Back to vendors
d

depthfirst

Also known as: DepthFirst, General Security Intelligence

Visit site
Security / SOC agentindependentVerified 2026-07-06

AI security platform that detects, triages, and remediates software vulnerabilities.

depthfirst is an applied AI lab building what it calls General Security Intelligence, a platform of custom AI agents that detect, triage, and remediate software vulnerabilities across code, dependencies, secrets, infrastructure, and runtime. Founded in 2024 by Qasim Mithani, former head of infrastructure security at Databricks, and Andrea Michi, who spent nearly seven years building AI at Google DeepMind, with a founding team drawn from DeepMind, Databricks, and Faire, the San Francisco company has raised 120 million dollars in total. An 80 million dollar Series B led by Meritech in March 2026, at a 580 million dollar valuation, came less than ninety days after its 40 million dollar Series A led by Accel, with angels including Jeff Dean.

The thesis is that winning in the AI era of security requires security specific models rather than general language models bent to the task. depthfirst builds its own models from scratch, trained through reinforcement learning in security environments, and shipped its first, dfs-mini1, for smart contract vulnerabilities, which it says beat frontier models at a fraction of the cost. On top of the models sit agents that work as a continuous loop: a Security Reviewer checks every human and agent code change, a Dependency Firewall blocks malicious packages, and an Agentic Pentester validates findings against the running application with real attack paths so only exploitable risk reaches the queue. Fixes arrive as pull requests developers can merge without leaving their workflow.

The results the company reports are the kind security teams care about: many times more true vulnerabilities than static analysis, roughly eighty five percent fewer false positives, and about eighty percent of its fix suggestions accepted and merged, with one customer citing a seventy percent cut in security engineering load. Since going generally available in late 2025 it has signed customers including Lovable, Supabase, Moveworks, AngelList, ClickUp, and incident.io. For an engineering organization shipping AI generated code faster than it can secure it, depthfirst is a leading agentic option that validates and fixes rather than just flags; teams wanting a traditional scanner or bring your own model approach will find it a purpose built, model owning platform instead.

Vendor details

Canonical URL

https://depthfirst.com

Category

Security / SOC agent

Subcategory

Application security vuln triage and remediation

Funding status

Independent, founded in 2024 by Qasim Mithani, former head of infrastructure security at Databricks, and Andrea Michi, formerly of Google DeepMind, with a team from DeepMind, Databricks, and Faire. Raised 120 million dollars in total, including an 80 million dollar Series B led by Meritech Capital in March 2026 at a 580 million dollar valuation, following a 40 million dollar Series A led by Accel. Angel investors include Jeff Dean and Kirsten Green.

Company status

independent

Use cases & customers

Primary use cases

vulnerability detection and validationAI and human code review in pull requestsdependency and supply chain protectionagentic penetration testing

Target customers

enterpriseengineering teams

Deployment options

SaaS

Integrations

Integrates directly into developer workflows, reviewing pull requests and delivering ready to merge fixes, and connects across code, dependencies, secrets, infrastructure, and runtime in one continuous system. The agentic pentester can validate findings against a running application with or without code access.

In practice

Your team ships AI generated code faster than security can review it. depthfirst's Security Reviewer checks every human and agent change in the pull request and proposes ready to merge fixes, so security keeps pace with development.

Scanners bury your team in false positives. depthfirst's Agentic Pentester validates each finding against your running app with real attack paths, so only exploitable risk reaches the queue, cutting noise sharply.

A vibe coded internal app pulls in a malicious dependency. depthfirst's Dependency Firewall blocks malicious packages before they land, letting you use AI coding tools across the company safely.

Sources & related URLs

Research notes

Added via Crunchbase discovery batch July6Agentic1to50. Core fields only; enrichment (longDescription, useCaseScenarios, 14-axis VendorFeature, pricing) pending.

