@zapier/zapier-sdk 0.25.0 → 0.25.2

package/CHANGELOG.md

@@ -1,5 +1,17 @@
 # @zapier/zapier-sdk
 
+## 0.25.2
+
+### Patch Changes
+
+- 642713b: Update README with more detail and more attention on fetch.
+
+## 0.25.1
+
+### Patch Changes
+
+- aacaf22: Improved `fetch` to automatically set the correct `Content-Type` header based on the request body type. `FormData`, `Blob`, and other binary bodies are now handled correctly instead of being misidentified as JSON.
+
 ## 0.25.0
 
 ### Minor Changes

package/README.md

@@ -2,6 +2,8 @@
 
 ## Table of Contents
 
+- [Closed Beta](#closed-beta)
+- [Documentation](#documentation)
 - [Installation](#installation)
 - [Quick Start](#quick-start)
 - [Available Functions](#available-functions)
@@ -31,10 +33,26 @@
 - [HTTP Requests](#http-requests)
   - [`fetch`](#fetch)
 
+## Closed Beta
+
+At the time of publishing this package, the Zapier SDK requires an invite for most features. If you want to try it out, let us know at the following page!
+
+https://sdk-beta.zapier.app/signup
+
+## Documentation
+
+The official documentation will soon be available at:
+
+https://docs.zapier.com/sdk
+
+While the dust settles, that documentation may be incomplete, and this README may have additional documentation.
+
+Agents are sometimes blocked from viewing docs on npm, so you may want to provide them a link to the official docs or copy the docs here into a prompt.
+
 ## Installation
 
 ```bash
-# If starting a new project:
+# If you're starting a new project:
 cd your-project-dir
 npm init -y
 npx tsc --init
@@ -46,20 +64,52 @@ npm install -D @zapier/zapier-sdk-cli @types/node typescript
 
 ## Quick Start
 
+Assuming you've installed the CLI package into your project (see instructions above), you (or an agent) can start using it right away. This is useful for introspecting actions, authentications, etc. that you want to use in code, but you can also use it to directly use integrations.
+
 ```bash
-# Authenticates through your browser, automatically handling token management
+# See all available commands
+npx zapier-sdk --help
+
+# Login to Zapier.
 npx zapier-sdk login
 
-# Generate TypeScript types for actions and fields of any apps you want to use.
-npx zapier-sdk add slack google-sheets
+# Search from thousands of supported apps.
+npx zapier-sdk list-apps --search "gmail"
+# The output will show you the valid keys next to the app title like this:
+# 1. Gmail (GoogleMailV2CLIAPI, gmail)
+
+# Run any action for the app, using one of the app keys.
+npx zapier-sdk run-action gmail
+# This will ask you for the type of action you want to run.
+# `search` or `write` are typically great for testing.
+# Note that you usually need an authentication (connection) to the app to run
+# the action. If you don't already have one, you can create a new one at:
+# https://zapier.com/app/assets/connections
+
+# List authentications for an app.
+npx zapier-sdk list-authentications gmail
+# Or only list the ones you own.
+npx zapier-sdk list-authentications gmail --owner me
+# Or just grab the first one.
+npx zapier-sdk find-first-authentication gmail --owner me
+
+# Make any API request to an app using your authentication (connection).
+npx zapier-sdk fetch "https://gmail.googleapis.com/gmail/v1/users/me/labels" --authentication-id 123
+```
 
-# The names of apps are there slugs if available, otherwise internal keys. If
-# you don't know the slug or key, just use `list-apps` search to find it.
-zapier-sdk list-apps --search "google sheets"
+The following is optional, but if you want to call our actions from code, it can be helpful to install TypeScript types for those actions. You can also just use `fetch` to make arbitrary API requests. In that case, you don't really need this, and instead you might need types or a good agent that will look up third party API docs.
 
+```bash
+# Search for apps that you want to use.
+npx zapier-sdk list-apps --search "slack"
+npx zapier-sdk list-apps --search "google sheets"
 # The output will show you the valid keys next to the app title like this:
+# 1. Slack (SlackCLIAPI, slack)
 # 1. Google Sheets (GoogleSheetsV2CLIAPI, google-sheets, google_sheets)
 
+# Generate TypeScript types for actions and fields of any apps you want to use.
+npx zapier-sdk add slack google-sheets
+
 # By default, types will be generated inside your `src` or `lib` folder if you
 # have one or otherwise the root folder. Make sure your `tsconfig.json` file
 # includes the generated type files.
@@ -68,20 +118,20 @@ zapier-sdk list-apps --search "google sheets"
 npx zapier-sdk add slack google-sheets --types-output ./types
 ```
 
+Now let's write some code!
+
 ```typescript
 import { createZapierSdk } from "@zapier/zapier-sdk";
 
 // ######## Initialize Zapier SDK ########
-// Option 1: Running `zapier-sdk login` authenticates through your browser,
-// automatically handling token management.
+// Option 1: Running `zapier-sdk login` authenticates through your browser and
+// stores a token on your local machine. As long as you have the CLI package
+// installed as a development dependency, the SDK will automatically use it.
 const zapier = createZapierSdk();
 
