tradingview-indicators
by xenoxavier
Overview
Provides programmatic access to analyze TradingView Pine Script indicators via the Model Context Protocol (MCP).
Installation
docker-compose upEnvironment Variables
- NODE_ENV
Security Notes
CRITICAL: The `analyze_indicator` and `extract_functions` tools are vulnerable to path traversal. The `indicatorName` argument is directly used in `readIndicatorFile` without validation against a whitelist of allowed files or sanitization (e.g., preventing `../` sequences). This allows an attacker to read arbitrary files from the server's working directory or parent directories (e.g., `../../package.json`, `../../Dockerfile`, or potentially other sensitive configuration files on the host system if Docker volume mounting isn't perfectly restrictive). Although the Docker volume is mounted as read-only, this still poses a significant information disclosure risk. Network risks are low due to stdio transport, and no obvious hardcoded secrets or 'eval' are present.
Similar Servers
alpaca-mcp-server
Enables natural language trading operations for Alpaca's Trading API via AI assistants, supporting stocks, options, crypto, portfolio management, and real-time market data.
maverick-mcp
Personalized stock analysis, technical indicators, and portfolio optimization via Claude Desktop.
tradingview-mcp
Provides real-time cryptocurrency and stock market analysis for traders, analysts, and AI assistants via the Model Context Protocol (MCP).
crypto-indicators-mcp
Provides an MCP server with over 50 cryptocurrency technical analysis indicators and strategies to empower AI trading agents in analyzing market trends and developing quantitative strategies.