[jacobsenscott]

Web developers are making these errors because of the high demand for cheap web devs churned out of "learn to code!" bootcamps coupled with the fact that the people writing the checks don't understand security.

Also, while basic SQL injection issues are "fixed" if you are an experienced dev, CVEs about SQI in libraries meant to protect you from SQI are common. No doubt there are lots of zero day SQI exploits for every SQL library out there.

[FLUX-YOU]

>Web developers are making these errors because of the high demand for cheap web devs churned out of "learn to code!" bootcamps coupled with the fact that the people writing the checks don't understand security.

Cheap developers with no senior oversight and code review? No [automated] security testing to catch the basics?

You're getting what you deserve if this is the only level of talent and organization you want to put on task.

[lifeisstillgood]

Thank you - dunno why I just needed that said out loud - I shall stop worrying about how to compete for or educate such people - thank you.

That just was the right words at the right time :-)

Cheers