docs: Add security warning for Execute Command node (#3665)

Co-authored-by: Justin Ellingwood <justin@n8n.io>
2026-03-27 09:28:43 +07:00 · 2025-09-16 10:55:22 +02:00
parent b3265f8697
commit 2c90bed65c
2 changed files with 5 additions and 0 deletions
--- a/docs/integrations/builtin/core-nodes/n8n-nodes-base.executecommand/index.md
+++ b/docs/integrations/builtin/core-nodes/n8n-nodes-base.executecommand/index.md
@@ -9,6 +9,10 @@ priority: high

 The Execute Command node runs shell commands on the host machine that runs n8n.

+/// warning | Security considerations
+The Execute Command node can introduce significant security risks in environments that operate with untrusted users. Because of this, n8n recommends [disabling](/hosting/securing/blocking-nodes.md#exclude-nodes) it in such setups.
+///
+
 /// note | Which shell runs the command?
 This node executes the command in the default shell of the host machine. For example, `cmd` on Windows and `zsh` on macOS.

--- a/styles/config/vocabularies/default/accept.txt
+++ b/styles/config/vocabularies/default/accept.txt
@@ -263,6 +263,7 @@ Typeform
 [Uu]npublish
 [Uu]nshare
 Untrash
+[Uu]ntrusted
 UpLead
 uProc
 [Uu]psert