MuHaven RWA Portfolio (rehearsal)

The MuHaven RWA Portfolio skill is a highly secured MCP bundle with extensive hardening and transparent security controls. It implements a strict network egress allowlist (api.muhaven.app and muhaven.app), explicitly denies filesystem and process spawning permissions, and manages secrets via a separate broker daemon using the OS keychain. The implementation in dist/index.cjs includes runtime drift detection to ensure only the authorized tool subset is exposed, and the documentation (SKILL.md, README.md) details a robust three-tier confirmation architecture (OTP/Passkeys) for all state-mutating actions.