Skip to content

ocque41/rune

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

258 Commits
.agent/workflows
.agent/workflows
 
 
.github/workflows
.github/workflows
 
 
__tests__
__tests__
 
 
app
app
 
 
components
components
 
 
docs
docs
 
 
hooks
hooks
 
 
lib
lib
 
 
packages/auth
packages/auth
 
 
public
public
 
 
scripts
scripts
 
 
supabase
supabase
 
 
tests/billing
tests/billing
 
 
workflows
workflows
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
AUTOPILOT.md
AUTOPILOT.md
 
 
CHANGELOG.md
CHANGELOG.md
 
 
DEPLOYMENT_CHECKLIST.md
DEPLOYMENT_CHECKLIST.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
TASK.md
TASK.md
 
 
TASKS.md
TASKS.md
 
 
agents.md
agents.md
 
 
components.json
components.json
 
 
development_status_report.md
development_status_report.md
 
 
eslint.config.mjs
eslint.config.mjs
 
 
instrumentation.ts
instrumentation.ts
 
 
middleware.ts
middleware.ts
 
 
next-env.d.ts
next-env.d.ts
 
 
next.config.ts
next.config.ts
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
postcss.config.mjs
postcss.config.mjs
 
 
tsconfig.json
tsconfig.json
 
 
vercel.json
vercel.json
 
 
vite.config.lib.ts
vite.config.lib.ts
 
 
vitest.config.ts
vitest.config.ts
 
 

Repository files navigation

Rune

Rune is a workflow command deck for building, simulating, saving, and running node-based automations.

Production app: https://rune.cumulush.com

License

Rune is open source under the MIT License.

Copyright (c) 2026 Cumulus - cumulush.com - hi@cumulush.com.

Local Setup

  1. Install dependencies:

    npm install

  2. Copy the example environment file:

    cp .env.example .env.local

  3. Fill in Supabase settings in .env.local.

  4. Set RUNE_SECRETS_ENCRYPTION_KEY to a strong random value before using Supabase-backed secrets. Production fails closed without this value.

  5. Run the app:

    npm run dev

Bring Your Own Key

Hosted Rune is BYOK. The app does not use shared GOOGLE_API_KEY, OPENAI_API_KEY, or ANTHROPIC_API_KEY environment variables for user model calls.

Each user stores provider keys in Rune Secrets. The UI lists secret names only. Create or replace a key value from the Secrets drawer, then select the secret name in agent or AI-node settings. Secret values are accepted by the server, encrypted, and never returned by the API.

Recommended secret names:

  • GOOGLE_API_KEY
  • OPENAI_API_KEY
  • ANTHROPIC_API_KEY

Local development can use SECRETS_PROVIDER=env with WORKFLOW_SECRET_* variables, but hosted production should use SECRETS_PROVIDER=supabase.

Security Gate

Before publishing or opening a pull request, run:

npm run security:secrets
npm run lint
npm test -- --run
npm run build

The secret scan blocks high-confidence raw keys and generated artifacts that should not be published.

About

Rune workflow command deck.

rune.cumulush.com

Topics

workflow automation nextjs mit-license supabase byok

Resources

Readme

License

MIT license

Security policy

Security policy
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

1.0.0 Latest
May 9, 2026

Packages

 
 
 

Contributors

Languages