Vanta integration

Monitoring & Observability · 29 actions · Custom auth

Query compliance posture and manage evidence in Vanta. Monitor frameworks, controls, and automated tests; find failing test entities; manage evidence documents including file upload, download, and submission; and track people, policies, vendors, monitored computers, vulnerabilities, and risk scenarios.

Put Vanta to work View Vanta integration docs

Overview

The ModuleX Vanta integration lets a ModuleX agent operate Vanta on your behalf — running list actions across frameworks, framework controls and controls — directly from a plain-English request, using your organization's own Vanta credentials. No pre-built workflow is required: the agent picks the right Vanta action for the task.

Vanta is a monitoring & observability platform. ModuleX adds the agent layer: ask for an outcome and it selects and runs the right Vanta action — or, when you want a repeatable process, the composer assembles a Vanta workflow for you, streaming the nodes onto the canvas as it builds.

Ask the assistant

Drive Vanta in plain English

Type what you want. A ModuleX agent picks the right Vanta action — or chains several — and runs it. No workflow to build.

Show me the frameworks that match what I describe
resolves tolist_frameworks
Get a Vanta compliance framework by ID, including its requirement categories and mapped controls
resolves toget_framework
List the controls that belong to a specific Vanta compliance framework
resolves tolist_framework_controls

Use cases

What you can automate with Vanta

Pull a list of frameworks for a reportlist_frameworks
Look up a control on demandget_control
Upload a document file from a requestupload_document_file

At a glance

Vanta integration at a glance

VendorVanta

CategoryMonitoring & Observability

Actions available29

AuthenticationCustom

Uses your own credentialsYes

Works with the assistantYes

Works in the composerYes

Multi-step / tool-chainingYes

Technical referenceView docs

Integration version1.0.0

Last updatedJun 2026

Reference

All 29 Vanta actions

Frameworks2

list_frameworks

List the compliance frameworks (e.g., SOC 2, ISO 27001) available in a Vanta account with completion counts.

get_framework

Get a Vanta compliance framework by ID, including its requirement categories and mapped controls.

Framework Controls1

list_framework_controls

List the controls that belong to a specific Vanta compliance framework.

Controls2

list_controls

List the security controls in a Vanta account, optionally filtered by framework.

get_control

Get a Vanta security control by ID, including its status and evidence pass/fail counts.

Control Tests1

list_control_tests

List the automated tests mapped to a specific Vanta control.

Control Documents1

list_control_documents

List the evidence documents mapped to a specific Vanta control.

Tests2

list_tests

List the automated compliance tests in a Vanta account, with filters for status, framework, integration, control, owner, and category.

get_test

Get a Vanta automated compliance test by ID, including its status and remediation info.

Test Entities1

list_test_entities

List the failing or deactivated resource entities for a specific Vanta test, useful for finding exactly which resources need remediation.

Documents2

list_documents

List the evidence documents in a Vanta account, optionally filtered by framework or document status.

get_document

Get a Vanta evidence document by ID, including its renewal schedule and deactivation status.

Document Uploads1

list_document_uploads

List the files uploaded to a specific Vanta evidence document.

Document Files2

upload_document_file

Upload an evidence file to a Vanta document. Requires credentials with the vanta-api.documents:upload scope.

download_document_file

Download a file previously uploaded to a Vanta evidence document (returned as base64 content).

Submit Documents1

submit_document

Submit a Vanta document collection for review so uploaded evidence becomes visible to auditors. Requires credentials with write access.

People2

list_people

List the people tracked in a Vanta account with employment status, group membership, and security task completion.

get_person

Get a person tracked in Vanta by ID, including employment, leave, and security task status.

Policies2

list_policies

List the security policies in a Vanta account with approval status and version info.

get_policy

Get a Vanta security policy by ID, including its approval status and latest approved version documents.

Vendors2

list_vendors

List the vendors tracked in a Vanta account with risk levels, contract dates, and security review schedules.

get_vendor

Get a Vanta vendor by ID, including risk levels, contract details, and authentication info.

Monitored Computers1

list_monitored_computers

List the monitored computers in a Vanta account with screenlock, disk encryption, password manager, and antivirus check outcomes.

Vulnerabilities1

list_vulnerabilities

List the vulnerabilities detected across a Vanta account with filters for severity, fixability, SLA deadlines, package, and integration.

Vulnerability Remediations1

list_vulnerability_remediations

List remediated vulnerabilities in a Vanta account with detection, SLA deadline, and remediation dates.

Vulnerable Assets2

list_vulnerable_assets

List the assets associated with vulnerabilities in a Vanta account (servers, repositories, workstations, and more).

get_vulnerable_asset

Get a vulnerable asset in Vanta by ID, including the scanners reporting it and per-scanner asset details.

Risk Scenarios2

list_risk_scenarios

List the risk scenarios in a Vanta risk register with likelihood/impact scores, treatment decisions, and review status.

get_risk_scenario

Get a Vanta risk scenario by ID, including its scores, treatment decision, and review status.

See full parameters and response schemas in the Vanta integration docs

Two ways

Two ways to use Vanta in ModuleX

Ask the assistantType what you want done and a ModuleX agent picks the right Vanta action and runs it — no workflow to build.

Compose a workflowNeed it to happen every time? Describe the process and the composer wires Vanta into a repeatable workflow you can run on a schedule, from chat, or as an API.

Security

Connecting Vanta

CustomVanta uses a custom authentication flow. ModuleX encrypts whatever credentials you supply and scopes them to your organization.

Step-by-step setup in the Vanta docs

Pairs well with Vanta

Agents often chain Vanta with these — connect them once and the agent can use all of them in a single task.

incident.io46 actions

FAQ

Vanta + ModuleX FAQ

A ModuleX agent can run any of Vanta's 29 actions — across frameworks, framework controls, controls and control tests — from a plain-English request, using your organization's own Vanta credentials.

No. The agent selects the right Vanta action from your prompt. A workflow is only needed when you want a repeatable process — and the composer builds that for you from a description.

Through a secure Vanta connection; your credentials are stored encrypted and scoped to your organization.

29, spanning frameworks, framework controls, controls and control tests.

Vanta runs on your own credentials, so any Vanta usage is billed by Vanta directly. ModuleX meters the agent run — and if you connect your own model keys, there's no ModuleX markup on model usage.

Put Vanta to work in ModuleX.

Connect Vanta once with your own credentials and let your agent run all 29 actions on demand.

Put Vanta to work View technical docs

Last updated: Jun 2026Browse all 175 integrations →