Scooter is a language for defining defining database schemas, security policies, and migrations over both. Together with the Sidecar verifier, it statically prevents common errors such as incorrect policy refactoring, and leakage due to schema migrations.
Migration unsafe! COUNTEREXAMPLE: Principal: User(1) CAN NOW ACCESS: ...