Claude Code hooks

Component

Updates related to the hooks component of Claude Code.

28 releases137 features529 bug fixesView all Claude Code releases

All HOOKS Features

Added /tui command and tui setting to switch to flicker-free rendering in the same conversation via /tui fullscreen.(v2.1.110)
Introduced the push notification tool, allowing Claude to send mobile push notifications when Remote Control and "Push when Claude decides" config are enabled.(v2.1.110)
Added the `autoScrollEnabled` config option to disable conversation auto-scroll in fullscreen mode.(v2.1.110)
Added an option to show Claude's last response as commented context in the `Ctrl+G` external editor (enabled via /config).(v2.1.110)
Enabled session recap for users with telemetry disabled (Bedrock, Vertex, Foundry, DISABLE_TELEMETRY).(v2.1.110)
The Write tool now informs the model when you edit the proposed content in the IDE diff before accepting.(v2.1.110)
Added the `path` parameter to the `EnterWorktree` tool, allowing users to switch into an existing worktree of the current repository.(v2.1.105)
Added background monitor support for plugins via a top-level `monitors` manifest key that automatically arms at session start or on skill invoke.(v2.1.105)
Added PreCompact hook support, enabling hooks to block compaction by exiting with code 2 or returning `{"decision":"block"}`.(v2.1.105)
/proactive is now an alias for /loop.(v2.1.105)
Added \/team-onboarding command to generate a teammate ramp-up guide from local Claude Code usage.(v2.1.101)
Enabled OS CA certificate store trust by default, allowing enterprise TLS proxies to work without extra setup.(v2.1.101)
Introduced auto-creation of a default cloud environment for \/ultraplan and other remote-session features, removing the need for prior web setup.(v2.1.101)
Added interactive Google Vertex AI setup wizard accessible from the login screen for guided configuration of GCP authentication, project, region, credentials, and model pinning.(v2.1.98)
Added Monitor tool for streaming events from background scripts.(v2.1.98)
Added subprocess sandboxing with PID namespace isolation on Linux when `CLAUDE_CODE_SUBPROCESS_ENV_SCRUB` is set.(v2.1.98)
Added `CLAUDE_CODE_SCRIPT_CAPS` environment variable to limit per-session script invocations.(v2.1.98)
Added `--exclude-dynamic-system-prompt-sections` flag to print mode for improved cross-user prompt caching.(v2.1.98)
Added `workspace.git_worktree` to the status line JSON input when operating inside a linked git worktree.(v2.1.98)
Added W3C `TRACEPARENT` environment variable to Bash tool subprocesses when OTEL tracing is enabled for correct trace parenting.(v2.1.98)
Enabled LSP client identification to language servers via `clientInfo` in the initialize request.(v2.1.98)
Enabled Accept Edits mode to auto-approve filesystem commands prefixed with safe environment variables or process wrappers.(v2.1.98)
Added focus view toggle (Ctrl+O) in NO_FLICKER mode showing prompt, one-line tool summary with edit diffstats, and final response(v2.1.97)
Added refreshInterval status line setting to re-run the status line command every N seconds(v2.1.97)
Added workspace.git_worktree to the status line JSON input, set when the current directory is inside a linked git worktree(v2.1.97)
Added ● N running indicator in /agents next to agent types with live subagent instances(v2.1.97)
Added syntax highlighting for Cedar policy files (.cedar, .cedarpolicy)(v2.1.97)
Updated /claude-api skill to cover Managed Agents alongside the Claude API(v2.1.97)
Added /powerup, which provides interactive lessons teaching Claude Code features with animated demos(v2.1.90)
Added CLAUDE_CODE_PLUGIN_KEEP_MARKETPLACE_ON_FAILURE environment variable to retain the existing marketplace cache when git pull fails, beneficial for offline use(v2.1.90)
Added "defer" permission decision to PreToolUse hooks, allowing headless sessions to pause and resume tool calls for re-evaluation.(v2.1.89)
Enabled flicker-free alt-screen rendering via the CLAUDE_CODE_NO_FLICKER=1 environment variable for virtualized scrollback.(v2.1.89)
Introduced PermissionDenied hook that fires after auto mode classifier denials, allowing the model to retry by returning {retry: true}.(v2.1.89)
Added named subagents to @ mention typeahead suggestions.(v2.1.89)
Enabled non-blocking MCP connection mode using MCP_CONNECTION_NONBLOCKING=true for -p mode, and bounded server connections to 5s.(v2.1.89)
Auto mode denied commands now show a notification and are visible in /permissions → Recent tab for retrying.(v2.1.89)
Introduced /buddy for April 1st, a small creature that watches you code.(v2.1.89)
Added `CLAUDE_CODE_NO_FLICKER=1` environment variable to opt into flicker-free alt-screen rendering with virtualized scrollback(v2.1.88)
Added `PermissionDenied` hook that fires after auto mode classifier denials, allowing the model to retry with `{retry: true}`(v2.1.88)
Added named subagents to `@` mention typeahead suggestions(v2.1.88)
Pasting `!command` into an empty prompt now enters bash mode, matching typed `!` behavior(v2.1.88)
Added conditional `if` field for hooks using permission rule syntax to filter when they run, reducing process spawning overhead.(v2.1.85)
Added timestamp markers in transcripts when scheduled tasks (`/loop`, `CronCreate`) fire.(v2.1.85)
Added trailing space after `[Image #N]` placeholder when pasting images.(v2.1.85)
Enabled deep link queries (`claude-cli://open?q=...`) to support up to 5,000 characters, with a warning for long pre-filled prompts.(v2.1.85)
Enabled PreToolUse hooks to satisfy `AskUserQuestion` by returning `updatedInput` alongside `permissionDecision: \"allow\" `, supporting headless integrations.(v2.1.85)
Plugins blocked by organization policy are now hidden from marketplace views and cannot be installed or enabled.(v2.1.85)
Added PowerShell tool for Windows as an opt-in preview.(v2.1.84)
Added `TaskCreated` hook that fires when a task is created via `TaskCreate`.(v2.1.84)
Added `WorktreeCreate` hook support for `type: "http"`.(v2.1.84)
Added `allowedChannelPlugins` managed setting for team/enterprise admins to define a channel plugin allowlist.(v2.1.84)
Added `x-client-request-id` header to API requests for debugging timeouts.(v2.1.84)
Added idle-return prompt that nudges users returning after 75+ minutes to `/clear`, reducing unnecessary token re-caching on stale sessions.(v2.1.84)
Enabled deep links (`claude-cli://`) to open in your preferred terminal instead of the first detected terminal.(v2.1.84)
Rules and skills `paths:` frontmatter now accepts a YAML list of globs.(v2.1.84)
Enabled global system-prompt caching when `ToolSearch` is enabled, including for users with MCP tools configured.(v2.1.84)
Added transcript search functionality, accessible via pressing / in transcript mode, with n/N to step through matches.(v2.1.83)
Added support for agents to declare an initialPrompt in frontmatter to automatically submit a first turn upon session start.(v2.1.83)
Enabled positional referencing of pasted images in prompts by inserting an [Image #N] chip at the cursor location.(v2.1.83)
Added support for binding `chat:killAgents` and `chat:fastMode` via the `~/.claude/keybindings.json` file.(v2.1.83)
Enabled the use of `Ctrl+X Ctrl+E` as an alternative binding for opening the external editor.(v2.1.83)
Added the --bare flag for scripted -p calls, which skips hooks, LSP, plugin sync, and skill directory walks for faster execution.(v2.1.81)
Introduced --channels permission relay, allowing channel servers that declare capability to forward tool approval prompts directly to your phone.(v2.1.81)
Added support for Anthropic Console (API billing) authentication via the `--console` flag in `claude auth login`.(v2.1.79)
Introduced a "Show turn duration" toggle within the `/config` menu to display how long each turn took.(v2.1.79)
Enabled bridging your local session to claude.ai/code using the new `/remote-control` command in VS Code.(v2.1.79)
Enabled AI-generated titles for session tabs in VS Code, based on the first message in the session.(v2.1.79)
Added `StopFailure` hook event that fires when the turn ends due to an API error (rate limit, auth failure, etc.)(v2.1.78)
Added `${CLAUDE_PLUGIN_DATA}` variable for plugin persistent state that survives plugin updates; `/plugin uninstall` prompts before deleting it(v2.1.78)
Added `effort`, `maxTurns`, and `disallowedTools` frontmatter support for plugin-shipped agents(v2.1.78)
Enabled response text to stream line-by-line as it's generated(v2.1.78)
Added `ANTHROPIC_CUSTOM_MODEL_OPTION` environment variable to add a custom entry to the `/model` picker, with optional `_NAME` and `_DESCRIPTION` suffixed variables for display(v2.1.78)
Added optional index argument to the /copy command: /copy N now copies the Nth-latest assistant response.(v2.1.77)
Added the allowRead sandbox filesystem setting to re-allow read access within denyRead regions.(v2.1.77)
Enabled sessions to be auto-named based on plan content when a plan is accepted.(v2.1.77)
Renamed the /fork command to /branch (with /fork remaining as an alias).(v2.1.77)
Added MCP elicitation support, allowing MCP servers to request structured input mid-task via interactive dialogs (form fields or browser URL)(v2.1.76)
Added new Elicitation and ElicitationResult hooks to intercept and override responses before they are sent back(v2.1.76)
Added `-n` / `--name <name>` CLI flag to set a display name for the session at startup(v2.1.76)
Added `worktree.sparsePaths` setting for `claude --worktree` to check out only necessary directories in large monorepos using git sparse-checkout(v2.1.76)
Added `PostCompact` hook that fires after compaction completes(v2.1.76)
Added `/effort` slash command to set the model effort level(v2.1.76)
Enabled session quality surveys, configurable by enterprise admins via the `feedbackSurveyRate` setting(v2.1.76)
Added actionable suggestions to /context command to identify context-heavy tools, memory bloat, and capacity warnings with specific optimization tips(v2.1.74)
Added autoMemoryDirectory setting to configure a custom directory for auto-memory storage(v2.1.74)
Added the `w` key in `/copy` to write the focused selection directly to a file, bypassing the clipboard (useful over SSH).(v2.1.72)
Introduced optional description argument to `/plan` (e.g., `/plan fix the auth bug`) that enters plan mode and immediately starts.(v2.1.72)
Added `claude plugins` as an alias for `claude plugin`.(v2.1.72)
Added `ExitWorktree` tool to leave an `EnterWorktree` session.(v2.1.72)
Enabled the `CLAUDE_CODE_DISABLE_CRON` environment variable to immediately stop scheduled cron jobs mid-session.(v2.1.72)
Added `lsof`, `pgrep`, `tput`, `ss`, `fd`, and `fdfind` to the bash auto-approval allowlist, reducing permission prompts for common read-only operations.(v2.1.72)
Added support for marketplace git URLs without the `.git` suffix (Azure DevOps, AWS CodeCommit).(v2.1.72)
Restored the `model` parameter on the Agent tool for per-invocation model overrides.(v2.1.72)
Added effort level indicator on the input border in VSCode.(v2.1.72)
Added `vscode://anthropic.claude-code/open` URI handler in VSCode to open a new Claude Code tab programmatically, with optional `prompt` and `session` query parameters.(v2.1.72)
Added `claude remote-control` subcommand for external builds, enabling local environment serving for all users.(v2.1.51)
Added support for custom npm registries and specific version pinning when installing plugins from npm sources(v2.1.51)
Added `CLAUDE_CODE_ACCOUNT_UUID`, `CLAUDE_CODE_USER_EMAIL`, and `CLAUDE_CODE_ORGANIZATION_UUID` environment variables for SDK callers to provide account info synchronously.(v2.1.51)
Added support for configuring the startup timeout for LSP servers via the `startupTimeout` setting.(v2.1.50)
Introduced `WorktreeCreate` and `WorktreeRemove` hook events to allow custom setup/teardown when agent worktrees are managed.(v2.1.50)
Enabled declarative use of isolated git worktrees for agents via `isolation: worktree` in agent definitions.(v2.1.50)
Added the `claude agents` command to the CLI for listing all configured agents.(v2.1.50)
Added support for the `CLAUDE_CODE_DISABLE_1M_CONTEXT` environment variable to disable the 1M context window feature.(v2.1.50)
Enabled the full 1M context window support for Opus 4.6 (fast mode).(v2.1.50)
Added support for the `/extra-usage` command within VS Code sessions.(v2.1.50)
Enabled direct file editing in Simple Mode (`CLAUDE_CODE_SIMPLE`) by including the file edit tool alongside the Bash tool.(v2.1.49)
Added `ConfigChange` hook event that fires when configuration files change during a session, supporting enterprise security auditing and optional blocking of settings changes.(v2.1.49)
Enabled SDK model info to include `supportsEffort`, `supportedEffortLevels`, and `supportsAdaptiveThinking` fields for capability discovery.(v2.1.49)
Added `last_assistant_message` field to Stop and SubagentStop hook inputs, allowing hooks to access the final assistant response text.(v2.1.47)
Added `chat:newline` keybinding action for configurable multi-line input.(v2.1.47)
Added `added_dirs` to the statusline JSON `workspace` section, exposing directories added via `/add-dir` to external scripts.(v2.1.47)
Enabled using `ctrl+f` to kill all background agents instead of double-pressing ESC, allowing background agents to continue running when ESC cancels the main thread.(v2.1.47)
Added CLI subcommands for authentication management: `claude auth login`, `claude auth status`, and `claude auth logout`(v2.1.41)
Added native binary support for Windows ARM64 (win32-arm64) architecture(v2.1.41)
Added support for restricting which sub-agents can be spawned using the `Task(agent_type)` syntax in agent "tools" frontmatter(v2.1.33)
Added `memory` frontmatter field support for agents, enabling persistent memory with `user`, `project`, or `local` scope(v2.1.33)
Added plugin name to skill descriptions and the `/skills` menu for better discoverability(v2.1.33)
VSCode: Added support for remote sessions, allowing OAuth users to browse and resume sessions from claude.ai(v2.1.33)
VSCode: Added git branch and message count to the session picker, with support for searching by branch name(v2.1.33)
Added environment variable `CLAUDE_CODE_ENABLE_TASKS` to temporarily disable the new task system.(v2.1.19)
Introduced shorthand accessors like `$0`, `$1`, etc., for accessing individual arguments within custom commands.(v2.1.19)
[SDK] Enabled replay of `queued_command` attachment messages as `SDKUserMessageReplay` events when `replayUserMessages` is active.(v2.1.19)
[VSCode] Enabled session forking and rewind functionality for all users.(v2.1.19)
Added `auto:N` syntax for configuring the MCP tool search auto-enable threshold based on context window percentage (0-100).(v2.1.9)
Added `plansDirectory` setting to customize the storage location for plan files.(v2.1.9)
Enabled external editor support (Ctrl+G) within the AskUserQuestion "Other" input field.(v2.1.9)
Added session URL attribution to commits and PRs generated from web sessions.(v2.1.9)
Added support for `PreToolUse` hooks to return `additionalContext` to the model.(v2.1.9)
Added `${CLAUDE_SESSION_ID}` string substitution for skills to access the current session ID.(v2.1.9)
Added a release channel toggle ('stable' or 'latest') accessible via the `/config` command.(v2.1.3)
[VSCode] Added a clickable destination selector for permission requests, allowing users to choose where settings are saved (this project, all projects, shared with team, or session only).(v2.1.3)
Added source path metadata to images dragged onto the terminal to help Claude understand image origins(v2.1.2)
Added clickable hyperlinks for file paths in tool output in terminals that support OSC 8 (like iTerm)(v2.1.2)
Added support for Windows Package Manager (winget) installations with automatic detection and update instructions(v2.1.2)
Added Shift+Tab keyboard shortcut in plan mode to quickly select "auto-accept edits" option(v2.1.2)
Added FORCE_AUTOUPDATE_PLUGINS environment variable to allow plugin autoupdate even when the main auto-updater is disabled(v2.1.2)
Added agent_type to SessionStart hook input, populated if --agent is specified(v2.1.2)

