Not a big issue (because I can work around it easily), but I see no way to use safeApp.webFetch() without first obtaining an appHandle.
I’m just wondering whether we need to require that - so might it be possible to allow webFetch() (with support for safe: protocol) without requiring an appHandle?