WP is open-source. Users could always create plugins and edit code if they wanted. Before AI, that meant that less knowledgeable users would piece together their stuff by copying and pasting random code snippets they found online. I argue that is way more dangerous than getting it done with AI. Besides, both in the plugin and in its readme file I make it very clear that this is not for production sites, the code must be thoroughly tested and reviewed before using it.
To flesh this out further, consider the networking and security model around networking as an extention of this tool perhaps. I feel like there is a lot of room for innovation in the wordpress honeypot scene.
Short of that tighter integration with known quality tools/frameworks for wordpress like ACF, ACPT, Flynt, Bedrock, etc# might help.