diff --git a/.gitea/workflows/tf-plan.yml b/.gitea/workflows/tf-plan.yml
index 242a90e..5ba503f 100644
--- a/.gitea/workflows/tf-plan.yml
+++ b/.gitea/workflows/tf-plan.yml
@@ -14,6 +14,9 @@ on:
       ssh-known-hosts:
         required: true
         type: string
+    outputs:
+      tfplanexitcode:
+        value: ${{ jobs.tf-plan.outputs.tfplanexitcode }}
 
 jobs:
   tf-plan:
@@ -23,30 +26,16 @@ jobs:
       tfplanexitcode: ${{ steps.tfplan.outputs.exitcode }}
 
     steps:
-      - name: Clone blackbox repo
-        uses: actions/checkout@v4
-        with:
-          repository: xaked/blackbox
-          path: blackbox
-          ref: master
-      - name: Install blackbox
-        shell: bash
-        run: |
-          cd blackbox || exit 1;
-          make copy-install;
-          cd ${{ github.workspace }};
-          rm -rf blackbox;
       - uses: hashicorp/setup-terraform@v2
         with:
           terraform_version: 1.5.7
           cli_config_credentials_token: ${{ secrets.tf-api-token }}
       - name: Clone repo
         uses: actions/checkout@v4
-      - name: Decrypt secrets
-        shell: bash
-        run: |
-          echo ${{ secrets.gpg-key }} | base64 -d | gpg --import;
-          blackbox_decrypt_all_files;
+      - name: Decrypt blackbox secrets
+        uses: .gitea/workflows/sec-blackbox-decrypt.yml
+        with:
+          gpg-key: ${{ secrets.gpg-key }}
       - name: Setup SSH key
         uses: benoitchantre/setup-ssh-authentication-action@1.0.1
         with: