Figma Context MCP (Framelink)
Figma Developer MCP server that gives AI coding tools access to Figma design data with simplified layout and styling information
Score Breakdown
Server Info
- Package
- figma-developer-mcp
- Registry
- npm
- Repository
- GLips/Figma-Context-MCP
- Maintainer
- Community
- Category
- Developer Tools
- Tags
- designuifigma
- Last Scanned
- 7 Apr 2026
Findings
4 issuesAuthentication & Identity
MEDIUMHTTP/SSE transport supports per-request credentials
Supports both stdio and StreamableHTTP transports. Auth via FIGMA_API_KEY (Personal Access Token) or FIGMA_OAUTH_TOKEN (OAuth Bearer token) environment variables or CLI flags. HTTP mode runs stateless StreamableHTTP on /mcp and /sse paths (backward compat). No MCP OAuth spec implementation. Image directory is configurable via IMAGE_DIR env var with path traversal protection.
Implement the MCP OAuth spec so users authenticate directly without platform mediation.
LLM Safety
HIGHTool descriptions contain instructional language
Descriptions include directives that could influence LLM behavior beyond tool selection.
Remove instructional language. Descriptions should be purely factual.
Data Exposure
LOWNo field selection on responses
Responses return full records rather than projected fields.
Implement field selection to return only relevant fields.
Maintenance & Trust
LOWCommunity-maintained by GLips (Framelink)
No official vendor backing.
Seek vendor verification.
Tools
2 total| Name | Description | Risk |
|---|---|---|
| get_figma_data | Get comprehensive Figma file data including layout, content, visuals, and component information | read |
| download_figma_images | Download SVG and PNG images used in a Figma file based on the IDs of image or icon nodes. Images will be saved relative to the server's image directory. | write |
Deploy Figma Context MCP (Framelink) securely
CompleteFlow adds per-user authentication, permission scoping, and audit logging to any MCP server out of the box.
Deploy on CompleteFlow