Outdated Authentication (MD5) and Permissive Network Access

[vibhatha]

The PostgreSQL configuration currently uses md5 for authentication, which is considered outdated and less secure than scram-sha-256. Additionally, pg_hba.conf is configured to allow connections from 0.0.0.0/0, which is overly permissive.

Location:

• deployment/choreo/development/docker/postgres/Dockerfile:44

Recommendation:

1. Switch authentication method to scram-sha-256.
2. Restrict network access to the specific network range of the application instead of allowing all IPs.