claude-design-ui-framework

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). While most links point to legitimate documentation and vendor sites, the direct GitHub release download (ClaudeDesign.zip) from a relatively unknown account (mikesheehan54) is potentially suspicious because GitHub releases/zip archives from low‑reputation users can be used to distribute malware.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md includes explicit runtime flows that ingest untrusted, user-generated third‑party content — e.g., the "Figma Integration" shows exportFigmaComponent calling figmaToReact with a figmaUrl and FIGMA_API_TOKEN (fetching Figma file data), and the "Screenshot to React Conversion" calls screenshotToReact on uploaded images — which the agent is expected to read/interpret to generate code/components and thus could let external file content materially influence model outputs and subsequent actions.