Claude Code mcp

All MCP Bug Fixes

• Fixed terminal styling degradation in very long sessions by recycling the renderer's style pool.(v2.1.152)
• Fixed the sandbox-enabled warning failing to appear in condensed startup mode; it now shows in all layouts.(v2.1.152)
• Fixed the loading spinner incorrectly showing "still thinking"/"almost done thinking" while a tool was running, and now resets the thinking status after each tool execution.(v2.1.152)
• Fixed focus mode displaying a spurious "N messages hidden" count when no hidden activity occurred.(v2.1.152)
• Fixed clicking a link inside an expanded tool result incorrectly collapsing the section instead of opening the link.(v2.1.152)
• Fixed various markdown rendering issues including table cell borders inheriting inline code color, wrapped continuation lines losing style, and empty header cells showing an incorrect label in narrow-terminal stacked layout.(v2.1.152)
• Fixed plugin MCP servers with identical commands but different environment variables being incorrectly deduplicated.(v2.1.152)
• Fixed `/doctor` reporting marketplace or plugin not found errors due to stale `enabledPlugins` entries referencing removed resources.(v2.1.152)
• Fixed plugins tracking a git branch silently failing to receive updates after the plugin registry was rebuilt.(v2.1.152)
• Fixed remote MCP servers failing to connect in Claude Code Remote sessions when the egress proxy was enabled.(v2.1.152)
• Fixed the effort-change confirmation dialog appearing unnecessarily when the conversation was empty or when switching between equivalent effort levels.(v2.1.152)
• Fixed the Agent tool description incorrectly referencing an unavailable agent list when running with `--bare` or attachments disabled.(v2.1.152)
• Fixed a background worker crash in `claude agents` when accepting a stale permission prompt after a subagent cancellation.(v2.1.152)
• Fixed `cache_creation_input_tokens` reporting as 0 in usage statistics when cache writes were reported only via the nested `cache_creation` breakdown.(v2.1.152)
• Fixed the PushNotification tool incorrectly reporting failure when Remote Control was enabled in SDK-hosted sessions.(v2.1.152)
• Fixed sessions getting stuck after model or login switches by proactively stripping stale thinking-block signatures from history.(v2.1.152)
• Fixed a PowerShell permission bypass where built-in cd functions (cd.., cd\, cd~) changed the working directory undetected, potentially allowing commands to read outside the workspace.(v2.1.149)
• Fixed the sandbox write allowlist in git worktrees to cover only the shared .git directory, correctly denying access to the entire main repository root (except hooks/ and config).(v2.1.149)
• Fixed PowerShell prefix/wildcard allow rules (e.g. PowerShell(dotnet.exe build *)) not pre-approving native executables and scripts.(v2.1.149)
• Fixed a permission-analysis gap where the parser trusted stale variable-tracking values for PWD/OLDPWD/DIRSTACK across cd/pushd/popd operations.(v2.1.149)
• Fixed the find command in the Bash tool exhausting the macOS system file/vnode table and crashing the host when processing large directory trees.(v2.1.149)
• Fixed the managed-settings approval dialog freezing the terminal after accepting settings at startup.(v2.1.149)
• Fixed /ultraplan and remote session creation failing with "Could not capture uncommitted changes" when the working tree genuinely has no uncommitted changes.(v2.1.149)
• Fixed otelHeadersHelper failing silently when the script path contains spaces; failures are now reported in /doctor and the debug log.(v2.1.149)
• Fixed the thinking spinner remaining amber across tool calls and persisting onto subsequent fresh thinking bursts.(v2.1.149)
• Fixed collapsed Bash output reporting an incorrect hidden-line count for outputs containing many short lines.(v2.1.149)
• Fixed slash-command argument-hint clipping trailing typed characters when the hint overflows the input box.(v2.1.149)
• Fixed argument-hint and progressive arg suggestions not appearing after Tab-completing a skill whose frontmatter name differs from its directory basename.(v2.1.149)
• Fixed the status bar incorrectly showing the user's baseline /effort setting instead of the effort level specified by skill/agent effort: frontmatter.(v2.1.149)
• Fixed the Ctrl+O transcript view freezing upon opening instead of correctly tailing new messages.(v2.1.149)
• Fixed editing a recalled prompt-history entry losing the edit when navigating further up/down using arrow keys.(v2.1.149)
• Fixed /config exit summary reporting phantom changes to auto-compact and theme when toggling unrelated settings.(v2.1.149)
• Fixed /insights crashing when cached session-meta files are missing optional fields.(v2.1.149)
• Fixed malformed PowerShell and History tool calls missing input being misclassified as reads during transcript collapsing.(v2.1.149)
• Fixed renaming a Remote Control session from claude.ai or the Claude mobile app not updating the local session name required for claude --resume.(v2.1.149)
• Fixed a race condition where a just-submitted prompt could appear twice in the up-arrow history.(v2.1.149)
• Fixed tapping the "Jump to bottom" pill in fullscreen mode not dismissing it immediately.(v2.1.149)
• Fixed the Bash tool returning exit code 127 on every command for some users (a regression introduced in 2.1.147).(v2.1.148)
• Fixed enterprise login restrictions not being enforced against third-party-provider and API-key sessions(v2.1.147)
• Fixed ampersand (&) in command output displaying as &, which broke copy-pasting URLs from commands like gcloud auth login on headless machines(v2.1.147)
• Fixed unknown slash commands silently doing nothing in headless/SDK mode; they now display an error message(v2.1.147)
• Fixed /help rendering a broken tab header and showing only one command per page on small terminals when not in fullscreen mode(v2.1.147)
• Fixed shell snapshot dropping user functions whose names start with a single underscore, breaking aliases referencing them(v2.1.147)
• Fixed plugin agents declaring multiple Agent(...) types in tools: frontmatter dropping all but the last entry(v2.1.147)
• Fixed hook if conditions like PowerShell(git push*) never matching(v2.1.147)
• Fixed PowerShell tool dropping output for commands that rely on the default formatter(v2.1.147)
• Fixed Windows setting for "Yes, and don't ask again" on PowerShell script invocation not writing a matching rule for subsequent runs(v2.1.147)
• Fixed PowerShell tool failing on Windows with exit code 1 when pwsh is installed via winget or the Microsoft Store(v2.1.147)
• Fixed /effort opening with the slider on the wrong level; it now starts at the current effort level(v2.1.147)
• Fixed paginating MCP servers dropping resources, templates, and prompts past page 1(v2.1.147)
• Fixed full-screen strobing in attached background sessions on Windows Terminal while Claude is streaming(v2.1.147)
• Fixed Windows behavior where removing a background-job worktree followed NTFS junctions into the main repo(v2.1.147)
• Fixed /background refusing sessions whose only typed input was a skill or custom slash command(v2.1.147)
• Fixed auto mode suppressing AskUserQuestion when the user or skill explicitly relies on it(v2.1.147)
• Fixed /theme New custom theme and color editor dialogs not responding to Esc(v2.1.147)
• Fixed an uncaught exception at the end of streaming sessions when running via the Agent SDK(v2.1.147)
• Fixed a rare hang when waiting for scroll to settle on Windows(v2.1.147)
• Fixed stale and doubled rows in the agent view list on Windows when background session results contain wide (CJK) characters(v2.1.147)
• Fixed pasted text being delivered to agents as an unreadable [Pasted text #N] placeholder instead of the actual content(v2.1.147)
• Fixed plugin component counts in claude plugin details and /plugin being doubled when a plugin's manifest listed overlapping paths(v2.1.147)
• Fixed backgrounded sessions re-prompting for tool permissions already granted with "don't ask again"(v2.1.147)
• Fixed GNOME Terminal right-click and middle-click paste not inserting text(v2.1.147)
• Fixed CLAUDE_CODE_SUBAGENT_MODEL not applying to teammate processes spawned by agent teams(v2.1.147)
• Fixed slash commands followed by a tab or newline being treated as an unknown command(v2.1.147)
• Fixed stripped images prompting the model to repeatedly re-read media that was no longer present(v2.1.147)
• Fixed Windows PowerShell tool failing with "command line is invalid" when `pwsh` is installed via winget or the Microsoft Store(v2.1.146)
• Fixed MCP `resources/list`, `resources/templates/list`, and `prompts/list` dropping items past page 1 on paginating servers(v2.1.146)
• Fixed full-screen strobing in attached background sessions on Windows Terminal while Claude is streaming(v2.1.146)
• Fixed the auto-updater status line not showing your current version when an update fails(v2.1.146)
• Fixed on Windows, removing a background-job worktree no longer follows NTFS junctions into the main repo(v2.1.146)
• Fixed /background refusing sessions whose only typed input was a skill or custom slash command(v2.1.146)
• Fixed backgrounded sessions re-prompting for tool permissions you already granted with "don't ask again"(v2.1.146)
• Fixed /theme color editor and "New custom theme" dialogs not responding to Esc(v2.1.146)
• Fixed an uncaught exception at the end of streaming sessions when running via the Agent SDK(v2.1.146)
• Fixed `forceLoginOrgUUID` and `forceLoginMethod` managed-settings policies not being enforced against third-party-provider and API-key sessions(v2.1.146)
• Fixed GNOME Terminal right-click and middle-click paste not inserting text(v2.1.146)
• Fixed `CLAUDE_CODE_SUBAGENT_MODEL` not being forwarded to child processes in multi-agent sessions(v2.1.146)
• Fixed a security vulnerability where bare variable assignments to non-allowlisted environment variables in Bash commands bypassed permission prompts.(v2.1.145)
• Fixed MCP prompt slash commands that previously showed raw server validation errors when an argument was missing; the error now correctly names the missing argument and shows expected usage.(v2.1.145)
• Fixed the spinner and elapsed-time display freezing until a keypress occurred after the terminal window was resized or refocused.(v2.1.145)
• Fixed the cross-project resume hint failing on Windows PowerShell 5.1 by ensuring Windows uses `;` as the command separator.(v2.1.145)
• Fixed voice push-to-talk functionality not working within the reply pane of the agent view.(v2.1.145)
• Fixed task lists rendering in a random order when multiple tasks were created simultaneously.(v2.1.145)
• Fixed a stale "Failed to install Anthropic marketplace" banner persisting after the marketplace was already installed.(v2.1.145)
• Fixed the PR badge in the footer failing to update immediately after PR-state-changing commands (like `gh pr create`) were run in-session.(v2.1.145)
• Fixed Agent Teams API calls failing for teammates with non-ASCII names due to invalid header encoding.(v2.1.145)
• Fixed the `/review` command using a deprecated GraphQL query that errored on repositories using Classic Projects.(v2.1.145)
• Fixed `claude plugin validate` failing to flag `skills:` entries pointing to a file instead of a directory; the error now suggests the parent directory.(v2.1.145)
• Fixed an infinite loop where a skill configured with `context: fork` would repeatedly re-invoke itself instead of executing.(v2.1.145)
• Fixed startup hanging up to 75s when `api.anthropic.com` is unreachable by implementing a 15s timeout for side-channel API calls(v2.1.144)
• Fixed garbled terminal output after missed window-resize events by enabling self-healing on the next frame(v2.1.144)
• Fixed progressive terminal display corruption (stale/garbled glyphs) in long sessions that previously required a resize or restart to clear(v2.1.144)
• Fixed macOS background sessions crashing with "exit 1 before init" when the project is in a Full Disk Access-protected folder(v2.1.144)
• Fixed unrecoverable conversation state when reading a file with an image extension that mismatches its content (e.g. HTML saved as .png) by falling back to text processing(v2.1.144)
• Fixed spurious tool errors during search by ensuring `head`/`tail` file views satisfy read-before-edit checks and treating non-matches from grep/diff as informational instead of command failures(v2.1.144)
• Fixed /branch failing with "No conversation to branch" after entering a worktree or in some background sessions(v2.1.144)
• Fixed pressing Escape in the AskUserQuestion notes field aborting the turn instead of returning to answer selection(v2.1.144)
• Fixed model selection not applying when changed via the IDE model picker or `applyFlagSettings` after startup(v2.1.144)
• Fixed resumed sessions incorrectly inheriting the model choice from another session instead of retaining their original model(v2.1.144)
• Fixed Bedrock and Vertex users being unable to select "Opus (1M context)" from the /model picker(v2.1.144)
• Fixed remote-session login failing with "Can't access this organization" for users with specific configuration settings(v2.1.144)
• Fixed MCP servers with paginated `tools/list` responses only returning the first page of tools(v2.1.144)
• Fixed MCP images with unsupported MIME types (e.g. SVG) breaking the conversation by saving them to disk and referencing them in the tool result(v2.1.144)
• Fixed file descriptor exhaustion during builds inside skill directories by preventing non-`.md` files from triggering skill reloads(v2.1.144)
• Fixed session title being generated from plugin monitor output instead of the user's first prompt(v2.1.144)
• Fixed Skill tool failing with a permission error in headless mode(v2.1.144)
• Fixed plugins enabled in user settings showing "not cached" errors on fresh machines; added an install hint for project-specific plugins(v2.1.144)
• Fixed `claude mcp list` silently reporting no servers when configuration files were unparsable, now showing configuration errors instead(v2.1.144)
• Fixed background side-queries on custom `ANTHROPIC_BASE_URL` setups and Bedrock Mantle not using Haiku correctly(v2.1.144)
• Fixed scrolling and transcript navigation (PgUp/PgDn, mouse wheel, Ctrl+O) not working in attached background sessions on Windows(v2.1.144)
• Fixed a crash when closing the terminal while attached to a background session(v2.1.144)
• Fixed `! <cmd>` exec sessions not interrupting when Ctrl+C is pressed while attached(v2.1.144)
• Fixed agent view shell-command rows lingering under Working after completion and re-running commands on Enter press(v2.1.144)
• Fixed keyboard input becoming unresponsive in `claude agents` on Windows Terminal after pressing ←(v2.1.144)
• Fixed ghost characters appearing at the left edge when switching panes in Agent View on Windows Terminal with CJK content(v2.1.144)
• Ensured /bg and ←-detach preserve directories added via /add-dir(v2.1.144)
• Fixed Edit/Write refusing to operate right after detaching a session that was editing in place(v2.1.144)
• Fixed `claude respawn <id>` showing "stopped" for a stopped background session instead of running it(v2.1.144)
• Fixed /resume picker not showing sessions forked from a background session(v2.1.144)
• Fixed hanging when opening a session from `claude agents` or running `claude logs <id>` if the background service was unresponsive, now with a 10s timeout(v2.1.144)
• Fixed background Bash tasks spawned by subagents staying "Running" in SDK task panels after process exit(v2.1.144)
• Fixed completed or stopped background sessions being permanently marked as a startup crash(v2.1.144)
• Fixed markdown links in `claude agents` attached sessions rendering as plain text instead of hyperlinks(v2.1.144)
• Restored custom `spinnerVerbs` to apply only to the command execution message, not the post-turn duration message(v2.1.144)
• Made `claude agents` / --bg rejection messages name the specific gate that caused rejection(v2.1.144)
• Echoed the session name in the post-spawn confirmation when using `claude --bg --name <label>`(v2.1.144)
• Ensured renaming a background session via Ctrl+R in `claude agents` immediately updates the attached session's banner(v2.1.144)
• Applied background session worktree isolation guard for non-git VCS users with `WorktreeCreate` hooks(v2.1.144)
• Ensured plugin marketplace add/update respects `CLAUDE_CODE_PLUGIN_PREFER_HTTPS`(v2.1.144)
• Made /plugin return to the Installed list after enabling, disabling, or uninstalling a plugin(v2.1.144)
• Updated /doctor to show an exec-form example when a command hook is missing the `command` field(v2.1.144)
• Stopped showing skill-listing truncation as a startup notification; users must now run /doctor(v2.1.144)
• Improved recovery from rare pre-response stream stalls by retrying streaming once instead of falling back to non-streaming(v2.1.144)
• Improved SDK/headless MCP startup by overlapping pre-wait with startup, potentially saving up to 2s with slow servers(v2.1.144)
• Ensured the post-survey follow-up hint appears after every non-dismiss survey response with context-aware copy(v2.1.144)
• Fixed corruption of `.credentials.json` when the `scopes` value was not an array, which previously caused CLI hangs or silent OAuth token refresh failures.(v2.1.143)
• Fixed inability to right-click paste in `claude agents` sessions on Windows Terminal and WSL.(v2.1.143)
• Fixed stop hooks that could loop indefinitely; turns now end with a warning after 8 consecutive blocks.(v2.1.143)
• Fixed Esc or Ctrl+C failing to cancel a pending /loop wakeup while Claude was idle between iterations.(v2.1.143)
• Fixed the /goal evaluator firing prematurely while background shells or delegated subagents were still running.(v2.1.143)
• Fixed `NO_COLOR`/`FORCE_COLOR` settings in `settings.json` incorrectly stripping Claude Code's UI colors; these settings now only apply to subprocesses.(v2.1.143)
• Fixed agent view spawning duplicate PowerShell processes on Windows when listing sessions.(v2.1.143)
• Fixed /bg without a prompt sending "continue" to the forked session; the fork now correctly waits for input.(v2.1.143)
• Fixed `--agent <name>` failing to find plugin-contributed agents unless the `plugin:` prefix was used.(v2.1.143)
• Fixed deleting a session from the agent view failing to remove its corresponding transcript file.(v2.1.143)
• Fixed stale-fragment rendering issues when scrolling in attached background sessions on Windows Terminal.(v2.1.143)
• Fixed background agents experiencing false-positive worker-stall detection storms after host sleep or macOS App Nap.(v2.1.143)
• Fixed 5xx error messages incorrectly pointing to status.claude.com instead of the configured gateway or cloud provider.(v2.1.143)
• Fixed background sessions silently capturing IDE file references into the warm spare's input, causing references to be prepended to subsequent prompts.(v2.1.143)
• Fixed worktree cleanup falling back to `rm -rf` when `git worktree remove` failed, preventing loss of gitignored or in-progress files.(v2.1.143)
