Quiper unifies all your AI chat services into a single, instant-access macOS overlay. A global hotkey drops you into your conversations without rearranging windows, while persistent multi-sessions ensure you never lose your context. It stays completely out of your Dock and secures sensitive engines behind TouchID.
-
Instant Global Overlay (
⌥ Space) – Acts like Spotlight for AI. Drop a floating window over any app, ask a question, and hide it without breaking your workflow. -
Persistent Multi-Sessions – Every AI engine keeps 10 persistent slots alive in memory. Switch instantly between a coding chat and a writing chat without reloading.
-
Biometric Secure Sandboxing – Protect highly sensitive conversations. Lock specific engines behind TouchID, encrypting their local session data, cookies, cache, and histories using native macOS AES-256 APFS sparsebundles.
[!IMPORTANT] Local Client-Side Protection Only Quiper's secure storage strictly protects your data at rest on your local Mac. If someone steals your unlocked laptop or snoops on your machine, they cannot access these locked engines without your biometrics. It does not encrypt your data on the AI provider's servers—conversations sent to the cloud are processed according to the respective provider's privacy policies.
-
Bring Your Own Engine – Don't get locked into one ecosystem. Add ChatGPT, Claude, Gemini, or point it to local models like
llama.cppor Open WebUI. -
Verifiable Safety – 100% open-source, telemetry-free, and cryptographically verified via GitHub attestations.
-
Power User Tools – Inject custom CSS, trigger Custom Actions via JavaScript, and receive native macOS notifications for background generations.
📸 Gallery: Supported Engines
Requirements: macOS 14.0+ (Sonoma), Apple silicon or Intel.
- Download the latest disk image from the Releases page — direct download:
Quiper.dmg. - Double-click the
.dmgand dragQuiper.appto/Applications. - Because this project isn't signed or notarized with a paid Apple Developer ID, Gatekeeper will block the first launch. Open Settings → Privacy & Security and click Open Anyway next to Quiper.
- Relaunch
Quiper.app, click Open on the follow-up dialog, and macOS will remember that exception for this bundle path. - Approve the notification prompt if you plan to use browser banners.
🛡️ Verifiable Safety & Supply Chain Attestation
Since macOS apps running outside the App Store require absolute trust, you can verify Quiper's safety cryptographically or ask your own AI assistant to double-check it for you.
Copy-paste this prompt into Claude, ChatGPT, Gemini, or any assistant you trust to inspect the repository configuration and network architecture:
I am considering downloading and running "Quiper", an open-source macOS app that manages WebKit sessions for AI services (located at: https://github.com/sassanh/quiper). I want to verify that this is a clean, trustworthy open-source project and NOT malware, a data-stealer, or a backdoored package subject to supply-chain attacks.
Please inspect the repository configuration and codebase to verify:
1. Does the code contain any hidden network telemetry, tracking, data-exfiltration logic, or third-party analytical SDKs? Confirm if all network requests go strictly and directly to the AI services defined by the user without any intermediary server.
2. Does the GitHub CI/CD workflow (.github/workflows/integration_delivery.yml) guarantee that all releases are compiled purely in the cloud via GitHub Actions, and does it use GitHub Artifact Attestation (sigstore/actions/attest-build-provenance) and Immutable Releases so that I can cryptographically verify that the binary I download matches this exact public source code?
3. Review the general application architecture (Swift/WebKit) to confirm that it is a standard native wrapper using system-provided WKWebViews.
Provide an honest technical review: Is Quiper clean, backdoor-free, and cryptographically verifiable?
Every release .dmg is built entirely by GitHub Actions in the cloud. Each build is stamped with a tamper-evident build provenance attestation.
If you have the GitHub CLI installed, you can verify any release disk image before running it:
gh attestation verify Quiper.dmg --repo sassanh/quiperA passing result confirms the file came from this repository's CI and has not been tampered with since it was built.
git clone https://github.com/sassanh/quiper.git
cd quiper
open Quiper.xcodeproj # Opens in Xcode
# Press Cmd+R to build and runCreate a distributable bundle:
./build-app.sh # Builds with xcodebuild, creates Quiper.app
open Quiper.appFor full details on keyboard shortcuts, managing engines, customizing CSS, setting up Custom Actions, and troubleshooting, please refer to our comprehensive documentation.
Quiper is released under the MIT License.