Rotifer v0.8: Iron Shell — Hardening Before Scaling

v0.8 is the release where we stopped adding features and started making everything bulletproof. Before expanding the protocol's attack surface, we needed to prove the foundation is solid. Why Security First v0.7 gave genes network access, an IDE plugin, and a 4-gene AI pipeline. That's a lot of new surface area. Before going further — P2P networking, economic systems, public API — we needed to answer one question: can we defend what we've already built? Deep Security Audit We ran a comprehensive audit across the entire Cloud Binding stack: Supabase: 8 new migrations audited. Found 2 CRITICAL issues (anonymous unlimited writes to mcp_call_log, download tracking without deduplication) + 4 WARNING + 1 SUGGESTION. All fixed and verified with penetration testing. WASM sandbox: Found 2 CRITICAL issues — memory limits were declared but never enforced by wasmtime, and the epoch interrupt system was never started. Infinite loops had zero protection. Both fixed with a ResourceLimiter trait imple