Andras: allow publish-without-review; surface quality via ratings/likes; promote highly-rated ones into higher tiers.
Steve: treat it like publishing a repo/website; minimal formal process; users recommend to users.
Murat: keep peer review but make high-demand extensions pay an annual review/support fee; use an AI agent to screen new submissions for malicious code and ship others as “use at your own risk.”
Sandboxing to protect users from untrusted extension code (and untrusted AI agents). Options raised: containers, cloud execution, and eventually browser-based (SlicerTrame, VTK wasm, pyodide).
A feature in Slicer to install/build extension PRs directly. Pure-Python extensions are low-hanging fruit; also a “check out and build” button when running a locally built Slicer.