Minor updates

IEvangelist · IEvangelist · commit 795313d1ff78 · 2020-03-18T13:49:42.000-05:00
diff --git a/articles/cognitive-services/cognitive-services-security.md b/articles/cognitive-services/cognitive-services-security.md
@@ -33,11 +33,14 @@ For more information on authentication with subscription keys, access tokens and
 
 ## Environment variables and application configuration
 
-Environment variables are name-value pairs, stored within a specific environment. An alternative to using hardcoded values for sensitive data, is to use environment variables. Hardcoded values are insecure and should be avoided.
+Environment variables are name-value pairs, stored within a specific environment. A more secure alternative to using hardcoded values for sensitive data, is to use environment variables. Hardcoded values are insecure and should be avoided.
 
 > [!CAUTION]
 > Do **not** use hardcoded values for sensitive data, doing so is a major security vulnerability.
 
+> [!NOTE]
+> While environment variables are stored in plain text, they are isolated to an environment. If an environment is compromised, so too are the variables with the environment.
+
 ### Set environment variable
 
 To set environment variables, use one the following commands - where the `ENVIRONMENT_VARIABLE_KEY` is the named key and `value` is the value stored in the environment variable.
