Claude Code v2.1.89 — 4 New Environment Variables: Agent Cost Steering, Session Resume Controls, and 50% StructuredOutput Fix#
Published on March 31, 2026
Part of the Claude Code Version Tracker series. | Official Env Vars | Official Changelog
Claude Code v2.1.89 adds 4 new environment variables and removes 2, for a net gain of 2 since v2.1.88. The additions reveal cost governance for multi-agent workflows and new controls for session resume behavior. Beyond the env vars, the changelog is dense with headless-automation infrastructure and a critical fix for a StructuredOutput bug that was silently failing half the time.
What Changed#
| v2.1.88 | v2.1.89 | |
|---|---|---|
| Environment variables | 208 | 210 (+2 net) |
New Environment Variables#
| Variable | Likely Purpose |
|---|---|
CLAUDE_CODE_AGENT_COST_STEER | Controls cost-aware behavior for subagent delegation. As Claude Code's multi-agent architecture matures — named subagents now appear in @ mention typeahead[1] — the cost of spawning parallel agents becomes a real concern. This variable likely sets a budget ceiling or cost-optimization strategy (e.g., preferring Haiku for lightweight tasks) that steers agent routing decisions. The naming pattern ("steer" rather than "limit") suggests it influences model selection rather than hard-capping spend. |
CLAUDE_CODE_DISABLE_CLAUDE_API_SKILL | Disables the built-in Claude API skill. The Claude API skill auto-triggers when code imports anthropic or @anthropic-ai/sdk, providing SDK-aware guidance. In enterprise environments or when working on competing AI integrations, this automatic behavior can be unwanted. This flag gives users a clean way to suppress the skill without modifying managed settings or policy configurations. |
CLAUDE_CODE_RESUME_THRESHOLD_MINUTES | Sets the time window (in minutes) during which a session is eligible for automatic resume. Claude Code already supports --resume for continuing sessions, and this release adds deferred tool handling for headless sessions[1]. This variable likely controls how long a session remains "warm" — after the threshold, a new session starts instead of resuming the stale one. Critical for CI/CD pipelines and headless workflows where stale context causes more harm than starting fresh. |
CLAUDE_CODE_RESUME_TOKEN_THRESHOLD | Sets the token count threshold for session resume eligibility. Complementing the time-based threshold above, this adds a context-size dimension: if a session's accumulated tokens exceed this limit, resuming it may be less efficient than starting fresh (due to prompt cache misses, which this release also fixes[1]). Together, these two resume variables give operators fine-grained control over when headless sessions should continue vs restart. |
Notable Changelog Items#
Deferred tool execution for headless sessions. A new "defer" permission decision for PreToolUse hooks lets headless sessions pause at a tool call boundary, then resume later with -p --resume so the hook can re-evaluate. This is the missing piece for human-in-the-loop CI pipelines — a Claude Code agent can run unattended, hit a sensitive operation (like a destructive git command), park itself, and wait for a human to approve before continuing. The companion PermissionDenied hook (return {retry: true}) lets the model retry after auto-mode classifier denials, closing the loop on autonomous-but-supervised workflows.
StructuredOutput schema cache had a ~50% failure rate. A cache bug was causing roughly half of all StructuredOutput calls to fail when using multiple schemas in a session. If you were seeing intermittent JSON schema validation errors in tools that use structured output, this was likely the culprit. The fix alone makes this release worth upgrading to.
Autocompact thrash loop detection. Previously, if context refilled immediately after compacting (common in sessions with many injected files), Claude Code would burn API calls in an infinite compact-refill cycle. It now detects three consecutive thrash cycles and stops with an actionable error. This was a silent cost drain that power users may not have noticed until their bill arrived.
Edit tool no longer requires a prior Read. If you viewed a file via Bash using sed -n or cat, the Edit tool now accepts that as sufficient — no separate Read call needed. A small ergonomic win that removes a frequent friction point.
