Golf
Enterprise MCP Control Plane
Start new thread
Garry Tan

Golf - The enterprise firewall for MCP providers

by
Y Combinator
Golf Firewall is the security layer for companies exposing MCP servers. It protects your MCP server from serving malicious or sensitive data - blocking prompt injections, PII leaks, and credential exposure before they reach customer agents.

Add a comment

Replies

Best
Bartek Pucek

Congrats on the launch! Will certainly try it out in my product.

Antoni Gmitruk
Maker

@barticz Appreciate it, Bartek! Excited for you to try it out, would love to hear how it works with your product once you get a chance to test it.

Wojciech Blaszak
Maker

@barticz thank you! let me know what u think

Paul Sanglé-Ferrière

Congrats on the launch!

Quick question: does Golf work with any MCP server out of the box, or does it require specific integration work to get up and running?

Antoni Gmitruk
Maker

@paul_sangle_ferriere1 Thanks Paul! Yep - Golf works with any MCP server right out of the box. No code changes needed. You just point your MCP traffic through Golf, and we start inspecting and securing all the content automatically.

Wojciech Blaszak
Maker

@paul_sangle_ferriere1 thanks Paul! Cubic is great btw:)

Prastik Gyawali

Congratulations on the launch, team! 🎉
Just curious, how does Golf Firewall work? Is it an SDK that needs to be installed on the server side, or does it act as a proxy for client-server requests and responses?

Also, would it work with custom-built clients too, beyond tools like Cursor or Claude?


Very timely launch, industry is in a dire need of such solutions. Kudos!

Antoni Gmitruk
Maker

@prastik Thanks, Prastik!

Golf sits transparently in front of your MCP server. It’s a lightweight layer that inspects and filters all inbound and outbound traffic. You deploy it as a separate instance (often on-prem, in the same environment as your MCP servers), and it doesn’t require any SDK or code changes. It works seamlessly with any MCP server and any MCP client, even custom-built ones.

Wojciech Blaszak
Maker

@prastik thanks Prastik!

Cruise Chen

MCP usage is totally naked at the moment.... Golf provides a solution for MCP safety. Cant wait to try it out to integrate into our agent flows.

Antoni Gmitruk
Maker

@cruise_chen Thanks! I totally agree - that's exactly why we built Golf Firewall: to bring security and visibility into every MCP session. I'm looking forward to you trying it out and seeing how it fits into your product!

Wojciech Blaszak
Maker

@cruise_chen nice! would love to learn more about your use case

Abdul Rehman

This is how agents go from demo to production.

Antoni Gmitruk
Maker

@abod_rehman Thanks! 🙌

You are 100% right. Currently, MCP usage is wide open, and deployments often stay stuck at the “demo” stage because of safety concerns. Golf adds a real security layer so teams can safely move their MCPs from demo to production, giving their customers access to powerful tooling.

Wojciech Blaszak
Maker

@abod_rehman 100% :)

Aiden Lee

Very cool stuff. And a very real fear. How big of a problem is this so far? i’d be curious to hear the horror stories.

Antoni Gmitruk
Maker

@aiden_lee10 Yeah, we’ve seen a lot. We’ve done quite a few red-teaming exercises on public MCP servers, and the results were honestly terrifying. Case studies coming soon!

Wojciech Blaszak
Maker

@aiden_lee10 will ping u next week with case study

Tomasz Karwatka

Prompt injection is the new SQL injection and most teams don’t even realize they’re already exposed.

Golf is solving a very real pain at the core of MCP adoption: security and trust.

Love the clarity of the problem statement and how deep you’ve gone into the “poisoned prompt” vector.

Congrats Wojtek & Antoni, feels like you’re building the missing firewall of the agentic internet 👏

Antoni Gmitruk
Maker

@tomik99 Couldn’t agree more! Prompt injection really is the new SQL injection. Most teams don’t realize how exposed their MCP servers are until we show them. That’s exactly why we built Golf. Appreciate the kind words!

Wojciech Blaszak
Maker

@tomik99 thanks Tomek!

Nice work @antoni-gmitruk! 🎉 Loved discovering Golf—your enterprise firewall specifically built for MCP servers is a real game changer for companies pushing AI agents to production. The prompt injection and PII leak protection layer is exactly what enterprises need to secure their AI infrastructure. How do you see this evolving over the next 6 months as more companies adopt MCP? Wishing you great momentum!

Antoni Gmitruk
Maker

@kjosephabraham Really appreciate that. We’re already seeing MCP adoption accelerate fast, and with that, security is becoming the main bottleneck to production.

I’m pretty sure we’re going to see public security incidents soon where MCP is the core attack vector. There’s just no way around it if teams push unsecured MCPs to production.

Wojciech Blaszak
Maker

@antoni  @kjosephabraham I do think we will def see more and more official MCP deployments. in enterprise env security cannot be an afterthought

Kamil Kyzo

great work guys! 👏👏

Antoni Gmitruk
Maker

@kyzo Thanks, Kamil! Appreciate the kind words.

Wojciech Blaszak
Maker

@kyzo speak soon:)

Kacper Zambrzycki

Congrats on the launch! Clean, focused, and badly needed in the MCP world.

First
Previous
123
Next
Last