9 comments

[ 1.6 ms ] story [ 32.1 ms ] thread
(comment deleted)
It’s not exposed, it’s how web stuff works
Wait until you find out about "View source".

This is front-end code, that gets deliberately sent to the browser. With enough work, someone can deobfuscate such code manually.

Honestly, I think including source maps for your frontend code should be the standard. Maybe web apps will get better if people can actually start studying existing frontend sourcemaps to learn good patterns which are being used in production by companies with lots of experienced engineers. Tons of people love to complaint about terrible web apps, but finding high quality web app examples to study and learn from is actually really difficult! Let's not pretend that the trivial todo-apps are where you're gonna go to learn anything about how a real-world app is organized.

I think this title is misleading, it makes it seem like more than just the unobfuscated code has been exposed.

> Remember: Always disable sourcemaps in production!

I wish I could downvote this comment from the README.

Minification to reduce bandwidth is noble. But to obfuscate? Why?