"Pinning the Claude Code version in our shared onboarding config meant every new engineer got the same binary. We stopped debugging version mismatches entirely."— Konstanze J. BirkhoffInfra Engineer · Palladion Venture · Vienna
Claude Code Download
Where to find the Claude Code package, how versions are named, and how to verify what you downloaded before running it — for both the npm CLI and the desktop installers.
Deprecation watch
Running npm install -g @anthropic-ai/claude-code without a version tag always pulls the latest stable release. If your team uses a change-approval workflow, pin to a specific version string in your shared configuration so updates happen deliberately rather than automatically on the next engineer's machine.
What to download and from where
Claude Code is distributed in two forms: the npm package for the CLI and native installer files for the desktop clients.
The npm package is the primary artefact for developers. It lives at @anthropic-ai/claude-code on the npm registry and installs via the standard global install command. There is no separate binary file to download, no archive to unpack, and no PATH tweak beyond what npm handles automatically. The package includes the CLI binary, the default skill manifests, and the auth helper.
The desktop installers — a DMG for macOS and an EXE for Windows — are distributed from the product release page. They bundle a self-contained copy of the CLI runtime, so you do not need a separate npm install to use the desktop client. If you want both the desktop client and terminal access, install both; they share the same config file and do not conflict. The claude ai download page lists the current installer artefacts with file formats and checksums.
Version naming convention
Claude Code follows semantic versioning: MAJOR.MINOR.PATCH.
A PATCH increment — say, 1.5.0 to 1.5.1 — signals a bug fix with no functional changes. Safe to update immediately. A MINOR increment — 1.5.0 to 1.6.0 — adds new features in a backwards-compatible way. Read the release notes before updating if you have pinned skill manifests. A MAJOR increment signals breaking changes. Review the migration notes before updating on a shared team environment.
The desktop installer version, the npm package version, and the claude --version output all carry the same number. If they diverge, the desktop client or the CLI is out of date — update whichever one is behind.
Pre-release and beta tags
Stable releases use the latest npm dist-tag. Pre-release builds carry a suffix such as -beta.1 or -rc.1 and publish under a separate tag like beta or next. Installing without specifying a tag always pulls stable.
# Install latest stable:
npm install -g @anthropic-ai/claude-code
# Install a specific version:
npm install -g @anthropic-ai/claude-code@1.5.0
# Install the current beta (if available):
npm install -g @anthropic-ai/claude-code@betaPre-release versions are not recommended for production use. Teams evaluating upcoming features should install them in a separate Node environment — using a tool like nvm — rather than overwriting the stable global install.
Download artefact reference
The table below maps each downloadable artefact to its format and the checksum style used to verify it.
| Artifact | Format | Checksum style |
|---|---|---|
| CLI npm package | .tgz (npm registry) |
SHA-512 integrity field in package-lock.json |
| Desktop installer — macOS Apple Silicon | .dmg |
SHA-256 published alongside release |
| Desktop installer — macOS Intel | .dmg |
SHA-256 published alongside release |
| Desktop installer — Windows x64 | .exe |
SHA-256 published alongside release |
| Claude Desktop — macOS | .dmg |
SHA-256 published alongside release |
| Claude Desktop — Windows | .exe |
SHA-256 published alongside release |
Verifying a download
For the npm package, npm verifies integrity automatically using the SHA-512 hash stored in your package-lock.json. You do not need to do this step manually unless you suspect the lock file itself was tampered with.
For desktop installers, compare the SHA-256 hash you compute against the one published on the release page.
# macOS / Linux:
shasum -a 256 claude-code-1.5.0-mac-arm64.dmg
# Windows PowerShell:
Get-FileHash claude-code-1.5.0-win-x64.exe -Algorithm SHA256If the hashes do not match, delete the file and download again. A mismatch indicates either a corrupted download or a file that was modified after publication — neither scenario is safe to proceed with.
Checking the currently installed version
At any time you can confirm what is installed by running the version command in your terminal.
claude --version
# example output: claude-code/1.5.0 linux-x64 node-v20.11.0The output includes the package version, the platform, and the Node version that was active at install time. All three are worth noting when filing a bug report.
For guidance on supply-chain security practices around developer tool downloads in general, the NSF CISE publications on secure software infrastructure provide useful framing for teams setting internal download verification policies.
Frequently asked questions about Claude Code download
Where do I download Claude Code?
Claude Code is distributed as an npm package. Run npm install -g @anthropic-ai/claude-code to download and install the latest stable release. There is no separate binary to find on a website for the CLI. Desktop installer artefacts for macOS and Windows are linked from the claude ai download reference page.
How does Claude Code version naming work?
Claude Code uses semantic versioning: MAJOR.MINOR.PATCH. A PATCH bump fixes bugs. A MINOR bump adds backwards-compatible features. A MAJOR bump signals breaking changes. The desktop installer and the npm package always carry the same version tag — check the app's About panel and claude --version to confirm they match.
How do I verify a Claude Code download before installing?
For the npm package, npm verifies integrity automatically via the SHA-512 hash in package-lock.json. For desktop installers, the release page publishes a SHA-256 checksum alongside each file. Run shasum -a 256 <file> on macOS/Linux or Get-FileHash on PowerShell and compare the output to the published hash.
Can I pin Claude Code to a specific version?
Yes. Run npm install -g @anthropic-ai/claude-code@1.5.0 to install a specific version. In a project package.json use an exact version string. Teams with change-approval workflows pin to a specific version in shared config and update deliberately.
What is the difference between a stable release and a pre-release tag?
Stable releases use the latest npm dist-tag. Pre-release versions carry a suffix like -beta.1 or -rc.1 and publish under a separate dist-tag. Installing without specifying a tag always pulls stable. To install a pre-release, specify the tag explicitly: npm install -g @anthropic-ai/claude-code@beta. Pre-release builds are not recommended for production environments.
Related topics
The claude ai download page covers every downloadable artefact in the broader ecosystem — not just the CLI, but also Claude Desktop for macOS and Windows. If you are ready to install after downloading, the install claude code hub has the full step-by-step guide for all platforms, and the claude code windows page handles the Windows-specific steps including execution policy and PATH. For desktop client details, the claude code desktop page explains what each client offers and how its version tracks against the CLI.
After install, the CLI setup page covers shell profile edits, environment variables, and the auth flow. Keeping the installation current matters for security as well as features — the claude code skills system occasionally depends on CLI features that ship in minor releases, so teams running pinned versions should read the release notes before updating. The models overview and claude api pages are the natural next stops once the tooling is in place.
Have the package — now configure the shell?
The CLI setup guide covers PATH configuration, environment variables, and the auth flow for every supported platform.
Go to CLI setup