WordPress 7.0 turns AI provider keys into site-level operational credentials. Before enabling a connector, decide who owns the key, who may spend against it and which plugins may use it.

TL;DR

• WordPress 7.0 includes a provider-agnostic PHP AI Client and a Settings > Connectors screen, but core does not bundle OpenAI, Google or Anthropic provider implementations. Those providers are available as separate WordPress.org plugins.
• AI calls require explicit provider configuration and explicit calling code. A fresh WordPress 7.0 site does not automatically send prompts or content to external AI providers.
• Connector keys saved through wp-admin are masked, but not encrypted in the database. Trac #64789 remains open and is scoped for Future Release as of June 4, 2026.
• WP_AI_SUPPORT=false is the strongest global off switch in 7.0 because plugins cannot override it through the wp_supports_ai filter.

,