figma-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill is an OpenAPI spec for the Figma REST API and exposes endpoints that return user-generated/untrusted content (e.g., references/resources/Files.md for file JSON/images, references/resources/Comments.md for comments, and references/resources/Webhooks.md for webhook payloads) which the agent would fetch and read as part of its workflow, enabling indirect prompt injection risk.