Secondly, I’m interested in this engine, I’ve seen that uses the Lua programming language, and that’s a really good news.
But I was wondering, what about reverse engineering? I have found that other search engines like Love2D using Lua (and being an interpreted language) maintains the code in plain text when the game is released.
For example, if you port the game for Android, you can decompile the apk and see all code in lua (plain text).
Would that be the same with Defold? Or instead obfuscating (or encrypt) the code?
Other measures or practices security would you recommend me?
If someone is motivated and knowledgeable enough they could get into your game data, but this is also the case with every single game engine tool out there. There is file security built in which makes it more difficult for the average person to get into the data. But you shouldn’t publish sensitive data in your game bundles and expect them to stay secret.
Agreed- even Unity 3D’s core language (although there is some cross compiling and whatnot depending on the platform) is C#; C# is a language which is quite easily decompiled and reverse engineered by software such as dotPeek. For an additional layer of security you could try obfuscating your code, although I’m not sure how that would be done in the current Editor.
You can unzip an apk and take a look inside yourself. You’ll find a game.darc file in the assets folder. This file contains all of the game assets and Lua scripts, but as you can see if you try to look inside it’s all compressed data.
