fix: validate order of / and # in cross-repo dependency parsing

The previous parsing logic for cross-repo dependencies (owner/repo#123)
only checked if both "/" and "#" were present, but didn't verify that
"/" came before "#". This could cause inputs like "#123/owner/repo" to
incorrectly match the cross-repo pattern.

Now explicitly check that slashIdx < hashIdx before treating as cross-repo.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

cmd/actions.go

@@ -22,6 +22,9 @@ var CmdActions = cli.Command{
 	Commands: []*cli.Command{
 		&actions.CmdActionsSecrets,
 		&actions.CmdActionsVariables,
+		&actions.CmdActionsRuns,
+		&actions.CmdActionsJobs,
+		&actions.CmdActionsLogs,
 	},
 	Flags: []cli.Flag{
 		&cli.StringFlag{

cmd/actions/jobs.go

@@ -0,0 +1,56 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package actions
+
+import (
+	stdctx "context"
+	"fmt"
+
+	"code.gitea.io/tea/cmd/flags"
+	"code.gitea.io/tea/modules/api"
+	"code.gitea.io/tea/modules/context"
+	"code.gitea.io/tea/modules/print"
+	"code.gitea.io/tea/modules/utils"
+
+	"github.com/urfave/cli/v3"
+)
+
+// CmdActionsJobs represents the actions jobs command
+var CmdActionsJobs = cli.Command{
+	Name:        "jobs",
+	Aliases:     []string{"job"},
+	Usage:       "List jobs for a workflow run",
+	Description: "List jobs for a specific workflow run",
+	ArgsUsage:   "<run-id>",
+	Action:      RunActionJobs,
+	Flags:       flags.AllDefaultFlags,
+}
+
+// RunActionJobs lists jobs for a workflow run
+func RunActionJobs(ctx stdctx.Context, cmd *cli.Command) error {
+	c := context.InitCommand(cmd)
+	c.Ensure(context.CtxRequirement{RemoteRepo: true})
+
+	if cmd.Args().Len() < 1 {
+		return fmt.Errorf("run ID is required")
+	}
+
+	runID, err := utils.ArgToIndex(cmd.Args().First())
+	if err != nil {
+		return fmt.Errorf("invalid run ID: %w", err)
+	}
+
+	client := api.NewClient(c.Login)
+
+	path := fmt.Sprintf("/repos/%s/%s/actions/runs/%d/jobs",
+		c.Owner, c.Repo, runID)
+
+	var jobs api.ActionJobList
+	if _, err := client.Get(ctx, path, &jobs); err != nil {
+		return err
+	}
+
+	print.ActionJobsList(jobs.Jobs, c.Output)
+	return nil
+}

cmd/actions/jobs_test.go

@@ -0,0 +1,62 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package actions
+
+import (
+	"testing"
+)
+
+func TestJobsCommandFlags(t *testing.T) {
+	cmd := CmdActionsJobs
+
+	// Test that required flags exist
+	expectedFlags := []string{"output", "remote", "login", "repo"}
+
+	for _, flagName := range expectedFlags {
+		found := false
+		for _, flag := range cmd.Flags {
+			for _, name := range flag.Names() {
+				if name == flagName {
+					found = true
+					break
+				}
+			}
+			if found {
+				break
+			}
+		}
+
+		if !found {
+			t.Errorf("Expected flag %s not found in CmdActionsJobs", flagName)
+		}
+	}
+}
+
+func TestJobsCommandProperties(t *testing.T) {
+	cmd := CmdActionsJobs
+
+	if cmd.Name != "jobs" {
+		t.Errorf("Expected command name 'jobs', got %s", cmd.Name)
+	}
+
+	if len(cmd.Aliases) == 0 || cmd.Aliases[0] != "job" {
+		t.Errorf("Expected alias 'job' for jobs command")
+	}
+
+	if cmd.Usage == "" {
+		t.Error("Jobs command should have usage text")
+	}
+
+	if cmd.Description == "" {
+		t.Error("Jobs command should have description")
+	}
+
+	if cmd.ArgsUsage != "<run-id>" {
+		t.Errorf("Expected ArgsUsage '<run-id>', got %s", cmd.ArgsUsage)
+	}
+
+	if cmd.Action == nil {
+		t.Error("Jobs command should have an action")
+	}
+}

