I already know the process of protecting the source code for on-premise use by utilizing runtime packages. However, my question pertains to safeguarding my source code from appsource extensions. I am aware that signing the app using a code signing certificate and employing resource exposure policies are viable options. Nevertheless, it is still possible for the app file to be extracted, and the source code accessed using tools like WinRAR or Zip. Can anyone suggest additional measures I might be overlooking apart from these?