You are updating your Cloud Build pipeline to follow best practices. The current steps are:

1. Pull source code from a repository
2. Build a container image
3. Push the image to Artifact Registry

You need to introduce a vulnerability scanning step for the built container image and make the scan results accessible to your Google Cloud deployment pipeline, while minimizing impact on other teams' workflows. What is the recommended approach?