diff --git a/solutions/security/endpoint-response-actions.md b/solutions/security/endpoint-response-actions.md
index c4e44cd9b1..da7e63269a 100644
--- a/solutions/security/endpoint-response-actions.md
+++ b/solutions/security/endpoint-response-actions.md
@@ -160,6 +160,10 @@ Required privilege (in {{stack}}) or custom role privilege (in {{serverless-shor
 
 Example: `get-file --path "/full/path/to/file.txt" --comment "Possible malware"`
 
+::::{note}
+The maximum file size that can be retrieved using `get-file` is `104857600` bytes, or 100 MB.
+::::
+
 ::::{tip}
 You can use the [Osquery manager integration](/solutions/security/investigate/osquery.md) to query a host’s operating system and gain insight into its files and directories, then use `get-file` to retrieve specific files.
 ::::