diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 7be335ec..c8ee2192 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -7,9 +7,9 @@ jobs:
     runs-on: ubuntu-latest
     environment: Development
     env:
-        ACRA_LOGIN: ${{ secrets.ACRARIUM_BASIC_AUTH_LOGIN }}
-        ACRA_PASS: ${{ secrets.ACRARIUM_BASIC_AUTH_PASSWORD }}
-        ACRA_URI: ${{ secrets.ACRARIUM_URI }}
+      ACRA_LOGIN: ${{ secrets.ACRARIUM_BASIC_AUTH_LOGIN }}
+      ACRA_PASS: ${{ secrets.ACRARIUM_BASIC_AUTH_PASSWORD }}
+      ACRA_URI: ${{ secrets.ACRARIUM_URI }}
     steps:
     - uses: actions/checkout@v3
 
@@ -20,6 +20,14 @@ jobs:
         distribution: 'adopt'
         cache: gradle
 
+    - name: Validate Gradle wrapper
+      uses: gradle/wrapper-validation-action@v1.0.5
+
+    - name: Decrypt the keystore for signing
+      run: |
+        echo "${{ secrets.KEYSTORE_ENCRYPTED }}" > keystore.asc
+        gpg -d --passphrase "${{ secrets.KEYSTORE_PASSWORD   }}" --batch keystore.asc > keystore.jks
+
     - name: Build Release APK
       run: ./gradlew assembleRelease
 
diff --git a/app/build.gradle b/app/build.gradle
index 5edaf44d..d8165cde 100644
--- a/app/build.gradle
+++ b/app/build.gradle
@@ -28,10 +28,10 @@ android {
     }
     signingConfigs {
         testRelease {
-            storeFile project.rootProject.file('./testRelease.jks')
-            storePassword "arkmemo"
-            keyAlias "key0"
-            keyPassword "arkmemo"
+            storeFile project.rootProject.file('keystore.jks')
+            storePassword "sw0rdf1sh"
+            keyAlias "ark-builders-test"
+            keyPassword "rybamech"
             v1SigningEnabled true
             v2SigningEnabled true
         }
diff --git a/testRelease.jks b/testRelease.jks
deleted file mode 100644
index 18b818e4..00000000
Binary files a/testRelease.jks and /dev/null differ