diff --git a/cluster/apps/gitea-act/gitea-act.yml b/cluster/apps/gitea-act/gitea-act.yml
index c994920..c1387f8 100644
--- a/cluster/apps/gitea-act/gitea-act.yml
+++ b/cluster/apps/gitea-act/gitea-act.yml
@@ -20,6 +20,8 @@ spec:
       hostNetwork: true
       restartPolicy: Always
       volumes:
+      - name: docker-certs
+        emptyDir: {}
       - name: docker-socket
         emptyDir: {}
       - name: runner-data
@@ -39,11 +41,16 @@ spec:
           echo "Gitea is ready!"
       - name: docker
         image: docker:28.3.2-dind
+        env:
+        - name: DOCKER_TLS_CERTDIR
+          value: "/certs"
         securityContext:
           privileged: true
         volumeMounts:
         - name: docker-socket
           mountPath: /var/run/
+        - name: docker-certs
+          mountPath: /certs
         startupProbe:
           tcpSocket:
             port: 2376
@@ -61,9 +68,13 @@ spec:
           value: "NvAHP4f1in4Fpe6VFaiwiN98IR0poOQoDv4dDKcN"
         - name: DOCKER_TLS_VERIFY
           value: "0"
+        - name: DOCKER_CERT_PATH
+          value: "/certs/client"
         volumeMounts:
         - name: runner-data
           mountPath: /data
         - name: docker-socket
           mountPath: /var/run/docker.sock
           subPath: docker.sock
+        - name: docker-certs
+          mountPath: /certs