Sonoma Security provides a governance and security platform for Model Context Protocol (MCP) infrastructure, targeting enterprises that deploy AI agents. The platform is designed to address security and compliance challenges that arise when AI agents use MCP to interact with enterprise systems and workflows. Core capabilities of the platform include: MCP Enablement: - Self-service MCP catalog for teams to discover and use MCP servers - Visual MCP workflow builder - One-click workflow deployment Governance & Compliance: - Granular entitlement policies for agent interactions - Data flow governance rules - Comprehensive audit logging Security Infrastructure: - MCP supply chain vulnerability scanning - Prompt injection protection - Secure gateway enforcement Sonoma's platform is self-hostable and holds SOC 2 Type II certification, with ISO 27001 certification listed as forthcoming. The product is positioned for enterprise security and compliance teams that need visibility and control over AI agent activity within their environments. The company markets primarily to CISOs and enterprise security teams across industries such as technology and healthcare. Its core value proposition centers on enabling organizations to adopt AI agents at scale while maintaining policy enforcement, data governance, and audit capabilities across all agent-to-system interactions via MCP.