-// Option 2: Manually provide a token.
-// const zapier = createZapierSdk({
-//   credentials: "your_zapier_token_here", // or use ZAPIER_CREDENTIALS env var
-// });
-
-// Option 3: Manually provide a client ID and client secret.
+// Option 2: Provide a client ID and client secret.
+// You can get these by running `zapier-sdk create-client-credentials`.
+// This allows you to run the SDK in a server/serverless environment.
 // const zapier = createZapierSdk({
 //   credentials: {
 //     clientId: "your_client_id_here", // or use ZAPIER_CREDENTIALS_CLIENT_ID env var
@@ -89,6 +139,12 @@ const zapier = createZapierSdk();
 //   },
 // });
 
+// Option 3: Provide a valid Zapier token.
+// This is for partner OAuth or internal Zapier use.
+// const zapier = createZapierSdk({
+//   credentials: "your_zapier_token_here", // or use ZAPIER_CREDENTIALS env var
+// });
+
 // ######## Access Apps ########
 // List methods return a promise for a page with {data, nextCursor}.
 const { data: firstPageApps, nextCursor } = await zapier.listApps();
@@ -165,7 +221,8 @@ console.log({
 });
 
 // Option 2: Access actions via the `apps` proxy
-// If you've generated TS types for an app using `zapier-sdk add`, you can access the app's actions like this:
+// If you've generated TS types for an app using `zapier-sdk add`, you can
+// access the app's actions like this:
 