• Fixed background-job sessions on macOS receiving "Operation not permitted" errors when reading files in protected directories like `~/Documents`, even with Full Disk Access granted.(v2.1.143)
• Fixed background sessions launched from `claude agents` incorrectly overriding `permissions.defaultMode` from settings.json (it was previously overridden to auto mode).(v2.1.143)
• Fixed unresponsive agents list on Windows when pressing ← during response streaming.(v2.1.143)
• Fixed background daemon spawn failing when the `~/.local/bin/claude` launcher was missing or non-executable.(v2.1.143)
• Fixed `claude agents --allow-dangerously-skip-permissions` incorrectly defaulting dispatched sessions to bypass mode instead of making it available in the permission cycle.(v2.1.143)
• Fixed `MCP_TOOL_TIMEOUT` not raising the per-request fetch timeout for remote HTTP and SSE MCP servers, which capped tool calls at 60 seconds regardless of the configured value(v2.1.142)
• Fixed background sessions not recognizing pre-existing git worktrees, blocking Edit while EnterWorktree refused to create a duplicate(v2.1.142)
• Fixed background sessions disappearing and daemon reconnect failing after macOS sleep/wake — the daemon now detects clock jumps instead of treating them as elapsed idle time(v2.1.142)
• Fixed daemon not exiting cleanly after the binary is upgraded (e.g. `brew upgrade`), causing dispatched agents to crash-loop on the deleted path(v2.1.142)
• Fixed background agents crash-looping when the Claude-in-Chrome extension is connected without a shared tab(v2.1.142)
• Fixed clicking links in an attached `claude agents` session — the background worker's headless browser shim no longer applies while attached(v2.1.142)
• Fixed `claude agents` "v to open in editor" using the daemon's default editor instead of your shell's `$EDITOR`/`$VISUAL`(v2.1.142)
• Fixed `claude agents` deadlocking on Windows with network-drive working directories; Ctrl+C now works during startup(v2.1.142)
• Fixed background-color bleed when attaching to a `claude agents` session from Apple Terminal or other 256-color-only terminals(v2.1.142)
• Fixed `claude --bg --dangerously-skip-permissions` not persisting across retire/wake(v2.1.142)
• Fixed session titles being derived from the URL when the first message is a link(v2.1.142)
• Fixed redundant `set_model` requests from remote clients injecting duplicate `/model` breadcrumbs into the transcript(v2.1.142)
• Fixed plugins using `skills: ["./"]` showing a false "path escapes plugin directory" error(v2.1.142)
• Fixed plugin cache cleanup deleting the active plugin version directory when no installation metadata is present(v2.1.142)
• Fixed `/plugin` browse pane showing "0 installs" for newly published plugins(v2.1.142)
• Fixed plugin advisories not naming every `plugin.json` key that shadows a default folder(v2.1.142)
• Fixed background side-queries sending an unavailable Haiku model ID on Bedrock/Vertex/Foundry/gateway when no `ANTHROPIC_SMALL_FAST_MODEL` override is set; it now correctly falls back to the main-loop model.(v2.1.141)
• Fixed `claude daemon status` and `/doctor` on Windows throwing an opaque failure when the daemon pipe key file is locked or unreadable; it now shows the underlying error.(v2.1.141)
• Fixed `claude agents` showing the agent-type list instead of the dashboard when launched through a wrapper that adds flags.(v2.1.141)
• Fixed `claude agents` firing redundant dispatches when opening a crashed session where the working directory was deleted.(v2.1.141)
• Fixed background jobs on a custom `ANTHROPIC_BASE_URL` gateway not getting auto-named; the namer now uses the main model when no Haiku model is configured.(v2.1.141)
• Fixed `/model` command in one session silently changing the autocompact threshold in other concurrent sessions.(v2.1.141)
• Fixed switching permission mode while a tool-permission prompt is open not auto-dismissing the prompt when the new setting permits the tool.(v2.1.141)
• Fixed pressing Enter while a permission/dialog prompt is open from also submitting text in the input box.(v2.1.141)
• Fixed hooks receiving a non-existent `transcript_path` after `EnterWorktree` switches the working directory.(v2.1.141)
• Fixed markdown tables with cell wrapping falling back to the vertical key-value layout instead of rendering as a bordered grid.(v2.1.141)
• Fixed cancelled prompts being removed from Up-arrow history when auto-restored into the input box, preventing duplicate entries.(v2.1.141)
• Fixed prompts cancelled with Ctrl+C/Esc before any response being dropped from Up-arrow history.(v2.1.141)
• Fixed Ctrl+C not interrupting a running turn while in vim INSERT/VISUAL mode.(v2.1.141)
• Fixed alternative `chat:submit` keybindings (e.g. `meta+enter`, `ctrl+enter`) not working when `enter` is rebound to `chat:newline`.(v2.1.141)
• Fixed prompt suggestions being silently disabled when an output style was configured.(v2.1.141)
• Fixed `spinnerVerbs` setting not being honored in turn-completion messages.(v2.1.141)
• Fixed AskUserQuestion popup hiding the last line of preceding chat content.(v2.1.141)
• Fixed Web Search status showing "Did 0 searches" when searches actually returned errors.(v2.1.141)
• Fixed multi-line statusline output dropping or corrupting rows when any line exceeds terminal width.(v2.1.141)
• Fixed light-ansi theme using invisible white for diff context lines on light backgrounds; it now uses black.(v2.1.141)
• Fixed error overlay dumping minified bundle source that hid the original error message.(v2.1.141)
• Fixed pressing Enter after typing a feedback survey rating digit submitting it as a chat message instead of submitting the rating.(v2.1.141)
• Fixed pressing `x` on a selected subagent in the agent panel typing into the prompt instead of stopping the agent.(v2.1.141)
• Fixed session title being derived from plugin monitor notifications before the user's first prompt.(v2.1.141)
• Fixed "Allowed by PermissionRequest hook" repeating once per tool call under a collapsed read/search group.(v2.1.141)
• Fixed `/tui` silently dropping running background shells and subagents; it now refuses and asks to wait for them to finish.(v2.1.141)
• Fixed welcome banner showing "API Usage Billing" on Bedrock, Vertex, Foundry, and other third-party providers; it now shows the provider name.(v2.1.141)
• Fixed `/mcp` server list not keeping the focused server visible in short terminals in fullscreen mode.(v2.1.141)
• Fixed redaction in `/feedback` bundles producing invalid JSON for quoted values like session IDs.(v2.1.141)
• Fixed desktop and third-party provider sessions incorrectly inheriting `apiKeyHelper`/`ANTHROPIC_AUTH_TOKEN` from host managed-settings.(v2.1.141)
• Fixed early analytics events being silently dropped when fired before logger initialization.(v2.1.141)
• Fixed `claude plugin install` failing for plugins whose marketplace `ref` no longer exists upstream when a `sha` is also pinned.(v2.1.141)
• Fixed plugin details pane showing 0 MCP servers for plugins that declare them via `.mcp.json`.(v2.1.141)
• Fixed plugin MCP servers with unset config variables showing a generic connection failure instead of a "config issue" message with a fix-it hint; malformed `.mcp.json` entries no longer drop other MCP servers.(v2.1.141)
• Fixed MCP HTTP/SSE servers returning 403 on connect showing as "failed" instead of "needs auth".(v2.1.141)
• Fixed remote MCP servers disconnecting unnecessarily when the optional server-events stream failed to reconnect; tool calls continue over POST.(v2.1.141)
• Fixed Remote Control MCP connectors all failing with 401 when the worker session token rotated mid-session.(v2.1.141)
• Fixed Remote Control automatically re-enrolling a trusted device when the server rejects a stale token, instead of looping through `/login`.(v2.1.141)
• Fixed a race where early OTel spans could be silently dropped in SDK/headless mode with beta tracing enabled.(v2.1.141)
• Fixed custom `voice:pushToTalk` keybindings and `"space": null` unbinds being silently ignored.(v2.1.141)
• Fixed Windows Alt+V image paste reporting "no image found" when the clipboard contains a screenshot.(v2.1.141)
• Fixed SDK "Claude Code native binary not found" on Linux when both glibc and musl platform packages are installed.(v2.1.141)
• Fixed Bedrock: `awsCredentialExport` being skipped when ambient AWS credentials resolve, ensuring it now always runs when configured for cross-account access.(v2.1.141)
• Fixed in-chat mic in VSCode showing no feedback when the microphone produced only silence; it now shows "No audio detected".(v2.1.141)
• Fixed WSL error in VSCode Voice mode suggesting installing `sox libsox-fmt-pulse` for WSLg users.(v2.1.141)
• Fixed `claude agents` failing to launch a session when the pre-warmed background worker is unhealthy; it now falls back to a fresh launch.(v2.1.141)
• Fixed `claude agents` showing empty placeholder sessions left over from backgrounding a fresh REPL, and now shows onboarding text when entered via `←` with no other agents.(v2.1.141)
• Fixed empty idle background sessions left over from `←` being automatically retired by the daemon after 5 minutes.(v2.1.141)
• Fixed `/goal` command hanging silently when `disableAllHooks` or `allowManagedHooksOnly` is set; it now displays a clear message.(v2.1.140)
• Fixed a regression where symlinked settings files caused incorrect change events and unnecessary `ConfigChange` hooks during settings hot-reload.(v2.1.140)
• Fixed `claude --bg` failing with a "connection dropped mid-request" error when the background service was idling.(v2.1.140)
• Fixed background service startup failures on machines with enterprise endpoint security by increasing startup timeout.(v2.1.140)
• Fixed remote managed settings not retrying after a 401 error; it now retries once after forcing a token refresh.(v2.1.140)
• Fixed managed `extraKnownMarketplaces` auto-update policy not being saved correctly to `known_marketplaces.json`.(v2.1.140)
• Fixed `/loop` scheduling unnecessary wakeups to poll for background tasks that had already signaled completion.(v2.1.140)
• Fixed a recurring event-loop stall on Windows caused by synchronous `where.exe` re-spawns when a required executable (like `gh`) was missing.(v2.1.140)
• Fixed `Read` tool calls failing validation when the `offset` parameter was provided as a whitespace-padded or `+`-prefixed string.(v2.1.140)
• Fixed the native terminal cursor not remaining at the input caret when the terminal window lost focus.(v2.1.140)
• Fixed a deadlock that occurred when expired credentials and the `forceRemoteSettingsRefresh` policy blocked `claude auth login`, `logout`, or `status` commands.(v2.1.139)
• Fixed `autoAllowBashIfSandboxed` not auto-approving commands containing shell expansions like `$VAR` and `$(cmd)`.(v2.1.139)
• Fixed a bug where a hook writing to the terminal could corrupt an on-screen interactive prompt; hooks now run without terminal access.(v2.1.139)
• Fixed unbounded memory growth when an HTTP/SSE MCP server streamed non-protocol data by capping response bodies at 16 MB per SSE frame.(v2.1.139)
• Fixed `Skill(name *)` permission rules so the wildcard form now correctly functions as a prefix match, consistent with `Bash(ls *)` behavior.(v2.1.139)
• Fixed settings hot-reload failing to detect edits made to symlinked `~/.claude/settings.json` files.(v2.1.139)
• Fixed plugin details failing to load when the marketplace key differed from the manifest name.(v2.1.139)
• Fixed the `/model` picker's "Default" row not correctly reflecting overrides set by `ANTHROPIC_DEFAULT_OPUS_MODEL` or `ANTHROPIC_DEFAULT_SONNET_MODEL`.(v2.1.139)
• Fixed spurious "stream idle timeout" errors occurring 5 minutes after a response completed because the watchdog timer was not cleared on stream cancellation.(v2.1.139)
• Fixed silent `exit 1` errors when 10+ MCP servers were configured and the cache directory was unwritable; the error message now shows the underlying cause.(v2.1.139)
• Fixed a blinking typing cursor appearing on tab names, list pointers, and select rows within dialogs.(v2.1.139)
• Fixed transcript view letter shortcuts failing to work after a mouse click.(v2.1.139)
• Fixed the Bash-mode up-arrow history repeating the first entry and overwriting the in-progress draft.(v2.1.139)
• Fixed pasting or dropping multiple images resulting in only the last image being inserted.(v2.1.139)
• Fixed hyperlinks appearing in an unreadable dark navy color on dark themes; they now adapt to the active theme.(v2.1.139)
• Fixed the model picker showing a redundant "Current model" row for third-party users whose model was set to the `opus` alias.(v2.1.139)
• Fixed the legacy Opus picker entry on PAYG 3P providers resolving to the same model as the default entry.(v2.1.139)
• Fixed mouse wheel scrolling speed inconsistencies in Cursor and VS Code versions 1.92–1.104, ensuring steady trackpad scrolling and ~3 lines per notch for the mouse wheel.(v2.1.139)
• Fixed scroll behavior in Windows Terminal and VS Code when attached to background sessions.(v2.1.139)
• Fixed MCP resources from disconnected servers lingering in `@server:` autocomplete suggestions.(v2.1.139)
• Fixed two-file diff snippets over-reporting the number of truncated lines by one.(v2.1.139)
• Fixed Grep results failing to relativize Windows drive-letter paths, leading to incorrect count mode totals for single-file paths.(v2.1.139)
• Fixed text overflowing borders on CJK/emoji characters due to incorrect visual cell width calculation.(v2.1.139)
• Fixed fuzzy-match highlighting incorrectly splitting emoji and astral-plane characters mid-pair.(v2.1.139)
• Fixed skill argument names containing regex metacharacters breaking argument substitution.(v2.1.139)
• Fixed ProgressBar rendering a full block when it should have shown a fractional cell that was almost full.(v2.1.139)
• Fixed task polling and `fs.watch` being incorrectly resurrected when the last subscriber left while a fetch operation was still in flight.(v2.1.139)
• Fixed plugin dependency resolution leaving a stale count when the manifest name differed from the source identifier.(v2.1.139)
• Fixed the Insights Time-of-Day chart skewing results when a session contained an unparseable timestamp.(v2.1.139)
• Fixed keybindings that used only the cmd/super/win modifier being flagged as unparseable.(v2.1.139)
• Fixed the `claude_code.active_time.total` OpenTelemetry metric not being emitted when running in `--print` mode.(v2.1.139)
• Fixed `claude plugin update` failing to preserve cross-plugin symlinks inside a marketplace installation.(v2.1.139)
• Fixed MCP servers configured in `.mcp.json`, plugins, and claude.ai connectors silently disappearing after `/clear` in various clients.(v2.1.136)
• Fixed a rare login loop caused by concurrent credential writes overwriting OAuth tokens.(v2.1.136)
• Fixed MCP OAuth refresh tokens being lost during concurrent refreshes, preventing daily re-authentication for users with multiple remote MCP servers.(v2.1.136)
• Fixed an API error (400) when extended thinking emitted a redacted thinking block after a tool call.(v2.1.136)
• Fixed `--resume` / `--continue` failing to find sessions when the project path contains underscores.(v2.1.136)
• Fixed plan mode incorrectly allowing file writes when a matching `Edit(...)` allow rule existed.(v2.1.136)
• Fixed plugin `Stop`/`UserPromptSubmit` hooks failing when cache cleanup deleted a version still in use by a running session.(v2.1.136)
• Fixed colors appearing at wrong positions in bash command output and markdown code blocks.(v2.1.136)
• Fixed ReasonML diffs rendering corrupted "undefined" text artifacts at word-diff boundaries.(v2.1.136)
• Fixed worktree exit dialog incorrectly warning about uncommitted files in the wrong directory after worktree removal.(v2.1.136)
• Fixed `@` file picker not matching files created mid-session in small non-git directories.(v2.1.136)
• Fixed `@`-mention file picker not finding files in directories with more than 100 entries.(v2.1.136)
• Fixed failed tool calls not being click-to-expand in fullscreen mode when their output was truncated.(v2.1.136)
• Fixed Backspace and Ctrl+Backspace swapping functions after using Ctrl+G to open an external editor on terminals with persistent extended-key modes.(v2.1.136)
• Fixed `/usage` weekly reset displaying the time of day instead of the calendar date.(v2.1.136)
• Fixed welcome banner ellipsis causing column overflow on CJK terminals.(v2.1.136)
• Fixed `/insights` crashing when session history contained tool calls with malformed input fields.(v2.1.136)
• Fixed a renderer crash when a tool's collapsibility classification changed mid-session.(v2.1.136)
• Fixed a `skills` entry in `plugin.json` incorrectly hiding the plugin's default `skills/` directory; listing a file path now correctly shows an error.(v2.1.136)
• Fixed IDE shell-integration lock files not respecting `CLAUDE_CONFIG_DIR`.(v2.1.136)
• Fixed trailing whitespace being included when copying terminal output during streaming.(v2.1.136)
• Fixed plugin uninstall and enable/disable operations failing to match slugs case-insensitively.(v2.1.136)
• Fixed tool error truncation marker showing a negative count for surrogate-pair strings.(v2.1.136)
• Fixed environment variables from `CLAUDE_ENV_FILE` SessionStart hooks becoming stale after `/resume` or `/clear`.(v2.1.136)
• Fixed `/branch` saving a multi-line session title when given a pasted multi-line name.(v2.1.136)
• Fixed a stray leading space appearing on the second line of wrapped text at the column boundary.(v2.1.136)
• Fixed Esc key failing to dismiss dialogs in `/install-github-app`, `/desktop`, `/resume`, and `/web-setup`.(v2.1.136)
• Fixed `/doctor` MCP schema errors failing to name the missing field or show the source file path.(v2.1.136)
• Fixed Bash permission prompts displaying an internal parser diagnostic instead of a user-readable explanation.(v2.1.136)
• Fixed plugin slash commands containing spaces (e.g. `/myplugin review`) not resolving to their namespaced form.(v2.1.136)
• Fixed `AskUserQuestion` discarding multi-select answers when supplied as an array.(v2.1.136)
• Fixed `/clear <name>` failing to label the cleared session correctly for subsequent `/resume`.(v2.1.136)
• Fixed `CronList` output missing necessary qualifiers and the scheduled prompt information.(v2.1.136)
• Fixed "Jump to bottom" overlay leaving color artifacts on CJK characters in fullscreen mode.(v2.1.136)
• Fixed wide markdown tables leaving a stale bordered render in terminal scrollback while streaming.(v2.1.136)
• Fixed pasted text being silently dropped when a long prompt with a pasted-text placeholder was auto-truncated.(v2.1.136)
• Fixed `/release-notes` getting stuck on an old version after a failed changelog refresh.(v2.1.136)
• Fixed `/mcp` server list failing to scroll when more servers than fit in the terminal were present.(v2.1.136)
• Fixed mid-input slash command autocomplete failing to work after an initial slash command was used.(v2.1.136)
• Fixed scrolling to bottom re-engaging auto-follow behavior when `autoScrollEnabled` was set to false.(v2.1.136)
