Critical-risk tools in TradingView MCP
6 of the 102 tools in TradingView MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
alert_deleteDestructiveDelete all alerts or open context menu for deletion
-
draw_clearDestructiveRemove all drawings from the chart
-
draw_remove_oneDestructiveRemove a specific drawing by entity ID
-
trading_cancel_orderDestructiveCancel a pending order in the Trading Panel by its visible order_id. CONSENT REQUIRED: you must pass { consent: true } explicitly.
-
trading_close_positionFinancialClose an open position at market in the Trading Panel by its visible position_id. CONSENT REQUIRED: you must pass { consent: true } explicitly.
-
trading_submit_orderFinancialPlace an order in the TradingView Trading Panel (paper trading OR live broker, depending on what
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.