Meet Willow (Formerly Webrix): One Governance Layer for Every AI Agent

The story: from Webrix to Willow

A year ago, we launched Webrix to fix a problem most enterprises hadn't named yet. AI agents were starting to reach into production systems. No governance. No audit trail. No clean way to revoke.

We bet that this would matter. The first conversations were hard.

A year later, the conversation changed. Anthropic shipped Managed Agents. Every major provider is racing to bolt security onto its own platform. The market caught up to the thesis. Enterprise demand scaled faster than we expected.

But the problem outgrew the name. Webrix described where we started, as an MCP gateway. Willow describes what we became. The governance layer for every AI agent in production, regardless of who built it or where it runs.

The pain point: nobody runs just one agent platform

Here's the part the providers can't fix for you.

Enterprises don't run one agent platform. You have Claude. You have GPT. You have Cursor, Codex, Gemini, n8n, open-source models, internal tools, and a growing list of agents your developers installed last week without telling anyone.

All of them reaching into the same systems. All of them governed separately, or not at all.

Security teams won't approve agents that need access to internal data. Employees won't wait three weeks for an IT ticket. Leadership has zero visibility into how AI is being used, by whom, or whether it's delivering value. Shadow AI is already in the org. The question is whether anyone can see it.

This isn't a security problem. It's an architecture problem. Your team doesn't need ten dashboards from ten providers. It needs one governance layer underneath all of them.

What Willow does

Willow is the control plane for every AI agent in your enterprise. One gateway. Any agent. Every tool.

Built for the org that has already made the call. Ship AI broadly. Govern it centrally. Stop choosing between speed and control.

Discover. Find every agent, MCP, and AI tool already deployed across your org, including the ones IT never approved. Browser extension enforces governed usage wherever employees work.

Govern. Context-aware permissions generated at runtime. Tools scoped to the task, not granted to the org. Policy enforced at the point of tool generation, not after the fact.

Audit. Every call, every tool, every prompt, every user. One trail your CISO can actually read. Integrated with Splunk, Loki, and the rest of your security stack.

Revoke. One click. Across every agent that touches the system you just locked down. No more "we'll have to check with the platform team."

Same enterprise plumbing your team already requires. SSO with Okta and Azure AD. RBAC. SCIM. SOC 2. Deploy on SaaS, dedicated cloud, self-host on AWS, GCP, Azure, on-prem, or fully air-gapped.

Why Willow is different

The MCP gateway category is filling up fast. Here's what sets Willow apart.

Built for enterprises, not just platform teams. Many competitors are open-source projects wearing enterprise badges. Willow is a managed enterprise platform from day one. CISO sign-off, audit trail, deployment flexibility, handled.

Sees what's actually deployed, not just what you routed. Most gateways secure the agents you already know about. Willow finds the rest. Shadow AI detection is native, not an add-on.

Policy at runtime, not detection after the fact. Other tools try to catch problems with guardrails after the agent acts. Willow generates the right tools for the task in the first place. Guardrails that hope to catch mistakes vs. tools that can't make them.

Governance the way platform teams already work. Infrastructure-as-code via GitHub. PRs, reviews, approvals. Not YAML configs and UI clicks.

Built for the whole org, not just the dev team. Employee self-service through the Connect Panel. One-click connections of approved agents. IT goes from bottleneck to enabler.

Connect anything. Pre-built connectors plus the ability to wrap any internal API as an MCP. Reach without ceiling.

A note from our Founders

When we started, the question was whether enterprises would govern AI agents at all. That's settled. The real question now is whether they'll govern them one provider at a time, or once, across all of them.

We're building for the second one.

To everyone else reading this: if any of it hit a nerve, hit reply or book time with our team.

Eyal Ben Ezra (CEO & Co-Founder), Shalev Shalit (CTO & Co-Founder), Idan Chetrit (VP Platfrom & Co-Founder)