Protect releases in some way.

When creating releases on a private repo they cannot be seen. Obviously hazel has access to the token so it can (this is necaserry to ship the updates) but anyway with the link can go ahead and download a release (from the hazel deployment).
Is there any way to protect this?