diff --git a/machines/tower/default.nix b/machines/tower/default.nix
index 41a4d68..9945579 100644
--- a/machines/tower/default.nix
+++ b/machines/tower/default.nix
@@ -4,6 +4,7 @@
   imports = [
     ./hardware.nix
     ./home-julien.nix
+    ./forgejo-runner.nix
   ];
 
   boot.loader.grub.enable = true;
diff --git a/machines/tower/forgejo-runner.nix b/machines/tower/forgejo-runner.nix
new file mode 100644
index 0000000..6eda65a
--- /dev/null
+++ b/machines/tower/forgejo-runner.nix
@@ -0,0 +1,27 @@
+{ pkgs, config, ... }:
+{
+  age.secrets.forgejo_runners-token_file.file = ../../secrets/forgejo_runners-token_file.age;
+  nix.settings.allowed-users = [ "gitea-runner" ];
+  nix.settings.trusted-users = [ "gitea-runner" ];
+
+  services.gitea-actions-runner = {
+    package = pkgs.forgejo-runner;
+    instances = {
+      native = {
+        enable = true;
+        url = "https://git.luj.fr";
+        name = "native";
+        labels = [ "native:host" ];
+        tokenFile = config.age.secrets.forgejo_runners-token_file.path;
+        hostPackages = with pkgs; [
+          lix
+          nodejs
+          git
+          bash
+          coreutils
+          curl
+        ];
+      };
+    };
+  };
+}
diff --git a/secrets/forgejo_runners-token_file.age b/secrets/forgejo_runners-token_file.age
index 5e90865..f4dc420 100644
Binary files a/secrets/forgejo_runners-token_file.age and b/secrets/forgejo_runners-token_file.age differ