edit-figma-design
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill exclusively uses the Figma MCP server tools (
search_design_system,create_new_file,use_figma,whoami) to perform its primary tasks. These are specialized tools for the Figma API and do not pose a risk to the local environment. - [SAFE]: The instructions include specific safeguards to prevent command confusion, such as explicitly noting that the
whoamitool is a Figma MCP tool and not the local shell command. - [SAFE]: Data access is limited to reading project-specific configuration files (
AGENTS.md,WARP.md) and performing codebase searches to ensure design alignment. This is standard behavior for development-oriented agents. - [SAFE]: The workflow emphasizes incremental edits through small, verifiable steps (
use_figmacalls), which allows for better oversight and reduces the risk of complex, unintended changes. - [SAFE]: External references are limited to official Figma developer documentation.
Audit Metadata