Merge pull request #13566 from Azure/v-kasghosh/issue_number/13288

Updated the Description for VScodeExtensionofanUser Hunting Queries

Author: v-atulyadav

Hunting Queries/DeviceProcess/VScodeExtensionofanUser.yaml

@@ -1,8 +1,10 @@
 id: 75830932-794e-4a18-b62f-cc2a010080b5 
 name: List all the VScode Extensions which are installed on a user system
 description: |
-  'Detects potentially malicious Visual Studio Code (VSCode) extensions installed on a users system, which threat actors might use to control devices and exfiltrate personal information.
-    Ref: https://blog.checkpoint.com/securing-the-cloud/malicious-vscode-extensions-with-more-than-45k-downloads-steal-pii-and-enable-backdoors/'
+  'Detects observed Visual Studio Code (VS Code) extension installation activity on a user's system within the query time range.
+   Note: This query does not return a complete per-user inventory of installed extensions and may miss extensions installed outside the telemetry window or via unsupported installation methods.
+   Ref: https://blog.checkpoint.com/securing-the-cloud/malicious-vscode-extensions-with-more-than-45k-downloads-steal-pii-and-enable-backdoors/'
+   
 requiredDataConnectors:
   - connectorId: MicrosoftThreatProtection
     dataTypes:
@@ -33,7 +35,7 @@ entityMappings:
     fieldMappings:
       - identifier: Name
         columnName: AccountName
-version: 1.0.1
+version: 1.0.2
 metadata:
     source:
         kind: Community