Recipes
Opinionated, end-to-end walkthroughs for common javascript-obfuscator integration problems. Each recipe focuses on how to combine options to achieve a specific outcome rather than documenting individual flags.
Pick the recipe that matches the problem you're trying to solve. More recipes will be added over time - if you've hit an integration scenario that isn't covered here, let us know and we'll write it up.
In this section
Best Practices
What to protect, what to leave alone, and what obfuscation cannot do for you.
Host-side Template Substitution
Inject server-rendered values into VM-obfuscated JavaScript using reservedNames and reservedStrings.
Hiding Function Names from LLM Analysis
Why VM-obfuscated code can leak meaningful function names to an LLM, and how an IIFE wrap removes the leak.
Diagnosing VM Runtime Errors
Step-by-step checklist for VM runtime errors like "Invalid array length", separating target/self-defending misconfiguration from real bugs.
Avoiding Identifier Collisions
Why bundling multiple VM-obfuscated files can throw "Identifier already declared" at parse time, and how to fix it with random or hexadecimal identifiers.