Back to Plugins

Vanta

The Vanta plugin connects Claude Code to Vanta's security and compliance platform through the Vanta MCP server. It combines Vanta's test-specific remediation intelligence with your local repository context to help you fix compliance failures faster.

securityai
By Vanta
53Updated 1 month agoMIT

Installation

/plugin install vanta@claude-plugins-official

How to install

  1. Open Claude Code in your terminal
  2. Run the installation command above
  3. The plugin will be enabled automatically
  4. Use the plugin's features in your Claude Code sessions

README

View on GitHub

Vanta Plugin for Claude Code

This repository provides an official Claude Code plugin that connects Claude to the Vanta MCP Server, giving you access to Vanta's security and compliance tools directly inside your Claude Code sessions.

[!NOTE]
Vanta’s remote MCP server is currently in beta and released to all customers. Before connecting, confirm the following:

Vanta role: You must be a Vanta Admin. The MCP server is not currently accessible to non-Admin users. Access for non-admin users is coming soon.

Features

Vanta MCP Server

Claude Code automatically connects to Vanta's hosted MCP server for your region:

# US
https://mcp.vanta.com/mcp

# EU
https://mcp.eu.vanta.com/mcp

# Aus
https://mcp.aus.vanta.com/mcp

This gives Claude tools to:

  • Remediate failing tests — list failing compliance tests, inspect which entities are out of scope, and get the context needed to fix them
  • Manage controls — browse controls and their framework mappings, list associated tests, and access linked evidence documents
  • Assess vendor risk — review vendors, run security assessments, manage risk attributes, and track compliance documentation
  • Track vulnerabilities — surface vulnerable assets, and monitor remediation progress
  • Govern policies — list, download, and upload policy documents across your compliance program
  • Analyze compliance gaps — enumerate framework requirements and identify coverage gaps across SOC 2, ISO 27001, and more

Slash Commands

CommandDescription
/vanta:fix-test <test-id or URL>Fix a failing test by generating IaC changes and opening a PR
/vanta:list-testsShow failing tests prioritized by what you can fix from this repo

Installation (Claude Code)

1. Update the official marketplace

/plugin marketplace update anthropics/claude-plugins-official

This ensures you have the latest plugin listings from the official Claude Code marketplace.

2. Install the plugin

/plugin install vanta-mcp-plugin@claude-plugins-official

3. Reload plugins

/reload-plugins

This loads the plugin and starts the MCP server without restarting Claude Code.

4. Authenticate

In Claude Code, run /mcp and select vanta-* for your region. A browser window will open in your Vanta app — click Allow to complete OAuth authorization.

Manual Setup

For detailed setup instructions across Claude Code, Cursor, and Perplexity, see the Connecting to Vanta MCP guide.

Authentication

All integrations use OAuth against the MCP server. No API keys or tokens to manage.

Resources

License

This project is licensed under the terms of the MIT open source license. Please refer to LICENSE file for details.

View source on GitHub

You might also like

42crunch Api Security Testing
Plugins
Ai Plugins
Plugins
Aikido
Plugins