diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..1230149
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,6 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "daily"
diff --git a/.github/workflows/shellcheck.yml b/.github/workflows/shellcheck.yml
index ca21b8a..49971fc 100644
--- a/.github/workflows/shellcheck.yml
+++ b/.github/workflows/shellcheck.yml
@@ -17,6 +17,6 @@ jobs:
     name: Bash syntax checker
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
     - name: Run ShellCheck
       uses: ludeeus/action-shellcheck@master
diff --git a/README.md b/README.md
index 90eaa93..946396f 100644
--- a/README.md
+++ b/README.md
@@ -28,12 +28,12 @@ bash easy-arch.sh
 ## Partitions layout 
 
 The **partitions layout** is simple and it consists solely of two partitions:
-1. A **FAT32** partition (512MiB), mounted at `/boot/` as ESP.
+1. A **FAT32** partition (1GiB), mounted at `/boot/` as ESP.
 2. A **LUKS2 encrypted container**, which takes the rest of the disk space, mounted at `/` as root.
 
 | Partition Number | Label     | Size              | Mountpoint     | Filesystem              |
 |------------------|-----------|-------------------|----------------|-------------------------|
-| 1                | ESP       | 512 MiB           | /boot/         | FAT32                   |
+| 1                | ESP       | 1 GiB              | /boot/         | FAT32                   |
 | 2                | Cryptroot | Rest of the disk  | /              | BTRFS Encrypted (LUKS2) |
 
 ## BTRFS subvolumes layout
diff --git a/easy-arch.sh b/easy-arch.sh
index 34b1b75..e811802 100755
--- a/easy-arch.sh
+++ b/easy-arch.sh
@@ -306,9 +306,9 @@ sgdisk -Zo "$DISK" &>/dev/null
 info_print "Creating the partitions on $DISK."
 parted -s "$DISK" \
     mklabel gpt \
-    mkpart ESP fat32 1MiB 513MiB \
+    mkpart ESP fat32 1MiB 1025MiB \
     set 1 esp on \
-    mkpart CRYPTROOT 513MiB 100% \
+    mkpart CRYPTROOT 1025MiB 100% \
 
 ESP="/dev/disk/by-partlabel/ESP"
 CRYPTROOT="/dev/disk/by-partlabel/CRYPTROOT"
@@ -406,6 +406,10 @@ arch-chroot /mnt /bin/bash -e <<EOF
     # Generating locales.
     locale-gen &>/dev/null
 
+    # Create SecureBoot keys. 
+    # This isn't strictly necessary, linux-hardened preset expects it and mkinitcpio will fail without it
+    sbctl create-keys
+
     # Generating a new initramfs.
     mkinitcpio -P &>/dev/null