Rodrigo Primo 11:22 am on December 5, 2025
Tags: codingstandards ( 7 ), PHP ( 77 ), WPCS ( 9 )

Coding Standard Proposal: Allow the use of the PHP short echo tag

Currently, the WordPress Coding Standard explicitly forbids the use of the PHP short echo tag (<?=) along with the PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher short tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.) (<?). This post proposes modifying this rule to allow the use of the short echo tag for single statements.

Motivation

Prior to PHP 5.4, it was possible to disable the PHP short echo tag (<?=) using the PHP short_open_tag ini directive. This meant that scripts using this tag could not be used in code that must work across different PHP installations, because the content within those tags may be printed instead of executed, which could lead to code exposure. For this reason, the WordPress Coding StandardsWordPress Coding Standards The Accessibility, PHP, JavaScript, CSS, HTML, etc. coding standards as published in the WordPress Coding Standards Handbook. May also refer to The collection of PHP_CodeSniffer rules (sniffs) used to format and validate PHP code developed for WordPress according to the PHP coding standards. forbid its use.

Since PHP 5.4, the short echo tag is always available, and changing the short_open_tag directive no longer affects it. WordPress dropped support for versions prior to PHP 5.6 in 2019, and since then raised the minimum supported PHP version to 7.2. Currently, according to WordPress.org stats, the percentage of active WP installs using PHP < 5.4 is 0.4% and the percentage of sites still using WP < 5.2 is 4.0%. Therefore, it is now safe to allow the use of short echo tags.

This tag is useful as it provides a more concise syntax for outputting values in template files. WordPress developers should be allowed to use it. An issue requesting this change is the most liked issue in the WPCSWordPress Community Support A public benefit corporation and a subsidiary of the WordPress Foundation, established in 2016. repository, indicating community support.

This proposal is about allowing the use of the short echo tag for single statements, not encouraging its use, so no immediate changes are required. In practice, this means that:

Existing open patches for CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress. are not affected as either style is allowed.
Existing WP Core code and code in official WP themes should not be updated, as both styles are permitted. A patchpatch A special text file that describes changes to code, by identifying the files and lines which are added, removed, and altered. It may also be referred to as a diff. A patch can be applied to a codebase for testing. to enforce the use of short echo tags in all possible places will NOT be accepted.
However, a new official theme could choose to use short echo tags if desired.

Suggested change to the handbook

The suggestion is to modify the rule titled “No Shorthand PHP Tags” as follows:

New title: No PHP short open tag

Content:

Important: Never use the PHP short open tag (`<?`). Always use the full PHP open tag (`<?php`). Using the PHP short echo tag (`<?=`) is allowed, though short echo tag snippets should only contain a single statement.

Correct:

<?php … ?>
<?= esc_html( $var ); ?>

Incorrect:

<? … ?>

How to keep short echo tags forbidden in a given project

If this proposal is accepted, but a project wants to keep the short echo tag forbidden in its own codebase, it can do so by adding the following snippet to its PHPCSPHP Code Sniffer PHP Code Sniffer, a popular tool for analyzing code quality. The WordPress Coding Standards rely on PHPCS. configuration after the WordPress standard is included:

<rule ref="Generic.PHP.DisallowShortOpenTag.EchoFound">
    <severity>5</severity>
</rule>

References

Related issue in the WPCS repository: WordPress/WordPress-Coding-Standards#1642

#codingstandards, #php, #wpcs

Props @dingo_d, @garyj, and @jrf for reviewing this post.

Samuel Wood (Otto) 11:40 am on December 5, 2025

-1
There is no reason for doing this. There is no actual advantage to doing this. Saving like 5-8 characters is pointless. Additionally, it does not work with most use cases because of the I18Ni18n Internationalization, or the act of writing and preparing code to be fully translatable into other languages. Also see localization. Often written with a lowercase i so it is not confused with a lowercase L or the numeral 1. Often an acquired skill. functions, such as _e().
- Dennis Ploetner 12:04 pm on December 5, 2025
  
  I think the _e() argument mixes two different issues. Functions like _e() are already discouraged by WPCSWordPress Community Support A public benefit corporation and a subsidiary of the WordPress Foundation, established in 2016. as unsafe printing functions, regardless of whether you use <?= or a full .
  
