Skip to content
Oday Bakkour
Back to Knowledge Hub
ai

AI Coding Roundup — July 4, 2026: Claude Code Goes Manual-First on Permissions, GitHub Copilot Ships Enterprise Governance Tools

Oday Bakkour profile photo
Oday Bakkour
4 min read
Share

Two release trains carried today's news. Anthropic pushed Claude Code to v2.1.201, flipping the default permission mode from automatic approval to Manual and shipping a dense batch of background-agent and daemon-security fixes along the way. GitHub, meanwhile, rolled out a batch of enterprise governance features for Copilot — session-level audit streaming, AI credit pools for cost centers, token-free CLI runs in Actions, and a heads-up that two Gemini models are on their way out. Here's what changed and why it matters.

Claude Code v2.1.200–2.1.201: Manual Permissions Become the Default

Claude Code v2.1.200 changes a setting that shapes how every session behaves out of the box: the default permission mode across the CLI, --help, VS Code, and JetBrains switched from "default" (auto-approving low-risk tool calls) to "Manual", so new installs now ask before every tool call unless a developer opts back into a looser mode with --permission-mode manual or the defaultMode config setting. It's a conservative move that trades a bit of friction for a smaller blast radius — timely, given the agentjacking-style credential attacks documented against AI coding agents in recent weeks. AskUserQuestion dialogs got the same treatment: they no longer auto-continue by default, with an idle timeout now opt-in via /config instead of assumed.

The release also closes a real security gap: background-agent daemon handover was hardened so a reinstalled older build can no longer take over a running daemon, and a stale daemon.lock left behind by a crash — whose PID the OS later reused — no longer permanently blocks new background agents from starting. A same-day v2.1.201 followed with a narrower fix: Claude Sonnet 5 sessions no longer route harness reminders through the mid-conversation system role.

  • Default permission mode changed from "default" to "Manual" across CLI, VS Code, and JetBrains
  • AskUserQuestion dialogs no longer auto-continue by default; opt into an idle timeout via /config
  • Fixed background-agent daemon handover so a reinstalled older build can't take over the daemon
  • Fixed a stale daemon.lock from a crash permanently blocking new background agents when its PID was reused by the OS
  • Fixed background sessions silently stopping mid-turn after sleep/wake
  • Fixed subagents cut off by a rate limit before producing output returning an empty result instead of failing cleanly
  • v2.1.201: Claude Sonnet 5 sessions no longer use the mid-conversation system role for harness reminders

GitHub Copilot Ships an Enterprise Governance Batch

GitHub's changelog moved fast this week on the admin side of Copilot. Agent session streaming is now in public preview for GitHub Enterprise Cloud customers with enterprise managed users: enterprises can stream every Copilot session — prompts, responses, and tool calls — to a SIEM or event collector, or pull the last 48 hours via a new REST endpoint, giving security teams direct visibility into what coding agents are doing across the org.

Billing got more precise too. Cost centers now support AI credit pools, which cap how much of an enterprise's shared included-usage pool a given cost center can draw before falling back to metered overage — separate from, and stackable with, existing cost-center budgets. Copilot CLI runs in GitHub Actions no longer need a personal access token, since the CLI can now authenticate with the workflow's built-in GITHUB_TOKEN, closing off a common source of leaked long-lived credentials in CI. Rounding out the batch: Copilot usage metrics reports gained better accuracy and coverage, and GitHub confirmed Gemini 2.5 Pro and Gemini 3 Flash will be deprecated across every Copilot surface on July 31, 2026, with Gemini 3.1 Pro and Gemini 3.5 Flash as the recommended replacements.

  • Copilot agent session streaming (prompts, responses, tool calls) is now in public preview via SIEM streaming or a new REST endpoint
  • Cost centers now support AI credit pools that cap shared included-usage consumption per cost center
  • Copilot CLI in GitHub Actions authenticates with the built-in GITHUB_TOKEN — no personal access token required
  • Copilot usage metrics reports gained improved accuracy and coverage
  • Gemini 2.5 Pro and Gemini 3 Flash deprecate across all Copilot surfaces on July 31, 2026 — migrate to Gemini 3.1 Pro / Gemini 3.5 Flash

References and Further Reading

Comments

Share your thoughts and join the conversation

Leave a Comment

Loading comments...
Add Oday Bakkour as a preferred source on Google
RELATED
Claude Code Goes Manual-First, Copilot Adds Governance | Oday Bakkour