From 27a4a0a85ba6d755295739ad43274d287134dcdf Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 06:00:36 -0400
Subject: [PATCH 01/44] Add GitHub auth process
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

🪄 Commit via GitWand
---
 .gitignore                                    |   2 +
 CHANGELOG.md                                  |   8 +
 apps/desktop/dev-server.mjs                   |  39 +
 apps/desktop/src-tauri/src/commands/gh.rs     |  30 +
 .../src-tauri/src/commands/github_api.rs      | 699 ++++++++++++++++++
 apps/desktop/src-tauri/src/commands/mod.rs    |   1 +
 apps/desktop/src-tauri/src/commands/ops.rs    |  34 +
 apps/desktop/src-tauri/src/lib.rs             |   4 +
 apps/desktop/src-tauri/src/types.rs           |  27 +
 .../src/components/SettingsAccountsTab.vue    | 127 +++-
 apps/desktop/src/composables/useGithubAuth.ts | 148 ++++
 apps/desktop/src/locales/en.ts                |   7 +
 apps/desktop/src/locales/es.ts                |   7 +
 apps/desktop/src/locales/fr.ts                |   7 +
 apps/desktop/src/locales/pt-BR.ts             |   7 +
 apps/desktop/src/locales/zh-CN.ts             |   7 +
 apps/desktop/src/utils/backend-pr.ts          |  69 ++
 17 files changed, 1216 insertions(+), 7 deletions(-)
 create mode 100644 apps/desktop/src-tauri/src/commands/github_api.rs
 create mode 100644 apps/desktop/src/composables/useGithubAuth.ts

diff --git a/.gitignore b/.gitignore
index 44a4ff1e..a5226469 100644
--- a/.gitignore
+++ b/.gitignore
@@ -62,3 +62,5 @@ research/
 .release-notes-v1.5.0.md
 website/.vitepress/.temp
 .claude/worktrees/
+
+.gitwandrc
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8ea8c93d..0b14cbcc 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -7,6 +7,14 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Added
+
+- **Sign in with GitHub (no `gh` CLI required)** — Settings → Accounts now offers a "Sign in with GitHub" button using the OAuth device flow. The resulting token is stored in the OS keychain; once present, the GitHub PR workflow (list, count, detail, diff, checks, files, create, merge, checkout, mark-ready) routes through the GitHub REST API instead of shelling out to `gh`. The `gh` CLI still works as before when no Settings token is configured — the ambient `GH_TOKEN`/`GITHUB_TOKEN` env path is unchanged.
+
+### Notes
+
+- Ships with GitWand's registered GitHub OAuth App `client_id` (`Ov23licwiCpPiRPRodWN`, public — device flow enabled) baked into `github_api.rs`. Override at runtime or build time via `GITWAND_GH_CLIENT_ID` if needed.
+
 ## [2.17.0] - 2026-06-04
 
 v2.17 rounds out the agent-CLI lineup with **opencode** as a first-class AI provider, and gives every CLI agent its own model picker — a second select under the provider dropdown, scoped per provider so switching back restores the previous choice.
diff --git a/apps/desktop/dev-server.mjs b/apps/desktop/dev-server.mjs
index 913efd36..d1f6ef86 100644
--- a/apps/desktop/dev-server.mjs
+++ b/apps/desktop/dev-server.mjs
@@ -152,6 +152,12 @@ function gitSpawn(args, cwd) {
   });
 }
 
+// ── Mock state: GitHub OAuth device flow (dev:web only) ──────────────────────
+// The real flow lives in Rust (`github_api.rs`). In the browser mock we fake it
+// so the Settings > Accounts UI can be exercised without Tauri. It does NOT log
+// you in — it just returns a static code then "succeeds" after a couple polls.
+let _mockGithubPolls = 0;
+
 /**
  * Get a GitHub OAuth token — tries in order:
  *  1. GH_TOKEN / GITHUB_TOKEN env vars
@@ -2179,6 +2185,39 @@ async function handleRequest(req, res) {
 
     // ─── GitHub REST API endpoints (no gh binary needed) ──────
 
+    // POST /api/github-device-start — MOCK device flow (dev:web only).
+    // Returns a static user code + verification URL. The frontend opens the URL
+    // and starts polling; see /api/github-device-poll below.
+    if (url.pathname === "/api/github-device-start" && req.method === "POST") {
+      _mockGithubPolls = 0;
+      // NOTE: verification_uri intentionally does NOT point at the real
+      // github.com/login/device — this is a fake flow and a real code is never
+      // issued. Sending the user to GitHub with a bogus code only confuses.
+      return jsonResponse(req, res, {
+        device_code: "mock-device-code",
+        user_code: "DEV-MOCK",
+        verification_uri: "about:blank#gitwand-dev-mock",
+        verification_uri_complete: "",
+        expires_in: 900,
+        interval: 1,
+      });
+    }
+
+    // POST /api/github-device-poll — MOCK: "pending" twice, then "success".
+    // No real token is stored; this only unblocks UI iteration in dev:web.
+    if (url.pathname === "/api/github-device-poll" && req.method === "POST") {
+      _mockGithubPolls += 1;
+      if (_mockGithubPolls < 3) {
+        return jsonResponse(req, res, { status: "pending", login: "", error: "" });
+      }
+      return jsonResponse(req, res, { status: "success", login: "dev-user", error: "" });
+    }
+
+    // POST /api/github-token-present — MOCK: never "logged in" in dev:web.
+    if (url.pathname === "/api/github-token-present" && req.method === "POST") {
+      return jsonResponse(req, res, false);
+    }
+
     // GET /api/gh-current-user — returns the authenticated GitHub login
     if (url.pathname === "/api/gh-current-user" && req.method === "GET") {
       try {
diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index 3c350c78..a34489b1 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -15,6 +15,7 @@
 
 use crate::git::*;
 use crate::types::*;
+use crate::commands::github_api;
 
 /// List pull requests using `gh` CLI.
 ///
@@ -45,6 +46,11 @@ pub(crate) fn gh_list_prs(
     limit: Option<i64>,
     offset: Option<i64>,
 ) -> Result<Vec<PullRequest>, String> {
+    // Settings-managed token present → tokenless REST path (no `gh` needed).
+    if let Some(tok) = github_api::settings_github_token() {
+        let st = if state.is_empty() { "open" } else { &state };
+        return github_api::rest_list_prs(&cwd, st, limit.unwrap_or(10), offset.unwrap_or(0), &tok);
+    }
     let st = if state.is_empty() { "open" } else { &state };
     // Naïve pagination: `gh pr list` has no native --offset, so we ask for
     // `offset + limit` and slice. Works correctly for the small windows the
@@ -101,6 +107,9 @@ pub(crate) fn gh_list_prs(
 /// dashboard can still render — the caller decides whether to surface.
 #[tauri::command]
 pub(crate) fn gh_pr_count(cwd: String, state: String) -> Result<i64, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_pr_count(&cwd, &state, &tok);
+    }
     let st = state.to_lowercase();
     let states_expr = match st.as_str() {
         "closed" => "[CLOSED]",
@@ -191,6 +200,9 @@ pub(crate) fn gh_create_pr(
     draft: bool,
     reviewers: Option<Vec<String>>,
 ) -> Result<PullRequest, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_create_pr(&cwd, title, body, base, draft, reviewers, &tok);
+    }
     let mut args = vec![
         "pr".to_string(),
         "create".to_string(),
@@ -368,6 +380,9 @@ pub(crate) fn gh_list_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCan
 /// Checkout a PR branch locally using `gh` CLI.
 #[tauri::command]
 pub(crate) fn gh_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
+    if github_api::settings_github_token().is_some() {
+        return github_api::rest_checkout_pr(&cwd, number);
+    }
     let output = hidden_cmd("gh")
         .args(["pr", "checkout", &number.to_string()])
         .current_dir(&cwd)
@@ -385,6 +400,9 @@ pub(crate) fn gh_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
 /// Merge a PR using `gh` CLI.
 #[tauri::command]
 pub(crate) fn gh_merge_pr(cwd: String, number: i64, method: String) -> Result<(), String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_merge_pr(&cwd, number, &method, &tok);
+    }
     let merge_flag = match method.as_str() {
         "squash" => "--squash",
         "rebase" => "--rebase",
@@ -411,6 +429,9 @@ pub(crate) fn gh_merge_pr(cwd: String, number: i64, method: String) -> Result<()
 /// "Pull request #N is already marked as ready for review."
 #[tauri::command]
 pub(crate) fn gh_pr_ready(cwd: String, number: i64) -> Result<(), String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_pr_ready(&cwd, number, &tok);
+    }
     let output = hidden_cmd("gh")
         .args(["pr", "ready", &number.to_string()])
         .current_dir(&cwd)
@@ -428,6 +449,9 @@ pub(crate) fn gh_pr_ready(cwd: String, number: i64) -> Result<(), String> {
 /// Get detailed PR information using `gh` CLI.
 #[tauri::command]
 pub(crate) fn gh_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_pr_detail(&cwd, number, &tok);
+    }
     let output = hidden_cmd("gh")
         .args([
             "pr", "view", &number.to_string(),
@@ -451,6 +475,9 @@ pub(crate) fn gh_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail
 /// Get the diff of a PR using `gh` CLI.
 #[tauri::command]
 pub(crate) fn gh_pr_diff(cwd: String, number: i64) -> Result<String, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_pr_diff(&cwd, number, &tok);
+    }
     let output = hidden_cmd("gh")
         .args(["pr", "diff", &number.to_string()])
         .current_dir(&cwd)
@@ -467,6 +494,9 @@ pub(crate) fn gh_pr_diff(cwd: String, number: i64) -> Result<String, String> {
 /// Get CI checks for a PR using `gh` CLI.
 #[tauri::command]
 pub(crate) fn gh_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_pr_checks(&cwd, number, &tok);
+    }
     let output = hidden_cmd("gh")
         .args([
             "pr", "checks", &number.to_string(),
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
new file mode 100644
index 00000000..32d66d59
--- /dev/null
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -0,0 +1,699 @@
+//! GitHub REST/OAuth Tauri commands — tokenless PR workflow.
+//!
+//! ## Why this exists
+//!
+//! The historical GitHub integration (`gh.rs`, `ops.rs`) shells out to the
+//! `gh` CLI. That requires the user to install and `gh auth login` from a
+//! terminal — a friction point for non-CLI users. This module adds a second,
+//! self-contained auth path:
+//!
+//!   1. **OAuth device flow** (`github_device_start` / `github_device_poll`):
+//!      "Sign in with GitHub" from Settings → Accounts. The resulting token is
+//!      stored in the OS keychain under `service = "gitwand:github"`,
+//!      `account = "oauth"`.
+//!   2. **REST API calls** via `curl` (mirrors `bitbucket.rs`): when a keychain
+//!      token is present, the `gh_*` commands route here instead of spawning
+//!      `gh`, so the `gh` binary is no longer required.
+//!
+//! ## Routing rule (see `settings_github_token`)
+//!
+//! REST is used **only** when an explicit Settings token exists in the keychain.
+//! The ambient `GH_TOKEN` / `GITHUB_TOKEN` env vars (auto-populated from
+//! `gh auth token` on macOS, see `shell_env.rs`) keep driving the `gh` CLI path
+//! exactly as before — we never silently change behaviour for existing `gh`
+//! users. Token in keychain ⇒ REST; otherwise ⇒ `gh`.
+//!
+//! ## Scope
+//!
+//! Core PR workflow only: current-user, list, count, detail, diff, checks,
+//! files, create, merge, checkout, ready. Comments / reviews / reviewer
+//! candidates / intelligence keep the `gh` path (or degrade gracefully).
+//!
+//! ## Security note
+//!
+//! The token is injected via the `Authorization` header in `curl` process
+//! arguments — same exposure profile as `bitbucket.rs` (acceptable for now;
+//! harden via `curl --config -` stdin piping in a follow-up). The token is
+//! never logged or included in error messages.
+
+use crate::git::{git_cmd, hidden_cmd};
+use crate::types::*;
+
+// ─── Constants ──────────────────────────────────────────────────────────────
+
+/// Keychain service for the Settings-managed GitHub token.
+pub(crate) const GH_SERVICE: &str = "gitwand:github";
+/// Keychain account key — fixed, since the REST helpers resolve the token
+/// without knowing the login up front.
+pub(crate) const GH_ACCOUNT: &str = "oauth";
+
+/// GitHub OAuth App client_id (public, not a secret — safe to ship).
+///
+/// **Must be replaced** with a real client_id from a registered GitHub OAuth
+/// App that has *device flow* enabled
+/// (github.com/settings/developers → New OAuth App → "Enable Device Flow").
+///
+/// Resolution order:
+///   1. `GITWAND_GH_CLIENT_ID` at **runtime** (env var of the running app) —
+///      lets `GITWAND_GH_CLIENT_ID=… pnpm tauri dev` work without fighting
+///      cargo's build cache.
+///   2. `GITWAND_GH_CLIENT_ID` baked in at **build time** (release builds).
+///   3. Placeholder — surfaces a clear "not configured" error.
+fn client_id() -> String {
+    if let Ok(v) = std::env::var("GITWAND_GH_CLIENT_ID") {
+        let v = v.trim().to_string();
+        if !v.is_empty() {
+            return v;
+        }
+    }
+    option_env!("GITWAND_GH_CLIENT_ID")
+        // GitWand's registered GitHub OAuth App (device flow enabled). Public
+        // client_id — not a secret, safe to ship.
+        .unwrap_or("Ov23licwiCpPiRPRodWN")
+        .to_string()
+}
+
+const API_BASE: &str = "https://api.github.com";
+
+// ─── Token resolution ───────────────────────────────────────────────────────
+
+/// Read the Settings-managed GitHub token from the OS keychain.
+///
+/// Returns `Some(token)` only when the user has explicitly signed in via
+/// Settings > Accounts. Ambient env tokens are intentionally ignored here so
+/// existing `gh` users are unaffected (see module docs).
+pub(crate) fn settings_github_token() -> Option<String> {
+    let entry = keyring::Entry::new(GH_SERVICE, GH_ACCOUNT).ok()?;
+    let tok = entry.get_password().ok()?;
+    let tok = tok.trim().to_string();
+    if tok.is_empty() { None } else { Some(tok) }
+}
+
+// ─── Owner/repo resolution ──────────────────────────────────────────────────
+
+/// Parse `(owner, repo)` from `git remote get-url origin` in `cwd`.
+///
+/// Handles HTTPS and SSH GitHub remote URL formats.
+fn owner_repo(cwd: &str) -> Result<(String, String), String> {
+    let output = hidden_cmd("git")
+        .args(["remote", "get-url", "origin"])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git remote get-url: {}", e))?;
+    if !output.status.success() {
+        return Err("No 'origin' remote found in this repo.".to_string());
+    }
+    let url = String::from_utf8_lossy(&output.stdout).trim().to_string();
+
+    let path = if url.starts_with("git@") || url.contains("@github.com:") {
+        // git@github.com:owner/repo.git → owner/repo
+        url.splitn(2, ':')
+            .nth(1)
+            .unwrap_or("")
+            .trim_end_matches(".git")
+            .to_string()
+    } else {
+        // https://github.com/owner/repo.git → owner/repo
+        url.trim_end_matches('/')
+            .trim_end_matches(".git")
+            .splitn(2, "github.com/")
+            .nth(1)
+            .unwrap_or("")
+            .to_string()
+    };
+
+    let mut parts = path.splitn(2, '/');
+    let owner = parts.next().unwrap_or("").to_string();
+    let repo = parts.next().unwrap_or("").to_string();
+    if owner.is_empty() || repo.is_empty() {
+        return Err(format!("Could not parse GitHub owner/repo from remote URL: {}", url));
+    }
+    Ok((owner, repo))
+}
+
+/// Current branch name (`git rev-parse --abbrev-ref HEAD`).
+fn current_branch(cwd: &str) -> Result<String, String> {
+    let output = hidden_cmd("git")
+        .args(["rev-parse", "--abbrev-ref", "HEAD"])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git rev-parse: {}", e))?;
+    if !output.status.success() {
+        return Err("Could not determine current branch.".to_string());
+    }
+    Ok(String::from_utf8_lossy(&output.stdout).trim().to_string())
+}
+
+// ─── HTTP transport (curl) ──────────────────────────────────────────────────
+
+/// Run a `curl` request and return `(http_status, body_text)`.
+///
+/// `accept` selects the representation (`application/vnd.github+json` for JSON,
+/// `application/vnd.github.v3.diff` for raw diffs). The token, when present,
+/// is sent as a Bearer credential.
+fn curl_raw(
+    method: &str,
+    url: &str,
+    token: Option<&str>,
+    body_json: Option<&str>,
+    accept: &str,
+) -> Result<(i32, String), String> {
+    // `-w` appends the HTTP status on its own marker line so we can split it
+    // off the body without a second request.
+    const MARKER: &str = "\n__GW_HTTP_STATUS__";
+    let mut args: Vec<String> = vec![
+        "-s".to_string(),
+        "-X".to_string(), method.to_string(),
+        "-H".to_string(), format!("Accept: {}", accept),
+        "-H".to_string(), "User-Agent: GitWand".to_string(),
+        "-H".to_string(), "X-GitHub-Api-Version: 2022-11-28".to_string(),
+    ];
+    if let Some(tok) = token {
+        args.push("-H".to_string());
+        args.push(format!("Authorization: Bearer {}", tok));
+    }
+    if let Some(b) = body_json {
+        args.push("-H".to_string());
+        args.push("Content-Type: application/json".to_string());
+        args.push("-d".to_string());
+        args.push(b.to_string());
+    }
+    args.push("-w".to_string());
+    args.push(format!("{}%{{http_code}}", MARKER));
+    args.push(url.to_string());
+
+    let output = hidden_cmd("curl")
+        .args(&args)
+        .output()
+        .map_err(|e| format!("curl not found or failed to spawn: {}", e))?;
+
+    let combined = String::from_utf8_lossy(&output.stdout).to_string();
+    let (body, status) = match combined.rsplit_once(MARKER) {
+        Some((b, s)) => (b.to_string(), s.trim().parse::<i32>().unwrap_or(0)),
+        None => (combined, 0),
+    };
+    Ok((status, body))
+}
+
+/// Perform a GitHub JSON API call. Maps HTTP ≥ 400 to a user-facing error,
+/// preferring GitHub's `message` field.
+fn api_json(
+    method: &str,
+    url: &str,
+    token: &str,
+    body_json: Option<&str>,
+) -> Result<serde_json::Value, String> {
+    let (status, body) = curl_raw(method, url, Some(token), body_json, "application/vnd.github+json")?;
+    if status >= 400 {
+        let msg = serde_json::from_str::<serde_json::Value>(body.trim())
+            .ok()
+            .and_then(|v| v.get("message").and_then(|m| m.as_str()).map(String::from))
+            .unwrap_or_else(|| format!("HTTP {}", status));
+        return Err(format!("GitHub API error ({}): {}", status, msg));
+    }
+    if body.trim().is_empty() {
+        return Ok(serde_json::Value::Null);
+    }
+    serde_json::from_str(body.trim())
+        .map_err(|e| format!("Failed to parse GitHub response: {}", e))
+}
+
+// ─── JSON field helpers ─────────────────────────────────────────────────────
+
+fn js(v: &serde_json::Value, key: &str) -> String {
+    v.get(key).and_then(|x| x.as_str()).unwrap_or("").to_string()
+}
+
+fn ji(v: &serde_json::Value, key: &str) -> i64 {
+    v.get(key).and_then(|x| x.as_i64()).unwrap_or(0)
+}
+
+fn jb(v: &serde_json::Value, key: &str) -> bool {
+    v.get(key).and_then(|x| x.as_bool()).unwrap_or(false)
+}
+
+/// `obj[outer][inner]` as a string.
+fn jnested(v: &serde_json::Value, outer: &str, inner: &str) -> String {
+    v.get(outer).and_then(|o| o.get(inner)).and_then(|s| s.as_str()).unwrap_or("").to_string()
+}
+
+/// Collect `[{ key: "..." }]` string fields into a Vec.
+fn jlogins(v: &serde_json::Value, arr_key: &str, field: &str) -> Vec<String> {
+    v.get(arr_key)
+        .and_then(|a| a.as_array())
+        .map(|arr| {
+            arr.iter()
+                .filter_map(|u| u.get(field).and_then(|s| s.as_str()).map(String::from))
+                .collect()
+        })
+        .unwrap_or_default()
+}
+
+// ─── Mapping ────────────────────────────────────────────────────────────────
+
+/// Map a GitHub REST pull-request object to `PullRequest`.
+fn json_to_pr(pr: &serde_json::Value) -> PullRequest {
+    let merged = pr.get("merged_at").map(|m| !m.is_null()).unwrap_or(false);
+    let state = if merged { "merged".to_string() } else { js(pr, "state") };
+    PullRequest {
+        number: ji(pr, "number"),
+        title: js(pr, "title"),
+        state,
+        author: jnested(pr, "user", "login"),
+        branch: jnested(pr, "head", "ref"),
+        base: jnested(pr, "base", "ref"),
+        draft: jb(pr, "draft"),
+        created_at: js(pr, "created_at"),
+        updated_at: js(pr, "updated_at"),
+        url: js(pr, "html_url"),
+        additions: ji(pr, "additions"),
+        deletions: ji(pr, "deletions"),
+        labels: jlogins(pr, "labels", "name"),
+        assignees: jlogins(pr, "assignees", "login"),
+        review_requested: jlogins(pr, "requested_reviewers", "login"),
+        review_decision: String::new(),
+        merge_state_status: js(pr, "mergeable_state").to_uppercase(),
+        checks_rollup: String::new(),
+        comment_count: ji(pr, "comments"),
+    }
+}
+
+/// Map a GitHub REST pull-request object to `PullRequestDetail`.
+fn json_to_detail(pr: &serde_json::Value) -> PullRequestDetail {
+    let merged_at = pr.get("merged_at").and_then(|m| m.as_str()).unwrap_or("").to_string();
+    let merged = !merged_at.is_empty();
+    let state = if merged { "merged".to_string() } else { js(pr, "state") };
+    // GitHub `mergeable`: true / false / null (still computing).
+    let mergeable = match pr.get("mergeable").and_then(|m| m.as_bool()) {
+        Some(true) => "MERGEABLE".to_string(),
+        Some(false) => "CONFLICTING".to_string(),
+        None => "UNKNOWN".to_string(),
+    };
+    PullRequestDetail {
+        number: ji(pr, "number"),
+        title: js(pr, "title"),
+        body: js(pr, "body"),
+        state,
+        author: jnested(pr, "user", "login"),
+        branch: jnested(pr, "head", "ref"),
+        base: jnested(pr, "base", "ref"),
+        draft: jb(pr, "draft"),
+        created_at: js(pr, "created_at"),
+        updated_at: js(pr, "updated_at"),
+        merged_at,
+        url: js(pr, "html_url"),
+        additions: ji(pr, "additions"),
+        deletions: ji(pr, "deletions"),
+        changed_files: ji(pr, "changed_files"),
+        comments: ji(pr, "comments"),
+        review_comments: ji(pr, "review_comments"),
+        labels: jlogins(pr, "labels", "name"),
+        reviewers: jlogins(pr, "requested_reviewers", "login"),
+        mergeable,
+        checks_status: String::new(),
+    }
+}
+
+// ─── REST PR workflow ───────────────────────────────────────────────────────
+
+pub(crate) fn rest_current_user(token: &str) -> Result<String, String> {
+    let v = api_json("GET", &format!("{}/user", API_BASE), token, None)?;
+    let login = v.get("login").and_then(|l| l.as_str()).unwrap_or("").to_string();
+    if login.is_empty() {
+        return Err("GitHub returned an empty login for this token.".to_string());
+    }
+    Ok(login)
+}
+
+pub(crate) fn rest_list_prs(
+    cwd: &str,
+    state: &str,
+    limit: i64,
+    offset: i64,
+    token: &str,
+) -> Result<Vec<PullRequest>, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let page = limit.max(1);
+    let off = offset.max(0);
+    // Naïve pagination identical to gh_list_prs: fetch offset+limit, then slice.
+    let per_page = (page + off).clamp(1, 100);
+    // "merged" is not a native GitHub pulls state — fetch closed and filter.
+    let api_state = match state {
+        "closed" => "closed",
+        "merged" => "closed",
+        "all" => "all",
+        _ => "open",
+    };
+    let url = format!(
+        "{}/repos/{}/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
+        API_BASE, owner, repo, api_state, per_page
+    );
+    let v = api_json("GET", &url, token, None)?;
+    let arr = v.as_array().cloned().unwrap_or_default();
+    let mut prs: Vec<PullRequest> = arr
+        .iter()
+        .filter(|pr| {
+            if state == "merged" {
+                pr.get("merged_at").map(|m| !m.is_null()).unwrap_or(false)
+            } else {
+                true
+            }
+        })
+        .map(json_to_pr)
+        .collect();
+    if off > 0 {
+        let skip = (off as usize).min(prs.len());
+        prs.drain(..skip);
+    }
+    prs.truncate(page as usize);
+    Ok(prs)
+}
+
+pub(crate) fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let qualifier = match state.to_lowercase().as_str() {
+        "closed" => "+state:closed",
+        "merged" => "+is:merged",
+        "all" => "",
+        _ => "+state:open",
+    };
+    // /search/issues returns total_count without expanding every item.
+    let url = format!(
+        "{}/search/issues?q=repo:{}/{}+type:pr{}&per_page=1",
+        API_BASE, owner, repo, qualifier
+    );
+    let v = api_json("GET", &url, token, None)?;
+    Ok(v.get("total_count").and_then(|c| c.as_i64()).unwrap_or(0))
+}
+
+pub(crate) fn rest_pr_detail(cwd: &str, number: i64, token: &str) -> Result<PullRequestDetail, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let url = format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number);
+    let v = api_json("GET", &url, token, None)?;
+    Ok(json_to_detail(&v))
+}
+
+pub(crate) fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let url = format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number);
+    let (status, body) = curl_raw("GET", &url, Some(token), None, "application/vnd.github.v3.diff")?;
+    if status >= 400 {
+        return Err(format!("GitHub diff failed (HTTP {})", status));
+    }
+    Ok(body)
+}
+
+pub(crate) fn rest_pr_checks(cwd: &str, number: i64, token: &str) -> Result<Vec<CICheck>, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    // Resolve the PR head SHA, then list check-runs for that commit.
+    let pr = api_json(
+        "GET",
+        &format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number),
+        token,
+        None,
+    )?;
+    let sha = jnested(&pr, "head", "sha");
+    if sha.is_empty() {
+        return Ok(Vec::new());
+    }
+    let url = format!("{}/repos/{}/{}/commits/{}/check-runs", API_BASE, owner, repo, sha);
+    let v = match api_json("GET", &url, token, None) {
+        Ok(v) => v,
+        Err(_) => return Ok(Vec::new()), // no checks configured — not fatal
+    };
+    let runs = v.get("check_runs").and_then(|r| r.as_array()).cloned().unwrap_or_default();
+    let checks = runs
+        .iter()
+        .map(|run| CICheck {
+            name: js(run, "name"),
+            state: js(run, "status"),
+            conclusion: js(run, "conclusion"),
+            details_url: js(run, "html_url"),
+        })
+        .collect();
+    Ok(checks)
+}
+
+pub(crate) fn rest_pr_files(cwd: &str, number: i64, token: &str) -> Result<Vec<String>, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let url = format!("{}/repos/{}/{}/pulls/{}/files?per_page=100", API_BASE, owner, repo, number);
+    let v = api_json("GET", &url, token, None)?;
+    let files = v
+        .as_array()
+        .map(|arr| arr.iter().map(|f| js(f, "filename")).filter(|s| !s.is_empty()).collect())
+        .unwrap_or_default();
+    Ok(files)
+}
+
+pub(crate) fn rest_create_pr(
+    cwd: &str,
+    title: String,
+    body: String,
+    base: String,
+    draft: bool,
+    reviewers: Option<Vec<String>>,
+    token: &str,
+) -> Result<PullRequest, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let head = current_branch(cwd)?;
+
+    // Resolve base from the repo default branch when the caller left it empty.
+    let base = if base.is_empty() {
+        let repo_info = api_json("GET", &format!("{}/repos/{}/{}", API_BASE, owner, repo), token, None)?;
+        let default = js(&repo_info, "default_branch");
+        if default.is_empty() { "main".to_string() } else { default }
+    } else {
+        base
+    };
+
+    let payload = serde_json::json!({
+        "title": title,
+        "head": head,
+        "base": base,
+        "body": body,
+        "draft": draft,
+    });
+    let url = format!("{}/repos/{}/{}/pulls", API_BASE, owner, repo);
+    let created = api_json("POST", &url, token, Some(&payload.to_string()))?;
+    let number = ji(&created, "number");
+
+    // Best-effort reviewer request — never fail PR creation if this errors.
+    if let Some(revs) = reviewers {
+        let cleaned: Vec<String> = revs
+            .into_iter()
+            .map(|r| r.trim().trim_start_matches('@').to_string())
+            .filter(|r| !r.is_empty())
+            .collect();
+        if !cleaned.is_empty() && number > 0 {
+            let rev_payload = serde_json::json!({ "reviewers": cleaned });
+            let rev_url = format!(
+                "{}/repos/{}/{}/pulls/{}/requested_reviewers",
+                API_BASE, owner, repo, number
+            );
+            let _ = api_json("POST", &rev_url, token, Some(&rev_payload.to_string()));
+        }
+    }
+
+    Ok(json_to_pr(&created))
+}
+
+pub(crate) fn rest_merge_pr(cwd: &str, number: i64, method: &str, token: &str) -> Result<(), String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let merge_method = match method {
+        "squash" => "squash",
+        "rebase" => "rebase",
+        _ => "merge",
+    };
+    // Capture the head branch first so we can delete it after a clean merge.
+    let pr = api_json(
+        "GET",
+        &format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number),
+        token,
+        None,
+    )?;
+    let branch = jnested(&pr, "head", "ref");
+
+    let payload = serde_json::json!({ "merge_method": merge_method });
+    let url = format!("{}/repos/{}/{}/pulls/{}/merge", API_BASE, owner, repo, number);
+    api_json("PUT", &url, token, Some(&payload.to_string()))?;
+
+    // Best-effort branch deletion (mirrors `gh pr merge --delete-branch`).
+    if !branch.is_empty() {
+        let ref_url = format!("{}/repos/{}/{}/git/refs/heads/{}", API_BASE, owner, repo, branch);
+        let _ = api_json("DELETE", &ref_url, token, None);
+    }
+    Ok(())
+}
+
+pub(crate) fn rest_pr_ready(cwd: &str, number: i64, token: &str) -> Result<(), String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    // Draft→ready is GraphQL-only; resolve the PR node_id first.
+    let pr = api_json(
+        "GET",
+        &format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number),
+        token,
+        None,
+    )?;
+    let node_id = js(&pr, "node_id");
+    if node_id.is_empty() {
+        return Err("Could not resolve PR node_id for ready conversion.".to_string());
+    }
+    let query = format!(
+        "mutation {{ markPullRequestReadyForReview(input: {{ pullRequestId: \"{}\" }}) {{ pullRequest {{ isDraft }} }} }}",
+        node_id
+    );
+    let payload = serde_json::json!({ "query": query });
+    let v = api_json("POST", &format!("{}/graphql", API_BASE), token, Some(&payload.to_string()))?;
+    if let Some(errors) = v.get("errors").and_then(|e| e.as_array()) {
+        if !errors.is_empty() {
+            let msg = errors[0].get("message").and_then(|m| m.as_str()).unwrap_or("GraphQL error");
+            return Err(format!("Mark-ready failed: {}", msg));
+        }
+    }
+    Ok(())
+}
+
+pub(crate) fn rest_checkout_pr(cwd: &str, number: i64) -> Result<(), String> {
+    // Local git fetch of the PR head ref — token not needed (git uses its own
+    // credential helper). Works for same-repo and fork PRs alike.
+    let local = format!("pr-{}", number);
+    let refspec = format!("pull/{}/head:{}", number, local);
+    let fetch = git_cmd()
+        .args(["fetch", "origin", &refspec])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git fetch failed: {}", e))?;
+    if !fetch.status.success() {
+        return Err(format!(
+            "git fetch pull/{}/head failed: {}",
+            number,
+            String::from_utf8_lossy(&fetch.stderr).trim()
+        ));
+    }
+    let checkout = git_cmd()
+        .args(["checkout", &local])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git checkout failed: {}", e))?;
+    if !checkout.status.success() {
+        return Err(format!(
+            "git checkout {} failed: {}",
+            local,
+            String::from_utf8_lossy(&checkout.stderr).trim()
+        ));
+    }
+    Ok(())
+}
+
+// ─── OAuth device flow ──────────────────────────────────────────────────────
+
+/// Begin the OAuth device flow. Returns the user code + verification URL the
+/// frontend shows, plus the `device_code` used for polling.
+#[tauri::command]
+pub(crate) fn github_device_start() -> Result<GithubDeviceCode, String> {
+    let cid = client_id();
+    if cid.starts_with("REPLACE_WITH") {
+        return Err(
+            "GitHub login is not configured: missing OAuth App client_id. \
+             Set GITWAND_GH_CLIENT_ID at build time or update github_api.rs."
+                .to_string(),
+        );
+    }
+    // GitHub's OAuth endpoints accept a JSON body when Content-Type is JSON
+    // (which `curl_raw` sets whenever a body is present).
+    let body = serde_json::json!({ "client_id": cid, "scope": "repo" });
+    let (status, text) = curl_raw(
+        "POST",
+        "https://github.com/login/device/code",
+        None,
+        Some(&body.to_string()),
+        "application/json",
+    )?;
+    if status >= 400 {
+        return Err(format!("GitHub device-code request failed (HTTP {})", status));
+    }
+    let v: serde_json::Value = serde_json::from_str(text.trim())
+        .map_err(|e| format!("Failed to parse device-code response: {}", e))?;
+    if let Some(err) = v.get("error").and_then(|e| e.as_str()) {
+        return Err(format!("GitHub device-code error: {}", err));
+    }
+    Ok(GithubDeviceCode {
+        device_code: js(&v, "device_code"),
+        user_code: js(&v, "user_code"),
+        verification_uri: js(&v, "verification_uri"),
+        verification_uri_complete: js(&v, "verification_uri_complete"),
+        expires_in: ji(&v, "expires_in"),
+        interval: ji(&v, "interval").max(5),
+    })
+}
+
+/// Poll once for the OAuth access token.
+///
+/// `status` is one of: `"pending"` (keep polling), `"slow_down"` (back off),
+/// `"success"` (token stored, `login` populated), or `"error"`.
+/// On success the token is persisted to the OS keychain so the REST path can
+/// pick it up; the secret is never returned to the frontend.
+#[tauri::command]
+pub(crate) fn github_device_poll(device_code: String) -> Result<GithubDevicePoll, String> {
+    let cid = client_id();
+    let body = serde_json::json!({
+        "client_id": cid,
+        "device_code": device_code,
+        "grant_type": "urn:ietf:params:oauth:grant-type:device_code",
+    });
+    let (status, text) = curl_raw(
+        "POST",
+        "https://github.com/login/oauth/access_token",
+        None,
+        Some(&body.to_string()),
+        "application/json",
+    )?;
+    if status >= 400 {
+        return Err(format!("GitHub token poll failed (HTTP {})", status));
+    }
+    let v: serde_json::Value = serde_json::from_str(text.trim())
+        .map_err(|e| format!("Failed to parse token response: {}", e))?;
+
+    if let Some(err) = v.get("error").and_then(|e| e.as_str()) {
+        let kind = match err {
+            "authorization_pending" => "pending",
+            "slow_down" => "slow_down",
+            _ => "error",
+        };
+        return Ok(GithubDevicePoll {
+            status: kind.to_string(),
+            login: String::new(),
+            error: if kind == "error" { err.to_string() } else { String::new() },
+        });
+    }
+
+    let token = js(&v, "access_token");
+    if token.is_empty() {
+        return Ok(GithubDevicePoll {
+            status: "pending".to_string(),
+            login: String::new(),
+            error: String::new(),
+        });
+    }
+
+    // Persist to keychain so the REST path activates.
+    let entry = keyring::Entry::new(GH_SERVICE, GH_ACCOUNT)
+        .map_err(|e| format!("keyring init failed: {}", e))?;
+    entry
+        .set_password(&token)
+        .map_err(|e| format!("Failed to store GitHub token: {}", e))?;
+
+    // Resolve the login for display (non-fatal if it fails).
+    let login = rest_current_user(&token).unwrap_or_default();
+    Ok(GithubDevicePoll {
+        status: "success".to_string(),
+        login,
+        error: String::new(),
+    })
+}
+
+/// Whether a Settings-managed GitHub token is currently stored.
+#[tauri::command]
+pub(crate) fn github_token_present() -> Result<bool, String> {
+    Ok(settings_github_token().is_some())
+}
diff --git a/apps/desktop/src-tauri/src/commands/mod.rs b/apps/desktop/src-tauri/src/commands/mod.rs
index 29abc78b..86fba264 100644
--- a/apps/desktop/src-tauri/src/commands/mod.rs
+++ b/apps/desktop/src-tauri/src/commands/mod.rs
@@ -3,6 +3,7 @@ pub(crate) mod bitbucket;
 pub(crate) mod credentials;
 pub(crate) mod files;
 pub(crate) mod gh;
+pub(crate) mod github_api;
 pub(crate) mod gitlab;
 pub(crate) mod mcp_catalog;
 pub(crate) mod network;
diff --git a/apps/desktop/src-tauri/src/commands/ops.rs b/apps/desktop/src-tauri/src/commands/ops.rs
index ca726bb6..ad0ad9a2 100644
--- a/apps/desktop/src-tauri/src/commands/ops.rs
+++ b/apps/desktop/src-tauri/src/commands/ops.rs
@@ -2663,6 +2663,10 @@ pub(crate) fn shell_exec(cwd: String, command: String) -> Result<String, String>
 /// Calls `gh api user --jq .login` — fast, no repo context needed.
 #[tauri::command]
 pub(crate) fn gh_current_user() -> Result<String, String> {
+    // Settings-managed token present → resolve via REST (no `gh` needed).
+    if let Some(tok) = crate::commands::github_api::settings_github_token() {
+        return crate::commands::github_api::rest_current_user(&tok);
+    }
     // GH_TOKEN propagation: centralized in `hidden_cmd` (cf. git/cmd.rs).
     let output = hidden_cmd("gh")
         .args(["api", "user", "--jq", ".login"])
@@ -2690,6 +2694,9 @@ pub(crate) fn gh_current_user() -> Result<String, String> {
 // readers don't think it's missing the prefix by accident.
 #[tauri::command]
 pub(crate) fn pr_files(cwd: String, number: i64) -> Result<Vec<String>, String> {
+    if let Some(tok) = crate::commands::github_api::settings_github_token() {
+        return crate::commands::github_api::rest_pr_files(&cwd, number, &tok);
+    }
     let output = hidden_cmd("gh")
         .args([
             "pr", "view", &number.to_string(),
@@ -2731,6 +2738,33 @@ pub(crate) fn git_merge_base(cwd: String, ref1: String, ref2: String) -> Result<
     Ok(String::from_utf8_lossy(&output.stdout).trim().to_string())
 }
 
+// ─── Open a URL in the system browser ────────────────────────
+//
+// The webview's `window.open` is a no-op in Tauri, so external links must be
+// handed to the OS default handler. Restricted to http(s) to avoid opening
+// arbitrary schemes (file://, etc.).
+
+#[tauri::command]
+pub(crate) fn open_url(url: String) -> Result<(), String> {
+    if !(url.starts_with("https://") || url.starts_with("http://")) {
+        return Err("Refusing to open non-http(s) URL".to_string());
+    }
+    #[cfg(target_os = "macos")]
+    let mut cmd = hidden_cmd("open");
+    #[cfg(target_os = "linux")]
+    let mut cmd = hidden_cmd("xdg-open");
+    #[cfg(target_os = "windows")]
+    let mut cmd = {
+        let mut c = hidden_cmd("cmd");
+        c.args(["/C", "start", ""]);
+        c
+    };
+    cmd.arg(&url)
+        .spawn()
+        .map_err(|e| format!("Failed to open URL: {}", e))?;
+    Ok(())
+}
+
 // ─── Open in external editor ─────────────────────────────────
 
 #[tauri::command]
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index ae9af778..43ea60f8 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -303,6 +303,7 @@ pub fn run() {
             commands::ops::git_stash,
             commands::ops::git_stash_pop,
             commands::ops::open_in_editor,
+            commands::ops::open_url,
             commands::ops::set_git_config,
             commands::ops::read_gitwandrc,
             commands::read::preview_merge,
@@ -327,6 +328,9 @@ pub fn run() {
             commands::gh::gh_pr_diff,
             commands::gh::gh_pr_checks,
             commands::gh::gh_pr_ready,
+            commands::github_api::github_device_start,
+            commands::github_api::github_device_poll,
+            commands::github_api::github_token_present,
             commands::ops::git_exec,
             commands::ops::git_autocomplete,
             commands::ops::git_get_user,
diff --git a/apps/desktop/src-tauri/src/types.rs b/apps/desktop/src-tauri/src/types.rs
index 10a16377..0acdd0ff 100644
--- a/apps/desktop/src-tauri/src/types.rs
+++ b/apps/desktop/src-tauri/src/types.rs
@@ -476,6 +476,33 @@ pub struct PullRequestDetail {
     pub checks_status: String,
 }
 
+// ─── GitHub OAuth device flow ──────────────────────────────────────
+
+/// Returned by `github_device_start` — the user-facing code + the
+/// `device_code` the frontend polls with.
+#[derive(Serialize)]
+pub struct GithubDeviceCode {
+    pub device_code: String,
+    pub user_code: String,
+    pub verification_uri: String,
+    /// `verification_uri` with the user code pre-filled — opening this skips the
+    /// manual code-entry step. Empty if GitHub omits it.
+    pub verification_uri_complete: String,
+    pub expires_in: i64,
+    /// Minimum seconds between polls (GitHub-mandated, floored at 5).
+    pub interval: i64,
+}
+
+/// Returned by `github_device_poll`. `status` ∈
+/// `"pending" | "slow_down" | "success" | "error"`. The token itself is never
+/// returned — it is stored directly in the OS keychain on success.
+#[derive(Serialize)]
+pub struct GithubDevicePoll {
+    pub status: String,
+    pub login: String,
+    pub error: String,
+}
+
 // ─── CI Check ──────────────────────────────────────────────────────
 
 #[derive(Serialize)]
diff --git a/apps/desktop/src/components/SettingsAccountsTab.vue b/apps/desktop/src/components/SettingsAccountsTab.vue
index 125a0c24..82fc06dc 100644
--- a/apps/desktop/src/components/SettingsAccountsTab.vue
+++ b/apps/desktop/src/components/SettingsAccountsTab.vue
@@ -5,12 +5,18 @@
  * Settings > Accounts tab — v2.10 §4.2.
  */
 
-import { ref, computed } from "vue";
+import { ref, computed, watch } from "vue";
 import { useI18n } from "../composables/useI18n";
 import { useAccounts } from "../composables/useAccounts";
 import { useCredentials } from "../composables/useCredentials";
+import { useGithubAuth, GITHUB_TOKEN_KEY } from "../composables/useGithubAuth";
+import { isTauri } from "../utils/backend";
 import type { ForgeName } from "../composables/forge/types";
 
+// In dev:web there is no Rust backend — the GitHub flow is a fake mock that
+// cannot actually authenticate. Flag it so the UI says so plainly.
+const isDevMock = !isTauri();
+
 const { t } = useI18n();
 const {
   accounts,
@@ -28,6 +34,17 @@ const {
   removeCredential,
 } = useCredentials();
 
+// GitHub OAuth device flow — auto-unwrapped refs for template ergonomics.
+const {
+  phase: ghPhase,
+  userCode: ghUserCode,
+  error: ghError,
+  login: ghLogin,
+  start: ghStart,
+  openVerification: ghOpen,
+  reset: ghReset,
+} = useGithubAuth();
+
 // ─── Add-account form ────────────────────────────────────────────────────────
 
 const showForm = ref(false);
@@ -47,13 +64,40 @@ function openForm() {
   formToken.value = "";
   formError.value = null;
   formSuccess.value = false;
+  ghReset();
   showForm.value = true;
 }
 
 function cancelForm() {
+  ghReset();
   showForm.value = false;
 }
 
+// ─── GitHub OAuth device flow ─────────────────────────────────────────────────
+
+function startGithubLogin() {
+  formError.value = null;
+  ghStart();
+}
+
+// On successful sign-in, register the account. The token is already in the OS
+// keychain (stored by the Rust poll command) under GITHUB_TOKEN_KEY.
+watch(ghPhase, (p) => {
+  if (p !== "success") return;
+  addAccount({
+    forge: "github",
+    label: formLabel.value.trim() || ghLogin.value,
+    username: ghLogin.value,
+    tokenKey: GITHUB_TOKEN_KEY,
+  });
+  formSuccess.value = true;
+  setTimeout(() => {
+    showForm.value = false;
+    formSuccess.value = false;
+    ghReset();
+  }, 1200);
+});
+
 async function submitForm() {
   formError.value = null;
   formSuccess.value = false;
@@ -175,15 +219,37 @@ const totalAccounts = computed(() => accounts.value.length);
           </div>
         </template>
 
-        <div v-else class="sa-note">
-          <template v-if="formForge === 'gitlab'">
-            GitLab auth is handled by <code>glab auth login</code> — no token needed here.
+        <!-- GitHub — OAuth device flow, no token paste, no gh CLI required. -->
+        <div v-else-if="formForge === 'github'" class="sa-gh">
+          <template v-if="ghPhase === 'idle' || ghPhase === 'error'">
+            <button class="sa-gh-btn" @click="startGithubLogin">
+              <svg width="15" height="15" viewBox="0 0 16 16" fill="currentColor" aria-hidden="true">
+                <path d="M8 0C3.58 0 0 3.58 0 8c0 3.54 2.29 6.53 5.47 7.59.4.07.55-.17.55-.38 0-.19-.01-.82-.01-1.49-2.01.37-2.53-.49-2.69-.94-.09-.23-.48-.94-.82-1.13-.28-.15-.68-.52-.01-.53.63-.01 1.08.58 1.23.82.72 1.21 1.87.87 2.33.66.07-.52.28-.87.51-1.07-1.78-.2-3.64-.89-3.64-3.95 0-.87.31-1.59.82-2.15-.08-.2-.36-1.02.08-2.12 0 0 .67-.21 2.2.82.64-.18 1.32-.27 2-.27.68 0 1.36.09 2 .27 1.53-1.04 2.2-.82 2.2-.82.44 1.1.16 1.92.08 2.12.51.56.82 1.27.82 2.15 0 3.07-1.87 3.75-3.65 3.95.29.25.54.73.54 1.48 0 1.07-.01 1.93-.01 2.2 0 .21.15.46.55.38A8.013 8.013 0 0016 8c0-4.42-3.58-8-8-8z"/>
+              </svg>
+              {{ t('settings.accountsGithubSignIn') }}
+            </button>
+            <p class="sa-note">{{ t('settings.accountsGithubHint') }}</p>
+            <p v-if="ghError" class="sa-msg sa-msg--error">{{ ghError }}</p>
           </template>
-          <template v-else>
-            GitHub auth is handled by <code>gh auth login</code> — no token needed here.
+          <template v-else-if="ghPhase === 'awaiting'">
+            <p v-if="isDevMock" class="sa-msg sa-msg--error">{{ t('settings.accountsGithubDevMock') }}</p>
+            <p class="sa-note">{{ t('settings.accountsGithubEnterCode') }}</p>
+            <code class="sa-gh-code">{{ ghUserCode }}</code>
+            <button v-if="!isDevMock" class="sa-gh-btn" @click="ghOpen">
+              {{ t('settings.accountsGithubOpen') }}
+            </button>
+            <p class="sa-note">{{ t('settings.accountsGithubWaiting') }}</p>
+          </template>
+          <template v-else-if="ghPhase === 'success'">
+            <p class="sa-msg sa-msg--ok">{{ t('settings.accountsGithubConnected') }} @{{ ghLogin }}</p>
           </template>
         </div>
 
+        <!-- GitLab — still CLI-based. -->
+        <div v-else class="sa-note">
+          GitLab auth is handled by <code>glab auth login</code> — no token needed here.
+        </div>
+
         <p v-if="formError" class="sa-msg sa-msg--error">{{ formError }}</p>
         <p v-if="formSuccess" class="sa-msg sa-msg--ok">{{ t('settings.accountsSaved') }}</p>
 
@@ -191,7 +257,12 @@ const totalAccounts = computed(() => accounts.value.length);
           <button class="sa-ghost-btn" :disabled="saving" @click="cancelForm">
             {{ t('settings.accountsCancelBtn') }}
           </button>
-          <button class="sa-primary-btn" :disabled="saving" @click="submitForm">
+          <button
+            v-if="formForge !== 'github'"
+            class="sa-primary-btn"
+            :disabled="saving"
+            @click="submitForm"
+          >
             {{ saving ? '…' : t('settings.accountsSaveBtn') }}
           </button>
         </div>
@@ -410,6 +481,48 @@ const totalAccounts = computed(() => accounts.value.length);
   border-radius: 3px;
 }
 
+/* ── GitHub OAuth device flow ── */
+.sa-gh {
+  display: flex;
+  flex-direction: column;
+  gap: 10px;
+}
+
+.sa-gh-btn {
+  display: inline-flex;
+  align-items: center;
+  justify-content: center;
+  gap: 8px;
+  align-self: flex-start;
+  padding: 8px 16px;
+  font-size: 13px;
+  font-weight: 600;
+  border-radius: var(--radius-sm, 5px);
+  background: var(--color-text, #eee);
+  color: var(--color-bg, #1e1e1e);
+  border: none;
+  cursor: pointer;
+  transition: opacity 0.12s;
+}
+
+.sa-gh-btn:hover {
+  opacity: 0.88;
+}
+
+.sa-gh-code {
+  align-self: flex-start;
+  font-family: monospace;
+  font-size: 20px;
+  font-weight: 700;
+  letter-spacing: 0.18em;
+  padding: 8px 14px;
+  border-radius: var(--radius-sm, 6px);
+  background: var(--color-bg-subtle, rgba(255, 255, 255, 0.06));
+  border: 1px solid var(--color-border, rgba(255, 255, 255, 0.12));
+  color: var(--color-text, #eee);
+  user-select: all;
+}
+
 /* ── Messages ── */
 .sa-msg {
   font-size: 12px;
diff --git a/apps/desktop/src/composables/useGithubAuth.ts b/apps/desktop/src/composables/useGithubAuth.ts
new file mode 100644
index 00000000..34cd7ff0
--- /dev/null
+++ b/apps/desktop/src/composables/useGithubAuth.ts
@@ -0,0 +1,148 @@
+/**
+ * @file useGithubAuth.ts
+ *
+ * GitHub OAuth device-flow state machine for "Sign in with GitHub".
+ *
+ * Drives the two-step device flow exposed by the Rust backend
+ * (`github_device_start` / `github_device_poll`):
+ *
+ *   1. `start()` requests a device code, shows the `userCode` and opens the
+ *      GitHub verification page.
+ *   2. The composable polls `github_device_poll` on the GitHub-mandated
+ *      interval until the user approves (success), the code expires, or an
+ *      error occurs.
+ *
+ * On success the token is already stored in the OS keychain by the backend
+ * (the secret never reaches the frontend); the resolved `login` is returned so
+ * the caller can register the account via `useAccounts`.
+ *
+ * The Settings token activates the tokenless REST path in Rust, so a `gh` CLI
+ * install is no longer required for PR workflows.
+ */
+
+import { ref, computed } from "vue";
+import { githubDeviceStart, githubDevicePoll, openExternalUrl } from "../utils/backend";
+
+export type GithubAuthPhase = "idle" | "awaiting" | "success" | "error";
+
+/** Keychain pointer for the Settings-managed GitHub token. */
+export const GITHUB_TOKEN_KEY = "gitwand:github/oauth";
+
+export function useGithubAuth() {
+  const phase = ref<GithubAuthPhase>("idle");
+  const userCode = ref("");
+  const verificationUri = ref("");
+  /** URL to open in the browser — the pre-filled "complete" variant when given. */
+  const openUrl = ref("");
+  const login = ref("");
+  const error = ref<string | null>(null);
+
+  let deviceCode = "";
+  let timer: ReturnType<typeof setTimeout> | null = null;
+  let deadline = 0;
+
+  const isBusy = computed(() => phase.value === "awaiting");
+
+  function clearTimer() {
+    if (timer) {
+      clearTimeout(timer);
+      timer = null;
+    }
+  }
+
+  function reset() {
+    clearTimer();
+    phase.value = "idle";
+    userCode.value = "";
+    verificationUri.value = "";
+    openUrl.value = "";
+    login.value = "";
+    error.value = null;
+    deviceCode = "";
+    deadline = 0;
+  }
+
+  function fail(message: string) {
+    clearTimer();
+    error.value = message;
+    phase.value = "error";
+  }
+
+  /** Schedule the next poll `seconds` from now. */
+  function schedulePoll(seconds: number) {
+    clearTimer();
+    timer = setTimeout(poll, Math.max(1, seconds) * 1000);
+  }
+
+  async function poll() {
+    if (phase.value !== "awaiting") return;
+    if (Date.now() > deadline) {
+      fail("The login code expired. Please try again.");
+      return;
+    }
+    try {
+      const res = await githubDevicePoll(deviceCode);
+      if (res.status === "success") {
+        clearTimer();
+        login.value = res.login;
+        phase.value = "success";
+        return;
+      }
+      if (res.status === "error") {
+        fail(res.error || "GitHub login failed.");
+        return;
+      }
+      // "pending" → keep the current cadence; "slow_down" → back off 5s.
+      schedulePoll(res.status === "slow_down" ? 10 : 5);
+    } catch (e) {
+      fail(e instanceof Error ? e.message : String(e));
+    }
+  }
+
+  /**
+   * Begin the device flow and start polling. Does **not** open the browser —
+   * the code is shown in-app first (auto-opening would navigate the Tauri
+   * webview away and hide the code). The user opens GitHub via `openVerification`.
+   * Watch `phase` for completion.
+   */
+  async function start(): Promise<void> {
+    reset();
+    phase.value = "awaiting";
+    try {
+      const code = await githubDeviceStart();
+      deviceCode = code.device_code;
+      userCode.value = code.user_code;
+      verificationUri.value = code.verification_uri;
+      // Prefer the pre-filled URL so the user doesn't retype the code.
+      openUrl.value = code.verification_uri_complete || code.verification_uri;
+      deadline = Date.now() + code.expires_in * 1000;
+      schedulePoll(code.interval);
+    } catch (e) {
+      fail(e instanceof Error ? e.message : String(e));
+    }
+  }
+
+  /** Open the GitHub verification page (pre-filled when available). */
+  function openVerification() {
+    if (openUrl.value) void openExternalUrl(openUrl.value);
+  }
+
+  /** Abort an in-flight flow (user closed the dialog). */
+  function cancel() {
+    reset();
+  }
+
+  return {
+    phase,
+    userCode,
+    verificationUri,
+    openUrl,
+    login,
+    error,
+    isBusy,
+    start,
+    openVerification,
+    cancel,
+    reset,
+  };
+}
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index c1507c7a..eb4298db 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -1195,6 +1195,13 @@ const en = {
     accountsSaveBtn: "Save",
     accountsCancelBtn: "Cancel",
     accountsSaved: "Account saved.",
+    accountsGithubSignIn: "Sign in with GitHub",
+    accountsGithubHint: "Opens GitHub in your browser to authorize GitWand. No gh CLI required.",
+    accountsGithubEnterCode: "Copy this code, then open GitHub and enter it:",
+    accountsGithubOpen: "Open GitHub",
+    accountsGithubDevMock: "Dev mock — this does not really sign in. Run the full app for real GitHub login.",
+    accountsGithubWaiting: "Waiting for authorization…",
+    accountsGithubConnected: "Connected as",
     accountsDeleteConfirm: "Remove this account?",
     // v2.12 Git tab — branch + identity + templates
     git: {
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index 64b0a647..0b19d362 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -1164,6 +1164,13 @@ const es: Locale = {
     accountsSaveBtn: "Guardar",
     accountsCancelBtn: "Cancelar",
     accountsSaved: "Cuenta guardada.",
+    accountsGithubSignIn: "Iniciar sesión con GitHub",
+    accountsGithubHint: "Abre GitHub en tu navegador para autorizar GitWand. No requiere la CLI gh.",
+    accountsGithubEnterCode: "Copia este código, luego abre GitHub e introdúcelo:",
+    accountsGithubOpen: "Abrir GitHub",
+    accountsGithubDevMock: "Simulación de desarrollo: no inicia sesión de verdad. Ejecuta la app completa para el inicio de sesión real de GitHub.",
+    accountsGithubWaiting: "Esperando autorización…",
+    accountsGithubConnected: "Conectado como",
     accountsDeleteConfirm: "¿Eliminar esta cuenta?",
     // v2.12
     git: {
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index aa8bc8b2..8a968ee0 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -1175,6 +1175,13 @@ const fr: Locale = {
     accountsSaveBtn: "Enregistrer",
     accountsCancelBtn: "Annuler",
     accountsSaved: "Compte enregistré.",
+    accountsGithubSignIn: "Se connecter avec GitHub",
+    accountsGithubHint: "Ouvre GitHub dans votre navigateur pour autoriser GitWand. Aucun CLI gh requis.",
+    accountsGithubEnterCode: "Copiez ce code, puis ouvrez GitHub et saisissez-le :",
+    accountsGithubOpen: "Ouvrir GitHub",
+    accountsGithubDevMock: "Mock de dev — ceci ne connecte pas réellement. Lancez l'app complète pour une vraie connexion GitHub.",
+    accountsGithubWaiting: "En attente d'autorisation…",
+    accountsGithubConnected: "Connecté en tant que",
     accountsDeleteConfirm: "Supprimer ce compte ?",
     // v2.12 Onglet Git
     git: {
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index bfe9e679..7611979a 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -1164,6 +1164,13 @@ const ptBR: Locale = {
     accountsSaveBtn: "Salvar",
     accountsCancelBtn: "Cancelar",
     accountsSaved: "Conta salva.",
+    accountsGithubSignIn: "Entrar com o GitHub",
+    accountsGithubHint: "Abre o GitHub no navegador para autorizar o GitWand. Não requer a CLI gh.",
+    accountsGithubEnterCode: "Copie este código, depois abra o GitHub e digite-o:",
+    accountsGithubOpen: "Abrir o GitHub",
+    accountsGithubDevMock: "Mock de dev — isto não faz login de verdade. Execute o app completo para o login real do GitHub.",
+    accountsGithubWaiting: "Aguardando autorização…",
+    accountsGithubConnected: "Conectado como",
     accountsDeleteConfirm: "Remover esta conta?",
     // v2.12
     git: {
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index 0899e4b9..f86a113b 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -1151,6 +1151,13 @@ const zhCN: Locale = {
     accountsSaveBtn: "\u4fdd\u5b58",
     accountsCancelBtn: "\u53d6\u6d88",
     accountsSaved: "\u8d26\u53f7\u5df2\u4fdd\u5b58\u3002",
+    accountsGithubSignIn: "\u4f7f\u7528 GitHub \u767b\u5f55",
+    accountsGithubHint: "\u5728\u6d4f\u89c8\u5668\u4e2d\u6253\u5f00 GitHub \u4ee5\u6388\u6743 GitWand\u3002\u65e0\u9700 gh CLI\u3002",
+    accountsGithubEnterCode: "\u590d\u5236\u6b64\u4ee3\u7801\uff0c\u7136\u540e\u6253\u5f00 GitHub \u5e76\u8f93\u5165\uff1a",
+    accountsGithubOpen: "\u6253\u5f00 GitHub",
+    accountsGithubDevMock: "\u5f00\u53d1\u6a21\u62df \u2014 \u5e76\u975e\u771f\u6b63\u767b\u5f55\u3002\u8bf7\u8fd0\u884c\u5b8c\u6574\u5e94\u7528\u4ee5\u8fdb\u884c\u771f\u5b9e\u7684 GitHub \u767b\u5f55\u3002",
+    accountsGithubWaiting: "\u7b49\u5f85\u6388\u6743\u2026",
+    accountsGithubConnected: "\u5df2\u8fde\u63a5\u4e3a",
     accountsDeleteConfirm: "\u5220\u9664\u6b64\u8d26\u53f7\uff1f",
     // v2.12
     git: {
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index 8bc68ecb..7f06d103 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -761,3 +761,72 @@ export async function deleteCredential(service: string, account: string): Promis
   if (!isTauri()) return;
   return tauriInvoke<void>("delete_credential", { service, account });
 }
+
+// ─── GitHub OAuth device flow ───────────────────────────────────────────────
+//
+// "Sign in with GitHub" from Settings > Accounts. The token is stored in the
+// OS keychain (service "gitwand:github", account "oauth"); once present, the
+// Rust `gh_*` commands route through the REST API instead of the `gh` CLI, so
+// the `gh` binary is no longer required.
+
+export interface GithubDeviceCode {
+  device_code: string;
+  user_code: string;
+  verification_uri: string;
+  /** verification_uri with the code pre-filled (skips manual entry); may be "". */
+  verification_uri_complete: string;
+  expires_in: number;
+  /** Minimum seconds between polls (GitHub-mandated, floored at 5). */
+  interval: number;
+}
+
+export interface GithubDevicePoll {
+  /** "pending" | "slow_down" | "success" | "error" */
+  status: string;
+  /** Populated only on success. */
+  login: string;
+  /** Populated only on a hard error. */
+  error: string;
+}
+
+/** Begin the OAuth device flow — returns the user code + verification URL. */
+export async function githubDeviceStart(): Promise<GithubDeviceCode> {
+  if (isTauri()) return tauriInvoke<GithubDeviceCode>("github_device_start");
+  // dev:web — mock device flow (does not actually authenticate).
+  const res = await devFetch(`${DEV_SERVER}/api/github-device-start`, { method: "POST" });
+  if (!res.ok) throw new Error(`github-device-start failed: ${res.status}`);
+  return res.json() as Promise<GithubDeviceCode>;
+}
+
+/** Poll once for the access token. On success the token is stored server-side. */
+export async function githubDevicePoll(deviceCode: string): Promise<GithubDevicePoll> {
+  if (isTauri()) return tauriInvoke<GithubDevicePoll>("github_device_poll", { deviceCode });
+  const res = await devFetch(`${DEV_SERVER}/api/github-device-poll`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify({ device_code: deviceCode }),
+  });
+  if (!res.ok) throw new Error(`github-device-poll failed: ${res.status}`);
+  return res.json() as Promise<GithubDevicePoll>;
+}
+
+/**
+ * Open an http(s) URL in the system browser. In Tauri the webview's
+ * `window.open` is a no-op, so we hand the URL to the OS via the Rust
+ * `open_url` command; in dev:web we fall back to `window.open`.
+ */
+export async function openExternalUrl(url: string): Promise<void> {
+  if (isTauri()) {
+    await tauriInvoke<void>("open_url", { url });
+    return;
+  }
+  window.open(url, "_blank");
+}
+
+/** Whether a Settings-managed GitHub token is currently stored. */
+export async function githubTokenPresent(): Promise<boolean> {
+  if (isTauri()) return tauriInvoke<boolean>("github_token_present");
+  const res = await devFetch(`${DEV_SERVER}/api/github-token-present`, { method: "POST" });
+  if (!res.ok) return false;
+  return res.json() as Promise<boolean>;
+}

From c5da6d13178cdac4f7206ce7b633a57a94964803 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 06:11:36 -0400
Subject: [PATCH 02/44] feat(pr): ajouter le support des pull requests
 cross-fork
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Quand `origin` est un fork, la vue de création de PR propose un sélecteur
de dépôt cible (parent upstream ou fork), avec upstream par défaut. Gère
les chemins REST (`fork-owner:branch`) et `gh` (`--repo`) ; nouvelle
commande `gh_fork_info` pour détecter la relation de fork.

🪄 Commit via GitWand
---
 CHANGELOG.md                                  |  1 +
 apps/desktop/src-tauri/src/commands/gh.rs     | 47 ++++++++++-
 .../src-tauri/src/commands/github_api.rs      | 48 +++++++++--
 apps/desktop/src-tauri/src/lib.rs             |  1 +
 apps/desktop/src-tauri/src/types.rs           | 17 ++++
 apps/desktop/src/components/PrCreateView.vue  | 82 +++++++++++++++++++
 .../src/composables/forge/GitHubProvider.ts   |  2 +-
 apps/desktop/src/composables/forge/types.ts   |  6 ++
 apps/desktop/src/composables/usePrPanel.ts    | 31 +++++++
 apps/desktop/src/locales/en.ts                |  4 +
 apps/desktop/src/locales/es.ts                |  4 +
 apps/desktop/src/locales/fr.ts                |  4 +
 apps/desktop/src/locales/pt-BR.ts             |  4 +
 apps/desktop/src/locales/zh-CN.ts             |  4 +
 apps/desktop/src/utils/backend-pr.ts          | 27 +++++-
 15 files changed, 272 insertions(+), 10 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0b14cbcc..c31a2f15 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -9,6 +9,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ### Added
 
+- **Cross-fork pull requests** — when the repo's `origin` is a fork, the PR create view shows a target-repository selector (upstream parent vs your fork), defaulting to upstream. Works on both the REST (token) path — head is qualified as `fork-owner:branch` — and the `gh` path (`--repo`). New `gh_fork_info` command detects the relationship.
 - **Sign in with GitHub (no `gh` CLI required)** — Settings → Accounts now offers a "Sign in with GitHub" button using the OAuth device flow. The resulting token is stored in the OS keychain; once present, the GitHub PR workflow (list, count, detail, diff, checks, files, create, merge, checkout, mark-ready) routes through the GitHub REST API instead of shelling out to `gh`. The `gh` CLI still works as before when no Settings token is configured — the ambient `GH_TOKEN`/`GITHUB_TOKEN` env path is unchanged.
 
 ### Notes
diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index a34489b1..46048d17 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -197,11 +197,12 @@ pub(crate) fn gh_create_pr(
     title: String,
     body: String,
     base: String,
+    base_repo: Option<String>,
     draft: bool,
     reviewers: Option<Vec<String>>,
 ) -> Result<PullRequest, String> {
     if let Some(tok) = github_api::settings_github_token() {
-        return github_api::rest_create_pr(&cwd, title, body, base, draft, reviewers, &tok);
+        return github_api::rest_create_pr(&cwd, title, body, base, base_repo, draft, reviewers, &tok);
     }
     let mut args = vec![
         "pr".to_string(),
@@ -212,6 +213,15 @@ pub(crate) fn gh_create_pr(
         body,
     ];
 
+    // Cross-fork target: `gh pr create --repo owner/repo` opens the PR against
+    // that repo, using the current fork branch as head automatically.
+    if let Some(repo) = base_repo {
+        if !repo.trim().is_empty() {
+            args.push("--repo".to_string());
+            args.push(repo.trim().to_string());
+        }
+    }
+
     if !base.is_empty() {
         args.push("--base".to_string());
         args.push(base);
@@ -549,3 +559,38 @@ pub(crate) fn gh_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, Str
 
     Ok(checks)
 }
+
+/// Report the current repo's fork relationship so the PR create view can offer
+/// "open against upstream". Token present → REST; otherwise `gh repo view`.
+#[tauri::command]
+pub(crate) fn gh_fork_info(cwd: String) -> Result<ForkInfo, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_fork_info(&cwd, &tok);
+    }
+    let output = hidden_cmd("gh")
+        .args(["repo", "view", "--json", "isFork,parent,nameWithOwner"])
+        .current_dir(&cwd)
+        .output()
+        .map_err(|e| format!("gh repo view (fork info): {}", e))?;
+    if !output.status.success() {
+        return Err(format!(
+            "gh repo view failed: {}",
+            String::from_utf8_lossy(&output.stderr)
+        ));
+    }
+    let v: serde_json::Value =
+        serde_json::from_slice(&output.stdout).map_err(|e| e.to_string())?;
+    let origin = v.get("nameWithOwner").and_then(|s| s.as_str()).unwrap_or("").to_string();
+    let is_fork = v.get("isFork").and_then(|b| b.as_bool()).unwrap_or(false);
+    let parent = v
+        .get("parent")
+        .and_then(|p| {
+            let owner = p.get("owner").and_then(|o| o.get("login")).and_then(|s| s.as_str())?;
+            let name = p.get("name").and_then(|s| s.as_str())?;
+            Some(format!("{}/{}", owner, name))
+        })
+        .unwrap_or_default();
+    // gh repo view doesn't expose the parent's default branch; the UI falls back
+    // to letting the user type the base branch (PR create resolves it server-side).
+    Ok(ForkInfo { is_fork, origin, parent, parent_default_branch: String::new() })
+}
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 32d66d59..97ee8729 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -445,21 +445,57 @@ pub(crate) fn rest_pr_files(cwd: &str, number: i64, token: &str) -> Result<Vec<S
     Ok(files)
 }
 
+/// Resolve the current repo's fork relationship (REST).
+pub(crate) fn rest_fork_info(cwd: &str, token: &str) -> Result<ForkInfo, String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let origin = format!("{}/{}", owner, repo);
+    let info = api_json("GET", &format!("{}/repos/{}/{}", API_BASE, owner, repo), token, None)?;
+    let is_fork = info.get("fork").and_then(|f| f.as_bool()).unwrap_or(false);
+    let parent = info
+        .get("parent")
+        .and_then(|p| p.get("full_name"))
+        .and_then(|n| n.as_str())
+        .unwrap_or("")
+        .to_string();
+    let parent_default_branch = info
+        .get("parent")
+        .and_then(|p| p.get("default_branch"))
+        .and_then(|n| n.as_str())
+        .unwrap_or("")
+        .to_string();
+    Ok(ForkInfo { is_fork, origin, parent, parent_default_branch })
+}
+
 pub(crate) fn rest_create_pr(
     cwd: &str,
     title: String,
     body: String,
     base: String,
+    base_repo: Option<String>,
     draft: bool,
     reviewers: Option<Vec<String>>,
     token: &str,
 ) -> Result<PullRequest, String> {
     let (owner, repo) = owner_repo(cwd)?;
-    let head = current_branch(cwd)?;
+    let head_branch = current_branch(cwd)?;
+    let origin = format!("{}/{}", owner, repo);
+
+    // Target repo: caller-supplied (cross-fork) or origin. A cross-fork PR must
+    // qualify the head ref as "fork-owner:branch".
+    let target = match base_repo {
+        Some(r) if !r.trim().is_empty() => r.trim().to_string(),
+        _ => origin.clone(),
+    };
+    let is_cross = target != origin;
+    let head = if is_cross {
+        format!("{}:{}", owner, head_branch)
+    } else {
+        head_branch
+    };
 
-    // Resolve base from the repo default branch when the caller left it empty.
+    // Resolve base from the *target* repo's default branch when left empty.
     let base = if base.is_empty() {
-        let repo_info = api_json("GET", &format!("{}/repos/{}/{}", API_BASE, owner, repo), token, None)?;
+        let repo_info = api_json("GET", &format!("{}/repos/{}", API_BASE, target), token, None)?;
         let default = js(&repo_info, "default_branch");
         if default.is_empty() { "main".to_string() } else { default }
     } else {
@@ -473,7 +509,7 @@ pub(crate) fn rest_create_pr(
         "body": body,
         "draft": draft,
     });
-    let url = format!("{}/repos/{}/{}/pulls", API_BASE, owner, repo);
+    let url = format!("{}/repos/{}/pulls", API_BASE, target);
     let created = api_json("POST", &url, token, Some(&payload.to_string()))?;
     let number = ji(&created, "number");
 
@@ -487,8 +523,8 @@ pub(crate) fn rest_create_pr(
         if !cleaned.is_empty() && number > 0 {
             let rev_payload = serde_json::json!({ "reviewers": cleaned });
             let rev_url = format!(
-                "{}/repos/{}/{}/pulls/{}/requested_reviewers",
-                API_BASE, owner, repo, number
+                "{}/repos/{}/pulls/{}/requested_reviewers",
+                API_BASE, target, number
             );
             let _ = api_json("POST", &rev_url, token, Some(&rev_payload.to_string()));
         }
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 43ea60f8..32d68ba9 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -328,6 +328,7 @@ pub fn run() {
             commands::gh::gh_pr_diff,
             commands::gh::gh_pr_checks,
             commands::gh::gh_pr_ready,
+            commands::gh::gh_fork_info,
             commands::github_api::github_device_start,
             commands::github_api::github_device_poll,
             commands::github_api::github_token_present,
diff --git a/apps/desktop/src-tauri/src/types.rs b/apps/desktop/src-tauri/src/types.rs
index 0acdd0ff..3b46d503 100644
--- a/apps/desktop/src-tauri/src/types.rs
+++ b/apps/desktop/src-tauri/src/types.rs
@@ -476,6 +476,23 @@ pub struct PullRequestDetail {
     pub checks_status: String,
 }
 
+// ─── Fork / PR target info ─────────────────────────────────────────
+
+/// Describes the current repo's GitHub fork relationship, used by the PR
+/// create view to offer "open against upstream" for forks.
+#[derive(Serialize)]
+#[serde(rename_all = "camelCase")]
+pub struct ForkInfo {
+    /// True when `origin` is a fork of another GitHub repo.
+    pub is_fork: bool,
+    /// `origin` as `owner/repo` (the head side of a cross-fork PR).
+    pub origin: String,
+    /// Parent/upstream as `owner/repo`, or "" when not a fork.
+    pub parent: String,
+    /// Parent's default branch (e.g. "main"), or "" when unknown / not a fork.
+    pub parent_default_branch: String,
+}
+
 // ─── GitHub OAuth device flow ──────────────────────────────────────
 
 /// Returned by `github_device_start` — the user-facing code + the
diff --git a/apps/desktop/src/components/PrCreateView.vue b/apps/desktop/src/components/PrCreateView.vue
index a122641d..842b0659 100644
--- a/apps/desktop/src/components/PrCreateView.vue
+++ b/apps/desktop/src/components/PrCreateView.vue
@@ -390,6 +390,30 @@ function removeReviewer(name: string) {
       <!-- Messages -->
       <div v-if="p.error.value" class="pcv-msg pcv-msg--error">{{ p.error.value }}</div>
 
+      <!-- Fork target (only when origin is a fork) -->
+      <section v-if="p.forkInfo.value?.isFork && p.forkInfo.value.parent" class="pcv-section">
+        <label class="pcv-label">{{ t("pr.create.targetRepoLabel") }}</label>
+        <div class="pcv-fork-target">
+          <label
+            class="pcv-fork-opt"
+            :class="{ 'pcv-fork-opt--active': p.newPrBaseRepo.value === p.forkInfo.value.parent }"
+          >
+            <input type="radio" :value="p.forkInfo.value.parent" v-model="p.newPrBaseRepo.value" />
+            <span class="pcv-fork-name mono">{{ p.forkInfo.value.parent }}</span>
+            <span class="pcv-fork-badge">{{ t("pr.create.targetUpstream") }}</span>
+          </label>
+          <label
+            class="pcv-fork-opt"
+            :class="{ 'pcv-fork-opt--active': p.newPrBaseRepo.value === p.forkInfo.value.origin }"
+          >
+            <input type="radio" :value="p.forkInfo.value.origin" v-model="p.newPrBaseRepo.value" />
+            <span class="pcv-fork-name mono">{{ p.forkInfo.value.origin }}</span>
+            <span class="pcv-fork-badge">{{ t("pr.create.targetFork") }}</span>
+          </label>
+        </div>
+        <p class="pcv-hint">{{ t("pr.create.targetHint") }}</p>
+      </section>
+
       <!-- Branch flow -->
       <section class="pcv-section">
         <label class="pcv-label" for="pcv-base-input">{{ t("pr.create.branchesLabel") }}</label>
@@ -847,6 +871,64 @@ function removeReviewer(name: string) {
   opacity: 0.7;
 }
 
+/* ─── Fork target selector ───────────────────────────── */
+.pcv-fork-target {
+  display: flex;
+  gap: var(--space-3);
+  flex-wrap: wrap;
+}
+.pcv-fork-opt {
+  flex: 1 1 240px;
+  display: flex;
+  align-items: center;
+  gap: var(--space-3);
+  padding: var(--space-3) var(--space-4);
+  border: 1px solid var(--color-border);
+  border-radius: var(--radius-md);
+  background: var(--color-bg);
+  cursor: pointer;
+  min-width: 0;
+  transition: border-color var(--transition-fast), background var(--transition-fast), box-shadow var(--transition-fast);
+}
+.pcv-fork-opt:hover {
+  border-color: var(--color-border-strong);
+}
+.pcv-fork-opt--active {
+  border-color: var(--color-accent);
+  background: var(--color-accent-soft);
+  box-shadow: 0 0 0 1px var(--color-accent) inset;
+}
+.pcv-fork-opt input[type="radio"] {
+  flex-shrink: 0;
+  accent-color: var(--color-accent);
+  margin: 0;
+}
+.pcv-fork-name {
+  font-size: var(--font-size-md);
+  font-weight: var(--font-weight-medium);
+  color: var(--color-text);
+  overflow: hidden;
+  text-overflow: ellipsis;
+  white-space: nowrap;
+  min-width: 0;
+  flex: 1;
+}
+.pcv-fork-badge {
+  flex-shrink: 0;
+  font-size: 10px;
+  font-weight: var(--font-weight-bold);
+  text-transform: uppercase;
+  letter-spacing: 0.08em;
+  color: var(--color-text-muted);
+  padding: 2px var(--space-3);
+  border-radius: var(--radius-pill);
+  background: var(--color-bg-tertiary);
+}
+.pcv-fork-opt--active .pcv-fork-badge {
+  color: var(--color-accent);
+  background: var(--color-accent-soft);
+}
+
 /* ─── Inputs ─────────────────────────────────────────── */
 .pcv-input {
   background: var(--color-bg);
diff --git a/apps/desktop/src/composables/forge/GitHubProvider.ts b/apps/desktop/src/composables/forge/GitHubProvider.ts
index 4294481a..3b612bac 100644
--- a/apps/desktop/src/composables/forge/GitHubProvider.ts
+++ b/apps/desktop/src/composables/forge/GitHubProvider.ts
@@ -109,7 +109,7 @@ export class GitHubProvider implements ForgeProvider {
   // ── PR actions ────────────────────────────────────────────────────────────
 
   createPR(cwd: string, input: CreatePRInput): Promise<PullRequest> {
-    return ghCreatePr(cwd, input.title, input.body, input.base, input.draft, input.reviewers);
+    return ghCreatePr(cwd, input.title, input.body, input.base, input.draft, input.reviewers, input.baseRepo);
   }
 
   mergePR(cwd: string, number: number, method: "merge" | "squash" | "rebase" = "merge"): Promise<void> {
diff --git a/apps/desktop/src/composables/forge/types.ts b/apps/desktop/src/composables/forge/types.ts
index 981d4283..5a4011f8 100644
--- a/apps/desktop/src/composables/forge/types.ts
+++ b/apps/desktop/src/composables/forge/types.ts
@@ -55,6 +55,12 @@ export interface CreatePRInput {
   title: string;
   body: string;
   base?: string;
+  /**
+   * Cross-fork target as "owner/repo". When set (and different from origin),
+   * the PR opens against this repo with the current branch as the head fork.
+   * GitHub only — ignored by GitLab/Bitbucket.
+   */
+  baseRepo?: string;
   draft?: boolean;
   reviewers?: string[];
 }
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 9f39bed9..8ba989bd 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -24,6 +24,8 @@ import {
   type PrConflictPreview,
   type PrHotspot,
   type PrFileHistory,
+  ghForkInfo,
+  type ForkInfo,
 } from "../utils/backend";
 import { forgeFromRemoteInfo, githubProvider } from "./forge/useForge";
 import { getPersistedDiffMode, type DiffMode } from "../utils/diffMode";
@@ -61,6 +63,10 @@ export function usePrPanel(cwd: Ref<string>) {
   const newPrDraft = ref(false);
   const newPrReviewers = ref<string[]>([]);
   const isCreating = ref(false);
+  // Fork target — when origin is a fork, the user can open the PR against the
+  // upstream parent. `newPrBaseRepo` is "owner/repo" or "" for the origin.
+  const forkInfo = ref<ForkInfo | null>(null);
+  const newPrBaseRepo = ref("");
 
   // Merge dialog
   const mergingPr = ref<PullRequest | null>(null);
@@ -222,6 +228,24 @@ export function usePrPanel(cwd: Ref<string>) {
     catch { remote.value = null; }
   }
 
+  /**
+   * Detect the GitHub fork relationship so the create view can default the PR
+   * target to the upstream parent. GitHub-only; silently no-ops elsewhere.
+   * On a fork, pre-select upstream as the target (the common intent).
+   */
+  async function loadForkInfo() {
+    forkInfo.value = null;
+    newPrBaseRepo.value = "";
+    if (forge.value.name !== "github") return;
+    try {
+      const info = await ghForkInfo(cwd.value);
+      forkInfo.value = info;
+      if (info.isFork && info.parent) newPrBaseRepo.value = info.parent;
+    } catch {
+      forkInfo.value = null;
+    }
+  }
+
   async function loadPrs() {
     if (!cwd.value) return;
     // F1 — Mode hors-ligne: short-circuit before the gh subprocess.
@@ -412,10 +436,14 @@ export function usePrPanel(cwd: Ref<string>) {
     isCreating.value = true;
     error.value = null;
     try {
+      // Only treat baseRepo as cross-fork when it differs from origin.
+      const target = newPrBaseRepo.value.trim();
+      const baseRepo = target && target !== forkInfo.value?.origin ? target : "";
       const pr = await forge.value.createPR(cwd.value, {
         title: newPrTitle.value.trim(),
         body: newPrBody.value.trim(),
         base: newPrBase.value.trim(),
+        baseRepo,
         draft: newPrDraft.value,
         reviewers: newPrReviewers.value.slice(),
       });
@@ -659,6 +687,8 @@ export function usePrPanel(cwd: Ref<string>) {
     await loadPrs();
     // Load current user in background for "assigned / reviews" filter
     loadCurrentUser();
+    // Fork detection in background — only affects the create view.
+    loadForkInfo();
   }
 
   return {
@@ -666,6 +696,7 @@ export function usePrPanel(cwd: Ref<string>) {
     remote, prs, loading, error, success, filterState, filterMode,
     currentUser, currentUserLoading, currentUserError,
     showCreateForm, newPrTitle, newPrBody, newPrBase, newPrDraft, newPrReviewers, isCreating,
+    forkInfo, newPrBaseRepo,
     mergingPr, mergeMethod,
     selectedPr, prDetail, prChecks, prDiffFiles, prComments, prReviews,
     detailLoading, detailError, detailTab, selectedDiffFile, diffMode,
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index eb4298db..79e13f3e 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -707,6 +707,10 @@ const en = {
     create: {
       title: "New pull request",
       subtitle: "Open a PR to get your changes reviewed. Set a title, pick a target branch, and add a description.",
+      targetRepoLabel: "Target repository",
+      targetUpstream: "Upstream",
+      targetFork: "Your fork",
+      targetHint: "This branch lives in a fork. Choose where to open the pull request.",
       branchesLabel: "Branches",
       fromLabel: "From",
       intoLabel: "Into",
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index 0b19d362..d4f686ee 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -694,6 +694,10 @@ const es: Locale = {
     create: {
       title: "Nueva pull request",
       subtitle: "Abre una PR para que revisen tus cambios. Define un título, elige una rama objetivo y añade una descripción.",
+      targetRepoLabel: "Repositorio destino",
+      targetUpstream: "Upstream",
+      targetFork: "Tu fork",
+      targetHint: "Esta rama está en un fork. Elige dónde abrir la pull request.",
       branchesLabel: "Ramas",
       fromLabel: "Desde",
       intoLabel: "Hacia",
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index 8a968ee0..98ce3ed8 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -701,6 +701,10 @@ const fr: Locale = {
     create: {
       title: "Nouvelle pull request",
       subtitle: "Ouvre une PR pour proposer tes changements à la review. Remplis le titre, choisis la branche cible, et ajoute une description.",
+      targetRepoLabel: "Dépôt cible",
+      targetUpstream: "Amont",
+      targetFork: "Votre fork",
+      targetHint: "Cette branche est dans un fork. Choisissez où ouvrir la pull request.",
       branchesLabel: "Branches",
       fromLabel: "Depuis",
       intoLabel: "Vers",
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index 7611979a..dbfbfd49 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -695,6 +695,10 @@ const ptBR: Locale = {
     create: {
       title: "Nova pull request",
       subtitle: "Abra uma PR para suas alterações serem revisadas. Defina um título, escolha um branch alvo e adicione uma descrição.",
+      targetRepoLabel: "Repositório de destino",
+      targetUpstream: "Upstream",
+      targetFork: "Seu fork",
+      targetHint: "Esta branch está em um fork. Escolha onde abrir o pull request.",
       branchesLabel: "Branches",
       fromLabel: "De",
       intoLabel: "Para",
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index f86a113b..293ddb2f 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -683,6 +683,10 @@ const zhCN: Locale = {
     create: {
       title: "新建 pull request",
       subtitle: "打开一个 PR 让更改得到审查。设置标题、选择目标分支并添加描述。",
+      targetRepoLabel: "目标仓库",
+      targetUpstream: "上游",
+      targetFork: "你的复刻",
+      targetHint: "此分支位于一个复刻仓库。请选择在哪里创建合并请求。",
       branchesLabel: "分支",
       fromLabel: "源",
       intoLabel: "目标",
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index 7f06d103..46a8876a 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -27,6 +27,27 @@ export function ghCurrentUser(): Promise<string> {
   return _currentUserPromise;
 }
 
+/** GitHub fork relationship for the repo at `cwd`. */
+export interface ForkInfo {
+  /** True when origin is a fork of another GitHub repo. */
+  isFork: boolean;
+  /** Origin as "owner/repo" (head side of a cross-fork PR). */
+  origin: string;
+  /** Parent/upstream as "owner/repo", or "" when not a fork. */
+  parent: string;
+  /** Parent's default branch, or "" when unknown. */
+  parentDefaultBranch: string;
+}
+
+/**
+ * Resolve the current repo's fork relationship so the PR create view can offer
+ * "open against upstream". Falls back to a non-fork result in dev:web.
+ */
+export async function ghForkInfo(cwd: string): Promise<ForkInfo> {
+  if (isTauri()) return tauriInvoke<ForkInfo>("gh_fork_info", { cwd });
+  return { isFork: false, origin: "", parent: "", parentDefaultBranch: "" };
+}
+
 /** Returns the list of file paths changed by a PR (lazy — call only when needed). */
 export async function ghPrFiles(repoPath: string, prNumber: number): Promise<string[]> {
   if (isTauri()) {
@@ -216,6 +237,8 @@ export async function ghCreatePr(
   base: string = "",
   draft: boolean = false,
   reviewers: string[] = [],
+  /** Cross-fork target as "owner/repo". Empty → open against the origin repo. */
+  baseRepo: string = "",
 ): Promise<PullRequest> {
   if (isTauri()) {
     const raw = await tauriInvoke<{
@@ -235,7 +258,7 @@ export async function ghCreatePr(
       review_decision: string;
       merge_state_status: string;
       checks_rollup: string;
-    }>("gh_create_pr", { cwd, title, body, base, draft, reviewers });
+    }>("gh_create_pr", { cwd, title, body, base, baseRepo: baseRepo || null, draft, reviewers });
     return {
       number: raw.number,
       title: raw.title,
@@ -262,7 +285,7 @@ export async function ghCreatePr(
   const res = await devFetch(`${DEV_SERVER}/api/gh-create-pr`, {
     method: "POST",
     headers: { "Content-Type": "application/json" },
-    body: JSON.stringify({ cwd, title, body, base, draft, reviewers }),
+    body: JSON.stringify({ cwd, title, body, base, baseRepo, draft, reviewers }),
   });
   const raw = await res.json();
   if (!res.ok || raw.error) {

From 3b87cab6eba12ae29025d552e4bb3f5812d51ad4 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 06:23:51 -0400
Subject: [PATCH 03/44] feat: Add PR AI language setting and standardize
 external link handling

Users can now configure the language for AI-generated pull request titles and
descriptions to be either English (default) or match the app's UI locale.