MCP connections go non-blocking. MCP_CONNECTION_NONBLOCKING=true in -p mode skips the MCP connection wait entirely, and --mcp-config server connections are now bounded at 5 seconds instead of blocking on the slowest server. For headless setups with flaky MCP servers, this eliminates a common startup hang.
Nested CLAUDE.md re-injection fixed. In long sessions that read many files, nested CLAUDE.md files were being re-injected dozens of times, bloating context and wasting tokens. This was particularly insidious because it silently ate into your context window without any visible symptom beyond earlier-than-expected summarization.
Named subagents in typeahead. The @ mention autocomplete now shows named subagents alongside files and MCP resources, with source files ranked above MCP resources with similar names. This makes the multi-agent system more discoverable — users can see and select specific agents by name rather than relying on the system to route automatically.
/buddy — April 1st easter egg. Hatch a small creature that watches you code. Shipping seasonal easter eggs in a developer tool is a deliberate culture move — it signals that the team building Claude Code treats it as a product people live in, not just a utility they invoke.
What These Tell Us#
Multi-agent cost governance is arriving. The CLAUDE_CODE_AGENT_COST_STEER variable is the first explicit cost-control mechanism targeting subagent behavior. Until now, Claude Code's agent delegation has been opaque from a billing perspective — spawning a research agent or a code review agent just used whatever model the system chose. Cost steering suggests Anthropic is building the infrastructure for organizations to set policies like "use Haiku for exploration, Opus for final output." Combined with the named subagents now surfaced in the UI, this points toward agents becoming a first-class, governable resource rather than an implementation detail.
Session lifecycle is getting formalized for headless use. The resume threshold variables, deferred tool permissions, autocompact thrash detection, and MCP non-blocking connections all point in one direction: Claude Code running reliably without a human at the keyboard. Each of these fixes addresses a specific way that unattended sessions previously failed silently — stale context, infinite compaction loops, blocked MCP startup, permission deadlocks. This release isn't adding headless features so much as removing the reasons headless sessions break.
Security checks are becoming non-negotiable. The removal of CLAUDE_CODE_DISABLE_COMMAND_INJECTION_CHECK is a quiet but significant change. Previously, users could opt out of command injection detection — useful during development but a liability in production. Removing the escape hatch means the check is now always on. The changelog also fixes hook if conditions that weren't matching compound commands (ls && git push) or commands with env-var prefixes (FOO=bar git push) — the safety net is getting tighter and more accurate simultaneously.
Removed Environment Variables#
| Variable | Notes |
|---|---|
CLAUDE_CODE_DISABLE_COMMAND_INJECTION_CHECK | Previously allowed disabling command injection detection. The safety check is now mandatory — no opt-out. This aligns with the changelog's hook hardening: compound commands and env-var prefixed commands are now properly matched by hook filters[1]. |
CLAUDE_CODE_DISABLE_MOUSE_CLICKS | Granular mouse click disable, added in v2.1.88. Superseded by the broader CLAUDE_CODE_DISABLE_MOUSE flag. The two-tier mouse control approach lasted one version — the simpler on/off toggle won. |
Sources#
- Claude Code Official Changelog — v2.1.89 release notes
This analysis is conducted for independent security research and interoperability purposes under fair use principles. All trademarks belong to their respective owners. The information presented here documents publicly observable behavior of installed software and is not intended to circumvent any technological protection measures, infringe on intellectual property rights, or encourage unauthorized use. Use these findings at your own discretion.
Related Versions#
- Claude Code v2.1.88 — 7 New Environment Variables — mouse control, REPL mode, flicker-free rendering
- Claude Code v2.1.86 — 2 New Environment Variables — trusted device tokens, OAuth console override
- Claude Code v2.1.85 — 6 New Environment Variables — MCP server config, yoga-layout removal, OAuth endpoint overrides
- Claude Code v2.1.84 — 6 New Environment Variables — idle management, PowerShell tool, Bedrock parity
- Claude Code v2.1.83 — 8 New Environment Variables — managed-settings.d/, transcript search, 40+ fixes
Related: Context Window Management Guide | Claude Code Productivity Tips | The Agentic Engineering Playbook