Claude Code hooks

All HOOKS Bug Fixes

• Fixed terminal styling degradation in very long sessions by recycling the renderer's style pool.(v2.1.152)
• Fixed the sandbox-enabled warning failing to appear in condensed startup mode; it now shows in all layouts.(v2.1.152)
• Fixed the loading spinner incorrectly showing "still thinking"/"almost done thinking" while a tool was running, and now resets the thinking status after each tool execution.(v2.1.152)
• Fixed focus mode displaying a spurious "N messages hidden" count when no hidden activity occurred.(v2.1.152)
• Fixed clicking a link inside an expanded tool result incorrectly collapsing the section instead of opening the link.(v2.1.152)
• Fixed various markdown rendering issues including table cell borders inheriting inline code color, wrapped continuation lines losing style, and empty header cells showing an incorrect label in narrow-terminal stacked layout.(v2.1.152)
• Fixed plugin MCP servers with identical commands but different environment variables being incorrectly deduplicated.(v2.1.152)
• Fixed `/doctor` reporting marketplace or plugin not found errors due to stale `enabledPlugins` entries referencing removed resources.(v2.1.152)
• Fixed plugins tracking a git branch silently failing to receive updates after the plugin registry was rebuilt.(v2.1.152)
• Fixed remote MCP servers failing to connect in Claude Code Remote sessions when the egress proxy was enabled.(v2.1.152)
• Fixed the effort-change confirmation dialog appearing unnecessarily when the conversation was empty or when switching between equivalent effort levels.(v2.1.152)
• Fixed the Agent tool description incorrectly referencing an unavailable agent list when running with `--bare` or attachments disabled.(v2.1.152)
• Fixed a background worker crash in `claude agents` when accepting a stale permission prompt after a subagent cancellation.(v2.1.152)
• Fixed `cache_creation_input_tokens` reporting as 0 in usage statistics when cache writes were reported only via the nested `cache_creation` breakdown.(v2.1.152)
• Fixed the PushNotification tool incorrectly reporting failure when Remote Control was enabled in SDK-hosted sessions.(v2.1.152)
• Fixed sessions getting stuck after model or login switches by proactively stripping stale thinking-block signatures from history.(v2.1.152)
• Fixed enterprise login restrictions not being enforced against third-party-provider and API-key sessions(v2.1.147)
• Fixed ampersand (&) in command output displaying as &, which broke copy-pasting URLs from commands like gcloud auth login on headless machines(v2.1.147)
• Fixed unknown slash commands silently doing nothing in headless/SDK mode; they now display an error message(v2.1.147)
• Fixed /help rendering a broken tab header and showing only one command per page on small terminals when not in fullscreen mode(v2.1.147)
• Fixed shell snapshot dropping user functions whose names start with a single underscore, breaking aliases referencing them(v2.1.147)
• Fixed plugin agents declaring multiple Agent(...) types in tools: frontmatter dropping all but the last entry(v2.1.147)
• Fixed hook if conditions like PowerShell(git push*) never matching(v2.1.147)
• Fixed PowerShell tool dropping output for commands that rely on the default formatter(v2.1.147)
• Fixed Windows setting for "Yes, and don't ask again" on PowerShell script invocation not writing a matching rule for subsequent runs(v2.1.147)
• Fixed PowerShell tool failing on Windows with exit code 1 when pwsh is installed via winget or the Microsoft Store(v2.1.147)
• Fixed /effort opening with the slider on the wrong level; it now starts at the current effort level(v2.1.147)
• Fixed paginating MCP servers dropping resources, templates, and prompts past page 1(v2.1.147)
• Fixed full-screen strobing in attached background sessions on Windows Terminal while Claude is streaming(v2.1.147)
• Fixed Windows behavior where removing a background-job worktree followed NTFS junctions into the main repo(v2.1.147)
• Fixed /background refusing sessions whose only typed input was a skill or custom slash command(v2.1.147)
• Fixed auto mode suppressing AskUserQuestion when the user or skill explicitly relies on it(v2.1.147)
• Fixed /theme New custom theme and color editor dialogs not responding to Esc(v2.1.147)
• Fixed an uncaught exception at the end of streaming sessions when running via the Agent SDK(v2.1.147)
• Fixed a rare hang when waiting for scroll to settle on Windows(v2.1.147)
• Fixed stale and doubled rows in the agent view list on Windows when background session results contain wide (CJK) characters(v2.1.147)
• Fixed pasted text being delivered to agents as an unreadable [Pasted text #N] placeholder instead of the actual content(v2.1.147)
• Fixed plugin component counts in claude plugin details and /plugin being doubled when a plugin's manifest listed overlapping paths(v2.1.147)
• Fixed backgrounded sessions re-prompting for tool permissions already granted with "don't ask again"(v2.1.147)
• Fixed GNOME Terminal right-click and middle-click paste not inserting text(v2.1.147)
• Fixed CLAUDE_CODE_SUBAGENT_MODEL not applying to teammate processes spawned by agent teams(v2.1.147)
• Fixed slash commands followed by a tab or newline being treated as an unknown command(v2.1.147)
• Fixed stripped images prompting the model to repeatedly re-read media that was no longer present(v2.1.147)
• Fixed a security vulnerability where bare variable assignments to non-allowlisted environment variables in Bash commands bypassed permission prompts.(v2.1.145)
• Fixed MCP prompt slash commands that previously showed raw server validation errors when an argument was missing; the error now correctly names the missing argument and shows expected usage.(v2.1.145)
• Fixed the spinner and elapsed-time display freezing until a keypress occurred after the terminal window was resized or refocused.(v2.1.145)
• Fixed the cross-project resume hint failing on Windows PowerShell 5.1 by ensuring Windows uses `;` as the command separator.(v2.1.145)
• Fixed voice push-to-talk functionality not working within the reply pane of the agent view.(v2.1.145)
• Fixed task lists rendering in a random order when multiple tasks were created simultaneously.(v2.1.145)
• Fixed a stale "Failed to install Anthropic marketplace" banner persisting after the marketplace was already installed.(v2.1.145)
• Fixed the PR badge in the footer failing to update immediately after PR-state-changing commands (like `gh pr create`) were run in-session.(v2.1.145)
• Fixed Agent Teams API calls failing for teammates with non-ASCII names due to invalid header encoding.(v2.1.145)
• Fixed the `/review` command using a deprecated GraphQL query that errored on repositories using Classic Projects.(v2.1.145)
• Fixed `claude plugin validate` failing to flag `skills:` entries pointing to a file instead of a directory; the error now suggests the parent directory.(v2.1.145)
• Fixed an infinite loop where a skill configured with `context: fork` would repeatedly re-invoke itself instead of executing.(v2.1.145)
• Fixed startup hanging up to 75s when `api.anthropic.com` is unreachable by implementing a 15s timeout for side-channel API calls(v2.1.144)
• Fixed garbled terminal output after missed window-resize events by enabling self-healing on the next frame(v2.1.144)
• Fixed progressive terminal display corruption (stale/garbled glyphs) in long sessions that previously required a resize or restart to clear(v2.1.144)
• Fixed macOS background sessions crashing with "exit 1 before init" when the project is in a Full Disk Access-protected folder(v2.1.144)
• Fixed unrecoverable conversation state when reading a file with an image extension that mismatches its content (e.g. HTML saved as .png) by falling back to text processing(v2.1.144)
• Fixed spurious tool errors during search by ensuring `head`/`tail` file views satisfy read-before-edit checks and treating non-matches from grep/diff as informational instead of command failures(v2.1.144)
• Fixed /branch failing with "No conversation to branch" after entering a worktree or in some background sessions(v2.1.144)
• Fixed pressing Escape in the AskUserQuestion notes field aborting the turn instead of returning to answer selection(v2.1.144)
• Fixed model selection not applying when changed via the IDE model picker or `applyFlagSettings` after startup(v2.1.144)
• Fixed resumed sessions incorrectly inheriting the model choice from another session instead of retaining their original model(v2.1.144)
• Fixed Bedrock and Vertex users being unable to select "Opus (1M context)" from the /model picker(v2.1.144)
• Fixed remote-session login failing with "Can't access this organization" for users with specific configuration settings(v2.1.144)
• Fixed MCP servers with paginated `tools/list` responses only returning the first page of tools(v2.1.144)
• Fixed MCP images with unsupported MIME types (e.g. SVG) breaking the conversation by saving them to disk and referencing them in the tool result(v2.1.144)
• Fixed file descriptor exhaustion during builds inside skill directories by preventing non-`.md` files from triggering skill reloads(v2.1.144)
• Fixed session title being generated from plugin monitor output instead of the user's first prompt(v2.1.144)
• Fixed Skill tool failing with a permission error in headless mode(v2.1.144)
• Fixed plugins enabled in user settings showing "not cached" errors on fresh machines; added an install hint for project-specific plugins(v2.1.144)
• Fixed `claude mcp list` silently reporting no servers when configuration files were unparsable, now showing configuration errors instead(v2.1.144)
• Fixed background side-queries on custom `ANTHROPIC_BASE_URL` setups and Bedrock Mantle not using Haiku correctly(v2.1.144)
• Fixed scrolling and transcript navigation (PgUp/PgDn, mouse wheel, Ctrl+O) not working in attached background sessions on Windows(v2.1.144)
• Fixed a crash when closing the terminal while attached to a background session(v2.1.144)
• Fixed `! <cmd>` exec sessions not interrupting when Ctrl+C is pressed while attached(v2.1.144)
• Fixed agent view shell-command rows lingering under Working after completion and re-running commands on Enter press(v2.1.144)
• Fixed keyboard input becoming unresponsive in `claude agents` on Windows Terminal after pressing ←(v2.1.144)
• Fixed ghost characters appearing at the left edge when switching panes in Agent View on Windows Terminal with CJK content(v2.1.144)
• Ensured /bg and ←-detach preserve directories added via /add-dir(v2.1.144)
• Fixed Edit/Write refusing to operate right after detaching a session that was editing in place(v2.1.144)
• Fixed `claude respawn <id>` showing "stopped" for a stopped background session instead of running it(v2.1.144)
• Fixed /resume picker not showing sessions forked from a background session(v2.1.144)
• Fixed hanging when opening a session from `claude agents` or running `claude logs <id>` if the background service was unresponsive, now with a 10s timeout(v2.1.144)
• Fixed background Bash tasks spawned by subagents staying "Running" in SDK task panels after process exit(v2.1.144)
• Fixed completed or stopped background sessions being permanently marked as a startup crash(v2.1.144)
• Fixed markdown links in `claude agents` attached sessions rendering as plain text instead of hyperlinks(v2.1.144)
• Restored custom `spinnerVerbs` to apply only to the command execution message, not the post-turn duration message(v2.1.144)
• Made `claude agents` / --bg rejection messages name the specific gate that caused rejection(v2.1.144)
• Echoed the session name in the post-spawn confirmation when using `claude --bg --name <label>`(v2.1.144)
• Ensured renaming a background session via Ctrl+R in `claude agents` immediately updates the attached session's banner(v2.1.144)
• Applied background session worktree isolation guard for non-git VCS users with `WorktreeCreate` hooks(v2.1.144)
• Ensured plugin marketplace add/update respects `CLAUDE_CODE_PLUGIN_PREFER_HTTPS`(v2.1.144)
• Made /plugin return to the Installed list after enabling, disabling, or uninstalling a plugin(v2.1.144)
• Updated /doctor to show an exec-form example when a command hook is missing the `command` field(v2.1.144)
• Stopped showing skill-listing truncation as a startup notification; users must now run /doctor(v2.1.144)
• Improved recovery from rare pre-response stream stalls by retrying streaming once instead of falling back to non-streaming(v2.1.144)
• Improved SDK/headless MCP startup by overlapping pre-wait with startup, potentially saving up to 2s with slow servers(v2.1.144)
• Ensured the post-survey follow-up hint appears after every non-dismiss survey response with context-aware copy(v2.1.144)
• Fixed `MCP_TOOL_TIMEOUT` not raising the per-request fetch timeout for remote HTTP and SSE MCP servers, which capped tool calls at 60 seconds regardless of the configured value(v2.1.142)
• Fixed background sessions not recognizing pre-existing git worktrees, blocking Edit while EnterWorktree refused to create a duplicate(v2.1.142)
• Fixed background sessions disappearing and daemon reconnect failing after macOS sleep/wake — the daemon now detects clock jumps instead of treating them as elapsed idle time(v2.1.142)
• Fixed daemon not exiting cleanly after the binary is upgraded (e.g. `brew upgrade`), causing dispatched agents to crash-loop on the deleted path(v2.1.142)
• Fixed background agents crash-looping when the Claude-in-Chrome extension is connected without a shared tab(v2.1.142)
• Fixed clicking links in an attached `claude agents` session — the background worker's headless browser shim no longer applies while attached(v2.1.142)
• Fixed `claude agents` "v to open in editor" using the daemon's default editor instead of your shell's `$EDITOR`/`$VISUAL`(v2.1.142)
• Fixed `claude agents` deadlocking on Windows with network-drive working directories; Ctrl+C now works during startup(v2.1.142)
• Fixed background-color bleed when attaching to a `claude agents` session from Apple Terminal or other 256-color-only terminals(v2.1.142)
• Fixed `claude --bg --dangerously-skip-permissions` not persisting across retire/wake(v2.1.142)
• Fixed session titles being derived from the URL when the first message is a link(v2.1.142)
• Fixed redundant `set_model` requests from remote clients injecting duplicate `/model` breadcrumbs into the transcript(v2.1.142)
• Fixed plugins using `skills: ["./"]` showing a false "path escapes plugin directory" error(v2.1.142)
• Fixed plugin cache cleanup deleting the active plugin version directory when no installation metadata is present(v2.1.142)
• Fixed `/plugin` browse pane showing "0 installs" for newly published plugins(v2.1.142)
• Fixed plugin advisories not naming every `plugin.json` key that shadows a default folder(v2.1.142)
• Fixed background side-queries sending an unavailable Haiku model ID on Bedrock/Vertex/Foundry/gateway when no `ANTHROPIC_SMALL_FAST_MODEL` override is set; it now correctly falls back to the main-loop model.(v2.1.141)
• Fixed `claude daemon status` and `/doctor` on Windows throwing an opaque failure when the daemon pipe key file is locked or unreadable; it now shows the underlying error.(v2.1.141)
• Fixed `claude agents` showing the agent-type list instead of the dashboard when launched through a wrapper that adds flags.(v2.1.141)
• Fixed `claude agents` firing redundant dispatches when opening a crashed session where the working directory was deleted.(v2.1.141)
• Fixed background jobs on a custom `ANTHROPIC_BASE_URL` gateway not getting auto-named; the namer now uses the main model when no Haiku model is configured.(v2.1.141)
• Fixed `/model` command in one session silently changing the autocompact threshold in other concurrent sessions.(v2.1.141)
• Fixed switching permission mode while a tool-permission prompt is open not auto-dismissing the prompt when the new setting permits the tool.(v2.1.141)
• Fixed pressing Enter while a permission/dialog prompt is open from also submitting text in the input box.(v2.1.141)
• Fixed hooks receiving a non-existent `transcript_path` after `EnterWorktree` switches the working directory.(v2.1.141)
• Fixed markdown tables with cell wrapping falling back to the vertical key-value layout instead of rendering as a bordered grid.(v2.1.141)
• Fixed cancelled prompts being removed from Up-arrow history when auto-restored into the input box, preventing duplicate entries.(v2.1.141)
• Fixed prompts cancelled with Ctrl+C/Esc before any response being dropped from Up-arrow history.(v2.1.141)
• Fixed Ctrl+C not interrupting a running turn while in vim INSERT/VISUAL mode.(v2.1.141)
• Fixed alternative `chat:submit` keybindings (e.g. `meta+enter`, `ctrl+enter`) not working when `enter` is rebound to `chat:newline`.(v2.1.141)
• Fixed prompt suggestions being silently disabled when an output style was configured.(v2.1.141)
• Fixed `spinnerVerbs` setting not being honored in turn-completion messages.(v2.1.141)
• Fixed AskUserQuestion popup hiding the last line of preceding chat content.(v2.1.141)
• Fixed Web Search status showing "Did 0 searches" when searches actually returned errors.(v2.1.141)
• Fixed multi-line statusline output dropping or corrupting rows when any line exceeds terminal width.(v2.1.141)
• Fixed light-ansi theme using invisible white for diff context lines on light backgrounds; it now uses black.(v2.1.141)
• Fixed error overlay dumping minified bundle source that hid the original error message.(v2.1.141)
• Fixed pressing Enter after typing a feedback survey rating digit submitting it as a chat message instead of submitting the rating.(v2.1.141)
• Fixed pressing `x` on a selected subagent in the agent panel typing into the prompt instead of stopping the agent.(v2.1.141)
• Fixed session title being derived from plugin monitor notifications before the user's first prompt.(v2.1.141)
• Fixed "Allowed by PermissionRequest hook" repeating once per tool call under a collapsed read/search group.(v2.1.141)
• Fixed `/tui` silently dropping running background shells and subagents; it now refuses and asks to wait for them to finish.(v2.1.141)
• Fixed welcome banner showing "API Usage Billing" on Bedrock, Vertex, Foundry, and other third-party providers; it now shows the provider name.(v2.1.141)
• Fixed `/mcp` server list not keeping the focused server visible in short terminals in fullscreen mode.(v2.1.141)
• Fixed redaction in `/feedback` bundles producing invalid JSON for quoted values like session IDs.(v2.1.141)
• Fixed desktop and third-party provider sessions incorrectly inheriting `apiKeyHelper`/`ANTHROPIC_AUTH_TOKEN` from host managed-settings.(v2.1.141)
• Fixed early analytics events being silently dropped when fired before logger initialization.(v2.1.141)
• Fixed `claude plugin install` failing for plugins whose marketplace `ref` no longer exists upstream when a `sha` is also pinned.(v2.1.141)
• Fixed plugin details pane showing 0 MCP servers for plugins that declare them via `.mcp.json`.(v2.1.141)
• Fixed plugin MCP servers with unset config variables showing a generic connection failure instead of a "config issue" message with a fix-it hint; malformed `.mcp.json` entries no longer drop other MCP servers.(v2.1.141)
• Fixed MCP HTTP/SSE servers returning 403 on connect showing as "failed" instead of "needs auth".(v2.1.141)
• Fixed remote MCP servers disconnecting unnecessarily when the optional server-events stream failed to reconnect; tool calls continue over POST.(v2.1.141)
• Fixed Remote Control MCP connectors all failing with 401 when the worker session token rotated mid-session.(v2.1.141)
• Fixed Remote Control automatically re-enrolling a trusted device when the server rejects a stale token, instead of looping through `/login`.(v2.1.141)
• Fixed a race where early OTel spans could be silently dropped in SDK/headless mode with beta tracing enabled.(v2.1.141)
• Fixed custom `voice:pushToTalk` keybindings and `"space": null` unbinds being silently ignored.(v2.1.141)
• Fixed Windows Alt+V image paste reporting "no image found" when the clipboard contains a screenshot.(v2.1.141)
• Fixed SDK "Claude Code native binary not found" on Linux when both glibc and musl platform packages are installed.(v2.1.141)
• Fixed Bedrock: `awsCredentialExport` being skipped when ambient AWS credentials resolve, ensuring it now always runs when configured for cross-account access.(v2.1.141)
• Fixed in-chat mic in VSCode showing no feedback when the microphone produced only silence; it now shows "No audio detected".(v2.1.141)
• Fixed WSL error in VSCode Voice mode suggesting installing `sox libsox-fmt-pulse` for WSLg users.(v2.1.141)
• Fixed `claude agents` failing to launch a session when the pre-warmed background worker is unhealthy; it now falls back to a fresh launch.(v2.1.141)
• Fixed `claude agents` showing empty placeholder sessions left over from backgrounding a fresh REPL, and now shows onboarding text when entered via `←` with no other agents.(v2.1.141)
• Fixed empty idle background sessions left over from `←` being automatically retired by the daemon after 5 minutes.(v2.1.141)
• Fixed a deadlock that occurred when expired credentials and the `forceRemoteSettingsRefresh` policy blocked `claude auth login`, `logout`, or `status` commands.(v2.1.139)
• Fixed `autoAllowBashIfSandboxed` not auto-approving commands containing shell expansions like `$VAR` and `$(cmd)`.(v2.1.139)
• Fixed a bug where a hook writing to the terminal could corrupt an on-screen interactive prompt; hooks now run without terminal access.(v2.1.139)
• Fixed unbounded memory growth when an HTTP/SSE MCP server streamed non-protocol data by capping response bodies at 16 MB per SSE frame.(v2.1.139)
• Fixed `Skill(name *)` permission rules so the wildcard form now correctly functions as a prefix match, consistent with `Bash(ls *)` behavior.(v2.1.139)
• Fixed settings hot-reload failing to detect edits made to symlinked `~/.claude/settings.json` files.(v2.1.139)
• Fixed plugin details failing to load when the marketplace key differed from the manifest name.(v2.1.139)
• Fixed the `/model` picker's "Default" row not correctly reflecting overrides set by `ANTHROPIC_DEFAULT_OPUS_MODEL` or `ANTHROPIC_DEFAULT_SONNET_MODEL`.(v2.1.139)
• Fixed spurious "stream idle timeout" errors occurring 5 minutes after a response completed because the watchdog timer was not cleared on stream cancellation.(v2.1.139)
• Fixed silent `exit 1` errors when 10+ MCP servers were configured and the cache directory was unwritable; the error message now shows the underlying cause.(v2.1.139)
• Fixed a blinking typing cursor appearing on tab names, list pointers, and select rows within dialogs.(v2.1.139)
• Fixed transcript view letter shortcuts failing to work after a mouse click.(v2.1.139)
• Fixed the Bash-mode up-arrow history repeating the first entry and overwriting the in-progress draft.(v2.1.139)
• Fixed pasting or dropping multiple images resulting in only the last image being inserted.(v2.1.139)
• Fixed hyperlinks appearing in an unreadable dark navy color on dark themes; they now adapt to the active theme.(v2.1.139)
• Fixed the model picker showing a redundant "Current model" row for third-party users whose model was set to the `opus` alias.(v2.1.139)
• Fixed the legacy Opus picker entry on PAYG 3P providers resolving to the same model as the default entry.(v2.1.139)
• Fixed mouse wheel scrolling speed inconsistencies in Cursor and VS Code versions 1.92–1.104, ensuring steady trackpad scrolling and ~3 lines per notch for the mouse wheel.(v2.1.139)
• Fixed scroll behavior in Windows Terminal and VS Code when attached to background sessions.(v2.1.139)
• Fixed MCP resources from disconnected servers lingering in `@server:` autocomplete suggestions.(v2.1.139)
• Fixed two-file diff snippets over-reporting the number of truncated lines by one.(v2.1.139)
• Fixed Grep results failing to relativize Windows drive-letter paths, leading to incorrect count mode totals for single-file paths.(v2.1.139)
• Fixed text overflowing borders on CJK/emoji characters due to incorrect visual cell width calculation.(v2.1.139)
• Fixed fuzzy-match highlighting incorrectly splitting emoji and astral-plane characters mid-pair.(v2.1.139)
• Fixed skill argument names containing regex metacharacters breaking argument substitution.(v2.1.139)
• Fixed ProgressBar rendering a full block when it should have shown a fractional cell that was almost full.(v2.1.139)
• Fixed task polling and `fs.watch` being incorrectly resurrected when the last subscriber left while a fetch operation was still in flight.(v2.1.139)
• Fixed plugin dependency resolution leaving a stale count when the manifest name differed from the source identifier.(v2.1.139)
• Fixed the Insights Time-of-Day chart skewing results when a session contained an unparseable timestamp.(v2.1.139)
• Fixed keybindings that used only the cmd/super/win modifier being flagged as unparseable.(v2.1.139)
