Strings are not compile time encrypted

The strings aren't compile-time encrypted, they're just baked into the *.dll rather than the *.exe.

[Reproducable with strings from SysInternals](https://learn.microsoft.com/en-us/sysinternals/downloads/strings).

`C:\Users\[User]\Downloads>strings.exe "[Path]\SecureStringNAOT\SecureStringNAOT\SecureStringNAOT\bin\Release\net7.0\SecureStringNAOT.dll" > out.txt`

Shows the raw strings:
![Image](https://github.com/user-attachments/assets/e19689b5-649c-44fc-85e9-c293af88d612)

While the *.exe doesn't show the strings:

![Image](https://github.com/user-attachments/assets/83321a4a-a2f4-43f9-8a4f-b14817b3a52c)

This means if you try to make a NativeAOT single-published file, the string is still in the executable.

I tried under both .net 7,8,9 with all the same result.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Strings are not compile time encrypted #1

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Strings are not compile time encrypted #1

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions