Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
robinhood-api
Advanced tools
This is a simple library for interacting with Robinhood's internal API. I wanted to make a simple web client for my personal use, and figured it'd be nice to roll my own library with support for the calls I needed. If you find yourself wanting more, read below to see how to contribute. Sorry that the documentation is pretty anemic, but I would much rather be working on other things :P
This app is written using async/await so you'll need a minimum node/npm version that supports this style of syntax.
You should be able to easily add any missing calls to the file ./api/calls.js. Not sure how the calls work? This was built from reading https://github.com/sanko/Robinhood. If you want to see it added to this package, go ahead and send a pull request.
const RobinHood = require('robinhood-api');
const robinhood = new RobinHood();
console.log(robinhood.listCalls()); //This will print all of the available API calls this library can do.
const RobinHood = require('robinhood-api');
const robinhood = new RobinHood();
(async () => {
try{
let loginResult = await robinhood.login('email@test.com', 'mycoolpassword');
let myUserData = await robinhood.getUserData();
console.log(myUserData);
}catch(e){
console.log('Oh noes! Login probably failed!', e);
}
})();
If you get a "next" token, or account, instrument, etc (URLs in API responses that when requested will resolve assets), you can simply request that location with the getResource() method.
let someCoolResource = await robinhood.getResource(someResourceUrl);
Login to RobinHood with your user credentials.
Login using a two-step authentication code.
Get the ACH methods associated with this account.
Get an ACH relationship by ID (retrieved by getACHRelationships())
Add a scheduled ACH transfer to fund this account.
Get scheduled ACH transfers.
Perform a one time ACH transfer to or from your bank account.
Get list of one time ACH transfers to or from your bank account.
Get the user's basic account information.
Get the accounts associated with the user credentials.
Get the user's investment profile.
Get the current stock positions being held.
Get the user's portfolio by account ID
Get the user's portfolio historicals
Get historicals for a particular symbol
Get an order via the order_id parameter.
Get recently placed orders.
Buy or sell a security.
Cancel an active order
Get instruments list.
Get quote on a security via ticker symbols (comma separated list)
Get quote on a single security via ticker symbol
Get market data for the different exchanges
Get fundamental data for ticker symbols (comma separated list)
Get list of watchlists for a user
Reorder a watchlist. UUIDs is a list of instrument URLs (comma separated list)
Create a new watchlist
Retrieve user dividend payouts
Retrieve user documents
Get S&P 500 movers
Get companies reporting earnings within X days
Get earnings by stock symbol
Get cards (notification) stack
Dismiss a card by the notification ID
Get stock splits by instrument
FAQs
Robinhood API Wrapper
We found that robinhood-api demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.