HashiCorp Vault provides centralized storage and management of passwords, API keys, tokens, and other secrets that distributed applications can use to operate securely. Audit logs are critical for investigating potential security issues in Vault. In this post, we explained some common threats to HashiCorp Vault security, such as using root or recovery tokens to access your secrets, disabling audit logging, and elevating permissions assigned to Vault clients. Datadog can help detect these and other threats with automated threat detection and alerting.