Claude Report — 2026-06-05

🚀 Anthropic Official

Claude Code v2.1.163 — Version Guardrails, /plugin list, Hook additionalContext

Released June 4, 2026 at 21:52 UTC. Adds requiredMinimumVersion/requiredMaximumVersion managed settings that prevent Claude Code from starting outside an allowed version range; /plugin list with --enabled/--disabled filters; a "c to copy" shortcut in /btw that copies raw Markdown to clipboard preserving formatting; Stop and SubagentStop hooks can now return hookSpecificOutput.additionalContext to give Claude feedback without triggering a hook error; stdio MCP servers receive CLAUDE_CODE_SESSION_ID on --resume (matching hooks/Bash behavior); skills gain \$ escape syntax for literal $ before digits. Fixes claude -p hanging after final result on backgrounded processes, ANTHROPIC_API_KEY required failures on Bedrock/Vertex with CI=true, bash failures under bazel/EDR-protected Go workflows, Windows session-env file permission errors, org-managed permission rules not applying on fresh configs, background sessions losing tasks after CLI updates, terminal misalignment/hang on agent-view exit, keyboard freeze after paste, hook conditions firing incorrectly on $() / $VAR Bash syntax, deny rules not blocking $HOME-referenced paths, and stray "(no content)" lines in transcripts.

Claude Code v2.1.165 — Bug Fixes and Reliability

Released June 5, 2026 at 05:45 UTC. Ships bug fixes and reliability improvements; full change list not published in the release notes.

Claude Code v2.1.160 — ultracode Trigger Rename, Shell/Build-Config Safety Gates

Released June 2, 2026 at 02:10 UTC (not covered in yesterday's report). Renames the dynamic-workflow trigger keyword from workflow to ultracode; adds confirmation prompts before writing to shell startup files (.zshenv, .zlogin, .bash_login, ~/.config/git/) and build-tool config files that grant code execution (.npmrc, .yarnrc*, bunfig.toml, .bazelrc, .pre-commit-config.yaml, .devcontainer/); a single-file grep/egrep/fgrep now satisfies the read-before-edit check (no separate Read call required in acceptEdits mode); removes the CLAUDE_CODE_OPUS_4_6_FAST_MODE_OVERRIDE env var and the JetBrains startup install suggestion. Bug fixes: WSL clipboard copy-on-select, background session history on restore, claude --bg socket errors, Windows directory deletion after claude rm, background agents appearing under Completed, claude agents freeze on session-list return, keyboard unresponsiveness under CPU load, CJK IME composition positioning, and broken file:///C:/... links on Windows.

Introducing the Services Track and Partner Hub of the Claude Partner Network

Published June 3, 2026. Launches a three-tier certification structure for implementation partners — Select (10+ certified professionals, 2+ production deployments), Preferred (100+, 15+), Global Premier (1,000+, 100+ deployments across 3+ regions) — and a Partner Hub portal with daily-refreshed standing dashboards and a new MCP connector for Claude integration. Backed by a $100 million investment; Accenture, Deloitte, KPMG, and PwC are already training tens of thousands of employees on Claude.

Expanding Project Glasswing

Published June 2, 2026. Grows the AI-assisted vulnerability-finding initiative from ~50 initial partners to ~150 new organizations across 15+ countries, covering critical-infrastructure sectors (power, water, healthcare, communications, hardware) whose codebases collectively serve 100M+ users. Initial partners already found 10,000+ high/critical-severity flaws; Anthropic also releases Claude Security publicly for codebase scanning and patch suggestions; frames verification, disclosure, and patching — not detection — as the real bottleneck.

🔌 Claude Code Plugins

Plugin cache unavailable — top-10 tracking skipped this run.

🛠️ Skills

None of the top 5 confirmed updated in window.

Unchanged in window: Piebald-AI/claude-code-system-prompts, anthropics/knowledge-work-plugins, VILA-Lab/Dive-into-Claude-Code, ComposioHQ/awesome-claude-skills, anthropics/skills

🤖 Agents & Subagents

claude-agent-sdk-typescript v0.3.163 — Idempotent stop_task, Builtin MCP Servers Fix, Hook additionalContext

Released June 4, 2026 at 21:52 UTC. stop_task control requests now return success when the target task is already gone (not_found or not_running), letting SDK clients reliably prune stale task chips without error-handling for the already-stopped case; fixes SDK hosts being unable to add builtin MCP servers (e.g., claude-in-chrome) via setMcpServers when the CLI launched without them pre-registered; Stop and SubagentStop hook events now expose additionalContext in hookSpecificOutput for non-error feedback that continues the turn.

Unchanged in window: nicobailon/pi-subagents, Chachamaru127/claude-code-harness

🔗 MCPs & Integrations

None of the top 5 updated in window.

Unchanged in window: modelcontextprotocol/servers, github-mcp-server, awslabs/mcp, modelcontextprotocol/typescript-sdk, portainer/portainer-mcp

💡 Community — Workflows & Ideas

No relevant news today.

📰 Quick Mentions

Relevant links that don't warrant a section of their own:

• Claude Code GitHub Action supply chain flaw (The Hacker News, Jun 4) — permission bypass via any GitHub App actor trust + prompt injection exfiltrated ACTIONS_ID_TOKEN_REQUEST_TOKEN; patched in claude-code-action v1.0.94, CVSS v4.0 score 7.8, bug bounty paid; original research: RyotaK / Flatt Security (Jun 1)
• claude-agent-sdk-typescript v0.3.165 (Jun 5) — parity bump with Claude Code v2.1.165; no SDK-level API changes
• claude-agent-sdk-python v0.2.90 (Jun 4) — bundles CLI v2.1.163; no Python API changes
• claude-agent-sdk-python v0.2.91 (Jun 5) — switches test suite to anyio (asyncio + trio backends in CI); bundles CLI v2.1.165