AI Agent Changelog

Internal fixes only — no user-facing changes. Safe to upgrade; nothing to review or reconfigure.

Release notes → Affects: /claude-cowork/

Hotfix — resolves the VS Code extension failing to activate on Windows. Upgrade immediately if you are on Windows and the extension stopped loading.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/

Large stability release with 15+ fixes. MCP servers no longer silently disappear after /clear in VS Code, JetBrains, and the Agent SDK. Concurrent OAuth token refresh is now race-safe, ending the daily re-authentication loop for users with multiple remote MCP servers. WSL2 users can now paste images from the Windows clipboard via a PowerShell fallback. New settings.autoMode.hard_deny lets admins set unconditional classifier blocks regardless of user intent, and CLAUDE_CODE_ENABLE_FEEDBACK_SURVEY_FOR_OTEL re-enables session quality surveys for enterprise OpenTelemetry setups.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Adds worktree.baseRef (fresh | head) to control whether new worktrees branch from origin/<default> or local HEAD. Note: the default fresh reverts EnterWorktree behavior introduced in 2.1.128 — set worktree.baseRef: "head" to keep unpushed commits in new worktrees. Hooks now receive the active effort level via effort.level JSON and $CLAUDE_EFFORT. The new parentSettingsBehavior admin key (first-wins | merge) lets admins opt managed settings into the policy merge. Multiple credential race conditions and MCP proxy fixes included.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/

Adds CLAUDE_CODE_SESSION_ID to Bash tool subprocess environments (now matches the session_id passed to hooks) and CLAUDE_CODE_DISABLE_ALTERNATE_SCREEN=1 to opt out of the fullscreen renderer and keep output in the terminal's native scrollback. External SIGINT (IDE stop button, kill -INT) now triggers graceful shutdown — terminal modes are restored and --resume is printed instead of an abrupt exit. Fixes --permission-mode being ignored on -p --resume, blank fullscreen after sleep/wake, and --resume crashing on sessions containing split emoji.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/

Hotfix — resolves two regressions: VS Code extension failing to activate on Windows (hardcoded createRequire polyfill path in the bundled SDK), and Mantle endpoint authentication failing with a missing x-api-key header. Upgrade immediately if either issue affects you.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/

Adds --plugin-url <url> to fetch a plugin .zip archive from a URL for the current session. The Ctrl+R history picker returns to pre-2.1.124 behavior: searches all projects by default, with Ctrl+S to narrow to the current project. Gateway /v1/models discovery is now opt-in via CLAUDE_CODE_ENABLE_GATEWAY_MODEL_DISCOVERY=1. The skillOverrides setting is now active — off, user-invocable-only, and name-only modes work as documented. Third-party deployments (Bedrock, Vertex, Foundry) no longer see Anthropic-only spinner tips.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/

Bare /color now picks a random session color; /mcp shows per-server tool counts and flags servers that connected with 0 tools. --plugin-dir now accepts .zip archives. Breaking: workspace is now a reserved MCP server name — rename any existing server that uses it. EnterWorktree is fixed to branch from local HEAD as documented (unpushed commits no longer dropped). OTEL_* env vars no longer leak into Bash, hook, MCP, or LSP subprocesses.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Substantial release with major Windows and auth improvements. /model picker now lists models from a gateway's /v1/models endpoint when using ANTHROPIC_BASE_URL. New claude project purge [path] deletes all project state (transcripts, tasks, file history) with --dry-run, -y, and --all flags. claude auth login now accepts an OAuth code pasted directly in the terminal — key fix for WSL2, SSH, and container environments. Windows: PowerShell 7 is now detected from MS Store, MSI, and .NET tool installs, and is treated as the primary shell when the PowerShell tool is enabled. Auto mode spinner turns red when a permission check stalls. Security: allowManagedDomainsOnly bypass fixed.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Hotfix — resolves OAuth authentication failing with a 401 retry loop when CLAUDE_CODE_DISABLE_EXPERIMENTAL_BETAS=1 is set. Patch-only; safe to upgrade immediately.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/

Bedrock users gain a new ANTHROPIC_BEDROCK_SERVICE_TIER env var (default, flex, or priority) to control service tier. /resume now finds the session that created a PR when you paste a GitHub, GitLab, or Bitbucket PR URL into the search box. /mcp surfaces claude.ai connectors previously hidden by a manually-added server with the same URL. Key bug fixes: /branch fork failures from rewound timelines, /model Effort option missing for Bedrock ARNs, Vertex AI 400 errors on count_tokens behind proxy gateways, and ToolSearch missing MCP tools that connected after session start.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/

New alwaysLoad option on MCP server config bypasses tool-search deferral so all tools from that server are always available without a ToolSearch call. claude plugin prune removes orphaned auto-installed plugin dependencies. /skills gains a type-to-filter search box. PostToolUse hooks can now replace tool output for any tool (previously MCP-only). Fullscreen scroll no longer jumps to the bottom when typing after scrolling up; overflow dialogs are now keyboard-scrollable. MCP servers that error on startup auto-retry up to 3 times. /terminal-setup now enables iTerm2 clipboard access so /copy works from tmux.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/

Maintenance patch — changelog housekeeping only, no user-facing changes. Safe to upgrade; no action required.

