diff --git a/.forgejo/workflows/tofu.yml b/.forgejo/workflows/tofu.yml
index 2988a8f7..c33e963d 100644
--- a/.forgejo/workflows/tofu.yml
+++ b/.forgejo/workflows/tofu.yml
@@ -14,6 +14,48 @@ jobs:
       - name: Checkout code
         uses: actions/checkout@v4
 
+      - name: Get Secrets from Bitwarden
+        id: bitwarden-secrets
+        uses: https://github.com/bitwarden/sm-action@v2
+        with:
+          access_token: ${{ secrets.BW_ACCESS_TOKEN }}
+          base_url: https://vault.bitwarden.com
+          secrets: |
+            c65f8886-f6fb-4c17-bc79-b208000604bf > arrbuntu_ip_address
+            a54974b8-c6b3-4df7-9042-b20800064050 > downloaders_ip_address
+            dacbeafa-c671-4b9c-9334-b2080006f75b > init_password
+            9ceabbd0-6492-4674-9bab-b2080006e333 > init_username
+            0bc3c1a3-fc48-48ce-85c5-b2080007136a > kasm_ip
+            63ca1819-5090-4e30-9dba-b20800072718 > kasm_ssh_ip
+            47ef68aa-32a9-45b0-835d-b2080006ce38 > npm_ip_address
+            d0c7f3ec-8277-4b1b-9a1b-b2080006b842 > prox_ip_address
+            17ab7869-c7a1-4ece-8c64-b20800075213 > pve2_ip_address
+            f8f85ab2-5f6d-46a7-9e06-b20800076d26 > s3_endpoint
+            68f1d77d-4e96-498a-9464-b208000679a4 > ssh_password
+            d0762ced-73de-4f30-aa1c-b20800069536 > ssh_username
+            d8017351-7a11-42e6-9e8d-b208000739b8 > ubu_ip_address
+            1d250f4a-ae18-4e19-934c-b2080005e132 > virtual_environment_api
+            a4ed343a-bb92-4beb-a421-b2080005bf98 > virtual_environment_endpoint
+            af0ed579-05f8-405f-b0f3-b208000620ca > vlan_gateway
+
+      - name: Write secrets to secrets.tfvars
+        run: |
+          echo "arrbuntu_ip_address = \"${{ steps.bitwarden-secrets.outputs.arrbuntu_ip_address }}\"" >> ./terraform/secrets.tfvars
+          echo "downloaders_ip_address = \"${{ steps.bitwarden-secrets.outputs.downloaders_ip_address }}\"" >> ./terraform/secrets.tfvars
+          echo "init_password = \"${{ steps.bitwarden-secrets.outputs.init_password }}\"" >> ./terraform/secrets.tfvars
+          echo "kasm_ip = \"${{ steps.bitwarden-secrets.outputs.kasm_ip }}\"" >> ./terraform/secrets.tfvars
+          echo "kasm_ssh_ip = \"${{ steps.bitwarden-secrets.outputs.kasm_ssh_ip }}\"" >> ./terraform/secrets.tfvars
+          echo "npm_ip_address = \"${{ steps.bitwarden-secrets.outputs.npm_ip_address }}\"" >> ./terraform/secrets.tfvars
+          echo "prox_ip_address = \"${{ steps.bitwarden-secrets.outputs.prox_ip_address }}\"" >> ./terraform/secrets.tfvars
+          echo "pve2_ip_address = \"${{ steps.bitwarden-secrets.outputs.pve2_ip_address }}\"" >> ./terraform/secrets.tfvars
+          echo "s3_endpoint = \"${{ steps.bitwarden-secrets.outputs.s3_endpoint }}\"" >> ./terraform/secrets.tfvars
+          echo "ssh_password = \"${{ steps.bitwarden-secrets.outputs.ssh_password }}\"" >> ./terraform/secrets.tfvars
+          echo "ssh_username = \"${{ steps.bitwarden-secrets.outputs.ssh_username }}\"" >> ./terraform/secrets.tfvars
+          echo "ubu_ip_address = \"${{ steps.bitwarden-secrets.outputs.ubu_ip_address }}\"" >> ./terraform/secrets.tfvars
+          echo "virtual_environment_api = \"${{ steps.bitwarden-secrets.outputs.virtual_environment_api }}\"" >> ./terraform/secrets.tfvars
+          echo "virtual_environment_endpoint = \"${{ steps.bitwarden-secrets.outputs.virtual_environment_endpoint }}\"" >> ./terraform/secrets.tfvars
+          echo "vlan_gateway = \"${{ steps.bitwarden-secrets.outputs.vlan_gateway }}\"" >> ./terraform/secrets.tfvars
+
       - name: Create AWS Credentials Directory
         run: mkdir -p ~/.aws
 
diff --git a/terraform/kasm.tf b/terraform/kasm.tf
index 22ae455c..f48bc29f 100644
--- a/terraform/kasm.tf
+++ b/terraform/kasm.tf
@@ -36,7 +36,7 @@ resource "proxmox_virtual_environment_vm" "Kasm" {
   # VM Disk Settings
   disk {
     datastore_id = "local-lvm"
-    size         = 152
+    size         = 151
     interface    = "scsi0"
   }
 
diff --git a/terraform/vars.tf b/terraform/vars.tf
index 60ca8e46..84b1af3a 100644
--- a/terraform/vars.tf
+++ b/terraform/vars.tf
@@ -18,10 +18,6 @@ variable "downloaders_ip_address" {
         type = string
 }
 
-variable "whisper_ip_address" {
-        type = string
-}
-
 variable "ssh_password" {
         type = string
 }