Merge pull request #89433 from kunchawla/patch-1

Court72 · web-flow · commit de3fec2105c1 · 2022-03-14T09:34:16.000-06:00
Update defender-for-container-registries-cicd.md
diff --git a/articles/defender-for-cloud/defender-for-container-registries-cicd.md b/articles/defender-for-cloud/defender-for-container-registries-cicd.md
@@ -89,7 +89,7 @@ To enable vulnerability scans of images in your GitHub workflows:
         subscription-token: ${{ secrets.AZ_SUBSCRIPTION_TOKEN }} 
     ```
 
-1. Run the workflow that will push the image to the selected container registry. Once the image is pushed into the registry, a scan of the registry runs and you can view the CI/CD scan results along with the registry scan results within Microsoft Defender for Cloud.
+1. Run the workflow that will push the image to the selected container registry. Once the image is pushed into the registry, a scan of the registry runs and you can view the CI/CD scan results along with the registry scan results within Microsoft Defender for Cloud. Running the above YAML file will install an instance of Aqua Security's [Trivy](https://github.com/aquasecurity/trivy) in your build system. Trivy is licensed under the Apache 2.0 License and has dependencies on data feeds, many of which contain their own terms of use.
 
 1. [View CI/CD scan results](#view-cicd-scan-results).
 
