figma-designer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md and README explicitly require a user-provided Figma URL/file and call Figma MCP tools (figma_get_file, figma_get_nodes, figma_get_components) to fetch and parse user-generated Figma files, which the agent reads and uses to drive analysis and subsequent actions (Phase 1: Fetch Design Data), exposing it to untrusted third-party content.