LLM generates JSX/TSX → browser renders it directly at runtime — no backend build server, no deploy step, JSPM package support with an explicit compatibility contract.
Renderify is a runtime-first, bundleless dynamic renderer that lets LLMs produce real, interactive UI on the fly. It bridges the gap between "LLM can generate code" and "users can see and interact with that UI instantly" — with inline transpilation via
@babel/standalone, and no backend compiler/deploy pipeline in the loop.
A modern runtime renderer that lets LLMs generate JSX/TSX and render interactive UI instantly in the browser — no build step, no backend compiler.
Renderify is bundleless by design: it does not rely on a traditional bundling pipeline to run generated UI. Instead, it resolves and rewrites module imports at runtime (JSPM/CDN + moduleManifest pinning) and executes under explicit security policy and sandbox controls.
In other words, bundleless runtime execution does not mean full npm bundler compatibility; Renderify intentionally targets a browser-ESM-compatible subset with explicit guarantees. See JSPM package support (tiered contract) for the exact compatibility boundary.
import { renderPlanInBrowser } from "renderify";
renderPlanInBrowser(
{
id: "hello_jsx_runtime",
version: 1,
root: { type: "text", value: "Loading..." },
source: {
language: "tsx",
code: `
import { format } from "date-fns/format";
export default function App() {
return <section>Today: {format(new Date(), "yyyy-MM-dd")}</section>;
}
`,
},
},
{ target: "#mount" },
);Defaults (no extra config):
- Execute JSX/TSX directly at browser runtime.
- Resolve bare imports through JSPM (
auto-pin-latest). - Pin resolved URLs into
moduleManifestbefore execution.
LLMs are increasingly capable of generating UI code, but there is no good way to render that output directly in the browser:
| Existing Approach | Limitation |
|---|---|
| v0 / Bolt.new | Requires a full build backend (Next.js compile + deploy). Not embeddable as a runtime in your own app. |
| Streamlit / Gradio | Python-based, server-rendered. Not a frontend runtime. |
| MCP UI | Limited to Markdown + a small fixed component set. Cannot express arbitrary UI. |
| Anthropic Artifacts | Closed implementation, not open-source, not embeddable. |
| JSON schema renderers (A2UI, json-render) | LLM fills parameters into a predefined component catalog. Cannot express anything outside the schema. |
| Sandpack / WebContainers | Full in-browser bundlers — powerful but heavyweight, not optimized for the LLM → UI hot path. |
| The missing piece: a lightweight, security-governed runtime where LLMs output JSX/TSX (or structured plans) and the browser renders it immediately — with broad browser-ESM npm access via JSPM, without any backend compile step. |
LLM output (JSX/TSX or structured plan)
→ CodeGen (parse + normalize)
→ Security policy check (before any execution)
→ Runtime execution (Babel transpile + JSPM module resolution)
→ Rendered UI in the browser
- Zero-build rendering: LLM-generated JSX/TSX runs directly in the browser via
@babel/standalone+ JSPM CDN. No backend build server, no deploy step, no server round-trip. - JSPM package support (tiered contract): Compatibility aliases (
preact/reactbridge,recharts) are guaranteed; pure browser ESM packages (for examplelodash-es,date-fns,@mui/material) are best-effort. Node.js builtins and unsupported schemes are rejected deterministically. This is the concrete scope of the bundleless contract. - Default auto-pin-latest for bare imports:
renderPlanInBrowserautomatically resolves bare source imports (for exampleimport { format } from "date-fns") through JSPM latest and injects pinnedmoduleManifestentries before policy check and execution. - Security-first execution: Every plan passes through a policy checker (blocked tags, module allowlists, tree depth limits, execution budgets) before any code runs. Three built-in profiles:
strict,balanced,relaxed. - JSPM-only strict preset: Set
RENDERIFY_RUNTIME_JSPM_ONLY_STRICT_MODE=trueto force strict profile + manifest/integrity enforcement + preflight fail-fast + no fallback CDNs. - Dual input paths: Accepts both structured JSON RuntimePlans (for precise LLM structured output) and raw TSX/JSX code blocks (for natural LLM text generation).
- LLM is optional: You can use Renderify as a renderer-only runtime by supplying RuntimePlan/source from your own backend or model pipeline.
- Streaming-first rendering:
renderPromptStreamemitsllm-delta/preview/finalchunks so chat UIs can progressively render. - Pluggable at every stage: 10 hook points (
beforeLLM,afterCodeGen,beforeRender, etc.) let you inject custom logic without forking the core.
