment on on your Simple site.
• Comment a post with an image block (allowed block)
• Verify the comment is posted successfully, and monitor your network tab for a POST request to /wp-comments-post.php
• Right click the network request, and go copy -> copy as fetch
• Paste the code into your browser, but do not execute it yet
• Copy the following value %3C!--%20wp%3Alatest-posts%20%2F--%3E (which is encodeURIComponent())
• Replace a portion of the fetch's second argument's body key to between comment= and &hc_post_as= to comment=%3C!--%20wp%3Alatest-posts%20%2F--%3E&hc_post_as=
• Execute the code, if you sent it right, you should see the below payload's data

• Verify a comment has not been added with said latest posts block, as this is not allowed
• Repeat the same steps for either Simple/Atomic if not done so already.

[github-actions]

Are you an Automattician? Please test your changes on all WordPress.com environments to help mitigate accidental explosions.

• To test on WoA, go to the Plugins menu on a WoA dev site. Click on the "Upload" button and follow the upgrade flow to be able to upload, install, and activate the Jetpack Beta plugin. Once the plugin is active, go to Jetpack > Jetpack Beta, select your plugin (WordPress.com Site Helper), and enable the update/verbum/allowed-blocks-checker-HOG-297 branch.
• To test on Simple, run the following command on your sandbox:

bin/jetpack-downloader test jetpack-mu-wpcom-plugin update/verbum/allowed-blocks-checker-HOG-297

Interested in more tips and information?

• In your local development environment, use the jetpack rsync command to sync your changes to a WoA dev blog.
• Read more about our development workflow here: PCYsg-eg0-p2
• Figure out when your changes will be shipped to customers here: PCYsg-eg5-p2

[github-actions]

Thank you for your PR!

When contributing to Jetpack, we have a few suggestions that can help us test and review your patch:

• ✅ Include a description of your PR changes.
  
• ✅ Add a "[Status]" label (In Progress, Needs Review, ...).
  
• ✅ Add a "[Type]" label (Bug, Enhancement, Janitorial, Task).
  
• ✅ Add testing instructions.
  
• ✅ Specify whether this PR includes any changes to data or privacy.
  
• ✅ Add changelog entries to affected projects
  

This comment will be updated as you work on your PR and make changes. If you think that some of those checks are not needed for your PR, please explain why you think so. Thanks for cooperation 🤖

---

Follow this PR Review Process:

1. Ensure all required checks appearing at the bottom of this PR are passing.
2. Make sure to test your changes on all platforms that it applies to. You're responsible for the quality of the code you ship.
3. You can use GitHub's Reviewers functionality to request a review.
4. When it's reviewed and merged, you will be pinged in Slack to deploy the changes to WordPress.com simple once the build is done.

If you have questions about anything, reach out in #jetpack-developers for guidance!

---

Mu Wpcom plugin:

• Next scheduled release: WordPress.com Simple releases happen semi-continuously (PCYsg-Jjm-p2)

If you have any questions about the release process, please ask in the #jetpack-releases channel on Slack.

---

Wpcomsh plugin:

• Next scheduled release: Atomic deploys happen twice daily on weekdays (p9o2xV-2EN-p2)

If you have any questions about the release process, please ask in the #jetpack-releases channel on Slack.

[jp-launch-control]

Code Coverage Summary

Coverage changed in 1 file.

File	Coverage	Δ%	Δ Uncovered
projects/packages/jetpack-mu-wpcom/src/features/verbum-comments/assets/class-verbum-block-utils.php	70/80 (87.50%)	-1.21%	3 ❤️‍🩹

Full summary · PHP report

[dilirity]

Nice work on this! I added some questions but they are in no way blockers, more like wonderings.

[dilirity]

Nitpick: I think the fast part is not necessary. There's no slow equivalent :D

[dilirity]

I was going back and forth about the function returning true (has disallowed blocks) but I think it makes sense. This way we default back to always using parse blocks if we can't use the Block_Scanner.

[dilirity]

This is to just make sure that we're working with correct data, right? Just making sure 😅

[LiamSarsfield]

Yup! Correct, just an extra defensive measure.

[dilirity]