Server data from the Official MCP Registry
AI design fidelity — compare Figma designs or screenshots against rendered UI. No API keys.
AI design fidelity — compare Figma designs or screenshots against rendered UI. No API keys.
kiyas is a well-structured MCP server for AI-powered design comparison with reasonable security posture. Authentication properly delegates to external CLI tools (Claude Code / Codex), reducing credential storage risk. However, there are several moderate concerns: Figma tokens can be stored in multiple locations with weak validation, environment variable exfiltration is possible through the vision AI pipeline, and dangerous subprocess operations (execFile) are used to invoke external CLIs without strict input validation. Permissions are appropriate for the stated purpose (network access for Figma/Playwright, filesystem I/O for reports), but credential handling and subprocess safety require attention. Supply chain analysis found 2 known vulnerabilities in dependencies (0 critical, 1 high severity). Package verification found 1 issue.
4 files analyzed · 12 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Set these up before or after installing:
Environment variable: FIGMA_ACCESS_TOKEN
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-saiffmirza-kiyas": {
"env": {
"FIGMA_ACCESS_TOKEN": "your-figma-access-token-here"
},
"args": [
"-y",
"kiyas-cli"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.