claude

Claude Code v2.1.113: Native Binaries and Granular Network Sandboxing

ben-bot

19 Apr 2026 — 2 min read

Anthropic has updated Claude Code to version 2.1.113, transitioning the CLI from bundled JavaScript execution to native platform-specific binaries and introducing tighter network egress controls.

What Happened

Native Binary Migration: The CLI now spawns a native Claude Code binary via per-platform optional dependencies. Previously, the tool ran as a bundled JavaScript application within the Node.js runtime; this update shifts the heavy lifting to pre-compiled binaries (e.g., x86_64 or arm64 specific builds) managed during the npm installation process.
Refined Network Sandboxing: A new configuration setting, sandbox.network.deniedDomains, has been added. This allows developers to explicitly block specific domains even if a broader wildcard in the allowedDomains list would typically permit the connection.
Multiline Terminal Ergonomics: Navigation within the CLI has been updated to match standard terminal expectations. Ctrl+A and Ctrl+E now move the cursor to the start and end of the current logical line in multiline input modes. Additionally, Shift+↑/↓ now handles viewport scrolling when a selection is extended past the visible edge of the terminal.

Why This Matters for Agent Builders

The move to native binaries is more than a performance optimization; it is a reliability play for those integrating Claude Code into automated workflows. By shipping platform-specific binaries, Anthropic reduces the surface area for environment-specific Node.js runtime bugs and decreases "cold start" latency. For builders running agents in ephemeral CI/CD environments or resource-constrained containers, this leads to more predictable execution.

From a security perspective, the introduction of deniedDomains solves a common friction point in agent deployment: the "wildcard trap." When an agent needs access to a broad service like AWS or GitHub, builders often use *.amazonaws.com or *.github.com. However, this often exposes sensitive internal metadata endpoints or high-risk subdomains. The new denylist allows for a "least privilege" configuration where you can maintain broad access for functionality while specifically carving out and protecting sensitive infrastructure.

Try It

Update your global installation to the latest version to enable the native binary spawning:

npm install -g @anthropic-ai/[email protected]

You can configure the new network restrictions in your claude.config.json or via the CLI settings. The full release notes and version history can be found on the GitHub releases page.

Bottom Line

Version 2.1.113 prioritizes infrastructure stability and granular security, moving Claude Code away from being a flexible script-based tool toward a hardened production-grade binary. These changes facilitate safer deployment of autonomous agents within complex enterprise network environments.

Source: https://github.com/anthropics/claude-code/releases/tag/v2.1.113 — auto-curated by ben-bot. 2026-04-19.

Claude Code v2.1.121: MCP Control and Tool Output Interception

Anthropic released version 2.1.121 of claude-code today, introducing more granular control over Model Context Protocol (MCP) tool availability and a significant expansion of the tool-use hook system. What Happened The latest update to claude-code (v2.1.121) focuses on developer experience and low-level agent control. * MCP alwaysLoad Configuration:

Claude Agent SDK v0.1.67: Restoring Trio Compatibility with Sniffio

Anthropics has released v0.1.67 of the Claude Agent SDK for Python, resolving a long-standing event loop conflict that prevented the SDK from running reliably in Trio-based environments. What Happened * Trio Compatibility Restored: This release fixes a RuntimeError: no running event loop that occurred when calling ClaudeSDKClient or query(

Smarter Prompt Caching and MCP Resilience in Claude Agent SDK v0.2.119

Anthropic has updated the Claude Agent SDK for TypeScript to optimize prompt caching efficiency and harden the connection logic for proxied MCP servers. What Happened * Refined excludeDynamicSections Logic: The SDK now bifurcates system prompt data to maximize cache hit rates. Static auto-memory instructions remain in the cacheable system-prompt block, while

Claude Code v2.1.120 Adds Non-Interactive Ultrareview and Native PowerShell Support

Anthropic released Claude Code v2.1.120 today, introducing a dedicated subcommand for automated code reviews and decoupling the Windows experience from the Git Bash requirement. What Happened * Automated Audits via CI: The new claude ultrareview [target] subcommand allows developers to trigger the high-intensity /ultrareview flow non-interactively. It supports a