@zereight/mcp-gitlab 2.1.11 → 2.1.13

package/build/index.js

@@ -21,17 +21,18 @@ import { createGitLabOAuthProvider } from "./oauth-proxy.js";
 import { mcpAuthRouter } from "@modelcontextprotocol/sdk/server/auth/router.js";
 import { normalizeGitLabApiUrl } from "./utils/url.js";
 import { estimateMergeCommitCount, filterDiffsByPatterns, summarizeWebhookEvents } from "./utils/helpers.js";
+import { parseSearchReplaceBlocks, applySearchReplace, applyUnifiedDiff, } from "./utils/patch-helper.js";
 import { requireBearerAuth } from "@modelcontextprotocol/sdk/server/auth/middleware/bearerAuth.js";
 import { GitLabClientPool } from "./gitlab-client-pool.js";
 import { allTools, readOnlyTools, destructiveTools, parseEnabledToolsets, parseIndividualTools, buildFeatureFlagOverrides, isToolInEnabledToolset, TOOLSET_DEFINITIONS, ALL_TOOLSET_IDS, } from "./tools/registry.js";
 import { BulkPublishDraftNotesSchema, CancelPipelineJobSchema, CancelPipelineSchema, CreateBranchSchema, CreateDraftNoteSchema, CreateIssueLinkSchema, CreateIssueNoteSchema, CreateIssueSchema, CreateIssueEmojiReactionSchema, CreateIssueNoteEmojiReactionSchema, ListIssueEmojiReactionsSchema, ListIssueNoteEmojiReactionsSchema, CreateLabelSchema, // Added
-CreateMergeRequestNoteSchema, CreateMergeRequestDiscussionNoteSchema, CreateMergeRequestEmojiReactionSchema, CreateMergeRequestNoteEmojiReactionSchema, ListMergeRequestEmojiReactionsSchema, ListMergeRequestNoteEmojiReactionsSchema, CreateMergeRequestSchema, CreateMergeRequestThreadSchema, CreateNoteSchema, CreateCommitStatusSchema, CreateOrUpdateFileSchema, CreatePipelineSchema, CreateProjectMilestoneSchema, CreateRepositorySchema, CreateWikiPageSchema, CreateGroupWikiPageSchema, DeleteDraftNoteSchema, DeleteGroupWikiPageSchema, DeleteIssueLinkSchema, DeleteIssueSchema, DeleteIssueEmojiReactionSchema, DeleteIssueNoteEmojiReactionSchema, DeleteLabelSchema, DeleteProjectMilestoneSchema, DeleteWikiPageSchema, DeleteMergeRequestNoteSchema, DeleteMergeRequestEmojiReactionSchema, DeleteMergeRequestNoteEmojiReactionSchema, EditProjectMilestoneSchema, ForkRepositorySchema, GetBranchDiffsSchema, GetCommitDiffSchema, GetCommitSchema, GetDraftNoteSchema, GetFileContentsSchema, GetIssueLinkSchema, GetIssueSchema, GetLabelSchema, GetMergeRequestDiffsSchema, GetMergeRequestSchema, GetMilestoneBurndownEventsSchema, GetMilestoneIssuesSchema, GetMilestoneMergeRequestsSchema, GetDeploymentSchema, GetEnvironmentSchema, GetNamespaceSchema, GitLabCiLintResultSchema, GetPipelineJobOutputSchema, GetPipelineSchema, GetProjectMilestoneSchema, GetProjectSchema, GetRepositoryTreeSchema, GetUsersSchema, GetUserSchema, GitLabUserFullSchema, WhoAmISchema, GitLabCurrentUserSchema, GetWikiPageSchema, GitLabCommitSchema, GitLabCommitStatusSchema, GitLabCompareResultSchema, GitLabContentSchema, GitLabCreateUpdateFileResponseSchema, GitLabDiffSchema, 
+CreateMergeRequestNoteSchema, CreateMergeRequestDiscussionNoteSchema, CreateMergeRequestEmojiReactionSchema, CreateMergeRequestNoteEmojiReactionSchema, ListMergeRequestEmojiReactionsSchema, ListMergeRequestNoteEmojiReactionsSchema, CreateMergeRequestSchema, CreateMergeRequestThreadSchema, CreateNoteSchema, CreateCommitStatusSchema, CreateOrUpdateFileSchema, CreatePipelineSchema, CreateProjectMilestoneSchema, CreateRepositorySchema, CreateGroupSchema, CreateWikiPageSchema, CreateGroupWikiPageSchema, DeleteBranchSchema, DeleteDraftNoteSchema, DeleteGroupWikiPageSchema, DeleteIssueLinkSchema, DeleteIssueSchema, DeleteIssueEmojiReactionSchema, DeleteIssueNoteEmojiReactionSchema, DeleteLabelSchema, DeleteProjectMilestoneSchema, DeleteWikiPageSchema, DeleteMergeRequestNoteSchema, DeleteMergeRequestEmojiReactionSchema, DeleteMergeRequestNoteEmojiReactionSchema, EditProjectMilestoneSchema, ForkRepositorySchema, GetBranchDiffsSchema, GetBranchSchema, GetCommitDiffSchema, GetCommitSchema, GetFileBlameSchema, GitLabBlameEntrySchema, GetDraftNoteSchema, GetFileContentsSchema, GetIssueLinkSchema, GetIssueSchema, GetLabelSchema, GetMergeRequestDiffsSchema, GetMergeRequestSchema, GetMilestoneBurndownEventsSchema, GetMilestoneIssuesSchema, GetMilestoneMergeRequestsSchema, GetDeploymentSchema, GetEnvironmentSchema, GetNamespaceSchema, GitLabCiLintResultSchema, GetPipelineJobOutputSchema, GetPipelineSchema, GetProjectMilestoneSchema, GetProjectSchema, GetRepositoryTreeSchema, GetUsersSchema, GetUserSchema, GitLabUserFullSchema, WhoAmISchema, GitLabCurrentUserSchema, GetWikiPageSchema, GitLabCommitSchema, GitLabCommitStatusSchema, GitLabCompareResultSchema, GitLabContentSchema, GitLabCreateUpdateFileResponseSchema, GitLabDiffSchema, 
 // Discussion Schemas
 GitLabDiscussionNoteSchema, // Added
 GitLabDiscussionSchema, 
 // Draft Notes Schemas
-GitLabDraftNoteSchema, GitLabForkSchema, GitLabIssueLinkSchema, GitLabIssueSchema, GitLabIssueWithLinkDetailsSchema, GitLabMarkdownUploadSchema, GitLabMergeRequestPipelineSchema, GitLabMergeRequestSchema, GitLabMilestonesSchema, GitLabNamespaceExistsResponseSchema, GitLabNamespaceSchema, GitLabPipelineJobSchema, GitLabDeploymentSchema, GitLabEnvironmentSchema, GitLabPipelineSchema, GitLabPipelineTriggerJobSchema, GitLabProjectMemberSchema, GitLabProjectSchema, GitLabTodoSchema, GitLabReferenceSchema, GitLabRepositorySchema, GitLabSearchBlobResultSchema, GitLabSearchResponseSchema, GitLabTreeItemSchema, GitLabUserSchema, GitLabUsersResponseSchema, GitLabWikiPageSchema, GroupIteration, ListCommitStatusesSchema, ListCommitsSchema, ListDraftNotesSchema, ListGroupIterationsSchema, ListGroupProjectsSchema, ListIssueDiscussionsSchema, ListIssueLinksSchema, ListIssuesSchema, ListTodosSchema, ListLabelsSchema, ListMergeRequestDiffsSchema, // Added
-GetMergeRequestFileDiffSchema, ListMergeRequestChangedFilesSchema, ListMergeRequestDiscussionsSchema, ListMergeRequestPipelinesSchema, ListMergeRequestsSchema, ListMergeRequestVersionsSchema, GetMergeRequestVersionSchema, GitLabMergeRequestVersionSchema, GitLabMergeRequestVersionDetailSchema, ListNamespacesSchema, ListPipelineJobsSchema, ListPipelinesSchema, ListDeploymentsSchema, ListEnvironmentsSchema, ListPipelineTriggerJobsSchema, ValidateCiLintSchema, ValidateProjectCiLintSchema, ListProjectMembersSchema, ListProjectMilestonesSchema, ListProjectsSchema, ListWikiPagesSchema, GetGroupWikiPageSchema, ListGroupWikiPagesSchema, UpdateGroupWikiPageSchema, MarkdownUploadSchema, DownloadAttachmentSchema, DownloadJobArtifactsSchema, GetJobArtifactFileSchema, GitLabArtifactEntrySchema, ListJobArtifactsSchema, MergeMergeRequestSchema, ApproveMergeRequestSchema, UnapproveMergeRequestSchema, GetMergeRequestApprovalStateSchema, GetMergeRequestConflictsSchema, GitLabMergeRequestApprovalsResponseSchema, GitLabMergeRequestApprovalStateSchema, MyIssuesSchema, MarkAllTodosDoneSchema, MarkTodoDoneSchema, PaginatedDiscussionsResponseSchema, PromoteProjectMilestoneSchema, PublishDraftNoteSchema, PlayPipelineJobSchema, PushFilesSchema, RetryPipelineJobSchema, RetryPipelineSchema, SearchCodeSchema, SearchGroupCodeSchema, SearchProjectCodeSchema, SearchRepositoriesSchema, UpdateDraftNoteSchema, UpdateIssueNoteSchema, UpdateIssueSchema, UpdateLabelSchema, UpdateMergeRequestNoteSchema, UpdateMergeRequestDiscussionNoteSchema, UpdateMergeRequestSchema, UpdateWikiPageSchema, VerifyNamespaceSchema, GitLabEventSchema, ListEventsSchema, GetProjectEventsSchema, ExecuteGraphQLSchema, GitLabReleaseSchema, ListReleasesSchema, GetReleaseSchema, CreateReleaseSchema, UpdateReleaseSchema, DeleteReleaseSchema, CreateReleaseEvidenceSchema, DownloadReleaseAssetSchema, ListTagsSchema, GetTagSchema, CreateTagSchema, DeleteTagSchema, GetTagSignatureSchema, GitLabTagSchema, GitLabTagSignatureSchema, GetMergeRequestNotesSchema, GetMergeRequestNoteSchema, DeleteMergeRequestDiscussionNoteSchema, ResolveMergeRequestThreadSchema, GetWorkItemSchema, ListWorkItemsSchema, CreateWorkItemSchema, UpdateWorkItemSchema, ConvertWorkItemTypeSchema, ListWorkItemStatusesSchema, ListWorkItemNotesSchema, CreateWorkItemNoteSchema, CreateWorkItemEmojiReactionSchema, CreateWorkItemNoteEmojiReactionSchema, ListWorkItemEmojiReactionsSchema, ListWorkItemNoteEmojiReactionsSchema, DeleteWorkItemEmojiReactionSchema, DeleteWorkItemNoteEmojiReactionSchema, MoveWorkItemSchema, ListCustomFieldDefinitionsSchema, GetTimelineEventsSchema, CreateTimelineEventSchema, ListWebhooksSchema, ListWebhookEventsSchema, GetWebhookEventSchema, HealthCheckSchema, } from "./schemas.js";
+GitLabDraftNoteSchema, GitLabForkSchema, GitLabBranchSchema, GitLabGroupSchema, GitLabIssueLinkSchema, GitLabIssueSchema, GitLabIssueWithLinkDetailsSchema, GitLabMarkdownUploadSchema, GitLabMergeRequestPipelineSchema, GitLabMergeRequestSchema, GitLabMilestonesSchema, GitLabNamespaceExistsResponseSchema, GitLabNamespaceSchema, GitLabPipelineJobSchema, GitLabDeploymentSchema, GitLabEnvironmentSchema, GitLabPipelineSchema, GitLabPipelineTriggerJobSchema, GitLabProjectMemberSchema, GitLabProjectSchema, GitLabTodoSchema, GitLabReferenceSchema, GitLabRepositorySchema, GitLabSearchBlobResultSchema, GitLabSearchResponseSchema, GitLabTreeItemSchema, GitLabUserSchema, GitLabUsersResponseSchema, GitLabWikiPageSchema, GroupIteration, ListCommitStatusesSchema, ListBranchesSchema, ListCommitsSchema, ListDraftNotesSchema, ListGroupIterationsSchema, ListGroupProjectsSchema, ListIssueDiscussionsSchema, ListIssueLinksSchema, ListIssuesSchema, ListTodosSchema, ListLabelsSchema, ListMergeRequestDiffsSchema, // Added
+GetMergeRequestFileDiffSchema, ListMergeRequestChangedFilesSchema, ListMergeRequestDiscussionsSchema, ListMergeRequestPipelinesSchema, ListMergeRequestsSchema, ListMergeRequestVersionsSchema, GetMergeRequestVersionSchema, GitLabMergeRequestVersionSchema, GitLabMergeRequestVersionDetailSchema, ListNamespacesSchema, ListPipelineJobsSchema, ListPipelinesSchema, ListDeploymentsSchema, ListEnvironmentsSchema, ListPipelineTriggerJobsSchema, ValidateCiLintSchema, ValidateProjectCiLintSchema, ListProjectMembersSchema, ListProjectMilestonesSchema, ListProjectsSchema, ListWikiPagesSchema, GetGroupWikiPageSchema, ListGroupWikiPagesSchema, UpdateGroupWikiPageSchema, MarkdownUploadSchema, DownloadAttachmentSchema, DownloadJobArtifactsSchema, GetJobArtifactFileSchema, GitLabArtifactEntrySchema, ListJobArtifactsSchema, MergeMergeRequestSchema, ApproveMergeRequestSchema, UnapproveMergeRequestSchema, GetMergeRequestApprovalStateSchema, GetMergeRequestConflictsSchema, GitLabMergeRequestApprovalsResponseSchema, GitLabMergeRequestApprovalStateSchema, MyIssuesSchema, MarkAllTodosDoneSchema, MarkTodoDoneSchema, PaginatedDiscussionsResponseSchema, PromoteProjectMilestoneSchema, PublishDraftNoteSchema, PlayPipelineJobSchema, PushFilesSchema, RetryPipelineJobSchema, RetryPipelineSchema, SearchCodeSchema, SearchGroupCodeSchema, SearchProjectCodeSchema, SearchRepositoriesSchema, UpdateDraftNoteSchema, UpdateIssueNoteSchema, UpdateIssueSchema, UpdateIssueDescriptionPatchSchema, UpdateLabelSchema, UpdateMergeRequestNoteSchema, UpdateMergeRequestDiscussionNoteSchema, UpdateMergeRequestSchema, UpdateWikiPageSchema, VerifyNamespaceSchema, GitLabEventSchema, ListEventsSchema, GetProjectEventsSchema, ExecuteGraphQLSchema, GitLabReleaseSchema, ListReleasesSchema, GetReleaseSchema, CreateReleaseSchema, UpdateReleaseSchema, DeleteReleaseSchema, CreateReleaseEvidenceSchema, DownloadReleaseAssetSchema, ListTagsSchema, GetTagSchema, CreateTagSchema, DeleteTagSchema, GetTagSignatureSchema, GitLabTagSchema, GitLabTagSignatureSchema, GetMergeRequestNotesSchema, GetMergeRequestNoteSchema, DeleteMergeRequestDiscussionNoteSchema, ResolveMergeRequestThreadSchema, GetWorkItemSchema, ListWorkItemsSchema, CreateWorkItemSchema, UpdateWorkItemSchema, ConvertWorkItemTypeSchema, ListWorkItemStatusesSchema, ListWorkItemNotesSchema, CreateWorkItemNoteSchema, CreateWorkItemEmojiReactionSchema, CreateWorkItemNoteEmojiReactionSchema, ListWorkItemEmojiReactionsSchema, ListWorkItemNoteEmojiReactionsSchema, DeleteWorkItemEmojiReactionSchema, DeleteWorkItemNoteEmojiReactionSchema, MoveWorkItemSchema, ListCustomFieldDefinitionsSchema, GetTimelineEventsSchema, CreateTimelineEventSchema, ListWebhooksSchema, ListWebhookEventsSchema, GetWebhookEventSchema, HealthCheckSchema, } from "./schemas.js";
 import { randomUUID } from "node:crypto";
 import { pino } from "pino";
 const logger = pino({
@@ -936,6 +937,14 @@ function getEffectiveProjectId(projectId) {
     }
     throw new Error("No project ID provided and GITLAB_PROJECT_ID is not set");
 }
+function rejectIfProjectScopedDeployment(toolName) {
+    if (GITLAB_PROJECT_ID) {
+        throw new Error(`${toolName} is not allowed when GITLAB_PROJECT_ID is set (server is locked to a single project)`);
+    }
+    if (GITLAB_ALLOWED_PROJECT_IDS.length > 0) {
+        throw new Error(`${toolName} is not allowed when GITLAB_ALLOWED_PROJECT_IDS is set (server access is restricted to configured projects)`);
+    }
+}
 /**
  * Create a fork of a GitLab project
  * 프로젝트 포크 생성 (Create a project fork)
@@ -5415,6 +5424,33 @@ async function getCommitDiff(projectId, sha, full_diff) {
     }
     return allDiffs;
 }
+/**
+ * Get blame for a file at a specific ref.
+ *
+ * Wraps GitLab REST endpoint
+ *   GET /projects/:id/repository/files/:file_path/blame?ref=
+ * Returns an array of entries; each entry has `lines` (the source lines covered)
+ * and `commit` (the commit that last changed those lines: id, author, message, ...).
+ *
+ * @param {string} projectId  - Project ID or URL-encoded path
+ * @param {Omit<GetFileBlameOptions,"project_id">} options - file_path, ref, optional range_start/range_end
+ * @returns {Promise<GitLabBlameEntry[]>} Blame entries in source order.
+ */
+async function getFileBlame(projectId, options) {
+    projectId = decodeURIComponent(projectId);
+    const url = new URL(`${getEffectiveApiUrl()}/projects/${encodeURIComponent(getEffectiveProjectId(projectId))}/repository/files/${encodeURIComponent(options.file_path)}/blame`);
+    url.searchParams.append("ref", options.ref);
+    if (options.range_start !== undefined && options.range_end !== undefined) {
+        url.searchParams.append("range[start]", options.range_start.toString());
+        url.searchParams.append("range[end]", options.range_end.toString());
+    }
+    const response = await fetch(url.toString(), {
+        ...getFetchConfig(),
+    });
+    await handleGitLabError(response);
+    const data = await response.json();
+    return z.array(GitLabBlameEntrySchema).parse(data);
+}
 /**
  * List statuses for a commit.