- LLM chat / agent platforms that need to render dynamic UI from model output (dashboards, forms, cards, data visualizations)
- AI Agent toolchains — an Agent analyzes user data and dynamically generates an interactive dashboard or operation interface, rather than just returning text
- Low-code / No-code AI backends — users describe intent in natural language, the LLM generates a runnable UI component on the fly
- Dynamic forms & approval flows — generate context-aware forms at runtime, more flexible than JSON Schema renderers
- Rapid prototyping workflows where you want to go from prompt → rendered UI in seconds, not minutes
- Any application that needs to safely render untrusted, dynamically-generated UI in the browser
flowchart TD
A["Prompt / Context"] --> B["LLM Interpreter"]
B --> C["Code Generator"]
C --> D["Runtime Plan (IR)"]
D --> E["Security Policy Checker"]
E --> F["Runtime Executor"]
F --> G["UI Renderer"]
F --> H["JSPM Module Loader"]
H --> I["JSPM CDN / SystemJS"]
J["Customization Plugins"] --> B
J --> C
J --> E
J --> F
J --> G
- Runtime plan model with optional
state(when provided,state.initialis required) - Runtime quotas and limits:
maxImportsmaxExecutionMsmaxComponentInvocations
- Runtime protocol contract:
specVersion(defaultruntime-plan/v1)moduleManifestfor deterministic module resolution
- JSX runtime modes:
source.runtime: "renderify"for RuntimeNode-oriented executionsource.runtime: "preact"for hooks + React-compatible component rendering
- Runtime sandbox profile:
executionProfile: "isolated-vm"for VM-isolated sync component execution- fail-closed by default when isolation runtime is unavailable
- browser source sandbox with
sandbox-worker/sandbox-iframe/sandbox-shadowrealmexecution profiles - runtime-level controls: mode / timeout / fail-closed
- LLM structured contract:
- prompt flow prefers structured
runtime-planoutput - auto fallback to text generation when structured payload is invalid
- prompt flow prefers structured
- TSX/JSX runtime source pipeline:
codegenextracts fencedtsx/jsx/ts/jsblocks intoplan.source- runtime transpiles source via Babel (browser
@babel/standalone) - import specifiers are resolved via
es-module-lexer+ JSPM loader strategy (less regex fragility) - browser runtime rewrites source module graphs so transitive bare imports resolve at runtime
- Dependency preflight before execution:
- probes
imports,component modules, andsource imports - optional fail-fast mode for CI/production gates
- retry + timeout + multi-CDN fallback for remote module fetches
- probes
- Browser asset module proxying:
- CSS imports are converted to runtime style-injection proxy modules
- JSON imports are converted to ESM default exports
- React ecosystem compatibility bridge:
react,react-dom,react-dom/client,react/jsx-runtimeare mapped topreact/compatequivalents- enables direct runtime rendering for React-first packages (e.g.
recharts,@mui/material)
- LLM provider package (
@renderify/llm) with built-in OpenAI, Anthropic, and Google providers - Runtime source static policy checks (blocked patterns, dynamic import policy, source import count)
- Streaming prompt pipeline (
renderPromptStream) with progressive preview updates - Preact DOM reconciliation path for runtime source modules (diff-based UI updates)
- Security profiles:
strict | balanced | relaxed - RuntimePlan structural guards for safer plan ingestion
- One-line embed API:
renderPlanInBrowser(plan, { target }) - Browser runtime playground (
renderify playground) for live prompt/plan/stream/probe flows - Unit tests for
ir/core/runtime - CI matrix (
Node 22 + Node 24) for typecheck/unit + quality gates - PR changeset enforcement for release-relevant package changes
- Benchmark workflow with JSON artifacts uploaded per CI run
Use Renderify directly in your app code (no pnpm cli).
pnpm add renderifyimport { renderPlanInBrowser } from "renderify";
await renderPlanInBrowser(
{
id: "quickstart_non_cli",
version: 1,
root: { type: "text", value: "Loading..." },
source: {
language: "tsx",
code: `export default () => <section>Hello from Renderify SDK</section>;`,
},
},
{ target: "#mount" },
);For pure browser pages without a build tool, load @babel/standalone before running TSX/JSX source.
