Figma Developer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill directly fetches and ingests user-generated Figma content (e.g., via client.getFile(fileKey), client.getFileComponents, client.exportImages and subsequent fetch(svg.url)) and reads/interprets node names, descriptions, styles and SVGs from Figma (a third‑party, potentially public source), exposing the agent to untrusted third‑party content that could carry indirect prompt injections.