Opus 4.7, Claude Design, and an MCP flaw affecting 200k servers

Anthropic released Claude Opus 4.7 with a 1 million token context window (up from 200k in 4.5) and a ~30% reduction in time-to-first-token vs 4.5. Pricing: $15/M input, $75/M output — same as 4.5. Extended context is priced at $30/M beyond 200k tokens.

Claude Design is Anthropic's new product for generating production-ready React/Tailwind components from design screenshots, wireframes, or text descriptions. Outputs are editable in a live preview. Currently in closed beta — invite-only via the console.

A critical vulnerability was disclosed in mcp-base-server (versions <2.3.1), the most widely used Node.js base library for building MCP servers. A malicious tool description string could inject arbitrary instructions into the model's context. Patch: npm update mcp-base-server.

A developer livestreamed building a full SaaS product (auth, billing, CRUD, deploy) in 47 minutes using Claude Code with a CLAUDE.md template and a set of pre-built skills. The recording is the most-watched Claude Code video to date.

skills.sh launched a V2 REST API enabling programmatic skill search, install, publish, and version management. CI/CD pipelines can now auto-install skills as part of a build step. Rate limit: 1000 req/day free tier.