Assesses infrastructure and compliance posture for cardholder data environments including network segmentation, access controls, encryption, vulnerability management, and PCI DSS monitoring alignment.
22
Total Checks
3
Delivery Formats
3
Categories
7
Versions
Included
Never included
Quality hardening to 100/100: all 22 checks upgraded with counting/enumeration requirements, numeric thresholds, expanded pass criteria (15+ words), code/path references in remediations, skip criteria, and 7 cross-references. Anti-sycophancy guards added: 7 negative guardrails, 4 quoting checks, 8 measurement-on-pass checks, 100% enumeration coverage. Created golden fixture (14 files) and bare-minimum fixture (4 files). Created 2 test manifests (golden: [85,100]/A, bare-minimum: [0,35]/F, all exact tolerance).
2026-04-02
Added chunked format for browser-based tools
2026-03-01
Improved Step 3: paste URL is now primary submission method
2026-03-01
Hardened curl commands with -sS -L flags for redirect following and error visibility. Added response validation guidance to Step 3.
2026-02-23
Fixed invalid prompt_hash — replaced placeholder/non-hex value with actual SHA-256 digest of prompt content
2026-02-23
Expanded truncated telemetry template to all 22 checks; corrected scoring category counts
2026-02-22
Initial release
2026-02-21
Picked by pack overlap with this audit.
Evaluates shopping cart persistence, item management UX, checkout flow efficiency, form handling, and order clarity across desktop and mobile devices.
Validates product data model integrity, variant/option handling, pricing logic correctness, inventory tracking accuracy, and product discoverability through search and filters.
Validates order state machine transitions, status tracking and history, cancellation and refund flows, notification triggers at each lifecycle stage, and admin order management capabilities.
Evaluates code-level payment implementation security covering Stripe/payment provider SDK usage, client-side tokenization, webhook verification, fraud prevention patterns, and payment error handling.
Validates review collection UX, display patterns, content moderation practices, and schema markup for aggregate ratings to build trust without compromising data integrity.