Recently, I ran into a problem, InvokeObjectPostAlterHook was implemented for sepgsql,
sepgsql use it to determine whether to check permissions during certain operations.
But InvokeObjectPostAlterHook doesn't handle all of the alter's behavior, at least the table is not controlled. e.g., ALTER TABLE... ENABLE/DISABLE ROW LEVEL SECURITY,ALTER TABLE ... DISABLE TRIGGER, GRANT and REVOKE and so on.
Whether InvokeObjectPostAlterHook is not fully controlled? it's a bug?