Hi, Thanks for the good words :)

it is not a big issue.

For example. think that you have an API like

/company/1

in this case, it is possible that someone can change the company id and get other companies' information. If we use UUID instead of the primary key, it is impossible.

our API will look, like this:

/company/cae6f5a3-377d-4eaa-8d27-3ff12aece93e

I hope it will be clear. Good luck.

if you like my article, could you please follow :)