diff --git a/.github/workflows/build-rust-injector.yml b/.github/workflows/build-rust-injector.yml
index 270a091fcf..77d939f6f7 100644
--- a/.github/workflows/build-rust-injector.yml
+++ b/.github/workflows/build-rust-injector.yml
@@ -9,9 +9,6 @@ on:
       versionTag:
         description: "Version tag"
         required: true
-      branchName:
-        description: "Branch to build the injector from"
-        required: true
 
 jobs:
   build-injector:
@@ -19,8 +16,6 @@ jobs:
     steps:
       - name: "Checkout Repo"
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-        with:
-          ref: ${{ github.event.inputs.branchName }}
 
       - name: Install tools
         uses: ./.github/actions/install-tools
@@ -37,13 +32,14 @@ jobs:
           shasum zarf-injector-amd64 >> checksums.txt
           shasum zarf-injector-arm64 >> checksums.txt
 
-      - name: Set AWS Credentials
+      - name: Auth with AWS
         uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1
         with:
-          aws-access-key-id: ${{ secrets.AWS_GOV_ACCESS_KEY_ID }}
-          aws-secret-access-key: ${{ secrets.AWS_GOV_SECRET_ACCESS_KEY }}
-          aws-region: us-gov-west-1
+          role-to-assume: ${{ secrets.AWS_WRITE_ROLE }}
+          role-session-name: ${{ github.job || github.event.client_payload.pull_request.head.sha || github.sha }}
+          aws-region: us-east-2
+          role-duration-seconds: 3600
 
       - name: Sync Artifacts to S3
         run: |
-          aws s3 sync src/injector/dist/ s3://zarf-public/injector/${{ github.event.inputs.versionTag }}/
+          aws s3 sync src/injector/dist/ s3://zarf-init/injector/${{ github.event.inputs.versionTag }}/