@forge-glance/sdk 0.1.0 → 0.1.1

package/dist/GitHubProvider.d.ts

@@ -12,7 +12,7 @@
  * provides the instance URL and we append "/api/v3".
  */
 import type { GitProvider } from "./GitProvider.ts";
-import type { MRDetail, PullRequest, UserRef } from "./types.ts";
+import type { BranchProtectionRule, CreatePullRequestInput, MRDetail, PullRequest, UpdatePullRequestInput, UserRef } from "./types.ts";
 import { type ForgeLogger } from "./logger.ts";
 export declare class GitHubProvider implements GitProvider {
     readonly providerName: "github";
@@ -33,6 +33,11 @@ export declare class GitHubProvider implements GitProvider {
     fetchPullRequests(): Promise<PullRequest[]>;
     fetchSingleMR(projectPath: string, mrIid: number, _currentUserNumericId: number | null): Promise<PullRequest | null>;
     fetchMRDiscussions(repositoryId: string, mrIid: number): Promise<MRDetail>;
+    fetchBranchProtectionRules(projectPath: string): Promise<BranchProtectionRule[]>;
+    deleteBranch(projectPath: string, branch: string): Promise<void>;
+    fetchPullRequestByBranch(projectPath: string, sourceBranch: string): Promise<PullRequest | null>;
+    createPullRequest(input: CreatePullRequestInput): Promise<PullRequest>;
+    updatePullRequest(projectPath: string, mrIid: number, input: UpdatePullRequestInput): Promise<PullRequest>;
     restRequest(method: string, path: string, body?: unknown): Promise<Response>;
     private api;
     /**

package/dist/GitHubProvider.js

@@ -207,6 +207,129 @@ class GitHubProvider {
     }
     return { mrIid, repositoryId, discussions };
   }
+  async fetchBranchProtectionRules(projectPath) {
+    const res = await this.api("GET", `/repos/${projectPath}/branches?protected=true&per_page=100`);
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = await res.json();
+    const rules = [];
+    for (const b of branches) {
+      if (!b.protected)
+        continue;
+      const detailRes = await this.api("GET", `/repos/${projectPath}/branches/${encodeURIComponent(b.name)}/protection`);
+      if (!detailRes.ok) {
+        rules.push({
+          pattern: b.name,
+          allowForcePush: false,
+          allowDeletion: false,
+          requiredApprovals: 0,
+          requireStatusChecks: false
+        });
+        continue;
+      }
+      const detail = await detailRes.json();
+      rules.push({
+        pattern: b.name,
+        allowForcePush: detail.allow_force_pushes?.enabled ?? false,
+        allowDeletion: detail.allow_deletions?.enabled ?? false,
+        requiredApprovals: detail.required_pull_request_reviews?.required_approving_review_count ?? 0,
+        requireStatusChecks: detail.required_status_checks !== null && detail.required_status_checks !== undefined,
+        raw: detail
+      });
+    }
+    return rules;
+  }
+  async deleteBranch(projectPath, branch) {
+    const res = await this.api("DELETE", `/repos/${projectPath}/git/refs/heads/${encodeURIComponent(branch)}`);
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+  async fetchPullRequestByBranch(projectPath, sourceBranch) {
+    const res = await this.api("GET", `/repos/${projectPath}/pulls?head=${projectPath.split("/")[0]}:${encodeURIComponent(sourceBranch)}&state=open&per_page=1`);
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const prs = await res.json();
+    if (!prs[0])
+      return null;
+    return this.fetchSingleMR(projectPath, prs[0].number, null);
+  }
+  async createPullRequest(input) {
+    const body = {
+      head: input.sourceBranch,
+      base: input.targetBranch,
+      title: input.title
+    };
+    if (input.description != null)
+      body.body = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    const res = await this.api("POST", `/repos/${input.projectPath}/pulls`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = await res.json();
+    if (input.reviewers?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/pulls/${created.number}/requested_reviewers`, {
+        reviewers: input.reviewers
+      });
+    }
+    if (input.assignees?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/assignees`, {
+        assignees: input.assignees
+      });
+    }
+    if (input.labels?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/labels`, {
+        labels: input.labels
+      });
+    }
+    const pr = await this.fetchSingleMR(input.projectPath, created.number, null);
+    if (!pr)
+      throw new Error("Created PR but failed to fetch it back");
+    return pr;
+  }
+  async updatePullRequest(projectPath, mrIid, input) {
+    const body = {};
+    if (input.title != null)
+      body.title = input.title;
+    if (input.description != null)
+      body.body = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.targetBranch != null)
+      body.base = input.targetBranch;
+    if (input.stateEvent)
+      body.state = input.stateEvent === "close" ? "closed" : "open";
+    const res = await this.api("PATCH", `/repos/${projectPath}/pulls/${mrIid}`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+    if (input.reviewers) {
+      await this.api("POST", `/repos/${projectPath}/pulls/${mrIid}/requested_reviewers`, {
+        reviewers: input.reviewers
+      });
+    }
+    if (input.assignees) {
+      await this.api("POST", `/repos/${projectPath}/issues/${mrIid}/assignees`, {
+        assignees: input.assignees
+      });
+    }
+    if (input.labels) {
+      await this.api("PUT", `/repos/${projectPath}/issues/${mrIid}/labels`, {
+        labels: input.labels
+      });
+    }
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr)
+      throw new Error("Updated PR but failed to fetch it back");
+    return pr;
+  }
   async restRequest(method, path, body) {
     return this.api(method, path, body);
   }

package/dist/GitLabProvider.d.ts

@@ -1,5 +1,5 @@
 import type { GitProvider } from "./GitProvider.ts";
-import type { MRDetail, PullRequest, UserRef } from "./types.ts";
+import type { BranchProtectionRule, CreatePullRequestInput, MRDetail, PullRequest, UpdatePullRequestInput, UserRef } from "./types.ts";
 import { type ForgeLogger } from "./logger.ts";
 /**
  * Strips the provider prefix from a scoped repositoryId and returns the
@@ -29,6 +29,11 @@ export declare class GitLabProvider implements GitProvider {
     fetchSingleMR(projectPath: string, mrIid: number, currentUserNumericId: number | null): Promise<PullRequest | null>;
     fetchPullRequests(): Promise<PullRequest[]>;
     fetchMRDiscussions(repositoryId: string, mrIid: number): Promise<MRDetail>;
+    fetchBranchProtectionRules(projectPath: string): Promise<BranchProtectionRule[]>;
+    deleteBranch(projectPath: string, branch: string): Promise<void>;
+    fetchPullRequestByBranch(projectPath: string, sourceBranch: string): Promise<PullRequest | null>;
+    createPullRequest(input: CreatePullRequestInput): Promise<PullRequest>;
+    updatePullRequest(projectPath: string, mrIid: number, input: UpdatePullRequestInput): Promise<PullRequest>;
     restRequest(method: string, path: string, body?: unknown): Promise<Response>;
     private runQuery;
 }

package/dist/GitLabProvider.js

@@ -313,6 +313,115 @@ class GitLabProvider {
     const projectId = parseGitLabRepoId(repositoryId);
     return this.mrDetailFetcher.fetchDetail(projectId, mrIid);
   }
+  async fetchBranchProtectionRules(projectPath) {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/protected_branches?per_page=100`, { headers: { "PRIVATE-TOKEN": this.token } });
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = await res.json();
+    return branches.map((b) => ({
+      pattern: b.name,
+      allowForcePush: b.allow_force_push,
+      allowDeletion: false,
+      requiredApprovals: 0,
+      requireStatusChecks: false,
+      raw: b
+    }));
+  }
+  async deleteBranch(projectPath, branch) {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/repository/branches/${encodeURIComponent(branch)}`, { method: "DELETE", headers: { "PRIVATE-TOKEN": this.token } });
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+  async fetchPullRequestByBranch(projectPath, sourceBranch) {
+    const encoded = encodeURIComponent(projectPath);
+    const url = `${this.baseURL}/api/v4/projects/${encoded}/merge_requests?source_branch=${encodeURIComponent(sourceBranch)}&state=opened&per_page=1`;
+    const res = await fetch(url, {
+      headers: { "PRIVATE-TOKEN": this.token }
+    });
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const mrs = await res.json();
+    if (!mrs[0])
+      return null;
+    return this.fetchSingleMR(projectPath, mrs[0].iid, null);
+  }
+  async createPullRequest(input) {
+    const encoded = encodeURIComponent(input.projectPath);
+    const body = {
+      source_branch: input.sourceBranch,
+      target_branch: input.targetBranch,
+      title: input.title
+    };
+    if (input.description != null)
+      body.description = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.labels?.length)
+      body.labels = input.labels.join(",");
+    if (input.assignees?.length)
+      body.assignee_ids = input.assignees;
+    if (input.reviewers?.length)
+      body.reviewer_ids = input.reviewers;
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/merge_requests`, {
+      method: "POST",
+      headers: {
+        "PRIVATE-TOKEN": this.token,
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify(body)
+    });
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = await res.json();
+    const pr = await this.fetchSingleMR(input.projectPath, created.iid, null);
+    if (!pr)
+      throw new Error("Created MR but failed to fetch it back");
+    return pr;
+  }
+  async updatePullRequest(projectPath, mrIid, input) {
+    const encoded = encodeURIComponent(projectPath);
+    const body = {};
+    if (input.title != null)
+      body.title = input.title;
+    if (input.description != null)
+      body.description = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.targetBranch != null)
+      body.target_branch = input.targetBranch;
+    if (input.labels)
+      body.labels = input.labels.join(",");
+    if (input.assignees)
+      body.assignee_ids = input.assignees;
+    if (input.reviewers)
+      body.reviewer_ids = input.reviewers;
+    if (input.stateEvent)
+      body.state_event = input.stateEvent;
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/merge_requests/${mrIid}`, {
+      method: "PUT",
+      headers: {
+        "PRIVATE-TOKEN": this.token,
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify(body)
+    });
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr)
+      throw new Error("Updated MR but failed to fetch it back");
+    return pr;
+  }
   async restRequest(method, path, body) {
     const url = `${this.baseURL}${path}`;
     const headers = {

package/dist/GitProvider.d.ts

@@ -1,4 +1,4 @@
-import type { MRDetail, PullRequest, UserRef } from "./types.ts";
+import type { BranchProtectionRule, CreatePullRequestInput, MRDetail, PullRequest, UpdatePullRequestInput, UserRef } from "./types.ts";
 /**
  * Provider-agnostic interface for a Git hosting service.
  *
@@ -24,6 +24,31 @@ export interface GitProvider {
      * Used by SubscriptionManager for real-time update handling.
      */
     fetchSingleMR(projectPath: string, mrIid: number, currentUserNumericId: number | null): Promise<PullRequest | null>;
+    /**
+     * Fetch a single MR/PR by its source branch within a project.
+     * Returns null if no open MR/PR exists for that branch.
+     */
+    fetchPullRequestByBranch(projectPath: string, sourceBranch: string): Promise<PullRequest | null>;
+    /**
+     * Create a new merge request / pull request.
+     * Returns the created PullRequest.
+     */
+    createPullRequest(input: CreatePullRequestInput): Promise<PullRequest>;
+    /**
+     * Update an existing merge request / pull request.
+     * Returns the updated PullRequest.
+     */
+    updatePullRequest(projectPath: string, mrIid: number, input: UpdatePullRequestInput): Promise<PullRequest>;
+    /**
+     * Fetch branch protection rules for a repository.
+     * Returns an array of rules (one per protected branch/pattern).
+     */
+    fetchBranchProtectionRules(projectPath: string): Promise<BranchProtectionRule[]>;
+    /**
+     * Delete a branch from the repository.
+     * @throws if the branch doesn't exist or is protected.
+     */
+    deleteBranch(projectPath: string, branch: string): Promise<void>;
     /**
      * Fetch discussions (comments, threads) for a specific MR/PR.
      * Returns the MRDetail with discussions populated.

package/dist/index.d.ts

@@ -11,7 +11,7 @@
  * const provider = new GitLabProvider('https://gitlab.com', token, { logger: console });
  * const prs = await provider.fetchPullRequests();
  */
-export type { PullRequest, PullRequestsSnapshot, Pipeline, PipelineJob, UserRef, DiffStats, Discussion, Note, NoteAuthor, NotePosition, MRDetail, FeedEvent, FeedSnapshot, ServerNotification, } from "./types.ts";
+export type { PullRequest, PullRequestsSnapshot, CreatePullRequestInput, UpdatePullRequestInput, BranchProtectionRule, Pipeline, PipelineJob, UserRef, DiffStats, Discussion, Note, NoteAuthor, NotePosition, MRDetail, FeedEvent, FeedSnapshot, ServerNotification, } from "./types.ts";
 export type { GitProvider } from "./GitProvider.ts";
 export { parseRepoId, repoIdProvider } from "./GitProvider.ts";
 export type { ForgeLogger } from "./logger.ts";

package/dist/index.js

@@ -322,6 +322,115 @@ class GitLabProvider {
     const projectId = parseGitLabRepoId(repositoryId);
     return this.mrDetailFetcher.fetchDetail(projectId, mrIid);
   }
+  async fetchBranchProtectionRules(projectPath) {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/protected_branches?per_page=100`, { headers: { "PRIVATE-TOKEN": this.token } });
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = await res.json();
+    return branches.map((b) => ({
+      pattern: b.name,
+      allowForcePush: b.allow_force_push,
+      allowDeletion: false,
+      requiredApprovals: 0,
+      requireStatusChecks: false,
+      raw: b
+    }));
+  }
+  async deleteBranch(projectPath, branch) {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/repository/branches/${encodeURIComponent(branch)}`, { method: "DELETE", headers: { "PRIVATE-TOKEN": this.token } });
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+  async fetchPullRequestByBranch(projectPath, sourceBranch) {
+    const encoded = encodeURIComponent(projectPath);
+    const url = `${this.baseURL}/api/v4/projects/${encoded}/merge_requests?source_branch=${encodeURIComponent(sourceBranch)}&state=opened&per_page=1`;
+    const res = await fetch(url, {
+      headers: { "PRIVATE-TOKEN": this.token }
+    });
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const mrs = await res.json();
+    if (!mrs[0])
+      return null;
+    return this.fetchSingleMR(projectPath, mrs[0].iid, null);
+  }
+  async createPullRequest(input) {
+    const encoded = encodeURIComponent(input.projectPath);
+    const body = {
+      source_branch: input.sourceBranch,
+      target_branch: input.targetBranch,
+      title: input.title
+    };
+    if (input.description != null)
+      body.description = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.labels?.length)
+      body.labels = input.labels.join(",");
+    if (input.assignees?.length)
+      body.assignee_ids = input.assignees;
+    if (input.reviewers?.length)
+      body.reviewer_ids = input.reviewers;
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/merge_requests`, {
+      method: "POST",
+      headers: {
+        "PRIVATE-TOKEN": this.token,
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify(body)
+    });
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = await res.json();
+    const pr = await this.fetchSingleMR(input.projectPath, created.iid, null);
+    if (!pr)
+      throw new Error("Created MR but failed to fetch it back");
+    return pr;
+  }
+  async updatePullRequest(projectPath, mrIid, input) {
+    const encoded = encodeURIComponent(projectPath);
+    const body = {};
+    if (input.title != null)
+      body.title = input.title;
+    if (input.description != null)
+      body.description = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.targetBranch != null)
+      body.target_branch = input.targetBranch;
+    if (input.labels)
+      body.labels = input.labels.join(",");
+    if (input.assignees)
+      body.assignee_ids = input.assignees;
+    if (input.reviewers)
+      body.reviewer_ids = input.reviewers;
+    if (input.stateEvent)
+      body.state_event = input.stateEvent;
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/merge_requests/${mrIid}`, {
+      method: "PUT",
+      headers: {
+        "PRIVATE-TOKEN": this.token,
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify(body)
+    });
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr)
+      throw new Error("Updated MR but failed to fetch it back");
+    return pr;
+  }
   async restRequest(method, path, body) {
     const url = `${this.baseURL}${path}`;
     const headers = {
@@ -563,6 +672,129 @@ class GitHubProvider {
     }
     return { mrIid, repositoryId, discussions };
   }
+  async fetchBranchProtectionRules(projectPath) {
+    const res = await this.api("GET", `/repos/${projectPath}/branches?protected=true&per_page=100`);
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = await res.json();
+    const rules = [];
+    for (const b of branches) {
+      if (!b.protected)
+        continue;
+      const detailRes = await this.api("GET", `/repos/${projectPath}/branches/${encodeURIComponent(b.name)}/protection`);
+      if (!detailRes.ok) {
+        rules.push({
+          pattern: b.name,
+          allowForcePush: false,
+          allowDeletion: false,
+          requiredApprovals: 0,
+          requireStatusChecks: false
+        });
+        continue;
+      }
+      const detail = await detailRes.json();
+      rules.push({
+        pattern: b.name,
+        allowForcePush: detail.allow_force_pushes?.enabled ?? false,
+        allowDeletion: detail.allow_deletions?.enabled ?? false,
+        requiredApprovals: detail.required_pull_request_reviews?.required_approving_review_count ?? 0,
+        requireStatusChecks: detail.required_status_checks !== null && detail.required_status_checks !== undefined,
+        raw: detail
+      });
+    }
+    return rules;
+  }
+  async deleteBranch(projectPath, branch) {
+    const res = await this.api("DELETE", `/repos/${projectPath}/git/refs/heads/${encodeURIComponent(branch)}`);
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+  async fetchPullRequestByBranch(projectPath, sourceBranch) {
+    const res = await this.api("GET", `/repos/${projectPath}/pulls?head=${projectPath.split("/")[0]}:${encodeURIComponent(sourceBranch)}&state=open&per_page=1`);
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const prs = await res.json();
+    if (!prs[0])
+      return null;
+    return this.fetchSingleMR(projectPath, prs[0].number, null);
+  }
+  async createPullRequest(input) {
+    const body = {
+      head: input.sourceBranch,
+      base: input.targetBranch,
+      title: input.title
+    };
+    if (input.description != null)
+      body.body = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    const res = await this.api("POST", `/repos/${input.projectPath}/pulls`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = await res.json();
+    if (input.reviewers?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/pulls/${created.number}/requested_reviewers`, {
+        reviewers: input.reviewers
+      });
+    }
+    if (input.assignees?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/assignees`, {
+        assignees: input.assignees
+      });
+    }
+    if (input.labels?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/labels`, {
+        labels: input.labels
+      });
+    }
+    const pr = await this.fetchSingleMR(input.projectPath, created.number, null);
+    if (!pr)
+      throw new Error("Created PR but failed to fetch it back");
+    return pr;
+  }
+  async updatePullRequest(projectPath, mrIid, input) {
+    const body = {};
+    if (input.title != null)
+      body.title = input.title;
+    if (input.description != null)
+      body.body = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.targetBranch != null)
+      body.base = input.targetBranch;
+    if (input.stateEvent)
+      body.state = input.stateEvent === "close" ? "closed" : "open";
+    const res = await this.api("PATCH", `/repos/${projectPath}/pulls/${mrIid}`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+    if (input.reviewers) {
+      await this.api("POST", `/repos/${projectPath}/pulls/${mrIid}/requested_reviewers`, {
+        reviewers: input.reviewers
+      });
+    }
+    if (input.assignees) {
+      await this.api("POST", `/repos/${projectPath}/issues/${mrIid}/assignees`, {
+        assignees: input.assignees
+      });
+    }
+    if (input.labels) {
+      await this.api("PUT", `/repos/${projectPath}/issues/${mrIid}/labels`, {
+        labels: input.labels
+      });
+    }
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr)
+      throw new Error("Updated PR but failed to fetch it back");
+    return pr;
+  }
   async restRequest(method, path, body) {
     return this.api(method, path, body);
   }

