If your security model requires every engineer, every microservice, every agent, every job, and every future developer to remember the correct access-control filter every time, that's not a security model. PostgreSQL RLS exists specifically to eliminate that class of failure.