• Fixed prompt suggestions being auto-submitted by pressing Enter on an empty input instead of requiring Tab or arrow keys to accept.(v2.1.136)
• Fixed keyboard shortcut hints not reflecting rebound keys configured in `keybindings.json`.(v2.1.136)
• Fixed language changes made in `/settings` being reverted upon pressing Escape after confirmation.(v2.1.136)
• Fixed `/terminal-setup` only appearing in autocomplete on exact name match instead of partial prefixes.(v2.1.136)
• Fixed "Chat about this" action on an `AskUserQuestion` dialog erasing the original question text.(v2.1.136)
• Fixed MCP tool results being invisible when the server returned content blocks.(v2.1.136)
• Fixed parallel sessions dead-ending at 401 after a refresh-token race wiped shared credentials.(v2.1.133)
• Fixed `Edit`/`Write` allow rules scoped to a drive root (e.g., `C:`) or POSIX `/` matching incorrectly and always prompting.(v2.1.133)
• Fixed an unhandled rejection (`ECOMPROMISED`) when a history or session-log file lock is compromised by clock skew or slow disk.(v2.1.133)
• Fixed pressing Esc during conversation compaction showing a spurious "Error compacting conversation" notification.(v2.1.133)
• Fixed `HTTP(S)_PROXY` / `NO_PROXY` / mTLS not being respected for the full MCP OAuth flow, including discovery, dynamic client registration, token exchange, and token refresh.(v2.1.133)
• Fixed Read/Write/Edit being denied on mapped network drives passed via `--add-dir` or SDK `additionalDirectories`.(v2.1.133)
• Fixed Remote Control stop/interrupt from claude.ai not fully canceling the CLI session, causing queued messages to not advance after interrupting a stuck tool or prompt.(v2.1.133)
• Fixed `/effort` in one session unexpectedly changing the effort level of other concurrent sessions, and a related issue where an IDE effort change could be silently dropped.(v2.1.133)
• Fixed subagents not discovering project, user, or plugin skills via the Skill tool.(v2.1.133)
• [VSCode] Fixed `claudeCode.claudeProcessWrapper` failing with "Unsupported platform" when the extension build doesn't bundle a Claude binary.(v2.1.133)
• Fixed external SIGINT (e.g., IDE stop button, `kill -INT`) not triggering graceful shutdown; terminal modes are now restored and the `--resume` hint is printed.(v2.1.132)
• Fixed an uncaught exception occurring when the terminal is closed or SSH disconnects mid-session on the native build.(v2.1.132)
• Fixed `--resume` failing with `no low surrogate in string` when a tool error truncation split an emoji; pre-corrupted sessions are now sanitized on load.(v2.1.132)
• Fixed `--permission-mode` flag being ignored when resuming a plan-mode session with `-p --continue` or `--resume`, and ensured plan mode is re-applied after `ExitPlanMode` within the same session.(v2.1.132)
• Fixed fullscreen mode showing a blank screen after laptop sleep/wake or Ctrl+Z/ `fg` until the next keystroke or stream output.(v2.1.132)
• Fixed cursor landing mid-grapheme on Ctrl+E/A/K/U/arrow keys when an Indic conjunct or ZWJ emoji wraps across lines.(v2.1.132)
• Fixed vim operators corrupting text containing decomposed (NFD) accented characters.(v2.1.132)
• Fixed pasting text starting with `/` silently swallowing the input or triggering an unknown-command reply.(v2.1.132)
• Fixed pasting dumping stray escape sequences into the prompt when focus events or mouse-tracking reports interleave with the bracketed paste.(v2.1.132)
• Fixed mouse wheel scrolling being too fast in Cursor and VS Code 1.92–1.104 due to an upstream xterm.js bug.(v2.1.132)
• Fixed scroll-wheel handling in JetBrains IDE 2025.2 terminals (resolved spurious arrow keys, wrong-direction events, and runaway acceleration).(v2.1.132)
• Fixed `/usage` Ctrl+S hanging when copying the stats screenshot to the clipboard on Linux/X11.(v2.1.132)
• Fixed `/terminal-setup` showing a contradictory error in Windows Terminal (Shift+Enter is natively supported there).(v2.1.132)
• Fixed `/effort` picker not reflecting the `CLAUDE_CODE_EFFORT_LEVEL` environment variable override.(v2.1.132)
• Fixed `/status` showing the wrong default model for some users.(v2.1.132)
• Fixed slash command autocomplete popup being capped at ~3–5 visible commands instead of scaling with terminal height.(v2.1.132)
• Fixed statusline `context_window` token counts reflecting cumulative session totals instead of current context usage.(v2.1.132)
• Fixed Alt+T (thinking toggle) not working on macOS terminals without "Option as Meta" enabled (iTerm2, Terminal.app defaults).(v2.1.132)
• Fixed dead keyboard input on Windows after re-opening a background session from `claude agents`.(v2.1.132)
• Fixed unbounded memory growth (10GB+ RSS) when an stdio MCP server writes non-protocol data to stdout.(v2.1.132)
• Fixed MCP servers that connect but fail `tools/list` silently showing 0 tools; they now retry once and show "connected · tools fetch failed" in `/mcp`.(v2.1.132)
• Fixed unauthorized claude.ai MCP connectors showing as "failed" instead of "needs auth", and headless `-p` mode retrying non-transient 4xx connection failures.(v2.1.132)
• Fixed Bedrock and Vertex 400 errors when `ENABLE_PROMPT_CACHING_1H` is set.(v2.1.132)
• Fixed API errors with unrecognized 400 status codes showing raw JSON instead of the underlying error message(v2.1.129)
• Fixed /clear command not resetting the terminal tab title after a conversation ends(v2.1.129)
• Fixed session title chip from /rename disappearing while a permission or other dialog is active(v2.1.129)
• Fixed agent panel below the prompt being hidden when subagents are running (regression)(v2.1.129)
• Fixed external-editor handoff (Ctrl+G) blanking the conversation history above the prompt(v2.1.129)
• Fixed /context command dumping its rendered ASCII visualization grid into the conversation, preventing token waste(v2.1.129)
• Fixed /agents Library list arrow-key navigation so the highlighted agent remains visible when the list exceeds the viewport(v2.1.129)
• Fixed /branch success message not including the new branch's session id for subsequent /resume commands(v2.1.129)
• Fixed bold headers containing keycap/ZWJ/skin-tone emoji losing trailing characters in fullscreen mode(v2.1.129)
• Fixed server-managed settings policy not applying for enterprise/team users whose stored OAuth credentials lacked the `user:inference` scope(v2.1.129)
• Fixed OAuth refresh race condition occurring after wake-from-sleep that could log out all running sessions(v2.1.129)
• Fixed 1-hour prompt cache TTL being silently downgraded to 5 minutes(v2.1.129)
• Fixed cache-miss warning appearing spuriously after /clear or compaction when changing /effort or /model(v2.1.129)
• Fixed `Bash(mkdir *)`, `Bash(touch *)` and similar allow rules not being honored for in-project paths(v2.1.129)
• Fixed `deniedMcpServers` patterns with a `*://` scheme wildcard not matching mixed-case hostnames(v2.1.129)
• Fixed harmless WebSocket warning being logged as an error in --debug mode during voice mode(v2.1.129)
• Fixed /clear command not clearing the conversation context and displayed transcript in VSCode integration(v2.1.129)
• Fixed focus mode briefly dimming the previous response when submitting a new prompt.(v2.1.128)
• Fixed stray "4;0;" desktop notification appearing on every /exit in terminals like Kitty.(v2.1.128)
• Fixed Remote Control showing an empty "Opening your options…" message on rate limit instead of actionable upsell options.(v2.1.128)
• Fixed drag-and-drop image upload hanging on "Pasting text…" when image reading fails.(v2.1.128)
• Fixed crash loop when piping very large input (>10 MB) to claude -p via stdin.(v2.1.128)
• Fixed long URLs not being individually clickable on every wrapped row in fullscreen mode.(v2.1.128)
• Fixed /plugin Components panel showing "Marketplace 'inline' not found" for plugins loaded via --plugin-dir.(v2.1.128)
• Fixed MCP tool results dropping images when the server returns both structured content and content blocks.(v2.1.128)
• Fixed fenced code blocks inside list items carrying leading whitespace into the clipboard on copy-paste.(v2.1.128)
• Fixed tab navigation in /config stranding focus; the tab header now stays focused.(v2.1.128)
• Fixed markdown link labels being lost on terminals without OSC 8 support by rendering them as label (url).(v2.1.128)
• Fixed sessions on 1M-context models with smaller autocompact windows being falsely blocked with "Prompt is too long".(v2.1.128)
• Fixed parallel shell tool calls where a failing read-only command no longer cancels sibling calls.(v2.1.128)
• Fixed banner incorrectly showing "with X effort" on models that do not support effort.(v2.1.128)
• Fixed /fast on 3P providers fuzzy-matching to an unrelated skill instead of showing "not available".(v2.1.128)
• Fixed Bedrock default model resolving incorrectly to global.* instead of the region-appropriate prefix.(v2.1.128)
• Fixed vim mode: Space in NORMAL mode now correctly moves the cursor right.(v2.1.128)
• Fixed terminal progress indicator flickering off between tool calls; it now stays visible across the full turn.(v2.1.128)
• Fixed /rename without args failing on resumed sessions whose last entry is a compact boundary.(v2.1.128)
• Fixed stale "remote-control is active" status lines from prior sessions appearing after --resume/--continue.(v2.1.128)
• Fixed stale installed_plugins.json entries pointing at deleted cache directories polluting PATH.(v2.1.128)
• Fixed MCP stdio servers receiving corrupted arguments when CLAUDE_CODE_SHELL_PREFIX is set and an argument contains spaces or shell metacharacters.(v2.1.128)
• Fixed sub-agent progress summaries missing the prompt cache, resulting in significant creation time reduction.(v2.1.128)
• Fixed /plugin update never detecting new versions of npm-sourced plugins.(v2.1.128)
• Fixed sub-agent summaries firing repeatedly when a sub-agent's transcript is static, capping token cost on idle sub-agents.(v2.1.128)
• Fixed Headless --output-format stream-json: init.plugin_errors now correctly includes --plugin-dir load failures.(v2.1.128)
• Fixed crash when pasting an image larger than 2000px by automatically downscaling images on paste and retrying requests for oversized images in history.(v2.1.126)
• Fixed login screen being shown instead of guidance when encountering "OAuth not allowed for organization" errors; now directs users to contact their admin.(v2.1.126)
• Fixed OAuth login failing due to timeouts on slow/proxied connections, IPv6-only devcontainers, and when the browser callback cannot reach localhost.(v2.1.126)
• Fixed a rare race condition where a concurrent credential write could incorrectly clear a valid OAuth refresh token.(v2.1.126)
• Fixed API retry countdown sticking at "0s" instead of continuing to count down between attempts.(v2.1.126)
• Fixed "Stream idle timeout" error occurring after waking a Mac from sleep mid-request.(v2.1.126)
• Fixed background and remote sessions falsely aborting with "Stream idle timeout" during long model thinking pauses.(v2.1.126)
• Fixed a hang where the assistant finished thinking but displayed no output after a sequence of empty turns.(v2.1.126)
• Fixed overly fast trackpad scrolling behavior within Cursor and VS Code 1.92–1.104 integrated terminals.(v2.1.126)
• Fixed claude.ai MCP connectors being suppressed by manual servers stuck in a needs-auth state.(v2.1.126)
• Fixed Japanese, Korean, and Chinese text rendering as garbled characters on Windows when using no-flicker mode.(v2.1.126)
• Fixed `Ctrl+L` clearing the prompt input; it now correctly forces a screen redraw, matching readline behavior.(v2.1.126)
• Fixed deferred tools (like WebSearch) not being available to skills using `context: fork` or other subagents on their initial turn.(v2.1.126)
• Fixed plan-mode tools being unavailable in interactive sessions launched with `--channels`.(v2.1.126)
• Fixed `/plugin` Uninstall command incorrectly reporting "Enabled" instead of "Uninstalled".(v2.1.126)
• Fixed `/remote-control` retries appearing stuck on "connecting..."; each retry now displays its result.(v2.1.126)
• Fixed Remote Control failure notification not showing the error reason for initial connection failures.(v2.1.126)
• Fixed Windows clipboard writes exposing copied content in process command-line arguments visible to EDR/SIEM telemetry, and fixed issues with selections larger than 22KB not reaching the clipboard.(v2.1.126)
• Fixed PowerShell tool mis-flagging bare `--` (e.g., `git diff -- file`) as the stop-parsing token `--%`. (v2.1.126)
• Fixed Agent SDK hang when the model emitted a malformed tool name in a parallel tool call batch.(v2.1.126)
• Fixed Security issue where `allowManagedDomainsOnly` / `allowManagedReadPathsOnly` were ignored when a higher-priority managed-settings source lacked a `sandbox` block.(v2.1.126)
• Fixed `/branch` producing forks that failed with a `tool_use ids were found without tool_result blocks` error when the source session included entries from rewound timelines.(v2.1.122)
• Fixed `/model` failing to show the Effort option for Bedrock application inference profile ARNs and preventing those ARNs from receiving `output_config.effort`.(v2.1.122)
• Fixed Vertex AI / Bedrock returning `invalid_request_error: output_config: Extra inputs are not permitted` errors during session-title generation and other structured-output queries.(v2.1.122)
• Fixed Vertex AI `count_tokens` endpoint returning 400 errors for users operating behind proxy gateways.(v2.1.122)
• Fixed `spinnerTipsOverride.excludeDefault` not correctly suppressing the default time-based spinner tips.(v2.1.122)
• Fixed ToolSearch failing to find MCP tools that connected after the session started in nonblocking mode.(v2.1.122)
• Fixed `!exit` / `!quit` commands in bash mode terminating the CLI instead of executing as a shell command.(v2.1.122)
• Fixed images sent to newer models being incorrectly resized to 2576px per side instead of the maximum allowed 2000px.(v2.1.122)
• Fixed remote control session idle status redrawing too frequently (twice per second), which could flood `tmux -CC` control pipes and cause terminal pauses.(v2.1.122)
• Fixed assistant messages appearing blank in some sessions due to a stale view preference.(v2.1.122)
• Fixed a malformed hooks entry in `settings.json` no longer invalidating the entire settings file.(v2.1.122)
• Fixed voice mode keybindings bound to Caps Lock showing an error because terminals do not deliver Caps Lock as a standard key event.(v2.1.122)
• Fixed unbounded memory growth (multi-GB RSS) that occurred when processing many images in a single session.(v2.1.121)
• Fixed a memory leak in `/usage` that consumed up to ~2GB of memory on machines with large transcript histories.(v2.1.121)
• Fixed a memory leak that occurred when long-running tools failed to emit a clear progress event.(v2.1.121)
• Fixed the Bash tool becoming permanently unusable if the directory Claude was started in was deleted or moved during a session.(v2.1.121)
• Fixed `--resume` crashing on startup in external builds.(v2.1.121)
• Fixed `--resume` failing on large sessions when a transcript line was corrupted by an unclean shutdown; the corrupt line is now skipped.(v2.1.121)
• Fixed `thinking.type.enabled is not supported` error when using Bedrock application inference profile ARNs.(v2.1.121)
• Fixed Microsoft 365 MCP OAuth failures caused by duplicate or unsupported `prompt` parameters.(v2.1.121)
• Fixed scrollback duplication when pressing Ctrl+L or triggering a redraw in non-fullscreen mode across tmux, GNOME Terminal, Windows Terminal, and Konsole.(v2.1.121)
• Fixed claude.ai MCP connectors silently disappearing if the connector-list fetch encountered a transient authentication error at startup.(v2.1.121)
• Fixed "Always allow" rules for built-in tools in remote sessions failing to persist across worker restarts.(v2.1.121)
• Fixed `NO_PROXY` setting not being respected by all HTTP clients when set via `managed-settings.json` in native builds.(v2.1.121)
• Fixed the managed settings approval prompt incorrectly exiting the session upon acceptance; settings are now applied and the session continues.(v2.1.121)
• Fixed `/usage` returning "rate limited" due to a stale OAuth token; tokens now refresh automatically.(v2.1.121)
• Fixed invalid legacy enum values in `settings.json` from invalidating the entire settings file.(v2.1.121)
• Fixed `/usage` dialog content being clipped when no-flicker mode was disabled.(v2.1.121)
• Fixed `/focus` showing "Unknown command" when the fullscreen renderer was off; it now explains how to enable fullscreen rendering.(v2.1.121)
• Fixed embedded grep/find/rg shell wrappers failing if the running binary was deleted mid-session; now falls back to installed tools.(v2.1.121)
• Fixed a regression where pressing Esc during a stdio MCP tool call would close the entire server connection.(v2.1.120)
• Fixed interactive overlays like `/rewind` not responding to keyboard input after launching the tool with `claude --resume`.(v2.1.120)
• Fixed terminal scrollback duplication occurring during resizing, dialog dismissal, or long sessions in non-fullscreen mode.(v2.1.120)
• Fixed telemetry settings (`DISABLE_TELEMETRY` / `CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC`) failing to suppress usage metrics for API and enterprise users.(v2.1.120)
• Fixed false-positive "Dangerous rm operation" permission prompts in auto mode for multi-line bash commands containing both a pipe and a redirect.(v2.1.120)
• Fixed long selection menus clipping below the terminal in fullscreen mode; the focused option now remains visible during scrolling.(v2.1.120)
• Fixed the Write tool output collapsing instead of expanding when clicking "+N lines" in fullscreen mode.(v2.1.120)
• Fixed the slash command picker jumping while typing and improved highlighting to only match contiguous substrings.(v2.1.120)
• Fixed the `/plugin` marketplace failing to load when one entry used an unrecognized source format (the entry is now shown with an update prompt upon installation attempt).(v2.1.120)
• Fixed the `find` command in the Bash tool exhausting open file descriptors on large directory trees, which caused host-wide crashes on macOS/Linux native builds.(v2.1.120)
• Fixed pasting CRLF content (from Windows clipboards or Xcode console) from inserting an extra blank line between every line.(v2.1.119)
• Fixed multi-line paste losing newlines when using terminals that employ kitty keyboard protocol sequences inside bracketed paste.(v2.1.119)
• Fixed Glob and Grep tools disappearing on native macOS/Linux builds when the Bash tool was denied via permissions.(v2.1.119)
• Fixed scrolling up in fullscreen mode snapping back to the bottom every time a tool finished execution.(v2.1.119)
• Fixed MCP HTTP connections failing with "Invalid OAuth error response" when servers returned non-JSON bodies during OAuth discovery requests.(v2.1.119)
• Fixed the Rewind overlay incorrectly showing "(no prompt)" for messages that contained image attachments.(v2.1.119)
• Fixed auto mode overriding plan mode when conflicting "Execute immediately" instructions were present.(v2.1.119)
• Fixed async `PostToolUse` hooks that emit no response payload from writing empty entries to the session transcript.(v2.1.119)
