Claude docs changes for May 27th, 2026 [diff]
Executive Summary
- New
security-guidanceplugin documentation: automatically reviews Claude's code changes for vulnerabilities (injection, unsafe deserialization, DOM injection, etc.) and fixes them in the same session, at three layers: per-edit pattern match, end-of-turn diff review, and commit/push review - New comprehensive guide for monorepos and large codebases covering per-directory CLAUDE.md files, sparse worktrees, code intelligence plugins, and centralized convention management
- Version 2.1.152 adds a
MessageDisplayhook for transforming assistant message text,SessionStartenhancements (session title setting, skill reloading), anddisallowed-toolsfrontmatter for skills/commands - Version 2.1.152: auto mode no longer requires opt-in consent, and
/code-review --fixnow applies findings directly to the working tree - Corrected documentation across Bedrock, Vertex AI, and Microsoft Foundry: only
/logoutis unavailable when using cloud provider credentials (not/login)
New Claude Code versions
2.1.152
New features
/code-review --fixnow applies review findings to the working tree after the review;/simplifynow invokes/code-review --fix- Skills and slash commands can now set
disallowed-toolsin frontmatter to remove tools from the model while the skill or command is active - Added
/reload-skillscommand to re-scan skill directories without restarting the session SessionStarthooks can now returnreloadSkills: trueto re-scan skill directories, making skills installed by the hook available in the same sessionSessionStarthooks can now set the session title viahookSpecificOutput.sessionTitleon startup and resume- Added a
MessageDisplayhook event that lets hooks transform or hide assistant message text as it is displayed - Added
pluginSuggestionMarketplacesmanaged setting: admins can allowlist org marketplaces whose plugins may be suggested via context-aware tips claude plugin marketplace removenow accepts--scope user|project|localfor symmetry with other marketplace commands- Auto mode no longer requires opt-in consent
- Vim mode:
/in NORMAL mode now opens reverse history search (like Ctrl+R), matching bash/zsh vi-mode
Existing feature improvements
- Claude Code now switches to the configured
--fallback-modelfor the rest of the session when the primary model is not found, instead of failing every request - The
/usagebreakdown now includes large session files; files are scanned with a streaming read so memory usage stays flat - Thinking summaries in the collapsed group now stay readable for at least 3 seconds, render as markdown, and cap at 10 lines (
Ctrl+Oshows full thinking) - In fullscreen mode, the "Thinking for Ns" indicator now counts up live while the model is thinking and keeps its value if you interrupt mid-thought
- Simplified the Workflow tool's inline progress display — live agent counts now show only in the persistent workflow status row
- The post-response timer now shows "Waiting for N background agents/workflows to finish" when backgrounded work is still running, and reports cumulative time once results are processed
- Added the session entrypoint as an OpenTelemetry metric attribute (
app.entrypoint, opt-in viaOTEL_METRICS_INCLUDE_ENTRYPOINT=true)
Major bug fixes
- Fixed terminal styling degrading in very long sessions by recycling the renderer's style pool
- Fixed sessions getting stuck after a model or login switch left stale thinking-block signatures in history
- Fixed
cache_creation_input_tokensreporting as 0 in transcript and result usage when the API reports cache writes only via the nestedcache_creationbreakdown - Fixed remote MCP servers failing to connect in Claude Code Remote sessions when the egress proxy is enabled
- Fixed plugin MCP servers with the same command but different environment variables being incorrectly deduplicated
- Fixed plugins that track a git branch silently no longer receiving updates after the plugin registry was rebuilt
Claude Code changes
New Documents
Large codebases [Source]
New guide: "Set up Claude Code in a monorepo or large codebase." Covers layering per-directory CLAUDE.md files, excluding irrelevant CLAUDE.md files with claudeMdExcludes, blocking reads of generated/vendored code with Read deny rules, using code intelligence plugins to replace file scans, configuring worktree.sparsePaths for lightweight worktrees, granting cross-package access with additionalDirectories, adding per-directory skills, and centralizing conventions via plugins when directory-level layering stops scaling.
