Hello! I was wondering if clients are able to access and exploit scripts that are in the workspace?
To be specific, the script is inside of a part, while that part is inside a model, and that model is inside the workspace.
If it’s a server script, as opposed to a local script (which wouldn’t run in workspace anyway), then it should be hidden, or at the least the contents of it should be hidden (i.e. the code)
TBH, It probably isn’t replicated at all, so you don’t need to do anything to hide it (as long as you use a server script, instead of a local script or module script)
TL;DR
They won’t be able to access it, and you don’t need to do anything to hide it.
If you want to know what I’m talking about, basically:
If something is replicated from the server to the client, then it means that the client “sees it” (even if it isn’t normally visible to the player, and the player needs to use exploits to view it.)