figma
Warn
Audited by Snyk on Mar 2, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). This skill directly calls the Figma REST API (api.figma.com) to fetch file JSON, comments, and image URLs (see scripts/figma_tool.py get_file / get_comments / get_image and the SKILL.md/README usage), meaning the agent will read user-generated design files and comments from a third-party service that could contain instructions influencing subsequent actions.
Audit Metadata