 // await zapier.apps.slack.read.channles({});
 // await zapier.apps.slack.write.send_message({})
@@ -218,6 +275,18 @@ console.log({
 // For example, either of the following are valid:
 // zapier.apps["google-sheets"]
 // zapier.apps.google_sheets
+
+// We have tens of thousands of actions across thousands of apps, but you're
+// still not limited to those. You can make any arbitrary API request to an app
+// using the same authentications with `.fetch`! This returns a response just
+// like a normal `fetch` call in JavaScript.
+const emojiResponse = await zapier.fetch("https://slack.com/api/emoji.list", {
+  authenticationId: myAuths[0].id,
+});
+
+const emojiData = await emojiResponse.json();
+
+console.log(emojiData.emoji);
 ```
 
 ## Available Functions
@@ -808,16 +877,16 @@ Make authenticated HTTP requests to any API through Zapier's Relay service. Pass
 
 **Parameters:**
 
-| Name                       | Type                     | Required | Default | Possible Values                                            | Description                                                                       |
-| -------------------------- | ------------------------ | -------- | ------- | ---------------------------------------------------------- | --------------------------------------------------------------------------------- |
-| `url`                      | `string, custom`         | ✅       | —       | —                                                          | The full URL of the API endpoint to call (proxied through Zapier's Relay service) |
-| `init`                     | `object`                 | ❌       | —       | —                                                          | Request options including method, headers, body, and authentication               |
-| ↳ `method`                 | `string`                 | ❌       | —       | `GET`, `POST`, `PUT`, `DELETE`, `PATCH`, `HEAD`, `OPTIONS` | HTTP method for the request (defaults to GET)                                     |
-| ↳ `headers`                | `object`                 | ❌       | —       | —                                                          | HTTP headers to include in the request                                            |
-| ↳ `body`                   | `string, custom, custom` | ❌       | —       | —                                                          | Request body — JSON strings are auto-detected and Content-Type is set accordingly |
-| ↳ `authenticationId`       | `string, number`         | ❌       | —       | —                                                          | Authentication ID to use for this action                                          |
-| ↳ `callbackUrl`            | `string`                 | ❌       | —       | —                                                          | URL to send async response to (makes request async)                               |
-| ↳ `authenticationTemplate` | `string`                 | ❌       | —       | —                                                          | Optional JSON string authentication template to bypass Notary lookup              |
+| Name                       | Type                             | Required | Default | Possible Values                                            | Description                                                                                         |
+| -------------------------- | -------------------------------- | -------- | ------- | ---------------------------------------------------------- | --------------------------------------------------------------------------------------------------- |
+| `url`                      | `string, custom`                 | ✅       | —       | —                                                          | The full URL of the API endpoint to call (proxied through Zapier's Relay service)                   |
+| `init`                     | `object`                         | ❌       | —       | —                                                          | Request options including method, headers, body, and authentication                                 |
+| ↳ `method`                 | `string`                         | ❌       | —       | `GET`, `POST`, `PUT`, `DELETE`, `PATCH`, `HEAD`, `OPTIONS` | HTTP method for the request (defaults to GET)                                                       |
+| ↳ `headers`                | `object`                         | ❌       | —       | —                                                          | HTTP headers to include in the request                                                              |
+| ↳ `body`                   | `string, custom, custom, record` | ❌       | —       | —                                                          | Request body — plain objects and JSON strings are auto-detected and Content-Type is set accordingly |
+| ↳ `authenticationId`       | `string, number`                 | ❌       | —       | —                                                          | Authentication ID to use for this action                                                            |
+| ↳ `callbackUrl`            | `string`                         | ❌       | —       | —                                                          | URL to send async response to (makes request async)                                                 |
+| ↳ `authenticationTemplate` | `string`                         | ❌       | —       | —                                                          | Optional JSON string authentication template to bypass Notary lookup                                |
 
 **Returns:** `Promise<Response>`
 

package/dist/api/client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/api/client.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EACV,SAAS,EACT,gBAAgB,EAGjB,MAAM,SAAS,CAAC;AA4gBjB,eAAO,MAAM,eAAe,GAAI,SAAS,gBAAgB,KAAG,SAW3D,CAAC"}
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/api/client.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EACV,SAAS,EACT,gBAAgB,EAGjB,MAAM,SAAS,CAAC;AAkgBjB,eAAO,MAAM,eAAe,GAAI,SAAS,gBAAgB,KAAG,SAW3D,CAAC"}

package/dist/api/client.js

@@ -9,6 +9,7 @@ import { createDebugLogger, createDebugFetch } from "./debug";
 import { pollUntilComplete } from "./polling";
 import { resolveAuthToken, invalidateCredentialsToken } from "../auth";
