Docusign MCP

The skill provides a legitimate integration for managing DocuSign via a hosted MCP server. The included scripts (init-mcporter.sh and invoke.sh) are well-structured utilities designed to seed OAuth credentials into the mcporter vault (~/.mcporter/credentials.json) from environment variables. The implementation demonstrates good security hygiene, such as using flock for concurrency, passing secrets to jq via environment variables to avoid process-list exposure, and using SHA-256 hashes to track credential rotation without storing raw tokens in sidecar files. All network traffic is directed to the official DocuSign endpoint (mcp.docusign.com).