~ / directory / runlayer
RU
Mixed · MCP Security · reviewed 2026-04

Runlayer

Enterprise MCP security platform — gateway, threat detection, observability, and fine-grained permissions for 18,000+ MCP servers. $11M seed from Khosla/Felicis. MCP creator David Soria Parra is advisor.

Visit www.runlayer.com
01

What it does

Enterprise MCP security platform founded by the team behind Zapier's MCP and AI Agents (CEO Andrew Berman, ex-Zapier Director of AI). Provides a centralised secure registry for hosting and approving MCP servers, one-click deployment to any AI client (Cursor, Claude Code, ChatGPT, VS Code, Copilot), fine-grained access controls integrated with Okta and Entra, custom threat detection analysing every MCP request, and full observability across all agentic activity. David Soria Parra, the lead creator of MCP at Anthropic, is an angel investor and advisor. $11M seed from Khosla Ventures (Keith Rabois) and Felicis. Customers include Gusto, dbt Labs, Instacart, Opendoor, and Rippling — eight unicorns or public companies in four months.

02

Security relevance

Addresses the core MCP security gap: the protocol launched without built-in auth, audit trails, or governance. Runlayer matches agent permissions to human user permissions — if a worker has read-only access to finance systems, the agent inherits the same constraint. Multi-tier security detectors catch policy, compliance, and data-leak risks before they reach tools. Each MCP server release is automatically scanned for vulnerabilities, data leaks, and permission drift before approval.

03

When to use it

Use when deploying MCP across an organisation beyond individual developer use. The governance gap hits when IT needs to answer: which MCP servers are employees connecting to, what data are agents accessing, and who approved it? Self-hosted behind your VPC or cloud deployment. Head of Security at Cursor (Travis McPeak) is an advisor.

04

OWASP coverage

Risks addressed — mapped to both OWASP Top 10 standards. 1 in LLM, 5 in Agentic.

LLM Top 10 · 2025 · 1/10 covered
01
02
03
04
05
06
07
08
09
10
LLM06 · Excessive Agency
Agentic Top 10 · 2026 · 5/10 covered
01
02
03
04
05
06
07
08
09
10
ASI01 · Agent Goal Hijack ASI02 · Tool Misuse & Exploitation ASI04 · Agentic Supply Chain Vulnerabilities ASI06 · Memory & Context Poisoning ASI08 · Cascading Failures
05

The raw record

What Yuntona stores. Single source of truth — fork it on GitHub.

name: Runlayer
slug: runlayer
type: Mixed
category: MCP Security
url: https://www.runlayer.com

reviewed:   2026-04
added:      2026-04
updated:    2026-04

risks:
  llm:  [LLM06]
  asi:  [ASI01, ASI02, ASI04, ASI06, ASI08]

complexity:    Plug & Play
pricing:       —
audience:      CISO
lifecycle:     [deploy]

tags: [Commercial, Gateway, MCP Security, Observability, Threat Detection]