figma-ui-design
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill consists of instructional content and configuration settings for UI design automation. No malicious scripts or suspicious executable patterns were detected.- [CREDENTIALS_UNSAFE] (SAFE): Documentation examples use placeholders ('YOUR_TOKEN') for API authentication, adhering to security best practices for secret management.- [PROMPT_INJECTION] (SAFE): No adversarial instructions or behavior override attempts were found in the skill metadata or body.- [Category 8: Indirect Prompt Injection] (SAFE): 1. Ingestion points: Figma API (WebFetch). 2. Boundary markers: Absent. 3. Capability inventory: Bash, Read, Write, Edit. 4. Sanitization: Absent. The skill provides an interface for processing external Figma designs, which is a standard surface for this tool's purpose and shows no signs of malicious exploitation.
Audit Metadata