Too Long; Didn't Read
As of July 13th, 2022, there are 135 security flaws reported to the CVE database for Postgres. Without proper configuration and maintenance, Postgres can be exploitable. There are 8 essential measures you can take to protect your Postgres server from attack. Encrypt values that don't need decryption, use hash-based column encryption. Only use one-way encryption for values that have you have to compare for a match, like passwords. Test "base backups" configuration and recoverability by using the pgBackRest tool.