depthfirst
Also known as: DepthFirst, General Security Intelligence
AI security platform that detects, triages, and remediates software vulnerabilities.
depthfirst is an applied AI lab building what it calls General Security Intelligence, a platform of custom AI agents that detect, triage, and remediate software vulnerabilities across code, dependencies, secrets, infrastructure, and runtime. Founded in 2024 by Qasim Mithani, former head of infrastructure security at Databricks, and Andrea Michi, who spent nearly seven years building AI at Google DeepMind, with a founding team drawn from DeepMind, Databricks, and Faire, the San Francisco company has raised 120 million dollars in total. An 80 million dollar Series B led by Meritech in March 2026, at a 580 million dollar valuation, came less than ninety days after its 40 million dollar Series A led by Accel, with angels including Jeff Dean.
The thesis is that winning in the AI era of security requires security specific models rather than general language models bent to the task. depthfirst builds its own models from scratch, trained through reinforcement learning in security environments, and shipped its first, dfs-mini1, for smart contract vulnerabilities, which it says beat frontier models at a fraction of the cost. On top of the models sit agents that work as a continuous loop: a Security Reviewer checks every human and agent code change, a Dependency Firewall blocks malicious packages, and an Agentic Pentester validates findings against the running application with real attack paths so only exploitable risk reaches the queue. Fixes arrive as pull requests developers can merge without leaving their workflow.
The results the company reports are the kind security teams care about: many times more true vulnerabilities than static analysis, roughly eighty five percent fewer false positives, and about eighty percent of its fix suggestions accepted and merged, with one customer citing a seventy percent cut in security engineering load. Since going generally available in late 2025 it has signed customers including Lovable, Supabase, Moveworks, AngelList, ClickUp, and incident.io. For an engineering organization shipping AI generated code faster than it can secure it, depthfirst is a leading agentic option that validates and fixes rather than just flags; teams wanting a traditional scanner or bring your own model approach will find it a purpose built, model owning platform instead.
Vendor details
Canonical URL
https://depthfirst.com
Category
Security / SOC agent
Subcategory
Application security vuln triage and remediation
Funding status
Independent, founded in 2024 by Qasim Mithani, former head of infrastructure security at Databricks, and Andrea Michi, formerly of Google DeepMind, with a team from DeepMind, Databricks, and Faire. Raised 120 million dollars in total, including an 80 million dollar Series B led by Meritech Capital in March 2026 at a 580 million dollar valuation, following a 40 million dollar Series A led by Accel. Angel investors include Jeff Dean and Kirsten Green.
Company status
independent
Use cases & customers
Primary use cases
Target customers
Deployment options
Integrations
Integrates directly into developer workflows, reviewing pull requests and delivering ready to merge fixes, and connects across code, dependencies, secrets, infrastructure, and runtime in one continuous system. The agentic pentester can validate findings against a running application with or without code access.
In practice
Your team ships AI generated code faster than security can review it. depthfirst's Security Reviewer checks every human and agent change in the pull request and proposes ready to merge fixes, so security keeps pace with development.
Scanners bury your team in false positives. depthfirst's Agentic Pentester validates each finding against your running app with real attack paths, so only exploitable risk reaches the queue, cutting noise sharply.
A vibe coded internal app pulls in a malicious dependency. depthfirst's Dependency Firewall blocks malicious packages before they land, letting you use AI coding tools across the company safely.
Sources & related URLs
Research sources
Research notes
Added via Crunchbase discovery batch July6Agentic1to50. Core fields only; enrichment (longDescription, useCaseScenarios, 14-axis VendorFeature, pricing) pending.
