Most endpoints in the Google Threat Intelligence API return a response in JSON format. Unless otherwise specified, a successful request's response returns a 200 HTTP status code and has the following format:
{
"data": <response data>
}
<response data>
is usually an object or a list of objects, but that's not always the case. An example of this is the /files/upload_url endpoint, which returns a URL. Refer to each endpoint's documentation to learn more about its return data structure.