No matter what you do, you're running that code on the client application, so it would then fall back on relying on code obfuscation unless I'm missing something.