Drata MCP server
Summarize failing tests and pull live risk and controls context from Drata.
About
Connect Tracecat to Drata to pull live compliance context for GRC teams running SOC 2, ISO 27001, HIPAA, PCI, and GDPR programs. You can summarize failing tests with owner, framework, and root cause from a workflow before an auditor finds the gap. From there, generate live risk and controls reports, list policies and evidence, and file remediation tickets with the agent respecting the role permissions Drata assigns to the connected admin.
Setup
- 1
Sign in with OAuth
You'll authorize Tracecat to access Drata on your behalf. No API keys to manage.
- 2
Select the
Dratatile in the Tracecat MCP catalogOpen the
MCP catalogin your workspace, select theDratatile, and complete the OAuth flow. - 3
Enable
Dratain your agentIn your
ai.agentaction orAgents→toolstab, selectDratafrom theMCP integrationsdropdown.
Tools
summarize_failing_tests | Summarize failing Drata compliance tests with owner, framework, and root cause. |
generate_risk_report | Generate a live risk register report from current Drata data. |
generate_controls_report | Generate a controls coverage report scoped to a framework or business unit. |
list_frameworks | List compliance frameworks tracked in Drata with completion percentages. |
list_controls | List controls and their mapping across frameworks. |
list_tests | List automated tests with pass or fail status and last-run timestamp. |
list_policies | List policies in Drata with owner and last review date. |
list_evidence | List evidence items linked to controls or tests. |