  *
@@ -5958,6 +5994,10 @@ async function handleToolCall(params) {
                 delete args.work_item_iid;
             }
         }
+        // Centralized read-only guard: reject write tools even if client bypasses list_tools filtering
+        if (GITLAB_READ_ONLY_MODE && !readOnlyTools.has(params.name)) {
+            throw new Error(`${params.name} is not allowed in read-only mode`);
+        }
         logger.info({ tool: params.name, event: "tool_call_start" }, `tool_call_start: ${params.name}`);
         switch (params.name) {
             case "execute_graphql": {
@@ -6008,9 +6048,7 @@ async function handleToolCall(params) {
                 }
             }
             case "fork_repository": {
-                if (GITLAB_PROJECT_ID) {
-                    throw new Error("Direct project ID is set. So fork_repository is not allowed");
-                }
+                rejectIfProjectScopedDeployment("fork_repository");
                 const forkArgs = ForkRepositorySchema.parse(params.arguments);
                 try {
                     const forkedProject = await forkProject(forkArgs.project_id, forkArgs.namespace);
@@ -6109,15 +6147,40 @@ async function handleToolCall(params) {
                 };
             }
             case "create_repository": {
-                if (GITLAB_PROJECT_ID) {
-                    throw new Error("Direct project ID is set. So fork_repository is not allowed");
-                }
+                rejectIfProjectScopedDeployment("create_repository");
                 const args = CreateRepositorySchema.parse(params.arguments);
                 const repository = await createRepository(args);
                 return {
                     content: [{ type: "text", text: JSON.stringify(repository, null, 2) }],
                 };
             }
+            case "create_group": {
+                rejectIfProjectScopedDeployment("create_group");
+                const args = CreateGroupSchema.parse(params.arguments);
+                const url = new URL(`${getEffectiveApiUrl()}/groups`);
+                const body = {
+                    name: args.name,
+                    path: args.path,
+                };
+                if (args.description)
+                    body.description = args.description;
+                if (args.visibility)
+                    body.visibility = args.visibility;
+                if (args.parent_id)
+                    body.parent_id = args.parent_id;
+                const response = await fetch(url.toString(), {
+                    ...getFetchConfig(),
+                    method: "POST",
+                    headers: { ...getFetchConfig().headers, "Content-Type": "application/json" },
+                    body: JSON.stringify(body),
+                });
+                await handleGitLabError(response);
+                const data = await response.json();
+                const group = GitLabGroupSchema.parse(data);
+                return {
+                    content: [{ type: "text", text: JSON.stringify(group, null, 2) }],
+                };
+            }
             case "get_file_contents": {
                 const args = GetFileContentsSchema.parse(params.arguments);
                 const contents = await getFileContents(args.project_id, args.file_path, args.ref);
@@ -6683,6 +6746,81 @@ async function handleToolCall(params) {
                     content: [{ type: "text", text: JSON.stringify(issue, null, 2) }],
                 };
             }
+            case "update_issue_description_patch": {
+                const args = UpdateIssueDescriptionPatchSchema.parse(params.arguments);
+                const { project_id, issue_iid, patch_type, patch, dry_run, create_note, allow_multiple } = args;
+                // Fetch current issue description
+                const currentIssue = await getIssue(project_id, issue_iid);
+                const currentDescription = currentIssue.description ?? "";
+                // Apply the patch
+                let result;
+                if (patch_type === "search_replace") {
+                    const blocks = parseSearchReplaceBlocks(patch);
+                    if (blocks.length === 0) {
+                        throw new Error("No valid search/replace blocks found. Expected format: <<<<<<< SEARCH\\ntext\\n=======\\nnew text\\n>>>>>>> REPLACE");
+                    }
+                    result = applySearchReplace(currentDescription, blocks, allow_multiple);
+                }
+                else {
+                    // unified_diff
+                    result = applyUnifiedDiff(currentDescription, patch);
+                }
+                // Dry-run: return preview without updating
+                if (dry_run) {
+                    return {
+                        content: [
+                            {
+                                type: "text",
+                                text: JSON.stringify({
+                                    status: "preview",
+                                    dry_run: true,
+                                    changes: result.changes,
+                                    summary: result.summary,
+                                    preview: result.preview,
+                                }, null, 2),
+                            },
+                        ],
+                    };
+                }
+                // Apply the update
+                const updatedIssue = await updateIssue(project_id, issue_iid, {
+                    description: result.description,
+                });
+                // Optionally create a note summarizing the change
+                let noteResult = null;
+                if (create_note) {
+                    try {
+                        const noteBody = `Updated issue description using patch-based tool.\n\n${result.summary}`;
+                        await createIssueNote(project_id, issue_iid, undefined, noteBody);
+                        noteResult = { status: "created" };
