What happened
On June 24, 2026, Noma Security and Kong announced an integration that embeds Noma's runtime AI security directly into Kong's API gateway — providing continuous protection over agent behavior, tool use, and MCP activity at the network layer without requiring application-level changes. Kong controls the AI traffic path; Noma enforces policy on what flows over it.
Why it matters
Delivers Security-of-AI enforcement at the API gateway layer — where all agentic traffic already flows — giving organizations runtime visibility and policy control without instrumentation of individual agents or models.
Applicability
Enterprises already using Kong for AI API management should evaluate the Noma integration as an immediate security-of-AI layer; security architects designing agentic infrastructure should consider gateway-level enforcement as a control tier.