figma-sync-design-system

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly inventories and reads Figma components via the Figma MCP server and Figma file URLs (e.g., "Use Figma MCP tools to list all components in the file" and example mapping URL), which means it fetches and interprets user-generated content from a third‑party platform and could be exposed to indirect prompt injection.