---
id: "entity-mav-levin"
type: "entity"
entityType: "person"
canonicalName: "Mav Levin"
source_timestamps: ["00:15:48"]
tags: ["security-researchers"]
related: ["concept-cswsh-vulnerability"]
sources: ["s16-openclaw-saga"]
sourceVaultSlug: "s16-openclaw-saga"
originDay: 16
---
# Mav Levin

## Profile

A security researcher from **Depth First**.

## Role in This Source

Disclosed the high-severity Cross-Site WebSocket Hijacking vulnerability in [[concept-openclaw-d16]] that allowed for **one-click Remote Code Execution** on any user's local machine.

## Contributions to This Vault

- Discoverer of [[concept-cswsh-vulnerability]]
- Triggering event for [[claim-security-is-primary-agent-bottleneck]] and [[action-audit-agent-security]]

## Validation Note

Enrichment review: no external profile for Mav Levin or 'Depth First' was found. Treat as source-internal.