OpenClaw: BlueBubbles beta plugin webhook auth hardening (remove passwordless fallback)
BlueBubbles webhook auth in the optional beta iMessage plugin allowed a passwordless fallback path. In some reverse-proxy/local routing setups, this could allow unauthenticated webhook events.