figma-use

Warn

Audited by Socket on Jul 15, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: The core Figma-editing purpose is coherent, and official Figma MCP usage is legitimate. Risk comes from mixing in a third-party MCP/bridge, mutable install provenance, and plugin-wide metadata broadcasting that broadens data flow beyond what an ordinary Figma canvas skill strictly requires.

Confidence: 84%Severity: 61%
Audit Metadata
Analyzed At
Jul 15, 2026, 09:49 PM
Package URL
pkg:socket/skills-sh/sarveshsea%2Fdesign-skills%2Ffigma-use%2F@8636ac3a49c63c58d1507f57b32a8f2f9ea5fde30c01fb795789ffd7c6215a63