A Senior Developer working mostly with PHP and JavaScript, with a bit of Python thrown in for good measure, all on Linux. My tooling is simple, it's GitLab and JetBrains where possible.
It's the use of EF you should be focusing on. That way you'll be spreading accepted and trusted methods. By giving people "simpler" options, it encourages people to use bad practices, and lower the overall security of web applications. Always focus and aim for the right way to do things, not the quickest ways. Security should always be done right and to best practice.
I'd love to see a follow up explaining how to protect against SQL injection using EF, and encouraging standard, secure practices.
Yes, but there are several methods to make it more protective. if you use EF like me, nobody can inject queries. but in other methods, it's possible.
It's the use of EF you should be focusing on. That way you'll be spreading accepted and trusted methods. By giving people "simpler" options, it encourages people to use bad practices, and lower the overall security of web applications. Always focus and aim for the right way to do things, not the quickest ways. Security should always be done right and to best practice.
I'd love to see a follow up explaining how to protect against SQL injection using EF, and encouraging standard, secure practices.
OK, I will post it