For example if I had this predicate format string, would that have the same security benefits like prepared statements in SQL offer?
@"name == $LAST_NAME"
I am not sure if this is a plain stupid substitution which still allows bad "SQL" injection to core data, or if this is just as good as prepared statements known from modern db technologies?