Additionally, this commit replaces direct `window.open` calls with
`openExternalUrl` across various components. This ensures that external
links open correctly via the operating system's default browser when running
in the Tauri webview, where `window.open` is a no-op.
---
 apps/desktop/src/components/PrCreateView.vue    |  5 ++++-
 apps/desktop/src/components/PrDetailView.vue    |  4 +++-
 .../desktop/src/components/PullRequestPanel.vue |  4 +++-
 apps/desktop/src/components/SettingsPanel.vue   | 17 +++++++++++++++--
 apps/desktop/src/composables/useAppMenu.ts      |  6 +++---
 .../desktop/src/composables/useCommitActions.ts |  3 ++-
 apps/desktop/src/composables/useSettings.ts     |  6 ++++++
 apps/desktop/src/locales/en.ts                  |  4 ++++
 apps/desktop/src/locales/es.ts                  |  4 ++++
 apps/desktop/src/locales/fr.ts                  |  4 ++++
 apps/desktop/src/locales/pt-BR.ts               |  4 ++++
 apps/desktop/src/locales/zh-CN.ts               |  4 ++++
 12 files changed, 56 insertions(+), 9 deletions(-)

diff --git a/apps/desktop/src/components/PrCreateView.vue b/apps/desktop/src/components/PrCreateView.vue
index 842b0659..e0fd2c18 100644
--- a/apps/desktop/src/components/PrCreateView.vue
+++ b/apps/desktop/src/components/PrCreateView.vue
@@ -17,6 +17,7 @@ import { ghListReviewerCandidates, type GitBranch, type ReviewerCandidate } from
 import { useI18n } from "../composables/useI18n";
 import { useAIProvider } from "../composables/useAIProvider";
 import { usePrDescription } from "../composables/usePrDescription";
+import { loadSettings } from "../composables/useSettings";
 import AiSparkle from "./AiSparkle.vue";
 
 const props = defineProps<{
@@ -38,11 +39,13 @@ async function generateWithAI() {
   const hasContent = p.newPrTitle.value.trim() || p.newPrBody.value.trim();
   if (hasContent && !confirm(t("pr.create.aiReplaceConfirm"))) return;
   try {
+    // PR language: "english" (default) forces English; "ui" follows the app locale.
+    const prLang = loadSettings().prAiLanguage === "ui" ? locale.value : "en";
     const result = await generatePrDescription(
       props.cwd,
       props.currentBranch,
       p.newPrBase.value,
-      { locale: locale.value },
+      { locale: prLang },
     );
     if (result.title) p.newPrTitle.value = result.title;
     if (result.body) p.newPrBody.value = result.body;
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 6307b1ca..0c10edab 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -14,6 +14,7 @@
 import { computed, inject, ref } from "vue";
 import { PR_PANEL_KEY, type PrPanelState } from "../composables/usePrPanel";
 import { renderMarkdown } from "../composables/useSafeHtml";
+import { openExternalUrl } from "../utils/backend";
 import { useI18n } from "../composables/useI18n";
 import PrInlineDiff from "./PrInlineDiff.vue";
 import PrReviewModal from "./PrReviewModal.vue";
@@ -28,7 +29,8 @@ const emit = defineEmits<{
 
 const p = inject<PrPanelState>(PR_PANEL_KEY)!;
 
-function openInBrowser(url: string) { window.open(url, "_blank"); }
+// window.open is a no-op in the Tauri webview — hand the URL to the OS opener.
+function openInBrowser(url: string) { void openExternalUrl(url); }
 
 /** Author initials for the avatar disk. */
 function authorInitials(author: string): string {
diff --git a/apps/desktop/src/components/PullRequestPanel.vue b/apps/desktop/src/components/PullRequestPanel.vue
index 12c5c7c8..707d38d1 100644
--- a/apps/desktop/src/components/PullRequestPanel.vue
+++ b/apps/desktop/src/components/PullRequestPanel.vue
@@ -6,6 +6,7 @@ import {
   ghCreatePr,
   ghCheckoutPr,
   ghMergePr,
+  openExternalUrl,
   ghPrDetail,
   ghPrDiff,
   ghPrChecks,
@@ -306,7 +307,8 @@ async function mergePr() {
   } catch (err: any) { error.value = err.message; }
 }
 
-function openInBrowser(url: string) { window.open(url, "_blank"); }
+// window.open is a no-op in the Tauri webview — hand the URL to the OS opener.
+function openInBrowser(url: string) { void openExternalUrl(url); }
 
 // ─── Comment actions ─────────────────────────────────────
 async function handleCreateComment(params: CreatePrCommentParams & { path: string }) {
diff --git a/apps/desktop/src/components/SettingsPanel.vue b/apps/desktop/src/components/SettingsPanel.vue
index 1a8ed0ce..efa175a9 100644
--- a/apps/desktop/src/components/SettingsPanel.vue
+++ b/apps/desktop/src/components/SettingsPanel.vue
@@ -74,7 +74,7 @@ import { useIdentity } from "../composables/useIdentity";
 import { useCommitTemplates } from "../composables/useCommitTemplates";
 import { useAiPromptPresets, BUILTIN_PRESETS } from "../composables/useAiPromptPresets";
 import type { IdentityProfile, CommitTemplate, AiPromptPreset } from "../composables/useSettings";
-import { gitCommitTemplatePath } from "../utils/backend";
+import { gitCommitTemplatePath, openExternalUrl } from "../utils/backend";
 export type { AIProvider };
 
 // Re-export for back-compat — earlier callers imported this shape from
@@ -113,6 +113,7 @@ interface Settings {
   defaultBranch: string;
   commitSignature: boolean;
   commitMessageLang: string; // "" = follow UI locale
+  prAiLanguage: "english" | "ui";
   diffMode: DiffMode;
   pullMode: PullMode;
   switchBehavior: SwitchBehavior;
@@ -164,6 +165,7 @@ const defaultSettings: Settings = {
   defaultBranch: "main",
   commitSignature: true,
   commitMessageLang: "",
+  prAiLanguage: "english",
   diffMode: "inline",
   pullMode: "merge",
   switchBehavior: "ask",
@@ -472,7 +474,7 @@ const claudeConnectError = ref<string | null>(null);
 
 function startClaudeConnect() {
   // Open the Anthropic console key creation page
-  window.open("https://console.anthropic.com/settings/keys", "_blank");
+  void openExternalUrl("https://console.anthropic.com/settings/keys");
   claudeConnectStep.value = "waiting";
   claudeConnectError.value = null;
 }
@@ -1110,6 +1112,17 @@ function savePresetForm() {
             <span class="sp-hint">{{ t('settings.commitMessageLangHint') }}</span>
           </div>
 
+          <!-- PR AI language -->
+          <div class="sp-row">
+            <label class="sp-label" for="setting-pr-ai-lang">{{ t('settings.prAiLanguage') }}</label>
+            <select id="setting-pr-ai-lang" class="sp-select" :value="settings.prAiLanguage"
+              @change="updateSetting('prAiLanguage', ($event.target as HTMLSelectElement).value as 'english' | 'ui')">
+              <option value="english">{{ t('settings.prAiLanguageEnglish') }}</option>
+              <option value="ui">{{ t('settings.prAiLanguageUi') }}</option>
+            </select>
+            <span class="sp-hint">{{ t('settings.prAiLanguageHint') }}</span>
+          </div>
+
           <!-- Theme -->
           <div class="sp-row">
             <label class="sp-label" for="setting-theme">{{ t('settings.theme') }}</label>
diff --git a/apps/desktop/src/composables/useAppMenu.ts b/apps/desktop/src/composables/useAppMenu.ts
index cb6fe1bd..41a9c92a 100644
--- a/apps/desktop/src/composables/useAppMenu.ts
+++ b/apps/desktop/src/composables/useAppMenu.ts
@@ -2,7 +2,7 @@ import { onMounted, onUnmounted, watch, type ComputedRef, type Ref } from "vue";
 import { Menu, Submenu, MenuItem, PredefinedMenuItem } from "@tauri-apps/api/menu";
 import { useI18n } from "./useI18n";
 import { useFolderHistory } from "./useFolderHistory";
-import { isTauri } from "../utils/backend";
+import { isTauri, openExternalUrl } from "../utils/backend";
 
 /**
  * Native macOS menu bar — File / Edit / Repository / View / Window / Help.
@@ -337,12 +337,12 @@ export function useAppMenu(actions: AppMenuActions, state: AppMenuState) {
         await MenuItem.new({
           id: "help-whats-new",
           text: t("menu.whatsNew"),
-          action: () => window.open(URL_WHATS_NEW, "_blank"),
+          action: () => { void openExternalUrl(URL_WHATS_NEW); },
         }),
         await MenuItem.new({
           id: "help-report-issue",
           text: t("menu.reportIssue"),
-          action: () => window.open(URL_REPORT_ISSUE, "_blank"),
+          action: () => { void openExternalUrl(URL_REPORT_ISSUE); },
         }),
         await PredefinedMenuItem.new({ item: "Separator" }),
         await MenuItem.new({
diff --git a/apps/desktop/src/composables/useCommitActions.ts b/apps/desktop/src/composables/useCommitActions.ts
index 38288876..425aa6a4 100644
--- a/apps/desktop/src/composables/useCommitActions.ts
+++ b/apps/desktop/src/composables/useCommitActions.ts
@@ -22,6 +22,7 @@ import {
   gitRemoteInfo,
   gitDeleteTag,
   gitDeleteRemoteTag,
+  openExternalUrl,
 } from "../utils/backend";
 import { useI18n } from "./useI18n";
 import { useTagSuggestion } from "./useTagSuggestion";
@@ -369,7 +370,7 @@ export function useCommitActions(deps: Deps) {
           : info.provider === "bitbucket"
             ? `https://bitbucket.org/${info.owner}/${info.repo}/commits/${entry.hashFull}`
             : `https://github.com/${info.owner}/${info.repo}/commit/${entry.hashFull}`;
-      window.open(base, "_blank");
+      void openExternalUrl(base);
     } catch {
       repoError.value = t("commitCtx.noRemote");
     }
diff --git a/apps/desktop/src/composables/useSettings.ts b/apps/desktop/src/composables/useSettings.ts
index 49476b9e..d47cb1a9 100644
--- a/apps/desktop/src/composables/useSettings.ts
+++ b/apps/desktop/src/composables/useSettings.ts
@@ -91,6 +91,11 @@ export interface AppSettings {
   updateChannel: "stable" | "beta";
   /** Language used for AI-generated commit messages. "" = follow UI locale. */
   commitMessageLang: string;
+  /**
+   * Language for AI-generated PR title/body. "english" (default — PRs are most
+   * often written in English) or "ui" to match the app's current locale.
+   */
+  prAiLanguage: "english" | "ui";
   /** Whether AI features are enabled. */
   aiEnabled: boolean;
   /** Active AI provider. */
@@ -205,6 +210,7 @@ export const defaultAppSettings: AppSettings = {
   blameAlgorithm: "histogram",
   updateChannel: "stable",
   commitMessageLang: "",
+  prAiLanguage: "english",
   aiEnabled: false,
   aiProvider: "none",
   aiApiKey: "",
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index 79e13f3e..048edbd8 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -1088,6 +1088,10 @@ const en = {
     commitMessageLang: "Commit message language",
     commitMessageLangAuto: "Follow interface language",
     commitMessageLangHint: "Language used by AI to generate commit messages",
+    prAiLanguage: "PR description language",
+    prAiLanguageEnglish: "English",
+    prAiLanguageUi: "Match app language",
+    prAiLanguageHint: "Language used by AI to generate pull request titles and descriptions",
     theme: "Theme",
     themeDark: "Dark",
     themeLight: "Light",
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index d4f686ee..12eaa09b 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -1062,6 +1062,10 @@ const es: Locale = {
     commitMessageLang: "Idioma de los mensajes de commit",
     commitMessageLangAuto: "Seguir el idioma de la interfaz",
     commitMessageLangHint: "Idioma usado por la IA para generar mensajes de commit",
+    prAiLanguage: "Idioma de las descripciones de PR",
+    prAiLanguageEnglish: "Inglés",
+    prAiLanguageUi: "Seguir el idioma de la app",
+    prAiLanguageHint: "Idioma usado por la IA para generar títulos y descripciones de pull request",
     theme: "Tema",
     themeDark: "Oscuro",
     themeLight: "Claro",
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index 98ce3ed8..888732c1 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -1073,6 +1073,10 @@ const fr: Locale = {
     commitMessageLang: "Langue des messages de commit",
     commitMessageLangAuto: "Suivre la langue de l\u2019interface",
     commitMessageLangHint: "Langue utilis\u00e9e par l\u2019IA pour g\u00e9n\u00e9rer les messages de commit",
+    prAiLanguage: "Langue des descriptions de PR",
+    prAiLanguageEnglish: "Anglais",
+    prAiLanguageUi: "Suivre la langue de l\u2019app",
+    prAiLanguageHint: "Langue utilis\u00e9e par l\u2019IA pour g\u00e9n\u00e9rer les titres et descriptions de pull request",
     theme: "Th\u00e8me",
     themeDark: "Sombre",
     themeLight: "Clair",
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index dbfbfd49..569fda42 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -1063,6 +1063,10 @@ const ptBR: Locale = {
     commitMessageLang: "Idioma das mensagens de commit",
     commitMessageLangAuto: "Seguir o idioma da interface",
     commitMessageLangHint: "Idioma usado pela IA para gerar mensagens de commit",
+    prAiLanguage: "Idioma das descrições de PR",
+    prAiLanguageEnglish: "Inglês",
+    prAiLanguageUi: "Seguir o idioma do app",
+    prAiLanguageHint: "Idioma usado pela IA para gerar títulos e descrições de pull request",
     theme: "Tema",
     themeDark: "Escuro",
     themeLight: "Claro",
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index 293ddb2f..213feb81 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -1050,6 +1050,10 @@ const zhCN: Locale = {
     commitMessageLang: "提交信息语言",
     commitMessageLangAuto: "跟随界面语言",
     commitMessageLangHint: "AI 生成提交信息时使用的语言",
+    prAiLanguage: "PR 描述语言",
+    prAiLanguageEnglish: "英语",
+    prAiLanguageUi: "跟随应用语言",
+    prAiLanguageHint: "AI 生成拉取请求标题和描述时使用的语言",
     theme: "主题",
     themeDark: "深色",
     themeLight: "浅色",

From 5932fd94451bf1f0115f2fe3515e44acdc46f120 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 06:31:53 -0400
Subject: [PATCH 04/44] feat(pr): surface upstream PRs and actions for forked
 repos

When the current repository is a fork, the PR list fetched via the GitHub
REST API will now include pull requests opened from the fork to its
upstream parent repository.

Operations like viewing PR details, diffs, checks, or merging will
also transparently resolve to the correct upstream repository for these
cross-repository pull requests, providing a more complete workflow.
---
 CHANGELOG.md                                  |   1 +
 .../src-tauri/src/commands/github_api.rs      | 143 +++++++++++++-----
 2 files changed, 103 insertions(+), 41 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c31a2f15..d13648a7 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,6 +10,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ### Added
 
 - **Cross-fork pull requests** — when the repo's `origin` is a fork, the PR create view shows a target-repository selector (upstream parent vs your fork), defaulting to upstream. Works on both the REST (token) path — head is qualified as `fork-owner:branch` — and the `gh` path (`--repo`). New `gh_fork_info` command detects the relationship.
+- **Fork PRs in the list** — on the REST (token) path, the PR list for a fork now also includes the PRs you opened on the upstream repo (head repo == your fork), merged and sorted with origin's own PRs. PR detail/diff/checks/merge transparently resolve to the upstream repo for those entries.
 - **Sign in with GitHub (no `gh` CLI required)** — Settings → Accounts now offers a "Sign in with GitHub" button using the OAuth device flow. The resulting token is stored in the OS keychain; once present, the GitHub PR workflow (list, count, detail, diff, checks, files, create, merge, checkout, mark-ready) routes through the GitHub REST API instead of shelling out to `gh`. The `gh` CLI still works as before when no Settings token is configured — the ambient `GH_TOKEN`/`GITHUB_TOKEN` env path is unchanged.
 
 ### Notes
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 97ee8729..430aa05f 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -333,6 +333,7 @@ pub(crate) fn rest_list_prs(
     token: &str,
 ) -> Result<Vec<PullRequest>, String> {
     let (owner, repo) = owner_repo(cwd)?;
+    let origin = format!("{}/{}", owner, repo);
     let page = limit.max(1);
     let off = offset.max(0);
     // Naïve pagination identical to gh_list_prs: fetch offset+limit, then slice.
@@ -344,13 +345,53 @@ pub(crate) fn rest_list_prs(
         "all" => "all",
         _ => "open",
     };
-    let url = format!(
-        "{}/repos/{}/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
-        API_BASE, owner, repo, api_state, per_page
-    );
-    let v = api_json("GET", &url, token, None)?;
-    let arr = v.as_array().cloned().unwrap_or_default();
-    let mut prs: Vec<PullRequest> = arr
+
+    // PRs that live in origin.
+    let mut raw: Vec<serde_json::Value> = api_json(
+        "GET",
+        &format!(
+            "{}/repos/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
+            API_BASE, origin, api_state, per_page
+        ),
+        token,
+        None,
+    )?
+    .as_array()
+    .cloned()
+    .unwrap_or_default();
+
+    // When origin is a fork, also surface the PRs you opened on the upstream
+    // repo (head repo == your fork) — these never appear in origin's pulls.
+    if let Ok(fi) = rest_fork_info(cwd, token) {
+        if fi.is_fork && !fi.parent.is_empty() {
+            if let Ok(up) = api_json(
+                "GET",
+                &format!(
+                    "{}/repos/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
+                    API_BASE, fi.parent, api_state, per_page
+                ),
+                token,
+                None,
+            ) {
+                for pr in up.as_array().cloned().unwrap_or_default() {
+                    let head_repo = pr
+                        .get("head")
+                        .and_then(|h| h.get("repo"))
+                        .and_then(|r| r.get("full_name"))
+                        .and_then(|s| s.as_str())
+                        .unwrap_or("");
+                    if head_repo.eq_ignore_ascii_case(&origin) {
+                        raw.push(pr);
+                    }
+                }
+            }
+        }
+    }
+
+    // Newest-first — updated_at is ISO-8601, so lexicographic compare works.
+    raw.sort_by(|a, b| js(b, "updated_at").cmp(&js(a, "updated_at")));
+
+    let mut prs: Vec<PullRequest> = raw
         .iter()
         .filter(|pr| {
             if state == "merged" {
@@ -369,6 +410,44 @@ pub(crate) fn rest_list_prs(
     Ok(prs)
 }
 
+/// Fetch a PR object, trying `origin` first and falling back to the upstream
+/// parent (for fork → upstream PRs that don't live in origin). Returns the
+/// `owner/repo` the PR actually lives in alongside its JSON, so callers issue
+/// follow-up requests against the right repo.
+fn get_pr_json(cwd: &str, number: i64, token: &str) -> Result<(String, serde_json::Value), String> {
+    let (owner, repo) = owner_repo(cwd)?;
+    let origin = format!("{}/{}", owner, repo);
+    let (st, body) = curl_raw(
+        "GET",
+        &format!("{}/repos/{}/pulls/{}", API_BASE, origin, number),
+        Some(token),
+        None,
+        "application/vnd.github+json",
+    )?;
+    if st < 400 {
+        let v = serde_json::from_str(body.trim()).map_err(|e| format!("parse PR: {}", e))?;
+        return Ok((origin, v));
+    }
+    if st == 404 {
+        if let Ok(fi) = rest_fork_info(cwd, token) {
+            if fi.is_fork && !fi.parent.is_empty() {
+                let (st2, body2) = curl_raw(
+                    "GET",
+                    &format!("{}/repos/{}/pulls/{}", API_BASE, fi.parent, number),
+                    Some(token),
+                    None,
+                    "application/vnd.github+json",
+                )?;
+                if st2 < 400 {
+                    let v = serde_json::from_str(body2.trim()).map_err(|e| format!("parse PR: {}", e))?;
+                    return Ok((fi.parent, v));
+                }
+            }
+        }
+    }
+    Err(format!("GitHub API error ({}) fetching PR #{}", st, number))
+}
+
 pub(crate) fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64, String> {
     let (owner, repo) = owner_repo(cwd)?;
     let qualifier = match state.to_lowercase().as_str() {
@@ -387,15 +466,15 @@ pub(crate) fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64,
 }
 
 pub(crate) fn rest_pr_detail(cwd: &str, number: i64, token: &str) -> Result<PullRequestDetail, String> {
-    let (owner, repo) = owner_repo(cwd)?;
-    let url = format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number);
-    let v = api_json("GET", &url, token, None)?;
+    let (_repo, v) = get_pr_json(cwd, number, token)?;
     Ok(json_to_detail(&v))
 }
 
 pub(crate) fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String, String> {
-    let (owner, repo) = owner_repo(cwd)?;
-    let url = format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number);
+    // Resolve which repo the PR lives in (origin or upstream parent), then fetch
+    // its diff from there.
+    let (repo, _pr) = get_pr_json(cwd, number, token)?;
+    let url = format!("{}/repos/{}/pulls/{}", API_BASE, repo, number);
     let (status, body) = curl_raw("GET", &url, Some(token), None, "application/vnd.github.v3.diff")?;
     if status >= 400 {
         return Err(format!("GitHub diff failed (HTTP {})", status));
@@ -404,19 +483,13 @@ pub(crate) fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String
 }
 
 pub(crate) fn rest_pr_checks(cwd: &str, number: i64, token: &str) -> Result<Vec<CICheck>, String> {
-    let (owner, repo) = owner_repo(cwd)?;
-    // Resolve the PR head SHA, then list check-runs for that commit.
-    let pr = api_json(
-        "GET",
-        &format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number),
-        token,
-        None,
-    )?;
+    // Resolve repo + head SHA, then list check-runs for that commit.
+    let (repo, pr) = get_pr_json(cwd, number, token)?;
     let sha = jnested(&pr, "head", "sha");
     if sha.is_empty() {
         return Ok(Vec::new());
     }
-    let url = format!("{}/repos/{}/{}/commits/{}/check-runs", API_BASE, owner, repo, sha);
+    let url = format!("{}/repos/{}/commits/{}/check-runs", API_BASE, repo, sha);
     let v = match api_json("GET", &url, token, None) {
         Ok(v) => v,
         Err(_) => return Ok(Vec::new()), // no checks configured — not fatal
@@ -435,8 +508,8 @@ pub(crate) fn rest_pr_checks(cwd: &str, number: i64, token: &str) -> Result<Vec<
 }
 
 pub(crate) fn rest_pr_files(cwd: &str, number: i64, token: &str) -> Result<Vec<String>, String> {
-    let (owner, repo) = owner_repo(cwd)?;
-    let url = format!("{}/repos/{}/{}/pulls/{}/files?per_page=100", API_BASE, owner, repo, number);
+    let (repo, _pr) = get_pr_json(cwd, number, token)?;
+    let url = format!("{}/repos/{}/pulls/{}/files?per_page=100", API_BASE, repo, number);
     let v = api_json("GET", &url, token, None)?;
     let files = v
         .as_array()
@@ -534,42 +607,30 @@ pub(crate) fn rest_create_pr(
 }
 
 pub(crate) fn rest_merge_pr(cwd: &str, number: i64, method: &str, token: &str) -> Result<(), String> {
-    let (owner, repo) = owner_repo(cwd)?;
     let merge_method = match method {
         "squash" => "squash",
         "rebase" => "rebase",
         _ => "merge",
     };
-    // Capture the head branch first so we can delete it after a clean merge.
-    let pr = api_json(
-        "GET",
-        &format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number),
-        token,
-        None,
-    )?;
+    // Resolve the repo (origin or upstream) + head branch for cleanup.
+    let (repo, pr) = get_pr_json(cwd, number, token)?;
     let branch = jnested(&pr, "head", "ref");
 
     let payload = serde_json::json!({ "merge_method": merge_method });
-    let url = format!("{}/repos/{}/{}/pulls/{}/merge", API_BASE, owner, repo, number);
+    let url = format!("{}/repos/{}/pulls/{}/merge", API_BASE, repo, number);
     api_json("PUT", &url, token, Some(&payload.to_string()))?;
 
     // Best-effort branch deletion (mirrors `gh pr merge --delete-branch`).
     if !branch.is_empty() {
-        let ref_url = format!("{}/repos/{}/{}/git/refs/heads/{}", API_BASE, owner, repo, branch);
+        let ref_url = format!("{}/repos/{}/git/refs/heads/{}", API_BASE, repo, branch);
         let _ = api_json("DELETE", &ref_url, token, None);
     }
     Ok(())
 }
 
 pub(crate) fn rest_pr_ready(cwd: &str, number: i64, token: &str) -> Result<(), String> {
-    let (owner, repo) = owner_repo(cwd)?;
-    // Draft→ready is GraphQL-only; resolve the PR node_id first.
-    let pr = api_json(
-        "GET",
-        &format!("{}/repos/{}/{}/pulls/{}", API_BASE, owner, repo, number),
-        token,
-        None,
-    )?;
+    // Draft→ready is GraphQL-only; resolve the PR node_id first (origin or upstream).
+    let (_repo, pr) = get_pr_json(cwd, number, token)?;
     let node_id = js(&pr, "node_id");
     if node_id.is_empty() {
         return Err("Could not resolve PR node_id for ready conversion.".to_string());

From 3698d416f1effe95b6564971357bb9e230227f53 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 06:53:53 -0400
Subject: [PATCH 05/44] refactor(pr): Consolidate fork information handling

Remove the unused `parent_default_branch` field from the `ForkInfo` struct.
Introduce an `upstream_parent` helper function to centralize the logic for
detecting when a repository is a fork of an upstream parent. This simplifies
PR listing and detail views for cross-repository pull requests.

Additionally, streamline the PR creation view for fork targets and standardize
external URL opening in `App.vue` for consistency.
---
 apps/desktop/src-tauri/src/commands/gh.rs     |  4 +-
 .../src-tauri/src/commands/github_api.rs      | 80 +++++++++----------
 apps/desktop/src-tauri/src/types.rs           |  2 -
 apps/desktop/src/App.vue                      |  6 +-
 apps/desktop/src/components/PrCreateView.vue  | 30 ++++---
 apps/desktop/src/utils/backend-pr.ts          |  4 +-
 6 files changed, 61 insertions(+), 65 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index 46048d17..0dba9238 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -590,7 +590,5 @@ pub(crate) fn gh_fork_info(cwd: String) -> Result<ForkInfo, String> {
             Some(format!("{}/{}", owner, name))
         })
         .unwrap_or_default();
-    // gh repo view doesn't expose the parent's default branch; the UI falls back
-    // to letting the user type the base branch (PR create resolves it server-side).
-    Ok(ForkInfo { is_fork, origin, parent, parent_default_branch: String::new() })
+    Ok(ForkInfo { is_fork, origin, parent })
 }
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 430aa05f..d9d9706c 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -362,27 +362,25 @@ pub(crate) fn rest_list_prs(
 
     // When origin is a fork, also surface the PRs you opened on the upstream
     // repo (head repo == your fork) — these never appear in origin's pulls.
-    if let Ok(fi) = rest_fork_info(cwd, token) {
-        if fi.is_fork && !fi.parent.is_empty() {
-            if let Ok(up) = api_json(
-                "GET",
-                &format!(
-                    "{}/repos/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
-                    API_BASE, fi.parent, api_state, per_page
-                ),
-                token,
-                None,
-            ) {
-                for pr in up.as_array().cloned().unwrap_or_default() {
-                    let head_repo = pr
-                        .get("head")
-                        .and_then(|h| h.get("repo"))
-                        .and_then(|r| r.get("full_name"))
-                        .and_then(|s| s.as_str())
-                        .unwrap_or("");
-                    if head_repo.eq_ignore_ascii_case(&origin) {
-                        raw.push(pr);
-                    }
+    if let Some(parent) = upstream_parent(cwd, token) {
+        if let Ok(up) = api_json(
+            "GET",
+            &format!(
+                "{}/repos/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
+                API_BASE, parent, api_state, per_page
+            ),
+            token,
+            None,
+        ) {
+            for pr in up.as_array().cloned().unwrap_or_default() {
+                let head_repo = pr
+                    .get("head")
+                    .and_then(|h| h.get("repo"))
+                    .and_then(|r| r.get("full_name"))
+                    .and_then(|s| s.as_str())
+                    .unwrap_or("");
+                if head_repo.eq_ignore_ascii_case(&origin) {
+                    raw.push(pr);
                 }
             }
         }
@@ -429,19 +427,17 @@ fn get_pr_json(cwd: &str, number: i64, token: &str) -> Result<(String, serde_jso
         return Ok((origin, v));
     }
     if st == 404 {
-        if let Ok(fi) = rest_fork_info(cwd, token) {
-            if fi.is_fork && !fi.parent.is_empty() {
-                let (st2, body2) = curl_raw(
-                    "GET",
-                    &format!("{}/repos/{}/pulls/{}", API_BASE, fi.parent, number),
-                    Some(token),
-                    None,
-                    "application/vnd.github+json",
-                )?;
-                if st2 < 400 {
-                    let v = serde_json::from_str(body2.trim()).map_err(|e| format!("parse PR: {}", e))?;
-                    return Ok((fi.parent, v));
-                }
+        if let Some(parent) = upstream_parent(cwd, token) {
+            let (st2, body2) = curl_raw(
+                "GET",
+                &format!("{}/repos/{}/pulls/{}", API_BASE, parent, number),
+                Some(token),
+                None,
+                "application/vnd.github+json",
+            )?;
+            if st2 < 400 {
+                let v = serde_json::from_str(body2.trim()).map_err(|e| format!("parse PR: {}", e))?;
+                return Ok((parent, v));
             }
         }
     }
@@ -530,13 +526,15 @@ pub(crate) fn rest_fork_info(cwd: &str, token: &str) -> Result<ForkInfo, String>
         .and_then(|n| n.as_str())
         .unwrap_or("")
         .to_string();
-    let parent_default_branch = info
-        .get("parent")
-        .and_then(|p| p.get("default_branch"))
-        .and_then(|n| n.as_str())
-        .unwrap_or("")
-        .to_string();
-    Ok(ForkInfo { is_fork, origin, parent, parent_default_branch })
+    Ok(ForkInfo { is_fork, origin, parent })
+}
+
+/// The upstream parent `owner/repo` when the current repo is a fork, else None.
+/// Centralizes the `is_fork && !parent.is_empty()` guard shared by the PR list
+/// and the origin→upstream PR fallback.
+fn upstream_parent(cwd: &str, token: &str) -> Option<String> {
+    let fi = rest_fork_info(cwd, token).ok()?;
+    (fi.is_fork && !fi.parent.is_empty()).then_some(fi.parent)
 }
 
 pub(crate) fn rest_create_pr(
diff --git a/apps/desktop/src-tauri/src/types.rs b/apps/desktop/src-tauri/src/types.rs
index 3b46d503..27379b8d 100644
--- a/apps/desktop/src-tauri/src/types.rs
+++ b/apps/desktop/src-tauri/src/types.rs
@@ -489,8 +489,6 @@ pub struct ForkInfo {
     pub origin: String,
     /// Parent/upstream as `owner/repo`, or "" when not a fork.
     pub parent: String,
-    /// Parent's default branch (e.g. "main"), or "" when unknown / not a fork.
-    pub parent_default_branch: String,
 }
 
 // ─── GitHub OAuth device flow ──────────────────────────────────────
diff --git a/apps/desktop/src/App.vue b/apps/desktop/src/App.vue
index eb6508fc..268cba50 100644
--- a/apps/desktop/src/App.vue
+++ b/apps/desktop/src/App.vue
@@ -102,7 +102,7 @@ const { settings, refreshSettings } = useSettings();
 const { isOffline: navIsOffline } = useNetworkStatus();
 const { isOnline: probedOnline, probeConnectivity } = useConnectivity();
 const isOffline = computed(() => navIsOffline.value || !probedOnline.value);
-import { isTauri, registerBrowserFolderPicker, pickFolder, checkForUpdates, fetchBetaUpdate, installUpdate, gitRepoState } from "./utils/backend";
+import { isTauri, registerBrowserFolderPicker, pickFolder, checkForUpdates, fetchBetaUpdate, installUpdate, gitRepoState, openExternalUrl } from "./utils/backend";
 import type { UpdateInfo, RepoOperationState, WorkspaceRepo } from "./utils/backend";
 // UpdateModal moved above (lazy-loaded) — type imported as UpdateModalType for the template ref
 
@@ -2035,7 +2035,7 @@ async function onInstallUpdate() {
   // The user downloads + installs themselves; we close our modal.
   if (pendingUpdate.value?.installMethod === "manual") {
     if (pendingUpdate.value.downloadUrl) {
-      window.open(pendingUpdate.value.downloadUrl, "_blank");
+      void openExternalUrl(pendingUpdate.value.downloadUrl);
     }
     pendingUpdate.value = null;
     return;
@@ -2092,7 +2092,7 @@ useAppMenu(
           : info.provider === "bitbucket"
             ? `https://bitbucket.org/${info.owner}/${info.repo}`
             : `https://github.com/${info.owner}/${info.repo}`;
-      window.open(url, "_blank");
+      void openExternalUrl(url);
     },
     toggleTheme,
     checkForUpdates: runUpdateCheck,
diff --git a/apps/desktop/src/components/PrCreateView.vue b/apps/desktop/src/components/PrCreateView.vue
index e0fd2c18..004eb50c 100644
--- a/apps/desktop/src/components/PrCreateView.vue
+++ b/apps/desktop/src/components/PrCreateView.vue
@@ -54,6 +54,16 @@ async function generateWithAI() {
   }
 }
 
+// Fork-target radio options: upstream parent first, then the fork (origin).
+const forkTargets = computed(() => {
+  const fi = p.forkInfo.value;
+  if (!fi?.isFork || !fi.parent) return [];
+  return [
+    { repo: fi.parent, badge: t("pr.create.targetUpstream") },
+    { repo: fi.origin, badge: t("pr.create.targetFork") },
+  ];
+});
+
 // ─── Base branch candidates ─────────────────────────────
 const baseCandidates = computed<string[]>(() => {
   const locals = new Set<string>();
@@ -394,24 +404,18 @@ function removeReviewer(name: string) {
       <div v-if="p.error.value" class="pcv-msg pcv-msg--error">{{ p.error.value }}</div>
 
       <!-- Fork target (only when origin is a fork) -->
-      <section v-if="p.forkInfo.value?.isFork && p.forkInfo.value.parent" class="pcv-section">
+      <section v-if="forkTargets.length" class="pcv-section">
         <label class="pcv-label">{{ t("pr.create.targetRepoLabel") }}</label>
         <div class="pcv-fork-target">
           <label
+            v-for="opt in forkTargets"
+            :key="opt.repo"
             class="pcv-fork-opt"
-            :class="{ 'pcv-fork-opt--active': p.newPrBaseRepo.value === p.forkInfo.value.parent }"
-          >
-            <input type="radio" :value="p.forkInfo.value.parent" v-model="p.newPrBaseRepo.value" />
-            <span class="pcv-fork-name mono">{{ p.forkInfo.value.parent }}</span>
-            <span class="pcv-fork-badge">{{ t("pr.create.targetUpstream") }}</span>
-          </label>
-          <label
-            class="pcv-fork-opt"
-            :class="{ 'pcv-fork-opt--active': p.newPrBaseRepo.value === p.forkInfo.value.origin }"
+            :class="{ 'pcv-fork-opt--active': p.newPrBaseRepo.value === opt.repo }"
           >
-            <input type="radio" :value="p.forkInfo.value.origin" v-model="p.newPrBaseRepo.value" />
-            <span class="pcv-fork-name mono">{{ p.forkInfo.value.origin }}</span>
-            <span class="pcv-fork-badge">{{ t("pr.create.targetFork") }}</span>
+            <input type="radio" :value="opt.repo" v-model="p.newPrBaseRepo.value" />
+            <span class="pcv-fork-name mono">{{ opt.repo }}</span>
+            <span class="pcv-fork-badge">{{ opt.badge }}</span>
           </label>
         </div>
         <p class="pcv-hint">{{ t("pr.create.targetHint") }}</p>
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index 46a8876a..9cac01ea 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -35,8 +35,6 @@ export interface ForkInfo {
   origin: string;
   /** Parent/upstream as "owner/repo", or "" when not a fork. */
   parent: string;
-  /** Parent's default branch, or "" when unknown. */
-  parentDefaultBranch: string;
 }
 
 /**
@@ -45,7 +43,7 @@ export interface ForkInfo {
  */
 export async function ghForkInfo(cwd: string): Promise<ForkInfo> {
   if (isTauri()) return tauriInvoke<ForkInfo>("gh_fork_info", { cwd });
-  return { isFork: false, origin: "", parent: "", parentDefaultBranch: "" };
+  return { isFork: false, origin: "", parent: "" };
 }
 
 /** Returns the list of file paths changed by a PR (lazy — call only when needed). */

From 81e6a32043c6480968abe08c4c3fb549af984746 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 07:04:14 -0400
Subject: [PATCH 06/44] feat(pr): Guide users to GitHub account settings from
 gh CLI error

When the GitHub CLI (`gh`) is not installed, the PR list sidebar now displays an enhanced error message including a hint and a button. Clicking this button directly opens the 'Accounts' tab in Settings. This helps users discover and configure GitHub authentication via the app's built-in OAuth process as an alternative to manual `gh auth login`.

This commit also introduces a generic mechanism to open the Settings panel to a specified tab and expands the range of available tab identifiers.
---
 apps/desktop/src/App.vue                           |  4 +++-
 apps/desktop/src/components/PrListSidebar.vue      | 11 +++++++++++
 apps/desktop/src/composables/branchPickerBridge.ts |  7 +++++++
 apps/desktop/src/composables/usePrPanel.ts         |  8 +++++++-
 apps/desktop/src/locales/en.ts                     |  2 ++
 apps/desktop/src/locales/es.ts                     |  2 ++
 apps/desktop/src/locales/fr.ts                     |  2 ++
 apps/desktop/src/locales/pt-BR.ts                  |  2 ++
 apps/desktop/src/locales/zh-CN.ts                  |  2 ++
 9 files changed, 38 insertions(+), 2 deletions(-)

diff --git a/apps/desktop/src/App.vue b/apps/desktop/src/App.vue
index 268cba50..d1c24372 100644
--- a/apps/desktop/src/App.vue
+++ b/apps/desktop/src/App.vue
@@ -88,6 +88,7 @@ import {
   LOG_FOCUS_SEARCH_KEY,
   LAUNCHPAD_OPEN_REQUEST_KEY,
   TOGGLE_GIT_TREE_KEY,
+  OPEN_SETTINGS_KEY,
 } from "./composables/branchPickerBridge";
 import { gitStash, gitStashPop, gitStashList, openInEditor, setGitConfig, gitDiscard, gitAddToGitignore, gitDeleteBranch, gitDeleteTag, gitDeleteRemoteTag, gitRemoteInfo, gitUnpushedTags, gitPushTags, workspaceRead, gitMergeBase, gitResetToCommit, gitCommitSubmoduleChanges, type CommitSubmoduleChange } from "./utils/backend";
 import { useCommitActions } from "./composables/useCommitActions";
@@ -337,6 +338,7 @@ provide(UNDO_POPOVER_REQUEST_KEY, undoPopoverRequest);
 provide(LOG_FOCUS_SEARCH_KEY, logFocusRequest);
 provide(LAUNCHPAD_OPEN_REQUEST_KEY, launchpadOpenRequest);
 provide(TOGGLE_GIT_TREE_KEY, () => { showGitTree.value = !showGitTree.value; });
+provide(OPEN_SETTINGS_KEY, (tab) => { settingsInitialTab.value = tab; showSettings.value = true; });
 provide("askConfirm", askConfirm);
 
 // ─── Multi-repo tabs (lightweight — paths only) ─────────
@@ -1124,7 +1126,7 @@ function onPaletteSelectCommit(hash: string) {
 
 // ─── Settings panel ─────────────────────────────────────
 const showSettings = ref(false);
-const settingsInitialTab = ref<"general" | "git" | "editor" | "ai" | "logs" | undefined>(undefined);
+const settingsInitialTab = ref<"general" | "git" | "editor" | "ai" | "automations" | "logs" | "hooks" | "accounts" | "mcp" | undefined>(undefined);
 
 // ─── Error log (in-memory ring buffer, feeds SettingsPanel Logs tab) ─
 // Uses the useLogs() singleton composable — no localStorage persistence so a
diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index 9f9e69a9..d1d929ae 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -12,11 +12,13 @@
  */
 import { computed, inject, onMounted, onBeforeUnmount, ref, watch } from "vue";
 import { PR_PANEL_KEY, type PrPanelState } from "../composables/usePrPanel";
+import { OPEN_SETTINGS_KEY } from "../composables/branchPickerBridge";
 import { useI18n } from "../composables/useI18n";
 
 const { t } = useI18n();
 
 const panel = inject<PrPanelState>(PR_PANEL_KEY)!;
+const openSettings = inject(OPEN_SETTINGS_KEY, undefined);
 
 // ─── Lazy pagination sentinel (v2.8.5 §E) ─────────────────
 // IntersectionObserver watches a 1px element at the bottom of the list;
@@ -173,6 +175,10 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
     <!-- Messages -->
     <div v-if="panel.error.value" class="pls-msg pls-msg--error">
       <span>{{ panel.error.value }}</span>
+      <template v-if="panel.errorAction.value === 'open-settings' && openSettings">
+        <span class="pls-msg-hint">{{ t('pr.error.ghNotInstalledHint') }}</span>
+        <button class="pls-msg-action" @click="openSettings('accounts')">{{ t('pr.error.openSettings') }}</button>
+      </template>
       <button class="pls-msg-action" @click="panel.loadPrs">{{ t('pr.error.retry') }}</button>
     </div>
     <div
@@ -504,6 +510,11 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
   gap: var(--space-2);
 }
 
+.pls-msg-hint {
+  font-size: var(--font-size-xs);
+  opacity: 0.85;
+}
+
 .pls-msg-action {
   align-self: flex-start;
   background: none;
diff --git a/apps/desktop/src/composables/branchPickerBridge.ts b/apps/desktop/src/composables/branchPickerBridge.ts
index 5366ba96..2bd20bdf 100644
--- a/apps/desktop/src/composables/branchPickerBridge.ts
+++ b/apps/desktop/src/composables/branchPickerBridge.ts
@@ -29,3 +29,10 @@ export const LAUNCHPAD_OPEN_REQUEST_KEY: InjectionKey<Ref<number>> = Symbol("lau
 
 /** Toggle the commit-graph git-tree panel (double-click on any file in Changes or Diff). */
 export const TOGGLE_GIT_TREE_KEY: InjectionKey<() => void> = Symbol("toggleGitTree");
+
+/** Settings tab identifiers accepted by {@link OPEN_SETTINGS_KEY}. */
+export type SettingsTabTarget =
+  | "general" | "git" | "editor" | "ai" | "automations" | "logs" | "hooks" | "accounts" | "mcp";
+
+/** Open the Settings panel, optionally on a specific tab (e.g. from the PR sidebar). */
+export const OPEN_SETTINGS_KEY: InjectionKey<(tab?: SettingsTabTarget) => void> = Symbol("openSettings");
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 8ba989bd..369ca655 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -47,6 +47,10 @@ export function usePrPanel(cwd: Ref<string>) {
   const prs = ref<PullRequest[]>([]);
   const loading = ref(false);
   const error = ref<string | null>(null);
+  // Optional follow-up action surfaced alongside an error. `"open-settings"`
+  // is set when the failure is actionable from Settings (e.g. gh CLI missing
+  // but the user can add a GitHub account instead). Reset on every reload.
+  const errorAction = ref<"open-settings" | null>(null);
   const success = ref<string | null>(null);
   const filterState = ref<"open" | "closed" | "all">("open");
   /** 'all' = no user filter | 'assigned' = assignees | 'reviews' = review_requested */
@@ -260,6 +264,7 @@ export function usePrPanel(cwd: Ref<string>) {
     }
     loading.value = true;
     error.value = null;
+    errorAction.value = null;
     // Reset pagination — first page only
     hasMore.value = true;
     try {
@@ -281,6 +286,7 @@ export function usePrPanel(cwd: Ref<string>) {
         (msg.includes("gh") && msg.includes("installed"));
       if (isGhMissing) {
         error.value = t("pr.error.ghNotInstalled");
+        errorAction.value = "open-settings";
       } else if (msg.includes("gh auth") || msg.includes("authentication") || msg.includes("token") || msg.includes("401")) {
         error.value = t("pr.error.noToken");
       } else if (msg.includes("404") || msg.includes("Could not resolve to a Repository")) {
@@ -693,7 +699,7 @@ export function usePrPanel(cwd: Ref<string>) {
 
   return {
     // State
-    remote, prs, loading, error, success, filterState, filterMode,
+    remote, prs, loading, error, errorAction, success, filterState, filterMode,
     currentUser, currentUserLoading, currentUserError,
     showCreateForm, newPrTitle, newPrBody, newPrBase, newPrDraft, newPrReviewers, isCreating,
     forkInfo, newPrBaseRepo,
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index 048edbd8..d7532886 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -933,6 +933,8 @@ const en = {
       noToken: "GitHub authentication required \u2014 run `gh auth login` in your terminal.",
       noRemote: "No GitHub remote found \u2014 make sure this repo has a GitHub origin.",
       ghNotInstalled: "GitHub CLI not installed \u2014 install it from cli.github.com.",
+      ghNotInstalledHint: "Or add your GitHub account from the settings.",
+      openSettings: "Open settings",
       unknown: "Failed to load pull requests.",
       retry: "Retry",
     },
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index 12eaa09b..83844a57 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -916,6 +916,8 @@ const es: Locale = {
       noToken: "Autenticación de GitHub requerida — ejecuta `gh auth login` en tu terminal.",
       noRemote: "No se encontró un remote de GitHub — verifica que este repo tenga un origin de GitHub.",
       ghNotInstalled: "GitHub CLI no instalado — instálalo desde cli.github.com.",
+      ghNotInstalledHint: "O añade tu cuenta de GitHub desde los ajustes.",
+      openSettings: "Abrir ajustes",
       unknown: "Error al cargar los pull requests.",
       retry: "Reintentar",
     },
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index 888732c1..293f242b 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -927,6 +927,8 @@ const fr: Locale = {
       noToken: "Authentification GitHub requise — lancez `gh auth login` dans votre terminal.",
       noRemote: "Aucune remote GitHub — vérifiez que ce dépôt a une origin GitHub.",
       ghNotInstalled: "GitHub CLI non installé — installez-le depuis cli.github.com.",
+      ghNotInstalledHint: "Ou ajoutez votre compte GitHub depuis les réglages.",
+      openSettings: "Ouvrir les réglages",
       unknown: "Impossible de charger les pull requests.",
       retry: "Réessayer",
     },
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index 569fda42..5fc29c8d 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -917,6 +917,8 @@ const ptBR: Locale = {
       noToken: "Autenticação do GitHub necessária — execute `gh auth login` no seu terminal.",
       noRemote: "Nenhum remote do GitHub encontrado — verifique se este repo tem uma origin do GitHub.",
       ghNotInstalled: "GitHub CLI não instalado — instale em cli.github.com.",
+      ghNotInstalledHint: "Ou adicione sua conta do GitHub nas configurações.",
+      openSettings: "Abrir configurações",
       unknown: "Falha ao carregar os pull requests.",
       retry: "Tentar novamente",
     },
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index 213feb81..57720472 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -905,6 +905,8 @@ const zhCN: Locale = {
       noToken: "需要 GitHub 认证 — 在终端运行 `gh auth login`。",
       noRemote: "未找到 GitHub 远程仓库 — 请确认此仓库有 GitHub origin。",
       ghNotInstalled: "未安装 GitHub CLI — 请从 cli.github.com 安装。",
+      ghNotInstalledHint: "或在设置中添加你的 GitHub 账户。",
+      openSettings: "打开设置",
       unknown: "加载 pull request 失败。",
       retry: "重试",
     },

From c77b7e17df7015d1114d928f23d97512091ff8e7 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 07:08:08 -0400
Subject: [PATCH 07/44] feat(accounts): Default account form to GitHub and hide
 manual username

Set GitHub as the default forge when adding a new account and hide the
manual username input field for GitHub accounts. This anticipates
fetching the username via OAuth, removing a redundant input step for users.
---
 apps/desktop/src/components/SettingsAccountsTab.vue | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/src/components/SettingsAccountsTab.vue b/apps/desktop/src/components/SettingsAccountsTab.vue
index 82fc06dc..e26a2a99 100644
--- a/apps/desktop/src/components/SettingsAccountsTab.vue
+++ b/apps/desktop/src/components/SettingsAccountsTab.vue
@@ -48,7 +48,7 @@ const {
 // ─── Add-account form ────────────────────────────────────────────────────────
 
 const showForm = ref(false);
-const formForge = ref<ForgeName>("bitbucket");
+const formForge = ref<ForgeName>("github");
 const formLabel = ref("");
 const formUsername = ref("");
 const formWorkspace = ref("");
@@ -57,7 +57,7 @@ const formError = ref<string | null>(null);
 const formSuccess = ref(false);
 
 function openForm() {
-  formForge.value = "bitbucket";
+  formForge.value = "github";
   formLabel.value = "";
   formUsername.value = "";
   formWorkspace.value = "";
@@ -203,7 +203,8 @@ const totalAccounts = computed(() => accounts.value.length);
           <input v-model="formLabel" type="text" class="sa-input" placeholder="work, perso, client-x…" />
         </div>
 
-        <div class="sa-field">
+        <!-- GitHub returns the username via OAuth — no manual input needed. -->
+        <div v-if="formForge !== 'github'" class="sa-field">
           <label class="sa-label">{{ t('settings.accountsUsernameLabel') }}</label>
           <input v-model="formUsername" type="text" class="sa-input" />
         </div>

From 50f03aaa9113878f70050b7de2ea297262143e61 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 07:41:41 -0400
Subject: [PATCH 08/44] feat: Add comprehensive Azure DevOps forge support

Introduce Azure DevOps as a new forge, allowing users to authenticate via
Entra ID OAuth device flow and manage pull requests directly within the app.

This includes:
- **Entra ID Device Flow:** Authenticate using "Sign in with Azure" in Settings > Accounts, storing the token in the OS keychain.
- **Pull Request Workflow:** List, view details, diffs, files, create, merge, checkout, and convert draft PRs to ready states via the Azure DevOps REST API (v7.1).
- **Auto-detection:** Automatically identify Azure DevOps remotes (`dev.azure.com`, `*.visualstudio.com`).
- **Partial PR Intelligence:** Conflict preview and hotspot analysis are reused (local git-based).

Comments, reviews, reviewer pickers, and CI checks are not yet implemented.
---
 CHANGELOG.md                                  |   2 +
 apps/desktop/src-tauri/src/commands/azure.rs  | 797 ++++++++++++++++++
 apps/desktop/src-tauri/src/commands/mod.rs    |   1 +
 apps/desktop/src-tauri/src/commands/ops.rs    |   2 +
 apps/desktop/src-tauri/src/lib.rs             |  13 +
 .../src/components/SettingsAccountsTab.vue    |  81 +-
 .../src/composables/forge/AzureProvider.ts    | 179 ++++
 apps/desktop/src/composables/forge/types.ts   |   2 +-
 .../desktop/src/composables/forge/useForge.ts |   1 +
 apps/desktop/src/composables/useAzureAuth.ts  | 144 ++++
 apps/desktop/src/locales/en.ts                |   7 +
 apps/desktop/src/locales/es.ts                |   7 +
 apps/desktop/src/locales/fr.ts                |   7 +
 apps/desktop/src/locales/pt-BR.ts             |   7 +
 apps/desktop/src/locales/zh-CN.ts             |   7 +
 apps/desktop/src/utils/backend-pr.ts          | 148 ++++
 16 files changed, 1399 insertions(+), 6 deletions(-)
 create mode 100644 apps/desktop/src-tauri/src/commands/azure.rs
 create mode 100644 apps/desktop/src/composables/forge/AzureProvider.ts
 create mode 100644 apps/desktop/src/composables/useAzureAuth.ts

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d13648a7..7cb1f912 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,10 +12,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - **Cross-fork pull requests** — when the repo's `origin` is a fork, the PR create view shows a target-repository selector (upstream parent vs your fork), defaulting to upstream. Works on both the REST (token) path — head is qualified as `fork-owner:branch` — and the `gh` path (`--repo`). New `gh_fork_info` command detects the relationship.
 - **Fork PRs in the list** — on the REST (token) path, the PR list for a fork now also includes the PRs you opened on the upstream repo (head repo == your fork), merged and sorted with origin's own PRs. PR detail/diff/checks/merge transparently resolve to the upstream repo for those entries.
 - **Sign in with GitHub (no `gh` CLI required)** — Settings → Accounts now offers a "Sign in with GitHub" button using the OAuth device flow. The resulting token is stored in the OS keychain; once present, the GitHub PR workflow (list, count, detail, diff, checks, files, create, merge, checkout, mark-ready) routes through the GitHub REST API instead of shelling out to `gh`. The `gh` CLI still works as before when no Settings token is configured — the ambient `GH_TOKEN`/`GITHUB_TOKEN` env path is unchanged.
+- **Azure DevOps support (new forge)** — Settings → Accounts now offers "Sign in with Azure" using the Entra ID OAuth device flow (same UX as GitHub). The access token is stored in the OS keychain (`gitwand:azure/oauth`). Azure DevOps remotes (`dev.azure.com`, `*.visualstudio.com`) are auto-detected and routed to a new `AzureProvider` backed by the Azure DevOps REST API (api-version 7.1): PR list/count/detail/diff/files/create/merge/checkout and draft→ready. Diff and file lists are produced from local git (Azure has no unified-patch endpoint). Comments, reviews, reviewer pickers and CI checks are not wired yet and degrade gracefully.
 
 ### Notes
 
 - Ships with GitWand's registered GitHub OAuth App `client_id` (`Ov23licwiCpPiRPRodWN`, public — device flow enabled) baked into `github_api.rs`. Override at runtime or build time via `GITWAND_GH_CLIENT_ID` if needed.
+- Azure DevOps sign-in ships with a **temporary** default Entra ID client id — the well-known Azure CLI public client (`04b07795-8ddb-461a-bbee-02f9e1bf7b46`, device flow enabled) — so it works without registering an app. Stop-gap only: the consent screen reads "Microsoft Azure CLI" and Microsoft may restrict reuse. Override with a dedicated GitWand Entra app via `GITWAND_AZURE_CLIENT_ID` (runtime or build time) before shipping.
 
 ## [2.17.0] - 2026-06-04
 
diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
new file mode 100644
index 00000000..2a2a9e4d
--- /dev/null
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -0,0 +1,797 @@
+//! Azure DevOps REST / Entra ID OAuth Tauri commands.
+//!
+//! ## Why this exists
+//!
+//! Mirrors `github_api.rs` for Azure DevOps Services (dev.azure.com /
+//! *.visualstudio.com). GitWand had no Azure forge before; this module adds a
+//! self-contained auth + PR workflow path so users can sign in and drive PRs
+//! without any CLI.
+//!
+//!   1. **Entra ID device flow** (`azure_device_start` / `azure_device_poll`):
+//!      "Sign in with Azure" from Settings → Accounts. Microsoft's identity
+//!      platform exposes the OAuth 2.0 device authorization grant, which maps
+//!      1-for-1 onto the existing GitHub device-flow UI. The resulting access
+//!      token is stored in the OS keychain under `service = "gitwand:azure"`,
+//!      `account = "oauth"`.
+//!   2. **REST API calls** via `curl` (Bearer token) against the Azure DevOps
+//!      `_apis/git` endpoints (api-version 7.1).
+//!
+//! ## Auth resource / scope
+//!
+//! Azure DevOps is a first-party Entra resource (app id
+//! `499b84ac-1321-427f-aa17-267ca6975798`). We request `.default` on it plus
+//! `offline_access` so a refresh token is available for follow-up work.
+//!
+//! ## Security note
+//!
+//! The token is injected via the `Authorization` header in `curl` process
+//! arguments — same exposure profile as `github_api.rs` / `bitbucket.rs`. The
+//! token is never logged or returned to the frontend.
+
+use crate::git::{git_cmd, hidden_cmd};
+use crate::types::*;
+
+// ─── Constants ──────────────────────────────────────────────────────────────
+
+/// Keychain service for the Settings-managed Azure token.
+pub(crate) const AZ_SERVICE: &str = "gitwand:azure";
+/// Keychain account key — fixed, resolved without knowing the login up front.
+pub(crate) const AZ_ACCOUNT: &str = "oauth";
+
+/// Azure DevOps first-party resource app id — the audience our access token
+/// targets. Stable, public, documented by Microsoft.
+const AZURE_DEVOPS_RESOURCE: &str = "499b84ac-1321-427f-aa17-267ca6975798";
+
+/// Azure DevOps REST api-version pinned across this module.
+const API_VERSION: &str = "7.1";
+
+/// Entra ID OAuth endpoints. `organizations` admits any work/school tenant
+/// (the common case for Azure DevOps) while excluding personal MSAs, which
+/// cannot hold Azure DevOps identities anyway.
+const DEVICECODE_URL: &str =
+    "https://login.microsoftonline.com/organizations/oauth2/v2.0/devicecode";
+const TOKEN_URL: &str = "https://login.microsoftonline.com/organizations/oauth2/v2.0/token";
+
+/// Entra ID public-client application id (device-flow enabled).
+///
+/// Resolution order mirrors `github_api.rs::client_id`:
+///   1. `GITWAND_AZURE_CLIENT_ID` at runtime (env of the running app).
+///   2. `GITWAND_AZURE_CLIENT_ID` baked in at build time.
+///   3. Fallback default (see below).
+///
+/// **TEMPORARY default** — the well-known Azure CLI public client id
+/// (`04b07795-8ddb-461a-bbee-02f9e1bf7b46`). It is a Microsoft first-party
+/// public client with device flow enabled, so it works out of the box without
+/// registering our own app. This is a stop-gap: it is *not* GitWand's app, the
+/// consent screen reads "Microsoft Azure CLI", and Microsoft may restrict its
+/// reuse at any time. Replace with a dedicated GitWand Entra app registration
+/// (Azure Portal → App registrations → "Allow public client flows" = Yes) and
+/// supply its id via `GITWAND_AZURE_CLIENT_ID` before shipping.
+fn client_id() -> String {
+    if let Ok(v) = std::env::var("GITWAND_AZURE_CLIENT_ID") {
+        let v = v.trim().to_string();
+        if !v.is_empty() {
+            return v;
+        }
+    }
+    option_env!("GITWAND_AZURE_CLIENT_ID")
+        .unwrap_or("04b07795-8ddb-461a-bbee-02f9e1bf7b46")
+        .to_string()
+}
+
+// ─── Token resolution ───────────────────────────────────────────────────────
+
+/// Read the Settings-managed Azure token from the OS keychain.
+pub(crate) fn settings_azure_token() -> Option<String> {
+    let entry = keyring::Entry::new(AZ_SERVICE, AZ_ACCOUNT).ok()?;
+    let tok = entry.get_password().ok()?;
+    let tok = tok.trim().to_string();
+    if tok.is_empty() { None } else { Some(tok) }
+}
+
+fn require_token() -> Result<String, String> {
+    settings_azure_token().ok_or_else(|| {
+        "Not signed in to Azure DevOps. Open Settings → Accounts and sign in with Azure."
+            .to_string()
+    })
+}
+
+// ─── org/project/repo resolution ────────────────────────────────────────────
+
+/// Identifies an Azure DevOps repository: organization, project, repo.
+struct AzureRepo {
+    org: String,
+    project: String,
+    repo: String,
+}
+
+impl AzureRepo {
+    /// Base URL for the git REST surface of this repo.
+    fn api_base(&self) -> String {
+        format!(
+            "https://dev.azure.com/{}/{}/_apis/git/repositories/{}",
+            urlenc(&self.org),
+            urlenc(&self.project),
+            urlenc(&self.repo),
+        )
+    }
+}
+
+/// Minimal percent-encoding for path segments (space + a few reserved chars).
+/// Azure org/project names allow spaces; the rest of the chars we care about
+/// are alphanumerics, `-`, `_`, `.`.
+fn urlenc(s: &str) -> String {
+    let mut out = String::with_capacity(s.len());
+    for b in s.bytes() {
+        match b {
+            b'A'..=b'Z' | b'a'..=b'z' | b'0'..=b'9' | b'-' | b'_' | b'.' | b'~' => {
+                out.push(b as char)
+            }
+            _ => out.push_str(&format!("%{:02X}", b)),
+        }
+    }
+    out
+}
+
+/// Parse `(org, project, repo)` from `git remote get-url origin`.
+///
+/// Handles the common Azure DevOps remote URL shapes:
+///   - `https://dev.azure.com/{org}/{project}/_git/{repo}`
+///   - `https://{org}@dev.azure.com/{org}/{project}/_git/{repo}`
+///   - `https://{org}.visualstudio.com/{project}/_git/{repo}`
+///   - `https://{org}.visualstudio.com/DefaultCollection/{project}/_git/{repo}`
+///   - `git@ssh.dev.azure.com:v3/{org}/{project}/{repo}`
+fn azure_repo(cwd: &str) -> Result<AzureRepo, String> {
+    let output = hidden_cmd("git")
+        .args(["remote", "get-url", "origin"])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git remote get-url: {}", e))?;
+    if !output.status.success() {
+        return Err("No 'origin' remote found in this repo.".to_string());
+    }
+    let url = String::from_utf8_lossy(&output.stdout).trim().to_string();
+    parse_azure_remote(&url)
+        .ok_or_else(|| format!("Could not parse an Azure DevOps repo from remote URL: {}", url))
+}
+
+fn parse_azure_remote(url: &str) -> Option<AzureRepo> {
+    // SSH: git@ssh.dev.azure.com:v3/{org}/{project}/{repo}
+    if let Some(rest) = url.split_once("ssh.dev.azure.com:").map(|(_, r)| r) {
+        let rest = rest.trim_start_matches("v3/").trim_end_matches(".git");
+        let parts: Vec<&str> = rest.split('/').filter(|p| !p.is_empty()).collect();
+        if parts.len() >= 3 {
+            return Some(AzureRepo {
+                org: parts[0].to_string(),
+                project: parts[1].to_string(),
+                repo: parts[2..].join("/"),
+            });
+        }
+        return None;
+    }
+
+    // HTTPS — strip scheme + any `user@` userinfo.
+    let after_scheme = url.splitn(2, "://").nth(1).unwrap_or(url);
+    let after_userinfo = after_scheme.splitn(2, '@').last().unwrap_or(after_scheme);
+    let (host, path) = after_userinfo.split_once('/')?;
+    let path = path.trim_end_matches('/').trim_end_matches(".git");
+
+    // dev.azure.com/{org}/{project}/_git/{repo}
+    if host.eq_ignore_ascii_case("dev.azure.com") {
+        let (left, repo) = path.split_once("/_git/")?;
+        let segs: Vec<&str> = left.split('/').filter(|s| !s.is_empty()).collect();
+        if segs.len() >= 2 {
+            return Some(AzureRepo {
+                org: segs[0].to_string(),
+                project: segs[1..].join("/"),
+                repo: repo.to_string(),
+            });
+        }
+        return None;
+    }
+
+    // {org}.visualstudio.com[/DefaultCollection]/{project}/_git/{repo}
+    if let Some(org) = host.strip_suffix(".visualstudio.com") {
+        let (left, repo) = path.split_once("/_git/")?;
+        let segs: Vec<&str> = left
+            .split('/')
+            .filter(|s| !s.is_empty() && !s.eq_ignore_ascii_case("DefaultCollection"))
+            .collect();
+        if !segs.is_empty() {
+            return Some(AzureRepo {
+                org: org.to_string(),
+                project: segs.join("/"),
+                repo: repo.to_string(),
+            });
+        }
+    }
+    None
+}
+
+/// Current branch name (`git rev-parse --abbrev-ref HEAD`).
+fn current_branch(cwd: &str) -> Result<String, String> {
+    let output = hidden_cmd("git")
+        .args(["rev-parse", "--abbrev-ref", "HEAD"])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git rev-parse: {}", e))?;
+    if !output.status.success() {
+        return Err("Could not determine current branch.".to_string());
+    }
+    Ok(String::from_utf8_lossy(&output.stdout).trim().to_string())
+}
+
+// ─── HTTP transport (curl) ──────────────────────────────────────────────────
+
+/// Run a `curl` request and return `(http_status, body_text)`.
+fn curl_raw(
+    method: &str,
+    url: &str,
+    token: Option<&str>,
+    body_json: Option<&str>,
+) -> Result<(i32, String), String> {
+    const MARKER: &str = "\n__GW_HTTP_STATUS__";
+    let mut args: Vec<String> = vec![
+        "-s".to_string(),
+        "-X".to_string(), method.to_string(),
+        "-H".to_string(), "Accept: application/json".to_string(),
+        "-H".to_string(), "User-Agent: GitWand".to_string(),
+    ];
+    if let Some(tok) = token {
+        args.push("-H".to_string());
+        args.push(format!("Authorization: Bearer {}", tok));
+    }
+    if let Some(b) = body_json {
+        args.push("-H".to_string());
+        args.push("Content-Type: application/json".to_string());
+        args.push("-d".to_string());
+        args.push(b.to_string());
+    }
+    args.push("-w".to_string());
+    args.push(format!("{}%{{http_code}}", MARKER));
+    args.push(url.to_string());
+
+    let output = hidden_cmd("curl")
+        .args(&args)
+        .output()
+        .map_err(|e| format!("curl not found or failed to spawn: {}", e))?;
+
+    let combined = String::from_utf8_lossy(&output.stdout).to_string();
+    let (body, status) = match combined.rsplit_once(MARKER) {
+        Some((b, s)) => (b.to_string(), s.trim().parse::<i32>().unwrap_or(0)),
+        None => (combined, 0),
+    };
+    Ok((status, body))
+}
+
+/// Form-encoded POST (Entra token/devicecode endpoints expect this), returns
+/// `(status, body)`.
+fn curl_form(url: &str, fields: &[(&str, &str)]) -> Result<(i32, String), String> {
+    const MARKER: &str = "\n__GW_HTTP_STATUS__";
+    let mut args: Vec<String> = vec![
+        "-s".to_string(),
+        "-X".to_string(), "POST".to_string(),
+        "-H".to_string(), "Accept: application/json".to_string(),
+        "-H".to_string(), "User-Agent: GitWand".to_string(),
+    ];
+    for (k, v) in fields {
+        args.push("--data-urlencode".to_string());
+        args.push(format!("{}={}", k, v));
+    }
+    args.push("-w".to_string());
+    args.push(format!("{}%{{http_code}}", MARKER));
+    args.push(url.to_string());
+
+    let output = hidden_cmd("curl")
+        .args(&args)
+        .output()
+        .map_err(|e| format!("curl not found or failed to spawn: {}", e))?;
+    let combined = String::from_utf8_lossy(&output.stdout).to_string();
+    let (body, status) = match combined.rsplit_once(MARKER) {
+        Some((b, s)) => (b.to_string(), s.trim().parse::<i32>().unwrap_or(0)),
+        None => (combined, 0),
+    };
+    Ok((status, body))
+}
+
+/// Perform an Azure DevOps JSON API call. Maps HTTP ≥ 400 to a user-facing
+/// error, preferring Azure's `message` field.
+fn api_json(
+    method: &str,
+    url: &str,
+    token: &str,
+    body_json: Option<&str>,
+) -> Result<serde_json::Value, String> {
+    let (status, body) = curl_raw(method, url, Some(token), body_json)?;
+    if status >= 400 {
+        let msg = serde_json::from_str::<serde_json::Value>(body.trim())
+            .ok()
+            .and_then(|v| v.get("message").and_then(|m| m.as_str()).map(String::from))
+            .unwrap_or_else(|| format!("HTTP {}", status));
+        return Err(format!("Azure DevOps API error ({}): {}", status, msg));
+    }
+    if body.trim().is_empty() {
+        return Ok(serde_json::Value::Null);
+    }
+    serde_json::from_str(body.trim())
+        .map_err(|e| format!("Failed to parse Azure DevOps response: {}", e))
+}
+
+/// Append the pinned `api-version` query parameter to a URL.
+fn with_api_version(url: &str) -> String {
+    let sep = if url.contains('?') { '&' } else { '?' };
+    format!("{}{}api-version={}", url, sep, API_VERSION)
+}
+
+// ─── JSON field helpers ─────────────────────────────────────────────────────
+
+fn js(v: &serde_json::Value, key: &str) -> String {
+    v.get(key).and_then(|x| x.as_str()).unwrap_or("").to_string()
+}
+
+fn ji(v: &serde_json::Value, key: &str) -> i64 {
+    v.get(key).and_then(|x| x.as_i64()).unwrap_or(0)
+}
+
+fn jb(v: &serde_json::Value, key: &str) -> bool {
+    v.get(key).and_then(|x| x.as_bool()).unwrap_or(false)
+}
+
+fn jnested(v: &serde_json::Value, outer: &str, inner: &str) -> String {
+    v.get(outer).and_then(|o| o.get(inner)).and_then(|s| s.as_str()).unwrap_or("").to_string()
+}
+
+/// Strip the `refs/heads/` prefix from an Azure ref name.
+fn short_ref(full: &str) -> String {
+    full.strip_prefix("refs/heads/").unwrap_or(full).to_string()
+}
+
+/// Map Azure PR `status` to GitWand's vocabulary.
+fn map_status(status: &str) -> String {
+    match status {
+        "completed" => "merged".to_string(),
+        "abandoned" => "closed".to_string(),
+        _ => "open".to_string(), // "active"
+    }
+}
+
+/// Web URL for a PR (Azure REST omits a ready-made one in list responses).
+fn pr_web_url(r: &AzureRepo, id: i64) -> String {
+    format!(
+        "https://dev.azure.com/{}/{}/_git/{}/pullrequest/{}",
+        urlenc(&r.org), urlenc(&r.project), urlenc(&r.repo), id
+    )
+}
+
+// ─── Mapping ────────────────────────────────────────────────────────────────
+
+fn json_to_pr(r: &AzureRepo, pr: &serde_json::Value) -> PullRequest {
+    let id = ji(pr, "pullRequestId");
+    PullRequest {
+        number: id,
+        title: js(pr, "title"),
+        state: map_status(&js(pr, "status")),
+        author: jnested(pr, "createdBy", "displayName"),
+        branch: short_ref(&js(pr, "sourceRefName")),
+        base: short_ref(&js(pr, "targetRefName")),
+        draft: jb(pr, "isDraft"),
+        created_at: js(pr, "creationDate"),
+        updated_at: js(pr, "creationDate"),
+        url: pr_web_url(r, id),
+        additions: 0,
+        deletions: 0,
+        labels: Vec::new(),
+        assignees: Vec::new(),
+        review_requested: Vec::new(),
+        review_decision: String::new(),
+        merge_state_status: js(pr, "mergeStatus").to_uppercase(),
+        checks_rollup: String::new(),
+        comment_count: 0,
+    }
+}
+
+fn json_to_detail(r: &AzureRepo, pr: &serde_json::Value) -> PullRequestDetail {
+    let id = ji(pr, "pullRequestId");
+    let status = js(pr, "status");
+    let merged_at = if status == "completed" { js(pr, "closedDate") } else { String::new() };
+    // Azure `mergeStatus`: succeeded / conflicts / queued / …
+    let mergeable = match js(pr, "mergeStatus").as_str() {
+        "succeeded" => "MERGEABLE".to_string(),
+        "conflicts" => "CONFLICTING".to_string(),
+        _ => "UNKNOWN".to_string(),
+    };
+    PullRequestDetail {
+        number: id,
+        title: js(pr, "title"),
+        body: js(pr, "description"),
+        state: map_status(&status),
+        author: jnested(pr, "createdBy", "displayName"),
+        branch: short_ref(&js(pr, "sourceRefName")),
+        base: short_ref(&js(pr, "targetRefName")),
+        draft: jb(pr, "isDraft"),
+        created_at: js(pr, "creationDate"),
+        updated_at: js(pr, "creationDate"),
+        merged_at,
+        url: pr_web_url(r, id),
+        additions: 0,
+        deletions: 0,
+        changed_files: 0,
+        comments: 0,
+        review_comments: 0,
+        labels: Vec::new(),
+        reviewers: pr
+            .get("reviewers")
+            .and_then(|a| a.as_array())
+            .map(|arr| arr.iter().map(|u| js(u, "displayName")).filter(|s| !s.is_empty()).collect())
+            .unwrap_or_default(),
+        mergeable,
+        checks_status: String::new(),
+    }
+}
+
+// ─── REST PR workflow ───────────────────────────────────────────────────────
+
+fn rest_current_user(token: &str) -> Result<String, String> {
+    let url = with_api_version("https://app.vssps.visualstudio.com/_apis/profile/profiles/me");
+    let v = api_json("GET", &url, token, None)?;
+    let name = js(&v, "displayName");
+    let name = if name.is_empty() { js(&v, "emailAddress") } else { name };
+    if name.is_empty() {
+        return Err("Azure DevOps returned an empty profile for this token.".to_string());
+    }
+    Ok(name)
+}
+
+fn search_status(state: &str) -> &'static str {
+    match state {
+        "closed" => "abandoned",
+        "merged" => "completed",
+        "all" => "all",
+        _ => "active",
+    }
+}
+
+fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64, token: &str) -> Result<Vec<PullRequest>, String> {
+    let r = azure_repo(cwd)?;
+    let top = (limit + offset).clamp(1, 100);
+    let url = with_api_version(&format!(
+        "{}/pullrequests?searchCriteria.status={}&$top={}",
+        r.api_base(), search_status(state), top
+    ));
+    let v = api_json("GET", &url, token, None)?;
+    let mut prs: Vec<PullRequest> = v
+        .get("value")
+        .and_then(|a| a.as_array())
+        .map(|arr| arr.iter().map(|pr| json_to_pr(&r, pr)).collect())
+        .unwrap_or_default();
+    if offset > 0 {
+        let skip = (offset as usize).min(prs.len());
+        prs.drain(..skip);
+    }
+    prs.truncate(limit.max(1) as usize);
+    Ok(prs)
+}
+
+fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64, String> {
+    let r = azure_repo(cwd)?;
+    let url = with_api_version(&format!(
+        "{}/pullrequests?searchCriteria.status={}&$top=1000",
+        r.api_base(), search_status(state)
+    ));
+    let v = api_json("GET", &url, token, None)?;
+    Ok(v.get("count").and_then(|c| c.as_i64()).unwrap_or_else(|| {
+        v.get("value").and_then(|a| a.as_array()).map(|a| a.len() as i64).unwrap_or(0)
+    }))
+}
+
+/// Fetch a single PR object together with its repo descriptor.
+fn get_pr_json(cwd: &str, number: i64, token: &str) -> Result<(AzureRepo, serde_json::Value), String> {
+    let r = azure_repo(cwd)?;
+    let url = with_api_version(&format!("{}/pullrequests/{}", r.api_base(), number));
+    let v = api_json("GET", &url, token, None)?;
+    Ok((r, v))
+}
+
+fn rest_pr_detail(cwd: &str, number: i64, token: &str) -> Result<PullRequestDetail, String> {
+    let (r, v) = get_pr_json(cwd, number, token)?;
+    Ok(json_to_detail(&r, &v))
+}
+
+/// Diff is produced locally: fetch both PR branches from origin and diff the
+/// merge base. Azure DevOps has no single unified-patch endpoint.
+fn fetch_pr_branches(cwd: &str, source: &str, target: &str) -> Result<(), String> {
+    let out = git_cmd()
+        .args(["fetch", "origin", source, target])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git fetch failed: {}", e))?;
+    if !out.status.success() {
+        return Err(format!(
+            "git fetch {}/{} failed: {}",
+            source, target, String::from_utf8_lossy(&out.stderr).trim()
+        ));
+    }
+    Ok(())
+}
+
+fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String, String> {
+    let (_r, pr) = get_pr_json(cwd, number, token)?;
+    let source = short_ref(&js(&pr, "sourceRefName"));
+    let target = short_ref(&js(&pr, "targetRefName"));
+    fetch_pr_branches(cwd, &source, &target)?;
+    let range = format!("origin/{}...origin/{}", target, source);
+    let out = git_cmd()
+        .args(["diff", &range])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git diff failed: {}", e))?;
+    if !out.status.success() {
+        return Err(format!("git diff failed: {}", String::from_utf8_lossy(&out.stderr).trim()));
+    }
+    Ok(String::from_utf8_lossy(&out.stdout).to_string())
+}
+
+fn rest_pr_files(cwd: &str, number: i64, token: &str) -> Result<Vec<String>, String> {
+    let (_r, pr) = get_pr_json(cwd, number, token)?;
+    let source = short_ref(&js(&pr, "sourceRefName"));
+    let target = short_ref(&js(&pr, "targetRefName"));
+    fetch_pr_branches(cwd, &source, &target)?;
+    let range = format!("origin/{}...origin/{}", target, source);
+    let out = git_cmd()
+        .args(["diff", "--name-only", &range])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git diff --name-only failed: {}", e))?;
+    if !out.status.success() {
+        return Ok(Vec::new());
+    }
+    Ok(String::from_utf8_lossy(&out.stdout)
+        .lines()
+        .map(|l| l.trim().to_string())
+        .filter(|l| !l.is_empty())
+        .collect())
+}
+
+fn rest_create_pr(
+    cwd: &str,
+    title: String,
+    body: String,
+    base: String,
+    draft: bool,
+    token: &str,
+) -> Result<PullRequest, String> {
+    let r = azure_repo(cwd)?;
+    let head_branch = current_branch(cwd)?;
+    let base = if base.is_empty() { "main".to_string() } else { base };
+    let payload = serde_json::json!({
+        "sourceRefName": format!("refs/heads/{}", head_branch),
+        "targetRefName": format!("refs/heads/{}", base),
+        "title": title,
+        "description": body,
+        "isDraft": draft,
+    });
+    let url = with_api_version(&format!("{}/pullrequests", r.api_base()));
+    let created = api_json("POST", &url, token, Some(&payload.to_string()))?;
+    Ok(json_to_pr(&r, &created))
+}
+
+fn rest_merge_pr(cwd: &str, number: i64, method: &str, token: &str) -> Result<(), String> {
+    let (r, pr) = get_pr_json(cwd, number, token)?;
+    let merge_strategy = match method {
+        "squash" => "squash",
+        "rebase" => "rebase",
+        _ => "noFastForward",
+    };
+    let commit_id = pr
+        .get("lastMergeSourceCommit")
+        .and_then(|c| c.get("commitId"))
+        .and_then(|s| s.as_str())
+        .unwrap_or("")
+        .to_string();
+    let payload = serde_json::json!({
+        "status": "completed",
+        "lastMergeSourceCommit": { "commitId": commit_id },
+        "completionOptions": {
+            "mergeStrategy": merge_strategy,
+            "deleteSourceBranch": true,
+        },
+    });
+    let url = with_api_version(&format!("{}/pullrequests/{}", r.api_base(), number));
+    api_json("PATCH", &url, token, Some(&payload.to_string()))?;
+    Ok(())
+}
+
+fn rest_pr_ready(cwd: &str, number: i64, token: &str) -> Result<(), String> {
+    let r = azure_repo(cwd)?;
+    let payload = serde_json::json!({ "isDraft": false });
+    let url = with_api_version(&format!("{}/pullrequests/{}", r.api_base(), number));
+    api_json("PATCH", &url, token, Some(&payload.to_string()))?;
+    Ok(())
+}
+
+fn rest_checkout_pr(cwd: &str, number: i64, token: &str) -> Result<(), String> {
+    let (_r, pr) = get_pr_json(cwd, number, token)?;
+    let source = short_ref(&js(&pr, "sourceRefName"));
+    let fetch = git_cmd()
+        .args(["fetch", "origin", &source])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git fetch failed: {}", e))?;
+    if !fetch.status.success() {
+        return Err(format!(
+            "git fetch {} failed: {}",
+            source, String::from_utf8_lossy(&fetch.stderr).trim()
+        ));
+    }
+    let checkout = git_cmd()
+        .args(["checkout", &source])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("git checkout failed: {}", e))?;
+    if !checkout.status.success() {
+        return Err(format!(
+            "git checkout {} failed: {}",
+            source, String::from_utf8_lossy(&checkout.stderr).trim()
+        ));
+    }
+    Ok(())
+}
+
+// ─── Tauri commands — PR workflow ───────────────────────────────────────────
+
+#[tauri::command]
+pub(crate) fn az_current_user() -> Result<String, String> {
+    rest_current_user(&require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_list_prs(cwd: String, state: String, limit: i64, offset: i64) -> Result<Vec<PullRequest>, String> {
+    rest_list_prs(&cwd, &state, limit, offset, &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_pr_count(cwd: String, state: String) -> Result<i64, String> {
+    rest_pr_count(&cwd, &state, &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail, String> {
+    rest_pr_detail(&cwd, number, &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_pr_diff(cwd: String, number: i64) -> Result<String, String> {
+    rest_pr_diff(&cwd, number, &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_pr_files(cwd: String, number: i64) -> Result<Vec<String>, String> {
+    rest_pr_files(&cwd, number, &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_create_pr(
+    cwd: String,
+    title: String,
+    body: String,
+    base: Option<String>,
+    draft: Option<bool>,
+) -> Result<PullRequest, String> {
+    rest_create_pr(&cwd, title, body, base.unwrap_or_default(), draft.unwrap_or(false), &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_merge_pr(cwd: String, number: i64, method: Option<String>) -> Result<(), String> {
+    rest_merge_pr(&cwd, number, &method.unwrap_or_else(|| "merge".to_string()), &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_pr_ready(cwd: String, number: i64) -> Result<(), String> {
+    rest_pr_ready(&cwd, number, &require_token()?)
+}
+
+#[tauri::command]
+pub(crate) fn az_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
+    rest_checkout_pr(&cwd, number, &require_token()?)
+}
+
+// ─── Entra ID device flow ───────────────────────────────────────────────────
+
+/// Begin the Entra ID device authorization grant.
+#[tauri::command]
+pub(crate) fn azure_device_start() -> Result<GithubDeviceCode, String> {
+    let cid = client_id();
+    if cid.starts_with("REPLACE_WITH") {
+        return Err(
+            "Azure login is not configured: missing Entra ID client_id. \
+             Set GITWAND_AZURE_CLIENT_ID at build time or update azure.rs."
+                .to_string(),
+        );
+    }
+    let scope = format!("{}/.default offline_access", AZURE_DEVOPS_RESOURCE);
+    let (status, text) = curl_form(DEVICECODE_URL, &[("client_id", &cid), ("scope", &scope)])?;
+    if status >= 400 {
+        let msg = serde_json::from_str::<serde_json::Value>(text.trim())
+            .ok()
+            .and_then(|v| v.get("error_description").and_then(|m| m.as_str()).map(String::from))
+            .unwrap_or_else(|| format!("HTTP {}", status));
+        return Err(format!("Azure device-code request failed: {}", msg));
+    }
+    let v: serde_json::Value = serde_json::from_str(text.trim())
+        .map_err(|e| format!("Failed to parse device-code response: {}", e))?;
+    Ok(GithubDeviceCode {
+        device_code: js(&v, "device_code"),
+        user_code: js(&v, "user_code"),
+        verification_uri: js(&v, "verification_uri"),
+        // Entra returns `verification_uri_complete` only with some configs.
+        verification_uri_complete: js(&v, "verification_uri_complete"),
+        expires_in: ji(&v, "expires_in"),
+        interval: ji(&v, "interval").max(5),
+    })
+}
+
+/// Poll once for the Entra access token. On success the token is stored in the
+/// OS keychain; the secret never reaches the frontend.
+#[tauri::command]
+pub(crate) fn azure_device_poll(device_code: String) -> Result<GithubDevicePoll, String> {
+    let cid = client_id();
+    let (status, text) = curl_form(
+        TOKEN_URL,
+        &[
+            ("grant_type", "urn:ietf:params:oauth:grant-type:device_code"),
+            ("client_id", &cid),
+            ("device_code", &device_code),
+        ],
+    )?;
+    let v: serde_json::Value = serde_json::from_str(text.trim())
+        .map_err(|e| format!("Failed to parse token response: {}", e))?;
+
+    if let Some(err) = v.get("error").and_then(|e| e.as_str()) {
+        let kind = match err {
+            "authorization_pending" => "pending",
+            "slow_down" => "slow_down",
+            _ => "error",
+        };
+        let detail = js(&v, "error_description");
+        return Ok(GithubDevicePoll {
+            status: kind.to_string(),
+            login: String::new(),
+            error: if kind == "error" {
+                if detail.is_empty() { err.to_string() } else { detail }
+            } else {
+                String::new()
+            },
+        });
+    }
+    if status >= 400 {
+        return Err(format!("Azure token poll failed (HTTP {})", status));
+    }
+
+    let token = js(&v, "access_token");
+    if token.is_empty() {
+        return Ok(GithubDevicePoll {
+            status: "pending".to_string(),
+            login: String::new(),
+            error: String::new(),
+        });
+    }
+
+    let entry = keyring::Entry::new(AZ_SERVICE, AZ_ACCOUNT)
+        .map_err(|e| format!("keyring init failed: {}", e))?;
+    entry
+        .set_password(&token)
+        .map_err(|e| format!("Failed to store Azure token: {}", e))?;
+
+    let login = rest_current_user(&token).unwrap_or_default();
+    Ok(GithubDevicePoll {
+        status: "success".to_string(),
+        login,
+        error: String::new(),
+    })
+}
+
+/// Whether a Settings-managed Azure token is currently stored.
+#[tauri::command]
+pub(crate) fn azure_token_present() -> Result<bool, String> {
+    Ok(settings_azure_token().is_some())
+}
diff --git a/apps/desktop/src-tauri/src/commands/mod.rs b/apps/desktop/src-tauri/src/commands/mod.rs
index 86fba264..f326147e 100644
--- a/apps/desktop/src-tauri/src/commands/mod.rs
+++ b/apps/desktop/src-tauri/src/commands/mod.rs
@@ -1,4 +1,5 @@
 pub(crate) mod ai;
+pub(crate) mod azure;
 pub(crate) mod bitbucket;
 pub(crate) mod credentials;
 pub(crate) mod files;
diff --git a/apps/desktop/src-tauri/src/commands/ops.rs b/apps/desktop/src-tauri/src/commands/ops.rs
index ad0ad9a2..a1558cdf 100644
--- a/apps/desktop/src-tauri/src/commands/ops.rs
+++ b/apps/desktop/src-tauri/src/commands/ops.rs
@@ -2494,6 +2494,8 @@ pub(crate) fn git_remote_info(cwd: String) -> Result<RemoteInfo, String> {
             "gitlab"
         } else if url.contains("bitbucket.org") || url.contains("bitbucket") {
             "bitbucket"
+        } else if url.contains("dev.azure.com") || url.contains("visualstudio.com") {
+            "azure"
         } else {
             "unknown"
         };
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 32d68ba9..213b292d 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -332,6 +332,19 @@ pub fn run() {
             commands::github_api::github_device_start,
             commands::github_api::github_device_poll,
             commands::github_api::github_token_present,
+            commands::azure::azure_device_start,
+            commands::azure::azure_device_poll,
+            commands::azure::azure_token_present,
+            commands::azure::az_current_user,
+            commands::azure::az_list_prs,
+            commands::azure::az_pr_count,
+            commands::azure::az_pr_detail,
+            commands::azure::az_pr_diff,
+            commands::azure::az_pr_files,
+            commands::azure::az_create_pr,
+            commands::azure::az_merge_pr,
+            commands::azure::az_pr_ready,
+            commands::azure::az_checkout_pr,
             commands::ops::git_exec,
             commands::ops::git_autocomplete,
             commands::ops::git_get_user,
diff --git a/apps/desktop/src/components/SettingsAccountsTab.vue b/apps/desktop/src/components/SettingsAccountsTab.vue
index e26a2a99..6e554514 100644
--- a/apps/desktop/src/components/SettingsAccountsTab.vue
+++ b/apps/desktop/src/components/SettingsAccountsTab.vue
@@ -10,6 +10,7 @@ import { useI18n } from "../composables/useI18n";
 import { useAccounts } from "../composables/useAccounts";
 import { useCredentials } from "../composables/useCredentials";
 import { useGithubAuth, GITHUB_TOKEN_KEY } from "../composables/useGithubAuth";
+import { useAzureAuth, AZURE_TOKEN_KEY } from "../composables/useAzureAuth";
 import { isTauri } from "../utils/backend";
 import type { ForgeName } from "../composables/forge/types";
 