  The proposal isn’t about saving characters, but about reducing noise in template files and allowing the widely-used, always-enabled short echo syntax. Projects that prefer to forbid it can still enforce that in their own PHPCSPHP Code Sniffer PHP Code Sniffer, a popular tool for analyzing code quality. The WordPress Coding Standards rely on PHPCS. config.
- Rodrigo Primo 4:56 pm on December 8, 2025
  
  Thanks for sharing your perspective, @otto42.
  
  However, I’d like to respectfully push back on the statement that “there is no reason for doing this.” The proposal does present the reasoning, and I understand if you disagree with it, but simply dismissing it as having no reason doesn’t contribute to the discussion. Could you elaborate on which specific aspects of the proposal you disagree with?
  
  This proposal is not about discussing which personal preference should be enforced. It’s about allowing those who would like to use the short echo tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.) to do so, since the original reason for forbidding it is no longer valid. As mentioned, this is the most liked issue in the WPCSWordPress Community Support A public benefit corporation and a subsidiary of the WordPress Foundation, established in 2016. repository, which indicates there is community interest.
  
  Regarding the i18ni18n Internationalization, or the act of writing and preparing code to be fully translatable into other languages. Also see localization. Often written with a lowercase i so it is not confused with a lowercase L or the numeral 1. Often an acquired skill. point: functions that return the string instead of echoing it (like esc_html__()) can be used with the short echo tag.
  - Samuel Wood (Otto) 11:32 pm on January 9, 2026
    
    No, you did not present a reason for it, you just eliminated the reasons against it.
    
    What is the benefit to adding this? Other than appeasing those who want to use it? Appeasement does not equal technical innovation.
    
    I want to see a proactive reason for adding this capabilitycapability A capability is permission to perform one or more types of task. Checking if a user has a capability is performed by the current_user_can function. Each user of a WordPress site might have some permissions but not others, depending on their role. For example, users who have the Author role usually have permission to edit their own posts (the “edit_posts” capability), but not permission to edit other users’ posts (the “edit_others_posts” capability)., rather than standardizing and limiting it to the actual standard. The same standard we’ve been using for over a decade.
    
    What is the actual benefit here?
Prashant Baldha 12:05 pm on December 5, 2025

I think the code should be readable.
The short tags are not more user-friendly readable, so I am opposed to this decision.
- Dennis Ploetner 12:11 pm on December 5, 2025
  
  Readability is exactly why this proposal matters. It doesn’t change CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress. or require anyone to use short tags; it simply lets theme/template authors choose what works best for them.
Jeff Chi 12:09 pm on December 5, 2025

I am used to this Php base feature that’s available since ages. It is commonly used in non-WordPress environments. I don’t agree to the sentiment that this feature makes code less readable. I think it’s the other way around – it would highly improve the readability of the (kind of outdated) WordPress phtml-templates.
Yani 1:30 pm on December 5, 2025

If I understand this well, it will replace <?php echo with <?=
Here is a list of plugins that have <?php echo statements:
https://wpdirectory.net/search/01KBQB0KQPEGKJP8AP3F109X98

Looking at the actual usage, I can see that there are existing functions that already do this: esc_*_e.
From security standpoint of view, <?= might lead to unescaped output. It will probably have negative effect on existing security scanning tools (pluginPlugin A plugin is a piece of software containing a group of functions that can be added to a WordPress website. They can extend functionality or add new features to your WordPress websites. WordPress plugins are written in the PHP programming language and integrate seamlessly with WordPress. These can be free in the WordPress.org Plugin Directory https://wordpress.org/plugins/ or can be cost-based plugin from a third-party’s review team is better qualified than me to speak on that).
- Rodrigo Primo 5:12 pm on December 8, 2025
  
  Thanks for your comment, @yaniiliev.
  If I understand this well, it will replace <?php echo with <?=
  
  To clarify: this proposal is about allowing the use of the short echo tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.), not mandating it. Existing code using <?php echo would remain valid and wouldn’t need to change.
  Looking at the actual usage, I can see that there are existing functions that already do this: esc_*_e.
  
