From e6888036d801c6d8ed5b0d990841d719f50a33b9 Mon Sep 17 00:00:00 2001
From: Shrikant Sharat <shrikantsharat.k@gmail.com>
Date: Thu, 25 Apr 2013 11:55:07 +0530
Subject: [PATCH] Added note on checking a plugin source before adding.

---
 README.mkd | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/README.mkd b/README.mkd
index b0fd789..b678d4c 100644
--- a/README.mkd
+++ b/README.mkd
@@ -552,6 +552,18 @@ One exception to this rule is that if this plugin is a theme. In which case the
 theme script is just sourced and nothing else is done. Not even adding to
 `$fpath`.
 
+## A note on external zsh plugins
+
+Antigen downloads zsh scripts and sources them, according to your
+specifications. As such, these scripts are capable of doing some *real* damage
+to your system. If you are only downloading scripts from oh-my-zsh and/or
+prezto, you're probably fine, since there is a second level of manual checking
+before a script gets into the framework.
+
+But, if you are adding a script from any other source, please check the source
+code of the plugin to see its not doing anything malicious, before adding it to
+your `.zshrc`.
+
 ## Meta
 
 ### Helping out
-- 
2.0.0