Full-Code · Enterprise Platformsactive

Noma Security

Type: full-code · Vendor: Noma Security · Status: active · Status in practice: emerging

Links: homepage docs

Noma Security continuously compares a running agent's behavior against established baselines and enforces enterprise policy at the point of execution, flagging drift from the agent's purpose and blocking unauthorized actions before they complete.

Description. Noma is a runtime-protection platform that monitors prompts, responses, agent tool calls, MCP interactions, and agent-to-agent communication in real time. It enforces guardrail policies inline by blocking malicious tool calls and unauthorized function executions, and logs every interaction and policy decision.

Agent loop shape. Sits inline at the agent's execution boundary, baselining and monitoring each tool call and output and blocking policy-violating or drifting actions before they complete.

Primary use cases

  • Detecting goal drift in long-running autonomous agents
  • Blocking unauthorized agent tool calls and poisoned MCP servers at runtime
  • Enterprise AI policy enforcement and audit

Key concepts

  • Behavioral baselines trajectory-anomaly-monitorEstablished norms of agent behavior against which live activity is compared.
  • Inline policy enforcement policy-as-code-gateGuardrail policies enforced at the point of execution, blocking violating actions.
  • Goal-misalignment detectionDetection of drift between an agent declared objective and its executed decisions.
  • Runtime action monitoring sandbox-escape-monitoringReal-time inspection of tool calls, MCP interactions, and agent-to-agent communication.

Patterns this full-code implements —

Anti-patterns avoided

References

Provenance

  • Last analyzed:
  • Last updated:
  • Verification status: needs-verification