Ok, I thought the whole point of the developer package was to have a "regular" version of Wordpress where you have more permissions and control over the code (such as plugins, themes, ...) similar to packages of other apps (NextCloud, Matomo, whatever) and that the managed version of Wordpress was to have a locked down version for security reasons.
But actually it seems none of the 2 Wordpress packages work in a similar way as the packages for other apps, since the managed version is a locked down version and the developer version is a "do it yourself" version.
Is that correct?
If so, then why is there no regular version of the Wordpress package where the core (i.e. Wordpress itself) is updated, similar to other Cloudron apps, while the plugins and other stuff are up to the user (again, similar to other Cloudron apps)? 
Take for example Nextcloud:
When there's a newer version of Nextcloud a new Cloudron package is prepared and after updating to that new package Nextcloud is at the newer version. Nextcloud plugins/addons are not updated and should be managed by the user.
Why isn't this behaviour applicable to (one of) the Wordpress package(s)? 