Sourced from @​anthropic-ai/claude-code's releases.

v2.1.163

What's changed

• Added requiredMinimumVersion and requiredMaximumVersion managed settings — Claude Code refuses to start if its version is outside the allowed range and directs the user to an approved version
• Added /plugin list command to list installed plugins, with --enabled/--disabled filters
• Added a "c to copy" shortcut to /btw that copies the raw markdown answer to the clipboard, preserving formatting when pasted elsewhere
• Hooks: Stop and SubagentStop hooks can now return hookSpecificOutput.additionalContext to give Claude feedback and keep the turn going without being labeled a hook error
• Skills: added \$ escape syntax to include a literal $ before a digit in command bodies
• stdio MCP servers now receive the same CLAUDE_CODE_SESSION_ID as hooks/Bash on --resume
• Fixed claude -p hanging forever after its final result when a backgrounded command never exits — background shells are now stopped ~5s after the result once stdin closes
• Fixed claude -p failing with "ANTHROPIC_API_KEY required" on Bedrock/Vertex/Foundry when CI=true and no Anthropic API key is set
• Fixed bash commands failing under bazel and EDR-protected Go workflows: $TMPDIR was overridden to /tmp/claude-{uid} for all commands instead of only sandboxed ones (regression in 2.1.154)
• Fixed Bash commands failing on Windows with "EEXIST: file already exists" on the session-env directory when it has the read-only attribute or is inside OneDrive
• Fixed org-managed permission rules not applying for the entire session when the managed settings fetch completed during startup on a fresh config directory
• Fixed background sessions in claude agents losing their running background tasks when reattached after a Claude Code update
• Fixed terminal misalignment and a multi-second hang when exiting the agent view by pressing Esc
• Fixed clicking Stop on a background-task chip in the desktop app not clearing the chip when the underlying process was already gone
• Fixed keyboard input becoming permanently unresponsive after a paste operation whose end marker is dropped by the terminal
• Fixed hook if: "Bash(...)" conditions firing on every Bash command containing $() or $VAR; the pattern now matches against commands inside subshells and backticks too
• Fixed deny rules on home-directory paths (e.g. Read(~/Desktop/**)) not blocking Bash commands that reference the path via $HOME
• Fixed a stray "(no content)" line left in the transcript after closing panel dialogs like /mcp and /plugins
• Background agent sessions now update to a new Claude Code version in the background, so opening a session after an update no longer waits on a cold restart
• Clearer descriptions for built-in commands and skills in the / menu
• The subscription-switch suggestion now shows in the startup announcement slot instead of a toast
• claude agents dispatching from the state-grouped view now starts the session in the directory the agent view was opened from

