I don't see how you can compromise. If you're just a little dynamic, then you still need to bring in a software interpreter to process the page (this is a point in the article). You also immediately lose the security of static files. To get the benefit of static files, you have to go all in -- otherwise, you might as well just be using a CMS that caches.
I highly doubt a little script written in Haskell and comprehensively
tested with quickcheck lacks security like a full blown PHP/mySQL
stack. Likewise, a litle super-optimized C filter is probably more
efficient than a PHP interpreter, even with cache. If I'm wrong, it's
because the cgi mechanism is as inefficient and insecure as a full
dynamic framework.
