How to integrate ByteHide Shield with .NET projects?

Install the ByteHide.Shield.Integration NuGet package, configure your project token, and build your project. Protection applies automatically during MSBuild compilation.

Which .NET frameworks are supported by Shield?

Shield supports .NET Framework 4.0+, .NET Core 2.0+, .NET 5-8+, .NET Standard, Xamarin, MAUI, Unity, Blazor, ASP.NET, WPF, and WinRT.

How to configure Shield protection settings?

Configure Shield through MSBuild properties, environment variables, or the bytehide.json configuration file. Set protection levels, exclusions, and runtime options.

How to troubleshoot Shield integration issues?

Enable verbose logging, check build output for error messages, verify project token configuration, and ensure compatible .NET version and MSBuild tools.

How to exclude specific assemblies from protection?

Use the ExcludeAssemblies MSBuild property or add exclusion rules in bytehide.json configuration file to skip protection for specific assemblies or namespaces.

How to verify Shield protection was applied?

Check MSBuild output for Shield processing messages, examine protected assembly metadata, or use reflection tools to verify obfuscation was applied.

How to configure Shield for Unity projects?

Install Shield Unity package, configure project token in Unity settings, enable IL2CPP backend, and ensure compatible Unity version (2019.4+).

How to set up Shield in CI/CD pipelines?

Set project token as environment variable, ensure NuGet package restore, configure MSBuild parameters, and handle licensing for build agents.

CI/CD Integration

Shield runs as part of your standard Gradle build, so integrating it into CI/CD pipelines requires only adding the project token as a secret and ensuring internet connectivity during builds.

Prerequisites

Shield configured in your project (see Gradle Setup)
Project token stored as a CI/CD secret (never hardcode it in your repository)
Internet access during the build (Shield validates the license with ByteHide cloud)

GitHub Actions

YAML

# .github/workflows/release.yml
name: Release Build

on:
  push:
    branches: [main]

jobs:
  build:
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v4

      - name: Set up JDK 17
        uses: actions/setup-java@v4
        with:
          java-version: '17'
          distribution: 'temurin'

      - name: Setup Gradle
        uses: gradle/actions/setup-gradle@v3

      - name: Build Release APK
        env:
          SHIELD_PROJECT_TOKEN: ${{ secrets.SHIELD_PROJECT_TOKEN }}
        run: ./gradlew assembleRelease

      - name: Upload APK
        uses: actions/upload-artifact@v4
        with:
          name: release-apk
          path: app/build/outputs/apk/release/*.apk

# .github/workflows/release.yml
name: Release Build

on:
  push:
    branches: [main]

jobs:
  build:
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v4

      - name: Set up JDK 17
        uses: actions/setup-java@v4
        with:
          java-version: '17'
          distribution: 'temurin'

      - name: Setup Gradle
        uses: gradle/actions/setup-gradle@v3

      - name: Build Release APK
        env:
          SHIELD_PROJECT_TOKEN: ${{ secrets.SHIELD_PROJECT_TOKEN }}
        run: ./gradlew assembleRelease

      - name: Upload APK
        uses: actions/upload-artifact@v4
        with:
          name: release-apk
          path: app/build/outputs/apk/release/*.apk

Add SHIELD_PROJECT_TOKEN in Settings → Secrets and variables → Actions → New repository secret.

GitLab CI

YAML

# .gitlab-ci.yml
stages:
  - build

build-release:
  stage: build
  image: openjdk:17-jdk
  variables:
    SHIELD_PROJECT_TOKEN: $SHIELD_PROJECT_TOKEN
  before_script:
    - export GRADLE_USER_HOME=$(pwd)/.gradle
  script:
    - ./gradlew assembleRelease
  artifacts:
    paths:
      - app/build/outputs/apk/release/*.apk
  cache:
    paths:
      - .gradle/

# .gitlab-ci.yml
stages:
  - build

build-release:
  stage: build
  image: openjdk:17-jdk
  variables:
    SHIELD_PROJECT_TOKEN: $SHIELD_PROJECT_TOKEN
  before_script:
    - export GRADLE_USER_HOME=$(pwd)/.gradle
  script:
    - ./gradlew assembleRelease
  artifacts:
    paths:
      - app/build/outputs/apk/release/*.apk
  cache:
    paths:
      - .gradle/

Add SHIELD_PROJECT_TOKEN in Settings → CI/CD → Variables.

Bitrise

Add a Script step before your Android Build step:

Bash

envman add --key SHIELD_PROJECT_TOKEN --value "$SHIELD_PROJECT_TOKEN"

envman add --key SHIELD_PROJECT_TOKEN --value "$SHIELD_PROJECT_TOKEN"

Add SHIELD_PROJECT_TOKEN as a secret in Workflow → Secrets.

Token Configuration

In your build.gradle, reference the token from the environment:

Groovy

shield {
    projectToken = System.getenv('SHIELD_PROJECT_TOKEN')
}

shield {
    projectToken = System.getenv('SHIELD_PROJECT_TOKEN')
}

This pattern works in all CI/CD systems. The token is never committed to the repository.

Caching

Shield does not produce cacheable intermediate artifacts. However, caching the Gradle wrapper and dependencies speeds up builds significantly:

GitHub Actions

YAML

- name: Setup Gradle
  uses: gradle/actions/setup-gradle@v3

- name: Setup Gradle
  uses: gradle/actions/setup-gradle@v3

The gradle/actions/setup-gradle action handles caching automatically.

GitLab CI

YAML

cache:
  paths:
    - .gradle/

cache:
  paths:
    - .gradle/

Build Artifacts

After a successful build with Shield, the protected APK or AAB is in the standard output directory:

Build Type	Output Path
APK	`app/build/outputs/apk/release/`
AAB	`app/build/outputs/bundle/release/`

The mapping file is also generated and uploaded to the ByteHide Cloud Panel automatically for stack trace deobfuscation.