Security audit

Figma Plugin Writer

Security checks across malware telemetry and agentic risk

Overview

This appears to be a Figma design-generation skill, but its default workflow can wipe an entire Figma page without clear confirmation or scoping.

Install only if you are comfortable running it on disposable or duplicated Figma pages. Before use, confirm it will create or update a dedicated frame/page, or require explicit approval before clearing anything; avoid running it in shared or important files until the deletion behavior is scoped and reversible.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (6)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill includes example code that removes all existing content from the target page before rebuilding the design, but it does not prominently warn about destructive data loss. In the context of a design tool, this can wipe user work or existing mockups if the wrong page is targeted or the user misunderstands the behavior.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The template makes automatic page clearing part of the normal flow without emphasizing that the action is irreversible from the skill’s perspective and may destroy unrelated design work. Because this is presented as the default implementation pattern, users and downstream agents are likely to adopt destructive behavior unintentionally.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The iteration guidance explicitly instructs clearing all page elements on every run, normalizing destructive behavior during iterative edits. This increases the chance of repeated accidental loss of user-created content, especially in shared or partially prepared Figma pages.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The code unconditionally removes all existing content from the target page by iterating over every child and calling remove(), with no confirmation, preview, or scoping to only plugin-created nodes. In a design environment, this can destroy user work if the last page contains important content, especially since the script automatically switches to that page before deletion.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The code enumerates all children of the selected target page and removes them unconditionally before creating the design system. This is destructive behavior that can cause irreversible loss of user work if the last page contains important content, and there is no warning, confirmation, backup, or creation of a dedicated output page first.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The script unconditionally removes all existing children from the selected target page after switching to the last page, which can destroy a user's prior work without warning or recovery logic. In a design-tool plugin context, destructive actions on document contents are security-relevant because they can cause data loss and be abused by a malicious or careless skill to overwrite or erase user assets.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.