You have AI agents in your stack. Notion, Slack, GitHub, Linear — every platform made spinning one up easier than filing an IT ticket last quarter. Nobody asked whether IT knew about it. By now, asking "how many agents are running in your org?" produces the same uncomfortable silence as "who approved this AWS bill?"

That silence just became a market opportunity. Within 72 hours, two of the biggest infrastructure vendors independently shipped the same product: an agent registry.

Two Registries, One Week, Zero Coincidences

On April 9, AWS previewed its Agent Registry — a cloud-agnostic catalog where agents start as "draft" and must pass approval gates before reaching production. Southwest Airlines VP of AI Justin Bundick called it a way to "prevent agent sprawl across the organization." When an airline known for operational efficiency is worried about sprawl, the problem has escaped the lab.

On April 11, Microsoft pushed Entra Agent ID into preview — extending the same identity governance humans get to autonomous programs. Login policies, conditional access, audit logs. Your code-writing bot gets an employee badge now.

Both are in preview. Neither talks to the other. But the fact that both shipped in the same week tells you everything about what enterprises have been privately screaming about behind closed doors.

You've Watched This Movie Three Times

The 2000s: departments bought their own servers and hid them under desks. IT found out when the power bill spiked. The fix was virtualization and centralized provisioning.

The 2010s: teams signed up for Dropbox, Slack, and Salesforce add-ons on corporate cards without telling procurement. Shadow SaaS became a category unto itself. Okta, OneLogin, and a wave of identity management vendors built billion-dollar businesses on one simple premise: someone has to be the front door.

The 2020s: agents. Same pattern, worse consequences. A rogue SaaS subscription sits idle until a human logs in. A rogue agent keeps running. It inherits credentials, calls APIs, touches databases, and operates at machine speed with nobody watching. Simon Willison called it the "lethal trifecta" — access to private data, exposure to untrusted content, and the ability to communicate externally. Most enterprise agents check all three boxes without breaking a sweat.

Gravitee's February 2026 survey of 919 organizations put a number on the damage: 88% already reported confirmed or suspected agent-related security incidents. Only 14.4% of agents went live with actual IT approval. The rest materialized like mushrooms after rain — quietly, everywhere, and nobody planted them on purpose.

The Part Neither Vendor Will Say Out Loud

AWS Agent Registry catalogs agents built on AWS. Entra Agent ID governs agents in Microsoft's identity perimeter. Your Notion agents, your Linear automations, your Anthropic Managed Agents running at $0.08 per session-hour — none of those show up in either registry.

This is the gap. The vendor that ships a real cross-platform agent registry — one catalog that inventories agents across every tool, every cloud, every SaaS product — will own the governance layer the way Okta owned identity management a decade ago. That's not a feature request. That's a company waiting to be built.

And nobody in the current agent gold rush is incentivized to build it. GitHub just expanded Copilot's cloud agent with autonomous research and code generation. Linear reports that 25% of new issues now come from agents, not humans. Anthropic made deploying persistent agents as simple as a single API call. Every platform wants more agents, faster. Governance is somebody else's problem — until it isn't.

The Count Has Started

AWS and Microsoft just admitted, in the most corporate way possible, that the industry has an inventory problem. Two registry previews in one week is not a coincidence. It's a signal.

The organizations that count their agent fleet this quarter will scale it next quarter with confidence. The rest will discover the count during their first incident response — which, if the numbers hold, most of you have already had. The 2020s version of shadow IT doesn't wait for you to log in. It's already running.