cmd/actions/logs.go

@@ -0,0 +1,55 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package actions
+
+import (
+	stdctx "context"
+	"fmt"
+
+	"code.gitea.io/tea/cmd/flags"
+	"code.gitea.io/tea/modules/api"
+	"code.gitea.io/tea/modules/context"
+	"code.gitea.io/tea/modules/utils"
+
+	"github.com/urfave/cli/v3"
+)
+
+// CmdActionsLogs represents the actions logs command
+var CmdActionsLogs = cli.Command{
+	Name:        "logs",
+	Aliases:     []string{"log"},
+	Usage:       "Display logs for a job",
+	Description: "Display logs for a specific job",
+	ArgsUsage:   "<job-id>",
+	Action:      RunActionLogs,
+	Flags:       flags.AllDefaultFlags,
+}
+
+// RunActionLogs displays logs for a job
+func RunActionLogs(ctx stdctx.Context, cmd *cli.Command) error {
+	c := context.InitCommand(cmd)
+	c.Ensure(context.CtxRequirement{RemoteRepo: true})
+
+	if cmd.Args().Len() < 1 {
+		return fmt.Errorf("job ID is required")
+	}
+
+	jobID, err := utils.ArgToIndex(cmd.Args().First())
+	if err != nil {
+		return fmt.Errorf("invalid job ID: %w", err)
+	}
+
+	client := api.NewClient(c.Login)
+
+	path := fmt.Sprintf("/repos/%s/%s/actions/jobs/%d/logs",
+		c.Owner, c.Repo, jobID)
+
+	logs, err := client.GetRaw(ctx, path)
+	if err != nil {
+		return err
+	}
+
+	fmt.Print(string(logs))
+	return nil
+}

cmd/actions/logs_test.go

@@ -0,0 +1,62 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package actions
+
+import (
+	"testing"
+)
+
+func TestLogsCommandFlags(t *testing.T) {
+	cmd := CmdActionsLogs
+
+	// Test that required flags exist
+	expectedFlags := []string{"output", "remote", "login", "repo"}
+
+	for _, flagName := range expectedFlags {
+		found := false
+		for _, flag := range cmd.Flags {
+			for _, name := range flag.Names() {
+				if name == flagName {
+					found = true
+					break
+				}
+			}
+			if found {
+				break
+			}
+		}
+
+		if !found {
+			t.Errorf("Expected flag %s not found in CmdActionsLogs", flagName)
+		}
+	}
+}
+
+func TestLogsCommandProperties(t *testing.T) {
+	cmd := CmdActionsLogs
+
+	if cmd.Name != "logs" {
+		t.Errorf("Expected command name 'logs', got %s", cmd.Name)
+	}
+
+	if len(cmd.Aliases) == 0 || cmd.Aliases[0] != "log" {
+		t.Errorf("Expected alias 'log' for logs command")
+	}
+
+	if cmd.Usage == "" {
+		t.Error("Logs command should have usage text")
+	}
+
+	if cmd.Description == "" {
+		t.Error("Logs command should have description")
+	}
+
+	if cmd.ArgsUsage != "<job-id>" {
+		t.Errorf("Expected ArgsUsage '<job-id>', got %s", cmd.ArgsUsage)
+	}
+
+	if cmd.Action == nil {
+		t.Error("Logs command should have an action")
+	}
+}

cmd/actions/runs.go

@@ -0,0 +1,50 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package actions
+
+import (
+	stdctx "context"
+	"fmt"
+
+	"code.gitea.io/tea/cmd/flags"
+	"code.gitea.io/tea/modules/api"
+	"code.gitea.io/tea/modules/context"
+	"code.gitea.io/tea/modules/print"
+
+	"github.com/urfave/cli/v3"
+)
+
+// CmdActionsRuns represents the actions runs command
+var CmdActionsRuns = cli.Command{
+	Name:        "runs",
+	Aliases:     []string{"run"},
+	Usage:       "List workflow runs",
+	Description: "List workflow runs for a repository",
+	Action:      RunActionRuns,
+	Flags: append([]cli.Flag{
+		&flags.PaginationPageFlag,
+		&flags.PaginationLimitFlag,
+	}, flags.AllDefaultFlags...),
+}
+
+// RunActionRuns lists workflow runs
+func RunActionRuns(ctx stdctx.Context, cmd *cli.Command) error {
+	c := context.InitCommand(cmd)
+	c.Ensure(context.CtxRequirement{RemoteRepo: true})
+
+	client := api.NewClient(c.Login)
+
+	path := fmt.Sprintf("/repos/%s/%s/actions/runs?page=%d&limit=%d",
+		c.Owner, c.Repo,
+		flags.GetListOptions().Page,
+		flags.GetListOptions().PageSize)
+
+	var runs api.ActionRunList
+	if _, err := client.Get(ctx, path, &runs); err != nil {
+		return err
+	}
+
+	print.ActionRunsList(runs.WorkflowRuns, c.Output)
+	return nil
+}