• Fixed the spinner remaining active when a subagent task notification became orphaned in the queue.(v2.1.119)
• Fixed `@`-file Tab completion from replacing the entire prompt when used inside a slash command with an absolute path.(v2.1.119)
• Fixed a stray `p` character appearing at the prompt on startup when running in macOS Terminal.app via Docker or SSH.(v2.1.119)
• Fixed `${ENV_VAR}` placeholders in `headers` for HTTP/SSE/WebSocket MCP servers from not being substituted before requests.(v2.1.119)
• Fixed MCP OAuth client secret provided via `--client-secret` not being sent during token exchange for servers requiring `client_secret_post`.(v2.1.119)
• Fixed the Enter key in the `/skills` dialog from closing the dialog instead of pre-filling `/<skill-name>` into the prompt.(v2.1.119)
• Fixed the `/agents` detail view from mislabeling built-in tools unavailable to subagents as "Unrecognized".(v2.1.119)
• Fixed MCP servers originating from plugins from failing to spawn on Windows when the plugin cache was incomplete.(v2.1.119)
• Fixed `/export` from showing the current default model instead of the model the conversation actually used.(v2.1.119)
• Fixed the verbose output setting from not persisting correctly after a restart.(v2.1.119)
• Fixed `/usage` progress bars from overlapping with their corresponding "Resets …" labels.(v2.1.119)
• Fixed plugin MCP servers from failing when `${user_config.*}` references an optional field that was left blank.(v2.1.119)
• Fixed list items containing a sentence-final number from wrapping that number onto its own line.(v2.1.119)
• Fixed `/plan` and `/plan open` from not acting on the existing plan when entering plan mode.(v2.1.119)
• Fixed skills invoked before auto-compaction from being re-executed against the next user message.(v2.1.119)
• Fixed `/reload-plugins` and `/doctor` from reporting load errors for plugins that were disabled.(v2.1.119)
• Fixed Agent tool instances using `isolation: "worktree"` from reusing stale worktrees from prior sessions.(v2.1.119)
• Fixed disabled MCP servers from incorrectly appearing as "failed" in the `/status` command output.(v2.1.119)
• Fixed `TaskList` from returning tasks in arbitrary filesystem order instead of sorting them by ID.(v2.1.119)
• Fixed spurious "GitHub API rate limit exceeded" hints appearing when `gh` output contained PR titles that mentioned "rate limit".(v2.1.119)
• Fixed SDK/bridge `read_file` functionality from not correctly enforcing the size cap on growing files.(v2.1.119)
• Fixed the PR not being linked to the session when working within a git worktree.(v2.1.119)
• Fixed `/doctor` from incorrectly warning about MCP server entries that were overridden by a higher-precedence scope.(v2.1.119)
• Removed a false-positive warning on Windows regarding the need for a `'cmd /c' wrapper` for MCP configuration.(v2.1.119)
• Fixed voice dictation's first recording producing no output on macOS while the microphone permission prompt was visible in VSCode.(v2.1.119)
• Fixed `/mcp` menu hiding OAuth Authenticate/Re-authenticate actions for servers configured with `headersHelper`, and HTTP/SSE MCP servers with custom headers being stuck in "needs authentication" after a transient 401(v2.1.118)
• Fixed MCP servers whose OAuth token response omits `expires_in` requiring re-authentication every hour(v2.1.118)
• Fixed MCP step-up authorization silently refreshing instead of prompting for re-consent when the server's `insufficient_scope` 403 names a scope the current token already has(v2.1.118)
• Fixed an unhandled promise rejection when an MCP server's OAuth flow times out or is cancelled(v2.1.118)
• Fixed MCP OAuth refresh proceeding without its cross-process lock under contention(v2.1.118)
• Fixed macOS keychain race where a concurrent MCP token refresh could overwrite a freshly-refreshed OAuth token, causing unexpected "Please run /login" prompts(v2.1.118)
• Fixed OAuth token refresh failing when the server revokes a token before its local expiry time(v2.1.118)
• Fixed credential save crash on Linux/Windows corrupting `~/.claude/.credentials.json`(v2.1.118)
• Fixed `/login` having no effect in a session launched with `CLAUDE_CODE_OAUTH_TOKEN`; the environment token is now cleared so disk credentials take effect(v2.1.118)
• Fixed unreadable text in the "new messages" scroll pill and `/plugin` badges(v2.1.118)
• Fixed plan acceptance dialog offering "auto mode" instead of "bypass permissions" when running with `--dangerously-skip-permissions`(v2.1.118)
• Fixed agent-type hooks failing with "Messages are required for agent hooks" when configured for events other than `Stop` or `SubagentStop`(v2.1.118)
• Fixed `prompt` hooks re-firing on tool calls made by an agent-hook verifier subagent(v2.1.118)
• Fixed `/fork` writing the full parent conversation to disk per fork; it now writes a pointer and hydrates on read(v2.1.118)
• Fixed Alt+K / Alt+X / Alt+^ / Alt+_ freezing keyboard input(v2.1.118)
• Fixed connecting to a remote session overwriting your local `model` setting in `~/.claude/settings.json`(v2.1.118)
• Fixed typeahead showing "No commands match" error when pasting file paths that start with `/`(v2.1.118)
• Fixed `plugin install` on an already-installed plugin not re-resolving a dependency installed at the wrong version(v2.1.118)
• Fixed unhandled errors from file watcher on invalid paths or fd exhaustion(v2.1.118)
• Fixed Remote Control sessions getting archived on transient CCR initialization blips during JWT refresh(v2.1.118)
• Fixed subagents resumed via `SendMessage` not restoring the explicit `cwd` they were spawned with(v2.1.118)
• Fixed Plain-CLI OAuth sessions dying with "Please run /login" when the access token expires mid-session by reactively refreshing the token on 401 errors.(v2.1.117)
• Fixed WebFetch hanging on very large HTML pages by truncating input before HTML-to-markdown conversion.(v2.1.117)
• Fixed a crash when a proxy returns HTTP 204 No Content, now surfacing a clear error instead of a TypeError.(v2.1.117)
• Fixed /login having no effect when launched with the CLAUDE_CODE_OAUTH_TOKEN environment variable if that token subsequently expires.(v2.1.117)
• Fixed prompt-input undo (Ctrl+_) doing nothing immediately after typing and skipping a state on each undo step.(v2.1.117)
• Fixed NO_PROXY not being respected for remote API requests when running under Bun.(v2.1.117)
• Fixed rare spurious escape/return triggers when key names arrive as coalesced text over slow connections.(v2.1.117)
• Fixed SDK reload_plugins reconnecting all user MCP servers serially.(v2.1.117)
• Fixed Bedrock application-inference-profile requests failing with 400 when backed by Opus 4.7 with thinking disabled.(v2.1.117)
• Fixed MCP elicitation/create requests auto-cancelling in print/SDK mode when the server finishes connecting mid-turn.(v2.1.117)
• Fixed subagents running a different model than the main agent incorrectly flagging file reads with a malware warning.(v2.1.117)
• Fixed Opus 4.7 sessions showing inflated /context percentages and autocompacting too early because the context window size was miscalculated.(v2.1.117)
• Fixed broken column alignment for Devanagari and other Indic scripts rendering in the terminal UI(v2.1.116)
• Fixed Ctrl+- not triggering undo in terminals using the Kitty keyboard protocol (iTerm2, Ghostty, kitty, WezTerm, Windows Terminal)(v2.1.116)
• Fixed Cmd+Left/Right not jumping to line start/end in terminals that use the Kitty keyboard protocol (Warp fullscreen, kitty, Ghostty, WezTerm)(v2.1.116)
• Fixed Ctrl+Z hanging the terminal when Claude Code is launched via a wrapper process (e.g. `npx`, `bun run`)(v2.1.116)
• Fixed scrollback duplication in inline mode that occurred when resizing the terminal or during large output bursts(v2.1.116)
• Fixed modal search dialogs overflowing the screen at short terminal heights, hiding the search box and keyboard hints(v2.1.116)
• Fixed scattered blank cells and disappearing composer chrome in the VS Code integrated terminal during scrolling(v2.1.116)
• Fixed an intermittent API 400 error related to cache control TTL ordering that occurred during parallel request setup(v2.1.116)
• Fixed `/branch` rejecting conversations with transcripts larger than 50MB(v2.1.116)
• Fixed `/resume` silently showing an empty conversation on large session files instead of reporting the load error(v2.1.116)
• Fixed `/plugin` Installed tab showing the same item twice when it appears under Needs attention or Favorites(v2.1.116)
• Fixed `/update` and `/tui` not working after entering a worktree mid-session(v2.1.116)
• Fixed security sandbox auto-allow bypassing the dangerous-path safety check for `rm`/`rmdir` targeting critical system directories like `/` or `$HOME`(v2.1.116)
• Fixed a crash in the permission dialog when an agent teams teammate requested tool permission(v2.1.114)
• Fixed concurrent-call timeout handling where a message for one tool call could silently disarm another call's watchdog(v2.1.113)
• Fixed Cmd-backspace / `Ctrl+U` to correctly delete from the cursor to the start of the line(v2.1.113)
• Fixed markdown tables breaking when a cell contains an inline code span with a pipe character(v2.1.113)
• Fixed session recap auto-firing while composing unsent text in the prompt(v2.1.113)
• Fixed `/copy` "Full response" not aligning markdown table columns correctly for pasting into GitHub, Notion, or Slack(v2.1.113)
• Fixed messages typed while viewing a running subagent being hidden from its transcript and misattributed to the parent AI(v2.1.113)
• Fixed Bash `dangerouslyDisableSandbox` running commands outside the sandbox without triggering a permission prompt(v2.1.113)
• Fixed `/effort auto` confirmation message to correctly state "Effort level set to max"(v2.1.113)
• Fixed the "copied N chars" toast overcounting emoji and other multi-code-unit characters(v2.1.113)
• Fixed `/insights` crashing with `EBUSY` on Windows(v2.1.113)
• Fixed exit confirmation dialog mislabeling one-shot scheduled tasks as recurring; it now correctly shows a countdown(v2.1.113)
• Fixed slash/@ completion menu not sitting flush against the prompt border in fullscreen mode(v2.1.113)
• Fixed `CLAUDE_CODE_EXTRA_BODY` `output_config.effort` causing 400 errors on subagent calls to models that don't support effort and on Vertex AI(v2.1.113)
• Fixed prompt cursor disappearing when `NO_COLOR` is set(v2.1.113)
• Fixed `ToolSearch` ranking so pasted MCP tool names surface the actual tool instead of description-matching siblings(v2.1.113)
• Fixed compacting a resumed long-context session failing with "Extra usage is required for long context requests"(v2.1.113)
• Fixed `plugin install` succeeding when a dependency version conflicts with an already-installed plugin; it now correctly reports `range-conflict`(v2.1.113)
• Fixed "Refine with Ultraplan" not showing the remote session URL in the transcript(v2.1.113)
• Fixed SDK image content blocks that fail to process from crashing the session; they now degrade to a text placeholder(v2.1.113)
• Fixed Remote Control sessions not streaming subagent transcripts(v2.1.113)
• Fixed Remote Control sessions not being archived when Claude Code exits(v2.1.113)
• Fixed `thinking.type.enabled is not supported` 400 error when using Opus 4.7 via a Bedrock Application Inference Profile ARN(v2.1.113)
• Fixed permission prompts being triggered by read-only bash commands using glob patterns (e.g., `ls *.ts`) and commands starting with `cd <project-dir> &&`.(v2.1.111)
• Fixed the tool suggesting the closest matching subcommand when invoked with a near-miss typo (e.g., `claude udpate` now suggests `claude update`).(v2.1.111)
• Fixed LSP diagnostics from before an edit appearing after the edit, preventing the model from re-reading already edited files.(v2.1.111)
• Fixed tab-completing `/resume` immediately resuming an arbitrary titled session instead of showing the session picker.(v2.1.111)
• Fixed `/context` grid rendering issues showing extra blank lines between rows.(v2.1.111)
• Fixed `/clear` dropping the session name set by `/rename`, which caused the statusline output to lose `session_name`.(v2.1.111)
• Fixed plugin dependency errors: distinguishing conflicting, invalid, and overly complex version requirements; fixed stale resolved versions after `plugin update`; `plugin install` now recovers from interrupted prior installs.(v2.1.111)
• Fixed Claude calling a non-existent `commit` skill and showing "Unknown skill: commit" for users without a custom `/commit` command.(v2.1.111)
• Fixed 429 rate-limit errors on Bedrock/Vertex/Foundry incorrectly referencing status.claude.com.(v2.1.111)
• Fixed feedback surveys appearing back-to-back after dismissing one.(v2.1.111)
• Fixed bare URLs in bash/PowerShell/MCP tool output being unclickable when the terminal wraps them across lines.(v2.1.111)
• Fixed Windows environment file application: `CLAUDE_ENV_FILE` and SessionStart hook environment files now apply correctly.(v2.1.111)
• Fixed Windows permission rules: paths with drive-letter paths are now correctly root-anchored, and paths differing only by drive-letter case are recognized as the same path.(v2.1.111)
• Fixed terminal display tearing (random characters, drifting input) in iTerm2 + tmux setups when terminal notifications are sent.(v2.1.111)
• Fixed `@` file suggestions re-scanning the entire project on every turn in non-git working directories, and fixed showing only config files in freshly-initialized git repos with no tracked files.(v2.1.111)
• Fixed MCP tool calls hanging indefinitely when the server connection drops mid-response on SSE/HTTP transports.(v2.1.110)
• Fixed non-streaming fallback retries causing multi-minute hangs when the API is unreachable.(v2.1.110)
• Fixed session recap, local slash-command output, and other system status lines not appearing in focus mode.(v2.1.110)
• Fixed high CPU usage in fullscreen when text is selected while a tool is running.(v2.1.110)
• Fixed plugin install not honoring dependencies declared in `plugin.json` when the marketplace entry omits them; /plugin install now lists auto-installed dependencies.(v2.1.110)
• Fixed skills with `disable-model-invocation: true` failing when invoked via /<skill> mid-message.(v2.1.110)
• Fixed `--resume` sometimes showing the first prompt instead of the /rename name for sessions still running or exited uncleanly.(v2.1.110)
• Fixed queued messages briefly appearing twice during multi-tool-call turns.(v2.1.110)
• Fixed session cleanup not removing the full session directory including subagent transcripts.(v2.1.110)
• Fixed dropped keystrokes after the CLI relaunches (e.g. /tui, provider setup wizards).(v2.1.110)
• Fixed garbled startup rendering in macOS Terminal.app and other terminals that don't support synchronized output.(v2.1.110)
• Hardened "Open in editor" actions against command injection from untrusted filenames.(v2.1.110)
• Fixed `PermissionRequest` hooks returning `updatedInput` not being re-checked against `permissions.deny` rules; `setMode:'bypassPermissions'` updates now respect `disableBypassPermissionsMode`.(v2.1.110)
• Fixed `PreToolUse` hook `additionalContext` being dropped when the tool call fails.(v2.1.110)
• Fixed stdio MCP servers that print stray non-JSON lines to stdout being disconnected on the first stray line (regression in 2.1.105).(v2.1.110)
• Fixed headless/SDK session auto-title firing an extra Haiku request when `CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC` or `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` is set.(v2.1.110)
• Fixed potential excessive memory allocation when piped (non-TTY) Ink output contains a single very wide line.(v2.1.110)
• Fixed /skills menu not scrolling when the list overflows the modal in fullscreen mode.(v2.1.110)
• Fixed Remote Control sessions showing a generic error instead of prompting for re-login when the session is too old.(v2.1.110)
• Fixed Remote Control session renames from claude.ai not persisting the title to the local CLI session.(v2.1.110)
• Fixed paste not working in the /login code prompt (regression in 2.1.105)(v2.1.108)
• Fixed subscribers who set DISABLE_TELEMETRY falling back to 5-minute prompt cache TTL instead of 1 hour(v2.1.108)
• Fixed Agent tool prompting for permission in auto mode when the safety classifier's transcript exceeded its context window(v2.1.108)
• Fixed Bash tool producing no output when CLAUDE_ENV_FILE (e.g. ~/.zprofile) ends with a # comment line(v2.1.108)
• Fixed claude --resume <session-id> losing the session's custom name and color set via /rename(v2.1.108)
• Fixed session titles showing placeholder example text when the first message is a short greeting(v2.1.108)
• Fixed terminal escape codes appearing as garbage text in the prompt input after --teleport(v2.1.108)
• Fixed /feedback retry: pressing Enter to resubmit after a failure now works without first editing the description(v2.1.108)
• Fixed --teleport and --resume <id> precondition errors (e.g. dirty git tree, session not found) exiting silently instead of showing the error message(v2.1.108)
• Fixed Remote Control session titles set in the web UI being overwritten by auto-generated titles after the third message(v2.1.108)
• Fixed --resume truncating sessions when the transcript contained a self-referencing message(v2.1.108)
• Fixed transcript write failures (e.g. disk full) being silently dropped instead of being logged(v2.1.108)
• Fixed diacritical marks (accents, umlauts, cedillas) being dropped from responses when the language setting is configured(v2.1.108)
• Fixed policy-managed plugins never auto-updating when running from a different project than where they were first installed(v2.1.108)
• Fixed images attached to queued messages (sent while Claude is working) being dropped.(v2.1.105)
• Fixed the screen going blank when the prompt input wraps to a second line in long conversations.(v2.1.105)
• Fixed leading whitespace being copied when selecting multi-line assistant responses in fullscreen mode.(v2.1.105)
• Fixed leading whitespace being trimmed from assistant messages, which broke ASCII art and indented diagrams.(v2.1.105)
• Fixed garbled bash output when commands print clickable file links (e.g. Python `rich`/`loguru` logging).(v2.1.105)
• Fixed alt+enter not inserting a newline in terminals using ESC-prefix alt encoding, and Ctrl+J not inserting a newline (regression in 2.1.100).(v2.1.105)
• Fixed duplicate "Creating worktree" text in EnterWorktree/ExitWorktree tool display.(v2.1.105)
• Fixed queued user prompts disappearing from focus mode.(v2.1.105)
• Fixed one-shot scheduled tasks re-firing repeatedly when the file watcher missed the post-fire cleanup.(v2.1.105)
• Fixed inbound channel notifications being silently dropped after the first message for Team/Enterprise users.(v2.1.105)
• Fixed marketplace plugins with `package.json` and lockfile not having dependencies installed automatically after install/update.(v2.1.105)
• Fixed marketplace auto-update leaving the official marketplace in a broken state when a plugin process holds files open during the update.(v2.1.105)
