diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 6296fc789ce367cce75984e423bfcd7143c42114..872faaadabab7bfbaa0b67ebde21a3050c5f897e 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -19,6 +19,7 @@ env:
   # Custom nix binary cache if fork is being used
   ATTIC_ENDPOINT: ${{ vars.ATTIC_ENDPOINT }}
   ATTIC_PUBLIC_KEY: ${{ vars.ATTIC_PUBLIC_KEY }}
+  DOCKER_USERNAME: ${{ vars.DOCKER_USERNAME }}
 
 permissions:
   packages: write
@@ -184,7 +185,8 @@ jobs:
         if: github.event_name != 'pull_request'
         uses: docker/login-action@v3
         with:
-          username: girlbossceo
+          # username is not really a secret
+          username: ${{ vars.DOCKER_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
 
       - name: Login to GitHub Container Registry
@@ -194,7 +196,7 @@ jobs:
           REGISTRY: ghcr.io
         with:
           registry: ${{ env.REGISTRY }}
-          username: girlbossceo
+          username: ${{ github.repository_owner }}
           password: ${{ secrets.GITHUB_TOKEN }}