All HOOKS Bug Fixes

Fixed MCP tool calls hanging indefinitely when the server connection drops mid-response on SSE/HTTP transports.(v2.1.110)
Fixed non-streaming fallback retries causing multi-minute hangs when the API is unreachable.(v2.1.110)
Fixed session recap, local slash-command output, and other system status lines not appearing in focus mode.(v2.1.110)
Fixed high CPU usage in fullscreen when text is selected while a tool is running.(v2.1.110)
Fixed plugin install not honoring dependencies declared in `plugin.json` when the marketplace entry omits them; /plugin install now lists auto-installed dependencies.(v2.1.110)
Fixed skills with `disable-model-invocation: true` failing when invoked via /<skill> mid-message.(v2.1.110)
Fixed `--resume` sometimes showing the first prompt instead of the /rename name for sessions still running or exited uncleanly.(v2.1.110)
Fixed queued messages briefly appearing twice during multi-tool-call turns.(v2.1.110)
Fixed session cleanup not removing the full session directory including subagent transcripts.(v2.1.110)
Fixed dropped keystrokes after the CLI relaunches (e.g. /tui, provider setup wizards).(v2.1.110)
Fixed garbled startup rendering in macOS Terminal.app and other terminals that don't support synchronized output.(v2.1.110)
Hardened "Open in editor" actions against command injection from untrusted filenames.(v2.1.110)
Fixed `PermissionRequest` hooks returning `updatedInput` not being re-checked against `permissions.deny` rules; `setMode:'bypassPermissions'` updates now respect `disableBypassPermissionsMode`.(v2.1.110)
Fixed `PreToolUse` hook `additionalContext` being dropped when the tool call fails.(v2.1.110)
Fixed stdio MCP servers that print stray non-JSON lines to stdout being disconnected on the first stray line (regression in 2.1.105).(v2.1.110)
Fixed headless/SDK session auto-title firing an extra Haiku request when `CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC` or `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` is set.(v2.1.110)
Fixed potential excessive memory allocation when piped (non-TTY) Ink output contains a single very wide line.(v2.1.110)
Fixed /skills menu not scrolling when the list overflows the modal in fullscreen mode.(v2.1.110)
Fixed Remote Control sessions showing a generic error instead of prompting for re-login when the session is too old.(v2.1.110)
Fixed Remote Control session renames from claude.ai not persisting the title to the local CLI session.(v2.1.110)
Fixed images attached to queued messages (sent while Claude is working) being dropped.(v2.1.105)
Fixed the screen going blank when the prompt input wraps to a second line in long conversations.(v2.1.105)
Fixed leading whitespace being copied when selecting multi-line assistant responses in fullscreen mode.(v2.1.105)
Fixed leading whitespace being trimmed from assistant messages, which broke ASCII art and indented diagrams.(v2.1.105)
Fixed garbled bash output when commands print clickable file links (e.g. Python `rich`/`loguru` logging).(v2.1.105)
Fixed alt+enter not inserting a newline in terminals using ESC-prefix alt encoding, and Ctrl+J not inserting a newline (regression in 2.1.100).(v2.1.105)
Fixed duplicate "Creating worktree" text in EnterWorktree/ExitWorktree tool display.(v2.1.105)
Fixed queued user prompts disappearing from focus mode.(v2.1.105)
Fixed one-shot scheduled tasks re-firing repeatedly when the file watcher missed the post-fire cleanup.(v2.1.105)
Fixed inbound channel notifications being silently dropped after the first message for Team/Enterprise users.(v2.1.105)
Fixed marketplace plugins with `package.json` and lockfile not having dependencies installed automatically after install/update.(v2.1.105)
Fixed marketplace auto-update leaving the official marketplace in a broken state when a plugin process holds files open during the update.(v2.1.105)
Fixed "Resume this session with..." hint not printing on exit after `/resume`, `--worktree`, or `/branch`.(v2.1.105)
Fixed feedback survey shortcut keys firing when typed at the end of a longer prompt.(v2.1.105)
Fixed stdio MCP server emitting malformed (non-JSON) output hanging the session instead of failing fast with "Connection closed".(v2.1.105)
Fixed MCP tools missing on the first turn of headless/remote-trigger sessions when MCP servers connect asynchronously.(v2.1.105)
Fixed `/model` picker on AWS Bedrock in non-US regions persisting invalid `us.*` model IDs to `settings.json` when inference profile discovery is still in-flight.(v2.1.105)
Fixed 429 rate-limit errors showing a raw JSON dump instead of a clean message for API-key, Bedrock, and Vertex users.(v2.1.105)
Fixed crash on resume when session contains malformed text blocks.(v2.1.105)
Fixed `/help` dropping the tab bar, Shortcuts heading, and footer at short terminal heights.(v2.1.105)
Fixed malformed keybinding entry values in `keybindings.json` being silently loaded instead of rejected with a clear error.(v2.1.105)
Fixed `CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC` in one project's settings permanently disabling usage metrics for all projects on the machine.(v2.1.105)
Fixed washed-out 16-color palette when using Ghostty, Kitty, Alacritty, WezTerm, foot, rio, or Contour over SSH/mosh.(v2.1.105)
Fixed Bash tool suggesting `acceptEdits` permission mode when exiting plan mode would downgrade from a higher permission level.(v2.1.105)
Fixed a command injection vulnerability in the POSIX which fallback used by LSP binary detection.(v2.1.101)
Fixed a memory leak where long sessions retained dozens of historical copies of the message list in the virtual scroller.(v2.1.101)
Fixed resume/continue losing conversation context on large sessions when the loader anchored on a dead-end branch.(v2.1.101)
Fixed resume chain recovery bridging into an unrelated subagent conversation when a subagent message landed near a main-chain write gap.(v2.1.101)
Fixed a crash on resume when a persisted Edit\/Write tool result was missing its file_path.(v2.1.101)
Fixed a hardcoded 5-minute request timeout that aborted slow backends regardless of API_TIMEOUT_MS.(v2.1.101)
Fixed permissions.deny rules not overriding a PreToolUse hook's permissionDecision: "ask", preventing hooks from downgrading denies to prompts.(v2.1.101)
Fixed setting sources without user causing background cleanup to ignore cleanupPeriodDays and delete history older than 30 days.(v2.1.101)
Fixed Bedrock SigV4 authentication failing with 403 when Authorization headers were set via environment variables or helpers.(v2.1.101)
Fixed claude -w <name> failing with "already exists" after stale worktree cleanup from a previous session.(v2.1.101)
Fixed subagents not inheriting MCP tools from dynamically-injected servers.(v2.1.101)
Fixed sub-agents running in isolated worktrees being denied Read\/Edit access to files inside their own worktree.(v2.1.101)
Fixed sandboxed Bash commands failing with mktemp: No such file or directory after a fresh boot.(v2.1.101)
Fixed claude mcp serve tool calls failing with "Tool execution failed" in MCP clients that validate outputSchema.(v2.1.101)
Fixed RemoteTrigger tool's run action sending an empty body and being rejected by the server.(v2.1.101)
Fixed several resume picker issues including narrow default view, unreachable preview on Windows Terminal, incorrect cwd, missing session-not-found errors, and terminal title not being set.(v2.1.101)
Fixed Grep tool ENOENT when the embedded ripgrep binary path becomes stale; now falls back to system rg and self-heals.(v2.1.101)
Fixed \/btw writing a copy of the entire conversation to disk on every use.(v2.1.101)
Fixed \/context Free space and Messages breakdown disagreeing with the header percentage.(v2.1.101)
Fixed several plugin issues including slash commands resolving incorrectly, \/plugin update failing with ENAMETOOLONG, Discover showing installed plugins, directory-source plugins loading stale cache, and skills not honoring context and agent frontmatter.(v2.1.101)
Fixed the \/mcp menu offering OAuth-specific actions for servers configured with headersHelper; Reconnect is now offered instead.(v2.1.101)
Fixed ctrl+], ctrl+\, and ctrl+^ keybindings not firing in terminals that send raw C0 control bytes.(v2.1.101)
Fixed \/login OAuth URL rendering with padding that prevented clean mouse selection.(v2.1.101)
Fixed rendering issues including flicker in non-fullscreen mode, scrollback wiping, and mouse-scroll escape sequences leaking into the prompt.(v2.1.101)
Fixed crash when settings.json env values are numbers instead of strings.(v2.1.101)
Fixed in-app settings writes not refreshing the in-memory snapshot, preventing removed directories from being revoked mid-session.(v2.1.101)
Fixed custom keybindings not loading on Bedrock, Vertex, and other third-party providers.(v2.1.101)
Fixed claude --continue -p not correctly continuing sessions created by -p or the SDK.(v2.1.101)
Fixed several Remote Control issues including worktrees removed on session crash, connection failures not persisting, spurious Disconnected indicator in brief mode, and \/remote-control failing over SSH when only Organization UUID is set.(v2.1.101)
Fixed \/insights sometimes omitting the report file link from its response.(v2.1.101)
Fixed the file attachment below the chat input not clearing when the last editor tab is closed in VSCode.(v2.1.101)
Fixed a Bash tool permission bypass where an escaped flag could be auto-allowed as read-only, potentially leading to arbitrary code execution.(v2.1.98)
Fixed compound Bash commands bypassing forced permission prompts for safety checks and explicit ask rules in auto and bypass-permissions modes.(v2.1.98)
Fixed read-only commands with environment variable prefixes not prompting unless the variable is known-safe (e.g., `LANG`, `TZ`).(v2.1.98)
Fixed redirects to `/dev/tcp/...` or `/dev/udp/...` not prompting instead of auto-allowing.(v2.1.98)
Fixed stalled streaming responses timing out instead of falling back to non-streaming mode.(v2.1.98)
Fixed 429 retries burning all attempts too quickly by ensuring exponential backoff applies as a minimum.(v2.1.98)
Fixed MCP OAuth `oauth.authServerMetadataUrl` configuration override not being honored on token refresh after restart.(v2.1.98)
Fixed capital letters being dropped to lowercase in xterm and VS Code integrated terminals when the kitty keyboard protocol is active.(v2.1.98)
Fixed macOS text replacements deleting the trigger word instead of inserting the substitution.(v2.1.98)
Fixed `--dangerously-skip-permissions` being silently downgraded to accept-edits mode after approving a write to a protected path via Bash.(v2.1.98)
Fixed managed-settings allow rules remaining active after an admin removed them until process restart.(v2.1.98)
Fixed `permissions.additionalDirectories` changes not applying mid-session; removed directories now lose access immediately.(v2.1.98)
Fixed removing a directory from `additionalDirectories` revoking access to the same directory passed via `--add-dir`.(v2.1.98)
Fixed `Bash(cmd:*)` and `Bash(git commit *)` wildcard permission rules failing to match commands with extra spaces or tabs.(v2.1.98)
Fixed `Bash(...)` deny rules being downgraded to a prompt for piped commands that mix `cd` with other segments.(v2.1.98)
Fixed false Bash permission prompts for commands like `cut -d /` and filenames containing `%`.(v2.1.98)
Fixed permission rules with names matching JavaScript prototype properties (e.g., `toString`) causing `settings.json` to be silently ignored.(v2.1.98)
Fixed agent team members not inheriting the leader's permission mode when using `--dangerously-skip-permissions`.(v2.1.98)
Fixed a crash in fullscreen mode when hovering over MCP tool results.(v2.1.98)
Fixed copying wrapped URLs in fullscreen mode inserting spaces at line breaks.(v2.1.98)
Fixed file-edit diffs disappearing from the UI on `--resume` when the edited file was larger than 10KB.(v2.1.98)
Fixed several `/resume` picker issues including uneditable resumes, search state wiping, and transient status text.(v2.1.98)
Fixed `/export` not honoring absolute paths and `~`, and silently rewriting user-supplied extensions to `.txt`.(v2.1.98)
Fixed `/effort max` being denied for unknown or future model IDs.(v2.1.98)
Fixed slash command picker breaking when a plugin's frontmatter `name` is a YAML boolean keyword.(v2.1.98)
Fixed rate-limit upsell text being hidden after message remounts.(v2.1.98)
Fixed MCP tools with `_meta["anthropic/maxResultSizeChars"]` not bypassing the token-based persist layer.(v2.1.98)
Fixed voice mode leaking space characters into input when re-holding the push-to-talk key during transcript processing.(v2.1.98)
Fixed `DISABLE_AUTOUPDATER` not fully suppressing the npm registry version check and symlink modification.(v2.1.98)
Fixed a memory leak where Remote Control permission handler entries were retained for the entire session.(v2.1.98)
Fixed background subagents that fail with an error not reporting partial progress to the parent agent.(v2.1.98)
Fixed prompt-type Stop/SubagentStop hooks failing on long sessions.(v2.1.98)
Fixed feedback survey rendering when dismissed.(v2.1.98)
Fixed Bash `grep -f FILE` / `rg -f FILE` not prompting when reading a pattern file outside the working directory.(v2.1.98)
Fixed stale subagent worktree cleanup removing worktrees that contain untracked files.(v2.1.98)
Fixed `sandbox.network.allowMachLookup` not taking effect on macOS.(v2.1.98)
Fixed `CLAUDE_CODE_MAX_CONTEXT_TOKENS` not honoring `DISABLE_COMPACT` when set.(v2.1.98)
Fixed VSCode reporting a false-positive "requires git-bash" error on Windows when the path is correctly configured.(v2.1.98)
Fixed --dangerously-skip-permissions being silently downgraded to accept-edits mode after approving a write to a protected path(v2.1.97)
Fixed and hardened Bash tool permissions, tightening checks around env-var prefixes and network redirects, and reducing false prompts on common commands(v2.1.97)
Fixed permission rules with names matching JavaScript prototype properties (e.g. toString) causing settings.json to be silently ignored(v2.1.97)
Fixed managed-settings allow rules remaining active after an admin removed them until process restart(v2.1.97)
Fixed permissions.additionalDirectories changes in settings not applying mid-session(v2.1.97)
Fixed removing a directory from settings.permissions.additionalDirectories revoking access to the same directory passed via --add-dir(v2.1.97)
Fixed MCP HTTP/SSE connections accumulating ~50 MB/hr of unreleased buffers when servers reconnect(v2.1.97)
Fixed MCP OAuth oauth.authServerMetadataUrl not being honored on token refresh after restart, fixing ADFS and similar IdPs(v2.1.97)
Fixed 429 retries burning all attempts in ~13 seconds when the server returns a small Retry-After — exponential backoff now applies as a minimum(v2.1.97)
Fixed rate-limit upgrade options disappearing after context compaction(v2.1.97)
Fixed several /resume picker issues: --resume <name> opening uneditable, Ctrl+A reload wiping search, empty list swallowing navigation, task-status text replacing conversation summary, and cross-project staleness(v2.1.97)
Fixed file-edit diffs disappearing on --resume when the edited file was larger than 10KB(v2.1.97)
Fixed --resume cache misses and lost mid-turn input from attachment messages not being saved to the transcript(v2.1.97)
Fixed messages typed while Claude is working not being persisted to the transcript(v2.1.97)
Fixed prompt-type Stop/SubagentStop hooks failing on long sessions, and hook evaluator API errors displaying "JSON validation failed" instead of the actual message(v2.1.97)
Fixed subagents with worktree isolation or cwd: override leaking their working directory back to the parent session's Bash tool(v2.1.97)
Fixed compaction writing duplicate multi-MB subagent transcript files on prompt-too-long retries(v2.1.97)
Fixed claude plugin update reporting "already at the latest version" for git-based marketplace plugins when the remote had newer commits(v2.1.97)
Fixed slash command picker breaking when a plugin's frontmatter name is a YAML boolean keyword(v2.1.97)
Fixed copying wrapped URLs in NO_FLICKER mode inserting spaces at line breaks(v2.1.97)
Fixed scroll rendering artifacts in NO_FLICKER mode when running inside zellij(v2.1.97)
Fixed a crash in NO_FLICKER mode when hovering over MCP tool results(v2.1.97)
Fixed a NO_FLICKER mode memory leak where API retries left stale streaming state(v2.1.97)
Fixed slow mouse-wheel scrolling in NO_FLICKER mode on Windows Terminal(v2.1.97)
Fixed custom status line not displaying in NO_FLICKER mode on terminals shorter than 24 rows(v2.1.97)
Fixed Shift+Enter and Alt/Cmd+arrow shortcuts not working in Warp with NO_FLICKER mode(v2.1.97)
Fixed Korean/Japanese/Unicode text becoming garbled when copied in no-flicker mode on Windows(v2.1.97)
Fixed Bedrock SigV4 authentication failing when AWS_BEARER_TOKEN_BEDROCK or ANTHROPIC_BEDROCK_BASE_URL are set to empty strings (as GitHub Actions does for unset inputs)(v2.1.97)
Fixed an infinite loop where the rate-limit options dialog would repeatedly auto-open after hitting the usage limit, preventing session crashes(v2.1.90)
Fixed regression where `--resume` caused a full prompt-cache miss on the first request for users with deferred tools, MCP servers, or custom agents(v2.1.90)
Fixed Edit/Write operations failing with "File content has changed" when a PostToolUse format-on-save hook rewrites the file between consecutive edits(v2.1.90)
Fixed PreToolUse hooks emitting JSON to stdout and exiting with code 2 not correctly blocking the tool call(v2.1.90)
Fixed collapsed search/read summary badge appearing multiple times in fullscreen scrollback when a CLAUDE.md file auto-loads during a tool call(v2.1.90)
Fixed auto mode not respecting explicit user boundaries (e.g., "don't push", "wait for X before Y")(v2.1.90)
Fixed UI crash that occurred when malformed tool input reached the permission dialog(v2.1.90)
Hardened PowerShell tool permission checks, fixing trailing & background job bypass, -ErrorAction Break debugger hang, archive-extraction TOCTOU, and parse-fail fallback deny-rule degradation(v2.1.90)
Fixed Edit(//path/**) and Read(//path/**) allow rules to correctly check the resolved symlink target instead of just the requested path.(v2.1.89)
Fixed voice push-to-talk activation issues with modifier-combo bindings and resolved WebSocket upgrade rejections in voice mode on Windows.(v2.1.89)
Fixed Edit/Write tools incorrectly doubling CRLF and stripping Markdown hard line breaks (two trailing spaces) on Windows.(v2.1.89)
Fixed StructuredOutput schema cache bug that caused approximately 50% failure rate when using multiple schemas.(v2.1.89)
Fixed memory leak where large JSON inputs were retained as LRU cache keys during long-running sessions.(v2.1.89)
Fixed crash occurring when removing a message from very large session files (over 50MB).(v2.1.89)
Fixed LSP server zombie state after a crash; the server now restarts on the next request instead of failing until the session restarts.(v2.1.89)
Fixed prompt history entries containing CJK or emoji being silently dropped when they fell on a 4KB boundary in ~/.claude/history.jsonl.(v2.1.89)
Fixed /stats undercounting tokens by excluding subagent usage and losing historical data beyond 30 days when the stats cache format changed.(v2.1.89)
Fixed -p --resume hangs when deferred tool input exceeds 64KB or lacks a deferred marker, and fixed -p --continue not resuming deferred tools.(v2.1.89)
Fixed claude-cli:// deep links failing to open on macOS.(v2.1.89)
Fixed MCP tool errors truncating to only the first content block when the server returned multi-element error content.(v2.1.89)
Fixed skill reminders and other system context being dropped when sending messages with images via the SDK.(v2.1.89)
Fixed PreToolUse/PostToolUse hooks receiving file_path as a relative path instead of the documented absolute path for Write/Edit/Read tools.(v2.1.89)
Fixed autocompact thrash loop by detecting when context refills immediately after compacting three times and stopping with an actionable error.(v2.1.89)
Fixed prompt cache misses in long sessions caused by tool schema bytes changing mid-session.(v2.1.89)
Fixed nested CLAUDE.md files being re-injected dozens of times in long sessions that read many files.(v2.1.89)
Fixed --resume crash when the transcript contained a tool result from an older CLI version or an interrupted write.(v2.1.89)
Fixed misleading "Rate limit reached" message when the API returned an entitlement error; now shows the actual error.(v2.1.89)
Fixed hooks if condition filtering not matching compound commands (e.g., ls && git push) or commands with env-var prefixes.(v2.1.89)
Fixed collapsed search/read group badges duplicating in terminal scrollback during heavy parallel tool use.(v2.1.89)
Fixed notification invalidates not clearing the currently-displayed notification immediately.(v2.1.89)
