Your WHERE clause is not a security boundary (multi-tenant RAG with pgvector + RLS)

TL;DR: app-layer filtering is a single point of failure. Push tenant isolation into Postgres with RLS...

Read Original

Related