figma-to-react-components

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required Phase 1 workflow explicitly instructs the agent to fetch and ingest Figma design files via Figma:get_design_context, Figma:get_variable_defs, and Figma:get_screenshot (Figma MCP), which are untrusted/user-generated third-party artifacts that the agent must interpret and use to drive token mapping and code generation, so they could carry indirect prompt-injection instructions.