Added note on checking a plugin source before adding.

Shrikant Sharat
1 parent dd62b3331c
Showing 1 changed file with 12 additions and 0 deletions Side-by-side Diff
README.mkd
@@ -552,6 +552,18 @@ One exception to this rule is that if this plugin is a theme. In which case the
 theme script is just sourced and nothing else is done. Not even adding to
 `$fpath`.
  
+## A note on external zsh plugins
+
+Antigen downloads zsh scripts and sources them, according to your
+specifications. As such, these scripts are capable of doing some *real* damage
+to your system. If you are only downloading scripts from oh-my-zsh and/or
+prezto, you're probably fine, since there is a second level of manual checking
+before a script gets into the framework.
+
+But, if you are adding a script from any other source, please check the source
+code of the plugin to see its not doing anything malicious, before adding it to
+your `.zshrc`.
+
 ## Meta
  
 ### Helping out
...	...	@@ -552,6 +552,18 @@ One exception to this rule is that if this plugin is a theme. In which case the
552	552	theme script is just sourced and nothing else is done. Not even adding to
553	553	`$fpath`.
554	554
	555	+## A note on external zsh plugins
	556	+
	557	+Antigen downloads zsh scripts and sources them, according to your
	558	+specifications. As such, these scripts are capable of doing some real damage
	559	+to your system. If you are only downloading scripts from oh-my-zsh and/or
	560	+prezto, you're probably fine, since there is a second level of manual checking
	561	+before a script gets into the framework.
	562	+
	563	+But, if you are adding a script from any other source, please check the source
	564	+code of the plugin to see its not doing anything malicious, before adding it to
	565	+your `.zshrc`.
	566	+
555	567	## Meta
556	568
557	569	### Helping out