chore(deps): bump the npm_and_yarn group across 1 directory with 3 updates

[dependabot]

Bumps the npm_and_yarn group with 3 updates in the /server directory: ai, @langchain/community and file-type.

Updates ai from 4.3.16 to 5.0.52

Commits

• 63d5f66 Version Packages (#8895)
• 930399b Backport: fix(ai): download files when intermediate file cannot be downloaded...
• 7ca78f1 Backport: feat(provider/gateway): Add new Qwen models to Gateway model string...
• 1cfc209 Backport: feat(provider/openai): OpenAILanguageModelOptions type (#8858)
• 347b7ec ci: rename v5.0 branch to release-v*
• 85909a9 Backport: chore(ai): update test message (#8875)
• c56822d Backport: fix(ai): update uiMessageChunkSchema to satisfy the `UIMessageChu...
• 1461adf Backport: chore(examples): remove redundant OpenAI reasoning examples (#8871)
• 6bd07df Version Packages (#8853)
• a45d61a ci(release): remove incorrect changeset bump for @ai-sdk/baseten
• Additional commits viewable in compare view

Updates @langchain/community from 0.3.59 to 1.1.25

Release notes

Sourced from @​langchain/community's releases.

@​langchain/community@​1.1.25

Patch Changes

• Updated dependencies [478652c, 3d35eb1, bbbfea1, 52e501b]:
  • @​langchain/openai@​1.3.1
  • @​langchain/classic@​1.0.25
  • @​langchain/core@​1.1.36

@​langchain/community@​1.1.24

Patch Changes

• #10425 792d573 Thanks @​pawel-twardziak! - fix(community): auto-detect VL model endpoint and add apiUrl override for ChatAlibabaTongyi

• #10004 a40ddc7 Thanks @​aditya-gg04! - fix/community-better-sqlite3-node24-support

• #10298 aad77ab Thanks @​pawel-twardziak! - fix(community): Add multimodal content support to Bedrock Anthropic formatter

• #10399 1edc658 Thanks @​pawel-twardziak! - add missing AWS inference profile region prefixes (au, jp, global)

• #10413 7a3774a Thanks @​shivamtiwari3! - fix(community): update PPTXLoader to use officeparser v6 API (fixes #10168)

• Updated dependencies [6db417b, af9bbd3, d69dfcc]:

  • @​langchain/core@​1.1.33
  • @​langchain/openai@​1.3.0
  • @​langchain/classic@​1.0.24

@​langchain/community@​1.1.23

Patch Changes

• #10304 7560180 Thanks @​MunemHashmi! - fix(community): use generous default max_length for Milvus metadata VarChar fields

• #10253 07b8619 Thanks @​pawel-twardziak! - fix(community): switch JiraProjectLoader to POST+JSON and propagate API errors

• #10303 46fc5d8 Thanks @​mitchell-fox! - feat(community): add jql and maxTotal params to JiraProjectLoader

• #10051 e86ac89 Thanks @​FilipZmijewski! - fix(community): valid params check for ChatWatsonx by IBM (#70)

• Updated dependencies [26488b5, aacbe87, ca826f6, a602c42, db7d017]:

  • @​langchain/core@​1.1.32
  • @​langchain/openai@​1.2.13
  • @​langchain/classic@​1.0.23

@​langchain/community@​1.1.22

Patch Changes

• Updated dependencies [96c630d, a8b9ccc, a1f22bb, 3682a8d]:
  • @​langchain/core@​1.1.30
  • @​langchain/openai@​1.2.12
  • @​langchain/classic@​1.0.22

... (truncated)

Commits

• d2a0c2d chore: version packages (#10508)
• bbbfea1 fix(core): fix _mergeLists id-only fallback and SystemMessage.concat lc_kwarg...
• 478652c fix(openai): detect DeepSeek context overflow errors as ContextOverfl… (#10481)
• 3d35eb1 fix(langchain): add "aws" alias to MODEL_PROVIDER_CONFIG for Bedrock hub prom...
• 52e501b fix(openai): guard JSON.parse in streaming json_schema when text is empty (#1...
• ae4122f Align Zod Importation For 'libs/langchain/src/agents/nodes/utils.ts' (#10258)
• 443253b chore: version packages (#10469)
• 005d4a1 chore(deps-dev): bump fast-xml-parser from 5.5.6 to 5.5.7 (#10473)
• 63b7268 fix(@​langchain/google) Duplicate function call (#10493)
• 75e9d56 fix: support structured output (providerStrategy) for Google Gemini models in...
• Additional commits viewable in compare view

Updates file-type from 20.5.0 to 22.0.0

Release notes

Sourced from file-type's releases.

v22.0.0

Breaking

• Requires Node.js 22

• Dropped Node.js stream.Readable support from fileTypeFromStream() and fileTypeStream()

  • These now only accept a web ReadableStream. Migrate with Readable.toWeb():

  // Before
  import fs from 'node:fs';
  fileTypeFromStream(fs.createReadStream('file.mp4'));
  // After
  import fs from 'node:fs';
  import {Readable} from 'node:stream';
  fileTypeFromStream(Readable.toWeb(fs.createReadStream('file.mp4')));

• Sub-exports (e.g. file-type/core) have been removed. Import everything from file-type directly.

• The ReadableStreamWithFileType type has been removed. Use AnyWebReadableByteStreamWithFileType instead.

• Several MIME types have been corrected or normalized:

  Type	Old MIME	New MIME
  lz	application/x-lzip	application/lzip
  lnk	application/x.ms.shortcut	application/x-ms-shortcut
  Apple Alias	application/x.apple.alias	application/x-ft-apple.alias
  fbx	application/x.autodesk.fbx	application/x-ft-fbx
  Draco	application/vnd.google.draco	application/x-ft-draco

  MIME subtypes prefixed with x-ft- are custom types defined by this package (not IANA-registered).

Improvements

• Added detection for Apple iWork files: .key (Keynote), .pages (Pages), .numbers (Numbers)

Fixes

• Fixed LibreOffice OOXML files being incorrectly detected as ZIP when reading from streams

---

sindresorhus/file-type@v21.3.4...v22.0.0

v21.3.4

• Harden parser more aec20a0

---

sindresorhus/file-type@v21.3.3...v21.3.4

... (truncated)

Commits

• 2c54d06 22.0.0
• 0ba6e0b Tweaks
• 0e679c7 Remove sub-exports
• 7079af7 Tweaks
• ec77458 Add support for iWork files (.key, .pages, .numbers)
• d4a975c Fix LibreOffice OOXML files detected as ZIP in streams
• 5de64e2 Normalize MIME types we invented with x-ft- prefix
• 7a60fa9 Require Node.js 22
• 6409e17 Drop Node.js Readable stream support
• 296e37c Refactor to smaller files
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.