package/dist/providers.js

@@ -313,6 +313,115 @@ class GitLabProvider {
     const projectId = parseGitLabRepoId(repositoryId);
     return this.mrDetailFetcher.fetchDetail(projectId, mrIid);
   }
+  async fetchBranchProtectionRules(projectPath) {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/protected_branches?per_page=100`, { headers: { "PRIVATE-TOKEN": this.token } });
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = await res.json();
+    return branches.map((b) => ({
+      pattern: b.name,
+      allowForcePush: b.allow_force_push,
+      allowDeletion: false,
+      requiredApprovals: 0,
+      requireStatusChecks: false,
+      raw: b
+    }));
+  }
+  async deleteBranch(projectPath, branch) {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/repository/branches/${encodeURIComponent(branch)}`, { method: "DELETE", headers: { "PRIVATE-TOKEN": this.token } });
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+  async fetchPullRequestByBranch(projectPath, sourceBranch) {
+    const encoded = encodeURIComponent(projectPath);
+    const url = `${this.baseURL}/api/v4/projects/${encoded}/merge_requests?source_branch=${encodeURIComponent(sourceBranch)}&state=opened&per_page=1`;
+    const res = await fetch(url, {
+      headers: { "PRIVATE-TOKEN": this.token }
+    });
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const mrs = await res.json();
+    if (!mrs[0])
+      return null;
+    return this.fetchSingleMR(projectPath, mrs[0].iid, null);
+  }
+  async createPullRequest(input) {
+    const encoded = encodeURIComponent(input.projectPath);
+    const body = {
+      source_branch: input.sourceBranch,
+      target_branch: input.targetBranch,
+      title: input.title
+    };
+    if (input.description != null)
+      body.description = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.labels?.length)
+      body.labels = input.labels.join(",");
+    if (input.assignees?.length)
+      body.assignee_ids = input.assignees;
+    if (input.reviewers?.length)
+      body.reviewer_ids = input.reviewers;
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/merge_requests`, {
+      method: "POST",
+      headers: {
+        "PRIVATE-TOKEN": this.token,
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify(body)
+    });
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = await res.json();
+    const pr = await this.fetchSingleMR(input.projectPath, created.iid, null);
+    if (!pr)
+      throw new Error("Created MR but failed to fetch it back");
+    return pr;
+  }
+  async updatePullRequest(projectPath, mrIid, input) {
+    const encoded = encodeURIComponent(projectPath);
+    const body = {};
+    if (input.title != null)
+      body.title = input.title;
+    if (input.description != null)
+      body.description = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.targetBranch != null)
+      body.target_branch = input.targetBranch;
+    if (input.labels)
+      body.labels = input.labels.join(",");
+    if (input.assignees)
+      body.assignee_ids = input.assignees;
+    if (input.reviewers)
+      body.reviewer_ids = input.reviewers;
+    if (input.stateEvent)
+      body.state_event = input.stateEvent;
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/merge_requests/${mrIid}`, {
+      method: "PUT",
+      headers: {
+        "PRIVATE-TOKEN": this.token,
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify(body)
+    });
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr)
+      throw new Error("Updated MR but failed to fetch it back");
+    return pr;
+  }
   async restRequest(method, path, body) {
     const url = `${this.baseURL}${path}`;
     const headers = {
@@ -554,6 +663,129 @@ class GitHubProvider {
     }
     return { mrIid, repositoryId, discussions };
   }
+  async fetchBranchProtectionRules(projectPath) {
+    const res = await this.api("GET", `/repos/${projectPath}/branches?protected=true&per_page=100`);
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = await res.json();
+    const rules = [];
+    for (const b of branches) {
+      if (!b.protected)
+        continue;
+      const detailRes = await this.api("GET", `/repos/${projectPath}/branches/${encodeURIComponent(b.name)}/protection`);
+      if (!detailRes.ok) {
+        rules.push({
+          pattern: b.name,
+          allowForcePush: false,
+          allowDeletion: false,
+          requiredApprovals: 0,
+          requireStatusChecks: false
+        });
+        continue;
+      }
+      const detail = await detailRes.json();
+      rules.push({
+        pattern: b.name,
+        allowForcePush: detail.allow_force_pushes?.enabled ?? false,
+        allowDeletion: detail.allow_deletions?.enabled ?? false,
+        requiredApprovals: detail.required_pull_request_reviews?.required_approving_review_count ?? 0,
+        requireStatusChecks: detail.required_status_checks !== null && detail.required_status_checks !== undefined,
+        raw: detail
+      });
+    }
+    return rules;
+  }
+  async deleteBranch(projectPath, branch) {
