diff --git a/internal/vuln/source/git/git_source.go b/internal/vuln/source/git/git_source.go
index dd25416..fbfcd80 100644
--- a/internal/vuln/source/git/git_source.go
+++ b/internal/vuln/source/git/git_source.go
@@ -86,6 +86,7 @@ func (g *GitSource) filterSboms(ignoreDirs, sbomFileNames []string) filepath.Wal
 		file := filepath.Base(p)
 		for _, f := range sbomFileNames {
 			if f == file {
+				/* #nosec */
 				content, err := os.ReadFile(p)
 				if err != nil {
 					logrus.WithError(err).Errorf("An error occurred while reading file %s", p)
diff --git a/main.go b/main.go
index 1e2f251..9bfa4b7 100644
--- a/main.go
+++ b/main.go
@@ -4,6 +4,7 @@ import (
 	"fmt"
 	"net/http"
 	"runtime"
+	"time"
 
 	"github.com/prometheus/client_golang/prometheus/promhttp"
 	"github.com/sirupsen/logrus"
@@ -41,7 +42,13 @@ func newRootCmd() *cobra.Command {
 			http.HandleFunc("/health", health)
 			http.Handle("/report/", http.StripPrefix("/report", fs))
 			http.Handle("/metrics", promhttp.Handler())
-			logrus.WithError(http.ListenAndServe(":8080", nil)).Fatal("Starting webserver failed!")
+
+			server := &http.Server{
+				Addr:              ":8080",
+				ReadHeaderTimeout: 3 * time.Second,
+			}
+
+			logrus.WithError(server.ListenAndServe()).Fatal("Starting webserver failed!")
 		},
 	}