@@ -45,6 +46,17 @@ const {
   reset: ghReset,
 } = useGithubAuth();
 
+// Azure DevOps Entra ID device flow — same shape as the GitHub flow.
+const {
+  phase: azPhase,
+  userCode: azUserCode,
+  error: azError,
+  login: azLogin,
+  start: azStart,
+  openVerification: azOpen,
+  reset: azReset,
+} = useAzureAuth();
+
 // ─── Add-account form ────────────────────────────────────────────────────────
 
 const showForm = ref(false);
@@ -65,11 +77,13 @@ function openForm() {
   formError.value = null;
   formSuccess.value = false;
   ghReset();
+  azReset();
   showForm.value = true;
 }
 
 function cancelForm() {
   ghReset();
+  azReset();
   showForm.value = false;
 }
 
@@ -80,6 +94,31 @@ function startGithubLogin() {
   ghStart();
 }
 
+// ─── Azure DevOps Entra ID device flow ────────────────────────────────────────
+
+function startAzureLogin() {
+  formError.value = null;
+  azStart();
+}
+
+// On successful sign-in, register the Azure account. The token is already in the
+// OS keychain (stored by the Rust poll command) under AZURE_TOKEN_KEY.
+watch(azPhase, (p) => {
+  if (p !== "success") return;
+  addAccount({
+    forge: "azure",
+    label: formLabel.value.trim() || azLogin.value,
+    username: azLogin.value,
+    tokenKey: AZURE_TOKEN_KEY,
+  });
+  formSuccess.value = true;
+  setTimeout(() => {
+    showForm.value = false;
+    formSuccess.value = false;
+    azReset();
+  }, 1200);
+});
+
 // On successful sign-in, register the account. The token is already in the OS
 // keychain (stored by the Rust poll command) under GITHUB_TOKEN_KEY.
 watch(ghPhase, (p) => {
@@ -138,8 +177,8 @@ async function onRemove(id: string) {
 
 // ─── Display ─────────────────────────────────────────────────────────────────
 
-const forgeOrder: ForgeName[] = ["github", "gitlab", "bitbucket"];
-const forgeLabel: Record<ForgeName, string> = { github: "GitHub", gitlab: "GitLab", bitbucket: "Bitbucket", unknown: "Unknown" };
+const forgeOrder: ForgeName[] = ["github", "gitlab", "bitbucket", "azure"];
+const forgeLabel: Record<ForgeName, string> = { github: "GitHub", gitlab: "GitLab", bitbucket: "Bitbucket", azure: "Azure DevOps", unknown: "Unknown" };
 const knownForges = computed(() => forgeOrder.filter((f) => (accountsByForge.value[f]?.length ?? 0) > 0));
 const totalAccounts = computed(() => accounts.value.length);
 </script>
@@ -195,6 +234,7 @@ const totalAccounts = computed(() => accounts.value.length);
             <option value="github">GitHub</option>
             <option value="gitlab">GitLab</option>
             <option value="bitbucket">Bitbucket</option>
+            <option value="azure">Azure DevOps</option>
           </select>
         </div>
 
@@ -203,8 +243,8 @@ const totalAccounts = computed(() => accounts.value.length);
           <input v-model="formLabel" type="text" class="sa-input" placeholder="work, perso, client-x…" />
         </div>
 
-        <!-- GitHub returns the username via OAuth — no manual input needed. -->
-        <div v-if="formForge !== 'github'" class="sa-field">
+        <!-- GitHub / Azure return the username via OAuth — no manual input needed. -->
+        <div v-if="formForge !== 'github' && formForge !== 'azure'" class="sa-field">
           <label class="sa-label">{{ t('settings.accountsUsernameLabel') }}</label>
           <input v-model="formUsername" type="text" class="sa-input" />
         </div>
@@ -246,6 +286,32 @@ const totalAccounts = computed(() => accounts.value.length);
           </template>
         </div>
 
+        <!-- Azure DevOps — Entra ID OAuth device flow, no PAT paste. -->
+        <div v-else-if="formForge === 'azure'" class="sa-gh">
+          <template v-if="azPhase === 'idle' || azPhase === 'error'">
+            <button class="sa-gh-btn sa-gh-btn--azure" @click="startAzureLogin">
+              <svg width="15" height="15" viewBox="0 0 16 16" fill="currentColor" aria-hidden="true">
+                <path d="M3.6 11.9L8 1.4l3.2 7.6-5 1.2 4.3 4.4H1.6l2-2.7zm6 1.7l2.8-4.6 1.6 5.2H8.1l1.5-.6z"/>
+              </svg>
+              {{ t('settings.accountsAzureSignIn') }}
+            </button>
+            <p class="sa-note">{{ t('settings.accountsAzureHint') }}</p>
+            <p v-if="azError" class="sa-msg sa-msg--error">{{ azError }}</p>
+          </template>
+          <template v-else-if="azPhase === 'awaiting'">
+            <p v-if="isDevMock" class="sa-msg sa-msg--error">{{ t('settings.accountsAzureDevMock') }}</p>
+            <p class="sa-note">{{ t('settings.accountsAzureEnterCode') }}</p>
+            <code class="sa-gh-code">{{ azUserCode }}</code>
+            <button v-if="!isDevMock" class="sa-gh-btn" @click="azOpen">
+              {{ t('settings.accountsAzureOpen') }}
+            </button>
+            <p class="sa-note">{{ t('settings.accountsAzureWaiting') }}</p>
+          </template>
+          <template v-else-if="azPhase === 'success'">
+            <p class="sa-msg sa-msg--ok">{{ t('settings.accountsAzureConnected') }} {{ azLogin }}</p>
+          </template>
+        </div>
+
         <!-- GitLab — still CLI-based. -->
         <div v-else class="sa-note">
           GitLab auth is handled by <code>glab auth login</code> — no token needed here.
@@ -259,7 +325,7 @@ const totalAccounts = computed(() => accounts.value.length);
             {{ t('settings.accountsCancelBtn') }}
           </button>
           <button
-            v-if="formForge !== 'github'"
+            v-if="formForge !== 'github' && formForge !== 'azure'"
             class="sa-primary-btn"
             :disabled="saving"
             @click="submitForm"
@@ -510,6 +576,11 @@ const totalAccounts = computed(() => accounts.value.length);
   opacity: 0.88;
 }
 
+.sa-gh-btn--azure {
+  background: #0078d4;
+  color: #fff;
+}
+
 .sa-gh-code {
   align-self: flex-start;
   font-family: monospace;
diff --git a/apps/desktop/src/composables/forge/AzureProvider.ts b/apps/desktop/src/composables/forge/AzureProvider.ts
new file mode 100644
index 00000000..8c060502
--- /dev/null
+++ b/apps/desktop/src/composables/forge/AzureProvider.ts
@@ -0,0 +1,179 @@
+/**
+ * @file forge/AzureProvider.ts
+ *
+ * Azure DevOps Services implementation of ForgeProvider.
+ *
+ * Uses the Azure DevOps REST API (api-version 7.1) via `curl` through the Rust
+ * Tauri commands in `commands/azure.rs`. Authentication is an Entra ID OAuth
+ * access token, obtained through the device flow in Settings > Accounts and
+ * stored in the OS keychain (service "gitwand:azure", account "oauth").
+ *
+ * **Scope (initial):** PR list/count/detail/diff/files/create/merge/checkout +
+ * draft→ready. Diff and file lists are produced from local git (Azure DevOps
+ * has no unified-patch endpoint).
+ *
+ * **Not yet implemented** (degrade gracefully / throw, matching the GitLab and
+ * Bitbucket stub conventions): comments, reviews, reviewer candidates, CI
+ * checks, and the per-file intelligence widgets. The conflict preview and
+ * hotspot analysis are forge-agnostic (local git) and are reused as-is.
+ */
+
+import {
+  azCurrentUser,
+  azListPrs,
+  azPrCount,
+  azPrDetail,
+  azPrDiff,
+  azPrFiles,
+  azCreatePr,
+  azMergePr,
+  azPrReady,
+  azCheckoutPr,
+  ghPrConflictPreview,
+  ghPrHotspots,
+} from "../../utils/backend";
+
+import {
+  ForgeNotImplementedError,
+  type ForgeProvider,
+  type ForgeName,
+  type ListPRsOptions,
+  type CreatePRInput,
+  type SubmitReviewOptions,
+  type PullRequest,
+  type PullRequestDetail,
+  type CICheck,
+  type PrReviewComment,
+  type CreatePrCommentParams,
+  type PrReview,
+  type PrConflictPreview,
+  type PrHotspot,
+  type PrFileHistory,
+  type ReviewerCandidate,
+  type Account,
+} from "./types";
+
+export class AzureProvider implements ForgeProvider {
+  readonly name: ForgeName = "azure";
+
+  /** Active account — stored for API completeness; auth resolves via keychain. */
+  private _account: Account | null = null;
+
+  setAccount(account: Account | null): void {
+    this._account = account;
+  }
+
+  detectFromRemote(remoteUrl: string): boolean {
+    return remoteUrl.includes("dev.azure.com") || remoteUrl.includes("visualstudio.com");
+  }
+
+  // ── Discovery ──────────────────────────────────────────────────────────────
+
+  getCurrentUser(_cwd: string): Promise<string> {
+    return azCurrentUser();
+  }
+
+  async listReviewerCandidates(_cwd: string): Promise<ReviewerCandidate[]> {
+    // Azure DevOps identity picker not wired yet — UI degrades to free-text.
+    return [];
+  }
+
+  // ── PR listing ─────────────────────────────────────────────────────────────
+
+  listPRs(cwd: string, opts: ListPRsOptions = {}): Promise<PullRequest[]> {
+    return azListPrs(cwd, opts.state ?? "open", opts.limit ?? 10, opts.offset ?? 0);
+  }
+
+  getPRCount(cwd: string, state: string = "open"): Promise<number> {
+    return azPrCount(cwd, state);
+  }
+
+  getPRFiles(cwd: string, prNumber: number): Promise<string[]> {
+    return azPrFiles(cwd, prNumber);
+  }
+
+  // ── PR detail ──────────────────────────────────────────────────────────────
+
+  getPR(cwd: string, number: number): Promise<PullRequestDetail> {
+    return azPrDetail(cwd, number);
+  }
+
+  getPRDiff(cwd: string, number: number): Promise<string> {
+    return azPrDiff(cwd, number);
+  }
+
+  async getCIChecks(_cwd: string, _number: number): Promise<CICheck[]> {
+    // Azure Pipelines status not wired yet — empty rollup (no checks shown).
+    return [];
+  }
+
+  // ── PR actions ─────────────────────────────────────────────────────────────
+
+  createPR(cwd: string, input: CreatePRInput): Promise<PullRequest> {
+    // baseRepo (cross-fork) and reviewers are GitHub-only here — ignored.
+    return azCreatePr(cwd, input.title, input.body ?? "", input.base, input.draft);
+  }
+
+  mergePR(cwd: string, number: number, method: "merge" | "squash" | "rebase" = "merge"): Promise<void> {
+    return azMergePr(cwd, number, method);
+  }
+
+  checkoutPR(cwd: string, number: number): Promise<void> {
+    return azCheckoutPr(cwd, number);
+  }
+
+  convertDraftToReady(cwd: string, number: number): Promise<void> {
+    return azPrReady(cwd, number);
+  }
+
+  // ── Comments (not yet implemented) ─────────────────────────────────────────
+
+  async listComments(_cwd: string, _prNumber: number): Promise<PrReviewComment[]> {
+    return [];
+  }
+
+  createComment(_cwd: string, _prNumber: number, _params: CreatePrCommentParams): Promise<PrReviewComment> {
+    throw new ForgeNotImplementedError("azure", "createComment");
+  }
+
+  updateComment(_cwd: string, _commentId: number, _body: string, _prNumber?: number): Promise<void> {
+    throw new ForgeNotImplementedError("azure", "updateComment");
+  }
+
+  deleteComment(_cwd: string, _commentId: number, _prNumber?: number): Promise<void> {
+    throw new ForgeNotImplementedError("azure", "deleteComment");
+  }
+
+  // ── Reviews (not yet implemented) ──────────────────────────────────────────
+
+  async listReviews(_cwd: string, _prNumber: number): Promise<PrReview[]> {
+    return [];
+  }
+
+  submitReview(_cwd: string, _prNumber: number, _opts: SubmitReviewOptions): Promise<PrReview> {
+    throw new ForgeNotImplementedError("azure", "submitReview");
+  }
+
+  // ── Intelligence ───────────────────────────────────────────────────────────
+
+  getConflictPreview(cwd: string, prNumber: number): Promise<PrConflictPreview> {
+    // git merge-tree is local git data — forge-agnostic.
+    return ghPrConflictPreview(cwd, prNumber);
+  }
+
+  getHotspots(cwd: string, paths: string[]): Promise<PrHotspot[]> {
+    // git log --merges analysis is purely local — forge-agnostic.
+    return ghPrHotspots(cwd, paths);
+  }
+
+  async getFileHistory(_cwd: string, paths: string[]): Promise<Record<string, PrFileHistory>> {
+    const result: Record<string, PrFileHistory> = {};
+    for (const path of paths) {
+      result[path] = { reviewCommentCount: 0, reviewers: [], lastComment: null };
+    }
+    return result;
+  }
+}
+
+/** Singleton — instantiated once, shared via useForge(). */
+export const azureProvider = new AzureProvider();
diff --git a/apps/desktop/src/composables/forge/types.ts b/apps/desktop/src/composables/forge/types.ts
index 5a4011f8..b5fe396f 100644
--- a/apps/desktop/src/composables/forge/types.ts
+++ b/apps/desktop/src/composables/forge/types.ts
@@ -73,7 +73,7 @@ export interface SubmitReviewOptions {
 
 // ─── Forge name discriminant ────────────────────────────────────────────────
 
-export type ForgeName = "github" | "gitlab" | "bitbucket" | "unknown";
+export type ForgeName = "github" | "gitlab" | "bitbucket" | "azure" | "unknown";
 
 // ─── ForgeProvider interface ─────────────────────────────────────────────────
 
diff --git a/apps/desktop/src/composables/forge/useForge.ts b/apps/desktop/src/composables/forge/useForge.ts
index e2e60574..d0ce69b4 100644
--- a/apps/desktop/src/composables/forge/useForge.ts
+++ b/apps/desktop/src/composables/forge/useForge.ts
@@ -42,6 +42,7 @@ _cache.set("github", githubProvider);
 // Pre-warm at module init — Vite emits separate chunks for each provider.
 import("./GitLabProvider").then((m) => _cache.set("gitlab", m.gitlabProvider));
 import("./BitbucketProvider").then((m) => _cache.set("bitbucket", m.bitbucketProvider));
+import("./AzureProvider").then((m) => _cache.set("azure", m.azureProvider));
 
 /**
  * Retourne le ForgeProvider correspondant à un nom de forge déjà connu.
diff --git a/apps/desktop/src/composables/useAzureAuth.ts b/apps/desktop/src/composables/useAzureAuth.ts
new file mode 100644
index 00000000..5f751854
--- /dev/null
+++ b/apps/desktop/src/composables/useAzureAuth.ts
@@ -0,0 +1,144 @@
+/**
+ * @file useAzureAuth.ts
+ *
+ * Azure DevOps (Entra ID) OAuth device-flow state machine for
+ * "Sign in with Azure".
+ *
+ * Mirrors `useGithubAuth.ts` — Microsoft's identity platform exposes the same
+ * OAuth 2.0 device authorization grant as GitHub, so the two-step flow is
+ * identical:
+ *
+ *   1. `start()` requests a device code, shows the `userCode` and surfaces the
+ *      verification URL the user opens.
+ *   2. The composable polls `azure_device_poll` on the Entra-mandated interval
+ *      until the user approves (success), the code expires, or an error occurs.
+ *
+ * On success the access token is already stored in the OS keychain by the
+ * backend (the secret never reaches the frontend); the resolved display name is
+ * returned so the caller can register the account via `useAccounts`.
+ */
+
+import { ref, computed } from "vue";
+import { azureDeviceStart, azureDevicePoll, openExternalUrl } from "../utils/backend";
+
+export type AzureAuthPhase = "idle" | "awaiting" | "success" | "error";
+
+/** Keychain pointer for the Settings-managed Azure token. */
+export const AZURE_TOKEN_KEY = "gitwand:azure/oauth";
+
+export function useAzureAuth() {
+  const phase = ref<AzureAuthPhase>("idle");
+  const userCode = ref("");
+  const verificationUri = ref("");
+  /** URL to open in the browser — the pre-filled "complete" variant when given. */
+  const openUrl = ref("");
+  const login = ref("");
+  const error = ref<string | null>(null);
+
+  let deviceCode = "";
+  let timer: ReturnType<typeof setTimeout> | null = null;
+  let deadline = 0;
+
+  const isBusy = computed(() => phase.value === "awaiting");
+
+  function clearTimer() {
+    if (timer) {
+      clearTimeout(timer);
+      timer = null;
+    }
+  }
+
+  function reset() {
+    clearTimer();
+    phase.value = "idle";
+    userCode.value = "";
+    verificationUri.value = "";
+    openUrl.value = "";
+    login.value = "";
+    error.value = null;
+    deviceCode = "";
+    deadline = 0;
+  }
+
+  function fail(message: string) {
+    clearTimer();
+    error.value = message;
+    phase.value = "error";
+  }
+
+  /** Schedule the next poll `seconds` from now. */
+  function schedulePoll(seconds: number) {
+    clearTimer();
+    timer = setTimeout(poll, Math.max(1, seconds) * 1000);
+  }
+
+  async function poll() {
+    if (phase.value !== "awaiting") return;
+    if (Date.now() > deadline) {
+      fail("The login code expired. Please try again.");
+      return;
+    }
+    try {
+      const res = await azureDevicePoll(deviceCode);
+      if (res.status === "success") {
+        clearTimer();
+        login.value = res.login;
+        phase.value = "success";
+        return;
+      }
+      if (res.status === "error") {
+        fail(res.error || "Azure login failed.");
+        return;
+      }
+      // "pending" → keep the current cadence; "slow_down" → back off.
+      schedulePoll(res.status === "slow_down" ? 10 : 5);
+    } catch (e) {
+      fail(e instanceof Error ? e.message : String(e));
+    }
+  }
+
+  /**
+   * Begin the device flow and start polling. Does **not** open the browser —
+   * the code is shown in-app first (auto-opening would navigate the Tauri
+   * webview away and hide the code). The user opens Azure via `openVerification`.
+   */
+  async function start(): Promise<void> {
+    reset();
+    phase.value = "awaiting";
+    try {
+      const code = await azureDeviceStart();
+      deviceCode = code.device_code;
+      userCode.value = code.user_code;
+      verificationUri.value = code.verification_uri;
+      openUrl.value = code.verification_uri_complete || code.verification_uri;
+      deadline = Date.now() + code.expires_in * 1000;
+      schedulePoll(code.interval);
+    } catch (e) {
+      fail(e instanceof Error ? e.message : String(e));
+    }
+  }
+
+  /** Open the Azure verification page (pre-filled when available). */
+  function openVerification() {
+    if (openUrl.value) void openExternalUrl(openUrl.value);
+  }
+
+  /** Abort an in-flight flow (user closed the dialog). */
+  function cancel() {
+    reset();
+  }
+
+  return {
+    phase,
+    userCode,
+    verificationUri,
+    openUrl,
+    login,
+    error,
+    isBusy,
+    start,
+    openVerification,
+    cancel,
+    reset,
+  };
+}
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index d7532886..6f2000c7 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -1212,6 +1212,13 @@ const en = {
     accountsGithubDevMock: "Dev mock — this does not really sign in. Run the full app for real GitHub login.",
     accountsGithubWaiting: "Waiting for authorization…",
     accountsGithubConnected: "Connected as",
+    accountsAzureSignIn: "Sign in with Azure",
+    accountsAzureHint: "Opens Microsoft sign-in in your browser to authorize GitWand for Azure DevOps.",
+    accountsAzureEnterCode: "Copy this code, then open Microsoft sign-in and enter it:",
+    accountsAzureOpen: "Open Microsoft sign-in",
+    accountsAzureDevMock: "Azure sign-in is only available in the desktop app.",
+    accountsAzureWaiting: "Waiting for authorization…",
+    accountsAzureConnected: "Connected as",
     accountsDeleteConfirm: "Remove this account?",
     // v2.12 Git tab — branch + identity + templates
     git: {
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index 83844a57..2932d6b7 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -1181,6 +1181,13 @@ const es: Locale = {
     accountsGithubDevMock: "Simulación de desarrollo: no inicia sesión de verdad. Ejecuta la app completa para el inicio de sesión real de GitHub.",
     accountsGithubWaiting: "Esperando autorización…",
     accountsGithubConnected: "Conectado como",
+    accountsAzureSignIn: "Iniciar sesión con Azure",
+    accountsAzureHint: "Abre el inicio de sesión de Microsoft en tu navegador para autorizar GitWand en Azure DevOps.",
+    accountsAzureEnterCode: "Copia este código, luego abre el inicio de sesión de Microsoft e ingrésalo:",
+    accountsAzureOpen: "Abrir inicio de sesión de Microsoft",
+    accountsAzureDevMock: "El inicio de sesión de Azure solo está disponible en la aplicación de escritorio.",
+    accountsAzureWaiting: "Esperando autorización…",
+    accountsAzureConnected: "Conectado como",
     accountsDeleteConfirm: "¿Eliminar esta cuenta?",
     // v2.12
     git: {
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index 293f242b..ecb40217 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -1192,6 +1192,13 @@ const fr: Locale = {
     accountsGithubDevMock: "Mock de dev — ceci ne connecte pas réellement. Lancez l'app complète pour une vraie connexion GitHub.",
     accountsGithubWaiting: "En attente d'autorisation…",
     accountsGithubConnected: "Connecté en tant que",
+    accountsAzureSignIn: "Se connecter avec Azure",
+    accountsAzureHint: "Ouvre la connexion Microsoft dans votre navigateur pour autoriser GitWand sur Azure DevOps.",
+    accountsAzureEnterCode: "Copiez ce code, puis ouvrez la connexion Microsoft et saisissez-le :",
+    accountsAzureOpen: "Ouvrir la connexion Microsoft",
+    accountsAzureDevMock: "La connexion Azure n'est disponible que dans l'application desktop.",
+    accountsAzureWaiting: "En attente d'autorisation…",
+    accountsAzureConnected: "Connecté en tant que",
     accountsDeleteConfirm: "Supprimer ce compte ?",
     // v2.12 Onglet Git
     git: {
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index 5fc29c8d..63dd80ad 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -1181,6 +1181,13 @@ const ptBR: Locale = {
     accountsGithubDevMock: "Mock de dev — isto não faz login de verdade. Execute o app completo para o login real do GitHub.",
     accountsGithubWaiting: "Aguardando autorização…",
     accountsGithubConnected: "Conectado como",
+    accountsAzureSignIn: "Entrar com Azure",
+    accountsAzureHint: "Abre o login da Microsoft no seu navegador para autorizar o GitWand no Azure DevOps.",
+    accountsAzureEnterCode: "Copie este código, depois abra o login da Microsoft e insira-o:",
+    accountsAzureOpen: "Abrir login da Microsoft",
+    accountsAzureDevMock: "O login do Azure só está disponível no aplicativo desktop.",
+    accountsAzureWaiting: "Aguardando autorização…",
+    accountsAzureConnected: "Conectado como",
     accountsDeleteConfirm: "Remover esta conta?",
     // v2.12
     git: {
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index 57720472..f96be05c 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -1168,6 +1168,13 @@ const zhCN: Locale = {
     accountsGithubDevMock: "\u5f00\u53d1\u6a21\u62df \u2014 \u5e76\u975e\u771f\u6b63\u767b\u5f55\u3002\u8bf7\u8fd0\u884c\u5b8c\u6574\u5e94\u7528\u4ee5\u8fdb\u884c\u771f\u5b9e\u7684 GitHub \u767b\u5f55\u3002",
     accountsGithubWaiting: "\u7b49\u5f85\u6388\u6743\u2026",
     accountsGithubConnected: "\u5df2\u8fde\u63a5\u4e3a",
+    accountsAzureSignIn: "\u4f7f\u7528 Azure \u767b\u5f55",
+    accountsAzureHint: "\u5728\u6d4f\u89c8\u5668\u4e2d\u6253\u5f00 Microsoft \u767b\u5f55\u4ee5\u6388\u6743 GitWand \u8bbf\u95ee Azure DevOps\u3002",
+    accountsAzureEnterCode: "\u590d\u5236\u6b64\u4ee3\u7801\uff0c\u7136\u540e\u6253\u5f00 Microsoft \u767b\u5f55\u5e76\u8f93\u5165\uff1a",
+    accountsAzureOpen: "\u6253\u5f00 Microsoft \u767b\u5f55",
+    accountsAzureDevMock: "Azure \u767b\u5f55\u4ec5\u5728\u684c\u9762\u5e94\u7528\u4e2d\u53ef\u7528\u3002",
+    accountsAzureWaiting: "\u6b63\u5728\u7b49\u5f85\u6388\u6743\u2026",
+    accountsAzureConnected: "\u5df2\u8fde\u63a5\u4e3a",
     accountsDeleteConfirm: "\u5220\u9664\u6b64\u8d26\u53f7\uff1f",
     // v2.12
     git: {
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index 9cac01ea..6f875b3c 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -851,3 +851,151 @@ export async function githubTokenPresent(): Promise<boolean> {
   if (!res.ok) return false;
   return res.json() as Promise<boolean>;
 }
+
+// ─── Azure DevOps (Entra ID OAuth + REST) ───────────────────────────────────
+//
+// "Sign in with Azure" from Settings > Accounts uses Microsoft's Entra ID
+// device-authorization grant — the same UX as the GitHub device flow, so the
+// `GithubDeviceCode` / `GithubDevicePoll` shapes are reused verbatim. The
+// access token is stored in the OS keychain (service "gitwand:azure", account
+// "oauth"); the `az_*` PR commands route through the Azure DevOps REST API.
+//
+// Azure DevOps support is Tauri-only — there is no dev:web mock backend, so the
+// browser path throws a clear "desktop only" error.
+
+const AZURE_WEB_ONLY = "Azure DevOps sign-in is only available in the desktop app.";
+
+/** Begin the Entra ID device flow — returns the user code + verification URL. */
+export async function azureDeviceStart(): Promise<GithubDeviceCode> {
+  if (isTauri()) return tauriInvoke<GithubDeviceCode>("azure_device_start");
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+/** Poll once for the Entra access token. On success the token is stored. */
+export async function azureDevicePoll(deviceCode: string): Promise<GithubDevicePoll> {
+  if (isTauri()) return tauriInvoke<GithubDevicePoll>("azure_device_poll", { deviceCode });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+/** Whether a Settings-managed Azure token is currently stored. */
+export async function azureTokenPresent(): Promise<boolean> {
+  if (isTauri()) return tauriInvoke<boolean>("azure_token_present");
+  return false;
+}
+
+/** Map the Rust `PullRequest` serde shape (snake_case) to the camelCase type. */
+function mapRawPr(pr: any): PullRequest {
+  return {
+    number: pr.number,
+    title: pr.title,
+    state: pr.state,
+    author: pr.author,
+    branch: pr.branch,
+    base: pr.base,
+    draft: pr.draft,
+    createdAt: pr.created_at,
+    updatedAt: pr.updated_at,
+    url: pr.url,
+    additions: pr.additions,
+    deletions: pr.deletions,
+    labels: pr.labels ?? [],
+    assignees: pr.assignees ?? [],
+    reviewRequested: pr.review_requested ?? [],
+    reviewDecision: pr.review_decision ?? "",
+    mergeStateStatus: pr.merge_state_status ?? "",
+    checksRollup: pr.checks_rollup ?? "",
+    commentCount: pr.comment_count ?? 0,
+  };
+}
+
+export async function azCurrentUser(): Promise<string> {
+  if (isTauri()) return tauriInvoke<string>("az_current_user");
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azListPrs(
+  cwd: string,
+  state: string = "open",
+  limit: number = 10,
+  offset: number = 0,
+): Promise<PullRequest[]> {
+  if (isTauri()) {
+    const raw = await tauriInvoke<any[]>("az_list_prs", { cwd, state, limit, offset });
+    return raw.map(mapRawPr);
+  }
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azPrCount(cwd: string, state: string = "open"): Promise<number> {
+  if (isTauri()) return tauriInvoke<number>("az_pr_count", { cwd, state });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azPrDetail(cwd: string, number: number): Promise<PullRequestDetail> {
+  if (isTauri()) {
+    const raw = await tauriInvoke<any>("az_pr_detail", { cwd, number });
+    return {
+      number: raw.number,
+      title: raw.title,
+      body: raw.body,
+      state: raw.state,
+      author: raw.author,
+      branch: raw.branch,
+      base: raw.base,
+      draft: raw.draft,
+      createdAt: raw.created_at,
+      updatedAt: raw.updated_at,
+      mergedAt: raw.merged_at,
+      url: raw.url,
+      additions: raw.additions,
+      deletions: raw.deletions,
+      changedFiles: raw.changed_files,
+      comments: raw.comments,
+      reviewComments: raw.review_comments,
+      labels: raw.labels,
+      reviewers: raw.reviewers,
+      mergeable: raw.mergeable,
+      checksStatus: raw.checks_status,
+    };
+  }
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azPrDiff(cwd: string, number: number): Promise<string> {
+  if (isTauri()) return tauriInvoke<string>("az_pr_diff", { cwd, number });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azPrFiles(cwd: string, number: number): Promise<string[]> {
+  if (isTauri()) return tauriInvoke<string[]>("az_pr_files", { cwd, number });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azCreatePr(
+  cwd: string,
+  title: string,
+  body: string,
+  base?: string,
+  draft?: boolean,
+): Promise<PullRequest> {
+  if (isTauri()) {
+    const raw = await tauriInvoke<any>("az_create_pr", { cwd, title, body, base, draft });
+    return mapRawPr(raw);
+  }
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azMergePr(cwd: string, number: number, method: string = "merge"): Promise<void> {
+  if (isTauri()) return tauriInvoke<void>("az_merge_pr", { cwd, number, method });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azPrReady(cwd: string, number: number): Promise<void> {
+  if (isTauri()) return tauriInvoke<void>("az_pr_ready", { cwd, number });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azCheckoutPr(cwd: string, number: number): Promise<void> {
+  if (isTauri()) return tauriInvoke<void>("az_checkout_pr", { cwd, number });
+  throw new Error(AZURE_WEB_ONLY);
+}

From fe8d7f42705ddc7daaecc6ac8c185220ba49d9e8 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 07:49:35 -0400
Subject: [PATCH 09/44] feat(pr): Generalize 'Open in Browser' labels and icons