cmd/actions/runs_test.go

@@ -0,0 +1,58 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package actions
+
+import (
+	"testing"
+)
+
+func TestRunsCommandFlags(t *testing.T) {
+	cmd := CmdActionsRuns
+
+	// Test that required flags exist
+	expectedFlags := []string{"page", "limit", "output", "remote", "login", "repo"}
+
+	for _, flagName := range expectedFlags {
+		found := false
+		for _, flag := range cmd.Flags {
+			for _, name := range flag.Names() {
+				if name == flagName {
+					found = true
+					break
+				}
+			}
+			if found {
+				break
+			}
+		}
+
+		if !found {
+			t.Errorf("Expected flag %s not found in CmdActionsRuns", flagName)
+		}
+	}
+}
+
+func TestRunsCommandProperties(t *testing.T) {
+	cmd := CmdActionsRuns
+
+	if cmd.Name != "runs" {
+		t.Errorf("Expected command name 'runs', got %s", cmd.Name)
+	}
+
+	if len(cmd.Aliases) == 0 || cmd.Aliases[0] != "run" {
+		t.Errorf("Expected alias 'run' for runs command")
+	}
+
+	if cmd.Usage == "" {
+		t.Error("Runs command should have usage text")
+	}
+
+	if cmd.Description == "" {
+		t.Error("Runs command should have description")
+	}
+
+	if cmd.Action == nil {
+		t.Error("Runs command should have an action")
+	}
+}

cmd/issues.go

@@ -63,6 +63,7 @@ var CmdIssues = cli.Command{
 		&issues.CmdIssuesEdit,
 		&issues.CmdIssuesReopen,
 		&issues.CmdIssuesClose,
+		&issues.CmdIssuesDependencies,
 	},
 	Flags: append([]cli.Flag{
 		&cli.BoolFlag{

