robinhood-connector

Warn

Audited by Snyk on Jun 16, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

  • Potentially malicious external URL detected (high risk: 0.90). The skill explicitly wires and uses the MCP trading endpoint https://agent.robinhood.com/mcp/trading at runtime (via "claude mcp add" and the live executor) to read accounts and place orders, i.e., it relies on an external service that can execute actions on behalf of the agent.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). The connector is explicitly designed to execute market trades via Robinhood's MCP trading endpoint. The doc describes onboarding a Robinhood Agentic account that "can then read all accounts/positions/orders and place trades," provides the MCP endpoint, and specifies a live mode that wires a real MCP place_order call (with gating). This is a specific trading integration whose primary purpose is placing market orders (buy/sell) — i.e., direct financial execution — even though notification-first and hard gates are described.

Issues (2)

W012
MEDIUM

Unverifiable external dependency detected (runtime URL that controls agent).

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Jun 16, 2026, 08:02 AM
Issues
2
Security Audit — snyk — robinhood-connector