If you're building anything that touches credit card data, this walks you through the 12 core PCI DSS requirements and shows you how to actually implement them. The code examples cover tokenization patterns with Stripe, encryption for data at rest using AES-256-GCM, and what you absolutely cannot store (CVV, PIN, full track data). It's organized around compliance levels based on transaction volume, so you know whether you need a full ROC or just an SAQ. The access control and sanitization examples are practical starting points, though you'll still need a QSA for real certification. Good reference when scoping your cardholder data environment or explaining to your team why they can't just log everything.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill pci-compliance