• Fixed the `claude_code.active_time.total` OpenTelemetry metric not being emitted when running in `--print` mode.(v2.1.139)
• Fixed `claude plugin update` failing to preserve cross-plugin symlinks inside a marketplace installation.(v2.1.139)
• Fixed unbounded memory growth (multi-GB RSS) that occurred when processing many images in a single session.(v2.1.121)
• Fixed a memory leak in `/usage` that consumed up to ~2GB of memory on machines with large transcript histories.(v2.1.121)
• Fixed a memory leak that occurred when long-running tools failed to emit a clear progress event.(v2.1.121)
• Fixed the Bash tool becoming permanently unusable if the directory Claude was started in was deleted or moved during a session.(v2.1.121)
• Fixed `--resume` crashing on startup in external builds.(v2.1.121)
• Fixed `--resume` failing on large sessions when a transcript line was corrupted by an unclean shutdown; the corrupt line is now skipped.(v2.1.121)
• Fixed `thinking.type.enabled is not supported` error when using Bedrock application inference profile ARNs.(v2.1.121)
• Fixed Microsoft 365 MCP OAuth failures caused by duplicate or unsupported `prompt` parameters.(v2.1.121)
• Fixed scrollback duplication when pressing Ctrl+L or triggering a redraw in non-fullscreen mode across tmux, GNOME Terminal, Windows Terminal, and Konsole.(v2.1.121)
• Fixed claude.ai MCP connectors silently disappearing if the connector-list fetch encountered a transient authentication error at startup.(v2.1.121)
• Fixed "Always allow" rules for built-in tools in remote sessions failing to persist across worker restarts.(v2.1.121)
• Fixed `NO_PROXY` setting not being respected by all HTTP clients when set via `managed-settings.json` in native builds.(v2.1.121)
• Fixed the managed settings approval prompt incorrectly exiting the session upon acceptance; settings are now applied and the session continues.(v2.1.121)
• Fixed `/usage` returning "rate limited" due to a stale OAuth token; tokens now refresh automatically.(v2.1.121)
• Fixed invalid legacy enum values in `settings.json` from invalidating the entire settings file.(v2.1.121)
• Fixed `/usage` dialog content being clipped when no-flicker mode was disabled.(v2.1.121)
• Fixed `/focus` showing "Unknown command" when the fullscreen renderer was off; it now explains how to enable fullscreen rendering.(v2.1.121)
• Fixed embedded grep/find/rg shell wrappers failing if the running binary was deleted mid-session; now falls back to installed tools.(v2.1.121)
• Fixed pasting CRLF content (from Windows clipboards or Xcode console) from inserting an extra blank line between every line.(v2.1.119)
• Fixed multi-line paste losing newlines when using terminals that employ kitty keyboard protocol sequences inside bracketed paste.(v2.1.119)
• Fixed Glob and Grep tools disappearing on native macOS/Linux builds when the Bash tool was denied via permissions.(v2.1.119)
• Fixed scrolling up in fullscreen mode snapping back to the bottom every time a tool finished execution.(v2.1.119)
• Fixed MCP HTTP connections failing with "Invalid OAuth error response" when servers returned non-JSON bodies during OAuth discovery requests.(v2.1.119)
• Fixed the Rewind overlay incorrectly showing "(no prompt)" for messages that contained image attachments.(v2.1.119)
• Fixed auto mode overriding plan mode when conflicting "Execute immediately" instructions were present.(v2.1.119)
• Fixed async `PostToolUse` hooks that emit no response payload from writing empty entries to the session transcript.(v2.1.119)
• Fixed the spinner remaining active when a subagent task notification became orphaned in the queue.(v2.1.119)
• Fixed `@`-file Tab completion from replacing the entire prompt when used inside a slash command with an absolute path.(v2.1.119)
• Fixed a stray `p` character appearing at the prompt on startup when running in macOS Terminal.app via Docker or SSH.(v2.1.119)
• Fixed `${ENV_VAR}` placeholders in `headers` for HTTP/SSE/WebSocket MCP servers from not being substituted before requests.(v2.1.119)
• Fixed MCP OAuth client secret provided via `--client-secret` not being sent during token exchange for servers requiring `client_secret_post`.(v2.1.119)
• Fixed the Enter key in the `/skills` dialog from closing the dialog instead of pre-filling `/<skill-name>` into the prompt.(v2.1.119)
• Fixed the `/agents` detail view from mislabeling built-in tools unavailable to subagents as "Unrecognized".(v2.1.119)
• Fixed MCP servers originating from plugins from failing to spawn on Windows when the plugin cache was incomplete.(v2.1.119)
• Fixed `/export` from showing the current default model instead of the model the conversation actually used.(v2.1.119)
• Fixed the verbose output setting from not persisting correctly after a restart.(v2.1.119)
• Fixed `/usage` progress bars from overlapping with their corresponding "Resets …" labels.(v2.1.119)
• Fixed plugin MCP servers from failing when `${user_config.*}` references an optional field that was left blank.(v2.1.119)
• Fixed list items containing a sentence-final number from wrapping that number onto its own line.(v2.1.119)
• Fixed `/plan` and `/plan open` from not acting on the existing plan when entering plan mode.(v2.1.119)
• Fixed skills invoked before auto-compaction from being re-executed against the next user message.(v2.1.119)
• Fixed `/reload-plugins` and `/doctor` from reporting load errors for plugins that were disabled.(v2.1.119)
• Fixed Agent tool instances using `isolation: "worktree"` from reusing stale worktrees from prior sessions.(v2.1.119)
• Fixed disabled MCP servers from incorrectly appearing as "failed" in the `/status` command output.(v2.1.119)
• Fixed `TaskList` from returning tasks in arbitrary filesystem order instead of sorting them by ID.(v2.1.119)
• Fixed spurious "GitHub API rate limit exceeded" hints appearing when `gh` output contained PR titles that mentioned "rate limit".(v2.1.119)
• Fixed SDK/bridge `read_file` functionality from not correctly enforcing the size cap on growing files.(v2.1.119)
• Fixed the PR not being linked to the session when working within a git worktree.(v2.1.119)
• Fixed `/doctor` from incorrectly warning about MCP server entries that were overridden by a higher-precedence scope.(v2.1.119)
• Removed a false-positive warning on Windows regarding the need for a `'cmd /c' wrapper` for MCP configuration.(v2.1.119)
• Fixed voice dictation's first recording producing no output on macOS while the microphone permission prompt was visible in VSCode.(v2.1.119)
• Fixed `/mcp` menu hiding OAuth Authenticate/Re-authenticate actions for servers configured with `headersHelper`, and HTTP/SSE MCP servers with custom headers being stuck in "needs authentication" after a transient 401(v2.1.118)
• Fixed MCP servers whose OAuth token response omits `expires_in` requiring re-authentication every hour(v2.1.118)
• Fixed MCP step-up authorization silently refreshing instead of prompting for re-consent when the server's `insufficient_scope` 403 names a scope the current token already has(v2.1.118)
• Fixed an unhandled promise rejection when an MCP server's OAuth flow times out or is cancelled(v2.1.118)
• Fixed MCP OAuth refresh proceeding without its cross-process lock under contention(v2.1.118)
• Fixed macOS keychain race where a concurrent MCP token refresh could overwrite a freshly-refreshed OAuth token, causing unexpected "Please run /login" prompts(v2.1.118)
• Fixed OAuth token refresh failing when the server revokes a token before its local expiry time(v2.1.118)
• Fixed credential save crash on Linux/Windows corrupting `~/.claude/.credentials.json`(v2.1.118)
• Fixed `/login` having no effect in a session launched with `CLAUDE_CODE_OAUTH_TOKEN`; the environment token is now cleared so disk credentials take effect(v2.1.118)
• Fixed unreadable text in the "new messages" scroll pill and `/plugin` badges(v2.1.118)
• Fixed plan acceptance dialog offering "auto mode" instead of "bypass permissions" when running with `--dangerously-skip-permissions`(v2.1.118)
• Fixed agent-type hooks failing with "Messages are required for agent hooks" when configured for events other than `Stop` or `SubagentStop`(v2.1.118)
• Fixed `prompt` hooks re-firing on tool calls made by an agent-hook verifier subagent(v2.1.118)
• Fixed `/fork` writing the full parent conversation to disk per fork; it now writes a pointer and hydrates on read(v2.1.118)
• Fixed Alt+K / Alt+X / Alt+^ / Alt+_ freezing keyboard input(v2.1.118)
• Fixed connecting to a remote session overwriting your local `model` setting in `~/.claude/settings.json`(v2.1.118)
• Fixed typeahead showing "No commands match" error when pasting file paths that start with `/`(v2.1.118)
• Fixed `plugin install` on an already-installed plugin not re-resolving a dependency installed at the wrong version(v2.1.118)
• Fixed unhandled errors from file watcher on invalid paths or fd exhaustion(v2.1.118)
• Fixed Remote Control sessions getting archived on transient CCR initialization blips during JWT refresh(v2.1.118)
• Fixed subagents resumed via `SendMessage` not restoring the explicit `cwd` they were spawned with(v2.1.118)
• Fixed permission prompts being triggered by read-only bash commands using glob patterns (e.g., `ls *.ts`) and commands starting with `cd <project-dir> &&`.(v2.1.111)
• Fixed the tool suggesting the closest matching subcommand when invoked with a near-miss typo (e.g., `claude udpate` now suggests `claude update`).(v2.1.111)
• Fixed LSP diagnostics from before an edit appearing after the edit, preventing the model from re-reading already edited files.(v2.1.111)
• Fixed tab-completing `/resume` immediately resuming an arbitrary titled session instead of showing the session picker.(v2.1.111)
• Fixed `/context` grid rendering issues showing extra blank lines between rows.(v2.1.111)
• Fixed `/clear` dropping the session name set by `/rename`, which caused the statusline output to lose `session_name`.(v2.1.111)
• Fixed plugin dependency errors: distinguishing conflicting, invalid, and overly complex version requirements; fixed stale resolved versions after `plugin update`; `plugin install` now recovers from interrupted prior installs.(v2.1.111)
• Fixed Claude calling a non-existent `commit` skill and showing "Unknown skill: commit" for users without a custom `/commit` command.(v2.1.111)
• Fixed 429 rate-limit errors on Bedrock/Vertex/Foundry incorrectly referencing status.claude.com.(v2.1.111)
• Fixed feedback surveys appearing back-to-back after dismissing one.(v2.1.111)
• Fixed bare URLs in bash/PowerShell/MCP tool output being unclickable when the terminal wraps them across lines.(v2.1.111)
• Fixed Windows environment file application: `CLAUDE_ENV_FILE` and SessionStart hook environment files now apply correctly.(v2.1.111)
• Fixed Windows permission rules: paths with drive-letter paths are now correctly root-anchored, and paths differing only by drive-letter case are recognized as the same path.(v2.1.111)
• Fixed terminal display tearing (random characters, drifting input) in iTerm2 + tmux setups when terminal notifications are sent.(v2.1.111)
• Fixed `@` file suggestions re-scanning the entire project on every turn in non-git working directories, and fixed showing only config files in freshly-initialized git repos with no tracked files.(v2.1.111)
• Fixed MCP tool calls hanging indefinitely when the server connection drops mid-response on SSE/HTTP transports.(v2.1.110)
• Fixed non-streaming fallback retries causing multi-minute hangs when the API is unreachable.(v2.1.110)
• Fixed session recap, local slash-command output, and other system status lines not appearing in focus mode.(v2.1.110)
• Fixed high CPU usage in fullscreen when text is selected while a tool is running.(v2.1.110)
• Fixed plugin install not honoring dependencies declared in `plugin.json` when the marketplace entry omits them; /plugin install now lists auto-installed dependencies.(v2.1.110)
• Fixed skills with `disable-model-invocation: true` failing when invoked via /<skill> mid-message.(v2.1.110)
• Fixed `--resume` sometimes showing the first prompt instead of the /rename name for sessions still running or exited uncleanly.(v2.1.110)
• Fixed queued messages briefly appearing twice during multi-tool-call turns.(v2.1.110)
• Fixed session cleanup not removing the full session directory including subagent transcripts.(v2.1.110)
• Fixed dropped keystrokes after the CLI relaunches (e.g. /tui, provider setup wizards).(v2.1.110)
• Fixed garbled startup rendering in macOS Terminal.app and other terminals that don't support synchronized output.(v2.1.110)
• Hardened "Open in editor" actions against command injection from untrusted filenames.(v2.1.110)
• Fixed `PermissionRequest` hooks returning `updatedInput` not being re-checked against `permissions.deny` rules; `setMode:'bypassPermissions'` updates now respect `disableBypassPermissionsMode`.(v2.1.110)
• Fixed `PreToolUse` hook `additionalContext` being dropped when the tool call fails.(v2.1.110)
• Fixed stdio MCP servers that print stray non-JSON lines to stdout being disconnected on the first stray line (regression in 2.1.105).(v2.1.110)
• Fixed headless/SDK session auto-title firing an extra Haiku request when `CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC` or `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` is set.(v2.1.110)
• Fixed potential excessive memory allocation when piped (non-TTY) Ink output contains a single very wide line.(v2.1.110)
• Fixed /skills menu not scrolling when the list overflows the modal in fullscreen mode.(v2.1.110)
• Fixed Remote Control sessions showing a generic error instead of prompting for re-login when the session is too old.(v2.1.110)
• Fixed Remote Control session renames from claude.ai not persisting the title to the local CLI session.(v2.1.110)
• Fixed images attached to queued messages (sent while Claude is working) being dropped.(v2.1.105)
• Fixed the screen going blank when the prompt input wraps to a second line in long conversations.(v2.1.105)
• Fixed leading whitespace being copied when selecting multi-line assistant responses in fullscreen mode.(v2.1.105)
• Fixed leading whitespace being trimmed from assistant messages, which broke ASCII art and indented diagrams.(v2.1.105)
• Fixed garbled bash output when commands print clickable file links (e.g. Python `rich`/`loguru` logging).(v2.1.105)
• Fixed alt+enter not inserting a newline in terminals using ESC-prefix alt encoding, and Ctrl+J not inserting a newline (regression in 2.1.100).(v2.1.105)
• Fixed duplicate "Creating worktree" text in EnterWorktree/ExitWorktree tool display.(v2.1.105)
• Fixed queued user prompts disappearing from focus mode.(v2.1.105)
• Fixed one-shot scheduled tasks re-firing repeatedly when the file watcher missed the post-fire cleanup.(v2.1.105)
• Fixed inbound channel notifications being silently dropped after the first message for Team/Enterprise users.(v2.1.105)
• Fixed marketplace plugins with `package.json` and lockfile not having dependencies installed automatically after install/update.(v2.1.105)
• Fixed marketplace auto-update leaving the official marketplace in a broken state when a plugin process holds files open during the update.(v2.1.105)
• Fixed "Resume this session with..." hint not printing on exit after `/resume`, `--worktree`, or `/branch`.(v2.1.105)
• Fixed feedback survey shortcut keys firing when typed at the end of a longer prompt.(v2.1.105)
• Fixed stdio MCP server emitting malformed (non-JSON) output hanging the session instead of failing fast with "Connection closed".(v2.1.105)
• Fixed MCP tools missing on the first turn of headless/remote-trigger sessions when MCP servers connect asynchronously.(v2.1.105)
• Fixed `/model` picker on AWS Bedrock in non-US regions persisting invalid `us.*` model IDs to `settings.json` when inference profile discovery is still in-flight.(v2.1.105)
• Fixed 429 rate-limit errors showing a raw JSON dump instead of a clean message for API-key, Bedrock, and Vertex users.(v2.1.105)
• Fixed crash on resume when session contains malformed text blocks.(v2.1.105)
• Fixed `/help` dropping the tab bar, Shortcuts heading, and footer at short terminal heights.(v2.1.105)
• Fixed malformed keybinding entry values in `keybindings.json` being silently loaded instead of rejected with a clear error.(v2.1.105)
• Fixed `CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC` in one project's settings permanently disabling usage metrics for all projects on the machine.(v2.1.105)
• Fixed washed-out 16-color palette when using Ghostty, Kitty, Alacritty, WezTerm, foot, rio, or Contour over SSH/mosh.(v2.1.105)
• Fixed Bash tool suggesting `acceptEdits` permission mode when exiting plan mode would downgrade from a higher permission level.(v2.1.105)
• Fixed a command injection vulnerability in the POSIX which fallback used by LSP binary detection.(v2.1.101)
• Fixed a memory leak where long sessions retained dozens of historical copies of the message list in the virtual scroller.(v2.1.101)
• Fixed resume/continue losing conversation context on large sessions when the loader anchored on a dead-end branch.(v2.1.101)
• Fixed resume chain recovery bridging into an unrelated subagent conversation when a subagent message landed near a main-chain write gap.(v2.1.101)
• Fixed a crash on resume when a persisted Edit\/Write tool result was missing its file_path.(v2.1.101)
• Fixed a hardcoded 5-minute request timeout that aborted slow backends regardless of API_TIMEOUT_MS.(v2.1.101)
• Fixed permissions.deny rules not overriding a PreToolUse hook's permissionDecision: "ask", preventing hooks from downgrading denies to prompts.(v2.1.101)
• Fixed setting sources without user causing background cleanup to ignore cleanupPeriodDays and delete history older than 30 days.(v2.1.101)
• Fixed Bedrock SigV4 authentication failing with 403 when Authorization headers were set via environment variables or helpers.(v2.1.101)
• Fixed claude -w <name> failing with "already exists" after stale worktree cleanup from a previous session.(v2.1.101)
• Fixed subagents not inheriting MCP tools from dynamically-injected servers.(v2.1.101)
• Fixed sub-agents running in isolated worktrees being denied Read\/Edit access to files inside their own worktree.(v2.1.101)
• Fixed sandboxed Bash commands failing with mktemp: No such file or directory after a fresh boot.(v2.1.101)
• Fixed claude mcp serve tool calls failing with "Tool execution failed" in MCP clients that validate outputSchema.(v2.1.101)
• Fixed RemoteTrigger tool's run action sending an empty body and being rejected by the server.(v2.1.101)
• Fixed several resume picker issues including narrow default view, unreachable preview on Windows Terminal, incorrect cwd, missing session-not-found errors, and terminal title not being set.(v2.1.101)
• Fixed Grep tool ENOENT when the embedded ripgrep binary path becomes stale; now falls back to system rg and self-heals.(v2.1.101)
• Fixed \/btw writing a copy of the entire conversation to disk on every use.(v2.1.101)
• Fixed \/context Free space and Messages breakdown disagreeing with the header percentage.(v2.1.101)
• Fixed several plugin issues including slash commands resolving incorrectly, \/plugin update failing with ENAMETOOLONG, Discover showing installed plugins, directory-source plugins loading stale cache, and skills not honoring context and agent frontmatter.(v2.1.101)
• Fixed the \/mcp menu offering OAuth-specific actions for servers configured with headersHelper; Reconnect is now offered instead.(v2.1.101)
• Fixed ctrl+], ctrl+\, and ctrl+^ keybindings not firing in terminals that send raw C0 control bytes.(v2.1.101)
• Fixed \/login OAuth URL rendering with padding that prevented clean mouse selection.(v2.1.101)
• Fixed rendering issues including flicker in non-fullscreen mode, scrollback wiping, and mouse-scroll escape sequences leaking into the prompt.(v2.1.101)
• Fixed crash when settings.json env values are numbers instead of strings.(v2.1.101)
• Fixed in-app settings writes not refreshing the in-memory snapshot, preventing removed directories from being revoked mid-session.(v2.1.101)
• Fixed custom keybindings not loading on Bedrock, Vertex, and other third-party providers.(v2.1.101)
• Fixed claude --continue -p not correctly continuing sessions created by -p or the SDK.(v2.1.101)
• Fixed several Remote Control issues including worktrees removed on session crash, connection failures not persisting, spurious Disconnected indicator in brief mode, and \/remote-control failing over SSH when only Organization UUID is set.(v2.1.101)
• Fixed \/insights sometimes omitting the report file link from its response.(v2.1.101)
• Fixed the file attachment below the chat input not clearing when the last editor tab is closed in VSCode.(v2.1.101)
• Fixed a Bash tool permission bypass where an escaped flag could be auto-allowed as read-only, potentially leading to arbitrary code execution.(v2.1.98)
• Fixed compound Bash commands bypassing forced permission prompts for safety checks and explicit ask rules in auto and bypass-permissions modes.(v2.1.98)
• Fixed read-only commands with environment variable prefixes not prompting unless the variable is known-safe (e.g., `LANG`, `TZ`).(v2.1.98)
• Fixed redirects to `/dev/tcp/...` or `/dev/udp/...` not prompting instead of auto-allowing.(v2.1.98)
• Fixed stalled streaming responses timing out instead of falling back to non-streaming mode.(v2.1.98)
• Fixed 429 retries burning all attempts too quickly by ensuring exponential backoff applies as a minimum.(v2.1.98)
• Fixed MCP OAuth `oauth.authServerMetadataUrl` configuration override not being honored on token refresh after restart.(v2.1.98)
• Fixed capital letters being dropped to lowercase in xterm and VS Code integrated terminals when the kitty keyboard protocol is active.(v2.1.98)
• Fixed macOS text replacements deleting the trigger word instead of inserting the substitution.(v2.1.98)
• Fixed `--dangerously-skip-permissions` being silently downgraded to accept-edits mode after approving a write to a protected path via Bash.(v2.1.98)
• Fixed managed-settings allow rules remaining active after an admin removed them until process restart.(v2.1.98)
• Fixed `permissions.additionalDirectories` changes not applying mid-session; removed directories now lose access immediately.(v2.1.98)
• Fixed removing a directory from `additionalDirectories` revoking access to the same directory passed via `--add-dir`.(v2.1.98)
• Fixed `Bash(cmd:*)` and `Bash(git commit *)` wildcard permission rules failing to match commands with extra spaces or tabs.(v2.1.98)
• Fixed `Bash(...)` deny rules being downgraded to a prompt for piped commands that mix `cd` with other segments.(v2.1.98)
• Fixed false Bash permission prompts for commands like `cut -d /` and filenames containing `%`.(v2.1.98)
• Fixed permission rules with names matching JavaScript prototype properties (e.g., `toString`) causing `settings.json` to be silently ignored.(v2.1.98)
• Fixed agent team members not inheriting the leader's permission mode when using `--dangerously-skip-permissions`.(v2.1.98)
• Fixed a crash in fullscreen mode when hovering over MCP tool results.(v2.1.98)
• Fixed copying wrapped URLs in fullscreen mode inserting spaces at line breaks.(v2.1.98)
• Fixed file-edit diffs disappearing from the UI on `--resume` when the edited file was larger than 10KB.(v2.1.98)
• Fixed several `/resume` picker issues including uneditable resumes, search state wiping, and transient status text.(v2.1.98)
• Fixed `/export` not honoring absolute paths and `~`, and silently rewriting user-supplied extensions to `.txt`.(v2.1.98)
• Fixed `/effort max` being denied for unknown or future model IDs.(v2.1.98)
• Fixed slash command picker breaking when a plugin's frontmatter `name` is a YAML boolean keyword.(v2.1.98)
• Fixed rate-limit upsell text being hidden after message remounts.(v2.1.98)
• Fixed MCP tools with `_meta["anthropic/maxResultSizeChars"]` not bypassing the token-based persist layer.(v2.1.98)
• Fixed voice mode leaking space characters into input when re-holding the push-to-talk key during transcript processing.(v2.1.98)
• Fixed `DISABLE_AUTOUPDATER` not fully suppressing the npm registry version check and symlink modification.(v2.1.98)
• Fixed a memory leak where Remote Control permission handler entries were retained for the entire session.(v2.1.98)
• Fixed background subagents that fail with an error not reporting partial progress to the parent agent.(v2.1.98)
• Fixed prompt-type Stop/SubagentStop hooks failing on long sessions.(v2.1.98)
• Fixed feedback survey rendering when dismissed.(v2.1.98)
• Fixed Bash `grep -f FILE` / `rg -f FILE` not prompting when reading a pattern file outside the working directory.(v2.1.98)
• Fixed stale subagent worktree cleanup removing worktrees that contain untracked files.(v2.1.98)
• Fixed `sandbox.network.allowMachLookup` not taking effect on macOS.(v2.1.98)
• Fixed `CLAUDE_CODE_MAX_CONTEXT_TOKENS` not honoring `DISABLE_COMPACT` when set.(v2.1.98)
