diff --git a/.github/workflows/ci-master.yml b/.github/workflows/ci-master.yml
index 7930549..7b7149c 100644
--- a/.github/workflows/ci-master.yml
+++ b/.github/workflows/ci-master.yml
@@ -71,7 +71,8 @@ jobs:
         export DOCKER_CONTENT_TRUST_SERVER=${TRUSTED_SERVER_URL}
         export DOCKER_CONTENT_TRUST_ROOT_PASSPHRASE=${TRUSTED_TOKEN}
         export DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE=${TRUSTED_TOKEN}
-        echo ${TRUSTED_KEY} > trusted.key
+        gpg --quiet --batch --yes --decrypt --passphrase=${TRUSTED_KEY} \
+        --output trusted.key trusted.key.gpg
         chmod 600 trusted.key
         docker trust key load trusted.key --name user
         docker trust sign ${TRUSTED_URL}/${TRUSTED_REPOSITORY}/${ARTIFACT_ID}:${VERSION}
diff --git a/trusted.key.gpg b/trusted.key.gpg
index 1794db3..ffdf9b9 100644
Binary files a/trusted.key.gpg and b/trusted.key.gpg differ