figma-analyze-frame

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and analyzes Figma frames via the Figma MCP server and accepts link-based input (Figma URLs), meaning it will ingest and interpret user-provided/third-party Figma file content (untrusted, user-generated) as part of its workflow.