Claude Code v2.1.101 adds team onboarding, enterprise TLS support, and fixes memory leaks

New Features

Claude Code v2.1.101 adds several practical features for teams and enterprise users:

• /team-onboarding command generates a teammate ramp-up guide from your local Claude Code usage
• OS CA certificate store trust by default, so enterprise TLS proxies work without extra setup (set CLAUDE_CODE_CERT_STORE=bundled to use only bundled CAs)
• /ultraplan and other remote-session features now auto-create a default cloud environment instead of requiring web setup first

Improvements

The release includes multiple quality-of-life enhancements:

• Improved brief mode retries once when Claude responds with plain text instead of a structured message
• Focus mode: Claude now writes more self-contained summaries since it knows you only see its final message
• Tool-not-available errors now explain why and how to proceed when the model calls a tool that exists but isn't available in the current context
• Rate-limit retry messages show which limit was hit and when it resets instead of an opaque seconds countdown
• Refusal error messages include the API-provided explanation when available
• claude -p --resume <name> now accepts session titles set via /rename or --name
• Settings resilience: an unrecognized hook event name in settings.json no longer causes the entire file to be ignored
• Plugin hooks from plugins force-enabled by managed settings run when allowManagedHooksOnly is set
• /plugin and claude plugin update show a warning when the marketplace could not be refreshed
• Plan mode hides the "Refine with Ultraplan" option when the user's org or auth setup can't reach Claude Code on the web
• Beta tracing honors OTEL_LOG_USER_PROMPTS, OTEL_LOG_TOOL_DETAILS, and OTEL_LOG_TOOL_CONTENT; sensitive span attributes are no longer emitted unless opted in
• SDK query() cleans up subprocess and temp files when consumers break from for await or use await using

Bug Fixes

Version 2.1.101 addresses several critical issues:

• Fixed a command injection vulnerability in the POSIX which fallback used by LSP binary detection
• Fixed a memory leak where long sessions retained dozens of historical copies of the message list in the virtual scroller
• Fixed --resume / --continue losing conversation context on large sessions when the loader anchored on a dead-end branch instead of the live conversation
• Fixed --resume chain recovery bridging into an unrelated subagent conversation when a subagent message landed near a main-chain write gap
• Fixed a crash on --resume when a persisted Edit/Write tool result was missing its file_path
• Fixed a hardcoded 5-minute request timeout that aborted slow backends (local LLMs, extended thinking, slow gateways) regardless of API_TIMEOUT_MS
• Fixed permissions.deny rules not overriding a PreToolUse hook's permissionDecision: "ask" — previously the hook could downgrade a deny into a prompt
• Fixed --setting-sources without user causing background cleanup to ignore cleanupPeriodDays and delete conversation history older than 30 days
• Fixed Bedrock SigV4 authentication failing with 403 when ANTHROPIC_AUTH_TOKEN, apiKeyHelper, or ANTHROPIC_CUSTOM_HEADERS set an Authorization header
• Fixed claude -w <name> failing with "already exists" after a previous session's worktree cleanup left a stale directory
• Fixed subagents not inheriting MCP tools from dynamically-injected servers
• Fixed sub-agents running in isolated worktrees being denied Read/Edit access to files inside their own worktree
• Fixed sandboxed Bash commands failing with mktemp: No such file or directory after a fresh boot
• Fixed claude mcp serve tool calls failing with "Tool execution failed" in MCP clients that validate outputSchema
• Fixed RemoteTrigger tool's run action sending an empty body and being rejected by the server
• Fixed several /resume picker issues: narrow default view hiding sessions from other projects, unreachable preview on Windows Terminal, incorrect cwd in worktrees, session-not-found errors not surfacing in stderr, terminal title not being set, and resume hint overlapping the prompt input
• Fixed Grep tool ENOENT when the embedded ripgrep binary path becomes stale (VS Code extension auto-update, macOS App Translocation); now falls back to system rg and self-heals mid-session
• Fixed /btw writing a copy of the entire conversation to disk on every use
• Fixed /context Free space and Messages breakdown disagreeing