Fixed prompt briefly disappearing after submit when background messages arrived during processing.(v2.1.89)
Fixed truncation of Devanagari and other combining-mark text in assistant output.(v2.1.89)
Fixed rendering artifacts on main-screen terminals after layout shifts.(v2.1.89)
Fixed voice mode failing to request microphone permission on macOS Apple Silicon.(v2.1.89)
Fixed Shift+Enter submitting instead of inserting a newline on Windows Terminal Preview 1.25.(v2.1.89)
Fixed periodic UI jitter during streaming in iTerm2 when running inside tmux.(v2.1.89)
Fixed PowerShell tool incorrectly reporting failures when commands like git push wrote progress to stderr on Windows PowerShell 5.1.(v2.1.89)
Fixed potential out-of-memory crash when the Edit tool was used on very large files (>1 GiB).(v2.1.89)
Fixed prompt cache misses in long sessions caused by tool schema bytes changing mid-session(v2.1.88)
Fixed nested CLAUDE.md files being re-injected dozens of times in long sessions that read many files(v2.1.88)
Fixed Edit/Write tools doubling CRLF on Windows and stripping Markdown hard line breaks (two trailing spaces)(v2.1.88)
Fixed `StructuredOutput` schema cache bug causing ~50% failure rate in workflows with multiple schemas(v2.1.88)
Fixed memory leak where large JSON inputs were retained as LRU cache keys in long-running sessions(v2.1.88)
Fixed a potential out-of-memory crash when the Edit tool was used on very large files (>1 GiB)(v2.1.88)
Fixed a crash when removing a message from very large session files (over 50MB)(v2.1.88)
Fixed `--resume` crash when transcript contains a tool result from an older CLI version or interrupted write(v2.1.88)
Fixed misleading "Rate limit reached" message when the API returned an entitlement error; now shows the actual error with actionable hints(v2.1.88)
Fixed LSP server zombie state after crash; server now restarts on next request instead of failing until session restart(v2.1.88)
Fixed hooks `if` condition filtering not matching compound commands (`ls && git push`) or commands with env-var prefixes (`FOO=bar git push`)(v2.1.88)
Fixed prompt history entries containing CJK or emoji being silently dropped when they fall on a 4KB boundary in `~/.claude/history.jsonl`(v2.1.88)
Fixed `/stats` losing historical data beyond 30 days when the stats cache format changes(v2.1.88)
Fixed `/stats` undercounting tokens by excluding subagent/fork usage(v2.1.88)
Fixed scrollback disappearing when scrolling up in long sessions(v2.1.88)
Fixed collapsed search/read group badges duplicating in terminal scrollback during heavy parallel tool use(v2.1.88)
Fixed notification `invalidates` not clearing the currently-displayed notification immediately(v2.1.88)
Fixed prompt briefly disappearing after submit when background messages arrived during processing(v2.1.88)
Fixed long `/btw` responses being clipped with no way to scroll; responses now render in a scrollable viewport(v2.1.88)
Fixed Devanagari and other combining-mark text being truncated in assistant output(v2.1.88)
Fixed rendering artifacts on main-screen terminals after layout shifts(v2.1.88)
Fixed voice mode failing to request microphone permission on macOS Apple Silicon(v2.1.88)
Fixed voice push-to-talk not activating for some modifier-combo bindings(v2.1.88)
Fixed voice mode on Windows failing with "WebSocket upgrade rejected with HTTP 101"(v2.1.88)
Fixed Shift+Enter submitting instead of inserting a newline on Windows Terminal Preview 1.25(v2.1.88)
Fixed periodic UI jitter during streaming in iTerm2 when running inside tmux(v2.1.88)
Fixed PowerShell tool incorrectly reporting failures when commands like `git push` wrote progress to stderr on Windows PowerShell 5.1(v2.1.88)
Fixed SDK error result messages (`error_during_execution`, `error_max_turns`) to correctly set `is_error: true` with descriptive messages(v2.1.88)
Fixed task notifications being lost when backgrounding a session with Ctrl+B(v2.1.88)
Fixed PreToolUse/PostToolUse hooks not providing `file_path` as an absolute path for Write/Edit/Read tools(v2.1.88)
Fixed `/compact` failing with "context exceeded" when the conversation history is too large for the compact request itself.(v2.1.85)
Fixed `/plugin enable` and `/plugin disable` failing when a plugin's install location differs from its declaration in settings.(v2.1.85)
Fixed `--worktree` exiting with an error in non-git repositories before the `WorktreeCreate` hook could execute.(v2.1.85)
Fixed `deniedMcpServers` setting failing to block claude.ai MCP servers.(v2.1.85)
Fixed `switch_display` in the computer-use tool returning "not available in this session" on multi-monitor setups.(v2.1.85)
Fixed crash when OpenTelemetry log, metric, or trace exporters are set to `none`.(v2.1.85)
Fixed diff syntax highlighting not working in non-native builds.(v2.1.85)
Fixed MCP step-up authorization failing when a refresh token exists; servers requesting elevated scopes now correctly trigger re-authorization.(v2.1.85)
Fixed memory leak in remote sessions when a streaming response is interrupted.(v2.1.85)
Fixed persistent ECONNRESET errors during edge connection churn by using a fresh TCP connection on retry.(v2.1.85)
Fixed prompts getting stuck in the queue after certain slash commands, preventing retrieval with the up-arrow key.(v2.1.85)
Fixed Python Agent SDK: `type:'sdk'` MCP servers passed via `--mcp-config` not being retained during startup.(v2.1.85)
Fixed raw key sequences appearing in the prompt when running over SSH or in the VS Code integrated terminal.(v2.1.85)
Fixed Remote Control session status remaining stuck on "Requires Action" after a permission is resolved.(v2.1.85)
Fixed shift+enter and meta+enter being intercepted by typeahead suggestions instead of inserting newlines.(v2.1.85)
Fixed stale content bleeding through when scrolling up during streaming.(v2.1.85)
Fixed terminal remaining in enhanced keyboard mode after exit in supported terminals (Ghostty, Kitty, WezTerm), ensuring Ctrl+C and Ctrl+D work correctly.(v2.1.85)
Fixed voice push-to-talk: holding the voice key no longer leaks characters into the text input, and transcripts now insert at the correct position.(v2.1.84)
Fixed up/down arrow keys being unresponsive when a footer item is focused.(v2.1.84)
Fixed `Ctrl+U` (kill-to-line-start) being a no-op at line boundaries in multiline input, so repeated `Ctrl+U` now clears across lines.(v2.1.84)
Fixed null-unbinding a default chord binding (e.g. `"ctrl+x ctrl+k": null`) still entering chord-wait mode instead of freeing the prefix key.(v2.1.84)
Fixed mouse events inserting literal "mouse" text into transcript search input.(v2.1.84)
Fixed workflow subagents failing with API 400 when the outer session uses `--json-schema` and the subagent also specifies a schema.(v2.1.84)
Fixed missing background color behind certain emoji in user message bubbles on some terminals.(v2.1.84)
Fixed the "allow Claude to edit its own settings for this session" permission option not sticking for users with `Edit(.claude)` allow rules.(v2.1.84)
Fixed a hang when generating attachment snippets for large edited files.(v2.1.84)
Fixed MCP tool/resource cache leak on server reconnect.(v2.1.84)
Fixed a startup performance issue where partial clone repositories (Scalar/GVFS) triggered mass blob downloads.(v2.1.84)
Fixed native terminal cursor not tracking the text input caret, so IME composition (CJK input) now renders inline and screen readers can follow the input position.(v2.1.84)
Fixed spurious "Not logged in" errors on macOS caused by transient keychain read failures.(v2.1.84)
Fixed cold-start race where core tools could be deferred without their bypass active, causing Edit/Write to fail with InputValidationError on typed parameters.(v2.1.84)
Fixed mouse tracking escape sequences leaking to the shell prompt after exiting the application.(v2.1.83)
Resolved an issue causing Claude Code to hang on exit specifically on macOS.(v2.1.83)
Fixed the screen flashing blank after being idle for a few seconds.(v2.1.83)
Fixed a hang that occurred when diffing very large files with few common lines; diffs now time out gracefully after 5 seconds.(v2.1.83)
Fixed a 1–8 second UI freeze on startup when voice input was enabled, caused by eager loading of the native audio module.(v2.1.83)
Fixed a startup regression where Claude Code would wait approximately 3 seconds for the claude.ai MCP config fetch before proceeding.(v2.1.83)
Fixed the `--mcp-config` CLI flag bypassing enforcement of `allowedMcpServers`/`deniedMcpServers` managed policies.(v2.1.83)
Fixed claude.ai MCP connectors (Slack, Gmail, etc.) not being available when using single-turn `--print` mode.(v2.1.83)
Fixed the `caffeinate` process not terminating correctly upon Claude Code exit, which prevented Mac systems from sleeping.(v2.1.83)
Fixed bash mode not activating correctly when tab-accepting command suggestions prefixed with !.(v2.1.83)
Fixed stale slash command selection showing the wrong highlighted command after navigating suggestions.(v2.1.83)
Fixed the /config menu incorrectly showing both the search cursor and list selection simultaneously.(v2.1.83)
Fixed background subagents becoming invisible after context compaction, preventing duplicate agents from spawning.(v2.1.83)
Fixed background agent tasks getting stuck in a "running" state when git or API calls hung during cleanup.(v2.1.83)
Fixed the --channels flag incorrectly showing "Channels are not currently available" on the first launch after an upgrade.(v2.1.83)
Fixed uninstalled plugin hooks continuing to fire until the next session started.(v2.1.83)
Fixed queued commands flickering during streaming responses.(v2.1.83)
Fixed slash commands being sent to the model as plain text when submitted while a message was already processing.(v2.1.83)
Fixed scrollback jumping to the top when collapsed read/search groups finished loading after scrolling offscreen.(v2.1.83)
Fixed scrollback jumping to the top when the model started or stopped thinking.(v2.1.83)
Fixed loss of SDK session history upon resume caused by hook progress/attachment messages forking the parentUuid chain.(v2.1.83)
Fixed copy-on-select functionality failing when the mouse button was released outside the terminal window.(v2.1.83)
Fixed ghost characters appearing in height-constrained lists when items overflowed their bounds.(v2.1.83)
Fixed `Ctrl+B` interfering with readline backward-char functionality at an idle prompt; it now only fires when a foreground task can be backgrounded.(v2.1.83)
