So I have flashed and rooted (superSU) lineageOS 14.1 thats running android 7.1.2 on my phone and now I read that this will trip safetynet and won't allow things like netflix, banking apps or pokemon go - I tried to install netflix and it worked, tried pokemon go and after granting GPS via privacy guard it worked too.

But still it seems that if I would now flash Xposed (which I didn't find a good build for 7.1.2 yet anyway) that it would actually then start tripping those protections and that I should go with "systemless root" via magisk.

How does magisk compare to superSU? I loved root some years ago because of xprivacy, adfree etc. which are actually modifying system files as far as I know and I would like to go as "extreme" as denying camera usage to apps, but not making them crash, so just like xprivacy has fake IMEI I would like to show just a black image served to the app, I remember there was an xposed module doing that, but how far can magisk compare there?

And most importantly is there a way to just hide superSU and xposed from all those detections?