cmd/issues/dependencies.go

@@ -0,0 +1,230 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package issues
+
+import (
+	"bytes"
+	stdctx "context"
+	"encoding/json"
+	"fmt"
+	"strconv"
+	"strings"
+
+	"code.gitea.io/sdk/gitea"
+	"code.gitea.io/tea/cmd/flags"
+	"code.gitea.io/tea/modules/api"
+	"code.gitea.io/tea/modules/context"
+	"code.gitea.io/tea/modules/print"
+	"code.gitea.io/tea/modules/utils"
+
+	"github.com/urfave/cli/v3"
+)
+
+// CmdIssuesDependencies represents the subcommand for issue dependencies
+var CmdIssuesDependencies = cli.Command{
+	Name:        "dependencies",
+	Aliases:     []string{"deps", "dep"},
+	Usage:       "Manage issue dependencies",
+	Description: "List, add, or remove dependencies for an issue",
+	ArgsUsage:   "<issue index>",
+	Action:      runDependenciesList,
+	Commands: []*cli.Command{
+		&cmdDependenciesList,
+		&cmdDependenciesAdd,
+		&cmdDependenciesRemove,
+	},
+	Flags: flags.AllDefaultFlags,
+}
+
+var cmdDependenciesList = cli.Command{
+	Name:        "list",
+	Aliases:     []string{"ls"},
+	Usage:       "List dependencies for an issue",
+	Description: "List issues that the specified issue depends on (blockers)",
+	ArgsUsage:   "<issue index>",
+	Action:      runDependenciesList,
+	Flags:       flags.AllDefaultFlags,
+}
+
+var cmdDependenciesAdd = cli.Command{
+	Name:        "add",
+	Usage:       "Add a dependency to an issue",
+	Description: "Make an issue depend on another issue (blocker)",
+	ArgsUsage:   "<issue index> <dependency index or owner/repo#index>",
+	Action:      runDependenciesAdd,
+	Flags:       flags.AllDefaultFlags,
+}
+
+var cmdDependenciesRemove = cli.Command{
+	Name:        "remove",
+	Aliases:     []string{"rm"},
+	Usage:       "Remove a dependency from an issue",
+	Description: "Remove a dependency from an issue",
+	ArgsUsage:   "<issue index> <dependency index or owner/repo#index>",
+	Action:      runDependenciesRemove,
+	Flags:       flags.AllDefaultFlags,
+}
+
+// runDependenciesList lists dependencies for an issue
+func runDependenciesList(ctx stdctx.Context, cmd *cli.Command) error {
+	c := context.InitCommand(cmd)
+	c.Ensure(context.CtxRequirement{RemoteRepo: true})
+
+	if cmd.Args().Len() < 1 {
+		return fmt.Errorf("issue index required")
+	}
+
+	index, err := utils.ArgToIndex(cmd.Args().First())
+	if err != nil {
+		return err
+	}
+
+	client := api.NewClient(c.Login)
+	path := fmt.Sprintf("/repos/%s/%s/issues/%d/dependencies", c.Owner, c.Repo, index)
+
+	var deps []*gitea.Issue
+	if _, err := client.Get(ctx, path, &deps); err != nil {
+		return err
+	}
+
+	if len(deps) == 0 {
+		fmt.Printf("Issue #%d has no dependencies\n", index)
+		return nil
+	}
+
+	print.IssuesPullsList(deps, c.Output, []string{"index", "state", "title", "owner", "repo"})
+	return nil
+}
+
+// runDependenciesAdd adds a dependency to an issue
+func runDependenciesAdd(ctx stdctx.Context, cmd *cli.Command) error {
+	c := context.InitCommand(cmd)
+	c.Ensure(context.CtxRequirement{RemoteRepo: true})
+
+	if cmd.Args().Len() < 2 {
+		return fmt.Errorf("usage: tea issues dependencies add <issue index> <dependency index or owner/repo#index>")
+	}
+
+	index, err := utils.ArgToIndex(cmd.Args().First())
+	if err != nil {
+		return fmt.Errorf("invalid issue index: %w", err)
+	}
+
+	depOwner, depRepo, depIndex, err := parseDependencyArg(cmd.Args().Get(1), c.Owner, c.Repo)
+	if err != nil {
+		return err
+	}
+
+	client := api.NewClient(c.Login)
+	path := fmt.Sprintf("/repos/%s/%s/issues/%d/dependencies", c.Owner, c.Repo, index)
+
+	reqBody := api.IssueDependencyRequest{
+		Owner: depOwner,
+		Repo:  depRepo,
+		Index: depIndex,
+	}
+
+	body, err := json.Marshal(reqBody)
+	if err != nil {
+		return fmt.Errorf("failed to marshal request: %w", err)
+	}
+
+	if _, err := client.Post(ctx, path, bytes.NewReader(body), nil); err != nil {
+		return err
+	}
+
+	if depOwner == c.Owner && depRepo == c.Repo {
+		fmt.Printf("Added dependency: issue #%d now depends on #%d\n", index, depIndex)
+	} else {
+		fmt.Printf("Added dependency: issue #%d now depends on %s/%s#%d\n", index, depOwner, depRepo, depIndex)
+	}
+	return nil
+}
+
+// runDependenciesRemove removes a dependency from an issue
+func runDependenciesRemove(ctx stdctx.Context, cmd *cli.Command) error {
+	c := context.InitCommand(cmd)
+	c.Ensure(context.CtxRequirement{RemoteRepo: true})
+
+	if cmd.Args().Len() < 2 {
+		return fmt.Errorf("usage: tea issues dependencies remove <issue index> <dependency index or owner/repo#index>")
+	}
+
+	index, err := utils.ArgToIndex(cmd.Args().First())
+	if err != nil {
+		return fmt.Errorf("invalid issue index: %w", err)
+	}
+
+	depOwner, depRepo, depIndex, err := parseDependencyArg(cmd.Args().Get(1), c.Owner, c.Repo)
+	if err != nil {
+		return err
+	}
+
+	client := api.NewClient(c.Login)
+	path := fmt.Sprintf("/repos/%s/%s/issues/%d/dependencies", c.Owner, c.Repo, index)
+
+	reqBody := api.IssueDependencyRequest{
+		Owner: depOwner,
+		Repo:  depRepo,
+		Index: depIndex,
+	}
+
+	body, err := json.Marshal(reqBody)
+	if err != nil {
+		return fmt.Errorf("failed to marshal request: %w", err)
+	}
+
+	if _, err := client.Delete(ctx, path, bytes.NewReader(body)); err != nil {
+		return err
+	}
+
+	if depOwner == c.Owner && depRepo == c.Repo {
+		fmt.Printf("Removed dependency: issue #%d no longer depends on #%d\n", index, depIndex)
+	} else {
+		fmt.Printf("Removed dependency: issue #%d no longer depends on %s/%s#%d\n", index, depOwner, depRepo, depIndex)
+	}
+	return nil
+}
+
+// parseDependencyArg parses a dependency argument which can be:
+// - "123" or "#123" (same repo)
+// - "owner/repo#123" (cross-repo)
+func parseDependencyArg(arg, defaultOwner, defaultRepo string) (owner, repo string, index int64, err error) {
+	// Check for cross-repo format: owner/repo#123
+	// Ensure "/" comes before "#" to distinguish from same-repo "#123"
+	slashIdx := strings.Index(arg, "/")
+	hashIdx := strings.Index(arg, "#")
+	if slashIdx != -1 && hashIdx != -1 && slashIdx < hashIdx {
+		parts := strings.SplitN(arg, "#", 2)
+		if len(parts) != 2 {
+			return "", "", 0, fmt.Errorf("invalid dependency format: %s (expected owner/repo#index)", arg)
+		}
+
+		repoPath := parts[0]
+		indexStr := parts[1]
+
+		repoParts := strings.SplitN(repoPath, "/", 2)
+		if len(repoParts) != 2 {
+			return "", "", 0, fmt.Errorf("invalid dependency format: %s (expected owner/repo#index)", arg)
+		}
+
+		owner = repoParts[0]
+		repo = repoParts[1]
+
+		index, err = strconv.ParseInt(indexStr, 10, 64)
+		if err != nil {
+			return "", "", 0, fmt.Errorf("invalid issue index: %s", indexStr)
+		}
+
+		return owner, repo, index, nil
+	}
+
+	// Same repo format: 123 or #123
+	index, err = utils.ArgToIndex(arg)
+	if err != nil {
+		return "", "", 0, fmt.Errorf("invalid issue index: %w", err)
+	}
+
+	return defaultOwner, defaultRepo, index, nil
+}