  You’re right that functions like esc_html_e() exist, but despite that, allowing the short echo tag is a popular request in the WPCSWordPress Community Support A public benefit corporation and a subsidiary of the WordPress Foundation, established in 2016. repository. It’s the most liked issue there.
  From security standpoint of view, <?= might lead to unescaped output. It will probably have negative effect on existing security scanning tools (pluginPlugin A plugin is a piece of software containing a group of functions that can be added to a WordPress website. They can extend functionality or add new features to your WordPress websites. WordPress plugins are written in the PHP programming language and integrate seamlessly with WordPress. These can be free in the WordPress.org Plugin Directory https://wordpress.org/plugins/ or can be cost-based plugin from a third-party’s review team is better qualified than me to speak on that).
  
  Regarding security: WPCS will enforce escaping in <?= just like it does in <?php echo, so that shouldn’t be a problem. As far as I know, the plugin review team uses WPCS for most of its automated checks. That said, I’d be happy to hear from them if this proposal could create problems for any custom checks they have that don’t use WPCS.
Paul Shryock 3:36 pm on December 5, 2025

No thanks.
Seth Rubenstein 3:52 pm on December 5, 2025

Hard no.
Justin Tadlock 4:13 pm on December 5, 2025
While I personally prefer the short echo tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.) for templating, I’m not sure there’s any reason to allow this for the WordPress coding standardsWordPress Coding Standards The Accessibility, PHP, JavaScript, CSS, HTML, etc. coding standards as published in the WordPress Coding Standards Handbook.
May also refer to The collection of PHP_CodeSniffer rules (sniffs) used to format and validate PHP code developed for WordPress according to the PHP coding standards.. As long as the rule is never enforced for plugins/themes in the directories, it just sets a coding standard for the overall project.

And you can disable via your XML file for your project:
```
&lt;!-- Allow short echo tags --&gt;
&lt;rule ref=&quot;Generic.PHP.DisallowShortOpenTag.EchoFound&quot;&gt;
    &lt;severity&gt;0&lt;/severity&gt;
&lt;/rule&gt;
```
- iansvo 1:26 am on December 6, 2025
  
  It seems weird to disable it by default when it’s a built-in language feature though. I’m not sure what kind of harm there would be by allowing it and many people (including yourself) find it preferable so it seems better to let people eat cake on this one.
  - Justin Tadlock 5:06 pm on December 16, 2025
    
    It’s not disabling a language feature. It’s saying that the WordPress CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress. should follow a set of coding standards.
    
    If the proposal is to start using short echo tags in Core, it introduces inconsistent coding styles in the code base.
    
    At the very least, the proposal should also include the addition of re-enabling this for Core with a related PR.
    - Justin Tadlock 5:10 pm on December 16, 2025
      
      Alternatively, I think if we were to remove this rule for CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress., then it should be accompanied with a plan to update instances in the Core code. Consistent coding style is preferable over mixed styles.
Ben Word 6:34 pm on December 5, 2025

PSR-1 (over 13 years old) explicitly allows “ tags, and PER-CS (the current standard) inherits this. The wider PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher community settled this over a decade ago, it would be nice to see WordPress catching up.
- Ben Word 6:39 pm on December 5, 2025
```
&lt;?= ?&gt;
```
  tags*
- Joshua Fredrickson 8:09 pm on December 5, 2025
  
  While we’re at it, I’d love to see short array tags [] added, but one can’t be too greedy.
- Paul Shryock 5:55 pm on December 10, 2025
  
  Yeah, I mean, it’d be neat if WordPress followed PER coding style, but it doesn’t come even close to it. So it doesn’t really make sense to just cherry-pick this one thing from PER.
  - Paul Shryock 5:56 pm on December 10, 2025
    
    It’d be neat if WordPress followed literally any PSR’s or PER’s, but again, far from it.
iansvo 1:25 am on December 6, 2025

I think everybody here is getting a little too focused on their personal preferences. The point of this rule is to allow people to decide for themselves.