Capability coverage
11.0 / 14 capabilities · 79%
| Integrations & Tool CallingIntegrates into developer workflows, reviewing pull requests and delivering ready to merge fixes, and connects across code, dependencies, secrets, infrastructure, and runtime in one system, depthfirst docs 2026-07-06 | Full |
|---|---|
| Workflow OrchestrationRuns a continuous detect, validate, fix, and re test loop with custom agents including a security reviewer, dependency firewall, and agentic pentester working across layers, depthfirst docs 2026-07-06 | Full |
| Knowledge Grounding & RAGBuilds deep context on a company's code, infrastructure, and business logic, reasoning through data flow and exploit chains rather than matching known patterns, depthfirst docs 2026-07-06 | Full |
| Human Oversight & GuardrailsDelivers fixes as pull requests developers review, apply, and merge, keeping humans in the loop, with roughly eighty percent of fix recommendations accepted, depthfirst docs 2026-07-06 | Full |
| Security, Identity & GovernanceA security native lab serving Fortune 500 customers whose agentic pentester can work with or without code access; formal certifications are not explicitly documented, depthfirst docs 2026-07-06 | Full |
| Observability & AuditabilityProvides validated findings with exploitability confirmation and severity triage, showing which vulnerabilities are real and how, for an auditable picture of risk, depthfirst docs 2026-07-06 | Full |
| Memory & State PersistenceGets smarter over time by tracking context across scans, retaining understanding of a customer's systems between runs, depthfirst docs 2026-07-06 | Full |
| Deployment & Data ResidencyIntegrates with code and runtime and the agentic pentester can work with or without code access, but specific self host or residency options are not documented, depthfirst docs 2026-07-06 | Partial |
| Prebuilt Agents, Templates & PacksShips prebuilt security agents, a dependency firewall, a security and PR reviewer, and an agentic pentester, plus a purpose built security model, out of the box, depthfirst docs 2026-07-06 | Full |
| Triggers & Channel CoverageRuns continuously, checking every human and agent code change and dependency before it lands and monitoring for malicious behavior around the clock, depthfirst docs 2026-07-06 | Full |
| Model Flexibility & RoutingRuns its own purpose built security models trained via reinforcement learning such as dfs-mini1; customer facing model choice or routing is not offered, depthfirst docs 2026-07-06 | Unable to verify |
| APIs, SDKs & MCP ExtensibilityIntegrates into developer pipelines and pull request workflows; a public general developer SDK or MCP surface is not documented, depthfirst docs 2026-07-06 | Partial |
| Testing, Debugging & OptimizationVerification is central: the agentic pentester validates findings against the running application with real attack paths so only exploitable risk surfaces, and fixes are re tested in a closed loop, depthfirst docs 2026-07-06 | Full |
| Browser & Computer UseNo general browser or computer use; the agentic pentester exercises running applications through attack paths rather than operating a browser UI, depthfirst docs 2026-07-06 | Unable to verify |
Pricing
Not public; enterprise sales, scoped to codebase size, developer count, and modules
codebase size, developers, and modules
What is public
No public rate. depthfirst publishes no list pricing; commercial terms are set through sales.
Billing mechanics
Enterprise subscriptions typically scoped to codebase size, developer count, and the modules deployed, from the security reviewer and dependency firewall to the agentic pentester. Evaluated via demo before purchase.
Cost watchouts
Confirm whether the dependency firewall, security reviewer, and agentic pentester are bundled or priced separately, and how pricing scales with codebase size and scan frequency.
Variable cost rationale
Enterprise pricing likely scoped to codebase size, developer count, and enabled modules; predictable once sized, though scanning volume and added modules can raise it.
Additional watchouts
With no public rate, benchmark against your current AppSec tooling and security headcount, and confirm which of the reviewer, firewall, and pentester modules the base contract includes.
Sales call required
Yes — required for paid access
Free / trial
Demo available on request; no public self serve tier
Key ambiguities
No entry rate or per developer figure is published; all pricing is quoted under sales.
Related vendors
- 7AI — Swarming agentic SOC from the Cybereason founders: sixty plus domain…
- Airrived — Agentic OS that unifies SOC, GRC, IAM, vulnerability management, IT,…
- CrowdStrike — Cybersecurity platform whose Charlotte AI delivers agentic…
- Dropzone AI — Production proven AI SOC analyst that investigates every alert in…
- Exaforce — AI SOC platform unifying Exabots agents with an integrated knowledge…
- Kai — Agentic AI cybersecurity platform that unifies threat intelligence,…