 import { getZapierBaseUrl } from "../utils/url-utils";
+import { isPlainObject } from "../utils/type-guard-utils";
 import { ZapierApiError, ZapierAuthenticationError, ZapierValidationError, ZapierNotFoundError, } from "../types/errors";
 // Configuration for paths
 const pathConfig = {
@@ -27,7 +28,26 @@ class ZapierApiClient {
     constructor(options) {
         this.options = options;
         this.fetch = async (path, init) => {
-            return this.plainFetch(path, init);
+            if (!path.startsWith("/")) {
+                throw new ZapierValidationError(`fetch expects a path starting with '/', got: ${path}`);
+            }
+            if (init?.body && (isPlainObject(init.body) || Array.isArray(init.body))) {
+                init.body = JSON.stringify(init.body);
+            }
+            const { url, pathConfig } = this.buildUrl(path, init?.searchParams);
+            const builtHeaders = await this.buildHeaders(init, pathConfig);
+            const inputHeaders = new Headers(init?.headers ?? {});
+            const mergedHeaders = new Headers();
+            builtHeaders.forEach((value, key) => {
+                mergedHeaders.set(key, value);
+            });
+            inputHeaders.forEach((value, key) => {
+                mergedHeaders.set(key, value);
+            });
+            return await this.options.fetch(url, {
+                ...init,
+                headers: mergedHeaders,
+            });
         };
         this.get = async (path, options = {}) => {
             return this.fetchJson("GET", path, undefined, options);
@@ -43,7 +63,7 @@ class ZapierApiClient {
         };
         this.poll = async (path, options = {}) => {
             return pollUntilComplete({
-                fetchPoll: () => this.plainFetch(path, {
+                fetchPoll: () => this.fetch(path, {
                     method: "GET",
                     searchParams: options.searchParams,
                     authRequired: options.authRequired,
@@ -320,13 +340,13 @@ class ZapierApiClient {
         const wasMissingAuthToken = options.authRequired &&
             (await this.getAuthToken({ requiredScopes: options.requiredScopes })) ==
                 null;
-        const response = await this.plainFetch(path, {
+        const response = await this.fetch(path, {
             ...options,
             method,
             body: data != null ? JSON.stringify(data) : undefined,
             headers,
         });
-        // plainFetch already handled all auth and headers
+        // fetch already handled all auth and headers
         const result = await this.handleResponse({
             response,
             customErrorHandler: options.customErrorHandler,
@@ -342,29 +362,6 @@ class ZapierApiClient {
         }
         return result;
     }
-    // Plain fetch method for API paths (must start with /)
-    async plainFetch(path, fetchOptions) {
-        if (!path.startsWith("/")) {
-            throw new ZapierValidationError(`plainFetch expects a path starting with '/', got: ${path}`);
-        }
-        if (fetchOptions?.body && typeof fetchOptions.body === "object") {
-            fetchOptions.body = JSON.stringify(fetchOptions.body);
-        }
-        const { url, pathConfig } = this.buildUrl(path, fetchOptions?.searchParams);
-        const builtHeaders = await this.buildHeaders(fetchOptions, pathConfig);
-        const inputHeaders = new Headers(fetchOptions?.headers ?? {});
-        const mergedHeaders = new Headers();
-        builtHeaders.forEach((value, key) => {
-            mergedHeaders.set(key, value);
-        });
-        inputHeaders.forEach((value, key) => {
-            mergedHeaders.set(key, value);
-        });
-        return await this.options.fetch(url, {
-            ...fetchOptions,
-            headers: mergedHeaders,
-        });
-    }
 }
 export const createZapierApi = (options) => {
     const { debug = false, fetch: originalFetch = globalThis.fetch } = options;

package/dist/api/client.test.js

@@ -228,4 +228,82 @@ describe("ApiClient", () => {
             expect(mockFetch).toHaveBeenCalledWith("http://localhost:3000/a/b/c/api/v0/sdk/relay/some/path", expect.any(Object));
         });
     });
+    describe("fetch body serialization", () => {
+        beforeEach(() => {
+            mockResolveAuthToken.mockResolvedValue("test-token");
+        });
+        it("should JSON.stringify plain object bodies", async () => {
+            const client = createZapierApi({
+                baseUrl: "http://localhost:3000",
+                credentials: "test-token",
+                debug: false,
+            });
+            const body = { channel: "C123", text: "hello" };
+            await client.fetch("/relay/api.example.com/data", {
+                method: "POST",
+                body: body,
+            });
+            const [, options] = mockFetch.mock.calls[0];
+            expect(options.body).toBe(JSON.stringify(body));
+        });
+        it("should JSON.stringify array bodies", async () => {
+            const client = createZapierApi({
+                baseUrl: "http://localhost:3000",
+                credentials: "test-token",
+                debug: false,
+            });
+            const body = [{ id: 1 }, { id: 2 }];
+            await client.fetch("/relay/api.example.com/data", {
+                method: "POST",
+                body: body,
+            });
+            const [, options] = mockFetch.mock.calls[0];
+            expect(options.body).toBe(JSON.stringify(body));
+        });
+        it("should not stringify FormData bodies", async () => {
+            const client = createZapierApi({
+                baseUrl: "http://localhost:3000",
+                credentials: "test-token",
+                debug: false,
+            });
+            const body = new FormData();
+            body.append("file", "contents");
+            await client.fetch("/relay/api.example.com/upload", {
+                method: "POST",
+                body,
+            });
+            const [, options] = mockFetch.mock.calls[0];
+            expect(options.body).toBe(body);
+        });
+        it("should not stringify Blob bodies", async () => {
+            const client = createZapierApi({
+                baseUrl: "http://localhost:3000",
+                credentials: "test-token",
