It's generally considered bad form to use the root MySQL user to manage and query your database. One of the first things I do after spinning up a MySQL database is create users with varying degrees of permissions. It is extremely important to include a secure password. If you don't explicitly specify a password using the IDENTIFIED BY clause the user will be able to connect without a password. I use my Secure Password Generator to help generate all of my passwords.
CREATE USER 'name'@'host.name' IDENTIFIED BY 'VerySecurePassword';