diff --git a/.sops.yaml b/.sops.yaml
index e9a5717..dfd2a36 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -1,6 +1,7 @@
 keys:
   - &vili-bw age1pvkuvcc38pke3euzsjzpgp6s6v3jykug2e69rplytdy7gxntm5jsraxhvp
   - &helium age1xp02dggk2e6csvxg2q5nfts4tjhd05vthrcvvk2l67m3tgs3vugqshg24q
+  - &lithium age1yrfr0q72nqa842t0mzckeemfww28qzcd3wqmrd8mvzwvgpzssvlq9ruzlk
   - &ci age18k4drn9kuhu5qk8cqfd390nv9r0pq0qql6s76hkhzefxskwnscxsqm78q4
   - &forgejo age1mfvue6vjj445dtly39k5vlcnhpfdf0ujumm6v8degk2lvaa9avcsl2eeg7
   - &idacloud age1actwp5rqczazhgl94npwc0phxuxzjgrk9v82e32sahanw8cyuc7stxkls2
@@ -13,11 +14,17 @@ creation_rules:
     - age:
       - *vili-bw
       - *helium
+  - path_regex: ^secrets/lithium/.*\.yaml$
+    key_groups:
+    - age:
+      - *vili-bw
+      - *lithium
   - path_regex: ^secrets/users/vili.yaml$
     key_groups:
     - age:
       - *vili-bw
       - *helium
+      - *lithium
   - path_regex: ^secrets/ci.yaml$
     key_groups:
     - age:
diff --git a/secrets/lithium/home-wg.yaml b/secrets/lithium/home-wg.yaml
new file mode 100644
index 0000000..f072d4b
--- /dev/null
+++ b/secrets/lithium/home-wg.yaml
@@ -0,0 +1,26 @@
+priv-home-wg: ENC[AES256_GCM,data:B6JqLVfCW7W09FHPJ7W2cQwc5EBnMerwfhs1FiMdMleyC6IURtw9UkHR0jM=,iv:EZ9uJHC3dMhYVO9PQg6M9oAfpixuV6pXK6bils3fpSI=,tag:0inI0to6a7DC+Qv7SHMoBg==,type:str]
+psk-home-wg: ENC[AES256_GCM,data:Q6ouJVw2MNsiD4f86tRD21TMfkxzlLQbL2j4LYc2yf5PMewvsqzq8AyJcHo=,iv:eJY/GlrH5p35jggZfoLk2rmuB6xwcMoAD/ZRaq95PUU=,tag:LWPDZvmR93HiO2OQV/26QA==,type:str]
+sops:
+    age:
+        - recipient: age1pvkuvcc38pke3euzsjzpgp6s6v3jykug2e69rplytdy7gxntm5jsraxhvp
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBDK09DWW01YUZNRm9EU0hT
+            alZFRENKdlRLK3lyNHM2enNqNU55a1ZHUEUwCmRPemZFU3N2WDdhN3lRM3RmQXhs
+            dE96eFFZTnNYaUZGNEFxQzdob3dsOWMKLS0tIDQxY2xtOE8xSHR5UEg4cEZtQmF2
+            WGoyUDVyelRZTUlURWU5WTdMY2FVODAKUhwa9kKBuLRSb6lIf4NSMEDwC3RLSN9e
+            F3Kh6tr0tM3+8Mvxb7YZQj3JG3iKOAMyf6OLWzd62c3+z0uIo9UYPg==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1yrfr0q72nqa842t0mzckeemfww28qzcd3wqmrd8mvzwvgpzssvlq9ruzlk
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBDbmZWYVVBZGp5R0piVVI0
+            ckVQSmNFVEdmOWZHZTZCa2xkOHpxZGdtcWtvClJCclVuL2NKbnl2MTVOWXJWb1pa
+            dFp3Vk1uakMxNWlTbmw2K2tQcytxUzAKLS0tIEFWYllKYUl1NXVHVndONUVhT3hC
+            UWVyb1BZVGlRdmZOQlZKa2ZSRWF4Y2sKrNfV4+Pxy6YtAR75qNqeUWZk9Mj6zmOX
+            df4Vbs2FY13Qi1l401cP58HPH/iWLCPXfLfr/HDRTCXVEwKafl2UFw==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2025-06-21T13:56:16Z"
