Hiding things in the html gives a false sense of security, it does not take a console to discover them.
In this case I look for the divs and I put
display block , you can change the color of the text / background etc ...
Something more elaborate would be to take info and send it to a server with the cors promiscuo for later analysis, go through the DOM and recreate it in a div fixed to see all the classes and contents, etc ...
Give it to execute the snippet and drag the link to the bookmarks bar for future uses. (eye that visually breaks the entire layout).
<div style="display:none">no me veeen</div>
This is a basic example, a more professional attacker would arm a browser extension.
So my advice is ... rethink the security scheme.