diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 8a9013d..43afdd4 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -77,6 +77,7 @@ jobs:
         uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846
 
       - name: Setup DCT
+        id: setup-dct
         if: github.ref == 'refs/heads/master' || github.ref == 'refs/heads/rc' || github.ref == 'refs/heads/hotfix-rc'
         uses: bitwarden/gh-actions/setup-docker-trust@a8c384a05a974c05c48374c818b004be221d43ff
         with:
@@ -101,6 +102,9 @@ jobs:
 
       - name: Tag and Push RC to Docker Hub
         if: (github.ref == 'refs/heads/rc')
+        env:
+          DOCKER_CONTENT_TRUST: 1
+          DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE: ${{ steps.setup-dct.outputs.dct-delegate-repo-passphrase }}
         run: |
           docker tag ${{ env._SERVICE_NAME }} \
             bitwarden/${{ env._SERVICE_NAME }}:rc
@@ -108,6 +112,9 @@ jobs:
 
       - name: Tag and Push Hotfix to Docker Hub
         if: (github.ref == 'refs/heads/hotfix-rc')
+        env:
+          DOCKER_CONTENT_TRUST: 1
+          DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE: ${{ steps.setup-dct.outputs.dct-delegate-repo-passphrase }}
         run: |
           docker tag ${{ env._SERVICE_NAME }} \
             bitwarden/${{ env._SERVICE_NAME }}:hotfix
@@ -115,6 +122,9 @@ jobs:
 
       - name: Tag and Push Dev to Docker Hub
         if: (github.ref == 'refs/heads/master')
+        env:
+          DOCKER_CONTENT_TRUST: 1
+          DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE: ${{ steps.setup-dct.outputs.dct-delegate-repo-passphrase }}
         run: |
           docker tag ${{ env._SERVICE_NAME }} \
             bitwarden/${{ env._SERVICE_NAME }}:dev
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 4d9266c..9402d9b 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -98,9 +98,9 @@ jobs:
 
       - name: Push version and latest image
         if: ${{ github.event.inputs.release_type != 'Dry Run' }}
-        # env:
-        #   DOCKER_CONTENT_TRUST: 1
-        #   DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE: ${{ steps.setup-dct.outputs.dct-delegate-repo-passphrase }}
+        env:
+          DOCKER_CONTENT_TRUST: 1
+          DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE: ${{ steps.setup-dct.outputs.dct-delegate-repo-passphrase }}
         run: |
           docker push bitwarden/$_SERVICE_NAME:$_RELEASE_VERSION
           docker push bitwarden/$_SERVICE_NAME:latest