• Fixed "Resume this session with..." hint not printing on exit after `/resume`, `--worktree`, or `/branch`.(v2.1.105)
• Fixed feedback survey shortcut keys firing when typed at the end of a longer prompt.(v2.1.105)
• Fixed stdio MCP server emitting malformed (non-JSON) output hanging the session instead of failing fast with "Connection closed".(v2.1.105)
• Fixed MCP tools missing on the first turn of headless/remote-trigger sessions when MCP servers connect asynchronously.(v2.1.105)
• Fixed `/model` picker on AWS Bedrock in non-US regions persisting invalid `us.*` model IDs to `settings.json` when inference profile discovery is still in-flight.(v2.1.105)
• Fixed 429 rate-limit errors showing a raw JSON dump instead of a clean message for API-key, Bedrock, and Vertex users.(v2.1.105)
• Fixed crash on resume when session contains malformed text blocks.(v2.1.105)
• Fixed `/help` dropping the tab bar, Shortcuts heading, and footer at short terminal heights.(v2.1.105)
• Fixed malformed keybinding entry values in `keybindings.json` being silently loaded instead of rejected with a clear error.(v2.1.105)
• Fixed `CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC` in one project's settings permanently disabling usage metrics for all projects on the machine.(v2.1.105)
• Fixed washed-out 16-color palette when using Ghostty, Kitty, Alacritty, WezTerm, foot, rio, or Contour over SSH/mosh.(v2.1.105)
• Fixed Bash tool suggesting `acceptEdits` permission mode when exiting plan mode would downgrade from a higher permission level.(v2.1.105)
• Fixed a command injection vulnerability in the POSIX which fallback used by LSP binary detection.(v2.1.101)
• Fixed a memory leak where long sessions retained dozens of historical copies of the message list in the virtual scroller.(v2.1.101)
• Fixed resume/continue losing conversation context on large sessions when the loader anchored on a dead-end branch.(v2.1.101)
• Fixed resume chain recovery bridging into an unrelated subagent conversation when a subagent message landed near a main-chain write gap.(v2.1.101)
• Fixed a crash on resume when a persisted Edit\/Write tool result was missing its file_path.(v2.1.101)
• Fixed a hardcoded 5-minute request timeout that aborted slow backends regardless of API_TIMEOUT_MS.(v2.1.101)
• Fixed permissions.deny rules not overriding a PreToolUse hook's permissionDecision: "ask", preventing hooks from downgrading denies to prompts.(v2.1.101)
• Fixed setting sources without user causing background cleanup to ignore cleanupPeriodDays and delete history older than 30 days.(v2.1.101)
• Fixed Bedrock SigV4 authentication failing with 403 when Authorization headers were set via environment variables or helpers.(v2.1.101)
• Fixed claude -w <name> failing with "already exists" after stale worktree cleanup from a previous session.(v2.1.101)
• Fixed subagents not inheriting MCP tools from dynamically-injected servers.(v2.1.101)
• Fixed sub-agents running in isolated worktrees being denied Read\/Edit access to files inside their own worktree.(v2.1.101)
• Fixed sandboxed Bash commands failing with mktemp: No such file or directory after a fresh boot.(v2.1.101)
• Fixed claude mcp serve tool calls failing with "Tool execution failed" in MCP clients that validate outputSchema.(v2.1.101)
• Fixed RemoteTrigger tool's run action sending an empty body and being rejected by the server.(v2.1.101)
• Fixed several resume picker issues including narrow default view, unreachable preview on Windows Terminal, incorrect cwd, missing session-not-found errors, and terminal title not being set.(v2.1.101)
• Fixed Grep tool ENOENT when the embedded ripgrep binary path becomes stale; now falls back to system rg and self-heals.(v2.1.101)
• Fixed \/btw writing a copy of the entire conversation to disk on every use.(v2.1.101)
• Fixed \/context Free space and Messages breakdown disagreeing with the header percentage.(v2.1.101)
• Fixed several plugin issues including slash commands resolving incorrectly, \/plugin update failing with ENAMETOOLONG, Discover showing installed plugins, directory-source plugins loading stale cache, and skills not honoring context and agent frontmatter.(v2.1.101)
• Fixed the \/mcp menu offering OAuth-specific actions for servers configured with headersHelper; Reconnect is now offered instead.(v2.1.101)
• Fixed ctrl+], ctrl+\, and ctrl+^ keybindings not firing in terminals that send raw C0 control bytes.(v2.1.101)
• Fixed \/login OAuth URL rendering with padding that prevented clean mouse selection.(v2.1.101)
• Fixed rendering issues including flicker in non-fullscreen mode, scrollback wiping, and mouse-scroll escape sequences leaking into the prompt.(v2.1.101)
• Fixed crash when settings.json env values are numbers instead of strings.(v2.1.101)
• Fixed in-app settings writes not refreshing the in-memory snapshot, preventing removed directories from being revoked mid-session.(v2.1.101)
• Fixed custom keybindings not loading on Bedrock, Vertex, and other third-party providers.(v2.1.101)
• Fixed claude --continue -p not correctly continuing sessions created by -p or the SDK.(v2.1.101)
• Fixed several Remote Control issues including worktrees removed on session crash, connection failures not persisting, spurious Disconnected indicator in brief mode, and \/remote-control failing over SSH when only Organization UUID is set.(v2.1.101)
• Fixed \/insights sometimes omitting the report file link from its response.(v2.1.101)
• Fixed the file attachment below the chat input not clearing when the last editor tab is closed in VSCode.(v2.1.101)
• Fixed a Bash tool permission bypass where an escaped flag could be auto-allowed as read-only, potentially leading to arbitrary code execution.(v2.1.98)
• Fixed compound Bash commands bypassing forced permission prompts for safety checks and explicit ask rules in auto and bypass-permissions modes.(v2.1.98)
• Fixed read-only commands with environment variable prefixes not prompting unless the variable is known-safe (e.g., `LANG`, `TZ`).(v2.1.98)
• Fixed redirects to `/dev/tcp/...` or `/dev/udp/...` not prompting instead of auto-allowing.(v2.1.98)
• Fixed stalled streaming responses timing out instead of falling back to non-streaming mode.(v2.1.98)
• Fixed 429 retries burning all attempts too quickly by ensuring exponential backoff applies as a minimum.(v2.1.98)
• Fixed MCP OAuth `oauth.authServerMetadataUrl` configuration override not being honored on token refresh after restart.(v2.1.98)
• Fixed capital letters being dropped to lowercase in xterm and VS Code integrated terminals when the kitty keyboard protocol is active.(v2.1.98)
• Fixed macOS text replacements deleting the trigger word instead of inserting the substitution.(v2.1.98)
• Fixed `--dangerously-skip-permissions` being silently downgraded to accept-edits mode after approving a write to a protected path via Bash.(v2.1.98)
• Fixed managed-settings allow rules remaining active after an admin removed them until process restart.(v2.1.98)
• Fixed `permissions.additionalDirectories` changes not applying mid-session; removed directories now lose access immediately.(v2.1.98)
• Fixed removing a directory from `additionalDirectories` revoking access to the same directory passed via `--add-dir`.(v2.1.98)
• Fixed `Bash(cmd:*)` and `Bash(git commit *)` wildcard permission rules failing to match commands with extra spaces or tabs.(v2.1.98)
• Fixed `Bash(...)` deny rules being downgraded to a prompt for piped commands that mix `cd` with other segments.(v2.1.98)
• Fixed false Bash permission prompts for commands like `cut -d /` and filenames containing `%`.(v2.1.98)
• Fixed permission rules with names matching JavaScript prototype properties (e.g., `toString`) causing `settings.json` to be silently ignored.(v2.1.98)
• Fixed agent team members not inheriting the leader's permission mode when using `--dangerously-skip-permissions`.(v2.1.98)
• Fixed a crash in fullscreen mode when hovering over MCP tool results.(v2.1.98)
• Fixed copying wrapped URLs in fullscreen mode inserting spaces at line breaks.(v2.1.98)
• Fixed file-edit diffs disappearing from the UI on `--resume` when the edited file was larger than 10KB.(v2.1.98)
• Fixed several `/resume` picker issues including uneditable resumes, search state wiping, and transient status text.(v2.1.98)
• Fixed `/export` not honoring absolute paths and `~`, and silently rewriting user-supplied extensions to `.txt`.(v2.1.98)
• Fixed `/effort max` being denied for unknown or future model IDs.(v2.1.98)
• Fixed slash command picker breaking when a plugin's frontmatter `name` is a YAML boolean keyword.(v2.1.98)
• Fixed rate-limit upsell text being hidden after message remounts.(v2.1.98)
• Fixed MCP tools with `_meta["anthropic/maxResultSizeChars"]` not bypassing the token-based persist layer.(v2.1.98)
• Fixed voice mode leaking space characters into input when re-holding the push-to-talk key during transcript processing.(v2.1.98)
• Fixed `DISABLE_AUTOUPDATER` not fully suppressing the npm registry version check and symlink modification.(v2.1.98)
• Fixed a memory leak where Remote Control permission handler entries were retained for the entire session.(v2.1.98)
• Fixed background subagents that fail with an error not reporting partial progress to the parent agent.(v2.1.98)
• Fixed prompt-type Stop/SubagentStop hooks failing on long sessions.(v2.1.98)
• Fixed feedback survey rendering when dismissed.(v2.1.98)
• Fixed Bash `grep -f FILE` / `rg -f FILE` not prompting when reading a pattern file outside the working directory.(v2.1.98)
• Fixed stale subagent worktree cleanup removing worktrees that contain untracked files.(v2.1.98)
• Fixed `sandbox.network.allowMachLookup` not taking effect on macOS.(v2.1.98)
• Fixed `CLAUDE_CODE_MAX_CONTEXT_TOKENS` not honoring `DISABLE_COMPACT` when set.(v2.1.98)
• Fixed VSCode reporting a false-positive "requires git-bash" error on Windows when the path is correctly configured.(v2.1.98)
• Fixed --dangerously-skip-permissions being silently downgraded to accept-edits mode after approving a write to a protected path(v2.1.97)
• Fixed and hardened Bash tool permissions, tightening checks around env-var prefixes and network redirects, and reducing false prompts on common commands(v2.1.97)
• Fixed permission rules with names matching JavaScript prototype properties (e.g. toString) causing settings.json to be silently ignored(v2.1.97)
• Fixed managed-settings allow rules remaining active after an admin removed them until process restart(v2.1.97)
• Fixed permissions.additionalDirectories changes in settings not applying mid-session(v2.1.97)
• Fixed removing a directory from settings.permissions.additionalDirectories revoking access to the same directory passed via --add-dir(v2.1.97)
• Fixed MCP HTTP/SSE connections accumulating ~50 MB/hr of unreleased buffers when servers reconnect(v2.1.97)
• Fixed MCP OAuth oauth.authServerMetadataUrl not being honored on token refresh after restart, fixing ADFS and similar IdPs(v2.1.97)
• Fixed 429 retries burning all attempts in ~13 seconds when the server returns a small Retry-After — exponential backoff now applies as a minimum(v2.1.97)
• Fixed rate-limit upgrade options disappearing after context compaction(v2.1.97)
• Fixed several /resume picker issues: --resume <name> opening uneditable, Ctrl+A reload wiping search, empty list swallowing navigation, task-status text replacing conversation summary, and cross-project staleness(v2.1.97)
• Fixed file-edit diffs disappearing on --resume when the edited file was larger than 10KB(v2.1.97)
• Fixed --resume cache misses and lost mid-turn input from attachment messages not being saved to the transcript(v2.1.97)
• Fixed messages typed while Claude is working not being persisted to the transcript(v2.1.97)
• Fixed prompt-type Stop/SubagentStop hooks failing on long sessions, and hook evaluator API errors displaying "JSON validation failed" instead of the actual message(v2.1.97)
• Fixed subagents with worktree isolation or cwd: override leaking their working directory back to the parent session's Bash tool(v2.1.97)
• Fixed compaction writing duplicate multi-MB subagent transcript files on prompt-too-long retries(v2.1.97)
• Fixed claude plugin update reporting "already at the latest version" for git-based marketplace plugins when the remote had newer commits(v2.1.97)
• Fixed slash command picker breaking when a plugin's frontmatter name is a YAML boolean keyword(v2.1.97)
• Fixed copying wrapped URLs in NO_FLICKER mode inserting spaces at line breaks(v2.1.97)
• Fixed scroll rendering artifacts in NO_FLICKER mode when running inside zellij(v2.1.97)
• Fixed a crash in NO_FLICKER mode when hovering over MCP tool results(v2.1.97)
• Fixed a NO_FLICKER mode memory leak where API retries left stale streaming state(v2.1.97)
• Fixed slow mouse-wheel scrolling in NO_FLICKER mode on Windows Terminal(v2.1.97)
• Fixed custom status line not displaying in NO_FLICKER mode on terminals shorter than 24 rows(v2.1.97)
• Fixed Shift+Enter and Alt/Cmd+arrow shortcuts not working in Warp with NO_FLICKER mode(v2.1.97)
• Fixed Korean/Japanese/Unicode text becoming garbled when copied in no-flicker mode on Windows(v2.1.97)
• Fixed Bedrock SigV4 authentication failing when AWS_BEARER_TOKEN_BEDROCK or ANTHROPIC_BEDROCK_BASE_URL are set to empty strings (as GitHub Actions does for unset inputs)(v2.1.97)
• Fixed agents appearing stuck after a 429 rate-limit response with a long Retry-After header; the error now surfaces immediately.(v2.1.94)
• Fixed Console login on macOS silently failing when the login keychain is locked or out of sync; the error is now surfaced and `claude doctor` diagnoses the fix.(v2.1.94)
• Fixed plugin skill hooks defined in YAML frontmatter being silently ignored.(v2.1.94)
• Fixed plugin hooks failing with "No such file or directory" when `CLAUDE_PLUGIN_ROOT` was not set.(v2.1.94)
• Fixed `${CLAUDE_PLUGIN_ROOT}` resolving incorrectly for local-marketplace plugins on startup.(v2.1.94)
• Fixed scrollback showing repeated diffs and blank pages in long-running sessions.(v2.1.94)
• Fixed multiline user prompts in the transcript indenting wrapped lines incorrectly under the caret.(v2.1.94)
• Fixed Shift+Space inserting the literal word "space" instead of a space character in search inputs.(v2.1.94)
• Fixed hyperlinks opening two browser tabs when clicked inside tmux running in an xterm.js-based terminal.(v2.1.94)
• Fixed an alt-screen rendering bug that could leave compounding ghost lines during scrolling.(v2.1.94)
• Fixed the `FORCE_HYPERLINK` environment variable being ignored when set via `settings.json` `env`.(v2.1.94)
• Fixed native terminal cursor not tracking the selected tab in dialogs.(v2.1.94)
• Fixed Bedrock invocation of Sonnet 3.5 v2 by correctly using the `us.` inference profile ID.(v2.1.94)
• Fixed SDK/print mode not preserving the partial assistant response in conversation history when interrupted mid-stream.(v2.1.94)
• Fixed CJK and other multibyte text being corrupted with U+FFFD in stream-json input/output when chunk boundaries split a UTF-8 sequence.(v2.1.94)
• Fixed VSCode dropdown menus selecting the wrong item when the mouse was over the list while typing or using arrow keys.(v2.1.94)
• Fixed subagent spawning permanently failing with "Could not determine pane count" after tmux windows were killed or renumbered during a long-running session.(v2.1.92)
• Fixed prompt-type Stop hooks incorrectly failing when the small fast model returns ok:false, restoring preventContinuation:true semantics for non-Stop prompt-type hooks.(v2.1.92)
• Fixed tool input validation failures when streaming emits array/object fields as JSON-encoded strings.(v2.1.92)
• Fixed an API 400 error that could occur when extended thinking produced a whitespace-only text block alongside real content.(v2.1.92)
• Fixed accidental feedback survey submissions caused by auto-pilot keypresses and consecutive-prompt digit collisions.(v2.1.92)
• Fixed misleading "esc to interrupt" hint appearing alongside "esc to clear" when text selection exists in fullscreen mode during processing.(v2.1.92)
• Fixed Homebrew install update prompts to use the correct release channel (claude-code → stable, claude-code@latest → latest).(v2.1.92)
• Fixed ctrl+e jumping to the end of the next line when already at the end of the line in multiline prompts.(v2.1.92)
• Fixed an issue where the same message could appear at two positions when scrolling up in fullscreen mode (for terminals supporting DEC 2026).(v2.1.92)
• Fixed idle-return "/clear to save X tokens" hint showing cumulative session tokens instead of the current context size.(v2.1.92)
• Fixed plugin MCP servers getting stuck "connecting" on session start when they duplicate an unauthenticated claude.ai connector.(v2.1.92)
• Restored unix-socket blocking for sandboxed commands by ensuring the apply-seccomp helper ships in both npm and native builds for the Linux sandbox.(v2.1.92)
• Fixed transcript chain breaks occurring with `--resume` that previously caused silent failures in async transcript writes, leading to lost conversation history.(v2.1.91)
• Fixed `cmd+delete` functionality not deleting text to the start of the line across iTerm2, kitty, WezTerm, Ghostty, and Windows Terminal.(v2.1.91)
• Fixed plan mode in remote sessions losing track of the plan file after a container restart, which previously caused permission prompts on plan edits and an empty plan-approval modal.(v2.1.91)
• Fixed JSON schema validation errors when setting `permissions.defaultMode: "auto"` in settings.json.(v2.1.91)
• Fixed an issue where Windows version cleanup was incorrectly protecting the rollback copy of the active version.(v2.1.91)
• Fixed an infinite loop where the rate-limit options dialog would repeatedly auto-open after hitting the usage limit, preventing session crashes(v2.1.90)
• Fixed regression where `--resume` caused a full prompt-cache miss on the first request for users with deferred tools, MCP servers, or custom agents(v2.1.90)
• Fixed Edit/Write operations failing with "File content has changed" when a PostToolUse format-on-save hook rewrites the file between consecutive edits(v2.1.90)
• Fixed PreToolUse hooks emitting JSON to stdout and exiting with code 2 not correctly blocking the tool call(v2.1.90)
• Fixed collapsed search/read summary badge appearing multiple times in fullscreen scrollback when a CLAUDE.md file auto-loads during a tool call(v2.1.90)
• Fixed auto mode not respecting explicit user boundaries (e.g., "don't push", "wait for X before Y")(v2.1.90)
• Fixed UI crash that occurred when malformed tool input reached the permission dialog(v2.1.90)
• Hardened PowerShell tool permission checks, fixing trailing & background job bypass, -ErrorAction Break debugger hang, archive-extraction TOCTOU, and parse-fail fallback deny-rule degradation(v2.1.90)
• Fixed Edit(//path/**) and Read(//path/**) allow rules to correctly check the resolved symlink target instead of just the requested path.(v2.1.89)
• Fixed voice push-to-talk activation issues with modifier-combo bindings and resolved WebSocket upgrade rejections in voice mode on Windows.(v2.1.89)
• Fixed Edit/Write tools incorrectly doubling CRLF and stripping Markdown hard line breaks (two trailing spaces) on Windows.(v2.1.89)
• Fixed StructuredOutput schema cache bug that caused approximately 50% failure rate when using multiple schemas.(v2.1.89)
• Fixed memory leak where large JSON inputs were retained as LRU cache keys during long-running sessions.(v2.1.89)
• Fixed crash occurring when removing a message from very large session files (over 50MB).(v2.1.89)
• Fixed LSP server zombie state after a crash; the server now restarts on the next request instead of failing until the session restarts.(v2.1.89)
• Fixed prompt history entries containing CJK or emoji being silently dropped when they fell on a 4KB boundary in ~/.claude/history.jsonl.(v2.1.89)
• Fixed /stats undercounting tokens by excluding subagent usage and losing historical data beyond 30 days when the stats cache format changed.(v2.1.89)
• Fixed -p --resume hangs when deferred tool input exceeds 64KB or lacks a deferred marker, and fixed -p --continue not resuming deferred tools.(v2.1.89)
• Fixed claude-cli:// deep links failing to open on macOS.(v2.1.89)
• Fixed MCP tool errors truncating to only the first content block when the server returned multi-element error content.(v2.1.89)
• Fixed skill reminders and other system context being dropped when sending messages with images via the SDK.(v2.1.89)
• Fixed PreToolUse/PostToolUse hooks receiving file_path as a relative path instead of the documented absolute path for Write/Edit/Read tools.(v2.1.89)
• Fixed autocompact thrash loop by detecting when context refills immediately after compacting three times and stopping with an actionable error.(v2.1.89)
• Fixed prompt cache misses in long sessions caused by tool schema bytes changing mid-session.(v2.1.89)
• Fixed nested CLAUDE.md files being re-injected dozens of times in long sessions that read many files.(v2.1.89)
• Fixed --resume crash when the transcript contained a tool result from an older CLI version or an interrupted write.(v2.1.89)
• Fixed misleading "Rate limit reached" message when the API returned an entitlement error; now shows the actual error.(v2.1.89)
• Fixed hooks if condition filtering not matching compound commands (e.g., ls && git push) or commands with env-var prefixes.(v2.1.89)
• Fixed collapsed search/read group badges duplicating in terminal scrollback during heavy parallel tool use.(v2.1.89)
• Fixed notification invalidates not clearing the currently-displayed notification immediately.(v2.1.89)
• Fixed prompt briefly disappearing after submit when background messages arrived during processing.(v2.1.89)
• Fixed truncation of Devanagari and other combining-mark text in assistant output.(v2.1.89)
• Fixed rendering artifacts on main-screen terminals after layout shifts.(v2.1.89)
• Fixed voice mode failing to request microphone permission on macOS Apple Silicon.(v2.1.89)
• Fixed Shift+Enter submitting instead of inserting a newline on Windows Terminal Preview 1.25.(v2.1.89)
• Fixed periodic UI jitter during streaming in iTerm2 when running inside tmux.(v2.1.89)
• Fixed PowerShell tool incorrectly reporting failures when commands like git push wrote progress to stderr on Windows PowerShell 5.1.(v2.1.89)
• Fixed potential out-of-memory crash when the Edit tool was used on very large files (>1 GiB).(v2.1.89)
• Fixed prompt cache misses in long sessions caused by tool schema bytes changing mid-session(v2.1.88)
• Fixed nested CLAUDE.md files being re-injected dozens of times in long sessions that read many files(v2.1.88)
• Fixed Edit/Write tools doubling CRLF on Windows and stripping Markdown hard line breaks (two trailing spaces)(v2.1.88)
• Fixed `StructuredOutput` schema cache bug causing ~50% failure rate in workflows with multiple schemas(v2.1.88)
• Fixed memory leak where large JSON inputs were retained as LRU cache keys in long-running sessions(v2.1.88)
• Fixed a potential out-of-memory crash when the Edit tool was used on very large files (>1 GiB)(v2.1.88)
• Fixed a crash when removing a message from very large session files (over 50MB)(v2.1.88)
• Fixed `--resume` crash when transcript contains a tool result from an older CLI version or interrupted write(v2.1.88)
• Fixed misleading "Rate limit reached" message when the API returned an entitlement error; now shows the actual error with actionable hints(v2.1.88)
• Fixed LSP server zombie state after crash; server now restarts on next request instead of failing until session restart(v2.1.88)
• Fixed hooks `if` condition filtering not matching compound commands (`ls && git push`) or commands with env-var prefixes (`FOO=bar git push`)(v2.1.88)
• Fixed prompt history entries containing CJK or emoji being silently dropped when they fall on a 4KB boundary in `~/.claude/history.jsonl`(v2.1.88)
• Fixed `/stats` losing historical data beyond 30 days when the stats cache format changes(v2.1.88)
• Fixed `/stats` undercounting tokens by excluding subagent/fork usage(v2.1.88)
• Fixed scrollback disappearing when scrolling up in long sessions(v2.1.88)
• Fixed collapsed search/read group badges duplicating in terminal scrollback during heavy parallel tool use(v2.1.88)
• Fixed notification `invalidates` not clearing the currently-displayed notification immediately(v2.1.88)
• Fixed prompt briefly disappearing after submit when background messages arrived during processing(v2.1.88)
• Fixed long `/btw` responses being clipped with no way to scroll; responses now render in a scrollable viewport(v2.1.88)
• Fixed Devanagari and other combining-mark text being truncated in assistant output(v2.1.88)
• Fixed rendering artifacts on main-screen terminals after layout shifts(v2.1.88)
• Fixed voice mode failing to request microphone permission on macOS Apple Silicon(v2.1.88)
• Fixed voice push-to-talk not activating for some modifier-combo bindings(v2.1.88)
• Fixed voice mode on Windows failing with "WebSocket upgrade rejected with HTTP 101"(v2.1.88)
• Fixed Shift+Enter submitting instead of inserting a newline on Windows Terminal Preview 1.25(v2.1.88)
• Fixed periodic UI jitter during streaming in iTerm2 when running inside tmux(v2.1.88)
• Fixed PowerShell tool incorrectly reporting failures when commands like `git push` wrote progress to stderr on Windows PowerShell 5.1(v2.1.88)
• Fixed SDK error result messages (`error_during_execution`, `error_max_turns`) to correctly set `is_error: true` with descriptive messages(v2.1.88)
• Fixed task notifications being lost when backgrounding a session with Ctrl+B(v2.1.88)
• Fixed PreToolUse/PostToolUse hooks not providing `file_path` as an absolute path for Write/Edit/Read tools(v2.1.88)
• Fixed --resume failing with "tool_use ids were found without tool_result blocks" on sessions created before v2.1.85.(v2.1.86)
• Fixed Write/Edit/Read failing on files outside the project root (e.g., ~/.claude/CLAUDE.md) when conditional skills or rules are configured.(v2.1.86)
• Fixed unnecessary config disk writes on every skill invocation that could cause performance issues and config corruption on Windows.(v2.1.86)
• Fixed potential out-of-memory crash when using /feedback on very long sessions with large transcript files.(v2.1.86)
• Fixed --bare mode dropping MCP tools in interactive sessions and silently discarding messages enqueued mid-turn.(v2.1.86)
• Fixed the c shortcut copying only ~20 characters of the OAuth login URL instead of the full URL.(v2.1.86)
• Fixed masked input (e.g., OAuth code paste) leaking the start of the token when wrapping across multiple lines on narrow terminals.(v2.1.86)
• Fixed official marketplace plugin scripts failing with "Permission denied" on macOS/Linux since v2.1.83.(v2.1.86)
• Fixed statusline showing another session's model when running multiple Claude Code instances and using /model in one of them.(v2.1.86)
• Fixed scroll not following new messages after wheel scroll or click-to-select at the bottom of a long conversation.(v2.1.86)
• Fixed /plugin uninstall dialog: pressing n now correctly uninstalls the plugin while preserving its data directory.(v2.1.86)
• Fixed a regression where pressing Enter after clicking could leave the transcript blank until the response arrived.(v2.1.86)
• Fixed ultrathink hint lingering after deleting the keyword.(v2.1.86)
• Fixed memory growth in long sessions from markdown/highlight render caches retaining full content strings.(v2.1.86)
• Fixed VSCode extension incorrectly showing "Not responding" during long-running operations.(v2.1.86)
• Fixed VSCode extension defaulting Max plan users to Sonnet after the OAuth token refreshes (8 hours after login).(v2.1.86)
• Fixed `/compact` failing with "context exceeded" when the conversation history is too large for the compact request itself.(v2.1.85)
• Fixed `/plugin enable` and `/plugin disable` failing when a plugin's install location differs from its declaration in settings.(v2.1.85)
• Fixed `--worktree` exiting with an error in non-git repositories before the `WorktreeCreate` hook could execute.(v2.1.85)
• Fixed `deniedMcpServers` setting failing to block claude.ai MCP servers.(v2.1.85)
• Fixed `switch_display` in the computer-use tool returning "not available in this session" on multi-monitor setups.(v2.1.85)
• Fixed crash when OpenTelemetry log, metric, or trace exporters are set to `none`.(v2.1.85)
• Fixed diff syntax highlighting not working in non-native builds.(v2.1.85)
• Fixed MCP step-up authorization failing when a refresh token exists; servers requesting elevated scopes now correctly trigger re-authorization.(v2.1.85)
• Fixed memory leak in remote sessions when a streaming response is interrupted.(v2.1.85)
• Fixed persistent ECONNRESET errors during edge connection churn by using a fresh TCP connection on retry.(v2.1.85)
• Fixed prompts getting stuck in the queue after certain slash commands, preventing retrieval with the up-arrow key.(v2.1.85)
• Fixed Python Agent SDK: `type:'sdk'` MCP servers passed via `--mcp-config` not being retained during startup.(v2.1.85)
• Fixed raw key sequences appearing in the prompt when running over SSH or in the VS Code integrated terminal.(v2.1.85)
• Fixed Remote Control session status remaining stuck on "Requires Action" after a permission is resolved.(v2.1.85)
• Fixed shift+enter and meta+enter being intercepted by typeahead suggestions instead of inserting newlines.(v2.1.85)
• Fixed stale content bleeding through when scrolling up during streaming.(v2.1.85)
• Fixed terminal remaining in enhanced keyboard mode after exit in supported terminals (Ghostty, Kitty, WezTerm), ensuring Ctrl+C and Ctrl+D work correctly.(v2.1.85)
• Fixed voice push-to-talk: holding the voice key no longer leaks characters into the text input, and transcripts now insert at the correct position.(v2.1.84)
• Fixed up/down arrow keys being unresponsive when a footer item is focused.(v2.1.84)
• Fixed `Ctrl+U` (kill-to-line-start) being a no-op at line boundaries in multiline input, so repeated `Ctrl+U` now clears across lines.(v2.1.84)
• Fixed null-unbinding a default chord binding (e.g. `"ctrl+x ctrl+k": null`) still entering chord-wait mode instead of freeing the prefix key.(v2.1.84)
• Fixed mouse events inserting literal "mouse" text into transcript search input.(v2.1.84)
• Fixed workflow subagents failing with API 400 when the outer session uses `--json-schema` and the subagent also specifies a schema.(v2.1.84)
• Fixed missing background color behind certain emoji in user message bubbles on some terminals.(v2.1.84)
• Fixed the "allow Claude to edit its own settings for this session" permission option not sticking for users with `Edit(.claude)` allow rules.(v2.1.84)
• Fixed a hang when generating attachment snippets for large edited files.(v2.1.84)
• Fixed MCP tool/resource cache leak on server reconnect.(v2.1.84)
• Fixed a startup performance issue where partial clone repositories (Scalar/GVFS) triggered mass blob downloads.(v2.1.84)
• Fixed native terminal cursor not tracking the text input caret, so IME composition (CJK input) now renders inline and screen readers can follow the input position.(v2.1.84)
• Fixed spurious "Not logged in" errors on macOS caused by transient keychain read failures.(v2.1.84)
• Fixed cold-start race where core tools could be deferred without their bypass active, causing Edit/Write to fail with InputValidationError on typed parameters.(v2.1.84)
• Fixed mouse tracking escape sequences leaking to the shell prompt after exiting the application.(v2.1.83)
• Resolved an issue causing Claude Code to hang on exit specifically on macOS.(v2.1.83)
• Fixed the screen flashing blank after being idle for a few seconds.(v2.1.83)
• Fixed a hang that occurred when diffing very large files with few common lines; diffs now time out gracefully after 5 seconds.(v2.1.83)
• Fixed a 1–8 second UI freeze on startup when voice input was enabled, caused by eager loading of the native audio module.(v2.1.83)
• Fixed a startup regression where Claude Code would wait approximately 3 seconds for the claude.ai MCP config fetch before proceeding.(v2.1.83)
• Fixed the `--mcp-config` CLI flag bypassing enforcement of `allowedMcpServers`/`deniedMcpServers` managed policies.(v2.1.83)
• Fixed claude.ai MCP connectors (Slack, Gmail, etc.) not being available when using single-turn `--print` mode.(v2.1.83)
• Fixed the `caffeinate` process not terminating correctly upon Claude Code exit, which prevented Mac systems from sleeping.(v2.1.83)
• Fixed bash mode not activating correctly when tab-accepting command suggestions prefixed with !.(v2.1.83)
• Fixed stale slash command selection showing the wrong highlighted command after navigating suggestions.(v2.1.83)
• Fixed the /config menu incorrectly showing both the search cursor and list selection simultaneously.(v2.1.83)
• Fixed background subagents becoming invisible after context compaction, preventing duplicate agents from spawning.(v2.1.83)
• Fixed background agent tasks getting stuck in a "running" state when git or API calls hung during cleanup.(v2.1.83)
• Fixed the --channels flag incorrectly showing "Channels are not currently available" on the first launch after an upgrade.(v2.1.83)
• Fixed uninstalled plugin hooks continuing to fire until the next session started.(v2.1.83)
• Fixed queued commands flickering during streaming responses.(v2.1.83)
• Fixed slash commands being sent to the model as plain text when submitted while a message was already processing.(v2.1.83)
• Fixed scrollback jumping to the top when collapsed read/search groups finished loading after scrolling offscreen.(v2.1.83)
• Fixed scrollback jumping to the top when the model started or stopped thinking.(v2.1.83)
• Fixed loss of SDK session history upon resume caused by hook progress/attachment messages forking the parentUuid chain.(v2.1.83)
• Fixed copy-on-select functionality failing when the mouse button was released outside the terminal window.(v2.1.83)
• Fixed ghost characters appearing in height-constrained lists when items overflowed their bounds.(v2.1.83)
• Fixed `Ctrl+B` interfering with readline backward-char functionality at an idle prompt; it now only fires when a foreground task can be backgrounded.(v2.1.83)
• Fixed tool result files never being cleaned up, ignoring the `cleanupPeriodDays` setting.(v2.1.83)
• Fixed the space key being swallowed for up to 3 seconds after releasing voice hold-to-talk.(v2.1.83)
• Fixed ALSA library errors corrupting the terminal UI when using voice mode on Linux systems lacking audio hardware (e.g., Docker, headless, WSL1).(v2.1.83)
• Fixed voice mode SoX detection issues on Termux/Android where spawning `which` is kernel-restricted.(v2.1.83)
• Fixed Remote Control sessions incorrectly showing as Idle in the web session list while actively running.(v2.1.83)
• Fixed footer navigation selecting an invisible Remote Control pill when in config-driven mode.(v2.1.83)
• Fixed a memory leak in remote sessions where tool use IDs accumulated indefinitely.(v2.1.83)
• [VSCode] Fixed session history not loading correctly when reopening a session via URL or after restarting the editor.(v2.1.83)
• Fixed multiple concurrent Claude Code sessions requiring repeated re-authentication when one session refreshed its OAuth token.(v2.1.81)
• Fixed voice mode silently swallowing retry failures and showing a misleading "check your network" message instead of the actual error.(v2.1.81)
• Fixed voice mode audio not recovering when the server silently drops the WebSocket connection.(v2.1.81)
• Fixed structured-outputs beta header causing 400 errors on proxy gateways by ensuring CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS correctly suppresses it.(v2.1.81)
• Fixed --channels bypass issue for Team/Enterprise organizations lacking other managed settings.(v2.1.81)
• Fixed a crash occurring specifically on Node.js 18 environments.(v2.1.81)
• Fixed unnecessary permission prompts appearing for Bash commands containing dashes within strings.(v2.1.81)
• Fixed plugin hooks blocking prompt submission when the plugin directory was deleted during an active session.(v2.1.81)
• Fixed a race condition where background agent task output could hang indefinitely if the task completed between polling intervals.(v2.1.81)
• Fixed resuming a session in a worktree now correctly switches the user back to that worktree.(v2.1.81)
• Fixed /btw command not including pasted text when used during an active response.(v2.1.81)
• Fixed a race condition where fast Cmd+Tab followed by paste could fail due to clipboard copy timing under tmux.(v2.1.81)
• Fixed terminal tab title not updating correctly with an auto-generated session description.(v2.1.81)
• Fixed invisible hook attachments inflating the message count when viewing transcripts.(v2.1.81)
• Fixed Remote Control sessions showing a generic title instead of deriving the title from the first prompt.(v2.1.81)
• Fixed /rename command not reliably syncing the title for Remote Control sessions.(v2.1.81)
• Fixed Remote Control /exit command not reliably archiving the session.(v2.1.81)
• Fixed Windows PATH inheritance issue for the Bash tool when using Git Bash within VSCode (a regression from v2.1.78).(v2.1.81)
• Fixed `--resume` dropping parallel tool results, ensuring all tool_use/tool_result pairs are restored instead of showing placeholders(v2.1.80)
• Fixed voice mode WebSocket failures caused by Cloudflare bot detection on non-browser TLS fingerprints(v2.1.80)
• Fixed 400 errors when using fine-grained tool streaming through API proxies, Bedrock, or Vertex(v2.1.80)
• Fixed `/remote-control` appearing for gateway and third-party provider deployments where it is non-functional(v2.1.80)
• Fixed `/sandbox` tab switching not responding to Tab or arrow keys(v2.1.80)
• Fixed managed settings (like `enabledPlugins`, `permissions.defaultMode`, policy-set env vars) not being applied at startup when `remote-settings.json` was cached(v2.1.80)
• Fixed `git log HEAD` failing with "ambiguous argument" inside sandboxed Bash on Linux, and stub files polluting `git status` in the working directory(v2.1.78)
• Fixed `cc log` and `--resume` silently truncating conversation history on large sessions (>5 MB) that used subagents(v2.1.78)