Update 'Open in Browser' buttons to dynamically display the active forge's name (e.g., GitHub, GitLab) instead of a hardcoded 'GitHub'. The GitHub-specific icon has also been replaced with a generic external link icon. This ensures accurate labeling and visual representation across all supported code hosting platforms.
```
---
 apps/desktop/src/components/PrDetailView.vue     | 10 ++++------
 apps/desktop/src/components/PullRequestPanel.vue | 13 +++++++++++--
 apps/desktop/src/composables/usePrPanel.ts       | 12 ++++++++++++
 3 files changed, 27 insertions(+), 8 deletions(-)

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 0c10edab..4837a11a 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -165,11 +165,11 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
               </svg>
               <span>{{ t('pr.detail.merge') }}</span>
             </button>
-            <button class="pdv-btn pdv-btn--ghost" @click="openInBrowser(p.prDetail.value.url)" title="GitHub">
-              <svg width="13" height="13" viewBox="0 0 16 16" fill="currentColor" aria-hidden="true">
-                <path fill-rule="evenodd" clip-rule="evenodd" d="M8 0C3.58 0 0 3.58 0 8c0 3.54 2.29 6.53 5.47 7.59.4.07.55-.17.55-.38 0-.19-.01-.82-.01-1.49-2.01.37-2.53-.49-2.69-.94-.09-.23-.48-.94-.82-1.13-.28-.15-.68-.52-.01-.53.63-.01 1.08.58 1.23.82.72 1.21 1.87.87 2.33.66.07-.52.28-.87.51-1.07-1.78-.2-3.64-.89-3.64-3.95 0-.87.31-1.59.82-2.15-.08-.2-.36-1.02.08-2.12 0 0 .67-.21 2.2.82a7.42 7.42 0 0 1 2-.27c.68 0 1.36.09 2 .27 1.53-1.04 2.2-.82 2.2-.82.44 1.1.16 1.92.08 2.12.51.56.82 1.27.82 2.15 0 3.07-1.87 3.75-3.65 3.95.29.25.54.73.54 1.48 0 1.07-.01 1.93-.01 2.2 0 .21.15.46.55.38A8.01 8.01 0 0 0 16 8c0-4.42-3.58-8-8-8z" />
+            <button class="pdv-btn pdv-btn--ghost" @click="openInBrowser(p.prDetail.value.url)" :title="p.forgeLabel.value">
+              <svg width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.5" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
+                <path d="M6.5 3H3v10h10V9.5M9.5 2.5H13V6M13 3l-6 6" />
               </svg>
-              <span>GitHub</span>
+              <span>{{ p.forgeLabel.value }}</span>
             </button>
           </div>
         </div>
@@ -1442,11 +1442,9 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
   background: var(--color-bg);
   border-color: var(--color-border-strong);
   color: var(--color-text);
-  transform: translateY(-1px);
   box-shadow: 0 2px 6px rgba(0, 0, 0, 0.15);
 }
 .pdv-btn:active {
-  transform: translateY(0);
   box-shadow: none;
 }
 
diff --git a/apps/desktop/src/components/PullRequestPanel.vue b/apps/desktop/src/components/PullRequestPanel.vue
index 707d38d1..5ce0d8f4 100644
--- a/apps/desktop/src/components/PullRequestPanel.vue
+++ b/apps/desktop/src/components/PullRequestPanel.vue
@@ -140,6 +140,15 @@ const forge = computed(() =>
 const isGitHub = computed(() => remote.value?.provider === "github");
 const hasDetail = computed(() => !!selectedPr.value);
 
+/** Human-facing name of the active forge — used for "Open on …" labels. */
+const FORGE_LABELS: Record<string, string> = {
+  github: "GitHub",
+  gitlab: "GitLab",
+  bitbucket: "Bitbucket",
+  azure: "Azure DevOps",
+};
+const forgeLabel = computed(() => FORGE_LABELS[forge.value.name] ?? "Web");
+
 // ─── Parse unified diff ─────────────────────────────────
 function parseUnifiedDiff(rawDiff: string): GitDiff[] {
   const files: GitDiff[] = [];
@@ -618,7 +627,7 @@ watch(() => props.cwd, () => {
                 <div class="pr-item-actions" @click.stop>
                   <button class="eco-btn eco-btn--xs" @click="checkoutPr(pr)">Checkout</button>
                   <button v-if="pr.state === 'OPEN' || pr.state === 'open'" class="eco-btn eco-btn--xs eco-btn--primary" @click="mergingPr = pr">Merger</button>
-                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(pr.url)" title="Ouvrir sur GitHub">↗</button>
+                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(pr.url)" :title="`Ouvrir sur ${forgeLabel}`">↗</button>
                 </div>
               </button>
             </div>
@@ -681,7 +690,7 @@ watch(() => props.cwd, () => {
                 >
                   ✍️ Review
                 </button>
-                <button class="eco-btn eco-btn--xs" @click="openInBrowser(prDetail.url)">↗ GitHub</button>
+                <button class="eco-btn eco-btn--xs" @click="openInBrowser(prDetail.url)">↗ {{ forgeLabel }}</button>
               </div>
 
               <!-- Info tab -->
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 369ca655..26de70c7 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -34,6 +34,14 @@ import { t } from "./useI18n";
 
 export const PR_PANEL_KEY = Symbol("prPanel");
 
+/** Human-facing forge names for "Open on …" / platform labels. */
+const FORGE_LABELS: Record<string, string> = {
+  github: "GitHub",
+  gitlab: "GitLab",
+  bitbucket: "Bitbucket",
+  azure: "Azure DevOps",
+};
+
 export function usePrPanel(cwd: Ref<string>) {
 
   // ─── Remote / list ─────────────────────────────────────
@@ -44,6 +52,9 @@ export function usePrPanel(cwd: Ref<string>) {
     remote.value ? forgeFromRemoteInfo(remote.value) : githubProvider,
   );
 
+  /** Human-facing name of the active forge — used for "Open on …" labels. */
+  const forgeLabel = computed(() => FORGE_LABELS[forge.value.name] ?? "Web");
+
   const prs = ref<PullRequest[]>([]);
   const loading = ref(false);
   const error = ref<string | null>(null);
@@ -712,6 +723,7 @@ export function usePrPanel(cwd: Ref<string>) {
     // Pagination (v2.8.5)
     hasMore, loadingMore,
     // Computed
+    forge, forgeLabel,
     commentsForFile, commentCount, mergeReadiness, selectedDiff, displayedPrs,
     // Actions
     init, loadRemote, loadPrs, loadMorePrs, loadCurrentUser, selectPr, loadDiff,

From 9e75953500dadfc4aeba6bc587a3b879ec8994f7 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 09:36:07 -0400
Subject: [PATCH 10/44] feat(pr): Open external markdown links in OS browser

Prevent clicking http(s) links within rendered PR descriptions and comments from navigating the Tauri webview. Instead, intercept these clicks and open the URLs in the user's default external browser.
---
 apps/desktop/src/components/PrCommentThread.vue | 13 ++++++++++++-
 apps/desktop/src/components/PrDetailView.vue    | 14 ++++++++++++++
 2 files changed, 26 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/src/components/PrCommentThread.vue b/apps/desktop/src/components/PrCommentThread.vue
index 3fc61ad4..11e384dd 100644
--- a/apps/desktop/src/components/PrCommentThread.vue
+++ b/apps/desktop/src/components/PrCommentThread.vue
@@ -9,9 +9,20 @@
  */
 import { ref, computed } from "vue";
 import type { PrReviewComment } from "../utils/backend";
+import { openExternalUrl } from "../utils/backend";
 import { safeHtml } from "../composables/useSafeHtml";
 import { useI18n } from "../composables/useI18n";
 
+// Anchors in rendered comment markdown must open in the OS browser, not
+// navigate the Tauri webview away from the app.
+function onMarkdownClick(e: MouseEvent) {
+  const href = (e.target as HTMLElement | null)?.closest("a")?.getAttribute("href");
+  if (href && /^https?:\/\//i.test(href)) {
+    e.preventDefault();
+    void openExternalUrl(href);
+  }
+}
+
 const { t } = useI18n();
 
 const props = defineProps<{
@@ -169,7 +180,7 @@ function timeAgo(dateStr: string): string {
           <button class="pct-submit-btn" @click="submitEdit" :disabled="!editText.trim()">{{ t('pr.comment.save') }}</button>
         </div>
       </div>
-      <div v-else class="pct-body" v-html="safeHtml(renderBody(comment.body))" />
+      <div v-else class="pct-body" @click="onMarkdownClick" v-html="safeHtml(renderBody(comment.body))" />
 
       <!-- Apply suggestion button -->
       <div v-if="hasSuggestion(comment) && editingId !== comment.id" class="pct-suggestion-actions">
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 4837a11a..2e0d3de5 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -32,6 +32,19 @@ const p = inject<PrPanelState>(PR_PANEL_KEY)!;
 // window.open is a no-op in the Tauri webview — hand the URL to the OS opener.
 function openInBrowser(url: string) { void openExternalUrl(url); }
 
+// Anchors inside rendered markdown (PR description) would otherwise navigate the
+// Tauri webview away from the app. Intercept clicks on http(s) links and hand
+// them to the OS browser instead.
+function onMarkdownClick(e: MouseEvent) {
+  const anchor = (e.target as HTMLElement | null)?.closest("a");
+  const href = anchor?.getAttribute("href");
+  if (!href) return;
+  if (/^https?:\/\//i.test(href)) {
+    e.preventDefault();
+    void openExternalUrl(href);
+  }
+}
+
 /** Author initials for the avatar disk. */
 function authorInitials(author: string): string {
   if (!author) return "?";
@@ -413,6 +426,7 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
               <div
                 v-if="descriptionTab === 'formatted'"
                 class="pdv-body-formatted"
+                @click="onMarkdownClick"
                 v-html="renderMarkdown(p.prDetail.value.body)"
               />
               <pre v-else class="pdv-body-raw"><code>{{ p.prDetail.value.body }}</code></pre>

From c5a325040865870588143d604fb7a94d7549e9c8 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 09:57:02 -0400
Subject: [PATCH 11/44] feat(azure): Implement automatic access token refresh

Azure DevOps access tokens expire after approximately 1 hour, leading to API failures and often returning an HTML sign-in page rather than a 401 status.

This change introduces an automatic token refresh mechanism to keep Azure DevOps sessions alive:
- Persists the Entra ID refresh token alongside the access token in the OS keychain.
- The `az_json` API wrapper detects authentication failures (including HTML responses) and attempts to exchange the refresh token for a new access token.
- If successful, the API request is retried with the new token, preventing frequent re-authentication and improving the reliability of the Azure DevOps integration.
---
 apps/desktop/src-tauri/src/commands/azure.rs | 217 ++++++++++++++-----
 1 file changed, 160 insertions(+), 57 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 2a2a9e4d..3878e833 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -37,6 +37,9 @@ use crate::types::*;
 pub(crate) const AZ_SERVICE: &str = "gitwand:azure";
 /// Keychain account key — fixed, resolved without knowing the login up front.
 pub(crate) const AZ_ACCOUNT: &str = "oauth";
+/// Keychain account key for the Entra refresh token (used to renew the access
+/// token, which expires ~1h after sign-in).
+const AZ_ACCOUNT_REFRESH: &str = "oauth-refresh";
 
 /// Azure DevOps first-party resource app id — the audience our access token
 /// targets. Stable, public, documented by Microsoft.
@@ -81,19 +84,75 @@ fn client_id() -> String {
 
 // ─── Token resolution ───────────────────────────────────────────────────────
 
-/// Read the Settings-managed Azure token from the OS keychain.
+/// Read a value from the keychain under `AZ_SERVICE` / `account`.
+fn read_secret(account: &str) -> Option<String> {
+    let entry = keyring::Entry::new(AZ_SERVICE, account).ok()?;
+    let v = entry.get_password().ok()?;
+    let v = v.trim().to_string();
+    if v.is_empty() { None } else { Some(v) }
+}
+
+/// Store a value in the keychain under `AZ_SERVICE` / `account`.
+fn write_secret(account: &str, value: &str) -> Result<(), String> {
+    let entry = keyring::Entry::new(AZ_SERVICE, account)
+        .map_err(|e| format!("keyring init failed: {}", e))?;
+    entry
+        .set_password(value)
+        .map_err(|e| format!("Failed to store Azure token: {}", e))
+}
+
+/// Read the Settings-managed Azure access token from the OS keychain.
 pub(crate) fn settings_azure_token() -> Option<String> {
-    let entry = keyring::Entry::new(AZ_SERVICE, AZ_ACCOUNT).ok()?;
-    let tok = entry.get_password().ok()?;
-    let tok = tok.trim().to_string();
-    if tok.is_empty() { None } else { Some(tok) }
+    read_secret(AZ_ACCOUNT)
 }
 
-fn require_token() -> Result<String, String> {
-    settings_azure_token().ok_or_else(|| {
-        "Not signed in to Azure DevOps. Open Settings → Accounts and sign in with Azure."
+/// Read the stored Entra refresh token.
+fn settings_azure_refresh() -> Option<String> {
+    read_secret(AZ_ACCOUNT_REFRESH)
+}
+
+/// Persist the access token (and refresh token, when the grant returns one).
+fn store_tokens(access: &str, refresh: &str) -> Result<(), String> {
+    write_secret(AZ_ACCOUNT, access)?;
+    if !refresh.is_empty() {
+        write_secret(AZ_ACCOUNT_REFRESH, refresh)?;
+    }
+    Ok(())
+}
+
+/// Exchange the stored refresh token for a fresh access token (Entra rotates the
+/// refresh token, so persist the new one too). Returns the new access token.
+///
+/// Entra access tokens live ~1h; without this, the PR workflow breaks an hour
+/// after sign-in and Azure DevOps starts returning an HTML sign-in page.
+fn refresh_access_token() -> Result<String, String> {
+    let refresh = settings_azure_refresh().ok_or_else(|| {
+        "Azure session expired. Open Settings → Accounts and sign in with Azure again."
             .to_string()
-    })
+    })?;
+    let cid = client_id();
+    let scope = format!("{}/.default offline_access", AZURE_DEVOPS_RESOURCE);
+    let (_status, text) = curl_form(
+        TOKEN_URL,
+        &[
+            ("grant_type", "refresh_token"),
+            ("client_id", &cid),
+            ("refresh_token", &refresh),
+            ("scope", &scope),
+        ],
+    )?;
+    let v: serde_json::Value = serde_json::from_str(text.trim())
+        .map_err(|e| format!("Failed to parse refresh response: {}", e))?;
+    let access = js(&v, "access_token");
+    if access.is_empty() {
+        return Err(
+            "Azure session expired. Open Settings → Accounts and sign in with Azure again."
+                .to_string(),
+        );
+    }
+    // Entra refresh-token rotation: store whatever new refresh token it returns.
+    let _ = store_tokens(&access, &js(&v, "refresh_token"));
+    Ok(access)
 }
 
 // ─── org/project/repo resolution ────────────────────────────────────────────
@@ -294,15 +353,21 @@ fn curl_form(url: &str, fields: &[(&str, &str)]) -> Result<(i32, String), String
     Ok((status, body))
 }
 
-/// Perform an Azure DevOps JSON API call. Maps HTTP ≥ 400 to a user-facing
-/// error, preferring Azure's `message` field.
-fn api_json(
-    method: &str,
-    url: &str,
-    token: &str,
-    body_json: Option<&str>,
-) -> Result<serde_json::Value, String> {
-    let (status, body) = curl_raw(method, url, Some(token), body_json)?;
+/// Whether a response means "the access token is no longer accepted".
+///
+/// Azure DevOps does not always answer 401: when an OAuth token is expired or
+/// rejected it frequently replies **HTTP 200 with an HTML sign-in page**. So we
+/// also treat a non-JSON HTML body as an auth failure.
+fn auth_failed(status: i32, body: &str) -> bool {
+    if status == 401 || status == 203 {
+        return true;
+    }
+    let t = body.trim_start();
+    t.starts_with("<!DOCTYPE") || t.starts_with("<html") || t.starts_with("<HTML")
+}
+
+/// Turn a raw `(status, body)` into JSON or a user-facing error.
+fn finalize_json(status: i32, body: &str) -> Result<serde_json::Value, String> {
     if status >= 400 {
         let msg = serde_json::from_str::<serde_json::Value>(body.trim())
             .ok()
@@ -317,6 +382,36 @@ fn api_json(
         .map_err(|e| format!("Failed to parse Azure DevOps response: {}", e))
 }
 
+/// Perform an authenticated Azure DevOps JSON API call.
+///
+/// Resolves the access token from the keychain; on an auth failure it refreshes
+/// the token once (via the stored refresh token) and retries. A persistent
+/// failure surfaces a clear "sign in again" error rather than a JSON parse error.
+fn az_json(
+    method: &str,
+    url: &str,
+    body_json: Option<&str>,
+) -> Result<serde_json::Value, String> {
+    let token = settings_azure_token().ok_or_else(|| {
+        "Not signed in to Azure DevOps. Open Settings → Accounts and sign in with Azure."
+            .to_string()
+    })?;
+    let (status, body) = curl_raw(method, url, Some(&token), body_json)?;
+    if !auth_failed(status, &body) {
+        return finalize_json(status, &body);
+    }
+    // Token rejected/expired → refresh once and retry.
+    let fresh = refresh_access_token()?;
+    let (status2, body2) = curl_raw(method, url, Some(&fresh), body_json)?;
+    if auth_failed(status2, &body2) {
+        return Err(
+            "Azure session expired. Open Settings → Accounts and sign in with Azure again."
+                .to_string(),
+        );
+    }
+    finalize_json(status2, &body2)
+}
+
 /// Append the pinned `api-version` query parameter to a URL.
 fn with_api_version(url: &str) -> String {
     let sep = if url.contains('?') { '&' } else { '?' };
@@ -431,9 +526,9 @@ fn json_to_detail(r: &AzureRepo, pr: &serde_json::Value) -> PullRequestDetail {
 
 // ─── REST PR workflow ───────────────────────────────────────────────────────
 
-fn rest_current_user(token: &str) -> Result<String, String> {
+fn rest_current_user() -> Result<String, String> {
     let url = with_api_version("https://app.vssps.visualstudio.com/_apis/profile/profiles/me");
-    let v = api_json("GET", &url, token, None)?;
+    let v = az_json("GET", &url, None)?;
     let name = js(&v, "displayName");
     let name = if name.is_empty() { js(&v, "emailAddress") } else { name };
     if name.is_empty() {
@@ -442,6 +537,17 @@ fn rest_current_user(token: &str) -> Result<String, String> {
     Ok(name)
 }
 
+/// Resolve the display name for an explicit token (used right after sign-in,
+/// before the token is fully wired into the keychain-backed `az_json` path).
+fn rest_current_user_with(token: &str) -> Result<String, String> {
+    let url = with_api_version("https://app.vssps.visualstudio.com/_apis/profile/profiles/me");
+    let (status, body) = curl_raw("GET", &url, Some(token), None)?;
+    let v = finalize_json(status, &body)?;
+    let name = js(&v, "displayName");
+    let name = if name.is_empty() { js(&v, "emailAddress") } else { name };
+    Ok(name)
+}
+
 fn search_status(state: &str) -> &'static str {
     match state {
         "closed" => "abandoned",
@@ -451,14 +557,14 @@ fn search_status(state: &str) -> &'static str {
     }
 }
 
-fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64, token: &str) -> Result<Vec<PullRequest>, String> {
+fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64) -> Result<Vec<PullRequest>, String> {
     let r = azure_repo(cwd)?;
     let top = (limit + offset).clamp(1, 100);
     let url = with_api_version(&format!(
         "{}/pullrequests?searchCriteria.status={}&$top={}",
         r.api_base(), search_status(state), top
     ));
-    let v = api_json("GET", &url, token, None)?;
+    let v = az_json("GET", &url, None)?;
     let mut prs: Vec<PullRequest> = v
         .get("value")
         .and_then(|a| a.as_array())
@@ -472,28 +578,28 @@ fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64, token: &str) -
     Ok(prs)
 }
 
-fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64, String> {
+fn rest_pr_count(cwd: &str, state: &str) -> Result<i64, String> {
     let r = azure_repo(cwd)?;
     let url = with_api_version(&format!(
         "{}/pullrequests?searchCriteria.status={}&$top=1000",
         r.api_base(), search_status(state)
     ));
-    let v = api_json("GET", &url, token, None)?;
+    let v = az_json("GET", &url, None)?;
     Ok(v.get("count").and_then(|c| c.as_i64()).unwrap_or_else(|| {
         v.get("value").and_then(|a| a.as_array()).map(|a| a.len() as i64).unwrap_or(0)
     }))
 }
 
 /// Fetch a single PR object together with its repo descriptor.
-fn get_pr_json(cwd: &str, number: i64, token: &str) -> Result<(AzureRepo, serde_json::Value), String> {
+fn get_pr_json(cwd: &str, number: i64) -> Result<(AzureRepo, serde_json::Value), String> {
     let r = azure_repo(cwd)?;
     let url = with_api_version(&format!("{}/pullrequests/{}", r.api_base(), number));
-    let v = api_json("GET", &url, token, None)?;
+    let v = az_json("GET", &url, None)?;
     Ok((r, v))
 }
 
-fn rest_pr_detail(cwd: &str, number: i64, token: &str) -> Result<PullRequestDetail, String> {
-    let (r, v) = get_pr_json(cwd, number, token)?;
+fn rest_pr_detail(cwd: &str, number: i64) -> Result<PullRequestDetail, String> {
+    let (r, v) = get_pr_json(cwd, number)?;
     Ok(json_to_detail(&r, &v))
 }
 
@@ -514,8 +620,8 @@ fn fetch_pr_branches(cwd: &str, source: &str, target: &str) -> Result<(), String
     Ok(())
 }
 
-fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String, String> {
-    let (_r, pr) = get_pr_json(cwd, number, token)?;
+fn rest_pr_diff(cwd: &str, number: i64) -> Result<String, String> {
+    let (_r, pr) = get_pr_json(cwd, number)?;
     let source = short_ref(&js(&pr, "sourceRefName"));
     let target = short_ref(&js(&pr, "targetRefName"));
     fetch_pr_branches(cwd, &source, &target)?;
@@ -531,8 +637,8 @@ fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String, String> {
     Ok(String::from_utf8_lossy(&out.stdout).to_string())
 }
 
-fn rest_pr_files(cwd: &str, number: i64, token: &str) -> Result<Vec<String>, String> {
-    let (_r, pr) = get_pr_json(cwd, number, token)?;
+fn rest_pr_files(cwd: &str, number: i64) -> Result<Vec<String>, String> {
+    let (_r, pr) = get_pr_json(cwd, number)?;
     let source = short_ref(&js(&pr, "sourceRefName"));
     let target = short_ref(&js(&pr, "targetRefName"));
     fetch_pr_branches(cwd, &source, &target)?;
@@ -558,7 +664,6 @@ fn rest_create_pr(
     body: String,
     base: String,
     draft: bool,
-    token: &str,
 ) -> Result<PullRequest, String> {
     let r = azure_repo(cwd)?;
     let head_branch = current_branch(cwd)?;
@@ -571,12 +676,12 @@ fn rest_create_pr(
         "isDraft": draft,
     });
     let url = with_api_version(&format!("{}/pullrequests", r.api_base()));
-    let created = api_json("POST", &url, token, Some(&payload.to_string()))?;
+    let created = az_json("POST", &url, Some(&payload.to_string()))?;
     Ok(json_to_pr(&r, &created))
 }
 
-fn rest_merge_pr(cwd: &str, number: i64, method: &str, token: &str) -> Result<(), String> {
-    let (r, pr) = get_pr_json(cwd, number, token)?;
+fn rest_merge_pr(cwd: &str, number: i64, method: &str) -> Result<(), String> {
+    let (r, pr) = get_pr_json(cwd, number)?;
     let merge_strategy = match method {
         "squash" => "squash",
         "rebase" => "rebase",
@@ -597,20 +702,20 @@ fn rest_merge_pr(cwd: &str, number: i64, method: &str, token: &str) -> Result<()
         },
     });
     let url = with_api_version(&format!("{}/pullrequests/{}", r.api_base(), number));
-    api_json("PATCH", &url, token, Some(&payload.to_string()))?;
+    az_json("PATCH", &url, Some(&payload.to_string()))?;
     Ok(())
 }
 
-fn rest_pr_ready(cwd: &str, number: i64, token: &str) -> Result<(), String> {
+fn rest_pr_ready(cwd: &str, number: i64) -> Result<(), String> {
     let r = azure_repo(cwd)?;
     let payload = serde_json::json!({ "isDraft": false });
     let url = with_api_version(&format!("{}/pullrequests/{}", r.api_base(), number));
-    api_json("PATCH", &url, token, Some(&payload.to_string()))?;
+    az_json("PATCH", &url, Some(&payload.to_string()))?;
     Ok(())
 }
 
-fn rest_checkout_pr(cwd: &str, number: i64, token: &str) -> Result<(), String> {
-    let (_r, pr) = get_pr_json(cwd, number, token)?;
+fn rest_checkout_pr(cwd: &str, number: i64) -> Result<(), String> {
+    let (_r, pr) = get_pr_json(cwd, number)?;
     let source = short_ref(&js(&pr, "sourceRefName"));
     let fetch = git_cmd()
         .args(["fetch", "origin", &source])
@@ -641,32 +746,32 @@ fn rest_checkout_pr(cwd: &str, number: i64, token: &str) -> Result<(), String> {
 
 #[tauri::command]
 pub(crate) fn az_current_user() -> Result<String, String> {
-    rest_current_user(&require_token()?)
+    rest_current_user()
 }
 
 #[tauri::command]
 pub(crate) fn az_list_prs(cwd: String, state: String, limit: i64, offset: i64) -> Result<Vec<PullRequest>, String> {
-    rest_list_prs(&cwd, &state, limit, offset, &require_token()?)
+    rest_list_prs(&cwd, &state, limit, offset)
 }
 
 #[tauri::command]
 pub(crate) fn az_pr_count(cwd: String, state: String) -> Result<i64, String> {
-    rest_pr_count(&cwd, &state, &require_token()?)
+    rest_pr_count(&cwd, &state)
 }
 
 #[tauri::command]
 pub(crate) fn az_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail, String> {
-    rest_pr_detail(&cwd, number, &require_token()?)
+    rest_pr_detail(&cwd, number)
 }
 
 #[tauri::command]
 pub(crate) fn az_pr_diff(cwd: String, number: i64) -> Result<String, String> {
-    rest_pr_diff(&cwd, number, &require_token()?)
+    rest_pr_diff(&cwd, number)
 }
 
 #[tauri::command]
 pub(crate) fn az_pr_files(cwd: String, number: i64) -> Result<Vec<String>, String> {
-    rest_pr_files(&cwd, number, &require_token()?)
+    rest_pr_files(&cwd, number)
 }
 
 #[tauri::command]
@@ -677,22 +782,22 @@ pub(crate) fn az_create_pr(
     base: Option<String>,
     draft: Option<bool>,
 ) -> Result<PullRequest, String> {
-    rest_create_pr(&cwd, title, body, base.unwrap_or_default(), draft.unwrap_or(false), &require_token()?)
+    rest_create_pr(&cwd, title, body, base.unwrap_or_default(), draft.unwrap_or(false))
 }
 
 #[tauri::command]
 pub(crate) fn az_merge_pr(cwd: String, number: i64, method: Option<String>) -> Result<(), String> {
-    rest_merge_pr(&cwd, number, &method.unwrap_or_else(|| "merge".to_string()), &require_token()?)
+    rest_merge_pr(&cwd, number, &method.unwrap_or_else(|| "merge".to_string()))
 }
 
 #[tauri::command]
 pub(crate) fn az_pr_ready(cwd: String, number: i64) -> Result<(), String> {
-    rest_pr_ready(&cwd, number, &require_token()?)
+    rest_pr_ready(&cwd, number)
 }
 
 #[tauri::command]
 pub(crate) fn az_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
-    rest_checkout_pr(&cwd, number, &require_token()?)
+    rest_checkout_pr(&cwd, number)
 }
 
 // ─── Entra ID device flow ───────────────────────────────────────────────────
@@ -776,13 +881,11 @@ pub(crate) fn azure_device_poll(device_code: String) -> Result<GithubDevicePoll,
         });
     }
 
-    let entry = keyring::Entry::new(AZ_SERVICE, AZ_ACCOUNT)
-        .map_err(|e| format!("keyring init failed: {}", e))?;
-    entry
-        .set_password(&token)
-        .map_err(|e| format!("Failed to store Azure token: {}", e))?;
+    // Persist access + refresh tokens so the PR workflow survives the ~1h
+    // access-token lifetime (refreshed transparently by `az_json`).
+    store_tokens(&token, &js(&v, "refresh_token"))?;
 
-    let login = rest_current_user(&token).unwrap_or_default();
+    let login = rest_current_user_with(&token).unwrap_or_default();
     Ok(GithubDevicePoll {
         status: "success".to_string(),
         login,

From 7e4f9713e86d5586eddb26730ed3c382d82d444f Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 10:15:36 -0400
Subject: [PATCH 12/44] feat(azure): Implement PR comments and local file stats

Azure DevOps PR objects lack inherent file/line change statistics and organize comments into "threads."

This change:
- Populates PR `changed_files`, `additions`, and `deletions` by performing a local `git diff --numstat` between the source and target branches. This ensures the Files tab badge and related stats are correctly displayed.
- Adds support for listing and creating general PR comments, mapping Azure's "threads" into a flat comment list for the frontend.
- Synthesizes globally unique comment IDs for Azure threads to avoid collisions.

This enhances the Azure DevOps integration by providing previously missing PR comment functionality and improving the detail view with accurate file change statistics.
---
 apps/desktop/src-tauri/src/commands/azure.rs  | 142 +++++++++++++++++-
 apps/desktop/src-tauri/src/lib.rs             |   2 +
 .../src/composables/forge/AzureProvider.ts    |  13 +-
 apps/desktop/src/utils/backend-pr.ts          |  10 ++
 4 files changed, 161 insertions(+), 6 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 3878e833..99200d66 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -600,7 +600,44 @@ fn get_pr_json(cwd: &str, number: i64) -> Result<(AzureRepo, serde_json::Value),
 
 fn rest_pr_detail(cwd: &str, number: i64) -> Result<PullRequestDetail, String> {
     let (r, v) = get_pr_json(cwd, number)?;
-    Ok(json_to_detail(&r, &v))
+    let mut detail = json_to_detail(&r, &v);
+    // Azure's PR object has no file/line stats — compute them from local git so
+    // the Files tab badge and the changed-files/additions/deletions stats are
+    // populated (best-effort; leaves zeros if the branches can't be fetched).
+    let source = short_ref(&js(&v, "sourceRefName"));
+    let target = short_ref(&js(&v, "targetRefName"));
+    if fetch_pr_branches(cwd, &source, &target).is_ok() {
+        let (files, adds, dels) = diff_numstat(cwd, &source, &target);
+        detail.changed_files = files;
+        detail.additions = adds;
+        detail.deletions = dels;
+    }
+    Ok(detail)
+}
+
+/// `git diff --numstat target...source` → (changed_files, additions, deletions).
+fn diff_numstat(cwd: &str, source: &str, target: &str) -> (i64, i64, i64) {
+    let range = format!("origin/{}...origin/{}", target, source);
+    let out = match git_cmd()
+        .args(["diff", "--numstat", &range])
+        .current_dir(cwd)
+        .output()
+    {
+        Ok(o) if o.status.success() => o,
+        _ => return (0, 0, 0),
+    };
+    let text = String::from_utf8_lossy(&out.stdout);
+    let (mut files, mut adds, mut dels) = (0i64, 0i64, 0i64);
+    for line in text.lines() {
+        let mut cols = line.split('\t');
+        let a = cols.next().unwrap_or("");
+        let d = cols.next().unwrap_or("");
+        files += 1;
+        // Binary files show "-" for counts.
+        adds += a.parse::<i64>().unwrap_or(0);
+        dels += d.parse::<i64>().unwrap_or(0);
+    }
+    (files, adds, dels)
 }
 
 /// Diff is produced locally: fetch both PR branches from origin and diff the
@@ -742,6 +779,99 @@ fn rest_checkout_pr(cwd: &str, number: i64) -> Result<(), String> {
     Ok(())
 }
 
+// ─── Comments (Azure DevOps threads) ────────────────────────────────────────
+//
+// Azure groups PR comments into *threads*. A thread may be anchored to a file
+// (`threadContext.filePath` + line range) or be a general PR comment. Comment
+// ids restart at 1 within each thread, so we synthesize a globally-unique id
+// (`thread_id * COMMENT_ID_STRIDE + comment_id`) to keep Vue keys and reply
+// links unambiguous. The same transform is applied to `parentCommentId`.
+
+const COMMENT_ID_STRIDE: i64 = 1_000_000;
+
+/// Map Azure threads into the snake_case shape the frontend `PrReviewComment`
+/// type expects (consumed directly by `azPrComments`).
+fn threads_to_comments(threads: &serde_json::Value) -> Vec<serde_json::Value> {
+    let mut out = Vec::new();
+    let empty: Vec<serde_json::Value> = vec![];
+    let threads_arr = threads.get("value").and_then(|a| a.as_array()).unwrap_or(&empty);
+    for thread in threads_arr {
+        let thread_id = ji(thread, "id");
+        let ctx = thread.get("threadContext");
+        let path = ctx
+            .and_then(|c| c.get("filePath"))
+            .and_then(|s| s.as_str())
+            .unwrap_or("")
+            .trim_start_matches('/')
+            .to_string();
+        let line = ctx
+            .and_then(|c| c.get("rightFileStart").or_else(|| c.get("rightFileEnd")))
+            .and_then(|p| p.get("line"))
+            .and_then(|l| l.as_i64());
+
+        let comments = thread.get("comments").and_then(|a| a.as_array()).cloned().unwrap_or_default();
+        for c in &comments {
+            // Skip system-generated entries (status changes, votes, etc.).
+            if js(c, "commentType") == "system" {
+                continue;
+            }
+            let content = js(c, "content");
+            if content.trim().is_empty() {
+                continue;
+            }
+            let cid = ji(c, "id");
+            let parent = ji(c, "parentCommentId");
+            let in_reply_to = if parent > 0 {
+                serde_json::json!(thread_id * COMMENT_ID_STRIDE + parent)
+            } else {
+                serde_json::Value::Null
+            };
+            out.push(serde_json::json!({
+                "id": thread_id * COMMENT_ID_STRIDE + cid,
+                "body": content,
+                "author": jnested(c, "author", "displayName"),
+                "created_at": js(c, "publishedDate"),
+                "updated_at": js(c, "lastUpdatedDate"),
+                "path": path,
+                "line": line,
+                "original_line": serde_json::Value::Null,
+                "side": "RIGHT",
+                "start_line": serde_json::Value::Null,
+                "start_side": serde_json::Value::Null,
+                "in_reply_to_id": in_reply_to,
+                "diff_hunk": "",
+                "url": "",
+            }));
+        }
+    }
+    out
+}
+
+fn rest_pr_comments(cwd: &str, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    let r = azure_repo(cwd)?;
+    let url = with_api_version(&format!("{}/pullrequests/{}/threads", r.api_base(), number));
+    let threads = az_json("GET", &url, None)?;
+    Ok(threads_to_comments(&threads))
+}
+
+/// Create a general PR comment (a new thread). File-anchored creation is not
+/// wired yet — `path`/`line` are accepted but ignored, producing a general
+/// comment so nothing is silently dropped.
+fn rest_pr_create_comment(cwd: &str, number: i64, body: &str) -> Result<serde_json::Value, String> {
+    let r = azure_repo(cwd)?;
+    let payload = serde_json::json!({
+        "comments": [{ "parentCommentId": 0, "content": body, "commentType": "text" }],
+        "status": "active",
+    });
+    let url = with_api_version(&format!("{}/pullrequests/{}/threads", r.api_base(), number));
+    let thread = az_json("POST", &url, Some(&payload.to_string()))?;
+    // Return the created comment in PrReviewComment shape (first non-system one).
+    threads_to_comments(&serde_json::json!({ "value": [thread] }))
+        .into_iter()
+        .next()
+        .ok_or_else(|| "Azure DevOps returned no comment after create.".to_string())
+}
+
 // ─── Tauri commands — PR workflow ───────────────────────────────────────────
 
 #[tauri::command]
@@ -800,6 +930,16 @@ pub(crate) fn az_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
     rest_checkout_pr(&cwd, number)
 }
 
+#[tauri::command]
+pub(crate) fn az_pr_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    rest_pr_comments(&cwd, number)
+}
+
+#[tauri::command]
+pub(crate) fn az_pr_create_comment(cwd: String, number: i64, body: String) -> Result<serde_json::Value, String> {
+    rest_pr_create_comment(&cwd, number, &body)
+}
+
 // ─── Entra ID device flow ───────────────────────────────────────────────────
 
 /// Begin the Entra ID device authorization grant.
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 213b292d..0e002d92 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -345,6 +345,8 @@ pub fn run() {
             commands::azure::az_merge_pr,
             commands::azure::az_pr_ready,
             commands::azure::az_checkout_pr,
+            commands::azure::az_pr_comments,
+            commands::azure::az_pr_create_comment,
             commands::ops::git_exec,
             commands::ops::git_autocomplete,
             commands::ops::git_get_user,
diff --git a/apps/desktop/src/composables/forge/AzureProvider.ts b/apps/desktop/src/composables/forge/AzureProvider.ts
index 8c060502..c5052eca 100644
--- a/apps/desktop/src/composables/forge/AzureProvider.ts
+++ b/apps/desktop/src/composables/forge/AzureProvider.ts
@@ -29,6 +29,8 @@ import {
   azMergePr,
   azPrReady,
   azCheckoutPr,
+  azPrComments,
+  azPrCreateComment,
   ghPrConflictPreview,
   ghPrHotspots,
 } from "../../utils/backend";
@@ -126,14 +128,15 @@ export class AzureProvider implements ForgeProvider {
     return azPrReady(cwd, number);
   }
 
-  // ── Comments (not yet implemented) ─────────────────────────────────────────
+  // ── Comments ───────────────────────────────────────────────────────────────
+  // Azure threads API. Anchored-line creation + edit/delete not wired yet.
 
-  async listComments(_cwd: string, _prNumber: number): Promise<PrReviewComment[]> {
-    return [];
+  listComments(cwd: string, prNumber: number): Promise<PrReviewComment[]> {
+    return azPrComments(cwd, prNumber);
   }
 
-  createComment(_cwd: string, _prNumber: number, _params: CreatePrCommentParams): Promise<PrReviewComment> {
-    throw new ForgeNotImplementedError("azure", "createComment");
+  createComment(cwd: string, prNumber: number, params: CreatePrCommentParams): Promise<PrReviewComment> {
+    return azPrCreateComment(cwd, prNumber, params.body);
   }
 
   updateComment(_cwd: string, _commentId: number, _body: string, _prNumber?: number): Promise<void> {
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index 6f875b3c..9bdf0480 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -999,3 +999,13 @@ export async function azCheckoutPr(cwd: string, number: number): Promise<void> {
   if (isTauri()) return tauriInvoke<void>("az_checkout_pr", { cwd, number });
   throw new Error(AZURE_WEB_ONLY);
 }
+
+export async function azPrComments(cwd: string, number: number): Promise<PrReviewComment[]> {
+  if (isTauri()) return tauriInvoke<PrReviewComment[]>("az_pr_comments", { cwd, number });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azPrCreateComment(cwd: string, number: number, body: string): Promise<PrReviewComment> {
+  if (isTauri()) return tauriInvoke<PrReviewComment>("az_pr_create_comment", { cwd, number, body });
+  throw new Error(AZURE_WEB_ONLY);
+}

From 62a28415aef01b1f73cf97919c20b3af5be2cc51 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 10:21:03 -0400
Subject: [PATCH 13/44] feat(azure): Implement CI checks and PR reviews

Azure DevOps integration now includes:
- **CI checks:** Fetches Azure branch policy evaluations (e.g., build validation, required reviewers) and maps them to CI checks, providing accurate status for merge readiness.
- **Reviews:** Retrieves Azure reviewer votes (approve, changes requested) and maps them to PR reviews, enabling users to submit votes and see approval status.

These enhancements complete key aspects of the Azure DevOps PR workflow, ensuring the merge-readiness chip accurately reflects both build and approval states.
---
 CHANGELOG.md                                  |   2 +-
 apps/desktop/src-tauri/src/commands/azure.rs  | 183 ++++++++++++++++++
 apps/desktop/src-tauri/src/lib.rs             |   3 +
 .../src/composables/forge/AzureProvider.ts    |  20 +-
 apps/desktop/src/utils/backend-pr.ts          |  32 +++
 5 files changed, 231 insertions(+), 9 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 7cb1f912..7b4bc9da 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,7 +12,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - **Cross-fork pull requests** — when the repo's `origin` is a fork, the PR create view shows a target-repository selector (upstream parent vs your fork), defaulting to upstream. Works on both the REST (token) path — head is qualified as `fork-owner:branch` — and the `gh` path (`--repo`). New `gh_fork_info` command detects the relationship.
 - **Fork PRs in the list** — on the REST (token) path, the PR list for a fork now also includes the PRs you opened on the upstream repo (head repo == your fork), merged and sorted with origin's own PRs. PR detail/diff/checks/merge transparently resolve to the upstream repo for those entries.
 - **Sign in with GitHub (no `gh` CLI required)** — Settings → Accounts now offers a "Sign in with GitHub" button using the OAuth device flow. The resulting token is stored in the OS keychain; once present, the GitHub PR workflow (list, count, detail, diff, checks, files, create, merge, checkout, mark-ready) routes through the GitHub REST API instead of shelling out to `gh`. The `gh` CLI still works as before when no Settings token is configured — the ambient `GH_TOKEN`/`GITHUB_TOKEN` env path is unchanged.
-- **Azure DevOps support (new forge)** — Settings → Accounts now offers "Sign in with Azure" using the Entra ID OAuth device flow (same UX as GitHub). The access token is stored in the OS keychain (`gitwand:azure/oauth`). Azure DevOps remotes (`dev.azure.com`, `*.visualstudio.com`) are auto-detected and routed to a new `AzureProvider` backed by the Azure DevOps REST API (api-version 7.1): PR list/count/detail/diff/files/create/merge/checkout and draft→ready. Diff and file lists are produced from local git (Azure has no unified-patch endpoint). Comments, reviews, reviewer pickers and CI checks are not wired yet and degrade gracefully.
+- **Azure DevOps support (new forge)** — Settings → Accounts now offers "Sign in with Azure" using the Entra ID OAuth device flow (same UX as GitHub), with automatic access-token refresh via the stored refresh token. The tokens are stored in the OS keychain (`gitwand:azure/oauth` + `oauth-refresh`). Azure DevOps remotes (`dev.azure.com`, `*.visualstudio.com`) are auto-detected and routed to a new `AzureProvider` backed by the Azure DevOps REST API (api-version 7.1): PR list/count/detail/diff/files/create/merge/checkout, draft→ready, comments (threads), CI checks (branch-policy evaluations) and reviewer-vote reviews — so the merge-readiness chip reflects real build + approval state. Diff, file lists and change stats are produced from local git (Azure has no unified-patch endpoint). Comment edit/delete, line-anchored comment creation, reviewer pickers and submitting reviews are not wired yet and degrade gracefully.
 
 ### Notes
 
diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 99200d66..d0c7b70c 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -872,6 +872,169 @@ fn rest_pr_create_comment(cwd: &str, number: i64, body: &str) -> Result<serde_js
         .ok_or_else(|| "Azure DevOps returned no comment after create.".to_string())
 }
 
+// ─── CI checks (Azure branch-policy evaluations) ────────────────────────────
+//
+// Azure surfaces "merge state" through branch *policy evaluations* (build
+// validation, required/minimum reviewers, comment resolution, external status).
+// This is a richer signal than raw commit statuses and matches what the PR page
+// shows under "Checks", so we map each evaluation to a `CICheck`.
+
+/// Map an Azure policy-evaluation `status` to (state, conclusion) in the
+/// vocabulary the frontend merge-readiness logic understands.
+fn map_policy_status(status: &str) -> (&'static str, &'static str) {
+    match status {
+        "approved" => ("completed", "SUCCESS"),
+        "rejected" => ("completed", "FAILURE"),
+        "notApplicable" => ("completed", "SKIPPED"),
+        "running" => ("in_progress", ""),
+        // "queued" | "notSubmitted" | anything else → still pending.
+        _ => ("queued", ""),
+    }
+}
+
+fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
+    let (r, pr) = get_pr_json(cwd, number)?;
+    let project_id = pr
+        .get("repository")
+        .and_then(|repo| repo.get("project"))
+        .and_then(|p| p.get("id"))
+        .and_then(|s| s.as_str())
+        .unwrap_or("");
+    if project_id.is_empty() {
+        return Ok(Vec::new());
+    }
+    // artifactId identifies the PR for the policy engine.
+    let artifact = format!("vstfs:///CodeReview/CodeReviewId/{}/{}", project_id, number);
+    let url = with_api_version(&format!(
+        "https://dev.azure.com/{}/{}/_apis/policy/evaluations?artifactId={}",
+        urlenc(&r.org),
+        urlenc(&r.project),
+        urlenc(&artifact),
+    ));
+    // Policies may be disabled on the repo — treat any failure as "no checks".
+    let v = match az_json("GET", &url, None) {
+        Ok(v) => v,
+        Err(_) => return Ok(Vec::new()),
+    };
+    let evals = v.get("value").and_then(|a| a.as_array()).cloned().unwrap_or_default();
+    let checks = evals
+        .iter()
+        .map(|e| {
+            let display = e
+                .get("configuration")
+                .and_then(|c| c.get("type"))
+                .and_then(|t| t.get("displayName"))
+                .and_then(|s| s.as_str())
+                .unwrap_or("Policy")
+                .to_string();
+            let (state, conclusion) = map_policy_status(&js(e, "status"));
+            CICheck {
+                name: display,
+                state: state.to_string(),
+                conclusion: conclusion.to_string(),
+                details_url: String::new(),
+            }
+        })
+        .collect();
+    Ok(checks)
+}
+
+// ─── Reviews (reviewer votes) ───────────────────────────────────────────────
+//
+// Azure has no GitHub-style review submissions; approval is a per-reviewer
+// *vote*: 10 approved, 5 approved-with-suggestions, 0 none, -5 waiting for
+// author, -10 rejected. We map non-zero votes onto the review vocabulary so the
+// merge-readiness chip can reason about approvals / requested changes.
+
+fn map_vote(vote: i64) -> Option<&'static str> {
+    match vote {
+        v if v >= 5 => Some("APPROVED"),
+        -5 => Some("CHANGES_REQUESTED"), // waiting for author
+        -10 => Some("CHANGES_REQUESTED"), // rejected
+        _ => None,                        // 0 — no vote yet
+    }
+}
+
+/// Resolve the signed-in user's Azure DevOps identity id (a GUID) for the org.
+/// This is the `reviewerId` the vote endpoint expects.
+fn current_user_id(org: &str) -> Result<String, String> {
+    let url = format!("https://dev.azure.com/{}/_apis/connectionData", urlenc(org));
+    let v = az_json("GET", &url, None)?;
+    let id = v
+        .get("authenticatedUser")
+        .and_then(|u| u.get("id"))
+        .and_then(|s| s.as_str())
+        .unwrap_or("")
+        .to_string();
+    if id.is_empty() {
+        return Err("Could not resolve your Azure DevOps identity.".to_string());
+    }
+    Ok(id)
+}
+
+/// Cast / update the signed-in user's vote on a PR (Azure's review model).
+///
+/// `event` maps onto a vote: APPROVE → 10, REQUEST_CHANGES → -10. COMMENT casts
+/// no vote. Any `body` is posted as a general comment first, so a "Comment"
+/// review still leaves a visible note.
+fn rest_submit_review(cwd: &str, number: i64, event: &str, body: &str) -> Result<serde_json::Value, String> {
+    let r = azure_repo(cwd)?;
+    if !body.trim().is_empty() {
+        // Best-effort — never fail the vote because the note failed to post.
+        let _ = rest_pr_create_comment(cwd, number, body);
+    }
+    let vote: i64 = match event {
+        "APPROVE" => 10,
+        "REQUEST_CHANGES" => -10,
+        _ => 0,
+    };
+    let state = if vote > 0 {
+        "APPROVED"
+    } else if vote < 0 {
+        "CHANGES_REQUESTED"
+    } else {
+        "COMMENTED"
+    };
+    if vote != 0 {
+        let uid = current_user_id(&r.org)?;
+        let payload = serde_json::json!({ "vote": vote });
+        let url = with_api_version(&format!(
+            "{}/pullrequests/{}/reviewers/{}",
+            r.api_base(), number, urlenc(&uid)
+        ));
+        az_json("PUT", &url, Some(&payload.to_string()))?;
+    }
+    Ok(serde_json::json!({
+        "id": 0,
+        "state": state,
+        "body": body,
+        "user": { "login": "", "avatar_url": "" },
+        "submitted_at": "",
+        "html_url": "",
+    }))
+}
+
+fn rest_pr_reviews(cwd: &str, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    let (_r, pr) = get_pr_json(cwd, number)?;
+    let reviewers = pr.get("reviewers").and_then(|a| a.as_array()).cloned().unwrap_or_default();
+    let mut out = Vec::new();
+    for (i, rev) in reviewers.iter().enumerate() {
+        let Some(state) = map_vote(ji(rev, "vote")) else { continue };
+        out.push(serde_json::json!({
+            "id": i as i64 + 1,
+            "state": state,
+            "body": "",
+            "user": {
+                "login": js(rev, "displayName"),
+                "avatar_url": js(rev, "imageUrl"),
+            },
+            "submitted_at": "",
+            "html_url": "",
+        }));
+    }
+    Ok(out)
+}
+
 // ─── Tauri commands — PR workflow ───────────────────────────────────────────
 
 #[tauri::command]
@@ -940,6 +1103,26 @@ pub(crate) fn az_pr_create_comment(cwd: String, number: i64, body: String) -> Re
     rest_pr_create_comment(&cwd, number, &body)
 }
 
+#[tauri::command]
+pub(crate) fn az_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, String> {
+    rest_pr_checks(&cwd, number)
+}
+
+#[tauri::command]
+pub(crate) fn az_pr_reviews(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    rest_pr_reviews(&cwd, number)
+}
+
+#[tauri::command]
+pub(crate) fn az_submit_review(
+    cwd: String,
+    number: i64,
+    event: String,
+    body: Option<String>,
+) -> Result<serde_json::Value, String> {
+    rest_submit_review(&cwd, number, &event, &body.unwrap_or_default())
+}
+
 // ─── Entra ID device flow ───────────────────────────────────────────────────
 
 /// Begin the Entra ID device authorization grant.
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 0e002d92..215077cb 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -347,6 +347,9 @@ pub fn run() {
             commands::azure::az_checkout_pr,
             commands::azure::az_pr_comments,
             commands::azure::az_pr_create_comment,
+            commands::azure::az_pr_checks,
+            commands::azure::az_pr_reviews,
+            commands::azure::az_submit_review,
             commands::ops::git_exec,
             commands::ops::git_autocomplete,
             commands::ops::git_get_user,
diff --git a/apps/desktop/src/composables/forge/AzureProvider.ts b/apps/desktop/src/composables/forge/AzureProvider.ts
index c5052eca..52d8e46e 100644
--- a/apps/desktop/src/composables/forge/AzureProvider.ts
+++ b/apps/desktop/src/composables/forge/AzureProvider.ts
@@ -31,6 +31,9 @@ import {
   azCheckoutPr,
   azPrComments,
   azPrCreateComment,
+  azPrChecks,
+  azPrReviews,
+  azSubmitReview,
   ghPrConflictPreview,
   ghPrHotspots,
 } from "../../utils/backend";
@@ -104,9 +107,9 @@ export class AzureProvider implements ForgeProvider {
     return azPrDiff(cwd, number);
   }
 
-  async getCIChecks(_cwd: string, _number: number): Promise<CICheck[]> {
-    // Azure Pipelines status not wired yet — empty rollup (no checks shown).
-    return [];
+  getCIChecks(cwd: string, number: number): Promise<CICheck[]> {
+    // Azure branch-policy evaluations (build validation, reviewers, etc.).
+    return azPrChecks(cwd, number);
   }
 
   // ── PR actions ─────────────────────────────────────────────────────────────
@@ -147,14 +150,15 @@ export class AzureProvider implements ForgeProvider {
     throw new ForgeNotImplementedError("azure", "deleteComment");
   }
 
-  // ── Reviews (not yet implemented) ──────────────────────────────────────────
+  // ── Reviews (reviewer votes) ───────────────────────────────────────────────
 
-  async listReviews(_cwd: string, _prNumber: number): Promise<PrReview[]> {
-    return [];
+  listReviews(cwd: string, prNumber: number): Promise<PrReview[]> {
+    return azPrReviews(cwd, prNumber);
   }
 
-  submitReview(_cwd: string, _prNumber: number, _opts: SubmitReviewOptions): Promise<PrReview> {
-    throw new ForgeNotImplementedError("azure", "submitReview");
+  submitReview(cwd: string, prNumber: number, opts: SubmitReviewOptions): Promise<PrReview> {
+    // Azure has no inline-comment review payload — cast the vote (+ optional note).
+    return azSubmitReview(cwd, prNumber, { event: opts.event, body: opts.body });
   }
 
   // ── Intelligence ───────────────────────────────────────────────────────────
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index 9bdf0480..e07496ae 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -1009,3 +1009,35 @@ export async function azPrCreateComment(cwd: string, number: number, body: strin
   if (isTauri()) return tauriInvoke<PrReviewComment>("az_pr_create_comment", { cwd, number, body });
   throw new Error(AZURE_WEB_ONLY);
 }
+
+export async function azPrChecks(cwd: string, number: number): Promise<CICheck[]> {
+  if (isTauri()) {
+    const raw = await tauriInvoke<Array<{ name: string; state: string; conclusion: string; details_url: string }>>(
+      "az_pr_checks",
+      { cwd, number },
+    );
+    return raw.map((c) => ({
+      name: c.name,
+      state: c.state,
+      conclusion: c.conclusion,
+      detailsUrl: c.details_url,
+    }));
+  }
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azPrReviews(cwd: string, number: number): Promise<PrReview[]> {
+  if (isTauri()) return tauriInvoke<PrReview[]>("az_pr_reviews", { cwd, number });
+  throw new Error(AZURE_WEB_ONLY);
+}
+
+export async function azSubmitReview(
+  cwd: string,
+  number: number,
+  opts: { event: "APPROVE" | "REQUEST_CHANGES" | "COMMENT"; body?: string },
+): Promise<PrReview> {
+  if (isTauri()) {
+    return tauriInvoke<PrReview>("az_submit_review", { cwd, number, event: opts.event, body: opts.body });
+  }
+  throw new Error(AZURE_WEB_ONLY);
+}

From ea3e94d925e843b54520f0ad12166876a43a6f90 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 10:28:42 -0400
Subject: [PATCH 14/44] feat(azure): Improve PR merge readiness with explicit
 policy and reviewer status

This change refines Azure DevOps PR merge readiness checks by:
- Ensuring reliable policy evaluation fetching through explicit API version pinning (`7.1-preview.1`).
- Clarifying reviewer requirements by automatically spelling out policy names like "At least N reviewer(s) must approve".
- Introducing a fallback mechanism to surface "Waiting for reviewer approval" or "Changes requested" when explicit policy evaluations are unavailable.
- Updating the frontend to display specific failing/pending check names in the merge readiness banner, providing clearer reasons for unready PRs.
---
 apps/desktop/src-tauri/src/commands/azure.rs | 82 +++++++++++++++++---
 apps/desktop/src/composables/usePrPanel.ts   | 21 +++--
 2 files changed, 84 insertions(+), 19 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index d0c7b70c..fa944ce2 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -903,42 +903,100 @@ fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
     if project_id.is_empty() {
         return Ok(Vec::new());
     }
-    // artifactId identifies the PR for the policy engine.
+    // artifactId identifies the PR for the policy engine. The evaluations
+    // endpoint is project-scoped (by GUID) and is still a *preview* API even on
+    // 7.1 — a plain `api-version=7.1` returns 400, so we pin the preview tag.
     let artifact = format!("vstfs:///CodeReview/CodeReviewId/{}/{}", project_id, number);
-    let url = with_api_version(&format!(
-        "https://dev.azure.com/{}/{}/_apis/policy/evaluations?artifactId={}",
+    let url = format!(
+        "https://dev.azure.com/{}/{}/_apis/policy/evaluations?artifactId={}&api-version=7.1-preview.1",
         urlenc(&r.org),
-        urlenc(&r.project),
+        urlenc(project_id),
         urlenc(&artifact),
-    ));
+    );
     // Policies may be disabled on the repo — treat any failure as "no checks".
     let v = match az_json("GET", &url, None) {
         Ok(v) => v,
         Err(_) => return Ok(Vec::new()),
     };
     let evals = v.get("value").and_then(|a| a.as_array()).cloned().unwrap_or_default();
-    let checks = evals
+    let checks: Vec<CICheck> = evals
         .iter()
-        .map(|e| {
-            let display = e
-                .get("configuration")
+        .filter_map(|e| {
+            let cfg = e.get("configuration");
+            let display = cfg
                 .and_then(|c| c.get("type"))
                 .and_then(|t| t.get("displayName"))
                 .and_then(|s| s.as_str())
                 .unwrap_or("Policy")
                 .to_string();
+            // Skip non-blocking housekeeping policies that always read as
+            // "pending" and add noise to the readiness banner (e.g. the merge
+            // strategy, which the user picks at merge time).
+            let dl = display.to_lowercase();
+            if dl.contains("merge strategy") || dl.contains("stratégie de fusion") {
+                return None;
+            }
+            // Spell out the reviewer requirement ("At least N reviewer(s) must
+            // approve") so the merge-readiness banner is self-explanatory.
+            let name = if display.to_lowercase().contains("reviewer") {
+                let n = cfg
+                    .and_then(|c| c.get("settings"))
+                    .and_then(|s| s.get("minimumApproverCount"))
+                    .and_then(|c| c.as_i64())
+                    .unwrap_or(0);
+                if n > 0 {
+                    format!("At least {} reviewer{} must approve", n, if n > 1 { "s" } else { "" })
+                } else {
+                    display
+                }
+            } else {
+                display
+            };
             let (state, conclusion) = map_policy_status(&js(e, "status"));
-            CICheck {
-                name: display,
+            Some(CICheck {
+                name,
                 state: state.to_string(),
                 conclusion: conclusion.to_string(),
                 details_url: String::new(),
-            }
+            })
         })
         .collect();
+
+    // Fallback: the preview policy API can be unavailable (permissions, tag).
+    // Still convey "waiting for reviewer" from the PR's own reviewer list — if
+    // reviewers are assigned and none has approved (vote >= 5), surface it.
+    if checks.is_empty() {
+        if let Some(c) = pending_reviewer_check(&pr) {
+            return Ok(vec![c]);
+        }
+    }
     Ok(checks)
 }
 
+/// Build a "waiting for reviewer approval" pending check from the PR's reviewer
+/// votes, used when branch-policy evaluations aren't available.
+fn pending_reviewer_check(pr: &serde_json::Value) -> Option<CICheck> {
+    let reviewers = pr.get("reviewers").and_then(|a| a.as_array())?;
+    if reviewers.is_empty() {
+        return None;
+    }
+    let any_approved = reviewers.iter().any(|r| ji(r, "vote") >= 5);
+    let any_rejected = reviewers.iter().any(|r| ji(r, "vote") <= -5);
+    if any_approved && !any_rejected {
+        return None; // requirement already satisfied
+    }
+    Some(CICheck {
+        name: if any_rejected {
+            "Changes requested by a reviewer".to_string()
+        } else {
+            "Waiting for reviewer approval".to_string()
+        },
+        state: "queued".to_string(),
+        conclusion: if any_rejected { "FAILURE" } else { "" }.to_string(),
+        details_url: String::new(),
+    })
+}
+
 // ─── Reviews (reviewer votes) ───────────────────────────────────────────────
 //
 // Azure has no GitHub-style review submissions; approval is a per-reviewer
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 26de70c7..e182f37d 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -148,19 +148,26 @@ export function usePrPanel(cwd: Ref<string>) {
 
   const mergeReadiness = computed<{ ready: boolean; reason: string } | null>(() => {
     if (!prReviews.value.length && !prChecks.value.length) return null;
-    const checksOk = prChecks.value.length === 0 ||
-      prChecks.value.every((c) => {
-        const s = (c.conclusion || c.state || "").toUpperCase();
-        return ["SUCCESS", "SKIPPED", "NEUTRAL"].includes(s);
-      });
+    const isOk = (c: CICheck) =>
+      ["SUCCESS", "SKIPPED", "NEUTRAL"].includes((c.conclusion || c.state || "").toUpperCase());
+    // Checks / branch policies that are failing or still pending — surfaced by
+    // name so forge-specific requirements (e.g. Azure "At least 1 reviewer must
+    // approve") read clearly in the banner instead of a generic "checks failing".
+    const unmet = prChecks.value.filter((c) => !isOk(c));
+    const checksOk = unmet.length === 0;
     const hasApproval = prReviews.value.some((r) => r.state === "APPROVED");
     const hasChangesRequested = prReviews.value.some((r) => r.state === "CHANGES_REQUESTED");
     if (checksOk && hasApproval && !hasChangesRequested) {
       return { ready: true, reason: t("pr.ready.ready") };
     }
     const reasons: string[] = [];
-    if (!checksOk) reasons.push(t("pr.ready.reasonChecksFailing"));
-    if (!hasApproval) reasons.push(t("pr.ready.reasonNoApproval"));
+    // Prefer the concrete policy/check names; fall back to the generic label.
+    const names = unmet.map((c) => c.name).filter(Boolean);
+    if (names.length) reasons.push(...names);
+    else if (!checksOk) reasons.push(t("pr.ready.reasonChecksFailing"));
+    // Only add the generic "no approval" reason when no policy already covers it.
+    const reviewerPolicyShown = names.some((n) => /review|approv/i.test(n));
+    if (!hasApproval && !reviewerPolicyShown) reasons.push(t("pr.ready.reasonNoApproval"));
     if (hasChangesRequested) reasons.push(t("pr.ready.reasonChangesRequested"));
     return { ready: false, reason: t("pr.ready.waitingPrefix", reasons.join(", ")) };
   });

From a62c6675f9ce7fced2a62f06b8f818b944b0feb3 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 10:39:27 -0400
Subject: [PATCH 15/44] feat(azure): Display PR waiting status and file change
 statistics

This change enhances the Azure DevOps PR experience by:

- Introducing a derived `review_decision` based on reviewer votes, which, along with merge status, powers a new yellow "waiting" dot in the PR list sidebar to quickly identify PRs needing attention.
- Calculating `additions` and `deletions` locally via `git diff --numstat` for each PR, as Azure's API does not provide these statistics directly on the PR object.
- De-duplicating policy names in merge readiness checks to avoid redundant entries when Azure reports the same policy multiple times.
---
 apps/desktop/src-tauri/src/commands/azure.rs  | 31 ++++++++++++++++++-
 apps/desktop/src/components/PrListSidebar.vue | 20 +++++++++++-
 apps/desktop/src/composables/usePrPanel.ts    |  4 ++-
 3 files changed, 52 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index fa944ce2..ba134245 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -460,6 +460,23 @@ fn pr_web_url(r: &AzureRepo, id: i64) -> String {
 
 // ─── Mapping ────────────────────────────────────────────────────────────────
 
+/// Derive a GitHub-style review decision from the reviewer votes carried on the
+/// PR list/detail object, so the sidebar can flag PRs that are still waiting.
+fn review_decision(pr: &serde_json::Value) -> &'static str {
+    match pr.get("reviewers").and_then(|a| a.as_array()) {
+        Some(rv) if !rv.is_empty() => {
+            if rv.iter().any(|r| ji(r, "vote") <= -5) {
+                "CHANGES_REQUESTED"
+            } else if rv.iter().any(|r| ji(r, "vote") >= 5) {
+                "APPROVED"
+            } else {
+                "REVIEW_REQUIRED"
+            }
+        }
+        _ => "",
+    }
+}
+
 fn json_to_pr(r: &AzureRepo, pr: &serde_json::Value) -> PullRequest {
     let id = ji(pr, "pullRequestId");
     PullRequest {
@@ -478,7 +495,7 @@ fn json_to_pr(r: &AzureRepo, pr: &serde_json::Value) -> PullRequest {
         labels: Vec::new(),
         assignees: Vec::new(),
         review_requested: Vec::new(),
-        review_decision: String::new(),
+        review_decision: review_decision(pr).to_string(),
         merge_state_status: js(pr, "mergeStatus").to_uppercase(),
         checks_rollup: String::new(),
         comment_count: 0,
@@ -575,6 +592,18 @@ fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64) -> Result<Vec<
         prs.drain(..skip);
     }
     prs.truncate(limit.max(1) as usize);
+
+    // Azure PR objects carry no line stats. Refresh remote-tracking branches
+    // once (a single incremental network call), then compute +/- locally per
+    // PR. Branches that no longer exist (merged/closed) leave the stats at 0.
+    if !prs.is_empty() {
+        let _ = git_cmd().args(["fetch", "origin"]).current_dir(cwd).output();
+        for pr in &mut prs {
+            let (_, adds, dels) = diff_numstat(cwd, &pr.branch, &pr.base);
+            pr.additions = adds;
+            pr.deletions = dels;
+        }
+    }
     Ok(prs)
 }
 
diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index d1d929ae..8519a5a6 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -72,6 +72,19 @@ function stateInfo(state: string): { label: string; cls: StateCls } {
   return { label: t("pr.list.stateClosed"), cls: "pls-state--closed" };
 }
 
+/**
+ * Whether an open PR is still waiting on something to merge (review approval,
+ * requested changes, conflicts / blocked merge). Drives a yellow status dot.
+ * Uses only fields present on the list item — no extra per-PR requests.
+ */
+function isWaiting(pr: { state: string; draft: boolean; reviewDecision: string; mergeStateStatus: string }): boolean {
+  if (pr.state.toUpperCase() !== "OPEN" || pr.draft) return false;
+  const rd = (pr.reviewDecision || "").toUpperCase();
+  if (rd === "REVIEW_REQUIRED" || rd === "CHANGES_REQUESTED") return true;
+  const ms = (pr.mergeStateStatus || "").toUpperCase();
+  return ["BLOCKED", "CONFLICTING", "CONFLICTS", "DIRTY", "UNSTABLE"].includes(ms);
+}
+
 /** Total count shown as a subtle pill next to the title. */
 const totalCount = computed(() => panel.displayedPrs.value.length);
 
@@ -236,7 +249,7 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
         <div class="pls-row-top">
           <span class="pls-num">#{{ pr.number }}</span>
           <span class="pls-state-chip" :class="stateInfo(pr.state).cls">
-            <span class="pls-state-dot" aria-hidden="true"></span>
+            <span class="pls-state-dot" :class="{ 'pls-state-dot--waiting': isWaiting(pr) }" aria-hidden="true"></span>
             {{ stateInfo(pr.state).label }}
           </span>
           <span v-if="pr.draft" class="pls-draft-chip">{{ t('pr.list.draft') }}</span>
@@ -649,6 +662,11 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
   background: currentColor;
 }
 
+/* Open PR still waiting on review/merge → yellow dot instead of the green one. */
+.pls-state-dot--waiting {
+  background: var(--color-warning, #e3b341);
+}
+
 .pls-state-chip.pls-state--open {
   color: var(--color-success);
   background: var(--color-success-soft);
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index e182f37d..6cf05a74 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -162,7 +162,9 @@ export function usePrPanel(cwd: Ref<string>) {
     }
     const reasons: string[] = [];
     // Prefer the concrete policy/check names; fall back to the generic label.
-    const names = unmet.map((c) => c.name).filter(Boolean);
+    // De-duplicate identical names (Azure can report the same policy twice, e.g.
+    // an inherited + branch-level "At least 1 reviewer must approve").
+    const names = [...new Set(unmet.map((c) => c.name).filter(Boolean))];
     if (names.length) reasons.push(...names);
     else if (!checksOk) reasons.push(t("pr.ready.reasonChecksFailing"));
     // Only add the generic "no approval" reason when no policy already covers it.

From 714d78a71e49458ba669bc071289e6e0087abe17 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 10:49:09 -0400
Subject: [PATCH 16/44] feat(pr): Refine PR data, optimize loading, and enhance
 merge readiness

This change improves the Pull Request experience across supported forges by:
- Reducing redundant `git fetch` calls for PR lists, fetching only on the first page during pagination.
- Deriving `review_decision` for GitHub PRs from `requested_reviewers` to enable accurate waiting status.
- Calculating additions and deletions locally for GitHub PRs, as they are absent from the list API.
- Refining the CI check evaluation logic to more accurately determine blocking checks for merge readiness.
---
 apps/desktop/src-tauri/src/commands/azure.rs  | 12 +++--
 .../src-tauri/src/commands/github_api.rs      | 54 ++++++++++++++++++-
 apps/desktop/src/composables/usePrPanel.ts    | 22 +++++---
 3 files changed, 76 insertions(+), 12 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index ba134245..7d892603 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -593,11 +593,15 @@ fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64) -> Result<Vec<
     }
     prs.truncate(limit.max(1) as usize);
 
-    // Azure PR objects carry no line stats. Refresh remote-tracking branches
-    // once (a single incremental network call), then compute +/- locally per
-    // PR. Branches that no longer exist (merged/closed) leave the stats at 0.
+    // Azure PR objects carry no line stats — compute +/- locally per PR. The
+    // remote-tracking branches are refreshed once on the first page only (a
+    // single incremental network call); paginated loads reuse those refs to
+    // avoid a `git fetch` on every scroll. Branches that no longer exist
+    // (merged/closed) leave the stats at 0.
     if !prs.is_empty() {
-        let _ = git_cmd().args(["fetch", "origin"]).current_dir(cwd).output();
+        if offset == 0 {
+            let _ = git_cmd().args(["fetch", "origin"]).current_dir(cwd).output();
+        }
         for pr in &mut prs {
             let (_, adds, dels) = diff_numstat(cwd, &pr.branch, &pr.base);
             pr.additions = adds;
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index d9d9706c..8849a2b3 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -255,6 +255,16 @@ fn jlogins(v: &serde_json::Value, arr_key: &str, field: &str) -> Vec<String> {
 fn json_to_pr(pr: &serde_json::Value) -> PullRequest {
     let merged = pr.get("merged_at").map(|m| !m.is_null()).unwrap_or(false);
     let state = if merged { "merged".to_string() } else { js(pr, "state") };
+    let review_requested = jlogins(pr, "requested_reviewers", "login");
+    // REST has no review-decision field (that's GraphQL). Use the requested
+    // reviewers as a cheap proxy: GitHub removes a reviewer from this list once
+    // they approve, so a non-empty list ⇒ still waiting on review. Lets the PR
+    // sidebar flag the PR (yellow dot) without a per-PR roundtrip.
+    let review_decision = if !review_requested.is_empty() {
+        "REVIEW_REQUIRED".to_string()
+    } else {
+        String::new()
+    };
     PullRequest {
         number: ji(pr, "number"),
         title: js(pr, "title"),
@@ -270,8 +280,8 @@ fn json_to_pr(pr: &serde_json::Value) -> PullRequest {
         deletions: ji(pr, "deletions"),
         labels: jlogins(pr, "labels", "name"),
         assignees: jlogins(pr, "assignees", "login"),
-        review_requested: jlogins(pr, "requested_reviewers", "login"),
-        review_decision: String::new(),
+        review_requested,
+        review_decision,
         merge_state_status: js(pr, "mergeable_state").to_uppercase(),
         checks_rollup: String::new(),
         comment_count: ji(pr, "comments"),
@@ -405,9 +415,49 @@ pub(crate) fn rest_list_prs(
         prs.drain(..skip);
     }
     prs.truncate(page as usize);
+
+    // The list endpoint omits additions/deletions (only the per-PR detail has
+    // them). Fill +/- locally: refresh remote-tracking branches once on the
+    // first page (a single incremental fetch), then numstat per PR. Fork/deleted
+    // head branches not present in origin simply leave the stats at 0.
+    if !prs.is_empty() {
+        if off == 0 {
+            let _ = git_cmd().args(["fetch", "origin"]).current_dir(cwd).output();
+        }
+        for pr in &mut prs {
+            let (adds, dels) = diff_numstat(cwd, &pr.branch, &pr.base);
+            pr.additions = adds;
+            pr.deletions = dels;
+        }
+    }
     Ok(prs)
 }
 
+/// `git diff --numstat origin/base...origin/head` → (additions, deletions).
+/// Returns zeros when the refs aren't available locally.
+fn diff_numstat(cwd: &str, head: &str, base: &str) -> (i64, i64) {
+    if head.is_empty() || base.is_empty() {
+        return (0, 0);
+    }
+    let range = format!("origin/{}...origin/{}", base, head);
+    let out = match hidden_cmd("git")
+        .args(["diff", "--numstat", &range])
+        .current_dir(cwd)
+        .output()
+    {
+        Ok(o) if o.status.success() => o,
+        _ => return (0, 0),
+    };
+    let text = String::from_utf8_lossy(&out.stdout);
+    let (mut adds, mut dels) = (0i64, 0i64);
+    for line in text.lines() {
+        let mut cols = line.split('\t');
+        adds += cols.next().unwrap_or("").parse::<i64>().unwrap_or(0);
+        dels += cols.next().unwrap_or("").parse::<i64>().unwrap_or(0);
+    }
+    (adds, dels)
+}
+
 /// Fetch a PR object, trying `origin` first and falling back to the upstream
 /// parent (for fork → upstream PRs that don't live in origin). Returns the
 /// `owner/repo` the PR actually lives in alongside its JSON, so callers issue
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 6cf05a74..c30a68b7 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -148,12 +148,22 @@ export function usePrPanel(cwd: Ref<string>) {
 
   const mergeReadiness = computed<{ ready: boolean; reason: string } | null>(() => {
     if (!prReviews.value.length && !prChecks.value.length) return null;
-    const isOk = (c: CICheck) =>
-      ["SUCCESS", "SKIPPED", "NEUTRAL"].includes((c.conclusion || c.state || "").toUpperCase());
-    // Checks / branch policies that are failing or still pending — surfaced by
-    // name so forge-specific requirements (e.g. Azure "At least 1 reviewer must
-    // approve") read clearly in the banner instead of a generic "checks failing".
-    const unmet = prChecks.value.filter((c) => !isOk(c));
+    // A check blocks merge only when it is genuinely failing or still pending.
+    // Anything else (success, skipped, neutral, or a completed check with an
+    // unrecognised/empty conclusion) is treated as fine — so a passing CI run is
+    // never mislabelled as "waiting".
+    const FAILING = ["FAILURE", "FAILED", "TIMED_OUT", "CANCELLED", "ACTION_REQUIRED", "ERROR", "STARTUP_FAILURE"];
+    const PENDING = ["QUEUED", "IN_PROGRESS", "PENDING", "WAITING", "REQUESTED", "EXPECTED"];
+    const isBlocking = (c: CICheck) => {
+      const concl = (c.conclusion || "").toUpperCase();
+      if (FAILING.includes(concl)) return true;
+      // Still running — no conclusion yet and a pending-looking state.
+      return !concl && PENDING.includes((c.state || "").toUpperCase());
+    };
+    // Failing / pending checks + branch policies — surfaced by name so
+    // forge-specific requirements (e.g. Azure "At least 1 reviewer must approve")
+    // read clearly in the banner instead of a generic "checks failing".
+    const unmet = prChecks.value.filter(isBlocking);
     const checksOk = unmet.length === 0;
     const hasApproval = prReviews.value.some((r) => r.state === "APPROVED");
     const hasChangesRequested = prReviews.value.some((r) => r.state === "CHANGES_REQUESTED");

From ac4f42c92ed4484613ca8365cb980530eabc8710 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 10:56:28 -0400
Subject: [PATCH 17/44] feat(pr): Integrate GitHub PR CI status into waiting
 dot

This change enhances the GitHub Pull Request experience by:
- Fetching CI status rollups for PRs using a single batched GraphQL query, as
  the REST list API does not include this information.
- Incorporating the CI status into the PR list sidebar's "waiting" dot logic,
  allowing users to quickly identify PRs with pending or failing checks.
---
 .../src-tauri/src/commands/github_api.rs      | 65 +++++++++++++++++++
 apps/desktop/src/components/PrListSidebar.vue |  5 +-
 2 files changed, 69 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 8849a2b3..0be509e8 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -429,10 +429,75 @@ pub(crate) fn rest_list_prs(
             pr.additions = adds;
             pr.deletions = dels;
         }
+        // The REST list carries no CI status. Fetch the status-check rollup for
+        // the listed PRs in a single batched GraphQL call so the sidebar can
+        // flag in-progress / failing CI (yellow dot).
+        let nums: Vec<i64> = prs.iter().map(|p| p.number).collect();
+        let rollups = rest_status_rollups(cwd, &nums, token);
+        for pr in &mut prs {
+            if let Some(state) = rollups.get(&pr.number) {
+                pr.checks_rollup = state.clone();
+            }
+        }
     }
     Ok(prs)
 }
 
+/// Batched status-check rollup for a set of PR numbers via one GraphQL request.
+/// Returns `number → rollup state` (e.g. SUCCESS / PENDING / FAILURE). Best
+/// effort: any failure yields an empty map (no dot, never an error).
+fn rest_status_rollups(
+    cwd: &str,
+    numbers: &[i64],
+    token: &str,
+) -> std::collections::HashMap<i64, String> {
+    let mut map = std::collections::HashMap::new();
+    if numbers.is_empty() {
+        return map;
+    }
+    let (owner, repo) = match owner_repo(cwd) {
+        Ok(x) => x,
+        Err(_) => return map,
+    };
+    // One aliased field per PR: pr<NUM>: pullRequest(number: NUM) { … }.
+    let mut fields = String::new();
+    for n in numbers {
+        fields.push_str(&format!(
+            "pr{0}: pullRequest(number: {0}) {{ commits(last: 1) {{ nodes {{ commit {{ statusCheckRollup {{ state }} }} }} }} }} ",
+            n
+        ));
+    }
+    let query = format!(
+        "query {{ repository(owner: \"{}\", name: \"{}\") {{ {} }} }}",
+        owner, repo, fields
+    );
+    let payload = serde_json::json!({ "query": query });
+    let v = match api_json("POST", &format!("{}/graphql", API_BASE), token, Some(&payload.to_string())) {
+        Ok(v) => v,
+        Err(_) => return map,
+    };
+    let Some(obj) = v.get("data").and_then(|d| d.get("repository")) else {
+        return map;
+    };
+    for n in numbers {
+        let state = obj
+            .get(format!("pr{}", n))
+            .and_then(|p| p.get("commits"))
+            .and_then(|c| c.get("nodes"))
+            .and_then(|a| a.as_array())
+            .and_then(|a| a.first())
+            .and_then(|node| node.get("commit"))
+            .and_then(|c| c.get("statusCheckRollup"))
+            .and_then(|r| r.get("state"))
+            .and_then(|s| s.as_str())
+            .unwrap_or("");
+        if !state.is_empty() {
+            map.insert(*n, state.to_uppercase());
+        }
+    }
+    map
+}
+
 /// `git diff --numstat origin/base...origin/head` → (additions, deletions).
 /// Returns zeros when the refs aren't available locally.
 fn diff_numstat(cwd: &str, head: &str, base: &str) -> (i64, i64) {
diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index 8519a5a6..e9e05959 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -77,8 +77,11 @@ function stateInfo(state: string): { label: string; cls: StateCls } {
  * requested changes, conflicts / blocked merge). Drives a yellow status dot.
  * Uses only fields present on the list item — no extra per-PR requests.
  */
-function isWaiting(pr: { state: string; draft: boolean; reviewDecision: string; mergeStateStatus: string }): boolean {
+function isWaiting(pr: { state: string; draft: boolean; reviewDecision: string; mergeStateStatus: string; checksRollup: string }): boolean {
   if (pr.state.toUpperCase() !== "OPEN" || pr.draft) return false;
+  // CI not green yet (in progress, failing, queued).
+  const ci = (pr.checksRollup || "").toUpperCase();
+  if (["PENDING", "FAILURE", "ERROR", "EXPECTED"].includes(ci)) return true;
   const rd = (pr.reviewDecision || "").toUpperCase();
   if (rd === "REVIEW_REQUIRED" || rd === "CHANGES_REQUESTED") return true;
   const ms = (pr.mergeStateStatus || "").toUpperCase();

From 37ba25f9ca2a36f144ee31a62b0672e4c18ce2aa Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 11:20:10 -0400
Subject: [PATCH 18/44] feat(pr): Display all GitHub PR comments

This change enhances the GitHub Pull Request detail view by displaying all associated comments.
- It fetches issue-level comments (general conversation comments not tied to a diff line) in addition to existing inline review comments.
- Both types are merged and presented chronologically in a new section below the PR description, offering a complete discussion history.
- The implementation includes robust API fetching via REST or `gh api` CLI fallback for unauthenticated scenarios.
---
 apps/desktop/dev-server.mjs                   |  35 ++++
 apps/desktop/src-tauri/src/commands/gh.rs     |  47 ++++++
 .../src-tauri/src/commands/github_api.rs      |  50 ++++++
 apps/desktop/src-tauri/src/lib.rs             |   2 +
 apps/desktop/src/components/PrDetailView.vue  | 158 +++++++++++++++++-
 .../src/composables/forge/GitHubProvider.ts   |   5 +
 apps/desktop/src/composables/forge/types.ts   |   6 +
 apps/desktop/src/composables/usePrPanel.ts    |   8 +-
 apps/desktop/src/utils/backend-pr.ts          |  16 +-
 9 files changed, 317 insertions(+), 10 deletions(-)

diff --git a/apps/desktop/dev-server.mjs b/apps/desktop/dev-server.mjs
index d1f6ef86..9ecfb881 100644
--- a/apps/desktop/dev-server.mjs
+++ b/apps/desktop/dev-server.mjs
@@ -2611,6 +2611,41 @@ async function handleRequest(req, res) {
       }
     }
 
+    // GET /api/gh-pr-issue-comments?cwd=<path>&number=<n>
+    // Issue-level (conversation) comments — not anchored to a diff line.
+    if (url.pathname === "/api/gh-pr-issue-comments" && req.method === "GET") {
+      const cwd = url.searchParams.get("cwd");
+      const number = url.searchParams.get("number");
+      if (!cwd || !number) return jsonResponse(req, res, { error: "Missing cwd or number" }, 400);
+      try {
+        const token = getGithubToken();
+        if (!token) return jsonResponse(req, res, { error: "No GitHub token" }, 401);
+        const nwo = getRepoNwo(resolve(cwd));
+        if (!nwo) return jsonResponse(req, res, { error: "Could not determine GitHub repo" }, 400);
+        const resp = await githubFetch(`/repos/${nwo}/issues/${number}/comments?per_page=100`, token);
+        if (!resp.ok) return jsonResponse(req, res, { error: `GitHub API ${resp.status}` }, 500);
+        const raw = await resp.json();
+        return jsonResponse(req, res, raw.map((c) => ({
+          id: c.id,
+          body: c.body,
+          author: c.user?.login ?? "",
+          created_at: c.created_at,
+          updated_at: c.updated_at,
+          path: "",
+          line: null,
+          original_line: null,
+          side: "RIGHT",
+          start_line: null,
+          start_side: null,
+          in_reply_to_id: null,
+          diff_hunk: "",
+          url: c.html_url ?? "",
+        })));
+      } catch (err) {
+        return jsonResponse(req, res, { error: err.stderr?.toString() || err.message }, 500);
+      }
+    }
+
     // POST /api/gh-pr-comment  — create or reply
     // Body: { cwd, number, body, path, line, side, start_line?, start_side?, in_reply_to_id? }
     if (url.pathname === "/api/gh-pr-comment" && req.method === "POST") {
diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index 0dba9238..c5030bff 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -560,6 +560,53 @@ pub(crate) fn gh_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, Str
     Ok(checks)
 }
 
+/// List inline review comments (anchored to diff lines) for a PR.
+/// Token present → REST; otherwise `gh api`.
+#[tauri::command]
+pub(crate) fn gh_pr_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_pr_comments(&cwd, number, &tok);
+    }
+    let json = gh_api_json(
+        &cwd,
+        &format!("repos/{{owner}}/{{repo}}/pulls/{}/comments?per_page=100", number),
+    )?;
+    Ok(github_api::map_comments(&json, false))
+}
+
+/// List issue-level (conversation) comments for a PR.
+/// Token present → REST; otherwise `gh api`.
+#[tauri::command]
+pub(crate) fn gh_pr_issue_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    if let Some(tok) = github_api::settings_github_token() {
+        return github_api::rest_pr_issue_comments(&cwd, number, &tok);
+    }
+    let json = gh_api_json(
+        &cwd,
+        &format!("repos/{{owner}}/{{repo}}/issues/{}/comments?per_page=100", number),
+    )?;
+    Ok(github_api::map_comments(&json, true))
+}
+
+/// Run `gh api <path>` in `cwd` and parse stdout as JSON. Shared by the
+/// comment-list fallbacks when no token is configured.
+fn gh_api_json(cwd: &str, path: &str) -> Result<serde_json::Value, String> {
+    let output = hidden_cmd("gh")
+        .args(["api", path])
+        .current_dir(cwd)
+        .output()
+        .map_err(|e| format!("gh api: {}", e))?;
+    if !output.status.success() {
+        return Err(format!("gh api failed: {}", String::from_utf8_lossy(&output.stderr)));
+    }
+    let stdout = String::from_utf8_lossy(&output.stdout);
+    let trimmed = stdout.trim();
+    if trimmed.is_empty() {
+        return Ok(serde_json::Value::Array(Vec::new()));
+    }
+    serde_json::from_str(trimmed).map_err(|e| format!("parse gh api response: {}", e))
+}
+
 /// Report the current repo's fork relationship so the PR create view can offer
 /// "open against upstream". Token present → REST; otherwise `gh repo view`.
 #[tauri::command]
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 0be509e8..a4d4798c 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -629,6 +629,56 @@ pub(crate) fn rest_pr_files(cwd: &str, number: i64, token: &str) -> Result<Vec<S
     Ok(files)
 }
 
+/// Map a GitHub comment object to the snake_case shape the frontend
+/// `PrReviewComment` interface expects. `issue_level` flags conversation
+/// comments (not anchored to a diff line) so their path/line fields are nulled.
+pub(crate) fn map_comment(c: &serde_json::Value, issue_level: bool) -> serde_json::Value {
+    use serde_json::Value;
+    let side = {
+        let s = js(c, "side");
+        if s.is_empty() { "RIGHT".to_string() } else { s }
+    };
+    serde_json::json!({
+        "id": ji(c, "id"),
+        "body": js(c, "body"),
+        "author": jnested(c, "user", "login"),
+        "created_at": js(c, "created_at"),
+        "updated_at": js(c, "updated_at"),
+        "path": if issue_level { String::new() } else { js(c, "path") },
+        "line": if issue_level { Value::Null } else { c.get("line").cloned().unwrap_or(Value::Null) },
+        "original_line": if issue_level { Value::Null } else { c.get("original_line").cloned().unwrap_or(Value::Null) },
+        "side": if issue_level { "RIGHT".to_string() } else { side },
+        "start_line": if issue_level { Value::Null } else { c.get("start_line").cloned().unwrap_or(Value::Null) },
+        "start_side": if issue_level { Value::Null } else { c.get("start_side").cloned().unwrap_or(Value::Null) },
+        "in_reply_to_id": if issue_level { Value::Null } else { c.get("in_reply_to_id").cloned().unwrap_or(Value::Null) },
+        "diff_hunk": if issue_level { String::new() } else { js(c, "diff_hunk") },
+        "url": js(c, "html_url"),
+    })
+}
+
+/// Map a JSON array of GitHub comments into frontend `PrReviewComment` shape.
+pub(crate) fn map_comments(v: &serde_json::Value, issue_level: bool) -> Vec<serde_json::Value> {
+    v.as_array()
+        .map(|arr| arr.iter().map(|c| map_comment(c, issue_level)).collect())
+        .unwrap_or_default()
+}
+
+/// List inline review comments (anchored to diff lines) for a PR (REST).
+pub(crate) fn rest_pr_comments(cwd: &str, number: i64, token: &str) -> Result<Vec<serde_json::Value>, String> {
+    let (repo, _pr) = get_pr_json(cwd, number, token)?;
+    let url = format!("{}/repos/{}/pulls/{}/comments?per_page=100", API_BASE, repo, number);
+    let v = api_json("GET", &url, token, None)?;
+    Ok(map_comments(&v, false))
+}
+
+/// List issue-level (conversation) comments for a PR (REST).
+pub(crate) fn rest_pr_issue_comments(cwd: &str, number: i64, token: &str) -> Result<Vec<serde_json::Value>, String> {
+    let (repo, _pr) = get_pr_json(cwd, number, token)?;
+    let url = format!("{}/repos/{}/issues/{}/comments?per_page=100", API_BASE, repo, number);
+    let v = api_json("GET", &url, token, None)?;
+    Ok(map_comments(&v, true))
+}
+
 /// Resolve the current repo's fork relationship (REST).
 pub(crate) fn rest_fork_info(cwd: &str, token: &str) -> Result<ForkInfo, String> {
     let (owner, repo) = owner_repo(cwd)?;
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 215077cb..c342ba5e 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -327,6 +327,8 @@ pub fn run() {
             commands::gh::gh_pr_detail,
             commands::gh::gh_pr_diff,
             commands::gh::gh_pr_checks,
+            commands::gh::gh_pr_comments,
+            commands::gh::gh_pr_issue_comments,
             commands::gh::gh_pr_ready,
             commands::gh::gh_fork_info,
             commands::github_api::github_device_start,
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 2e0d3de5..c87b35e9 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -11,7 +11,7 @@
  * - Stat cards refined with icons + gradient hover
  * - Polished tabs with animation + count badges
  */
-import { computed, inject, ref } from "vue";
+import { computed, inject, nextTick, ref } from "vue";
 import { PR_PANEL_KEY, type PrPanelState } from "../composables/usePrPanel";
 import { renderMarkdown } from "../composables/useSafeHtml";
 import { openExternalUrl } from "../utils/backend";
@@ -79,6 +79,34 @@ const isOpenPr = computed(() => {
 
 /** Local UI state for the PR description's formatted / raw switch. */
 const descriptionTab = ref<"formatted" | "raw">("formatted");
+
+/** Review + issue-level comments, sorted oldest-first for display under the description. */
+const sortedComments = computed(() =>
+  [...p.prComments.value, ...p.prIssueComments.value].sort(
+    (a, b) => new Date(a.created_at).getTime() - new Date(b.created_at).getTime(),
+  ),
+);
+
+/** Anchor at the bottom of the comments list — target for the Comments tile. */
+const commentsEnd = ref<HTMLElement | null>(null);
+
+/** Clicking the Comments tile jumps to the Info tab and scrolls to the last comment. */
+async function scrollToLastComment() {
+  p.detailTab.value = "info";
+  await nextTick();
+  commentsEnd.value?.scrollIntoView({ behavior: "smooth", block: "end" });
+}
+
+/** Short relative time for a comment timestamp. */
+function commentTimeAgo(dateStr: string): string {
+  try {
+    const mins = Math.floor((Date.now() - new Date(dateStr).getTime()) / 60000);
+    if (mins < 60) return `${mins}m`;
+    const hours = Math.floor(mins / 60);
+    if (hours < 24) return `${hours}h`;
+    return `${Math.floor(hours / 24)}j`;
+  } catch { return dateStr; }
+}
 </script>
 
 <template>
@@ -339,7 +367,7 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
               </span>
             </div>
 
-            <div class="pdv-stat">
+            <button type="button" class="pdv-stat pdv-stat--clickable" @click="p.detailTab.value = 'diff'">
               <span class="pdv-stat-icon" aria-hidden="true">
                 <svg width="14" height="14" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round">
                   <path d="M10 2H4a1 1 0 0 0-1 1v10a1 1 0 0 0 1 1h8a1 1 0 0 0 1-1V5z" />
@@ -348,9 +376,9 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
               </span>
               <span class="pdv-stat-label">{{ t('pr.detail.statFiles') }}</span>
               <span class="pdv-stat-value">{{ p.prDetail.value.changedFiles }}</span>
-            </div>
+            </button>
 
-            <div class="pdv-stat">
+            <button type="button" class="pdv-stat pdv-stat--clickable" @click="p.detailTab.value = 'diff'">
               <span class="pdv-stat-icon" aria-hidden="true">
                 <svg width="14" height="14" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round">
                   <path d="M8 3v10M3 8h10" />
@@ -361,9 +389,15 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
                 <span class="pdv-add">+{{ p.prDetail.value.additions }}</span>
                 <span class="pdv-del">−{{ p.prDetail.value.deletions }}</span>
               </span>
-            </div>
+            </button>
 
-            <div class="pdv-stat">
+            <component
+              :is="sortedComments.length ? 'button' : 'div'"
+              :type="sortedComments.length ? 'button' : undefined"
+              class="pdv-stat"
+              :class="{ 'pdv-stat--clickable': sortedComments.length }"
+              @click="sortedComments.length && scrollToLastComment()"
+            >
               <span class="pdv-stat-icon" aria-hidden="true">
                 <svg width="14" height="14" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round">
                   <path d="M14 8c0 3-3 5.5-6 5.5-.7 0-1.4-.1-2-.3L3 14l.7-2.8A5.5 5.5 0 0 1 2 8c0-3 3-5.5 6-5.5S14 5 14 8z" />
@@ -371,7 +405,7 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
               </span>
               <span class="pdv-stat-label">{{ t('pr.detail.statComments') }}</span>
               <span class="pdv-stat-value">{{ p.prDetail.value.comments + p.prDetail.value.reviewComments }}</span>
-            </div>
+            </component>
           </div>
 
           <!-- Reviewers -->
@@ -434,6 +468,28 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
             <div v-else class="pdv-muted">{{ t('pr.detail.noDescription') }}</div>
           </section>
 
+          <!-- Comments -->
+          <section v-if="sortedComments.length" class="pdv-section pdv-section--comments">
+            <h2 class="pdv-section-label">
+              {{ t('pr.detail.statComments') }}
+              <span class="pdv-section-count">{{ sortedComments.length }}</span>
+            </h2>
+            <ul class="pdv-comments">
+              <li v-for="c in sortedComments" :key="`${c.path}#${c.id}`" class="pdv-comment">
+                <div class="pdv-comment-head">
+                  <span class="pdv-comment-avatar" :style="{ background: `hsl(${authorHue(c.author)} 65% 55%)` }" aria-hidden="true">
+                    {{ authorInitials(c.author) }}
+                  </span>
+                  <span class="pdv-comment-author">{{ c.author }}</span>
+                  <span v-if="c.path" class="pdv-comment-anchor">{{ c.path.split('/').pop() }}<template v-if="c.line">:{{ c.line }}</template></span>
+                  <span class="pdv-comment-time" :title="c.created_at">{{ commentTimeAgo(c.created_at) }}</span>
+                </div>
+                <div class="pdv-comment-body" @click="onMarkdownClick" v-html="renderMarkdown(c.body)" />
+              </li>
+            </ul>
+            <div ref="commentsEnd"></div>
+          </section>
+
           <!-- Secondary links -->
           <div class="pdv-links">
             <button class="pdv-btn pdv-btn--ghost pdv-btn--sm" @click="openInBrowser(p.prDetail.value.url + '/commits')">
@@ -996,6 +1052,14 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
   overflow: hidden;
 }
 
+.pdv-stat--clickable {
+  cursor: pointer;
+  text-align: left;
+  font: inherit;
+  color: inherit;
+  width: 100%;
+}
+
 .pdv-stat::before {
   content: "";
   position: absolute;
@@ -1070,6 +1134,86 @@ const descriptionTab = ref<"formatted" | "raw">("formatted");
   letter-spacing: 0.06em;
 }
 
+.pdv-section-count {
+  display: inline-flex;
+  align-items: center;
+  justify-content: center;
+  min-width: 18px;
+  height: 18px;
+  margin-left: var(--space-2);
+  padding: 0 var(--space-2);
+  border-radius: var(--radius-pill);
+  background: var(--color-bg-tertiary);
+  border: 1px solid var(--color-border);
+  font-size: var(--font-size-xs);
+  font-weight: var(--font-weight-bold);
+  color: var(--color-text);
+}
+
+.pdv-comments {
+  list-style: none;
+  margin: var(--space-4) 0 0;
+  padding: 0;
+  display: flex;
+  flex-direction: column;
+  gap: var(--space-3);
+}
+
+.pdv-comment {
+  padding: var(--space-4);
+  background: var(--color-bg-secondary);
+  border: 1px solid var(--color-border);
+  border-radius: var(--radius-md);
+}
+
+.pdv-comment-head {
+  display: flex;
+  align-items: center;
+  gap: var(--space-3);
+  margin-bottom: var(--space-3);
+}
+
+.pdv-comment-avatar {
+  width: 22px;
+  height: 22px;
+  border-radius: 50%;
+  display: inline-flex;
+  align-items: center;
+  justify-content: center;
+  font-size: 10px;
+  font-weight: var(--font-weight-bold);
+  color: #fff;
+  flex-shrink: 0;
+}
+
+.pdv-comment-author {
+  font-weight: var(--font-weight-bold);
+  color: var(--color-text);
+  font-size: var(--font-size-sm);
+}
+
+.pdv-comment-anchor {
+  font-family: var(--font-mono, monospace);
+  font-size: var(--font-size-xs);
+  color: var(--color-text-muted);
+  background: var(--color-bg-tertiary);
+  padding: 1px var(--space-2);
+  border-radius: var(--radius-sm);
+}
+
+.pdv-comment-time {
+  margin-left: auto;
+  font-size: var(--font-size-xs);
+  color: var(--color-text-muted);
+}
+
+.pdv-comment-body {
+  color: var(--color-text);
+  font-size: var(--font-size-sm);
+  line-height: 1.5;
+  word-break: break-word;
+}
+
 .pdv-chips {
   display: flex;
   flex-wrap: wrap;
diff --git a/apps/desktop/src/composables/forge/GitHubProvider.ts b/apps/desktop/src/composables/forge/GitHubProvider.ts
index 3b612bac..0d8dd3d8 100644
--- a/apps/desktop/src/composables/forge/GitHubProvider.ts
+++ b/apps/desktop/src/composables/forge/GitHubProvider.ts
@@ -24,6 +24,7 @@ import {
   ghMergePr,
   ghCheckoutPr,
   ghPrComments,
+  ghPrIssueComments,
   ghPrCreateComment,
   ghPrUpdateComment,
   ghPrDeleteComment,
@@ -130,6 +131,10 @@ export class GitHubProvider implements ForgeProvider {
     return ghPrComments(cwd, prNumber);
   }
 
+  listIssueComments(cwd: string, prNumber: number): Promise<PrReviewComment[]> {
+    return ghPrIssueComments(cwd, prNumber);
+  }
+
   createComment(cwd: string, prNumber: number, params: CreatePrCommentParams): Promise<PrReviewComment> {
     return ghPrCreateComment(cwd, prNumber, params);
   }
diff --git a/apps/desktop/src/composables/forge/types.ts b/apps/desktop/src/composables/forge/types.ts
index b5fe396f..fdbbbc1c 100644
--- a/apps/desktop/src/composables/forge/types.ts
+++ b/apps/desktop/src/composables/forge/types.ts
@@ -143,6 +143,12 @@ export interface ForgeProvider {
 
   listComments(cwd: string, prNumber: number): Promise<PrReviewComment[]>;
 
+  /**
+   * Issue-level (conversation) comments — not anchored to a diff line.
+   * Optional: providers that don't expose them simply omit it.
+   */
+  listIssueComments?(cwd: string, prNumber: number): Promise<PrReviewComment[]>;
+
   createComment(cwd: string, prNumber: number, params: CreatePrCommentParams): Promise<PrReviewComment>;
 
   /**
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index c30a68b7..9b3d4039 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -93,6 +93,7 @@ export function usePrPanel(cwd: Ref<string>) {
   const prChecks = ref<CICheck[]>([]);
   const prDiffFiles = ref<GitDiff[]>([]);
   const prComments = ref<PrReviewComment[]>([]);
+  const prIssueComments = ref<PrReviewComment[]>([]);
   const prReviews = ref<PrReview[]>([]);
   const detailLoading = ref(false);
   const detailError = ref<string | null>(null);
@@ -380,6 +381,7 @@ export function usePrPanel(cwd: Ref<string>) {
     prChecks.value = [];
     prDiffFiles.value = [];
     prComments.value = [];
+    prIssueComments.value = [];
     prReviews.value = [];
     draftReviewComments.value = [];
     conflictPreview.value = null;
@@ -397,16 +399,18 @@ export function usePrPanel(cwd: Ref<string>) {
     detailLoading.value = true;
     detailError.value = null;
     try {
-      const [detail, checks, comments, reviews, fileCount] = await Promise.all([
+      const [detail, checks, comments, issueComments, reviews, fileCount] = await Promise.all([
         forge.value.getPR(cwd.value, pr.number),
         forge.value.getCIChecks(cwd.value, pr.number).catch(() => [] as CICheck[]),
         forge.value.listComments(cwd.value, pr.number).catch(() => [] as PrReviewComment[]),
+        forge.value.listIssueComments?.(cwd.value, pr.number).catch(() => [] as PrReviewComment[]) ?? Promise.resolve([] as PrReviewComment[]),
         forge.value.listReviews(cwd.value, pr.number).catch(() => [] as PrReview[]),
         gitFileCount(cwd.value).catch(() => 0),
       ]);
       prDetail.value = detail;
       prChecks.value = checks;
       prComments.value = comments;
+      prIssueComments.value = issueComments;
       prReviews.value = reviews;
       totalRepoFiles.value = fileCount;
     } catch (err: any) {
@@ -734,7 +738,7 @@ export function usePrPanel(cwd: Ref<string>) {
     showCreateForm, newPrTitle, newPrBody, newPrBase, newPrDraft, newPrReviewers, isCreating,
     forkInfo, newPrBaseRepo,
     mergingPr, mergeMethod,
-    selectedPr, prDetail, prChecks, prDiffFiles, prComments, prReviews,
+    selectedPr, prDetail, prChecks, prDiffFiles, prComments, prIssueComments, prReviews,
     detailLoading, detailError, detailTab, selectedDiffFile, diffMode,
     draftReviewComments, showReviewModal, submittingReview,
     conflictPreview, conflictLoading, conflictError,
