Bump the server-dependencies group with 3 updates

[dependabot]

Bumps the server-dependencies group with 3 updates: @types/node, bignumber.js and mysql2.

Updates @types/node from 25.9.1 to 25.9.3

Commits

• See full diff in compare view

Updates bignumber.js from 11.1.2 to 11.1.3

Release notes

Sourced from bignumber.js's releases.

v11.1.3

v11.1 adds a few useful improvements around formatting, parsing, rounding, and interoperability.

BigNumber.sum() now returns zero when called with no arguments, which makes patterns like BigNumber.sum(...arr) work cleanly even when the array is empty.

BigNumber.sum(...[]).toString()      // "0"

toBigInt() has been added, so BigNumber values can now be converted directly to native BigInt values.

new BigNumber("123.9").toBigInt(BigNumber.ROUND_DOWN)        // 123n

There is also a new BigNumber.fromFormat() method for parsing formatted strings back into BigNumber values.

const options =  {  prefix: "€",  groupSeparator: ".",  decimalSeparator: "," }
BigNumber.fromFormat("€1.234.567,89", options).toString()      // "1234567.89"

Negative decimal places are now supported by decimalPlaces(), toFixed(), and toFormat(), making it easier to round to tens, hundreds, and thousands etc.

new BigNumber("1234.5").toFormat(-2)      // "1,200"

toFormat() has also been expanded to support minimum and maximum decimal places, and per-call formatting options now fall back to the configured global FORMAT values for anything not explicitly overridden.

new BigNumber("12.3456789").toFormat([2, 5])      // "12.34568"

This release also includes a fix for slow hexadecimal integer base conversion when DECIMAL_PLACES is very large, plus improved TypeScript API test coverage.

Changelog

Sourced from bignumber.js's changelog.

11.1.3

• 05/06/26
• #406 Fix EXPONENTIAL_AT default value documentation.

Commits

• cda702b v11.1.3
• ca2755e #406: Correct EXPONENTIAL_AT default value documentation
• See full diff in compare view

Updates mysql2 from 3.22.4 to 3.22.5

Release notes

Sourced from mysql2's releases.

v3.22.5

3.22.5 (2026-06-06)

Bug Fixes

• keep 00:00:00 time for TIMESTAMP in binary protocol with dateStrings (#4327) (2af33a1)

Changelog

Sourced from mysql2's changelog.

3.22.5 (2026-06-06)

Bug Fixes

• keep 00:00:00 time for TIMESTAMP in binary protocol with dateStrings (#4327) (2af33a1)

Commits

• 14a479b chore(master): release 3.22.5 (#4328)
• 2af33a1 fix: keep 00:00:00 time for TIMESTAMP in binary protocol with dateStrings (#4...
• f3ce399 docs: add Cursor Cloud development environment instructions
• b895afe build(deps-dev): bump rollup in the dev-dependencies group (#4326)
• b8131c5 build(deps-dev): bump the dev-dependencies group with 5 updates (#4322)
• 63a8803 build(deps): bump the react group across 1 directory with 2 updates (#4323)
• 188a342 build(deps-dev): bump tsx (#4324)
• 8fc97ba build(deps): bump @​easyops-cn/docusaurus-search-local in /website (#4325)
• dd1fc93 build(deps-dev): bump eslint-plugin-prettier (#4318)
• 3fbadbd build(deps): bump postcss from 8.5.6 to 8.5.15 in /website (#4320)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions