page-mockup-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests user-provided Figma content via the Figma MCP (see Step 2: "If the user provided a Figma link... use get_design_context and get_variable_defs to extract ... color tokens, typography, spacing, component patterns"), so arbitrary third‑party/user-generated Figma frames can be read and directly determine the generated HTML/CSS and behavior.