Hi, while reading through your source, I noticed that you were not setting a timeout for reading the client's header.
This is a security vulnerability, since the server would chew on those in indefinitely.
Because these types of errors can be detected via golangci-lint, I added a configuration for it.
If you want, I would add my good documented nix flake as well, since it is useful to get the newest go version.
Feel free to make any changes. I tried to explain each change in the commit messages ^^
Hi, while reading through your source, I noticed that you were not setting a timeout for reading the client's header. This is a security vulnerability, since the server would chew on those in indefinitely.
Because these types of errors can be detected via golangci-lint, I added a configuration for it. If you want, I would add my good documented nix flake as well, since it is useful to get the newest go version.
Feel free to make any changes. I tried to explain each change in the commit messages ^^