diff --git a/template.yml b/template.yml
index f5f58da..bd1e3ad 100644
--- a/template.yml
+++ b/template.yml
@@ -9,24 +9,20 @@ spec:
     image_suffix:
       default: ""
 ---
-variables:
-  SECRET_DETECTION_EXCLUDED_PATHS: ""
 
-.secret-analyzer:
+secret_detection:
   stage: $[[ inputs.stage ]]
   image: "$[[ inputs.image_prefix ]]/secrets:$[[ inputs.image_tag ]]$[[ inputs.image_suffix ]]"
   services: []
   allow_failure: true
   variables:
     GIT_DEPTH: "50"
+    SECRET_DETECTION_EXCLUDED_PATHS: ""
   # `rules` must be overridden explicitly by each child job
   # see https://gitlab.com/gitlab-org/gitlab/-/issues/218444
   artifacts:
     reports:
       secret_detection: gl-secret-detection-report.json
-
-secret_detection:
-  extends: .secret-analyzer
   rules:
     - if: $CI_COMMIT_BRANCH
   script: