diff --git a/.gitea/workflows/release.yml b/.gitea/workflows/release.yml
index 7d2d3618..c53797c4 100644
--- a/.gitea/workflows/release.yml
+++ b/.gitea/workflows/release.yml
@@ -93,6 +93,17 @@ jobs:
             --env-file .env.production \
             up -d --wait --remove-orphans
 
+      - name: Reload Caddy
+        # See nightly.yml — same rationale and mechanism: DooD job containers
+        # cannot call systemctl directly; nsenter via a privileged sibling
+        # container reaches the host systemd. Must run after deploy (so the
+        # latest Caddyfile is on disk) and before the smoke test (so the
+        # public surface reflects the current config).
+        run: |
+          docker run --rm --privileged --pid=host \
+            ubuntu:22.04 \
+            nsenter -t 1 -m -u -n -p -i -- /bin/systemctl reload caddy
+
       - name: Smoke test deployed environment
         # See nightly.yml — same three checks, against the prod vhost.
         # --resolve pins archiv.raddatz.cloud to the runner's loopback so