If you don’t like it, you can just disable it in your project, but most people don’t have an opinion on it or otherwise, like the more terse syntax for echoing dynamic content in HTMLHTML HyperText Markup Language. The semantic scripting language primarily used for outputting content in web browsers. attributes.

It is also worth noting that the main reason this wasn’t a thing to begin with is because you could disable it in PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher not because it’s actually bad in some way.
Anh Tran 4:02 am on December 6, 2025
+1 for this. It makes the code more readable when working with templates, like:
```
&lt;h1&gt;&lt;?= esc_html( $title ) ?&gt;&lt;/h1&gt;
&lt;p&gt;&lt;?= esc_html( $description ) ?&gt;&lt;/p&gt;
```
Stanko Metodiev 10:09 am on December 6, 2025

I personally do not find it easier to read, or at least I’m not used to it. And I don’t see it as quite readable, but it might just be a habit.

As far as I know, most of the popular PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher frameworks support it, so I don’t see a reason why we should not allow it as well.
Jaro 9:51 am on December 8, 2025

If you had asked me two years ago, I would have supported it, but I was ignorant of heredocs. Since then, I have built multiple plugins solely using heredocs to create and print HTMLHTML HyperText Markup Language. The semantic scripting language primarily used for outputting content in web browsers., and I would never go back.
Miguel Fonseca 11:16 am on December 8, 2025

Thanks for the proposal.

The original intention behind forbidding short echo tags was compatibility, a hallmark of WordPress. Now that the mechanisms which could break compatibility are gone, it follows logically that the restriction should be waived. It isn’t about taste, since the proposal isn’t encouraging nor enforcing the adoption of the short echo tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.). I am in favour.
- Brad Griffith 4:08 pm on December 8, 2025
  
  I totally agree. The compatibility concerns are no longer an issue (since PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher 5.4), so I think allowing this makes sense. Some folks clearly prefer it, and it’s easy to set per-project rules, if desired.
  - Paul Shryock 5:59 pm on December 10, 2025
    
    it’s easy to set per-project rules, if desired.
    
    Right, not every project needs to use the WordPress Coding Standard, but WordPress does. So the thing being proposed is to allow the PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher short echo tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.) in WordPress coreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress., not in some other project.
Knut Sparhell 4:48 pm on December 8, 2025

Yes! There is absolutely no reason to disallow this “=” as shorthand for “php echo”. It’s perfectly readable, once used to it. If not used to it yet, simply get used to it, as it’s used all over, except in WordPress CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress..

Thre is not need to disallow somthing, just because it’s short, as long as it’s clear. Using unctions are also just something “short” for a complex algorithm defined elsewhere.

Examples of what makes WordPress PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher less readable and more error prone are functions that may or may not echo it’s result, like checked() and friends. Even “esc_html_e()” is less readable than “echo esc_html()” or “= esc_html()”.
Dennis Snell 8:25 pm on December 8, 2025

Thank you @rodrigosprimo for championing this proposal. I volunteer my full support for it.

When I think about automated tooling that has the power to reject work, I want it to be as respectful as possible and never risk blocking legitimate contributions. Removing obsolete rules like this is a great step towards that goal.

If a rule in the PHPCSPHP Code Sniffer PHP Code Sniffer, a popular tool for analyzing code quality. The WordPress Coding Standards rely on PHPCS./WPCSWordPress Community Support A public benefit corporation and a subsidiary of the WordPress Foundation, established in 2016. ruleset doesn’t contribute towards the improved reliability or maintainability of our shared codebase, then I think it’s a candidate for removal. If there are subjective issues without clear evidence demonstrating their benefit, we can take them out. When there are multiple legitimate ways of accomplishing the same goal and people disagree, I believe that it’s the most mature thing for us to do to not weigh in just because we can.