docs/CLI.md

@@ -1377,6 +1377,46 @@ Delete an action variable
 
 **--repo, -r**="": Override local repository path or gitea repository slug to interact with. Optional
 
+### runs, run
+
+List workflow runs
+
+**--limit, --lm**="": specify limit of items per page (default: 30)
+
+**--login, -l**="": Use a different Gitea Login. Optional
+
+**--output, -o**="": Output format. (simple, table, csv, tsv, yaml, json)
+
+**--page, -p**="": specify page (default: 1)
+
+**--remote, -R**="": Discover Gitea login from remote. Optional
+
+**--repo, -r**="": Override local repository path or gitea repository slug to interact with. Optional
+
+### jobs, job
+
+List jobs for a workflow run
+
+**--login, -l**="": Use a different Gitea Login. Optional
+
+**--output, -o**="": Output format. (simple, table, csv, tsv, yaml, json)
+
+**--remote, -R**="": Discover Gitea login from remote. Optional
+
+**--repo, -r**="": Override local repository path or gitea repository slug to interact with. Optional
+
+### logs, log
+
+Display logs for a job
+
+**--login, -l**="": Use a different Gitea Login. Optional
+
+**--output, -o**="": Output format. (simple, table, csv, tsv, yaml, json)
+
+**--remote, -R**="": Discover Gitea login from remote. Optional
+
+**--repo, -r**="": Override local repository path or gitea repository slug to interact with. Optional
+
 ## webhooks, webhook, hooks, hook
 
