figma_mcp_server_actor
Verified Safeby oabolade
Overview
Enables AI assistants to interact with Figma designs and projects using natural language commands via a Model Context Protocol (MCP) server.
Installation
npm startEnvironment Variables
- FIGMA_ACCESS_TOKEN
- FIGMA_OAUTH_CLIENT_ID
- FIGMA_OAUTH_CLIENT_SECRET
Security Notes
The server securely handles Figma Personal Access Tokens (PATs) and provides placeholders for OAuth 2.0. Input parameters for API calls are validated (e.g., `enum` for formats). The core functionality involves calling predefined JavaScript functions (tool handlers) rather than arbitrary code execution, mitigating direct injection risks. Broad CORS `Access-Control-Allow-Origin: *` is set, which is standard for a public API but should be considered when embedding in restricted environments. Overall, no critical security vulnerabilities like `eval` or hardcoded secrets were found in the provided code.
Similar Servers
apify-mcp-server
Facilitates AI agents to discover, interact with, and extract data from the web using Apify Actors and platform services.
f2c-mcp
A Model Context Protocol server for Figma Design to Code, enabling AI tools to convert Figma designs into production-ready frontend code.
mcp-server
A Node.js server implementing Model Context Protocol (MCP) for Webflow, enabling AI agents to interact with Webflow Data and Designer APIs for AI-powered design and content management.
figma-console-mcp
Provides AI assistants with real-time console access, visual debugging, and design system extraction for Figma plugin development and design analysis.