ingest-figma

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and parses user-generated Figma files via the Figma REST API (see "Fetch file nodes" and "Fetch style definitions" steps) and also ingests arbitrary user-provided SVGs from artifacts/ingested, and that parsed content is used to build tokens and drive subsequent actions, so untrusted third-party content can influence agent behavior.