Fixed tool result files never being cleaned up, ignoring the `cleanupPeriodDays` setting.(v2.1.83)
Fixed the space key being swallowed for up to 3 seconds after releasing voice hold-to-talk.(v2.1.83)
Fixed ALSA library errors corrupting the terminal UI when using voice mode on Linux systems lacking audio hardware (e.g., Docker, headless, WSL1).(v2.1.83)
Fixed voice mode SoX detection issues on Termux/Android where spawning `which` is kernel-restricted.(v2.1.83)
Fixed Remote Control sessions incorrectly showing as Idle in the web session list while actively running.(v2.1.83)
Fixed footer navigation selecting an invisible Remote Control pill when in config-driven mode.(v2.1.83)
Fixed a memory leak in remote sessions where tool use IDs accumulated indefinitely.(v2.1.83)
[VSCode] Fixed session history not loading correctly when reopening a session via URL or after restarting the editor.(v2.1.83)
Fixed multiple concurrent Claude Code sessions requiring repeated re-authentication when one session refreshed its OAuth token.(v2.1.81)
Fixed voice mode silently swallowing retry failures and showing a misleading "check your network" message instead of the actual error.(v2.1.81)
Fixed voice mode audio not recovering when the server silently drops the WebSocket connection.(v2.1.81)
Fixed structured-outputs beta header causing 400 errors on proxy gateways by ensuring CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS correctly suppresses it.(v2.1.81)
Fixed --channels bypass issue for Team/Enterprise organizations lacking other managed settings.(v2.1.81)
Fixed a crash occurring specifically on Node.js 18 environments.(v2.1.81)
Fixed unnecessary permission prompts appearing for Bash commands containing dashes within strings.(v2.1.81)
Fixed plugin hooks blocking prompt submission when the plugin directory was deleted during an active session.(v2.1.81)
Fixed a race condition where background agent task output could hang indefinitely if the task completed between polling intervals.(v2.1.81)
Fixed resuming a session in a worktree now correctly switches the user back to that worktree.(v2.1.81)
Fixed /btw command not including pasted text when used during an active response.(v2.1.81)
Fixed a race condition where fast Cmd+Tab followed by paste could fail due to clipboard copy timing under tmux.(v2.1.81)
Fixed terminal tab title not updating correctly with an auto-generated session description.(v2.1.81)
Fixed invisible hook attachments inflating the message count when viewing transcripts.(v2.1.81)
Fixed Remote Control sessions showing a generic title instead of deriving the title from the first prompt.(v2.1.81)
Fixed /rename command not reliably syncing the title for Remote Control sessions.(v2.1.81)
Fixed Remote Control /exit command not reliably archiving the session.(v2.1.81)
Fixed Windows PATH inheritance issue for the Bash tool when using Git Bash within VSCode (a regression from v2.1.78).(v2.1.81)
Fixed the `claude -p` command hanging when executed as a subprocess without explicit stdin.(v2.1.79)
Fixed Ctrl+C not functioning correctly when using `claude -p` (print) mode.(v2.1.79)
Fixed the `/btw` command incorrectly returning the main agent's output instead of answering the side question during streaming.(v2.1.79)
Fixed voice mode failing to activate correctly on startup when `voiceEnabled: true` was configured.(v2.1.79)
Fixed incorrect left/right arrow navigation behavior within the `/permissions` menu.(v2.1.79)
Fixed the `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` environment variable failing to prevent the terminal title from being set on startup.(v2.1.79)
Fixed custom status lines appearing blank when workspace trust settings were blocking them.(v2.1.79)
Fixed enterprise users being unable to retry requests after encountering rate limit (429) errors.(v2.1.79)
Fixed `SessionEnd` hooks failing to fire when using interactive `/resume` to switch between sessions.(v2.1.79)
Fixed the thinking pill displaying "Thinking" instead of the actual thought duration after a response finished in VS Code.(v2.1.79)
Fixed the session diff button being missing when opening sessions from the left sidebar in VS Code.(v2.1.79)
Fixed `git log HEAD` failing with "ambiguous argument" inside sandboxed Bash on Linux, and stub files polluting `git status` in the working directory(v2.1.78)
Fixed `cc log` and `--resume` silently truncating conversation history on large sessions (>5 MB) that used subagents(v2.1.78)
Fixed infinite loop when API errors triggered stop hooks that re-fed blocking errors to the model(v2.1.78)
Fixed `deny: ["mcp__servername"]` permission rules not removing MCP server tools before sending to the model, allowing it to see and attempt blocked tools(v2.1.78)
Fixed `sandbox.filesystem.allowWrite` not working with absolute paths (previously required `//` prefix)(v2.1.78)
Fixed `/sandbox` Dependencies tab showing Linux prerequisites on macOS instead of macOS-specific info(v2.1.78)
Fixed silent sandbox disable when `sandbox.enabled: true` is set but dependencies are missing; now shows a visible startup warning(v2.1.78)
Fixed `.git`, `.claude`, and other protected directories being writable without a prompt in `bypassPermissions` mode(v2.1.78)
Fixed ctrl+u in normal mode scrolling instead of readline kill-line (ctrl+u/ctrl+d half-page scroll moved to transcript mode only)(v2.1.78)
Fixed voice mode modifier-combo push-to-talk keybindings (e.g. ctrl+k) requiring a hold instead of activating immediately(v2.1.78)
Fixed voice mode not working on WSL2 with WSLg (Windows 11); WSL1/Win10 users now get a clear error(v2.1.78)
Fixed `--worktree` flag not loading skills and hooks from the worktree directory(v2.1.78)
Fixed `CLAUDE_CODE_DISABLE_GIT_INSTRUCTIONS` and `includeGitInstructions` setting not suppressing the git status section in the system prompt(v2.1.78)
Fixed Bash tool not finding Homebrew and other PATH-dependent binaries when VS Code is launched from Dock/Spotlight(v2.1.78)
Fixed washed-out Claude orange color in VS Code/Cursor/code-server terminals that don't advertise truecolor support(v2.1.78)
Fixed `ANTHROPIC_BETAS` environment variable being silently ignored when using Haiku models(v2.1.78)
Fixed queued prompts being concatenated without a newline separator(v2.1.78)
Fixed a brief flash of the login screen when opening the sidebar while already authenticated in VSCode(v2.1.78)
Fixed "API Error: Rate limit reached" when selecting Opus in VSCode; model dropdown no longer offers 1M context variant to subscribers whose plan tier is unknown(v2.1.78)
Fixed the "Always Allow" setting for compound bash commands (e.g., cd src && npm test) incorrectly saving a single rule for the full string instead of per-subcommand, which caused dead rules and repeated prompts.(v2.1.77)
Fixed the auto-updater accumulating tens of gigabytes of memory by starting overlapping binary downloads when the slash-command overlay repeatedly opened and closed.(v2.1.77)
Fixed the --resume command silently truncating recent conversation history due to a race condition between memory-extraction writes and the main transcript.(v2.1.77)
Fixed PreToolUse hooks returning "allow" bypassing deny permission rules, including enterprise managed settings.(v2.1.77)
Fixed the Write tool silently converting line endings when overwriting CRLF files or creating files in CRLF directories.(v2.1.77)
Fixed memory growth in long-running sessions caused by progress messages surviving compaction.(v2.1.77)
Fixed cost and token usage not being tracked when the API falls back to non-streaming mode.(v2.1.77)
Fixed CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS not stripping beta tool-schema fields, which caused proxy gateways to reject requests.(v2.1.77)
Fixed the Bash tool reporting errors for successful commands when the system temp directory path contains spaces.(v2.1.77)
Fixed paste operation being lost when typing immediately after pasting.(v2.1.77)
Fixed Ctrl+D in the /feedback text input deleting forward instead of exiting the session on the second press.(v2.1.77)
Fixed an API error occurring when dragging a 0-byte image file into the prompt.(v2.1.77)
Fixed Claude Desktop sessions incorrectly using the terminal CLI's configured API key instead of OAuth.(v2.1.77)
Fixed git-subdir plugins located at different subdirectories of the same monorepo commit colliding in the plugin cache.(v2.1.77)
Fixed ordered list numbers not rendering correctly in the terminal UI.(v2.1.77)
Fixed a race condition where stale-worktree cleanup could delete an agent worktree that was just resumed from a previous crash.(v2.1.77)
Fixed input deadlock occurring when opening /mcp or similar dialogs while the agent is running.(v2.1.77)
Fixed Backspace and Delete keys not functioning in vim NORMAL mode.(v2.1.77)
Fixed the status line not updating when vim mode is toggled on or off.(v2.1.77)
Fixed hyperlinks opening twice on Cmd+click in VS Code, Cursor, and other xterm.js-based terminals.(v2.1.77)
Fixed background colors rendering as terminal-default inside tmux when using the default configuration.(v2.1.77)
Fixed iTerm2 session crash when selecting text inside tmux over SSH.(v2.1.77)
Fixed clipboard copy silently failing in tmux sessions; the copy toast now correctly indicates whether to paste with ⌘V or tmux prefix+].(v2.1.77)
Fixed ←/→ keys accidentally switching tabs in settings, permissions, and sandbox dialogs while navigating lists.(v2.1.77)
Fixed IDE integration not auto-connecting when Claude Code is launched inside tmux or screen.(v2.1.77)
Fixed CJK characters visually bleeding into adjacent UI elements when clipped at the right edge.(v2.1.77)
Fixed teammate panes not closing when the leader exits.(v2.1.77)
Fixed iTerm2 auto mode not correctly detecting iTerm2 for native split-pane teammates.(v2.1.77)
Fixed the Agent tool incorrectly accepting a resume parameter; users must now use SendMessage({to: agentId}) to continue a previously spawned agent.(v2.1.77)
Fixed deferred tools losing their input schemas after conversation compaction, which caused array and number parameters to be rejected with type errors(v2.1.76)
Fixed slash commands incorrectly showing "Unknown skill"(v2.1.76)
Fixed plan mode incorrectly asking for re-approval after the plan was already accepted(v2.1.76)
Fixed voice mode swallowing keypresses while a permission dialog or plan editor was open(v2.1.76)
