← 返回 Skills 市场
tsvetelin-kulinski

Trading212 API

作者 Engineering Manager @ Trading 212 · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
1823
总下载
2
收藏
4
当前安装
1
版本数
在 OpenClaw 中安装
/install trading212-api
功能描述
This skill should be used when the user asks to "connect to Trading 212", "authenticate Trading 212 API", "place a trade", "buy stock", "sell shares", "place market order",, "place pending order", "place limit order", "cancel order", "check my balance", "view account summary", "get positions", "view portfolio", "check P&L", "find ticker symbol", "search instruments", "check trading hours", "view dividends", "get order history", "export transactions", "generate CSV report", or needs guidance on Trading 212 API authentication, order placement, position monitoring, account information, instrument lookup, or historical data retrieval.
安全使用建议
This skill appears to be a genuine Trading 212 API helper based on its instructions, but it omits required credential declarations in the manifest and has no homepage or clear publisher provenance. Before installing or using it: (1) Prefer testing with DEMO credentials only — do not supply LIVE API keys until you're confident. (2) Ask the publisher to add explicit requires.env and primary credential metadata (so the platform can handle secrets securely). (3) Verify the skill's source (homepage or official publisher) — 'Trading 212' listed as author is not proof of authenticity. (4) If you must use it, supply the minimum necessary credentials and rotate keys afterward. (5) Watch for any requests to read unrelated environment variables or system files; if the agent asks for broader access than documented, stop and revoke keys. Providing no homepage and failing to declare required env vars is the primary reason this skill is flagged as suspicious; getting clear provenance and corrected metadata would raise confidence.
功能分析
Type: OpenClaw Skill Name: trading212-api Version: 1.0.0 The skill is classified as suspicious due to its extensive handling of highly sensitive financial credentials and data. It explicitly instructs the agent to read API keys and secrets from environment variables, base64 encode them for authentication, and make network calls to perform financial transactions (buy/sell stocks). Most notably, the skill provides direct instructions to download comprehensive financial CSV reports, which contain sensitive user data, to the local filesystem (e.g., `trading212_report.csv`). While these actions are aligned with the stated purpose of interacting with the Trading 212 API, the inherent risks associated with managing financial credentials and storing sensitive financial reports locally, even if intended for the user, warrant a 'suspicious' classification rather than 'benign' given the potential for misuse or data exposure in an insecure environment. All network calls are directed to legitimate Trading 212 domains (e.g., `https://demo.trading212.com`, `https://live.trading212.com`, `trading212-reports.s3.amazonaws.com`).
能力评估
Purpose & Capability
The skill's name and description match the instructions (Trading 212 API access, placing trades, account queries). However, the manifest declares no required environment variables or primary credential even though the SKILL.md repeatedly instructs the agent to read/use T212_API_KEY, T212_API_SECRET, T212_AUTH_HEADER, T212_BASE_URL, account-specific pairs, etc. The lack of declared credentials in the manifest is inconsistent with the skill's stated purpose.
Instruction Scope
The SKILL.md contains detailed runtime instructions for authentication, building Basic Auth headers, selecting LIVE vs DEMO, and making API requests — all within scope for a Trading 212 integration. It also instructs the agent to check for environment variables and to build/ask for credentials when missing. No instructions were found that ask the agent to read unrelated system files or transmit unrelated secrets, but the instructions do rely on environment variables being present or being provided at runtime.
Install Mechanism
This is an instruction-only skill with no install spec and no code files. That reduces surface risk because nothing is downloaded or written to disk by an installer.
Credentials
The SKILL.md expects multiple specific environment variables (T212_API_KEY, T212_API_SECRET, T212_AUTH_HEADER, T212_BASE_URL, and account-specific variants) appropriate for a Trading 212 integration. However, the skill manifest lists no required env vars and no primary credential. That mismatch prevents the platform or user from easily understanding what secrets the skill needs and from providing them securely. The requested variables themselves are proportional to the stated purpose, but the omission in metadata is a red flag.
Persistence & Privilege
The skill does not request always:true and has no install behavior or code that persists on disk or modifies other skills. Autonomous invocation is enabled by default (normal for skills) but does not combine here with other high-privilege indicators.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install trading212-api
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /trading212-api 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of the Trading 212 API skill. - Supports connecting to Trading 212 accounts (DEMO or LIVE) for Invest and Stocks ISA accounts. - Guides users through API authentication, credential setup, and environment selection. - Enables order placement (market, limit, pending), position monitoring, and account information retrieval. - Allows instrument search, portfolio overview, transaction history, and generating CSV reports. - Observes strict environment and account matching for credentials and requests.
元数据
Slug trading212-api
版本 1.0.0
许可证
累计安装 4
当前安装数 4
历史版本数 1
常见问题

Trading212 API 是什么?

This skill should be used when the user asks to "connect to Trading 212", "authenticate Trading 212 API", "place a trade", "buy stock", "sell shares", "place market order",, "place pending order", "place limit order", "cancel order", "check my balance", "view account summary", "get positions", "view portfolio", "check P&L", "find ticker symbol", "search instruments", "check trading hours", "view dividends", "get order history", "export transactions", "generate CSV report", or needs guidance on Trading 212 API authentication, order placement, position monitoring, account information, instrument lookup, or historical data retrieval. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1823 次。

如何安装 Trading212 API?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install trading212-api」即可一键安装,无需额外配置。

Trading212 API 是免费的吗?

是的,Trading212 API 完全免费(开源免费),可自由下载、安装和使用。

Trading212 API 支持哪些平台?

Trading212 API 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Trading212 API?

由 Engineering Manager @ Trading 212(@tsvetelin-kulinski)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论