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index e07496ae..e5aaad7b 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -569,7 +569,7 @@ export interface CreatePrCommentParams {
 
 /** Fetch all review comments for a PR. */
 export async function ghPrComments(cwd: string, prNumber: number): Promise<PrReviewComment[]> {
-  // No Tauri implementation — browser only for now
+  if (isTauri()) return tauriInvoke<PrReviewComment[]>("gh_pr_comments", { cwd, number: prNumber });
   const res = await devFetch(`${DEV_SERVER}/api/gh-pr-comments?cwd=${encodeURIComponent(cwd)}&number=${prNumber}`);
   if (!res.ok) throw new Error(`gh pr comments failed: ${res.status}`);
   const raw = await res.json();
@@ -577,6 +577,20 @@ export async function ghPrComments(cwd: string, prNumber: number): Promise<PrRev
   return raw as PrReviewComment[];
 }
 
+/**
+ * Issue-level (conversation) comments on a PR — the ones not anchored to a
+ * diff line. Returned in the same {@link PrReviewComment} shape with an empty
+ * `path` so they can be merged with review comments for display.
+ */
+export async function ghPrIssueComments(cwd: string, prNumber: number): Promise<PrReviewComment[]> {
+  if (isTauri()) return tauriInvoke<PrReviewComment[]>("gh_pr_issue_comments", { cwd, number: prNumber });
+  const res = await devFetch(`${DEV_SERVER}/api/gh-pr-issue-comments?cwd=${encodeURIComponent(cwd)}&number=${prNumber}`);
+  if (!res.ok) throw new Error(`gh pr issue comments failed: ${res.status}`);
+  const raw = await res.json();
+  if (raw.error) throw new Error(raw.error);
+  return raw as PrReviewComment[];
+}
+
 /** Create a new review comment (or reply to an existing one). */
 export async function ghPrCreateComment(
   cwd: string,

From be76d6718c3452b3c2805bf191547d66ad5f8325 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 11:26:59 -0400
Subject: [PATCH 19/44] feat(pr): Add "Go to" button for comments and filter
 GitLab system notes

This change enhances the Pull Request detail view by:
- Adding a "Go to" button next to each comment, allowing users to navigate directly to the comment's permalink on the web platform.
- Implementing platform-specific logic for these links: using direct comment URLs when available (e.g., GitHub, Bitbucket), and falling back to the PR URL with a `#note_` anchor for GitLab.
- Filtering out GitLab system notes (e.g., "changed description", label events) from the displayed comments list to ensure only actual conversation comments are shown.
---
 apps/desktop/src/components/PrDetailView.vue | 42 ++++++++++++++++++++
 apps/desktop/src/locales/en.ts               |  1 +
 apps/desktop/src/locales/es.ts               |  1 +
 apps/desktop/src/locales/fr.ts               |  1 +
 apps/desktop/src/locales/pt-BR.ts            |  1 +
 apps/desktop/src/locales/zh-CN.ts            |  1 +
 apps/desktop/src/utils/backend-gitlab.ts     |  6 ++-
 7 files changed, 52 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index c87b35e9..d621443d 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -97,6 +97,18 @@ async function scrollToLastComment() {
   commentsEnd.value?.scrollIntoView({ behavior: "smooth", block: "end" });
 }
 
+/**
+ * Web URL for a comment's "Go to" button. GitHub/Bitbucket expose a direct
+ * per-comment permalink; GitLab/Azure don't, so fall back to the PR/MR page
+ * (with the GitLab `#note_<id>` anchor when the base is a GitLab MR).
+ */
+function commentHref(c: { url: string; id: number }): string {
+  if (c.url) return c.url;
+  const base = p.prDetail.value?.url ?? "";
+  if (!base) return "";
+  return /gitlab/i.test(base) && c.id ? `${base}#note_${c.id}` : base;
+}
+
 /** Short relative time for a comment timestamp. */
 function commentTimeAgo(dateStr: string): string {
   try {
@@ -481,6 +493,18 @@ function commentTimeAgo(dateStr: string): string {
                     {{ authorInitials(c.author) }}
                   </span>
                   <span class="pdv-comment-author">{{ c.author }}</span>
+                  <button
+                    v-if="commentHref(c)"
+                    type="button"
+                    class="pdv-comment-goto"
+                    :title="t('pr.detail.commentGoto')"
+                    @click="openInBrowser(commentHref(c))"
+                  >
+                    {{ t('pr.detail.commentGoto') }}
+                    <svg width="11" height="11" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
+                      <path d="M6 3H3v10h10v-3M9 3h4v4M13 3 7 9" />
+                    </svg>
+                  </button>
                   <span v-if="c.path" class="pdv-comment-anchor">{{ c.path.split('/').pop() }}<template v-if="c.line">:{{ c.line }}</template></span>
                   <span class="pdv-comment-time" :title="c.created_at">{{ commentTimeAgo(c.created_at) }}</span>
                 </div>
@@ -1207,6 +1231,24 @@ function commentTimeAgo(dateStr: string): string {
   color: var(--color-text-muted);
 }
 
+.pdv-comment-goto {
+  display: inline-flex;
+  align-items: center;
+  gap: var(--space-1);
+  padding: 1px var(--space-2);
+  border: 1px solid var(--color-border);
+  border-radius: var(--radius-sm);
+  background: transparent;
+  color: var(--color-text-muted);
+  font-size: var(--font-size-xs);
+  cursor: pointer;
+  transition: color var(--transition-fast), border-color var(--transition-fast);
+}
+.pdv-comment-goto:hover {
+  color: var(--color-accent);
+  border-color: var(--color-accent);
+}
+
 .pdv-comment-body {
   color: var(--color-text);
   font-size: var(--font-size-sm);
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index 6f2000c7..6f83e231 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -815,6 +815,7 @@ const en = {
       statFiles: "Files",
       statDiff: "Diff",
       statComments: "Comments",
+      commentGoto: "Go to",
       labels: "Labels",
       reviewers: "Reviewers",
       description: "Description",
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index 2932d6b7..88cdbf9d 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -798,6 +798,7 @@ const es: Locale = {
       statFiles: "Archivos",
       statDiff: "Diff",
       statComments: "Comentarios",
+      commentGoto: "Ir a",
       labels: "Etiquetas",
       reviewers: "Revisores",
       description: "Descripción",
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index ecb40217..23e00b0b 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -809,6 +809,7 @@ const fr: Locale = {
       statFiles: "Fichiers",
       statDiff: "Diff",
       statComments: "Commentaires",
+      commentGoto: "Aller à",
       labels: "Labels",
       reviewers: "Reviewers",
       description: "Description",
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index 63dd80ad..e9648f2a 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -799,6 +799,7 @@ const ptBR: Locale = {
       statFiles: "Arquivos",
       statDiff: "Diff",
       statComments: "Comentários",
+      commentGoto: "Ir para",
       labels: "Labels",
       reviewers: "Revisores",
       description: "Descrição",
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index f96be05c..42d715d6 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -787,6 +787,7 @@ const zhCN: Locale = {
       statFiles: "文件",
       statDiff: "Diff",
       statComments: "评论",
+      commentGoto: "前往",
       labels: "标签",
       reviewers: "评审者",
       description: "描述",
diff --git a/apps/desktop/src/utils/backend-gitlab.ts b/apps/desktop/src/utils/backend-gitlab.ts
index 2bcf2b21..ba44884e 100644
--- a/apps/desktop/src/utils/backend-gitlab.ts
+++ b/apps/desktop/src/utils/backend-gitlab.ts
@@ -147,7 +147,11 @@ function glNoteToComment(note: Record<string, unknown>): PrReviewComment {
 export async function glMrNotes(cwd: string, iid: number): Promise<PrReviewComment[]> {
   if (!isTauri()) return [];
   const raw = await tauriInvoke<unknown[]>("gl_mr_notes", { cwd, iid });
-  return (raw as Record<string, unknown>[]).map(glNoteToComment);
+  // Drop system notes ("changed the description", label/assignee events, …) —
+  // they are activity log entries, not real conversation comments.
+  return (raw as Record<string, unknown>[])
+    .filter((n) => n.system !== true)
+    .map(glNoteToComment);
 }
 
 /** Create a note (comment) on a MR. */

From c43e59283feaa834464a6c888e39f40548a639a5 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 11:33:24 -0400
Subject: [PATCH 20/44] feat(pr): Standardize avatar disk style across all PR
 views

This change unifies the appearance of author avatars in Pull Request components (comments, details, reviewer lists). Avatars now consistently use the outline style: a transparent fill, a deterministically colored border, and initials. This brings visual consistency with other parts of the application, such as the Dashboard and CommitGraph.
---
 .../src/components/PrCommentThread.vue        | 27 ++++++++--
 apps/desktop/src/components/PrDetailView.vue  | 51 +++++++++----------
 2 files changed, 47 insertions(+), 31 deletions(-)

diff --git a/apps/desktop/src/components/PrCommentThread.vue b/apps/desktop/src/components/PrCommentThread.vue
index 11e384dd..eaf167cb 100644
--- a/apps/desktop/src/components/PrCommentThread.vue
+++ b/apps/desktop/src/components/PrCommentThread.vue
@@ -125,6 +125,26 @@ function escHtml(s: string) {
   return s.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;");
 }
 
+// Avatar disk — same outline style as the rest of the app (Dashboard,
+// CommitGraph, PrDetailView): transparent fill, colored border + initials.
+function authorHue(s: string): number {
+  let h = 0;
+  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
+  return Math.abs(h) % 360;
+}
+
+function avatarInitials(name: string): string {
+  if (!name) return "?";
+  const parts = name.trim().split(/\s+/);
+  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
+  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
+}
+
+function avatarStyle(name: string) {
+  const color = `hsl(${authorHue(name)} 70% 55%)`;
+  return { borderColor: color, color, background: "transparent" };
+}
+
 function timeAgo(dateStr: string): string {
   try {
     const diff = Date.now() - new Date(dateStr).getTime();
@@ -147,7 +167,7 @@ function timeAgo(dateStr: string): string {
     >
       <!-- Header -->
       <div class="pct-comment-header">
-        <div class="pct-avatar">{{ comment.author.slice(0, 1).toUpperCase() }}</div>
+        <div class="pct-avatar" :style="avatarStyle(comment.author)">{{ avatarInitials(comment.author) }}</div>
         <span class="pct-author">{{ comment.author }}</span>
         <span class="pct-time" :title="comment.created_at">{{ timeAgo(comment.created_at) }}</span>
         <div class="pct-actions" v-if="comment.author === currentUser || !currentUser">
@@ -241,9 +261,8 @@ function timeAgo(dateStr: string): string {
   width: 20px;
   height: 20px;
   border-radius: 50%;
-  background: var(--color-accent);
-  color: var(--color-accent-text);
-  font-size: 10px;
+  border: 1.5px solid currentColor;
+  font-size: 9px;
   font-weight: 700;
   display: flex;
   align-items: center;
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index d621443d..72a781cd 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -45,32 +45,29 @@ function onMarkdownClick(e: MouseEvent) {
   }
 }
 
+// Avatar disk — kept identical to the rest of the app (Dashboard, CommitGraph,
+// CommitLog): outline style (transparent fill, colored border + initials) with
+// a deterministic hue derived from the name.
+
 /** Author initials for the avatar disk. */
-function authorInitials(author: string): string {
-  if (!author) return "?";
-  const parts = author.replace(/[^a-zA-Z0-9\s-]/g, " ").split(/[\s-]+/).filter(Boolean);
-  if (parts.length === 0) return author[0]?.toUpperCase() ?? "?";
+function authorInitials(name: string): string {
+  if (!name) return "?";
+  const parts = name.trim().split(/\s+/);
   if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[1][0]).toUpperCase();
+  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
 }
 
-/** Deterministic hue from the author name so the avatar keeps a stable color. */
-function authorHue(author: string): number {
-  if (!author) return 260;
+/** Deterministic hue for an avatar from a string (same author → same color). */
+function authorHue(s: string): number {
   let h = 0;
-  for (let i = 0; i < author.length; i++) {
-    h = (h * 31 + author.charCodeAt(i)) >>> 0;
-  }
-  return h % 360;
+  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
+  return Math.abs(h) % 360;
 }
 
-const avatarStyle = computed(() => {
-  const author = p.prDetail.value?.author ?? "";
-  const hue = authorHue(author);
-  return {
-    background: `linear-gradient(135deg, hsl(${hue} 65% 55%), hsl(${(hue + 40) % 360} 70% 45%))`,
-  };
-});
+function avatarStyle(name: string) {
+  const color = `hsl(${authorHue(name)} 70% 55%)`;
+  return { borderColor: color, color, background: "transparent" };
+}
 
 const isOpenPr = computed(() => {
   const s = p.selectedPr.value?.state;
@@ -229,7 +226,7 @@ function commentTimeAgo(dateStr: string): string {
 
         <div class="pdv-hero-meta">
           <span class="pdv-author">
-            <span class="pdv-avatar" :style="avatarStyle" aria-hidden="true">{{ authorInitials(p.prDetail.value.author) }}</span>
+            <span class="pdv-avatar" :style="avatarStyle(p.prDetail.value.author)" aria-hidden="true">{{ authorInitials(p.prDetail.value.author) }}</span>
             <span class="pdv-author-name">{{ p.prDetail.value.author }}</span>
           </span>
           <span class="pdv-meta-sep" aria-hidden="true">·</span>
@@ -425,7 +422,7 @@ function commentTimeAgo(dateStr: string): string {
             <h2 class="pdv-section-label">{{ t('pr.detail.reviewers') }}</h2>
             <div class="pdv-chips">
               <span v-for="r in p.prDetail.value.reviewers" :key="r" class="pdv-chip pdv-chip--reviewer">
-                <span class="pdv-chip-avatar" :style="{ background: `hsl(${authorHue(r)} 65% 55%)` }" aria-hidden="true">
+                <span class="pdv-chip-avatar" :style="avatarStyle(r)" aria-hidden="true">
                   {{ authorInitials(r) }}
                 </span>
                 {{ r }}
@@ -489,7 +486,7 @@ function commentTimeAgo(dateStr: string): string {
             <ul class="pdv-comments">
               <li v-for="c in sortedComments" :key="`${c.path}#${c.id}`" class="pdv-comment">
                 <div class="pdv-comment-head">
-                  <span class="pdv-comment-avatar" :style="{ background: `hsl(${authorHue(c.author)} 65% 55%)` }" aria-hidden="true">
+                  <span class="pdv-comment-avatar" :style="avatarStyle(c.author)" aria-hidden="true">
                     {{ authorInitials(c.author) }}
                   </span>
                   <span class="pdv-comment-author">{{ c.author }}</span>
@@ -829,11 +826,11 @@ function commentTimeAgo(dateStr: string): string {
   width: 22px;
   height: 22px;
   border-radius: 50%;
-  color: #fff;
+  border: 1.5px solid currentColor;
   font-size: 9px;
   font-weight: var(--font-weight-bold);
   letter-spacing: 0.02em;
-  text-shadow: 0 1px 2px rgba(0, 0, 0, 0.25);
+  flex-shrink: 0;
 }
 
 .pdv-author-name {
@@ -1201,12 +1198,12 @@ function commentTimeAgo(dateStr: string): string {
   width: 22px;
   height: 22px;
   border-radius: 50%;
+  border: 1.5px solid currentColor;
   display: inline-flex;
   align-items: center;
   justify-content: center;
   font-size: 10px;
   font-weight: var(--font-weight-bold);
-  color: #fff;
   flex-shrink: 0;
 }
 
@@ -1286,10 +1283,10 @@ function commentTimeAgo(dateStr: string): string {
   width: 18px;
   height: 18px;
   border-radius: 50%;
-  color: #fff;
+  border: 1.5px solid currentColor;
   font-size: 8px;
   font-weight: var(--font-weight-bold);
-  text-shadow: 0 1px 1px rgba(0, 0, 0, 0.3);
+  flex-shrink: 0;
 }
 
 .pdv-chip--label {

From 12d0f51d29d0cafb544d4bd0ba87d15f891e1aee Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 11:42:05 -0400
Subject: [PATCH 21/44] refactor(avatar): centraliser le style des avatars dans
 useAvatar
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Extrait la logique dupliquée (couleur, initiales) de 9 composants
vers un composable unique pour uniformiser le rendu des avatars.

🪄 Commit via GitWand
---
 .../src/components/CommitDiffViewer.vue       | 20 +-------
 apps/desktop/src/components/CommitGraph.vue   | 25 +---------
 apps/desktop/src/components/CommitLog.vue     | 49 ++-----------------
 apps/desktop/src/components/DashboardView.vue | 24 +--------
 .../src/components/FileHistoryViewer.vue      | 14 ++----
 apps/desktop/src/components/LaunchpadView.vue | 28 +++--------
 .../src/components/PrCommentThread.vue        | 22 ++-------
 apps/desktop/src/components/PrDetailView.vue  | 26 ++--------
 apps/desktop/src/components/RepoSidebar.vue   | 24 ++-------
 apps/desktop/src/composables/useAvatar.ts     | 37 ++++++++++++++
 10 files changed, 66 insertions(+), 203 deletions(-)
 create mode 100644 apps/desktop/src/composables/useAvatar.ts

diff --git a/apps/desktop/src/components/CommitDiffViewer.vue b/apps/desktop/src/components/CommitDiffViewer.vue
index bcc64d90..0a6b854d 100644
--- a/apps/desktop/src/components/CommitDiffViewer.vue
+++ b/apps/desktop/src/components/CommitDiffViewer.vue
@@ -2,6 +2,7 @@
 import { ref, computed, watch, onUnmounted, nextTick } from "vue";
 import type { GitDiff, GitLogEntry, DiffLine, FolderDiffNode } from "../utils/backend";
 import { useI18n } from "../composables/useI18n";
+import { avatarStyle, avatarInitials as initials } from "../composables/useAvatar";
 import type { DiffMode } from "../utils/diffMode";
 import { detectLanguage, highlightLine } from "../utils/highlight";
 import { safeHtml } from "../composables/useSafeHtml";
@@ -75,25 +76,6 @@ function fileName(path: string): string {
   return path.split("/").pop() ?? path;
 }
 
-function hueFor(s: string): number {
-  let h = 0;
-  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
-  return Math.abs(h) % 360;
-}
-
-function avatarStyle(key: string) {
-  const h = hueFor(key);
-  const color = `hsl(${h} 70% 55%)`;
-  return { borderColor: color, color, background: "transparent" };
-}
-
-function initials(name: string): string {
-  if (!name) return "?";
-  const parts = name.trim().split(/\s+/);
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
-}
-
 function cleanBody(raw: string): string {
   // Replace literal \n sequences with real newlines, then trim
   return raw.replace(/\\n/g, "\n").trim();
diff --git a/apps/desktop/src/components/CommitGraph.vue b/apps/desktop/src/components/CommitGraph.vue
index a7a7d117..93cfeb0a 100644
--- a/apps/desktop/src/components/CommitGraph.vue
+++ b/apps/desktop/src/components/CommitGraph.vue
@@ -3,6 +3,7 @@ import { computed, nextTick, onMounted, onUnmounted, ref, watch } from "vue";
 import type { GitLogEntry, GitBranch } from "../utils/backend";
 import { computeDagLayout, parseRefs, type DagLayout, type DagNode } from "../utils/dagLayout";
 import { useI18n } from "../composables/useI18n";
+import { avatarStyle, avatarInitials as initials } from "../composables/useAvatar";
 import { filterCommitsLocal } from "../composables/useCommitSearch";
 
 const { t } = useI18n();
@@ -653,30 +654,6 @@ function truncate(str: string, limit = 20) {
   return str.slice(0, limit - 1) + "…";
 }
 
-/** Deterministic hue for an avatar from a string (same author → same color). */
-function hueFor(s: string): number {
-  let h = 0;
-  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
-  return Math.abs(h) % 360;
-}
-
-function avatarStyle(key: string) {
-  const h = hueFor(key);
-  const color = `hsl(${h} 70% 55%)`;
-  return {
-    borderColor: color,
-    color: color,
-    background: "transparent",
-  };
-}
-
-function initials(name: string): string {
-  if (!name) return "?";
-  const parts = name.trim().split(/\s+/);
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
-}
-
 function formatDate(raw: string): string {
   try {
     const d = new Date(raw);
diff --git a/apps/desktop/src/components/CommitLog.vue b/apps/desktop/src/components/CommitLog.vue
index 2ce21660..896be1b7 100644
--- a/apps/desktop/src/components/CommitLog.vue
+++ b/apps/desktop/src/components/CommitLog.vue
@@ -3,6 +3,7 @@ import { computed, ref, watch, inject, nextTick, onMounted, onUnmounted, type Re
 import type { GitLogEntry, GitBranch } from "../utils/backend";
 import { useVirtualizer } from "@tanstack/vue-virtual";
 import { useI18n } from "../composables/useI18n";
+import { avatarStyle, avatarInitials as initials } from "../composables/useAvatar";
 import { useAIProvider } from "../composables/useAIProvider";
 import { useCommitSearch, filterCommitsLocal, type CommitMatch } from "../composables/useCommitSearch";
 import { LOG_FOCUS_SEARCH_KEY } from "../composables/branchPickerBridge";
@@ -595,30 +596,6 @@ function truncate(str: string, limit = 20) {
   return str.slice(0, limit - 1) + "…";
 }
 
-/** Deterministic hue for an avatar from a string (same author → same color). */
-function hueFor(s: string): number {
-  let h = 0;
-  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
-  return Math.abs(h) % 360;
-}
-
-function avatarStyle(key: string) {
-  const h = hueFor(key);
-  const color = `hsl(${h} 70% 55%)`;
-  return {
-    borderColor: color,
-    color: color,
-    background: "transparent",
-  };
-}
-
-function initials(name: string): string {
-  if (!name) return "?";
-  const parts = name.trim().split(/\s+/);
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
-}
-
 function relativeDate(isoDate: string): string {
   const date = new Date(isoDate);
   const now = new Date();
@@ -639,24 +616,6 @@ function isCurrent(entry: GitLogEntry): boolean {
   return parseRefBadges(entry.refs).some(b => b.type === "head");
 }
 
-function authorInitials(author: string): string {
-  if (!author) return "?";
-  const parts = author.replace(/[^a-zA-Z0-9\s-]/g, " ").split(/[\s-]+/).filter(Boolean);
-  if (parts.length === 0) return author[0]?.toUpperCase() ?? "?";
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[1][0]).toUpperCase();
-}
-
-function authorColor(author: string): string {
-  if (!author) return "hsl(260 65% 55%)";
-  let h = 0;
-  for (let i = 0; i < author.length; i++) {
-    h = (h * 31 + author.charCodeAt(i)) >>> 0;
-  }
-  const hue = h % 360;
-  return `linear-gradient(135deg, hsl(${hue} 65% 55%), hsl(${(hue + 40) % 360} 70% 45%))`;
-}
-
 function abbrevAuthor(author: string): string {
   if (!author) return "";
   const parts = author.trim().split(/\s+/);
@@ -749,8 +708,8 @@ function abbrevAuthor(author: string): string {
               tabindex="0"
               @keydown.enter="emit('selectCommit', c(vr.index).hashFull)"
             >
-              <div class="commit-avatar" :style="{ background: authorColor(c(vr.index).author) }">
-                {{ authorInitials(c(vr.index).author) }}
+              <div class="commit-avatar" :style="avatarStyle(c(vr.index).email || c(vr.index).author)">
+                {{ initials(c(vr.index).author) }}
               </div>
               <div class="commit-info">
                 <div class="commit-message">
@@ -1247,12 +1206,12 @@ function abbrevAuthor(author: string): string {
   width: 28px;
   height: 28px;
   border-radius: 50%;
+  border: 1.5px solid currentColor;
   display: flex;
   align-items: center;
   justify-content: center;
   font-size: 10px;
   font-weight: var(--font-weight-bold);
-  color: var(--color-accent-text);
   flex-shrink: 0;
   margin-top: 2px;
 }
diff --git a/apps/desktop/src/components/DashboardView.vue b/apps/desktop/src/components/DashboardView.vue
index 657b3fe9..e3bcc205 100644
--- a/apps/desktop/src/components/DashboardView.vue
+++ b/apps/desktop/src/components/DashboardView.vue
@@ -15,6 +15,7 @@ import {
 } from "../utils/backend";
 import type { ViewMode } from "../composables/useGitRepo";
 import { useI18n } from "../composables/useI18n";
+import { avatarStyle, avatarInitials as initials } from "../composables/useAvatar";
 import { useAIProvider } from "../composables/useAIProvider";
 import { useReleaseNotes, latestTag as findLatestTag } from "../composables/useReleaseNotes";
 import { renderMarkdown, safeHtml } from "../composables/useSafeHtml";
@@ -330,29 +331,6 @@ function runNextAction() {
   else if (nextAction.value.view) emit("changeView", nextAction.value.view);
 }
 
-/** Deterministic hue for an avatar from a string (same author → same color). */
-function hueFor(s: string): number {
-  let h = 0;
-  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
-  return Math.abs(h) % 360;
-}
-
-function avatarStyle(key: string) {
-  const h = hueFor(key);
-  const color = `hsl(${h} 70% 55%)`;
-  return {
-    borderColor: color,
-    color: color,
-    background: "transparent",
-  };
-}
-
-function initials(name: string): string {
-  if (!name) return "?";
-  const parts = name.trim().split(/\s+/);
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
-}
 
 /** Detect conventional-commit type for tag colouring. */
 function commitType(msg: string): string {
diff --git a/apps/desktop/src/components/FileHistoryViewer.vue b/apps/desktop/src/components/FileHistoryViewer.vue
index e250bb53..172cf537 100644
--- a/apps/desktop/src/components/FileHistoryViewer.vue
+++ b/apps/desktop/src/components/FileHistoryViewer.vue
@@ -1,6 +1,7 @@
 <script setup lang="ts">
 import { ref, computed, watch } from "vue";
 import type { BlameLine, FileLogEntry, GitDiff } from "../utils/backend";
+import { avatarStyle, avatarInitials } from "../composables/useAvatar";
 import { getGitBlame, getGitFileLog, getGitFileLogPickaxe, getGitFileLogRange, getGitFileDiff, type BlameAlgorithm, type PickaxeMode } from "../utils/backend";
 import { loadSettings } from "../composables/useSettings";
 import { useI18n } from "../composables/useI18n";
@@ -200,13 +201,6 @@ function hl(content: string): string {
   return highlightLine(content, language.value);
 }
 
-function avatarColor(name: string): string {
-  let h = 0;
-  for (let i = 0; i < name.length; i++) h = name.charCodeAt(i) + ((h << 5) - h);
-  const hue = ((h % 360) + 360) % 360;
-  return `hsl(${hue}, 55%, 45%)`;
-}
-
 function formatDate(raw: string): string {
   try {
     const d = new Date(raw);
@@ -513,8 +507,8 @@ function shortHash(hash: string): string {
         }"
       >
         <div class="fhv-log-top">
-          <span class="fhv-log-avatar" :style="{ background: avatarColor(entry.author) }">
-            {{ entry.author.charAt(0).toUpperCase() }}
+          <span class="fhv-log-avatar" :style="avatarStyle(entry.author)">
+            {{ avatarInitials(entry.author) }}
           </span>
           <div class="fhv-log-info" @click="emit('select-commit', entry.hashFull)">
             <div class="fhv-log-message">{{ entry.message }}</div>
@@ -993,12 +987,12 @@ function shortHash(hash: string): string {
   width: 28px;
   height: 28px;
   border-radius: 50%;
+  border: 1.5px solid currentColor;
   display: flex;
   align-items: center;
   justify-content: center;
   font-size: var(--text-base);
   font-weight: var(--font-bold);
-  color: #fff;
   flex-shrink: 0;
 }
 
diff --git a/apps/desktop/src/components/LaunchpadView.vue b/apps/desktop/src/components/LaunchpadView.vue
index 51439f82..e1c516ac 100644
--- a/apps/desktop/src/components/LaunchpadView.vue
+++ b/apps/desktop/src/components/LaunchpadView.vue
@@ -1,6 +1,7 @@
 <script setup lang="ts">
 import { ref, onMounted, computed } from "vue";
 import { saveSettings as persistAppSettings } from "../composables/useSettings";
+import { avatarStyle, avatarInitials } from "../composables/useAvatar";
 import { useLaunchpadWip } from "../composables/useLaunchpadWip";
 import { useLaunchpadPrs } from "../composables/useLaunchpadPrs";
 import { useLaunchpadIssues } from "../composables/useLaunchpadIssues";
@@ -80,18 +81,6 @@ function toggleTeamMember(login: string): void {
   expandedTeamMembers.value = next;
 }
 
-const TEAM_AVATAR_COLORS = [
-  "#cba6f7", "#89b4fa", "#a6e3a1", "#fab387", "#f38ba8", "#94e2d5",
-] as const;
-
-function teamAvatarColor(login: string): string {
-  let hash = 0;
-  for (let i = 0; i < login.length; i++) {
-    hash = (hash * 31 + login.charCodeAt(i)) & 0xffff;
-  }
-  return TEAM_AVATAR_COLORS[hash % TEAM_AVATAR_COLORS.length];
-}
-
 const membersWithOverlap = computed(() =>
   teamActivity.value.filter((m) => m.overlappingPrs.length > 0)
 );
@@ -850,12 +839,12 @@ onMounted(() => {
             >
               <span
                 class="launchpad-view__team-avatar"
-                :style="{ background: teamAvatarColor(member.login) }"
+                :style="avatarStyle(member.login)"
                 aria-hidden="true"
-              >{{ (member.login[0] ?? "?").toUpperCase() }}</span>
+              >{{ avatarInitials(member.login) }}</span>
               <span
                 class="launchpad-view__team-login"
-                :style="{ color: teamAvatarColor(member.login) }"
+                :style="{ color: avatarStyle(member.login).color }"
               >{{ member.login }}</span>
               <span class="launchpad-view__team-pr-count">
                 {{ t("launchpad.teamPrCount", member.prs.length) }}
@@ -921,12 +910,12 @@ onMounted(() => {
             >
               <span
                 class="launchpad-view__team-avatar"
-                :style="{ background: teamAvatarColor(member.login) }"
+                :style="avatarStyle(member.login)"
                 aria-hidden="true"
-              >{{ (member.login[0] ?? "?").toUpperCase() }}</span>
+              >{{ avatarInitials(member.login) }}</span>
               <span
                 class="launchpad-view__team-login"
-                :style="{ color: teamAvatarColor(member.login) }"
+                :style="{ color: avatarStyle(member.login).color }"
               >{{ member.login }}</span>
               <span class="launchpad-view__team-pr-count">
                 {{ t("launchpad.teamPrCount", member.prs.length) }}
@@ -1736,10 +1725,9 @@ onMounted(() => {
   align-items: center;
   justify-content: center;
   font-size: var(--font-size-xs);
-  color: #1e1e2e;
   font-weight: var(--font-weight-bold);
   flex-shrink: 0;
-  border: 1px solid rgba(0, 0, 0, 0.12);
+  border: 1.5px solid currentColor;
 }
 
 .launchpad-view__team-login {
diff --git a/apps/desktop/src/components/PrCommentThread.vue b/apps/desktop/src/components/PrCommentThread.vue
index eaf167cb..14eeb352 100644
--- a/apps/desktop/src/components/PrCommentThread.vue
+++ b/apps/desktop/src/components/PrCommentThread.vue
@@ -12,6 +12,7 @@ import type { PrReviewComment } from "../utils/backend";
 import { openExternalUrl } from "../utils/backend";
 import { safeHtml } from "../composables/useSafeHtml";
 import { useI18n } from "../composables/useI18n";
+import { useAvatar } from "../composables/useAvatar";
 
 // Anchors in rendered comment markdown must open in the OS browser, not
 // navigate the Tauri webview away from the app.
@@ -125,25 +126,8 @@ function escHtml(s: string) {
   return s.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;");
 }
 
-// Avatar disk — same outline style as the rest of the app (Dashboard,
-// CommitGraph, PrDetailView): transparent fill, colored border + initials.
-function authorHue(s: string): number {
-  let h = 0;
-  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
-  return Math.abs(h) % 360;
-}
-
-function avatarInitials(name: string): string {
-  if (!name) return "?";
-  const parts = name.trim().split(/\s+/);
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
-}
-
-function avatarStyle(name: string) {
-  const color = `hsl(${authorHue(name)} 70% 55%)`;
-  return { borderColor: color, color, background: "transparent" };
-}
+// Avatar disks share the app-wide outline style — see composables/useAvatar.
+const { avatarStyle, avatarInitials } = useAvatar();
 
 function timeAgo(dateStr: string): string {
   try {
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 72a781cd..3bf08e09 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -14,6 +14,7 @@
 import { computed, inject, nextTick, ref } from "vue";
 import { PR_PANEL_KEY, type PrPanelState } from "../composables/usePrPanel";
 import { renderMarkdown } from "../composables/useSafeHtml";
+import { useAvatar } from "../composables/useAvatar";
 import { openExternalUrl } from "../utils/backend";
 import { useI18n } from "../composables/useI18n";
 import PrInlineDiff from "./PrInlineDiff.vue";
@@ -45,29 +46,8 @@ function onMarkdownClick(e: MouseEvent) {
   }
 }
 
-// Avatar disk — kept identical to the rest of the app (Dashboard, CommitGraph,
-// CommitLog): outline style (transparent fill, colored border + initials) with
-// a deterministic hue derived from the name.
-
-/** Author initials for the avatar disk. */
-function authorInitials(name: string): string {
-  if (!name) return "?";
-  const parts = name.trim().split(/\s+/);
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
-}
-
-/** Deterministic hue for an avatar from a string (same author → same color). */
-function authorHue(s: string): number {
-  let h = 0;
-  for (let i = 0; i < s.length; i++) h = (h * 31 + s.charCodeAt(i)) | 0;
-  return Math.abs(h) % 360;
-}
-
-function avatarStyle(name: string) {
-  const color = `hsl(${authorHue(name)} 70% 55%)`;
-  return { borderColor: color, color, background: "transparent" };
-}
+// Avatar disks share the app-wide outline style — see composables/useAvatar.
+const { avatarStyle, avatarInitials: authorInitials } = useAvatar();
 
 const isOpenPr = computed(() => {
   const s = p.selectedPr.value?.state;
diff --git a/apps/desktop/src/components/RepoSidebar.vue b/apps/desktop/src/components/RepoSidebar.vue
index f8029854..8f2ec217 100644
--- a/apps/desktop/src/components/RepoSidebar.vue
+++ b/apps/desktop/src/components/RepoSidebar.vue
@@ -5,6 +5,7 @@ import { type RepoFileEntry, type ViewMode } from "../composables/useGitRepo";
 import { gitRemoteInfo, getGitUser, type GitLogEntry, type GitBranch, type RemoteInfo, type GitUser, type GitDiff } from "../utils/backend";
 import PrListSidebar from "./PrListSidebar.vue";
 import { useI18n } from "../composables/useI18n";
+import { avatarStyle, avatarInitials } from "../composables/useAvatar";
 import { useCommitMessage } from "../composables/useCommitMessage";
 import { useAIProvider } from "../composables/useAIProvider";
 import { supportedLocales, localeLabels } from "../locales";
@@ -786,22 +787,6 @@ function onBranchCtxDelete() {
 /** Up to 3 most recent commits — shown as a mini-activity feed. */
 const recentActivity = computed(() => props.logEntries.slice(0, 3));
 
-function activityInitials(name: string): string {
-  if (!name) return "?";
-  const parts = name.trim().split(/\s+/);
-  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
-  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
-}
-
-function activityAvatarStyle(key: string) {
-  let h = 0;
-  for (let i = 0; i < key.length; i++) h = (h * 31 + key.charCodeAt(i)) | 0;
-  const hue = Math.abs(h) % 360;
-  return {
-    background: `linear-gradient(135deg, hsl(${hue} 70% 55%), hsl(${(hue + 40) % 360} 70% 45%))`,
-  };
-}
-
 function formatActivityDate(dateStr: string): string {
   if (!dateStr) return "—";
   const d = new Date(dateStr);
@@ -1431,8 +1416,8 @@ function formatActivityDate(dateStr: string): string {
           @click="emit('changeView', 'history')"
           :title="c.message"
         >
-          <span class="activity-dot" :style="activityAvatarStyle(c.email || c.author)">
-            {{ activityInitials(c.author) }}
+          <span class="activity-dot" :style="avatarStyle(c.email || c.author)">
+            {{ avatarInitials(c.author) }}
           </span>
           <div class="activity-body">
             <div class="activity-msg">{{ c.message }}</div>
@@ -2626,13 +2611,12 @@ function formatActivityDate(dateStr: string): string {
   width: 32px;
   height: 32px;
   border-radius: 50%;
+  border: 1.5px solid currentColor;
   display: grid;
   place-items: center;
   font-size: 12px;
   font-weight: 700;
-  color: white;
   flex-shrink: 0;
-  box-shadow: var(--shadow-xs);
   letter-spacing: 0.02em;
 }
 
diff --git a/apps/desktop/src/composables/useAvatar.ts b/apps/desktop/src/composables/useAvatar.ts
new file mode 100644
index 00000000..53695039
--- /dev/null
+++ b/apps/desktop/src/composables/useAvatar.ts
@@ -0,0 +1,37 @@
+/**
+ * useAvatar — single source of truth for the colored-initials avatar disks
+ * used across the app (commit log & graph, dashboard, PR views, comment
+ * threads).
+ *
+ * Visual language: outline style — transparent fill, with a deterministic
+ * colored border and matching initials. Key the color off a stable string
+ * (prefer email, fall back to name) so the same person keeps the same color
+ * everywhere.
+ */
+
+import type { CSSProperties } from "vue";
+
+/** Deterministic hue (0–359) for a string — same key always maps to the same color. */
+export function avatarHue(key: string): number {
+  let h = 0;
+  for (let i = 0; i < key.length; i++) h = (h * 31 + key.charCodeAt(i)) | 0;
+  return Math.abs(h) % 360;
+}
+
+/** First+last initials, uppercased. A single token yields its first two chars. */
+export function avatarInitials(name: string): string {
+  if (!name) return "?";
+  const parts = name.trim().split(/\s+/);
+  if (parts.length === 1) return parts[0].slice(0, 2).toUpperCase();
+  return (parts[0][0] + parts[parts.length - 1][0]).toUpperCase();
+}
+
+/** Inline style object for an avatar disk keyed by a stable string. */
+export function avatarStyle(key: string): CSSProperties {
+  const color = `hsl(${avatarHue(key)} 70% 55%)`;
+  return { borderColor: color, color, background: "transparent" };
+}
+
+export function useAvatar() {
+  return { avatarHue, avatarInitials, avatarStyle };
+}

From fcb021eb1cc1c17fdaa46be97340c8a54af8d98c Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 12:15:58 -0400
Subject: [PATCH 22/44] This change introduces a stale-while-revalidate (SWR)
 cache for Pull Request lists and detailed views, stored on disk. This
 significantly enhances perceived performance by:

- Instantly painting cached PR data on repo-switch or app cold start.
- Revalidating data in the background without blocking the UI.
- Displaying subtle refreshing indicators (spinners/badges) during background revalidation, distinguishing it from full-page cold loads.
- Gracefully handling offline scenarios by displaying cached data instead of empty states.

The cache includes LRU eviction and age-based pruning to manage storage footprint, and robust error handling for storage quota issues.
---
 apps/desktop/src/components/PrDetailView.vue  |  29 +++
 apps/desktop/src/components/PrListSidebar.vue |  38 +++-
 .../composables/__tests__/usePrCache.test.ts  | 153 ++++++++++++++
 apps/desktop/src/composables/usePrCache.ts    | 194 ++++++++++++++++++
 apps/desktop/src/composables/usePrPanel.ts    | 111 ++++++++--
 apps/desktop/src/locales/en.ts                |   2 +
 apps/desktop/src/locales/es.ts                |   2 +
 apps/desktop/src/locales/fr.ts                |   2 +
 apps/desktop/src/locales/pt-BR.ts             |   2 +
 apps/desktop/src/locales/zh-CN.ts             |   2 +
 10 files changed, 519 insertions(+), 16 deletions(-)
 create mode 100644 apps/desktop/src/composables/__tests__/usePrCache.test.ts
 create mode 100644 apps/desktop/src/composables/usePrCache.ts

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 3bf08e09..5f563413 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -163,6 +163,17 @@ function commentTimeAgo(dateStr: string): string {
           <div class="pdv-hero-title">
             <span class="pdv-pr-num">#{{ p.prDetail.value.number }}</span>
             <h1 class="pdv-pr-title">{{ p.prDetail.value.title }}</h1>
+            <!-- SWR: cached detail is on screen; show a small badge while the
+                 background revalidation runs. -->
+            <span
+              v-if="p.detailRefreshing.value"
+              class="pdv-refresh-badge"
+              role="status"
+              :title="t('pr.detail.refreshing')"
+            >
+              <span class="pdv-spinner pdv-spinner--sm" aria-hidden="true"></span>
+              {{ t('pr.detail.refreshing') }}
+            </span>
           </div>
           <div class="pdv-hero-actions">
             <button class="pdv-btn" @click="p.checkoutPr(p.selectedPr.value!)">
@@ -725,10 +736,28 @@ function commentTimeAgo(dateStr: string): string {
   animation: pdv-spin 0.8s linear infinite;
 }
 
+.pdv-spinner--sm {
+  width: 11px;
+  height: 11px;
+  border-width: 1.5px;
+}
+
 @keyframes pdv-spin {
   to { transform: rotate(360deg); }
 }
 
+/* SWR background-refresh badge in the hero. */
+.pdv-refresh-badge {
+  display: inline-flex;
+  align-items: center;
+  gap: var(--space-2);
+  flex-shrink: 0;
+  align-self: center;
+  font-size: var(--font-size-xs);
+  color: var(--color-text-muted);
+  white-space: nowrap;
+}
+
 /* ─── Hero header ────────────────────────────────────────── */
 .pdv-hero {
   display: flex;
diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index e9e05959..f395a662 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -119,9 +119,28 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
           <line x1="6" y1="9" x2="6" y2="21" />
         </svg>
         <span class="pls-title">{{ t('pr.list.title') }}</span>
-        <span v-if="!panel.loading.value && totalCount > 0" class="pls-count-pill">{{ totalCount }}</span>
-        <button class="pls-icon-btn" @click="panel.loadPrs" :title="t('pr.list.refresh')" aria-label="Refresh">
-          <svg width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round">
+        <span v-if="totalCount > 0" class="pls-count-pill">{{ totalCount }}</span>
+        <!-- SWR: subtle spinner while a background revalidation runs over the
+             cached list already on screen (distinct from the cold full spinner). -->
+        <span
+          v-if="panel.refreshing.value"
+          class="pls-spinner pls-spinner--sm"
+          :title="t('pr.list.refreshing')"
+          :aria-label="t('pr.list.refreshing')"
+          role="status"
+        ></span>
+        <button
+          class="pls-icon-btn"
+          @click="panel.loadPrs"
+          :title="t('pr.list.refresh')"
+          aria-label="Refresh"
+          :disabled="panel.loading.value || panel.refreshing.value"
+        >
+          <svg
+            class="pls-refresh-icon"
+            :class="{ 'pls-refresh-icon--spinning': panel.loading.value || panel.refreshing.value }"
+            width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round"
+          >
             <path d="M13.5 8A5.5 5.5 0 1 1 8 2.5" />
             <path d="M13.5 2.5v3h-3" />
           </svg>
@@ -371,6 +390,16 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
   border-color: var(--color-border);
   color: var(--color-text);
 }
+.pls-icon-btn:disabled {
+  cursor: default;
+  opacity: 0.7;
+}
+
+/* SWR: spin the refresh glyph while a (cold or background) reload is running. */
+.pls-refresh-icon--spinning {
+  animation: pls-spin 0.8s linear infinite;
+  transform-origin: center;
+}
 
 /* ─── Segmented filter ───────────────────────────────────── */
 .pls-segmented {
@@ -791,7 +820,8 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
   .pls-new-btn:hover {
     transform: none;
   }
-  .pls-spinner {
+  .pls-spinner,
+  .pls-refresh-icon--spinning {
     animation: none;
   }
 }
diff --git a/apps/desktop/src/composables/__tests__/usePrCache.test.ts b/apps/desktop/src/composables/__tests__/usePrCache.test.ts
new file mode 100644
index 00000000..1f2fba1b
--- /dev/null
+++ b/apps/desktop/src/composables/__tests__/usePrCache.test.ts
@@ -0,0 +1,153 @@
+import { describe, it, expect, beforeEach, afterEach, vi } from "vitest";
+import type { PullRequest } from "../../utils/backend";
+import type { DetailBundle } from "../usePrCache";
+
+// Re-imported in beforeEach so each test starts from a clean module + storage.
+let usePrCache: typeof import("../usePrCache").usePrCache;
+let listKey: typeof import("../usePrCache").listKey;
+let detailKey: typeof import("../usePrCache").detailKey;
+let _resetPrCacheForTesting: typeof import("../usePrCache")._resetPrCacheForTesting;
+let PR_CACHE_STORAGE_KEY: string;
+
+beforeEach(async () => {
+  localStorage.clear();
+  const mod = await import("../usePrCache");
+  usePrCache = mod.usePrCache;
+  listKey = mod.listKey;
+  detailKey = mod.detailKey;
+  _resetPrCacheForTesting = mod._resetPrCacheForTesting;
+  PR_CACHE_STORAGE_KEY = mod.PR_CACHE_STORAGE_KEY;
+  _resetPrCacheForTesting();
+});
+
+const CWD = "/repo/a";
+
+function makePr(n: number): PullRequest {
+  return {
+    number: n,
+    title: `PR ${n}`,
+    state: "OPEN",
+    author: "alice",
+    branch: `feat-${n}`,
+    base: "main",
+    draft: false,
+    createdAt: "2026-01-01T00:00:00Z",
+    updatedAt: "2026-01-02T00:00:00Z",
+    url: `https://github.com/o/r/pull/${n}`,
+    additions: 1,
+    deletions: 0,
+    labels: [],
+    assignees: [],
+    reviewRequested: [],
+    reviewDecision: "",
+    mergeStateStatus: "",
+    checksRollup: "",
+  } as unknown as PullRequest;
+}
+
+function makeBundle(n: number): DetailBundle {
+  return {
+    detail: { number: n, title: `PR ${n}` } as any,
+    checks: [],
+    comments: [],
+    issueComments: [],
+    reviews: [],
+  };
+}
+
+describe("usePrCache — list", () => {
+  it("setList → getList round-trips prs + hasMore", () => {
+    const c = usePrCache();
+    const key = listKey(CWD, "open");
+    c.setList(key, [makePr(1), makePr(2)], true);
+    const got = c.getList(key);
+    expect(got?.prs.map((p) => p.number)).toEqual([1, 2]);
+    expect(got?.hasMore).toBe(true);
+  });
+
+  it("persists to localStorage and survives a module reset (cold start)", () => {
+    usePrCache().setList(listKey(CWD, "open"), [makePr(7)], false);
+    expect(localStorage.getItem(PR_CACHE_STORAGE_KEY)).toBeTruthy();
+    _resetPrCacheForTesting(); // simulate app restart re-reading disk
+    expect(usePrCache().getList(listKey(CWD, "open"))?.prs[0].number).toBe(7);
+  });
+
+  it("keys are isolated by filter state", () => {
+    const c = usePrCache();
+    c.setList(listKey(CWD, "open"), [makePr(1)], false);
+    c.setList(listKey(CWD, "closed"), [makePr(2)], false);
+    expect(c.getList(listKey(CWD, "open"))?.prs[0].number).toBe(1);
+    expect(c.getList(listKey(CWD, "closed"))?.prs[0].number).toBe(2);
+  });
+
+  it("invalidateLists drops every filter cache for the repo only", () => {
+    const c = usePrCache();
+    c.setList(listKey(CWD, "open"), [makePr(1)], false);
+    c.setList(listKey(CWD, "all"), [makePr(2)], false);
+    c.setList(listKey("/repo/b", "open"), [makePr(3)], false);
+    c.invalidateLists(CWD);
+    expect(c.getList(listKey(CWD, "open"))).toBeNull();
+    expect(c.getList(listKey(CWD, "all"))).toBeNull();
+    expect(c.getList(listKey("/repo/b", "open"))?.prs[0].number).toBe(3);
+  });
+});
+
+describe("usePrCache — detail", () => {
+  it("setDetail → getDetail round-trips the bundle", () => {
+    const c = usePrCache();
+    const key = detailKey(CWD, 42);
+    c.setDetail(key, makeBundle(42));
+    expect(c.getDetail(key)?.detail.number).toBe(42);
+  });
+
+  it("list and detail namespaces don't collide", () => {
+    const c = usePrCache();
+    c.setList(listKey(CWD, "open"), [makePr(1)], false);
+    c.setDetail(detailKey(CWD, 1), makeBundle(1));
+    expect(c.getList(listKey(CWD, "open"))).not.toBeNull();
+    expect(c.getDetail(detailKey(CWD, 1))).not.toBeNull();
+  });
+
+  it("invalidateDetail removes only the targeted PR", () => {
+    const c = usePrCache();
+    c.setDetail(detailKey(CWD, 1), makeBundle(1));
+    c.setDetail(detailKey(CWD, 2), makeBundle(2));
+    c.invalidateDetail(CWD, 1);
+    expect(c.getDetail(detailKey(CWD, 1))).toBeNull();
+    expect(c.getDetail(detailKey(CWD, 2))).not.toBeNull();
+  });
+});
+
+describe("usePrCache — TTL & eviction", () => {
+  it("drops entries older than the max age on load", () => {
+    // Seed storage directly with a stale list (ts well beyond 24h).
+    const stale = {
+      lists: { [listKey(CWD, "open")]: { prs: [makePr(1)], hasMore: false, ts: Date.now() - 48 * 3600 * 1000 } },
+      details: {},
+      remotes: {},
+    };
+    localStorage.setItem(PR_CACHE_STORAGE_KEY, JSON.stringify(stale));
+    _resetPrCacheForTesting();
+    expect(usePrCache().getList(listKey(CWD, "open"))).toBeNull();
+  });
+
+  it("LRU-caps detail entries (oldest evicted past the cap)", () => {
+    const c = usePrCache();
+    // MAX_DETAILS is 40 — write 45 and confirm the oldest are gone, newest kept.
+    for (let i = 1; i <= 45; i++) c.setDetail(detailKey(CWD, i), makeBundle(i));
+    expect(c.getDetail(detailKey(CWD, 1))).toBeNull();
+    expect(c.getDetail(detailKey(CWD, 45))).not.toBeNull();
+  });
+});
+
+describe("usePrCache — quota safety", () => {
+  afterEach(() => vi.restoreAllMocks());
+
+  it("swallows write failures (QuotaExceededError) without throwing", () => {
+    vi.spyOn(Storage.prototype, "setItem").mockImplementation(() => {
+      throw new DOMException("quota", "QuotaExceededError");
+    });
+    const c = usePrCache();
+    expect(() => c.setList(listKey(CWD, "open"), [makePr(1)], false)).not.toThrow();
+  });
+});
diff --git a/apps/desktop/src/composables/usePrCache.ts b/apps/desktop/src/composables/usePrCache.ts
new file mode 100644
index 00000000..c2d6f00b
--- /dev/null
+++ b/apps/desktop/src/composables/usePrCache.ts
@@ -0,0 +1,194 @@
+/**
+ * usePrCache.ts
+ *
+ * Disk-persisted stale-while-revalidate (SWR) cache for the PR panel.
+ * Keeps the last-seen PR list (per repo + filter) and per-PR detail bundle so
+ * the panel can paint instantly on repo-switch / tab re-open / cold app start,
+ * then revalidate in the background.
+ *
+ * Mirrors the localStorage pattern in useLaunchpadPins.ts: module-level state,
+ * defensive load/save, quota-guarded writes. PR diffs are intentionally NOT
+ * cached here — they are large and already lazy-loaded on the Diff tab.
+ */
+import type {
+  PullRequest,
+  PullRequestDetail,
+  CICheck,
+  PrReviewComment,
+  PrReview,
+  RemoteInfo,
+} from "../utils/backend";
+
+export const PR_CACHE_STORAGE_KEY = "gitwand-pr-cache";
+const STORAGE_KEY = PR_CACHE_STORAGE_KEY;
+
+/** Entries older than this are dropped on load so storage doesn't grow forever. */
+const MAX_AGE_MS = 24 * 60 * 60 * 1000; // 24h
+/** LRU caps (by `ts`) to bound localStorage footprint. */
+const MAX_LISTS = 20;
+const MAX_DETAILS = 40;
+
+export interface CachedList {
+  prs: PullRequest[];
+  hasMore: boolean;
+  ts: number;
+}
+
+export interface DetailBundle {
+  detail: PullRequestDetail;
+  checks: CICheck[];
+  comments: PrReviewComment[];
+  issueComments: PrReviewComment[];
+  reviews: PrReview[];
+}
+
+export interface CachedDetail extends DetailBundle {
+  ts: number;
+}
+
+export interface CachedRemote {
+  remote: RemoteInfo | null;
+  ts: number;
+}
+
+interface PrCacheFile {
+  lists: Record<string, CachedList>;
+  details: Record<string, CachedDetail>;
+  remotes: Record<string, CachedRemote>;
+}
+
+function emptyFile(): PrCacheFile {
+  return { lists: {}, details: {}, remotes: {} };
+}
+
+// Strictly-increasing write clock. Wall-clock `Date.now()` can return the same
+// value for several writes in one tick, which would make LRU eviction
+// (sort-by-ts) non-deterministic and evict the wrong entries. Bumping past the
+// last value guarantees recency order while staying ~equal to real time.
+let _lastTs = 0;
+function monoNow(): number {
+  _lastTs = Math.max(Date.now(), _lastTs + 1);
+  return _lastTs;
+}
+
+/** Drop entries older than MAX_AGE_MS from a `{ ts }`-keyed record. */
+function pruneByAge<T extends { ts: number }>(rec: Record<string, T>, now: number): void {
+  for (const k of Object.keys(rec)) {
+    if (now - rec[k].ts > MAX_AGE_MS) delete rec[k];
+  }
+}
+
+/** Keep only the `max` most-recent entries (highest `ts`); evict the rest. */
+function evictLru<T extends { ts: number }>(rec: Record<string, T>, max: number): void {
+  const keys = Object.keys(rec);
+  if (keys.length <= max) return;
+  keys
+    .sort((a, b) => rec[b].ts - rec[a].ts)
+    .slice(max)
+    .forEach((k) => delete rec[k]);
+}
+
+function loadFromStorage(): PrCacheFile {
+  try {
+    const raw = localStorage.getItem(STORAGE_KEY);
+    if (!raw) return emptyFile();
+    const parsed = JSON.parse(raw) as Partial<PrCacheFile>;
+    const file: PrCacheFile = {
+      lists: parsed.lists ?? {},
+      details: parsed.details ?? {},
+      remotes: parsed.remotes ?? {},
+    };
+    const now = Date.now();
+    pruneByAge(file.lists, now);
+    pruneByAge(file.details, now);
+    pruneByAge(file.remotes, now);
+    return file;
+  } catch {
+    return emptyFile();
+  }
+}
+
+function saveToStorage(file: PrCacheFile): void {
+  evictLru(file.lists, MAX_LISTS);
+  evictLru(file.details, MAX_DETAILS);
+  evictLru(file.remotes, MAX_LISTS);
+  try {
+    localStorage.setItem(STORAGE_KEY, JSON.stringify(file));
+  } catch (e) {
+    // QuotaExceededError (or any write failure): aggressively evict the oldest
+    // detail bundles (the heaviest entries) and retry once. If it still fails,
+    // give up silently — the cache is a best-effort optimisation.
+    evictLru(file.details, Math.floor(MAX_DETAILS / 4));
+    try {
+      localStorage.setItem(STORAGE_KEY, JSON.stringify(file));
+    } catch {
+      /* ignore — cache write is best-effort */
+    }
+  }
+}
+
+// ── Module-level singleton state ──────────────────────────────────────────────
+let _file: PrCacheFile = loadFromStorage();
+
+/** Reset state from localStorage. Only exported for use in Vitest tests. */
+export function _resetPrCacheForTesting(): void {
+  _file = loadFromStorage();
+}
+
+// ── Key helpers ───────────────────────────────────────────────────────────────
+export function listKey(cwd: string, filterState: string): string {
+  return `${cwd}::${filterState}`;
+}
+export function detailKey(cwd: string, prNumber: number): string {
+  return `${cwd}::#${prNumber}`;
+}
+
+// ── Composable ────────────────────────────────────────────────────────────────
+export function usePrCache() {
+  function getList(key: string): CachedList | null {
+    return _file.lists[key] ?? null;
+  }
+
+  function setList(key: string, prs: PullRequest[], hasMore: boolean): void {
+    _file.lists[key] = { prs, hasMore, ts: monoNow() };
+    saveToStorage(_file);
+  }
+
+  /** Drop every cached list for a repo — used after create / merge mutate it. */
+  function invalidateLists(cwd: string): void {
+    const prefix = `${cwd}::`;
+    for (const k of Object.keys(_file.lists)) {
+      if (k.startsWith(prefix)) delete _file.lists[k];
+    }
+    saveToStorage(_file);
+  }
+
+  function getDetail(key: string): CachedDetail | null {
+    return _file.details[key] ?? null;
+  }
+
+  function setDetail(key: string, bundle: DetailBundle): void {
+    _file.details[key] = { ...bundle, ts: monoNow() };
+    saveToStorage(_file);
+  }
+
+  function invalidateDetail(cwd: string, prNumber: number): void {
+    delete _file.details[detailKey(cwd, prNumber)];
+    saveToStorage(_file);
+  }
+
+  function getRemote(cwd: string): CachedRemote | null {
+    return _file.remotes[cwd] ?? null;
+  }
+
+  function setRemote(cwd: string, remote: RemoteInfo | null): void {
+    _file.remotes[cwd] = { remote, ts: monoNow() };
+    saveToStorage(_file);
+  }
+
+  return {
+    getList, setList, invalidateLists,
+    getDetail, setDetail, invalidateDetail,
+    getRemote, setRemote,
+  };
+}
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 9b3d4039..77d0a516 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -28,6 +28,7 @@ import {
   type ForkInfo,
 } from "../utils/backend";
 import { forgeFromRemoteInfo, githubProvider } from "./forge/useForge";
+import { usePrCache, listKey, detailKey } from "./usePrCache";
 import { getPersistedDiffMode, type DiffMode } from "../utils/diffMode";
 import { requireOnline } from "../utils/networkGuard";
 import { t } from "./useI18n";
@@ -44,6 +45,10 @@ const FORGE_LABELS: Record<string, string> = {
 
 export function usePrPanel(cwd: Ref<string>) {
 
+  // Disk-persisted SWR cache — paints the list/detail instantly on repo-switch
+  // or cold app start, then revalidates in the background. See usePrCache.ts.
+  const cache = usePrCache();
+
   // ─── Remote / list ─────────────────────────────────────
   const remote = ref<RemoteInfo | null>(null);
 
@@ -57,6 +62,9 @@ export function usePrPanel(cwd: Ref<string>) {
 
   const prs = ref<PullRequest[]>([]);
   const loading = ref(false);
+  // SWR: true while a background revalidation runs over cached data already on
+  // screen. Distinct from `loading` (cold load, full-page spinner).
+  const refreshing = ref(false);
   const error = ref<string | null>(null);
   // Optional follow-up action surfaced alongside an error. `"open-settings"`
   // is set when the failure is actionable from Settings (e.g. gh CLI missing
@@ -96,6 +104,9 @@ export function usePrPanel(cwd: Ref<string>) {
   const prIssueComments = ref<PrReviewComment[]>([]);
   const prReviews = ref<PrReview[]>([]);
   const detailLoading = ref(false);
+  // SWR equivalent of `refreshing` for the detail pane: cached detail is shown
+  // while the 6-call revalidation runs in the background.
+  const detailRefreshing = ref(false);
   const detailError = ref<string | null>(null);
   const detailTab = ref<"info" | "diff" | "checks" | "intelligence">("info");
   const selectedDiffFile = ref<string | null>(null);
@@ -259,8 +270,17 @@ export function usePrPanel(cwd: Ref<string>) {
 
   // ─── Data loading ───────────────────────────────────────
   async function loadRemote() {
-    try { remote.value = await gitRemoteInfo(cwd.value); }
-    catch { remote.value = null; }
+    // SWR: seed from cache so `forge` resolves on the first paint instead of
+    // waiting on `gitRemoteInfo` before `init()` can call `loadPrs()`.
+    const cached = cache.getRemote(cwd.value);
+    if (cached) remote.value = cached.remote;
+    try {
+      const fresh = await gitRemoteInfo(cwd.value);
+      remote.value = fresh;
+      cache.setRemote(cwd.value, fresh);
+    } catch {
+      if (!cached) remote.value = null;
+    }
   }
 
   /**
@@ -283,17 +303,30 @@ export function usePrPanel(cwd: Ref<string>) {
 
   async function loadPrs() {
     if (!cwd.value) return;
+    // SWR: paint cached PRs immediately, then revalidate in the background.
+    // A cache hit means `loading` (cold full-page spinner) stays false and we
+    // only flip the subtle `refreshing` flag instead.
+    const key = listKey(cwd.value, filterState.value);
+    const cached = cache.getList(key);
+    if (cached) {
+      prs.value = cached.prs;
+      hasMore.value = cached.hasMore;
+    }
     // F1 — Mode hors-ligne: short-circuit before the gh subprocess.
     // `gh pr list` itself would hang on DNS / TCP timeout for the user
     // visible duration of the IPC, leaving the panel stuck on a spinner.
     if (!requireOnline("gh pr list")) {
-      prs.value = [];
+      // Keep cached data on screen when offline; only wipe when we have none.
+      if (!cached) {
+        prs.value = [];
+        hasMore.value = false;
+      }
       loading.value = false;
-      hasMore.value = false;
+      refreshing.value = false;
       error.value = t("connectivity.offline.disabledOp");
       return;
     }
-    loading.value = true;
+    if (cached) refreshing.value = true; else loading.value = true;
     error.value = null;
     errorAction.value = null;
     // Reset pagination — first page only
@@ -303,6 +336,7 @@ export function usePrPanel(cwd: Ref<string>) {
       prs.value = page;
       // If gh returned fewer than asked, there's nothing more to fetch.
       hasMore.value = page.length >= PAGE_SIZE;
+      cache.setList(key, page, hasMore.value);
     } catch (err: any) {
       const msg: string = err?.message ?? String(err);
       // §B2 — surface the raw underlying error so users + maintainers can
@@ -325,10 +359,15 @@ export function usePrPanel(cwd: Ref<string>) {
       } else {
         error.value = msg || t("pr.error.unknown");
       }
-      prs.value = [];
-      hasMore.value = false;
+      // SWR: keep the stale list on screen when revalidation fails — yanking it
+      // to an empty error state is more jarring than a soft error banner.
+      if (!cached) {
+        prs.value = [];
+        hasMore.value = false;
+      }
     } finally {
       loading.value = false;
+      refreshing.value = false;
     }
   }
 
@@ -396,7 +435,19 @@ export function usePrPanel(cwd: Ref<string>) {
     if (selectedPr.value?.number === pr.number) return;
     selectedPr.value = pr;
     resetDetail();
-    detailLoading.value = true;
+    // SWR: paint cached detail bundle instantly, revalidate in background.
+    const key = detailKey(cwd.value, pr.number);
+    const cached = cache.getDetail(key);
+    if (cached) {
+      prDetail.value = cached.detail;
+      prChecks.value = cached.checks;
+      prComments.value = cached.comments;
+      prIssueComments.value = cached.issueComments;
+      prReviews.value = cached.reviews;
+      detailRefreshing.value = true;
+    } else {
+      detailLoading.value = true;
+    }
     detailError.value = null;
     try {
       const [detail, checks, comments, issueComments, reviews, fileCount] = await Promise.all([
@@ -407,23 +458,42 @@ export function usePrPanel(cwd: Ref<string>) {
         forge.value.listReviews(cwd.value, pr.number).catch(() => [] as PrReview[]),
         gitFileCount(cwd.value).catch(() => 0),
       ]);
+      // Ignore a stale response if the user moved on to another PR meanwhile.
+      if (selectedPr.value?.number !== pr.number) return;
       prDetail.value = detail;
       prChecks.value = checks;
       prComments.value = comments;
       prIssueComments.value = issueComments;
       prReviews.value = reviews;
       totalRepoFiles.value = fileCount;
+      cache.setDetail(key, { detail, checks, comments, issueComments, reviews });
     } catch (err: any) {
-      detailError.value = err.message;
+      // Keep the cached bundle on screen if revalidation failed.
+      if (!cached) detailError.value = err.message;
     } finally {
       detailLoading.value = false;
+      detailRefreshing.value = false;
     }
   }
 
+  /** Write the current detail refs back to the SWR cache (write-through after
+   *  a comment / review mutation so the cached bundle stays fresh). */
+  function persistDetailCache() {
+    if (!selectedPr.value || !prDetail.value) return;
+    cache.setDetail(detailKey(cwd.value, selectedPr.value.number), {
+      detail: prDetail.value,
+      checks: prChecks.value,
+      comments: prComments.value,
+      issueComments: prIssueComments.value,
+      reviews: prReviews.value,
+    });
+  }
+
   async function refreshComments() {
     if (!selectedPr.value) return;
     try {
       prComments.value = await forge.value.listComments(cwd.value, selectedPr.value.number);
+      persistDetailCache();
     } catch { /* silent */ }
   }
 
@@ -491,6 +561,7 @@ export function usePrPanel(cwd: Ref<string>) {
       showCreateForm.value = false;
       newPrTitle.value = ""; newPrBody.value = ""; newPrDraft.value = false;
       newPrReviewers.value = [];
+      cache.invalidateLists(cwd.value);
       await loadPrs();
     } catch (err: any) { error.value = err.message; }
     finally { isCreating.value = false; }
@@ -543,6 +614,8 @@ export function usePrPanel(cwd: Ref<string>) {
     try {
       await forge.value.mergePR(cwd.value, mergingPr.value.number, mergeMethod.value);
       success.value = t("pr.success.prMerged", mergingPr.value.number);
+      cache.invalidateDetail(cwd.value, mergingPr.value.number);
+      cache.invalidateLists(cwd.value);
       mergingPr.value = null;
       await loadPrs();
     } catch (err: any) { error.value = err.message; }
@@ -555,6 +628,7 @@ export function usePrPanel(cwd: Ref<string>) {
       await forge.value.createComment(cwd.value, selectedPr.value.number, params);
       await refreshComments();
       if (prDetail.value) prDetail.value.reviewComments++;
+      persistDetailCache();
     } catch (err: any) { error.value = err.message; }
   }
 
@@ -571,6 +645,7 @@ export function usePrPanel(cwd: Ref<string>) {
       await forge.value.updateComment(cwd.value, id, body);
       const idx = prComments.value.findIndex((c) => c.id === id);
       if (idx !== -1) prComments.value[idx] = { ...prComments.value[idx], body, updated_at: new Date().toISOString() };
+      persistDetailCache();
     } catch (err: any) { error.value = err.message; }
   }
 
@@ -579,6 +654,7 @@ export function usePrPanel(cwd: Ref<string>) {
       await forge.value.deleteComment(cwd.value, id);
       prComments.value = prComments.value.filter((c) => c.id !== id && c.in_reply_to_id !== id);
       if (prDetail.value && prDetail.value.reviewComments > 0) prDetail.value.reviewComments--;
+      persistDetailCache();
     } catch (err: any) { error.value = err.message; }
   }
 
@@ -617,6 +693,7 @@ export function usePrPanel(cwd: Ref<string>) {
       ]);
       prReviews.value = reviews;
       prComments.value = comments;
+      persistDetailCache();
       success.value = t("pr.success.reviewSubmitted", opts.event);
     } catch (err: any) {
       error.value = err.message;
@@ -723,7 +800,17 @@ export function usePrPanel(cwd: Ref<string>) {
     // From now on, cwd changes will auto-reload the PR list because the
     // user has expressed intent by opening the PR view at least once.
     panelMounted.value = true;
-    await loadRemote();
+    // SWR: with a cached remote we resolve `forge` synchronously and revalidate
+    // in the background, so `loadPrs()` paints from its own cache without first
+    // waiting on the `gitRemoteInfo` roundtrip. Cold (no cache) still awaits so
+    // the correct forge is known before listing a non-GitHub repo.
+    const cachedRemote = cache.getRemote(cwd.value);
+    if (cachedRemote) {
+      remote.value = cachedRemote.remote;
+      loadRemote();
+    } else {
+      await loadRemote();
+    }
     await loadPrs();
     // Load current user in background for "assigned / reviews" filter
     loadCurrentUser();
@@ -733,13 +820,13 @@ export function usePrPanel(cwd: Ref<string>) {
 
   return {
     // State
-    remote, prs, loading, error, errorAction, success, filterState, filterMode,
+    remote, prs, loading, refreshing, error, errorAction, success, filterState, filterMode,
     currentUser, currentUserLoading, currentUserError,
     showCreateForm, newPrTitle, newPrBody, newPrBase, newPrDraft, newPrReviewers, isCreating,
     forkInfo, newPrBaseRepo,
     mergingPr, mergeMethod,
     selectedPr, prDetail, prChecks, prDiffFiles, prComments, prIssueComments, prReviews,
-    detailLoading, detailError, detailTab, selectedDiffFile, diffMode,
+    detailLoading, detailRefreshing, detailError, detailTab, selectedDiffFile, diffMode,
     draftReviewComments, showReviewModal, submittingReview,
     conflictPreview, conflictLoading, conflictError,
     hotspots, hotspotsLoading, totalRepoFiles, fileHistory, fileHistoryLoading,
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index 6f83e231..fb987e69 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -774,6 +774,7 @@ const en = {
       filterClosed: "Closed",
       filterAll: "All",
       refresh: "Refresh",
+      refreshing: "Refreshing…",
       userFilterLabel: "Filter by user",
       filterAll2: "All",
       filterAssigned: "Assigned",
@@ -802,6 +803,7 @@ const en = {
       cancel: "Cancel",
       emptySelect: "Select a PR from the list",
       loading: "Loading details\u2026",
+      refreshing: "Refreshing\u2026",
       mergedAgo: "\u00b7 Merged {0}",
       checkout: "Checkout",
       markAsReady: "Mark as ready",
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index 88cdbf9d..73fe9457 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -757,6 +757,7 @@ const es: Locale = {
       filterClosed: "Cerradas",
       filterAll: "Todas",
       refresh: "Actualizar",
+      refreshing: "Actualizando…",
       userFilterLabel: "Filtrar por usuario",
       filterAll2: "Todas",
       filterAssigned: "Asignadas",
@@ -784,6 +785,7 @@ const es: Locale = {
       merge: "Fusionar",
       cancel: "Cancelar",
       emptySelect: "Selecciona una PR de la lista",
+      refreshing: "Actualizando…",
       loading: "Cargando detalles…",
       mergedAgo: "\u00b7 Fusionada {0}",
       checkout: "Checkout",
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index 23e00b0b..e0d29d5c 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -768,6 +768,7 @@ const fr: Locale = {
       filterClosed: "Fermées",
       filterAll: "Toutes",
       refresh: "Rafraîchir",
+      refreshing: "Actualisation…",
       userFilterLabel: "Filtrer par utilisateur",
       filterAll2: "Tous",
       filterAssigned: "Assignées",
@@ -795,6 +796,7 @@ const fr: Locale = {
       merge: "Merger",
       cancel: "Annuler",
       emptySelect: "Sélectionnez une PR dans la liste",
+      refreshing: "Actualisation…",
       loading: "Chargement des détails\u2026",
       mergedAgo: "\u00b7 Mergée {0}",
       checkout: "Checkout",
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index e9648f2a..a4f0c132 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -758,6 +758,7 @@ const ptBR: Locale = {
       filterClosed: "Fechadas",
       filterAll: "Todas",
       refresh: "Atualizar",
+      refreshing: "Atualizando…",
       userFilterLabel: "Filtrar por usuário",
       filterAll2: "Todas",
       filterAssigned: "Atribuídas",
@@ -785,6 +786,7 @@ const ptBR: Locale = {
       merge: "Mesclar",
       cancel: "Cancelar",
       emptySelect: "Selecione uma PR da lista",
+      refreshing: "Atualizando…",
       loading: "Carregando detalhes…",
       mergedAgo: "\u00b7 Mesclada {0}",
       checkout: "Checkout",
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index 42d715d6..be84fab2 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -746,6 +746,7 @@ const zhCN: Locale = {
       filterClosed: "已关闭",
       filterAll: "全部",
       refresh: "刷新",
+      refreshing: "刷新中…",
       userFilterLabel: "按用户过滤",
       filterAll2: "全部",
       filterAssigned: "已分配",
@@ -773,6 +774,7 @@ const zhCN: Locale = {
       merge: "合并",
       cancel: "取消",
       emptySelect: "从列表中选择一个 PR",
+      refreshing: "刷新中…",
       loading: "加载详情中…",
       mergedAgo: "\u00b7 已合并 {0}",
       checkout: "Checkout",

From e24f4731226b89a987a2266d97cc2cc301bc0d48 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 12:20:43 -0400
Subject: [PATCH 23/44] perf(tauri): Offload blocking commands to background
 threads

Move long-running Tauri commands (Azure API calls, Git operations) to background threads using `tauri::async_runtime::spawn_blocking`. This prevents UI freezes during blocking network or process I/O, maintaining application responsiveness.

A related change prevents `loadMorePrs` from firing duplicate pagination requests during SWR revalidation, avoiding redundant slow API calls.
---
 apps/desktop/src-tauri/src/commands/azure.rs | 101 +++++++++++-----
 apps/desktop/src-tauri/src/commands/ops.rs   | 117 ++++++++++---------
 apps/desktop/src/composables/usePrPanel.ts   |   6 +-
 3 files changed, 140 insertions(+), 84 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 7d892603..fa5f7077 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -1128,90 +1128,131 @@ fn rest_pr_reviews(cwd: &str, number: i64) -> Result<Vec<serde_json::Value>, Str
 
 // ─── Tauri commands — PR workflow ───────────────────────────────────────────
 
+// These forge commands do blocking network I/O (Azure DevOps REST, ~1–2s each).
+// Tauri runs *synchronous* commands on the webview main thread, so a bare `fn`
+// here freezes the whole UI for the call's duration. Declaring them `async` and
+// running the blocking body via `spawn_blocking` keeps the work off the main
+// thread — the UI stays interactive while the request is in flight.
 #[tauri::command]
-pub(crate) fn az_current_user() -> Result<String, String> {
-    rest_current_user()
+pub(crate) async fn az_current_user() -> Result<String, String> {
+    tauri::async_runtime::spawn_blocking(rest_current_user)
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_list_prs(cwd: String, state: String, limit: i64, offset: i64) -> Result<Vec<PullRequest>, String> {
-    rest_list_prs(&cwd, &state, limit, offset)
+pub(crate) async fn az_list_prs(cwd: String, state: String, limit: i64, offset: i64) -> Result<Vec<PullRequest>, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_list_prs(&cwd, &state, limit, offset))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_count(cwd: String, state: String) -> Result<i64, String> {
-    rest_pr_count(&cwd, &state)
+pub(crate) async fn az_pr_count(cwd: String, state: String) -> Result<i64, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_count(&cwd, &state))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail, String> {
-    rest_pr_detail(&cwd, number)
+pub(crate) async fn az_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_detail(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_diff(cwd: String, number: i64) -> Result<String, String> {
-    rest_pr_diff(&cwd, number)
+pub(crate) async fn az_pr_diff(cwd: String, number: i64) -> Result<String, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_diff(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_files(cwd: String, number: i64) -> Result<Vec<String>, String> {
-    rest_pr_files(&cwd, number)
+pub(crate) async fn az_pr_files(cwd: String, number: i64) -> Result<Vec<String>, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_files(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_create_pr(
+pub(crate) async fn az_create_pr(
     cwd: String,
     title: String,
     body: String,
     base: Option<String>,
     draft: Option<bool>,
 ) -> Result<PullRequest, String> {
-    rest_create_pr(&cwd, title, body, base.unwrap_or_default(), draft.unwrap_or(false))
+    tauri::async_runtime::spawn_blocking(move || {
+        rest_create_pr(&cwd, title, body, base.unwrap_or_default(), draft.unwrap_or(false))
+    })
+    .await
+    .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_merge_pr(cwd: String, number: i64, method: Option<String>) -> Result<(), String> {
-    rest_merge_pr(&cwd, number, &method.unwrap_or_else(|| "merge".to_string()))
+pub(crate) async fn az_merge_pr(cwd: String, number: i64, method: Option<String>) -> Result<(), String> {
+    tauri::async_runtime::spawn_blocking(move || {
+        rest_merge_pr(&cwd, number, &method.unwrap_or_else(|| "merge".to_string()))
+    })
+    .await
+    .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_ready(cwd: String, number: i64) -> Result<(), String> {
-    rest_pr_ready(&cwd, number)
+pub(crate) async fn az_pr_ready(cwd: String, number: i64) -> Result<(), String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_ready(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
-    rest_checkout_pr(&cwd, number)
+pub(crate) async fn az_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
+    tauri::async_runtime::spawn_blocking(move || rest_checkout_pr(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
-    rest_pr_comments(&cwd, number)
+pub(crate) async fn az_pr_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_comments(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_create_comment(cwd: String, number: i64, body: String) -> Result<serde_json::Value, String> {
-    rest_pr_create_comment(&cwd, number, &body)
+pub(crate) async fn az_pr_create_comment(cwd: String, number: i64, body: String) -> Result<serde_json::Value, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_create_comment(&cwd, number, &body))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, String> {
-    rest_pr_checks(&cwd, number)
+pub(crate) async fn az_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_checks(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_pr_reviews(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
-    rest_pr_reviews(&cwd, number)
+pub(crate) async fn az_pr_reviews(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+    tauri::async_runtime::spawn_blocking(move || rest_pr_reviews(&cwd, number))
+        .await
+        .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
-pub(crate) fn az_submit_review(
+pub(crate) async fn az_submit_review(
     cwd: String,
     number: i64,
     event: String,
     body: Option<String>,
 ) -> Result<serde_json::Value, String> {
-    rest_submit_review(&cwd, number, &event, &body.unwrap_or_default())
+    tauri::async_runtime::spawn_blocking(move || {
+        rest_submit_review(&cwd, number, &event, &body.unwrap_or_default())
+    })
+    .await
+    .map_err(|e| e.to_string())?
 }
 
 // ─── Entra ID device flow ───────────────────────────────────────────────────
diff --git a/apps/desktop/src-tauri/src/commands/ops.rs b/apps/desktop/src-tauri/src/commands/ops.rs
index a1558cdf..e1dd9756 100644
--- a/apps/desktop/src-tauri/src/commands/ops.rs
+++ b/apps/desktop/src-tauri/src/commands/ops.rs
@@ -2363,23 +2363,30 @@ pub(crate) fn git_shortlog(cwd: String) -> Result<Vec<ShortlogEntry>, String> {
 
 // ─── Git exec / autocomplete ─────────────────────────────────
 
-#[tauri::command]
-pub(crate) fn git_exec(cwd: String, args: Vec<String>) -> Result<TerminalResult, String> {
-    if args.is_empty() {
-        return Err("No arguments provided".to_string());
-    }
+// Async + spawn_blocking: a synchronous Tauri command runs on the webview main
+// thread, so a slow `git` invocation (e.g. `status` on a large repo, ~1.3s)
+// freezes the UI. Offloading the blocking process spawn keeps the UI responsive.
+#[tauri::command]
+pub(crate) async fn git_exec(cwd: String, args: Vec<String>) -> Result<TerminalResult, String> {
+    tauri::async_runtime::spawn_blocking(move || {
+        if args.is_empty() {
+            return Err("No arguments provided".to_string());
+        }
 
-    let output = git_cmd()
-        .args(&args)
-        .current_dir(&cwd)
-        .output()
-        .map_err(|e| format!("Failed to execute git command: {}", e))?;
+        let output = git_cmd()
+            .args(&args)
+            .current_dir(&cwd)
+            .output()
+            .map_err(|e| format!("Failed to execute git command: {}", e))?;
 
-    Ok(TerminalResult {
-        stdout: String::from_utf8_lossy(&output.stdout).to_string(),
-        stderr: String::from_utf8_lossy(&output.stderr).to_string(),
-        exit_code: output.status.code().unwrap_or(-1),
+        Ok(TerminalResult {
+            stdout: String::from_utf8_lossy(&output.stdout).to_string(),
+            stderr: String::from_utf8_lossy(&output.stderr).to_string(),
+            exit_code: output.status.code().unwrap_or(-1),
+        })
     })
+    .await
+    .map_err(|e| e.to_string())?
 }
 
 #[tauri::command]
@@ -2469,49 +2476,53 @@ pub(crate) fn get_conflicted_files(cwd: String) -> Result<Vec<String>, String> {
 // ─── Git remote info ─────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_remote_info(cwd: String) -> Result<RemoteInfo, String> {
-    let output = git_cmd()
-        .args(["remote", "-v"])
-        .current_dir(&cwd)
-        .output()
-        .map_err(|e| format!("Failed to get remote info: {}", e))?;
+pub(crate) async fn git_remote_info(cwd: String) -> Result<RemoteInfo, String> {
+    tauri::async_runtime::spawn_blocking(move || {
+        let output = git_cmd()
+            .args(["remote", "-v"])
+            .current_dir(&cwd)
+            .output()
+            .map_err(|e| format!("Failed to get remote info: {}", e))?;
 
-    let stdout = String::from_utf8_lossy(&output.stdout);
-    for line in stdout.lines() {
-        if !line.contains("(fetch)") {
-            continue;
-        }
-        let parts: Vec<&str> = line.split_whitespace().collect();
-        if parts.len() < 2 {
-            continue;
-        }
-        let name = parts[0].to_string();
-        let url = parts[1].to_string();
-
-        let provider = if url.contains("github.com") {
-            "github"
-        } else if url.contains("gitlab.com") || url.contains("gitlab") {
-            "gitlab"
-        } else if url.contains("bitbucket.org") || url.contains("bitbucket") {
-            "bitbucket"
-        } else if url.contains("dev.azure.com") || url.contains("visualstudio.com") {
-            "azure"
-        } else {
-            "unknown"
-        };
+        let stdout = String::from_utf8_lossy(&output.stdout);
+        for line in stdout.lines() {
+            if !line.contains("(fetch)") {
+                continue;
+            }
+            let parts: Vec<&str> = line.split_whitespace().collect();
+            if parts.len() < 2 {
+                continue;
+            }
+            let name = parts[0].to_string();
+            let url = parts[1].to_string();
+
+            let provider = if url.contains("github.com") {
+                "github"
+            } else if url.contains("gitlab.com") || url.contains("gitlab") {
+                "gitlab"
+            } else if url.contains("bitbucket.org") || url.contains("bitbucket") {
+                "bitbucket"
+            } else if url.contains("dev.azure.com") || url.contains("visualstudio.com") {
+                "azure"
+            } else {
+                "unknown"
+            };
 
-        let (owner, repo) = parse_remote_owner_repo(&url);
+            let (owner, repo) = parse_remote_owner_repo(&url);
 
-        return Ok(RemoteInfo {
-            name,
-            url,
-            provider: provider.to_string(),
-            owner,
-            repo,
-        });
-    }
+            return Ok(RemoteInfo {
+                name,
+                url,
+                provider: provider.to_string(),
+                owner,
+                repo,
+            });
+        }
 
-    Err("No remote found".to_string())
+        Err("No remote found".to_string())
+    })
+    .await
+    .map_err(|e| e.to_string())?
 }
 
 // ─── Git user ────────────────────────────────────────────────
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 77d0a516..76b60606 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -386,7 +386,11 @@ export function usePrPanel(cwd: Ref<string>) {
    * making the dedup + slice cost go away.
    */
   async function loadMorePrs() {
-    if (!cwd.value || loadingMore.value || !hasMore.value || loading.value) return;
+    // Guard on `refreshing` too: during SWR revalidation the cached list is on
+    // screen with `loading` false, so without this the pagination sentinel
+    // fires a second `listPRs` (e.g. offset 4) concurrently with the in-flight
+    // page-0 refresh — doubling slow forge calls (Azure: ~1.8s each).
+    if (!cwd.value || loadingMore.value || !hasMore.value || loading.value || refreshing.value) return;
     if (!requireOnline("gh pr list (more)")) {
       hasMore.value = false;
       return;

From e99047d54e766de35e79f7c11f29ee9e88c6f2eb Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 12:28:35 -0400
Subject: [PATCH 24/44] perf(tauri): Convert commands to async functions

Migrate `#[tauri::command]` functions to `async fn` to enable asynchronous execution. This allows these commands to yield control to the Tauri runtime during I/O operations (e.g., network requests, file system access, external process execution), preventing the UI thread from blocking and further enhancing application responsiveness.
---
 apps/desktop/src-tauri/src/commands/ai.rs     |  16 +-
 apps/desktop/src-tauri/src/commands/azure.rs  |   6 +-
 .../src-tauri/src/commands/bitbucket.rs       |  34 ++--
 .../src-tauri/src/commands/credentials.rs     |   6 +-
 apps/desktop/src-tauri/src/commands/files.rs  |  12 +-
 apps/desktop/src-tauri/src/commands/gh.rs     |  26 +--
 .../src-tauri/src/commands/github_api.rs      |   6 +-
 apps/desktop/src-tauri/src/commands/gitlab.rs |  40 ++---
 .../src-tauri/src/commands/mcp_catalog.rs     |   8 +-
 .../desktop/src-tauri/src/commands/network.rs |   2 +-
 apps/desktop/src-tauri/src/commands/ops.rs    | 154 +++++++++---------
 apps/desktop/src-tauri/src/commands/read.rs   |  26 +--
 .../src-tauri/src/commands/workspace.rs       |  20 +--
 apps/desktop/src-tauri/src/lib.rs             |  13 +-
 14 files changed, 186 insertions(+), 183 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/ai.rs b/apps/desktop/src-tauri/src/commands/ai.rs
index 7e215f46..6495f48c 100644
--- a/apps/desktop/src-tauri/src/commands/ai.rs
+++ b/apps/desktop/src-tauri/src/commands/ai.rs
@@ -124,7 +124,7 @@ fn resolve_codex_binary() -> Option<String> {
 /// stderr surfaces a clear "please log in" message that the calling
 /// command (`claude_cli_prompt`) propagates as an error.
 #[tauri::command]
-pub(crate) fn detect_claude_cli() -> Result<ClaudeCliInfo, String> {
+pub(crate) async fn detect_claude_cli() -> Result<ClaudeCliInfo, String> {
     let binary = match resolve_claude_binary() {
         Some(b) => b,
         None => {
@@ -165,7 +165,7 @@ pub(crate) fn detect_claude_cli() -> Result<ClaudeCliInfo, String> {
 /// The CLI already handles auth via the user's subscription — we just pipe
 /// text in and get text back.
 #[tauri::command]
-pub(crate) fn claude_cli_prompt(
+pub(crate) async fn claude_cli_prompt(
     prompt: String,
     system_prompt: Option<String>,
     cwd: Option<String>,
@@ -244,7 +244,7 @@ pub(crate) fn claude_cli_prompt(
 /// for a prompt they never asked for. Auth verifies implicitly on the
 /// first real prompt via `codex_cli_prompt`.
 #[tauri::command]
-pub(crate) fn detect_codex_cli() -> Result<CodexCliInfo, String> {
+pub(crate) async fn detect_codex_cli() -> Result<CodexCliInfo, String> {
     let binary = match resolve_codex_binary() {
         Some(b) => b,
         None => {
@@ -277,7 +277,7 @@ pub(crate) fn detect_codex_cli() -> Result<CodexCliInfo, String> {
 }
 
 #[tauri::command]
-pub(crate) fn codex_cli_prompt(
+pub(crate) async fn codex_cli_prompt(
     prompt: String,
     system_prompt: Option<String>,
     cwd: Option<String>,
@@ -381,7 +381,7 @@ fn resolve_opencode_binary() -> Option<String> {
 /// Claude / Codex detectors: no prompt is sent to verify auth — that is
 /// confirmed implicitly on the first real `opencode_cli_prompt`.
 #[tauri::command]
-pub(crate) fn detect_opencode_cli() -> Result<OpencodeCliInfo, String> {
+pub(crate) async fn detect_opencode_cli() -> Result<OpencodeCliInfo, String> {
     let binary = match resolve_opencode_binary() {
         Some(b) => b,
         None => {
@@ -414,7 +414,7 @@ pub(crate) fn detect_opencode_cli() -> Result<OpencodeCliInfo, String> {
 }
 
 #[tauri::command]
-pub(crate) fn opencode_cli_prompt(
+pub(crate) async fn opencode_cli_prompt(
     prompt: String,
     system_prompt: Option<String>,
     cwd: Option<String>,
@@ -471,7 +471,7 @@ pub(crate) fn opencode_cli_prompt(
 /// when the binary is missing or the command fails, so the UI can fall back
 /// to free-text entry gracefully.
 #[tauri::command]
-pub(crate) fn opencode_list_models() -> Result<Vec<String>, String> {
+pub(crate) async fn opencode_list_models() -> Result<Vec<String>, String> {
     let binary = match resolve_opencode_binary() {
         Some(b) => b,
         None => return Ok(Vec::new()),
@@ -501,7 +501,7 @@ pub(crate) fn opencode_list_models() -> Result<Vec<String>, String> {
 /// embed a PTY because this is a one-shot setup flow: the user validates
 /// in their browser and comes back to GitWand.
 #[tauri::command]
-pub(crate) fn claude_cli_login() -> Result<(), String> {
+pub(crate) async fn claude_cli_login() -> Result<(), String> {
     let binary = resolve_claude_binary()
         .ok_or_else(|| "Binaire `claude` introuvable. Installez-le d'abord.".to_string())?;
 
diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index fa5f7077..1c085f60 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -1259,7 +1259,7 @@ pub(crate) async fn az_submit_review(
 
 /// Begin the Entra ID device authorization grant.
 #[tauri::command]
-pub(crate) fn azure_device_start() -> Result<GithubDeviceCode, String> {
+pub(crate) async fn azure_device_start() -> Result<GithubDeviceCode, String> {
     let cid = client_id();
     if cid.starts_with("REPLACE_WITH") {
         return Err(
@@ -1293,7 +1293,7 @@ pub(crate) fn azure_device_start() -> Result<GithubDeviceCode, String> {
 /// Poll once for the Entra access token. On success the token is stored in the
 /// OS keychain; the secret never reaches the frontend.
 #[tauri::command]
-pub(crate) fn azure_device_poll(device_code: String) -> Result<GithubDevicePoll, String> {
+pub(crate) async fn azure_device_poll(device_code: String) -> Result<GithubDevicePoll, String> {
     let cid = client_id();
     let (status, text) = curl_form(
         TOKEN_URL,
@@ -1350,6 +1350,6 @@ pub(crate) fn azure_device_poll(device_code: String) -> Result<GithubDevicePoll,
 
 /// Whether a Settings-managed Azure token is currently stored.
 #[tauri::command]
-pub(crate) fn azure_token_present() -> Result<bool, String> {
+pub(crate) async fn azure_token_present() -> Result<bool, String> {
     Ok(settings_azure_token().is_some())
 }
diff --git a/apps/desktop/src-tauri/src/commands/bitbucket.rs b/apps/desktop/src-tauri/src/commands/bitbucket.rs
index 37414beb..119b9b65 100644
--- a/apps/desktop/src-tauri/src/commands/bitbucket.rs
+++ b/apps/desktop/src-tauri/src/commands/bitbucket.rs
@@ -405,7 +405,7 @@ impl OrElseEmpty for String {
 ///
 /// `state` accepts "OPEN" (default), "MERGED", "DECLINED", "ALL".
 #[tauri::command]
-pub(crate) fn bb_list_prs(
+pub(crate) async fn bb_list_prs(
     cwd: String,
     state: String,
     limit: Option<i64>,
@@ -462,7 +462,7 @@ pub(crate) fn bb_list_prs(
 
 /// Count PRs for a given state.
 #[tauri::command]
-pub(crate) fn bb_pr_count(cwd: String, state: String) -> Result<i64, String> {
+pub(crate) async fn bb_pr_count(cwd: String, state: String) -> Result<i64, String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -485,7 +485,7 @@ pub(crate) fn bb_pr_count(cwd: String, state: String) -> Result<i64, String> {
 
 /// Get detailed PR info.
 #[tauri::command]
-pub(crate) fn bb_get_pr(cwd: String, pr_id: i64) -> Result<PullRequestDetail, String> {
+pub(crate) async fn bb_get_pr(cwd: String, pr_id: i64) -> Result<PullRequestDetail, String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -497,7 +497,7 @@ pub(crate) fn bb_get_pr(cwd: String, pr_id: i64) -> Result<PullRequestDetail, St
 
 /// Get the diff of a PR as a unified diff string.
 #[tauri::command]
-pub(crate) fn bb_pr_diff(cwd: String, pr_id: i64) -> Result<String, String> {
+pub(crate) async fn bb_pr_diff(cwd: String, pr_id: i64) -> Result<String, String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -527,7 +527,7 @@ pub(crate) fn bb_pr_diff(cwd: String, pr_id: i64) -> Result<String, String> {
 /// If `source_branch` is empty, the current HEAD branch is resolved via
 /// `git rev-parse --abbrev-ref HEAD` (mirrors the `glab mr create` convention).
 #[tauri::command]
-pub(crate) fn bb_create_pr(
+pub(crate) async fn bb_create_pr(
     cwd: String,
     title: String,
     body: String,
@@ -575,7 +575,7 @@ pub(crate) fn bb_create_pr(
 ///
 /// `method` accepts "merge" (default), "squash", "fast_forward".
 #[tauri::command]
-pub(crate) fn bb_merge_pr(cwd: String, pr_id: i64, method: String) -> Result<(), String> {
+pub(crate) async fn bb_merge_pr(cwd: String, pr_id: i64, method: String) -> Result<(), String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -602,7 +602,7 @@ pub(crate) fn bb_merge_pr(cwd: String, pr_id: i64, method: String) -> Result<(),
 /// 1. Fetch the source branch from origin
 /// 2. Switch to it (create tracking branch if needed)
 #[tauri::command]
-pub(crate) fn bb_checkout_pr(cwd: String, pr_id: i64) -> Result<(), String> {
+pub(crate) async fn bb_checkout_pr(cwd: String, pr_id: i64) -> Result<(), String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -655,7 +655,7 @@ pub(crate) fn bb_checkout_pr(cwd: String, pr_id: i64) -> Result<(), String> {
 
 /// List comments on a PR. Returns raw JSON array for TypeScript parsing.
 #[tauri::command]
-pub(crate) fn bb_pr_comments(cwd: String, pr_id: i64) -> Result<serde_json::Value, String> {
+pub(crate) async fn bb_pr_comments(cwd: String, pr_id: i64) -> Result<serde_json::Value, String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -671,7 +671,7 @@ pub(crate) fn bb_pr_comments(cwd: String, pr_id: i64) -> Result<serde_json::Valu
 
 /// Create a comment on a PR.
 #[tauri::command]
-pub(crate) fn bb_create_comment(
+pub(crate) async fn bb_create_comment(
     cwd: String,
     pr_id: i64,
     body: String,
@@ -691,7 +691,7 @@ pub(crate) fn bb_create_comment(
 
 /// Update a comment on a PR.
 #[tauri::command]
-pub(crate) fn bb_update_comment(
+pub(crate) async fn bb_update_comment(
     cwd: String,
     pr_id: i64,
     comment_id: i64,
@@ -714,7 +714,7 @@ pub(crate) fn bb_update_comment(
 
 /// Delete a comment on a PR.
 #[tauri::command]
-pub(crate) fn bb_delete_comment(
+pub(crate) async fn bb_delete_comment(
     cwd: String,
     pr_id: i64,
     comment_id: i64,
@@ -735,7 +735,7 @@ pub(crate) fn bb_delete_comment(
 
 /// Approve a PR (current user).
 #[tauri::command]
-pub(crate) fn bb_approve_pr(cwd: String, pr_id: i64) -> Result<(), String> {
+pub(crate) async fn bb_approve_pr(cwd: String, pr_id: i64) -> Result<(), String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -751,7 +751,7 @@ pub(crate) fn bb_approve_pr(cwd: String, pr_id: i64) -> Result<(), String> {
 
 /// List files changed in a PR.
 #[tauri::command]
-pub(crate) fn bb_pr_files(cwd: String, pr_id: i64) -> Result<Vec<String>, String> {
+pub(crate) async fn bb_pr_files(cwd: String, pr_id: i64) -> Result<Vec<String>, String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -786,7 +786,7 @@ pub(crate) fn bb_pr_files(cwd: String, pr_id: i64) -> Result<Vec<String>, String
 
 /// Get the current Bitbucket user (the one whose credentials are stored).
 #[tauri::command]
-pub(crate) fn bb_current_user(cwd: String) -> Result<String, String> {
+pub(crate) async fn bb_current_user(cwd: String) -> Result<String, String> {
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
 
@@ -801,7 +801,7 @@ pub(crate) fn bb_current_user(cwd: String) -> Result<String, String> {
 
 /// List reviewer candidates (repo members with write access).
 #[tauri::command]
-pub(crate) fn bb_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidate>, String> {
+pub(crate) async fn bb_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidate>, String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -852,7 +852,7 @@ pub(crate) fn bb_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidat
 /// Endpoint: GET /2.0/repositories/{ws}/{slug}/commit/{sha}/statuses
 /// The head commit SHA is read from the PR's `source.commit.hash` field.
 #[tauri::command]
-pub(crate) fn bb_pr_ci_checks(cwd: String, pr_id: i64) -> Result<Vec<CICheck>, String> {
+pub(crate) async fn bb_pr_ci_checks(cwd: String, pr_id: i64) -> Result<Vec<CICheck>, String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
@@ -913,7 +913,7 @@ pub(crate) fn bb_pr_ci_checks(cwd: String, pr_id: i64) -> Result<Vec<CICheck>, S
 /// Bitbucket has no native draft concept — the convention is a "Draft: " title
 /// prefix. This command strips it via a PUT update on the PR.
 #[tauri::command]
-pub(crate) fn bb_convert_draft_to_ready(cwd: String, pr_id: i64) -> Result<(), String> {
+pub(crate) async fn bb_convert_draft_to_ready(cwd: String, pr_id: i64) -> Result<(), String> {
     let (workspace, slug) = parse_workspace_slug(&cwd)?;
     let (username, app_password) = get_bb_creds(&cwd)?;
     let auth = basic_auth_header(&username, &app_password);
diff --git a/apps/desktop/src-tauri/src/commands/credentials.rs b/apps/desktop/src-tauri/src/commands/credentials.rs
index 5593de59..c4db8f6e 100644
--- a/apps/desktop/src-tauri/src/commands/credentials.rs
+++ b/apps/desktop/src-tauri/src/commands/credentials.rs
@@ -30,7 +30,7 @@
 /// `account` — sub-key within the service, e.g. `"workspace:username"`.
 /// `value`   — the secret (PAT, app-password, etc.).
 #[tauri::command]
-pub(crate) fn set_credential(service: String, account: String, value: String) -> Result<(), String> {
+pub(crate) async fn set_credential(service: String, account: String, value: String) -> Result<(), String> {
     let entry = keyring::Entry::new(&service, &account)
         .map_err(|e| format!("keyring init failed for {}/{}: {}", service, account, e))?;
     entry
@@ -44,7 +44,7 @@ pub(crate) fn set_credential(service: String, account: String, value: String) ->
 /// the keychain is locked. The caller should surface this to the user as
 /// "Please configure your credentials in Settings > Accounts."
 #[tauri::command]
-pub(crate) fn get_credential(service: String, account: String) -> Result<String, String> {
+pub(crate) async fn get_credential(service: String, account: String) -> Result<String, String> {
     let entry = keyring::Entry::new(&service, &account)
         .map_err(|e| format!("keyring init failed for {}/{}: {}", service, account, e))?;
     entry
@@ -59,7 +59,7 @@ pub(crate) fn get_credential(service: String, account: String) -> Result<String,
 ///
 /// Silently succeeds if the entry does not exist (idempotent).
 #[tauri::command]
-pub(crate) fn delete_credential(service: String, account: String) -> Result<(), String> {
+pub(crate) async fn delete_credential(service: String, account: String) -> Result<(), String> {
     let entry = match keyring::Entry::new(&service, &account) {
         Ok(e) => e,
         Err(_) => return Ok(()), // Entry cannot exist if we can't init
diff --git a/apps/desktop/src-tauri/src/commands/files.rs b/apps/desktop/src-tauri/src/commands/files.rs
index 679bb326..8ca1f5b6 100644
--- a/apps/desktop/src-tauri/src/commands/files.rs
+++ b/apps/desktop/src-tauri/src/commands/files.rs
@@ -18,13 +18,13 @@ use crate::types::*;
 use std::path::PathBuf;
 
 #[tauri::command]
-pub(crate) fn read_file(cwd: String, path: String) -> Result<String, String> {
+pub(crate) async fn read_file(cwd: String, path: String) -> Result<String, String> {
     let full = safe_repo_path(&cwd, &path)?;
     std::fs::read_to_string(&full).map_err(|e| format!("Failed to read {}: {}", path, e))
 }
 
 #[tauri::command]
-pub(crate) fn write_file(cwd: String, path: String, content: String) -> Result<(), String> {
+pub(crate) async fn write_file(cwd: String, path: String, content: String) -> Result<(), String> {
     let full = safe_repo_path(&cwd, &path)?;
     std::fs::write(&full, &content).map_err(|e| format!("Failed to write {}: {}", path, e))
 }
@@ -44,7 +44,7 @@ pub(crate) fn write_file(cwd: String, path: String, content: String) -> Result<(
 /// here (`.gitwandrc` / `.gitwandrc.json`), so no user-supplied path
 /// component reaches the filesystem.
 #[tauri::command]
-pub(crate) fn write_gitwandrc(cwd: String, content: String) -> Result<(), String> {
+pub(crate) async fn write_gitwandrc(cwd: String, content: String) -> Result<(), String> {
     if cwd.trim().is_empty() {
         return Err("cwd must not be empty".to_string());
     }
@@ -68,7 +68,7 @@ pub(crate) fn write_gitwandrc(cwd: String, content: String) -> Result<(), String
 }
 
 #[tauri::command]
-pub(crate) fn read_file_at_revision(
+pub(crate) async fn read_file_at_revision(
     cwd: String,
     rev: String,
     path: String,
@@ -136,7 +136,7 @@ pub(crate) fn read_file_at_revision(
 }
 
 #[tauri::command]
-pub(crate) fn folder_diff(cwd: String, ref_a: String, ref_b: String) -> Result<FolderDiffNode, String> {
+pub(crate) async fn folder_diff(cwd: String, ref_a: String, ref_b: String) -> Result<FolderDiffNode, String> {
     if cwd.trim().is_empty() {
         return Err("cwd must not be empty".to_string());
     }
@@ -223,7 +223,7 @@ pub(crate) fn folder_diff(cwd: String, ref_a: String, ref_b: String) -> Result<F
 // ─── Directory listing (for FolderPicker) ──────────────────
 
 #[tauri::command]
-pub(crate) fn list_dir(path: Option<String>) -> Result<ListDirResult, String> {
+pub(crate) async fn list_dir(path: Option<String>) -> Result<ListDirResult, String> {
     let home_path = dirs::home_dir().unwrap_or_else(|| PathBuf::from("/"));
     let home = home_path.to_string_lossy().to_string();
 
diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index c5030bff..06a3a7ce 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -40,7 +40,7 @@ use crate::commands::github_api;
 /// CI/merge state pieces — keeps the list query light while still letting
 /// the sidebar render CI/merge dots without a click.
 #[tauri::command]
-pub(crate) fn gh_list_prs(
+pub(crate) async fn gh_list_prs(
     cwd: String,
     state: String,
     limit: Option<i64>,
@@ -106,7 +106,7 @@ pub(crate) fn gh_list_prs(
 /// Returns 0 on any non-fatal failure (no remote, no token, etc.) so the
 /// dashboard can still render — the caller decides whether to surface.
