diff --git a/apps/base/hedgedoc/release.yaml b/apps/base/hedgedoc/release.yaml
index 192708f2215803ccf2722780d0dcc879637bc053..f3e6a0b552406e1e8269298f4f23c4149f8bebf1 100644
--- a/apps/base/hedgedoc/release.yaml
+++ b/apps/base/hedgedoc/release.yaml
@@ -39,6 +39,39 @@ spec:
   upgrade:
     remediation:
       retries: -1
+  postRenderers:
+  - kustomize:
+      patchesJson6902:
+        - target:
+            group: apps
+            version: v1
+            kind: Deployment
+            name: mastodon-streaming
+          patch:
+            - op: add
+              path: /spec/template/spec/containers/0/env/-
+              value:
+                name: NODE_EXTRA_CA_CERTS
+                value: /ca/ca.crt
+            - op: add
+              path: /spec/template/spec/containers/0/volumeMounts
+              value: []
+            - op: add
+              path: /spec/template/spec/containers/0/volumeMounts/-
+              value:
+                name: namespace-ca-cert
+                mountPath: "/ca/"
+                readOnly: true
+            - op: add
+              path: /spec/template/spec/volumes
+              value: []
+            - op: add
+              path: /spec/template/spec/volumes/-
+              value:
+                name: namespace-ca-cert
+                secret:
+                  secretName: namespace-ca
+                  optional: false
 ---
 apiVersion: v1
 kind: ConfigMap
@@ -60,6 +93,6 @@ data:
         cpu: 100m
         memory: 512Mi
     podSecurityContext:
-      runAsUser: "10000"
-      runAsGroup: "10000"
+      runAsUser: 10000
+      runAsGroup: 10000
       runAsNonRoot: true