@paklo/core 0.8.0 → 0.10.0

package/dist/azure/index.mjs

@@ -1,130 +1,586 @@
-import { r as isErrorTemporaryFailure, t as HttpRequestError } from "../http-D2wwAKQ-.mjs";
-import { n as logger } from "../logger-BqvUa-Ue.mjs";
-import { F as parseDependabotConfig, M as POSSIBLE_CONFIG_FILE_PATHS, c as DependabotExistingGroupPRSchema, l as DependabotExistingPRSchema } from "../job-DanO84YW.mjs";
-import "../dependabot-E0nM5Xbb.mjs";
+import { n as logger } from "../logger-3Qfh9NUj.mjs";
+import { T as CONFIG_FILE_PATHS_AZURE, _ as DependabotPersistedPrSchema, z as parseDependabotConfig } from "../job-COuliaYg.mjs";
+import { n as getDependencyNames, o as normalizeBranchName, s as normalizeFilePath, t as areEqual } from "../dependabot-DVf7lAEG.mjs";
+import { z } from "zod";
+import ky, { isHTTPError } from "ky";
 import * as path from "node:path";
 import { existsSync } from "node:fs";
 import { readFile } from "node:fs/promises";
 
-//#region src/azure/types.ts
-let VersionControlChangeType = /* @__PURE__ */ function(VersionControlChangeType$1) {
-	VersionControlChangeType$1[VersionControlChangeType$1["None"] = 0] = "None";
-	VersionControlChangeType$1[VersionControlChangeType$1["Add"] = 1] = "Add";
-	VersionControlChangeType$1[VersionControlChangeType$1["Edit"] = 2] = "Edit";
-	VersionControlChangeType$1[VersionControlChangeType$1["Encoding"] = 4] = "Encoding";
-	VersionControlChangeType$1[VersionControlChangeType$1["Rename"] = 8] = "Rename";
-	VersionControlChangeType$1[VersionControlChangeType$1["Delete"] = 16] = "Delete";
-	VersionControlChangeType$1[VersionControlChangeType$1["Undelete"] = 32] = "Undelete";
-	VersionControlChangeType$1[VersionControlChangeType$1["Branch"] = 64] = "Branch";
-	VersionControlChangeType$1[VersionControlChangeType$1["Merge"] = 128] = "Merge";
-	VersionControlChangeType$1[VersionControlChangeType$1["Lock"] = 256] = "Lock";
-	VersionControlChangeType$1[VersionControlChangeType$1["Rollback"] = 512] = "Rollback";
-	VersionControlChangeType$1[VersionControlChangeType$1["SourceRename"] = 1024] = "SourceRename";
-	VersionControlChangeType$1[VersionControlChangeType$1["TargetRename"] = 2048] = "TargetRename";
-	VersionControlChangeType$1[VersionControlChangeType$1["Property"] = 4096] = "Property";
-	VersionControlChangeType$1[VersionControlChangeType$1["All"] = 8191] = "All";
-	return VersionControlChangeType$1;
-}({});
-let GitPullRequestMergeStrategy = /* @__PURE__ */ function(GitPullRequestMergeStrategy$1) {
-	GitPullRequestMergeStrategy$1[GitPullRequestMergeStrategy$1["NoFastForward"] = 1] = "NoFastForward";
-	GitPullRequestMergeStrategy$1[GitPullRequestMergeStrategy$1["Squash"] = 2] = "Squash";
-	GitPullRequestMergeStrategy$1[GitPullRequestMergeStrategy$1["Rebase"] = 3] = "Rebase";
-	GitPullRequestMergeStrategy$1[GitPullRequestMergeStrategy$1["RebaseMerge"] = 4] = "RebaseMerge";
-	return GitPullRequestMergeStrategy$1;
-}({});
-let CommentThreadStatus = /* @__PURE__ */ function(CommentThreadStatus$1) {
-	CommentThreadStatus$1[CommentThreadStatus$1["Unknown"] = 0] = "Unknown";
-	CommentThreadStatus$1[CommentThreadStatus$1["Active"] = 1] = "Active";
-	CommentThreadStatus$1[CommentThreadStatus$1["Fixed"] = 2] = "Fixed";
-	CommentThreadStatus$1[CommentThreadStatus$1["WontFix"] = 3] = "WontFix";
-	CommentThreadStatus$1[CommentThreadStatus$1["Closed"] = 4] = "Closed";
-	CommentThreadStatus$1[CommentThreadStatus$1["ByDesign"] = 5] = "ByDesign";
-	CommentThreadStatus$1[CommentThreadStatus$1["Pending"] = 6] = "Pending";
-	return CommentThreadStatus$1;
-}({});
-let CommentType = /* @__PURE__ */ function(CommentType$1) {
-	CommentType$1[CommentType$1["Unknown"] = 0] = "Unknown";
-	CommentType$1[CommentType$1["Text"] = 1] = "Text";
-	CommentType$1[CommentType$1["CodeChange"] = 2] = "CodeChange";
-	CommentType$1[CommentType$1["System"] = 3] = "System";
-	return CommentType$1;
-}({});
-let ItemContentType = /* @__PURE__ */ function(ItemContentType$1) {
-	ItemContentType$1[ItemContentType$1["RawText"] = 0] = "RawText";
-	ItemContentType$1[ItemContentType$1["Base64Encoded"] = 1] = "Base64Encoded";
-	return ItemContentType$1;
-}({});
-let PullRequestAsyncStatus = /* @__PURE__ */ function(PullRequestAsyncStatus$1) {
-	PullRequestAsyncStatus$1[PullRequestAsyncStatus$1["NotSet"] = 0] = "NotSet";
-	PullRequestAsyncStatus$1[PullRequestAsyncStatus$1["Queued"] = 1] = "Queued";
-	PullRequestAsyncStatus$1[PullRequestAsyncStatus$1["Conflicts"] = 2] = "Conflicts";
-	PullRequestAsyncStatus$1[PullRequestAsyncStatus$1["Succeeded"] = 3] = "Succeeded";
-	PullRequestAsyncStatus$1[PullRequestAsyncStatus$1["RejectedByPolicy"] = 4] = "RejectedByPolicy";
-	PullRequestAsyncStatus$1[PullRequestAsyncStatus$1["Failure"] = 5] = "Failure";
-	return PullRequestAsyncStatus$1;
-}({});
-let PullRequestStatus = /* @__PURE__ */ function(PullRequestStatus$1) {
-	PullRequestStatus$1[PullRequestStatus$1["NotSet"] = 0] = "NotSet";
-	PullRequestStatus$1[PullRequestStatus$1["Active"] = 1] = "Active";
-	PullRequestStatus$1[PullRequestStatus$1["Abandoned"] = 2] = "Abandoned";
-	PullRequestStatus$1[PullRequestStatus$1["Completed"] = 3] = "Completed";
-	PullRequestStatus$1[PullRequestStatus$1["All"] = 4] = "All";
-	return PullRequestStatus$1;
-}({});
-
-//#endregion
-//#region src/azure/models.ts
+//#region src/azure/client/constants.ts
+const API_VERSION = "5.0";
+const API_VERSION_PREVIEW = "5.0-preview";
+/** Returned when no user is authenticated */
+const ANONYMOUS_USER_ID = "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa";
 /**
 * Pull request property names used to store metadata about the pull request.
 * https://learn.microsoft.com/en-us/rest/api/azure/devops/git/pull-request-properties
 */
-const DEVOPS_PR_PROPERTY_MICROSOFT_GIT_SOURCE_REF_NAME = "Microsoft.Git.PullRequest.SourceRefName";
-const DEVOPS_PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER = "Dependabot.PackageManager";
-const DEVOPS_PR_PROPERTY_DEPENDABOT_DEPENDENCIES = "Dependabot.Dependencies";
+const PR_PROPERTY_MICROSOFT_GIT_SOURCE_REF_NAME = "Microsoft.Git.PullRequest.SourceRefName";
+const PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER = "Dependabot.PackageManager";
+const PR_PROPERTY_DEPENDABOT_DEPENDENCIES = "Dependabot.Dependencies";
+const PR_DESCRIPTION_MAX_LENGTH = 4e3;
 
 //#endregion
-//#region src/azure/utils.ts
-function normalizeFilePath(path$1) {
-	return path$1?.replace(/\\/g, "/")?.replace(/^\.\//, "/")?.replace(/^([^/])/, "/$1");
-}
-function normalizeBranchName(branch) {
-	return branch?.replace(/^refs\/heads\//i, "");
-}
-const DependenciesPrPropertySchema = DependabotExistingPRSchema.array().or(DependabotExistingGroupPRSchema);
+//#region src/azure/client/client-base.ts
+var BaseAzureDevOpsClient = class {
+	constructor(client) {
+		this.client = client;
+	}
+	makeUrl(path$1, params, apiVersion = API_VERSION) {
+		if (typeof params === "string") {
+			apiVersion = params;
+			params = {};
+		}
+		return `${path$1}?${Object.entries({
+			"api-version": apiVersion,
+			...params
+		}).filter(([, value]) => value).map(([key, value]) => `${key}=${value}`).join("&")}`;
+	}
+};
+
+//#endregion
+//#region src/azure/client/client-connection.ts
+var ConnectionClient = class extends BaseAzureDevOpsClient {
+	/**
+	* Get the connection data for the current user.
