airut 0.8.0

Headless Claude Code interaction via email

Airut

Headless Claude Code interaction via email. Named "Airut" (Finnish: herald/messenger). Created by Pyry Haulos.

What It Does

Send an email with instructions, receive Claude Code's response. Airut runs Claude Code in isolated containers, maintains conversation state, and handles the full email-to-PR workflow.

You → Email → Airut → Claude Code (container) → PR → Email reply → You

Key features:

• Defense-in-depth sandboxing: Container isolation, surrogate credentials, and network allowlist significantly limit blast radius in case of agent misbehavior. Agents run in permissive mode to complete tasks end-to-end, while security controls bound what they can access and where data can go.
• Email-native authentication: DMARC verification with sender allowlist — no API keys to manage
• Model selection via subaddressing: Control costs by choosing the model per email (e.g., airut+haiku@example.com for fast/cheap, airut+opus@example.com for complex tasks)
• Conversation threading: Reply to continue conversations; [ID:xyz123] tracks state across sessions
• File attachments: Send files to /inbox; receive files from /outbox
• Web dashboard: Monitor running tasks and view network activity logs

Guided Setup

The easiest way to get started is to paste the prompt below into Claude. It will read the docs and walk you through installation interactively.

Copy this prompt into your AI assistant

I want to set up Airut — a headless Claude Code interaction system that
works via email.
Help me install and deploy it step by step, interactively.

Before we start, read these docs to understand the system (fetch all of
them):

- README: https://raw.githubusercontent.com/airutorg/airut/main/README.md
- Deployment guide:
  https://raw.githubusercontent.com/airutorg/airut/main/doc/deployment.md
- Repo onboarding:
  https://raw.githubusercontent.com/airutorg/airut/main/doc/repo-onboarding.md
- Architecture:
  https://raw.githubusercontent.com/airutorg/airut/main/doc/architecture.md
- Agentic operation:
  https://raw.githubusercontent.com/airutorg/airut/main/doc/agentic-operation.md
- Security model:
  https://raw.githubusercontent.com/airutorg/airut/main/doc/security.md
- Execution sandbox:
  https://raw.githubusercontent.com/airutorg/airut/main/doc/execution-sandbox.md
- Network sandbox:
  https://raw.githubusercontent.com/airutorg/airut/main/doc/network-sandbox.md
- Example config:
  https://raw.githubusercontent.com/airutorg/airut/main/config/airut.example.yaml

After reading, guide me through setup one step at a time. Ask me questions to
determine my environment (OS, email provider, GitHub vs Gerrit, etc.) before
giving specific instructions. Cover both server deployment and onboarding my
first repository.

Why Email?

A Super-Optimized Communication Medium

Email clients have been refined over decades for managing multiple asynchronous communications. For many of us, the inbox is already where our task list lives. Agent interactions integrate naturally into this workflow — you get the benefits of decades of compounded investment in email tooling: threading, search, filters, mobile clients, and notification systems.

Using email also dramatically lowers the barrier to engage with an agent. Send a message from any device, get results when ready. No terminal session to keep open, no custom client to install.

Parallel Agent Management

Running multiple Claude Code agents requires isolation — each needs its own workspace, session state, and credentials. Airut provides this automatically: each email conversation is fully isolated, and a configurable thread pool manages concurrent execution.

Code Review as Feedback

The recommended workflow has agents push PRs for review. You review the PR, leave comments, then reply to the email. The agent reads review feedback and iterates. This provides:

• Human oversight before code lands
• Natural checkpoint for feedback
• Audit trail via git history

You: "Add user authentication"
    ↓
Agent: works → pushes PR → replies with PR link
    ↓
You: review PR, leave comments
    ↓
You: reply to email "Address the review comments"
    ↓
Agent: reads comments → fixes → updates PR → replies
    ↓
You: approve and merge

Proof of concept: This project itself is developed exclusively via the email workflow — from the first working version onward, all development has been done by sending instructions to Airut and reviewing the resulting PRs.

Example project: The airut.org website is a minimal Airut-managed repository that demonstrates the email-to-deploy workflow with Cloudflare Pages. Its .airut/ directory and CLAUDE.md serve as a good starting point for onboarding your own projects.

Documentation

High-Level Documentation

• doc/architecture.md — System architecture and data flow
• doc/security.md — Security model (email auth, isolation, credentials)
• doc/execution-sandbox.md — Container isolation and resource limits
• doc/network-sandbox.md — Network allowlist and proxy architecture
• doc/deployment.md — Installation and configuration guide
• doc/repo-onboarding.md — How to onboard a new repository
• doc/agentic-operation.md — Email-to-PR workflow patterns

Implementation Specifications

• spec/ — Detailed specs for email protocol, config schema, dashboard, and tooling

Agent Instructions

• CLAUDE.md — Operating instructions for Claude Code agents

Quick Start

1. Deploy Airut on a Linux VM (see deployment.md)

2. Create a dedicated email account for each repository — Airut treats the inbox as a work queue and permanently deletes messages after processing (see Dedicated Inbox Requirement)

3. Onboard a repository by creating .airut/ configuration (see repo-onboarding.md)

4. Send an email to your configured address:

   To: airut@example.com
   Subject: Fix the typo in README
   
   Please fix the typo in the README file.
   

5. Receive the response with results and PR link

Project Structure

airut/
├── CLAUDE.md              # Agent operating instructions
├── doc/                   # High-level documentation
├── spec/                  # Implementation specifications
├── .airut/                # Repo-specific Airut configuration
├── config/                # Server configuration templates
├── lib/                   # Library code
│   ├── _bundled/          # Static resources bundled into wheel
│   │   ├── assets/        # Logo SVG
│   │   └── proxy/         # Network sandbox (proxy filter, DNS, AWS signing)
│   ├── sandbox/           # Sandboxed execution (container, proxy, session, image)
│   ├── conversation/      # Conversation directory layout and preparation
│   ├── dashboard/         # Web dashboard server
│   ├── gateway/           # Email gateway service
│   └── gh/                # GitHub API wrappers
├── scripts/               # CLI tools
│   ├── gateway/           # Email gateway CLI
│   ├── ci.py              # Local CI runner
│   └── pr.py              # PR workflow tool
└── tests/                 # Unit and integration tests

Development

This project is developed with Claude Code. See CLAUDE.md for conventions and workflow tools.

# Run local CI (auto-fix + all checks)
uv run scripts/ci.py --fix

# Monitor PR status
uv run scripts/pr.py ci --wait -v
uv run scripts/pr.py review -v

License

This project is licensed under the MIT License. See LICENSE for details.