Serializer

[mambax7]

No description provided.

[Copilot]

Pull Request Overview

This PR introduces a secure serialization toolkit for XOOPS/XMF that provides safe serialization/deserialization with multiple format support. The implementation focuses on security by default, explicit format handling, and backward compatibility with legacy data.

• Introduces a comprehensive Serializer class with JSON, PHP, and legacy format support
• Adds format detection and automatic migration capabilities
• Provides debug mode for performance monitoring and migration tracking

Reviewed Changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 3 comments.

File	Description
src/Security/Serializer.php	Core serializer class with secure deserialization, format detection, and debug capabilities
src/Security/Format.php	Format constants for different serialization types
src/Security/SerializableTrait.php	Trait for easy integration with existing classes and migration support
src/Security/example.md	Documentation and usage examples for the serialization toolkit

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[Copilot]

Missing strict_types declaration. Add declare(strict_types=1); after the opening PHP tag for consistency with other files in the PR.

Suggested change

	<?php
	<?php
	declare(strict_types=1);

[Copilot]

Remove commented-out code. This creates unnecessary clutter and the same logic is implemented below with debug support.

Suggested change

	// self::validateInput($payload);
	// self::validateSecurity($payload, empty($allowedClasses));
	//
	// return self::unserialize($payload, $allowedClasses);

[Copilot]

Remove unused imports. These exception classes are not used in this constants-only class.

Suggested change

	use JsonException;
	use RuntimeException;
	use UnexpectedValueException;