đź‘‹ I’m Wojciech, co-founder of Golf.
Your MCP server can be tricked into serving malicious data. We built the firewall to stop it.
This isn’t about bad input or broken requests. Here’s the attack: Your MCP server fetches data for an agent – a customer record, a support ticket, anything. But that data contains a poisoned prompt. When your server sends it back, it hijacks your customer’s agent. Now you’re the vector.
Antoni and I have been building in the MCP space since February. Over the past 10 months, we’ve worked with startups and Fortune 500s on their MCP strategies and production deployments. Across every implementation, the same pattern emerged: security is the #1 blocker preventing enterprise MCP adoption.
That’s why we built Golf.
See demo here:
About the Author
