DeviceProcess/VScodeExtensionofanUser.yaml - inaccurate & low fidelity

[dpdug4n]

https://github.com/Azure/Azure-Sentinel/blob/master/Hunting%20Queries/DeviceProcess/VScodeExtensionofanUser.yaml

^ This query is empirically incorrect. It does not capture ALL extensions per user. Maybe do some more in-depth testing or adjust the description to account for the expected gaps in the query. In it's current state, it's misinformation.

[v-kasghosh]

Hi @dpdug4n , Thanks for flagging this issue, we will investigate this issue and get back to you with some updates.
Thanks!