+                debug: false,
+            });
+            const body = new Blob(["binary data"], {
+                type: "application/octet-stream",
+            });
+            await client.fetch("/relay/api.example.com/upload", {
+                method: "POST",
+                body,
+            });
+            const [, options] = mockFetch.mock.calls[0];
+            expect(options.body).toBe(body);
+        });
+        it("should pass string bodies through unchanged", async () => {
+            const client = createZapierApi({
+                baseUrl: "http://localhost:3000",
+                credentials: "test-token",
+                debug: false,
+            });
+            const body = '{"already": "stringified"}';
+            await client.fetch("/relay/api.example.com/data", {
+                method: "POST",
+                body,
+            });
+            const [, options] = mockFetch.mock.calls[0];
+            expect(options.body).toBe(body);
+        });
+    });
 });

package/dist/index.cjs

@@ -403,9 +403,10 @@ var FetchInitSchema = zod.z.object({
   body: zod.z.union([
     zod.z.string(),
     zod.z.instanceof(FormData),
-    zod.z.instanceof(URLSearchParams)
+    zod.z.instanceof(URLSearchParams),
+    zod.z.record(zod.z.string(), zod.z.unknown())
   ]).optional().describe(
-    "Request body \u2014 JSON strings are auto-detected and Content-Type is set accordingly"
+    "Request body \u2014 plain objects and JSON strings are auto-detected and Content-Type is set accordingly"
   ),
   authenticationId: AuthenticationIdPropertySchema.optional(),
   callbackUrl: zod.z.string().optional().describe("URL to send async response to (makes request async)"),
@@ -430,6 +431,13 @@ function coerceToNumericId(fieldName, value) {
   return numericValue;
 }
 
+// src/utils/type-guard-utils.ts
+function isPlainObject(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const proto = Object.getPrototypeOf(value);
+  return proto === Object.prototype || proto === null;
+}
+
 // src/plugins/fetch/index.ts
 function transformUrlToRelayPath(url) {
   const targetUrl = new URL(url);
@@ -446,6 +454,27 @@ function normalizeHeaders(optionsHeaders) {
   }
   return headers;
 }
+function inferContentType(body) {
+  if (body instanceof URLSearchParams) {
+    return "application/x-www-form-urlencoded; charset=utf-8";
+  }
+  if (typeof body === "string") {
+    const trimmed = body.trimStart();
+    if (!trimmed.startsWith("{") && !trimmed.startsWith("[")) {
+      return void 0;
+    }
+    try {
+      JSON.parse(trimmed);
+      return "application/json; charset=utf-8";
+    } catch {
+      return void 0;
+    }
+  }
+  if (isPlainObject(body) || Array.isArray(body)) {
+    return "application/json; charset=utf-8";
+  }
+  return void 0;
+}
 var fetchPlugin = ({ context }) => {
   return {
     fetch: async function fetch2(url, init) {
@@ -468,10 +497,11 @@ var fetchPlugin = ({ context }) => {
           (k) => k.toLowerCase() === "content-type"
         );
         if (fetchInit.body && !hasContentType) {
-          const bodyStr = typeof fetchInit.body === "string" ? fetchInit.body : JSON.stringify(fetchInit.body);
-          const trimmed = bodyStr.trimStart();
-          if (trimmed.startsWith("{") || trimmed.startsWith("[")) {
-            headers["Content-Type"] = "application/json; charset=utf-8";
+          const inferred = inferContentType(
+            fetchInit.body
+          );
+          if (inferred) {
+            headers["Content-Type"] = inferred;
           }
         }
         if (authenticationId) {
@@ -4188,7 +4218,31 @@ var ZapierApiClient = class {
   constructor(options) {
     this.options = options;
     this.fetch = async (path, init) => {
-      return this.plainFetch(path, init);
+      if (!path.startsWith("/")) {
+        throw new ZapierValidationError(
+          `fetch expects a path starting with '/', got: ${path}`
+        );
+      }
+      if (init?.body && (isPlainObject(init.body) || Array.isArray(init.body))) {
+        init.body = JSON.stringify(init.body);
+      }
+      const { url, pathConfig: pathConfig2 } = this.buildUrl(path, init?.searchParams);
+      const builtHeaders = await this.buildHeaders(
+        init,
+        pathConfig2
+      );
+      const inputHeaders = new Headers(init?.headers ?? {});
+      const mergedHeaders = new Headers();
+      builtHeaders.forEach((value, key) => {
+        mergedHeaders.set(key, value);
+      });
+      inputHeaders.forEach((value, key) => {
+        mergedHeaders.set(key, value);
+      });
+      return await this.options.fetch(url, {
+        ...init,
+        headers: mergedHeaders
+      });
     };
     this.get = async (path, options = {}) => {
       return this.fetchJson("GET", path, void 0, options);
@@ -4204,7 +4258,7 @@ var ZapierApiClient = class {
     };
     this.poll = async (path, options = {}) => {
       return pollUntilComplete({
-        fetchPoll: () => this.plainFetch(path, {
+        fetchPoll: () => this.fetch(path, {
           method: "GET",
           searchParams: options.searchParams,
           authRequired: options.authRequired
@@ -4440,7 +4494,7 @@ var ZapierApiClient = class {
       headers["Content-Type"] = "application/json";
     }
     const wasMissingAuthToken = options.authRequired && await this.getAuthToken({ requiredScopes: options.requiredScopes }) == null;
-    const response = await this.plainFetch(path, {
+    const response = await this.fetch(path, {
       ...options,
       method,
       body: data != null ? JSON.stringify(data) : void 0,
@@ -4462,34 +4516,6 @@ var ZapierApiClient = class {
     }
     return result;
   }
-  // Plain fetch method for API paths (must start with /)
-  async plainFetch(path, fetchOptions) {
-    if (!path.startsWith("/")) {
-      throw new ZapierValidationError(
-        `plainFetch expects a path starting with '/', got: ${path}`
-      );
-    }
-    if (fetchOptions?.body && typeof fetchOptions.body === "object") {
-      fetchOptions.body = JSON.stringify(fetchOptions.body);
-    }
-    const { url, pathConfig: pathConfig2 } = this.buildUrl(path, fetchOptions?.searchParams);
-    const builtHeaders = await this.buildHeaders(
-      fetchOptions,
-      pathConfig2
-    );
-    const inputHeaders = new Headers(fetchOptions?.headers ?? {});
-    const mergedHeaders = new Headers();
-    builtHeaders.forEach((value, key) => {
-      mergedHeaders.set(key, value);
-    });
-    inputHeaders.forEach((value, key) => {
-      mergedHeaders.set(key, value);
-    });
-    return await this.options.fetch(url, {
-      ...fetchOptions,
-      headers: mergedHeaders
-    });
-  }
 };
 var createZapierApi = (options) => {
   const { debug = false, fetch: originalFetch = globalThis.fetch } = options;
@@ -5129,7 +5155,7 @@ function getCpuTime() {
 
 // package.json
 var package_default = {
-  version: "0.25.0"};
+  version: "0.25.2"};
 
 // src/plugins/eventEmission/builders.ts
 function createBaseEvent(context = {}) {

package/dist/index.mjs

@@ -381,9 +381,10 @@ var FetchInitSchema = z.object({
   body: z.union([
     z.string(),
     z.instanceof(FormData),
-    z.instanceof(URLSearchParams)
+    z.instanceof(URLSearchParams),
+    z.record(z.string(), z.unknown())
   ]).optional().describe(
-    "Request body \u2014 JSON strings are auto-detected and Content-Type is set accordingly"
+    "Request body \u2014 plain objects and JSON strings are auto-detected and Content-Type is set accordingly"
   ),
   authenticationId: AuthenticationIdPropertySchema.optional(),
   callbackUrl: z.string().optional().describe("URL to send async response to (makes request async)"),
@@ -408,6 +409,13 @@ function coerceToNumericId(fieldName, value) {
   return numericValue;
 }
 
+// src/utils/type-guard-utils.ts
+function isPlainObject(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const proto = Object.getPrototypeOf(value);
+  return proto === Object.prototype || proto === null;
+}
+
 // src/plugins/fetch/index.ts
 function transformUrlToRelayPath(url) {
   const targetUrl = new URL(url);
@@ -424,6 +432,27 @@ function normalizeHeaders(optionsHeaders) {
   }
   return headers;
 }
+function inferContentType(body) {
+  if (body instanceof URLSearchParams) {
+    return "application/x-www-form-urlencoded; charset=utf-8";
+  }
+  if (typeof body === "string") {
+    const trimmed = body.trimStart();
+    if (!trimmed.startsWith("{") && !trimmed.startsWith("[")) {
+      return void 0;
+    }
+    try {
+      JSON.parse(trimmed);
+      return "application/json; charset=utf-8";
+    } catch {
+      return void 0;
+    }
+  }
+  if (isPlainObject(body) || Array.isArray(body)) {
+    return "application/json; charset=utf-8";
+  }
+  return void 0;
+}
 var fetchPlugin = ({ context }) => {
   return {
     fetch: async function fetch2(url, init) {
@@ -446,10 +475,11 @@ var fetchPlugin = ({ context }) => {
           (k) => k.toLowerCase() === "content-type"
         );
         if (fetchInit.body && !hasContentType) {
-          const bodyStr = typeof fetchInit.body === "string" ? fetchInit.body : JSON.stringify(fetchInit.body);
-          const trimmed = bodyStr.trimStart();
-          if (trimmed.startsWith("{") || trimmed.startsWith("[")) {
-            headers["Content-Type"] = "application/json; charset=utf-8";
+          const inferred = inferContentType(
+            fetchInit.body
+          );
+          if (inferred) {
+            headers["Content-Type"] = inferred;
           }
         }
         if (authenticationId) {
@@ -4166,7 +4196,31 @@ var ZapierApiClient = class {
   constructor(options) {
     this.options = options;
     this.fetch = async (path, init) => {
-      return this.plainFetch(path, init);
+      if (!path.startsWith("/")) {
+        throw new ZapierValidationError(
+          `fetch expects a path starting with '/', got: ${path}`
+        );
+      }
+      if (init?.body && (isPlainObject(init.body) || Array.isArray(init.body))) {
+        init.body = JSON.stringify(init.body);
+      }
+      const { url, pathConfig: pathConfig2 } = this.buildUrl(path, init?.searchParams);
+      const builtHeaders = await this.buildHeaders(
+        init,
+        pathConfig2
+      );
+      const inputHeaders = new Headers(init?.headers ?? {});
+      const mergedHeaders = new Headers();
+      builtHeaders.forEach((value, key) => {
+        mergedHeaders.set(key, value);
+      });
+      inputHeaders.forEach((value, key) => {
+        mergedHeaders.set(key, value);
+      });
+      return await this.options.fetch(url, {
+        ...init,
+        headers: mergedHeaders
+      });
     };
     this.get = async (path, options = {}) => {
       return this.fetchJson("GET", path, void 0, options);
@@ -4182,7 +4236,7 @@ var ZapierApiClient = class {
     };
     this.poll = async (path, options = {}) => {
       return pollUntilComplete({
-        fetchPoll: () => this.plainFetch(path, {
+        fetchPoll: () => this.fetch(path, {
           method: "GET",
           searchParams: options.searchParams,
           authRequired: options.authRequired
@@ -4418,7 +4472,7 @@ var ZapierApiClient = class {
       headers["Content-Type"] = "application/json";
     }
     const wasMissingAuthToken = options.authRequired && await this.getAuthToken({ requiredScopes: options.requiredScopes }) == null;
-    const response = await this.plainFetch(path, {
+    const response = await this.fetch(path, {
       ...options,
       method,
       body: data != null ? JSON.stringify(data) : void 0,
@@ -4440,34 +4494,6 @@ var ZapierApiClient = class {
     }
     return result;
   }
-  // Plain fetch method for API paths (must start with /)
-  async plainFetch(path, fetchOptions) {
-    if (!path.startsWith("/")) {
-      throw new ZapierValidationError(
-        `plainFetch expects a path starting with '/', got: ${path}`
-      );
-    }
-    if (fetchOptions?.body && typeof fetchOptions.body === "object") {
-      fetchOptions.body = JSON.stringify(fetchOptions.body);
-    }
-    const { url, pathConfig: pathConfig2 } = this.buildUrl(path, fetchOptions?.searchParams);
-    const builtHeaders = await this.buildHeaders(
-      fetchOptions,
-      pathConfig2
-    );
-    const inputHeaders = new Headers(fetchOptions?.headers ?? {});
-    const mergedHeaders = new Headers();
-    builtHeaders.forEach((value, key) => {
-      mergedHeaders.set(key, value);
-    });
-    inputHeaders.forEach((value, key) => {
-      mergedHeaders.set(key, value);
-    });
-    return await this.options.fetch(url, {
-      ...fetchOptions,
-      headers: mergedHeaders
-    });
-  }
 };
 var createZapierApi = (options) => {
