figma-mcp-server
Verified Safeby himanshupawar-10
Overview
A local Model Context Protocol (MCP) server designed to enable LLM clients to interact with Figma for listing projects, fetching file data, and generating React/HTML frontend code from Figma frames.
Installation
node server.jsEnvironment Variables
- FIGMA_TOKEN
Security Notes
The server uses `process.env.FIGMA_TOKEN` or passes a token argument, which is good practice for secret handling. It explicitly states it uses stdio transport and does not expose an HTTP port, reducing direct network attack surface. There is no usage of `eval` or obvious obfuscation. The `generate_frontend` tool produces React/HTML code; while basic, it uses `escapeJsxText` for text content, mitigating simple XSS from Figma text. The primary security consideration is the sensitive nature of the Figma Personal Access Token and the potential for its misuse if the LLM client or the environment running the server is compromised.
Similar Servers
f2c-mcp
A Model Context Protocol server for Figma Design to Code, enabling AI tools to convert Figma designs into production-ready frontend code.
figma-console-mcp
Provides AI assistants with real-time console access, visual debugging, design system extraction, and design creation capabilities for Figma.
figma-mcp-server
Enables AI agents to read from and modify Figma design documents programmatically, offering capabilities beyond the official read-only Figma MCP server.
figma-mcp-write-server
Enables AI agents to programmatically create, modify, and manage design elements and properties within Figma via the Model Context Protocol (MCP).