figma-generate-component

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill can ingest and analyze arbitrary Figma designs supplied via "link-based" Figma URLs (node IDs) — user-generated, potentially public/untrusted content — which the agent reads through the MCP workflow to extract frame structure and text, enabling indirect prompt injection.