Dippy

Name: Dippy
Author: ldayton

Verified

🐤 Less permission fatigue, more momentum. Dippy knows what’s safe to run and keeps Claude on track when plans change.

236stars

22forks

Python

Installation

# Add to your Claude Code skills
git clone https://github.com/ldayton/Dippy

Getting Started

Guides for using cli tools skills like Dippy.

Getting Started with AI Skills
First-time install walkthrough for Claude Code, Codex CLI, and ChatGPT.
SkillsLLM Features Guide
Voting, bookmarks, comments, comparison pages, and security scanning explained.
What is an AI Skills Marketplace?
Definitions, how marketplaces work, and how to choose between them in 2026.

Security ReportVerified

Last scanned: 5/30/2026

{
  "issues": [],
  "status": "PASSED",
  "scannedAt": "2026-05-30T15:28:13.195Z",
  "npmAuditRan": true,
  "pipAuditRan": true
}

README.md

Frequently Asked Questions

What is Dippy?

Dippy is an open-source cli tools skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by ldayton. 🐤 Less permission fatigue, more momentum. Dippy knows what’s safe to run and keeps Claude on track when plans change. It has 236 GitHub stars.

Is Dippy safe to use?

Yes. Dippy passed SkillsLLM's automated security scan — a dependency vulnerability audit plus prompt-injection heuristics — with no high-severity issues. You can read the full report in the Security Report section on this page.

How do I install Dippy?

Clone the repository with "git clone https://github.com/ldayton/Dippy" and add it to your Claude Code skills directory (see the Installation section above).

What programming language is Dippy written in?

Dippy is primarily written in Python. It is open-source under ldayton on GitHub, so you can review or fork the full source.

Are there alternatives to Dippy?

Yes. SkillsLLM lists many other CLI Tools skills you can browse and compare side by side. Open the CLI Tools category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh Dippy against similar tools.

LLM Engineer for Beginners

Ship LLM features to production - prompts, RAG, structured outputs, evaluation

39 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

ECC

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

217,466

Popular in CLI Tools

Top skills in this category by stars

ui-ux-pro-max-skill

by nextlevelbuilder

An AI SKILL that provide design intelligence for building professional UI/UX multiple platforms

93,272

ProxyPilot claude-code-monitor

Stop the permission fatigue. Claude Code asks for approval on every ls, git status, and cat - destroying your flow state. You check Slack, come back, and your assistant's just sitting there waiting.

Dippy is a shell command hook that auto-approves safe commands while still prompting for anything destructive. When it blocks, your custom deny messages can steer Claude back on track—no wasted turns. Get up to 40% faster development without disabling permissions entirely.

Built on Parable, our own hand-written bash parser—no external dependencies, just pure Python. 14,000+ tests between the two.

Example: rejecting unsafe operation in a chain

Screenshot

Example: rejecting a command with advice, so Claude can keep going

Deny with message

✅ What gets approved

Complex pipelines: ps aux | grep python | awk '{print $2}' | head -10
Chained reads: git status && git log --oneline -5 && git diff --stat
Cloud inspection: aws ec2 describe-instances --filters "Name=tag:Environment,Values=prod"
Container debugging: docker logs --tail 100 api-server 2>&1 | grep ERROR
Safe redirects: grep -r "TODO" src/ 2>/dev/null, ls &>/dev/null
Command substitution: ls $(pwd), git diff foo-$(date).txt

Safe command substitution

🚫 What gets blocked

Subshell injection: git $(echo rm) foo.txt, echo $(rm -rf /)
Subtle file writes: curl https://example.com > script.sh, tee output.log
Hidden mutations: git stash drop, npm unpublish, brew unlink
Cloud danger: aws s3 rm s3://bucket --recursive, kubectl delete pod
Destructive chains: rm -rf node_modules && npm install (blocks the whole thing)

Redirect blocked

Installation

Homebrew (recommended)

brew tap ldayton/dippy
brew install dippy

Manual

git clone https://github.com/ldayton/Dippy.git

Configure

Add to ~/.claude/settings.json (or use /hooks interactively):

{
  "hooks": {
    "PreToolUse": [
      {
        "matcher": "Bash",
        "hooks": [{ "type": "command", "command": "dippy" }]
      }
    ]
  }
}

If you installed manually, use the full path instead: /path/to/Dippy/bin/dippy-hook

Configuration

Dippy is highly customizable. Beyond simple allow/deny rules, you can attach messages that steer the AI back on track when it goes astray—no wasted turns.

deny python "Use uv run python, which runs in project environment"
deny rm -rf "Use trash instead"
deny-redirect **/.env* "Never write secrets, ask me to do it"

Dippy reads config from ~/.dippy/config (global) and .dippy in your project root.

Full documentation: Dippy Wiki

Extensions

Dippy can do more than filter shell commands. See the wiki for additional capabilities.

Uninstall

Remove the hook entry from ~/.claude/settings.json, then:

brew uninstall dippy  # if installed via Homebrew