Jquants Mcp
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The installed tool may authenticate to J-Quants using your account credentials to retrieve market data.
The skill asks for J-Quants account credentials. That matches the stated API-access purpose, but users should recognize they are granting account-authenticated access.
Requires `JQUANTS_MAIL_ADDRESS` and `JQUANTS_PASSWORD` environment variables
Use a dedicated J-Quants account if possible, store credentials as environment variables only, and avoid sharing logs or outputs that may expose account details.
Installing the skill will install and run code from the named package source, so package provenance matters.
The skill depends on an external package-installed binary. This is normal for a CLI/MCP integration, but the provided artifacts do not include package source details beyond the package name.
uv | package: jquants-mcp | creates binaries: jquants-mcp
Before installing, verify the package publisher and version, and install only from a trusted package index or pinned source.