Drupal allows for revisions and fine-grained user permissions. Deploy a drupal based site and limit the writer's permissions to drafting and revising articles.
Also your writers are non-technical but you are afraid of sql injections? You can't have everything you know. Dynamic is the way to go. It'll be a nightmare to manage hundreds of static pages.