 #[tauri::command]
-pub(crate) fn gh_pr_count(cwd: String, state: String) -> Result<i64, String> {
+pub(crate) async fn gh_pr_count(cwd: String, state: String) -> Result<i64, String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_pr_count(&cwd, &state, &tok);
     }
@@ -192,7 +192,7 @@ pub(crate) fn gh_pr_count(cwd: String, state: String) -> Result<i64, String> {
 
 /// Create a pull request using `gh` CLI.
 #[tauri::command]
-pub(crate) fn gh_create_pr(
+pub(crate) async fn gh_create_pr(
     cwd: String,
     title: String,
     body: String,
@@ -316,7 +316,7 @@ pub(crate) fn gh_create_pr(
 /// Calls `gh api /repos/:owner/:repo/assignees` (paginated) which returns
 /// users with push access — exactly the set GitHub allows as reviewers.
 #[tauri::command]
-pub(crate) fn gh_list_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidate>, String> {
+pub(crate) async fn gh_list_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidate>, String> {
     // Discover owner/repo from the current repo.
     let view = hidden_cmd("gh")
         .args(["repo", "view", "--json", "owner,name"])
@@ -389,7 +389,7 @@ pub(crate) fn gh_list_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCan
 
 /// Checkout a PR branch locally using `gh` CLI.
 #[tauri::command]
-pub(crate) fn gh_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
+pub(crate) async fn gh_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
     if github_api::settings_github_token().is_some() {
         return github_api::rest_checkout_pr(&cwd, number);
     }
@@ -409,7 +409,7 @@ pub(crate) fn gh_checkout_pr(cwd: String, number: i64) -> Result<(), String> {
 
 /// Merge a PR using `gh` CLI.
 #[tauri::command]
-pub(crate) fn gh_merge_pr(cwd: String, number: i64, method: String) -> Result<(), String> {
+pub(crate) async fn gh_merge_pr(cwd: String, number: i64, method: String) -> Result<(), String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_merge_pr(&cwd, number, &method, &tok);
     }
@@ -438,7 +438,7 @@ pub(crate) fn gh_merge_pr(cwd: String, number: i64, method: String) -> Result<()
 /// Idempotent — `gh pr ready` on a non-draft PR exits 0 with a message like
 /// "Pull request #N is already marked as ready for review."
 #[tauri::command]
-pub(crate) fn gh_pr_ready(cwd: String, number: i64) -> Result<(), String> {
+pub(crate) async fn gh_pr_ready(cwd: String, number: i64) -> Result<(), String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_pr_ready(&cwd, number, &tok);
     }
@@ -458,7 +458,7 @@ pub(crate) fn gh_pr_ready(cwd: String, number: i64) -> Result<(), String> {
 
 /// Get detailed PR information using `gh` CLI.
 #[tauri::command]
-pub(crate) fn gh_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail, String> {
+pub(crate) async fn gh_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail, String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_pr_detail(&cwd, number, &tok);
     }
@@ -484,7 +484,7 @@ pub(crate) fn gh_pr_detail(cwd: String, number: i64) -> Result<PullRequestDetail
 
 /// Get the diff of a PR using `gh` CLI.
 #[tauri::command]
-pub(crate) fn gh_pr_diff(cwd: String, number: i64) -> Result<String, String> {
+pub(crate) async fn gh_pr_diff(cwd: String, number: i64) -> Result<String, String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_pr_diff(&cwd, number, &tok);
     }
@@ -503,7 +503,7 @@ pub(crate) fn gh_pr_diff(cwd: String, number: i64) -> Result<String, String> {
 
 /// Get CI checks for a PR using `gh` CLI.
 #[tauri::command]
-pub(crate) fn gh_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, String> {
+pub(crate) async fn gh_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_pr_checks(&cwd, number, &tok);
     }
@@ -563,7 +563,7 @@ pub(crate) fn gh_pr_checks(cwd: String, number: i64) -> Result<Vec<CICheck>, Str
 /// List inline review comments (anchored to diff lines) for a PR.
 /// Token present → REST; otherwise `gh api`.
 #[tauri::command]
-pub(crate) fn gh_pr_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+pub(crate) async fn gh_pr_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_pr_comments(&cwd, number, &tok);
     }
@@ -577,7 +577,7 @@ pub(crate) fn gh_pr_comments(cwd: String, number: i64) -> Result<Vec<serde_json:
 /// List issue-level (conversation) comments for a PR.
 /// Token present → REST; otherwise `gh api`.
 #[tauri::command]
-pub(crate) fn gh_pr_issue_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
+pub(crate) async fn gh_pr_issue_comments(cwd: String, number: i64) -> Result<Vec<serde_json::Value>, String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_pr_issue_comments(&cwd, number, &tok);
     }
@@ -610,7 +610,7 @@ fn gh_api_json(cwd: &str, path: &str) -> Result<serde_json::Value, String> {
 /// Report the current repo's fork relationship so the PR create view can offer
 /// "open against upstream". Token present → REST; otherwise `gh repo view`.
 #[tauri::command]
-pub(crate) fn gh_fork_info(cwd: String) -> Result<ForkInfo, String> {
+pub(crate) async fn gh_fork_info(cwd: String) -> Result<ForkInfo, String> {
     if let Some(tok) = github_api::settings_github_token() {
         return github_api::rest_fork_info(&cwd, &tok);
     }
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index a4d4798c..328e7f96 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -850,7 +850,7 @@ pub(crate) fn rest_checkout_pr(cwd: &str, number: i64) -> Result<(), String> {
 /// Begin the OAuth device flow. Returns the user code + verification URL the
 /// frontend shows, plus the `device_code` used for polling.
 #[tauri::command]
-pub(crate) fn github_device_start() -> Result<GithubDeviceCode, String> {
+pub(crate) async fn github_device_start() -> Result<GithubDeviceCode, String> {
     let cid = client_id();
     if cid.starts_with("REPLACE_WITH") {
         return Err(
@@ -894,7 +894,7 @@ pub(crate) fn github_device_start() -> Result<GithubDeviceCode, String> {
 /// On success the token is persisted to the OS keychain so the REST path can
 /// pick it up; the secret is never returned to the frontend.
 #[tauri::command]
-pub(crate) fn github_device_poll(device_code: String) -> Result<GithubDevicePoll, String> {
+pub(crate) async fn github_device_poll(device_code: String) -> Result<GithubDevicePoll, String> {
     let cid = client_id();
     let body = serde_json::json!({
         "client_id": cid,
@@ -954,6 +954,6 @@ pub(crate) fn github_device_poll(device_code: String) -> Result<GithubDevicePoll
 
 /// Whether a Settings-managed GitHub token is currently stored.
 #[tauri::command]
-pub(crate) fn github_token_present() -> Result<bool, String> {
+pub(crate) async fn github_token_present() -> Result<bool, String> {
     Ok(settings_github_token().is_some())
 }
diff --git a/apps/desktop/src-tauri/src/commands/gitlab.rs b/apps/desktop/src-tauri/src/commands/gitlab.rs
index 1413b5f3..9e7ceb8d 100644
--- a/apps/desktop/src-tauri/src/commands/gitlab.rs
+++ b/apps/desktop/src-tauri/src/commands/gitlab.rs
@@ -188,7 +188,7 @@ fn gl_mr_to_detail(mr: &serde_json::Value) -> PullRequestDetail {
 
 /// Detect if `glab` CLI is installed and accessible.
 #[tauri::command]
-pub(crate) fn detect_glab(cwd: String) -> bool {
+pub(crate) async fn detect_glab(cwd: String) -> bool {
     hidden_cmd("glab")
         .arg("--version")
         .current_dir(&cwd)
@@ -202,7 +202,7 @@ pub(crate) fn detect_glab(cwd: String) -> bool {
 /// `state` accepts "opened" (default), "closed", "merged", "all".
 /// Pagination: naïve slice — glab doesn't support cursor pagination via CLI.
 #[tauri::command]
-pub(crate) fn gl_list_mrs(
+pub(crate) async fn gl_list_mrs(
     cwd: String,
     state: String,
     limit: Option<i64>,
@@ -257,7 +257,7 @@ pub(crate) fn gl_list_mrs(
 ///
 /// Returns 0 on non-fatal errors so the Launchpad badge can still render.
 #[tauri::command]
-pub(crate) fn gl_mr_count(cwd: String, state: String) -> Result<i64, String> {
+pub(crate) async fn gl_mr_count(cwd: String, state: String) -> Result<i64, String> {
     let st = match state.as_str() {
         "closed" => "closed",
         "merged" => "merged",
@@ -282,7 +282,7 @@ pub(crate) fn gl_mr_count(cwd: String, state: String) -> Result<i64, String> {
 
 /// Get detailed MR info using `glab mr view`.
 #[tauri::command]
-pub(crate) fn gl_get_mr(cwd: String, iid: i64) -> Result<PullRequestDetail, String> {
+pub(crate) async fn gl_get_mr(cwd: String, iid: i64) -> Result<PullRequestDetail, String> {
     let output = hidden_cmd("glab")
         .args(["mr", "view", &iid.to_string(), "--output", "json"])
         .current_dir(&cwd)
@@ -305,7 +305,7 @@ pub(crate) fn gl_get_mr(cwd: String, iid: i64) -> Result<PullRequestDetail, Stri
 
 /// Get the unified diff of a MR using `glab mr diff`.
 #[tauri::command]
-pub(crate) fn gl_mr_diff(cwd: String, iid: i64) -> Result<String, String> {
+pub(crate) async fn gl_mr_diff(cwd: String, iid: i64) -> Result<String, String> {
     let output = hidden_cmd("glab")
         .args(["mr", "diff", &iid.to_string()])
         .current_dir(&cwd)
@@ -327,7 +327,7 @@ pub(crate) fn gl_mr_diff(cwd: String, iid: i64) -> Result<String, String> {
 /// Returns the most-recent pipeline as a single-entry list (GitLab only has
 /// one "active" pipeline per MR at a time). Each job maps to a CICheck entry.
 #[tauri::command]
-pub(crate) fn gl_mr_pipelines(cwd: String, iid: i64) -> Result<Vec<CICheck>, String> {
+pub(crate) async fn gl_mr_pipelines(cwd: String, iid: i64) -> Result<Vec<CICheck>, String> {
     let endpoint = format!(
         "projects/:fullpath/merge_requests/{}/pipelines",
         iid
@@ -378,7 +378,7 @@ pub(crate) fn gl_mr_pipelines(cwd: String, iid: i64) -> Result<Vec<CICheck>, Str
 
 /// Create a MR using `glab mr create`.
 #[tauri::command]
-pub(crate) fn gl_create_mr(
+pub(crate) async fn gl_create_mr(
     cwd: String,
     title: String,
     body: String,
@@ -441,7 +441,7 @@ pub(crate) fn gl_create_mr(
 ///
 /// `method` accepts "merge" (default), "squash", "rebase".
 #[tauri::command]
-pub(crate) fn gl_merge_mr(cwd: String, iid: i64, method: String) -> Result<(), String> {
+pub(crate) async fn gl_merge_mr(cwd: String, iid: i64, method: String) -> Result<(), String> {
     let mut args: Vec<String> = vec!["mr".to_string(), "merge".to_string(), iid.to_string()];
 
     match method.as_str() {
@@ -470,7 +470,7 @@ pub(crate) fn gl_merge_mr(cwd: String, iid: i64, method: String) -> Result<(), S
 
 /// Checkout a MR branch locally using `glab mr checkout`.
 #[tauri::command]
-pub(crate) fn gl_checkout_mr(cwd: String, iid: i64) -> Result<(), String> {
+pub(crate) async fn gl_checkout_mr(cwd: String, iid: i64) -> Result<(), String> {
     let output = hidden_cmd("glab")
         .args(["mr", "checkout", &iid.to_string()])
         .current_dir(&cwd)
@@ -488,7 +488,7 @@ pub(crate) fn gl_checkout_mr(cwd: String, iid: i64) -> Result<(), String> {
 
 /// Convert a draft MR to ready-for-review using `glab mr update --draft=false`.
 #[tauri::command]
-pub(crate) fn gl_convert_draft_to_ready(cwd: String, iid: i64) -> Result<(), String> {
+pub(crate) async fn gl_convert_draft_to_ready(cwd: String, iid: i64) -> Result<(), String> {
     let output = hidden_cmd("glab")
         .args(["mr", "update", &iid.to_string(), "--draft=false"])
         .current_dir(&cwd)
@@ -510,7 +510,7 @@ pub(crate) fn gl_convert_draft_to_ready(cwd: String, iid: i64) -> Result<(), Str
 /// GitLab notes are simpler than GitHub review comments: no diff-line
 /// anchoring in v2.10 (that requires the Discussions API).
 #[tauri::command]
-pub(crate) fn gl_mr_notes(cwd: String, iid: i64) -> Result<serde_json::Value, String> {
+pub(crate) async fn gl_mr_notes(cwd: String, iid: i64) -> Result<serde_json::Value, String> {
     let endpoint = format!(
         "projects/:fullpath/merge_requests/{}/notes?sort=asc&per_page=100",
         iid
@@ -536,7 +536,7 @@ pub(crate) fn gl_mr_notes(cwd: String, iid: i64) -> Result<serde_json::Value, St
 ///
 /// Returns the created note as raw JSON — parsed TypeScript-side.
 #[tauri::command]
-pub(crate) fn gl_mr_create_note(
+pub(crate) async fn gl_mr_create_note(
     cwd: String,
     iid: i64,
     body: String,
@@ -561,7 +561,7 @@ pub(crate) fn gl_mr_create_note(
 
 /// Update a note on a MR via `glab api`.
 #[tauri::command]
-pub(crate) fn gl_mr_update_note(
+pub(crate) async fn gl_mr_update_note(
     cwd: String,
     iid: i64,
     note_id: i64,
@@ -588,7 +588,7 @@ pub(crate) fn gl_mr_update_note(
 
 /// Delete a note on a MR via `glab api`.
 #[tauri::command]
-pub(crate) fn gl_mr_delete_note(
+pub(crate) async fn gl_mr_delete_note(
     cwd: String,
     iid: i64,
     note_id: i64,
@@ -614,7 +614,7 @@ pub(crate) fn gl_mr_delete_note(
 
 /// Approve a MR using `glab mr approve`.
 #[tauri::command]
-pub(crate) fn gl_approve_mr(cwd: String, iid: i64) -> Result<(), String> {
+pub(crate) async fn gl_approve_mr(cwd: String, iid: i64) -> Result<(), String> {
     let output = hidden_cmd("glab")
         .args(["mr", "approve", &iid.to_string()])
         .current_dir(&cwd)
@@ -634,7 +634,7 @@ pub(crate) fn gl_approve_mr(cwd: String, iid: i64) -> Result<(), String> {
 ///
 /// Returns raw JSON — parsed TypeScript-side into PrReview[].
 #[tauri::command]
-pub(crate) fn gl_list_reviews(cwd: String, iid: i64) -> Result<serde_json::Value, String> {
+pub(crate) async fn gl_list_reviews(cwd: String, iid: i64) -> Result<serde_json::Value, String> {
     let endpoint = format!(
         "projects/:fullpath/merge_requests/{}/approvals",
         iid
@@ -656,7 +656,7 @@ pub(crate) fn gl_list_reviews(cwd: String, iid: i64) -> Result<serde_json::Value
 
 /// Get the current GitLab user via `glab api /user`.
 #[tauri::command]
-pub(crate) fn gl_current_user(cwd: String) -> Result<String, String> {
+pub(crate) async fn gl_current_user(cwd: String) -> Result<String, String> {
     let output = hidden_cmd("glab")
         .args(["api", "/user"])
         .current_dir(&cwd)
@@ -683,7 +683,7 @@ pub(crate) fn gl_current_user(cwd: String) -> Result<String, String> {
 
 /// List reviewer candidates (project members with push access) via `glab api`.
 #[tauri::command]
-pub(crate) fn gl_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidate>, String> {
+pub(crate) async fn gl_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidate>, String> {
     let output = hidden_cmd("glab")
         .args(["api", "projects/:fullpath/members/all?per_page=100"])
         .current_dir(&cwd)
@@ -730,7 +730,7 @@ pub(crate) fn gl_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCandidat
 
 /// List file paths changed in a MR via `glab api` (diffs endpoint).
 #[tauri::command]
-pub(crate) fn gl_mr_files(cwd: String, iid: i64) -> Result<Vec<String>, String> {
+pub(crate) async fn gl_mr_files(cwd: String, iid: i64) -> Result<Vec<String>, String> {
     let endpoint = format!(
         "projects/:fullpath/merge_requests/{}/diffs?per_page=100",
         iid
@@ -772,7 +772,7 @@ pub(crate) fn gl_mr_files(cwd: String, iid: i64) -> Result<Vec<String>, String>
 ///   Body: { body, position: { base_sha, start_sha, head_sha, position_type,
 ///            new_path, new_line, old_path, old_line } }
 #[tauri::command]
-pub(crate) fn gl_mr_create_discussion(
+pub(crate) async fn gl_mr_create_discussion(
     cwd: String,
     iid: i64,
     body: String,
diff --git a/apps/desktop/src-tauri/src/commands/mcp_catalog.rs b/apps/desktop/src-tauri/src/commands/mcp_catalog.rs
index 4d4e91b9..6bd68bbd 100644
--- a/apps/desktop/src-tauri/src/commands/mcp_catalog.rs
+++ b/apps/desktop/src-tauri/src/commands/mcp_catalog.rs
@@ -133,7 +133,7 @@ fn known_configs(home: &PathBuf) -> Vec<(String, PathBuf)> {
 /// Return the list of known MCP config file locations with their current state,
 /// including the full list of already-configured server keys per file.
 #[tauri::command]
-pub(crate) fn mcp_detect_configs() -> Result<Vec<McpConfigFile>, String> {
+pub(crate) async fn mcp_detect_configs() -> Result<Vec<McpConfigFile>, String> {
     let home = home_dir().ok_or("Cannot determine home directory")?;
     let configs = known_configs(&home);
     let mut result = Vec::new();
@@ -172,7 +172,7 @@ pub(crate) fn mcp_detect_configs() -> Result<Vec<McpConfigFile>, String> {
 /// Read the `mcpServers` map from a config file as a JSON string.
 /// Returns `"{}"` when the file doesn't exist or has no mcpServers key.
 #[tauri::command]
-pub(crate) fn mcp_read_config(path: String) -> Result<String, String> {
+pub(crate) async fn mcp_read_config(path: String) -> Result<String, String> {
     let p = PathBuf::from(&path);
     let value = read_json(&p)?;
     let servers = value
@@ -193,7 +193,7 @@ pub(crate) fn mcp_read_config(path: String) -> Result<String, String> {
 /// Each file is created (with parent dirs) if it does not yet exist.
 /// Existing `mcpServers` entries for other servers are left untouched.
 #[tauri::command]
-pub(crate) fn mcp_install_server(
+pub(crate) async fn mcp_install_server(
     server_key: String,
     server_json: String,
     config_paths: Vec<String>,
@@ -234,7 +234,7 @@ pub(crate) fn mcp_install_server(
 /// Remove a server key from the `mcpServers` map in each specified config file.
 /// No-ops gracefully when the file or key doesn't exist.
 #[tauri::command]
-pub(crate) fn mcp_uninstall_server(
+pub(crate) async fn mcp_uninstall_server(
     server_key: String,
     config_paths: Vec<String>,
 ) -> Result<(), String> {
diff --git a/apps/desktop/src-tauri/src/commands/network.rs b/apps/desktop/src-tauri/src/commands/network.rs
index 5a1cbdf9..6ae10fda 100644
--- a/apps/desktop/src-tauri/src/commands/network.rs
+++ b/apps/desktop/src-tauri/src/commands/network.rs
@@ -148,7 +148,7 @@ fn tcp_probe(host: &str, port: u16, timeout: Duration) -> bool {
 /// `timeout_ms = 0` is normalised to a small floor (250 ms) so the caller
 /// cannot accidentally turn the probe into a zero-wait fast-fail.
 #[tauri::command]
-pub(crate) fn check_remote_reachable(url: String, timeout_ms: u64) -> Result<bool, String> {
+pub(crate) async fn check_remote_reachable(url: String, timeout_ms: u64) -> Result<bool, String> {
     let parsed = match parse_remote_host_port(&url) {
         Some(p) => p,
         None => return Ok(false),
diff --git a/apps/desktop/src-tauri/src/commands/ops.rs b/apps/desktop/src-tauri/src/commands/ops.rs
index e1dd9756..711be07f 100644
--- a/apps/desktop/src-tauri/src/commands/ops.rs
+++ b/apps/desktop/src-tauri/src/commands/ops.rs
@@ -9,7 +9,7 @@ use rayon::prelude::*;
 // ─── Git stage / unstage ─────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_stage(cwd: String, paths: Vec<String>) -> Result<(), String> {
+pub(crate) async fn git_stage(cwd: String, paths: Vec<String>) -> Result<(), String> {
     let mut cmd = git_cmd();
     cmd.arg("add").arg("--").current_dir(&cwd);
     for p in &paths {
@@ -24,7 +24,7 @@ pub(crate) fn git_stage(cwd: String, paths: Vec<String>) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_unstage(cwd: String, paths: Vec<String>) -> Result<(), String> {
+pub(crate) async fn git_unstage(cwd: String, paths: Vec<String>) -> Result<(), String> {
     let mut cmd = git_cmd();
     cmd.arg("reset").arg("HEAD").arg("--").current_dir(&cwd);
     for p in &paths {
@@ -39,7 +39,7 @@ pub(crate) fn git_unstage(cwd: String, paths: Vec<String>) -> Result<(), String>
 }
 
 #[tauri::command]
-pub(crate) fn git_stage_patch(cwd: String, patch: String) -> Result<(), String> {
+pub(crate) async fn git_stage_patch(cwd: String, patch: String) -> Result<(), String> {
     let mut cmd = git_cmd();
     cmd.args(["apply", "--cached", "--unidiff-zero", "-"])
         .current_dir(&cwd)
@@ -58,7 +58,7 @@ pub(crate) fn git_stage_patch(cwd: String, patch: String) -> Result<(), String>
 }
 
 #[tauri::command]
-pub(crate) fn git_unstage_patch(cwd: String, patch: String) -> Result<(), String> {
+pub(crate) async fn git_unstage_patch(cwd: String, patch: String) -> Result<(), String> {
     let mut cmd = git_cmd();
     cmd.args(["apply", "--cached", "--reverse", "--unidiff-zero", "-"])
         .current_dir(&cwd)
@@ -79,7 +79,7 @@ pub(crate) fn git_unstage_patch(cwd: String, patch: String) -> Result<(), String
 // ─── Git commit ──────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_commit(
+pub(crate) async fn git_commit(
     cwd: String,
     message: String,
     identity_name: Option<String>,
@@ -118,7 +118,7 @@ pub(crate) fn git_commit(
 }
 
 #[tauri::command]
-pub(crate) fn git_amend_commit(cwd: String, message: String) -> Result<String, String> {
+pub(crate) async fn git_amend_commit(cwd: String, message: String) -> Result<String, String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["commit", "--amend", "-m", &message])
@@ -143,7 +143,7 @@ pub(crate) fn git_amend_commit(cwd: String, message: String) -> Result<String, S
 }
 
 #[tauri::command]
-pub(crate) fn git_split_commit(
+pub(crate) async fn git_split_commit(
     cwd: String,
     first_patch: String,
     first_message: String,
@@ -346,7 +346,7 @@ pub(crate) fn git_split_commit(
 // ─── Git push / pull / merge ─────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_push(cwd: String, set_upstream: Option<bool>, force: Option<bool>) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_push(cwd: String, set_upstream: Option<bool>, force: Option<bool>) -> Result<GitPushPullResult, String> {
     let mut args: Vec<&str> = vec!["push"];
     if set_upstream.unwrap_or(false) {
         args.extend(["--set-upstream", "origin", "HEAD"]);
@@ -382,7 +382,7 @@ pub(crate) fn git_push(cwd: String, set_upstream: Option<bool>, force: Option<bo
 }
 
 #[tauri::command]
-pub(crate) fn git_fetch(cwd: String) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_fetch(cwd: String) -> Result<GitPushPullResult, String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["fetch", "--prune"])
@@ -406,7 +406,7 @@ pub(crate) fn git_fetch(cwd: String) -> Result<GitPushPullResult, String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_merge(cwd: String, branch: String) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_merge(cwd: String, branch: String) -> Result<GitPushPullResult, String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["merge", &branch])
@@ -434,7 +434,7 @@ pub(crate) fn git_merge(cwd: String, branch: String) -> Result<GitPushPullResult
 }
 
 #[tauri::command]
-pub(crate) fn git_merge_abort(cwd: String) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_merge_abort(cwd: String) -> Result<GitPushPullResult, String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["merge", "--abort"])
@@ -457,7 +457,7 @@ pub(crate) fn git_merge_abort(cwd: String) -> Result<GitPushPullResult, String>
 }
 
 #[tauri::command]
-pub(crate) fn git_merge_continue(cwd: String) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_merge_continue(cwd: String) -> Result<GitPushPullResult, String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["-c", "core.editor=true", "merge", "--continue"])
@@ -483,7 +483,7 @@ pub(crate) fn git_merge_continue(cwd: String) -> Result<GitPushPullResult, Strin
 }
 
 #[tauri::command]
-pub(crate) fn git_pull(cwd: String, rebase: bool) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_pull(cwd: String, rebase: bool) -> Result<GitPushPullResult, String> {
     let _t0 = Instant::now();
     // Pass the strategy flag EXPLICITLY so the user's pull-mode choice is
     // authoritative. A bare `git pull` defers to the ambient `pull.rebase`
@@ -514,7 +514,7 @@ pub(crate) fn git_pull(cwd: String, rebase: bool) -> Result<GitPushPullResult, S
 // ─── Git rebase ────────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_rebase_action(cwd: String, action: String) -> Result<(), String> {
+pub(crate) async fn git_rebase_action(cwd: String, action: String) -> Result<(), String> {
     let arg = match action.as_str() {
         "continue" | "abort" | "skip" => action.as_str(),
         _ => return Err(format!("Unknown rebase action '{}'", action)),
@@ -540,7 +540,7 @@ pub(crate) fn git_rebase_action(cwd: String, action: String) -> Result<(), Strin
 // ─── Git discard ───────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_discard(cwd: String, paths: Vec<String>, untracked: bool) -> Result<(), String> {
+pub(crate) async fn git_discard(cwd: String, paths: Vec<String>, untracked: bool) -> Result<(), String> {
     if untracked {
         let mut cmd = git_cmd();
         cmd.arg("clean").arg("-f").arg("--").current_dir(&cwd);
@@ -570,7 +570,7 @@ pub(crate) fn git_discard(cwd: String, paths: Vec<String>, untracked: bool) -> R
 // ─── Git branches ──────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_branches(cwd: String) -> Result<Vec<GitBranch>, String> {
+pub(crate) async fn git_branches(cwd: String) -> Result<Vec<GitBranch>, String> {
     let main_name = get_main_branch_name(&cwd);
     let output = git_cmd()
         .args([
@@ -683,7 +683,7 @@ fn get_main_branch_name(cwd: &str) -> String {
 }
 
 #[tauri::command]
-pub(crate) fn git_create_branch(cwd: String, name: String, checkout: bool, start_point: Option<String>) -> Result<(), String> {
+pub(crate) async fn git_create_branch(cwd: String, name: String, checkout: bool, start_point: Option<String>) -> Result<(), String> {
     if checkout {
         let mut args = vec!["checkout", "-b", &name];
         if let Some(ref sp) = start_point { args.push(sp); }
@@ -717,7 +717,7 @@ pub(crate) fn git_create_branch(cwd: String, name: String, checkout: bool, start
 }
 
 #[tauri::command]
-pub(crate) fn git_switch_branch(cwd: String, name: String) -> Result<(), String> {
+pub(crate) async fn git_switch_branch(cwd: String, name: String) -> Result<(), String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["checkout", &name])
@@ -733,7 +733,7 @@ pub(crate) fn git_switch_branch(cwd: String, name: String) -> Result<(), String>
 }
 
 #[tauri::command]
-pub(crate) fn git_delete_branch(cwd: String, name: String, force: bool) -> Result<(), String> {
+pub(crate) async fn git_delete_branch(cwd: String, name: String, force: bool) -> Result<(), String> {
     let flag = if force { "-D" } else { "-d" };
     let _t0 = Instant::now();
     let output = git_cmd()
@@ -750,7 +750,7 @@ pub(crate) fn git_delete_branch(cwd: String, name: String, force: bool) -> Resul
 }
 
 #[tauri::command]
-pub(crate) fn git_delete_remote_branch(cwd: String, remote: String, name: String) -> Result<(), String> {
+pub(crate) async fn git_delete_remote_branch(cwd: String, remote: String, name: String) -> Result<(), String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["push", &remote, "--delete", &name])
@@ -766,7 +766,7 @@ pub(crate) fn git_delete_remote_branch(cwd: String, remote: String, name: String
 }
 
 #[tauri::command]
-pub(crate) fn git_rename_branch(cwd: String, old_name: String, new_name: String) -> Result<(), String> {
+pub(crate) async fn git_rename_branch(cwd: String, old_name: String, new_name: String) -> Result<(), String> {
     let output = git_cmd()
         .args(["branch", "-m", &old_name, &new_name])
         .current_dir(&cwd)
@@ -782,7 +782,7 @@ pub(crate) fn git_rename_branch(cwd: String, old_name: String, new_name: String)
 // ─── Git stash ────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_stash(cwd: String, message: Option<String>) -> Result<(), String> {
+pub(crate) async fn git_stash(cwd: String, message: Option<String>) -> Result<(), String> {
     let mut args: Vec<&str> = vec!["stash", "push", "--include-untracked"];
     let trimmed = message.as_deref().map(str::trim).filter(|s| !s.is_empty());
     if let Some(m) = trimmed {
@@ -804,7 +804,7 @@ pub(crate) fn git_stash(cwd: String, message: Option<String>) -> Result<(), Stri
 }
 
 #[tauri::command]
-pub(crate) fn git_stash_pop(cwd: String) -> Result<(), String> {
+pub(crate) async fn git_stash_pop(cwd: String) -> Result<(), String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["stash", "pop"])
@@ -820,7 +820,7 @@ pub(crate) fn git_stash_pop(cwd: String) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_stash_list(cwd: String) -> Result<Vec<StashEntry>, String> {
+pub(crate) async fn git_stash_list(cwd: String) -> Result<Vec<StashEntry>, String> {
     let output = git_cmd()
         .args(["stash", "list", "--format=%H%x00%gd%x00%gs%x00%ai"])
         .current_dir(&cwd)
@@ -874,7 +874,7 @@ pub(crate) fn git_stash_list(cwd: String) -> Result<Vec<StashEntry>, String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_stash_apply(cwd: String, index: usize) -> Result<(), String> {
+pub(crate) async fn git_stash_apply(cwd: String, index: usize) -> Result<(), String> {
     let stash_ref = format!("stash@{{{}}}", index);
     let _t0 = Instant::now();
     let output = git_cmd()
@@ -893,7 +893,7 @@ pub(crate) fn git_stash_apply(cwd: String, index: usize) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_stash_drop(cwd: String, index: usize) -> Result<(), String> {
+pub(crate) async fn git_stash_drop(cwd: String, index: usize) -> Result<(), String> {
     let stash_ref = format!("stash@{{{}}}", index);
     let output = git_cmd()
         .args(["stash", "drop", &stash_ref])
@@ -910,7 +910,7 @@ pub(crate) fn git_stash_drop(cwd: String, index: usize) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_stash_clear(cwd: String) -> Result<(), String> {
+pub(crate) async fn git_stash_clear(cwd: String) -> Result<(), String> {
     let output = git_cmd()
         .args(["stash", "clear"])
         .current_dir(&cwd)
@@ -926,7 +926,7 @@ pub(crate) fn git_stash_clear(cwd: String) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_stash_show(cwd: String, index: usize) -> Result<String, String> {
+pub(crate) async fn git_stash_show(cwd: String, index: usize) -> Result<String, String> {
     let stash_ref = format!("stash@{{{}}}", index);
     let output = git_cmd()
         .args(["stash", "show", "-p", &stash_ref])
@@ -945,7 +945,7 @@ pub(crate) fn git_stash_show(cwd: String, index: usize) -> Result<String, String
 // ─── Cherry-pick ─────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_cherry_pick(cwd: String, hashes: Vec<String>) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_cherry_pick(cwd: String, hashes: Vec<String>) -> Result<GitPushPullResult, String> {
     let git = git_binary();
     let mut args = vec!["cherry-pick".to_string()];
     args.extend(hashes);
@@ -970,7 +970,7 @@ pub(crate) fn git_cherry_pick(cwd: String, hashes: Vec<String>) -> Result<GitPus
 }
 
 #[tauri::command]
-pub(crate) fn git_cherry_pick_abort(cwd: String) -> Result<(), String> {
+pub(crate) async fn git_cherry_pick_abort(cwd: String) -> Result<(), String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["cherry-pick", "--abort"])
@@ -988,7 +988,7 @@ pub(crate) fn git_cherry_pick_abort(cwd: String) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_cherry_pick_continue(cwd: String) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_cherry_pick_continue(cwd: String) -> Result<GitPushPullResult, String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["cherry-pick", "--continue"])
@@ -1011,7 +1011,7 @@ pub(crate) fn git_cherry_pick_continue(cwd: String) -> Result<GitPushPullResult,
 // ─── Commit context menu operations ─────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_checkout_commit(cwd: String, sha: String) -> Result<(), String> {
+pub(crate) async fn git_checkout_commit(cwd: String, sha: String) -> Result<(), String> {
     let _t0 = Instant::now();
     let output = git_cmd()
         .args(["checkout", &sha])
@@ -1029,7 +1029,7 @@ pub(crate) fn git_checkout_commit(cwd: String, sha: String) -> Result<(), String
 }
 
 #[tauri::command]
-pub(crate) fn git_reset_to_commit(cwd: String, sha: String, mode: String) -> Result<(), String> {
+pub(crate) async fn git_reset_to_commit(cwd: String, sha: String, mode: String) -> Result<(), String> {
     let flag = match mode.as_str() {
         "soft" => "--soft",
         "hard" => "--hard",
@@ -1053,7 +1053,7 @@ pub(crate) fn git_reset_to_commit(cwd: String, sha: String, mode: String) -> Res
 }
 
 #[tauri::command]
-pub(crate) fn git_revert_commit(cwd: String, sha: String, mainline: Option<u32>) -> Result<GitPushPullResult, String> {
+pub(crate) async fn git_revert_commit(cwd: String, sha: String, mainline: Option<u32>) -> Result<GitPushPullResult, String> {
     let mut args = vec!["revert".to_string(), "--no-edit".to_string()];
     if let Some(m) = mainline {
         args.push("-m".to_string());
@@ -1080,7 +1080,7 @@ pub(crate) fn git_revert_commit(cwd: String, sha: String, mainline: Option<u32>)
 // ─── Git tags ──────────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_create_tag(cwd: String, name: String, sha: String, message: Option<String>) -> Result<(), String> {
+pub(crate) async fn git_create_tag(cwd: String, name: String, sha: String, message: Option<String>) -> Result<(), String> {
     let tag_name = name.clone();
     let trimmed = message.as_deref().map(str::trim).filter(|s| !s.is_empty());
     let args: Vec<String> = if let Some(m) = trimmed {
@@ -1127,7 +1127,7 @@ pub(crate) fn git_create_tag(cwd: String, name: String, sha: String, message: Op
 }
 
 #[tauri::command]
-pub(crate) fn git_list_tags(cwd: String) -> Result<Vec<TagEntry>, String> {
+pub(crate) async fn git_list_tags(cwd: String) -> Result<Vec<TagEntry>, String> {
     let sep = "\x1f";
     let fmt = format!(
         "%(refname:short){s}%(objecttype){s}%(objectname:short){s}%(*objectname:short){s}%(taggerdate:iso){s}%(creatordate:iso){s}%(contents:subject)",
@@ -1167,7 +1167,7 @@ pub(crate) fn git_list_tags(cwd: String) -> Result<Vec<TagEntry>, String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_delete_tag(cwd: String, name: String) -> Result<(), String> {
+pub(crate) async fn git_delete_tag(cwd: String, name: String) -> Result<(), String> {
     let output = git_cmd()
         .args(["tag", "-d", &name])
         .current_dir(&cwd)
@@ -1180,7 +1180,7 @@ pub(crate) fn git_delete_tag(cwd: String, name: String) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_push_tags(cwd: String, remote: String, mode: String, tag_name: Option<String>) -> Result<(), String> {
+pub(crate) async fn git_push_tags(cwd: String, remote: String, mode: String, tag_name: Option<String>) -> Result<(), String> {
     let mut args = vec!["push".to_string(), remote.clone()];
     match mode.as_str() {
         "single" => {
@@ -1205,7 +1205,7 @@ pub(crate) fn git_push_tags(cwd: String, remote: String, mode: String, tag_name:
 }
 
 #[tauri::command]
-pub(crate) fn git_unpushed_tags(cwd: String, remote: String) -> Result<Vec<String>, String> {
+pub(crate) async fn git_unpushed_tags(cwd: String, remote: String) -> Result<Vec<String>, String> {
     // Local tags
     let local_out = git_cmd()
         .args(["tag", "-l"])
@@ -1243,7 +1243,7 @@ pub(crate) fn git_unpushed_tags(cwd: String, remote: String) -> Result<Vec<Strin
 }
 
 #[tauri::command]
-pub(crate) fn git_delete_remote_tag(cwd: String, remote: String, name: String) -> Result<(), String> {
+pub(crate) async fn git_delete_remote_tag(cwd: String, remote: String, name: String) -> Result<(), String> {
     let output = git_cmd()
         .args(["push", &remote, "--delete", &format!("refs/tags/{}", name)])
         .current_dir(&cwd)
@@ -1258,7 +1258,7 @@ pub(crate) fn git_delete_remote_tag(cwd: String, remote: String, name: String) -
 // ─── Git conflict check ─────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_conflict_check(cwd: String, target_branch: String) -> Result<ConflictRisk, String> {
+pub(crate) async fn git_conflict_check(cwd: String, target_branch: String) -> Result<ConflictRisk, String> {
     let git = git_binary();
 
     let base_out = hidden_cmd(&git)
@@ -1296,7 +1296,7 @@ pub(crate) fn git_conflict_check(cwd: String, target_branch: String) -> Result<C
 // ─── Git submodules ─────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_submodule_list(cwd: String) -> Result<Vec<SubmoduleEntry>, String> {
+pub(crate) async fn git_submodule_list(cwd: String) -> Result<Vec<SubmoduleEntry>, String> {
     let gitmodules = std::path::Path::new(&cwd).join(".gitmodules");
     if !gitmodules.exists() {
         return Ok(Vec::new());
@@ -1391,7 +1391,7 @@ pub(crate) fn git_submodule_list(cwd: String) -> Result<Vec<SubmoduleEntry>, Str
 }
 
 #[tauri::command]
-pub(crate) fn git_submodule_init(cwd: String) -> Result<(), String> {
+pub(crate) async fn git_submodule_init(cwd: String) -> Result<(), String> {
     let output = git_cmd()
         .args(["submodule", "init"])
         .current_dir(&cwd)
@@ -1407,7 +1407,7 @@ pub(crate) fn git_submodule_init(cwd: String) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_submodule_update(cwd: String, init: bool, recursive: bool) -> Result<(), String> {
+pub(crate) async fn git_submodule_update(cwd: String, init: bool, recursive: bool) -> Result<(), String> {
     let mut cmd = git_cmd();
     cmd.arg("submodule").arg("update");
     if init {
@@ -1431,7 +1431,7 @@ pub(crate) fn git_submodule_update(cwd: String, init: bool, recursive: bool) ->
 }
 
 #[tauri::command]
-pub(crate) fn git_submodule_add(cwd: String, url: String, path: String) -> Result<(), String> {
+pub(crate) async fn git_submodule_add(cwd: String, url: String, path: String) -> Result<(), String> {
     let output = git_cmd()
         .args(["submodule", "add", &url, &path])
         .current_dir(&cwd)
@@ -1449,7 +1449,7 @@ pub(crate) fn git_submodule_add(cwd: String, url: String, path: String) -> Resul
 /// List the local branches of a submodule. `submodule_path` is relative to `cwd`.
 /// Used by the branch picker's "Submodules" section (v2.15.1).
 #[tauri::command]
-pub(crate) fn git_submodule_branches(
+pub(crate) async fn git_submodule_branches(
     cwd: String,
     submodule_path: String,
 ) -> Result<Vec<SubmoduleBranch>, String> {
@@ -1494,7 +1494,7 @@ pub(crate) fn git_submodule_branches(
 /// scan stays cheap even on large histories (v2.15.1). Used to badge commits
 /// in the Git Tree with the submodule SHA they point to.
 #[tauri::command]
-pub(crate) fn git_commit_submodule_changes(
+pub(crate) async fn git_commit_submodule_changes(
     cwd: String,
 ) -> Result<HashMap<String, Vec<CommitSubmoduleChange>>, String> {
     let gitmodules = std::path::Path::new(&cwd).join(".gitmodules");
@@ -1598,7 +1598,7 @@ pub(crate) fn git_commit_submodule_changes(
 // ─── Worktrees ────────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_worktree_list(cwd: String) -> Result<Vec<WorktreeEntry>, String> {
+pub(crate) async fn git_worktree_list(cwd: String) -> Result<Vec<WorktreeEntry>, String> {
     let output = git_cmd()
         .args(["worktree", "list", "--porcelain"])
         .current_dir(&cwd)
@@ -1676,7 +1676,7 @@ pub(crate) fn git_worktree_list(cwd: String) -> Result<Vec<WorktreeEntry>, Strin
 }
 
 #[tauri::command]
-pub(crate) fn git_worktree_add(
+pub(crate) async fn git_worktree_add(
     cwd: String,
     path: String,
     branch: String,
@@ -1739,7 +1739,7 @@ pub(crate) fn git_worktree_add(
 }
 
 #[tauri::command]
-pub(crate) fn git_worktree_remove(cwd: String, path: String, force: Option<bool>) -> Result<(), String> {
+pub(crate) async fn git_worktree_remove(cwd: String, path: String, force: Option<bool>) -> Result<(), String> {
     let mut cmd = git_cmd();
     cmd.arg("worktree").arg("remove");
     if force.unwrap_or(false) {
@@ -1762,7 +1762,7 @@ pub(crate) fn git_worktree_remove(cwd: String, path: String, force: Option<bool>
 }
 
 #[tauri::command]
-pub(crate) fn git_worktree_prune(cwd: String) -> Result<(), String> {
+pub(crate) async fn git_worktree_prune(cwd: String) -> Result<(), String> {
     let output = git_cmd()
         .args(["worktree", "prune"])
         .current_dir(&cwd)
@@ -1779,8 +1779,8 @@ pub(crate) fn git_worktree_prune(cwd: String) -> Result<(), String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_worktree_status_all(cwd: String) -> Result<Vec<WorkspaceRepoStatus>, String> {
-    let worktrees = git_worktree_list(cwd)?;
+pub(crate) async fn git_worktree_status_all(cwd: String) -> Result<Vec<WorkspaceRepoStatus>, String> {
+    let worktrees = git_worktree_list(cwd).await?;
 
     let statuses = worktrees.into_par_iter().map(|wt| {
         let path = wt.path.clone();
@@ -1842,7 +1842,7 @@ pub(crate) fn git_worktree_status_all(cwd: String) -> Result<Vec<WorkspaceRepoSt
 }
 
 #[tauri::command]
-pub(crate) fn git_worktree_repair(cwd: String, paths: Vec<String>) -> Result<(), String> {
+pub(crate) async fn git_worktree_repair(cwd: String, paths: Vec<String>) -> Result<(), String> {
     let mut cmd = git_cmd();
     cmd.args(["worktree", "repair"]);
     for p in &paths {
@@ -1919,7 +1919,7 @@ fn parse_clone_progress(line: &str) -> Option<CloneProgress> {
 }
 
 #[tauri::command]
-pub(crate) fn git_clone(url: String, dest: String, app_handle: tauri::AppHandle) -> Result<String, String> {
+pub(crate) async fn git_clone(url: String, dest: String, app_handle: tauri::AppHandle) -> Result<String, String> {
     use std::io::Read;
     use tauri::Emitter;
 
@@ -1985,7 +1985,7 @@ pub(crate) fn git_clone(url: String, dest: String, app_handle: tauri::AppHandle)
 }
 
 #[tauri::command]
-pub(crate) fn gh_fork(url: String, parent_dir: String) -> Result<String, String> {
+pub(crate) async fn gh_fork(url: String, parent_dir: String) -> Result<String, String> {
     let url_trim = url.trim();
     let parent_trim = parent_dir.trim();
     if url_trim.is_empty() {
@@ -2029,7 +2029,7 @@ pub(crate) fn gh_fork(url: String, parent_dir: String) -> Result<String, String>
 // ─── Git hooks ─────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_hook_list(cwd: String) -> Result<Vec<HookEntry>, String> {
+pub(crate) async fn git_hook_list(cwd: String) -> Result<Vec<HookEntry>, String> {
     if cwd.trim().is_empty() { return Err("cwd must not be empty".to_string()); }
     let repo = PathBuf::from(&cwd);
     let hooks_dir = repo.join(".git").join("hooks");
@@ -2101,7 +2101,7 @@ pub(crate) fn git_hook_list(cwd: String) -> Result<Vec<HookEntry>, String> {
 }
 
 #[tauri::command]
-pub(crate) fn git_hook_toggle(cwd: String, name: String, enabled: bool) -> Result<(), String> {
+pub(crate) async fn git_hook_toggle(cwd: String, name: String, enabled: bool) -> Result<(), String> {
     if name.contains('/') || name.contains('\\') || name.contains('.') {
         return Err(format!("Invalid hook name: {}", name));
     }
@@ -2127,7 +2127,7 @@ pub(crate) fn git_hook_toggle(cwd: String, name: String, enabled: bool) -> Resul
 }
 
 #[tauri::command]
-pub(crate) fn git_hook_create(cwd: String, name: String, content: String) -> Result<(), String> {
+pub(crate) async fn git_hook_create(cwd: String, name: String, content: String) -> Result<(), String> {
     if name.contains('/') || name.contains('\\') || name.contains('.') {
         return Err(format!("Invalid hook name: {}", name));
     }
@@ -2164,7 +2164,7 @@ pub(crate) fn git_hook_create(cwd: String, name: String, content: String) -> Res
 }
 
 #[tauri::command]
-pub(crate) fn git_hook_delete(cwd: String, name: String) -> Result<(), String> {
+pub(crate) async fn git_hook_delete(cwd: String, name: String) -> Result<(), String> {
     if name.contains('/') || name.contains('\\') || name.contains('.') {
         return Err(format!("Invalid hook name: {}", name));
     }
@@ -2255,10 +2255,10 @@ fn detect_agent_tool(worktree_path: &str) -> Option<String> {
 }
 
 #[tauri::command]
-pub(crate) fn agent_session_list(cwd: String) -> Result<Vec<AgentSession>, String> {
+pub(crate) async fn agent_session_list(cwd: String) -> Result<Vec<AgentSession>, String> {
     if cwd.trim().is_empty() { return Err("cwd must not be empty".to_string()); }
     let path = PathBuf::from(&cwd);
-    let worktrees = git_worktree_list(path.to_string_lossy().to_string())?;
+    let worktrees = git_worktree_list(path.to_string_lossy().to_string()).await?;
 
     let mut cwds_cache: HashMap<String, HashSet<String>> = HashMap::new();
 
@@ -2317,7 +2317,7 @@ pub(crate) fn agent_session_list(cwd: String) -> Result<Vec<AgentSession>, Strin
 }
 
 #[tauri::command]
-pub(crate) fn agent_session_launch(cwd: String, tool: String) -> Result<(), String> {
+pub(crate) async fn agent_session_launch(cwd: String, tool: String) -> Result<(), String> {
     if cwd.trim().is_empty() { return Err("cwd must not be empty".to_string()); }
     let path = PathBuf::from(&cwd);
     let binary = match tool.as_str() {
@@ -2340,7 +2340,7 @@ pub(crate) fn agent_session_launch(cwd: String, tool: String) -> Result<(), Stri
 // ─── Shortlog ────────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_shortlog(cwd: String) -> Result<Vec<ShortlogEntry>, String> {
+pub(crate) async fn git_shortlog(cwd: String) -> Result<Vec<ShortlogEntry>, String> {
     let output = git_cmd()
         .args(["shortlog", "-sne", "HEAD"])
         .current_dir(&cwd)
@@ -2390,7 +2390,7 @@ pub(crate) async fn git_exec(cwd: String, args: Vec<String>) -> Result<TerminalR
 }
 
 #[tauri::command]
-pub(crate) fn git_autocomplete(cwd: String, partial: String) -> Result<Vec<String>, String> {
+pub(crate) async fn git_autocomplete(cwd: String, partial: String) -> Result<Vec<String>, String> {
     let mut suggestions = Vec::new();
 
     if !partial.contains(' ') {
@@ -2435,7 +2435,7 @@ pub(crate) fn git_autocomplete(cwd: String, partial: String) -> Result<Vec<Strin
 // ─── Git config ────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn set_git_config(git_path: String) -> Result<(), String> {
+pub(crate) async fn set_git_config(git_path: String) -> Result<(), String> {
     let mut binary = GIT_BINARY
         .get_or_init(|| Mutex::new("git".to_string()))
         .lock()
@@ -2451,7 +2451,7 @@ pub(crate) fn set_git_config(git_path: String) -> Result<(), String> {
 // ─── Conflicted files ──────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn get_conflicted_files(cwd: String) -> Result<Vec<String>, String> {
+pub(crate) async fn get_conflicted_files(cwd: String) -> Result<Vec<String>, String> {
     let output = git_cmd()
         .args(["diff", "--name-only", "--diff-filter=U"])
         .current_dir(&cwd)
@@ -2528,7 +2528,7 @@ pub(crate) async fn git_remote_info(cwd: String) -> Result<RemoteInfo, String> {
 // ─── Git user ────────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_get_user(cwd: String) -> Result<serde_json::Value, String> {
+pub(crate) async fn git_get_user(cwd: String) -> Result<serde_json::Value, String> {
     let name_out = git_cmd()
         .args(["config", "user.name"])
         .current_dir(&cwd)
@@ -2548,7 +2548,7 @@ pub(crate) fn git_get_user(cwd: String) -> Result<serde_json::Value, String> {
 
 /// Detect monorepo workspaces (pnpm, npm, yarn).
 #[tauri::command]
-pub(crate) fn detect_monorepo(cwd: String) -> Result<MonorepoInfo, String> {
+pub(crate) async fn detect_monorepo(cwd: String) -> Result<MonorepoInfo, String> {
     let cwd_path = std::path::Path::new(&cwd);
 
     // Check pnpm-workspace.yaml
@@ -2595,7 +2595,7 @@ pub(crate) fn detect_monorepo(cwd: String) -> Result<MonorepoInfo, String> {
 // ─── Read .gitwandrc ─────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn read_gitwandrc(cwd: String) -> String {
+pub(crate) async fn read_gitwandrc(cwd: String) -> String {
     let cwd_path = std::path::Path::new(&cwd);
 
     // 1. .gitwandrc
@@ -2638,7 +2638,7 @@ pub(crate) fn read_gitwandrc(cwd: String) -> String {
 /// localStorage. It runs through `/bin/sh -c`, so the user has full shell
 /// access, which is intentional (same model as git hooks).
 #[tauri::command]
-pub(crate) fn shell_exec(cwd: String, command: String) -> Result<String, String> {
+pub(crate) async fn shell_exec(cwd: String, command: String) -> Result<String, String> {
     if cwd.trim().is_empty() {
         return Err("cwd must not be empty".to_string());
     }
@@ -2675,7 +2675,7 @@ pub(crate) fn shell_exec(cwd: String, command: String) -> Result<String, String>
 /// Returns the GitHub login of the currently authenticated `gh` user.
 /// Calls `gh api user --jq .login` — fast, no repo context needed.
 #[tauri::command]
-pub(crate) fn gh_current_user() -> Result<String, String> {
+pub(crate) async fn gh_current_user() -> Result<String, String> {
     // Settings-managed token present → resolve via REST (no `gh` needed).
     if let Some(tok) = crate::commands::github_api::settings_github_token() {
         return crate::commands::github_api::rest_current_user(&tok);
@@ -2706,7 +2706,7 @@ pub(crate) fn gh_current_user() -> Result<String, String> {
 // caller (e.g. parity probes); not worth it. Documented here so future
 // readers don't think it's missing the prefix by accident.
 #[tauri::command]
-pub(crate) fn pr_files(cwd: String, number: i64) -> Result<Vec<String>, String> {
+pub(crate) async fn pr_files(cwd: String, number: i64) -> Result<Vec<String>, String> {
     if let Some(tok) = crate::commands::github_api::settings_github_token() {
         return crate::commands::github_api::rest_pr_files(&cwd, number, &tok);
     }
@@ -2738,7 +2738,7 @@ pub(crate) fn pr_files(cwd: String, number: i64) -> Result<Vec<String>, String>
 // common ancestor (unrelated histories, empty repo).
 
 #[tauri::command]
-pub(crate) fn git_merge_base(cwd: String, ref1: String, ref2: String) -> Result<String, String> {
+pub(crate) async fn git_merge_base(cwd: String, ref1: String, ref2: String) -> Result<String, String> {
     let output = git_cmd()
         .args(["merge-base", &ref1, &ref2])
         .current_dir(&cwd)
@@ -2758,7 +2758,7 @@ pub(crate) fn git_merge_base(cwd: String, ref1: String, ref2: String) -> Result<
 // arbitrary schemes (file://, etc.).
 
 #[tauri::command]
-pub(crate) fn open_url(url: String) -> Result<(), String> {
+pub(crate) async fn open_url(url: String) -> Result<(), String> {
     if !(url.starts_with("https://") || url.starts_with("http://")) {
         return Err("Refusing to open non-http(s) URL".to_string());
     }
@@ -2781,7 +2781,7 @@ pub(crate) fn open_url(url: String) -> Result<(), String> {
 // ─── Open in external editor ─────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn open_in_editor(cwd: String, path: String, editor: String) -> Result<(), String> {
+pub(crate) async fn open_in_editor(cwd: String, path: String, editor: String) -> Result<(), String> {
     let editor_cmd = if editor.trim().is_empty() {
         "code".to_string()
     } else {
@@ -2798,6 +2798,6 @@ pub(crate) fn open_in_editor(cwd: String, path: String, editor: String) -> Resul
 // ─── Transparent command log ──────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn get_command_log() -> Vec<crate::git::cmd::CmdLogEntry> {
+pub(crate) async fn get_command_log() -> Vec<crate::git::cmd::CmdLogEntry> {
     crate::git::cmd::cmd_log_snapshot()
 }
diff --git a/apps/desktop/src-tauri/src/commands/read.rs b/apps/desktop/src-tauri/src/commands/read.rs
index 62560260..5af5df4a 100644
--- a/apps/desktop/src-tauri/src/commands/read.rs
+++ b/apps/desktop/src-tauri/src/commands/read.rs
@@ -39,7 +39,7 @@ use crate::types::*;
 // fallback ensures we never regress vs. the v2.8 baseline.
 
 #[tauri::command]
-pub(crate) fn git_status(cwd: String) -> Result<GitStatus, String> {
+pub(crate) async fn git_status(cwd: String) -> Result<GitStatus, String> {
     match git_status_libgit2(&cwd) {
         Ok(s) => Ok(s),
         Err(e) => {
@@ -537,7 +537,7 @@ fn compute_main_commit_count(cwd: &str, branch: &str) -> i32 {
 // ─── Git diff ────────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_diff(cwd: String, path: String, staged: bool) -> Result<GitDiff, String> {
+pub(crate) async fn git_diff(cwd: String, path: String, staged: bool) -> Result<GitDiff, String> {
     let mut cmd = git_cmd();
     if staged {
         cmd.arg("diff").arg("--cached");
@@ -603,7 +603,7 @@ pub(crate) fn git_diff(cwd: String, path: String, staged: bool) -> Result<GitDif
 // ─── Git log ─────────────────────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_log(
+pub(crate) async fn git_log(
     cwd: String,
     count: Option<i32>,
     all: Option<bool>,
@@ -712,7 +712,7 @@ pub(crate) fn git_log(
 /// .git directory directly — more reliable than parsing locale-dependent
 /// `git status` messages.
 #[tauri::command]
-pub(crate) fn git_repo_state(cwd: String) -> Result<RepoOperationState, String> {
+pub(crate) async fn git_repo_state(cwd: String) -> Result<RepoOperationState, String> {
     let git_dir = resolve_git_dir(&cwd)?;
 
     // ── Plain or interactive rebase (git >= 2.26: rebase-merge dir) ───────
@@ -805,7 +805,7 @@ pub(crate) fn git_repo_state(cwd: String) -> Result<RepoOperationState, String>
 // ─── Git show (commit diff) ──────────────────────────────────
 
 #[tauri::command]
-pub(crate) fn git_show(cwd: String, hash: String) -> Result<Vec<GitDiff>, String> {
+pub(crate) async fn git_show(cwd: String, hash: String) -> Result<Vec<GitDiff>, String> {
     let output = git_cmd()
         .args(["show", "-m", "--first-parent", "--format=", &hash])
         .current_dir(&cwd)
@@ -961,7 +961,7 @@ pub(crate) fn git_show(cwd: String, hash: String) -> Result<Vec<GitDiff>, String
 // ─── File log (v1.9) — pickaxe + line-range ──────────────
 
 #[tauri::command]
-pub(crate) fn git_file_log(cwd: String, path: String, count: Option<u32>) -> Result<Vec<FileLogEntry>, String> {
+pub(crate) async fn git_file_log(cwd: String, path: String, count: Option<u32>) -> Result<Vec<FileLogEntry>, String> {
     let n = count.unwrap_or(50).to_string();
     let fmt = "%H\n%h\n%an\n%aI\n%s\n%b\n---END---";
     let output = git_cmd()
@@ -978,7 +978,7 @@ pub(crate) fn git_file_log(cwd: String, path: String, count: Option<u32>) -> Res
 /// Pickaxe: find commits that added or removed `search` string.
 /// mode: "S" (literal string) | "G" (regex)
 #[tauri::command]
-pub(crate) fn git_file_log_pickaxe(cwd: String, path: String, search: String, mode: String) -> Result<Vec<FileLogEntry>, String> {
+pub(crate) async fn git_file_log_pickaxe(cwd: String, path: String, search: String, mode: String) -> Result<Vec<FileLogEntry>, String> {
     let flag = if mode == "G" { "-G" } else { "-S" };
     let fmt = "%H\n%h\n%an\n%aI\n%s\n%b\n---END---";
     let output = git_cmd()
@@ -995,7 +995,7 @@ pub(crate) fn git_file_log_pickaxe(cwd: String, path: String, search: String, mo
 /// Line-range history: commits that touched lines [start..end] in path.
 /// Uses git log -L <start>,<end>:<path> (no --follow; incompatible with -L).
 #[tauri::command]
-pub(crate) fn git_file_log_range(cwd: String, path: String, start_line: u32, end_line: u32) -> Result<Vec<FileLogEntry>, String> {
+pub(crate) async fn git_file_log_range(cwd: String, path: String, start_line: u32, end_line: u32) -> Result<Vec<FileLogEntry>, String> {
     let range = format!("{},{}:{}", start_line, end_line, path);
     let fmt = "%H\n%h\n%an\n%aI\n%s\n%b\n---END---";
     let output = git_cmd()
@@ -1012,7 +1012,7 @@ pub(crate) fn git_file_log_range(cwd: String, path: String, start_line: u32, end
 /// Run `git blame --porcelain` on a file.
 /// algorithm: "histogram" | "patience" | "minimal" | "myers" (default "histogram").
 #[tauri::command]
-pub(crate) fn git_blame(cwd: String, path: String, algorithm: Option<String>) -> Result<Vec<BlameLine>, String> {
+pub(crate) async fn git_blame(cwd: String, path: String, algorithm: Option<String>) -> Result<Vec<BlameLine>, String> {
     let algo = algorithm.as_deref().unwrap_or("histogram");
     let diff_algo_flag = format!("--diff-algorithm={}", algo);
     let output = git_cmd()
@@ -1079,7 +1079,7 @@ pub(crate) fn git_blame(cwd: String, path: String, algorithm: Option<String>) ->
 //   7. Retourner la liste brute — le résolveur tourne côté frontend (TypeScript)
 
 #[tauri::command]
-pub(crate) fn preview_merge(cwd: String, source_branch: String) -> Result<Vec<FileMergePreview>, String> {
+pub(crate) async fn preview_merge(cwd: String, source_branch: String) -> Result<Vec<FileMergePreview>, String> {
     let git = git_binary();
 
     // 1. Merge-base
@@ -1254,7 +1254,7 @@ fn merge_file_preview(
 /// Excludes the current branch and the default branch itself.
 /// Equivalent to `git branch --merged <default_branch> --format="%(refname:short)"`.
 #[tauri::command]
-pub(crate) fn git_branch_merged(cwd: String) -> Result<Vec<String>, String> {
+pub(crate) async fn git_branch_merged(cwd: String) -> Result<Vec<String>, String> {
     use crate::git::cmd::git_cmd;
 
     // Resolve default branch (main / master / trunk / …)
@@ -1305,7 +1305,7 @@ pub(crate) fn git_branch_merged(cwd: String) -> Result<Vec<String>, String> {
 
 /// Return the effective git user.name and user.email for the given repo.
 #[tauri::command]
-pub(crate) fn git_config_identity(cwd: String) -> Result<(String, String), String> {
+pub(crate) async fn git_config_identity(cwd: String) -> Result<(String, String), String> {
     use crate::git::cmd::git_cmd;
 
     let name_out = git_cmd()
@@ -1331,7 +1331,7 @@ pub(crate) fn git_config_identity(cwd: String) -> Result<(String, String), Strin
 /// Return the absolute path of the commit.template configured for the repo,
 /// with ~ expanded to the home directory. Returns null (None) if not set.
 #[tauri::command]
-pub(crate) fn git_commit_template_path(cwd: String) -> Result<Option<String>, String> {
+pub(crate) async fn git_commit_template_path(cwd: String) -> Result<Option<String>, String> {
     use crate::git::cmd::git_cmd;
 
     let output = git_cmd()
diff --git a/apps/desktop/src-tauri/src/commands/workspace.rs b/apps/desktop/src-tauri/src/commands/workspace.rs
index 6c5a81e6..114a591a 100644
--- a/apps/desktop/src-tauri/src/commands/workspace.rs
+++ b/apps/desktop/src-tauri/src/commands/workspace.rs
@@ -17,7 +17,7 @@ use rayon::prelude::*;
 
 /// Read a `.gitwand-workspace.json` from the given directory.
 #[tauri::command]
-pub(crate) fn workspace_read(path: String) -> Result<WorkspaceConfig, String> {
+pub(crate) async fn workspace_read(path: String) -> Result<WorkspaceConfig, String> {
     let dir = std::path::Path::new(&path);
     let file = dir.join(".gitwand-workspace.json");
     if !file.exists() {
@@ -31,7 +31,7 @@ pub(crate) fn workspace_read(path: String) -> Result<WorkspaceConfig, String> {
 
 /// Write a `.gitwand-workspace.json` to the given directory.
 #[tauri::command]
-pub(crate) fn workspace_write(path: String, workspace: WorkspaceConfig) -> Result<(), String> {
+pub(crate) async fn workspace_write(path: String, workspace: WorkspaceConfig) -> Result<(), String> {
     let dir = std::path::Path::new(&path);
     let file = dir.join(".gitwand-workspace.json");
     std::fs::create_dir_all(dir)
@@ -48,7 +48,7 @@ pub(crate) fn workspace_write(path: String, workspace: WorkspaceConfig) -> Resul
 /// Order is preserved by `into_par_iter().map(...).collect::<Vec<_>>()`
 /// because `Vec<T>::into_par_iter()` is an `IndexedParallelIterator`.
 #[tauri::command]
-pub(crate) fn workspace_status_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoStatus> {
+pub(crate) async fn workspace_status_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoStatus> {
     repos.into_par_iter().map(|repo| {
         let path = repo.path.clone();
         let name = repo.name.clone();
@@ -75,14 +75,14 @@ pub(crate) fn workspace_status_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRe
 /// Network operations parallelized via rayon (P3.2): for a workspace with
 /// N repos, total wall-clock is ~max(per-repo) instead of sum(per-repo).
 #[tauri::command]
-pub(crate) fn workspace_fetch_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoStatus> {
+pub(crate) async fn workspace_fetch_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoStatus> {
     repos.par_iter().for_each(|repo| {
         let _ = git_cmd()
             .args(["fetch", "--all", "--prune"])
             .current_dir(&repo.path)
             .output();
     });
-    workspace_status_all(repos)
+    workspace_status_all(repos).await
 }
 
 /// Run `git pull --ff-only` on all repos (best-effort).
@@ -90,14 +90,14 @@ pub(crate) fn workspace_fetch_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRep
 /// Parallelized via rayon (P3.2). Each repo's pull is independent — different
 /// remotes, different working dirs — so concurrent execution is safe.
 #[tauri::command]
-pub(crate) fn workspace_pull_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoStatus> {
+pub(crate) async fn workspace_pull_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoStatus> {
     repos.par_iter().for_each(|repo| {
         let _ = git_cmd()
             .args(["pull", "--ff-only"])
             .current_dir(&repo.path)
             .output();
     });
-    workspace_status_all(repos)
+    workspace_status_all(repos).await
 }
 
 /// Get detailed WIP status for all repos in a workspace.
@@ -107,7 +107,7 @@ pub(crate) fn workspace_pull_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepo
 /// Combined with rayon parallelization (P3.2), a 5-repo workspace listing
 /// went from ~750 ms wall-clock to ~30 ms in the typical case.
 #[tauri::command]
-pub(crate) fn workspace_wip_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceWipItem> {
+pub(crate) async fn workspace_wip_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceWipItem> {
     repos.into_par_iter().map(|repo| {
         let path = repo.path.clone();
         let name = repo.name.clone();
@@ -142,7 +142,7 @@ pub(crate) fn workspace_wip_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceWipIt
 /// Note: GitHub API rate-limits per token; in practice 5–20 concurrent calls
 /// from a single user fit well within the 5000 req/h authenticated budget.
 #[tauri::command]
-pub(crate) fn workspace_prs_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoPrs> {
+pub(crate) async fn workspace_prs_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoPrs> {
     repos.into_par_iter().map(|repo| {
         let repo_path = repo.path.clone();
         let repo_name = repo.name.clone();
@@ -210,7 +210,7 @@ pub(crate) fn workspace_prs_all(repos: Vec<WorkspaceRepo>) -> Vec<WorkspaceRepoP
 /// Parallelized via rayon (P3.2). `filter` is captured by-ref and read-only
 /// so it's safe to share across threads.
 #[tauri::command]
-pub(crate) fn workspace_issues_all(repos: Vec<WorkspaceRepo>, filter: String) -> Vec<WorkspaceRepoIssues> {
+pub(crate) async fn workspace_issues_all(repos: Vec<WorkspaceRepo>, filter: String) -> Vec<WorkspaceRepoIssues> {
     repos.into_par_iter().map(|repo| {
         let repo_path = repo.path.clone();
         let repo_name = repo.name.clone();
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index c342ba5e..0a502720 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -202,28 +202,31 @@ pub fn git_log_parity(
     all: Option<bool>,
     author: Option<String>,
 ) -> Result<Vec<GitLogEntry>, String> {
-    commands::read::git_log(cwd, count, all, author, None, None)
+    // Command fns are now `async` (run off the UI thread). These `*_parity`
+    // wrappers are sync entry points for the parity-probe example, so block on
+    // the future here to keep their signatures unchanged.
+    tauri::async_runtime::block_on(commands::read::git_log(cwd, count, all, author, None, None))
 }
 
 pub fn git_branches_parity(cwd: String) -> Result<Vec<types::GitBranch>, String> {
-    commands::ops::git_branches(cwd)
+    tauri::async_runtime::block_on(commands::ops::git_branches(cwd))
 }
 
 pub fn git_stash_list_parity(cwd: String) -> Result<Vec<types::StashEntry>, String> {
-    commands::ops::git_stash_list(cwd)
+    tauri::async_runtime::block_on(commands::ops::git_stash_list(cwd))
 }
 
 pub fn git_submodule_branches_parity(
     cwd: String,
     submodule_path: String,
 ) -> Result<Vec<types::SubmoduleBranch>, String> {
-    commands::ops::git_submodule_branches(cwd, submodule_path)
+    tauri::async_runtime::block_on(commands::ops::git_submodule_branches(cwd, submodule_path))
 }
 
 pub fn git_commit_submodule_changes_parity(
     cwd: String,
 ) -> Result<std::collections::HashMap<String, Vec<types::CommitSubmoduleChange>>, String> {
-    commands::ops::git_commit_submodule_changes(cwd)
+    tauri::async_runtime::block_on(commands::ops::git_commit_submodule_changes(cwd))
 }
 
 // ─── Tauri entry point ─────────────────────────────────────

From 394abcade67be0192cdb577bb4af9367f8e4c5cc Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 12:35:46 -0400
Subject: [PATCH 25/44] feat(pr): Replace refresh button with spinner during PR
 list loading

This change improves the visual feedback for the Pull Request list. During initial data loading or background stale-while-revalidate (SWR) revalidations, the refresh button is now replaced by an active spinner. This provides a clearer indication that data is being fetched and prevents users from attempting to re-trigger a refresh while an operation is already in progress.
---
 apps/desktop/src/components/PrListSidebar.vue | 26 +++++++++----------
 1 file changed, 13 insertions(+), 13 deletions(-)

diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index f395a662..15cd1f0e 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -121,24 +121,26 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
         <span class="pls-title">{{ t('pr.list.title') }}</span>
         <span v-if="totalCount > 0" class="pls-count-pill">{{ totalCount }}</span>
         <!-- SWR: subtle spinner while a background revalidation runs over the
-             cached list already on screen (distinct from the cold full spinner). -->
-        <span
-          v-if="panel.refreshing.value"
-          class="pls-spinner pls-spinner--sm"
+             cached list already on screen (distinct from the cold full spinner).
+             Replaces the refresh button while active. -->
+        <div
+          v-if="panel.loading.value || panel.refreshing.value"
+          class="pls-icon-btn pls-icon-btn--loading"
           :title="t('pr.list.refreshing')"
           :aria-label="t('pr.list.refreshing')"
           role="status"
-        ></span>
+        >
+          <div class="pls-spinner pls-spinner--sm"></div>
+        </div>
         <button
+          v-else
           class="pls-icon-btn"
           @click="panel.loadPrs"
           :title="t('pr.list.refresh')"
           aria-label="Refresh"
-          :disabled="panel.loading.value || panel.refreshing.value"
         >
           <svg
             class="pls-refresh-icon"
-            :class="{ 'pls-refresh-icon--spinning': panel.loading.value || panel.refreshing.value }"
             width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round"
           >
             <path d="M13.5 8A5.5 5.5 0 1 1 8 2.5" />
@@ -390,16 +392,14 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
   border-color: var(--color-border);
   color: var(--color-text);
 }
-.pls-icon-btn:disabled {
+.pls-icon-btn:disabled,
+.pls-icon-btn--loading {
   cursor: default;
   opacity: 0.7;
 }
 
-/* SWR: spin the refresh glyph while a (cold or background) reload is running. */
-.pls-refresh-icon--spinning {
-  animation: pls-spin 0.8s linear infinite;
-  transform-origin: center;
-}
+/* SWR: subtle spinner while a background revalidation runs over the
+             cached list already on screen. */
 
 /* ─── Segmented filter ───────────────────────────────────── */
 .pls-segmented {

From f8b39e09bd950018d0e9756a4f5d70fe331f81f7 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 12:53:09 -0400
Subject: [PATCH 26/44] feat(pr): Align PR listing and count with base
 repository for forks

Previously, when working in a local clone of a forked repository, the application might not have accurately listed or counted all relevant pull requests, especially those opened against the upstream parent.

This change modifies the PR listing and counting logic to first identify the canonical base repository (the parent for forks) and then query that repository. This aligns the application's behavior with the `gh pr list` CLI, which implicitly targets the base repository, ensuring comprehensive and accurate PR visibility regardless of whether the user is in the fork's local clone.
---
 apps/desktop/src-tauri/src/commands/gh.rs     | 32 ++++++-----
 .../src-tauri/src/commands/github_api.rs      | 57 +++++++------------
 2 files changed, 41 insertions(+), 48 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index 06a3a7ce..f016efdc 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -16,6 +16,7 @@
 use crate::git::*;
 use crate::types::*;
 use crate::commands::github_api;
+use serde_json;
 
 /// List pull requests using `gh` CLI.
 ///
@@ -120,8 +121,10 @@ pub(crate) async fn gh_pr_count(cwd: String, state: String) -> Result<i64, Strin
 
     // Resolve owner/name once via `gh repo view`. `nameWithOwner` is the
     // canonical "org/repo" slug — splittable by '/' without ambiguity.
+    // v2.17: include isFork and parent to correctly count PRs in the base repo
+    // (the target repo that `gh pr list` would use by default).
     let view = hidden_cmd("gh")
-        .args(["repo", "view", "--json", "nameWithOwner"])
+        .args(["repo", "view", "--json", "nameWithOwner,isFork,parent"])
         .current_dir(&cwd)
         .output()
         .map_err(|e| format!("gh repo view (for pr count): {}", e))?;
@@ -131,19 +134,22 @@ pub(crate) async fn gh_pr_count(cwd: String, state: String) -> Result<i64, Strin
             String::from_utf8_lossy(&view.stderr)
         ));
     }
-    let nwo = {
-        let stdout = String::from_utf8_lossy(&view.stdout);
-        // Tiny, dependency-free extraction — avoids dragging in serde_json
-        // just for one string field. Mirrors extract_json_string in parse.rs.
-        let key = "\"nameWithOwner\"";
-        let start = stdout.find(key)
-            .ok_or_else(|| "nameWithOwner missing from gh repo view output".to_string())?;
-        let after = &stdout[start + key.len()..];
-        let q1 = after.find('"').ok_or_else(|| "malformed nameWithOwner".to_string())?;
-        let rest = &after[q1 + 1..];
-        let q2 = rest.find('"').ok_or_else(|| "unterminated nameWithOwner".to_string())?;
-        rest[..q2].to_string()
+
+    let v: serde_json::Value = serde_json::from_slice(&view.stdout).map_err(|e| e.to_string())?;
+    let is_fork = v.get("isFork").and_then(|b| b.as_bool()).unwrap_or(false);
+    let nwo = if is_fork {
+        v.get("parent")
+            .and_then(|p| {
+                let owner = p.get("owner").and_then(|o| o.get("login")).and_then(|s| s.as_str())?;
+                let name = p.get("name").and_then(|s| s.as_str())?;
+                Some(format!("{}/{}", owner, name))
+            })
+            .or_else(|| v.get("nameWithOwner").and_then(|s| s.as_str()).map(|s| s.to_string()))
+            .unwrap_or_default()
+    } else {
+        v.get("nameWithOwner").and_then(|s| s.as_str()).unwrap_or("").to_string()
     };
+
     let (owner, name) = match nwo.split_once('/') {
         Some((o, n)) if !o.is_empty() && !n.is_empty() => (o.to_string(), n.to_string()),
         _ => return Err(format!("Unexpected nameWithOwner format: {}", nwo)),
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 328e7f96..4e7bfebc 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -344,6 +344,8 @@ pub(crate) fn rest_list_prs(
 ) -> Result<Vec<PullRequest>, String> {
     let (owner, repo) = owner_repo(cwd)?;
     let origin = format!("{}/{}", owner, repo);
+    let base = base_owner_repo(cwd, token).unwrap_or_else(|_| origin.clone());
+
     let page = limit.max(1);
     let off = offset.max(0);
     // Naïve pagination identical to gh_list_prs: fetch offset+limit, then slice.
@@ -356,12 +358,12 @@ pub(crate) fn rest_list_prs(
         _ => "open",
     };
 
-    // PRs that live in origin.
-    let mut raw: Vec<serde_json::Value> = api_json(
+    // Fetch PRs from the base repository (matches `gh pr list` behavior).
+    let raw: Vec<serde_json::Value> = api_json(
         "GET",
         &format!(
             "{}/repos/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
-            API_BASE, origin, api_state, per_page
+            API_BASE, base, api_state, per_page
         ),
         token,
         None,
@@ -370,35 +372,6 @@ pub(crate) fn rest_list_prs(
     .cloned()
     .unwrap_or_default();
 
-    // When origin is a fork, also surface the PRs you opened on the upstream
-    // repo (head repo == your fork) — these never appear in origin's pulls.
-    if let Some(parent) = upstream_parent(cwd, token) {
-        if let Ok(up) = api_json(
-            "GET",
-            &format!(
-                "{}/repos/{}/pulls?state={}&per_page={}&page=1&sort=updated&direction=desc",
-                API_BASE, parent, api_state, per_page
-            ),
-            token,
-            None,
-        ) {
-            for pr in up.as_array().cloned().unwrap_or_default() {
-                let head_repo = pr
-                    .get("head")
-                    .and_then(|h| h.get("repo"))
-                    .and_then(|r| r.get("full_name"))
-                    .and_then(|s| s.as_str())
-                    .unwrap_or("");
-                if head_repo.eq_ignore_ascii_case(&origin) {
-                    raw.push(pr);
-                }
-            }
-        }
-    }
-
-    // Newest-first — updated_at is ISO-8601, so lexicographic compare works.
-    raw.sort_by(|a, b| js(b, "updated_at").cmp(&js(a, "updated_at")));
-
     let mut prs: Vec<PullRequest> = raw
         .iter()
         .filter(|pr| {
@@ -560,7 +533,10 @@ fn get_pr_json(cwd: &str, number: i64, token: &str) -> Result<(String, serde_jso
 }
 
 pub(crate) fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64, String> {
-    let (owner, repo) = owner_repo(cwd)?;
+    let base = base_owner_repo(cwd, token).unwrap_or_else(|_| {
+        let (o, r) = owner_repo(cwd).unwrap_or_default();
+        format!("{}/{}", o, r)
+    });
     let qualifier = match state.to_lowercase().as_str() {
         "closed" => "+state:closed",
         "merged" => "+is:merged",
@@ -569,8 +545,8 @@ pub(crate) fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64,
     };
     // /search/issues returns total_count without expanding every item.
     let url = format!(
-        "{}/search/issues?q=repo:{}/{}+type:pr{}&per_page=1",
-        API_BASE, owner, repo, qualifier
+        "{}/search/issues?q=repo:{}+type:pr{}&per_page=1",
+        API_BASE, base, qualifier
     );
     let v = api_json("GET", &url, token, None)?;
     Ok(v.get("total_count").and_then(|c| c.as_i64()).unwrap_or(0))
@@ -702,6 +678,17 @@ fn upstream_parent(cwd: &str, token: &str) -> Option<String> {
     (fi.is_fork && !fi.parent.is_empty()).then_some(fi.parent)
 }
 
+/// The canonical base `owner/repo` for PRs. For a fork, this is the upstream
+/// parent. For a regular repo, it's the repo itself.
+fn base_owner_repo(cwd: &str, token: &str) -> Result<String, String> {
+    let fi = rest_fork_info(cwd, token)?;
+    if fi.is_fork && !fi.parent.is_empty() {
+        Ok(fi.parent)
+    } else {
+        Ok(fi.origin)
+    }
+}
+
 pub(crate) fn rest_create_pr(
     cwd: &str,
     title: String,

From 8a8ff46449ff6b2b9d9b59fb71e0c6fabcd0aac7 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 13:01:44 -0400
Subject: [PATCH 27/44] fix(pr): Correct comment counts in PR details and panel

The Azure DevOps API does not provide accurate comment counts within the PR object. This change populates the `reviewComments` field from the actual list of fetched comments for Azure DevOps PRs.

Additionally, a safeguard is applied to ensure the displayed comment count in both the PR detail view and panel is always at least the number of comments that have actually been fetched and rendered, preventing discrepancies.
---
 apps/desktop/src/components/PrDetailView.vue     | 2 +-
 apps/desktop/src/components/PullRequestPanel.vue | 2 +-
 apps/desktop/src/composables/usePrPanel.ts       | 8 ++++++++
 3 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 5f563413..62705b9a 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -404,7 +404,7 @@ function commentTimeAgo(dateStr: string): string {
                 </svg>
               </span>
               <span class="pdv-stat-label">{{ t('pr.detail.statComments') }}</span>
-              <span class="pdv-stat-value">{{ p.prDetail.value.comments + p.prDetail.value.reviewComments }}</span>
+              <span class="pdv-stat-value">{{ Math.max(p.prDetail.value.comments + p.prDetail.value.reviewComments, sortedComments.length) }}</span>
             </component>
           </div>
 
diff --git a/apps/desktop/src/components/PullRequestPanel.vue b/apps/desktop/src/components/PullRequestPanel.vue
index 5ce0d8f4..dc62626c 100644
--- a/apps/desktop/src/components/PullRequestPanel.vue
+++ b/apps/desktop/src/components/PullRequestPanel.vue
@@ -720,7 +720,7 @@ watch(() => props.cwd, () => {
                   </div>
                   <div class="pr-stat">
                     <span class="pr-stat-label">Commentaires</span>
-                    <span>{{ prDetail.comments + prDetail.reviewComments }}</span>
+                    <span>{{ Math.max(prDetail.comments + prDetail.reviewComments, prComments.length) }}</span>
                   </div>
                 </div>
 
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 76b60606..d44691ec 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -469,6 +469,14 @@ export function usePrPanel(cwd: Ref<string>) {
       prComments.value = comments;
       prIssueComments.value = issueComments;
       prReviews.value = reviews;
+
+      // Azure DevOps API doesn't include comment counts in the PR object.
+      // We populate them from the actual comments list we just fetched.
+      if (forge.value.name === "azure" && prDetail.value) {
+        prDetail.value.reviewComments = comments.length;
+        prDetail.value.comments = 0;
+      }
+
       totalRepoFiles.value = fileCount;
       cache.setDetail(key, { detail, checks, comments, issueComments, reviews });
     } catch (err: any) {

From 4b9b0da7712a32049043dde376c0adce894b43b3 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 13:13:03 -0400
Subject: [PATCH 28/44] fix(pr): Correct PR tab URLs for Azure DevOps

Azure DevOps uses a query parameter structure (e.g., `?_a=commits`) for PR detail tabs like commits, files, and checks, unlike other forges that use path segments (e.g., `/commits`).

This change introduces forge-aware URL construction for these links, ensuring they open correctly in the browser for Azure DevOps pull requests.
---
 apps/desktop/src/components/PrDetailView.vue  | 24 +++++++++++++--
 .../src/components/PullRequestPanel.vue       | 29 +++++++++++++++----
 2 files changed, 45 insertions(+), 8 deletions(-)

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 62705b9a..16f3f3b0 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -57,6 +57,24 @@ const isOpenPr = computed(() => {
 /** Local UI state for the PR description's formatted / raw switch. */
 const descriptionTab = ref<"formatted" | "raw">("formatted");
 
+const commitsUrl = computed(() => {
+  const base = p.prDetail.value?.url || "";
+  if (p.forge.value.name === "azure") return `${base}?_a=commits`;
+  return `${base}/commits`;
+});
+
+const filesUrl = computed(() => {
+  const base = p.prDetail.value?.url || "";
+  if (p.forge.value.name === "azure") return `${base}?_a=files`;
+  return `${base}/files`;
+});
+
+const checksUrl = computed(() => {
+  const base = p.prDetail.value?.url || "";
+  if (p.forge.value.name === "azure") return base;
+  return `${base}/checks`;
+});
+
 /** Review + issue-level comments, sorted oldest-first for display under the description. */
 const sortedComments = computed(() =>
   [...p.prComments.value, ...p.prIssueComments.value].sort(
@@ -504,16 +522,16 @@ function commentTimeAgo(dateStr: string): string {
 
           <!-- Secondary links -->
           <div class="pdv-links">
-            <button class="pdv-btn pdv-btn--ghost pdv-btn--sm" @click="openInBrowser(p.prDetail.value.url + '/commits')">
+            <button class="pdv-btn pdv-btn--ghost pdv-btn--sm" @click="openInBrowser(commitsUrl)">
               {{ t('pr.detail.linkCommits') }}
             </button>
-            <button class="pdv-btn pdv-btn--ghost pdv-btn--sm" @click="openInBrowser(p.prDetail.value.url + '/files')">
+            <button class="pdv-btn pdv-btn--ghost pdv-btn--sm" @click="openInBrowser(filesUrl)">
               {{ t('pr.detail.linkFiles') }}
             </button>
             <button
               v-if="p.prDetail.value.checksStatus"
               class="pdv-btn pdv-btn--ghost pdv-btn--sm"
-              @click="openInBrowser(p.prDetail.value.url + '/checks')"
+              @click="openInBrowser(checksUrl)"
             >
               {{ t('pr.detail.linkCi') }}
             </button>
diff --git a/apps/desktop/src/components/PullRequestPanel.vue b/apps/desktop/src/components/PullRequestPanel.vue
index dc62626c..6cb2442c 100644
--- a/apps/desktop/src/components/PullRequestPanel.vue
+++ b/apps/desktop/src/components/PullRequestPanel.vue
@@ -484,13 +484,32 @@ function checkIcon(c: CICheck): string {
   return "❓";
 }
 
-function checksIcon(status: string): string {
+const checksIcon = (status: string) => {
   const s = status.toUpperCase();
   if (s === "SUCCESS" || s === "PASS") return "✅";
   if (["FAILURE","FAIL","ERROR"].includes(s)) return "❌";
   if (s === "PENDING") return "⏳";
   return "";
-}
+};
+
+const commitsUrl = computed(() => {
+  const base = prDetail.value?.url || "";
+  if (forge.value.name === "azure") return `${base}?_a=commits`;
+  return `${base}/commits`;
+});
+
+const filesUrl = computed(() => {
+  const base = prDetail.value?.url || "";
+  if (forge.value.name === "azure") return `${base}?_a=files`;
+  return `${base}/files`;
+});
+
+const checksUrl = computed(() => {
+  const base = prDetail.value?.url || "";
+  if (forge.value.name === "azure") return base;
+  return `${base}/checks`;
+});
+
 
 function renderBody(body: string): string {
   return body
@@ -743,9 +762,9 @@ watch(() => props.cwd, () => {
                 <div v-else class="pr-placeholder pr-placeholder--sm">Aucune description.</div>
 
                 <div class="pr-links">
-                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(prDetail.url + '/commits')">📦 Commits</button>
-                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(prDetail.url + '/files')">📄 Fichiers</button>
-                  <button v-if="prDetail.checksStatus" class="eco-btn eco-btn--xs" @click="openInBrowser(prDetail.url + '/checks')">🔗 CI</button>
+                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(commitsUrl)">📦 Commits</button>
+                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(filesUrl)">📄 Fichiers</button>
+                  <button v-if="prDetail.checksStatus" class="eco-btn eco-btn--xs" @click="openInBrowser(checksUrl)">🔗 CI</button>
                 </div>
               </div>
 

From 7b0b4c6b15df6b96d39a3d4a0b2a946de88b6173 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 13:18:03 -0400
Subject: [PATCH 29/44] feat(pr): Relocate and restyle external PR links for
 improved access

Moves the "Commits", "Files", and "CI" links to more prominent positions in both the PR detail view and the PR panel. In the detail view, they are now "hero" links in the header. In the PR panel, they are compact "mini" links grouped with the main forge link.

This enhances discoverability and provides quicker access to these external resources.
---
 apps/desktop/src/components/PrDetailView.vue  | 69 +++++++++++++------
 .../src/components/PullRequestPanel.vue       | 40 ++++++++---
 2 files changed, 79 insertions(+), 30 deletions(-)

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 16f3f3b0..33cbf53e 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -251,6 +251,33 @@ function commentTimeAgo(dateStr: string): string {
           <span v-if="p.prDetail.value.mergedAt" class="pdv-merged-ago">
             {{ t('pr.detail.mergedAgo', p.timeAgo(p.prDetail.value.mergedAt)) }}
           </span>
+
+          <div style="flex: 1"></div>
+
+          <div class="pdv-hero-links">
+            <button class="pdv-hero-link" @click="openInBrowser(commitsUrl)">
+              {{ t('pr.detail.linkCommits') }}
+              <svg width="11" height="11" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.8" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
+                <path d="M6.5 3H3v10h10V9.5M9.5 2.5H13V6M13 3l-6 6" />
+              </svg>
+            </button>
+            <button class="pdv-hero-link" @click="openInBrowser(filesUrl)">
+              {{ t('pr.detail.linkFiles') }}
+              <svg width="11" height="11" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.8" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
+                <path d="M6.5 3H3v10h10V9.5M9.5 2.5H13V6M13 3l-6 6" />
+              </svg>
+            </button>
+            <button
+              v-if="p.prDetail.value.checksStatus"
+              class="pdv-hero-link"
+              @click="openInBrowser(checksUrl)"
+            >
+              {{ t('pr.detail.linkCi') }}
+              <svg width="11" height="11" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.8" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
+                <path d="M6.5 3H3v10h10V9.5M9.5 2.5H13V6M13 3l-6 6" />
+              </svg>
+            </button>
+          </div>
         </div>
       </header>
 
@@ -519,23 +546,6 @@ function commentTimeAgo(dateStr: string): string {
             </ul>
             <div ref="commentsEnd"></div>
           </section>
-
-          <!-- Secondary links -->
-          <div class="pdv-links">
-            <button class="pdv-btn pdv-btn--ghost pdv-btn--sm" @click="openInBrowser(commitsUrl)">
-              {{ t('pr.detail.linkCommits') }}
-            </button>
-            <button class="pdv-btn pdv-btn--ghost pdv-btn--sm" @click="openInBrowser(filesUrl)">
-              {{ t('pr.detail.linkFiles') }}
-            </button>
-            <button
-              v-if="p.prDetail.value.checksStatus"
-              class="pdv-btn pdv-btn--ghost pdv-btn--sm"
-              @click="openInBrowser(checksUrl)"
-            >
-              {{ t('pr.detail.linkCi') }}
-            </button>
-          </div>
         </div>
 
         <!-- Diff tab -->
@@ -1495,10 +1505,29 @@ function commentTimeAgo(dateStr: string): string {
   text-align: center;
 }
 
-.pdv-links {
+.pdv-hero-links {
   display: flex;
-  gap: var(--space-3);
-  flex-wrap: wrap;
+  gap: var(--space-2);
+}
+
+.pdv-hero-link {
+  background: transparent;
+  border: 1px solid var(--color-border);
+  border-radius: var(--radius-sm);
+  color: var(--color-text-muted);
+  font-size: var(--font-size-xs);
+  padding: 1px var(--space-2);
+  cursor: pointer;
+  transition: all var(--transition-fast);
+  display: inline-flex;
+  align-items: center;
+  gap: var(--space-1);
+}
+
+.pdv-hero-link:hover {
+  border-color: var(--color-accent);
+  color: var(--color-accent);
+  background: var(--color-accent-soft);
 }
 
 .pdv-loading {
diff --git a/apps/desktop/src/components/PullRequestPanel.vue b/apps/desktop/src/components/PullRequestPanel.vue
index 6cb2442c..513dd487 100644
--- a/apps/desktop/src/components/PullRequestPanel.vue
+++ b/apps/desktop/src/components/PullRequestPanel.vue
@@ -709,7 +709,15 @@ watch(() => props.cwd, () => {
                 >
                   ✍️ Review
                 </button>
-                <button class="eco-btn eco-btn--xs" @click="openInBrowser(prDetail.url)">↗ {{ forgeLabel }}</button>
+
+                <div class="pr-forge-group">
+                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(prDetail.url)">↗ {{ forgeLabel }}</button>
+                  <div class="pr-links-mini">
+                    <button class="eco-btn eco-btn--xs" @click="openInBrowser(commitsUrl)" title="Commits">📦↗</button>
+                    <button class="eco-btn eco-btn--xs" @click="openInBrowser(filesUrl)" title="Fichiers">📄↗</button>
+                    <button v-if="prDetail.checksStatus" class="eco-btn eco-btn--xs" @click="openInBrowser(checksUrl)" title="CI">🔗↗</button>
+                  </div>
+                </div>
               </div>
 
               <!-- Info tab -->
@@ -760,12 +768,6 @@ watch(() => props.cwd, () => {
                 <div class="pr-section-label">Description</div>
                 <div v-if="prDetail.body" class="pr-body-text" v-html="safeHtml(renderBody(prDetail.body))" />
                 <div v-else class="pr-placeholder pr-placeholder--sm">Aucune description.</div>
-
-                <div class="pr-links">
-                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(commitsUrl)">📦 Commits</button>
-                  <button class="eco-btn eco-btn--xs" @click="openInBrowser(filesUrl)">📄 Fichiers</button>
-                  <button v-if="prDetail.checksStatus" class="eco-btn eco-btn--xs" @click="openInBrowser(checksUrl)">🔗 CI</button>
-                </div>
               </div>
 
               <!-- Diff tab -->
@@ -1286,10 +1288,28 @@ watch(() => props.cwd, () => {
   font-size: 11px;
 }
 
-.pr-links {
+.pr-forge-group {
   display: flex;
-  gap: 6px;
-  flex-wrap: wrap;
+  flex-direction: column;
+  gap: 2px;
+  align-items: stretch;
+  margin-left: 8px;
+}
+
+.pr-links-mini {
+  display: flex;
+  gap: 2px;
+}
+
+.pr-links-mini .eco-btn {
+  flex: 1;
+  padding: 0;
+  height: 18px;
+  min-width: 24px;
+  line-height: 1;
+  display: flex;
+  align-items: center;
+  justify-content: center;
 }
 
 /* Diff tab */

From 8eb604e4d3035354480317e96d922d3321d5509b Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 13:51:53 -0400
Subject: [PATCH 30/44] feat(pr): Add full Markdown support to comments and
 descriptions

Replaces the previous custom, limited markdown renderer with the MarkdownIt library.
This change enables comprehensive Markdown formatting for pull request comments
and descriptions, including headings, lists, inline code, and fenced code blocks.

This enhances the readability and expressiveness of PR content within the application.
---
 .../src/components/PrCommentThread.vue        | 111 +++++++++++-------
 apps/desktop/src/components/PrDetailView.vue  |  44 +++++++
 apps/desktop/src/composables/useSafeHtml.ts   |  10 +-
 3 files changed, 118 insertions(+), 47 deletions(-)

diff --git a/apps/desktop/src/components/PrCommentThread.vue b/apps/desktop/src/components/PrCommentThread.vue
index 14eeb352..3e313d8d 100644
--- a/apps/desktop/src/components/PrCommentThread.vue
+++ b/apps/desktop/src/components/PrCommentThread.vue
@@ -10,7 +10,7 @@
 import { ref, computed } from "vue";
 import type { PrReviewComment } from "../utils/backend";
 import { openExternalUrl } from "../utils/backend";
-import { safeHtml } from "../composables/useSafeHtml";
+import { safeHtml, renderMarkdown } from "../composables/useSafeHtml";
 import { useI18n } from "../composables/useI18n";
 import { useAvatar } from "../composables/useAvatar";
 
@@ -93,38 +93,7 @@ function applySuggestion(comment: PrReviewComment) {
   emit("apply-suggestion", code, comment.start_line, comment.line);
 }
 
-// ─── Markdown-lite renderer ─────────────────────────────
-/** Very light renderer: code blocks, inline code, bold, links. */
-function renderBody(body: string): string {
-  // Replace suggestion blocks with a styled box
-  const suggLabel = t("pr.comment.suggestionLabel");
-  let html = body.replace(
-    /```suggestion\r?\n([\s\S]*?)```/gm,
-    (_, code) =>
-      `<div class="comment-suggestion"><div class="comment-suggestion-label">${escHtml(suggLabel)}</div><pre class="comment-suggestion-code">${escHtml(code)}</pre></div>`,
-  );
-  // Other fenced code blocks
-  html = html.replace(
-    /```(\w*)\r?\n([\s\S]*?)```/gm,
-    (_, lang, code) => `<pre class="comment-code-block" data-lang="${lang}">${escHtml(code)}</pre>`,
-  );
-  // Inline code
-  html = html.replace(/`([^`]+)`/g, (_, c) => `<code class="comment-inline-code">${escHtml(c)}</code>`);
-  // Bold
-  html = html.replace(/\*\*(.+?)\*\*/g, "<strong>$1</strong>");
-  // Links
-  html = html.replace(
-    /\[([^\]]+)\]\((https?:\/\/[^)]+)\)/g,
-    '<a href="$2" target="_blank" rel="noopener">$1</a>',
-  );
-  // Newlines → <br>
-  html = html.replace(/\n/g, "<br>");
-  return html;
-}
-
-function escHtml(s: string) {
-  return s.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;");
-}
+const suggLabel = computed(() => t("pr.comment.suggestionLabel"));
 
 // Avatar disks share the app-wide outline style — see composables/useAvatar.
 const { avatarStyle, avatarInitials } = useAvatar();
@@ -184,7 +153,13 @@ function timeAgo(dateStr: string): string {
           <button class="pct-submit-btn" @click="submitEdit" :disabled="!editText.trim()">{{ t('pr.comment.save') }}</button>
         </div>
       </div>
-      <div v-else class="pct-body" @click="onMarkdownClick" v-html="safeHtml(renderBody(comment.body))" />
+      <div
+        v-else
+        class="pct-body"
+        :style="{ '--suggestion-label': `\"${suggLabel}\"` }"
+        @click="onMarkdownClick"
+        v-html="renderMarkdown(comment.body)"
+      />
 
       <!-- Apply suggestion button -->
       <div v-if="hasSuggestion(comment) && editingId !== comment.id" class="pct-suggestion-actions">
@@ -292,49 +267,95 @@ function timeAgo(dateStr: string): string {
 }
 
 /* Markdown rendered content */
-:deep(.comment-code-block),
-:deep(.comment-suggestion-code) {
+.pct-body :deep(p) { margin-bottom: 12px; }
+.pct-body :deep(p:last-child) { margin-bottom: 0; }
+
+.pct-body :deep(h1),
+.pct-body :deep(h2),
+.pct-body :deep(h3),
+.pct-body :deep(h4),
+.pct-body :deep(h5),
+.pct-body :deep(h6) {
+  margin-top: 16px;
+  margin-bottom: 8px;
+  font-weight: 600;
+  line-height: 1.3;
+}
+.pct-body :deep(h1:first-child),
+.pct-body :deep(h2:first-child),
+.pct-body :deep(h3:first-child),
+.pct-body :deep(h4:first-child) {
+  margin-top: 0;
+}
+
+.pct-body :deep(h1) { font-size: 1.4em; }
+.pct-body :deep(h2) { font-size: 1.25em; }
+.pct-body :deep(h3) { font-size: 1.15em; }
+.pct-body :deep(h4) { font-size: 1.1em; }
+
+.pct-body :deep(ul),
+.pct-body :deep(ol) {
+  margin-bottom: 8px;
+  padding-left: 20px;
+}
+.pct-body :deep(li) { margin-bottom: 2px; }
+
+.pct-body :deep(.md-code-block) {
   background: var(--color-bg-tertiary);
   border: 1px solid var(--color-border);
   border-radius: 4px;
   padding: 6px 8px;
-  margin: 4px 0;
-  font-family: monospace;
+  margin: 8px 0;
+  font-family: var(--font-mono);
   font-size: 11px;
   overflow-x: auto;
   white-space: pre;
 }
 
-:deep(.comment-inline-code) {
+.pct-body :deep(.md-inline-code) {
   background: var(--color-bg-tertiary);
   padding: 1px 4px;
   border-radius: 3px;
-  font-family: monospace;
+  font-family: var(--font-mono);
   font-size: 11px;
 }
 
-:deep(.comment-suggestion) {
+.pct-body :deep(.md-suggestion-block) {
   border: 1px solid var(--color-accent);
   border-radius: 6px;
   overflow: hidden;
-  margin: 4px 0;
+  margin: 8px 0;
+  background: var(--color-bg-secondary);
 }
 
-:deep(.comment-suggestion-label) {
+.pct-body :deep(.md-suggestion-block):before {
+  content: var(--suggestion-label);
+  display: block;
   background: var(--color-accent-soft);
   padding: 3px 8px;
   font-size: 10px;
   font-weight: 600;
   color: var(--color-accent);
+  border-bottom: 1px solid var(--color-border);
 }
 
-:deep(.comment-suggestion-code) {
+.pct-body :deep(.md-suggestion-block) .md-code-block {
   border: none;
   border-radius: 0;
   margin: 0;
+  background: transparent;
 }
 
-:deep(a) { color: var(--color-accent); text-decoration: underline; }
+.pct-body :deep(.md-link) {
+  color: var(--color-accent);
+  text-decoration: underline;
+}
+
+.pct-body :deep(.md-hr) {
+  border: none;
+  border-top: 1px solid var(--color-border);
+  margin: 12px 0;
+}
 
 /* Suggestion apply button */
 .pct-suggestion-actions {
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 33cbf53e..0553707c 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -1289,6 +1289,50 @@ function commentTimeAgo(dateStr: string): string {
   line-height: 1.5;
   word-break: break-word;
 }
+.pdv-comment-body :deep(p) { margin-bottom: var(--space-5); }
+.pdv-comment-body :deep(p:last-child) { margin-bottom: 0; }
+.pdv-comment-body :deep(h1),
+.pdv-comment-body :deep(h2),
+.pdv-comment-body :deep(h3),
+.pdv-comment-body :deep(h4) {
+  margin-top: var(--space-6);
+  margin-bottom: var(--space-3);
+  font-weight: 600;
+  line-height: 1.3;
+}
+.pdv-comment-body :deep(h1:first-child),
+.pdv-comment-body :deep(h2:first-child) {
+  margin-top: 0;
+}
+.pdv-comment-body :deep(h1) { font-size: var(--font-size-lg); }
+.pdv-comment-body :deep(h2) { font-size: var(--font-size-md); }
+.pdv-comment-body :deep(ul),
+.pdv-comment-body :deep(ol) {
+  margin: var(--space-1) 0 var(--space-2) 0;
+  padding-left: var(--space-6);
+}
+.pdv-comment-body :deep(li) { margin-bottom: 2px; }
+.pdv-comment-body :deep(.md-code-block) {
+  background: var(--color-bg-tertiary);
+  border: 1px solid var(--color-border);
+  border-radius: var(--radius-sm);
+  padding: var(--space-3);
+  margin: var(--space-2) 0;
+  font-family: var(--font-mono);
+  font-size: 0.95em;
+  overflow-x: auto;
+}
+.pdv-comment-body :deep(.md-inline-code) {
+  background: var(--color-bg-tertiary);
+  padding: 1px 4px;
+  border-radius: var(--radius-xs);
+  font-family: var(--font-mono);
+}
+.pdv-comment-body :deep(.md-hr) {
+  border: none;
+  border-top: 1px solid var(--color-border);
+  margin: var(--space-4) 0;
+}
 
 .pdv-chips {
   display: flex;
diff --git a/apps/desktop/src/composables/useSafeHtml.ts b/apps/desktop/src/composables/useSafeHtml.ts
index 82799594..87e8370b 100644
--- a/apps/desktop/src/composables/useSafeHtml.ts
+++ b/apps/desktop/src/composables/useSafeHtml.ts
@@ -152,7 +152,7 @@ export function safeHtml(raw: string | null | undefined): string {
 const md = new MarkdownIt({
   html: false, // do not let source markdown embed arbitrary HTML
   linkify: true,
-  breaks: false,
+  breaks: true,
   typographer: false,
 });
 
@@ -177,8 +177,14 @@ rules.code_block = (tokens, idx, options, env, self) => {
   return rendered.replace("<pre>", '<pre class="md-code-block">');
 };
 rules.fence = (tokens, idx, options, env, self) => {
+  const token = tokens[idx];
+  const lang = (token.info || "").trim();
   const rendered = originalFence(tokens, idx, options, env, self);
-  return rendered.replace("<pre>", '<pre class="md-code-block">');
+  let html = rendered.replace("<pre>", '<pre class="md-code-block">');
+  if (lang === "suggestion") {
+    html = html.replace('class="md-code-block"', 'class="md-code-block md-suggestion-block"');
+  }
+  return html;
 };
 rules.code_inline = (tokens, idx, options, env, self) => {
   const rendered = originalCodeInline(tokens, idx, options, env, self);

From 2ca841c8b3de2c12b445bf6bff6b93cecd7f4772 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 13:56:29 -0400
Subject: [PATCH 31/44] fix(pr): Correct quoting for CSS custom property in
 comment thread

Ensures the CSS custom property value for the suggestion label is correctly quoted,
preventing potential parsing issues if the label itself contains special characters
or if the browser's CSS parser has issues with the double quotes within the template literal.
---
 apps/desktop/src/components/PrCommentThread.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/src/components/PrCommentThread.vue b/apps/desktop/src/components/PrCommentThread.vue
index 3e313d8d..bc508edf 100644
--- a/apps/desktop/src/components/PrCommentThread.vue
+++ b/apps/desktop/src/components/PrCommentThread.vue
@@ -156,7 +156,7 @@ function timeAgo(dateStr: string): string {
       <div
         v-else
         class="pct-body"
-        :style="{ '--suggestion-label': `\"${suggLabel}\"` }"
+        :style="{ '--suggestion-label': `'${suggLabel}'` }"
         @click="onMarkdownClick"
         v-html="renderMarkdown(comment.body)"
       />

From fa7ee51f612a47881c243a9212092925f0a741e0 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 15:18:46 -0400
Subject: [PATCH 32/44] feat(pr): Display aggregated CI status for PRs across
 all forges

Introduces consistent red/yellow/green indicators for PR health in both
the list sidebar and detail view.

This change aggregates check, build, and pipeline statuses from the
respective APIs (Azure DevOps policies, Bitbucket commit statuses, GitHub
check-runs, and GitLab pipelines). It fixes previous inaccuracies where
pending or failing checks were sometimes missed, particularly for GitHub,
and uses parallel fetching for improved performance on PR lists.
```
---
 apps/desktop/src-tauri/src/commands/azure.rs  |  44 +++++++
 .../src-tauri/src/commands/bitbucket.rs       |  66 +++++++++-
 .../src-tauri/src/commands/github_api.rs      | 123 ++++++++++--------
 apps/desktop/src-tauri/src/commands/gitlab.rs |  79 ++++++++++-
 apps/desktop/src-tauri/src/git/parse.rs       |  77 ++++++++---
 apps/desktop/src-tauri/src/lib.rs             |  58 +++++++++
 apps/desktop/src-tauri/src/types.rs           |  10 ++
 apps/desktop/src/components/PrDetailView.vue  |  23 +++-
 apps/desktop/src/components/PrListSidebar.vue |  37 ++++--
 9 files changed, 428 insertions(+), 89 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 1c085f60..d5019147 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -30,6 +30,8 @@
 
