Skills
skills/aradotso/mcp-skills/alpaca-trading-mcp-server/Gen Agent Trust Hub

alpaca-trading-mcp-server

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official alpaca-mcp-server via the uvx tool from the Python Package Index (PyPI) and provides references to the official Alpaca GitHub repository for Docker deployment.
  • [COMMAND_EXECUTION]: The skill uses standard execution patterns (uvx and docker run) to start the MCP server, which is required for its primary functionality.
  • [CREDENTIALS_UNSAFE]: The documentation correctly identifies the need for API keys and provides instructions on how to securely provide them to the server via environment variables in local configuration files, rather than hardcoding them.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 10:21 PM
Security Audit — agent-trust-hub — alpaca-trading-mcp-server