• Fixed VSCode reporting a false-positive "requires git-bash" error on Windows when the path is correctly configured.(v2.1.98)
• Fixed --dangerously-skip-permissions being silently downgraded to accept-edits mode after approving a write to a protected path(v2.1.97)
• Fixed and hardened Bash tool permissions, tightening checks around env-var prefixes and network redirects, and reducing false prompts on common commands(v2.1.97)
• Fixed permission rules with names matching JavaScript prototype properties (e.g. toString) causing settings.json to be silently ignored(v2.1.97)
• Fixed managed-settings allow rules remaining active after an admin removed them until process restart(v2.1.97)
• Fixed permissions.additionalDirectories changes in settings not applying mid-session(v2.1.97)
• Fixed removing a directory from settings.permissions.additionalDirectories revoking access to the same directory passed via --add-dir(v2.1.97)
• Fixed MCP HTTP/SSE connections accumulating ~50 MB/hr of unreleased buffers when servers reconnect(v2.1.97)
• Fixed MCP OAuth oauth.authServerMetadataUrl not being honored on token refresh after restart, fixing ADFS and similar IdPs(v2.1.97)
• Fixed 429 retries burning all attempts in ~13 seconds when the server returns a small Retry-After — exponential backoff now applies as a minimum(v2.1.97)
• Fixed rate-limit upgrade options disappearing after context compaction(v2.1.97)
• Fixed several /resume picker issues: --resume <name> opening uneditable, Ctrl+A reload wiping search, empty list swallowing navigation, task-status text replacing conversation summary, and cross-project staleness(v2.1.97)
• Fixed file-edit diffs disappearing on --resume when the edited file was larger than 10KB(v2.1.97)
• Fixed --resume cache misses and lost mid-turn input from attachment messages not being saved to the transcript(v2.1.97)
• Fixed messages typed while Claude is working not being persisted to the transcript(v2.1.97)
• Fixed prompt-type Stop/SubagentStop hooks failing on long sessions, and hook evaluator API errors displaying "JSON validation failed" instead of the actual message(v2.1.97)
• Fixed subagents with worktree isolation or cwd: override leaking their working directory back to the parent session's Bash tool(v2.1.97)
• Fixed compaction writing duplicate multi-MB subagent transcript files on prompt-too-long retries(v2.1.97)
• Fixed claude plugin update reporting "already at the latest version" for git-based marketplace plugins when the remote had newer commits(v2.1.97)
• Fixed slash command picker breaking when a plugin's frontmatter name is a YAML boolean keyword(v2.1.97)
• Fixed copying wrapped URLs in NO_FLICKER mode inserting spaces at line breaks(v2.1.97)
• Fixed scroll rendering artifacts in NO_FLICKER mode when running inside zellij(v2.1.97)
• Fixed a crash in NO_FLICKER mode when hovering over MCP tool results(v2.1.97)
• Fixed a NO_FLICKER mode memory leak where API retries left stale streaming state(v2.1.97)
• Fixed slow mouse-wheel scrolling in NO_FLICKER mode on Windows Terminal(v2.1.97)
• Fixed custom status line not displaying in NO_FLICKER mode on terminals shorter than 24 rows(v2.1.97)
• Fixed Shift+Enter and Alt/Cmd+arrow shortcuts not working in Warp with NO_FLICKER mode(v2.1.97)
• Fixed Korean/Japanese/Unicode text becoming garbled when copied in no-flicker mode on Windows(v2.1.97)
• Fixed Bedrock SigV4 authentication failing when AWS_BEARER_TOKEN_BEDROCK or ANTHROPIC_BEDROCK_BASE_URL are set to empty strings (as GitHub Actions does for unset inputs)(v2.1.97)
• Fixed an infinite loop where the rate-limit options dialog would repeatedly auto-open after hitting the usage limit, preventing session crashes(v2.1.90)
• Fixed regression where `--resume` caused a full prompt-cache miss on the first request for users with deferred tools, MCP servers, or custom agents(v2.1.90)
• Fixed Edit/Write operations failing with "File content has changed" when a PostToolUse format-on-save hook rewrites the file between consecutive edits(v2.1.90)
• Fixed PreToolUse hooks emitting JSON to stdout and exiting with code 2 not correctly blocking the tool call(v2.1.90)
• Fixed collapsed search/read summary badge appearing multiple times in fullscreen scrollback when a CLAUDE.md file auto-loads during a tool call(v2.1.90)
• Fixed auto mode not respecting explicit user boundaries (e.g., "don't push", "wait for X before Y")(v2.1.90)
• Fixed UI crash that occurred when malformed tool input reached the permission dialog(v2.1.90)
• Hardened PowerShell tool permission checks, fixing trailing & background job bypass, -ErrorAction Break debugger hang, archive-extraction TOCTOU, and parse-fail fallback deny-rule degradation(v2.1.90)
• Fixed Edit(//path/**) and Read(//path/**) allow rules to correctly check the resolved symlink target instead of just the requested path.(v2.1.89)
• Fixed voice push-to-talk activation issues with modifier-combo bindings and resolved WebSocket upgrade rejections in voice mode on Windows.(v2.1.89)
• Fixed Edit/Write tools incorrectly doubling CRLF and stripping Markdown hard line breaks (two trailing spaces) on Windows.(v2.1.89)
• Fixed StructuredOutput schema cache bug that caused approximately 50% failure rate when using multiple schemas.(v2.1.89)
• Fixed memory leak where large JSON inputs were retained as LRU cache keys during long-running sessions.(v2.1.89)
• Fixed crash occurring when removing a message from very large session files (over 50MB).(v2.1.89)
• Fixed LSP server zombie state after a crash; the server now restarts on the next request instead of failing until the session restarts.(v2.1.89)
• Fixed prompt history entries containing CJK or emoji being silently dropped when they fell on a 4KB boundary in ~/.claude/history.jsonl.(v2.1.89)
• Fixed /stats undercounting tokens by excluding subagent usage and losing historical data beyond 30 days when the stats cache format changed.(v2.1.89)
• Fixed -p --resume hangs when deferred tool input exceeds 64KB or lacks a deferred marker, and fixed -p --continue not resuming deferred tools.(v2.1.89)
• Fixed claude-cli:// deep links failing to open on macOS.(v2.1.89)
• Fixed MCP tool errors truncating to only the first content block when the server returned multi-element error content.(v2.1.89)
• Fixed skill reminders and other system context being dropped when sending messages with images via the SDK.(v2.1.89)
• Fixed PreToolUse/PostToolUse hooks receiving file_path as a relative path instead of the documented absolute path for Write/Edit/Read tools.(v2.1.89)
• Fixed autocompact thrash loop by detecting when context refills immediately after compacting three times and stopping with an actionable error.(v2.1.89)
• Fixed prompt cache misses in long sessions caused by tool schema bytes changing mid-session.(v2.1.89)
• Fixed nested CLAUDE.md files being re-injected dozens of times in long sessions that read many files.(v2.1.89)
• Fixed --resume crash when the transcript contained a tool result from an older CLI version or an interrupted write.(v2.1.89)
• Fixed misleading "Rate limit reached" message when the API returned an entitlement error; now shows the actual error.(v2.1.89)
• Fixed hooks if condition filtering not matching compound commands (e.g., ls && git push) or commands with env-var prefixes.(v2.1.89)
• Fixed collapsed search/read group badges duplicating in terminal scrollback during heavy parallel tool use.(v2.1.89)
• Fixed notification invalidates not clearing the currently-displayed notification immediately.(v2.1.89)
• Fixed prompt briefly disappearing after submit when background messages arrived during processing.(v2.1.89)
• Fixed truncation of Devanagari and other combining-mark text in assistant output.(v2.1.89)
• Fixed rendering artifacts on main-screen terminals after layout shifts.(v2.1.89)
• Fixed voice mode failing to request microphone permission on macOS Apple Silicon.(v2.1.89)
• Fixed Shift+Enter submitting instead of inserting a newline on Windows Terminal Preview 1.25.(v2.1.89)
• Fixed periodic UI jitter during streaming in iTerm2 when running inside tmux.(v2.1.89)
• Fixed PowerShell tool incorrectly reporting failures when commands like git push wrote progress to stderr on Windows PowerShell 5.1.(v2.1.89)
• Fixed potential out-of-memory crash when the Edit tool was used on very large files (>1 GiB).(v2.1.89)
• Fixed prompt cache misses in long sessions caused by tool schema bytes changing mid-session(v2.1.88)
• Fixed nested CLAUDE.md files being re-injected dozens of times in long sessions that read many files(v2.1.88)
• Fixed Edit/Write tools doubling CRLF on Windows and stripping Markdown hard line breaks (two trailing spaces)(v2.1.88)
• Fixed `StructuredOutput` schema cache bug causing ~50% failure rate in workflows with multiple schemas(v2.1.88)
• Fixed memory leak where large JSON inputs were retained as LRU cache keys in long-running sessions(v2.1.88)
• Fixed a potential out-of-memory crash when the Edit tool was used on very large files (>1 GiB)(v2.1.88)
• Fixed a crash when removing a message from very large session files (over 50MB)(v2.1.88)
• Fixed `--resume` crash when transcript contains a tool result from an older CLI version or interrupted write(v2.1.88)
• Fixed misleading "Rate limit reached" message when the API returned an entitlement error; now shows the actual error with actionable hints(v2.1.88)
• Fixed LSP server zombie state after crash; server now restarts on next request instead of failing until session restart(v2.1.88)
• Fixed hooks `if` condition filtering not matching compound commands (`ls && git push`) or commands with env-var prefixes (`FOO=bar git push`)(v2.1.88)
• Fixed prompt history entries containing CJK or emoji being silently dropped when they fall on a 4KB boundary in `~/.claude/history.jsonl`(v2.1.88)
• Fixed `/stats` losing historical data beyond 30 days when the stats cache format changes(v2.1.88)
• Fixed `/stats` undercounting tokens by excluding subagent/fork usage(v2.1.88)
• Fixed scrollback disappearing when scrolling up in long sessions(v2.1.88)
• Fixed collapsed search/read group badges duplicating in terminal scrollback during heavy parallel tool use(v2.1.88)
• Fixed notification `invalidates` not clearing the currently-displayed notification immediately(v2.1.88)
• Fixed prompt briefly disappearing after submit when background messages arrived during processing(v2.1.88)
• Fixed long `/btw` responses being clipped with no way to scroll; responses now render in a scrollable viewport(v2.1.88)
• Fixed Devanagari and other combining-mark text being truncated in assistant output(v2.1.88)
• Fixed rendering artifacts on main-screen terminals after layout shifts(v2.1.88)
• Fixed voice mode failing to request microphone permission on macOS Apple Silicon(v2.1.88)
• Fixed voice push-to-talk not activating for some modifier-combo bindings(v2.1.88)
• Fixed voice mode on Windows failing with "WebSocket upgrade rejected with HTTP 101"(v2.1.88)
• Fixed Shift+Enter submitting instead of inserting a newline on Windows Terminal Preview 1.25(v2.1.88)
• Fixed periodic UI jitter during streaming in iTerm2 when running inside tmux(v2.1.88)
• Fixed PowerShell tool incorrectly reporting failures when commands like `git push` wrote progress to stderr on Windows PowerShell 5.1(v2.1.88)
• Fixed SDK error result messages (`error_during_execution`, `error_max_turns`) to correctly set `is_error: true` with descriptive messages(v2.1.88)
• Fixed task notifications being lost when backgrounding a session with Ctrl+B(v2.1.88)
• Fixed PreToolUse/PostToolUse hooks not providing `file_path` as an absolute path for Write/Edit/Read tools(v2.1.88)
• Fixed `/compact` failing with "context exceeded" when the conversation history is too large for the compact request itself.(v2.1.85)
• Fixed `/plugin enable` and `/plugin disable` failing when a plugin's install location differs from its declaration in settings.(v2.1.85)
• Fixed `--worktree` exiting with an error in non-git repositories before the `WorktreeCreate` hook could execute.(v2.1.85)
• Fixed `deniedMcpServers` setting failing to block claude.ai MCP servers.(v2.1.85)
• Fixed `switch_display` in the computer-use tool returning "not available in this session" on multi-monitor setups.(v2.1.85)
• Fixed crash when OpenTelemetry log, metric, or trace exporters are set to `none`.(v2.1.85)
• Fixed diff syntax highlighting not working in non-native builds.(v2.1.85)
