claude-code

v2.1.142 Breaking

This release includes breaking changes for platform teams planning a safe upgrade.

Published 20d Developer Productivity

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth rbac

ReleasePort's take

Moderate signal

editorial:auto 9d

Version v2.1.142 makes Opus 4.7 the default fast‑mode codec and fixes MCP_TOOL_TIMEOUT to honor per‑request fetch timeouts.

Why it matters: Fast mode now defaults to Opus 4.7 (set CLAUDE_CODE_OPUS_4_6_FAST_MODE_OVERRIDE=1 for Opus 4.6); MCP_TOOL_TIMEOUT correctly raises the request timeout beyond the previous 60‑second cap.

Summary

AI summary

Fast mode defaults to Opus 4.7 and MCP_TOOL_TIMEOUT now correctly raises per‑request fetch timeout.

Changes in this release

Type	Severity	Summary	CVE
Feature
Feature	Medium	Added new `claude agents` flags: `--add-dir`, `--settings`, `--mcp-config`, `--plugin-dir`, `--permission-mode`, `--model`, `--effort`, and `--dangerously-skip-permissions` to configure dispatched background sessions. Added new `claude agents` flags: `--add-dir`, `--settings`, `--mcp-config`, `--plugin-dir`, `--permission-mode`, `--model`, `--effort`, and `--dangerously-skip-permissions` to configure dispatched background sessions. Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Plugins with a root-level `SKILL.md` and no `skills/` subdirectory are now surfaced as a skill. Plugins with a root-level `SKILL.md` and no `skills/` subdirectory are now surfaced as a skill. Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	The `/plugin` details pane and `claude plugin details` now show LSP servers a plugin provides. The `/plugin` details pane and `claude plugin details` now show LSP servers a plugin provides. Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Low	/web-setup warns before replacing an existing GitHub App connection. /web-setup warns before replacing an existing GitHub App connection. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—
Performance	Medium	Fast mode now uses Opus 4.7 by default (previously Opus 4.6). Set `CLAUDE_CODE_OPUS_4_6_FAST_MODE_OVERRIDE=1` to pin fast mode to Opus 4.6. Fast mode now uses Opus 4.7 by default (previously Opus 4.6). Set `CLAUDE_CODE_OPUS_4_6_FAST_MODE_OVERRIDE=1` to pin fast mode to Opus 4.6. Source: llm_adapter@2026-05-21 Confidence: high	—
Performance	Medium	Improved reactive compaction: the first summarize attempt now seeds from the original request's overflow size, avoiding a wasted near‑full‑context retry. Improved reactive compaction: the first summarize attempt now seeds from the original request's overflow size, avoiding a wasted near‑full‑context retry. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—
Bugfix
Bugfix	Medium	Fixed `MCP_TOOL_TIMEOUT` not raising the per-request fetch timeout for remote HTTP and SSE MCP servers, capping tool calls at 60 seconds regardless of configured value. Fixed `MCP_TOOL_TIMEOUT` not raising the per-request fetch timeout for remote HTTP and SSE MCP servers, capping tool calls at 60 seconds regardless of configured value. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed background sessions not recognizing pre-existing git worktrees, blocking Edit while EnterWorktree refused to create a duplicate. Fixed background sessions not recognizing pre-existing git worktrees, blocking Edit while EnterWorktree refused to create a duplicate. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed background sessions disappearing and daemon reconnect failing after macOS sleep/wake — daemon now detects clock jumps instead of treating them as elapsed idle time. Fixed background sessions disappearing and daemon reconnect failing after macOS sleep/wake — daemon now detects clock jumps instead of treating them as elapsed idle time. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed daemon not exiting cleanly after the binary is upgraded (e.g., `brew upgrade`), causing dispatched agents to crash-loop on the deleted path. Fixed daemon not exiting cleanly after the binary is upgraded (e.g., `brew upgrade`), causing dispatched agents to crash-loop on the deleted path. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed background agents crash-looping when the Claude-in-Chrome extension is connected without a shared tab. Fixed background agents crash-looping when the Claude-in-Chrome extension is connected without a shared tab. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed clicking links in an attached `claude agents` session — background worker's headless browser shim no longer applies while attached. Fixed clicking links in an attached `claude agents` session — background worker's headless browser shim no longer applies while attached. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed `claude agents` "v to open in editor" using the daemon's default editor instead of your shell's `$EDITOR`/`$VISUAL`. Fixed `claude agents` "v to open in editor" using the daemon's default editor instead of your shell's `$EDITOR`/`$VISUAL`. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed `claude agents` deadlocking on Windows with network-drive working directories; Ctrl+C now works during startup. Fixed `claude agents` deadlocking on Windows with network-drive working directories; Ctrl+C now works during startup. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed background-color bleed when attaching to a `claude agents` session from Apple Terminal or other 256-color-only terminals. Fixed background-color bleed when attaching to a `claude agents` session from Apple Terminal or other 256-color-only terminals. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed `claude --bg --dangerously-skip-permissions` not persisting across retire/wake. Fixed `claude --bg --dangerously-skip-permissions` not persisting across retire/wake. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed session titles being derived from the URL when the first message is a link. Fixed session titles being derived from the URL when the first message is a link. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed redundant `set_model` requests from remote clients injecting duplicate `/model` breadcrumbs into the transcript. Fixed redundant `set_model` requests from remote clients injecting duplicate `/model` breadcrumbs into the transcript. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fixed plugins using `skills: ["./"]` showing a false "path escapes plugin directory" error. Fixed plugins using `skills: ["./"]` showing a false "path escapes plugin directory" error. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—
Bugfix	Medium	Fixed plugin cache cleanup deleting the active plugin version directory when no installation metadata is present. Fixed plugin cache cleanup deleting the active plugin version directory when no installation metadata is present. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—
Bugfix	Medium	Fixed plugins using `skills: [ Fixed plugins using `skills: [ Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Low	Fixed `/plugin` browse pane showing "0 installs" for newly published plugins. Fixed `/plugin` browse pane showing "0 installs" for newly published plugins. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—
Bugfix	Low	Fixed plugin advisories not naming every `plugin.json` key that shadows a default folder. Fixed plugin advisories not naming every `plugin.json` key that shadows a default folder. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—
Bugfix	Low	Improved hook configuration error: configuring a prompt- or agent-type hook for `SessionStart`/`Setup`/`SubagentStart` now shows a clear "use a command-type hook instead" error. Improved hook configuration error: configuring a prompt- or agent-type hook for `SessionStart`/`Setup`/`SubagentStart` now shows a clear "use a command-type hook instead" error. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—
Refactor	Low	Removed stale `/model claude-sonnet-4-20250514` suggestion from Usage Policy refusal messages. Removed stale `/model claude-sonnet-4-20250514` suggestion from Usage Policy refusal messages. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—

