figma

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and reads user-generated Figma files via the Figma REST API (see SKILL.md examples like python scripts/figma_client.py get-file "your-file-key" and the "Extract file data" workflow), so untrusted third‑party content in those files would be parsed and used to drive analysis, exports, and decisions.