schwab-mcp-server
Verified Safeby acidsolution
Overview
A read-only Model Context Protocol (MCP) server for Charles Schwab API, enabling AI assistants to access financial data for portfolio analysis, real-time quotes, options data, and price history.
Installation
npx @modelcontextprotocol/inspector python -m schwab_mcp.serverEnvironment Variables
- SCHWAB_CALLBACK_URL
- SCHWAB_TOKEN_PATH
- SCHWAB_CLIENT_ID
- SCHWAB_CLIENT_SECRET
Security Notes
The server is explicitly designed as 'READ-ONLY', preventing any trading or account modification. API credentials (client ID/secret) and refresh tokens are loaded from environment variables or a secure local file, not hardcoded. The `auth.py` module uses `os.chmod` to set secure file permissions (owner read/write only) on the token file. The `storage.py` module uses `sqlglot` to strictly validate SQL queries, ensuring only `SELECT` statements are executed against the in-memory DuckDB, which prevents SQL injection and unauthorized data manipulation. No 'eval' or similar dangerous functions were found.
Similar Servers
alpaca-mcp-server
Enables natural language trading operations for Alpaca's Trading API via AI assistants, supporting stocks, options, crypto, portfolio management, and real-time market data.
alpha_vantage_mcp
Enables LLMs and agentic workflows to seamlessly interact with real-time and historical stock market data through the Model Context Protocol (MCP).
claude-faf-mcp
Optimizes AI understanding of software projects by providing persistent context, fixing context-drift, and enabling bi-directional synchronization between project metadata and AI documentation.
mcp-finance-intel
A financial intelligence MCP server providing structured market analysis and insights for crypto and equities, designed for LLM and human developer consumption.