It might be worth checking with Safe API that the address is in fact an owner of the safe and that the signature threshold is 1. Otherwise, log a warning.
E.g. https://safe-transaction-sepolia.safe.global/api/v1/safes/0x7fa8e8264985C7525Fc50F98aC1A9b3765405489/