+	*/
+	async get() {
+		return await this.client.get(this.makeUrl("_apis/connectiondata", API_VERSION_PREVIEW)).json();
+	}
+};
+
+//#endregion
+//#region src/azure/client/client-git.ts
+var GitClient = class extends BaseAzureDevOpsClient {
+	async getItem(projectIdOrName, repositoryIdOrName, path$1, includeContent = true, latestProcessedChange = true) {
+		try {
+			return await this.client.get(this.makeUrl(`${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}/items`, {
+				path: path$1,
+				includeContent,
+				latestProcessedChange
+			})).json();
+		} catch (e) {
+			if (isHTTPError(e) && e.response.status === 404) return;
+			throw e;
+		}
+	}
+	async getPush(projectIdOrName, repositoryIdOrName, pushId, includeCommits, includeRefUpdates) {
+		return await this.client.get(this.makeUrl(`${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}/pushes/${pushId}`, {
+			includeCommits,
+			includeRefUpdates
+		})).json();
+	}
+	async createPush(projectIdOrName, repositoryIdOrName, push) {
+		return await this.client.post(this.makeUrl(`${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}/pushes`), { json: push }).json();
+	}
+	async getDiffCommits(projectIdOrName, repositoryIdOrName, baseVersion, targetVersion) {
+		return await this.client.get(this.makeUrl(`${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}/diffs/commits`, {
+			baseVersion,
+			baseVersionType: "commit",
+			targetVersion,
+			targetVersionType: "commit"
+		})).json();
+	}
+	async updateRef(projectIdOrName, repositoryIdOrName, ref) {
+		return (await this.client.post(this.makeUrl(`${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}/refs`), { json: ref }).json()).value;
+	}
+};
+
+//#endregion
+//#region src/azure/client/client-identity.ts
+var IdentityClient = class extends BaseAzureDevOpsClient {
+	/**
+	* Get the identities that match the given user name, email, or group name.
+	* Requires scope "Identity (Read)" (vso.identity).
+	* @param filterValue username, email, or group name
+	* @returns
+	*/
+	async get(filterValue) {
+		return (await this.client.get(this.makeUrl("_apis/identities", {
+			searchFilter: "General",
+			filterValue,
+			queryMembership: "None"
+		})).json())?.value;
+	}
+};
+
+//#endregion
+//#region src/azure/client/client-projects.ts
+var ProjectsClient = class extends BaseAzureDevOpsClient {
+	async list() {
+		return (await this.client.get(this.makeUrl("_apis/projects")).json())?.value;
+	}
+	async get(idOrName) {
+		return await this.client.get(this.makeUrl(`_apis/projects/${encodeURIComponent(idOrName)}`)).json();
+	}
+};
+
+//#endregion
+//#region src/azure/client/client-pull-requests.ts
+var PullRequestsClient = class extends BaseAzureDevOpsClient {
+	/**
+	* List pull requests
+	* Requires scope "Code (Read)" (vso.code).
+	* @param projectIdOrName
+	* @param repositoryIdOrName
+	* @param creatorId ID of the user who created the pull requests
+	* @param status The status of the pull requests to filter by
+	*/
+	async list(projectIdOrName, repositoryIdOrName, creatorId, status) {
+		return (await this.client.get(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests`, {
+			"searchCriteria.creatorId": creatorId,
+			"searchCriteria.status": status
+		})).json())?.value;
+	}
+	async get(projectIdOrName, repositoryIdOrName, pullRequestId) {
+		return await this.client.get(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}`)).json();
+	}
+	async create(projectIdOrName, repositoryIdOrName, pr) {
+		return await this.client.post(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests`), { json: pr }).json();
+	}
+	async update(projectIdOrName, repositoryIdOrName, pullRequestId, pr) {
+		return await this.client.patch(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}`), { json: pr }).json();
+	}
+	async getProperties(projectIdOrName, repositoryIdOrName, pullRequestId) {
+		const response = await this.client.get(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}/properties`)).json();
+		return Object.entries(response?.value || {}).filter(([, val]) => val?.$value).map(([key, val]) => ({
+			name: key,
+			value: val.$value
+		}));
+	}
+	async setProperties(projectIdOrName, repositoryIdOrName, pullRequestId, properties) {
+		return await this.client.patch(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}/properties`), {
+			headers: { "Content-Type": "application/json-patch+json" },
+			json: properties.map((property) => {
+				return {
+					op: "add",
+					path: `/${property.name}`,
+					value: property.value
+				};
+			})
+		}).json();
+	}
+	/**
+	* Approve a pull request.
+	* Requires scope "Code (Write)" (vso.code_write).
+	*/
+	async approve(projectIdOrName, repositoryIdOrName, pullRequestId, userId) {
+		return await this.client.put(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}/reviewers/${userId}`, "7.1"), { json: {
+			vote: 10,
+			isReapprove: true
+		} }).json();
+	}
+	/**
+	* Abandon a pull request.
+	* Requires scope "Code (Write)" (vso.code_write).
+	*/
+	async abandon(projectIdOrName, repositoryIdOrName, pullRequestId, userId) {
+		return await this.client.patch(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}`), { json: {
+			status: "abandoned",
+			closedBy: { id: userId }
+		} }).json();
+	}
+	/**
+	* Get commits of a pull request.
+	* Requires scope "Code (Read)" (vso.code_read).
+	*/
+	async getCommits(projectIdOrName, repositoryIdOrName, pullRequestId) {
+		return (await this.client.get(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}/commits`)).json())?.value;
+	}
+	/**
+	* Create a comment thread on a pull request.
+	* Requires scope "Code (Write)" (vso.code_write).
+	*/
+	async createCommentThread(projectIdOrName, repositoryIdOrName, pullRequestId, thread) {
+		return await this.client.post(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/pullrequests/${pullRequestId}/threads`), { json: thread }).json();
+	}
+};
+
+//#endregion
+//#region src/azure/client/client-repositories.ts
+var RepositoriesClient = class extends BaseAzureDevOpsClient {
+	async list(projectIdOrName) {
+		return (await this.client.get(this.makeUrl(`${encodeURIComponent(projectIdOrName)}/_apis/git/repositories`)).json())?.value;
+	}
+	async get(projectIdOrName, repositoryIdOrName) {
+		try {
+			return await this.client.get(this.makeUrl(`${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}`)).json();
+		} catch (e) {
+			if (isHTTPError(e) && e.response.status === 404) return;
+			throw e;
+		}
+	}
+	/**
+	* Get the list of refs (a.k.a branch names) for a repository.
+	* Requires scope "Code (Read)" (vso.code).
+	* @param projectIdOrName
+	* @param repositoryIdOrName
+	* @returns
+	*/
+	async getRefs(projectIdOrName, repositoryIdOrName) {
+		return (await this.client.get(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/refs`)).json())?.value;
+	}
+	async getBranchStats(projectIdOrName, repositoryIdOrName, branchName) {
+		return await this.client.get(this.makeUrl(`${projectIdOrName}/_apis/git/repositories/${repositoryIdOrName}/stats/branches`, { name: branchName })).json();
+	}
+};
+
+//#endregion
+//#region src/azure/client/client-subscriptions.ts
+var HookSubscriptionsClient = class extends BaseAzureDevOpsClient {
+	async query(query) {
+		return (await this.client.post(this.makeUrl("_apis/hooks/subscriptionsquery"), { json: query }).json())?.results;
+	}
+	async create(subscription) {
+		return await this.client.post(this.makeUrl("_apis/hooks/subscriptions"), { json: subscription }).json();
+	}
+	async replace(subscriptionId, subscription) {
+		return await this.client.put(this.makeUrl(`_apis/hooks/subscriptions/${subscriptionId}`), { json: subscription }).json();
+	}
+	async delete(subscriptionId) {
+		await this.client.delete(this.makeUrl(`_apis/hooks/subscriptions/${subscriptionId}`)).json();
+	}
+};
+
+//#endregion
+//#region src/azure/client/client.ts
+var AzureDevOpsClient = class AzureDevOpsClient {
+	organizationSlug;
+	organizationUrl;
+	connection;
+	identity;
+	projects;
+	repositories;
+	git;
+	pullRequests;
+	subscriptions;
+	constructor(url, accessToken, debug = false) {
+		this.organizationSlug = url.organisation;
+		const organizationUrl = url.value.toString().replace(/\/$/, "");
+		this.organizationUrl = organizationUrl;
+		const mainClientOptions = AzureDevOpsClient.createClientOptions(accessToken, debug, { prefixUrl: organizationUrl });
+		const mainClient = ky.create(mainClientOptions);
+		this.connection = new ConnectionClient(mainClient);
+		this.projects = new ProjectsClient(mainClient);
+		this.repositories = new RepositoriesClient(mainClient);
+		this.git = new GitClient(mainClient);
+		this.pullRequests = new PullRequestsClient(mainClient);
+		this.subscriptions = new HookSubscriptionsClient(mainClient);
+		const identityApiUrl = url["identity-api-url"].toString().replace(/\/$/, "");
+		this.identity = new IdentityClient(ky.create({
+			...mainClientOptions,
+			prefixUrl: identityApiUrl
+		}));
+	}
+	static createClientOptions(accessToken, debug, options) {
+		return {
+			headers: {
+				Authorization: `Basic ${Buffer.from(`:${accessToken}`).toString("base64")}`,
+				Accept: "application/json"
+			},
+			hooks: {
+				beforeRequest: [async (request, options$1) => {
+					if (debug) logger.debug(`🌎 🠊 [${request.method}] ${request.url}`);
+				}],
+				afterResponse: [async (request, options$1, response) => {
+					if (debug) {
+						logger.debug(`🌎 🠈 [${response.status}] ${response.statusText}`);