Full changelog

What's changed

Added new claude agents flags: --add-dir, --settings, --mcp-config, --plugin-dir, --permission-mode, --model, --effort, and --dangerously-skip-permissions to configure dispatched background sessions
Fast mode now uses Opus 4.7 by default (previously Opus 4.6). Set CLAUDE_CODE_OPUS_4_6_FAST_MODE_OVERRIDE=1 to pin fast mode to Opus 4.6
Plugins with a root-level SKILL.md and no skills/ subdirectory are now surfaced as a skill
The /plugin details pane and claude plugin details now show LSP servers a plugin provides
/web-setup warns before replacing an existing GitHub App connection
Fixed MCP_TOOL_TIMEOUT not raising the per-request fetch timeout for remote HTTP and SSE MCP servers, which capped tool calls at 60 seconds regardless of the configured value
Fixed background sessions not recognizing pre-existing git worktrees, blocking Edit while EnterWorktree refused to create a duplicate
Fixed background sessions disappearing and daemon reconnect failing after macOS sleep/wake — the daemon now detects clock jumps instead of treating them as elapsed idle time
Fixed daemon not exiting cleanly after the binary is upgraded (e.g. brew upgrade), causing dispatched agents to crash-loop on the deleted path
Fixed background agents crash-looping when the Claude-in-Chrome extension is connected without a shared tab
Fixed clicking links in an attached claude agents session — the background worker's headless browser shim no longer applies while attached
Fixed claude agents "v to open in editor" using the daemon's default editor instead of your shell's $EDITOR/$VISUAL
Fixed claude agents deadlocking on Windows with network-drive working directories; Ctrl+C now works during startup
Fixed background-color bleed when attaching to a claude agents session from Apple Terminal or other 256-color-only terminals
Fixed claude --bg --dangerously-skip-permissions not persisting across retire/wake
Fixed session titles being derived from the URL when the first message is a link
Fixed redundant set_model requests from remote clients injecting duplicate /model breadcrumbs into the transcript
Fixed plugins using skills: ["./"] showing a false "path escapes plugin directory" error
Fixed plugin cache cleanup deleting the active plugin version directory when no installation metadata is present
Fixed /plugin browse pane showing "0 installs" for newly published plugins
Fixed plugin advisories not naming every plugin.json key that shadows a default folder
Improved reactive compaction: the first summarize attempt now seeds from the original request's overflow size, avoiding a wasted near-full-context retry
Improved hook configuration error: configuring a prompt- or agent-type hook for SessionStart/Setup/SubagentStart now shows a clear "use a command-type hook instead" error
Removed stale /model claude-sonnet-4-20250514 suggestion from Usage Policy refusal messages

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track claude-code

Get notified when new releases ship.

About claude-code

All releases →

Related context

Related tools

Earlier breaking changes

v2.1.160 Renames dynamic‑workflow trigger keyword from `workflow` to `ultracode`; `workflow` no longer triggers a run
v2.1.160 Deprecates and removes the `CLAUDE_CODE_OPUS_4_6_FAST_MODE_OVERRIDE` environment variable; it is now a no‑op
v2.1.147 Renames /simplify to /code-review; removes cleanup-and-fix behavior.

Featured in

2026-W20