+    const res = await this.api("DELETE", `/repos/${projectPath}/git/refs/heads/${encodeURIComponent(branch)}`);
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+  async fetchPullRequestByBranch(projectPath, sourceBranch) {
+    const res = await this.api("GET", `/repos/${projectPath}/pulls?head=${projectPath.split("/")[0]}:${encodeURIComponent(sourceBranch)}&state=open&per_page=1`);
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const prs = await res.json();
+    if (!prs[0])
+      return null;
+    return this.fetchSingleMR(projectPath, prs[0].number, null);
+  }
+  async createPullRequest(input) {
+    const body = {
+      head: input.sourceBranch,
+      base: input.targetBranch,
+      title: input.title
+    };
+    if (input.description != null)
+      body.body = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    const res = await this.api("POST", `/repos/${input.projectPath}/pulls`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = await res.json();
+    if (input.reviewers?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/pulls/${created.number}/requested_reviewers`, {
+        reviewers: input.reviewers
+      });
+    }
+    if (input.assignees?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/assignees`, {
+        assignees: input.assignees
+      });
+    }
+    if (input.labels?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/labels`, {
+        labels: input.labels
+      });
+    }
+    const pr = await this.fetchSingleMR(input.projectPath, created.number, null);
+    if (!pr)
+      throw new Error("Created PR but failed to fetch it back");
+    return pr;
+  }
+  async updatePullRequest(projectPath, mrIid, input) {
+    const body = {};
+    if (input.title != null)
+      body.title = input.title;
+    if (input.description != null)
+      body.body = input.description;
+    if (input.draft != null)
+      body.draft = input.draft;
+    if (input.targetBranch != null)
+      body.base = input.targetBranch;
+    if (input.stateEvent)
+      body.state = input.stateEvent === "close" ? "closed" : "open";
+    const res = await this.api("PATCH", `/repos/${projectPath}/pulls/${mrIid}`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+    if (input.reviewers) {
+      await this.api("POST", `/repos/${projectPath}/pulls/${mrIid}/requested_reviewers`, {
+        reviewers: input.reviewers
+      });
+    }
+    if (input.assignees) {
+      await this.api("POST", `/repos/${projectPath}/issues/${mrIid}/assignees`, {
+        assignees: input.assignees
+      });
+    }
+    if (input.labels) {
+      await this.api("PUT", `/repos/${projectPath}/issues/${mrIid}/labels`, {
+        labels: input.labels
+      });
+    }
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr)
+      throw new Error("Updated PR but failed to fetch it back");
+    return pr;
+  }
   async restRequest(method, path, body) {
     return this.api(method, path, body);
   }

package/dist/types.d.ts

@@ -76,6 +76,54 @@ export interface PullRequest {
      */
     detailedMergeStatus: string | null;
 }
+/** Input for creating a new merge request / pull request. */
+export interface CreatePullRequestInput {
+    /** Project path (GitLab: "group/project") or owner/repo (GitHub: "owner/repo"). */
+    projectPath: string;
+    title: string;
+    description?: string;
+    sourceBranch: string;
+    targetBranch: string;
+    draft?: boolean;
+    /** Usernames to assign as reviewers. */
+    reviewers?: string[];
+    /** Usernames to assign. */
+    assignees?: string[];
+    /** Labels to apply (string names). */
+    labels?: string[];
+}
+/** Input for updating an existing merge request / pull request. */
+export interface UpdatePullRequestInput {
+    title?: string;
+    description?: string;
+    /** Set draft status. */
+    draft?: boolean;
+    /** Change the target branch. */
+    targetBranch?: string;
+    /** Usernames to assign as reviewers (replaces current set). */
+    reviewers?: string[];
+    /** Usernames to assign (replaces current set). */
+    assignees?: string[];
+    /** Labels (replaces current set). */
+    labels?: string[];
+    /** Set MR state: "close" or "reopen". */
+    stateEvent?: "close" | "reopen";
+}
+/** Branch protection rule (provider-agnostic). */
+export interface BranchProtectionRule {
+    /** Branch name or pattern, e.g. "main" or "release/*". */
+    pattern: string;
+    /** Whether force-pushes are allowed. */
+    allowForcePush: boolean;
+    /** Whether branch deletions are allowed. */
+    allowDeletion: boolean;
+    /** Number of required approving reviews (0 = none required). */
+    requiredApprovals: number;
+    /** Whether the branch requires status checks to pass before merge. */
+    requireStatusChecks: boolean;
+    /** Raw provider-specific data for fields not covered above. */
+    raw?: Record<string, unknown>;
+}
 /** Snapshot payload sent when a client first connects. */
 export interface PullRequestsSnapshot {
     items: PullRequest[];

