diff --git a/README.md b/README.md
index 9b9f91a..598cfa4 100644
--- a/README.md
+++ b/README.md
@@ -220,6 +220,8 @@ Aliases: `ovm vr` / `ovm r` / `ovm run`
 
 Run a shell command on selected vaults (using Node.js child_process).
 
+**Disclaimer: Any input containing shell metacharacters may be used to trigger arbitrary command execution, using of this command is at risk of command's caller.**
+
 - _Usage:_ `ovm help vaults run`
 - _See code:_ [src/commands/vaults/run.ts](src/commands/vaults/run.ts)
 
diff --git a/package.json b/package.json
index 18199cf..4c6917a 100644
--- a/package.json
+++ b/package.json
@@ -2,7 +2,7 @@
   "name": "ovm",
   "description": "Obsidian Vaults Manager",
   "type": "commonjs",
-  "version": "0.4.2",
+  "version": "0.4.3",
   "license": "MIT",
   "author": "Masoud Ghorbani",
   "homepage": "https://github.com/msudgh/ovm",
diff --git a/src/commands/vaults/run.ts b/src/commands/vaults/run.ts
index 9b43bcb..ada653f 100644
--- a/src/commands/vaults/run.ts
+++ b/src/commands/vaults/run.ts
@@ -38,7 +38,7 @@ interface ExecuteCustomCommandResult {
 
 export default class Run extends FactoryCommand {
   static readonly aliases = ['r', 'run', 'vr', 'vaults run']
-  static override readonly description = `Run a shell command on selected vaults (using Node.js child_process).`
+  static override readonly description = `Run a shell command on selected vaults (using Node.js child_process).\nDisclaimer: Any input containing shell metacharacters may be used to trigger arbitrary command execution, using of this command is at risk of command's caller.`
   static override readonly examples = [
     '<%= config.bin %> <%= command.id %> --path=/path/to/vaults',
     '<%= config.bin %> <%= command.id %> --path=/path/to/vaults/*/.obsidian --output=json',