# Render prompt and print HTML
pnpm cli -- run "Build a welcome card"
# Print RuntimePlan JSON
pnpm cli -- plan "Build a welcome card"
# Probe RuntimePlan compatibility (policy + runtime preflight diagnostics)
pnpm cli -- probe-plan examples/runtime/recharts-dashboard-plan.json
# side-effect free: does not execute plan source/component logic
# Execute RuntimePlan file
pnpm cli -- render-plan examples/runtime/counter-plan.json
# Browser playground
pnpm playground
pnpm cli -- playground --debug
pnpm cli -- playground --no-llm-log
RENDERIFY_PLAYGROUND_DEBUG=1 pnpm playground
RENDERIFY_PLAYGROUND_LLM_LOG=false pnpm playground
# Optional security env
RENDERIFY_SECURITY_PROFILE=strict pnpm playground
RENDERIFY_LLM_USE_STRUCTURED_OUTPUT=false pnpm playground
# Optional LLM provider env
RENDERIFY_LLM_PROVIDER=openai RENDERIFY_LLM_API_KEY=<your_key> pnpm playground
RENDERIFY_LLM_PROVIDER=openai RENDERIFY_LLM_MODEL=gpt-5-mini RENDERIFY_LLM_BASE_URL=https://api.openai.com/v1 pnpm playground
RENDERIFY_LLM_PROVIDER=anthropic RENDERIFY_LLM_API_KEY=<your_key> pnpm playground
RENDERIFY_LLM_PROVIDER=anthropic RENDERIFY_LLM_MODEL=claude-sonnet-4-5 RENDERIFY_LLM_BASE_URL=https://api.anthropic.com/v1 pnpm playground
RENDERIFY_LLM_PROVIDER=google RENDERIFY_LLM_API_KEY=<your_key> pnpm playground
RENDERIFY_LLM_PROVIDER=google RENDERIFY_LLM_MODEL=gemini-2.5-flash RENDERIFY_LLM_BASE_URL=https://generativelanguage.googleapis.com/v1beta pnpm playground
# Single-shot LLM mode (avoid structured retry/text fallback + network retries)
RENDERIFY_LLM_MAX_RETRIES=0 RENDERIFY_LLM_STRUCTURED_RETRY=false RENDERIFY_LLM_STRUCTURED_FALLBACK_TEXT=false pnpm playground
# Runtime protocol/runtime safety env
RENDERIFY_RUNTIME_ENFORCE_MANIFEST=true pnpm playground
RENDERIFY_RUNTIME_ALLOW_ISOLATION_FALLBACK=false pnpm playground
RENDERIFY_RUNTIME_SPEC_VERSIONS=runtime-plan/v1 pnpm playground
RENDERIFY_RUNTIME_PREFLIGHT=true RENDERIFY_RUNTIME_PREFLIGHT_FAIL_FAST=true pnpm playground
RENDERIFY_RUNTIME_REMOTE_FETCH_TIMEOUT_MS=12000 RENDERIFY_RUNTIME_REMOTE_FETCH_RETRIES=2 pnpm playground
RENDERIFY_RUNTIME_REMOTE_FALLBACK_CDNS=https://esm.sh,https://cdn.jsdelivr.net pnpm playground
RENDERIFY_RUNTIME_BROWSER_SANDBOX_MODE=shadowrealm RENDERIFY_RUNTIME_BROWSER_SANDBOX_TIMEOUT_MS=4000 pnpm playground
RENDERIFY_RUNTIME_BROWSER_SANDBOX_FAIL_CLOSED=true pnpm playground
# Force text/TSX generation path instead of structured RuntimePlan
RENDERIFY_LLM_USE_STRUCTURED_OUTPUT=false pnpm playgroundBy default, playground prints outbound LLM request/response payload logs in terminal ([playground-llm]) with sensitive fields redacted. Use --no-llm-log or RENDERIFY_PLAYGROUND_LLM_LOG=false to disable.
When debug mode is enabled, playground logs key inbound/outbound request summaries, exposes GET /api/debug/stats, and shows an in-page Debug Stats panel with auto-refresh.
The playground can auto-render from URL hash payloads:
#plan64=<base64url(RuntimePlan JSON)>#jsx64=<base64url(JSX source)>- Also supports
#tsx64,#js64,#ts64, with optionalruntime,exportName, andmanifest64.
For bare imports (for example import { LineChart } from "recharts"), playground now auto-hydrates moduleManifest from JSPM resolution. You can still pass manifest64 to pin exact mappings.
PLAN64=$(node -e 'const plan={specVersion:"runtime-plan/v1",id:"hash_demo",version:1,root:{type:"element",tag:"div",children:[{type:"text",value:"Hello from hash plan"}]},capabilities:{}};process.stdout.write(Buffer.from(JSON.stringify(plan),"utf8").toString("base64url"));')
open "http://127.0.0.1:4317/#plan64=${PLAN64}"JSX64=$(node -e 'const code="export default function App(){ return <div style={{ padding: 16 }}>Hello hash JSX</div>; }";process.stdout.write(Buffer.from(code,"utf8").toString("base64url"));')
open "http://127.0.0.1:4317/#jsx64=${JSX64}&runtime=preact"# start playground
pnpm playgroundThen open the playground page and run this prompt:
Build an analytics dashboard with KPI toggle buttons and a multi-point bar chart
The playground now uses streaming prompt rendering (/api/prompt-stream), so you'll see incremental preview updates before final UI completion.