Fixed `/voice` command not working on Windows when installed via npm(v2.1.76)
Fixed spurious "Context limit reached" error when invoking a skill with `model:` frontmatter on a 1M-context session(v2.1.76)
Fixed "adaptive thinking is not supported on this model" error when using non-standard model strings(v2.1.76)
Fixed `Bash(cmd:*)` permission rules not matching when a quoted argument contains #(v2.1.76)
Fixed "don't ask again" in the Bash permission dialog showing the full raw command for pipes and compound commands(v2.1.76)
Fixed auto-compaction retrying indefinitely after consecutive failures by implementing a circuit breaker that stops after 3 attempts(v2.1.76)
Fixed MCP reconnect spinner persisting after successful reconnection(v2.1.76)
Fixed LSP plugins not registering servers when the LSP Manager initialized before marketplaces were reconciled(v2.1.76)
Fixed clipboard copying in tmux over SSH by attempting both direct terminal write and tmux clipboard integration(v2.1.76)
Fixed `/export` showing only the filename instead of the full file path in the success message(v2.1.76)
Fixed transcript not auto-scrolling to new messages after selecting text(v2.1.76)
Fixed Escape key not working to exit the login method selection screen(v2.1.76)
Fixed several Remote Control issues, including sessions silently dying when the server reaps an idle environment, rapid messages being queued one-at-a-time instead of batched, and stale work items causing redelivery after JWT refresh(v2.1.76)
Fixed bridge sessions failing to recover after extended WebSocket disconnects(v2.1.76)
Fixed slash commands not being found when typing the exact name of a soft-hidden command(v2.1.76)
[VSCode] Fixed gitignore patterns containing commas silently excluding entire filetypes from the @-mention file picker(v2.1.76)
Fixed memory leak where streaming API response buffers were not released when the generator was terminated early, causing unbounded RSS growth on the Node.js/npm code path(v2.1.74)
Fixed managed policy ask rules being bypassed by user allow rules or skill allowed-tools(v2.1.74)
Fixed full model IDs (e.g., claude-opus-4-5) being silently ignored in agent frontmatter model: field and --agents JSON config; agents now accept the same model values as --model(v2.1.74)
Fixed MCP OAuth authentication hanging when the callback port is already in use(v2.1.74)
Fixed MCP OAuth refresh never prompting for re-auth after the refresh token expires for OAuth servers that return errors with HTTP 200 (e.g. Slack)(v2.1.74)
Fixed voice mode silently failing on the macOS native binary for users whose terminal had never been granted microphone permission; the binary now includes the audio-input entitlement so macOS prompts correctly(v2.1.74)
Fixed SessionEnd hooks being killed after 1.5 s on exit regardless of hook.timeout; this is now configurable via CLAUDE_CODE_SESSIONEND_HOOKS_TIMEOUT_MS(v2.1.74)
Fixed /plugin install failing inside the REPL for marketplace plugins with local sources(v2.1.74)
Fixed marketplace update not syncing git submodules; plugin sources in submodules no longer break after update(v2.1.74)
Fixed unknown slash commands with arguments silently dropping input; the command now shows your input as a warning(v2.1.74)
Fixed Hebrew, Arabic, and other RTL text not rendering correctly in Windows Terminal, conhost, and VS Code integrated terminal(v2.1.74)
Fixed LSP servers not working on Windows due to malformed file URIs(v2.1.74)
[VSCode] Fixed delete button not working for Untitled sessions(v2.1.74)
Fixed slow exits when background tasks or hooks were slow to respond.(v2.1.72)
Fixed agent task progress stuck on "Initializing…".(v2.1.72)
Fixed skill hooks firing twice per event when a hooks-enabled skill is invoked by the model.(v2.1.72)
Fixed several voice mode issues: occasional input lag, false "No speech detected" errors after releasing push-to-talk, and stale transcripts re-filling the prompt after submission.(v2.1.72)
Fixed `--continue` not resuming from the most recent point after `--compact`.(v2.1.72)
Fixed bash security parsing edge cases.(v2.1.72)
Fixed several plugin issues: installation failing on Windows with `EEXIST` error in OneDrive folders, marketplace blocking user-scope installs when a project-scope install exists, `CLAUDE_CODE_PLUGIN_CACHE_DIR` creating literal `~` directories, and `plugin.json` with marketplace-only fields failing to load.(v2.1.72)
Fixed feedback survey appearing too frequently in long sessions.(v2.1.72)
Fixed `--effort` CLI flag being reset by unrelated settings writes on startup.(v2.1.72)
Fixed backgrounded Ctrl+B queries losing their transcript or corrupting the new conversation after `/clear`.(v2.1.72)
Fixed `/clear` killing background agent/bash tasks — only foreground tasks are now cleared.(v2.1.72)
Fixed worktree isolation issues: Task tool resume not restoring cwd, and background task notifications missing `worktreePath` and `worktreeBranch`.(v2.1.72)
Fixed `/model` not displaying results when run while Claude is working.(v2.1.72)
Fixed digit keys selecting menu options instead of typing in plan mode permission prompt's text input.(v2.1.72)
Fixed sandbox permission issues: certain file write operations incorrectly allowed without prompting, and output redirections to allowlisted directories (like `/tmp/claude/`) prompting unnecessarily.(v2.1.72)
Fixed prompt cache invalidation in SDK `query()` calls, reducing input token costs up to 12x.(v2.1.72)
Fixed Escape key becoming unresponsive after cancelling a query.(v2.1.72)
Fixed double Ctrl+C not exiting when background agents or tasks are running.(v2.1.72)
Fixed team agents to inherit the leader's model.(v2.1.72)
Fixed "Always Allow" saving permission rules that never match again.(v2.1.72)
Fixed several hooks issues: `transcript_path` pointing to the wrong directory for resumed/forked sessions, agent `prompt` being silently deleted from settings.json on every settings write, PostToolUse block reason displaying twice, async hooks not receiving stdin with bash `read -r`, and validation error message showing an example that fails validation.(v2.1.72)
Fixed session crashes in Desktop/SDK when Read returned files containing U+2028/U+2029 characters.(v2.1.72)
Fixed terminal title being cleared on exit even when `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` was set.(v2.1.72)
Fixed several permission rule matching issues: wildcard rules not matching commands with heredocs, embedded newlines, or no arguments; `sandbox.excludedCommands` failing with env var prefixes; "always allow" suggesting overly broad prefixes for nested CLI tools; and deny rules not applying to all command forms.(v2.1.72)
Fixed oversized and truncated images from Bash data-URL output.(v2.1.72)
Fixed a crash when resuming sessions that contained Bedrock API errors.(v2.1.72)
Fixed intermittent "expected boolean, received string" validation errors on Edit, Bash, and Grep tool inputs.(v2.1.72)
Fixed multi-line session titles when forking from a conversation whose first message contained newlines.(v2.1.72)
Fixed queued messages not showing attached images, and images being lost when pressing ↑ to edit a queued message.(v2.1.72)
Fixed parallel tool calls where a failed Read/WebFetch/Glob would cancel its siblings — only Bash errors now cascade.(v2.1.72)
VSCode: Fixed scroll speed in integrated terminals not matching native terminals.(v2.1.72)
VSCode: Fixed Shift+Enter submitting input instead of inserting a newline for users with older keybindings.(v2.1.72)
Fixed a security issue where `statusLine` and `fileSuggestion` hook commands could execute without workspace trust acceptance in interactive mode.(v2.1.51)
Fixed a security issue where HTTP hooks could interpolate arbitrary environment variables from header values; env var interpolation now requires an explicit `allowedEnvVars` list.(v2.1.51)
Fixed a bug where duplicate `control_response` messages (e.g. from WebSocket reconnects) could cause API 400 errors by pushing duplicate assistant messages into the conversation.(v2.1.51)
Fixed slash command autocomplete crashing when a plugin's SKILL.md description is a YAML array or other non-string type(v2.1.51)
Fixed an issue where resumed sessions could be invisible when the working directory contained symlinks due to inconsistent path resolution during startup.(v2.1.50)
Fixed session data loss upon SSH disconnect by ensuring session data is flushed before hooks and analytics during graceful shutdown.(v2.1.50)
Fixed native modules failing to load on Linux systems using glibc older than 2.30 (e.g., RHEL 8).(v2.1.50)
Fixed a memory leak in agent teams where completed teammate tasks were not being garbage collected from session state.(v2.1.50)
Fixed `CLAUDE_CODE_SIMPLE` mode to correctly strip down skills, session memory, custom agents, and CLAUDE.md token counting.(v2.1.50)
Fixed the `/mcp reconnect` command from freezing the CLI when provided with a non-existent server name.(v2.1.50)
Fixed a memory leak where completed task state objects were not being removed from AppState.(v2.1.50)
Fixed an issue where MCP tools were not discovered when tool search was enabled and a prompt was provided as a launch argument.(v2.1.50)
Fixed unbounded memory growth in long sessions by capping file history snapshots.(v2.1.50)
Fixed a memory leak where LSP diagnostic data was not cleaned up after delivery.(v2.1.50)
Fixed a memory leak where completed task output was not being freed from memory.(v2.1.50)
Fixed a prompt suggestion cache regression that resulted in lower cache hit rates.(v2.1.50)
Fixed a memory leak where TaskOutput retained recent lines after cleanup.(v2.1.50)
Fixed a memory leak in CircularBuffer where cleared items were retained in the backing array.(v2.1.50)
Fixed a memory leak in shell command execution where ChildProcess and AbortController references were retained after cleanup.(v2.1.50)
Fixed Ctrl+C and ESC being silently ignored when background agents are running; pressing twice within 3 seconds now kills all background agents.(v2.1.49)
Fixed prompt suggestion cache regression that was reducing cache hit rates.(v2.1.49)
Fixed `plugin enable` and `plugin disable` to auto-detect the correct scope when `--scope` is omitted, instead of defaulting to user scope.(v2.1.49)
Fixed verbose mode not updating the thinking block display when toggled via `/config` by ensuring memo comparators correctly detect verbose changes.(v2.1.49)
