moha-maven
Verified Safeby itripleg
Overview
Maven is an autonomous AI Chief Financial Officer (CFO) assistant that leverages LLMs and MCP for persistent identity, memory, financial decision-making, and treasury operations for the Motherhaven platform.
Installation
python -m services.maven_mcp.serverEnvironment Variables
- EMAIL_API_SECRET
- ANTHROPIC_API_KEY
- CLAUDE_CODE_OAUTH_TOKEN
Security Notes
The project uses environment variables for sensitive API keys (Anthropic, Email API), which is good practice. File uploads (for chart analysis) are handled with `secure_filename` and a restricted set of allowed extensions. External network communication (email API, Hyperliquid API) is standard, but relies on the security of those external services and the provided API keys. Git-first persistence uses `git` commands via `subprocess.run`, which could be a risk if commit messages or file paths were unsanitized user input, but here the commit messages are programmatically generated. The Flask API and MCP server are designed to be exposed locally (or within a Docker network), but if exposed to the public internet without proper firewall rules, they would present a vulnerability. Overall, it follows reasonable security practices for its domain, but like any system handling financial transactions and API keys, caution is advised regarding network exposure and key management.
Similar Servers
ultimate_mcp_server
The Ultimate MCP Server acts as a comprehensive AI agent operating system, providing advanced AI agents access to a rich ecosystem of tools, cognitive systems, and specialized services via the Model Context Protocol for cognitive augmentation, tool use, and intelligent orchestration.
finance-trading-ai-agents-mcp
A specialized MCP server for financial analysis and quantitative trading, designed to deploy local financial MCP services with a departmental architecture for LLM integration and algorithmic trading.
mcp-compose
This server provides a robust example of OAuth2 authentication for MCP (Model Context Protocol) servers, using GitHub as the identity provider. It demonstrates secure multi-server management, protocol translation, and integration with AI agents for tool invocation.
docker-mcp-server
A Model Context Protocol (MCP) server for containerized execution and file operations, enabling AI assistants to interact with a Docker environment via HTTP.