• Fixed MCP step-up authorization failing when a refresh token exists; servers requesting elevated scopes now correctly trigger re-authorization.(v2.1.85)
• Fixed memory leak in remote sessions when a streaming response is interrupted.(v2.1.85)
• Fixed persistent ECONNRESET errors during edge connection churn by using a fresh TCP connection on retry.(v2.1.85)
• Fixed prompts getting stuck in the queue after certain slash commands, preventing retrieval with the up-arrow key.(v2.1.85)
• Fixed Python Agent SDK: `type:'sdk'` MCP servers passed via `--mcp-config` not being retained during startup.(v2.1.85)
• Fixed raw key sequences appearing in the prompt when running over SSH or in the VS Code integrated terminal.(v2.1.85)
• Fixed Remote Control session status remaining stuck on "Requires Action" after a permission is resolved.(v2.1.85)
• Fixed shift+enter and meta+enter being intercepted by typeahead suggestions instead of inserting newlines.(v2.1.85)
• Fixed stale content bleeding through when scrolling up during streaming.(v2.1.85)
• Fixed terminal remaining in enhanced keyboard mode after exit in supported terminals (Ghostty, Kitty, WezTerm), ensuring Ctrl+C and Ctrl+D work correctly.(v2.1.85)
• Fixed voice push-to-talk: holding the voice key no longer leaks characters into the text input, and transcripts now insert at the correct position.(v2.1.84)
• Fixed up/down arrow keys being unresponsive when a footer item is focused.(v2.1.84)
• Fixed `Ctrl+U` (kill-to-line-start) being a no-op at line boundaries in multiline input, so repeated `Ctrl+U` now clears across lines.(v2.1.84)
• Fixed null-unbinding a default chord binding (e.g. `"ctrl+x ctrl+k": null`) still entering chord-wait mode instead of freeing the prefix key.(v2.1.84)
• Fixed mouse events inserting literal "mouse" text into transcript search input.(v2.1.84)
• Fixed workflow subagents failing with API 400 when the outer session uses `--json-schema` and the subagent also specifies a schema.(v2.1.84)
• Fixed missing background color behind certain emoji in user message bubbles on some terminals.(v2.1.84)
• Fixed the "allow Claude to edit its own settings for this session" permission option not sticking for users with `Edit(.claude)` allow rules.(v2.1.84)
• Fixed a hang when generating attachment snippets for large edited files.(v2.1.84)
• Fixed MCP tool/resource cache leak on server reconnect.(v2.1.84)
• Fixed a startup performance issue where partial clone repositories (Scalar/GVFS) triggered mass blob downloads.(v2.1.84)
• Fixed native terminal cursor not tracking the text input caret, so IME composition (CJK input) now renders inline and screen readers can follow the input position.(v2.1.84)
• Fixed spurious "Not logged in" errors on macOS caused by transient keychain read failures.(v2.1.84)
• Fixed cold-start race where core tools could be deferred without their bypass active, causing Edit/Write to fail with InputValidationError on typed parameters.(v2.1.84)
• Fixed mouse tracking escape sequences leaking to the shell prompt after exiting the application.(v2.1.83)
• Resolved an issue causing Claude Code to hang on exit specifically on macOS.(v2.1.83)
• Fixed the screen flashing blank after being idle for a few seconds.(v2.1.83)
• Fixed a hang that occurred when diffing very large files with few common lines; diffs now time out gracefully after 5 seconds.(v2.1.83)
• Fixed a 1–8 second UI freeze on startup when voice input was enabled, caused by eager loading of the native audio module.(v2.1.83)
• Fixed a startup regression where Claude Code would wait approximately 3 seconds for the claude.ai MCP config fetch before proceeding.(v2.1.83)
• Fixed the `--mcp-config` CLI flag bypassing enforcement of `allowedMcpServers`/`deniedMcpServers` managed policies.(v2.1.83)
• Fixed claude.ai MCP connectors (Slack, Gmail, etc.) not being available when using single-turn `--print` mode.(v2.1.83)
• Fixed the `caffeinate` process not terminating correctly upon Claude Code exit, which prevented Mac systems from sleeping.(v2.1.83)
• Fixed bash mode not activating correctly when tab-accepting command suggestions prefixed with !.(v2.1.83)
• Fixed stale slash command selection showing the wrong highlighted command after navigating suggestions.(v2.1.83)
• Fixed the /config menu incorrectly showing both the search cursor and list selection simultaneously.(v2.1.83)
• Fixed background subagents becoming invisible after context compaction, preventing duplicate agents from spawning.(v2.1.83)
• Fixed background agent tasks getting stuck in a "running" state when git or API calls hung during cleanup.(v2.1.83)
• Fixed the --channels flag incorrectly showing "Channels are not currently available" on the first launch after an upgrade.(v2.1.83)
• Fixed uninstalled plugin hooks continuing to fire until the next session started.(v2.1.83)
• Fixed queued commands flickering during streaming responses.(v2.1.83)
• Fixed slash commands being sent to the model as plain text when submitted while a message was already processing.(v2.1.83)
• Fixed scrollback jumping to the top when collapsed read/search groups finished loading after scrolling offscreen.(v2.1.83)
• Fixed scrollback jumping to the top when the model started or stopped thinking.(v2.1.83)
• Fixed loss of SDK session history upon resume caused by hook progress/attachment messages forking the parentUuid chain.(v2.1.83)
• Fixed copy-on-select functionality failing when the mouse button was released outside the terminal window.(v2.1.83)
• Fixed ghost characters appearing in height-constrained lists when items overflowed their bounds.(v2.1.83)
• Fixed `Ctrl+B` interfering with readline backward-char functionality at an idle prompt; it now only fires when a foreground task can be backgrounded.(v2.1.83)
• Fixed tool result files never being cleaned up, ignoring the `cleanupPeriodDays` setting.(v2.1.83)
• Fixed the space key being swallowed for up to 3 seconds after releasing voice hold-to-talk.(v2.1.83)
• Fixed ALSA library errors corrupting the terminal UI when using voice mode on Linux systems lacking audio hardware (e.g., Docker, headless, WSL1).(v2.1.83)
• Fixed voice mode SoX detection issues on Termux/Android where spawning `which` is kernel-restricted.(v2.1.83)
• Fixed Remote Control sessions incorrectly showing as Idle in the web session list while actively running.(v2.1.83)
• Fixed footer navigation selecting an invisible Remote Control pill when in config-driven mode.(v2.1.83)
• Fixed a memory leak in remote sessions where tool use IDs accumulated indefinitely.(v2.1.83)
• [VSCode] Fixed session history not loading correctly when reopening a session via URL or after restarting the editor.(v2.1.83)
• Fixed multiple concurrent Claude Code sessions requiring repeated re-authentication when one session refreshed its OAuth token.(v2.1.81)
• Fixed voice mode silently swallowing retry failures and showing a misleading "check your network" message instead of the actual error.(v2.1.81)
• Fixed voice mode audio not recovering when the server silently drops the WebSocket connection.(v2.1.81)
• Fixed structured-outputs beta header causing 400 errors on proxy gateways by ensuring CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS correctly suppresses it.(v2.1.81)
• Fixed --channels bypass issue for Team/Enterprise organizations lacking other managed settings.(v2.1.81)
• Fixed a crash occurring specifically on Node.js 18 environments.(v2.1.81)
• Fixed unnecessary permission prompts appearing for Bash commands containing dashes within strings.(v2.1.81)
• Fixed plugin hooks blocking prompt submission when the plugin directory was deleted during an active session.(v2.1.81)
• Fixed a race condition where background agent task output could hang indefinitely if the task completed between polling intervals.(v2.1.81)
• Fixed resuming a session in a worktree now correctly switches the user back to that worktree.(v2.1.81)
• Fixed /btw command not including pasted text when used during an active response.(v2.1.81)
• Fixed a race condition where fast Cmd+Tab followed by paste could fail due to clipboard copy timing under tmux.(v2.1.81)
• Fixed terminal tab title not updating correctly with an auto-generated session description.(v2.1.81)
• Fixed invisible hook attachments inflating the message count when viewing transcripts.(v2.1.81)
• Fixed Remote Control sessions showing a generic title instead of deriving the title from the first prompt.(v2.1.81)
• Fixed /rename command not reliably syncing the title for Remote Control sessions.(v2.1.81)
• Fixed Remote Control /exit command not reliably archiving the session.(v2.1.81)
• Fixed Windows PATH inheritance issue for the Bash tool when using Git Bash within VSCode (a regression from v2.1.78).(v2.1.81)
• Fixed the `claude -p` command hanging when executed as a subprocess without explicit stdin.(v2.1.79)
• Fixed Ctrl+C not functioning correctly when using `claude -p` (print) mode.(v2.1.79)
• Fixed the `/btw` command incorrectly returning the main agent's output instead of answering the side question during streaming.(v2.1.79)
• Fixed voice mode failing to activate correctly on startup when `voiceEnabled: true` was configured.(v2.1.79)
• Fixed incorrect left/right arrow navigation behavior within the `/permissions` menu.(v2.1.79)
• Fixed the `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` environment variable failing to prevent the terminal title from being set on startup.(v2.1.79)
• Fixed custom status lines appearing blank when workspace trust settings were blocking them.(v2.1.79)
• Fixed enterprise users being unable to retry requests after encountering rate limit (429) errors.(v2.1.79)
• Fixed `SessionEnd` hooks failing to fire when using interactive `/resume` to switch between sessions.(v2.1.79)
• Fixed the thinking pill displaying "Thinking" instead of the actual thought duration after a response finished in VS Code.(v2.1.79)
• Fixed the session diff button being missing when opening sessions from the left sidebar in VS Code.(v2.1.79)
• Fixed `git log HEAD` failing with "ambiguous argument" inside sandboxed Bash on Linux, and stub files polluting `git status` in the working directory(v2.1.78)
• Fixed `cc log` and `--resume` silently truncating conversation history on large sessions (>5 MB) that used subagents(v2.1.78)
• Fixed infinite loop when API errors triggered stop hooks that re-fed blocking errors to the model(v2.1.78)
• Fixed `deny: ["mcp__servername"]` permission rules not removing MCP server tools before sending to the model, allowing it to see and attempt blocked tools(v2.1.78)
• Fixed `sandbox.filesystem.allowWrite` not working with absolute paths (previously required `//` prefix)(v2.1.78)
• Fixed `/sandbox` Dependencies tab showing Linux prerequisites on macOS instead of macOS-specific info(v2.1.78)
• Fixed silent sandbox disable when `sandbox.enabled: true` is set but dependencies are missing; now shows a visible startup warning(v2.1.78)
• Fixed `.git`, `.claude`, and other protected directories being writable without a prompt in `bypassPermissions` mode(v2.1.78)
• Fixed ctrl+u in normal mode scrolling instead of readline kill-line (ctrl+u/ctrl+d half-page scroll moved to transcript mode only)(v2.1.78)
• Fixed voice mode modifier-combo push-to-talk keybindings (e.g. ctrl+k) requiring a hold instead of activating immediately(v2.1.78)
• Fixed voice mode not working on WSL2 with WSLg (Windows 11); WSL1/Win10 users now get a clear error(v2.1.78)
• Fixed `--worktree` flag not loading skills and hooks from the worktree directory(v2.1.78)
• Fixed `CLAUDE_CODE_DISABLE_GIT_INSTRUCTIONS` and `includeGitInstructions` setting not suppressing the git status section in the system prompt(v2.1.78)
• Fixed Bash tool not finding Homebrew and other PATH-dependent binaries when VS Code is launched from Dock/Spotlight(v2.1.78)
• Fixed washed-out Claude orange color in VS Code/Cursor/code-server terminals that don't advertise truecolor support(v2.1.78)
• Fixed `ANTHROPIC_BETAS` environment variable being silently ignored when using Haiku models(v2.1.78)
• Fixed queued prompts being concatenated without a newline separator(v2.1.78)
• Fixed a brief flash of the login screen when opening the sidebar while already authenticated in VSCode(v2.1.78)
• Fixed "API Error: Rate limit reached" when selecting Opus in VSCode; model dropdown no longer offers 1M context variant to subscribers whose plan tier is unknown(v2.1.78)
• Fixed the "Always Allow" setting for compound bash commands (e.g., cd src && npm test) incorrectly saving a single rule for the full string instead of per-subcommand, which caused dead rules and repeated prompts.(v2.1.77)