 use crate::git::{git_cmd, hidden_cmd};
 use crate::types::*;
+use rayon::prelude::*;
+use std::collections::HashMap;
 
 // ─── Constants ──────────────────────────────────────────────────────────────
 
@@ -607,6 +609,21 @@ fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64) -> Result<Vec<
             pr.additions = adds;
             pr.deletions = dels;
         }
+        // Aggregate each PR's branch-policy evaluations into a rollup so the
+        // sidebar dot can colour (red = a build/policy failed, yellow = pending,
+        // green = all pass). Parallel — one policy round-trip per PR.
+        let rollups: HashMap<i64, String> = prs
+            .par_iter()
+            .filter_map(|pr| {
+                let rollup = rollup_from_checks(&rest_pr_checks(cwd, pr.number).ok()?);
+                if rollup.is_empty() { None } else { Some((pr.number, rollup)) }
+            })
+            .collect();
+        for pr in &mut prs {
+            if let Some(state) = rollups.get(&pr.number) {
+                pr.checks_rollup = state.clone();
+            }
+        }
     }
     Ok(prs)
 }
@@ -645,6 +662,9 @@ fn rest_pr_detail(cwd: &str, number: i64) -> Result<PullRequestDetail, String> {
         detail.additions = adds;
         detail.deletions = dels;
     }
+    // Aggregate branch-policy evaluations into a rollup so the CI tab can colour
+    // itself red (a build/policy failed) / yellow (pending) / green (all pass).
+    detail.checks_status = rollup_from_checks(&rest_pr_checks(cwd, number).unwrap_or_default());
     Ok(detail)
 }
 
@@ -918,6 +938,9 @@ fn map_policy_status(status: &str) -> (&'static str, &'static str) {
     match status {
         "approved" => ("completed", "SUCCESS"),
         "rejected" => ("completed", "FAILURE"),
+        // "broken" = the policy evaluation itself errored (e.g. a build that
+        // failed to run) — surface it as a red failure, not a yellow pending.
+        "broken" => ("completed", "FAILURE"),
         "notApplicable" => ("completed", "SKIPPED"),
         "running" => ("in_progress", ""),
         // "queued" | "notSubmitted" | anything else → still pending.
@@ -925,6 +948,27 @@ fn map_policy_status(status: &str) -> (&'static str, &'static str) {
     }
 }
 
+/// Aggregate a PR's policy/check evaluations into one rollup state:
+/// `FAILURE` (red) / `PENDING` (yellow) / `SUCCESS` (green), or `""` when there
+/// are no checks. Precedence: any failure ⇒ red, else any unfinished ⇒ yellow.
+fn rollup_from_checks(checks: &[CICheck]) -> String {
+    if checks.is_empty() {
+        return String::new();
+    }
+    let mut pending = false;
+    for c in checks {
+        match c.conclusion.to_uppercase().as_str() {
+            "FAILURE" | "ERROR" => return "FAILURE".to_string(),
+            "SUCCESS" | "SKIPPED" | "NEUTRAL" => {}
+            _ => pending = true, // "" → still running / queued
+        }
+        if c.state.to_lowercase() != "completed" {
+            pending = true;
+        }
+    }
+    if pending { "PENDING".to_string() } else { "SUCCESS".to_string() }
+}
+
 fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
     let (r, pr) = get_pr_json(cwd, number)?;
     let project_id = pr
diff --git a/apps/desktop/src-tauri/src/commands/bitbucket.rs b/apps/desktop/src-tauri/src/commands/bitbucket.rs
index 119b9b65..d10d5650 100644
--- a/apps/desktop/src-tauri/src/commands/bitbucket.rs
+++ b/apps/desktop/src-tauri/src/commands/bitbucket.rs
@@ -24,6 +24,8 @@
 use base64::{Engine as _, engine::general_purpose::STANDARD as B64};
 use crate::git::hidden_cmd;
 use crate::types::*;
+use rayon::prelude::*;
+use std::collections::HashMap;
 
 // ─── Credential helpers ────────────────────────────────────────────────────────
 
@@ -457,6 +459,30 @@ pub(crate) async fn bb_list_prs(
         prs.drain(..skip);
     }
 
+    // Colour the sidebar dot from each PR's head-commit build statuses. The list
+    // payload carries `source.commit.hash`, so resolve it per PR (no extra PR
+    // fetch) and aggregate statuses in parallel (red = failed, yellow = running).
+    let sha_by_num: HashMap<i64, String> = values
+        .iter()
+        .filter_map(|pr| {
+            let hash = jdeep(pr, "source", "commit", "hash");
+            if hash.is_empty() { None } else { Some((ji(pr, "id"), hash)) }
+        })
+        .collect();
+    let rollups: HashMap<i64, String> = prs
+        .par_iter()
+        .filter_map(|pr| {
+            let sha = sha_by_num.get(&pr.number)?;
+            let rollup = bb_rollup_for_sha(&workspace, &slug, sha, &auth);
+            if rollup.is_empty() { None } else { Some((pr.number, rollup)) }
+        })
+        .collect();
+    for pr in &mut prs {
+        if let Some(state) = rollups.get(&pr.number) {
+            pr.checks_rollup = state.clone();
+        }
+    }
+
     Ok(prs)
 }
 
@@ -492,7 +518,11 @@ pub(crate) async fn bb_get_pr(cwd: String, pr_id: i64) -> Result<PullRequestDeta
 
     let url = format!("{}/pullrequests/{}", repo_api(&workspace, &slug), pr_id);
     let resp = bb_curl("GET", &url, None, &auth)?;
-    Ok(bb_pr_to_detail(&resp))
+    let mut detail = bb_pr_to_detail(&resp);
+    // Aggregate the head commit's build statuses so the CI tab can colour itself.
+    let sha = jdeep(&resp, "source", "commit", "hash");
+    detail.checks_status = bb_rollup_for_sha(&workspace, &slug, &sha, &auth);
+    Ok(detail)
 }
 
 /// Get the diff of a PR as a unified diff string.
@@ -847,6 +877,40 @@ pub(crate) async fn bb_reviewer_candidates(cwd: String) -> Result<Vec<ReviewerCa
     Ok(candidates)
 }
 
+/// Reduce a commit's Bitbucket build statuses to one rollup state:
+/// `FAILURE` (red) / `PENDING` (yellow) / `SUCCESS` (green), or `""` (no CI).
+/// Precedence: any failed/stopped build ⇒ red, else any in-progress ⇒ yellow.
+fn bb_rollup_from_statuses(values: &[serde_json::Value]) -> String {
+    if values.is_empty() {
+        return String::new();
+    }
+    let mut pending = false;
+    for s in values {
+        // Bitbucket status states: SUCCESSFUL / FAILED / INPROGRESS / STOPPED.
+        match js(s, "state").as_str() {
+            "FAILED" | "STOPPED" => return "FAILURE".to_string(),
+            "SUCCESSFUL" => {}
+            _ => pending = true, // INPROGRESS / anything unknown → still running
+        }
+    }
+    if pending { "PENDING".to_string() } else { "SUCCESS".to_string() }
+}
+
+/// Fetch + aggregate the build statuses of commit `sha`. Sync, best-effort
+/// (empty on any error) so it's safe to fan out under rayon.
+fn bb_rollup_for_sha(workspace: &str, slug: &str, sha: &str, auth: &str) -> String {
+    if sha.is_empty() {
+        return String::new();
+    }
+    let url = format!(
+        "https://api.bitbucket.org/2.0/repositories/{}/{}/commit/{}/statuses?pagelen=100",
+        workspace, slug, sha
+    );
+    let resp = bb_curl("GET", &url, None, auth).unwrap_or(serde_json::Value::Null);
+    let values = resp.get("values").and_then(|v| v.as_array()).cloned().unwrap_or_default();
+    bb_rollup_from_statuses(&values)
+}
+
 /// Get CI status checks for a PR via Bitbucket Pipelines commit statuses endpoint.
 ///
 /// Endpoint: GET /2.0/repositories/{ws}/{slug}/commit/{sha}/statuses
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 4e7bfebc..744ad432 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -38,6 +38,7 @@
 
 use crate::git::{git_cmd, hidden_cmd};
 use crate::types::*;
+use rayon::prelude::*;
 
 // ─── Constants ──────────────────────────────────────────────────────────────
 
@@ -402,11 +403,28 @@ pub(crate) fn rest_list_prs(
             pr.additions = adds;
             pr.deletions = dels;
         }
-        // The REST list carries no CI status. Fetch the status-check rollup for
-        // the listed PRs in a single batched GraphQL call so the sidebar can
-        // flag in-progress / failing CI (yellow dot).
-        let nums: Vec<i64> = prs.iter().map(|p| p.number).collect();
-        let rollups = rest_status_rollups(cwd, &nums, token);
+        // The REST list carries no CI status. Resolve each PR's head SHA from
+        // the raw list payload, then aggregate its check-runs so the sidebar can
+        // colour the dot (red = failing, yellow = pending, green = passing).
+        // We use the REST check-runs endpoint — not GraphQL `statusCheckRollup`
+        // — because fine-grained / GitHub-App tokens can read check-runs but
+        // often can't read the GraphQL rollup field, which would silently leave
+        // every dot green.
+        let sha_by_num: std::collections::HashMap<i64, String> = raw
+            .iter()
+            .filter_map(|pr| {
+                let n = pr.get("number").and_then(|x| x.as_i64())?;
+                Some((n, jnested(pr, "head", "sha")))
+            })
+            .collect();
+        let rollups: std::collections::HashMap<i64, String> = prs
+            .par_iter()
+            .filter_map(|pr| {
+                let sha = sha_by_num.get(&pr.number)?;
+                let rollup = rest_rollup_for_sha(&base, sha, token);
+                if rollup.is_empty() { None } else { Some((pr.number, rollup)) }
+            })
+            .collect();
         for pr in &mut prs {
             if let Some(state) = rollups.get(&pr.number) {
                 pr.checks_rollup = state.clone();
@@ -416,59 +434,49 @@ pub(crate) fn rest_list_prs(
     Ok(prs)
 }
 
-/// Batched status-check rollup for a set of PR numbers via one GraphQL request.
-/// Returns `number → rollup state` (e.g. SUCCESS / PENDING / FAILURE). Best
-/// effort: any failure yields an empty map (no dot, never an error).
-fn rest_status_rollups(
-    cwd: &str,
-    numbers: &[i64],
-    token: &str,
-) -> std::collections::HashMap<i64, String> {
-    let mut map = std::collections::HashMap::new();
-    if numbers.is_empty() {
-        return map;
-    }
-    let (owner, repo) = match owner_repo(cwd) {
-        Ok(x) => x,
-        Err(_) => return map,
-    };
-    // One aliased field per PR: pr<NUM>: pullRequest(number: NUM) { … }.
-    let mut fields = String::new();
-    for n in numbers {
-        fields.push_str(&format!(
-            "pr{0}: pullRequest(number: {0}) {{ commits(last: 1) {{ nodes {{ commit {{ statusCheckRollup {{ state }} }} }} }} }} ",
-            n
-        ));
+/// Aggregate the check-runs of commit `sha` in `repo` ("owner/name") into a
+/// single rollup state: `FAILURE` / `PENDING` / `SUCCESS`, or `""` when the
+/// commit has no checks configured. Best effort — any HTTP error yields `""`.
+///
+/// Uses the REST check-runs endpoint (the same one that powers the CI tab's
+/// per-check list) rather than GraphQL `statusCheckRollup`, so it keeps working
+/// with fine-grained / GitHub-App tokens that can't read the GraphQL field.
+fn rest_rollup_for_sha(repo: &str, sha: &str, token: &str) -> String {
+    if sha.is_empty() {
+        return String::new();
     }
-    let query = format!(
-        "query {{ repository(owner: \"{}\", name: \"{}\") {{ {} }} }}",
-        owner, repo, fields
-    );
-    let payload = serde_json::json!({ "query": query });
-    let v = match api_json("POST", &format!("{}/graphql", API_BASE), token, Some(&payload.to_string())) {
+    let url = format!("{}/repos/{}/commits/{}/check-runs", API_BASE, repo, sha);
+    let v = match api_json("GET", &url, token, None) {
         Ok(v) => v,
-        Err(_) => return map,
-    };
-    let Some(obj) = v.get("data").and_then(|d| d.get("repository")) else {
-        return map;
+        Err(_) => return String::new(),
     };
-    for n in numbers {
-        let state = obj
-            .get(format!("pr{}", n))
-            .and_then(|p| p.get("commits"))
-            .and_then(|c| c.get("nodes"))
-            .and_then(|a| a.as_array())
-            .and_then(|a| a.first())
-            .and_then(|node| node.get("commit"))
-            .and_then(|c| c.get("statusCheckRollup"))
-            .and_then(|r| r.get("state"))
-            .and_then(|s| s.as_str())
-            .unwrap_or("");
-        if !state.is_empty() {
-            map.insert(*n, state.to_uppercase());
+    let runs = v.get("check_runs").and_then(|r| r.as_array()).cloned().unwrap_or_default();
+    rollup_from_check_runs(&runs)
+}
+
+/// Reduce a set of check-run objects to one rollup state.
+/// Precedence: any failure ⇒ `FAILURE`, else any still-running ⇒ `PENDING`,
+/// else `SUCCESS`. Empty input ⇒ `""`.
+fn rollup_from_check_runs(runs: &[serde_json::Value]) -> String {
+    if runs.is_empty() {
+        return String::new();
+    }
+    let mut pending = false;
+    for run in runs {
+        // `status`: QUEUED / IN_PROGRESS / COMPLETED.
+        // `conclusion`: only meaningful once COMPLETED.
+        if js(run, "status").to_uppercase() != "COMPLETED" {
+            pending = true;
+            continue;
+        }
+        match js(run, "conclusion").to_uppercase().as_str() {
+            "FAILURE" | "TIMED_OUT" | "CANCELLED" | "ACTION_REQUIRED" | "STARTUP_FAILURE"
+            | "STALE" => return "FAILURE".to_string(),
+            "SUCCESS" | "NEUTRAL" | "SKIPPED" => {}
+            _ => pending = true,
         }
     }
-    map
+    if pending { "PENDING".to_string() } else { "SUCCESS".to_string() }
 }
 
 /// `git diff --numstat origin/base...origin/head` → (additions, deletions).
@@ -553,8 +561,13 @@ pub(crate) fn rest_pr_count(cwd: &str, state: &str, token: &str) -> Result<i64,
 }
 
 pub(crate) fn rest_pr_detail(cwd: &str, number: i64, token: &str) -> Result<PullRequestDetail, String> {
-    let (_repo, v) = get_pr_json(cwd, number, token)?;
-    Ok(json_to_detail(&v))
+    let (repo, v) = get_pr_json(cwd, number, token)?;
+    let mut detail = json_to_detail(&v);
+    // The REST PR object carries no CI status; aggregate the head commit's
+    // check-runs so the CI tab can colour itself (red / yellow / green).
+    let sha = jnested(&v, "head", "sha");
+    detail.checks_status = rest_rollup_for_sha(&repo, &sha, token);
+    Ok(detail)
 }
 
 pub(crate) fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String, String> {
diff --git a/apps/desktop/src-tauri/src/commands/gitlab.rs b/apps/desktop/src-tauri/src/commands/gitlab.rs
index 9e7ceb8d..d43d9c57 100644
--- a/apps/desktop/src-tauri/src/commands/gitlab.rs
+++ b/apps/desktop/src-tauri/src/commands/gitlab.rs
@@ -17,6 +17,8 @@
 
 use crate::git::hidden_cmd;
 use crate::types::*;
+use rayon::prelude::*;
+use std::collections::HashMap;
 
 // ─── JSON field helpers ────────────────────────────────────────────────────────
 
@@ -250,6 +252,33 @@ pub(crate) async fn gl_list_mrs(
         mrs.drain(..skip);
     }
 
+    // Colour the sidebar dot from each MR's pipeline. The list payload rarely
+    // embeds `head_pipeline`, so use it when present (free) and otherwise fetch
+    // the pipeline per MR in parallel (red = failed, yellow = pending).
+    let embedded: HashMap<i64, String> = arr
+        .iter()
+        .filter_map(|mr| {
+            let iid = ji(mr, "iid");
+            let status = mr.get("head_pipeline").or_else(|| mr.get("pipeline")).map(|p| js(p, "status"))?;
+            Some((iid, status))
+        })
+        .collect();
+    let rollups: HashMap<i64, String> = mrs
+        .par_iter()
+        .filter_map(|mr| {
+            let rollup = match embedded.get(&mr.number) {
+                Some(s) => gl_status_to_rollup(s),
+                None => gl_pipeline_rollup(&cwd, mr.number),
+            };
+            if rollup.is_empty() { None } else { Some((mr.number, rollup)) }
+        })
+        .collect();
+    for mr in &mut mrs {
+        if let Some(state) = rollups.get(&mr.number) {
+            mr.checks_rollup = state.clone();
+        }
+    }
+
     Ok(mrs)
 }
 
@@ -300,7 +329,20 @@ pub(crate) async fn gl_get_mr(cwd: String, iid: i64) -> Result<PullRequestDetail
     let mr: serde_json::Value = serde_json::from_str(stdout.trim())
         .map_err(|e| format!("Failed to parse glab mr view output: {}", e))?;
 
-    Ok(gl_mr_to_detail(&mr))
+    let mut detail = gl_mr_to_detail(&mr);
+    // Prefer the pipeline status embedded in the MR object (free); fall back to
+    // a dedicated pipelines call so the CI tab can colour red / yellow / green.
+    let embedded = mr
+        .get("head_pipeline")
+        .or_else(|| mr.get("pipeline"))
+        .map(|p| js(p, "status"))
+        .unwrap_or_default();
+    detail.checks_status = if embedded.is_empty() {
+        gl_pipeline_rollup(&cwd, iid)
+    } else {
+        gl_status_to_rollup(&embedded)
+    };
+    Ok(detail)
 }
 
 /// Get the unified diff of a MR using `glab mr diff`.
@@ -376,6 +418,41 @@ pub(crate) async fn gl_mr_pipelines(cwd: String, iid: i64) -> Result<Vec<CICheck
         .collect())
 }
 
+/// Reduce a GitLab pipeline `status` to a rollup state the frontend colours:
+/// `FAILURE` (red) / `PENDING` (yellow) / `SUCCESS` (green), or `""` (no CI).
+fn gl_status_to_rollup(status: &str) -> String {
+    match status {
+        "success" => "SUCCESS",
+        "failed" | "canceled" => "FAILURE",
+        // No pipeline / skipped → no dot.
+        "" | "skipped" => "",
+        // created / waiting_for_resource / preparing / pending / running /
+        // manual / scheduled → still in flight.
+        _ => "PENDING",
+    }
+    .to_string()
+}
+
+/// Fetch a MR's most-recent pipeline and reduce it to a rollup state. Sync and
+/// best-effort (empty on any error) so it's safe to fan out under rayon.
+fn gl_pipeline_rollup(cwd: &str, iid: i64) -> String {
+    let endpoint = format!("projects/:fullpath/merge_requests/{}/pipelines", iid);
+    let out = match hidden_cmd("glab").args(["api", &endpoint]).current_dir(cwd).output() {
+        Ok(o) if o.status.success() => o,
+        _ => return String::new(),
+    };
+    let stdout = String::from_utf8_lossy(&out.stdout);
+    let v: serde_json::Value =
+        serde_json::from_str(stdout.trim()).unwrap_or(serde_json::Value::Array(vec![]));
+    // The API returns pipelines newest-first; the first entry is the active one.
+    let status = v
+        .as_array()
+        .and_then(|a| a.first())
+        .map(|p| js(p, "status"))
+        .unwrap_or_default();
+    gl_status_to_rollup(&status)
+}
+
 /// Create a MR using `glab mr create`.
 #[tauri::command]
 pub(crate) async fn gl_create_mr(
diff --git a/apps/desktop/src-tauri/src/git/parse.rs b/apps/desktop/src-tauri/src/git/parse.rs
index dc70beef..5a4cf1d9 100644
--- a/apps/desktop/src-tauri/src/git/parse.rs
+++ b/apps/desktop/src-tauri/src/git/parse.rs
@@ -2,10 +2,54 @@ use std::collections::HashMap;
 use std::path::Path;
 use crate::git::cmd::git_cmd;
 use crate::types::{
-    DiffHunk, DiffLine, FileLogEntry, FolderDiffNode, GhIssueRaw, GhPrDetailRaw, GhPrRaw, Issue,
-    MonorepoPackage, PullRequest, PullRequestDetail, RawFileChange, ShortlogEntry,
+    DiffHunk, DiffLine, FileLogEntry, FolderDiffNode, GhIssueRaw, GhPrDetailRaw, GhPrRaw,
+    GhPrStatusCheck, Issue, MonorepoPackage, PullRequest, PullRequestDetail, RawFileChange,
+    ShortlogEntry,
 };
 
+/// Aggregate a PR's individual status checks into a single rollup state.
+///
+/// Mirrors GitHub's own `statusCheckRollup.state`: a single failing check turns
+/// the whole rollup red, regardless of position. Previously only the first
+/// check's `conclusion` was read, so a green first check masked later failures
+/// (and still-running checks with a null conclusion were dropped entirely).
+///
+/// Precedence: any failure ⇒ `FAILURE`, else any pending/running ⇒ `PENDING`,
+/// else `SUCCESS`. Empty input ⇒ `""` (no checks configured → no dot).
+pub(crate) fn rollup_status_checks(checks: &[GhPrStatusCheck]) -> String {
+    if checks.is_empty() {
+        return String::new();
+    }
+    let mut pending = false;
+    for c in checks {
+        // CheckRun: lifecycle in `status`, outcome in `conclusion` once COMPLETED.
+        // StatusContext: outcome directly in `state`.
+        let outcome = c
+            .conclusion
+            .as_deref()
+            .or(c.state.as_deref())
+            .unwrap_or("")
+            .to_uppercase();
+        match outcome.as_str() {
+            "FAILURE" | "ERROR" | "CANCELLED" | "TIMED_OUT" | "ACTION_REQUIRED"
+            | "STARTUP_FAILURE" | "STALE" => return "FAILURE".to_string(),
+            "SUCCESS" | "NEUTRAL" | "SKIPPED" => {}
+            // PENDING / EXPECTED / QUEUED / "" (running CheckRun with no
+            // conclusion yet) → not green, not red.
+            _ => pending = true,
+        }
+        // A CheckRun that hasn't completed is still pending even if some stale
+        // conclusion is absent.
+        if let Some(st) = c.status.as_deref() {
+            let st = st.to_uppercase();
+            if st != "COMPLETED" && c.conclusion.is_none() {
+                pending = true;
+            }
+        }
+    }
+    if pending { "PENDING".to_string() } else { "SUCCESS".to_string() }
+}
+
 pub(crate) fn parse_diff_hunks(stdout: &str) -> (Vec<DiffHunk>, Option<String>) {
     let mut hunks: Vec<DiffHunk> = Vec::new();
     let mut current_hunk: Option<DiffHunk> = None;
@@ -301,20 +345,15 @@ pub(crate) fn gh_pr_detail_raw_to_detail(r: GhPrDetailRaw) -> PullRequestDetail
         .into_iter()
         .filter_map(|rr| rr.requested_reviewer?.login)
         .collect();
-    let checks_status = {
-        let mut has_failure = false;
-        let mut has_pending = false;
-        for c in &r.status_check_rollup {
-            match c.conclusion.as_deref() {
-                Some("FAILURE" | "ERROR") => has_failure = true,
-                Some("PENDING" | "QUEUED" | "IN_PROGRESS") => has_pending = true,
-                _ => {}
-            }
-        }
-        if has_failure { "failure".to_string() }
-        else if has_pending { "pending".to_string() }
-        else if !r.status_check_rollup.is_empty() { "success".to_string() }
-        else { "unknown".to_string() }
+    // Same aggregation as the list dot (any failure ⇒ red, else pending ⇒
+    // yellow, else green). The old inline logic only looked at `conclusion`,
+    // so a still-running check (its run state lives in `status`) was missed and
+    // a single later failure could be masked.
+    let checks_status = match rollup_status_checks(&r.status_check_rollup).as_str() {
+        "FAILURE" => "failure".to_string(),
+        "PENDING" => "pending".to_string(),
+        "SUCCESS" => "success".to_string(),
+        _ => "unknown".to_string(),
     };
     PullRequestDetail {
         number: r.number,
@@ -372,11 +411,7 @@ pub(crate) fn gh_pr_raw_to_pr(r: GhPrRaw) -> PullRequest {
         .into_iter()
         .filter_map(|rr| rr.requested_reviewer?.login)
         .collect();
-    let checks_rollup = r.status_check_rollup
-        .into_iter()
-        .filter_map(|c| c.conclusion)
-        .next()
-        .unwrap_or_default();
+    let checks_rollup = rollup_status_checks(&r.status_check_rollup);
     let comment_count = r.comments.len() as i64;
     let author = r
         .author
diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 0a502720..138119e1 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -530,6 +530,64 @@ mod tests {
         assert_eq!(pr.checks_rollup, "SUCCESS");
     }
 
+    #[test]
+    fn checks_rollup_is_red_when_any_check_fails() {
+        // Regression: the old parser read only the *first* check's conclusion,
+        // so a green first check masked a later failure → green dot on a red PR.
+        let json = r#"[{
+          "number": 7, "title": "x", "state": "OPEN", "author": {"login": "a"},
+          "headRefName": "h", "baseRefName": "main", "isDraft": false,
+          "createdAt": "2026-01-01T00:00:00Z", "updatedAt": "2026-01-01T00:00:00Z",
+          "url": "u", "additions": 0, "deletions": 0, "labels": [], "assignees": [],
+          "reviewRequests": [], "reviewDecision": null, "mergeStateStatus": null,
+          "statusCheckRollup": [
+            {"conclusion": "SUCCESS"},
+            {"conclusion": "FAILURE"},
+            {"conclusion": "SUCCESS"}
+          ]
+        }]"#;
+        let prs = parse_gh_pr_json(json).unwrap();
+        assert_eq!(prs[0].checks_rollup, "FAILURE");
+    }
+
+    #[test]
+    fn checks_rollup_is_pending_while_a_check_runs() {
+        // A still-running CheckRun (status IN_PROGRESS, conclusion null) and a
+        // legacy StatusContext (state PENDING) both yield a yellow rollup.
+        let json = r#"[{
+          "number": 8, "title": "x", "state": "OPEN", "author": {"login": "a"},
+          "headRefName": "h", "baseRefName": "main", "isDraft": false,
+          "createdAt": "2026-01-01T00:00:00Z", "updatedAt": "2026-01-01T00:00:00Z",
+          "url": "u", "additions": 0, "deletions": 0, "labels": [], "assignees": [],
+          "reviewRequests": [], "reviewDecision": null, "mergeStateStatus": null,
+          "statusCheckRollup": [
+            {"conclusion": "SUCCESS"},
+            {"status": "IN_PROGRESS", "conclusion": null},
+            {"state": "PENDING"}
+          ]
+        }]"#;
+        let prs = parse_gh_pr_json(json).unwrap();
+        assert_eq!(prs[0].checks_rollup, "PENDING");
+    }
+
+    #[test]
+    fn checks_rollup_green_only_when_all_pass() {
+        let json = r#"[{
+          "number": 9, "title": "x", "state": "OPEN", "author": {"login": "a"},
+          "headRefName": "h", "baseRefName": "main", "isDraft": false,
+          "createdAt": "2026-01-01T00:00:00Z", "updatedAt": "2026-01-01T00:00:00Z",
+          "url": "u", "additions": 0, "deletions": 0, "labels": [], "assignees": [],
+          "reviewRequests": [], "reviewDecision": null, "mergeStateStatus": null,
+          "statusCheckRollup": [
+            {"conclusion": "SUCCESS"},
+            {"conclusion": "SKIPPED"},
+            {"state": "SUCCESS"}
+          ]
+        }]"#;
+        let prs = parse_gh_pr_json(json).unwrap();
+        assert_eq!(prs[0].checks_rollup, "SUCCESS");
+    }
+
     #[test]
     fn parse_pr_with_braces_in_title_does_not_silently_drop() {
         // Regression test: the old char-scanning parser broke when PR titles
diff --git a/apps/desktop/src-tauri/src/types.rs b/apps/desktop/src-tauri/src/types.rs
index 27379b8d..d22f0941 100644
--- a/apps/desktop/src-tauri/src/types.rs
+++ b/apps/desktop/src-tauri/src/types.rs
@@ -363,7 +363,17 @@ pub struct GhPrReviewRequest {
 
 #[derive(Deserialize)]
 pub struct GhPrStatusCheck {
+    /// CheckRun outcome (SUCCESS / FAILURE / …). `None` while still running.
+    #[serde(default)]
     pub conclusion: Option<String>,
+    /// StatusContext outcome (SUCCESS / PENDING / FAILURE / ERROR). Present on
+    /// legacy commit-status entries that carry no `conclusion`.
+    #[serde(default)]
+    pub state: Option<String>,
+    /// CheckRun lifecycle (QUEUED / IN_PROGRESS / COMPLETED). Used to detect a
+    /// check that is still running (no conclusion yet).
+    #[serde(default)]
+    pub status: Option<String>,
 }
 
 #[derive(Deserialize)]
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 0553707c..49624fb6 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -75,6 +75,16 @@ const checksUrl = computed(() => {
   return `${base}/checks`;
 });
 
+/** CI tab tint: red on failure, green when all pass, yellow while pending. */
+const ciTabState = computed<"ok" | "fail" | "pending" | null>(() => {
+  const s = (p.prDetail.value?.checksStatus || "").toUpperCase();
+  if (!s) return null;
+  if (["FAILURE", "FAIL", "ERROR"].includes(s)) return "fail";
+  if (s === "SUCCESS" || s === "PASS") return "ok";
+  if (s === "PENDING") return "pending";
+  return null;
+});
+
 /** Review + issue-level comments, sorted oldest-first for display under the description. */
 const sortedComments = computed(() =>
   [...p.prComments.value, ...p.prIssueComments.value].sort(
@@ -311,7 +321,7 @@ function commentTimeAgo(dateStr: string): string {
           </span>
         </button>
         <button
-          :class="['pdv-tab', { 'pdv-tab--active': p.detailTab.value === 'checks' }]"
+          :class="['pdv-tab', ciTabState ? `pdv-tab--ci-${ciTabState}` : '', { 'pdv-tab--active': p.detailTab.value === 'checks' }]"
           @click="p.detailTab.value = 'checks'"
         >
           <svg width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
@@ -943,6 +953,17 @@ function commentTimeAgo(dateStr: string): string {
   font-weight: var(--font-weight-semibold);
 }
 
+/* CI tab tint — visible at a glance even when the tab isn't selected. */
+.pdv-tab--ci-fail:not(.pdv-tab--active) {
+  color: var(--color-danger, #ef4444);
+}
+.pdv-tab--ci-ok:not(.pdv-tab--active) {
+  color: var(--color-success, #3fb950);
+}
+.pdv-tab--ci-pending:not(.pdv-tab--active) {
+  color: var(--color-warning, #f59e0b);
+}
+
 .pdv-tab-emoji {
   font-size: var(--font-size-md);
   line-height: 1;
diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index 15cd1f0e..0d41e9c9 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -73,19 +73,28 @@ function stateInfo(state: string): { label: string; cls: StateCls } {
 }
 
 /**
- * Whether an open PR is still waiting on something to merge (review approval,
- * requested changes, conflicts / blocked merge). Drives a yellow status dot.
+ * Merge-readiness of an open PR, surfaced as the status-dot colour:
+ *  - "fail"    → red: CI failed/errored, or the merge is blocked by conflicts.
+ *  - "waiting" → yellow: still pending (CI running, or an approval is missing).
+ *  - "ok"      → green: everything green, ready to merge.
  * Uses only fields present on the list item — no extra per-PR requests.
  */
-function isWaiting(pr: { state: string; draft: boolean; reviewDecision: string; mergeStateStatus: string; checksRollup: string }): boolean {
-  if (pr.state.toUpperCase() !== "OPEN" || pr.draft) return false;
-  // CI not green yet (in progress, failing, queued).
+type PrStatus = "ok" | "waiting" | "fail";
+function prStatus(pr: { state: string; draft: boolean; reviewDecision: string; mergeStateStatus: string; checksRollup: string }): PrStatus {
+  if (pr.state.toUpperCase() !== "OPEN" || pr.draft) return "ok";
   const ci = (pr.checksRollup || "").toUpperCase();
-  if (["PENDING", "FAILURE", "ERROR", "EXPECTED"].includes(ci)) return true;
-  const rd = (pr.reviewDecision || "").toUpperCase();
-  if (rd === "REVIEW_REQUIRED" || rd === "CHANGES_REQUESTED") return true;
   const ms = (pr.mergeStateStatus || "").toUpperCase();
-  return ["BLOCKED", "CONFLICTING", "CONFLICTS", "DIRTY", "UNSTABLE"].includes(ms);
+  // Red: a hard failure — CI is red, or the merge is blocked by conflicts.
+  if (["FAILURE", "ERROR"].includes(ci)) return "fail";
+  if (["CONFLICTING", "CONFLICTS", "DIRTY"].includes(ms)) return "fail";
+  // Yellow: CI still running / queued.
+  if (["PENDING", "EXPECTED"].includes(ci)) return "waiting";
+  // Yellow: waiting on review approval or changes requested.
+  const rd = (pr.reviewDecision || "").toUpperCase();
+  if (rd === "REVIEW_REQUIRED" || rd === "CHANGES_REQUESTED") return "waiting";
+  // Yellow: blocked / unstable per GitHub's merge-state machine.
+  if (["BLOCKED", "UNSTABLE"].includes(ms)) return "waiting";
+  return "ok";
 }
 
 /** Total count shown as a subtle pill next to the title. */
@@ -273,7 +282,7 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
         <div class="pls-row-top">
           <span class="pls-num">#{{ pr.number }}</span>
           <span class="pls-state-chip" :class="stateInfo(pr.state).cls">
-            <span class="pls-state-dot" :class="{ 'pls-state-dot--waiting': isWaiting(pr) }" aria-hidden="true"></span>
+            <span class="pls-state-dot" :class="`pls-state-dot--${prStatus(pr)}`" aria-hidden="true"></span>
             {{ stateInfo(pr.state).label }}
           </span>
           <span v-if="pr.draft" class="pls-draft-chip">{{ t('pr.list.draft') }}</span>
@@ -695,10 +704,18 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
 }
 
 /* Open PR still waiting on review/merge → yellow dot instead of the green one. */
+.pls-state-dot--ok {
+  background: currentColor;
+}
+
 .pls-state-dot--waiting {
   background: var(--color-warning, #e3b341);
 }
 
+.pls-state-dot--fail {
+  background: var(--color-danger, #f85149);
+}
+
 .pls-state-chip.pls-state--open {
   color: var(--color-success);
   background: var(--color-success-soft);

From b4cffb7c521a5f3d1adb86c80d25b35b53888621 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 15:23:18 -0400
Subject: [PATCH 33/44] fix(pr): Suppress "no approval" waiting reason for
 merge-ready PRs

The "no approval" message was previously shown even when all checks passed and no
changes were requested. This change hides the generic "no approval" waiting
banner in such cases, as the PR is functionally just waiting for a final merge
and isn't blocked by active work. Named reviewer policies are still surfaced.
---
 apps/desktop/src/composables/usePrPanel.ts | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index d44691ec..20f41e5a 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -189,10 +189,12 @@ export function usePrPanel(cwd: Ref<string>) {
     const names = [...new Set(unmet.map((c) => c.name).filter(Boolean))];
     if (names.length) reasons.push(...names);
     else if (!checksOk) reasons.push(t("pr.ready.reasonChecksFailing"));
-    // Only add the generic "no approval" reason when no policy already covers it.
-    const reviewerPolicyShown = names.some((n) => /review|approv/i.test(n));
-    if (!hasApproval && !reviewerPolicyShown) reasons.push(t("pr.ready.reasonNoApproval"));
     if (hasChangesRequested) reasons.push(t("pr.ready.reasonChangesRequested"));
+    // A missing approval on its own isn't worth a banner — checks are green and
+    // nobody requested changes, so we're just waiting for the merge. Hide it
+    // rather than nag with "waiting: no approval". (Named reviewer *policies*
+    // from `unmet` are still surfaced above.)
+    if (reasons.length === 0) return null;
     return { ready: false, reason: t("pr.ready.waitingPrefix", reasons.join(", ")) };
   });
 

From 921a717f6a7c5e4bf4677ce2b94eaca8bc646ee6 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 15:25:21 -0400
Subject: [PATCH 34/44] feat(pr): Deduplicate Azure DevOps CI checks by best
 status

Azure DevOps often reports the same policy twice (e.g., inherited vs. branch-level). This consolidates duplicate checks, prioritizing the most resolved status (e.g., SUCCESS over PENDING) to provide a clearer, more accurate overview of PR health.
---
 apps/desktop/src-tauri/src/commands/azure.rs | 37 ++++++++++++++++++++
 1 file changed, 37 insertions(+)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index d5019147..52720d85 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -948,6 +948,39 @@ fn map_policy_status(status: &str) -> (&'static str, &'static str) {
     }
 }
 
+/// Rank a check's `conclusion` by how "resolved & positive" it is, so duplicate
+/// evaluations of the same policy can be collapsed to their best outcome.
+/// Higher wins: a passed copy beats a still-queued one.
+fn conclusion_rank(conclusion: &str) -> u8 {
+    match conclusion.to_uppercase().as_str() {
+        "SUCCESS" => 3,
+        "SKIPPED" | "NEUTRAL" => 2,
+        "FAILURE" | "ERROR" => 1,
+        _ => 0, // "" / queued / running
+    }
+}
+
+/// Collapse duplicate checks by name. Azure surfaces the same branch policy
+/// twice (inherited + branch-level); when one copy is approved and the other is
+/// still queued, the requirement is already met, so the whole group is success.
+/// First-seen order is preserved.
+fn dedupe_checks(checks: Vec<CICheck>) -> Vec<CICheck> {
+    let mut order: Vec<String> = Vec::new();
+    let mut best: HashMap<String, CICheck> = HashMap::new();
+    for c in checks {
+        match best.get(&c.name) {
+            Some(existing) if conclusion_rank(&existing.conclusion) >= conclusion_rank(&c.conclusion) => {}
+            _ => {
+                if !best.contains_key(&c.name) {
+                    order.push(c.name.clone());
+                }
+                best.insert(c.name.clone(), c);
+            }
+        }
+    }
+    order.into_iter().filter_map(|n| best.remove(&n)).collect()
+}
+
 /// Aggregate a PR's policy/check evaluations into one rollup state:
 /// `FAILURE` (red) / `PENDING` (yellow) / `SUCCESS` (green), or `""` when there
 /// are no checks. Precedence: any failure ⇒ red, else any unfinished ⇒ yellow.
@@ -1039,6 +1072,10 @@ fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
         })
         .collect();
 
+    // Azure reports the same policy twice (inherited + branch-level) — collapse
+    // duplicates so an approved copy isn't shown alongside a queued one.
+    let checks = dedupe_checks(checks);
+
     // Fallback: the preview policy API can be unavailable (permissions, tag).
     // Still convey "waiting for reviewer" from the PR's own reviewer list — if
     // reviewers are assigned and none has approved (vote >= 5), surface it.

From 7d679a163d78cc4c01e0939df5896bccd2e4759b Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 15:41:34 -0400
Subject: [PATCH 35/44] feat(pr): Improve Azure build check accuracy and
 surface merge conflicts

Azure DevOps build-validation policies can report 'queued' even if the underlying build
has already completed (and possibly failed). This update fetches the actual build
outcome to ensure the PR status accurately reflects reality.

Additionally, a virtual 'Merge Conflict' check is now added to the CI tab for
unmergeable PRs. This clearly flags the critical blocker and incorporates it into
the overall merge readiness assessment.
---
 apps/desktop/src-tauri/src/commands/azure.rs | 42 +++++++++++++++++++-
 apps/desktop/src/components/PrDetailView.vue | 10 +++--
 apps/desktop/src/composables/usePrPanel.ts   | 29 ++++++++++++--
 apps/desktop/src/locales/en.ts               |  1 +
 apps/desktop/src/locales/es.ts               |  1 +
 apps/desktop/src/locales/fr.ts               |  1 +
 apps/desktop/src/locales/pt-BR.ts            |  1 +
 apps/desktop/src/locales/zh-CN.ts            |  1 +
 8 files changed, 79 insertions(+), 7 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 52720d85..c7f317d7 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -948,6 +948,31 @@ fn map_policy_status(status: &str) -> (&'static str, &'static str) {
     }
 }
 
+/// Resolve a build's real outcome to `(state, conclusion)`. Build-validation
+/// policy evaluations can report `queued` while the build itself has already
+/// completed — possibly failed — so the build result is the source of truth.
+/// Best-effort: returns `None` on any error so the caller keeps the policy
+/// status. A still-running build maps to pending (yellow).
+fn azure_build_outcome(org: &str, project: &str, build_id: i64) -> Option<(&'static str, &'static str)> {
+    let url = format!(
+        "https://dev.azure.com/{}/{}/_apis/build/builds/{}?api-version=7.1",
+        urlenc(org),
+        urlenc(project),
+        build_id,
+    );
+    let v = az_json("GET", &url, None).ok()?;
+    // `status`: notStarted / inProgress / completed / cancelling / postponed.
+    if js(&v, "status") != "completed" {
+        return Some(("in_progress", ""));
+    }
+    // `result`: succeeded / partiallySucceeded / failed / canceled.
+    Some(match js(&v, "result").as_str() {
+        "succeeded" => ("completed", "SUCCESS"),
+        "failed" | "partiallySucceeded" | "canceled" => ("completed", "FAILURE"),
+        _ => ("completed", ""),
+    })
+}
+
 /// Rank a check's `conclusion` by how "resolved & positive" it is, so duplicate
 /// evaluations of the same policy can be collapsed to their best outcome.
 /// Higher wins: a passed copy beats a still-queued one.
@@ -1062,7 +1087,22 @@ fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
             } else {
                 display
             };
-            let (state, conclusion) = map_policy_status(&js(e, "status"));
+            let (mut state, mut conclusion) = map_policy_status(&js(e, "status"));
+            // Build-validation policies: the policy `status` can sit at "queued"
+            // even after the build has finished and *failed* (Azure shows "1
+            // required check failed" while the policy re-evaluation is still
+            // queued). The build result is authoritative, so resolve it when a
+            // `buildId` is present and override the policy status.
+            if let Some(bid) = e
+                .get("context")
+                .and_then(|c| c.get("buildId"))
+                .and_then(|b| b.as_i64())
+            {
+                if let Some((s, c)) = azure_build_outcome(&r.org, project_id, bid) {
+                    state = s;
+                    conclusion = c;
+                }
+            }
             Some(CICheck {
                 name,
                 state: state.to_string(),
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 49624fb6..e494e142 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -77,6 +77,10 @@ const checksUrl = computed(() => {
 
 /** CI tab tint: red on failure, green when all pass, yellow while pending. */
 const ciTabState = computed<"ok" | "fail" | "pending" | null>(() => {
+  // A merge conflict blocks the PR just like a failing check — flag it red even
+  // when CI itself is green/empty.
+  const mergeable = (p.prDetail.value?.mergeable || "").toUpperCase();
+  if (["CONFLICTING", "CONFLICTS", "DIRTY"].includes(mergeable)) return "fail";
   const s = (p.prDetail.value?.checksStatus || "").toUpperCase();
   if (!s) return null;
   if (["FAILURE", "FAIL", "ERROR"].includes(s)) return "fail";
@@ -333,7 +337,7 @@ function commentTimeAgo(dateStr: string): string {
             class="pdv-tab-emoji pdv-tab-emoji--sm"
             :title="p.prDetail.value.checksStatus"
           >{{ p.checksIcon(p.prDetail.value.checksStatus) }}</span>
-          <span v-if="p.prChecks.value.length" class="pdv-tab-count">{{ p.prChecks.value.length }}</span>
+          <span v-if="p.checksWithConflict.value.length" class="pdv-tab-count">{{ p.checksWithConflict.value.length }}</span>
         </button>
         <button
           :class="['pdv-tab', { 'pdv-tab--active': p.detailTab.value === 'intelligence' }]"
@@ -607,9 +611,9 @@ function commentTimeAgo(dateStr: string): string {
 
         <!-- CI tab -->
         <div v-else-if="p.detailTab.value === 'checks'" class="pdv-body pdv-checks-body">
-          <div v-if="p.prChecks.value.length === 0" class="pdv-loading">{{ t('pr.detail.noChecks') }}</div>
+          <div v-if="p.checksWithConflict.value.length === 0" class="pdv-loading">{{ t('pr.detail.noChecks') }}</div>
           <div v-else class="pdv-checks">
-            <div v-for="c in p.prChecks.value" :key="c.name" class="pdv-check">
+            <div v-for="c in p.checksWithConflict.value" :key="c.name" class="pdv-check">
               <span class="pdv-check-icon">{{ p.checkIcon(c) }}</span>
               <span class="pdv-check-name">{{ c.name }}</span>
               <span class="pdv-check-state">{{ c.conclusion || c.state }}</span>
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 20f41e5a..15cc0ff7 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -159,7 +159,10 @@ export function usePrPanel(cwd: Ref<string>) {
   const commentCount = computed(() => prComments.value.length);
 
   const mergeReadiness = computed<{ ready: boolean; reason: string } | null>(() => {
-    if (!prReviews.value.length && !prChecks.value.length) return null;
+    // A merge conflict blocks the PR on its own, even with no checks/reviews.
+    const mergeable = (prDetail.value?.mergeable || "").toUpperCase();
+    const hasConflict = ["CONFLICTING", "CONFLICTS", "DIRTY"].includes(mergeable);
+    if (!prReviews.value.length && !prChecks.value.length && !hasConflict) return null;
     // A check blocks merge only when it is genuinely failing or still pending.
     // Anything else (success, skipped, neutral, or a completed check with an
     // unrecognised/empty conclusion) is treated as fine — so a passing CI run is
@@ -179,10 +182,12 @@ export function usePrPanel(cwd: Ref<string>) {
     const checksOk = unmet.length === 0;
     const hasApproval = prReviews.value.some((r) => r.state === "APPROVED");
     const hasChangesRequested = prReviews.value.some((r) => r.state === "CHANGES_REQUESTED");
-    if (checksOk && hasApproval && !hasChangesRequested) {
+    if (checksOk && hasApproval && !hasChangesRequested && !hasConflict) {
       return { ready: true, reason: t("pr.ready.ready") };
     }
     const reasons: string[] = [];
+    // Merge conflict first — it's the hardest blocker.
+    if (hasConflict) reasons.push(t("pr.ready.reasonMergeConflict"));
     // Prefer the concrete policy/check names; fall back to the generic label.
     // De-duplicate identical names (Azure can report the same policy twice, e.g.
     // an inherited + branch-level "At least 1 reviewer must approve").
@@ -198,6 +203,24 @@ export function usePrPanel(cwd: Ref<string>) {
     return { ready: false, reason: t("pr.ready.waitingPrefix", reasons.join(", ")) };
   });
 
+  /**
+   * v2.10 — Virtual 'Merge Conflict' check surfaced in the CI tab.
+   * If the PR's mergeable state is CONFLICTING, we unshift a hard failure
+   * into the checks list so the user sees exactly what's blocking.
+   */
+  const checksWithConflict = computed(() => {
+    const list = [...prChecks.value];
+    if (prDetail.value?.mergeable === "CONFLICTING") {
+      list.unshift({
+        name: "Merge Conflict",
+        state: "completed",
+        conclusion: "FAILURE",
+        detailsUrl: "",
+      } as CICheck);
+    }
+    return list;
+  });
+
   const selectedDiff = computed<GitDiff | null>(() =>
     selectedDiffFile.value
       ? (prDiffFiles.value.find((f) => f.path === selectedDiffFile.value) ?? null)
@@ -839,7 +862,7 @@ export function usePrPanel(cwd: Ref<string>) {
     showCreateForm, newPrTitle, newPrBody, newPrBase, newPrDraft, newPrReviewers, isCreating,
     forkInfo, newPrBaseRepo,
     mergingPr, mergeMethod,
-    selectedPr, prDetail, prChecks, prDiffFiles, prComments, prIssueComments, prReviews,
+    selectedPr, prDetail, prChecks, checksWithConflict, prDiffFiles, prComments, prIssueComments, prReviews,
     detailLoading, detailRefreshing, detailError, detailTab, selectedDiffFile, diffMode,
     draftReviewComments, showReviewModal, submittingReview,
     conflictPreview, conflictLoading, conflictError,
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index fb987e69..3ba67fc9 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -920,6 +920,7 @@ const en = {
       ready: "All checks are green and the PR is approved.",
       waitingPrefix: "Waiting: {0}.",
       reasonChecksFailing: "CI checks failing",
+      reasonMergeConflict: "merge conflict",
       reasonNoApproval: "no approval",
       reasonChangesRequested: "changes requested",
     },
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index 73fe9457..ffa9f8f9 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -903,6 +903,7 @@ const es: Locale = {
       ready: "Todos los checks están en verde y la PR está aprobada.",
       waitingPrefix: "Esperando: {0}.",
       reasonChecksFailing: "checks de CI fallando",
+      reasonMergeConflict: "conflicto de fusión",
       reasonNoApproval: "sin aprobación",
       reasonChangesRequested: "cambios solicitados",
     },
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index e0d29d5c..4e3afa57 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -914,6 +914,7 @@ const fr: Locale = {
       ready: "Tous les checks sont au vert et la PR est approuvée.",
       waitingPrefix: "En attente : {0}.",
       reasonChecksFailing: "checks CI en échec",
+      reasonMergeConflict: "conflit détecté",
       reasonNoApproval: "aucune approbation",
       reasonChangesRequested: "modifications demandées",
     },
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index a4f0c132..6a6ff5f3 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -904,6 +904,7 @@ const ptBR: Locale = {
       ready: "Todos os checks estão verdes e a PR está aprovada.",
       waitingPrefix: "Aguardando: {0}.",
       reasonChecksFailing: "checks de CI falhando",
+      reasonMergeConflict: "conflito de merge",
       reasonNoApproval: "sem aprovação",
       reasonChangesRequested: "alterações solicitadas",
     },
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index be84fab2..782b467d 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -892,6 +892,7 @@ const zhCN: Locale = {
       ready: "所有检查均为绿色，PR 已获批准。",
       waitingPrefix: "等待中：{0}。",
       reasonChecksFailing: "CI 检查失败",
+      reasonMergeConflict: "合并冲突",
       reasonNoApproval: "无批准",
       reasonChangesRequested: "请求修改",
     },

From 6dd18c2a12865df44aedd425b81277b2bc0b8ae7 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 15:50:32 -0400
Subject: [PATCH 36/44] feat(pr): Enhance Azure check accuracy for builds and
 expired policies

Azure DevOps policies for builds can appear generically, leading to incorrect
de-duplication. This update ensures distinct build definitions are treated as
separate checks by including their ID in the de-duplication key.

