diff --git a/.woodpecker.yml b/.woodpecker.yml
index 24c50bc..3d95ab0 100644
--- a/.woodpecker.yml
+++ b/.woodpecker.yml
@@ -33,8 +33,8 @@ steps:
       - echo "Verifications de securite OK"
 
   # Etape 3a : Ecriture du .env depuis les secrets
-  # NOTE: valeur statique obligatoire (bug Woodpecker next : environment sans statique = secrets vides)
-  - name: write-env
+  # BUG Woodpecker next : max 2 from_secret par step, valeur statique obligatoire
+  - name: write-env-1
     image: alpine:3.20
     environment:
       TEST_STATIC: hello-world
@@ -42,10 +42,31 @@ steps:
         from_secret: ps_domain
       PS_ADMIN_FOLDER:
         from_secret: ps_admin_folder
+    commands:
+      - printf 'PS_DOMAIN=%s\nPS_ADMIN_FOLDER=%s\n' "${PS_DOMAIN}" "${PS_ADMIN_FOLDER}" > .env.deploy
+
+  - name: write-env-2
+    image: alpine:3.20
+    environment:
+      TEST_STATIC: hello-world
       PRESTASHOP_ADMIN_EMAIL:
         from_secret: prestashop_admin_email
+      PRESTASHOP_ADMIN_PASSWORD:
+        from_secret: prestashop_admin_password
     commands:
-      - echo "PS_DOMAIN len=${#PS_DOMAIN} ADMIN_FOLDER len=${#PS_ADMIN_FOLDER} EMAIL len=${#PRESTASHOP_ADMIN_EMAIL}"
+      - printf 'PRESTASHOP_ADMIN_EMAIL=%s\nPRESTASHOP_ADMIN_PASSWORD=%s\n' "${PRESTASHOP_ADMIN_EMAIL}" "${PRESTASHOP_ADMIN_PASSWORD}" >> .env.deploy
+
+  - name: write-env-3
+    image: alpine:3.20
+    environment:
+      TEST_STATIC: hello-world
+      DB_ROOT_PASSWORD:
+        from_secret: db_root_password
+      DB_PASSWORD:
+        from_secret: db_password
+    commands:
+      - printf 'DB_ROOT_PASSWORD=%s\nDB_PASSWORD=%s\n' "${DB_ROOT_PASSWORD}" "${DB_PASSWORD}" >> .env.deploy
+      - echo "Fichier .env.deploy cree ($(wc -c < .env.deploy) octets)"
 
   # Etape 3b : Deploiement sur sonic via Docker socket
   - name: deploy