Fix GO-S2114 security issue

See https://deepsource.io/directory/analyzers/go/issues/GO-S2114
2022-09-26 22:33:42 -04:00
parent a7a0e23956
commit 2a3cd08f20
2 changed files with 8 additions and 1 deletions
@@ -45,7 +45,12 @@ var startTime = time.Now()
 func (s *Server) Run(addr string) error {
 	s.MountRouter("WebUI", consts.URLPathUI, s.frontendAssetsHandler())
 	log.Info("Navidrome server is ready!", "address", addr, "startupTime", time.Since(startTime))
-	return http.ListenAndServe(addr, s.router)
+	server := &http.Server{
+		Addr:              addr,
+		ReadHeaderTimeout: consts.ServerReadHeaderTimeout,
+	}
+
+	return server.ListenAndServe()
 }

 func (s *Server) initRoutes() {