Allow external spam check service to allowlist / exempt users
Currently, we combine the results of the Akismet service and the external spam check service. If one fails, the object is treated as spam.
We need a way for the external spam check service to take precedence and ignore the Akismet verdict.
See the thread in !64343 (comment 607552148) for context.