 Manage webhooks

modules/api/client.go

@@ -0,0 +1,144 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package api
+
+import (
+	"context"
+	"crypto/tls"
+	"encoding/json"
+	"fmt"
+	"io"
+	"net/http"
+
+	"code.gitea.io/tea/modules/config"
+)
+
+// Client provides methods for making raw API calls to Gitea
+type Client struct {
+	login      *config.Login
+	httpClient *http.Client
+}
+
+// NewClient creates a new API client from a login
+func NewClient(login *config.Login) *Client {
+	httpClient := &http.Client{}
+	if login.Insecure {
+		httpClient = &http.Client{
+			Transport: &http.Transport{
+				TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
+			},
+		}
+	}
+	return &Client{
+		login:      login,
+		httpClient: httpClient,
+	}
+}
+
+// Get makes an authenticated GET request to the API and decodes the JSON response
+func (c *Client) Get(ctx context.Context, path string, result interface{}) (*http.Response, error) {
+	url := fmt.Sprintf("%s/api/v1%s", c.login.URL, path)
+
+	req, err := http.NewRequestWithContext(ctx, "GET", url, nil)
+	if err != nil {
+		return nil, fmt.Errorf("failed to create request: %w", err)
+	}
+
+	req.Header.Set("Authorization", "token "+c.login.Token)
+	req.Header.Set("Accept", "application/json")
+
+	resp, err := c.httpClient.Do(req)
+	if err != nil {
+		return nil, fmt.Errorf("failed to execute request: %w", err)
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode >= 400 {
+		body, _ := io.ReadAll(resp.Body)
+		return resp, fmt.Errorf("API request failed with status %d: %s", resp.StatusCode, string(body))
+	}
+
+	if result != nil {
+		if err := json.NewDecoder(resp.Body).Decode(result); err != nil {
+			return resp, fmt.Errorf("failed to decode response: %w", err)
+		}
+	}
+
+	return resp, nil
+}
+
+// GetRaw makes an authenticated GET request and returns the raw response body
+func (c *Client) GetRaw(ctx context.Context, path string) ([]byte, error) {
+	url := fmt.Sprintf("%s/api/v1%s", c.login.URL, path)
+
+	req, err := http.NewRequestWithContext(ctx, "GET", url, nil)
+	if err != nil {
+		return nil, fmt.Errorf("failed to create request: %w", err)
+	}
+
+	req.Header.Set("Authorization", "token "+c.login.Token)
+
+	resp, err := c.httpClient.Do(req)
+	if err != nil {
+		return nil, fmt.Errorf("failed to execute request: %w", err)
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode >= 400 {
+		body, _ := io.ReadAll(resp.Body)
+		return nil, fmt.Errorf("API request failed with status %d: %s", resp.StatusCode, string(body))
+	}
+
+	body, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return nil, fmt.Errorf("failed to read response: %w", err)
+	}
+
+	return body, nil
+}
+
+// Post makes an authenticated POST request to the API and decodes the JSON response
+func (c *Client) Post(ctx context.Context, path string, body io.Reader, result interface{}) (*http.Response, error) {
+	return c.doRequest(ctx, "POST", path, body, result)
+}
+
+// Delete makes an authenticated DELETE request to the API
+func (c *Client) Delete(ctx context.Context, path string, body io.Reader) (*http.Response, error) {
+	return c.doRequest(ctx, "DELETE", path, body, nil)
+}
+
+// doRequest performs an HTTP request with the given method
+func (c *Client) doRequest(ctx context.Context, method, path string, body io.Reader, result interface{}) (*http.Response, error) {
+	url := fmt.Sprintf("%s/api/v1%s", c.login.URL, path)
+
+	req, err := http.NewRequestWithContext(ctx, method, url, body)
+	if err != nil {
+		return nil, fmt.Errorf("failed to create request: %w", err)
+	}
+
+	req.Header.Set("Authorization", "token "+c.login.Token)
+	req.Header.Set("Accept", "application/json")
+	if body != nil {
+		req.Header.Set("Content-Type", "application/json")
+	}
+
+	resp, err := c.httpClient.Do(req)
+	if err != nil {
+		return nil, fmt.Errorf("failed to execute request: %w", err)
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode >= 400 {
+		respBody, _ := io.ReadAll(resp.Body)
+		return resp, fmt.Errorf("API request failed with status %d: %s", resp.StatusCode, string(respBody))
+	}
+
+	if result != nil {
+		if err := json.NewDecoder(resp.Body).Decode(result); err != nil {
+			return resp, fmt.Errorf("failed to decode response: %w", err)
+		}
+	}
+
+	return resp, nil
+}

