diff --git a/helm-toolkit/Chart.yaml b/helm-toolkit/Chart.yaml
index 4f10b0b713..8dfefaa53d 100644
--- a/helm-toolkit/Chart.yaml
+++ b/helm-toolkit/Chart.yaml
@@ -15,7 +15,7 @@ apiVersion: v1
 appVersion: v1.0.0
 description: OpenStack-Helm Helm-Toolkit
 name: helm-toolkit
-version: 0.2.18
+version: 0.2.19
 home: https://docs.openstack.org/openstack-helm
 icon: https://www.openstack.org/themes/openstack/images/project-mascots/OpenStack-Helm/OpenStack_Project_OpenStackHelm_vertical.png
 sources:
diff --git a/helm-toolkit/templates/scripts/_db-pg-init.sh.tpl b/helm-toolkit/templates/scripts/_db-pg-init.sh.tpl
index 93cea2516b..4d7dfaa378 100644
--- a/helm-toolkit/templates/scripts/_db-pg-init.sh.tpl
+++ b/helm-toolkit/templates/scripts/_db-pg-init.sh.tpl
@@ -63,4 +63,7 @@ pgsql_superuser_cmd "SELECT * FROM pg_roles WHERE rolname = '$USER_DB_USER';" &&
 
 #give permissions to user
 pgsql_superuser_cmd "GRANT ALL PRIVILEGES ON DATABASE $USER_DB_NAME to $USER_DB_USER;"
+
+#revoke all privileges from PUBLIC role
+pgsql_superuser_cmd "REVOKE ALL ON DATABASE $USER_DB_NAME FROM PUBLIC;"
 {{- end }}
diff --git a/releasenotes/notes/helm-toolkit.yaml b/releasenotes/notes/helm-toolkit.yaml
index c4189d5d7c..7e9f998f5b 100644
--- a/releasenotes/notes/helm-toolkit.yaml
+++ b/releasenotes/notes/helm-toolkit.yaml
@@ -25,4 +25,5 @@ helm-toolkit:
   - 0.2.16 Add manual mode to the created backup file name
   - 0.2.17 Update db backup/restore retry for sending to remote
   - 0.2.18 Make Rabbit-init job more robust
+  - 0.2.19 Revoke all privileges for PUBLIC role in postgres dbs
 ...