+                    }
+                    catch (noteError) {
+                        noteResult = {
+                            status: "failed",
+                            message: `Note creation failed: ${noteError.message ?? noteError}`,
+                        };
+                    }
+                }
+                return {
+                    content: [
+                        {
+                            type: "text",
+                            text: JSON.stringify({
+                                status: "success",
+                                changes: result.changes,
+                                summary: result.summary,
+                                note: noteResult,
+                                issue: {
+                                    iid: updatedIssue.iid,
+                                    title: updatedIssue.title,
+                                    web_url: updatedIssue.web_url,
+                                    updated_at: updatedIssue.updated_at,
+                                },
+                            }, null, 2),
+                        },
+                    ],
+                };
+            }
             case "delete_issue": {
                 const args = DeleteIssueSchema.parse(params.arguments);
                 await deleteIssue(args.project_id, args.issue_iid);
@@ -7390,6 +7528,14 @@ async function handleToolCall(params) {
                     content: [{ type: "text", text: JSON.stringify(diff, null, 2) }],
                 };
             }
+            case "get_file_blame": {
+                const args = GetFileBlameSchema.parse(params.arguments);
+                const { project_id, ...options } = args;
+                const blame = await getFileBlame(project_id, options);
+                return {
+                    content: [{ type: "text", text: JSON.stringify(blame, null, 2) }],
+                };
+            }
             case "list_commit_statuses": {
                 const args = ListCommitStatusesSchema.parse(params.arguments);
                 const { project_id, sha, ...options } = args;
@@ -7612,6 +7758,56 @@ async function handleToolCall(params) {
                     content: [{ type: "text", text: JSON.stringify({ status: authenticated ? "ok" : "error", authenticated, gitlab_url: getEffectiveApiUrl() }) }],
                 };
             }
+            case "get_branch": {
+                const args = GetBranchSchema.parse(params.arguments);
+                const projectId = decodeURIComponent(args.project_id);
+                const url = new URL(`${getEffectiveApiUrl()}/projects/${encodeURIComponent(getEffectiveProjectId(projectId))}/repository/branches/${encodeURIComponent(args.branch_name)}`);
+                const response = await fetch(url.toString(), {
+                    ...getFetchConfig(),
+                });
+                await handleGitLabError(response);
+                const data = await response.json();
+                const branch = GitLabBranchSchema.parse(data);
+                return {
+                    content: [{ type: "text", text: JSON.stringify(branch, null, 2) }],
+                };
+            }
+            case "list_branches": {
+                const args = ListBranchesSchema.parse(params.arguments);
+                const projectId = decodeURIComponent(args.project_id);
+                const url = new URL(`${getEffectiveApiUrl()}/projects/${encodeURIComponent(getEffectiveProjectId(projectId))}/repository/branches`);
+                if (args.search) {
+                    url.searchParams.append("search", args.search);
+                }
+                if (args.page) {
+                    url.searchParams.append("page", args.page.toString());
+                }
+                if (args.per_page) {
+                    url.searchParams.append("per_page", args.per_page.toString());
+                }
+                const response = await fetch(url.toString(), {
+                    ...getFetchConfig(),
+                });
+                await handleGitLabError(response);
+                const data = await response.json();
+                const branches = z.array(GitLabBranchSchema).parse(data);
+                return {
+                    content: [{ type: "text", text: JSON.stringify(branches, null, 2) }],
+                };
+            }
+            case "delete_branch": {
+                const args = DeleteBranchSchema.parse(params.arguments);
+                const projectId = decodeURIComponent(args.project_id);
+                const url = new URL(`${getEffectiveApiUrl()}/projects/${encodeURIComponent(getEffectiveProjectId(projectId))}/repository/branches/${encodeURIComponent(args.branch_name)}`);
+                const response = await fetch(url.toString(), {
+                    ...getFetchConfig(),
+                    method: "DELETE",
+                });
+                await handleGitLabError(response);
+                return {
+                    content: [{ type: "text", text: JSON.stringify({ status: "deleted", branch: args.branch_name }, null, 2) }],
+                };
+            }
             default:
                 throw new Error(`Unknown tool: ${params.name}`);
         }

package/build/schemas.js

@@ -595,6 +595,39 @@ export const GitLabCurrentUserSchema = z.object({
         extern_uid: z.string(),
     })).optional(),
 }).passthrough();
+// Group related schemas
+export const CreateGroupSchema = z.object({
+    name: z.string().describe("The name of the group"),
+    path: z.string().describe("The path of the group"),
+    description: z.string().optional().describe("The group's description"),
+    visibility: z.enum(["private", "internal", "public"]).optional().describe("The group's visibility level"),
+    parent_id: z.coerce.number().optional().describe("The parent group ID for creating a subgroup"),
+});
+export const GitLabGroupSchema = z.object({
+    id: z.coerce.string(),
+    name: z.string(),