+						if (request.body) logger.debug(`REQUEST: ${JSON.stringify(request.body)}`);
+					}
+				}],
+				beforeRetry: [async ({ request, options: options$1, error, retryCount }) => {
+					if (debug && isHTTPError(error)) logger.debug(`⏳ Retrying failed request with status code: ${error.response.status}`);
+				}]
+			},
+			retry: {
+				limit: 3,
+				delay: (attempt) => 3e3
+			},
+			...options
+		};
+	}
+};
+
+//#endregion
+//#region src/azure/client/types.ts
+const AzdoVersionControlChangeTypeSchema = z.enum([
+	"none",
+	"add",
+	"edit",
+	"encoding",
+	"rename",
+	"delete",
+	"undelete",
+	"branch",
+	"merge",
+	"lock",
+	"rollback",
+	"sourceRename",
+	"targetRename",
+	"property",
+	"all"
+]);
+const AZDO_PULL_REQUEST_MERGE_STRATEGIES = [
+	"noFastForward",
+	"squash",
+	"rebase",
+	"rebaseMerge"
+];
+const AzdoPullRequestMergeStrategySchema = z.enum(AZDO_PULL_REQUEST_MERGE_STRATEGIES);
+const AzdoCommentThreadStatusSchema = z.enum([
+	"unknown",
+	"active",
+	"fixed",
+	"wontFix",
+	"closed",
+	"byDesign",
+	"pending"
+]);
+const AzdoCommentTypeSchema = z.enum([
+	"unknown",
+	"text",
+	"codeChange",
+	"system"
+]);
+const AzdoPullRequestAsyncStatusSchema = z.enum([
+	"notSet",
+	"queued",
+	"conflicts",
+	"succeeded",
+	"rejectedByPolicy",
+	"failure"
+]);
+const AzdoPullRequestStatusSchema = z.enum([
+	"notSet",
+	"active",
+	"abandoned",
+	"completed",
+	"all"
+]);
+const AzdoProjectSchema = z.object({
+	id: z.string(),
+	name: z.string(),
+	description: z.string().optional(),
+	url: z.string(),
+	state: z.enum([
+		"deleting",
+		"new",
+		"wellFormed",
+		"createPending",
+		"all",
+		"unchanged",
+		"deleted"
+	]),
+	_links: z.object({
+		self: z.object({ href: z.string() }),
+		collection: z.object({ href: z.string() }),
+		web: z.object({ href: z.string() })
+	}).optional()
+});
+const AzdoRepositorySchema = z.object({
+	id: z.string(),
+	name: z.string(),
+	defaultBranch: z.string().optional(),
+	project: AzdoProjectSchema,
+	isDisabled: z.boolean().optional(),
+	isFork: z.boolean().optional(),
+	url: z.string(),
+	remoteUrl: z.string(),
+	webUrl: z.string()
+});
+const AzdoIdentitySchema = z.object({
+	id: z.string(),
+	displayName: z.string(),
+	url: z.string()
+});
+const AzdoIdentityRefSchema = z.object({
+	id: z.string().optional(),
+	displayName: z.string().optional(),
+	uniqueName: z.string().optional(),
+	url: z.string().optional()
+});
+const AzdoConnectionDataSchema = z.object({
+	authenticatedUser: AzdoIdentitySchema,
+	authorizedUser: AzdoIdentitySchema
+});
+const AzdoGitUserDateSchema = z.object({
+	name: z.string(),
+	email: z.string(),
+	date: z.string().optional()
+});
+const AzdoGitRefSchema = z.object({
+	name: z.string(),
+	objectId: z.string(),
+	isLocked: z.boolean().optional()
+});
+const AzdoGitRefUpdateResultSchema = AzdoGitRefSchema.extend({
+	oldObjectId: z.string(),
+	newObjectId: z.string(),
+	success: z.boolean(),
+	customMessage: z.string().optional()
+});
+const AzdoGitChangeSchema = z.object({
+	changeType: AzdoVersionControlChangeTypeSchema,
+	item: z.object({ path: z.string() }).optional(),
+	newContent: z.object({
+		content: z.string(),
+		contentType: z.enum(["rawtext", "base64encoded"])
+	}).optional(),
+	originalPath: z.string().optional()
+});
+const AzdoGitCommitRefSchema = z.object({
+	commitId: z.string(),
+	author: AzdoGitUserDateSchema.optional(),
+	committer: AzdoGitUserDateSchema.optional(),
+	changes: AzdoGitChangeSchema.array().optional()
+});
+const AzdoGitPushSchema = z.object({
+	commits: AzdoGitCommitRefSchema.array(),
+	refUpdates: AzdoGitRefSchema.array()
+});
+const AzdoGitRefUpdateSchema = z.object({
+	name: z.string(),
+	oldObjectId: z.string(),
+	newObjectId: z.string().optional(),
+	isLocked: z.boolean().optional()
+});
+const AzdoGitPushCreateSchema = z.object({
+	refUpdates: AzdoGitRefUpdateSchema.array(),
+	commits: z.object({
+		comment: z.string(),
+		author: AzdoGitUserDateSchema.optional(),
+		changes: AzdoGitChangeSchema.array()
+	}).array()
+});
+const AzdoGitBranchStatsSchema = z.object({
+	aheadCount: z.number(),
+	behindCount: z.number()
+});
+const AzdoGitCommitDiffsSchema = z.object({
+	allChangesIncluded: z.boolean(),
+	baseCommit: z.string(),
+	changes: AzdoGitChangeSchema.array(),
+	targetCommit: z.string()
+});
+const AzdoRepositoryItemSchema = z.object({
+	latestProcessedChange: AzdoGitCommitRefSchema.optional(),
+	content: z.string().optional()
+});
+const AzdoIdentityRefWithVoteSchema = z.object({
+	id: z.string().optional(),
+	displayName: z.string().optional(),
+	vote: z.number().optional(),
+	hasDeclined: z.boolean().optional(),
+	isFlagged: z.boolean().optional(),
+	isRequired: z.boolean().optional()
+});
+const AzdoPullRequestSchema = z.object({
+	pullRequestId: z.number(),
+	status: AzdoPullRequestStatusSchema,
+	isDraft: z.boolean(),
+	sourceRefName: z.string(),
+	targetRefName: z.string(),
+	title: z.string(),
+	description: z.string().optional(),
+	lastMergeCommit: AzdoGitCommitRefSchema,
+	lastMergeSourceCommit: AzdoGitCommitRefSchema,
+	mergeStatus: AzdoPullRequestAsyncStatusSchema,
+	reviewers: AzdoIdentityRefWithVoteSchema.array().optional(),
+	workItemRefs: z.object({ id: z.string() }).array().optional(),
+	labels: z.object({ name: z.string() }).array().optional(),
+	autoCompleteSetBy: AzdoIdentityRefSchema.optional(),
+	completionOptions: z.object({
+		autoCompleteIgnoreConfigIds: z.number().array().optional(),
+		deleteSourceBranch: z.boolean().optional(),
+		mergeCommitMessage: z.string().optional(),
+		mergeStrategy: AzdoPullRequestMergeStrategySchema.optional(),
+		transitionWorkItems: z.boolean().optional()
+	}).optional(),
+	closedBy: AzdoIdentityRefSchema.optional()
+});
+const AzdoPropertiesSchema = z.record(z.string(), z.object({
+	$type: z.string(),
+	$value: z.string()
+}));
+const AzdoPullRequestCommentSchema = z.object({
+	id: z.number().optional(),
+	parentCommentId: z.number().optional(),
+	content: z.string(),
+	commentType: AzdoCommentTypeSchema,
+	publishedDate: z.string().optional(),
+	author: AzdoIdentityRefSchema
+});
+const AzdoPullRequestCommentThreadSchema = z.object({
+	id: z.number(),
+	comments: AzdoPullRequestCommentSchema.array(),
+	status: AzdoCommentThreadStatusSchema
+});
+const AzdoSubscriptionSchema = z.object({
+	id: z.string(),
+	status: z.enum([
+		"enabled",
+		"onProbation",
+		"disabledByUser",
+		"disabledBySystem",
+		"disabledByInactiveIdentity"
+	]),
+	publisherId: z.string(),
+	publisherInputs: z.record(z.string(), z.string()),
+	consumerId: z.string().optional(),
+	consumerActionId: z.string().optional(),
+	consumerInputs: z.record(z.string(), z.string()),
+	eventType: z.string(),
+	resourceVersion: z.string(),
+	eventDescription: z.string().optional(),
+	actionDescription: z.string().optional()
+});
+const AzdoSubscriptionsQueryResponseSchema = z.object({ results: AzdoSubscriptionSchema.array() });
+const AzdoSubscriptionsQueryInputFilterSchema = z.object({ conditions: z.object({
+	caseSensitive: z.boolean().optional(),
+	inputId: z.string().optional(),
+	inputValue: z.string().optional(),
+	operator: z.enum(["equals", "notEquals"])
+}).array().optional() });
+const AzdoSubscriptionsQuerySchema = z.object({
+	consumerActionId: z.string().optional(),
+	consumerId: z.string().optional(),
+	consumerInputFilters: AzdoSubscriptionsQueryInputFilterSchema.array().optional(),
+	eventType: z.string().optional(),
+	publisherId: z.string().optional(),
+	publisherInputFilters: AzdoSubscriptionsQueryInputFilterSchema.array().optional(),
+	subscriberId: z.string().optional()
+});
+
+//#endregion
+//#region src/azure/client/utils.ts
 function buildPullRequestProperties(packageManager, dependencies) {
 	return [{
-		name: DEVOPS_PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER,
+		name: PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER,
 		value: packageManager
 	}, {
-		name: DEVOPS_PR_PROPERTY_DEPENDABOT_DEPENDENCIES,
+		name: PR_PROPERTY_DEPENDABOT_DEPENDENCIES,
 		value: JSON.stringify(dependencies)
 	}];
 }
 function parsePullRequestProperties(pullRequests, packageManager) {
 	return Object.fromEntries(pullRequests.filter((pr) => {
-		return pr.properties?.find((p) => p.name === DEVOPS_PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER && (packageManager === null || p.value === packageManager));
+		return pr.properties?.find((p) => p.name === PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER && (packageManager === null || p.value === packageManager));
 	}).map((pr) => {
-		return [pr.id, DependenciesPrPropertySchema.parse(JSON.parse(pr.properties.find((p) => p.name === DEVOPS_PR_PROPERTY_DEPENDABOT_DEPENDENCIES).value))];
+		return [pr.pullRequestId, DependabotPersistedPrSchema.parse(JSON.parse(pr.properties.find((p) => p.name === PR_PROPERTY_DEPENDABOT_DEPENDENCIES).value))];
 	}));
 }
 function getPullRequestForDependencyNames(existingPullRequests, packageManager, dependencyNames) {
 	return existingPullRequests.find((pr) => {
-		return pr.properties?.find((p) => p.name === DEVOPS_PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER && p.value === packageManager) && pr.properties?.find((p) => p.name === DEVOPS_PR_PROPERTY_DEPENDABOT_DEPENDENCIES && areEqual(getDependencyNames(DependenciesPrPropertySchema.parse(JSON.parse(p.value))), dependencyNames));