• Fixed the auto-updater accumulating tens of gigabytes of memory by starting overlapping binary downloads when the slash-command overlay repeatedly opened and closed.(v2.1.77)
• Fixed the --resume command silently truncating recent conversation history due to a race condition between memory-extraction writes and the main transcript.(v2.1.77)
• Fixed PreToolUse hooks returning "allow" bypassing deny permission rules, including enterprise managed settings.(v2.1.77)
• Fixed the Write tool silently converting line endings when overwriting CRLF files or creating files in CRLF directories.(v2.1.77)
• Fixed memory growth in long-running sessions caused by progress messages surviving compaction.(v2.1.77)
• Fixed cost and token usage not being tracked when the API falls back to non-streaming mode.(v2.1.77)
• Fixed CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS not stripping beta tool-schema fields, which caused proxy gateways to reject requests.(v2.1.77)
• Fixed the Bash tool reporting errors for successful commands when the system temp directory path contains spaces.(v2.1.77)
• Fixed paste operation being lost when typing immediately after pasting.(v2.1.77)
• Fixed Ctrl+D in the /feedback text input deleting forward instead of exiting the session on the second press.(v2.1.77)
• Fixed an API error occurring when dragging a 0-byte image file into the prompt.(v2.1.77)
• Fixed Claude Desktop sessions incorrectly using the terminal CLI's configured API key instead of OAuth.(v2.1.77)
• Fixed git-subdir plugins located at different subdirectories of the same monorepo commit colliding in the plugin cache.(v2.1.77)
• Fixed ordered list numbers not rendering correctly in the terminal UI.(v2.1.77)
• Fixed a race condition where stale-worktree cleanup could delete an agent worktree that was just resumed from a previous crash.(v2.1.77)
• Fixed input deadlock occurring when opening /mcp or similar dialogs while the agent is running.(v2.1.77)
• Fixed Backspace and Delete keys not functioning in vim NORMAL mode.(v2.1.77)
• Fixed the status line not updating when vim mode is toggled on or off.(v2.1.77)
• Fixed hyperlinks opening twice on Cmd+click in VS Code, Cursor, and other xterm.js-based terminals.(v2.1.77)
• Fixed background colors rendering as terminal-default inside tmux when using the default configuration.(v2.1.77)
• Fixed iTerm2 session crash when selecting text inside tmux over SSH.(v2.1.77)
• Fixed clipboard copy silently failing in tmux sessions; the copy toast now correctly indicates whether to paste with ⌘V or tmux prefix+].(v2.1.77)
• Fixed ←/→ keys accidentally switching tabs in settings, permissions, and sandbox dialogs while navigating lists.(v2.1.77)
• Fixed IDE integration not auto-connecting when Claude Code is launched inside tmux or screen.(v2.1.77)
• Fixed CJK characters visually bleeding into adjacent UI elements when clipped at the right edge.(v2.1.77)
• Fixed teammate panes not closing when the leader exits.(v2.1.77)
• Fixed iTerm2 auto mode not correctly detecting iTerm2 for native split-pane teammates.(v2.1.77)
• Fixed the Agent tool incorrectly accepting a resume parameter; users must now use SendMessage({to: agentId}) to continue a previously spawned agent.(v2.1.77)
• Fixed deferred tools losing their input schemas after conversation compaction, which caused array and number parameters to be rejected with type errors(v2.1.76)
• Fixed slash commands incorrectly showing "Unknown skill"(v2.1.76)
• Fixed plan mode incorrectly asking for re-approval after the plan was already accepted(v2.1.76)
• Fixed voice mode swallowing keypresses while a permission dialog or plan editor was open(v2.1.76)
• Fixed `/voice` command not working on Windows when installed via npm(v2.1.76)
• Fixed spurious "Context limit reached" error when invoking a skill with `model:` frontmatter on a 1M-context session(v2.1.76)
• Fixed "adaptive thinking is not supported on this model" error when using non-standard model strings(v2.1.76)
• Fixed `Bash(cmd:*)` permission rules not matching when a quoted argument contains #(v2.1.76)
• Fixed "don't ask again" in the Bash permission dialog showing the full raw command for pipes and compound commands(v2.1.76)
• Fixed auto-compaction retrying indefinitely after consecutive failures by implementing a circuit breaker that stops after 3 attempts(v2.1.76)
• Fixed MCP reconnect spinner persisting after successful reconnection(v2.1.76)
• Fixed LSP plugins not registering servers when the LSP Manager initialized before marketplaces were reconciled(v2.1.76)
• Fixed clipboard copying in tmux over SSH by attempting both direct terminal write and tmux clipboard integration(v2.1.76)
• Fixed `/export` showing only the filename instead of the full file path in the success message(v2.1.76)
• Fixed transcript not auto-scrolling to new messages after selecting text(v2.1.76)
• Fixed Escape key not working to exit the login method selection screen(v2.1.76)
• Fixed several Remote Control issues, including sessions silently dying when the server reaps an idle environment, rapid messages being queued one-at-a-time instead of batched, and stale work items causing redelivery after JWT refresh(v2.1.76)
• Fixed bridge sessions failing to recover after extended WebSocket disconnects(v2.1.76)
• Fixed slash commands not being found when typing the exact name of a soft-hidden command(v2.1.76)
• [VSCode] Fixed gitignore patterns containing commas silently excluding entire filetypes from the @-mention file picker(v2.1.76)
• Fixed memory leak where streaming API response buffers were not released when the generator was terminated early, causing unbounded RSS growth on the Node.js/npm code path(v2.1.74)
• Fixed managed policy ask rules being bypassed by user allow rules or skill allowed-tools(v2.1.74)
• Fixed full model IDs (e.g., claude-opus-4-5) being silently ignored in agent frontmatter model: field and --agents JSON config; agents now accept the same model values as --model(v2.1.74)
• Fixed MCP OAuth authentication hanging when the callback port is already in use(v2.1.74)
• Fixed MCP OAuth refresh never prompting for re-auth after the refresh token expires for OAuth servers that return errors with HTTP 200 (e.g. Slack)(v2.1.74)
• Fixed voice mode silently failing on the macOS native binary for users whose terminal had never been granted microphone permission; the binary now includes the audio-input entitlement so macOS prompts correctly(v2.1.74)
• Fixed SessionEnd hooks being killed after 1.5 s on exit regardless of hook.timeout; this is now configurable via CLAUDE_CODE_SESSIONEND_HOOKS_TIMEOUT_MS(v2.1.74)
• Fixed /plugin install failing inside the REPL for marketplace plugins with local sources(v2.1.74)
• Fixed marketplace update not syncing git submodules; plugin sources in submodules no longer break after update(v2.1.74)
• Fixed unknown slash commands with arguments silently dropping input; the command now shows your input as a warning(v2.1.74)
• Fixed Hebrew, Arabic, and other RTL text not rendering correctly in Windows Terminal, conhost, and VS Code integrated terminal(v2.1.74)
• Fixed LSP servers not working on Windows due to malformed file URIs(v2.1.74)
• [VSCode] Fixed delete button not working for Untitled sessions(v2.1.74)
• Fixed slow exits when background tasks or hooks were slow to respond.(v2.1.72)
• Fixed agent task progress stuck on "Initializing…".(v2.1.72)
• Fixed skill hooks firing twice per event when a hooks-enabled skill is invoked by the model.(v2.1.72)
• Fixed several voice mode issues: occasional input lag, false "No speech detected" errors after releasing push-to-talk, and stale transcripts re-filling the prompt after submission.(v2.1.72)
• Fixed `--continue` not resuming from the most recent point after `--compact`.(v2.1.72)
• Fixed bash security parsing edge cases.(v2.1.72)
• Fixed several plugin issues: installation failing on Windows with `EEXIST` error in OneDrive folders, marketplace blocking user-scope installs when a project-scope install exists, `CLAUDE_CODE_PLUGIN_CACHE_DIR` creating literal `~` directories, and `plugin.json` with marketplace-only fields failing to load.(v2.1.72)
• Fixed feedback survey appearing too frequently in long sessions.(v2.1.72)
• Fixed `--effort` CLI flag being reset by unrelated settings writes on startup.(v2.1.72)
• Fixed backgrounded Ctrl+B queries losing their transcript or corrupting the new conversation after `/clear`.(v2.1.72)
• Fixed `/clear` killing background agent/bash tasks — only foreground tasks are now cleared.(v2.1.72)
• Fixed worktree isolation issues: Task tool resume not restoring cwd, and background task notifications missing `worktreePath` and `worktreeBranch`.(v2.1.72)
• Fixed `/model` not displaying results when run while Claude is working.(v2.1.72)
• Fixed digit keys selecting menu options instead of typing in plan mode permission prompt's text input.(v2.1.72)
• Fixed sandbox permission issues: certain file write operations incorrectly allowed without prompting, and output redirections to allowlisted directories (like `/tmp/claude/`) prompting unnecessarily.(v2.1.72)
• Fixed prompt cache invalidation in SDK `query()` calls, reducing input token costs up to 12x.(v2.1.72)
• Fixed Escape key becoming unresponsive after cancelling a query.(v2.1.72)
• Fixed double Ctrl+C not exiting when background agents or tasks are running.(v2.1.72)
• Fixed team agents to inherit the leader's model.(v2.1.72)
• Fixed "Always Allow" saving permission rules that never match again.(v2.1.72)
• Fixed several hooks issues: `transcript_path` pointing to the wrong directory for resumed/forked sessions, agent `prompt` being silently deleted from settings.json on every settings write, PostToolUse block reason displaying twice, async hooks not receiving stdin with bash `read -r`, and validation error message showing an example that fails validation.(v2.1.72)
• Fixed session crashes in Desktop/SDK when Read returned files containing U+2028/U+2029 characters.(v2.1.72)
• Fixed terminal title being cleared on exit even when `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` was set.(v2.1.72)
• Fixed several permission rule matching issues: wildcard rules not matching commands with heredocs, embedded newlines, or no arguments; `sandbox.excludedCommands` failing with env var prefixes; "always allow" suggesting overly broad prefixes for nested CLI tools; and deny rules not applying to all command forms.(v2.1.72)
• Fixed oversized and truncated images from Bash data-URL output.(v2.1.72)
• Fixed a crash when resuming sessions that contained Bedrock API errors.(v2.1.72)
• Fixed intermittent "expected boolean, received string" validation errors on Edit, Bash, and Grep tool inputs.(v2.1.72)
• Fixed multi-line session titles when forking from a conversation whose first message contained newlines.(v2.1.72)
• Fixed queued messages not showing attached images, and images being lost when pressing ↑ to edit a queued message.(v2.1.72)
• Fixed parallel tool calls where a failed Read/WebFetch/Glob would cancel its siblings — only Bash errors now cascade.(v2.1.72)
• VSCode: Fixed scroll speed in integrated terminals not matching native terminals.(v2.1.72)
• VSCode: Fixed Shift+Enter submitting input instead of inserting a newline for users with older keybindings.(v2.1.72)
• Fixed a security issue where `statusLine` and `fileSuggestion` hook commands could execute without workspace trust acceptance in interactive mode.(v2.1.51)
• Fixed a security issue where HTTP hooks could interpolate arbitrary environment variables from header values; env var interpolation now requires an explicit `allowedEnvVars` list.(v2.1.51)
• Fixed a bug where duplicate `control_response` messages (e.g. from WebSocket reconnects) could cause API 400 errors by pushing duplicate assistant messages into the conversation.(v2.1.51)
• Fixed slash command autocomplete crashing when a plugin's SKILL.md description is a YAML array or other non-string type(v2.1.51)
• Fixed an issue where resumed sessions could be invisible when the working directory contained symlinks due to inconsistent path resolution during startup.(v2.1.50)
• Fixed session data loss upon SSH disconnect by ensuring session data is flushed before hooks and analytics during graceful shutdown.(v2.1.50)
• Fixed native modules failing to load on Linux systems using glibc older than 2.30 (e.g., RHEL 8).(v2.1.50)
