restore: add back files lost during PR #42 revert

[rzp-slash]

Summary

After merging the revert of PR #42 (via PR #44), the following 33 files were still missing from master:

• .gitignore, .editorconfig, .cursorignore, .semgrepignore
• .github/dependabot.yml, .github/pull_request_template.md
• README.md, LICENSE, config.php.sample, index.html, version.txt
• razorpay-php/ — README.md, composer.json, composer.lock, doc.md
• razorpay-php/libs/Requests-1.6.1/ — docs, CHANGELOG, LICENSE, package config, cacert

All files restored from the reference state at branch remove-genesis-yml-1756795822.

After merging this PR, master will fully match the pre-PR-#42 file state.

🤖 Generated with Vyom (Claude Code)

[semgrep-code-razorpay]

Critical severity vulnerability introduced by a package you're using:
Line 10 lists a dependency (rmccue/requests) with a known Critical severity vulnerability. Fixing requires upgrading or replacing the dependency.

ℹ️ Why this matters

Affected versions of rmccue/requests are vulnerable to Deserialization of Untrusted Data. The vulnerability arises from unsafe deserialization in the Requests library. By prepending a plus sign to integer values in the serialized data, an attacker can bypass input validation, causing untrusted data to be unserialized. This improper handling of maliciously crafted payloads could lead to arbitrary code execution.

References: GHSA, CVE

To resolve this comment:
Upgrade this dependency to at least version 1.8.0 at razorpay-php/composer.lock.

💬 Ignore this finding

To ignore this, reply with:

• /fp <comment> for false positive
• /ar <comment> for acceptable risk
• /other <comment> for all other reasons

_{You can view more details on this finding in the Semgrep AppSec Platform here.}