+    mac: ENC[AES256_GCM,data:G0kbFZSXV0tfgkgMVmyL5YNscKSdzfjkBLf7Yoe/C2xqIfUSTS/pqBBxaCeclgCxJeNS0VFrMQqT5oU/UgGzAHeHqbcYZExpYJ6b1SAf5vL4KV3c0+hLp8yS9vxkr+G4cg0zA8eCg0tnnDdcp1BL6rVpnTICSRe4BQrS8lGhNt8=,iv:BA5xeUnGVwTeC8YzN2/09puM1US+Wmlfj6/B5p4xdL0=,tag:O11sjw7es6HaByqjB7Yc4Q==,type:str]
+    unencrypted_suffix: _unencrypted
+    version: 3.10.2
diff --git a/secrets/lithium/vili.yaml b/secrets/lithium/vili.yaml
new file mode 100644
index 0000000..5561787
--- /dev/null
+++ b/secrets/lithium/vili.yaml
@@ -0,0 +1,25 @@
+vili-password: ENC[AES256_GCM,data:RGsZFfcIBJ/mL+2iFk1FuQXO3WhXToRoHBnspnD3djUfL8RTjnrK2ykq2eZQWwPKB9WNhO5APm0eAw6IlwxyVxor2WT3/TmQxQ==,iv:4h4QIEL24iEKEhq+FJVh29XveqWwX5tOQ8wTT+MeCAw=,tag:DMihXJQonZB7pJ94q6xZ2g==,type:str]
+sops:
+    age:
+        - recipient: age1pvkuvcc38pke3euzsjzpgp6s6v3jykug2e69rplytdy7gxntm5jsraxhvp
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBqNlVkS2lJNDl6MHV4enI4
+            WVZrdTcrSjVURERiZ0pwYmNoOVpSazBmTENFCmpmYlBiMmRSNHlaeVRWWG9ZNDdN
+            WE5Ic1pwRzJtbW43NkNlRmgyQUlWMGMKLS0tIFlUZkFTMEFMWExkYThTVCtoKzBw
+            QUp1MEtTR0RjRkhXREpsczlOMm5VM3cKXvs2GQGK0eU0WkP2LjMcdKjI4qLpJsia
+            xz294g3xUADe1zB2YsYYrH78j3CuJQCFLhC+97SD+zOzFFFA5X+5Hg==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1yrfr0q72nqa842t0mzckeemfww28qzcd3wqmrd8mvzwvgpzssvlq9ruzlk
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJT2p5T3I2VmZvcnRIT1Av
+            ODJWYm1SZ2c1U1hKNXlNQnJhYzNJQm50ZG53Ck8vRVNPR1FDSW1OZ29KZ2loOEF1
+            M0FDM2ovL0tGYWM2WjNWVzRqNUxWVDAKLS0tIGdsRnAyVC95V2hjQ0Y2NEJLNWhy
+            MWZSaHdUQTZXV0RBMTJGZmF1V0QyaEUKTPgzOLW9M0T5LYKqEpiUYsYYrHtDV3Ph
+            7KuiVAEjBbG4jtx66jTxJvQ0SpXFhXDDszxEeEv7c8XsfSKVH6lNWA==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2025-06-21T14:11:27Z"
+    mac: ENC[AES256_GCM,data:5mGy3tzk2flYvYvFN42sB4z5qikQBAv9NtgdnmN9kGGelVTZoUox/FaCbO0JEBBiiyLMxoE/1Mdnl1J4I0XaGIzCR9aD6Wz9o320K2TXWTK9HHJwOPNyhK1BcHdMEV3p8pFAkA+n4r0Ny7BWzbzuQUoUqmpOqPUmHMVrGgofTh0=,iv:w0T4N7agA2VtKZJhZhvjLczKCKZ95EDgi9bI3oyKGts=,tag:DCsWiYpmYsOR2Anz/NQdaA==,type:str]
+    unencrypted_suffix: _unencrypted
+    version: 3.10.2
diff --git a/secrets/users/vili.yaml b/secrets/users/vili.yaml
index 90690f9..0a47517 100644
--- a/secrets/users/vili.yaml
+++ b/secrets/users/vili.yaml
@@ -4,20 +4,29 @@ sops:
         - recipient: age1pvkuvcc38pke3euzsjzpgp6s6v3jykug2e69rplytdy7gxntm5jsraxhvp
