developersIO
Major Updates in Claude Code v2.1.149 to v2.1.150

Major Updates in Claude Code v2.1.149 to v2.1.150

Claude Code v2.1.149 and v2.1.150 have been released. We introduce the update contents that significantly enhance security and stability, including the new `/usage` usage breakdown display feature, a fix for PowerShell permission bypass, and resolution of host crashes caused by `find`.
ClaudeClaude Code生成AIアップデートセキュリティ
2026.05.24

This page has been translated by machine translation. View original

This is Ishikawa from the Cloud Business Division. Claude Code v2.1.149 (released 2026-05-22) and v2.1.150 (released 2026-05-23) have been released. This article summarizes the update contents of these 2 versions.

Update Summary

This covers 2 versions (v2.1.149–v2.1.150, 2026-05-22–2026-05-23). The focus is on v2.1.149, which includes 2 new features, 3 improvements, along with numerous bug fixes including security fixes related to permissions. v2.1.150 contains only internal infrastructure improvements with no user-facing changes. Overall, this release stands out for PowerShell and sandbox permission hardening and stability improvements.

Notable Updates

  • New Feature: /usage now displays a breakdown of usage by skill, sub-agent, plugin, and MCP server (v2.1.149)
  • Bug Fix: Fixed an issue where the find command in the Bash tool was exhausting the macOS file table and crashing the host (v2.1.149)
  • Security: Fixed a PowerShell permission bypass (an issue where the working directory was changed undetected via cd-type functions) (v2.1.149)

Target Versions and Period

Version Release Date Overview
v2.1.149 2026-05-22 New features, improvements, and numerous fixes (main focus)
v2.1.150 2026-05-23 Internal infrastructure improvements only (no user-facing changes)

New Features

  • /usage breakdown display: /usage now shows a breakdown by skill, sub-agent, plugin, and MCP server of what is consuming your usage limits (v2.1.149). This makes it easier to understand what is putting pressure on your limits.

20260524-claude-code-updates-v2-1-150-1

  • allowAllClaudeAiMcps setting for Enterprise: A management setting has been added that loads claude.ai cloud MCP connectors together with managed-mcp.json (v2.1.149).

Improvements

  • /diff keyboard scrolling: The /diff detail view can now be scrolled using arrow keys, j/k, PgUp/PgDn, Space, and Home/End (v2.1.149).
  • GFM task list rendering: Markdown output now renders GFM task list checkboxes (- [ ] todo / - [x] done) instead of plain bullet points (v2.1.149).
  • /feedback report improvements: Reports now include conversations before context compression, making it easier to isolate issues that occurred early in long sessions (v2.1.149).

Security

Several important fixes related to permissions and sandboxing have been made (all in v2.1.149).

  • Fixed PowerShell permission bypass: Fixed an issue where built-in cd functions (cd.., cd\, cd~, X:) were changing the working directory undetected, allowing subsequent commands to read outside the workspace.
  • Fixed git worktree sandbox write permission: Fixed an issue where the write allowlist was covering the entire main repository root rather than just the shared .git directory (hooks/ and config are denied).
  • Fixed permission parsing gap: Fixed an issue where stale tracked values of PWD/OLDPWD/DIRSTACK variables were being trusted across cd/pushd/popd.

Fixes (Major)

Here is a selection focusing on fixes related to stability and usability.

  • Fixed host crash caused by find: Fixed an issue where the find command in the Bash tool was exhausting the macOS system file/vnode table and crashing the host on large directory trees (v2.1.149).
  • Fixed PowerShell allow rule pre-approval: Fixed an issue where prefix/wildcard allow rules (e.g., PowerShell(dotnet.exe build *)) were not pre-approving native executables and scripts (v2.1.149).
  • Fixed managed settings approval dialog freeze: Fixed an issue where the terminal remained frozen after approving at startup (v2.1.149).
  • Fixed /ultraplan and remote session creation failure: Fixed an issue where creation failed with "Could not capture uncommitted changes" when there were no actual changes in the working tree (v2.1.149).
  • Fixed argument hints display after skill Tab completion: Fixed an issue where argument hints and progressive argument suggestions were not displayed after Tab-completing a skill whose frontmatter name: differed from the directory name (v2.1.149).
  • Fixed Ctrl+O transcript display freeze: Fixed an issue where it would freeze at the moment of opening without following new messages (v2.1.149).
  • Fixed /insights crash: Fixed an issue where a crash occurred when cached session meta files were missing arbitrary fields (v2.1.149).
  • Fixed PowerShell and History tool call misclassification: Fixed an issue where malformed calls with missing input were misclassified as reads in transcript collapsing (v2.1.149).
  • In addition, numerous minor bugs have been fixed including the thinking spinner color, prompt history editing, /config exit summary, status bar effort display, and argument hint rendering.

Closing

v2.1.149 was a release centered on the practical new feature of /usage usage breakdowns, along with PowerShell and sandbox permission hardening, and stability fixes including the host crash caused by find. v2.1.150 contains only internal improvements.

In particular, since the permission-related fixes have security implications, we recommend updating as soon as possible. We also encourage you to try out the new breakdown display in /usage.

References

https://github.com/anthropics/claude-code/blob/main/CHANGELOG.md

https://code.claude.com/docs/en/changelog

生成AI活用はクラスメソッドにお任せ

過去に支援してきた生成AIの支援実績100+を元にホワイトペーパーを作成しました。御社が抱えている課題のうち、どれが解決できて、どのようなサービスが受けられるのか?4つのフェーズに分けてまとめています。どうぞお気軽にご覧ください。

生成AI資料イメージ

無料でダウンロードする

Share this article