I wiped out three days of work with a single command.

The git reset was meant to be simple. But buried in that commit history was a set of granular database role changes, fragile and precise, spanning multiple services. They were gone in seconds. The real problem wasn’t code—it was state. And state has its own rules.

Granular database roles control exactly who can do what, down to the smallest permission. In modern applications, roles don’t live in one place; they’re stitched across tenants, services, and environments. When these roles drift from the intended configuration, security gaps open. When they vanish, whole features break.

The trouble starts when roles are versionless. Code has branches. Roles often don’t. You can’t just checkout a working state if you don’t store it. Many teams try manual migration scripts or keep them in comments. That fails under pressure. Git gives you change history for code. Most teams don’t have the same for database roles.

Resetting granular database roles should be as reliable as reverting a commit. It should be traceable, testable, and instant. Build a system where each role definition is stored as code, versioned, and tested alongside the application. Apply changes in stages, with a way back at every step. Never trust “last known good” without a diff to prove it.

The fastest way to reach that state is to treat database roles as part of your deployable artifact. Changes to roles travel through the same CI/CD pipeline as code. That means no surprise overrides. That means auditors get full visibility. That means a reset is safe—because it’s just a workflow you’ve already practiced.

The path is clear: capture, commit, version, test, reset. Do it right and git reset granular database roles becomes a real, trustworthy capability—not an accident waiting to happen.

You can see this working end-to-end, live in minutes, with hoop.dev.