> ## Documentation Index
> Fetch the complete documentation index at: https://developer.vanta.com/llms.txt
> Use this file to discover all available pages before exploring further.

# List information request activity

> Retrieves a paginated list of activity logs for an information request, providing
a complete audit trail of all changes and actions.

This endpoint supports delta synchronization via the `changedSinceDate` parameter,
allowing efficient polling for changes without retrieving the entire dataset.

Pagination usage:
1. Make initial request with desired `pageSize`
2. Check `results.pageInfo.hasNextPage` to see if more data exists
3. If true, use `results.pageInfo.endCursor` as `pageCursor` in next request
4. Repeat until `hasNextPage` is false

Delta sync usage:
1. Store the timestamp of your last sync
2. Pass that timestamp as `changedSinceDate`
3. Only activity created since that timestamp is returned
4. Process updates to track all changes to the information request
5. Update your last sync timestamp to the current time

Rate limit: 50 requests / minute.



## OpenAPI

````yaml https://spec.speakeasy.com/vanta/vanta/conduct-an-audit-with-code-samples get /audits/{auditId}/information-requests/{requestId}/activity
openapi: 3.0.0
info:
  title: Conduct an audit
  version: 1.0.0
  description: >-
    The Auditor API lets audit firms conduct audits from a tool outside of
    Vanta. Unlock data syncing with Vanta through this API.


    **Note for Vanta Gov (FedRAMP) customers:** Select `Vanta Gov (FedRAMP)`
    from the server dropdown to issue requests against
    `https://api.vanta-gov.com`. The OAuth token URL shown below defaults to the
    commercial host — replace it with `https://api.vanta-gov.com/oauth/token`.
  termsOfService: https://www.vanta.com/terms
  license:
    name: UNLICENSED
  contact:
    name: API Support
    url: https://help.vanta.com/
    email: support@vanta.com
servers:
  - url: https://api.vanta.com/v1
    description: Vanta (Commercial)
  - url: https://api.vanta-gov.com/v1
    description: Vanta Gov (FedRAMP)
security: []
paths:
  /audits/{auditId}/information-requests/{requestId}/activity:
    get:
      tags:
        - Audits
      summary: List information request activity
      description: >-
        Retrieves a paginated list of activity logs for an information request,
        providing

        a complete audit trail of all changes and actions.


        This endpoint supports delta synchronization via the `changedSinceDate`
        parameter,

        allowing efficient polling for changes without retrieving the entire
        dataset.


        Pagination usage:

        1. Make initial request with desired `pageSize`

        2. Check `results.pageInfo.hasNextPage` to see if more data exists

        3. If true, use `results.pageInfo.endCursor` as `pageCursor` in next
        request

        4. Repeat until `hasNextPage` is false


        Delta sync usage:

        1. Store the timestamp of your last sync

        2. Pass that timestamp as `changedSinceDate`

        3. Only activity created since that timestamp is returned

        4. Process updates to track all changes to the information request

        5. Update your last sync timestamp to the current time


        Rate limit: 50 requests / minute.
      operationId: ListInformationRequestActivity
      parameters:
        - in: path
          name: auditId
          required: true
          schema:
            type: string
        - in: path
          name: requestId
          required: true
          schema:
            type: string
        - description: Maximum number of activity entries to return per page.
          in: query
          name: pageSize
          required: false
          schema:
            $ref: '#/components/schemas/PageSize'
        - description: >-
            Pagination cursor from a previous response. Provide to fetch the
            next page of activity logs.
          in: query
          name: pageCursor
          required: false
          schema:
            $ref: '#/components/schemas/PageCursor'
        - description: Includes activity logs that have changed since changedSinceDate.
          in: query
          name: changedSinceDate
          required: false
          schema:
            type: string
            format: date-time
      responses:
        '200':
          description: Ok
          content:
            application/json:
              schema:
                $ref: >-
                  #/components/schemas/PaginatedResponse_InformationRequestActivityLog_
              examples:
                Example 1:
                  value:
                    results:
                      data:
                        - id: 6650a7d13680f3b61a0cd3c1
                          activityType: CHANGE_STATUS
                          timestamp: '2024-05-05T12:00:00.000Z'
                          userEmail: user@example.com
                          oldStatus: NEEDS_EVIDENCE
                          newStatus: READY_FOR_AUDIT
                          reason: Status updated after review
                          fillOutcome: null
                          sourceInformationRequestId: null
                          sourceAuditId: null
                      pageInfo:
                        hasNextPage: false
                        hasPreviousPage: false
                        startCursor: NjY1MGE3ZDEzNjgwZjNiNjFhMGNkM2Mx
                        endCursor: NjY1MGE3ZDEzNjgwZjNiNjFhMGNkM2Mx
      security:
        - bearerAuth: []
      x-codeSamples:
        - lang: typescript
          label: ListInformationRequestActivity
          source: |-
            import { Vanta } from "vanta-auditor-api-sdk";

            const vanta = new Vanta({
              bearerAuth: process.env["VANTA_BEARER_AUTH"] ?? "",
            });

            async function run() {
              const result = await vanta.audits.listInformationRequestActivity({
                auditId: "<id>",
                requestId: "<id>",
              });

              console.log(result);
            }

            run();
        - lang: java
          label: ListInformationRequestActivity
          source: >-
            package hello.world;


            import com.vanta.vanta_auditor_api.Vanta;

            import
            com.vanta.vanta_auditor_api.models.operations.ListInformationRequestActivityRequest;

            import
            com.vanta.vanta_auditor_api.models.operations.ListInformationRequestActivityResponse;

            import java.lang.Exception;


            public class Application {

                public static void main(String[] args) throws Exception {

                    Vanta sdk = Vanta.builder()
                            .bearerAuth(System.getenv().getOrDefault("BEARER_AUTH", ""))
                        .build();

                    ListInformationRequestActivityRequest req = ListInformationRequestActivityRequest.builder()
                            .auditId("<id>")
