请勿在公开 Issue 中发布敏感漏洞细节。
如果仓库已启用 GitHub 私密漏洞报告,请优先使用该功能。报告中请包含受影响版本、复现步骤和预期影响。
Release 文件目前尚未进行代码签名。每个 Release 都包含 SHA256SUMS.txt,请在运行安装器前进行校验:
Get-FileHash -Algorithm SHA256 .\ThreeFingerDragInstaller.exe将结果与同一 GitHub Release 中的校验值进行比较。
ThreeFingerDrag 只在本地处理 HID 触摸报告,不会上传触摸数据。诊断日志仅保存在所选安装目录中。
Do not publish sensitive vulnerability details in a public issue.
Use GitHub private vulnerability reporting when it is enabled for this repository. Include the affected version, reproduction steps, and expected impact.
Release assets are currently unsigned. Every Release includes SHA256SUMS.txt. Verify the installer before running it:
Get-FileHash -Algorithm SHA256 .\ThreeFingerDragInstaller.exeCompare the result with the checksum attached to the same GitHub Release.
ThreeFingerDrag processes HID touch reports locally and does not upload touch data. Diagnostic logs remain in the selected installation directory.