Bug fix.

Author: xOS

cmd/dashboard/controller/common_page.go

@@ -1229,7 +1229,7 @@ func (cp *commonPage) ws(c *gin.Context) {
 	log.Printf("WebSocket连接建立: %s", connID)
 
 	// 使用Context来统一控制此连接所有Goroutine的生命周期
-	ctx, cancel := context.WithCancel(c.Request.Context())
+	ctx, cancel := context.WithCancel(c.Request.Context()) // #nosec G118 -- cancel is deferred below
 
 	// defer确保在函数退出时，无论任何原因，都能调用cancel()来清理所有goroutine
 	defer func() {

cmd/dashboard/controller/oauth2.go

@@ -46,7 +46,7 @@ func (oa *oauth2controller) getCommonOauth2Config(c *gin.Context) *oauth2.Config
 			ClientID:     singleton.Conf.Oauth2.ClientID,
 			ClientSecret: singleton.Conf.Oauth2.ClientSecret,
 			Scopes:       []string{},
-			Endpoint: oauth2.Endpoint{
+			Endpoint: oauth2.Endpoint{ // #nosec G101 -- OAuth2 endpoint URLs, not credentials
 				AuthURL:  "https://gitee.com/oauth/authorize",
 				TokenURL: "https://gitee.com/oauth/token",
 			},
@@ -65,7 +65,7 @@ func (oa *oauth2controller) getCommonOauth2Config(c *gin.Context) *oauth2.Config
 			ClientID:     singleton.Conf.Oauth2.ClientID,
 			ClientSecret: singleton.Conf.Oauth2.ClientSecret,
 			Scopes:       []string{"read_user", "read_api"},
-			Endpoint: oauth2.Endpoint{
+			Endpoint: oauth2.Endpoint{ // #nosec G101 -- OAuth2 endpoint URLs, not credentials
 				AuthURL:  "https://jihulab.com/oauth/authorize",
 				TokenURL: "https://jihulab.com/oauth/token",
 			},

cmd/dashboard/main.go

@@ -132,6 +132,9 @@ func main() {
 
 	singleton.InitLocalizer()
 
+	// 初始化 GeoIP 数据库（在 RPC 服务启动前完成）
+	singleton.InitGeoIP()
+
 	// 初始化Goroutine池，防止内存泄漏
 	singleton.InitGoroutinePools()
 

db/migration.go

@@ -536,7 +536,7 @@ func (m *Migration) migrateServers() error {
 		if err := validateID(progress.LastProcessed); err != nil {
 			return fmt.Errorf("invalid LastProcessed ID: %w", err)
 		}
-		query += fmt.Sprintf(" AND id > %s", progress.LastProcessed)
+		query += fmt.Sprintf(" AND id > %s", progress.LastProcessed) // #nosec G202 -- validated by validateID
 	}
 	query += " ORDER BY id"
 
@@ -1202,7 +1202,7 @@ func (m *Migration) migrateMonitorHistories() error {
 				}
 				query += fmt.Sprintf(" LIMIT %d", batchSize)
 			} else if m.config.BatchSize > 0 {
-				query += fmt.Sprintf(" LIMIT %d", m.config.BatchSize)
+				query += fmt.Sprintf(" LIMIT %d", m.config.BatchSize) // #nosec G202 -- BatchSize is a typed int, not user input
 			}
 		} else {
 			// 如果不支持恢复，直接退出
@@ -1574,7 +1574,7 @@ func (m *Migration) migrateTransfers() error {
 			}
 			query = fmt.Sprintf("SELECT * FROM transfers WHERE id > %s ORDER BY id", lastID)
 			if m.config.BatchSize > 0 {
-				query += fmt.Sprintf(" LIMIT %d", m.config.BatchSize)
+				query += fmt.Sprintf(" LIMIT %d", m.config.BatchSize) // #nosec G202 -- BatchSize is a typed int, not user input
 			}
 		} else {
 			// 如果不支持恢复，直接退出

service/rpc/server.go

@@ -747,7 +747,7 @@ func (s *ServerHandler) ReportSystemInfo(c context.Context, r *pb.Host) (*pb.Rec
 					host.IP, len(providers))
 				for _, provider := range providers {
 					go func(provider *ddns.Provider) {
-						provider.UpdateDomain(context.Background())
+						provider.UpdateDomain(c) // #nosec G118 -- use request context for DDNS update
 					}(provider)
 				}
 			} else {

service/singleton/singleton.go

@@ -239,12 +239,6 @@ func LoadSingleton() {
 		}
 	}()
 
-	// 初始化 GeoIP 数据库
-	log.Println("正在初始化 GeoIP 数据库...")
-	if err := geoip.Init(Conf.GeoIPDB); err != nil {
-		log.Printf("GeoIP 数据库初始化失败: %v", err)
-	}
-
 	// 加载通知服务
 	log.Println("正在加载通知服务...")
 	func() {
@@ -451,6 +445,14 @@ func LoadSingleton() {
 	validateAndFixDataIntegrity()
 }
 
+// InitGeoIP 初始化 GeoIP 数据库
+func InitGeoIP() {
+	log.Println("正在初始化 GeoIP 数据库...")
+	if err := geoip.Init(Conf.GeoIPDB); err != nil {
+		log.Printf("GeoIP 数据库初始化失败: %v", err)
+	}
+}
+
 // InitConfigFromPath 从给出的文件路径中加载配置
 func InitConfigFromPath(path string) {
 	Conf = &model.Config{}