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@forge-glance/sdk",
-  "version": "0.1.0",
+  "version": "0.1.1",
   "description": "GitHub & GitLab API client — REST, GraphQL, and real-time ActionCable subscriptions",
   "type": "module",
   "main": "dist/index.js",

package/src/GitHubProvider.ts

@@ -14,6 +14,8 @@
 
 import type { GitProvider } from "./GitProvider.ts";
 import type {
+  BranchProtectionRule,
+  CreatePullRequestInput,
   DiffStats,
   Discussion,
   MRDetail,
@@ -23,6 +25,7 @@ import type {
   Pipeline,
   PipelineJob,
   PullRequest,
+  UpdatePullRequestInput,
   UserRef,
 } from "./types.ts";
 import { type ForgeLogger, noopLogger } from "./logger.ts";
@@ -398,6 +401,152 @@ export class GitHubProvider implements GitProvider {
     return { mrIid, repositoryId, discussions };
   }
 
+  async fetchBranchProtectionRules(projectPath: string): Promise<BranchProtectionRule[]> {
+    const res = await this.api("GET", `/repos/${projectPath}/branches?protected=true&per_page=100`);
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = (await res.json()) as Array<{
+      name: string;
+      protected: boolean;
+      protection?: {
+        enabled: boolean;
+        required_status_checks?: { enforcement_level: string; contexts: string[] } | null;
+      };
+    }>;
+
+    const rules: BranchProtectionRule[] = [];
+    for (const b of branches) {
+      if (!b.protected) continue;
+      // Fetch detailed protection for each protected branch
+      const detailRes = await this.api("GET", `/repos/${projectPath}/branches/${encodeURIComponent(b.name)}/protection`);
+      if (!detailRes.ok) {
+        rules.push({
+          pattern: b.name,
+          allowForcePush: false,
+          allowDeletion: false,
+          requiredApprovals: 0,
+          requireStatusChecks: false,
+        });
+        continue;
+      }
+      const detail = (await detailRes.json()) as {
+        allow_force_pushes?: { enabled: boolean };
+        allow_deletions?: { enabled: boolean };
+        required_pull_request_reviews?: { required_approving_review_count?: number } | null;
+        required_status_checks?: { strict: boolean; contexts: string[] } | null;
+      };
+      rules.push({
+        pattern: b.name,
+        allowForcePush: detail.allow_force_pushes?.enabled ?? false,
+        allowDeletion: detail.allow_deletions?.enabled ?? false,
+        requiredApprovals: detail.required_pull_request_reviews?.required_approving_review_count ?? 0,
+        requireStatusChecks: detail.required_status_checks !== null && detail.required_status_checks !== undefined,
+        raw: detail as unknown as Record<string, unknown>,
+      });
+    }
+    return rules;
+  }
+
+  async deleteBranch(projectPath: string, branch: string): Promise<void> {
+    const res = await this.api("DELETE", `/repos/${projectPath}/git/refs/heads/${encodeURIComponent(branch)}`);
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+
+  async fetchPullRequestByBranch(
+    projectPath: string,
+    sourceBranch: string,
+  ): Promise<PullRequest | null> {
+    const res = await this.api("GET", `/repos/${projectPath}/pulls?head=${projectPath.split("/")[0]}:${encodeURIComponent(sourceBranch)}&state=open&per_page=1`);
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const prs = (await res.json()) as GHPullRequest[];
+    if (!prs[0]) return null;
+    return this.fetchSingleMR(projectPath, prs[0].number, null);
+  }
+
+  async createPullRequest(input: CreatePullRequestInput): Promise<PullRequest> {
+    const body: Record<string, unknown> = {
+      head: input.sourceBranch,
+      base: input.targetBranch,
+      title: input.title,
+    };
+    if (input.description != null) body.body = input.description;
+    if (input.draft != null) body.draft = input.draft;
+
+    const res = await this.api("POST", `/repos/${input.projectPath}/pulls`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = (await res.json()) as GHPullRequest;
+
+    // GitHub doesn't support reviewers/assignees/labels on create — add them separately
+    if (input.reviewers?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/pulls/${created.number}/requested_reviewers`, {
+        reviewers: input.reviewers,
+      });
+    }
+    if (input.assignees?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/assignees`, {
+        assignees: input.assignees,
+      });
+    }
+    if (input.labels?.length) {
+      await this.api("POST", `/repos/${input.projectPath}/issues/${created.number}/labels`, {
+        labels: input.labels,
+      });
+    }
+
+    const pr = await this.fetchSingleMR(input.projectPath, created.number, null);
+    if (!pr) throw new Error("Created PR but failed to fetch it back");
+    return pr;
+  }
+
+  async updatePullRequest(
+    projectPath: string,
+    mrIid: number,
+    input: UpdatePullRequestInput,
+  ): Promise<PullRequest> {
+    const body: Record<string, unknown> = {};
+    if (input.title != null) body.title = input.title;
+    if (input.description != null) body.body = input.description;
+    if (input.draft != null) body.draft = input.draft;
+    if (input.targetBranch != null) body.base = input.targetBranch;
+    if (input.stateEvent) body.state = input.stateEvent === "close" ? "closed" : "open";
+
+    const res = await this.api("PATCH", `/repos/${projectPath}/pulls/${mrIid}`, body);
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+
+    // Handle reviewers/assignees/labels replacement if provided
+    if (input.reviewers) {
+      await this.api("POST", `/repos/${projectPath}/pulls/${mrIid}/requested_reviewers`, {
+        reviewers: input.reviewers,
+      });
+    }
+    if (input.assignees) {
+      await this.api("POST", `/repos/${projectPath}/issues/${mrIid}/assignees`, {
+        assignees: input.assignees,
+      });
+    }
+    if (input.labels) {
+      await this.api("PUT", `/repos/${projectPath}/issues/${mrIid}/labels`, {
+        labels: input.labels,
+      });
+    }
+
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr) throw new Error("Updated PR but failed to fetch it back");
+    return pr;
+  }
+
   async restRequest(
     method: string,
     path: string,

