Due to project needs, I did some research on UNIAPP's js confusion.
Confusion tutorial:
https://uniapp.dcloud.net.cn/tutorial/app-sec-confusion.html
Follow the tutorial configuration to package the official package for obfuscation and
download the official package. Change ipa to .zip and unzip it to obtain HBuilder.app.
Right-click to display the package contents.
Get the obfuscated key
Comparison of two obfuscation keys obtained by packaging and obfuscating the same file at different times and the results:
As a comparison, when it is not encrypted normally, the js file is encoded in plain text into the app-service.js project file.