figma-to-ids
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified in the skill content.
- [REMOTE_CODE_EXECUTION]: No remote code execution patterns or unverified dependencies were found. The skill references the legitimate vendor package '@iress-oss/ids-components'.
- [DATA_EXFILTRATION]: No network operations, sensitive file access, or credential exposure were detected.
- [PROMPT_INJECTION]: The skill uses instructional language consistent with its purpose and does not contain any attempts to bypass safety filters or override system instructions.
- [INDIRECT_PROMPT_INJECTION]: While the skill is designed to process external Figma metadata, it lacks capabilities (like file writes or command execution) that could be exploited via indirect injection. The risk is negligible.
Audit Metadata