Claude Code v2.1.160: Security Prompts Before Writing Shell Startup Files and Build-Tool Configs
Anthropic
Claude Code v2.1.160 (released June 2, 2026) adds user confirmation prompts before writing to shell startup files (.zshenv, .bash_login, ~/.config/git/) and build-tool config files (.npmrc, .yarnrc, .bazelrc, .devcontainer/) in acceptEdits mode — preventing unintended code execution through startup hook injection. The release also renames the dynamic-workflow trigger from `workflow` to `ultracode`, fixes background session drop, WSL clipboard, and Windows IME rendering issues.
Why it matters
The security hardening addresses a class of supply-chain attack vectors where an agentic coder could inadvertently install persistent execution hooks; trigger rename to `ultracode` hints at a forthcoming ultracode workflow mode.
Importance: 2/5
Official GitHub release; security-relevant change for agentic coding workflows.