• Fixed a memory leak in agent teams where completed teammate tasks were not being garbage collected from session state.(v2.1.50)
• Fixed `CLAUDE_CODE_SIMPLE` mode to correctly strip down skills, session memory, custom agents, and CLAUDE.md token counting.(v2.1.50)
• Fixed the `/mcp reconnect` command from freezing the CLI when provided with a non-existent server name.(v2.1.50)
• Fixed a memory leak where completed task state objects were not being removed from AppState.(v2.1.50)
• Fixed an issue where MCP tools were not discovered when tool search was enabled and a prompt was provided as a launch argument.(v2.1.50)
• Fixed unbounded memory growth in long sessions by capping file history snapshots.(v2.1.50)
• Fixed a memory leak where LSP diagnostic data was not cleaned up after delivery.(v2.1.50)
• Fixed a memory leak where completed task output was not being freed from memory.(v2.1.50)
• Fixed a prompt suggestion cache regression that resulted in lower cache hit rates.(v2.1.50)
• Fixed a memory leak where TaskOutput retained recent lines after cleanup.(v2.1.50)
• Fixed a memory leak in CircularBuffer where cleared items were retained in the backing array.(v2.1.50)
• Fixed a memory leak in shell command execution where ChildProcess and AbortController references were retained after cleanup.(v2.1.50)
• Fixed Ctrl+C and ESC being silently ignored when background agents are running; pressing twice within 3 seconds now kills all background agents.(v2.1.49)
• Fixed prompt suggestion cache regression that was reducing cache hit rates.(v2.1.49)
• Fixed `plugin enable` and `plugin disable` to auto-detect the correct scope when `--scope` is omitted, instead of defaulting to user scope.(v2.1.49)
• Fixed verbose mode not updating the thinking block display when toggled via `/config` by ensuring memo comparators correctly detect verbose changes.(v2.1.49)
• Fixed unbounded WASM memory growth during long sessions by periodically resetting the tree-sitter parser.(v2.1.49)
• Fixed potential rendering issues caused by stale yoga layout references.(v2.1.49)
• Fixed unbounded memory growth during long-running sessions caused by Yoga WASM linear memory never shrinking.(v2.1.49)
• Fixed `disableAllHooks` setting to respect managed settings hierarchy, preventing non-managed settings from disabling policy-set managed hooks.(v2.1.49)
• Fixed the `--resume` session picker showing raw XML tags for sessions starting with commands like `/clear`; it now correctly falls through to the session ID fallback.(v2.1.49)
• Fixed FileWriteTool line counting to preserve intentional trailing blank lines instead of stripping them.(v2.1.47)
• Fixed Windows terminal rendering bugs where line counts showed incorrect values (always 1) due to `os.EOL` (`\r\n`) in display code.(v2.1.47)
• Fixed bold and colored text in markdown output shifting to the wrong characters on Windows due to `\r\n` line endings.(v2.1.47)
• Fixed compaction failing when conversations contain many PDF documents by stripping document blocks alongside images before sending to the compaction API.(v2.1.47)
• Fixed bash tool output being silently discarded on Windows when using MSYS2 or Cygwin shells.(v2.1.47)
• Fixed the bash permission classifier from incorrectly granting permissions based on hallucinated descriptions.(v2.1.47)
• Fixed user-defined agents only loading one file on NFS/FUSE filesystems that report zero inodes.(v2.1.47)
• Fixed plugin agent skills silently failing to load when referenced by bare name instead of fully-qualified plugin name.(v2.1.47)
• Fixed CWD tracking temp files never being cleaned up on Windows, preventing indefinite accumulation.(v2.1.47)
• Fixed API 400 errors ("thinking blocks cannot be modified") in sessions with concurrent agents caused by interleaved streaming content blocks.(v2.1.47)
• Fixed a single file write/edit error from aborting all other parallel file write/edit operations; independent mutations now complete on failure.(v2.1.47)
• Fixed custom session titles set via `/rename` being lost after resuming a conversation.(v2.1.47)
• Fixed collapsed read/search hint text overflowing on narrow terminals by truncating from the start.(v2.1.47)
• Fixed bash commands using backslash-newline continuation lines (`\` followed by newline) producing spurious empty arguments.(v2.1.47)
• Fixed built-in slash commands being hidden from the autocomplete dropdown when many user skills are installed.(v2.1.47)
• Fixed MCP servers not appearing in the MCP Management Dialog after deferred loading.(v2.1.47)
• Fixed session name persisting in status bar after `/clear` command.(v2.1.47)
• Fixed crash when a skill's `name` or `description` in SKILL.md frontmatter is a bare number, by coercing the value to a string.(v2.1.47)
• Fixed `/resume` silently dropping sessions when the first message exceeds 16KB or uses array-format content.(v2.1.47)
• Fixed `claude doctor` misclassifying mise and asdf-managed installations as native installs.(v2.1.47)
• Fixed zsh heredoc failing with "read-only file system" error in sandboxed commands.(v2.1.47)
• Fixed agent progress indicator showing inflated tool use count.(v2.1.47)
• Fixed image pasting not working on WSL2 systems where Windows copies images as BMP format.(v2.1.47)
• Fixed background agent results returning raw transcript data instead of the agent's final answer.(v2.1.47)
• Fixed Warp terminal incorrectly prompting for Shift+Enter setup when it supports it natively.(v2.1.47)
• Fixed CJK wide characters causing misaligned timestamps and layout elements in the TUI.(v2.1.47)
• Fixed custom agent `model` field in `.claude/agents/*.md` being ignored when spawning team teammates.(v2.1.47)
• Fixed plan mode being lost after context compaction, causing the model to switch from planning to implementation mode.(v2.1.47)
• Fixed `alwaysThinkingEnabled: true` in settings.json not enabling thinking mode on Bedrock and Vertex providers.(v2.1.47)
• Fixed `tool_decision` OTel telemetry event not being emitted in headless/SDK mode.(v2.1.47)
• Fixed session name being lost after context compaction; renamed sessions now preserve their custom title through compaction.(v2.1.47)
• Fixed `/resume <session-id>` failing to find sessions whose first message exceeds 16KB.(v2.1.47)
• Fixed "Always allow" on multiline bash commands creating invalid permission patterns that corrupt settings.(v2.1.47)
• Fixed React crash (error #31) when a skill's `argument-hint` in SKILL.md frontmatter uses YAML sequence syntax, by coercing the value to a string.(v2.1.47)
• Fixed crash when using `/fork` on sessions that used web search by gracefully handling null entries in search results.(v2.1.47)
• Fixed read-only git commands triggering FSEvents file watcher loops on macOS by adding --no-optional-locks flag.(v2.1.47)
• Fixed custom agents and skills not being discovered when running from a git worktree; project-level agent/skill directories are now included.(v2.1.47)
• Fixed non-interactive subcommands like `claude doctor` and `claude plugin validate` being blocked inside nested Claude sessions.(v2.1.47)
• Windows: Fixed the same CLAUDE.md file being loaded twice when drive letter casing differs between paths.(v2.1.47)
• Fixed inline code spans in markdown being incorrectly parsed as bash commands.(v2.1.47)
• Fixed teammate spinners not respecting custom spinnerVerbs from settings.(v2.1.47)
• Fixed shell commands permanently failing after a command deletes its own working directory.(v2.1.47)
• Fixed hooks (PreToolUse, PostToolUse) silently failing.(v2.1.47)
• Fixed AWS authentication refresh hanging indefinitely by implementing a 3-minute timeout(v2.1.41)
• Fixed file resolution failing for @-mentions that include anchor fragments (e.g., `@README.md#installation`)(v2.1.41)
• Fixed FileReadTool blocking the main process when reading from FIFOs, `/dev/stdin`, or very large files(v2.1.41)
• Fixed background task notifications failing to deliver when operating in streaming Agent SDK mode(v2.1.41)
• Fixed cursor jumping to the end of the input field on every keystroke within classifier rule input(v2.1.41)
• Fixed markdown link display text being incorrectly dropped, showing only the raw URL(v2.1.41)
• Fixed users being incorrectly shown auto-compact failure error notifications(v2.1.41)
• Fixed permission wait time being incorrectly included in the elapsed time displayed for subagents(v2.1.41)
• Fixed proactive ticks firing erroneously while the tool is in plan mode(v2.1.41)
• Fixed stale permission rules not being cleared when settings are modified on disk(v2.1.41)
• Fixed hook blocking errors incorrectly displaying stderr content within the user interface(v2.1.41)
• Fixed agent teammate sessions in tmux to send and receive messages correctly(v2.1.33)
• Fixed warnings about agent teams not being available on your current plan(v2.1.33)
• Fixed an issue where submitting a new message while the model was in extended thinking would interrupt the thinking phase(v2.1.33)
• Fixed an API error that could occur when aborting mid-stream, where whitespace text combined with a thinking block would bypass normalization and produce an invalid request(v2.1.33)
• Fixed API proxy compatibility issue where 404 errors on streaming endpoints no longer triggered non-streaming fallback(v2.1.33)
• Fixed an issue where proxy settings configured via `settings.json` environment variables were not applied to WebFetch and other HTTP requests on the Node.js build(v2.1.33)
• Fixed `/resume` session picker showing raw XML markup instead of clean titles for sessions started with slash commands(v2.1.33)
• VSCode: Fixed scroll-to-bottom under-scrolling on initial session load and session switch(v2.1.33)
• Fixed crashes occurring on processors that lack AVX instruction support.(v2.1.19)
• Fixed dangling Claude Code processes when the terminal is closed by implementing SIGKILL as a fallback upon catching EIO errors from `process.exit()`. (v2.1.19)
• Fixed `/rename` and `/tag` commands failing to update the correct session when resuming from a different directory (e.g., git worktrees).(v2.1.19)
• Fixed session resuming by custom title failing when executed from a different directory.(v2.1.19)
• Fixed pasted text content being lost when using prompt stash (Ctrl+S) and subsequent restore.(v2.1.19)
• Fixed the agent list incorrectly displaying "Sonnet (default)" instead of "Inherit (default)" for agents without an explicit model setting.(v2.1.19)
• Fixed backgrounded hook commands not returning early, which previously caused the session to wait unnecessarily.(v2.1.19)
• Fixed file write preview incorrectly omitting empty lines.(v2.1.19)
• Fixed API errors related to orphan tool_result blocks occurring during long sessions with parallel tool calls.(v2.1.9)
• Fixed MCP server reconnection hanging when the cached connection promise fails to resolve.(v2.1.9)
• Fixed Ctrl+Z suspend functionality not working in terminals utilizing the Kitty keyboard protocol (including Ghostty, iTerm2, kitty, and WezTerm).(v2.1.9)
• Fixed plan files persisting across `/clear` commands, ensuring a fresh plan file is used after clearing a conversation.(v2.1.3)
• Fixed false skill duplicate detection on filesystems with large inodes (e.g., ExFAT) by implementing 64-bit precision for inode values.(v2.1.3)
• Fixed mismatch between the background task count displayed in the status bar and the items shown in the tasks dialog.(v2.1.3)
• Fixed sub-agents using the incorrect model during conversation compaction.(v2.1.3)
• Fixed web search in sub-agents using the incorrect model.(v2.1.3)
• Fixed trust dialog acceptance when running from the home directory, ensuring trust-requiring features like hooks are enabled for the session.(v2.1.3)
• Fixed a command injection vulnerability in bash command processing where malformed input could execute arbitrary commands(v2.1.2)
• Fixed a memory leak where tree-sitter parse trees were not being freed, causing WASM memory to grow unbounded over long sessions(v2.1.2)
• Fixed binary files (images, PDFs, etc.) being accidentally included in memory when using @include directives in CLAUDE.md files(v2.1.2)
• Fixed updates incorrectly claiming another installation is in progress(v2.1.2)
• Fixed crash when socket files exist in watched directories(v2.1.2)
• Fixed remote session URL and teleport being broken when using /tasks command(v2.1.2)
• Fixed MCP tool names being exposed in analytics events by sanitizing user-specific server configurations(v2.1.2)
• Fixed usage display not updating after manual compact in VSCode(v2.1.2)