Code Injection

The Complete Guide to Squarespace Code Injection

By Squarespace Tools TeamMarch 202612 min read

Code Injection is the most powerful customization feature in Squarespace. It lets you add custom HTML, CSS, and JavaScript directly to your site without a developer account or third-party tools. Whether you want to add Google Analytics, load custom fonts, implement schema markup, or build interactive components, Code Injection is how you do it.

This guide covers everything: where Code Injection lives, what goes in each section, common use cases, debugging techniques, and the mistakes that cause the most problems.

Where to Find Code Injection

Squarespace has two types of Code Injection: site-wide and per-page.

Site-wide Code Injection is at Settings → Advanced → Code Injection. You will see two fields: Header and Footer. Code in the Header field is injected into the HTML head element of every page. Code in the Footer field is injected just before the closing body tag on every page.

Per-page Code Injection is in the settings of individual pages. Click the gear icon next to any page in the pages panel, scroll down to Advanced, and you will find a single Code Injection field. This code is added to the head of that specific page only.

HeaderRuns before content loads — meta tags, fonts, analytics, schema, preconnect hints
FooterRuns after content loads — interactive scripts, toggle buttons, chat widgets
Per-pageRuns on one page only — landing page pixels, page-specific schema

The general rule: if it affects how the page looks, put it in the header. If it affects how the page behaves, put it in the footer.

Common Use Cases

Google Analytics 4

The GA4 tracking tag goes in Header Code Injection. Google provides a two-part snippet: an async script tag that loads the gtag library, and an inline script that configures your measurement ID.

<!-- Paste into Header Code Injection -->
<script async src="https://www.googletagmanager.com/gtag/js?id=G-XXXXXXXXXX"></script>
<script>
  window.dataLayer = window.dataLayer || [];
  function gtag(){dataLayer.push(arguments);}
  gtag('js', new Date());
  gtag('config', 'G-XXXXXXXXXX');
</script>

Custom Fonts

To load Google Fonts, add the preconnect hints and stylesheet link to Header Code Injection. Always include display=swap in the URL.

<link rel="preconnect" href="https://fonts.googleapis.com">
<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
<link href="https://fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;700&display=swap" rel="stylesheet">

<style>
  body { font-family: 'DM Sans', sans-serif !important; }
</style>
Find font combos with our Font Pairing ToolTry it free →

Schema Markup

JSON-LD structured data can go in either header or footer, but the header is conventional. Use per-page Code Injection for page-specific schema (Article, Product, FAQ) and site-wide header injection for global schema (Organization, WebSite).

Example: Organization schema for site-wide header
<script type="application/ld+json">
{
  "@context": "https://schema.org",
  "@type": "Organization",
  "name": "Your Business Name",
  "url": "https://yourdomain.com",
  "logo": "https://yourdomain.com/logo.png",
  "sameAs": [
    "https://instagram.com/yourbrand",
    "https://linkedin.com/company/yourbrand"
  ]
}
</script>

This goes in site-wide Header Code Injection. It tells Google your brand name, logo, and social profiles across every page.

Generate schema markup with our Schema BuilderTry it free →

Meta Tags

Custom meta tags go in Header Code Injection. Common additions include canonical URLs, robots directives, Open Graph tags for social sharing, and Twitter Card markup.

Example: Social sharing meta tags for a portfolio page
<!-- Per-page Code Injection for your portfolio -->
<meta property="og:title" content="Design Portfolio | Jane Smith">
<meta property="og:description" content="Brand identity and web
  design for startups and small businesses.">
<meta property="og:image" content="https://example.com/portfolio-og.jpg">
<meta property="og:type" content="website">
<meta name="twitter:card" content="summary_large_image">

Without these, sharing your portfolio on LinkedIn or Twitter shows a generic title with no preview image.

Build complete meta tags with our Meta Tag GeneratorTry it free →

Interactive Components

FAQ accordions, countdown timers, pricing tables, and sliders go in page-specific Code Blocks (not Code Injection). However, shared JavaScript libraries or global styles for these components can go in site-wide Code Injection to avoid duplicating code across pages.

Per-Page Code Injection

Per-page injection is underused. It is perfect for:

  • Landing page tracking pixels that should only fire on specific pages
  • Page-specific schema markup (FAQ schema on your FAQ page, LocalBusiness on contact)
  • A/B testing scripts targeted at specific pages
  • Custom styles that only apply to one page

Using per-page injection instead of site-wide injection improves performance because the code only loads where it is needed, and it keeps your site-wide injection clean and manageable.

Debugging Code Injection

When your injected code is not working, check these things in order:

1. Open browser DevTools. Right-click the page, select Inspect, and check the Console tab for JavaScript errors. Red error messages usually tell you exactly what went wrong.
2. Verify the code is present. In DevTools, go to Elements and search for a unique string from your injected code. If it is not in the DOM, the injection did not save.
3. Check script loading order. If your footer JavaScript references a DOM element that does not exist, wrap your code in a DOMContentLoaded listener:
<script>
  document.addEventListener('DOMContentLoaded', function() {
    // Your code here — the DOM is guaranteed to be ready
    var element = document.querySelector('.my-element');
    if (element) {
      element.addEventListener('click', function() {
        // handle click
      });
    }
  });
</script>

4. Look for conflicting code. Multiple scripts targeting the same elements can interfere. This is especially common with third-party widgets that all try to modify the body or head.

Performance Impact

Every script you add to Code Injection affects page load time. Header scripts block rendering until they finish loading (unless marked async or defer). Footer scripts run after the page content but before the page feels fully interactive.

<!-- GOOD: async loading, non-blocking -->
<script async src="https://example.com/analytics.js"></script>

<!-- GOOD: deferred, runs after DOM is parsed -->
<script defer src="https://example.com/widget.js"></script>

<!-- BAD: blocks page rendering until loaded -->
<script src="https://example.com/heavy-library.js"></script>

Read our speed optimization guide for more performance tips.

What Code Injection Cannot Do

Code Injection is client-side only. You cannot modify server-side behavior, access databases, process form submissions with custom logic, or change how Squarespace generates its HTML. For those capabilities, you would need to move to a platform like WordPress or build a custom site.

You also cannot remove Squarespace's built-in scripts and styles. The platform loads its own JavaScript and CSS on every page, and Code Injection adds to this rather than replacing it.

Essential Tools for Code Injection

For a curated list of the most useful code injections, read our article on 5 Code Injections Every Website Needs. And for tools that generate the code for you:

Schema Builder — JSON-LD structured dataTry it free →
Meta Tag Generator — SEO and social meta tagsTry it free →
Config Generator — template.conf filesTry it free →
Code Snippet Library — Copy-paste injection snippetsTry it free →

A little over your head?

No shame — this stuff is hard. Let the pros handle it.

Long Drive MarketingTalk to Long Drive Marketing →