secure comparison of api keys (safer against timing attacks)

src/Dependencies.py

+import secrets
+
 from fastapi import Security, HTTPException
 from fastapi.security import APIKeyHeader
 from starlette.status import HTTP_403_FORBIDDEN
@@ -18,5 +20,5 @@ API_KEY_HEADER = APIKeyHeader(name='apiKey')
 
 async def check_api_key(apiKey: str = Security(API_KEY_HEADER)):
     from main import API_KEY
-    if apiKey != API_KEY:
+    if not secrets.compare_digest(API_KEY, apiKey):
         raise HTTPException(status_code=HTTP_403_FORBIDDEN, detail='apiKey invalid')