design-compare

The design-compare skill appears to be a developer tooling workflow for visual design validation. Its capabilities align with the stated purpose: compare Figma designs with local previews and generate an HTML report. The main security considerations concern handling of the Figma access token (stored in .env, loaded at runtime) and ensuring reports do not leak credentials or tokens. No suspicious external download/execute patterns are evident, and there is no evidence of automatic remote actions or credential forwarding to third-party services. Overall, the footprint is benign and proportionate to the stated goal, with moderate security considerations around credential handling and token exposure.