You're right that that's a risk. One nice thing is that Dendron does recognize the "trusted workspace" setting in VSCode and disables unsafe features like hooks, but once you mark a workspace as safe you're right that you are at risk. In general I think we can make it more clear that you should only add vaults you trust, I'll bring this up internally to see what we can do.