Good points, it hits a lot of the things I have in my mind but haven’t articulated anywhere so thank you!
Agreed, although we should point them to a tutorial on “creating a developer and uploading your first plugin” or similar. Because as mentioned we will be removing the submit plugin page.
Both of these are in progress, we are adding Algolia which will allow for a more robust search than we currently have.
I think this is a bug, we should see if we can get that out in the next release.
We should work on a more robust approach, following up on the discussion from Reporting Vulnerable Plugin. I think we need to draft a policy outlining the approval process. If someone in the community wants to take this on that would be amazing