[snarfed](Other thoughts are welcome too! The one main attack vector I see in this threat model is, someone fabricates a silo reponse and makes Bridgy send it to a site, and that site trusts it more than usual because it's from brid.gy. Relatively low risk. I expect there are others though...?)