+		return pr.properties?.find((p) => p.name === PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER && p.value === packageManager) && pr.properties?.find((p) => p.name === PR_PROPERTY_DEPENDABOT_DEPENDENCIES && areEqual(getDependencyNames(DependabotPersistedPrSchema.parse(JSON.parse(p.value))), dependencyNames));
 	});
 }
-function getDependencyNames(dependencies) {
-	return (Array.isArray(dependencies) ? dependencies : dependencies.dependencies).map((dep) => dep["dependency-name"]?.toString());
-}
-function areEqual(a, b) {
-	if (a.length !== b.length) return false;
-	return a.every((name) => b.includes(name));
-}
-function getPullRequestChangedFilesForOutputData(data) {
+function getPullRequestChangedFiles(data) {
 	return data["updated-dependency-files"].filter((file) => file.type === "file").map((file) => {
-		let changeType = VersionControlChangeType.None;
-		if (file.deleted === true || file.operation === "delete") changeType = VersionControlChangeType.Delete;
-		else if (file.operation === "update") changeType = VersionControlChangeType.Edit;
-		else changeType = VersionControlChangeType.Add;
+		let changeType = "none";
+		if (file.deleted === true || file.operation === "delete") changeType = "delete";
+		else if (file.operation === "update") changeType = "edit";
+		else changeType = "add";
 		return {
 			changeType,
 			path: path.join(file.directory, file.name),
@@ -133,230 +589,91 @@ function getPullRequestChangedFilesForOutputData(data) {
 		};
 	});
 }
-function getPullRequestCloseReasonForOutputData(data) {
-	const leadDependencyName = data["dependency-names"][0];
-	let reason;
-	switch (data.reason) {
-		case "dependencies_changed":
-			reason = `Looks like the dependencies have changed`;
-			break;
-		case "dependency_group_empty":
-			reason = `Looks like the dependencies in this group are now empty`;
-			break;
-		case "dependency_removed":
-			reason = `Looks like ${leadDependencyName} is no longer a dependency`;
-			break;
-		case "up_to_date":
-			reason = `Looks like ${leadDependencyName} is up-to-date now`;
-			break;
-		case "update_no_longer_possible":
-			reason = `Looks like ${leadDependencyName} can no longer be updated`;
-			break;
-	}
-	if (reason && reason.length > 0) reason += ", so this is no longer needed.";
-	return reason;
-}
-function getPullRequestDependenciesPropertyValueForOutputData(data) {
-	const dependencies = data.dependencies?.map((dep) => {
-		return {
-			"dependency-name": dep.name,
-			"dependency-version": dep.version,
-			directory: dep.directory
-		};
-	});
-	const dependencyGroupName = data["dependency-group"]?.name;
-	if (!dependencyGroupName) return dependencies;
-	return {
-		"dependency-group-name": dependencyGroupName,
-		dependencies
-	};
-}
-function getPullRequestDescription(packageManager, body, dependencies) {
-	let header = "";
-	const footer = "";
-	const description = (body || "").replace(new RegExp(decodeURIComponent("%EF%BF%BD%EF%BF%BD%EF%BF%BD"), "g"), "");
-	if (dependencies.length === 1) {
-		const compatibilityScoreBadges = dependencies.map((dep) => {
-			return `![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=${dep.name}&package-manager=${packageManager}&previous-version=${dep["previous-version"]}&new-version=${dep.version})`;
-		});
-		header += `${compatibilityScoreBadges.join(" ")}\n\n`;
-	}
-	const maxDescriptionLengthAfterHeaderAndFooter = 4e3 - header.length - 0;
-	return `${header}${description.substring(0, maxDescriptionLengthAfterHeaderAndFooter)}${footer}`;
-}
 
 //#endregion
-//#region src/azure/client.ts
-/** Returned from AzureDevOpsWebApiClient.getUserId() when no user is authenticated */
-const ANONYMOUS_USER_ID = "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa";
-/** Azure DevOps REST API client. */
-var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
-	organisationApiUrl;
-	identityApiUrl;
-	accessToken;
-	debug;
+//#region src/azure/client/wrapper.ts
+var AzureDevOpsClientWrapper = class {
+	inner;
 	authenticatedUserId;
-	resolvedUserIds;
-	static API_VERSION = "5.0";
-	static API_VERSION_PREVIEW = "5.0-preview";
+	resolvedUserIds = {};
+	/**
+	* Create a new Azure DevOps client wrapper.
+	* @param url The Azure DevOps organization URL
+	* @param accessToken The personal access token for authentication
+	* @param debug Enable debug logging for API requests (default: false)
+	*/
 	constructor(url, accessToken, debug = false) {
-		const organisationApiUrl = url.value.toString();
-		this.organisationApiUrl = organisationApiUrl.replace(/\/$/, "");
-		this.identityApiUrl = getIdentityApiUrl(organisationApiUrl).replace(/\/$/, "");
-		this.accessToken = accessToken;
-		this.debug = debug;
-		this.resolvedUserIds = {};
+		this.inner = new AzureDevOpsClient(url, accessToken, debug);
 	}
 	/**
 	* Get the identity of the authenticated user.
-	* @returns
+	* The result is cached after the first call to avoid repeated API requests.
 	*/
 	async getUserId() {
 		if (!this.authenticatedUserId) {
-			this.authenticatedUserId = (await this.restApiGet(`${this.organisationApiUrl}/_apis/connectiondata`, void 0, AzureDevOpsWebApiClient.API_VERSION_PREVIEW))?.authenticatedUser?.id;
+			this.authenticatedUserId = (await this.inner.connection.get())?.authenticatedUser?.id;
 			if (!this.authenticatedUserId) throw new Error("Failed to get authenticated user ID");
 		}
 		return this.authenticatedUserId;
 	}
 	/**
 	* Get the identity id from a user name, email, or group name.
+	* Results are cached to avoid repeated API requests for the same identifier.
+	*
 	* Requires scope "Identity (Read)" (vso.identity).
-	* @param userNameEmailOrGroupName
-	* @returns
+	* @param identifier Username, email, or group name to resolve
+	* @returns The resolved identity ID, or undefined if not found or on error
 	*/
-	async resolveIdentityId(userNameEmailOrGroupName) {
-		if (this.resolvedUserIds[userNameEmailOrGroupName]) return this.resolvedUserIds[userNameEmailOrGroupName];
+	async resolveIdentityId(identifier) {
+		if (this.resolvedUserIds[identifier]) return this.resolvedUserIds[identifier];
 		try {
-			const identities = await this.restApiGet(`${this.identityApiUrl}/_apis/identities`, {
-				searchFilter: "General",
-				filterValue: userNameEmailOrGroupName,
-				queryMembership: "None"
-			});
-			if (!identities?.value || identities.value.length === 0) return;
-			this.resolvedUserIds[userNameEmailOrGroupName] = identities.value[0]?.id;
-			return this.resolvedUserIds[userNameEmailOrGroupName];
+			const identities = await this.inner.identity.get(identifier);
+			if (!identities || identities.length === 0) return;
+			this.resolvedUserIds[identifier] = identities[0].id;
+			return this.resolvedUserIds[identifier];
 		} catch (e) {
 			logger.error(`Failed to resolve user id: ${e}`);
 			logger.debug(e);
 			return;
 		}
 	}
-	async getProjects() {
-		try {
-			return await this.restApiGet(`${this.organisationApiUrl}/_apis/projects`);
-		} catch (e) {
-			logger.error(`Failed to get projects: ${e}`);
-			logger.debug(e);
-			return;
-		}
-	}
-	async getProject(idOrName) {
-		try {
-			return await this.restApiGet(`${this.organisationApiUrl}/_apis/projects/${encodeURIComponent(idOrName)}`);
-		} catch (e) {
-			logger.error(`Failed to get project: ${e}`);
-			logger.debug(e);
-			return;
-		}
-	}
-	async getRepositories(projectIdOrName) {
-		try {
-			return await this.restApiGet(`${this.organisationApiUrl}/${encodeURIComponent(projectIdOrName)}/_apis/git/repositories`);
-		} catch (e) {
-			logger.error(`Failed to get repositories: ${e}`);
-			logger.debug(e);
-			return;
-		}
-	}
-	async getRepository(projectIdOrName, repositoryIdOrName) {
-		try {
-			return await this.restApiGet(`${this.organisationApiUrl}/${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}`);
-		} catch (e) {
-			if (e instanceof HttpRequestError && e.code === 404) return;
-			else {
-				logger.error(`Failed to get repository: ${e}`);
-				logger.debug(e);
-			}
-			return;
-		}
-	}
-	async getRepositoryItem(projectIdOrName, repositoryIdOrName, path$1, includeContent = true, latestProcessedChange = true) {
-		try {
-			return await this.restApiGet(`${this.organisationApiUrl}/${encodeURIComponent(projectIdOrName)}/_apis/git/repositories/${encodeURIComponent(repositoryIdOrName)}/items`, {
-				path: path$1,
-				includeContent,
-				latestProcessedChange
-			});
-		} catch (e) {
-			if (e instanceof HttpRequestError && e.code === 404) return;
-			else {
-				logger.error(`Failed to get repository item: ${e}`);
-				logger.debug(e);
-			}
-			return;
-		}
-	}
 	/**
 	* Get the default branch for a repository.
+	*
 	* Requires scope "Code (Read)" (vso.code).
-	* @param project
-	* @param repository
-	* @returns
+	* @param options Repository identification options (project and repository)
+	* @returns The normalized default branch name (e.g., "main"), or undefined if not found
 	*/
-	async getDefaultBranch(project, repository) {
-		try {
-			const repo = await this.restApiGet(`${this.organisationApiUrl}/${project}/_apis/git/repositories/${repository}`);
-			if (!repo) throw new Error(`Repository '${project}/${repository}' not found`);
-			return normalizeBranchName(repo.defaultBranch);
-		} catch (e) {
-			logger.error(`Failed to get default branch for '${project}/${repository}': ${e}`);
-			logger.debug(e);
-			return;
-		}
+	async getDefaultBranch(options) {
+		return normalizeBranchName((await this.inner.repositories.get(options.project, options.repository))?.defaultBranch);
 	}
 	/**
 	* Get the list of branch names for a repository.
