Azure Activity: Hunting Query Documentation Enhancement for Custom Script Extensions

What Changed

Enhanced documentation for the Rare Custom Script Extension hunting query, adding clarification about protected settings behavior and removing formatting inconsistencies.

Documentation Improvements

Added explanatory note about protected settings encryption: when fileUris and commandToExecute are configured under Protected Settings, their values appear masked in AzureActivity logs by design
Clarified that execution details must be reviewed from Guest VM logs rather than AzureActivity when protected settings are used
Included reference link to Microsoft documentation
Fixed minor formatting issues in description text

Affected Files

Solutions/Azure Activity/Hunting Queries/Rare_Custom_Script_Extension.yaml
(packaging artefacts: 3.0.4.zip, ReleaseNotes.md, createUiDefinition.json, mainTemplate.json)

What Changed#

Documentation Improvements#

Affected Files#

What Changed

Documentation Improvements

Affected Files