From e00d3c9635913811498aeaf7d7926e3e0a2a1bfe Mon Sep 17 00:00:00 2001
From: sheldy <85823514+sheldygg@users.noreply.github.com>
Date: Thu, 11 May 2023 11:38:56 +0300
Subject: [PATCH] used secrets.compare_digest instead of ==

---
 aiogram/webhook/aiohttp_server.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/aiogram/webhook/aiohttp_server.py b/aiogram/webhook/aiohttp_server.py
index 303ff4ce..ea13ba47 100644
--- a/aiogram/webhook/aiohttp_server.py
+++ b/aiogram/webhook/aiohttp_server.py
@@ -224,7 +224,7 @@ class SimpleRequestHandler(BaseRequestHandler):
         self.secret_token = secret_token
 
     def verify_secret(self, telegram_secret_token: str) -> bool:
-        return telegram_secret_token == self.secret_token
+        return secrets.compare_digest(telegram_secret_token, self.secret_token)
 
     async def close(self) -> None:
         """