Skills
skills/figma/dev-mode-mcp-server-guide/figma-generate-design/Gen Agent Trust Hub

figma-generate-design

Pass

Audited by Gen Agent Trust Hub on Apr 28, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection (Category 8) because it requires the agent to read and interpret external source code and Figma file metadata.
  • Ingestion points: Analyzes source code files (e.g., *.figma.tsx, *.figma.js) and inspects properties of existing Figma nodes.
  • Boundary markers: The skill does not define explicit delimiters or instructions to ignore potential commands embedded within the processed code or design elements.
  • Capability inventory: The skill utilizes use_figma for canvas mutation and generate_figma_design for screen captures, providing a mechanism for actions based on interpreted data.
  • Sanitization: There are no specific instructions for sanitizing or validating content extracted from external sources.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 28, 2026, 11:31 AM