Hi everyone. Would my

google-service.json

being exposed when someone is doing reverse-engineer?

1. 😶 2. not the file directly, but the parts of it (such as the API keys matching your package ID) that get embedded in your app will be exposed when reverse-engineering. you should assume that everything that is built into your app is effectively public.