How this command is triggered — by the user, by Claude, or both
Slash command
/pci-dss:assessThe summary Claude sees in its command listing — used to decide when to auto-load this command
# PCI DSS Assessment Evaluates readiness for PCI DSS v4.0.1 compliance. ## Arguments - `$1` - Assessment type (optional: merchant, service-provider) - `$2` - Merchant level (optional: 1, 2, 3, 4) ## Merchant Levels | Level | Criteria | Validation | |-------|----------|------------| | 1 | >6M transactions/year | Annual ROC by QSA | | 2 | 1-6M transactions/year | Annual SAQ | | 3 | 20K-1M e-commerce transactions | Annual SAQ | | 4 | <20K e-commerce or <1M other | Annual SAQ | ## Service Provider Levels | Level | Criteria | Validation | |-------|----------|------------| | 1 | >300K tran...
Evaluates readiness for PCI DSS v4.0.1 compliance.
$1 - Assessment type (optional: merchant, service-provider)$2 - Merchant level (optional: 1, 2, 3, 4)| Level | Criteria | Validation |
|---|---|---|
| 1 | >6M transactions/year | Annual ROC by QSA |
| 2 | 1-6M transactions/year | Annual SAQ |
| 3 | 20K-1M e-commerce transactions | Annual SAQ |
| 4 | <20K e-commerce or <1M other | Annual SAQ |
| Level | Criteria | Validation |
|---|---|---|
| 1 | >300K transactions/year | Annual ROC by QSA |
| 2 | <300K transactions/year | Annual SAQ-D |
/pci-dss:assess merchant 2
/pci-dss:assess service-provider
/assessCompares a local repository against a topic wiki's research body and the broader market, producing a gap analysis with opportunities and competitive landscape.
/assessAssesses DORA compliance readiness for EU financial entities and ICT providers. Requires scope (full, pillar-specific, entity-type); optional entity classification.
/assessAssesses GLBA compliance readiness for specified scope (full, safeguards, privacy, pretexting) and institution type, producing compliance score and detailed evaluation.
/assessAssesses compliance with NIST 800-53 controls for a specified control family (e.g., AC) or baseline (low, moderate, high), with optional revision (r4 or r5).
/assessAssesses SOC 2 Type I or II audit readiness for specified scope (security, availability, confidentiality, processing integrity, privacy), producing readiness scores, control gaps, evidence requirements, remediation recommendations, and timeline.
/assessAssesses ISMS compliance against ISO 27001:2022 clauses and Annex A controls, producing status reports, gap analysis, Statement of Applicability guidance, and certification readiness.
npx claudepluginhub fianulabs/claude-grc-engineering --plugin pci-dss