Luke Carbis, a two-decade WordPress veteran, plugin author, contributor and member of the Plugin Review Team, joined the Jukebox podcast to discuss the mounting challenges facing the WordPress plugin ecosystem—chiefly discovery, AI-driven growth, ethics and possible reforms for the plugin directory.
The problem: too many plugins, harder discovery
The plugin directory is being flooded with new submissions, a surge driven largely by AI tools that make creating plugins much faster. Although the Plugin Review Team has grown, improved tools and even used AI to reduce review wait times to about a week, the sheer volume of similar plugins makes it hard for genuinely useful projects to stand out. For users, finding the right plugin has become harder. For authors, getting noticed feels increasingly impossible unless a product quickly accumulates active installs.
Current ranking and discoverability
WordPress.org search and listing logic is open source and factors in things like recent reviews, author responsiveness in support forums, keyword relevance and active installs. Active installs are difficult to game and remain a strong ranking signal, but they favor established plugins and create visibility barriers for newcomers. That intensifies the perception of an unfair playing field and encourages some authors to avoid or abandon the official directory.
Practical ideas to improve the ecosystem
Carbis proposed a set of practical, incremental experiments that could improve discoverability, streamline distribution of custom and premium plugins, and preserve user safety without upending the existing directory.
– Connect wordpress.org accounts to sites: Using the Connectors API (introduced in WordPress 7) to let users sign in with their wordpress.org account from within their site would enable personalisation like surfacing favorite plugins directly in the Add Plugins UI.
– Allow curated external repositories per profile: Let users add a list of Git repositories (or other trusted sources) to their wordpress.org profile so those plugins can be installed straight from the Add Plugins screen. This would support custom plugins, private client plugins and alternative marketplaces while keeping the official directory intact. Administrators could still remove or blacklist malicious sources centrally.
– Support premium plugins and built-in licensing/updating: If WordPress handled premium plugin delivery, validation and updates, product teams would spend less time building custom updaters and more on product quality. That would simplify launch paths and help smaller vendors compete.
A commercial marketplace: pros and cons
Carbis floated the idea of a commercial channel on wordpress.org, with a small fee on sales (he suggested roughly 8%: about 3% for payment processing plus 5% “Five for the Future” to fund the Foundation and community work). Money from sales would be earmarked to support WordCamps, contributors and the Plugin Review Team. He acknowledged this would be controversial: introducing commerce to a traditionally free, open directory raises fears about favoritism, commercialization of the project and community fractures. Matt Mullenweg and others have historically opposed monetizing the directory, so any shift would require governance changes and transfer of control to the Foundation.
AI as an agent of change and ethical concerns
AI is more than a technology; it’s reshaping how people think about building and contributing. The WordPress project has an AI plugin model that treats AI as optional, which Carbis approves of. But he’s cautious about leaning too heavily on AI for core contributions, content generation or automated decision-making. There are real ethical and cultural concerns:
– Transparency and trust: Users and contributors need to know when AI has been used and to what extent.
– Generational attitudes: Many younger people, especially some in Gen Z, are skeptical or hostile toward AI, sometimes rejecting it on environmental or ethical grounds. Pushing AI too aggressively risks alienating potential new contributors.
– The human-in-the-loop problem: Relying on voluntary honesty for disclosure invites gaming. If non-AI projects are preferred, some authors may misreport usage.
An AI disclosure proposal
To address transparency, Carbis proposed adding a voluntary AI disclosure field to plugin headers and directory listings. Instead of a binary flag, it would be a graded scale indicating levels of AI involvement (idea generation, autocomplete, code generation with human review, full AI-generated code, etc.). Displaying this metadata alongside reviews, last update date and active installs would help users make informed choices and provide data about how AI usage correlates with plugin quality and maintenance. He admits this approach relies on author honesty but argues it’s a useful first step to gather data and encourage responsible use.
Leadership, urgency and the future of WordPress
Carbis argues WordPress needs clear, active leadership to navigate this moment. With AI disrupting how websites are made and how people contribute, passive governance risks atrophy. He’s sympathetic to a strong vision that embraces change, even if it’s imperfect or polarizing, because inaction could erode WordPress’ relevance. At the same time, he stresses care around accessibility, inclusivity and openness—the values that have made WordPress successful.
Practical takeaways
– Review processes are coping but discovery needs work: improving personalization, enabling safe third-party repo installs, and making premium distribution easier would reduce friction for authors and users.
– Transparency around AI is necessary: a standard disclosure encourages accountability and lets the community gather useful data.
– Funding and commercial models are possible but contentious: routing a modest fee to the Foundation could support contributors and infrastructure, but would require careful governance and community buy-in.
– Leadership matters: the project’s future likely depends on decisive direction that balances innovation with the project’s open, inclusive roots.
Where to hear more
Luke co-hosts the Crossword podcast (crossword.fm) where he discusses WordPress topics in greater depth. His talk at WordCamp Asia, beyond the guidelines: it’s time to evolve our standards for a safer plugin ecosystem, outlines these proposals in more detail and aims to spark community experiments and feedback.
Summary
The WordPress plugin ecosystem sits at a crossroads. AI has accelerated plugin creation and added complexity to discoverability, quality control and ethics. Practical changes—better site-account integration, optional support for external repositories, optional commercial channels with modest fees for community funding, and AI disclosure metadata—could help the directory evolve without abandoning its open-source principles. The debate will be contentious, but many argue that thoughtful experimentation and clear leadership are needed if WordPress is to remain a leading platform in an AI-influenced future.