diff --git a/modules/system/homelab/git.nix b/modules/system/homelab/git.nix
index 4ea9bc1..792246c 100644
--- a/modules/system/homelab/git.nix
+++ b/modules/system/homelab/git.nix
@@ -48,5 +48,10 @@
       hostPackages = with pkgs; [ bash coreutils git nix ];
     };
   };
+  systemd.services."gitea-runner-nixos-deploy".serviceConfig = {
+    NoNewPrivileges = lib.mkForce false;
+    RestrictSUIDSGID = lib.mkForce false;
+    PrivateUsers = lib.mkForce false;
+  };
   systemd.services."gitea-runner-nixos-deploy".restartIfChanged = false;
 }