Ample people find the short echo tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.) useful and easier to work with. Many don’t. Allowing for CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress. features of the language, however, takes precedent in my book over arbitrarily enforcing one subjective personal preference.
Jon Surrell 4:04 pm on December 9, 2025

I’m in favor of the proposal. Other folks have already expressed opinions I agree with. I don’t see compelling reasons to disallow this specific PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher syntax.
Aaron Jorbin 8:16 pm on December 10, 2025

-1

A benefit of the existing standards is that it is ridiculously easy to grep for opening tags. That would be lost if this change goes through. Additionally, by having a single, consistent way of files entering PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher mode, it’s much easier for the human eye to scan and read than needing to be looking for twice as many ways that you need to be on the lookout for.
Daniel Richards 5:28 am on December 11, 2025

I’m supportive of the proposal. I generally find the WordPress PHPPHP The web scripting language in which WordPress is primarily architected. WordPress requires PHP 7.4 or higher coding standards to be like a tax on my productivity at times, they’re very frustrating, especially all those little things that the tools can’t autofix. I think a lot of contributors find the same that’s why we see a lot of supportive comments here. It’s particular bad for those that have to context switch between JSJS JavaScript, a web scripting language typically executed in the browser. Often used for advanced user interfaces and behaviors. and PHP. I expect it’s worse for anyone that context switches from non-WordPress coding standardsWordPress Coding Standards The Accessibility, PHP, JavaScript, CSS, HTML, etc. coding standards as published in the WordPress Coding Standards Handbook.
May also refer to The collection of PHP_CodeSniffer rules (sniffs) used to format and validate PHP code developed for WordPress according to the PHP coding standards. on a regular basis.

I’m in favor of steps towards simplifying and making the standards easier for contributors to learn and be productive within.

I don’t personally believe the proposal greatly affects readability, or code correctness, and the short tagtag A directory in Subversion. WordPress uses tags to store a single snapshot of a version (3.6, 3.6.1, etc.), the common convention of tags in version control systems. (Not to be confused with post tags.) is a tool that’s useful in some scenarios.

PS – It’d be nice if we could avoid those unhelpful ‘+1’, ‘-1’, ‘No thanks’, ‘Hard no’ comments. It is supposed to be a constructive discussion, maybe skip it if you have no reasoning behind your argument.
Peter Wilson 9:36 pm on December 14, 2025

The primary purpose of the WordPress Coding StandardsWordPress Coding Standards The Accessibility, PHP, JavaScript, CSS, HTML, etc. coding standards as published in the WordPress Coding Standards Handbook.
May also refer to The collection of PHP_CodeSniffer rules (sniffs) used to format and validate PHP code developed for WordPress according to the PHP coding standards. are for use in WordPress CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress., thus the name WordPress-Core.

I think WordPress Core should retain the requirement of using the long tags, as Core also has high standards for translatable strings that require the `*_e` functions or make heavy use of the `printf` function when accounting for placeholders.

When reviewing code, I find the shorter tags more difficult to parse in conjunction with HTMLHTML HyperText Markup Language. The semantic scripting language primarily used for outputting content in web browsers.. There are `<` everywhere.

While a lot of third party developers make use of the WordPress Coding Standards, it's rare that they don't customize them in some fashion. For example, Yoast’s coding standards make a number of configuration changes.

One of these changes can be to exclude the `Generic.PHP.DisallowShortOpenTag` sniffssniff A module for PHP Code Sniffer that analyzes code for a specific problem. Multiple stiffs are combined to create a PHPCS standard. The term is named because it detects code smells, similar to how a dog would "sniff" out food. according to their preferences.

For the WordPress Core suite of rules, I think it best to keep the rule enabled.

Welcome!

Communication

Coding Standard Proposal: Allow the use of the PHP short echo tag

Motivation

Suggested change to the handbook

How to keep short echo tags forbidden in a given project

References

Welcome!

Communication

Motivation

Suggested change to the handbook

How to keep short echo tags forbidden in a given project

References

Share this:

Site resources