rippy-cli 0.1.2

A shell command safety hook for AI coding tools (Claude Code, Cursor, Gemini CLI) — Rust rewrite of Dippy
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77

# Git standard style: allow non-destructive operations, ask for destructive.

[[rules]]
action = "allow"
command = "git"
subcommands = [
    "add", "commit", "push", "pull", "merge", "rebase", "cherry-pick",
    "checkout", "switch", "am", "apply", "fetch",
    "rm", "mv", "restore", "revert", "init", "clone",
    "submodule", "worktree",
]

# Allow stash save/pop/apply (drop/clear overridden to ask below)
[[rules]]
action = "allow"
command = "git"
subcommand = "stash"

[[rules]]
action = "allow"
command = "git"
subcommand = "branch"

[[rules]]
action = "allow"
command = "git"
subcommand = "tag"

# --- Destructive overrides (last-match-wins) ---

[[rules]]
action = "ask"
command = "git"
subcommand = "push"
flags = ["--force", "-f", "--force-with-lease"]
message = "Force push can rewrite remote history"

[[rules]]
action = "ask"
command = "git"
subcommand = "reset"
flags = ["--hard"]
message = "Hard reset can lose uncommitted work"

[[rules]]
action = "ask"
command = "git"
subcommand = "clean"
message = "Clean removes untracked files"

[[rules]]
action = "ask"
command = "git"
subcommand = "branch"
flags = ["-d", "-D", "--delete"]
message = "Branch deletion may lose unmerged work"

[[rules]]
action = "ask"
command = "git"
subcommand = "tag"
flags = ["-d", "--delete"]
message = "Tag deletion"

[[rules]]
action = "ask"
command = "git"
subcommand = "stash"
args-contain = "drop"
message = "Stash drop permanently removes a stash entry"

[[rules]]
action = "ask"
command = "git"
subcommand = "stash"
args-contain = "clear"
message = "Stash clear permanently removes all stash entries"