diff --git a/.github/workflows/docker.yaml b/.github/workflows/docker.yaml
index 352d6907de..18b9f3656c 100644
--- a/.github/workflows/docker.yaml
+++ b/.github/workflows/docker.yaml
@@ -13,6 +13,7 @@ env:
   DOCKER_SLUG: public.ecr.aws/v6b8u5o6/notify-api
   KUBECTL_VERSION: '1.23.6'
   WORKFLOW_PAT: ${{ secrets.WORKFLOW_GITHUB_PAT }}
+  DOCKER_SHA: ${GITHUB_SHA::7}
 
 permissions:
   id-token: write   # This is required for requesting the OIDC JWT
@@ -45,7 +46,7 @@ jobs:
           -H "Authorization: Bearer $WORKFLOW_PAT" \
           -H "X-GitHub-Api-Version: 2022-11-28" \
           https://api.github.com/repos/cds-snc/notification-manifests/actions/workflows/rollout-k8s-staging.yaml/dispatches \
-          -d '{"ref":"main","inputs":{"docker_sha":"${GITHUB_SHA::7}"}}'
+          -d '{"ref":"main","inputs":{"docker_sha":"$DOCKER_SHA"}}'
 
     - name: my-app-install token
       id: notify-pr-bot