
Main Updates in Claude Code v2.1.207
This page has been translated by machine translation. View original
This is Ishikawa from the Cloud Business Division. Claude Code v2.1.207 (released July 10, 2026) has been released. This release includes changes aimed at users accessing via cloud providers — specifically, the opening of Auto mode on Bedrock, Vertex AI, and Foundry, and the change to Claude Opus 4.8 as the default model on AWS and Vertex — while the majority of the release centers on numerous bug fixes and security hardening around plugins (including breaking changes).
Update Summary
v2.1.207 includes 24 changes. New features and improvements are few, with the bulk of the content being bug fixes and security hardening around plugin configuration. On Bedrock, Vertex, and Claude Platform on AWS, the default model has changed to Claude Opus 4.8, and Auto mode is now available in these environments without opting in. Note that some notations in plugin hooks, monitors, and MCP settings are now rejected as a measure against shell injection.
Additionally, an in-app browser has been added to the desktop version of Claude Code.
Notable Updates
- New Feature: Auto mode is now available on Bedrock, Vertex AI, and Foundry without opt-in via
CLAUDE_CODE_ENABLE_AUTO_MODE. - Bug Fix: Fixed an issue where the terminal would freeze or key input would lag during streaming of responses containing long lists, tables, paragraphs, or code blocks.
- Security: Fixed an issue where non-interactive execution (
claude -por SDK) would permanently record remote management settings as "consented" without ever showing a security consent dialog.
Update Details
New Features
- Auto mode is now available on Bedrock, Vertex AI, and Foundry without opt-in via
CLAUDE_CODE_ENABLE_AUTO_MODE. Previously, these providers required opting in via an environment variable, but that step is no longer necessary. To disable it, usedisableAutoModein settings.
Improvements
- The default model on Bedrock, Vertex, and Claude Platform on AWS is now Claude Opus 4.8. Since the default for these environments when no model is specified will change, please explicitly configure the model setting if you wish to remain on the previous model.
- In the agent view, pasting the same text again now expands the collapsed
[Pasted text #N]placeholder instead of adding a second one. - In the agent view, the preview of a blocked session now shows the question at the top and displays elapsed time as a text expression like
waiting 3minstead of showing the same timestamp twice.
Security
- Fixed an issue in non-interactive execution (
claude -por SDK) where remote management settings would be permanently recorded as "consented" without ever displaying a security consent dialog. This affects behavior when running Claude Code via CI or scripts.
Fixes
- Fixed terminal freezing and key input lag during streaming: Fixed an issue where the terminal would freeze or key input would lag while displaying responses containing very long lists, tables, paragraphs, or code blocks.
- Fixed agent team crash loop: Fixed an issue where invalid teammate mailbox messages would cause errors to repeat every second until the mailbox file was manually deleted.
- Fixed file loading corruption from invalid bracket patterns: Fixed an issue where invalid bracket patterns in rules globs, skill paths,
.ignore, or.worktreeincludewould break file loading, file candidate display, and worktree creation. - Fixed repeated AWS SSO credential requests on Bedrock: Fixed an issue where Bedrock would request new AWS SSO credentials from IAM Identity Center on every API request.
- Fixed AWS credential resolution hang on Windows: Fixed an issue where, if AWS credential resolution stalled on Windows (e.g., a hanging
credential_process), it would wait indefinitely; a 60-second stall guard will now trigger. - Fixed Remote Control status loss and missing progress display: Fixed an issue where task status updates were lost during recovery from network interruptions or credential renewals, and an issue where background agent and workflow progress was not displayed on mobile or web for sessions hosted by the desktop app.
- Fixed invalid amount input in
/usage-credits: Fixed an issue where invalid values (e.g., a pasted timestamp) were silently truncated to numbers only; invalid amounts are now rejected with an error, and amounts exceeding $1,000 require typed confirmation. - In addition, numerous minor bugs have been fixed, including false positives in prompt injection warnings, the auto-updater overwriting custom launchers, transcript scroll position at streaming completion, issues related to worktrees and background sessions, and source label display in Deep research.
Breaking Changes & Deprecations
${user_config.*}notation in plugin hooks, monitors, and MCP headersHelper:${user_config.*}within shell-format commands is now rejected as a measure against shell injection. Hooks must migrate to exec format (argsarray) or$CLAUDE_PLUGIN_OPTION_<KEY>, and monitors and headersHelper must migrate to reading values within scripts (configuration file or the server'senvblock).- Change to source for reading plugin option values (
pluginConfigs): These will no longer be read from project-level.claude/settings.json; only user settings,--settings, and managed settings will be respected. - Change to source for reading Auto mode settings:
autoModein.claude/settings.local.jsonwithin repositories will no longer be read. Use~/.claude/settings.jsoninstead.
Closing
For this release, the biggest topics for those using Claude Code via Bedrock, Vertex, or AWS are the change to Claude Opus 4.8 as the default model and the opening of Auto mode without opt-in. Meanwhile, the majority of changes are stability improvements and bug fixes, including fixes with significant practical impact such as terminal freezing and agent team crash loops. If you distribute or use plugins, please review the breaking changes related to configuration sources and shell notation before updating.
References
