HashiCorp's HCP Terraform has added granular API access for audit trails, eliminating the need to rely on organization permissions to the audit trails endpoint. This new feature enables organization owners to generate a dedicated API key for least-privilege access to audit trails. The read-only permission to the HCP Terraform audit trails endpoint allows organization administrators to review actions performed by members of their organization, including details such as who performed the action, what the action was, and when it was performed. This improvement simplifies and enhances privilege management within organizations by adhering to the principle of least privilege access and incorporating token expiration for complete control over the token's lifecycle.