Anonymous user can enumerate all users through `/api/v4/users/:id` (#297473) · Issues · GitLab.org / GitLab