Claude Code version 2.1.207 ships Auto mode as generally available on Bedrock, Vertex AI, and Foundry without an opt-in flag, and changes the default model for those platforms to Claude Opus 4.8. The release includes roughly 20 bug fixes spanning terminal performance, agent team crash loops, Remote Control session reliability, Windows credential stalls, and a shell-injection security fix in plugin hooks. Plugin option values are now restricted to user-level and managed settings, removing project-level .claude/settings.json as a source.
Anthropic released Claude Code version 2.1.176 with a mix of new features and bug fixes. Notable additions include session titles generated in the conversation language, a new footerLinksRegexes setting, and improved AWS Bedrock credential caching. Key fixes address model allowlist enforcement (alias models can no longer bypass blocked-model restrictions), auto-mode fallback for organizations without Opus 4.8 enabled, hook path pattern matching, and numerous Remote Control and background-session reliability issues across Linux, Windows, and tmux environments.
Anthropic released Claude Code version 2.1.206 with a range of new features and bug fixes. Notable additions include background agent auto-upgrade after Claude Code updates, /login support for Anthropic-operated public gateway endpoints, /doctor checks for trimming CLAUDE.md files, and auto-allow for git push to configured remotes in /commit-push-pr. The release also fixes numerous bugs including MCP server timeout handling, OAuth re-authentication loops, model picker pricing display errors, and a multi-minute Bedrock startup hang on restricted networks.
Anthropic released Claude Code version 2.1.196 with a notable security fix preventing untrusted workspace .mcp.json servers from auto-spawning, and added support for organization-level default model configuration via the admin console. The release includes significant background agent reliability improvements — long-running workflows now survive process restarts on all platforms including Windows — plus a streaming idle watchdog enabled by default that aborts and retries stalled response streams after 5 minutes. Numerous bug fixes address agent session state management, MCP OAuth scope handling, PowerShell compatibility, and a /code-review token usage reduction of ~25%.
Anthropic released Claude Code version 2.1.200 with a notable default behavior change: the permission mode now defaults to 'Manual' across CLI, VS Code, and JetBrains integrations, replacing the previous auto-continue behavior for AskUserQuestion dialogs. The release includes extensive fixes for background agent reliability issues including daemon lock conflicts, session stalls after sleep/wake cycles, rate-limit handling, and MCP server configuration errors. Accessibility improvements for screen readers and terminal rendering fixes under tmux 3.4+ are also included.
Anthropic released Claude Code version 2.1.187 with a mix of security, reliability, and UX improvements. Notable additions include a sandbox.credentials setting to block credential file access in sandboxed commands, org-level model restriction enforcement in the model picker, and mouse click support in fullscreen menus. Key bug fixes address remote MCP tool calls hanging indefinitely (now abort after 5 minutes), subagent depth tracking on resume, leaked agent worktree registrations, and CJK text mojibake in certain terminals.
Claude Code version 2.1.183 introduces auto-mode safety guardrails that block destructive git and infrastructure commands (git reset --hard, terraform destroy, etc.) unless explicitly requested, and prevents amending commits not made by the agent in the current session. The release also adds a deprecated-model warning on stderr, a new attribution.sessionUrl config option, and fixes a range of bugs including empty WebSearch results in subagents, fullscreen TUI corruption on Windows Terminal, MCP auth-stub tool exposure in headless mode, and scheduled task triggers incorrectly acting as keyboard input.
Anthropic released Claude Code version 2.1.181 with several new features including a /config key=value prompt syntax for setting any configuration option, an opt-in Apple Events sandbox permission on macOS, and a new CLAUDE_CLIENT_PRESENCE_FILE environment variable for suppressing mobile push notifications. The release also includes improvements to subagent panel UX (auto-hide, depth limits, elapsed time fixes), streaming of long paragraphs, and auto-retry on mid-thinking connection drops. Approximately 40 bug fixes address issues ranging from 0-byte file writes on network drives, macOS TUI freezes, startup regressions, and credential refresh loops.
Anthropic has released Claude Opus 4.1, an incremental upgrade to Claude Opus 4 focused on agentic tasks, coding, and reasoning. The model achieves 74.5% on SWE-bench Verified (without extended thinking) and shows notable gains in multi-file code refactoring and large-codebase debugging. It is available to paid Claude users, Claude Code, and via API on Anthropic, Amazon Bedrock, and Google Cloud Vertex AI at the same price as Opus 4. Anthropic notes substantially larger model improvements are planned for the coming weeks.