Fixed unbounded WASM memory growth during long sessions by periodically resetting the tree-sitter parser.(v2.1.49)
Fixed potential rendering issues caused by stale yoga layout references.(v2.1.49)
Fixed unbounded memory growth during long-running sessions caused by Yoga WASM linear memory never shrinking.(v2.1.49)
Fixed `disableAllHooks` setting to respect managed settings hierarchy, preventing non-managed settings from disabling policy-set managed hooks.(v2.1.49)
Fixed the `--resume` session picker showing raw XML tags for sessions starting with commands like `/clear`; it now correctly falls through to the session ID fallback.(v2.1.49)
Fixed FileWriteTool line counting to preserve intentional trailing blank lines instead of stripping them.(v2.1.47)
Fixed Windows terminal rendering bugs where line counts showed incorrect values (always 1) due to `os.EOL` (`\r\n`) in display code.(v2.1.47)
Fixed bold and colored text in markdown output shifting to the wrong characters on Windows due to `\r\n` line endings.(v2.1.47)
Fixed compaction failing when conversations contain many PDF documents by stripping document blocks alongside images before sending to the compaction API.(v2.1.47)
Fixed bash tool output being silently discarded on Windows when using MSYS2 or Cygwin shells.(v2.1.47)
Fixed the bash permission classifier from incorrectly granting permissions based on hallucinated descriptions.(v2.1.47)
Fixed user-defined agents only loading one file on NFS/FUSE filesystems that report zero inodes.(v2.1.47)
Fixed plugin agent skills silently failing to load when referenced by bare name instead of fully-qualified plugin name.(v2.1.47)
Fixed CWD tracking temp files never being cleaned up on Windows, preventing indefinite accumulation.(v2.1.47)
Fixed API 400 errors ("thinking blocks cannot be modified") in sessions with concurrent agents caused by interleaved streaming content blocks.(v2.1.47)
Fixed a single file write/edit error from aborting all other parallel file write/edit operations; independent mutations now complete on failure.(v2.1.47)
Fixed custom session titles set via `/rename` being lost after resuming a conversation.(v2.1.47)
Fixed collapsed read/search hint text overflowing on narrow terminals by truncating from the start.(v2.1.47)
Fixed bash commands using backslash-newline continuation lines (`\` followed by newline) producing spurious empty arguments.(v2.1.47)
Fixed built-in slash commands being hidden from the autocomplete dropdown when many user skills are installed.(v2.1.47)
Fixed MCP servers not appearing in the MCP Management Dialog after deferred loading.(v2.1.47)
Fixed session name persisting in status bar after `/clear` command.(v2.1.47)
Fixed crash when a skill's `name` or `description` in SKILL.md frontmatter is a bare number, by coercing the value to a string.(v2.1.47)
Fixed `/resume` silently dropping sessions when the first message exceeds 16KB or uses array-format content.(v2.1.47)
Fixed `claude doctor` misclassifying mise and asdf-managed installations as native installs.(v2.1.47)
Fixed zsh heredoc failing with "read-only file system" error in sandboxed commands.(v2.1.47)
Fixed agent progress indicator showing inflated tool use count.(v2.1.47)
Fixed image pasting not working on WSL2 systems where Windows copies images as BMP format.(v2.1.47)
Fixed background agent results returning raw transcript data instead of the agent's final answer.(v2.1.47)
Fixed Warp terminal incorrectly prompting for Shift+Enter setup when it supports it natively.(v2.1.47)
Fixed CJK wide characters causing misaligned timestamps and layout elements in the TUI.(v2.1.47)
Fixed custom agent `model` field in `.claude/agents/*.md` being ignored when spawning team teammates.(v2.1.47)
Fixed plan mode being lost after context compaction, causing the model to switch from planning to implementation mode.(v2.1.47)
Fixed `alwaysThinkingEnabled: true` in settings.json not enabling thinking mode on Bedrock and Vertex providers.(v2.1.47)
Fixed `tool_decision` OTel telemetry event not being emitted in headless/SDK mode.(v2.1.47)
Fixed session name being lost after context compaction; renamed sessions now preserve their custom title through compaction.(v2.1.47)
Fixed `/resume <session-id>` failing to find sessions whose first message exceeds 16KB.(v2.1.47)
Fixed "Always allow" on multiline bash commands creating invalid permission patterns that corrupt settings.(v2.1.47)
Fixed React crash (error #31) when a skill's `argument-hint` in SKILL.md frontmatter uses YAML sequence syntax, by coercing the value to a string.(v2.1.47)
Fixed crash when using `/fork` on sessions that used web search by gracefully handling null entries in search results.(v2.1.47)
Fixed read-only git commands triggering FSEvents file watcher loops on macOS by adding --no-optional-locks flag.(v2.1.47)
Fixed custom agents and skills not being discovered when running from a git worktree; project-level agent/skill directories are now included.(v2.1.47)
Fixed non-interactive subcommands like `claude doctor` and `claude plugin validate` being blocked inside nested Claude sessions.(v2.1.47)
Windows: Fixed the same CLAUDE.md file being loaded twice when drive letter casing differs between paths.(v2.1.47)
Fixed inline code spans in markdown being incorrectly parsed as bash commands.(v2.1.47)
Fixed teammate spinners not respecting custom spinnerVerbs from settings.(v2.1.47)
Fixed shell commands permanently failing after a command deletes its own working directory.(v2.1.47)
Fixed hooks (PreToolUse, PostToolUse) silently failing.(v2.1.47)
Fixed AWS authentication refresh hanging indefinitely by implementing a 3-minute timeout(v2.1.41)
Fixed file resolution failing for @-mentions that include anchor fragments (e.g., `@README.md#installation`)(v2.1.41)
Fixed FileReadTool blocking the main process when reading from FIFOs, `/dev/stdin`, or very large files(v2.1.41)
Fixed background task notifications failing to deliver when operating in streaming Agent SDK mode(v2.1.41)
Fixed cursor jumping to the end of the input field on every keystroke within classifier rule input(v2.1.41)
Fixed markdown link display text being incorrectly dropped, showing only the raw URL(v2.1.41)
Fixed users being incorrectly shown auto-compact failure error notifications(v2.1.41)
Fixed permission wait time being incorrectly included in the elapsed time displayed for subagents(v2.1.41)
Fixed proactive ticks firing erroneously while the tool is in plan mode(v2.1.41)
Fixed stale permission rules not being cleared when settings are modified on disk(v2.1.41)
Fixed hook blocking errors incorrectly displaying stderr content within the user interface(v2.1.41)
Fixed agent teammate sessions in tmux to send and receive messages correctly(v2.1.33)
Fixed warnings about agent teams not being available on your current plan(v2.1.33)
Fixed an issue where submitting a new message while the model was in extended thinking would interrupt the thinking phase(v2.1.33)
Fixed an API error that could occur when aborting mid-stream, where whitespace text combined with a thinking block would bypass normalization and produce an invalid request(v2.1.33)
Fixed API proxy compatibility issue where 404 errors on streaming endpoints no longer triggered non-streaming fallback(v2.1.33)
Fixed an issue where proxy settings configured via `settings.json` environment variables were not applied to WebFetch and other HTTP requests on the Node.js build(v2.1.33)
Fixed `/resume` session picker showing raw XML markup instead of clean titles for sessions started with slash commands(v2.1.33)
VSCode: Fixed scroll-to-bottom under-scrolling on initial session load and session switch(v2.1.33)
Fixed crashes occurring on processors that lack AVX instruction support.(v2.1.19)
Fixed dangling Claude Code processes when the terminal is closed by implementing SIGKILL as a fallback upon catching EIO errors from `process.exit()`. (v2.1.19)
Fixed `/rename` and `/tag` commands failing to update the correct session when resuming from a different directory (e.g., git worktrees).(v2.1.19)
Fixed session resuming by custom title failing when executed from a different directory.(v2.1.19)
Fixed pasted text content being lost when using prompt stash (Ctrl+S) and subsequent restore.(v2.1.19)
Fixed the agent list incorrectly displaying "Sonnet (default)" instead of "Inherit (default)" for agents without an explicit model setting.(v2.1.19)
Fixed backgrounded hook commands not returning early, which previously caused the session to wait unnecessarily.(v2.1.19)
Fixed file write preview incorrectly omitting empty lines.(v2.1.19)
Fixed API errors related to orphan tool_result blocks occurring during long sessions with parallel tool calls.(v2.1.9)
Fixed MCP server reconnection hanging when the cached connection promise fails to resolve.(v2.1.9)
Fixed Ctrl+Z suspend functionality not working in terminals utilizing the Kitty keyboard protocol (including Ghostty, iTerm2, kitty, and WezTerm).(v2.1.9)
Fixed plan files persisting across `/clear` commands, ensuring a fresh plan file is used after clearing a conversation.(v2.1.3)
Fixed false skill duplicate detection on filesystems with large inodes (e.g., ExFAT) by implementing 64-bit precision for inode values.(v2.1.3)
Fixed mismatch between the background task count displayed in the status bar and the items shown in the tasks dialog.(v2.1.3)
Fixed sub-agents using the incorrect model during conversation compaction.(v2.1.3)
Fixed web search in sub-agents using the incorrect model.(v2.1.3)
Fixed trust dialog acceptance when running from the home directory, ensuring trust-requiring features like hooks are enabled for the session.(v2.1.3)
Fixed a command injection vulnerability in bash command processing where malformed input could execute arbitrary commands(v2.1.2)
Fixed a memory leak where tree-sitter parse trees were not being freed, causing WASM memory to grow unbounded over long sessions(v2.1.2)
Fixed binary files (images, PDFs, etc.) being accidentally included in memory when using @include directives in CLAUDE.md files(v2.1.2)
Fixed updates incorrectly claiming another installation is in progress(v2.1.2)
Fixed crash when socket files exist in watched directories(v2.1.2)
Fixed remote session URL and teleport being broken when using /tasks command(v2.1.2)
Fixed MCP tool names being exposed in analytics events by sanitizing user-specific server configurations(v2.1.2)
Fixed usage display not updating after manual compact in VSCode(v2.1.2)

