ui-implementer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests user-provided Figma links and remote design URLs (e.g., "If Figma: Use Figma MCP to fetch design screenshot and specs" and "If Remote URL: Use Chrome DevTools MCP to capture screenshot"), meaning it reads untrusted third-party/user-generated content as part of its workflow and could be vulnerable to indirect prompt injection.