Hide Model namespace in ModelNotFoundException class in production mode.

[abdrzakoxa]

Description:

I just want to suggest improvement in ModelNotFoundException class, because when the app is in production any one can send http request for non exist record and the app will response this:

{
"message": "No query results for model [App\\Models\\User] 1"
}

So the (developer or hacker) can understand how your app was developed and structure of your models ... and this is bad.
it's best to keep my app secure.

This message is good when app is in local env and this message the normal user can't understand that namespace ...

Steps To Reproduce:

api.php

Route::get('/user/{user}', static function (\App\Models\User $user) {
return 'good';
});

use POSTMAN or INSOMNIA

and send http request for non exists user for example: user/9999

[taylorotwell]

No plans to change this. Unclear how knowing your namespace structure is a security risk.

[taylorotwell]

You could also send any response you wanted in your own exception handler.

[abdrzakoxa]

I know i can handle it in my own exception handler, but i think its not good to show namespace in message by default in laravel!

but it's not a big issue just suggest if you like it...

Thanks @taylorotwell for your reaction