diff --git a/flux/cluster/apps/gitops/kustomization.yaml b/flux/cluster/apps/gitops/kustomization.yaml
new file mode 100644
index 00000000..4ddab702
--- /dev/null
+++ b/flux/cluster/apps/gitops/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - renovate
diff --git a/flux/cluster/apps/gitops/renovate/external-secret.yaml b/flux/cluster/apps/gitops/renovate/external-secret.yaml
new file mode 100644
index 00000000..fbf70f26
--- /dev/null
+++ b/flux/cluster/apps/gitops/renovate/external-secret.yaml
@@ -0,0 +1,17 @@
+apiVersion: external-secrets.io/v1beta1
+kind: ExternalSecret
+metadata:
+  name: authentik
+  namespace: gitops
+spec:
+  refreshInterval: "5m"
+  secretStoreRef:
+    name: vault
+    kind: ClusterSecretStore
+  target:
+    name: authentik
+  data:
+  - secretKey: RENOVATE_TOKEN
+    remoteRef:
+      key: gitops/renovate
+      property: gitea_token
diff --git a/flux/cluster/apps/gitops/renovate/kustomization.yaml b/flux/cluster/apps/gitops/renovate/kustomization.yaml
new file mode 100644
index 00000000..020b7516
--- /dev/null
+++ b/flux/cluster/apps/gitops/renovate/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - external-secret.yaml
diff --git a/flux/cluster/apps/kustomization.yaml b/flux/cluster/apps/kustomization.yaml
index 190001b1..3f6840a0 100644
--- a/flux/cluster/apps/kustomization.yaml
+++ b/flux/cluster/apps/kustomization.yaml
@@ -3,4 +3,5 @@ kind: Kustomization
 resources:
   - networking
   - presidential-paradise
-  - authentik
\ No newline at end of file
+  - authentik
+  - gitops
diff --git a/flux/cluster/core/namespaces/gitops.yaml b/flux/cluster/core/namespaces/gitops.yaml
new file mode 100644
index 00000000..4ac5db77
--- /dev/null
+++ b/flux/cluster/core/namespaces/gitops.yaml
@@ -0,0 +1,5 @@
+---
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: gitops
diff --git a/flux/cluster/core/namespaces/kustomization.yaml b/flux/cluster/core/namespaces/kustomization.yaml
index 753e131b..fcca7cfa 100644
--- a/flux/cluster/core/namespaces/kustomization.yaml
+++ b/flux/cluster/core/namespaces/kustomization.yaml
@@ -5,4 +5,5 @@ resources:
   - networking.yaml
   - external-secrets.yaml
   - authentik.yaml
+  - gitops.yaml