Security guidance [Source]
New guide for the security-guidance plugin, which reviews Claude's own code changes for common vulnerabilities and fixes them in the same session. Describes three review layers: per-edit pattern match (no model call), end-of-turn diff review by a separate Claude instance, and an agentic commit/push review with surrounding code context. Covers custom rules via .claude/claude-security-guidance.md and .claude/security-patterns.yaml, usage costs, how to disable individual layers, and how the plugin fits alongside /security-review and PR-time code review.
Changed documents
Admin setup [Source]
- Added link to the new monorepo/large codebase guide for organizations deploying into a monorepo. [line 123] [Source]
Agent SDK - Overview [Source]
- Commands (formerly "Slash commands") are now described as the legacy format; the description explicitly says to use skills for new custom commands. [line 321] [Source]
- Plugins description updated to "Extend with skills, agents, hooks, and MCP servers" (removed "custom commands"). [line 323] [Source]
Agent SDK - Plugins [Source]
- The SDK init message now includes a
skillsfield listing available plugin skills (separate fromslash_commands); the code example is updated to show both. [line 143] [Source] - Troubleshooting now says to verify that a skill appears in the
skillslist (notslash_commands) when debugging plugin skill invocation. [line 225] [Source]
Amazon Bedrock [Source]
- Corrected: when using Bedrock, only the
/logoutcommand is unavailable —/loginis still available. [line 158] [Source]
Best practices [Source]
- Added guidance to have Claude show evidence of success (test output, command result, screenshot) rather than asserting it — reviewing evidence is faster than re-running verification. [line 37] [Source]
- Added tip that the most useful specs are self-contained: they name files and interfaces involved, state what is out of scope, and end with an end-to-end verification step. [line 338] [Source]
- Corrected non-interactive streaming example:
--output-format stream-jsonnow requires--verbose. [line 415] [Source] - New "Add an adversarial review step" section: guidance on using a subagent in fresh context to review diffs against the plan before treating a task as done, including how to use
/code-reviewand how to avoid over-engineering from reviewer findings. [line 499] [Source]
CLI reference [Source]
- Updated usage examples for
--include-hook-events,--include-partial-messages, and--replay-user-messagesto include--verbose, which is now required alongside--output-format stream-json. [lines 78-79, line 99]
Common workflows [Source]
- Added reference to the new monorepo/large codebase guide in the "Understand new codebases" section. [line 25] [Source]
Discover plugins [Source]
- Added new "Automatic security review" section listing the
security-guidanceplugin, which reviews each change Claude makes for common vulnerabilities and instructs Claude to fix them in the same session. [line 90] [Source]
Google Vertex AI [Source]
- Corrected: when using Vertex AI, only the
/logoutcommand is unavailable —/loginis still available. [line 130] [Source]
Hooks guide [Source]
- Added reference to the
security-guidanceplugin as a production example of hooks that run a separate model review and feed findings back into the session. [line 93] [Source]
MCP [Source]
- Clarified scope precedence behavior: when the same server is defined in multiple scopes, the entire server entry from the highest-precedence source is used — fields are not merged across scopes. [line 304] [Source]
Memory [Source]
- Added note that to block an action regardless of what Claude decides, use a
PreToolUsehook rather than CLAUDE.md instructions. [line 23] [Source] - Corrected the maximum import recursion depth for
@pathimports in CLAUDE.md from five to four hops. [line 87] [Source] - Added reference to the new monorepo/large codebase guide for CLAUDE.md layout and per-directory rules. [line 137] [Source]
Microsoft Foundry [Source]
- Corrected: when using Microsoft Foundry, only the
/logoutcommand is unavailable —/loginis still available. [line 59] [Source]
Security [Source]
API changes
No significant API documentation changes today.