npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@selling-partner-api/sdk

v1.0.0

Published

Amazon Selling Partner API JavaScript client/SDK with full type coverage.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

hexrwhexrw

Keywords

Readme

Selling Partner API SDK (@selling-partner-api/sdk)

A fully typed TypeScript client for the Amazon Selling Partner API (SP-API). The SDK mirrors Amazon's OpenAPI definitions, manages Login with Amazon (LWA) authentication, and bundles opinionated helpers for high-traffic endpoints such as Reports and Finances.

Server-side only – SP-API credentials must never be exposed in the browser. Target Node.js ≥ 22 or Bun ≥ 1.2.

Fully automated – CI/CD pipeline handles releases, testing, and publishing to npm automatically.

Highlights

  • End-to-end typing – request and response contracts are generated from the official Amazon models.
  • Automated auth – the built-in LwaClient refreshes tokens, supports grantless flows, and caches results.
  • Adaptive throttling – per-path token buckets hydrate lazily and adjust when Amazon returns new rate-limit headers.
  • Convenience clientsReportsClient and FinancesClient encapsulate complex polling and pagination logic.
  • Model alignment – every build synchronises the SDK's dependency on @selling-partner-api/models to the latest workspace version.
  • Release automation – release-please opens separate PRs for the models and SDK packages, keeps changelogs fresh, syncs the SDK dependency to the latest models build, and enables auto-merge once checks pass.

Installation

# npm
npm install @selling-partner-api/sdk

# bun
bun add @selling-partner-api/sdk

When you consume the SDK from npm the @selling-partner-api/models dependency is installed for you. Building from this repository also runs a sync script so the SDK always compiles against the newest models version on main.

Quick start

import { Marketplace, Region, SpApi } from "@selling-partner-api/sdk"

const client = new SpApi({
    clientId: process.env.SP_CLIENT_ID!,
    clientSecret: process.env.SP_CLIENT_SECRET!,
    refreshToken: process.env.SP_REFRESH_TOKEN!,
    region: Region.EU,
})

const { reports } = await client.get("/reports/2021-06-30/reports", {
    params: {
        query: {
            reportTypes: ["GET_MERCHANT_LISTINGS_ALL_DATA"],
            marketplaceIds: [Marketplace.UK],
            pageSize: 10,
        },
    },
})

for (const report of reports ?? []) {
    console.log(report.reportId, report.processingStatus)
}

Convenience helpers

import { FinancesClient, ReportsClient } from "@selling-partner-api/sdk"

const reportsClient = new ReportsClient(client)

// Create and wait for a report
const created = await reportsClient.create({
    reportType: "GET_FLAT_FILE_ALL_ORDERS_DATA_BY_ORDER_DATE_GENERAL",
    marketplaces: [Marketplace.US],
})

const completed = await reportsClient.waitForReport(created.reportId!, {
    intervalMs: 5_000,
    onStatus: (status) => console.info("Report status", status),
})

const document = await reportsClient.download(completed.payload!.reportDocumentId!, { decompress: true })
const rows = document.toRows()
console.log("Downloaded", rows.length, "rows")

// Stream financial events with automatic pagination
const finances = new FinancesClient(client)
for await (const page of finances.iterateFinancialEvents({}, { pageSize: 100, delayMs: 250 })) {
    console.log("Fetched", page.payload?.FinancialEvents?.ShipmentEventList?.length ?? 0, "shipment events")
}

Authentication options

  • Refresh token flow – provide clientId, clientSecret, and refreshToken. The SDK handles refreshes automatically.
  • Grantless flow – provide scopes, omit the refresh token, and the client will request a client-credential token.
  • Pre-fetched token – pass accessToken (and optionally accessTokenExpiresAt) for environments that manage tokens externally. Call SpApi.getLwaClient() if you need lower-level control.

The LwaClient class is exported for bespoke integrations and exposes invalidate() to force a refresh.

Rate limiting & middleware

Every schema path receives a lazily created TokenBucket. Default quotas originate from packages/sdk/src/assets/rate-limits.json. Buckets automatically adjust when Amazon sends new x-amzn-RateLimit-Limit headers and collapse when a 429 is returned.

import { TokenBucket } from "@selling-partner-api/sdk"

client.setRateLimiter("/orders/v0/orders#GET", new TokenBucket({
    bucketSize: 10,
    tokensPerInterval: 2,
    interval: "second",
}))

Need more instrumentation? Pass extra middleware via the middleware option to log requests, sign with SigV4, or hook into retries.

Errors

All thrown errors inherit from SpError and expose a stable code field (AUTH_ERROR, RESPONSE_ERROR, VALIDATION_ERROR, etc.) plus contextual metadata. Use instanceof or the code property to branch logic.

Release guide

  1. Commit your changes as usual. When packages/models or packages/sdk change, release-please refreshes (or opens) a release PR for each component with version bumps, changelog entries, and dependency alignment.
  2. Review the PR(s). Auto-merge is enabled for the release: pending label once CI passes, or you can merge manually.
  3. When the release PR merges, release-please tags @selling-partner-api/models@* and @selling-partner-api/sdk@* (in that order) and publishes GitHub releases.
  4. The publish-models and publish-sdk workflows run from those releases, rebuilding from the tagged commit, verifying metadata, and publishing to npm and GitHub Packages.

If the SDK job waits on a models version, keep an eye on the publish-models workflow—it publishes first, and the SDK run exits once the dependency is available from npm.

Development scripts

# Lint (Biome + TypeScript checks)
bun run lint

# Run the Vitest suite with coverage
bun run test -- --run --coverage

# Build both workspace packages
bun run build

Inside packages/sdk:

# Regenerate rate-limit metadata and compile
bun run build

# Align the SDK dependency with the latest models version
bun run sync:models

# Execute Vitest inside the package
bun run test

License

MIT