implement-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and ingests user-provided Figma content (via get_design_context, get_screenshot, and asset downloads from the Figma MCP server using user-supplied Figma URLs), which is third-party, user-generated content that the agent is expected to read and interpret.