modules/api/client_test.go

@@ -0,0 +1,203 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package api
+
+import (
+	"context"
+	"encoding/json"
+	"net/http"
+	"net/http/httptest"
+	"testing"
+
+	"code.gitea.io/tea/modules/config"
+)
+
+func TestNewClient(t *testing.T) {
+	login := &config.Login{
+		URL:      "https://gitea.example.com",
+		Token:    "test-token",
+		Insecure: false,
+	}
+
+	client := NewClient(login)
+	if client == nil {
+		t.Fatal("NewClient returned nil")
+	}
+
+	if client.login != login {
+		t.Error("Client login not set correctly")
+	}
+
+	if client.httpClient == nil {
+		t.Error("Client httpClient not set")
+	}
+}
+
+func TestNewClientInsecure(t *testing.T) {
+	login := &config.Login{
+		URL:      "https://gitea.example.com",
+		Token:    "test-token",
+		Insecure: true,
+	}
+
+	client := NewClient(login)
+	if client == nil {
+		t.Fatal("NewClient returned nil")
+	}
+
+	// Verify that insecure transport is configured
+	if client.httpClient.Transport == nil {
+		t.Error("Expected custom transport for insecure client")
+	}
+}
+
+func TestGet(t *testing.T) {
+	// Create a test server
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		// Verify request
+		if r.Method != "GET" {
+			t.Errorf("Expected GET request, got %s", r.Method)
+		}
+
+		if r.Header.Get("Authorization") != "token test-token" {
+			t.Errorf("Expected authorization header, got %s", r.Header.Get("Authorization"))
+		}
+
+		if r.Header.Get("Accept") != "application/json" {
+			t.Errorf("Expected accept header, got %s", r.Header.Get("Accept"))
+		}
+
+		// Return test response
+		w.Header().Set("Content-Type", "application/json")
+		json.NewEncoder(w).Encode(map[string]string{"status": "ok"})
+	}))
+	defer server.Close()
+
+	login := &config.Login{
+		URL:   server.URL,
+		Token: "test-token",
+	}
+
+	client := NewClient(login)
+
+	var result map[string]string
+	_, err := client.Get(context.Background(), "/test", &result)
+	if err != nil {
+		t.Fatalf("Get returned error: %v", err)
+	}
+
+	if result["status"] != "ok" {
+		t.Errorf("Expected status 'ok', got %s", result["status"])
+	}
+}
+
+func TestGetError(t *testing.T) {
+	// Create a test server that returns an error
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusNotFound)
+		w.Write([]byte("not found"))
+	}))
+	defer server.Close()
+
+	login := &config.Login{
+		URL:   server.URL,
+		Token: "test-token",
+	}
+
+	client := NewClient(login)
+
+	var result map[string]string
+	_, err := client.Get(context.Background(), "/test", &result)
+	if err == nil {
+		t.Fatal("Expected error for 404 response")
+	}
+
+	expectedError := "API request failed with status 404"
+	if err.Error()[:len(expectedError)] != expectedError {
+		t.Errorf("Expected error starting with '%s', got '%s'", expectedError, err.Error())
+	}
+}
+
+func TestGetRaw(t *testing.T) {
+	expectedBody := "raw log content here"
+
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		if r.Method != "GET" {
+			t.Errorf("Expected GET request, got %s", r.Method)
+		}
+
+		if r.Header.Get("Authorization") != "token test-token" {
+			t.Errorf("Expected authorization header, got %s", r.Header.Get("Authorization"))
+		}
+
+		w.Write([]byte(expectedBody))
+	}))
+	defer server.Close()
+
+	login := &config.Login{
+		URL:   server.URL,
+		Token: "test-token",
+	}
+
+	client := NewClient(login)
+
+	body, err := client.GetRaw(context.Background(), "/logs")
+	if err != nil {
+		t.Fatalf("GetRaw returned error: %v", err)
+	}
+
+	if string(body) != expectedBody {
+		t.Errorf("Expected body '%s', got '%s'", expectedBody, string(body))
+	}
+}
+
+func TestGetRawError(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.WriteHeader(http.StatusInternalServerError)
+		w.Write([]byte("internal error"))
+	}))
+	defer server.Close()
+
+	login := &config.Login{
+		URL:   server.URL,
+		Token: "test-token",
+	}
+
+	client := NewClient(login)
+
+	_, err := client.GetRaw(context.Background(), "/logs")
+	if err == nil {
+		t.Fatal("Expected error for 500 response")
+	}
+
+	expectedError := "API request failed with status 500"
+	if err.Error()[:len(expectedError)] != expectedError {
+		t.Errorf("Expected error starting with '%s', got '%s'", expectedError, err.Error())
+	}
+}
+
+func TestGetWithContextCancellation(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		// This should not be reached if context is cancelled
+		w.Write([]byte("ok"))
+	}))
+	defer server.Close()
+
+	login := &config.Login{
+		URL:   server.URL,
+		Token: "test-token",
+	}
+
+	client := NewClient(login)
+
+	// Create a cancelled context
+	ctx, cancel := context.WithCancel(context.Background())
+	cancel()
+
+	var result map[string]string
+	_, err := client.Get(ctx, "/test", &result)
+	if err == nil {
+		t.Fatal("Expected error for cancelled context")
+	}
+}

