diff --git a/provisioning/README.md b/provisioning/README.md
index 13dbd7b..9dc0b9b 100644
--- a/provisioning/README.md
+++ b/provisioning/README.md
@@ -89,6 +89,7 @@ Provisioning, configuration and manifests for my Kubernetes dev cluster on Hetzn
    Use the key generated in step 1. of the deployment
 
    ```bash
+   kubectl create ns flux-system
    cat age.key | kubectl create secret generic sops-age \
    --namespace=flux-system \
    --from-file=age.key=/dev/stdin
@@ -96,6 +97,6 @@ Provisioning, configuration and manifests for my Kubernetes dev cluster on Hetzn
 
 3. **Bootstrap flux**
 
-   ```
-   export GITHUB_TOKEN=${github_token} && flux bootstrap github --owner=${github_username} --repository=${github_repo} --path=clusters/prod --personal'
+   ```   
+   export GITHUB_TOKEN=${github_token} && flux bootstrap github --owner=${github_username} --repository=${github_repo} --path=clusters/prod --personal
    ```
diff --git a/provisioning/secrets.enc.yaml b/provisioning/secrets.enc.yaml
index f8e98d0..5360c7b 100644
--- a/provisioning/secrets.enc.yaml
+++ b/provisioning/secrets.enc.yaml
@@ -1,10 +1,7 @@
-username: ENC[AES256_GCM,data:xoigb84=,iv:rZMb7IAITp2PQkTzn91sjjEpy+NnGlT5R6qEGZ7XtLk=,tag:e/3I0w4PTTpu0xw37fQC/g==,type:str]
-user_hashed_password: ENC[AES256_GCM,data:59Kht3ENNeOV0WQRIoX426HNihhuuc1RDYM8WF6nWLBXBs0YhQPvBSEGYjJwpO+P5ZiCHbb6w+1NHgSI2h7FmI3k8w8epodUTY5CQyDibG/PKF3IhlkXeWXJ41JDP96IGNWhMMQiVNsIb4DpyFELiu7xC3ggkA==,iv:b/zA+T5ONGv8251ljBER9rIsvpw6eFQOlgWo315VoEI=,tag:u//kZEU/cS2d6K4dIajRuQ==,type:str]
-user_ssh_public_keys: ENC[AES256_GCM,data:uzw2NMc9CiNLyNJyjtlowPWTRRKGB1W2DVzHXxRraIa7zvN8h81bVr+kDuro+0wpzcVKFHB51yJ1ZfHiFmZrNLb4SwUavLPpNIuQIldgrmoyqMC5pWQCtKRTDnWTOn2370OIj6zpXZejUH/58XdXqBGVLaDz+8D7lk5u2eajDw98A6apOYWyC+R7LGO5nvTelEXndQ7mnz2+5k9Fq/AzbuzaE2l0o7fz5H3Ph+DhVSV4aVxkd0D/10lV8GBBEyMo,iv:8DyDxn+ocAi2rZHYEqGFI9U0Ftmp+4KZl84zvHjfpAU=,tag:vRpA2scqweJRnclXs9/3eg==,type:str]
-domain_name: ENC[AES256_GCM,data:TSNuG6PTDWwY,iv:hphsK1t/Ma8ZqHxkU29FXpXCp+vcLmZVb9DUhe+W4hM=,tag:bRfGvtqdYhY2txLzyMYZtw==,type:str]
-github_username: ENC[AES256_GCM,data:Wym1wOWdzS89kQ==,iv:LSCMO+D+yYoqJV3CAkYd5oYkFYYyBRT4MVs0kFAAB6s=,tag:T34UFbd1n6x8dil+8UvvRw==,type:str]
-github_repo: ENC[AES256_GCM,data:AiHlbMJB8QVJie8=,iv:+IbbDHNSA9liSmve5gDZgA5PhKs9MUPl2Brk/aQbSaw=,tag:r+loYZAfjJhZvo7DEGJ+yQ==,type:str]
-github_token: ENC[AES256_GCM,data:YT+No478cc2gt/b6PXoL6HDCfruzo5PtZWQoLr2RLogwYpkAhIHwWQ==,iv:BeKPob0gXdFp9iPrO1hIikL296gMqOMBgPhMLfbIIp0=,tag:cvyTy+6o8ZzMbHKHR8i1BA==,type:str]