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBwdTR2Z0tSN3VXdTQ5SDNL
-            WnRMcm9DTi83SWRwQXBFK3VZY3IrcUFpWXdvCkhSckQ0b0ZHVlZnZlhHSGlLNjg0
-            MnA4QjBVdkx1cXBYMG9iN1JVQUk3ZjQKLS0tIGFoUDJ6NWJublZkeFkrVTVkQUM4
-            bHNVT2pYYUtXenYzYkc3QnhKaDc4ZDQKTX7BT0uMjyP3Vj/mZUW/lDwKItTXx3mo
-            0qkDJ/TmKdYLj/gRkb5YwsXCpcsB5ovOTI9/mbJeMwBzMM5NTKJ+mg==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB2eUJjQWtrcGxEWnFZamRx
+            QTFhOTdmaGt3cEhSYThFMjlrbkV2WTdwcFdjCkJpdmNtUkRsM1pGQ000V0N4d0Nk
+            d0lLWmdWTytKTWtKbFNNYmpvSXRsd3MKLS0tIGY0MEI3TWlKZFkwQy9RUmNrSkVJ
+            MUVDUmladjJrZVZXS2MvKzJGUTZscVUKk510+IUsO4yq7ZH8aOvl+C0WzlYRGdzv
+            TzKXvPAZHI8BL+YMAjNj1gFNo9NK7jkklP8/0w7+ThrpHu6/IKzKZA==
             -----END AGE ENCRYPTED FILE-----
         - recipient: age1xp02dggk2e6csvxg2q5nfts4tjhd05vthrcvvk2l67m3tgs3vugqshg24q
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBKdGpmNWI1bmFsWlBTSmVW
-            RzlQVktaQnEvc1R3YWl4TDZqV2FHVlgyVVc4CmJZZ3dUWmJ1K2RrSVR4YTg5cEZO
-            UUFyOHkrcDNxUEZ6L3Noak1EU1lhQmsKLS0tIFFDTjRoeWhFK2w2QkRDNGZtOXpH
-            dTlrZEl0RFA1TUl5WTdEUjNFRkYyMHcKm+EHlkTkRsUd3vtENFIgIwt5Zqt22Er4
-            PHLrTG8ev41ws0jtQPLsSSz7FfXW2rTJjs5TEsly1KJJGwlNJI9gxw==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBaRGNBY2RHb1RCdTNRZjhL
+            UnlodVBYWHFjUFowK1dNWEdXWkZJN0luUFhnCitSa05TSEY2NW9MM3dIQmRpOG9p
+            OVovcGxXT3UzMStXQ1FkNGJRTEZnaEUKLS0tIGcxYlFhRlR1Y1ZnOWlIMlh4bmwy
+            dUlnN2RKRmxQamxjV0VoTFA5V1NEMUEKctraZulYSWKoUAy/47uq5s24obqQHvNZ
+            dxGaVmjZpPmNyUw7UcamRTdbdPHi4u2F5VmEPBK9YroDWryrL4k73A==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1yrfr0q72nqa842t0mzckeemfww28qzcd3wqmrd8mvzwvgpzssvlq9ruzlk
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBKQVFab0lTalV5MFI2dUY2
+            a0h2SlBLTWhXVGtPY01LMTloRUtUNytrVFdJCnVjQnphYzRSQ1p1WjB2dS90c29J
+            bFZkNnF6a2xiWlhTdHA1K0xKbGFNb0UKLS0tIGFlWHlSaUkrMXh1RjNaMzNUYm9F
+            U1VaZERTNndxc1hVbm04eDVzdW9Wa28KqO3N6dMLny3liCEc5Rh3+jjw56ghajTj
+            u5n33jEko8u+Li9v7nHAVqdzw9WDrPdwJz00xc4tGYewRHW+s16qxg==
             -----END AGE ENCRYPTED FILE-----
     lastmodified: "2025-06-21T12:17:55Z"
     mac: ENC[AES256_GCM,data:iHPaSftY2MFHgg+426dlTtTPWbL3AO84ND1CHViJ81bUm9CYTKlLGU23ocKVJRzPy85BhOGh2R4uURP1dvQ3BiFWGK3B2t8xtg1vTz5jSgQkvWr5RRiDLOvHWb4cT4O5cI8MHkLtYAl1ungdZj+uCIIw9unzDD+HpjlOlCaf8C0=,iv:HFZfxCBQEB0G7oalRkNFykeJ3+9xssUJN5oB/j1Z3xI=,tag:PabtyU0ZvSRWlmz7y35uMA==,type:str]