+    path: z.string(),
+    description: z.string().nullable(),
+    visibility: z.string().optional(),
+    share_with_group_lock: z.boolean().optional(),
+    require_two_factor_authentication: z.boolean().optional(),
+    two_factor_grace_period: z.number().optional(),
+    project_creation_level: z.string().optional(),
+    auto_devops_enabled: z.boolean().nullable().optional(),
+    subgroup_creation_level: z.string().optional(),
+    emails_disabled: z.boolean().nullable().optional(),
+    mentions_disabled: z.boolean().nullable().optional(),
+    lfs_enabled: z.boolean().nullable().optional(),
+    avatar_url: z.string().nullable().optional(),
+    web_url: z.string(),
+    request_access_enabled: z.boolean().nullable().optional(),
+    full_name: z.string(),
+    full_path: z.string(),
+    file_template_project_id: z.number().nullable().optional(),
+    parent_id: z.coerce.string().nullable().optional(),
+    created_at: z.string().optional(),
+    statistics: z.any().optional(),
+});
 // Namespace related schemas
 // Base schema for project-related operations
 const ProjectParamsSchema = z.object({
@@ -1472,6 +1505,37 @@ export const CreateBranchSchema = ProjectParamsSchema.extend({
     branch: z.string().describe("Name for the new branch"),
     ref: z.string().optional().describe("Source branch/commit for new branch"),
 });
+export const GetBranchSchema = ProjectParamsSchema.extend({
+    branch_name: z.string().describe("Name of the branch"),
+});
+export const ListBranchesSchema = ProjectParamsSchema.extend({
+    search: z.string().optional().describe("Search term to filter branches by name"),
+}).merge(PaginationOptionsSchema);
+export const DeleteBranchSchema = ProjectParamsSchema.extend({
+    branch_name: z.string().describe("Name of the branch to delete"),
+});
+export const GitLabBranchSchema = z.object({
+    name: z.string(),
+    commit: z.object({
+        id: z.string(),
+        short_id: z.string(),
+        title: z.string(),
+        author_name: z.string(),
+        author_email: z.string(),
+        authored_date: z.string(),
+        committer_name: z.string(),
+        committer_email: z.string(),
+        committed_date: z.string(),
+        web_url: z.string(),
+    }),
+    merged: z.boolean(),
+    protected: z.boolean(),
+    developers_can_push: z.boolean(),
+    developers_can_merge: z.boolean(),
+    can_push: z.boolean(),
+    default: z.boolean(),
+    web_url: z.string().optional(),
+});
 export const GetBranchDiffsSchema = ProjectParamsSchema.extend({
     from: z.string().describe("The base branch or commit SHA to compare from"),
     to: z.string().describe("The target branch or commit SHA to compare to"),
@@ -1839,6 +1903,22 @@ export const DeleteIssueSchema = z.object({
     project_id: z.coerce.string().describe("Project ID or URL-encoded path"),
     issue_iid: z.coerce.string().describe("The internal ID of the project issue"),
 });
+export const UpdateIssueDescriptionPatchSchema = z.object({
+    project_id: z.coerce.string().describe("Project ID or URL-encoded path"),
+    issue_iid: z.coerce.string().describe("The internal ID of the project issue"),
+    patch_type: z.enum(["search_replace", "unified_diff"]).describe("Type of patch format to apply"),
+    patch: z
+        .string()
+        .min(1)
+        .max(50000)
+        .describe("The patch content to apply to the issue description"),
+    dry_run: z.coerce.boolean().optional().describe("If true, preview changes without updating the issue"),
+    create_note: z.coerce.boolean().optional().describe("If true, add a note summarizing the change after update"),
+    allow_multiple: z
+        .coerce.boolean()
+        .optional()
+        .describe("For search_replace: allow multiple matches to all be replaced (default: false — fail on duplicate)"),
+});
 // Issue links related schemas
 export const GitLabIssueLinkSchema = z.object({
     source_issue: GitLabIssueSchema,
@@ -2357,6 +2437,50 @@ export const GetCommitDiffSchema = z.object({
         .optional()
         .describe("Whether to return the full diff or only first page (default: false)"),
 });
+export const GetFileBlameSchema = z
+    .object({
+    project_id: z.coerce.string().describe("Project ID or complete URL-encoded path to project"),
+    file_path: z.string().describe("The full path of the file to blame, relative to repo root"),
+    ref: z
+        .string()
+        .describe("The name of branch, tag or commit (required by GitLab blame API)"),
+    range_start: z
+        .coerce.number()
+        .int()
+        .optional()
+        .describe("First line of the blame range (inclusive, 1-based). Both range[start] and range[end] must be set together."),
+    range_end: z
+        .coerce.number()
+        .int()
+        .optional()
+        .describe("Last line of the blame range (inclusive, 1-based). Both range[start] and range[end] must be set together."),
+})
+    .refine((v) => (v.range_start === undefined) === (v.range_end === undefined), {
+    message: "range_start and range_end must be provided together (both or neither). Passing only one silently returned full-file blame on GitLab side.",
+    path: ["range_end"],
+})
+    .refine((v) => v.range_start === undefined ||
+    v.range_end === undefined ||
+    v.range_start <= v.range_end, {
+    message: "range_start must be less than or equal to range_end.",
+    path: ["range_start"],
+});
+export const GitLabBlameEntrySchema = z.object({
+    lines: z.array(z.string()).describe("Source lines covered by this blame range"),
+    commit: z
+        .object({
+        id: z.string(),
+        parent_ids: z.array(z.string()).optional(),
+        message: z.string().optional(),
+        authored_date: z.string().optional(),
+        author_name: z.string().optional(),
+        author_email: z.string().optional(),
+        committed_date: z.string().optional(),
+        committer_name: z.string().optional(),
+        committer_email: z.string().optional(),
+    })
+        .passthrough(),
