Tracecat

Drata MCP server

Summarize failing tests and pull live risk and controls context from Drata.

Compliance
http
Official docs

About

Connect Tracecat to Drata to pull live compliance context for GRC teams running SOC 2, ISO 27001, HIPAA, PCI, and GDPR programs. You can summarize failing tests with owner, framework, and root cause from a workflow before an auditor finds the gap. From there, generate live risk and controls reports, list policies and evidence, and file remediation tickets with the agent respecting the role permissions Drata assigns to the connected admin.

Setup

  1. 1

    Sign in with OAuth

    You'll authorize Tracecat to access Drata on your behalf. No API keys to manage.

  2. 2

    Select the Drata tile in the Tracecat MCP catalog

    Open the MCP catalog in your workspace, select the Drata tile, and complete the OAuth flow.

  3. 3

    Enable Drata in your agent

    In your ai.agent action or Agents tools tab, select Drata from the MCP integrations dropdown.

Tools

summarize_failing_tests

Summarize failing Drata compliance tests with owner, framework, and root cause.

generate_risk_report

Generate a live risk register report from current Drata data.

generate_controls_report

Generate a controls coverage report scoped to a framework or business unit.

list_frameworks

List compliance frameworks tracked in Drata with completion percentages.

list_controls

List controls and their mapping across frameworks.

list_tests

List automated tests with pass or fail status and last-run timestamp.

list_policies

List policies in Drata with owner and last review date.

list_evidence

List evidence items linked to controls or tests.

Deploy the Drata MCP server in minutes

Connect your security agents to 50+ hosted MCP servers.

Self-host free