Core quick embed path (ir + runtime, default security checker included):
import { renderPlanInBrowser } from "@renderify/runtime";
import type { RuntimePlan } from "@renderify/ir";
const plan: RuntimePlan = /* LLM generated RuntimePlan */;
await renderPlanInBrowser(plan, { target: "#mount" });You can skip @renderify/llm entirely and pass plans from any external source (your backend, another SDK, or a different model provider):
import { renderPlanInBrowser } from "renderify";
const plan = {
specVersion: "runtime-plan/v1",
id: "renderer_only_demo",
version: 1,
root: {
type: "element",
tag: "div",
children: [{ type: "text", value: "Hello from BYO plan" }],
},
capabilities: { domWrite: true },
};
await renderPlanInBrowser(plan, { target: "#mount" });renderPlanInBrowser defaults to auto-pin-latest, so bare imports work out of the box:
import { renderPlanInBrowser } from "renderify";
const tsxPlan = {
specVersion: "runtime-plan/v1",
id: "renderer_only_tsx_datefns",
version: 1,
capabilities: { domWrite: true },
root: {
type: "element",
tag: "div",
children: [{ type: "text", value: "Loading..." }],
},
source: {
language: "tsx",
runtime: "renderify",
code: `
import { format } from "date-fns/format";
export default function App() {
return <section>Today: {format(new Date(), "yyyy-MM-dd")}</section>;
}
`,
},
};
await renderPlanInBrowser(tsxPlan, { target: "#mount" });For production determinism, prefer manifest-only (explicit pinned versions) and disable auto-pin:
const pinnedPlan = {
...tsxPlan,
moduleManifest: {
"date-fns/format": {
resolvedUrl: "https://ga.jspm.io/npm:date-fns@4.1.0/format.js",
version: "4.1.0",
},
},
};
await renderPlanInBrowser(pinnedPlan, {
target: "#mount",
autoPinLatestModuleManifest: false,
});Auto-pin-latest workflow (renderPlanInBrowser default):
- Write bare imports for DX, for example
import { format } from "date-fns/format". - On first run, Renderify resolves the bare specifier via JSPM latest metadata.
- Renderify immediately pins and injects the exact resolved URL/version into
moduleManifest, then executes with pinned resolution.
Use manifest-only in production (autoPinLatestModuleManifest: false) when you want fully pre-pinned, reviewable dependency mappings.
| Package | Responsibility |
|---|---|
renderify |
Official top-level SDK facade (recommended app entry) |
@renderify/ir |
Runtime IR contracts (plan/node/state/action/event/capabilities) |
@renderify/runtime |
Runtime execution engine + JSPM loader + one-line embed API |
@renderify/security |
Policy profiles + plan/module/source static checks |
@renderify/core |
Legacy orchestration facade (optional compatibility layer) |
@renderify/llm |
LLM provider package (OpenAI + Anthropic + Google) |
@renderify/cli |
CLI + browser playground |
- Architecture overview:
docs/architecture.md - Visual architecture diagrams (Mermaid):
docs/architecture-visual.md - RuntimePlan IR reference:
docs/runtime-plan-ir.md - Runtime execution engine:
docs/runtime-execution.md - Dependency verification model:
docs/runtime-execution.md#verification-model - Browser embedding:
docs/browser-integration.md - Security guide:
docs/security.md - Plugin system:
docs/plugin-system.md - Troubleshooting & FAQ:
docs/troubleshooting-faq.md - Cookbook / common integration patterns:
docs/cookbook.md - Performance tuning guide:
docs/performance-tuning.md
- Runtime plan flow:
examples/runtime/browser-runtime-example.html - TSX runtime flow (Babel + JSPM):
examples/runtime/browser-tsx-jspm-example.html - Recharts + Preact RuntimePlan:
examples/runtime/recharts-dashboard-plan.json - Killer demo: one-line chat dashboard embed:
examples/killer/one-line-chat-dashboard.html - Killer demo: one-line form/state/date-fns embed:
examples/killer/one-line-chat-form.html - Killer demo: one-line worker-sandbox source embed:
examples/killer/one-line-sandbox-worker.html
Beyond the end-to-end pipeline, several components have standalone value:
- RuntimePlan IR — a standardized intermediate representation for "LLM-generated interactive UI." Even outside Renderify, the IR design provides a reusable schema for any system that needs to describe dynamic, composable UI from model output.
- Security policy framework — a systematic approach to executing untrusted dynamic code: blocked tags, module allowlists, execution budgets, and source pattern analysis. The policy model is reusable for any browser-side dynamic code execution scenario.
- Browser ESM module graph materialization — the
fetch → rewrite imports → blob URLpipeline solves a problem browser standards have not natively addressed (bare specifiers are not usable in browsers). This module loading strategy can be extracted as an independent utility.
MIT