figma-use-figjam
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides purely technical guidance and boilerplate code for the Figma Plugin API.
- [SAFE]: No evidence of prompt injection or instructions to bypass safety guidelines was found.
- [SAFE]: File system operations (e.g.,
figma.io.write) in code examples include sanitization logic to prevent path traversal. - [SAFE]: No hardcoded credentials, secrets, or sensitive file path access were identified.
- [SAFE]: No network operations to untrusted domains or remote code execution patterns were detected.
- [SAFE]: There are no persistence mechanisms, privilege escalation attempts, or obfuscated contents.
Audit Metadata