+	*
 	* Requires scope "Code (Read)" (vso.code).
-	* @param project
-	* @param repository
-	* @returns
+	* @param options Repository identification options (project and repository)
+	* @returns Array of normalized branch names, or undefined if not found
 	*/
-	async getBranchNames(project, repository) {
-		try {
-			const refs = await this.restApiGet(`${this.organisationApiUrl}/${project}/_apis/git/repositories/${repository}/refs`);
-			if (!refs) throw new Error(`Repository '${project}/${repository}' not found`);
-			return refs.value?.map((r) => normalizeBranchName(r.name)) || [];
-		} catch (e) {
-			logger.error(`Failed to list branch names for '${project}/${repository}': ${e}`);
-			logger.debug(e);
-			return;
-		}
+	async getBranchNames(options) {
+		return (await this.inner.repositories.getRefs(options.project, options.repository))?.map((r) => normalizeBranchName(r.name));
 	}
 	/**
-	* Get the properties for all active pull request created by the supplied user.
+	* Get the properties for all active pull requests created by the specified user.
+	* This retrieves both the pull request IDs and their associated properties.
+	*
 	* Requires scope "Code (Read)" (vso.code).
-	* @param project
-	* @param repository
-	* @param creator
-	* @returns
+	* @param options Repository identification options including the creator user ID
+	* @returns Array of pull request IDs with their properties, empty array on error
 	*/
-	async getActivePullRequestProperties(project, repository, creator) {
+	async getActivePullRequestProperties({ project, repository, creatorId }) {
 		try {
-			const pullRequests = await this.restApiGet(`${this.organisationApiUrl}/${project}/_apis/git/repositories/${repository}/pullrequests`, {
-				"searchCriteria.creatorId": isGuid(creator) ? creator : await this.getUserId(),
-				"searchCriteria.status": "Active"
-			});
-			if (!pullRequests?.value || pullRequests.value.length === 0) return [];
-			return await Promise.all(pullRequests.value.map(async (pr) => {
-				const properties = await this.restApiGet(`${this.organisationApiUrl}/${project}/_apis/git/repositories/${repository}/pullrequests/${pr.pullRequestId}/properties`);
+			const pullRequests = await this.inner.pullRequests.list(project, repository, creatorId, "active");
+			if (!pullRequests || pullRequests.length === 0) return [];
+			return await Promise.all(pullRequests.map(async (pr) => {
+				const properties = await this.inner.pullRequests.getProperties(project, repository, pr.pullRequestId);
 				return {
-					id: pr.pullRequestId,
-					properties: Object.keys(properties?.value || {}).map((key) => {
-						return {
-							name: key,
-							value: properties.value[key]?.$value
-						};
-					}) || []
+					pullRequestId: pr.pullRequestId,
+					properties
 				};
 			}));
 		} catch (e) {
@@ -366,38 +683,45 @@ var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
 		}
 	}
 	/**
-	* Create a new pull request.
+	* Create a new pull request with the specified changes.
+	* This method performs the following operations:
+	* 1. Resolves assignee identities for assignees (if specified)
+	* 2. Creates a new branch and pushes changes
+	* 3. Creates the pull request with assignees (optional reviewers), labels, and work items
+	* 4. Sets pull request properties for dependency metadata
+	* 5. Configures auto-complete options (if specified)
+	*
 	* Requires scope "Code (Write)" (vso.code_write).
 	* Requires scope "Identity (Read)" (vso.identity), if assignees are specified.
-	* @param pr
-	* @returns
+	* @param options Pull request creation options including changes, assignees, and auto-complete settings
+	* @returns The created pull request ID, or null on error
 	*/
-	async createPullRequest(pr) {
-		logger.info(`Creating pull request '${pr.title}'...`);
+	async createPullRequest(options) {
+		logger.info(`Creating pull request '${options.title}'...`);
 		try {
 			const userId = await this.getUserId();
 			const reviewers = [];
-			if (pr.assignees && pr.assignees.length > 0) for (const assignee of pr.assignees) {
-				const identityId = isGuid(assignee) ? assignee : await this.resolveIdentityId(assignee);
+			if (options.assignees && options.assignees.length > 0) for (const assignee of options.assignees) {
+				const identityId = this.isGuid(assignee) ? assignee : await this.resolveIdentityId(assignee);
 				if (identityId && !reviewers.some((r) => r.id === identityId)) reviewers.push({ id: identityId });
 				else logger.warn(`Unable to resolve assignee identity '${assignee}'`);
 			}
-			logger.info(` - Pushing ${pr.changes.length} file change(s) to branch '${pr.source.branch}'...`);
-			const push = await this.restApiPost(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pushes`, {
+			logger.info(` - Pushing ${options.changes.length} file change(s) to branch '${options.source.branch}'...`);
+			const push = await this.inner.git.createPush(options.project, options.repository, {
 				refUpdates: [{
-					name: `refs/heads/${pr.source.branch}`,
-					oldObjectId: pr.source.commit
+					name: `refs/heads/${options.source.branch}`,
+					oldObjectId: options.source.commit
 				}],
 				commits: [{
-					comment: pr.commitMessage,
-					author: pr.author,
-					changes: pr.changes.filter((change) => change.changeType !== VersionControlChangeType.None).map(({ changeType, ...change }) => {
+					comment: options.commitMessage,
+					author: options.author,
+					changes: options.changes.filter((change) => change.changeType !== "none").map(({ changeType, ...change }) => {
 						return {
 							changeType,
 							item: { path: normalizeFilePath(change.path) },
-							newContent: changeType !== VersionControlChangeType.Delete ? {
+							newContent: changeType !== "delete" ? {
 								content: Buffer.from(change.content, change.encoding).toString("base64"),
-								contentType: ItemContentType.Base64Encoded
+								contentType: "base64encoded"
 							} : void 0
 						};
 					})
@@ -405,37 +729,31 @@ var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
 			});
 			if (!push?.commits?.length) throw new Error("Failed to push changes to source branch, no commits were created");
 			logger.info(` - Pushed commit: ${push.commits.map((c) => c.commitId).join(", ")}.`);
-			logger.info(` - Creating pull request to merge '${pr.source.branch}' into '${pr.target.branch}'...`);
-			const pullRequest = await this.restApiPost(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pullrequests`, {
-				sourceRefName: `refs/heads/${pr.source.branch}`,
-				targetRefName: `refs/heads/${pr.target.branch}`,
-				title: pr.title,
-				description: pr.description,
+			logger.info(` - Creating pull request to merge '${options.source.branch}' into '${options.target.branch}'...`);
+			const pullRequest = await this.inner.pullRequests.create(options.project, options.repository, {
+				sourceRefName: `refs/heads/${options.source.branch}`,
+				targetRefName: `refs/heads/${options.target.branch}`,
+				title: options.title,
+				description: options.description,
 				reviewers,
-				workItemRefs: pr.workItems?.map((id) => ({ id })),
-				labels: pr.labels?.map((label) => ({ name: label }))
+				workItemRefs: options.workItems?.map((id) => ({ id })),
+				labels: options.labels?.map((label) => ({ name: label }))
 			});
 			if (!pullRequest?.pullRequestId) throw new Error("Failed to create pull request, no pull request id was returned");
 			logger.info(` - Created pull request: #${pullRequest.pullRequestId}.`);
-			if (pr.properties && pr.properties.length > 0) {
+			if (options.properties && options.properties.length > 0) {
 				logger.info(` - Adding dependency metadata to pull request properties...`);
-				if (!(await this.restApiPatch(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pullrequests/${pullRequest.pullRequestId}/properties`, pr.properties.map((property) => {
-					return {
-						op: "add",
-						path: `/${property.name}`,
-						value: property.value
-					};
-				}), "application/json-patch+json"))?.count) throw new Error("Failed to add dependency metadata properties to pull request");
+				if (!(await this.inner.pullRequests.setProperties(options.project, options.repository, pullRequest.pullRequestId, options.properties))?.count) throw new Error("Failed to add dependency metadata properties to pull request");
 			}
-			if (pr.autoComplete) {
+			if (options.autoComplete) {
 				logger.info(` - Updating auto-complete options...`);
-				const updatedPullRequest = await this.restApiPatch(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pullrequests/${pullRequest.pullRequestId}`, {
+				const updatedPullRequest = await this.inner.pullRequests.update(options.project, options.repository, pullRequest.pullRequestId, {
 					autoCompleteSetBy: { id: userId },
 					completionOptions: {
-						autoCompleteIgnoreConfigIds: pr.autoComplete.ignorePolicyConfigIds,
+						autoCompleteIgnoreConfigIds: options.autoComplete.ignorePolicyConfigIds,
 						deleteSourceBranch: true,
-						mergeCommitMessage: mergeCommitMessage(pullRequest.pullRequestId, pr.title, pr.description),
-						mergeStrategy: pr.autoComplete.mergeStrategy,
+						mergeCommitMessage: this.mergeCommitMessage(pullRequest.pullRequestId, options.title, options.description),
+						mergeStrategy: options.autoComplete.mergeStrategy,
 						transitionWorkItems: false
 					}
 				});
@@ -450,29 +768,29 @@ var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
 		}
 	}
 	/**
-	* Update a pull request.
+	* Update an existing pull request with new changes.
+	* This method performs the following operations:
+	* 1. Validates the pull request hasn't been modified by another author
+	* 2. Checks if the source branch is behind the target branch
+	* 3. Rebases the target branch into the source branch if needed
+	* 4. Pushes the new changes to the source branch
+	*
 	* Requires scope "Code (Read & Write)" (vso.code, vso.code_write).
