robinhood-connector
Warn
Audited by Snyk on Jun 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill explicitly wires and uses the MCP trading endpoint https://agent.robinhood.com/mcp/trading at runtime (via "claude mcp add" and the live executor) to read accounts and place orders, i.e., it relies on an external service that can execute actions on behalf of the agent.
MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).
- Direct money access detected (high risk: 1.00). The connector is explicitly designed to execute market trades via Robinhood's MCP trading endpoint. The doc describes onboarding a Robinhood Agentic account that "can then read all accounts/positions/orders and place trades," provides the MCP endpoint, and specifies a live mode that wires a real MCP place_order call (with gating). This is a specific trading integration whose primary purpose is placing market orders (buy/sell) — i.e., direct financial execution — even though notification-first and hard gates are described.
Issues (2)
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
W009
MEDIUMDirect money access capability detected (payment gateways, crypto, banking).
Audit Metadata