This is not on the priority roadmap.
BUT surely some level of security would be good.
One who needs to do something about it do the following:
Go to the file: /routes/web.php
There you will find some routes like below:
Route::post('/auth/login', 'Auth\LoginController@login')->name('post.login');
Here we need to group this route and add a throttle middleware to it.
Route::group(['middleware' => 'throttle:5,10'], function () {
Route::post('/auth/login', 'Auth\LoginController@login')->name('post.login');
});
Here throttle:5,10
means: from one IP only 5 calls to the login form submission can be every 10 munites.
Feel free to experiment with 5,10
according to your business needs.