Skip to content

auxesis/vanta-cli

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

49 Commits
.claude/skills/vanta-soc2-outstanding
.claude/skills/vanta-soc2-outstanding
 
 
.github/workflows
.github/workflows
 
 
.gitignore
.gitignore
 
 
.goreleaser.yml
.goreleaser.yml
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 
client.go
client.go
 
 
controls.go
controls.go
 
 
discovered_vendors.go
discovered_vendors.go
 
 
documents.go
documents.go
 
 
documents_test.go
documents_test.go
 
 
frameworks.go
frameworks.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
groups.go
groups.go
 
 
integrations.go
integrations.go
 
 
mise.toml
mise.toml
 
 
monitored_computers.go
monitored_computers.go
 
 
people.go
people.go
 
 
policies.go
policies.go
 
 
risk_scenarios.go
risk_scenarios.go
 
 
schema.go
schema.go
 
 
tests.go
tests.go
 
 
tests_test.go
tests_test.go
 
 
token.go
token.go
 
 
vanta.go
vanta.go
 
 
vendor_risk_attributes.go
vendor_risk_attributes.go
 
 
vendors.go
vendors.go
 
 
vulnerabilities.go
vulnerabilities.go
 
 
vulnerability_remediations.go
vulnerability_remediations.go
 
 
vulnerable_assets.go
vulnerable_assets.go
 
 

Repository files navigation

vanta-cli

A command-line tool for fetching data from the Vanta API.

Usage

Authentication

vanta-cli authenticates using OAuth client credentials.

Follow the Vanta docs on how to obtain these credentials.

Set the following environment variables before running any command:

export VANTA_CLIENT_ID=your-client-id
export VANTA_CLIENT_SECRET=your-client-secret

Commands

Each resource is a subcommand. All subcommands support a --format flag with the following options: json (default), csv, tsv, markdown.

vanta-cli [command] --format [json|csv|tsv|markdown]

Available commands:

Command Description
controls Fetch controls
discovered-vendors Fetch discovered vendors
documents Fetch documents
frameworks Fetch frameworks
groups Fetch groups
integrations Fetch integrations
monitored-computers Fetch monitored computers
people Fetch people
policies Fetch policies
risk-scenarios Fetch risk scenarios
schema Emit machine-readable schema of subcommands and data models
tests Fetch tests
vendor-risk-attributes Fetch vendor risk attributes
vendors Fetch vendors
vulnerabilities Fetch vulnerabilities
vulnerability-remediations Fetch vulnerability remediations
vulnerable-assets Fetch vulnerable assets

Pagination is handled automatically — all pages are fetched and concatenated before output.

Examples

Fetch all vulnerabilities as JSON:

vanta-cli vulnerabilities

Fetch all vendors as CSV:

vanta-cli vendors --format csv

Count vulnerabilities using jq:

vanta-cli vulnerabilities | jq 'length'

Fetch all policies as a markdown table:

vanta-cli policies --format markdown

Emit the machine-readable schema (useful for LLM consumption):

vanta-cli schema

Development

Prerequisites

  • mise — manages the Go toolchain and task runner

Install dependencies:

mise install

Building

mise run build

This produces a ./vanta-cli binary in the current directory.

Testing

mise run test

This runs three checks in sequence:

  • lintgolint with exit-on-warnings
  • fmtgo fmt (fails the pipeline if formatting changes are needed)
  • unitgo test ./...

Releasing

Releases are automated via GoReleaser and GitHub Actions. Pushing a v* tag triggers the release workflow, which runs tests then publishes a GitHub Release with binaries for macOS and Linux (amd64 and arm64).

To release a new version:

git tag v1.2.3
git push origin v1.2.3

The release workflow will:

  1. Run the full test suite
  2. Cross-compile for all platforms
  3. Create a GitHub Release with .tar.gz archives and a checksums.txt

The version is embedded in the binary at build time — vanta-cli --version will print the tag.

About

CLI for working with all the data in your Vanta environment

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 4

v1.0.0 Latest
Mar 24, 2026
+ 3 releases

Packages

 
 
 

Contributors

Languages