• Fixed infinite loop when API errors triggered stop hooks that re-fed blocking errors to the model(v2.1.78)
• Fixed `deny: ["mcp__servername"]` permission rules not removing MCP server tools before sending to the model, allowing it to see and attempt blocked tools(v2.1.78)
• Fixed `sandbox.filesystem.allowWrite` not working with absolute paths (previously required `//` prefix)(v2.1.78)
• Fixed `/sandbox` Dependencies tab showing Linux prerequisites on macOS instead of macOS-specific info(v2.1.78)
• Fixed silent sandbox disable when `sandbox.enabled: true` is set but dependencies are missing; now shows a visible startup warning(v2.1.78)
• Fixed `.git`, `.claude`, and other protected directories being writable without a prompt in `bypassPermissions` mode(v2.1.78)
• Fixed ctrl+u in normal mode scrolling instead of readline kill-line (ctrl+u/ctrl+d half-page scroll moved to transcript mode only)(v2.1.78)
• Fixed voice mode modifier-combo push-to-talk keybindings (e.g. ctrl+k) requiring a hold instead of activating immediately(v2.1.78)
• Fixed voice mode not working on WSL2 with WSLg (Windows 11); WSL1/Win10 users now get a clear error(v2.1.78)
• Fixed `--worktree` flag not loading skills and hooks from the worktree directory(v2.1.78)
• Fixed `CLAUDE_CODE_DISABLE_GIT_INSTRUCTIONS` and `includeGitInstructions` setting not suppressing the git status section in the system prompt(v2.1.78)
• Fixed Bash tool not finding Homebrew and other PATH-dependent binaries when VS Code is launched from Dock/Spotlight(v2.1.78)
• Fixed washed-out Claude orange color in VS Code/Cursor/code-server terminals that don't advertise truecolor support(v2.1.78)
• Fixed `ANTHROPIC_BETAS` environment variable being silently ignored when using Haiku models(v2.1.78)
• Fixed queued prompts being concatenated without a newline separator(v2.1.78)
• Fixed a brief flash of the login screen when opening the sidebar while already authenticated in VSCode(v2.1.78)
• Fixed "API Error: Rate limit reached" when selecting Opus in VSCode; model dropdown no longer offers 1M context variant to subscribers whose plan tier is unknown(v2.1.78)
• Fixed the "Always Allow" setting for compound bash commands (e.g., cd src && npm test) incorrectly saving a single rule for the full string instead of per-subcommand, which caused dead rules and repeated prompts.(v2.1.77)
• Fixed the auto-updater accumulating tens of gigabytes of memory by starting overlapping binary downloads when the slash-command overlay repeatedly opened and closed.(v2.1.77)
• Fixed the --resume command silently truncating recent conversation history due to a race condition between memory-extraction writes and the main transcript.(v2.1.77)
• Fixed PreToolUse hooks returning "allow" bypassing deny permission rules, including enterprise managed settings.(v2.1.77)
• Fixed the Write tool silently converting line endings when overwriting CRLF files or creating files in CRLF directories.(v2.1.77)
• Fixed memory growth in long-running sessions caused by progress messages surviving compaction.(v2.1.77)
• Fixed cost and token usage not being tracked when the API falls back to non-streaming mode.(v2.1.77)
• Fixed CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS not stripping beta tool-schema fields, which caused proxy gateways to reject requests.(v2.1.77)
• Fixed the Bash tool reporting errors for successful commands when the system temp directory path contains spaces.(v2.1.77)
• Fixed paste operation being lost when typing immediately after pasting.(v2.1.77)
• Fixed Ctrl+D in the /feedback text input deleting forward instead of exiting the session on the second press.(v2.1.77)
• Fixed an API error occurring when dragging a 0-byte image file into the prompt.(v2.1.77)
• Fixed Claude Desktop sessions incorrectly using the terminal CLI's configured API key instead of OAuth.(v2.1.77)
• Fixed git-subdir plugins located at different subdirectories of the same monorepo commit colliding in the plugin cache.(v2.1.77)
• Fixed ordered list numbers not rendering correctly in the terminal UI.(v2.1.77)
• Fixed a race condition where stale-worktree cleanup could delete an agent worktree that was just resumed from a previous crash.(v2.1.77)
• Fixed input deadlock occurring when opening /mcp or similar dialogs while the agent is running.(v2.1.77)
• Fixed Backspace and Delete keys not functioning in vim NORMAL mode.(v2.1.77)
• Fixed the status line not updating when vim mode is toggled on or off.(v2.1.77)
• Fixed hyperlinks opening twice on Cmd+click in VS Code, Cursor, and other xterm.js-based terminals.(v2.1.77)
• Fixed background colors rendering as terminal-default inside tmux when using the default configuration.(v2.1.77)
• Fixed iTerm2 session crash when selecting text inside tmux over SSH.(v2.1.77)
• Fixed clipboard copy silently failing in tmux sessions; the copy toast now correctly indicates whether to paste with ⌘V or tmux prefix+].(v2.1.77)
• Fixed ←/→ keys accidentally switching tabs in settings, permissions, and sandbox dialogs while navigating lists.(v2.1.77)
• Fixed IDE integration not auto-connecting when Claude Code is launched inside tmux or screen.(v2.1.77)
• Fixed CJK characters visually bleeding into adjacent UI elements when clipped at the right edge.(v2.1.77)
• Fixed teammate panes not closing when the leader exits.(v2.1.77)
• Fixed iTerm2 auto mode not correctly detecting iTerm2 for native split-pane teammates.(v2.1.77)
• Fixed the Agent tool incorrectly accepting a resume parameter; users must now use SendMessage({to: agentId}) to continue a previously spawned agent.(v2.1.77)
• Fixed deferred tools losing their input schemas after conversation compaction, which caused array and number parameters to be rejected with type errors(v2.1.76)
• Fixed slash commands incorrectly showing "Unknown skill"(v2.1.76)
• Fixed plan mode incorrectly asking for re-approval after the plan was already accepted(v2.1.76)
• Fixed voice mode swallowing keypresses while a permission dialog or plan editor was open(v2.1.76)
• Fixed `/voice` command not working on Windows when installed via npm(v2.1.76)
• Fixed spurious "Context limit reached" error when invoking a skill with `model:` frontmatter on a 1M-context session(v2.1.76)
• Fixed "adaptive thinking is not supported on this model" error when using non-standard model strings(v2.1.76)
• Fixed `Bash(cmd:*)` permission rules not matching when a quoted argument contains #(v2.1.76)
• Fixed "don't ask again" in the Bash permission dialog showing the full raw command for pipes and compound commands(v2.1.76)
• Fixed auto-compaction retrying indefinitely after consecutive failures by implementing a circuit breaker that stops after 3 attempts(v2.1.76)
• Fixed MCP reconnect spinner persisting after successful reconnection(v2.1.76)
• Fixed LSP plugins not registering servers when the LSP Manager initialized before marketplaces were reconciled(v2.1.76)
• Fixed clipboard copying in tmux over SSH by attempting both direct terminal write and tmux clipboard integration(v2.1.76)
• Fixed `/export` showing only the filename instead of the full file path in the success message(v2.1.76)
• Fixed transcript not auto-scrolling to new messages after selecting text(v2.1.76)
• Fixed Escape key not working to exit the login method selection screen(v2.1.76)
• Fixed several Remote Control issues, including sessions silently dying when the server reaps an idle environment, rapid messages being queued one-at-a-time instead of batched, and stale work items causing redelivery after JWT refresh(v2.1.76)
• Fixed bridge sessions failing to recover after extended WebSocket disconnects(v2.1.76)
• Fixed slash commands not being found when typing the exact name of a soft-hidden command(v2.1.76)
• [VSCode] Fixed gitignore patterns containing commas silently excluding entire filetypes from the @-mention file picker(v2.1.76)
• Fixed memory leak where streaming API response buffers were not released when the generator was terminated early, causing unbounded RSS growth on the Node.js/npm code path(v2.1.74)
• Fixed managed policy ask rules being bypassed by user allow rules or skill allowed-tools(v2.1.74)
• Fixed full model IDs (e.g., claude-opus-4-5) being silently ignored in agent frontmatter model: field and --agents JSON config; agents now accept the same model values as --model(v2.1.74)
• Fixed MCP OAuth authentication hanging when the callback port is already in use(v2.1.74)
• Fixed MCP OAuth refresh never prompting for re-auth after the refresh token expires for OAuth servers that return errors with HTTP 200 (e.g. Slack)(v2.1.74)
• Fixed voice mode silently failing on the macOS native binary for users whose terminal had never been granted microphone permission; the binary now includes the audio-input entitlement so macOS prompts correctly(v2.1.74)
• Fixed SessionEnd hooks being killed after 1.5 s on exit regardless of hook.timeout; this is now configurable via CLAUDE_CODE_SESSIONEND_HOOKS_TIMEOUT_MS(v2.1.74)
• Fixed /plugin install failing inside the REPL for marketplace plugins with local sources(v2.1.74)
• Fixed marketplace update not syncing git submodules; plugin sources in submodules no longer break after update(v2.1.74)
• Fixed unknown slash commands with arguments silently dropping input; the command now shows your input as a warning(v2.1.74)
• Fixed Hebrew, Arabic, and other RTL text not rendering correctly in Windows Terminal, conhost, and VS Code integrated terminal(v2.1.74)
• Fixed LSP servers not working on Windows due to malformed file URIs(v2.1.74)
• [VSCode] Fixed delete button not working for Untitled sessions(v2.1.74)
• Fixed freezes and 100% CPU loops triggered by permission prompts for complex bash commands(v2.1.73)
• Fixed a deadlock that could freeze Claude Code when many skill files changed at once (e.g. during `git pull` in a repo with a large `.claude/skills/` directory)(v2.1.73)
• Fixed Bash tool output being lost when running multiple Claude Code sessions in the same project directory(v2.1.73)
• Fixed subagents with `model: opus`/`sonnet`/`haiku` being silently downgraded to older model versions on Bedrock, Vertex, and Microsoft Foundry(v2.1.73)
• Fixed background bash processes spawned by subagents not being cleaned up when the agent exits(v2.1.73)
• Fixed `/resume` showing the current session in the picker(v2.1.73)
• Fixed `/ide` crashing with `onInstall is not defined` when auto-installing the extension(v2.1.73)
• Fixed `/loop` not being available on Bedrock/Vertex/Foundry and when telemetry was disabled(v2.1.73)
• Fixed SessionStart hooks firing twice when resuming a session via `--resume` or `--continue`(v2.1.73)
• Fixed JSON-output hooks injecting no-op system-reminder messages into the model's context on every turn(v2.1.73)
• Fixed voice mode session corruption when a slow connection overlaps a new recording(v2.1.73)
• Fixed Linux sandbox failing to start with "ripgrep (rg) not found" on native builds(v2.1.73)
• Fixed Linux native modules not loading on Amazon Linux 2 and other glibc 2.26 systems(v2.1.73)
• Fixed "media_type: Field required" API error when receiving images via Remote Control(v2.1.73)
• Fixed `/heapdump` failing on Windows with `EEXIST` error when the Desktop folder already exists(v2.1.73)
• VSCode: Fixed HTTP 400 errors for users behind proxies or on Bedrock/Vertex with Claude 4.5 models(v2.1.73)
• Fixed slow exits when background tasks or hooks were slow to respond.(v2.1.72)
• Fixed agent task progress stuck on "Initializing…".(v2.1.72)
• Fixed skill hooks firing twice per event when a hooks-enabled skill is invoked by the model.(v2.1.72)
• Fixed several voice mode issues: occasional input lag, false "No speech detected" errors after releasing push-to-talk, and stale transcripts re-filling the prompt after submission.(v2.1.72)
• Fixed `--continue` not resuming from the most recent point after `--compact`.(v2.1.72)
• Fixed bash security parsing edge cases.(v2.1.72)
• Fixed several plugin issues: installation failing on Windows with `EEXIST` error in OneDrive folders, marketplace blocking user-scope installs when a project-scope install exists, `CLAUDE_CODE_PLUGIN_CACHE_DIR` creating literal `~` directories, and `plugin.json` with marketplace-only fields failing to load.(v2.1.72)
• Fixed feedback survey appearing too frequently in long sessions.(v2.1.72)
• Fixed `--effort` CLI flag being reset by unrelated settings writes on startup.(v2.1.72)
• Fixed backgrounded Ctrl+B queries losing their transcript or corrupting the new conversation after `/clear`.(v2.1.72)
• Fixed `/clear` killing background agent/bash tasks — only foreground tasks are now cleared.(v2.1.72)
• Fixed worktree isolation issues: Task tool resume not restoring cwd, and background task notifications missing `worktreePath` and `worktreeBranch`.(v2.1.72)
• Fixed `/model` not displaying results when run while Claude is working.(v2.1.72)
• Fixed digit keys selecting menu options instead of typing in plan mode permission prompt's text input.(v2.1.72)
• Fixed sandbox permission issues: certain file write operations incorrectly allowed without prompting, and output redirections to allowlisted directories (like `/tmp/claude/`) prompting unnecessarily.(v2.1.72)
• Fixed prompt cache invalidation in SDK `query()` calls, reducing input token costs up to 12x.(v2.1.72)
• Fixed Escape key becoming unresponsive after cancelling a query.(v2.1.72)
• Fixed double Ctrl+C not exiting when background agents or tasks are running.(v2.1.72)
• Fixed team agents to inherit the leader's model.(v2.1.72)
• Fixed "Always Allow" saving permission rules that never match again.(v2.1.72)
• Fixed several hooks issues: `transcript_path` pointing to the wrong directory for resumed/forked sessions, agent `prompt` being silently deleted from settings.json on every settings write, PostToolUse block reason displaying twice, async hooks not receiving stdin with bash `read -r`, and validation error message showing an example that fails validation.(v2.1.72)
• Fixed session crashes in Desktop/SDK when Read returned files containing U+2028/U+2029 characters.(v2.1.72)
• Fixed terminal title being cleared on exit even when `CLAUDE_CODE_DISABLE_TERMINAL_TITLE` was set.(v2.1.72)
• Fixed several permission rule matching issues: wildcard rules not matching commands with heredocs, embedded newlines, or no arguments; `sandbox.excludedCommands` failing with env var prefixes; "always allow" suggesting overly broad prefixes for nested CLI tools; and deny rules not applying to all command forms.(v2.1.72)
• Fixed oversized and truncated images from Bash data-URL output.(v2.1.72)
• Fixed a crash when resuming sessions that contained Bedrock API errors.(v2.1.72)
• Fixed intermittent "expected boolean, received string" validation errors on Edit, Bash, and Grep tool inputs.(v2.1.72)
• Fixed multi-line session titles when forking from a conversation whose first message contained newlines.(v2.1.72)
• Fixed queued messages not showing attached images, and images being lost when pressing ↑ to edit a queued message.(v2.1.72)
• Fixed parallel tool calls where a failed Read/WebFetch/Glob would cancel its siblings — only Bash errors now cascade.(v2.1.72)
• VSCode: Fixed scroll speed in integrated terminals not matching native terminals.(v2.1.72)
• VSCode: Fixed Shift+Enter submitting input instead of inserting a newline for users with older keybindings.(v2.1.72)
• Fixed stdin freeze in long-running sessions where keystrokes stop being processed but the process stays alive(v2.1.71)
• Fixed a 5–8 second startup freeze for users with voice mode enabled, caused by CoreAudio initialization blocking the main thread after system wake(v2.1.71)
• Fixed startup UI freeze when many claude.ai proxy connectors refresh an expired OAuth token simultaneously(v2.1.71)
• Fixed forked conversations (/fork) sharing the same plan file, which caused plan edits in one fork to overwrite the other(v2.1.71)
• Fixed the Read tool putting oversized images into context when image processing failed, breaking subsequent turns in long image-heavy sessions(v2.1.71)
• Fixed false-positive permission prompts for compound bash commands containing heredoc commit messages(v2.1.71)
• Fixed plugin installations being lost when running multiple Claude Code instances(v2.1.71)
• Fixed claude.ai connectors failing to reconnect after OAuth token refresh(v2.1.71)
• Fixed claude.ai MCP connector startup notifications appearing for every org-configured connector instead of only previously connected ones(v2.1.71)
• Fixed background agent completion notifications missing the output file path, which made it difficult for parent agents to recover agent results after context compaction(v2.1.71)
• Fixed duplicate output in Bash tool error messages when commands exit with non-zero status(v2.1.71)
• Fixed Chrome extension auto-detection getting permanently stuck on "not installed" after running on a machine without local Chrome(v2.1.71)
• Fixed /plugin marketplace update failing with merge conflicts when the marketplace is pinned to a branch/tag ref(v2.1.71)
• Fixed /plugin marketplace add owner/repo@ref incorrectly parsing @ — previously only # worked as a ref separator(v2.1.71)
• Fixed duplicate entries in /permissions Workspace tab when the same directory is added with and without a trailing slash(v2.1.71)
• Fixed --print hanging forever when team agents are configured — the exit loop no longer waits on long-lived in_process_teammate tasks(v2.1.71)
• Fixed "❯ Tool loaded." appearing in the REPL after every ToolSearch call(v2.1.71)
• Fixed prompting for cd <cwd> && git ... on Windows when the model uses a mingw-style path(v2.1.71)
• Fixed API 400 errors when using ANTHROPIC_BASE_URL with a third-party gateway, ensuring tool search correctly detects proxy endpoints and disables tool_reference blocks(v2.1.70)
• Fixed API Error: 400 This model does not support the effort parameter when using custom Bedrock inference profiles or non-standard model identifiers(v2.1.70)
• Fixed empty model responses immediately after ToolSearch caused by server rendering tool schemas with system-prompt-style tags at the prompt tail(v2.1.70)
• Fixed prompt-cache bust occurring when an MCP server with instructions connects after the first turn(v2.1.70)
• Fixed Enter key inserting a newline instead of submitting when typing over a slow SSH connection(v2.1.70)
• Fixed clipboard corrupting non-ASCII text (CJK, emoji) on Windows/WSL by switching to PowerShell Set-Clipboard(v2.1.70)
• Fixed extra VS Code windows opening at startup on Windows when running from the VS Code integrated terminal(v2.1.70)
• Fixed voice mode failing on Windows native binary with "native audio module could not be loaded"(v2.1.70)
• Fixed push-to-talk not activating on session start when voiceEnabled: true was set in settings(v2.1.70)
• Fixed markdown links containing #NNN references incorrectly pointing to the current repository instead of the linked URL(v2.1.70)
• Fixed repeated "Model updated to Opus 4.6" notification when a project's .claude/settings.json had a legacy Opus model string pinned(v2.1.70)
• Fixed plugins showing as inaccurately installed in /plugin(v2.1.70)
