Figma Comments MCP
Lightweight MCP adding Figma Comments support — read, query and reply to comments via the Figma REST API.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Figma Comments MCP, derived from its capabilities.
These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.
Overview
Figma Comments MCP adds Figma Comments support to AI assistants, enabling reading, querying and replying to comments through the Figma REST API. Security surface: it holds a FIGMA_TOKEN scoped to a file and can post replies, so injected comment text is untrusted input and the reply tool can write into a design file's threads.
Key features
- Read and query Figma comments
- Reply to comment threads
- Figma REST API integration
- Per-file token scoping
Use cases
- Triage design feedback with an agent
- Auto-respond to Figma comments