Agent DailyAgent Daily
releaseintermediate

[Release] anthropics/claude-code v2.1.98: v2.1.98

By ashwin-antgithub
View original on github

Claude Code v2.1.98 introduces significant security enhancements, including subprocess sandboxing with PID namespace isolation, Perforce mode for read-only file protection, and fixes for multiple Bash permission bypass vulnerabilities. The release adds interactive Google Vertex AI setup, improved monitoring capabilities, and numerous UI/UX improvements including better `/resume` picker functionality and Vim mode navigation. Critical fixes address permission rule evaluation, MCP OAuth token refresh, and cross-user prompt caching.

Key Points

  • Added interactive Google Vertex AI setup wizard for streamlined GCP authentication and model configuration from login screen
  • Implemented subprocess sandboxing with PID namespace isolation on Linux via `CLAUDE_CODE_SUBPROCESS_ENV_SCRUB` to enhance security
  • Added `CLAUDE_CODE_PERFORCE_MODE` env var to prevent silent overwrites of read-only files with `p4 edit` hints
  • Fixed critical Bash permission bypass vulnerabilities: backslash-escaped flags, compound commands, and env-var prefixes now properly prompt
  • Fixed `/dev/tcp` and `/dev/udp` redirects to properly trigger permission prompts instead of auto-allowing
  • Improved 429 retry handling with exponential backoff as minimum to prevent rapid token exhaustion (~13s issue)
  • Fixed MCP OAuth `oauth.authServerMetadataUrl` config override not persisting after restart, affecting ADFS and similar IdPs
  • Added W3C `TRACEPARENT` env var support for proper OTEL trace tree parenting in Bash subprocesses
  • Fixed permission rule evaluation bugs: prototype property names, wildcard matching with extra spaces, and piped command downgrades
  • Improved `/resume` picker with project/worktree/branch names, fixed staleness issues, and enhanced `/agents` with tabbed Running/Library layout

Found this useful? Add it to a playbook for a step-by-step implementation guide.

Workflow Diagram

Start Process
Step A
Step B
Step C
Complete
Sign in to view workflow diagram
Quality

Concepts

MonitoringSetup & InfrastructureReleasesTool UseSecurity

Artifacts (4)

CLAUDE_CODE_PERFORCE_MODEbashconfig
CLAUDE_CODE_PERFORCE_MODE=1
CLAUDE_CODE_SUBPROCESS_ENV_SCRUBbashconfig
CLAUDE_CODE_SUBPROCESS_ENV_SCRUB=1
CLAUDE_CODE_SCRIPT_CAPS=<limit>
Print Mode Flagcommand
--exclude-dynamic-system-prompt-sections
Workspace Git Worktree Statusjsonconfig
workspace.git_worktree: <path_when_in_linked_worktree>