package/src/GitLabProvider.ts

@@ -1,10 +1,13 @@
 import type { GitProvider } from "./GitProvider.ts";
 import type {
+  BranchProtectionRule,
+  CreatePullRequestInput,
   DiffStats,
   MRDetail,
   Pipeline,
   PipelineJob,
   PullRequest,
+  UpdatePullRequestInput,
   UserRef,
 } from "./types.ts";
 import { type ForgeLogger, noopLogger } from "./logger.ts";
@@ -419,6 +422,128 @@ export class GitLabProvider implements GitProvider {
     return this.mrDetailFetcher.fetchDetail(projectId, mrIid);
   }
 
+  async fetchBranchProtectionRules(projectPath: string): Promise<BranchProtectionRule[]> {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(
+      `${this.baseURL}/api/v4/projects/${encoded}/protected_branches?per_page=100`,
+      { headers: { "PRIVATE-TOKEN": this.token } },
+    );
+    if (!res.ok) {
+      throw new Error(`fetchBranchProtectionRules failed: ${res.status} ${await res.text()}`);
+    }
+    const branches = (await res.json()) as Array<{
+      name: string;
+      allow_force_push: boolean;
+      push_access_levels: Array<{ access_level: number }>;
+      merge_access_levels: Array<{ access_level: number }>;
+      code_owner_approval_required?: boolean;
+    }>;
+    return branches.map((b) => ({
+      pattern: b.name,
+      allowForcePush: b.allow_force_push,
+      allowDeletion: false,
+      requiredApprovals: 0,
+      requireStatusChecks: false,
+      raw: b as unknown as Record<string, unknown>,
+    }));
+  }
+
+  async deleteBranch(projectPath: string, branch: string): Promise<void> {
+    const encoded = encodeURIComponent(projectPath);
+    const res = await fetch(
+      `${this.baseURL}/api/v4/projects/${encoded}/repository/branches/${encodeURIComponent(branch)}`,
+      { method: "DELETE", headers: { "PRIVATE-TOKEN": this.token } },
+    );
+    if (!res.ok) {
+      throw new Error(`deleteBranch failed: ${res.status} ${await res.text()}`);
+    }
+  }
+
+  async fetchPullRequestByBranch(
+    projectPath: string,
+    sourceBranch: string,
+  ): Promise<PullRequest | null> {
+    const encoded = encodeURIComponent(projectPath);
+    const url = `${this.baseURL}/api/v4/projects/${encoded}/merge_requests?source_branch=${encodeURIComponent(sourceBranch)}&state=opened&per_page=1`;
+    const res = await fetch(url, {
+      headers: { "PRIVATE-TOKEN": this.token },
+    });
+    if (!res.ok) {
+      this.log.warn("fetchPullRequestByBranch failed", { projectPath, sourceBranch, status: res.status });
+      return null;
+    }
+    const mrs = (await res.json()) as Array<{ iid: number }>;
+    if (!mrs[0]) return null;
+    return this.fetchSingleMR(projectPath, mrs[0].iid, null);
+  }
+
+  async createPullRequest(input: CreatePullRequestInput): Promise<PullRequest> {
+    const encoded = encodeURIComponent(input.projectPath);
+    const body: Record<string, unknown> = {
+      source_branch: input.sourceBranch,
+      target_branch: input.targetBranch,
+      title: input.title,
+    };
+    if (input.description != null) body.description = input.description;
+    if (input.draft != null) body.draft = input.draft;
+    if (input.labels?.length) body.labels = input.labels.join(",");
+    if (input.assignees?.length) body.assignee_ids = input.assignees;
+    if (input.reviewers?.length) body.reviewer_ids = input.reviewers;
+
+    const res = await fetch(`${this.baseURL}/api/v4/projects/${encoded}/merge_requests`, {
+      method: "POST",
+      headers: {
+        "PRIVATE-TOKEN": this.token,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify(body),
+    });
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`createPullRequest failed: ${res.status} ${text}`);
+    }
+    const created = (await res.json()) as { iid: number };
+    const pr = await this.fetchSingleMR(input.projectPath, created.iid, null);
+    if (!pr) throw new Error("Created MR but failed to fetch it back");
+    return pr;
+  }
+
+  async updatePullRequest(
+    projectPath: string,
+    mrIid: number,
+    input: UpdatePullRequestInput,
+  ): Promise<PullRequest> {
+    const encoded = encodeURIComponent(projectPath);
+    const body: Record<string, unknown> = {};
+    if (input.title != null) body.title = input.title;
+    if (input.description != null) body.description = input.description;
+    if (input.draft != null) body.draft = input.draft;
+    if (input.targetBranch != null) body.target_branch = input.targetBranch;
+    if (input.labels) body.labels = input.labels.join(",");
+    if (input.assignees) body.assignee_ids = input.assignees;
+    if (input.reviewers) body.reviewer_ids = input.reviewers;
+    if (input.stateEvent) body.state_event = input.stateEvent;
+
+    const res = await fetch(
+      `${this.baseURL}/api/v4/projects/${encoded}/merge_requests/${mrIid}`,
+      {
+        method: "PUT",
+        headers: {
+          "PRIVATE-TOKEN": this.token,
+          "Content-Type": "application/json",
+        },
+        body: JSON.stringify(body),
+      },
+    );
+    if (!res.ok) {
+      const text = await res.text();
+      throw new Error(`updatePullRequest failed: ${res.status} ${text}`);
+    }
+    const pr = await this.fetchSingleMR(projectPath, mrIid, null);
+    if (!pr) throw new Error("Updated MR but failed to fetch it back");
+    return pr;
+  }
+
   async restRequest(method: string, path: string, body?: unknown): Promise<Response> {
     const url = `${this.baseURL}${path}`;
     const headers: Record<string, string> = {