Capability coverage

11.0 / 14 capabilities · 79%

Integrations & Tool CallingIntegrates into developer workflows, reviewing pull requests and delivering ready to merge fixes, and connects across code, dependencies, secrets, infrastructure, and runtime in one system, depthfirst docs 2026-07-06 Full
Workflow OrchestrationRuns a continuous detect, validate, fix, and re test loop with custom agents including a security reviewer, dependency firewall, and agentic pentester working across layers, depthfirst docs 2026-07-06 Full
Knowledge Grounding & RAGBuilds deep context on a company's code, infrastructure, and business logic, reasoning through data flow and exploit chains rather than matching known patterns, depthfirst docs 2026-07-06 Full
Human Oversight & GuardrailsDelivers fixes as pull requests developers review, apply, and merge, keeping humans in the loop, with roughly eighty percent of fix recommendations accepted, depthfirst docs 2026-07-06 Full
Security, Identity & GovernanceA security native lab serving Fortune 500 customers whose agentic pentester can work with or without code access; formal certifications are not explicitly documented, depthfirst docs 2026-07-06 Full
Observability & AuditabilityProvides validated findings with exploitability confirmation and severity triage, showing which vulnerabilities are real and how, for an auditable picture of risk, depthfirst docs 2026-07-06 Full
Memory & State PersistenceGets smarter over time by tracking context across scans, retaining understanding of a customer's systems between runs, depthfirst docs 2026-07-06 Full
Deployment & Data ResidencyIntegrates with code and runtime and the agentic pentester can work with or without code access, but specific self host or residency options are not documented, depthfirst docs 2026-07-06 Partial
Prebuilt Agents, Templates & PacksShips prebuilt security agents, a dependency firewall, a security and PR reviewer, and an agentic pentester, plus a purpose built security model, out of the box, depthfirst docs 2026-07-06 Full
Triggers & Channel CoverageRuns continuously, checking every human and agent code change and dependency before it lands and monitoring for malicious behavior around the clock, depthfirst docs 2026-07-06 Full
Model Flexibility & RoutingRuns its own purpose built security models trained via reinforcement learning such as dfs-mini1; customer facing model choice or routing is not offered, depthfirst docs 2026-07-06 Unable to verify
APIs, SDKs & MCP ExtensibilityIntegrates into developer pipelines and pull request workflows; a public general developer SDK or MCP surface is not documented, depthfirst docs 2026-07-06 Partial
Testing, Debugging & OptimizationVerification is central: the agentic pentester validates findings against the running application with real attack paths so only exploitable risk surfaces, and fixes are re tested in a closed loop, depthfirst docs 2026-07-06 Full
Browser & Computer UseNo general browser or computer use; the agentic pentester exercises running applications through attack paths rather than operating a browser UI, depthfirst docs 2026-07-06 Unable to verify

Recent platform changes

No recent material changes tracked yet.

Pricing

Not public; enterprise sales, scoped to codebase size, developer count, and modules

codebase size, developers, and modules

Contact onlyMedium variable costTrial available

What is public

No public rate. depthfirst publishes no list pricing; commercial terms are set through sales.

Billing mechanics

Enterprise subscriptions typically scoped to codebase size, developer count, and the modules deployed, from the security reviewer and dependency firewall to the agentic pentester. Evaluated via demo before purchase.

Cost watchouts

Confirm whether the dependency firewall, security reviewer, and agentic pentester are bundled or priced separately, and how pricing scales with codebase size and scan frequency.

Variable cost rationale

Enterprise pricing likely scoped to codebase size, developer count, and enabled modules; predictable once sized, though scanning volume and added modules can raise it.

Additional watchouts

With no public rate, benchmark against your current AppSec tooling and security headcount, and confirm which of the reviewer, firewall, and pentester modules the base contract includes.

Sales call required

Yes — required for paid access

Free / trial

Demo available on request; no public self serve tier

Key ambiguities

No entry rate or per developer figure is published; all pricing is quoted under sales.

Verified 2026-07-06

Contact us

Found a vendor we missed? Have feedback on the index? We'd love to hear from you.