diff --git a/.gitea/workflows/check-flake.yml b/.gitea/workflows/check-flake.yml
index a516b6d..d9e6f1f 100644
--- a/.gitea/workflows/check-flake.yml
+++ b/.gitea/workflows/check-flake.yml
@@ -20,6 +20,10 @@ jobs:
         with:
           github_access_token: ${{ secrets.GH_ACCESS_TOKEN }}
       - name: Build nix flake
-        run: nix build
+        run: |
+          # Deny root access to homeless-shelter
+          sudo mkdir /homeless-shelter
+          sudo chmod 000 /homeless-shelter
+          nix build
       - name: Check nix flake
         run: nix flake check --all-systems