+});
 export const ListCommitStatusesSchema = z
     .object({
     project_id: z.coerce.string().describe("Project ID or complete URL-encoded path to project"),

package/build/test/test-get-file-blame.js

@@ -0,0 +1,145 @@
+import { describe, test, before, after } from "node:test";
+import assert from "node:assert";
+import { spawn } from "child_process";
+import { MockGitLabServer, findMockServerPort } from "./utils/mock-gitlab-server.js";
+const MOCK_TOKEN = "glpat-mock-token-12345";
+const TEST_PROJECT_ID = "123";
+const MOCK_BLAME = [
+    {
+        lines: ["line one", ""],
+        commit: {
+            id: "1111111111111111111111111111111111111111",
+            message: "feat: initial commit",
+            authored_date: "2024-01-01T00:00:00.000Z",
+            author_name: "Alice",
+            author_email: "alice@example.com",
+        },
+    },
+    {
+        lines: ["line three"],
+        commit: {
+            id: "2222222222222222222222222222222222222222",
+            message: "feat: add second change",
+            authored_date: "2024-02-02T00:00:00.000Z",
+            author_name: "Bob",
+            author_email: "bob@example.com",
+        },
+    },
+];
+async function callGetFileBlame(args, env) {
+    return new Promise((resolve, reject) => {
+        const proc = spawn("node", ["build/index.js"], {
+            stdio: ["pipe", "pipe", "pipe"],
+            env: {
+                ...process.env,
+                ...env,
+                GITLAB_READ_ONLY_MODE: "true",
+            },
+        });
+        let output = "";
+        let errorOutput = "";
+        proc.stdout?.on("data", (d) => (output += d));
+        proc.stderr?.on("data", (d) => (errorOutput += d));
+        proc.on("close", (code) => {
+            if (code !== 0)
+                return reject(new Error(`Process exited with code ${code}: ${errorOutput}`));
+            const line = output.split("\n").find((l) => l.startsWith("{"));
+            if (!line)
+                return reject(new Error("No JSON output found"));
+            try {
+                const response = JSON.parse(line);
+                if (response.error)
+                    return reject(response.error);
+                const content = response.result?.content?.[0]?.text;
+                if (content)
+                    return resolve(JSON.parse(content));
+                resolve(response.result);
+            }
+            catch (e) {
+                reject(e);
+            }
+        });
+        proc.stdin?.end(JSON.stringify({
+            jsonrpc: "2.0",
+            id: 1,
+            method: "tools/call",
+            params: { name: "get_file_blame", arguments: args },
+        }) + "\n");
+    });
+}
+describe("get_file_blame", () => {
+    let mockGitLab;
+    let mockGitLabUrl;
+    let lastQuery = {};
+    before(async () => {
+        const mockPort = await findMockServerPort(9000);
+        mockGitLab = new MockGitLabServer({
+            port: mockPort,
+            validTokens: [MOCK_TOKEN],
+        });
+        mockGitLab.addMockHandler("get", `/projects/${TEST_PROJECT_ID}/repository/files/src%2Fexample.txt/blame`, (req, res) => {
+            lastQuery = req.query;
+            res.json(MOCK_BLAME);
+        });
+        await mockGitLab.start();
+        mockGitLabUrl = mockGitLab.getUrl();
+    });
+    after(async () => {
+        await mockGitLab.stop();
+    });
+    test("returns blame entries for a file at ref", async () => {
+        const blame = await callGetFileBlame({
+            project_id: TEST_PROJECT_ID,
+            file_path: "src/example.txt",
+            ref: "main",
+        }, {
+            GITLAB_API_URL: `${mockGitLabUrl}/api/v4`,
+            GITLAB_PERSONAL_ACCESS_TOKEN: MOCK_TOKEN,
+        });
+        assert.ok(Array.isArray(blame), "Response should be an array");
+        assert.strictEqual(blame.length, 2, "Two blame entries expected");
+        assert.strictEqual(blame[1].commit.id, "2222222222222222222222222222222222222222", "second entry commit id matches");
+        assert.deepStrictEqual(blame[1].lines, ["line three"]);
+        assert.strictEqual(lastQuery.ref, "main", "ref propagated to GitLab API");
+        assert.ok(!("range[start]" in lastQuery) && !("range[end]" in lastQuery), "no range params when omitted");
+    });
+    test("passes range[start]/range[end] when both set", async () => {
+        await callGetFileBlame({
+            project_id: TEST_PROJECT_ID,
+            file_path: "src/example.txt",
+            ref: "main",
+            range_start: 10,
+            range_end: 20,
+        }, {
+            GITLAB_API_URL: `${mockGitLabUrl}/api/v4`,
+            GITLAB_PERSONAL_ACCESS_TOKEN: MOCK_TOKEN,
+        });
+        assert.strictEqual(lastQuery["range[start]"], "10");
+        assert.strictEqual(lastQuery["range[end]"], "20");
+    });
+    test("rejects partial range (range_start only) at schema layer", async () => {
+        await assert.rejects(() => callGetFileBlame({
+            project_id: TEST_PROJECT_ID,
+            file_path: "src/example.txt",
+            ref: "main",
+            range_start: 10,
+        }, {
+            GITLAB_API_URL: `${mockGitLabUrl}/api/v4`,
+            GITLAB_PERSONAL_ACCESS_TOKEN: MOCK_TOKEN,
+        }), (e) => typeof e?.message === "string" &&
+            e.message.includes("range_start and range_end must be provided together"));
+    });
+    test("rejects inverted range (start > end) at schema layer", async () => {
+        await assert.rejects(() => callGetFileBlame({
+            project_id: TEST_PROJECT_ID,
+            file_path: "src/example.txt",
+            ref: "main",
+            range_start: 20,
+            range_end: 10,
+        }, {
+            GITLAB_API_URL: `${mockGitLabUrl}/api/v4`,
+            GITLAB_PERSONAL_ACCESS_TOKEN: MOCK_TOKEN,
+        }), (e) => typeof e?.message === "string" &&
+            e.message.includes("range_start must be less than or equal to range_end"));
+    });
+});