diff --git a/.drone.yml b/.drone.yml
index 434a8ed..6f103e5 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -20,11 +20,9 @@ steps:
       password:
         from_secret: HARBOR_PASSWORD
 
-  - name: export-infisical-to-k8s
-    image: infisical/infisical:latest
+  - name: export-envs-to-k8s
+    image: bitnami/kubectl:latest
     environment:
-      INFISICAL_TOKEN:
-        from_secret: INFISICAL_TOKEN
       KUBERNETES_SERVER:
         from_secret: K3S_SERVER
       KUBERNETES_CA:
@@ -33,8 +31,31 @@ steps:
         from_secret: K3S_CLIENT_CERT
       KUBERNETES_CLIENT_KEY:
         from_secret: K3S_CLIENT_KEY
+
+      # Todas as variáveis do seu sistema:
+      AWS_ACCESS_KEY_ID:     { from_secret: AWS_ACCESS_KEY_ID }
+      AWS_ENDPOINT:          { from_secret: AWS_ENDPOINT }
+      AWS_REGION:            { from_secret: AWS_REGION }
+      AWS_SECRET_ACCESS_KEY: { from_secret: AWS_SECRET_ACCESS_KEY }
+      CORS_ORIGINS:          { from_secret: CORS_ORIGINS }
+      DB_HOST:               { from_secret: DB_HOST }
+      DB_NAME:               { from_secret: DB_NAME }
+      DB_PASSWORD:           { from_secret: DB_PASSWORD }
+      DB_PORT:               { from_secret: DB_PORT }
+      DB_SSLMODE:            { from_secret: DB_SSLMODE }
+      DB_USER:               { from_secret: DB_USER }
+      ENV:                   { from_secret: ENV }
+      JWT_SECRET:            { from_secret: JWT_SECRET }
+      MAX_UPLOAD_CAD_SIZE:   { from_secret: MAX_UPLOAD_CAD_SIZE }
+      PORT:                  { from_secret: PORT }
+      S3_BUCKET:             { from_secret: S3_BUCKET }
+      UPLOAD_DIR:            { from_secret: UPLOAD_DIR }
+
+      # Harbor/Docker
+      HARBOR_USERNAME:       { from_secret: HARBOR_USERNAME }
+      HARBOR_PASSWORD:       { from_secret: HARBOR_PASSWORD }
+
     commands:
-      - infisical export --env=production --format=dotenv > .env.k8s
       - echo "$KUBERNETES_CA" | base64 -d > /tmp/ca.crt
       - echo "$KUBERNETES_CLIENT_CERT" | base64 -d > /tmp/client.crt
       - echo "$KUBERNETES_CLIENT_KEY" | base64 -d > /tmp/client.key
@@ -42,6 +63,28 @@ steps:
       - kubectl config set-credentials drone --client-certificate=/tmp/client.crt --client-key=/tmp/client.key
       - kubectl config set-context drone-context --cluster=k3s --namespace=gohorsejobs --user=drone
       - kubectl config use-context drone-context
+      - |
+        cat <<EOF > .env.k8s
+        AWS_ACCESS_KEY_ID=$AWS_ACCESS_KEY_ID
+        AWS_ENDPOINT=$AWS_ENDPOINT
+        AWS_REGION=$AWS_REGION
+        AWS_SECRET_ACCESS_KEY=$AWS_SECRET_ACCESS_KEY
+        CORS_ORIGINS=$CORS_ORIGINS
+        DB_HOST=$DB_HOST
+        DB_NAME=$DB_NAME
+        DB_PASSWORD=$DB_PASSWORD
+        DB_PORT=$DB_PORT
+        DB_SSLMODE=$DB_SSLMODE
+        DB_USER=$DB_USER
+        ENV=$ENV
+        JWT_SECRET=$JWT_SECRET
+        MAX_UPLOAD_CAD_SIZE=$MAX_UPLOAD_CAD_SIZE
+        PORT=$PORT
+        S3_BUCKET=$S3_BUCKET
+        UPLOAD_DIR=$UPLOAD_DIR
+        HARBOR_USERNAME=$HARBOR_USERNAME
+        HARBOR_PASSWORD=$HARBOR_PASSWORD
+        EOF
       - kubectl -n gohorsejobs delete secret backend-secrets --ignore-not-found
       - kubectl -n gohorsejobs create secret generic backend-secrets --from-env-file=.env.k8s