You are maintaining a governed analytics pipeline where access is controlled through user groups, permission tables, and row-level security rules. A change to a group membership or policy can expose the wrong rows or hide data from approved users. You need a repeatable way to validate those changes before they reach analysts and dashboards.
What is your approach to validating row-level security after changes are made to user groups or permissions?