diff --git a/docs/core/extensions/resources.md b/docs/core/extensions/resources.md index 3b8f5b3dc0f7f..c186e14d4b9f4 100644 --- a/docs/core/extensions/resources.md +++ b/docs/core/extensions/resources.md @@ -57,6 +57,9 @@ You can then retrieve resources for the current UI culture or for a specific cul - The class, which enables you to retrieve all the items in an XML resource file into memory. +> [!NOTE] +> In general, resource files (.resx and .resources) within .NET are considered part of the application deployment and are assumed to be trustworthy, much like configuration. Components that operate over such files are free to rely on this assumption. You shouldn't process untrustworthy resource files unless you're using an API that's explicitly documented as being safe for use with untrusted data. + ## See also -