   const { debug = false, fetch: originalFetch = globalThis.fetch } = options;
@@ -5107,7 +5133,7 @@ function getCpuTime() {
 
 // package.json
 var package_default = {
-  version: "0.25.0"};
+  version: "0.25.2"};
 
 // src/plugins/eventEmission/builders.ts
 function createBaseEvent(context = {}) {

package/dist/plugins/fetch/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/plugins/fetch/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAE3C,OAAO,KAAK,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAC7B,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AAoC7D,MAAM,WAAW,mBAAmB;IAClC,KAAK,EAAE,CACL,GAAG,EAAE,MAAM,GAAG,GAAG,EACjB,IAAI,CAAC,EAAE,WAAW,GAAG;QACnB,gBAAgB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;QACnC,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,sBAAsB,CAAC,EAAE,MAAM,CAAC;QAChC,UAAU,CAAC,EAAE;YAAE,QAAQ,CAAC,EAAE,OAAO,CAAA;SAAE,CAAC;KACrC,KACE,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvB,OAAO,EAAE;QACP,IAAI,EAAE;YACJ,KAAK,EAAE;gBACL,WAAW,EAAE,MAAM,CAAC;gBACpB,QAAQ,EAAE,MAAM,EAAE,CAAC;gBACnB,UAAU,EAAE,MAAM,EAAE,CAAC;gBACrB,UAAU,EAAE,MAAM,CAAC;gBACnB,eAAe,EAAE,KAAK,CAAC;oBAAE,IAAI,EAAE,MAAM,CAAC;oBAAC,MAAM,EAAE,CAAC,CAAC,SAAS,CAAA;iBAAE,CAAC,CAAC;aAC/D,CAAC;SACH,CAAC;KACH,CAAC;CACH;AAED;;;GAGG;AACH,eAAO,MAAM,WAAW,EAAE,MAAM,CAC9B,EAAE,EAAE,sBAAsB;AAC1B,AADI,sBAAsB;AAC1B;IAAE,GAAG,EAAE,SAAS,CAAA;CAAE,GAAG,oBAAoB,EAAE,0CAA0C;AACrF,mBAAmB,CAsHpB,CAAC;AAEF,MAAM,MAAM,sBAAsB,GAAG,WAAW,GAAG;IACjD,gBAAgB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACnC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/plugins/fetch/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAE3C,OAAO,KAAK,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAC7B,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AA6D7D,MAAM,WAAW,mBAAmB;IAClC,KAAK,EAAE,CACL,GAAG,EAAE,MAAM,GAAG,GAAG,EACjB,IAAI,CAAC,EAAE,WAAW,GAAG;QACnB,gBAAgB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;QACnC,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,sBAAsB,CAAC,EAAE,MAAM,CAAC;QAChC,UAAU,CAAC,EAAE;YAAE,QAAQ,CAAC,EAAE,OAAO,CAAA;SAAE,CAAC;KACrC,KACE,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvB,OAAO,EAAE;QACP,IAAI,EAAE;YACJ,KAAK,EAAE;gBACL,WAAW,EAAE,MAAM,CAAC;gBACpB,QAAQ,EAAE,MAAM,EAAE,CAAC;gBACnB,UAAU,EAAE,MAAM,EAAE,CAAC;gBACrB,UAAU,EAAE,MAAM,CAAC;gBACnB,eAAe,EAAE,KAAK,CAAC;oBAAE,IAAI,EAAE,MAAM,CAAC;oBAAC,MAAM,EAAE,CAAC,CAAC,SAAS,CAAA;iBAAE,CAAC,CAAC;aAC/D,CAAC;SACH,CAAC;KACH,CAAC;CACH;AAED;;;GAGG;AACH,eAAO,MAAM,WAAW,EAAE,MAAM,CAC9B,EAAE,EAAE,sBAAsB;AAC1B,AADI,sBAAsB;AAC1B;IAAE,GAAG,EAAE,SAAS,CAAA;CAAE,GAAG,oBAAoB,EAAE,0CAA0C;AACrF,mBAAmB,CAmHpB,CAAC;AAEF,MAAM,MAAM,sBAAsB,GAAG,WAAW,GAAG;IACjD,gBAAgB,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACnC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC,CAAC"}

package/dist/plugins/fetch/index.js

@@ -1,5 +1,6 @@
 import { FetchUrlSchema, FetchInitSchema } from "./schemas";
 import { coerceToNumericId } from "../../utils/id-utils";
+import { isPlainObject } from "../../utils/type-guard-utils";
 /**
  * Transforms full URLs into Relay format: /relay/{domain}/{path}
  */
@@ -25,6 +26,28 @@ function normalizeHeaders(optionsHeaders) {
     }
     return headers;
 }
+function inferContentType(body) {
+    if (body instanceof URLSearchParams) {
+        return "application/x-www-form-urlencoded; charset=utf-8";
+    }
+    if (typeof body === "string") {
+        const trimmed = body.trimStart();
+        if (!trimmed.startsWith("{") && !trimmed.startsWith("[")) {
+            return undefined;
+        }
+        try {
+            JSON.parse(trimmed);
+            return "application/json; charset=utf-8";
+        }
+        catch {
+            return undefined;
+        }
+    }
+    if (isPlainObject(body) || Array.isArray(body)) {
+        return "application/json; charset=utf-8";
+    }
+    return undefined;
+}
 /**
  * Fetch plugin — the primary way to make authenticated HTTP requests through Zapier's Relay service.
  * Mirrors the native fetch(url, init?) signature with additional Zapier-specific options.
@@ -39,15 +62,11 @@ export const fetchPlugin = ({ context }) => {
                 const { authenticationId, callbackUrl, authenticationTemplate, _telemetry, ...fetchInit } = init || {};
                 const relayPath = transformUrlToRelayPath(url);
                 const headers = normalizeHeaders(fetchInit.headers);
-                // Auto-set Content-Type for JSON bodies if not already specified
                 const hasContentType = Object.keys(headers).some((k) => k.toLowerCase() === "content-type");
                 if (fetchInit.body && !hasContentType) {
-                    const bodyStr = typeof fetchInit.body === "string"
-                        ? fetchInit.body
-                        : JSON.stringify(fetchInit.body);
-                    const trimmed = bodyStr.trimStart();
-                    if (trimmed.startsWith("{") || trimmed.startsWith("[")) {
-                        headers["Content-Type"] = "application/json; charset=utf-8";
+                    const inferred = inferContentType(fetchInit.body);
+                    if (inferred) {
+                        headers["Content-Type"] = inferred;
                     }
                 }
                 if (authenticationId) {

package/dist/plugins/fetch/index.test.js

@@ -242,6 +242,99 @@ describe("fetch plugin", () => {
                 authRequired: true,
             });
         });
+        it("should not set Content-Type for FormData bodies", async () => {
+            const sdk = createTestSdk();
+            const body = new FormData();
+            body.append("file", "contents");
+            await sdk.fetch("https://api.example.com/upload", {
+                method: "POST",
+                body,
+            });
+            expect(mockFetch).toHaveBeenCalledWith("/relay/api.example.com/upload", {
+                method: "POST",
+                body,
+                headers: {},
+                authRequired: true,
+            });
+        });
+        it("should set Content-Type for URLSearchParams bodies", async () => {
+            const sdk = createTestSdk();
+            const body = new URLSearchParams({ key: "value", foo: "bar" });
+            await sdk.fetch("https://api.example.com/form", {
+                method: "POST",
+                body,
