Can we use PostrgreSQL's row-level-security to enable arbitrary query execution security in secure multi-tenant web applications?
No, this is handled using schemas, ownership and roles (users). Using RLS does not impact leaking data between tenants. This allows us to give out SQL accounts that can run arbitrary queries without leaking data between tenants.