figma-code-connect
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFE
Full Analysis
- Figma Node Normalization: The skill includes a Python script (
scripts/normalize_node_id.py) used to convert between Figma URL and tool ID formats. This is a local, benign operation for string processing. - Figma MCP Integration: The skill provides instructions for interacting with the Figma Model Context Protocol (MCP) server to fetch component metadata and suggestions. These operations are performed through standard tool calls provided by the platform.
- Codebase Analysis: The instructions guide the agent to search the local codebase for matching components to create mapping files (
.figma.js). This involves standard file read operations to identify property interfaces and import paths. - Template Generation: The skill generates parserless template files based on component data. It includes extensive guidance on using the Code Connect API safely, such as avoiding string concatenation for template results and performing existence checks for child layers.
Audit Metadata