v2.1.162

What's changed

• claude agents --json now includes waitingFor showing what a waiting session is blocked on (e.g. permission prompt)
• --tools: explicitly listing Grep/Glob now provides the dedicated search tools on native builds with embedded search (previously these names were silently ignored)
• /effort now confirms when your chosen level will persist as the default for new sessions
• Clicking a slash command in the autocomplete menu now fills it into your prompt instead of running it immediately; press Enter to run
• Remote Control now shows as a persistent footer pill (with a link to the session) instead of a startup message
• Renamed Windsurf to Devin Desktop in the /ide menu, /terminal-setup, and /scroll-speed, following the editor's rebrand
• Fixed a silent startup hang when the config directory is read-only or unwritable — Claude Code now starts with in-memory config and surfaces startup errors instead of showing a blank screen
• Fixed WebFetch permission rules not being applied to built-in preapproved domains; explicit WebFetch(domain:...) deny/ask/allow rules now take precedence over the preapproved-host auto-allow
• Fixed Windows permission rules never matching when spelled with backslashes (~\, \\server\share) or case-variant paths, and Read deny rules not hiding files from Glob/Grep results
• Fixed an interrupt (Esc) sent at the very start of a turn being silently dropped in stream-json/SDK sessions, leaving the turn running with no "Interrupted" feedback
• Fixed API 400 no low surrogate in string errors for classifier side-queries and MCP server descriptions containing emoji near a truncation boundary
• Fixed MCP per-server timeout config values below 1000 ms being floored to a 1-second watchdog that aborted every tool call; sub-1000 ms values are now ignored (falling back to MCP_TOOL_TIMEOUT or default), and claude mcp get annotates them accordingly
• Fixed the LSP tool's workspaceSymbol operation returning no results; it now accepts a query parameter and passes it to the language server
• Fixed claude agents cutting live status text (tool args, replies, prompts, exec output) at 60–120 columns on wide terminals; the status detail now uses the full terminal width
• Fixed claude agents truncating long session names at 40 columns; the name column now grows with terminal width
• Fixed claude agents attach occasionally bouncing straight back to the session list on the first try after a background-service restart
• Fixed claude agents Ctrl+V image paste doing nothing in the dispatch input and the session reply box; pasting with no image now shows a hint
• Fixed backgrounding a session with ← silently losing the conversation when the background service cannot start; the session stays in the list as a failed row you can wake with Enter
• Fixed replies from the agents view that fail to send being lost; they are now queued for delivery on the next session start
• Fixed cross-session messaging (SendMessage) silently breaking when CLAUDE_CODE_TMPDIR or $TMPDIR points at a deep directory
• Fixed opening a running background session from claude agents stalling for 5 seconds before attaching

... (truncated)

Sourced from @​anthropic-ai/claude-code's changelog.

2.1.163

• Added requiredMinimumVersion and requiredMaximumVersion managed settings — Claude Code refuses to start if its version is outside the allowed range and directs the user to an approved version
• Added /plugin list command to list installed plugins, with --enabled/--disabled filters
• Added a "c to copy" shortcut to /btw that copies the raw markdown answer to the clipboard, preserving formatting when pasted elsewhere
• Hooks: Stop and SubagentStop hooks can now return hookSpecificOutput.additionalContext to give Claude feedback and keep the turn going without being labeled a hook error
• Skills: added \$ escape syntax to include a literal $ before a digit in command bodies
• stdio MCP servers now receive the same CLAUDE_CODE_SESSION_ID as hooks/Bash on --resume
• Fixed claude -p hanging forever after its final result when a backgrounded command never exits — background shells are now stopped ~5s after the result once stdin closes
• Fixed claude -p failing with "ANTHROPIC_API_KEY required" on Bedrock/Vertex/Foundry when CI=true and no Anthropic API key is set
• Fixed bash commands failing under bazel and EDR-protected Go workflows: $TMPDIR was overridden to /tmp/claude-{uid} for all commands instead of only sandboxed ones (regression in 2.1.154)
• Fixed Bash commands failing on Windows with "EEXIST: file already exists" on the session-env directory when it has the read-only attribute or is inside OneDrive
• Fixed org-managed permission rules not applying for the entire session when the managed settings fetch completed during startup on a fresh config directory
• Fixed background sessions in claude agents losing their running background tasks when reattached after a Claude Code update
• Fixed terminal misalignment and a multi-second hang when exiting the agent view by pressing Esc
• Fixed clicking Stop on a background-task chip in the desktop app not clearing the chip when the underlying process was already gone
• Fixed keyboard input becoming permanently unresponsive after a paste operation whose end marker is dropped by the terminal
• Fixed hook if: "Bash(...)" conditions firing on every Bash command containing $() or $VAR; the pattern now matches against commands inside subshells and backticks too
• Fixed deny rules on home-directory paths (e.g. Read(~/Desktop/**)) not blocking Bash commands that reference the path via $HOME
• Fixed a stray "(no content)" line left in the transcript after closing panel dialogs like /mcp and /plugins
• Background agent sessions now update to a new Claude Code version in the background, so opening a session after an update no longer waits on a cold restart
• Clearer descriptions for built-in commands and skills in the / menu
• The subscription-switch suggestion now shows in the startup announcement slot instead of a toast
• claude agents dispatching from the state-grouped view now starts the session in the directory the agent view was opened from

