From 507217844b15ce6690fff146826422a9bd608780 Mon Sep 17 00:00:00 2001
From: Ralph Slooten <axllent@gmail.com>
Date: Fri, 25 Jul 2025 20:39:13 +1200
Subject: [PATCH] Security: Add ReadHeaderTimeout to Prometheus metrics server

---
 internal/prometheus/metrics.go | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/internal/prometheus/metrics.go b/internal/prometheus/metrics.go
index c2cdbd6..07d4f8c 100644
--- a/internal/prometheus/metrics.go
+++ b/internal/prometheus/metrics.go
@@ -165,8 +165,9 @@ func StartSeparateServer() {
 
 	// Create a dedicated server instance
 	server := &http.Server{
-		Addr:    config.PrometheusListen,
-		Handler: mux,
+		Addr:              config.PrometheusListen,
+		Handler:           mux,
+		ReadHeaderTimeout: 5 * time.Second,
 	}
 
 	// Start HTTP server