talktofigma-desktop-mcp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests user-generated content from Figma files (via the TalkToFigma MCP tools such as join_channel, get_node_by_id, get_all_nodes, get_local_text_styles and workflows like "Extract Design Tokens" and "Build Component Library" in SKILL.md), so untrusted third‑party webpage/design content could be read and materially influence tool actions and generated outputs.