Vanta website screenshot

Vanta

Vanta is a trust management platform that automates security compliance for frameworks including SOC 2, ISO 27001, HIPAA, PCI DSS, and GDPR. The Vanta API enables organizations to programmatically manage their compliance posture, automate security monitoring, manage vulnerabilities, track controls, manage vendors, and integrate with existing tools and workflows.

2 APIs 0 Features
CybersecurityComplianceSecurityGovernanceRisk Management

APIs

Vanta API

The Vanta REST API enables programmatic access to compliance, security monitoring, vulnerability management, personnel management, vendor management, and custom integration capa...

Vanta Auditor API

The Vanta Auditor API provides external audit firms programmatic access to customer compliance data. Auditors can query audits, vendors, monitored computers, people, vulnerabili...

Collections

Vanta API

OPEN

Pricing Plans

Vanta Plans Pricing

3 plans

PLANS

Rate Limits

Vanta Rate Limits

5 limits

RATE LIMITS

FinOps

Vanta Finops

FINOPS

Semantic Vocabularies

Vanta Context

15 classes · 27 properties

JSON-LD

API Governance Rules

Vanta API Rules

10 rules · 3 errors 7 warnings

SPECTRAL

JSON Structure

Vanta Vendor Structure

0 properties

JSON STRUCTURE

Vanta Vulnerability Structure

0 properties

JSON STRUCTURE

Example Payloads

Vanta Create Vendor Example

2 fields

EXAMPLE

Vanta List Computers Example

2 fields

EXAMPLE

Vanta List Controls Example

2 fields

EXAMPLE

Resources

🔗
LinkedIn
LinkedIn
🌐
Portal
Portal
🔑
Authentication
Authentication
🚀
GettingStarted
GettingStarted
🔗
PostmanCollection
PostmanCollection
💬
FAQ
FAQ
🔗
Documentation
Documentation
🔗
Documentation
Documentation
📰
Blog
Blog
🔗
Product
Product
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
📦
SDKs
SDKs
🔗
Schema
Schema
📄
ChangeLog
ChangeLog
🔗
OpenAPI
OpenAPI
🔗
OpenAPI
OpenAPI
🔗
LlmsText
LlmsText

