See a super easy fix for issues with inserting inLinkz JS scripts, especially when using Gutenberg.
Big Thank You!
I want to send a HUGE thank you to Beverly Roderick of Across the Boulevard for alerting me to this issue and her invaluable help with testing and finding a resolution.
Beverly is a site audit client alumni and part of our private Facebook group where we put the power of the village to work to find fixes for the site issues all of us face.
How inLinkz Works
Fresh inLinkz (formerly inLinkz) facilitates ways for bloggers to host link parties where they can easily share each other’s content.
Participants create an inLinkz link for their content, which is turned into a widget of JavaScript (JS) code that contains all of the content to be displayed, like:
- Title
- Image
- Description
- Link to the blog post on the creator’s site
Why Updating Fails
Executable JS code can be a huge security risk on a site.
That’s why security measures at the host, like ModSecurity, and security measures on the Cloudflare Pro plan, block the insertion of JS code on a site.
READ: What is ModSecurity and Should You Turn It Off? for details.
Hack attack vectors change ALL the time, and have become more sophisticated.
That’s why all security entities have tightened their screening measures and now give closer scrutiny to all executable JS code.
Unfortunately, the JS widget from inLinkz have begun to trip the wires on several security measures.
And that has resulted in following error message:
Updating failed. The response is not a valid JSON response.
The Not So Easy Fixes
Whitelisting your home IP address in Cloudflare is one option. But it may not work every time, especially if you’re connected on wifi and your IP rotates.
READ: How to Find and Whitelist Your IP Address in Cloudflare
And you can temporarily turn off ModSecurity at your host. It may not work every time either.
The Easy Fix
Fortunately, inLinkz became aware of this issue and they created their own plugin to fix it.
It creates a shortcode to skirt that extra security scrutiny, as the widget no longer appears to be executable JS code.
The plugin is called Fresh InLinkz, available directly from within LinLinkz.
(It’s not in the WordPress plugins repository.)
Here’s how to get the plugin directly from InLinkz. (Instructions below the image)
- When logged into InLinkz, create a new link up or use one that has already been created.
- Click on Copy Code
- Once the pop up screen comes up, look under the Section “WordPress Short Code” and click on “download the word press plugin here” link.
- Download the plugin and then follow the usual instructions for uploading and activating a new plugin.
- Return to InLinkz and click on Copy Code for a link up.
- Once the pop up comes up, click “Copy” below the WordPress Short Code Section.
- Paste the short code to a post.
Tell Your Linkup Buddies
If you regularly accept inLinkz code from your link party buddies, tell them to send you the shortcode instead of the full JS code.
You won’t have any more trouble adding their links to your site.
Want More Helpful Tips Like This?
Subscribe to BlogAid News and get all of my tips posts, including my weekly roundup of Tips Tuesday delivered straight to your inbox.
Get a Site Audit
We’ll do a deep dive on your site security and performance. On average, I find 26 issues that no plugin can find.
You’ll get a 20-30 page report and live chat to go over everything in non-geek-speak.
And, you’ll get perks like free access to our private Facebook group and a member area with extra tutorials I don’t release to the public.
Thanks MaAnna & Beverly for sharing this valuable information. This is a huge help!!!
I appreciate you letting me get a screenshot of your error too, Chas!!!! It takes a village.