2026-05-13 · Anthropic

v2.1.141

protocolsagentsmodels

read at source ↗ github.com

v2.1.141

Source: Anthropic Claude Code Date: 2026-05-13 URL: https://github.com/anthropics/claude-code/releases/tag/v2.1.141

Summary

Claude Code v2.1.141 (May 13, 2026) is the largest single release tracked in this cycle by change count: 50+ fixes and 10+ new features across the CLI, VS Code extension, plugin system, MCP layer, and background agent infrastructure. Headline additions include terminalSequence hook output for desktop notifications and window titles, ANTHROPIC_WORKSPACE_ID for workload identity federation, claude agents --cwd for directory-scoped session listing, a “Summarize up to here” rewind option, and background agent permission-mode preservation. The release also restores “view diff in IDE” on file-edit prompts, improves spinner feedback during long thinking, and ships a plugin menu navigation overhaul. Bug fixes span background agent naming, Bedrock/Vertex model routing, markdown table rendering, keybinding edge cases, MCP server error messaging, and Remote Control auth token rotation.

Implications

  • Anthropic distribution machine thread. ANTHROPIC_WORKSPACE_ID for workload identity federation is a direct enterprise authentication feature — scoping minted tokens to specific workspaces for multi-tenant deployments. Combined with the Claude Platform on AWS announcement (same day), this release is part of a coordinated enterprise infrastructure push: new distribution channel + new auth primitive in the same 24-hour window.
  • Agent layer → lifecycle → orchestration thread. Background agent permission-mode preservation and the claude agents --cwd scoping fix are reliability improvements for fleet operation. The failure modes being patched (background agents reverting to default permissions, sessions not scoping to directory) are real-world friction from agents running unattended — consistent with the pattern in v2.1.143 three days later.
  • Claude Code security surface thread. The MCP HTTP/SSE 403 fix (showing “needs auth” instead of “failed”), Remote Control session token rotation fix, and CLAUDE_CONFIG_DIR symlink improvements all touch the authentication and configuration attack surface. Three of the last five releases touching security continues the continuous-hardening pattern established post-v2.1.96.

← all signals