figma-implement-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's "How to use" instructions explicitly direct the agent/user to open and install the upstream public GitHub bundle (https://github.com/figma/skills) so the agent would fetch and run third-party repository assets and README content, exposing it to untrusted user-generated web content that could change behavior.