Extract design tokens (colors, typography, spacing, border radius, shadows) from any public website. Generates JSON and CSS custom properties for local projects. Available as an AI agent skill (Claude, Cursor, Codex) and standalone CLI.
- capability exposureinferred+4
- inherited (deps)attested+15
- tool safetyinferred+2
- trust mitigatorsmixed−3
attestedinferredmixed
The A–E grade is our heuristic synthesis — a "review this" prompt, not a verdict. Each factor is tagged by what backs it: attested (a verifiable record), reported (a third party's claim), or inferred (our own heuristic, e.g. permissions). See methodology.
graded 7m ago · see ecosystem CVEs →
No known CVEs for this server.
inherited (deps) · grade factor +15
- lowexfiltration combo
sensitive read and network capabilities split across this server's tools
analyzed v0.1.11 · analyzer v18 · 8h ago
skills & prompt files 1
[](https://mcpobservatory.com/servers/npm:extract-design-system/security) Heuristic, inferred signals — false positives (legitimately powerful tools, forks, language ports) are expected. Treat each as "review this", not a verdict. See the ecosystem-wide picture on the security hub, or the fleet security of arvind94.