So the change log for vaults is a great first step. May I encourage you to go a step further and to provide a log for anytime a password is decrypted or viewed or otherwise accessed?
This will be critical for us in a Teams environment to know what passwords we may have to change following the departure from our company of any individual who potentially had access to a password vault without necessarily having to change every item within that vault.
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided