Anthropic blocking requests after v0.0.10 - "credential only authorized for Claude Code"

[ErcinDedeoglu]

Problem

Starting January 28, 2026, Anthropic began blocking API requests made through OpenCode with the error:

This credential is only authorized for use with Claude Code and cannot be used for other API requests

Affected versions: OpenCode 1.1.37+ (which uses opencode-anthropic-auth@0.0.10+)
Working version: OpenCode 1.1.36 (which uses opencode-anthropic-auth@0.0.9)

Root Cause Analysis

Version Mapping

OpenCode Version	Plugin Version	Status
v1.1.36	opencode-anthropic-auth@0.0.9	✅ Reportedly works
v1.1.37	opencode-anthropic-auth@0.0.10	❌ Blocked

Key Difference: System Prompt Injection

The only functional change between v0.0.9 and v0.0.10 was commit a931d12 ("add spoof"):

// Added in v0.0.10
"experimental.chat.system.transform": (input, output) => {
  if (input.model.providerID === "anthropic") {
    output.system.unshift(
      "You are Claude Code, Anthropic's official CLI for Claude.",
    );
  }
},

Spoofing Present in Both Versions

Both v0.0.9 and v0.0.10 already include:

1. User-Agent spoofing (line 178):

   "claude-cli/2.1.2 (external, cli)"

2. Text replacement (lines 195-196):

   .replace(/OpenCode/g, 'Claude Code')
   .replace(/opencode/gi, 'Claude')

Hypothesis

Anthropic appears to be detecting and blocking the explicit system prompt injection added in v0.0.10, rather than the User-Agent header or text replacement that existed in v0.0.9.

However, this is unconfirmed. Other possibilities:

• Anthropic may have tightened detection across the board
• Token-level restrictions may have changed
• Request fingerprinting may have been implemented

Questions

1. Has anyone confirmed v1.1.36 / plugin v0.0.9 still works as of Jan 28, 2026?
2. Would removing the experimental.chat.system.transform hook from v0.0.10+ restore functionality?
3. Is there a legitimate way to use Anthropic Pro/Max OAuth credentials with OpenCode without spoofing?

Workaround

For now, users can downgrade to OpenCode 1.1.36:

opencode upgrade 1.1.36
export OPENCODE_DISABLE_AUTOUPDATE=1  # Add to ~/.bashrc

Environment

• OpenCode versions tested: 1.1.36, 1.1.37+
• Plugin versions analyzed: 0.0.9, 0.0.10
• Date of block: January 28, 2026
• Auth type: Anthropic OAuth (Pro/Max subscription)

[ErcinDedeoglu]

cc @rekram1-node (authored the "add spoof" commit in v0.0.10), @thdxr, @remorses (contributed the text sanitization in PR #18)

Would be great to get confirmation on:

1. Whether v0.0.9 still works as of today
2. If the experimental.chat.system.transform hook is indeed what's being detected

-> human update: I love AI Agents 🗡️

[ErcinDedeoglu]

UPDATE: Found the actual differences via traffic analysis

Used mitmproxy to capture real Claude CLI traffic and compared with what the plugin sends.

Missing Headers in Plugin

Header	Real Claude CLI	OpenCode Plugin
x-app	cli	❌ MISSING
anthropic-dangerous-direct-browser-access	true	❌ MISSING
User-Agent	claude-cli/2.1.22	claude-cli/2.1.2 ⚠️ Outdated

Full Headers from Real Claude CLI (v2.1.22)

host: api.anthropic.com
Accept: application/json
X-Stainless-Retry-Count: 0
X-Stainless-Timeout: 600
X-Stainless-Lang: js
X-Stainless-Package-Version: 0.70.0
X-Stainless-OS: Linux
X-Stainless-Arch: arm64
X-Stainless-Runtime: node
X-Stainless-Runtime-Version: v24.13.0
anthropic-dangerous-direct-browser-access: true
anthropic-version: 2023-06-01
authorization: Bearer sk-ant-oat01-...
x-app: cli
User-Agent: claude-cli/2.1.22 (external, cli)
content-type: application/json
anthropic-beta: oauth-2025-04-20,interleaved-thinking-2025-05-14

Proposed Fix

Add missing headers to the plugin:

requestHeaders.set("x-app", "cli");
requestHeaders.set("anthropic-dangerous-direct-browser-access", "true");
requestHeaders.set("user-agent", "claude-cli/2.1.22 (external, cli)");

These appear to be the key identifiers Anthropic uses to validate legitimate Claude CLI requests.

[ErcinDedeoglu]

@remorses please take look. I did reverse engineering on traffic ☝️

[Davincible]

Broken:

Works:

---

Spoof should only be added to the first msg

[YosefHayim]

+1 still not working for me, anyone who did succeed to fix ?