Sources

Raw ↑
opencollection: 1.0.0
info:
  name: Vanta API
  version: v1
request:
  auth:
    type: oauth2
    flow: client_credentials
    accessTokenUrl: https://api.vanta.com/oauth/token
    credentials:
      clientId: '{{clientId}}'
      clientSecret: '{{clientSecret}}'
items:
- info:
    name: Authentication
    type: folder
  items:
  - info:
      name: Get Access Token
      type: http
    http:
      method: POST
      url: https://api.vanta.com/oauth/token
      body:
        type: form-urlencoded
        data:
        - name: grant_type
          value: ''
        - name: client_id
          value: ''
        - name: client_secret
          value: ''
        - name: scope
          value: ''
    docs: Obtain an OAuth 2.0 access token using client credentials. Use the returned access_token as a Bearer token in subsequent
      API requests.
- info:
    name: Users
    type: folder
  items:
  - info:
      name: List Active Users
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/users
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: Retrieve a paginated list of all active users in the organization.
  - info:
      name: List People
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/people
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: Retrieve a paginated list of people in the organization including employment status, security task completion, and
      training status.
- info:
    name: Vulnerabilities
    type: folder
  items:
  - info:
      name: Get Vulnerabilities
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/vulnerabilities
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
      - name: severity
        value: ''
        type: query
        description: Filter by vulnerability severity
      - name: status
        value: ''
        type: query
        description: Filter by remediation status
    docs: List all vulnerabilities based on selected filters including severity and remediation status.
  - info:
      name: List API Endpoint Vulnerabilities
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/resources/api_endpoint_vulnerability_connectors
      params:
      - name: resourceId
        value: ''
        type: query
        description: Vanta generated identifier for the given resource
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: List ApiEndpointVulnerabilityConnectors resources for the given application.
  - info:
      name: Sync API Endpoint Vulnerabilities
      type: http
    http:
      method: PUT
      url: https://api.vanta.com/v1/resources/api_endpoint_vulnerability_connectors
      body:
        type: json
        data: '{}'
    docs: Sync all ApiEndpointVulnerabilityConnectors resources for the given application.
  - info:
      name: List Package Vulnerabilities
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/resources/package_vulnerability_connectors
      params:
      - name: resourceId
        value: ''
        type: query
        description: Vanta generated identifier for the given resource
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: List PackageVulnerabilityConnectors resources for the given application.
  - info:
      name: List Vulnerable Components
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/resources/vulnerable_component
      params:
      - name: resourceId
        value: ''
        type: query
        description: Vanta generated identifier for the given resource
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: List VulnerableComponent resources for the given application.
- info:
    name: Controls
    type: folder
  items:
  - info:
      name: List Controls
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/controls
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
      - name: frameworkId
        value: ''
        type: query
        description: Filter controls by framework identifier
      - name: status
        value: ''
        type: query
        description: Filter by control status
    docs: Query information about compliance controls including control language and statuses.
  - info:
      name: List Frameworks
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/frameworks
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: Query all compliance frameworks configured in the organization.
- info:
    name: Tests
    type: folder
  items:
  - info:
      name: List Tests
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/tests
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
      - name: status
        value: ''
        type: query
        description: Filter tests by status
      - name: frameworkId
        value: ''
        type: query
        description: Filter tests by framework
    docs: Query and filter test results for compliance frameworks.
- info:
    name: Documents
    type: folder
  items:
  - info:
      name: List Documents
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/documents
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: Retrieve compliance evidence documents uploaded to Vanta.
  - info:
      name: Upload Document
      type: http
    http:
      method: POST
      url: https://api.vanta.com/v1/documents
      body:
        type: multipart-form
        data:
        - name: file
          type: text
          value: ''
        - name: name
          type: text
          value: ''
        - name: description
          type: text
          value: ''
    docs: Upload a compliance evidence document to Vanta.
- info:
    name: Vendors
    type: folder
  items:
  - info:
      name: List Vendors
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/vendors
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
      - name: riskLevel
        value: ''
        type: query
        description: Filter vendors by risk level
    docs: Query and manage vendors and their security review information.
  - info:
      name: Create Vendor
      type: http
    http:
      method: POST
      url: https://api.vanta.com/v1/vendors
      body:
        type: json
        data: '{}'
    docs: Create a new vendor in Vanta for security review tracking.
  - info:
      name: Get Vendor
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/vendors/:vendorId
      params:
      - name: vendorId
        value: ''
        type: path
        description: Unique identifier for the vendor
    docs: Retrieve a specific vendor and its security review details.
  - info:
      name: Update Vendor
      type: http
    http:
      method: PATCH
      url: https://api.vanta.com/v1/vendors/:vendorId
      params:
      - name: vendorId
        value: ''
        type: path
        description: Unique identifier for the vendor
      body:
        type: json
        data: '{}'
    docs: Update vendor information and security review details.
- info:
    name: Resources
    type: folder
  items:
  - info:
      name: List Resources
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/resources
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
      - name: resourceType
        value: ''
        type: query
        description: Filter by resource type (e.g., Computer, Repository, CloudResource)
    docs: List all monitored resources in scope for compliance.
  - info:
      name: List Monitored Computers
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/computers
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
      - name: complianceStatus
        value: ''
        type: query
        description: Filter computers by compliance status
    docs: List all monitored computers with compliance status including screenlock, encryption, antivirus, and password management
      status.
- info:
    name: Integrations
    type: folder
  items:
  - info:
      name: List Integrations
      type: http
    http:
      method: GET
      url: https://api.vanta.com/v1/integrations
      params:
      - name: pageSize
        value: ''
        type: query
        description: Number of items to return per page (1-100)
      - name: pageCursor
        value: ''
        type: query
        description: Cursor for pagination — start from the item following this cursor
    docs: List all configured integrations and their connection status.
  - info:
      name: Create Custom Resource
      type: http
    http:
      method: POST
      url: https://api.vanta.com/v1/resources/custom
      body:
        type: json
        data: '{}'
    docs: Push custom resource data from non-integrated systems using custom resource schemas to extend Vanta's compliance
      monitoring.
bundled: true