package/src/GitProvider.ts

@@ -1,4 +1,12 @@
-import type { Discussion, MRDetail, PullRequest, UserRef } from "./types.ts";
+import type {
+  BranchProtectionRule,
+  CreatePullRequestInput,
+  Discussion,
+  MRDetail,
+  PullRequest,
+  UpdatePullRequestInput,
+  UserRef,
+} from "./types.ts";
 
 /**
  * Provider-agnostic interface for a Git hosting service.
@@ -34,6 +42,48 @@ export interface GitProvider {
     currentUserNumericId: number | null,
   ): Promise<PullRequest | null>;
 
+  /**
+   * Fetch a single MR/PR by its source branch within a project.
+   * Returns null if no open MR/PR exists for that branch.
+   */
+  fetchPullRequestByBranch(
+    projectPath: string,
+    sourceBranch: string,
+  ): Promise<PullRequest | null>;
+
+  /**
+   * Create a new merge request / pull request.
+   * Returns the created PullRequest.
+   */
+  createPullRequest(input: CreatePullRequestInput): Promise<PullRequest>;
+
+  /**
+   * Update an existing merge request / pull request.
+   * Returns the updated PullRequest.
+   */
+  updatePullRequest(
+    projectPath: string,
+    mrIid: number,
+    input: UpdatePullRequestInput,
+  ): Promise<PullRequest>;
+
+  /**
+   * Fetch branch protection rules for a repository.
+   * Returns an array of rules (one per protected branch/pattern).
+   */
+  fetchBranchProtectionRules(
+    projectPath: string,
+  ): Promise<BranchProtectionRule[]>;
+
+  /**
+   * Delete a branch from the repository.
+   * @throws if the branch doesn't exist or is protected.
+   */
+  deleteBranch(
+    projectPath: string,
+    branch: string,
+  ): Promise<void>;
+
   /**
    * Fetch discussions (comments, threads) for a specific MR/PR.
    * Returns the MRDetail with discussions populated.

package/src/index.ts

@@ -16,6 +16,9 @@
 export type {
   PullRequest,
   PullRequestsSnapshot,
+  CreatePullRequestInput,
+  UpdatePullRequestInput,
+  BranchProtectionRule,
   Pipeline,
   PipelineJob,
   UserRef,

package/src/types.ts

@@ -84,6 +84,59 @@ export interface PullRequest {
   detailedMergeStatus: string | null;
 }
 
+// ── MR/PR mutation inputs ─────────────────────────────────────────────────────
+
+/** Input for creating a new merge request / pull request. */
+export interface CreatePullRequestInput {
+  /** Project path (GitLab: "group/project") or owner/repo (GitHub: "owner/repo"). */
+  projectPath: string;
+  title: string;
+  description?: string;
+  sourceBranch: string;
+  targetBranch: string;
+  draft?: boolean;
+  /** Usernames to assign as reviewers. */
+  reviewers?: string[];
+  /** Usernames to assign. */
+  assignees?: string[];
+  /** Labels to apply (string names). */
+  labels?: string[];
+}
+
+/** Input for updating an existing merge request / pull request. */
+export interface UpdatePullRequestInput {
+  title?: string;
+  description?: string;
+  /** Set draft status. */
+  draft?: boolean;
+  /** Change the target branch. */
+  targetBranch?: string;
+  /** Usernames to assign as reviewers (replaces current set). */
+  reviewers?: string[];
+  /** Usernames to assign (replaces current set). */
+  assignees?: string[];
+  /** Labels (replaces current set). */
+  labels?: string[];
+  /** Set MR state: "close" or "reopen". */
+  stateEvent?: "close" | "reopen";
+}
+
+/** Branch protection rule (provider-agnostic). */
+export interface BranchProtectionRule {
+  /** Branch name or pattern, e.g. "main" or "release/*". */
+  pattern: string;
+  /** Whether force-pushes are allowed. */
+  allowForcePush: boolean;
+  /** Whether branch deletions are allowed. */
+  allowDeletion: boolean;
+  /** Number of required approving reviews (0 = none required). */
+  requiredApprovals: number;
+  /** Whether the branch requires status checks to pass before merge. */
+  requireStatusChecks: boolean;
+  /** Raw provider-specific data for fields not covered above. */
+  raw?: Record<string, unknown>;
+}
+
 /** Snapshot payload sent when a client first connects. */
 export interface PullRequestsSnapshot {
   items: PullRequest[];