• Fixed plugins showing "not found in marketplace" errors on fresh startup by auto-refreshing after marketplace installation(v2.1.70)
• Fixed /security-review command failing with unknown option merge-base on older git versions(v2.1.70)
• Fixed /color command lacking a way to reset to default; /color default, /color gray, /color reset, and /color none now restore the default color(v2.1.70)
• Fixed a performance regression in the AskUserQuestion preview dialog that re-ran markdown rendering on every keystroke in the notes input(v2.1.70)
• Fixed feature flags read during early startup never refreshing their disk cache, causing stale values to persist across sessions(v2.1.70)
• Fixed permissions.defaultMode settings values other than acceptEdits or plan being applied in Claude Code Remote environments (they are now ignored)(v2.1.70)
• Fixed skill listing being re-injected on every --resume, saving approximately 600 tokens per resume(v2.1.70)
• Fixed teleport marker not rendering in VS Code teleported sessions(v2.1.70)
• Fixed a race condition related to MCP OAuth token refreshing when multiple Claude Code instances were running at the same time.(v2.1.59)
• Fixed shell commands that failed to show a clear error message when the working directory had been deleted.(v2.1.59)
• Fixed a security issue where `statusLine` and `fileSuggestion` hook commands could execute without workspace trust acceptance in interactive mode.(v2.1.51)
• Fixed a security issue where HTTP hooks could interpolate arbitrary environment variables from header values; env var interpolation now requires an explicit `allowedEnvVars` list.(v2.1.51)
• Fixed a bug where duplicate `control_response` messages (e.g. from WebSocket reconnects) could cause API 400 errors by pushing duplicate assistant messages into the conversation.(v2.1.51)
• Fixed slash command autocomplete crashing when a plugin's SKILL.md description is a YAML array or other non-string type(v2.1.51)
• Fixed an issue where resumed sessions could be invisible when the working directory contained symlinks due to inconsistent path resolution during startup.(v2.1.50)
• Fixed session data loss upon SSH disconnect by ensuring session data is flushed before hooks and analytics during graceful shutdown.(v2.1.50)
• Fixed native modules failing to load on Linux systems using glibc older than 2.30 (e.g., RHEL 8).(v2.1.50)
• Fixed a memory leak in agent teams where completed teammate tasks were not being garbage collected from session state.(v2.1.50)
• Fixed `CLAUDE_CODE_SIMPLE` mode to correctly strip down skills, session memory, custom agents, and CLAUDE.md token counting.(v2.1.50)
• Fixed the `/mcp reconnect` command from freezing the CLI when provided with a non-existent server name.(v2.1.50)
• Fixed a memory leak where completed task state objects were not being removed from AppState.(v2.1.50)
• Fixed an issue where MCP tools were not discovered when tool search was enabled and a prompt was provided as a launch argument.(v2.1.50)
• Fixed unbounded memory growth in long sessions by capping file history snapshots.(v2.1.50)
• Fixed a memory leak where LSP diagnostic data was not cleaned up after delivery.(v2.1.50)
• Fixed a memory leak where completed task output was not being freed from memory.(v2.1.50)
• Fixed a prompt suggestion cache regression that resulted in lower cache hit rates.(v2.1.50)
• Fixed a memory leak where TaskOutput retained recent lines after cleanup.(v2.1.50)
• Fixed a memory leak in CircularBuffer where cleared items were retained in the backing array.(v2.1.50)
• Fixed a memory leak in shell command execution where ChildProcess and AbortController references were retained after cleanup.(v2.1.50)
• Fixed Ctrl+C and ESC being silently ignored when background agents are running; pressing twice within 3 seconds now kills all background agents.(v2.1.49)
• Fixed prompt suggestion cache regression that was reducing cache hit rates.(v2.1.49)
• Fixed `plugin enable` and `plugin disable` to auto-detect the correct scope when `--scope` is omitted, instead of defaulting to user scope.(v2.1.49)
• Fixed verbose mode not updating the thinking block display when toggled via `/config` by ensuring memo comparators correctly detect verbose changes.(v2.1.49)
• Fixed unbounded WASM memory growth during long sessions by periodically resetting the tree-sitter parser.(v2.1.49)
• Fixed potential rendering issues caused by stale yoga layout references.(v2.1.49)
• Fixed unbounded memory growth during long-running sessions caused by Yoga WASM linear memory never shrinking.(v2.1.49)
• Fixed `disableAllHooks` setting to respect managed settings hierarchy, preventing non-managed settings from disabling policy-set managed hooks.(v2.1.49)
• Fixed the `--resume` session picker showing raw XML tags for sessions starting with commands like `/clear`; it now correctly falls through to the session ID fallback.(v2.1.49)
• Fixed FileWriteTool line counting to preserve intentional trailing blank lines instead of stripping them.(v2.1.47)
• Fixed Windows terminal rendering bugs where line counts showed incorrect values (always 1) due to `os.EOL` (`\r\n`) in display code.(v2.1.47)
• Fixed bold and colored text in markdown output shifting to the wrong characters on Windows due to `\r\n` line endings.(v2.1.47)
• Fixed compaction failing when conversations contain many PDF documents by stripping document blocks alongside images before sending to the compaction API.(v2.1.47)
• Fixed bash tool output being silently discarded on Windows when using MSYS2 or Cygwin shells.(v2.1.47)
• Fixed the bash permission classifier from incorrectly granting permissions based on hallucinated descriptions.(v2.1.47)
• Fixed user-defined agents only loading one file on NFS/FUSE filesystems that report zero inodes.(v2.1.47)
• Fixed plugin agent skills silently failing to load when referenced by bare name instead of fully-qualified plugin name.(v2.1.47)
• Fixed CWD tracking temp files never being cleaned up on Windows, preventing indefinite accumulation.(v2.1.47)
• Fixed API 400 errors ("thinking blocks cannot be modified") in sessions with concurrent agents caused by interleaved streaming content blocks.(v2.1.47)
• Fixed a single file write/edit error from aborting all other parallel file write/edit operations; independent mutations now complete on failure.(v2.1.47)
• Fixed custom session titles set via `/rename` being lost after resuming a conversation.(v2.1.47)
• Fixed collapsed read/search hint text overflowing on narrow terminals by truncating from the start.(v2.1.47)
• Fixed bash commands using backslash-newline continuation lines (`\` followed by newline) producing spurious empty arguments.(v2.1.47)
• Fixed built-in slash commands being hidden from the autocomplete dropdown when many user skills are installed.(v2.1.47)
• Fixed MCP servers not appearing in the MCP Management Dialog after deferred loading.(v2.1.47)
• Fixed session name persisting in status bar after `/clear` command.(v2.1.47)
• Fixed crash when a skill's `name` or `description` in SKILL.md frontmatter is a bare number, by coercing the value to a string.(v2.1.47)
• Fixed `/resume` silently dropping sessions when the first message exceeds 16KB or uses array-format content.(v2.1.47)
• Fixed `claude doctor` misclassifying mise and asdf-managed installations as native installs.(v2.1.47)
• Fixed zsh heredoc failing with "read-only file system" error in sandboxed commands.(v2.1.47)
• Fixed agent progress indicator showing inflated tool use count.(v2.1.47)
• Fixed image pasting not working on WSL2 systems where Windows copies images as BMP format.(v2.1.47)
• Fixed background agent results returning raw transcript data instead of the agent's final answer.(v2.1.47)
• Fixed Warp terminal incorrectly prompting for Shift+Enter setup when it supports it natively.(v2.1.47)
• Fixed CJK wide characters causing misaligned timestamps and layout elements in the TUI.(v2.1.47)
• Fixed custom agent `model` field in `.claude/agents/*.md` being ignored when spawning team teammates.(v2.1.47)
• Fixed plan mode being lost after context compaction, causing the model to switch from planning to implementation mode.(v2.1.47)
• Fixed `alwaysThinkingEnabled: true` in settings.json not enabling thinking mode on Bedrock and Vertex providers.(v2.1.47)
• Fixed `tool_decision` OTel telemetry event not being emitted in headless/SDK mode.(v2.1.47)
• Fixed session name being lost after context compaction; renamed sessions now preserve their custom title through compaction.(v2.1.47)
• Fixed `/resume <session-id>` failing to find sessions whose first message exceeds 16KB.(v2.1.47)
• Fixed "Always allow" on multiline bash commands creating invalid permission patterns that corrupt settings.(v2.1.47)
• Fixed React crash (error #31) when a skill's `argument-hint` in SKILL.md frontmatter uses YAML sequence syntax, by coercing the value to a string.(v2.1.47)
• Fixed crash when using `/fork` on sessions that used web search by gracefully handling null entries in search results.(v2.1.47)
• Fixed read-only git commands triggering FSEvents file watcher loops on macOS by adding --no-optional-locks flag.(v2.1.47)
• Fixed custom agents and skills not being discovered when running from a git worktree; project-level agent/skill directories are now included.(v2.1.47)
• Fixed non-interactive subcommands like `claude doctor` and `claude plugin validate` being blocked inside nested Claude sessions.(v2.1.47)
• Windows: Fixed the same CLAUDE.md file being loaded twice when drive letter casing differs between paths.(v2.1.47)
• Fixed inline code spans in markdown being incorrectly parsed as bash commands.(v2.1.47)
• Fixed teammate spinners not respecting custom spinnerVerbs from settings.(v2.1.47)
• Fixed shell commands permanently failing after a command deletes its own working directory.(v2.1.47)
• Fixed hooks (PreToolUse, PostToolUse) silently failing.(v2.1.47)
• Fixed Agent Teams teammates failing on Bedrock, Vertex, and Foundry by correctly propagating API provider environment variables to tmux-spawned processes.(v2.1.45)
• Resolved sandbox "operation not permitted" errors on macOS when writing temporary files by ensuring the correct per-user temp directory is used.(v2.1.45)
• Fixed a crash in the Task tool (backgrounded agents) caused by a `ReferenceError` upon task completion.(v2.1.45)
• Fixed autocomplete suggestions not being accepted via the Enter key when images have been pasted into the input field.(v2.1.45)
• Fixed skills invoked by subagents incorrectly appearing in the main session context after compaction.(v2.1.45)
• Fixed the accumulation of excessive `.claude.json.backup` files during every startup.(v2.1.45)
• Fixed plugin-provided commands, agents, and hooks not being available immediately after installation without requiring a full restart.(v2.1.45)
• Fixed VS Code terminal scroll-to-top regression introduced in 2.1.37(v2.1.38)
• Fixed Tab key queueing slash commands instead of autocompleting(v2.1.38)
• Fixed bash permission matching for commands using environment variable wrappers(v2.1.38)
• Fixed text between tool uses disappearing when not using streaming(v2.1.38)
• Fixed duplicate sessions when resuming in VS Code extension(v2.1.38)
• Fixed incorrect relative paths shown by @ file completion when running the tool from a subdirectory(v2.1.32)
• Fixed Bash tool throwing "Bad substitution" errors when heredocs contained JavaScript template literals like `${index + 1}`, preventing tool execution(v2.1.32)
• Fixed Thai/Lao spacing vowels (สระ า, ำ) not rendering correctly in the input field(v2.1.32)
• Fixed VSCode issue where slash commands were incorrectly executed when pressing Enter with preceding text in the input field(v2.1.32)
• Fixed phantom "(no content)" text blocks appearing in API conversation history, which reduced token waste and potential model confusion.(v2.1.30)
• Fixed prompt cache not correctly invalidating when tool descriptions or input schemas changed (it previously only invalidated when tool names changed).(v2.1.30)
• Fixed 400 errors that could occur after running `/login` when the conversation contained thinking blocks.(v2.1.30)
• Fixed a hang that occurred when resuming sessions with corrupted transcript files containing `parentUuid` cycles.(v2.1.30)
• Fixed rate limit message showing an incorrect "/upgrade" suggestion for Max 20x users when extra-usage is unavailable.(v2.1.30)
• Fixed permission dialogs stealing focus while the user was actively typing.(v2.1.30)
• Fixed subagents being unable to access SDK-provided MCP tools because they were not synced to the shared application state.(v2.1.30)
• Fixed a regression where Windows users with a `.bashrc` file could not run bash commands.(v2.1.30)
• Fixed duplicate sessions appearing in the VSCode session list when starting a new conversation.(v2.1.30)
• Fixed session compaction issues that could cause resume to load full history instead of the compact summary(v2.1.20)
• Fixed agents sometimes ignoring user messages sent while actively working on a task(v2.1.20)
• Fixed wide character (emoji, CJK) rendering artifacts where trailing columns were not cleared when replaced by narrower characters(v2.1.20)
• Fixed JSON parsing errors when MCP tool responses contain special Unicode characters(v2.1.20)
• Fixed up/down arrow keys in multi-line and wrapped text input to prioritize cursor movement over history navigation(v2.1.20)
• Fixed draft prompt being lost when pressing UP arrow to navigate command history(v2.1.20)
• Fixed ghost text flickering when typing slash commands mid-input(v2.1.20)
• Fixed marketplace source removal not properly deleting settings(v2.1.20)
• Fixed duplicate output in some commands like `/context`(v2.1.20)
• Fixed task list sometimes showing outside the main conversation view(v2.1.20)
• Fixed syntax highlighting for diffs occurring within multiline constructs like Python docstrings(v2.1.20)
• Fixed crashes when cancelling tool use(v2.1.20)
• Fixed the "Context left until auto-compact" warning that failed to disappear after executing the `/compact` command.(v2.1.15)
• Fixed the MCP stdio server timeout issue that prevented the child process from being killed, which previously caused UI freezes.(v2.1.15)
• Fixed excessive MCP connection requests when using HTTP/SSE transports.(v2.1.11)
• Fixed API errors related to orphan tool_result blocks occurring during long sessions with parallel tool calls.(v2.1.9)
• Fixed MCP server reconnection hanging when the cached connection promise fails to resolve.(v2.1.9)
• Fixed Ctrl+Z suspend functionality not working in terminals utilizing the Kitty keyboard protocol (including Ghostty, iTerm2, kitty, and WezTerm).(v2.1.9)
• Fixed a security vulnerability where wildcard permission rules could incorrectly match compound commands containing shell operators.(v2.1.7)
• Fixed false "file modified" errors occurring on Windows due to cloud sync tools or antivirus scanners touching file timestamps without content changes.(v2.1.7)
• Fixed orphaned `tool_result` errors when sibling tools failed during streaming execution.(v2.1.7)
• Fixed context window blocking limit calculation to use the effective context window (reserving space for max output tokens) instead of the full context window.(v2.1.7)
• Fixed a visual glitch where the spinner briefly flashed when running local slash commands like `/model` or `/theme`.(v2.1.7)
• Fixed terminal title animation jitter by utilizing fixed-width braille characters.(v2.1.7)
• Fixed plugins with git submodules not being fully initialized upon installation.(v2.1.7)
• Fixed bash commands failing on Windows when temporary directory paths contained characters like `t` or `n` that were misinterpreted as escape sequences.(v2.1.7)
• [VSCode] Fixed an issue where the `claudeProcessWrapper` setting was incorrectly passing the wrapper path instead of the Claude binary path.(v2.1.7)
• Fixed permission bypass via shell line continuation that could allow blocked commands to execute.(v2.1.6)
• Fixed false "File has been unexpectedly modified" errors when file watchers touch files without changing content.(v2.1.6)
• Fixed text styling (bold, colors) getting progressively misaligned in multi-line responses.(v2.1.6)
• Fixed the feedback panel closing unexpectedly when typing 'n' in the description field.(v2.1.6)
• Fixed rate limit warning appearing at low usage after weekly reset (now requires 70% usage).(v2.1.6)
• Fixed rate limit options menu incorrectly auto-opening when resuming a previous session.(v2.1.6)
• Fixed numpad keys outputting escape sequences instead of characters in Kitty keyboard protocol terminals.(v2.1.6)
• Fixed Option+Return not inserting newlines in Kitty keyboard protocol terminals.(v2.1.6)
• Fixed corrupted config backup files accumulating in the home directory (now only one backup is created per config file).(v2.1.6)
• Fixed mcp list and mcp get commands leaving orphaned MCP server processes.(v2.1.6)
• Fixed visual artifacts in ink2 mode when nodes become hidden via display:none.(v2.1.6)
• [VSCode] Fixed usage indicator not updating after manual compact.(v2.1.6)
• Fixed plan files persisting across `/clear` commands, ensuring a fresh plan file is used after clearing a conversation.(v2.1.3)
• Fixed false skill duplicate detection on filesystems with large inodes (e.g., ExFAT) by implementing 64-bit precision for inode values.(v2.1.3)
• Fixed mismatch between the background task count displayed in the status bar and the items shown in the tasks dialog.(v2.1.3)
• Fixed sub-agents using the incorrect model during conversation compaction.(v2.1.3)
• Fixed web search in sub-agents using the incorrect model.(v2.1.3)
• Fixed trust dialog acceptance when running from the home directory, ensuring trust-requiring features like hooks are enabled for the session.(v2.1.3)
• Fixed a command injection vulnerability in bash command processing where malformed input could execute arbitrary commands(v2.1.2)
• Fixed a memory leak where tree-sitter parse trees were not being freed, causing WASM memory to grow unbounded over long sessions(v2.1.2)
• Fixed binary files (images, PDFs, etc.) being accidentally included in memory when using @include directives in CLAUDE.md files(v2.1.2)
• Fixed updates incorrectly claiming another installation is in progress(v2.1.2)
• Fixed crash when socket files exist in watched directories(v2.1.2)
• Fixed remote session URL and teleport being broken when using /tasks command(v2.1.2)
• Fixed MCP tool names being exposed in analytics events by sanitizing user-specific server configurations(v2.1.2)
• Fixed usage display not updating after manual compact in VSCode(v2.1.2)
• Fixed an issue where the skill's `allowed-tools` configuration was not being applied to tools invoked by that skill(v2.0.74)
• Resolved an issue where the Opus 4.5 tip was incorrectly displayed to users already running Opus(v2.0.74)
• Fixed a potential crash scenario that occurred when syntax highlighting failed to initialize properly(v2.0.74)
• Fixed a visual bug in /plugins discover where the list selection indicator remained visible while the search box was focused(v2.0.74)
• Fixed macOS keyboard shortcuts to correctly display 'opt' instead of 'alt'(v2.0.74)