Update defender-for-container-registries-cicd.md

kunchawla · web-flow · commit dc1cfc88757c · 2022-03-08T14:47:20.000-08:00
diff --git a/articles/defender-for-cloud/defender-for-container-registries-cicd.md b/articles/defender-for-cloud/defender-for-container-registries-cicd.md
@@ -89,7 +89,7 @@ To enable vulnerability scans of images in your GitHub workflows:
         subscription-token: ${{ secrets.AZ_SUBSCRIPTION_TOKEN }} 
     ```
 
-1. Run the workflow that will push the image to the selected container registry. Once the image is pushed into the registry, a scan of the registry runs and you can view the CI/CD scan results along with the registry scan results within Microsoft Defender for Cloud.
+1. Run the workflow that will push the image to the selected container registry. Once the image is pushed into the registry, a scan of the registry runs and you can view the CI/CD scan results along with the registry scan results within Microsoft Defender for Cloud. Running the above yaml file will result in an instance of [AquaSecurity's Trivy](https://github.com/aquasecurity/trivy) being installed in your build system. Trivy is licensed under the Apache 2.0 License, and has dependencies on datafeeds, many of which contain their own terms of use.
 
 1. [View CI/CD scan results](#view-cicd-scan-results).
 
