figma-to-swiftui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests content from public/untrusted Figma files (via get_design_context, get_screenshot, get_variable_defs and related MCP calls for user-provided figma.com URLs and asset download URLs) and instructs the agent to read and act on that design data to drive implementation decisions, so third-party content can materially influence tool use.