diff --git a/lib/config/decrypt.js b/lib/config/decrypt.js
index 961ce0919b870e95c346a83df2b278392554c15e..811f208f927871ca48a3130945584e0c7c3c4c0b 100644
--- a/lib/config/decrypt.js
+++ b/lib/config/decrypt.js
@@ -19,7 +19,7 @@ function decryptConfig(config, privateKey) {
             logger.info(`Decrypted ${eKey}`);
             if (eKey === 'npmToken') {
               logger.info('Migrating npmToken to npmrc');
-              decryptedConfig.npmrc = `//registry.npmjs.org/:_authToken=${decryptedStr}\n`;
+              decryptedConfig.npmrc = `_auth=${decryptedStr}\n`;
             } else {
               decryptedConfig[eKey] = decryptedStr;
             }
diff --git a/lib/config/massage.js b/lib/config/massage.js
index ab17e80aa85b4efec936f57d14c41ee4fcc742da..2be9ac3051bf14d385117dc22248f885135fce22 100644
--- a/lib/config/massage.js
+++ b/lib/config/massage.js
@@ -22,7 +22,7 @@ function massageConfig(config) {
     if (allowedStrings.includes(key) && typeof val === 'string') {
       massagedConfig[key] = [val];
     } else if (key === 'npmToken' && val && val.length < 30) {
-      massagedConfig.npmrc = `//registry.npmjs.org/:_authToken=${val}\n`;
+      massagedConfig.npmrc = `_auth=${val}\n`;
       delete massagedConfig.npmToken;
     } else if (isObject(val)) {
       massagedConfig[key] = massageConfig(val);
diff --git a/test/config/__snapshots__/massage.spec.js.snap b/test/config/__snapshots__/massage.spec.js.snap
index 5b3b9202f99a3d7b90bae3664e096c9843f12914..52d4610879a30f3f055029a81e158c06aa7d2626 100644
--- a/test/config/__snapshots__/massage.spec.js.snap
+++ b/test/config/__snapshots__/massage.spec.js.snap
@@ -2,7 +2,7 @@
 
 exports[`config/massage massageConfig massages npmToken 1`] = `
 Object {
-  "npmrc": "//registry.npmjs.org/:_authToken=some-token
+  "npmrc": "_auth=some-token
 ",
 }
 `;
diff --git a/test/config/decrypt.spec.js b/test/config/decrypt.spec.js
index c96616a8fe1049e9322fe795e65a5b301ec74e31..98e1a045207554c86e8b71f9670765a2367d7a3a 100644
--- a/test/config/decrypt.spec.js
+++ b/test/config/decrypt.spec.js
@@ -57,7 +57,7 @@ describe('config/decrypt', () => {
       );
       expect(res.packageFiles[0].devDependencies.npmToken).not.toBeDefined();
       expect(res.packageFiles[0].devDependencies.npmrc).toEqual(
-        '//registry.npmjs.org/:_authToken=abcdef-ghijklm-nopqf-stuvwxyz\n'
+        '_auth=abcdef-ghijklm-nopqf-stuvwxyz\n'
       );
     });
   });