SQL Injection flaws via ODATA
I was reading through the below link:
This link quotes the below:
Qs. What is benefit of XOData compared to XSJS?
In HANA XSOData, there is a OData framework which provide many functionalities and we only need to provide details like data source, association etc. This is very helpful for developers as coding effort is almost zero. OData framework also takes care of security aspects like SQL injection, XSRF etc.
While in XSJS, we need to code everything our own. This results into more coding effort. We also need to take care of security aspects, performance etc.
Since this not an official SAP website, I would like some confirmation on whether the XSODATA indeed offers protection against SQL Injection flaws.
Let me know.