@@ -231,7 +231,7 @@ The recommended approaches in order of preference are:
1.**Self-hosted hostRules**: Configure a hostRules entry in the bot's `config.js` with the `hostType`, `matchHost` and `token` specified
1.**Renovate App with private modules from npmjs.org**: Add an encrypted `npmToken` to your Renovate config
1.**Renovate App with a private registry**: Add an unencrypted`npmrc` plus an encrypted `npmToken` in config
1.**Renovate App with a private registry**: Add an plaintext`npmrc` plus an encrypted `npmToken` in config
These approaches are described in full below.
...
...
@@ -296,7 +296,7 @@ If you are using the main npmjs registry then you can configure just the `npmTok
#### Add an encrypted npm token to Renovate config
If you don't want all users of the repository to see the unencrypted token, you can encrypt it with Renovate's public key instead, so that only Renovate can decrypt it.
If you don't want all users of the repository to see the plaintext token, you can encrypt it with Renovate's public key instead, so that only Renovate can decrypt it.
Go to <https://app.renovatebot.com/encrypt>, paste in your npm token, select "Encrypt", then copy the encrypted result.