Release notes → Affects: /claude-cowork/

Major release. /config settings (theme, editor mode, verbose, etc.) now persist to ~/.claude/settings.json and participate in project/local/policy override precedence — a behavioral shift for anyone relying on ephemeral config. --from-pr now accepts GitLab MRs, Bitbucket PRs, and GitHub Enterprise URLs. PostToolUse hooks now include duration_ms, PowerShell commands can be auto-approved like Bash, and --print mode now honors agent frontmatter tools:/disallowedTools:. Slash command UI improved: descriptions wrap instead of truncating, matched characters highlight.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Vim visual mode (v/V) lands with full selection, operators, and visual feedback. /cost and /stats are merged into /usage (both still work as shortcuts). Custom themes are now editable JSON files in ~/.claude/themes/, createable via /theme; plugins can ship themes too. Hooks gain the ability to invoke MCP tools directly via type: "mcp_tool". New DISABLE_UPDATES env var blocks all update paths — stricter than the existing DISABLE_AUTOUPDATER. WSL users can inherit Windows-side managed settings via wslInheritsWindowsSettings.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/

/resume now offers to summarize large stale sessions before reloading — saves context on bloated histories. Concurrent MCP server connect is now the default (was opt-in). Plugin installs now auto-resolve missing dependencies from configured marketplaces, and managed-settings blockedMarketplaces/strictKnownMarketplaces are enforced across install, update, refresh, and autoupdate. Agent frontmatter mcpServers now loads for main-thread --agent sessions.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/

Large session /resume is up to 67% faster on 40 MB+ histories. MCP startup time reduced — resources/templates/list is now deferred to the first @-mention. /terminal-setup now configures scroll sensitivity for VS Code, Cursor, and Windsurf for smoother fullscreen scrolling. The thinking spinner shows inline progress ("still thinking", "thinking more", "almost done"). Security fix: sandbox auto-allow no longer bypasses dangerous-path checks for rm/rmdir targeting /, $HOME, or other critical system directories.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Patch release targeting multi-agent team setups. Fixes a crash in the permission dialog triggered when a teammate agent requested tool permission — affects anyone running agent teams with shared tool grants. Safe to upgrade immediately.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/

Substantial release. The CLI now launches a native per-platform binary instead of bundled JavaScript, improving startup performance. Security hardening: new sandbox.network.deniedDomains setting blocks specific domains even under wildcard allowlists; macOS /private/{etc,var,tmp,home} paths are now protected from wildcard rm rules; bash deny rules now catch commands wrapped in env/sudo/watch. Also: /loop Esc cancels pending wakeups, /extra-usage and @-file autocomplete now work from Remote Control clients, and subagents that stall mid-stream timeout cleanly after 10 minutes.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Hotfix — resolves the "claude-opus-4-7 is temporarily unavailable" error that blocked auto-mode users on Opus 4.7. Patch-only release, no behavioral changes.

Release notes → Affects: /claude-cowork/

Feature-heavy release. Opus 4.7 gains an xhigh effort level (between high and max), and /effort now opens an interactive slider instead of requiring arguments. Auto mode is available to Max subscribers on Opus 4.7 without any flag. New /ultrareview command runs parallel multi-agent code review in the cloud — invoke with no args for the current branch or /ultrareview <PR#> for a specific PR. New /less-permission-prompts skill audits transcripts and proposes settings.json allowlist entries. Windows users get a progressive PowerShell tool rollout. Read-only bash commands and cd <project-dir> && prefixes no longer trigger permission prompts.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Claude Code v2.1.110 ships a new /tui command for flicker-free fullscreen rendering and splits the Ctrl+O keybinding — focus view is now a separate /focus command. A push notification tool is added for Remote Control users, letting Claude send mobile alerts when configured. Quality-of-life improvements include better plugin management sorting, MCP multi-scope conflict detection in /doctor, and --resume/--continue now resurrecting unexpired scheduled tasks.

Release notes → Affects: /claude-cowork/, /claude-cowork/setup/, /claude-cowork/skills-guide/, /claude-cowork/system-prompts/, /claude-cowork/pricing/

Claude Code v2.1.109 introduces updates to the Claude Code CLI for AI agent development workflows. Review the official release notes for specific feature additions, bug fixes, and breaking changes. Developers using Claude Code should check compatibility requirements for their current projects before upgrading.

Release notes → Affects: /claude-cowork/

Claude Code 2.1.108 ships with improved hook reliability, faster skill loading, and a fix for long-running background tasks. Incremental release — safe upgrade.

Release notes → Affects: /claude-cowork/, /setup/, /skills-guide/

GPT-5.1 lands in the ChatGPT platform with expanded context window, tool-use improvements, and a new Structured Outputs mode. Pricing unchanged.

Changelog → Affects: /chatgpt/, /pricing/, /custom-gpts/

OpenClaw 2.3 introduces native MCP tool passthrough, an overhauled skill sandboxing model, and first-class Windows support without WSL. Major release — review setup and security guides.

Release notes → Affects: /openclaw/, /setup/, /skills-guide/, /security/, /configuration/

Hermes 1.2 adds persistent memory backends (SQLite, Postgres, Redis) and a revamped task scheduler. Existing memory migrations are handled automatically on first start.

Release notes → Affects: /hermes/, /memory/, /tasks/

IronClaw 0.9 lands the Rust-based TEE runtime in beta and tightens the skill allowlist model. Breaking config change for anyone on 0.8 — see migration notes.

Release notes → Affects: /ironclaw/, /setup/, /security/, /skill-allowlisting/

NemoClaw 1.8 adds one-click provider switching, improved local GPU detection, and an expanded policy DSL. Breaking change to the policy file schema — upgrade guide linked below.

Release notes → Affects: /nemoclaw/, /policy/, /switching-providers/, /local-gpu/