fix: resolve E2E test failures and API runtime issues for Docker dev environment

- Fix DI issues: circular MCP module dependency, EventBus type import,
  SearchModule provider, CacheService metric counters placement
- Fix Express 5 readonly req.query in SanitizeInputMiddleware
- Fix Typesense client lazy initialization (getter instead of constructor)
- Fix MinIO bucket init error handling (non-fatal on 403)
- Fix missing class-validator decorators on bigint DTO fields (priceVND, amountVND)
- Fix subscription plan 404 (was returning 500 for invalid tier)
- Disable CSRF and raise rate limits in test environment
- Update E2E tests to match actual API response shapes
- Update CI workflow with Redis, Typesense, MinIO services and env vars

All 101 API E2E tests now pass against Docker dev environment.

Co-Authored-By: Paperclip <noreply@paperclip.ing>

e2e/api/auth-agent-profile.spec.ts

@@ -5,9 +5,13 @@ test.describe('GET /auth/profile/agent', () => {
     const res = await authedRequest.get('/auth/profile/agent');
 
     expect(res.status()).toBe(200);
-    const body = await res.json();
-    // Regular user may not have an agent — null is valid
-    expect([null, expect.objectContaining({})]).toContainEqual(body);
+    const text = await res.text();
+    // Regular user may not have an agent — null returns empty body
+    if (text) {
+      const body = JSON.parse(text);
+      expect(body).toBeTruthy();
+    }
+    // Empty body (null) is also valid
   });
 
   test('rejects unauthenticated requests', async ({ request }) => {