-	* @param pr
-	* @returns
+	* @param options Pull request update options including the commit and changes
+	* @returns True if successful, false on error
 	*/
-	async updatePullRequest(pr) {
-		logger.info(`Updating pull request #${pr.pullRequestId}...`);
+	async updatePullRequest(options) {
+		logger.info(`Updating pull request #${options.pullRequestId}...`);
 		try {
-			const pullRequest = await this.restApiGet(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pullrequests/${pr.pullRequestId}`);
-			if (!pullRequest) throw new Error(`Pull request #${pr.pullRequestId} not found`);
-			if (pr.skipIfDraft && pullRequest.isDraft) {
-				logger.info(` - Skipping update as pull request is currently marked as a draft.`);
+			const pullRequest = await this.inner.pullRequests.get(options.project, options.repository, options.pullRequestId);
+			if (!pullRequest) throw new Error(`Pull request #${options.pullRequestId} not found`);
+			if ((await this.inner.pullRequests.getCommits(options.project, options.repository, options.pullRequestId))?.some((c) => c.author?.email !== options.author.email)) {
+				logger.info(` - Skipping update as pull request has been modified by another user.`);
 				return true;
 			}
-			if (pr.skipIfCommitsFromAuthorsOtherThan) {
-				if ((await this.restApiGet(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pullrequests/${pr.pullRequestId}/commits`))?.value?.some((c) => c.author?.email !== pr.skipIfCommitsFromAuthorsOtherThan)) {
-					logger.info(` - Skipping update as pull request has been modified by another user.`);
-					return true;
-				}
-			}
-			const stats = await this.restApiGet(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/stats/branches`, { name: normalizeBranchName(pullRequest.sourceRefName) });
+			const stats = await this.inner.repositories.getBranchStats(options.project, options.repository, normalizeBranchName(pullRequest.sourceRefName));
 			if (stats?.behindCount === void 0) throw new Error(`Failed to get branch stats for '${pullRequest.sourceRefName}'`);
-			if (pr.skipIfNotBehindTargetBranch && stats.behindCount === 0) {
+			if (stats.behindCount === 0) {
 				logger.info(` - Skipping update as source branch is not behind target branch.`);
 				return true;
 			}
@@ -480,28 +798,28 @@ var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
 			const targetBranchName = normalizeBranchName(pullRequest.targetRefName);
 			if (stats.behindCount > 0) {
 				logger.info(` - Rebasing '${targetBranchName}' into '${sourceBranchName}' (${stats.behindCount} commit(s) behind)...`);
-				if ((await this.restApiPost(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/refs`, [{
+				if ((await this.inner.git.updateRef(options.project, options.repository, [{
 					name: pullRequest.sourceRefName,
 					oldObjectId: pullRequest.lastMergeSourceCommit.commitId,
-					newObjectId: pr.commit
-				}]))?.value?.[0]?.success !== true) throw new Error("Failed to rebase the target branch into the source branch");
+					newObjectId: options.commit
+				}]))?.[0]?.success !== true) throw new Error("Failed to rebase the target branch into the source branch");
 			}
-			logger.info(` - Pushing ${pr.changes.length} file change(s) to branch '${pullRequest.sourceRefName}'...`);
-			const push = await this.restApiPost(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pushes`, {
+			logger.info(` - Pushing ${options.changes.length} file change(s) to branch '${pullRequest.sourceRefName}'...`);
+			const push = await this.inner.git.createPush(options.project, options.repository, {
 				refUpdates: [{
 					name: pullRequest.sourceRefName,
-					oldObjectId: pr.commit
+					oldObjectId: options.commit
 				}],
 				commits: [{
-					comment: pullRequest.mergeStatus === PullRequestAsyncStatus.Conflicts ? "Resolve merge conflicts" : `Rebase '${sourceBranchName}' onto '${targetBranchName}'`,
-					author: pr.author,
-					changes: pr.changes.filter((change) => change.changeType !== VersionControlChangeType.None).map(({ changeType, ...change }) => {
+					comment: pullRequest.mergeStatus === "conflicts" ? "Resolve merge conflicts" : `Rebase '${sourceBranchName}' onto '${targetBranchName}'`,
+					author: options.author,
+					changes: options.changes.filter((change) => change.changeType !== "none").map(({ changeType, ...change }) => {
 						return {
 							changeType,
 							item: { path: normalizeFilePath(change.path) },
-							newContent: changeType !== VersionControlChangeType.Delete ? {
+							newContent: changeType !== "delete" ? {
 								content: Buffer.from(change.content, change.encoding).toString("base64"),
-								contentType: ItemContentType.Base64Encoded
+								contentType: "base64encoded"
 							} : void 0
 						};
 					})
@@ -518,20 +836,19 @@ var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
 		}
 	}
 	/**
-	* Approve a pull request.
+	* Approve a pull request as the authenticated user.
+	* Sets the reviewer vote to 10 (approved).
+	*
 	* Requires scope "Code (Write)" (vso.code_write).
-	* @param pr
-	* @returns
+	* @param options Pull request identification options
+	* @returns True if successful, false on error
 	*/
-	async approvePullRequest(pr) {
-		logger.info(`Approving pull request #${pr.pullRequestId}...`);
+	async approvePullRequest(options) {
+		logger.info(`Approving pull request #${options.pullRequestId}...`);
 		try {
 			logger.info(` - Updating reviewer vote on pull request...`);
 			const userId = await this.getUserId();
-			if ((await this.restApiPut(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pullrequests/${pr.pullRequestId}/reviewers/${userId}`, {
-				vote: 10,
-				isReapprove: true
-			}, "7.1"))?.vote !== 10) throw new Error("Failed to approve pull request, vote was not recorded");
+			if ((await this.inner.pullRequests.approve(options.project, options.repository, options.pullRequestId, userId))?.vote !== 10) throw new Error("Failed to approve pull request, vote was not recorded");
 			logger.info(` - Pull request was approved successfully.`);
 			return true;
 		} catch (e) {
@@ -541,37 +858,39 @@ var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
 		}
 	}
 	/**
-	* Abandon a pull request.
+	* Abandon a pull request and optionally delete its source branch.
+	* This method performs the following operations:
+	* 1. Adds an optional comment explaining the abandonment reason
+	* 2. Sets the pull request status to abandoned
+	* 3. Deletes the source branch if requested
+	*
 	* Requires scope "Code (Write)" (vso.code_write).
-	* @param pr
-	* @returns
+	* @param options Pull request abandonment options including optional comment and branch deletion flag
+	* @returns True if successful, false on error
 	*/
-	async abandonPullRequest(pr) {
-		logger.info(`Abandoning pull request #${pr.pullRequestId}...`);
+	async abandonPullRequest(options) {
+		logger.info(`Abandoning pull request #${options.pullRequestId}...`);
 		try {
 			const userId = await this.getUserId();
-			if (pr.comment) {
+			if (options.comment) {
 				logger.info(` - Adding abandonment reason comment to pull request...`);
 				if (!await this.addCommentThread({
-					...pr,
-					content: pr.comment,
+					...options,
+					content: options.comment,
 					userId
 				})) throw new Error("Failed to add comment to pull request, thread was not created");
 			}
 			logger.info(` - Abandoning pull request...`);
-			const abandonedPullRequest = await this.restApiPatch(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/pullrequests/${pr.pullRequestId}`, {
-				status: PullRequestStatus.Abandoned,
-				closedBy: { id: userId }
-			});
-			if (abandonedPullRequest?.status?.toLowerCase() !== "abandoned") throw new Error("Failed to abandon pull request, status was not updated");
-			if (pr.deleteSourceBranch) {
+			const abandonedPullRequest = await this.inner.pullRequests.abandon(options.project, options.repository, options.pullRequestId, userId);
+			if (abandonedPullRequest?.status !== "abandoned") throw new Error("Failed to abandon pull request, status was not updated");
+			if (options.deleteSourceBranch) {
 				logger.info(` - Deleting source branch...`);
-				if ((await this.restApiPost(`${this.organisationApiUrl}/${pr.project}/_apis/git/repositories/${pr.repository}/refs`, [{
+				if ((await this.inner.git.updateRef(options.project, options.repository, [{
 					name: abandonedPullRequest.sourceRefName,
 					oldObjectId: abandonedPullRequest.lastMergeSourceCommit.commitId,
 					newObjectId: "0000000000000000000000000000000000000000",
 					isLocked: false
-				}]))?.value?.[0]?.success !== true) throw new Error("Failed to delete the source branch");
+				}]))?.[0]?.success !== true) throw new Error("Failed to delete the source branch");
 			}
 			logger.info(` - Pull request was abandoned successfully.`);
 			return true;
@@ -583,117 +902,149 @@ var AzureDevOpsWebApiClient = class AzureDevOpsWebApiClient {
 	}
 	/**
 	* Add a comment thread on a pull request.
+	* The comment thread is created with a closed status and system comment type.
+	*
 	* Requires scope "Code (Write)" (vso.code_write).
+	* @param options Comment creation options including content and optional user ID
+	* @returns The created thread ID, or undefined on error
 	*/
-	async addCommentThread(comment) {
-		const userId = comment.userId ?? await this.getUserId();
-		return (await this.restApiPost(`${this.organisationApiUrl}/${comment.project}/_apis/git/repositories/${comment.repository}/pullrequests/${comment.pullRequestId}/threads`, {
-			status: CommentThreadStatus.Closed,
+	async addCommentThread(options) {
+		const userId = options.userId ?? await this.getUserId();
+		return (await this.inner.pullRequests.createCommentThread(options.project, options.repository, options.pullRequestId, {
+			status: "closed",
 			comments: [{
 				author: { id: userId },
-				content: comment.content,
-				commentType: CommentType.System
+				content: options.content,
+				commentType: "system"
 			}]
 		}))?.id;
 	}
-	async restApiGet(url, params, apiVersion = AzureDevOpsWebApiClient.API_VERSION) {
-		params ??= {};
-		const queryString = Object.keys(params).map((key) => `${key}=${params[key]}`).join("&");
-		const fullUrl = `${url}?api-version=${apiVersion}${queryString ? `&${queryString}` : ""}`;
-		return await sendRestApiRequestWithRetry("GET", fullUrl, void 0, async () => {
-			return await fetch(fullUrl, {
-				method: "GET",
-				headers: {
-					Accept: "application/json",
-					Authorization: `Basic ${Buffer.from(`:${this.accessToken}`).toString("base64")}`
-				}
-			});
-		}, this.debug);
-	}
-	async restApiPost(url, data, apiVersion = AzureDevOpsWebApiClient.API_VERSION) {
-		const fullUrl = `${url}?api-version=${apiVersion}`;
-		return await sendRestApiRequestWithRetry("POST", fullUrl, data, async () => {
-			return await fetch(fullUrl, {
-				method: "POST",
-				headers: {
-					"Content-Type": "application/json",
-					Authorization: `Basic ${Buffer.from(`:${this.accessToken}`).toString("base64")}`
-				},
-				body: JSON.stringify(data)
-			});
-		}, this.debug);
-	}
-	async restApiPut(url, data, apiVersion = AzureDevOpsWebApiClient.API_VERSION) {
-		const fullUrl = `${url}?api-version=${apiVersion}`;
-		return await sendRestApiRequestWithRetry("PUT", fullUrl, data, async () => {
-			return await fetch(fullUrl, {
-				method: "PUT",
-				headers: {
-					"Content-Type": "application/json",
-					Authorization: `Basic ${Buffer.from(`:${this.accessToken}`).toString("base64")}`
-				},
-				body: JSON.stringify(data)
+	/**
+	* Create or update webhook subscriptions for Azure DevOps events.
+	* This sets up subscriptions for various git events (push, pull request updates, repository changes, etc.)
+	* and ensures they are configured to send webhooks to the specified URL.
+	* Existing subscriptions matching the URL will be updated, otherwise new subscriptions are created.
+	*
+	* Requires scope "Service Hooks (Read & Write)" (vso.hooks_write).
+	* @returns Array of subscription IDs that were created or updated
+	*/
+	async createOrUpdateHookSubscriptions({ url, headers, project }) {
+		const subscriptionTypes = new Map([
+			["git.push", "1.0"],
+			["git.pullrequest.updated", "1.0"],
+			["git.pullrequest.merged", "1.0"],
+			["git.repo.created", "1.0-preview.1"],
+			["git.repo.deleted", "1.0-preview.1"],
+			["git.repo.renamed", "1.0-preview.1"],
+			["git.repo.statuschanged", "1.0-preview.1"],
+			["ms.vss-code.git-pullrequest-comment-event", "2.0"]
+		]);
+		const query = this.buildSubscriptionsQuery({
+			url,
+			project
+		});
+		const subscriptions = await this.inner.subscriptions.query(query);
+		const ids = [];
+		for (const [eventType, resourceVersion] of subscriptionTypes) {
+			const existing = subscriptions.find((sub) => {
+				return sub.eventType === eventType && sub.resourceVersion === resourceVersion;
 			});
-		}, this.debug);
-	}
-	async restApiPatch(url, data, contentType, apiVersion = AzureDevOpsWebApiClient.API_VERSION) {
-		const fullUrl = `${url}?api-version=${apiVersion}`;
-		return await sendRestApiRequestWithRetry("PATCH", fullUrl, data, async () => {
-			return await fetch(fullUrl, {
-				method: "PATCH",
-				headers: {
-					"Content-Type": contentType || "application/json",
-					Authorization: `Basic ${Buffer.from(`:${this.accessToken}`).toString("base64")}`
-				},
-				body: JSON.stringify(data)
+			let subscription;
+			if (existing) {
+				existing.status = "enabled";
+				existing.eventType = eventType;
+				existing.resourceVersion = resourceVersion;
+				existing.publisherInputs = this.makeTfsPublisherInputs({
+					eventType,
+					project
+				});
+				existing.consumerInputs = this.makeWebhookConsumerInputs({
+					url,
+					headers
+				});
+				subscription = await this.inner.subscriptions.replace(existing.id, existing);
+			} else subscription = await this.inner.subscriptions.create({
+				status: "enabled",
+				eventType,
+				resourceVersion,
+				publisherId: "tfs",
+				publisherInputs: this.makeTfsPublisherInputs({
+					eventType,
+					project
+				}),
+				consumerId: "webHooks",
+				consumerActionId: "httpRequest",
+				consumerInputs: this.makeWebhookConsumerInputs({
+					url,
+					headers
+				})
 			});
-		}, this.debug);
-	}
-};
-function mergeCommitMessage(id, title, description) {
-	return `Merged PR ${id}: ${title}\n\n${description}`.slice(0, 3500);
-}
-function isGuid(guid) {
-	return /^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$/.test(guid);
-}
-function getIdentityApiUrl(organisationApiUrl) {
-	const uri = new URL(organisationApiUrl);
-	const hostname = uri.hostname.toLowerCase();
-	if (hostname === "dev.azure.com" || hostname.endsWith(".visualstudio.com")) uri.host = "vssps.dev.azure.com";
-	return uri.toString();
-}
-async function sendRestApiRequestWithRetry(method, url, payload, requestAsync, isDebug = false, retryCount = 3, retryDelay = 3e3) {
-	let body;
-	try {
-		if (isDebug) logger.debug(`🌎 🠊 [${method}] ${url}`);
-		const response = await requestAsync();
-		body = await response.text();
-		const { status: statusCode, statusText: statusMessage } = response;
-		if (isDebug) logger.debug(`🌎 🠈 [${statusCode}] ${statusMessage}`);
-		if (statusCode < 200 || statusCode > 299) throw new HttpRequestError(`HTTP ${method} '${url}' failed: ${statusCode} ${statusMessage}`, statusCode);
-		return JSON.parse(body);
-	} catch (e) {
-		const err = e;
-		if (retryCount > 1 && isErrorTemporaryFailure(err)) {
-			logger.warn(err.message);
-			if (isDebug) logger.debug(`⏳ Retrying request in ${retryDelay}ms...`);
-			await new Promise((resolve) => setTimeout(resolve, retryDelay));
-			return sendRestApiRequestWithRetry(method, url, payload, requestAsync, isDebug, retryCount - 1, retryDelay);
+			ids.push(subscription.id);
 		}
-		if (isDebug) {
-			if (payload) logger.debug(`REQUEST: ${JSON.stringify(payload)}`);
-			if (body) logger.debug(`RESPONSE: ${body}`);
-		}
-		logger.trace(`THROW${e}`);
-		throw e;
+		for (const sub of subscriptions) if (!ids.includes(sub.id)) await this.inner.subscriptions.delete(sub.id);
 	}
-}
+	/**
+	* Remove all webhook subscriptions for a specific URL.
+	* This finds all subscriptions matching the provided URL and deletes them.
+	*
+	* Requires scope "Service Hooks (Read & Write)" (vso.hooks_write).
+	*/
+	async deleteHookSubscriptions({ url, project }) {
+		const query = this.buildSubscriptionsQuery({
+			url,
+			project
+		});
+		const subscriptions = await this.inner.subscriptions.query(query);
+		for (const sub of subscriptions) await this.inner.subscriptions.delete(sub.id);
+	}
+	mergeCommitMessage(id, title, description) {
+		return `Merged PR ${id}: ${title}\n\n${description}`.slice(0, 3500);
+	}
+	isGuid(guid) {
+		return /^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$/.test(guid);
+	}
+	buildSubscriptionsQuery({ url, project }) {
+		return {
+			publisherId: "tfs",
+			publisherInputFilters: [{ conditions: [{
+				operator: "equals",
+				inputId: "projectId",
+				caseSensitive: false,
+				inputValue: project
+			}] }],
+			consumerId: "webHooks",
+			consumerActionId: "httpRequest",
+			consumerInputFilters: [{ conditions: [{
+				operator: "equals",
+				inputId: "url",
+				caseSensitive: false,
+				inputValue: url
+			}] }]
+		};
+	}
+	makeTfsPublisherInputs({ eventType, project }) {
+		return {
+			projectId: project,
+			...eventType === "git.pullrequest.updated" && { notificationType: "StatusUpdateNotification" },
+			...eventType === "git.pullrequest.merged" && { mergeResult: "Conflicts" }
+		};
+	}
+	makeWebhookConsumerInputs({ url, headers }) {
+		return {
+			url,
+			acceptUntrustedCerts: "false",
+			httpHeaders: Object.entries(headers).map(([key, value]) => `${key}:${value}`).join("\n"),
+			messagesToSend: "none",
+			detailedMessagesToSend: "none"
+		};
+	}
+};
 
 //#endregion
 //#region src/azure/config.ts
 /**
 * Parse the dependabot config YAML file to specify update configuration.
-* The file should be located at any of `POSSIBLE_CONFIG_FILE_PATHS`.
+* The file should be located at any of `CONFIG_FILE_PATHS_AZURE`.
 *
 * To view YAML file format, visit
 * https://docs.github.com/en/github/administering-a-repository/configuration-options-for-dependency-updates#allow
@@ -705,15 +1056,22 @@ async function getDependabotConfig({ url, token, remote, rootDir = process.cwd()
 	let configContents;
 	if (remote) {
 		logger.debug(`Attempting to fetch configuration file via REST API ...`);
-		for (const fp of POSSIBLE_CONFIG_FILE_PATHS) {
+		for (const fp of CONFIG_FILE_PATHS_AZURE) {
 			const requestUrl = `${url.value}${url.project}/_apis/git/repositories/${url.repository}/items?path=/${fp}`;
 			logger.debug(`GET ${requestUrl}`);
 			try {
 				const authHeader = `Basic ${Buffer.from(`x-access-token:${token}`).toString("base64")}`;
-				const response = await fetch(requestUrl, { headers: {
-					Authorization: authHeader,
-					Accept: "*/*"
-				} });
+				const response = await ky.get(requestUrl, {
+					headers: {
+						Authorization: authHeader,
+						Accept: "*/*"
+					},
+					throwHttpErrors: (status) => ![
+						401,
+						403,
+						404
+					].includes(status)
+				});
 				if (response.ok) {
 					logger.debug(`Found configuration file at '${requestUrl}'`);
 					configContents = await response.text();
@@ -729,7 +1087,7 @@ async function getDependabotConfig({ url, token, remote, rootDir = process.cwd()
 				else throw error;
 			}
 		}
-	} else for (const fp of POSSIBLE_CONFIG_FILE_PATHS) {
+	} else for (const fp of CONFIG_FILE_PATHS_AZURE) {
 		const filePath = path.join(rootDir, fp);
 		if (existsSync(filePath)) {
 			logger.debug(`Found configuration file cloned at ${filePath}`);
@@ -738,7 +1096,7 @@ async function getDependabotConfig({ url, token, remote, rootDir = process.cwd()
 			break;
 		} else logger.trace(`No configuration file cloned at ${filePath}`);
 	}
-	if (!configContents || !configPath || typeof configContents !== "string") throw new Error(`Configuration file not found at possible locations: ${POSSIBLE_CONFIG_FILE_PATHS.join(", ")}`);
+	if (!configContents || !configPath || typeof configContents !== "string") throw new Error(`Configuration file not found at possible locations: ${CONFIG_FILE_PATHS_AZURE.join(", ")}`);
 	else logger.trace("Configuration file contents read.");
 	return await parseDependabotConfig({
 		configContents,
@@ -747,6 +1105,119 @@ async function getDependabotConfig({ url, token, remote, rootDir = process.cwd()
 	});
 }
 
+//#endregion
+//#region src/azure/events.ts
+const AzdoEventTypeSchema = z.enum([
+	"git.push",
+	"git.pullrequest.updated",
+	"git.pullrequest.merged",
+	"git.repo.created",
+	"git.repo.deleted",
+	"git.repo.renamed",
+	"git.repo.statuschanged",
+	"ms.vss-code.git-pullrequest-comment-event"
+]);
+const AzdoEventProjectSchema = z.object({
+	id: z.string(),
+	name: z.string(),
+	url: z.string()
+});
+const AzdoEventRepositorySchema = z.object({
+	id: z.string(),
+	name: z.string(),
+	project: AzdoEventProjectSchema,
+	defaultBranch: z.string().optional(),
+	remoteUrl: z.string()
+});
+const AzdoEventCodePushResourceSchema = z.object({
+	repository: AzdoEventRepositorySchema,
+	commits: AzdoGitCommitRefSchema.array(),
+	refUpdates: z.object({
+		name: z.string(),
+		oldObjectId: z.string().nullish(),
+		newObjectId: z.string().nullish()
+	}).array(),
+	pushId: z.number(),
+	url: z.string()
+});
+const AzdoEventPullRequestResourceSchema = z.object({
+	repository: AzdoEventRepositorySchema,
+	pullRequestId: z.number(),
+	status: AzdoPullRequestStatusSchema,
+	createdBy: AzdoIdentityRefSchema,
+	title: z.string(),
+	sourceRefName: z.string(),
+	targetRefName: z.string(),
+	mergeStatus: AzdoPullRequestAsyncStatusSchema,
+	mergeId: z.string(),
+	url: z.string()
+});
+const AzdoEventRepositoryCreatedResourceSchema = z.object({ repository: AzdoEventRepositorySchema });
+const AzdoEventRepositoryDeletedResourceSchema = z.object({
+	project: AzdoEventProjectSchema,
+	repositoryId: z.string(),
+	repositoryName: z.string(),
+	isHardDelete: z.boolean()
+});
+const AzdoEventRepositoryRenamedResourceSchema = z.object({
+	oldName: z.string(),
+	newName: z.string(),
+	repository: AzdoEventRepositorySchema
+});
+const AzdoEventRepositoryStatusChangedResourceSchema = z.object({
+	disabled: z.boolean(),
+	repository: AzdoEventRepositorySchema
+});
+const AzdoEventPullRequestCommentEventResourceSchema = z.object({
+	pullRequest: AzdoEventPullRequestResourceSchema,
+	comment: AzdoPullRequestCommentSchema
+});
+const AzdoEventSchema = z.object({
+	subscriptionId: z.string(),
+	notificationId: z.number(),
+	id: z.string(),
+	publisherId: z.string(),
+	resourceVersion: z.enum([
+		"1.0",
+		"1.0-preview.1",
+		"2.0"
+	]),
+	createdDate: z.coerce.date()
+}).and(z.discriminatedUnion("eventType", [
+	z.object({
+		eventType: z.literal("git.push"),
+		resource: AzdoEventCodePushResourceSchema
+	}),
+	z.object({
+		eventType: z.literal("git.pullrequest.updated"),
+		resource: AzdoEventPullRequestResourceSchema
+	}),
+	z.object({
+		eventType: z.literal("git.pullrequest.merged"),
+		resource: AzdoEventPullRequestResourceSchema
+	}),
+	z.object({
+		eventType: z.literal("git.repo.created"),
+		resource: AzdoEventRepositoryCreatedResourceSchema
+	}),
+	z.object({
+		eventType: z.literal("git.repo.deleted"),
+		resource: AzdoEventRepositoryDeletedResourceSchema
+	}),
+	z.object({
+		eventType: z.literal("git.repo.renamed"),
+		resource: AzdoEventRepositoryRenamedResourceSchema
+	}),
+	z.object({
+		eventType: z.literal("git.repo.statuschanged"),
+		resource: AzdoEventRepositoryStatusChangedResourceSchema
+	}),
+	z.object({
+		eventType: z.literal("ms.vss-code.git-pullrequest-comment-event"),
+		resource: AzdoEventPullRequestCommentEventResourceSchema
+	})
+]));
+
 //#endregion
 //#region src/azure/url-parts.ts
 function extractOrganizationUrl({ organisationUrl }) {
@@ -757,12 +1228,14 @@ function extractOrganizationUrl({ organisationUrl }) {
 	const organisation = extractOrganisation(organisationUrl);
 	const virtualDirectory = extractVirtualDirectory(value);
 	const apiEndpoint = `${protocol}://${hostname}${value.port ? `:${value.port}` : ""}/${virtualDirectory ? `${virtualDirectory}/` : ""}`;
+	const identityApiUrl = hostname === "dev.azure.com" || hostname.endsWith(".visualstudio.com") ? new URL(`https://vssps.dev.azure.com/${organisation}/`) : value;
 	return {
 		value,
 		hostname,
 		"api-endpoint": apiEndpoint,
 		organisation,
-		"virtual-directory": virtualDirectory
+		"virtual-directory": virtualDirectory,
+		"identity-api-url": identityApiUrl
 	};
 }
 function extractProjectUrl({ organisationUrl, project }) {
@@ -818,5 +1291,5 @@ function extractVirtualDirectory(organisationUrl) {
 }
 
 //#endregion
-export { ANONYMOUS_USER_ID, AzureDevOpsWebApiClient, CommentThreadStatus, CommentType, DEVOPS_PR_PROPERTY_DEPENDABOT_DEPENDENCIES, DEVOPS_PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER, DEVOPS_PR_PROPERTY_MICROSOFT_GIT_SOURCE_REF_NAME, DependenciesPrPropertySchema, GitPullRequestMergeStrategy, ItemContentType, PullRequestAsyncStatus, PullRequestStatus, VersionControlChangeType, buildPullRequestProperties, extractOrganizationUrl, extractProjectUrl, extractRepositoryUrl, getDependabotConfig, getPullRequestChangedFilesForOutputData, getPullRequestCloseReasonForOutputData, getPullRequestDependenciesPropertyValueForOutputData, getPullRequestDescription, getPullRequestForDependencyNames, normalizeBranchName, normalizeFilePath, parsePullRequestProperties, sendRestApiRequestWithRetry };
+export { ANONYMOUS_USER_ID, API_VERSION, API_VERSION_PREVIEW, AZDO_PULL_REQUEST_MERGE_STRATEGIES, AzdoCommentThreadStatusSchema, AzdoCommentTypeSchema, AzdoConnectionDataSchema, AzdoEventCodePushResourceSchema, AzdoEventPullRequestCommentEventResourceSchema, AzdoEventPullRequestResourceSchema, AzdoEventRepositoryCreatedResourceSchema, AzdoEventRepositoryDeletedResourceSchema, AzdoEventRepositoryRenamedResourceSchema, AzdoEventRepositorySchema, AzdoEventRepositoryStatusChangedResourceSchema, AzdoEventSchema, AzdoEventTypeSchema, AzdoGitBranchStatsSchema, AzdoGitChangeSchema, AzdoGitCommitDiffsSchema, AzdoGitCommitRefSchema, AzdoGitPushCreateSchema, AzdoGitPushSchema, AzdoGitRefSchema, AzdoGitRefUpdateResultSchema, AzdoGitRefUpdateSchema, AzdoGitUserDateSchema, AzdoIdentityRefSchema, AzdoIdentityRefWithVoteSchema, AzdoIdentitySchema, AzdoProjectSchema, AzdoPropertiesSchema, AzdoPullRequestAsyncStatusSchema, AzdoPullRequestCommentSchema, AzdoPullRequestCommentThreadSchema, AzdoPullRequestMergeStrategySchema, AzdoPullRequestSchema, AzdoPullRequestStatusSchema, AzdoRepositoryItemSchema, AzdoRepositorySchema, AzdoSubscriptionSchema, AzdoSubscriptionsQueryInputFilterSchema, AzdoSubscriptionsQueryResponseSchema, AzdoSubscriptionsQuerySchema, AzdoVersionControlChangeTypeSchema, AzureDevOpsClient, AzureDevOpsClientWrapper, PR_DESCRIPTION_MAX_LENGTH, PR_PROPERTY_DEPENDABOT_DEPENDENCIES, PR_PROPERTY_DEPENDABOT_PACKAGE_MANAGER, PR_PROPERTY_MICROSOFT_GIT_SOURCE_REF_NAME, buildPullRequestProperties, extractOrganizationUrl, extractProjectUrl, extractRepositoryUrl, getDependabotConfig, getPullRequestChangedFiles, getPullRequestForDependencyNames, parsePullRequestProperties };
 //# sourceMappingURL=index.mjs.map