Releases with HOOKS Changes

v2.1.1106 features20 fixes

Apr 15, 2026

This release introduces significant new interaction methods, including a flicker-free TUI mode and a mobile push notification tool for remote control. Several critical bugs related to hanging API calls, session state management, and UI rendering have been resolved. Additionally, usability is improved with better plugin management and enhanced external editor integration.

v2.1.1054 features24 fixes

Apr 13, 2026

This release introduces significant enhancements to tool capabilities, including adding a `path` parameter to `EnterWorktree` and enabling background monitor support for plugins. Numerous fixes address issues related to UI rendering, queued message handling, and network error reporting, alongside several quality-of-life improvements for configuration and debugging.

v2.1.1013 features31 fixes

Apr 10, 2026

This release introduces a new \/team-onboarding command for generating ramp-up guides and enables enterprise TLS proxy support by trusting the OS CA certificate store by default. Numerous stability and usability improvements were made, particularly around session resumption, error messaging for tool usage, and handling of settings and plugins.

v2.1.989 features38 fixes

Apr 9, 2026

This release introduces significant security and configuration enhancements, including an interactive Vertex AI setup wizard and new subprocess sandboxing features for Linux. Numerous bug fixes address critical issues related to Bash command permissions, streaming response fallbacks, and configuration overrides across various modes like fullscreen and resume.

v2.1.976 features28 fixes

Apr 8, 2026

This release introduces significant enhancements to the NO_FLICKER mode, including a new focus view toggle and numerous stability fixes for terminal rendering and input handling. Several critical bugs related to permissions, configuration persistence, and API retries have been resolved, alongside improvements to image token usage and CJK input handling for slash commands.

v2.1.902 features8 fixes

Apr 1, 2026

This release introduces interactive lessons via /powerup to help users learn Claude Code features, alongside a new environment variable for better offline marketplace caching. Several critical bugs were fixed, including an infinite loop crash related to usage limits and regressions affecting `--resume` functionality. Performance has also been significantly improved for SDK sessions and large streamed data handling.

v2.1.897 features30 fixes

Apr 1, 2026

This release introduces significant new capabilities for headless sessions with deferred permission handling and enhanced tool usage hooks. Numerous bugs have been resolved across file operations, history persistence, and tool execution, particularly for Windows and large file handling. Quality of life improvements include better tool summaries, updated PowerShell guidance, and disabling default thinking summaries.

v2.1.884 features30 fixes

Mar 30, 2026

This release introduces significant stability improvements for long sessions, fixing numerous memory leaks, rendering issues, and tool execution bugs across various operating systems and environments. Key new capabilities include flicker-free rendering options and a new `PermissionDenied` hook for better auto-mode control. Users will notice fixes for issues related to large file editing, prompt history corruption, and improved behavior in PowerShell environments.

v2.1.856 features17 fixes

Mar 26, 2026

This release introduces significant enhancements to hook execution, allowing conditional running based on permission rules and enabling headless integrations via PreToolUse hooks. Several critical bugs related to session compaction, plugin management, and OpenTelemetry logging have been resolved. Performance improvements were also made, particularly around scrolling large transcripts and file autocomplete.

v2.1.849 features14 fixes

Mar 26, 2026

This release introduces several new configuration options via environment variables for advanced model pinning and streaming timeouts, alongside the opt-in preview of the PowerShell tool for Windows. Key fixes address issues with voice input, terminal key responsiveness, and startup performance, while general improvements enhance readability for large token counts and streamline MCP server configuration.

v2.1.835 features32 fixes

Mar 25, 2026

This release introduces significant enhancements for environment management, including new hook events and policy configuration options, alongside a highly requested transcript search feature. Users will also benefit from improved startup performance, better handling of large file diffs, and fixes for several stability issues across macOS and Linux, particularly concerning voice mode and remote sessions.

v2.1.812 features18 fixes

Mar 20, 2026

This release introduces a new --bare flag for scripted calls and enables channel servers to relay tool approval prompts directly to your phone. Several critical bugs were fixed, including issues with OAuth token refreshing across concurrent sessions, voice mode error handling, and various race conditions affecting background tasks and clipboard operations. Performance and UX have also been improved, particularly around plugin updates and Remote Control session management.

v2.1.794 features11 fixes

Mar 18, 2026

This release introduces new authentication options for API billing and a `/remote-control` feature in VS Code to bridge sessions to the web interface. Several critical bugs have been resolved, including fixes for subprocess hanging, Ctrl+C in print mode, and issues with voice activation and session hook firing. Performance improvements include reduced startup memory usage and better handling of non-streaming API fallbacks.

v2.1.785 features19 fixes

Mar 17, 2026

This release introduces several new developer capabilities, including a `StopFailure` hook and persistent plugin state via the `${CLAUDE_PLUGIN_DATA}` variable. Users will benefit from line-by-line response streaming and significant fixes addressing issues with sandboxing, tool permissions, and conversation history truncation. Performance has also been improved for resuming large sessions.

v2.1.774 features29 fixes

Mar 17, 2026

This release significantly increases the maximum output token limits for Opus and Sonnet models, reaching up to 128k tokens for some configurations. Numerous critical bugs were fixed, including issues related to compound command permissions, memory leaks during long sessions, and various terminal/IDE integration problems. Performance improvements include faster startup on macOS and quicker session resume times.

v2.1.767 features20 fixes

Mar 14, 2026

This release introduces significant new capabilities, including MCP elicitation support for structured mid-task input and new developer hooks for response interception. Numerous bugs have been resolved across areas like slash commands, voice mode, and session management, alongside performance improvements for `--worktree` startup and better handling of background agents.

v2.1.742 features13 fixes

Mar 12, 2026

This release introduces actionable suggestions via the /context command to help optimize memory and context usage, alongside a new setting to customize auto-memory storage location. Several critical bugs were resolved, including fixes for memory leaks, issues with MCP OAuth refresh tokens, and improved rendering for RTL text across various terminals.

v2.1.7210 features32 fixes

Mar 10, 2026

This release introduces several new capabilities, including direct file writing from `/copy` and an enhanced `/plan` command that accepts descriptions. Significant stability improvements were made, fixing numerous bugs related to voice input, plugin installation, session resumption, and permission handling across the system. Users will also benefit from performance gains due to improved bash parsing and reduced bundle size.

v2.1.513 features4 fixes

Feb 24, 2026

This release introduces new capabilities for external builds with the `claude remote-control` subcommand and enhances plugin management by adding support for custom npm registries and version pinning. Several critical security issues related to hook execution and environment variable interpolation have been resolved, alongside performance improvements for BashTool and better context management for long conversations.

v2.1.507 features15 fixes

Feb 20, 2026

This release introduces significant stability and memory management improvements, fixing numerous memory leaks across sessions, task handling, and diagnostics. Key new features include declarative agent worktree isolation, new CLI commands for agent management, and expanded context window control via environment variables.

v2.1.493 features9 fixes

Feb 19, 2026

This release introduces the ability to edit files directly within Simple Mode and adds a new configuration change hook for enhanced security auditing. Several critical bugs related to keyboard input handling, cache regressions, and unbounded memory growth during long sessions have been resolved. Performance has also been improved across startup and non-interactive modes through better caching and reduced API calls.

v2.1.474 features43 fixes

Feb 18, 2026

This release focuses heavily on stability and platform compatibility, delivering numerous bug fixes across Windows, shell execution, and file system interactions. Key improvements include better memory management for long sessions, faster file suggestion performance, and enhanced usability for the VS Code plan preview feature.

v2.1.412 features11 fixes

Feb 13, 2026

This release introduces new command-line tools for managing authentication (`claude auth`) and adds native support for Windows ARM64. Several critical bugs were resolved, including fixes for hanging AWS authentication, file resolution issues with @-mentions, and process blocking when reading large files or standard input.

v2.1.335 features8 fixes

Feb 6, 2026

This release introduces significant enhancements for multi-agent workflows, including persistent memory support via new frontmatter fields and better control over sub-agent spawning. Key bug fixes address issues with tmux sessions, API streaming errors, and proxy configuration reliability. VSCode users benefit from new session management features, including remote session browsing and improved session picker visibility.

v2.1.194 features8 fixes

Jan 23, 2026

This release introduces new shorthand argument accessors (`$0`, `$1`) for custom commands and enables session forking/rewind in VSCode for all users. Several critical bugs were resolved, including crashes on older processors and issues with session resumption across different directories.

v2.1.96 features3 fixes

Jan 16, 2026

This release introduces several new configuration and integration capabilities, including customizable plan storage and enhanced session context access via new string substitutions. Several critical bugs were resolved, specifically addressing failures in long parallel tool call sessions and improving terminal suspend functionality across various terminal emulators.

v2.1.32 features6 fixes

Jan 9, 2026

This release simplifies the user experience by merging slash commands and skills and introduces a new configuration option to select the release channel ('stable' or 'latest'). Several critical bugs were fixed, including issues with plan file persistence after clearing conversations and incorrect model usage in sub-agents. Additionally, VS Code users gain more control over permission saving destinations.

v2.1.26 features8 fixes

Jan 9, 2026

This release introduces several new capabilities, including source path metadata for dragged images and support for winget installations. Key fixes address a command injection vulnerability and memory leaks during long sessions. Additionally, large tool outputs are now saved to disk instead of being truncated, ensuring Claude has access to the full content.

Documentation

Read the hooks documentation