aifinhub
Tools Research Benchmarks Methodology About
↗ AI Hub Network

Directory

Finance MCP Directory + Security Grader

Security-graded catalog of finance MCP servers: Alpaca, Polygon, Databento, IBKR, Tradier, Tiingo, NautilusTrader. Scope, auth, grade. Browser-only. Free.

AI Fin Hub Research Methodology Corrections
Inputs
Filter / browse
Runtime
Instant
Privacy
Client-side · no upload
API key
Not required
Methodology
Open →

Servers tracked

7

Finance-domain MCP servers

Grade A

2

Production-ready

Grade B

2

Usable with audit

Last refresh

2026-04-20

Quarterly + on-demand

7 results

A

Alpaca MCP Server v2

AlpacaOfficial

Official Alpaca MCP server. Shipped April 2026 with 61 actions across equities, options, and crypto. Read + execute across the Alpaca brokerage API.

Scope

full

Auth

api-key

Transport

stdio+http

Idempotent

yes

Schema qual

A

License

MIT

Last commit

2026-04-15

bars (daily / minute)quotes (live via SIP+IEX)options chainscrypto pairssubmit ordersportfolio positionsaccount state

Security notes

  • API key has broad trading authority — store securely
  • No scoping of key permissions in-server (rely on Alpaca dashboard key scopes)
  • Idempotency key supported on order submission
A

Polygon.io MCP Server

Polygon.ioOfficial

Official Polygon.io MCP server. Read-only access to all Polygon equities, options, crypto, FX data endpoints.

Scope

read-only

Auth

api-key

Transport

stdio+http

Idempotent

no

Schema qual

A

License

Apache-2.0

Last commit

2026-04-10

stocks aggregates (daily / minute / sec / tick)options chainscrypto trades + quotesforex ratesnews APIreference data

Security notes

  • Read-only scope — no trade execution surface
  • API key required; safe to scope tightly
  • No idempotency concern (no writes)
B

IBKR CLI MCP

Interactive BrokersCommunity

Community MCP wrapper around Interactive Brokers' TWS / IB Gateway. Requires running Gateway locally; auth via IBKR account.

Scope

full

Auth

bearer-token

Transport

stdio

Idempotent

yes

Schema qual

B

License

Apache-2.0

Last commit

2026-04-02

live quotes (subject to IBKR data subscription)historical barsoptionssubmit orderscancel ordersportfolio positions

Security notes

  • Requires TWS / Gateway running on the client machine
  • IBKR token stored client-side — do not commit to repos
  • Idempotency supported via client-supplied orderId
  • Community project — audit before production trading
B

NautilusTrader MCP (community)

CommunityCommunity

Community MCP wrapper for NautilusTrader — a Rust-based algo trading platform. Exposes backtesting + live-trading adapters to LLM agents.

Scope

full

Auth

api-key

Transport

stdio

Idempotent

yes

Schema qual

B

License

LGPL-3.0

Last commit

2026-04-18

backtest harness controlstrategy deploymentmulti-venue adaptersrisk engine

Security notes

  • LGPL license — review redistribution obligations if bundling
  • Idempotency enforced by Nautilus core
  • Local-only by default — exposes nothing to the network without configuration
C

Databento MCP Server (community)

DatabentoCommunity

Community-maintained Databento MCP server. Wraps historical + live data endpoints. Not endorsed by Databento; verify schemas against docs.

Scope

read-only

Auth

api-key

Transport

stdio

Idempotent

no

Schema qual

B

License

MIT

Last commit

2026-03-28

historical OHLCVtick data (limited)futuressymbology lookups

Security notes

  • Unofficial — review schema fidelity before production use
  • Does not rate-limit; relies on Databento's server-side meter
  • Billing tracked via Databento meter — test runs cost money
C

Tiingo MCP (community)

TiingoCommunity

Community Tiingo MCP. Read-only access to EOD equities, news API, fundamentals, crypto.

Scope

read-only

Auth

api-key

Transport

stdio

Idempotent

no

Schema qual

B

License

MIT

Last commit

2026-03-05

EOD equitiesintraday (limited tiers)newsfundamentalscrypto

Security notes

  • Read-only — no execution risk
  • Does not expose API key in responses
D

Tradier MCP (community)

TradierCommunity

Community Tradier brokerage MCP. Supports sandbox + live accounts, including options trading.

Scope

full

Auth

bearer-token

Transport

http-stream

Idempotent

no

Schema qual

C

License

MIT

Last commit

2026-02-14

stock + option quotesoption chainssubmit ordersportfolio

Security notes

  • No idempotency key — duplicate-submission risk on retry
  • Sandbox + live on same server; verify account slug before every call
  • Community maintained, audit activity gaps

About this directory

Grade = weighted composite of official-status, maintenance recency, schema quality, auth model, idempotency support (for execution servers), and license openness. Refreshed quarterly or when a notable change ships. See methodology for the exact scoring algorithm.

Complementary tools

Users of this tool often explore

Data-Vendor TCO Calculator

Compute annual cost of market data across Databento, Polygon, Alpaca, Tiingo, FMP, and Alpha Vantage for your exact universe, bar resolution, history depth, and API call volume.

Comparators Open

Trading System Blueprinter

Pick your data source, LLM, broker, storage, risk engine, and logger. Get a Mermaid architecture diagram, a starter repo scaffold (ZIP), and a list of open-source integrations that actually compose.

Generators Open

Prompt Injection Tester

Red-team a finance agent against 24 documented prompt-injection attacks — direct override, role confusion, indirect injection via retrieved content, jailbreak patterns, tool-call hijack. BYO key; runs client-side against your live model.

Playgrounds Open
Planning estimates only — not financial, tax, or investment advice.