+username: ENC[AES256_GCM,data:D+EkQ9I=,iv:KXBHCsjnokPVToPXGmhIjKEk2rNUatEr6wCf2QOOjZo=,tag:WCc8KDoqWKfH1uaHhKq/kA==,type:str]
+user_hashed_password: ENC[AES256_GCM,data:jlCB0si7qKizo/3iIp49OpaVTN43El0zlAqfvBUt8Q0S5fXFkwZdLrdWTIs0E2x3QdebPYcEzxA4gJDQAlMS1Vhs1gmbv3dkV6h0AgGF4TrJ0hRZm2fZU3C57nE9GRQgKcuZcer7SheiBbveqEXLvhfx1tKG0A==,iv:gnKZ63VI+QK9sDxeeSNo762HzVtj1Q+Tx7L6cyBJLIc=,tag:/hkg9aorDCJYmNUJwDoBww==,type:str]
+user_ssh_public_keys: ENC[AES256_GCM,data:E5HohTa094sE++3R1WDgFEDdvpDamHIWLm5BvE4rqkMqnIIK8/plRTz0Gek0oc/zldfAs+Sc5N14mXlkq19Njrea4LgLHiJVfyQfbJAaKKPn0MsFcStyjmC2LEFRQSgpYOJqgKQf/3AvBzAr6l1vEbvlxqFOptZ143w6dP4lUEfjwkdfGAyv5Qt8O1R3TkCrQWy49dkDnxjLgwJjrO9REBAtkFQOFL+ubPYT9zZw3zCJyUblWTcCcAefpW57FcKp,iv:fDdv8/+nSk/w1jxsSlMUY7Cfb72G4//G0YS0034QXq8=,tag:fNhpjnpABvV7SczMFBeszQ==,type:str]
+domain_name: ENC[AES256_GCM,data:lc7o4Vv+woKL,iv:/TAhlgXGLm8H7RRcC1vlKvwOqYKn52kKHeBi3GRahj0=,tag:yiSjcjTcAUHRUfXQSD0StA==,type:str]
 sops:
     kms: []
     gcp_kms: []
@@ -14,14 +11,14 @@ sops:
         - recipient: age1jk99rtxq3ep2xj2w886cchddf7jypqpwkr3dszg5dzq93gn8cy9qyc786m
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBvSk9xeGtHd25EL0IyTzVn
-            RWhENmhsWHpYZ3NITmpadHBQTmVLVFU4bUVvCk1DTVdoajN1QmVCSUNKbnVoMDhh
-            dnViMWRSdEZOWkhONENaTXVKSTNDTlkKLS0tIHZCNU1MM2ZRRnRwZXA3VWRtUEVi
-            Q2ZBRjRDRG9Ob2RZMk9xN2lpcVpPMGMKKCRXGXxg35M8lLecffyLx5YBFpzdA6ZC
-            G0z5YKT/mkjjG8oL4BktaNGF9xYMeuoDPCfjl7AVfMD0VvrnbVC8bQ==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB1QmNKRUtQZFluZkVCUDEy
+            Qkt3MjVQU0QrNnF2R3Q5a1QyenZ6OXpHUURzCllRWWg4dzlVdTBXUVRqTkc1UDIv
+            aUtTZjQ5ZW0wNjB3UGdXMUhOSTVNVU0KLS0tIExOUnM4QW5KeDhiUjZTKzVvSE1s
+            bEVKSldoclhvWTlYc1RXbnNqdjRRVHcKGZ/wqJLu2FZGnyHSrV1fSVLkwkmNkOfp
+            wRnSBtvUyvQHoFsn3Ieis9BxESmSULDuEik4VXhjsIi0AWOWgRCVuQ==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2024-12-22T21:26:25Z"
-    mac: ENC[AES256_GCM,data:y2Q1Og/kP7bvpgf/rYBjsaPDixdlThcgYkx4WgCuRzrFoVukhk3IePQUXX67ahM9awIHHW8uL+c+DWibRF8gUnYphuZ/l9BlJqNh+wO6Q5HEYNHUUe0Wc12pAo482zJBlIcgKCEUp5qLkoohfNkLN/ki620BHQSutnJaIpJq9cg=,iv:dMPQkb4y8hKFw2OHaeTLaiF014ZXYm/d6k6veug/hvU=,tag:DFQ4o1u2qtE58yKllj2brQ==,type:str]
+    lastmodified: "2024-12-23T18:14:08Z"
+    mac: ENC[AES256_GCM,data:YoI1y5QybfCo1YtAvKXGce/S3OTPzVNelcUkrCTAQkgsnWwKB89E5JuRXLjP8Kpps1LJCh7eUzJmqvolEqsAY2DMj59+MBInu+0VDiAYZfOpCcZ/JvbSYWBtRgm1mu75ehpPZM9iEGRFJJ0DSoMR8TTejlPB9ErL7nBaXzSG7rY=,iv:7PtRWEkYyKG7wcJ+JAcorkET37zL091UpQd70BhXznM=,tag:KRGxISiRQFSDAdNz/1b8qQ==,type:str]
     pgp: []
     unencrypted_regex: ^(apiVersion|metadata|kind|type)$
     version: 3.9.0