diff --git a/apps/k8s01/syncthing/kustomization.yaml b/apps/k8s01/syncthing/kustomization.yaml
new file mode 100644
index 0000000000000000000000000000000000000000..f7d38a5b20cf686af6e1dc96a668367c5cb57bed
--- /dev/null
+++ b/apps/k8s01/syncthing/kustomization.yaml
@@ -0,0 +1,8 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: syncthing
+resources:
+  - namespace.yaml
+  - syncthing.yaml
+  - ../../../shared/networkpolicies/allow-from-same-namespace.yaml
+  - ../../../shared/resourcequotas/default.yaml
diff --git a/apps/k8s01/syncthing/namespace.yaml b/apps/k8s01/syncthing/namespace.yaml
new file mode 100644
index 0000000000000000000000000000000000000000..416decd386c942eca8cc0e3436d02f9296647e95
--- /dev/null
+++ b/apps/k8s01/syncthing/namespace.yaml
@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: syncthing
+  labels:
+    pod-security.kubernetes.io/audit: restricted
+    pod-security.kubernetes.io/enforce: baseline
+    pod-security.kubernetes.io/warn: restricted
+    pod-security.kubernetes.io/audit-version: v1.23
+    pod-security.kubernetes.io/enforce-version: v1.23
+    pod-security.kubernetes.io/warn-version: v1.23
diff --git a/apps/k8s01/syncthing/syncthing.yaml b/apps/k8s01/syncthing/syncthing.yaml
new file mode 100644
index 0000000000000000000000000000000000000000..5174c98eb72ff9f6e712899147d7b3b4862d4a89
--- /dev/null
+++ b/apps/k8s01/syncthing/syncthing.yaml
@@ -0,0 +1,55 @@
+---
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: syncthing
+  namespace: syncthing
+  labels:
+    app.kubernetes.io/name: syncthing
+spec:
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: syncthing
+  serviceName: "syncthing"
+  replicas: 1
+  minReadySeconds: 10
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/name: syncthing
+    spec:
+      terminationGracePeriodSeconds: 10
+      containers:
+      - name: syncthing
+        image: docker.io/syncthing/syncthing:1.22.1
+        ports:
+        - containerPort: 8384
+          name: web
+          protocol: TCP
+        - containerPort: 22000
+          name: transfer-tcp
+          protocol: TCP
+        - containerPort: 22000
+          name: transfer-quick
+          protocol: UDP
+        - containerPort: 21027
+          name: discovery
+          protocol: UDP
+        volumeMounts:
+        - name: storage
+          mountPath: /var/syncthing
+        resources:
+          requests:
+            cpu: 100m
+            memory: 512Mi
+          limits:
+            cpu: 1000m
+            memory: 1Gi
+  volumeClaimTemplates:
+  - metadata:
+      name: storage
+    spec:
+      accessModes: [ "ReadWriteOnce" ]
+      resources:
+        requests:
+          storage: 70Gi
\ No newline at end of file
diff --git a/renovate.json b/renovate.json
index 9f16d99d9d019d0330dd1084cfeda10cdaf0ab31..41e2f83a2826673e745ff21f660316b03ed675a1 100644
--- a/renovate.json
+++ b/renovate.json
@@ -14,6 +14,7 @@
   "kubernetes": {
     "fileMatch": [
       "apps/k8s01/dns/.+\.yaml$",
+      "apps/k8s01/syncthing/.+\.yaml$",
       "apps/base/iot/.+\.yaml$"
     ]
   },