depthfirst labs

Applied AI and security research building a safer software future.

Backed by contributors from:

Mav Levin

October 20, 2025

Anatomy of an Automated Patch: Fixing a File Upload RCE CVE-2025-59304

The best security alerts are the ones that come with a fix. Our platform recently discovered and automatically generated a patch for a critical RCE in Swetrix Web Analytics.

Mav Levin

October 20, 2025

Casting a Net(ty) for Bugs, and Catching a Big One (CVE-2025-59419)

Our agents discovered the vulnerability, provided a risk assessment, and generated a patch autonomously. I shared the results with the Netty maintainers who assigned CVE-2025-59419 and merged our fix.

Start finding critical vulnerabilities in minutes

Link your Github repo in three clicks.

Demo depthfirst now