                            .requestId("<id>")
                            .build();

                    ListInformationRequestActivityResponse res = sdk.audits().listInformationRequestActivity()
                            .request(req)
                            .call();

                    if (res.paginatedResponseInformationRequestActivityLog().isPresent()) {
                        System.out.println(res.paginatedResponseInformationRequestActivityLog().get());
                    }
                }
            }
components:
  schemas:
    PageSize:
      type: integer
      format: int32
      default: 10
      description: >-
        Controls the maximum number of items returned in one response from the
        API.
      minimum: 1
      maximum: 100
    PageCursor:
      type: string
      description: >-
        A marker or pointer, telling the API where to start fetching items for
        the subsequent page in a paginated dataset.

        Note that the requested page will not include the item that corresponds
        to this cursor but will start from the one immediately

        after this cursor.
    PaginatedResponse_InformationRequestActivityLog_:
      properties:
        results:
          properties:
            data:
              items:
                $ref: '#/components/schemas/InformationRequestActivityLog'
              type: array
            pageInfo:
              $ref: '#/components/schemas/PageInfo'
          required:
            - data
            - pageInfo
          type: object
      required:
        - results
      type: object
      additionalProperties: false
    InformationRequestActivityLog:
      description: >-
        Activity log entry tracking changes and actions on an information
        request.


        The activity log provides a complete audit trail of all operations
        performed

        on an information request, including status changes, evidence uploads,
        edits,

        and evidence sharing. This enables tracking compliance activities and
        understanding

        the request's history.
      properties:
        id:
          type: string
          description: >-
            The unique identifier for the activity log entry within Vanta's
            system.

            Format: ObjectId as a string (e.g., "6890e473dce1da5d8406f5e7").
        activityType:
          $ref: '#/components/schemas/InformationRequestActivityType'
          description: |-
            Type of activity that occurred on the information request.
            Determines which additional fields are populated.
        timestamp:
          type: string
          format: date-time
          description: |-
            Timestamp when the activity occurred.
            Format: ISO 8601 UTC timestamp.
        userEmail:
          type: string
          nullable: true
          description: >-
            Email address of the user who performed the activity.

            Null for system-generated activities (rare, such as automated status
            changes).

            This email uniquely identifies users across systems.
        oldStatus:
          type: string
          enum:
            - READY_FOR_AUDIT
            - NEEDS_EVIDENCE
            - AUDITOR_APPROVED
            - AUDITOR_FLAGGED
            - READY_FOR_INTERNAL_REVIEW
            - null
          nullable: true
          description: >-
            Previous approval status before the status change.

            Only populated for status change activities. Null for all other
            activity types.
        newStatus:
          type: string
          enum:
            - READY_FOR_AUDIT
            - NEEDS_EVIDENCE
            - AUDITOR_APPROVED
            - AUDITOR_FLAGGED
            - READY_FOR_INTERNAL_REVIEW
            - null
          nullable: true
          description: >-
            New approval status after the status change.

            Only populated for status change activities. Null for all other
            activity types.
        reason:
          type: string
          nullable: true
          description: >-
            Optional explanation for the status change.

            Only populated for status change activities when a reason is
            provided

            (e.g., when flagging evidence). Null for all other cases.
        fillOutcome:
          allOf:
            - $ref: '#/components/schemas/EvidenceFillOutcome'
          nullable: true
          description: >-
            Result of an automated evidence fill.

            Only populated for evidence fill activities. Null for all other
            activity types.
        sourceInformationRequestId:
          type: string
          nullable: true
          description: >-
            Identifier of the information request this one was copied from when
            its

            audit was duplicated.

            Only populated for audit-duplication trail activities. Null for all
            other activity types.

            Format: ObjectId as a string.
        sourceAuditId:
          type: string
          nullable: true
          description: >-
            Identifier of the audit this request's audit was duplicated from.

            Only populated for audit-duplication trail activities. Null for all
            other activity types.

            Format: ObjectId as a string.
      required:
        - id
        - activityType
        - timestamp
        - userEmail
        - oldStatus
        - newStatus
        - reason
        - fillOutcome
        - sourceInformationRequestId
        - sourceAuditId
      type: object
      additionalProperties: false
    PageInfo:
      description: Provides information about the pagination of a dataset.
      properties:
        endCursor:
          type: string
          nullable: true
          description: >-
            The cursor that points to the end of the current page, or null if
            there is no such cursor.
        hasNextPage:
          type: boolean
          description: Indicates if there is another page after the current page.
        hasPreviousPage:
          type: boolean
          description: Indicates if there is a page before the current page.
        startCursor:
          type: string
          nullable: true
          description: >-
            The cursor that points to the start of the current page, or null if
            there is no such cursor.
      required:
        - endCursor
        - hasNextPage
        - hasPreviousPage
        - startCursor
      type: object
      additionalProperties: false
    InformationRequestActivityType:
      enum:
        - AUDIT_DUPLICATION_AUDIT_TRAIL
        - AUDIT_INFORMATION_REQUEST_EVIDENCE_FILL
        - CHANGE_STATUS
        - EDIT_REQUEST
        - REMOVE_EVIDENCE
        - SHARE_EVIDENCE_WITH_AUDITOR
        - UPLOAD_EVIDENCE
      type: string
    EvidenceFillOutcome:
      enum:
        - SUCCESS
        - PARTIAL
        - FAILED
      type: string
  securitySchemes:
    bearerAuth:
      type: http
      scheme: bearer

````