modules/api/types.go

@@ -0,0 +1,66 @@
+// Copyright 2025 The Gitea Authors. All rights reserved.
+// SPDX-License-Identifier: MIT
+
+package api
+
+import "time"
+
+// ActionRun represents a workflow run
+type ActionRun struct {
+	ID          int64      `json:"id"`
+	Title       string     `json:"display_title"`
+	Path        string     `json:"path"`
+	Status      string     `json:"status"`
+	Conclusion  string     `json:"conclusion"`
+	Event       string     `json:"event"`
+	HeadBranch  string     `json:"head_branch"`
+	HeadSHA     string     `json:"head_sha"`
+	RunNumber   int64      `json:"run_number"`
+	RunAttempt  int64      `json:"run_attempt"`
+	HTMLURL     string     `json:"html_url"`
+	URL         string     `json:"url"`
+	StartedAt   *time.Time `json:"started_at"`
+	CompletedAt *time.Time `json:"completed_at"`
+}
+
+// ActionRunList is a list of workflow runs
+type ActionRunList struct {
+	TotalCount   int64        `json:"total_count"`
+	WorkflowRuns []*ActionRun `json:"workflow_runs"`
+}
+
+// ActionJob represents a job within a workflow run
+type ActionJob struct {
+	ID          int64            `json:"id"`
+	RunID       int64            `json:"run_id"`
+	Name        string           `json:"name"`
+	Status      string           `json:"status"`
+	Conclusion  string           `json:"conclusion"`
+	HTMLURL     string           `json:"html_url"`
+	StartedAt   *time.Time       `json:"started_at"`
+	CompletedAt *time.Time       `json:"completed_at"`
+	Steps       []*ActionJobStep `json:"steps"`
+}
+
+// ActionJobStep represents a step within a job
+type ActionJobStep struct {
+	Name        string     `json:"name"`
+	Number      int64      `json:"number"`
+	Status      string     `json:"status"`
+	Conclusion  string     `json:"conclusion"`
+	StartedAt   *time.Time `json:"started_at"`
+	CompletedAt *time.Time `json:"completed_at"`
+}
+
+// ActionJobList is a list of jobs
+type ActionJobList struct {
+	TotalCount int64        `json:"total_count"`
+	Jobs       []*ActionJob `json:"jobs"`
+}
+
+// IssueDependencyRequest is the request body for adding/removing issue dependencies
+type IssueDependencyRequest struct {
+	Owner string `json:"owner"`
+	Repo  string `json:"repo"`
+	Index int64  `json:"index"`
+}

modules/print/actions.go

@@ -7,6 +7,7 @@ import (
 	"fmt"
 
 	"code.gitea.io/sdk/gitea"
+	"code.gitea.io/tea/modules/api"
 )
 
 // ActionSecretsList prints a list of action secrets
@@ -74,3 +75,94 @@ func ActionVariablesList(variables []*gitea.RepoActionVariable, output string) {
 	t.sort(0, true)
 	t.print(output)
 }
+
+// ActionRunsList prints a list of workflow runs
+func ActionRunsList(runs []*api.ActionRun, output string) {
+	t := table{
+		headers: []string{
+			"ID",
+			"Title",
+			"Status",
+			"Conclusion",
+			"Event",
+			"Branch",
+			"Started",
+		},
+	}
+
+	for _, run := range runs {
+		conclusion := run.Conclusion
+		if conclusion == "" {
+			conclusion = "-"
+		}
+
+		started := ""
+		if run.StartedAt != nil {
+			started = FormatTime(*run.StartedAt, output != "")
+		}
+
+		t.addRow(
+			fmt.Sprintf("%d", run.ID),
+			run.Title,
+			run.Status,
+			conclusion,
+			run.Event,
+			run.HeadBranch,
+			started,
+		)
+	}
+
+	if len(runs) == 0 {
+		fmt.Printf("No workflow runs found\n")
+		return
+	}
+
+	t.print(output)
+}
+
+// ActionJobsList prints a list of jobs
+func ActionJobsList(jobs []*api.ActionJob, output string) {
+	t := table{
+		headers: []string{
+			"ID",
+			"Name",
+			"Status",
+			"Conclusion",
+			"Started",
+			"Completed",
+		},
+	}
+
+	for _, job := range jobs {
+		conclusion := job.Conclusion
+		if conclusion == "" {
+			conclusion = "-"
+		}
+
+		started := ""
+		if job.StartedAt != nil {
+			started = FormatTime(*job.StartedAt, output != "")
+		}
+
+		completed := ""
+		if job.CompletedAt != nil {
+			completed = FormatTime(*job.CompletedAt, output != "")
+		}
+
+		t.addRow(
+			fmt.Sprintf("%d", job.ID),
+			job.Name,
+			job.Status,
+			conclusion,
+			started,
+			completed,
+		)
+	}
+
+	if len(jobs) == 0 {
+		fmt.Printf("No jobs found\n")
+		return
+	}
+
+	t.print(output)
+}