+            });
+            expect(mockFetch).toHaveBeenCalledWith("/relay/api.example.com/form", {
+                method: "POST",
+                body,
+                headers: {
+                    "Content-Type": "application/x-www-form-urlencoded; charset=utf-8",
+                },
+                authRequired: true,
+            });
+        });
+        it("should not set Content-Type for invalid JSON-like strings", async () => {
+            const sdk = createTestSdk();
+            const body = "{ this is not json";
+            await sdk.fetch("https://api.example.com/data", {
+                method: "POST",
+                body,
+            });
+            expect(mockFetch).toHaveBeenCalledWith("/relay/api.example.com/data", {
+                method: "POST",
+                body,
+                headers: {},
+                authRequired: true,
+            });
+        });
+        it("should auto-set Content-Type for plain object bodies", async () => {
+            const sdk = createTestSdk();
+            const body = { channel: "C0123456789", text: "Hello, world!" };
+            await sdk.fetch("https://api.example.com/data", {
+                method: "POST",
+                body: body,
+            });
+            expect(mockFetch).toHaveBeenCalledWith("/relay/api.example.com/data", {
+                method: "POST",
+                body,
+                headers: {
+                    "Content-Type": "application/json; charset=utf-8",
+                },
+                authRequired: true,
+            });
+        });
+        it("should auto-set Content-Type for plain array bodies", async () => {
+            const sdk = createTestSdk();
+            const body = [{ id: 1 }, { id: 2 }];
+            await sdk.fetch("https://api.example.com/data", {
+                method: "POST",
+                body: body,
+            });
+            expect(mockFetch).toHaveBeenCalledWith("/relay/api.example.com/data", {
+                method: "POST",
+                body,
+                headers: {
+                    "Content-Type": "application/json; charset=utf-8",
+                },
+                authRequired: true,
+            });
+        });
+        it("should not set Content-Type for Blob bodies", async () => {
+            const sdk = createTestSdk();
+            const body = new Blob(["binary data"], {
+                type: "application/octet-stream",
+            });
+            await sdk.fetch("https://api.example.com/upload", {
+                method: "POST",
+                body,
+            });
+            expect(mockFetch).toHaveBeenCalledWith("/relay/api.example.com/upload", {
+                method: "POST",
+                body,
+                headers: {},
+                authRequired: true,
+            });
+        });
     });
     describe("authentication", () => {
         it("should set authRequired to true in API call options", async () => {

package/dist/plugins/fetch/schemas.d.ts

@@ -11,7 +11,7 @@ export declare const FetchInitSchema: z.ZodOptional<z.ZodObject<{
         OPTIONS: "OPTIONS";
     }>>;
     headers: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
-    body: z.ZodOptional<z.ZodUnion<readonly [z.ZodString, z.ZodCustom<FormData, FormData>, z.ZodCustom<URLSearchParams, URLSearchParams>]>>;
+    body: z.ZodOptional<z.ZodUnion<readonly [z.ZodString, z.ZodCustom<FormData, FormData>, z.ZodCustom<URLSearchParams, URLSearchParams>, z.ZodRecord<z.ZodString, z.ZodUnknown>]>>;
     authenticationId: z.ZodOptional<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>>;
     callbackUrl: z.ZodOptional<z.ZodString>;
     authenticationTemplate: z.ZodOptional<z.ZodString>;

package/dist/plugins/fetch/schemas.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../../../src/plugins/fetch/schemas.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAIxB,eAAO,MAAM,cAAc,2DAIxB,CAAC;AAEJ,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;kBAmCzB,CAAC"}
+{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../../../src/plugins/fetch/schemas.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAIxB,eAAO,MAAM,cAAc,2DAIxB,CAAC;AAEJ,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;kBAoCzB,CAAC"}

package/dist/plugins/fetch/schemas.js

@@ -19,9 +19,10 @@ export const FetchInitSchema = z
         z.string(),
         z.instanceof(FormData),
         z.instanceof(URLSearchParams),
+        z.record(z.string(), z.unknown()),
     ])
         .optional()
-        .describe("Request body — JSON strings are auto-detected and Content-Type is set accordingly"),
+        .describe("Request body — plain objects and JSON strings are auto-detected and Content-Type is set accordingly"),
     authenticationId: AuthenticationIdPropertySchema.optional(),
     callbackUrl: z
         .string()

package/dist/utils/type-guard-utils.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Returns true only for plain objects created via `{}`, `new Object()`, or
+ * `Object.create(null)`. Rejects all class instances (FormData, Blob, etc.)
+ * without needing to enumerate them.
+ */
+export declare function isPlainObject(value: unknown): value is Record<string, unknown>;
+//# sourceMappingURL=type-guard-utils.d.ts.map

package/dist/utils/type-guard-utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"type-guard-utils.d.ts","sourceRoot":"","sources":["../../src/utils/type-guard-utils.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,wBAAgB,aAAa,CAC3B,KAAK,EAAE,OAAO,GACb,KAAK,IAAI,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAIlC"}

package/dist/utils/type-guard-utils.js

@@ -0,0 +1,11 @@
+/**
+ * Returns true only for plain objects created via `{}`, `new Object()`, or
+ * `Object.create(null)`. Rejects all class instances (FormData, Blob, etc.)
+ * without needing to enumerate them.
+ */
+export function isPlainObject(value) {
+    if (typeof value !== "object" || value === null)
+        return false;
+    const proto = Object.getPrototypeOf(value);
+    return proto === Object.prototype || proto === null;
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zapier/zapier-sdk",
-  "version": "0.25.0",
+  "version": "0.25.2",
   "description": "Complete Zapier SDK - combines all Zapier SDK packages",
   "main": "dist/index.cjs",
   "module": "dist/index.mjs",