2.1.162

• claude agents --json now includes waitingFor showing what a waiting session is blocked on (e.g. permission prompt)
• --tools: explicitly listing Grep/Glob now provides the dedicated search tools on native builds with embedded search (previously these names were silently ignored)
• /effort now confirms when your chosen level will persist as the default for new sessions
• Clicking a slash command in the autocomplete menu now fills it into your prompt instead of running it immediately; press Enter to run
• Remote Control now shows as a persistent footer pill (with a link to the session) instead of a startup message
• Renamed Windsurf to Devin Desktop in the /ide menu, /terminal-setup, and /scroll-speed, following the editor's rebrand
• Fixed a silent startup hang when the config directory is read-only or unwritable — Claude Code now starts with in-memory config and surfaces startup errors instead of showing a blank screen
• Fixed WebFetch permission rules not being applied to built-in preapproved domains; explicit WebFetch(domain:...) deny/ask/allow rules now take precedence over the preapproved-host auto-allow
• Fixed Windows permission rules never matching when spelled with backslashes (~\, \\server\share) or case-variant paths, and Read deny rules not hiding files from Glob/Grep results
• Fixed an interrupt (Esc) sent at the very start of a turn being silently dropped in stream-json/SDK sessions, leaving the turn running with no "Interrupted" feedback
• Fixed API 400 no low surrogate in string errors for classifier side-queries and MCP server descriptions containing emoji near a truncation boundary
• Fixed MCP per-server timeout config values below 1000 ms being floored to a 1-second watchdog that aborted every tool call; sub-1000 ms values are now ignored (falling back to MCP_TOOL_TIMEOUT or default), and claude mcp get annotates them accordingly
• Fixed the LSP tool's workspaceSymbol operation returning no results; it now accepts a query parameter and passes it to the language server
• Fixed claude agents cutting live status text (tool args, replies, prompts, exec output) at 60–120 columns on wide terminals; the status detail now uses the full terminal width
• Fixed claude agents truncating long session names at 40 columns; the name column now grows with terminal width
• Fixed claude agents attach occasionally bouncing straight back to the session list on the first try after a background-service restart
• Fixed claude agents Ctrl+V image paste doing nothing in the dispatch input and the session reply box; pasting with no image now shows a hint
• Fixed backgrounding a session with ← silently losing the conversation when the background service cannot start; the session stays in the list as a failed row you can wake with Enter
• Fixed replies from the agents view that fail to send being lost; they are now queued for delivery on the next session start
• Fixed cross-session messaging (SendMessage) silently breaking when CLAUDE_CODE_TMPDIR or $TMPDIR points at a deep directory
• Fixed opening a running background session from claude agents stalling for 5 seconds before attaching
• Quieter startup: notices group by severity, and session info and announcements share a single line per launch
• Startup warnings rewritten to be shorter and clearer, each with a concrete fix

... (truncated)

• d1e1742 chore: Update CHANGELOG.md and feed.xml
• b67fa4f chore: Update CHANGELOG.md and feed.xml
• 625c04c chore: Update CHANGELOG.md and feed.xml
• bdb04fc chore: Update CHANGELOG.md and feed.xml
• 8bae02d chore: Update CHANGELOG.md and feed.xml
• 295dee8 chore: Update CHANGELOG.md and feed.xml
• 8d0fbf4 chore: Update CHANGELOG.md and feed.xml
• 2d5c3c6 chore: Update CHANGELOG.md and feed.xml
• 1696f22 chore: Update CHANGELOG.md and feed.xml
• 3bb4455 chore: Update CHANGELOG.md and feed.xml
• Additional commits viewable in compare view

This version adds postinstall script that runs during installation. Review the package contents before updating.

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.