// TAG

Thought Leadership

12 posts

Anthropic's MCP Playbook Is for Builders. Defenders Need the Next Layer.

Anthropic published the production playbook for MCP: 300M SDK downloads, thin tools over 2,500 endpoints, OAuth vaults. The playbook stops at the tool call. Argument-level policy is what comes next.

thought-leadership mcp security

MCP Governance Is Table Stakes. What Comes Next?

Cloudflare's enterprise MCP launch solves discovery, access, and shadow-MCP prevention. That's the baseline. The harder question — what agents are allowed to do once they're inside — needs a different primitive.

thought-leadership mcp security

Microsoft's Agent Governance Toolkit: What It Gets Right and What It Misses

Microsoft open-sourced a nine-package agent governance toolkit. It validates the space — but it doesn't address MCP. Here's what that means for teams running MCP agents in production.

thought-leadership mcp security

What Is MCP Policy Enforcement (And Why Every Agent Needs It)

MCP policy enforcement intercepts every AI agent tool call and evaluates it against deterministic rules before execution. Here's how it works and how to set it up.

mcp security thought-leadership

Why Prompt Guardrails Fail for AI Agent Safety (And What Works Instead)

System prompts can't enforce spending limits or prevent destructive operations. Here's why prompt guardrails fail for tool-calling AI agents and what works instead.

security mcp thought-leadership

Bain Says Every Agentic Platform Needs a Policy Layer. We Built One.

Bain & Company's agentic AI architecture framework calls for centralised policy enforcement across MCP tool calls. Intercept is the open-source implementation.

mcp thought-leadership enterprise

The Agent Control Problem Only Becomes Big in One World

Most teams will wrap their own dangerous tools. The real market for agent control only gets large if agents become dynamic consumers of external services the team did not fully pre-wrap.

mcp strategy thought-leadership

30 MCP CVEs in 60 Days. Most Fixes Are Solving the Wrong Problem.

Security researchers filed 30+ CVEs against MCP servers in early 2026. Patching individual servers doesn't fix the structural gap. The real fix is a policy layer that works across all of them.

security mcp thought-leadership

The Academic Case for Deterministic AI Agent Enforcement

A new research paper argues that LLMs cannot self-enforce security constraints. Intercept implements every recommendation — as open-source software you can deploy today.

security thought-leadership mcp

Why AI Agent Policies Must Be Deterministic, Not Probabilistic

LLMs can't reliably self-enforce safety rules. Deterministic policy enforcement outside the model catches what prompts miss — here's the architecture.

thought-leadership security policy-enforcement

What Happens When Your AI Agent Goes Rogue

What happens when your AI agent goes rogue? Six failure modes — runaway loops, spending spirals, destructive ops — and the deterministic policies that stop them.

security mcp failure-modes

MCP Security: Why Prompt Guardrails Aren't Enough

Prompt guardrails for MCP agents are bypassable and unauditable. Why deterministic policy enforcement at the transport layer is the real security primitive.

security mcp thought-leadership
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.