Additionally, Azure's "Expired (Please Re-queue)" status is now recognized
and surfaced with a warning, clearly indicating that a build needs to be
re-run to resolve a merge block. This was previously treated as a generic
pending state.
---
 apps/desktop/src-tauri/src/commands/azure.rs | 93 ++++++++++++++------
 apps/desktop/src/composables/usePrPanel.ts   |  3 +
 2 files changed, 68 insertions(+), 28 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index c7f317d7..0126be22 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -981,29 +981,30 @@ fn conclusion_rank(conclusion: &str) -> u8 {
         "SUCCESS" => 3,
         "SKIPPED" | "NEUTRAL" => 2,
         "FAILURE" | "ERROR" => 1,
-        _ => 0, // "" / queued / running
+        _ => 0, // "" / queued / running / expired
     }
 }
 
-/// Collapse duplicate checks by name. Azure surfaces the same branch policy
+/// Collapse duplicate checks by `key`. Azure surfaces the same branch policy
 /// twice (inherited + branch-level); when one copy is approved and the other is
 /// still queued, the requirement is already met, so the whole group is success.
+/// Distinct build definitions get distinct keys, so they are NOT merged.
 /// First-seen order is preserved.
-fn dedupe_checks(checks: Vec<CICheck>) -> Vec<CICheck> {
+fn dedupe_checks(checks: Vec<(String, CICheck)>) -> Vec<CICheck> {
     let mut order: Vec<String> = Vec::new();
     let mut best: HashMap<String, CICheck> = HashMap::new();
-    for c in checks {
-        match best.get(&c.name) {
+    for (key, c) in checks {
+        match best.get(&key) {
             Some(existing) if conclusion_rank(&existing.conclusion) >= conclusion_rank(&c.conclusion) => {}
             _ => {
-                if !best.contains_key(&c.name) {
-                    order.push(c.name.clone());
+                if !best.contains_key(&key) {
+                    order.push(key.clone());
                 }
-                best.insert(c.name.clone(), c);
+                best.insert(key, c);
             }
         }
     }
-    order.into_iter().filter_map(|n| best.remove(&n)).collect()
+    order.into_iter().filter_map(|k| best.remove(&k)).collect()
 }
 
 /// Aggregate a PR's policy/check evaluations into one rollup state:
@@ -1018,7 +1019,8 @@ fn rollup_from_checks(checks: &[CICheck]) -> String {
         match c.conclusion.to_uppercase().as_str() {
             "FAILURE" | "ERROR" => return "FAILURE".to_string(),
             "SUCCESS" | "SKIPPED" | "NEUTRAL" => {}
-            _ => pending = true, // "" → still running / queued
+            // EXPIRED (stale build, needs re-queue) → pending/warning, not red.
+            _ => pending = true, // "" / EXPIRED → still running / queued
         }
         if c.state.to_lowercase() != "completed" {
             pending = true;
@@ -1054,7 +1056,7 @@ fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
         Err(_) => return Ok(Vec::new()),
     };
     let evals = v.get("value").and_then(|a| a.as_array()).cloned().unwrap_or_default();
-    let checks: Vec<CICheck> = evals
+    let checks: Vec<(String, CICheck)> = evals
         .iter()
         .filter_map(|e| {
             let cfg = e.get("configuration");
@@ -1071,11 +1073,12 @@ fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
             if dl.contains("merge strategy") || dl.contains("stratégie de fusion") {
                 return None;
             }
+            let settings = cfg.and_then(|c| c.get("settings"));
             // Spell out the reviewer requirement ("At least N reviewer(s) must
             // approve") so the merge-readiness banner is self-explanatory.
-            let name = if display.to_lowercase().contains("reviewer") {
-                let n = cfg
-                    .and_then(|c| c.get("settings"))
+            let is_reviewer = display.to_lowercase().contains("reviewer");
+            let name = if is_reviewer {
+                let n = settings
                     .and_then(|s| s.get("minimumApproverCount"))
                     .and_then(|c| c.as_i64())
                     .unwrap_or(0);
@@ -1085,35 +1088,69 @@ fn rest_pr_checks(cwd: &str, number: i64) -> Result<Vec<CICheck>, String> {
                     display
                 }
             } else {
-                display
+                // Build / Status policies all share the generic type displayName
+                // ("Build"); their real name lives in `settings.displayName`. Use
+                // it so distinct builds don't all read as "Build".
+                settings
+                    .and_then(|s| s.get("displayName"))
+                    .and_then(|x| x.as_str())
+                    .filter(|x| !x.is_empty())
+                    .map(String::from)
+                    .unwrap_or(display)
+            };
+            // Dedupe key: reviewer policies legitimately appear twice (inherited +
+            // branch-level) and must collapse, but distinct build definitions can
+            // share a name and must NOT — so fold the build definition id into the
+            // key when present.
+            let build_def_id = settings
+                .and_then(|s| s.get("buildDefinitionId"))
+                .and_then(|b| b.as_i64());
+            let dedupe_key = match build_def_id {
+                Some(id) => format!("build:{}", id),
+                None => name.clone(),
             };
             let (mut state, mut conclusion) = map_policy_status(&js(e, "status"));
-            // Build-validation policies: the policy `status` can sit at "queued"
-            // even after the build has finished and *failed* (Azure shows "1
-            // required check failed" while the policy re-evaluation is still
-            // queued). The build result is authoritative, so resolve it when a
-            // `buildId` is present and override the policy status.
-            if let Some(bid) = e
+            let is_expired = e
+                .get("context")
+                .and_then(|c| c.get("isExpired"))
+                .and_then(|b| b.as_bool())
+                .unwrap_or(false);
+            if is_expired {
+                // The build ran against a stale commit — Azure flags it
+                // "Expired (Please Re-queue)" and it blocks the merge. Surface it
+                // as a labelled failure so the user knows to re-run it.
+                state = "completed";
+                conclusion = "EXPIRED";
+            } else if let Some(bid) = e
                 .get("context")
                 .and_then(|c| c.get("buildId"))
                 .and_then(|b| b.as_i64())
             {
+                // Build-validation policies: the policy `status` can sit at
+                // "queued" even after the build has finished and *failed* (Azure
+                // shows "1 required check failed" while the policy re-evaluation
+                // is still queued). The build result is authoritative, so resolve
+                // it when a `buildId` is present and override the policy status.
                 if let Some((s, c)) = azure_build_outcome(&r.org, project_id, bid) {
                     state = s;
                     conclusion = c;
                 }
             }
-            Some(CICheck {
-                name,
-                state: state.to_string(),
-                conclusion: conclusion.to_string(),
-                details_url: String::new(),
-            })
+            Some((
+                dedupe_key,
+                CICheck {
+                    name,
+                    state: state.to_string(),
+                    conclusion: conclusion.to_string(),
+                    details_url: String::new(),
+                },
+            ))
         })
         .collect();
 
     // Azure reports the same policy twice (inherited + branch-level) — collapse
-    // duplicates so an approved copy isn't shown alongside a queued one.
+    // duplicates so an approved copy isn't shown alongside a queued one. Keyed by
+    // build definition where applicable so distinct builds are kept separate.
     let checks = dedupe_checks(checks);
 
     // Fallback: the preview policy API can be unavailable (permissions, tag).
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 15cc0ff7..29274b7b 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -172,6 +172,8 @@ export function usePrPanel(cwd: Ref<string>) {
     const isBlocking = (c: CICheck) => {
       const concl = (c.conclusion || "").toUpperCase();
       if (FAILING.includes(concl)) return true;
+      // Expired build (needs a re-queue) — a pending-style warning, still blocks.
+      if (concl === "EXPIRED") return true;
       // Still running — no conclusion yet and a pending-looking state.
       return !concl && PENDING.includes((c.state || "").toUpperCase());
     };
@@ -786,6 +788,7 @@ export function usePrPanel(cwd: Ref<string>) {
     const s = (c.conclusion || c.state || "").toUpperCase();
     if (s === "SUCCESS") return "✅";
     if (["FAILURE", "ERROR", "CANCELLED"].includes(s)) return "❌";
+    if (s === "EXPIRED") return "⚠️";
     if (["PENDING", "IN_PROGRESS", "QUEUED"].includes(s)) return "⏳";
     if (s === "SKIPPED") return "⏭️";
     return "❓";

From c8eb6409a58f4794858b6bcaec5f7ef0582f6c4a Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 15:53:29 -0400
Subject: [PATCH 37/44] feat(pr): Evaluate CI status for draft pull requests

Previously, draft PRs were always shown as "ok" (green) in the sidebar,
regardless of their actual CI status. This change ensures that draft PRs
also reflect their underlying CI health, providing a more accurate
visual indicator (e.g., red for failing checks).
---
 apps/desktop/src/components/PrListSidebar.vue | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index 0d41e9c9..3624a0fd 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -81,7 +81,8 @@ function stateInfo(state: string): { label: string; cls: StateCls } {
  */
 type PrStatus = "ok" | "waiting" | "fail";
 function prStatus(pr: { state: string; draft: boolean; reviewDecision: string; mergeStateStatus: string; checksRollup: string }): PrStatus {
-  if (pr.state.toUpperCase() !== "OPEN" || pr.draft) return "ok";
+  // Draft PRs still follow the colour code — a draft with failing CI is red.
+  if (pr.state.toUpperCase() !== "OPEN") return "ok";
   const ci = (pr.checksRollup || "").toUpperCase();
   const ms = (pr.mergeStateStatus || "").toUpperCase();
   // Red: a hard failure — CI is red, or the merge is blocked by conflicts.

From 447d7b2b0684fb2d577dc6e9c825e99383a27587 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 15:58:32 -0400
Subject: [PATCH 38/44] feat(pr): Improve merge status display by considering
 CI state

The displayed merge status now intelligently factors in the CI state,
preventing a misleading "Mergeable" status when checks are red. It will
show "Problem detected" if CI is failing, or "Conflicting" if there are
Git conflicts.

Additionally, the merge status labels are now localized for a more
user-friendly experience.
---
 apps/desktop/src/components/PrDetailView.vue | 21 ++++++++++++++++++--
 apps/desktop/src/locales/en.ts               |  4 ++++
 apps/desktop/src/locales/es.ts               |  4 ++++
 apps/desktop/src/locales/fr.ts               |  4 ++++
 apps/desktop/src/locales/pt-BR.ts            |  4 ++++
 apps/desktop/src/locales/zh-CN.ts            |  4 ++++
 6 files changed, 39 insertions(+), 2 deletions(-)

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index e494e142..c7c115cd 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -89,6 +89,23 @@ const ciTabState = computed<"ok" | "fail" | "pending" | null>(() => {
   return null;
 });
 
+/** Merge status shown in the stats grid — never claims "Mergeable" while CI is
+ * red or the branch conflicts. */
+const mergeStatus = computed<{ icon: string; label: string }>(() => {
+  const m = (p.prDetail.value?.mergeable || "").toUpperCase();
+  if (["CONFLICTING", "CONFLICTS", "DIRTY"].includes(m)) {
+    return { icon: "⚠️", label: t("pr.detail.mergeConflicting") };
+  }
+  // CI failed (red) but no git conflict — surface a generic problem instead of
+  // a misleading "Mergeable".
+  if (ciTabState.value === "fail") {
+    return { icon: "⚠️", label: t("pr.detail.mergeProblem") };
+  }
+  if (m === "MERGEABLE") return { icon: "✅", label: t("pr.detail.mergeMergeable") };
+  if (!m || m === "UNKNOWN") return { icon: "—", label: t("pr.detail.mergeUnknown") };
+  return { icon: p.mergeableIcon(m), label: m };
+});
+
 /** Review + issue-level comments, sorted oldest-first for display under the description. */
 const sortedComments = computed(() =>
   [...p.prComments.value, ...p.prIssueComments.value].sort(
@@ -421,8 +438,8 @@ function commentTimeAgo(dateStr: string): string {
               </span>
               <span class="pdv-stat-label">{{ t('pr.detail.statMerge') }}</span>
               <span class="pdv-stat-value">
-                <span class="pdv-stat-emoji">{{ p.mergeableIcon(p.prDetail.value.mergeable) }}</span>
-                {{ p.prDetail.value.mergeable }}
+                <span class="pdv-stat-emoji">{{ mergeStatus.icon }}</span>
+                {{ mergeStatus.label }}
               </span>
             </div>
 
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index 3ba67fc9..d15d8bc6 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -814,6 +814,10 @@ const en = {
       reviewBtn: "Review",
       reviewBtnWithCount: "Review ({0})",
       statMerge: "Merge",
+      mergeMergeable: "Mergeable",
+      mergeConflicting: "Conflicting",
+      mergeProblem: "Problem detected",
+      mergeUnknown: "Unknown",
       statFiles: "Files",
       statDiff: "Diff",
       statComments: "Comments",
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index ffa9f8f9..f9425b39 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -797,6 +797,10 @@ const es: Locale = {
       reviewBtn: "Review",
       reviewBtnWithCount: "Review ({0})",
       statMerge: "Merge",
+      mergeMergeable: "Fusionable",
+      mergeConflicting: "En conflicto",
+      mergeProblem: "Problema detectado",
+      mergeUnknown: "Desconocido",
       statFiles: "Archivos",
       statDiff: "Diff",
       statComments: "Comentarios",
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index 4e3afa57..2957741b 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -808,6 +808,10 @@ const fr: Locale = {
       reviewBtn: "Review",
       reviewBtnWithCount: "Review ({0})",
       statMerge: "Merge",
+      mergeMergeable: "Fusionnable",
+      mergeConflicting: "Conflit",
+      mergeProblem: "Problème détecté",
+      mergeUnknown: "Inconnu",
       statFiles: "Fichiers",
       statDiff: "Diff",
       statComments: "Commentaires",
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index 6a6ff5f3..cae60a8b 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -798,6 +798,10 @@ const ptBR: Locale = {
       reviewBtn: "Review",
       reviewBtnWithCount: "Review ({0})",
       statMerge: "Merge",
+      mergeMergeable: "Pode mesclar",
+      mergeConflicting: "Em conflito",
+      mergeProblem: "Problema detectado",
+      mergeUnknown: "Desconhecido",
       statFiles: "Arquivos",
       statDiff: "Diff",
       statComments: "Comentários",
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index 782b467d..0d9b6471 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -786,6 +786,10 @@ const zhCN: Locale = {
       reviewBtn: "Review",
       reviewBtnWithCount: "Review ({0})",
       statMerge: "Merge",
+      mergeMergeable: "可合并",
+      mergeConflicting: "存在冲突",
+      mergeProblem: "检测到问题",
+      mergeUnknown: "未知",
       statFiles: "文件",
       statDiff: "Diff",
       statComments: "评论",

From 87dfc155fbf46ac00ac78cbc1fca44f258ee772c Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 16:17:22 -0400
Subject: [PATCH 39/44] feat(pr, auth): Refactor OAuth device flow and optimize
 PR UI

Consolidates GitHub and Azure device authorization grant logic into a shared
`useDeviceFlowAuth` composable, improving code reuse and maintainability for
authentication workflows.

Enhances PR list performance by parallelizing diff calculations for additions
and deletions.

Optimizes markdown rendering for PR descriptions and comments by pre-rendering
HTML and centralizing external link handling, reducing re-renders and improving
UI responsiveness.

Standardizes checks for merge conflicts across PR components for consistency.
---
 apps/desktop/src-tauri/src/commands/azure.rs  |   4 +-
 .../src-tauri/src/commands/github_api.rs      |   4 +-
 .../src/components/PrCommentThread.vue        |  26 ++--
 apps/desktop/src/components/PrDetailView.vue  |  44 +++---
 apps/desktop/src/components/PrListSidebar.vue |   4 +-
 apps/desktop/src/composables/useAzureAuth.ts  | 136 ++---------------
 .../src/composables/useDeviceFlowAuth.ts      | 140 +++++++++++++++++
 apps/desktop/src/composables/useGithubAuth.ts | 144 ++----------------
 apps/desktop/src/composables/usePrPanel.ts    |  13 +-
 apps/desktop/src/composables/useSafeHtml.ts   |  16 ++
 10 files changed, 229 insertions(+), 302 deletions(-)
 create mode 100644 apps/desktop/src/composables/useDeviceFlowAuth.ts

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 0126be22..47f8b9f3 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -604,11 +604,11 @@ fn rest_list_prs(cwd: &str, state: &str, limit: i64, offset: i64) -> Result<Vec<
         if offset == 0 {
             let _ = git_cmd().args(["fetch", "origin"]).current_dir(cwd).output();
         }
-        for pr in &mut prs {
+        prs.par_iter_mut().for_each(|pr| {
             let (_, adds, dels) = diff_numstat(cwd, &pr.branch, &pr.base);
             pr.additions = adds;
             pr.deletions = dels;
-        }
+        });
         // Aggregate each PR's branch-policy evaluations into a rollup so the
         // sidebar dot can colour (red = a build/policy failed, yellow = pending,
         // green = all pass). Parallel — one policy round-trip per PR.
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 744ad432..66443d4c 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -398,11 +398,11 @@ pub(crate) fn rest_list_prs(
         if off == 0 {
             let _ = git_cmd().args(["fetch", "origin"]).current_dir(cwd).output();
         }
-        for pr in &mut prs {
+        prs.par_iter_mut().for_each(|pr| {
             let (adds, dels) = diff_numstat(cwd, &pr.branch, &pr.base);
             pr.additions = adds;
             pr.deletions = dels;
-        }
+        });
         // The REST list carries no CI status. Resolve each PR's head SHA from
         // the raw list payload, then aggregate its check-runs so the sidebar can
         // colour the dot (red = failing, yellow = pending, green = passing).
diff --git a/apps/desktop/src/components/PrCommentThread.vue b/apps/desktop/src/components/PrCommentThread.vue
index bc508edf..765c141c 100644
--- a/apps/desktop/src/components/PrCommentThread.vue
+++ b/apps/desktop/src/components/PrCommentThread.vue
@@ -9,21 +9,10 @@
  */
 import { ref, computed } from "vue";
 import type { PrReviewComment } from "../utils/backend";
-import { openExternalUrl } from "../utils/backend";
-import { safeHtml, renderMarkdown } from "../composables/useSafeHtml";
+import { renderMarkdown, onMarkdownLinkClick } from "../composables/useSafeHtml";
 import { useI18n } from "../composables/useI18n";
 import { useAvatar } from "../composables/useAvatar";
 
-// Anchors in rendered comment markdown must open in the OS browser, not
-// navigate the Tauri webview away from the app.
-function onMarkdownClick(e: MouseEvent) {
-  const href = (e.target as HTMLElement | null)?.closest("a")?.getAttribute("href");
-  if (href && /^https?:\/\//i.test(href)) {
-    e.preventDefault();
-    void openExternalUrl(href);
-  }
-}
-
 const { t } = useI18n();
 
 const props = defineProps<{
@@ -95,6 +84,15 @@ function applySuggestion(comment: PrReviewComment) {
 
 const suggLabel = computed(() => t("pr.comment.suggestionLabel"));
 
+// Render each comment's markdown once per data change. Done here rather than in
+// the `v-html` binding so the (expensive) parse + sanitize doesn't re-run on
+// every component re-render for every comment in the thread.
+const bodyHtmlById = computed(() => {
+  const m = new Map<number, string>();
+  for (const c of props.comments) m.set(c.id, renderMarkdown(c.body));
+  return m;
+});
+
 // Avatar disks share the app-wide outline style — see composables/useAvatar.
 const { avatarStyle, avatarInitials } = useAvatar();
 
@@ -157,8 +155,8 @@ function timeAgo(dateStr: string): string {
         v-else
         class="pct-body"
         :style="{ '--suggestion-label': `'${suggLabel}'` }"
-        @click="onMarkdownClick"
-        v-html="renderMarkdown(comment.body)"
+        @click="onMarkdownLinkClick"
+        v-html="bodyHtmlById.get(comment.id)"
       />
 
       <!-- Apply suggestion button -->
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index c7c115cd..391b414b 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -12,8 +12,8 @@
  * - Polished tabs with animation + count badges
  */
 import { computed, inject, nextTick, ref } from "vue";
-import { PR_PANEL_KEY, type PrPanelState } from "../composables/usePrPanel";
-import { renderMarkdown } from "../composables/useSafeHtml";
+import { PR_PANEL_KEY, isMergeConflict, type PrPanelState } from "../composables/usePrPanel";
+import { renderMarkdown, onMarkdownLinkClick } from "../composables/useSafeHtml";
 import { useAvatar } from "../composables/useAvatar";
 import { openExternalUrl } from "../utils/backend";
 import { useI18n } from "../composables/useI18n";
@@ -33,19 +33,6 @@ const p = inject<PrPanelState>(PR_PANEL_KEY)!;
 // window.open is a no-op in the Tauri webview — hand the URL to the OS opener.
 function openInBrowser(url: string) { void openExternalUrl(url); }
 
-// Anchors inside rendered markdown (PR description) would otherwise navigate the
-// Tauri webview away from the app. Intercept clicks on http(s) links and hand
-// them to the OS browser instead.
-function onMarkdownClick(e: MouseEvent) {
-  const anchor = (e.target as HTMLElement | null)?.closest("a");
-  const href = anchor?.getAttribute("href");
-  if (!href) return;
-  if (/^https?:\/\//i.test(href)) {
-    e.preventDefault();
-    void openExternalUrl(href);
-  }
-}
-
 // Avatar disks share the app-wide outline style — see composables/useAvatar.
 const { avatarStyle, avatarInitials: authorInitials } = useAvatar();
 
@@ -79,8 +66,7 @@ const checksUrl = computed(() => {
 const ciTabState = computed<"ok" | "fail" | "pending" | null>(() => {
   // A merge conflict blocks the PR just like a failing check — flag it red even
   // when CI itself is green/empty.
-  const mergeable = (p.prDetail.value?.mergeable || "").toUpperCase();
-  if (["CONFLICTING", "CONFLICTS", "DIRTY"].includes(mergeable)) return "fail";
+  if (isMergeConflict(p.prDetail.value?.mergeable)) return "fail";
   const s = (p.prDetail.value?.checksStatus || "").toUpperCase();
   if (!s) return null;
   if (["FAILURE", "FAIL", "ERROR"].includes(s)) return "fail";
@@ -93,7 +79,7 @@ const ciTabState = computed<"ok" | "fail" | "pending" | null>(() => {
  * red or the branch conflicts. */
 const mergeStatus = computed<{ icon: string; label: string }>(() => {
   const m = (p.prDetail.value?.mergeable || "").toUpperCase();
-  if (["CONFLICTING", "CONFLICTS", "DIRTY"].includes(m)) {
+  if (isMergeConflict(m)) {
     return { icon: "⚠️", label: t("pr.detail.mergeConflicting") };
   }
   // CI failed (red) but no git conflict — surface a generic problem instead of
@@ -106,13 +92,21 @@ const mergeStatus = computed<{ icon: string; label: string }>(() => {
   return { icon: p.mergeableIcon(m), label: m };
 });
 
-/** Review + issue-level comments, sorted oldest-first for display under the description. */
+/**
+ * Review + issue-level comments, sorted oldest-first for display under the
+ * description. `bodyHtml` is rendered once here (markdown parse + sanitize is
+ * expensive) instead of in the `v-html` binding, which would re-run on every
+ * re-render for every comment.
+ */
 const sortedComments = computed(() =>
-  [...p.prComments.value, ...p.prIssueComments.value].sort(
-    (a, b) => new Date(a.created_at).getTime() - new Date(b.created_at).getTime(),
-  ),
+  [...p.prComments.value, ...p.prIssueComments.value]
+    .sort((a, b) => new Date(a.created_at).getTime() - new Date(b.created_at).getTime())
+    .map((c) => ({ ...c, bodyHtml: renderMarkdown(c.body) })),
 );
 
+/** PR description rendered once (see `sortedComments` for the rationale). */
+const descriptionHtml = computed(() => renderMarkdown(p.prDetail.value?.body));
+
 /** Anchor at the bottom of the comments list — target for the Comments tile. */
 const commentsEnd = ref<HTMLElement | null>(null);
 
@@ -536,8 +530,8 @@ function commentTimeAgo(dateStr: string): string {
               <div
                 v-if="descriptionTab === 'formatted'"
                 class="pdv-body-formatted"
-                @click="onMarkdownClick"
-                v-html="renderMarkdown(p.prDetail.value.body)"
+                @click="onMarkdownLinkClick"
+                v-html="descriptionHtml"
               />
               <pre v-else class="pdv-body-raw"><code>{{ p.prDetail.value.body }}</code></pre>
             </div>
@@ -572,7 +566,7 @@ function commentTimeAgo(dateStr: string): string {
                   <span v-if="c.path" class="pdv-comment-anchor">{{ c.path.split('/').pop() }}<template v-if="c.line">:{{ c.line }}</template></span>
                   <span class="pdv-comment-time" :title="c.created_at">{{ commentTimeAgo(c.created_at) }}</span>
                 </div>
-                <div class="pdv-comment-body" @click="onMarkdownClick" v-html="renderMarkdown(c.body)" />
+                <div class="pdv-comment-body" @click="onMarkdownLinkClick" v-html="c.bodyHtml" />
               </li>
             </ul>
             <div ref="commentsEnd"></div>
diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index 3624a0fd..c3fcf684 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -11,7 +11,7 @@
  * - Hover-lift + active accent border, matching the rest of the app
  */
 import { computed, inject, onMounted, onBeforeUnmount, ref, watch } from "vue";
-import { PR_PANEL_KEY, type PrPanelState } from "../composables/usePrPanel";
+import { PR_PANEL_KEY, isMergeConflict, type PrPanelState } from "../composables/usePrPanel";
 import { OPEN_SETTINGS_KEY } from "../composables/branchPickerBridge";
 import { useI18n } from "../composables/useI18n";
 
@@ -87,7 +87,7 @@ function prStatus(pr: { state: string; draft: boolean; reviewDecision: string; m
   const ms = (pr.mergeStateStatus || "").toUpperCase();
   // Red: a hard failure — CI is red, or the merge is blocked by conflicts.
   if (["FAILURE", "ERROR"].includes(ci)) return "fail";
-  if (["CONFLICTING", "CONFLICTS", "DIRTY"].includes(ms)) return "fail";
+  if (isMergeConflict(ms)) return "fail";
   // Yellow: CI still running / queued.
   if (["PENDING", "EXPECTED"].includes(ci)) return "waiting";
   // Yellow: waiting on review approval or changes requested.
diff --git a/apps/desktop/src/composables/useAzureAuth.ts b/apps/desktop/src/composables/useAzureAuth.ts
index 5f751854..670e7a35 100644
--- a/apps/desktop/src/composables/useAzureAuth.ts
+++ b/apps/desktop/src/composables/useAzureAuth.ts
@@ -4,141 +4,27 @@
  * Azure DevOps (Entra ID) OAuth device-flow state machine for
  * "Sign in with Azure".
  *
- * Mirrors `useGithubAuth.ts` — Microsoft's identity platform exposes the same
- * OAuth 2.0 device authorization grant as GitHub, so the two-step flow is
- * identical:
- *
- *   1. `start()` requests a device code, shows the `userCode` and surfaces the
- *      verification URL the user opens.
- *   2. The composable polls `azure_device_poll` on the Entra-mandated interval
- *      until the user approves (success), the code expires, or an error occurs.
+ * Thin wrapper over `useDeviceFlowAuth` — Microsoft's identity platform exposes
+ * the same OAuth 2.0 device authorization grant as GitHub, so only the two
+ * backend commands (`azure_device_start` / `azure_device_poll`) differ.
  *
  * On success the access token is already stored in the OS keychain by the
  * backend (the secret never reaches the frontend); the resolved display name is
  * returned so the caller can register the account via `useAccounts`.
  */
 
-import { ref, computed } from "vue";
-import { azureDeviceStart, azureDevicePoll, openExternalUrl } from "../utils/backend";
+import { azureDeviceStart, azureDevicePoll } from "../utils/backend";
+import { useDeviceFlowAuth, type DeviceAuthPhase } from "./useDeviceFlowAuth";
 
-export type AzureAuthPhase = "idle" | "awaiting" | "success" | "error";
+export type AzureAuthPhase = DeviceAuthPhase;
 
 /** Keychain pointer for the Settings-managed Azure token. */
 export const AZURE_TOKEN_KEY = "gitwand:azure/oauth";
 
 export function useAzureAuth() {
-  const phase = ref<AzureAuthPhase>("idle");
-  const userCode = ref("");
-  const verificationUri = ref("");
-  /** URL to open in the browser — the pre-filled "complete" variant when given. */
-  const openUrl = ref("");
-  const login = ref("");
-  const error = ref<string | null>(null);
-
-  let deviceCode = "";
-  let timer: ReturnType<typeof setTimeout> | null = null;
-  let deadline = 0;
-
-  const isBusy = computed(() => phase.value === "awaiting");
-
-  function clearTimer() {
-    if (timer) {
-      clearTimeout(timer);
-      timer = null;
-    }
-  }
-
-  function reset() {
-    clearTimer();
-    phase.value = "idle";
-    userCode.value = "";
-    verificationUri.value = "";
-    openUrl.value = "";
-    login.value = "";
-    error.value = null;
-    deviceCode = "";
-    deadline = 0;
-  }
-
-  function fail(message: string) {
-    clearTimer();
-    error.value = message;
-    phase.value = "error";
-  }
-
-  /** Schedule the next poll `seconds` from now. */
-  function schedulePoll(seconds: number) {
-    clearTimer();
-    timer = setTimeout(poll, Math.max(1, seconds) * 1000);
-  }
-
-  async function poll() {
-    if (phase.value !== "awaiting") return;
-    if (Date.now() > deadline) {
-      fail("The login code expired. Please try again.");
-      return;
-    }
-    try {
-      const res = await azureDevicePoll(deviceCode);
-      if (res.status === "success") {
-        clearTimer();
-        login.value = res.login;
-        phase.value = "success";
-        return;
-      }
-      if (res.status === "error") {
-        fail(res.error || "Azure login failed.");
-        return;
-      }
-      // "pending" → keep the current cadence; "slow_down" → back off.
-      schedulePoll(res.status === "slow_down" ? 10 : 5);
-    } catch (e) {
-      fail(e instanceof Error ? e.message : String(e));
-    }
-  }
-
-  /**
-   * Begin the device flow and start polling. Does **not** open the browser —
-   * the code is shown in-app first (auto-opening would navigate the Tauri
-   * webview away and hide the code). The user opens Azure via `openVerification`.
-   */
-  async function start(): Promise<void> {
-    reset();
-    phase.value = "awaiting";
-    try {
-      const code = await azureDeviceStart();
-      deviceCode = code.device_code;
-      userCode.value = code.user_code;
-      verificationUri.value = code.verification_uri;
-      openUrl.value = code.verification_uri_complete || code.verification_uri;
-      deadline = Date.now() + code.expires_in * 1000;
-      schedulePoll(code.interval);
-    } catch (e) {
-      fail(e instanceof Error ? e.message : String(e));
-    }
-  }
-
-  /** Open the Azure verification page (pre-filled when available). */
-  function openVerification() {
-    if (openUrl.value) void openExternalUrl(openUrl.value);
-  }
-
-  /** Abort an in-flight flow (user closed the dialog). */
-  function cancel() {
-    reset();
-  }
-
-  return {
-    phase,
-    userCode,
-    verificationUri,
-    openUrl,
-    login,
-    error,
-    isBusy,
-    start,
-    openVerification,
-    cancel,
-    reset,
-  };
+  return useDeviceFlowAuth({
+    start: azureDeviceStart,
+    poll: azureDevicePoll,
+    failLabel: "Azure login failed.",
+  });
 }
diff --git a/apps/desktop/src/composables/useDeviceFlowAuth.ts b/apps/desktop/src/composables/useDeviceFlowAuth.ts
new file mode 100644
index 00000000..97f293c8
--- /dev/null
+++ b/apps/desktop/src/composables/useDeviceFlowAuth.ts
@@ -0,0 +1,140 @@
+/**
+ * @file useDeviceFlowAuth.ts
+ *
+ * Shared OAuth 2.0 device-authorization-grant state machine.
+ *
+ * GitHub and Azure DevOps (Entra ID) expose the identical two-step device flow,
+ * so both `useGithubAuth` and `useAzureAuth` are thin wrappers over this factory
+ * — they supply their own `start`/`poll` backend commands and a forge-specific
+ * failure label; everything else (polling cadence, expiry, error handling) is
+ * shared here.
+ *
+ *   1. `start()` requests a device code, shows the `userCode` and opens the
+ *      provider's verification page (via `openVerification`).
+ *   2. The composable polls `poll(deviceCode)` on the provider-mandated interval
+ *      until the user approves (success), the code expires, or an error occurs.
+ *
+ * On success the token is already stored in the OS keychain by the backend (the
+ * secret never reaches the frontend); the resolved `login` is returned so the
+ * caller can register the account via `useAccounts`.
+ */
+
+import { ref } from "vue";
+import type { GithubDeviceCode, GithubDevicePoll } from "../utils/backend-pr";
+import { openExternalUrl } from "../utils/backend";
+
+export type DeviceAuthPhase = "idle" | "awaiting" | "success" | "error";
+
+interface DeviceFlowOptions {
+  /** Backend command that begins the flow and returns the device code. */
+  start: () => Promise<GithubDeviceCode>;
+  /** Backend command that polls for completion. */
+  poll: (deviceCode: string) => Promise<GithubDevicePoll>;
+  /** Fallback message when the backend reports an error without one. */
+  failLabel: string;
+}
+
+export function useDeviceFlowAuth({ start: startCmd, poll: pollCmd, failLabel }: DeviceFlowOptions) {
+  const phase = ref<DeviceAuthPhase>("idle");
+  const userCode = ref("");
+  const login = ref("");
+  const error = ref<string | null>(null);
+
+  /** URL to open in the browser — the pre-filled "complete" variant when given. */
+  let openUrl = "";
+  let deviceCode = "";
+  let timer: ReturnType<typeof setTimeout> | null = null;
+  let deadline = 0;
+
+  function clearTimer() {
+    if (timer) {
+      clearTimeout(timer);
+      timer = null;
+    }
+  }
+
+  function reset() {
+    clearTimer();
+    phase.value = "idle";
+    userCode.value = "";
+    login.value = "";
+    error.value = null;
+    openUrl = "";
+    deviceCode = "";
+    deadline = 0;
+  }
+
+  function fail(message: string) {
+    clearTimer();
+    error.value = message;
+    phase.value = "error";
+  }
+
+  /** Schedule the next poll `seconds` from now. */
+  function schedulePoll(seconds: number) {
+    clearTimer();
+    timer = setTimeout(poll, Math.max(1, seconds) * 1000);
+  }
+
+  async function poll() {
+    if (phase.value !== "awaiting") return;
+    if (Date.now() > deadline) {
+      fail("The login code expired. Please try again.");
+      return;
+    }
+    try {
+      const res = await pollCmd(deviceCode);
+      if (res.status === "success") {
+        clearTimer();
+        login.value = res.login;
+        phase.value = "success";
+        return;
+      }
+      if (res.status === "error") {
+        fail(res.error || failLabel);
+        return;
+      }
+      // "pending" → keep the current cadence; "slow_down" → back off.
+      schedulePoll(res.status === "slow_down" ? 10 : 5);
+    } catch (e) {
+      fail(e instanceof Error ? e.message : String(e));
+    }
+  }
+
+  /**
+   * Begin the device flow and start polling. Does **not** open the browser —
+   * the code is shown in-app first (auto-opening would navigate the Tauri
+   * webview away and hide the code). The user opens the page via `openVerification`.
+   * Watch `phase` for completion.
+   */
+  async function start(): Promise<void> {
+    reset();
+    phase.value = "awaiting";
+    try {
+      const code = await startCmd();
+      deviceCode = code.device_code;
+      userCode.value = code.user_code;
+      // Prefer the pre-filled URL so the user doesn't retype the code.
+      openUrl = code.verification_uri_complete || code.verification_uri;
+      deadline = Date.now() + code.expires_in * 1000;
+      schedulePoll(code.interval);
+    } catch (e) {
+      fail(e instanceof Error ? e.message : String(e));
+    }
+  }
+
+  /** Open the provider's verification page (pre-filled when available). */
+  function openVerification() {
+    if (openUrl) void openExternalUrl(openUrl);
+  }
+
+  return {
+    phase,
+    userCode,
+    login,
+    error,
+    start,
+    openVerification,
+    reset,
+  };
+}
diff --git a/apps/desktop/src/composables/useGithubAuth.ts b/apps/desktop/src/composables/useGithubAuth.ts
index 34cd7ff0..ef4a19d0 100644
--- a/apps/desktop/src/composables/useGithubAuth.ts
+++ b/apps/desktop/src/composables/useGithubAuth.ts
@@ -3,146 +3,30 @@
  *
  * GitHub OAuth device-flow state machine for "Sign in with GitHub".
  *
- * Drives the two-step device flow exposed by the Rust backend
- * (`github_device_start` / `github_device_poll`):
+ * Thin wrapper over `useDeviceFlowAuth` — supplies the two backend commands
+ * (`github_device_start` / `github_device_poll`); all flow logic lives in the
+ * shared factory.
  *
- *   1. `start()` requests a device code, shows the `userCode` and opens the
- *      GitHub verification page.
- *   2. The composable polls `github_device_poll` on the GitHub-mandated
- *      interval until the user approves (success), the code expires, or an
- *      error occurs.
- *
- * On success the token is already stored in the OS keychain by the backend
- * (the secret never reaches the frontend); the resolved `login` is returned so
- * the caller can register the account via `useAccounts`.
+ * On success the token is already stored in the OS keychain by the backend (the
+ * secret never reaches the frontend); the resolved `login` is returned so the
+ * caller can register the account via `useAccounts`.
  *
  * The Settings token activates the tokenless REST path in Rust, so a `gh` CLI
  * install is no longer required for PR workflows.
  */
 
-import { ref, computed } from "vue";
-import { githubDeviceStart, githubDevicePoll, openExternalUrl } from "../utils/backend";
+import { githubDeviceStart, githubDevicePoll } from "../utils/backend";
+import { useDeviceFlowAuth, type DeviceAuthPhase } from "./useDeviceFlowAuth";
 
-export type GithubAuthPhase = "idle" | "awaiting" | "success" | "error";
+export type GithubAuthPhase = DeviceAuthPhase;
 
 /** Keychain pointer for the Settings-managed GitHub token. */
 export const GITHUB_TOKEN_KEY = "gitwand:github/oauth";
 
 export function useGithubAuth() {
-  const phase = ref<GithubAuthPhase>("idle");
-  const userCode = ref("");
-  const verificationUri = ref("");
-  /** URL to open in the browser — the pre-filled "complete" variant when given. */
-  const openUrl = ref("");
-  const login = ref("");
-  const error = ref<string | null>(null);
-
-  let deviceCode = "";
-  let timer: ReturnType<typeof setTimeout> | null = null;
-  let deadline = 0;
-
-  const isBusy = computed(() => phase.value === "awaiting");
-
-  function clearTimer() {
-    if (timer) {
-      clearTimeout(timer);
-      timer = null;
-    }
-  }
-
-  function reset() {
-    clearTimer();
-    phase.value = "idle";
-    userCode.value = "";
-    verificationUri.value = "";
-    openUrl.value = "";
-    login.value = "";
-    error.value = null;
-    deviceCode = "";
-    deadline = 0;
-  }
-
-  function fail(message: string) {
-    clearTimer();
-    error.value = message;
-    phase.value = "error";
-  }
-
-  /** Schedule the next poll `seconds` from now. */
-  function schedulePoll(seconds: number) {
-    clearTimer();
-    timer = setTimeout(poll, Math.max(1, seconds) * 1000);
-  }
-
-  async function poll() {
-    if (phase.value !== "awaiting") return;
-    if (Date.now() > deadline) {
-      fail("The login code expired. Please try again.");
-      return;
-    }
-    try {
-      const res = await githubDevicePoll(deviceCode);
-      if (res.status === "success") {
-        clearTimer();
-        login.value = res.login;
-        phase.value = "success";
-        return;
-      }
-      if (res.status === "error") {
-        fail(res.error || "GitHub login failed.");
-        return;
-      }
-      // "pending" → keep the current cadence; "slow_down" → back off 5s.
-      schedulePoll(res.status === "slow_down" ? 10 : 5);
-    } catch (e) {
-      fail(e instanceof Error ? e.message : String(e));
-    }
-  }
-
-  /**
-   * Begin the device flow and start polling. Does **not** open the browser —
-   * the code is shown in-app first (auto-opening would navigate the Tauri
-   * webview away and hide the code). The user opens GitHub via `openVerification`.
-   * Watch `phase` for completion.
-   */
-  async function start(): Promise<void> {
-    reset();
-    phase.value = "awaiting";
-    try {
-      const code = await githubDeviceStart();
-      deviceCode = code.device_code;
-      userCode.value = code.user_code;
-      verificationUri.value = code.verification_uri;
-      // Prefer the pre-filled URL so the user doesn't retype the code.
-      openUrl.value = code.verification_uri_complete || code.verification_uri;
-      deadline = Date.now() + code.expires_in * 1000;
-      schedulePoll(code.interval);
-    } catch (e) {
-      fail(e instanceof Error ? e.message : String(e));
-    }
-  }
-
-  /** Open the GitHub verification page (pre-filled when available). */
-  function openVerification() {
-    if (openUrl.value) void openExternalUrl(openUrl.value);
-  }
-
-  /** Abort an in-flight flow (user closed the dialog). */
-  function cancel() {
-    reset();
-  }
-
-  return {
-    phase,
-    userCode,
-    verificationUri,
-    openUrl,
-    login,
-    error,
-    isBusy,
-    start,
-    openVerification,
-    cancel,
-    reset,
-  };
+  return useDeviceFlowAuth({
+    start: githubDeviceStart,
+    poll: githubDevicePoll,
+    failLabel: "GitHub login failed.",
+  });
 }
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 29274b7b..c63e70fe 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -43,6 +43,16 @@ const FORGE_LABELS: Record<string, string> = {
   azure: "Azure DevOps",
 };
 
+/**
+ * Whether a PR's `mergeable` state means the branch has conflicts and cannot
+ * merge. Forges spell this differently (GitHub `CONFLICTING`, GitLab
+ * `CONFLICTS`, others `DIRTY`), so normalise here and reuse everywhere a
+ * conflict needs to be flagged as a hard blocker.
+ */
+export function isMergeConflict(mergeable: string | null | undefined): boolean {
+  return ["CONFLICTING", "CONFLICTS", "DIRTY"].includes((mergeable || "").toUpperCase());
+}
+
 export function usePrPanel(cwd: Ref<string>) {
 
   // Disk-persisted SWR cache — paints the list/detail instantly on repo-switch
@@ -160,8 +170,7 @@ export function usePrPanel(cwd: Ref<string>) {
 
   const mergeReadiness = computed<{ ready: boolean; reason: string } | null>(() => {
     // A merge conflict blocks the PR on its own, even with no checks/reviews.
-    const mergeable = (prDetail.value?.mergeable || "").toUpperCase();
-    const hasConflict = ["CONFLICTING", "CONFLICTS", "DIRTY"].includes(mergeable);
+    const hasConflict = isMergeConflict(prDetail.value?.mergeable);
     if (!prReviews.value.length && !prChecks.value.length && !hasConflict) return null;
     // A check blocks merge only when it is genuinely failing or still pending.
     // Anything else (success, skipped, neutral, or a completed check with an
diff --git a/apps/desktop/src/composables/useSafeHtml.ts b/apps/desktop/src/composables/useSafeHtml.ts
index 87e8370b..ab690481 100644
--- a/apps/desktop/src/composables/useSafeHtml.ts
+++ b/apps/desktop/src/composables/useSafeHtml.ts
@@ -30,6 +30,7 @@
 
 import DOMPurify from "dompurify";
 import MarkdownIt from "markdown-it";
+import { openExternalUrl } from "../utils/backend";
 
 /**
  * Lowercase, strip non-word characters, collapse whitespace / dashes.
@@ -224,3 +225,18 @@ export function renderMarkdown(src: string | null | undefined): string {
   const rawHtml = md.render(src);
   return safeHtml(rawHtml);
 }
+
+/**
+ * Click handler for containers that render markdown via `v-html`. Anchors
+ * inside rendered markdown would otherwise navigate the Tauri webview away from
+ * the app — intercept clicks on http(s) links and hand them to the OS browser.
+ *
+ * Usage: `<div v-html="..." @click="onMarkdownLinkClick" />`.
+ */
+export function onMarkdownLinkClick(e: MouseEvent): void {
+  const href = (e.target as HTMLElement | null)?.closest("a")?.getAttribute("href");
+  if (href && /^https?:\/\//i.test(href)) {
+    e.preventDefault();
+    void openExternalUrl(href);
+  }
+}

From 4815219e7a49e866ec76302a02d7e42ae7901593 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 16:43:28 -0400
Subject: [PATCH 40/44] feat(pr): Display and enforce user merge permissions

Integrates `can_merge` status into pull request details across all forges.
The merge button is now proactively disabled when the current viewer lacks
permission to merge the PR. Forges that do not cheaply expose this
information (Azure, Bitbucket) default to `None`, ensuring the UI only
gates on actual errors rather than an unknown permission.
---
 apps/desktop/src-tauri/src/commands/azure.rs  |  3 +++
 .../src-tauri/src/commands/bitbucket.rs       |  3 +++
 apps/desktop/src-tauri/src/commands/gh.rs     | 21 ++++++++++++++++++-
 .../src-tauri/src/commands/github_api.rs      |  8 +++++++
 apps/desktop/src-tauri/src/commands/gitlab.rs |  5 +++++
 apps/desktop/src-tauri/src/git/parse.rs       |  3 +++
 apps/desktop/src-tauri/src/types.rs           |  6 ++++++
 apps/desktop/src/components/PrDetailView.vue  | 12 +++++++++++
 apps/desktop/src/composables/usePrPanel.ts    | 21 ++++++++++++++++++-
 apps/desktop/src/locales/en.ts                |  1 +
 apps/desktop/src/locales/es.ts                |  1 +
 apps/desktop/src/locales/fr.ts                |  1 +
 apps/desktop/src/locales/pt-BR.ts             |  1 +
 apps/desktop/src/locales/zh-CN.ts             |  1 +
 apps/desktop/src/utils/backend-gitlab.ts      |  2 ++
 apps/desktop/src/utils/backend-pr.ts          | 10 +++++++++
 16 files changed, 97 insertions(+), 2 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/azure.rs b/apps/desktop/src-tauri/src/commands/azure.rs
index 47f8b9f3..0ba9ce25 100644
--- a/apps/desktop/src-tauri/src/commands/azure.rs
+++ b/apps/desktop/src-tauri/src/commands/azure.rs
@@ -540,6 +540,9 @@ fn json_to_detail(r: &AzureRepo, pr: &serde_json::Value) -> PullRequestDetail {
             .unwrap_or_default(),
         mergeable,
         checks_status: String::new(),
+        // Azure merge permission needs the Security/Permissions API — not
+        // cheaply available here. Unknown ⇒ UI gates on errors only.
+        can_merge: None,
     }
 }
 
diff --git a/apps/desktop/src-tauri/src/commands/bitbucket.rs b/apps/desktop/src-tauri/src/commands/bitbucket.rs
index d10d5650..0b9fb2e7 100644
--- a/apps/desktop/src-tauri/src/commands/bitbucket.rs
+++ b/apps/desktop/src-tauri/src/commands/bitbucket.rs
@@ -388,6 +388,9 @@ fn bb_pr_to_detail(pr: &serde_json::Value) -> PullRequestDetail {
         reviewers,
         mergeable: String::new(), // Not directly available in v2.10
         checks_status: String::new(), // Bitbucket Pipelines needs a separate call
+        // Bitbucket merge permission needs a separate privileges call —
+        // unknown ⇒ UI gates on errors only.
+        can_merge: None,
     }
 }
 
diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index f016efdc..7be00c14 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -485,7 +485,26 @@ pub(crate) async fn gh_pr_detail(cwd: String, number: i64) -> Result<PullRequest
     let raw: GhPrDetailRaw = serde_json::from_str(stdout.trim())
         .map_err(|e| format!("Failed to parse gh pr view output: {}", e))?;
 
-    Ok(gh_pr_detail_raw_to_detail(raw))
+    let mut detail = gh_pr_detail_raw_to_detail(raw);
+    detail.can_merge = gh_viewer_can_merge(&cwd);
+    Ok(detail)
+}
+
+/// Resolve whether the current viewer can merge PRs in `cwd`'s repo via
+/// `gh repo view --json viewerPermission`. WRITE / MAINTAIN / ADMIN can merge.
+/// Returns `None` on any failure so the UI falls back to error-only gating.
+fn gh_viewer_can_merge(cwd: &str) -> Option<bool> {
+    let output = hidden_cmd("gh")
+        .args(["repo", "view", "--json", "viewerPermission"])
+        .current_dir(cwd)
+        .output()
+        .ok()?;
+    if !output.status.success() {
+        return None;
+    }
+    let v: serde_json::Value = serde_json::from_slice(&output.stdout).ok()?;
+    let perm = v.get("viewerPermission")?.as_str()?.to_uppercase();
+    Some(matches!(perm.as_str(), "ADMIN" | "MAINTAIN" | "WRITE"))
 }
 
 /// Get the diff of a PR using `gh` CLI.
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 66443d4c..294d2d9b 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -322,6 +322,14 @@ fn json_to_detail(pr: &serde_json::Value) -> PullRequestDetail {
         reviewers: jlogins(pr, "requested_reviewers", "login"),
         mergeable,
         checks_status: String::new(),
+        // Authenticated REST repo sub-objects embed a `permissions` map;
+        // `push` access on the base repo means the viewer can merge.
+        can_merge: pr
+            .get("base")
+            .and_then(|b| b.get("repo"))
+            .and_then(|r| r.get("permissions"))
+            .and_then(|p| p.get("push"))
+            .and_then(|b| b.as_bool()),
     }
 }
 
diff --git a/apps/desktop/src-tauri/src/commands/gitlab.rs b/apps/desktop/src-tauri/src/commands/gitlab.rs
index d43d9c57..963b7c00 100644
--- a/apps/desktop/src-tauri/src/commands/gitlab.rs
+++ b/apps/desktop/src-tauri/src/commands/gitlab.rs
@@ -183,6 +183,11 @@ fn gl_mr_to_detail(mr: &serde_json::Value) -> PullRequestDetail {
         reviewers: jusernames(mr, "reviewers"),
         mergeable,
         checks_status: String::new(),
+        // GitLab's single-MR endpoint carries `user.can_merge` for the caller.
+        can_merge: mr
+            .get("user")
+            .and_then(|u| u.get("can_merge"))
+            .and_then(|b| b.as_bool()),
     }
 }
 
diff --git a/apps/desktop/src-tauri/src/git/parse.rs b/apps/desktop/src-tauri/src/git/parse.rs
index 5a4cf1d9..1b3e7af0 100644
--- a/apps/desktop/src-tauri/src/git/parse.rs
+++ b/apps/desktop/src-tauri/src/git/parse.rs
@@ -377,6 +377,9 @@ pub(crate) fn gh_pr_detail_raw_to_detail(r: GhPrDetailRaw) -> PullRequestDetail
         reviewers,
         mergeable: r.mergeable.unwrap_or_default(),
         checks_status,
+        // Filled in by the caller (gh_pr_detail) via a `gh repo view`
+        // viewerPermission lookup — `gh pr view` doesn't carry it.
+        can_merge: None,
     }
 }
 
diff --git a/apps/desktop/src-tauri/src/types.rs b/apps/desktop/src-tauri/src/types.rs
index d22f0941..7e82b20f 100644
--- a/apps/desktop/src-tauri/src/types.rs
+++ b/apps/desktop/src-tauri/src/types.rs
@@ -484,6 +484,12 @@ pub struct PullRequestDetail {
     pub reviewers: Vec<String>,
     pub mergeable: String,
     pub checks_status: String,
+    /// Whether the current viewer has permission to merge this PR.
+    /// `None` when the forge does not cheaply expose it (Azure, Bitbucket) —
+    /// the UI must treat unknown as "allowed" and gate on errors only, never
+    /// disable the merge button on an unknown permission.
+    #[serde(default)]
+    pub can_merge: Option<bool>,
 }
 
 // ─── Fork / PR target info ─────────────────────────────────────────
diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index 391b414b..f42cc0a5 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -238,6 +238,8 @@ function commentTimeAgo(dateStr: string): string {
             <button
               v-if="isOpenPr"
               class="pdv-btn pdv-btn--primary"
+              :disabled="p.mergeBlocked.value"
+              :title="p.mergeBlocked.value ? p.mergeBlockedReason.value : undefined"
               @click="p.mergingPr.value = p.selectedPr.value"
             >
               <svg width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.7" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
@@ -1780,6 +1782,16 @@ function commentTimeAgo(dateStr: string): string {
 .pdv-btn:active {
   box-shadow: none;
 }
+.pdv-btn:disabled,
+.pdv-btn:disabled:hover {
+  cursor: not-allowed;
+  opacity: 0.5;
+  box-shadow: none;
+  transform: none;
+  background: var(--color-bg-tertiary);
+  border-color: var(--color-border);
+  color: var(--color-text-muted);
+}
 
 .pdv-btn--sm {
   padding: var(--space-2) var(--space-4);
diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index c63e70fe..1572a4e9 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -214,6 +214,25 @@ export function usePrPanel(cwd: Ref<string>) {
     return { ready: false, reason: t("pr.ready.waitingPrefix", reasons.join(", ")) };
   });
 
+  /**
+   * Whether the merge button must be disabled — either the viewer lacks the
+   * role to merge (forge reported `canMerge === false`) or the PR has blocking
+   * errors (conflict / failing or pending checks / requested changes). An
+   * unknown permission (`canMerge` null) never disables on its own.
+   */
+  const mergeBlocked = computed<boolean>(() => {
+    if (prDetail.value?.canMerge === false) return true;
+    const r = mergeReadiness.value;
+    return !!r && !r.ready;
+  });
+
+  /** Human-readable reason for a disabled merge button (tooltip). */
+  const mergeBlockedReason = computed<string>(() => {
+    if (prDetail.value?.canMerge === false) return t("pr.detail.mergeNoPermission");
+    const r = mergeReadiness.value;
+    return r && !r.ready ? r.reason : "";
+  });
+
   /**
    * v2.10 — Virtual 'Merge Conflict' check surfaced in the CI tab.
    * If the PR's mergeable state is CONFLICTING, we unshift a hard failure
@@ -883,7 +902,7 @@ export function usePrPanel(cwd: Ref<string>) {
     hasMore, loadingMore,
     // Computed
     forge, forgeLabel,
-    commentsForFile, commentCount, mergeReadiness, selectedDiff, displayedPrs,
+    commentsForFile, commentCount, mergeReadiness, mergeBlocked, mergeBlockedReason, selectedDiff, displayedPrs,
     // Actions
     init, loadRemote, loadPrs, loadMorePrs, loadCurrentUser, selectPr, loadDiff,
     createPr, checkoutPr, mergePr, convertDraftToReady,
diff --git a/apps/desktop/src/locales/en.ts b/apps/desktop/src/locales/en.ts
index d15d8bc6..92b97d2d 100644
--- a/apps/desktop/src/locales/en.ts
+++ b/apps/desktop/src/locales/en.ts
@@ -818,6 +818,7 @@ const en = {
       mergeConflicting: "Conflicting",
       mergeProblem: "Problem detected",
       mergeUnknown: "Unknown",
+      mergeNoPermission: "You don't have permission to merge this pull request",
       statFiles: "Files",
       statDiff: "Diff",
       statComments: "Comments",
diff --git a/apps/desktop/src/locales/es.ts b/apps/desktop/src/locales/es.ts
index f9425b39..24d802fa 100644
--- a/apps/desktop/src/locales/es.ts
+++ b/apps/desktop/src/locales/es.ts
@@ -801,6 +801,7 @@ const es: Locale = {
       mergeConflicting: "En conflicto",
       mergeProblem: "Problema detectado",
       mergeUnknown: "Desconocido",
+      mergeNoPermission: "No tienes permiso para fusionar esta pull request",
       statFiles: "Archivos",
       statDiff: "Diff",
       statComments: "Comentarios",
diff --git a/apps/desktop/src/locales/fr.ts b/apps/desktop/src/locales/fr.ts
index 2957741b..33fd6577 100644
--- a/apps/desktop/src/locales/fr.ts
+++ b/apps/desktop/src/locales/fr.ts
@@ -812,6 +812,7 @@ const fr: Locale = {
       mergeConflicting: "Conflit",
       mergeProblem: "Problème détecté",
       mergeUnknown: "Inconnu",
+      mergeNoPermission: "Vous n'avez pas l'autorisation de fusionner cette pull request",
       statFiles: "Fichiers",
       statDiff: "Diff",
       statComments: "Commentaires",
diff --git a/apps/desktop/src/locales/pt-BR.ts b/apps/desktop/src/locales/pt-BR.ts
index cae60a8b..fc0518e1 100644
--- a/apps/desktop/src/locales/pt-BR.ts
+++ b/apps/desktop/src/locales/pt-BR.ts
@@ -802,6 +802,7 @@ const ptBR: Locale = {
       mergeConflicting: "Em conflito",
       mergeProblem: "Problema detectado",
       mergeUnknown: "Desconhecido",
+      mergeNoPermission: "Você não tem permissão para fazer merge deste pull request",
       statFiles: "Arquivos",
       statDiff: "Diff",
       statComments: "Comentários",
diff --git a/apps/desktop/src/locales/zh-CN.ts b/apps/desktop/src/locales/zh-CN.ts
index 0d9b6471..aaaa04a6 100644
--- a/apps/desktop/src/locales/zh-CN.ts
+++ b/apps/desktop/src/locales/zh-CN.ts
@@ -790,6 +790,7 @@ const zhCN: Locale = {
       mergeConflicting: "存在冲突",
       mergeProblem: "检测到问题",
       mergeUnknown: "未知",
+      mergeNoPermission: "您没有权限合并此拉取请求",
       statFiles: "文件",
       statDiff: "Diff",
       statComments: "评论",
diff --git a/apps/desktop/src/utils/backend-gitlab.ts b/apps/desktop/src/utils/backend-gitlab.ts
index ba44884e..b5247280 100644
--- a/apps/desktop/src/utils/backend-gitlab.ts
+++ b/apps/desktop/src/utils/backend-gitlab.ts
@@ -54,6 +54,7 @@ export async function glGetMr(cwd: string, iid: number): Promise<PullRequestDeta
     merged_at: string; url: string; additions: number; deletions: number;
     changed_files: number; comments: number; review_comments: number;
     labels: string[]; reviewers: string[]; mergeable: string; checks_status: string;
+    can_merge: boolean | null;
   }>("gl_get_mr", { cwd, iid });
   return {
     number: raw.number, title: raw.title, body: raw.body, state: raw.state,
@@ -63,6 +64,7 @@ export async function glGetMr(cwd: string, iid: number): Promise<PullRequestDeta
     changedFiles: raw.changed_files, comments: raw.comments,
     reviewComments: raw.review_comments, labels: raw.labels, reviewers: raw.reviewers,
     mergeable: raw.mergeable, checksStatus: raw.checks_status,
+    canMerge: raw.can_merge ?? null,
   } as unknown as PullRequestDetail;
 }
 
diff --git a/apps/desktop/src/utils/backend-pr.ts b/apps/desktop/src/utils/backend-pr.ts
index e5aaad7b..d4e6b762 100644
--- a/apps/desktop/src/utils/backend-pr.ts
+++ b/apps/desktop/src/utils/backend-pr.ts
@@ -407,6 +407,12 @@ export interface PullRequestDetail {
   reviewers: string[];
   mergeable: string;
   checksStatus: string;
+  /**
+   * Whether the current viewer can merge this PR. `null` when the forge does
+   * not expose it (Azure, Bitbucket) — callers must treat null as "allowed"
+   * and gate the merge button on errors only, never on an unknown permission.
+   */
+  canMerge: boolean | null;
 }
 
 export interface CICheck {
@@ -443,6 +449,7 @@ export async function ghPrDetail(cwd: string, number: number): Promise<PullReque
       reviewers: string[];
       mergeable: string;
       checks_status: string;
+      can_merge: boolean | null;
     }>("gh_pr_detail", { cwd, number });
     return {
       number: raw.number,
@@ -466,6 +473,7 @@ export async function ghPrDetail(cwd: string, number: number): Promise<PullReque
       reviewers: raw.reviewers,
       mergeable: raw.mergeable,
       checksStatus: raw.checks_status,
+      canMerge: raw.can_merge ?? null,
     };
   }
   // Browser dev mode
@@ -480,6 +488,7 @@ export async function ghPrDetail(cwd: string, number: number): Promise<PullReque
     url: raw.url, additions: raw.additions, deletions: raw.deletions,
     changedFiles: raw.changed_files, comments: raw.comments, reviewComments: raw.review_comments,
     labels: raw.labels, reviewers: raw.reviewers, mergeable: raw.mergeable, checksStatus: raw.checks_status,
+    canMerge: raw.can_merge ?? null,
   };
 }
 
@@ -970,6 +979,7 @@ export async function azPrDetail(cwd: string, number: number): Promise<PullReque
       reviewers: raw.reviewers,
       mergeable: raw.mergeable,
       checksStatus: raw.checks_status,
+      canMerge: raw.can_merge ?? null,
     };
   }
   throw new Error(AZURE_WEB_ONLY);

From a6061a10b42d1d6b32c93d2a4a427e3222eefb36 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 16:51:16 -0400
Subject: [PATCH 41/44] fix(pr): Correct GitHub merge permission logic for
 forks

Previously, the `can_merge` status for GitHub pull requests could be inaccurate,
especially in fork-based workflows. The logic incorrectly checked permissions
against the working directory's repository or relied on incomplete API
responses, leading to misreported merge capabilities.

This update ensures merge permissions are accurately determined by explicitly
querying the PR's actual *base* repository, where the merge operation would
occur, for both `gh` CLI and GitHub REST API paths.
---
 apps/desktop/src-tauri/src/commands/gh.rs     | 36 ++++++++++++++-----
 .../src-tauri/src/commands/github_api.rs      | 28 ++++++++++-----
 2 files changed, 47 insertions(+), 17 deletions(-)

diff --git a/apps/desktop/src-tauri/src/commands/gh.rs b/apps/desktop/src-tauri/src/commands/gh.rs
index 7be00c14..14223b66 100644
--- a/apps/desktop/src-tauri/src/commands/gh.rs
+++ b/apps/desktop/src-tauri/src/commands/gh.rs
@@ -486,25 +486,43 @@ pub(crate) async fn gh_pr_detail(cwd: String, number: i64) -> Result<PullRequest
         .map_err(|e| format!("Failed to parse gh pr view output: {}", e))?;
 
     let mut detail = gh_pr_detail_raw_to_detail(raw);
-    detail.can_merge = gh_viewer_can_merge(&cwd);
+    detail.can_merge = gh_viewer_can_merge(&cwd, &detail.url);
     Ok(detail)
 }
 
-/// Resolve whether the current viewer can merge PRs in `cwd`'s repo via
-/// `gh repo view --json viewerPermission`. WRITE / MAINTAIN / ADMIN can merge.
-/// Returns `None` on any failure so the UI falls back to error-only gating.
-fn gh_viewer_can_merge(cwd: &str) -> Option<bool> {
+/// Resolve whether the current viewer can merge this PR. A PR merges into its
+/// **base** repository — which, for a fork, is the upstream repo and not the
+/// fork the working copy points at. So permission must be checked against the
+/// base repo (parsed from the PR url), not `cwd`'s origin: owning a fork grants
+/// ADMIN on the fork but no merge rights on upstream.
+///
+/// `push` access on the base repo means the viewer can merge. Returns `None` on
+/// any failure so the UI falls back to error-only gating.
+fn gh_viewer_can_merge(cwd: &str, pr_url: &str) -> Option<bool> {
+    let nwo = github_nwo_from_pr_url(pr_url)?;
     let output = hidden_cmd("gh")
-        .args(["repo", "view", "--json", "viewerPermission"])
+        .args(["api", &format!("repos/{}", nwo), "--jq", ".permissions.push"])
         .current_dir(cwd)
         .output()
         .ok()?;
     if !output.status.success() {
         return None;
     }
-    let v: serde_json::Value = serde_json::from_slice(&output.stdout).ok()?;
-    let perm = v.get("viewerPermission")?.as_str()?.to_uppercase();
-    Some(matches!(perm.as_str(), "ADMIN" | "MAINTAIN" | "WRITE"))
+    match String::from_utf8_lossy(&output.stdout).trim() {
+        "true" => Some(true),
+        "false" => Some(false),
+        _ => None,
+    }
+}
+
+/// Extract `owner/repo` from a GitHub PR url such as
+/// `https://github.com/owner/repo/pull/123`.
+fn github_nwo_from_pr_url(url: &str) -> Option<String> {
+    let rest = url.split("github.com/").nth(1)?;
+    let mut parts = rest.split('/');
+    let owner = parts.next().filter(|s| !s.is_empty())?;
+    let repo = parts.next().filter(|s| !s.is_empty())?;
+    Some(format!("{}/{}", owner, repo))
 }
 
 /// Get the diff of a PR using `gh` CLI.
diff --git a/apps/desktop/src-tauri/src/commands/github_api.rs b/apps/desktop/src-tauri/src/commands/github_api.rs
index 294d2d9b..7d5352b1 100644
--- a/apps/desktop/src-tauri/src/commands/github_api.rs
+++ b/apps/desktop/src-tauri/src/commands/github_api.rs
@@ -322,14 +322,9 @@ fn json_to_detail(pr: &serde_json::Value) -> PullRequestDetail {
         reviewers: jlogins(pr, "requested_reviewers", "login"),
         mergeable,
         checks_status: String::new(),
-        // Authenticated REST repo sub-objects embed a `permissions` map;
-        // `push` access on the base repo means the viewer can merge.
-        can_merge: pr
-            .get("base")
-            .and_then(|b| b.get("repo"))
-            .and_then(|r| r.get("permissions"))
-            .and_then(|p| p.get("push"))
-            .and_then(|b| b.as_bool()),
+        // Filled in by rest_pr_detail via an explicit repo lookup — the pulls
+        // response does not embed `permissions` on the nested base repo.
+        can_merge: None,
     }
 }
 
@@ -575,9 +570,26 @@ pub(crate) fn rest_pr_detail(cwd: &str, number: i64, token: &str) -> Result<Pull
     // check-runs so the CI tab can colour itself (red / yellow / green).
     let sha = jnested(&v, "head", "sha");
     detail.checks_status = rest_rollup_for_sha(&repo, &sha, token);
+    // The nested `base.repo` in a pulls response omits the `permissions` block —
+    // only the top-level repo endpoint returns it. `repo` is the *base* repo
+    // (upstream for a fork), so this checks merge rights on the right side.
+    if let Some(cm) = rest_repo_can_push(&repo, token) {
+        detail.can_merge = Some(cm);
+    }
     Ok(detail)
 }
 
+/// Whether the authenticated user has push (= merge) access to `repo`
+/// (`owner/name`), via `GET /repos/{repo}`'s `permissions.push`. Returns `None`
+/// on any failure so the UI falls back to error-only gating.
+fn rest_repo_can_push(repo: &str, token: &str) -> Option<bool> {
+    let url = format!("{}/repos/{}", API_BASE, repo);
+    let v = api_json("GET", &url, token, None).ok()?;
+    v.get("permissions")
+        .and_then(|p| p.get("push"))
+        .and_then(|b| b.as_bool())
+}
+
 pub(crate) fn rest_pr_diff(cwd: &str, number: i64, token: &str) -> Result<String, String> {
     // Resolve which repo the PR lives in (origin or upstream parent), then fetch
     // its diff from there.

From 0ab86debd5b4bc7f5b83958daa77041d5c57782e Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 16:53:15 -0400
Subject: [PATCH 42/44] feat(pr): Enhance 'Open in Browser' button prominence

The 'Open in Browser' button is now positioned more prominently at the beginning of the PR detail view's action row. Its style has also been updated from a secondary (ghost) button to a standard primary button, improving visibility and discoverability for this frequently used action.
---
 apps/desktop/src/components/PrDetailView.vue | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/apps/desktop/src/components/PrDetailView.vue b/apps/desktop/src/components/PrDetailView.vue
index f42cc0a5..62f85365 100644
--- a/apps/desktop/src/components/PrDetailView.vue
+++ b/apps/desktop/src/components/PrDetailView.vue
@@ -219,6 +219,12 @@ function commentTimeAgo(dateStr: string): string {
             </span>
           </div>
           <div class="pdv-hero-actions">
+            <button class="pdv-btn" @click="openInBrowser(p.prDetail.value.url)" :title="p.forgeLabel.value">
+              <svg width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.5" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
+                <path d="M6.5 3H3v10h10V9.5M9.5 2.5H13V6M13 3l-6 6" />
+              </svg>
+              <span>{{ p.forgeLabel.value }}</span>
+            </button>
             <button class="pdv-btn" @click="p.checkoutPr(p.selectedPr.value!)">
               <svg width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.6" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
                 <path d="M3 8h10M8 3l5 5-5 5" />
@@ -251,12 +257,6 @@ function commentTimeAgo(dateStr: string): string {
               </svg>
               <span>{{ t('pr.detail.merge') }}</span>
             </button>
-            <button class="pdv-btn pdv-btn--ghost" @click="openInBrowser(p.prDetail.value.url)" :title="p.forgeLabel.value">
-              <svg width="13" height="13" viewBox="0 0 16 16" fill="none" stroke="currentColor" stroke-width="1.5" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
-                <path d="M6.5 3H3v10h10V9.5M9.5 2.5H13V6M13 3l-6 6" />
-              </svg>
-              <span>{{ p.forgeLabel.value }}</span>
-            </button>
           </div>
         </div>
 

From 6afdc082ff66382fd5a9ab95bdde85a0a23a21b4 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 16:57:37 -0400
Subject: [PATCH 43/44] feat(pr): Implement visibility-gated background
 revalidation

Introduces a 5-minute background revalidation mechanism for the active PR
panel (detail view or list). This prevents data from going stale in
long-open panels by periodically refreshing the displayed information.

The revalidation is visibility-gated, meaning it automatically pauses
when the application tab is hidden and resumes when visible, adhering
to performance discipline by not consuming resources unnecessarily.
---
 apps/desktop/src/composables/usePrPanel.ts | 84 ++++++++++++++++++++--
 1 file changed, 80 insertions(+), 4 deletions(-)

diff --git a/apps/desktop/src/composables/usePrPanel.ts b/apps/desktop/src/composables/usePrPanel.ts
index 1572a4e9..74688e0b 100644
--- a/apps/desktop/src/composables/usePrPanel.ts
+++ b/apps/desktop/src/composables/usePrPanel.ts
@@ -6,7 +6,7 @@
  * PrListSidebar (inside RepoSidebar) and PrDetailView (in <main>)
  * share the same reactive state.
  */
-import { ref, computed, watch, type Ref } from "vue";
+import { ref, computed, watch, onUnmounted, type Ref } from "vue";
 import {
   gitFileCount,
   gitRemoteInfo,
@@ -495,8 +495,7 @@ export function usePrPanel(cwd: Ref<string>) {
     selectedPr.value = pr;
     resetDetail();
     // SWR: paint cached detail bundle instantly, revalidate in background.
-    const key = detailKey(cwd.value, pr.number);
-    const cached = cache.getDetail(key);
+    const cached = cache.getDetail(detailKey(cwd.value, pr.number));
     if (cached) {
       prDetail.value = cached.detail;
       prChecks.value = cached.checks;
@@ -507,6 +506,18 @@ export function usePrPanel(cwd: Ref<string>) {
     } else {
       detailLoading.value = true;
     }
+    await fetchDetailBundle(pr, { silentError: !!cached });
+  }
+
+  /**
+   * Fetch (or revalidate) the full detail bundle for `pr` and write it back to
+   * the cache. The caller sets `detailLoading` / `detailRefreshing` before
+   * awaiting; both are cleared here. `silentError` keeps the stale bundle on
+   * screen instead of surfacing an error (used for cache-hit + background
+   * revalidation, where there is already content to show).
+   */
+  async function fetchDetailBundle(pr: PullRequest, { silentError }: { silentError: boolean }) {
+    const key = detailKey(cwd.value, pr.number);
     detailError.value = null;
     try {
       const [detail, checks, comments, issueComments, reviews, fileCount] = await Promise.all([
@@ -536,13 +547,21 @@ export function usePrPanel(cwd: Ref<string>) {
       cache.setDetail(key, { detail, checks, comments, issueComments, reviews });
     } catch (err: any) {
       // Keep the cached bundle on screen if revalidation failed.
-      if (!cached) detailError.value = err.message;
+      if (!silentError) detailError.value = err.message;
     } finally {
       detailLoading.value = false;
       detailRefreshing.value = false;
     }
   }
 
+  /** Re-fetch the currently open detail bundle in the background (poll-driven). */
+  async function revalidateOpenDetail() {
+    const pr = selectedPr.value;
+    if (!pr) return;
+    detailRefreshing.value = true;
+    await fetchDetailBundle(pr, { silentError: true });
+  }
+
   /** Write the current detail refs back to the SWR cache (write-through after
    *  a comment / review mutation so the cached bundle stays fresh). */
   function persistDetailCache() {
@@ -863,6 +882,60 @@ export function usePrPanel(cwd: Ref<string>) {
     }
   }
 
+  // ─── Visibility-gated background revalidation (5 min) ──────────
+  // SWR is otherwise event-driven only (open list / select PR / actions). This
+  // refreshes the active view on a slow cadence so a long-open panel doesn't go
+  // stale. Perf discipline (apps/desktop/CLAUDE.md): the interval is cleared on
+  // `document.hidden` and restarted on return — never runs in the background.
+  const REVALIDATE_INTERVAL_MS = 5 * 60 * 1000;
+  let _pollTimer: ReturnType<typeof setInterval> | null = null;
+  let _lastPoll = 0;
+  let _visibilityHandler: (() => void) | null = null;
+
+  function pollTick() {
+    if (typeof document !== "undefined" && document.hidden) return;
+    if (!cwd.value) return;
+    _lastPoll = Date.now();
+    // Revalidate whichever view is active — the open detail, else the list.
+    if (selectedPr.value) void revalidateOpenDetail();
+    else void loadPrs();
+  }
+
+  function startPoll() {
+    if (_pollTimer) return;
+    _pollTimer = setInterval(pollTick, REVALIDATE_INTERVAL_MS);
+  }
+
+  function stopPoll() {
+    if (_pollTimer) {
+      clearInterval(_pollTimer);
+      _pollTimer = null;
+    }
+  }
+
+  function handleVisibilityChange() {
+    if (document.hidden) {
+      stopPoll();
+    } else {
+      startPoll();
+      // Catch up immediately if a full interval elapsed while hidden, but don't
+      // refetch on every brief alt-tab.
+      if (Date.now() - _lastPoll >= REVALIDATE_INTERVAL_MS) pollTick();
+    }
+  }
+
+  if (typeof document !== "undefined") {
+    _visibilityHandler = handleVisibilityChange;
+    document.addEventListener("visibilitychange", _visibilityHandler);
+  }
+
+  onUnmounted(() => {
+    stopPoll();
+    if (typeof document !== "undefined" && _visibilityHandler) {
+      document.removeEventListener("visibilitychange", _visibilityHandler);
+    }
+  });
+
   async function init() {
     // Flip the mounted flag — see `panelMounted` declaration for rationale.
     // From now on, cwd changes will auto-reload the PR list because the
@@ -884,6 +957,9 @@ export function usePrPanel(cwd: Ref<string>) {
     loadCurrentUser();
     // Fork detection in background — only affects the create view.
     loadForkInfo();
+    // Start the 5-min visibility-gated revalidation loop (no-op if hidden).
+    _lastPoll = Date.now();
+    if (typeof document === "undefined" || !document.hidden) startPoll();
   }
 
   return {

From 3b2b806a0b09f42f84875d7ed14a7bd6156deea2 Mon Sep 17 00:00:00 2001
From: Guillaume Huard Hughes <guillaume.huard.hughes@radio-canada.ca>
Date: Fri, 5 Jun 2026 16:59:43 -0400
Subject: [PATCH 44/44] feat(pr): Refine PR list sidebar header layout

Adjusts title spacing to prevent it from consuming all available horizontal
space and ensures proper right-alignment for accompanying action elements.
---
 apps/desktop/src/components/PrListSidebar.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/src/components/PrListSidebar.vue b/apps/desktop/src/components/PrListSidebar.vue
index c3fcf684..bb89c8b8 100644
--- a/apps/desktop/src/components/PrListSidebar.vue
+++ b/apps/desktop/src/components/PrListSidebar.vue
@@ -360,7 +360,6 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
 }
 
 .pls-title {
-  flex: 1;
   font-size: var(--font-size-sm);
   font-weight: var(--font-weight-bold);
   text-transform: uppercase;
@@ -387,6 +386,7 @@ function setUserFilter(mode: 'all' | 'assigned' | 'reviews') {
   display: inline-flex;
   align-items: center;
   justify-content: center;
+  margin-left: auto;
   width: 24px;
   height: 24px;
   padding: 0;