diff --git a/kubernetes/apps/default/cross-seed/app/externalsecret.yaml b/kubernetes/apps/default/cross-seed/app/externalsecret.yaml
new file mode 100644
index 00000000..0575a99b
--- /dev/null
+++ b/kubernetes/apps/default/cross-seed/app/externalsecret.yaml
@@ -0,0 +1,38 @@
+---
+# yaml-language-server: $schema=https://ks.hsn.dev/external-secrets.io/externalsecret_v1beta1.json
+apiVersion: external-secrets.io/v1beta1
+kind: ExternalSecret
+metadata:
+  name: cross-seed
+spec:
+  secretStoreRef:
+    kind: ClusterSecretStore
+    name: onepassword-connect
+  target:
+    name: cross-seed-secret
+    template:
+      engineVersion: v2
+      data:
+        config.js: |
+          module.exports = {
+            action: "inject",
+            apiKey: "{{.CROSS_SEED_API_KEY}}",
+            dataCategory: "cross-seed",
+            delay: 15,
+            duplicateCategories: true,
+            includeEpisodes: true,
+            includeNonVideos: true,
+            includeSingleEpisodes: true,
+            linkDir: "/data/nas-media/qb/downloads/complete/cross-seed",
+            linkType: "hardlink",
+            matchMode: "safe",
+            outputDir: "/config",
+            port: 80,
+            qbittorrentUrl: "http://qbittorrent.qbittorrent.svc.cluster.local",
+            skipRecheck: true,
+            torrentDir: "/qbittorrent/qBittorrent/BT_backup",
+            torznab: []
+          };
+  dataFrom:
+    - extract:
+        key: cross-seed
diff --git a/kubernetes/apps/default/cross-seed/app/helmrelease.yaml b/kubernetes/apps/default/cross-seed/app/helmrelease.yaml
new file mode 100644
index 00000000..79266e28
--- /dev/null
+++ b/kubernetes/apps/default/cross-seed/app/helmrelease.yaml
@@ -0,0 +1,92 @@
+---
+# yaml-language-server: $schema=https://raw.githubusercontent.com/bjw-s/helm-charts/main/charts/other/app-template/schemas/helmrelease-helm-v2beta2.schema.json
+apiVersion: helm.toolkit.fluxcd.io/v2beta2
+kind: HelmRelease
+metadata:
+  name: cross-seed
+spec:
+  interval: 30m
+  chart:
+    spec:
+      chart: app-template
+      version: 3.1.0
+      sourceRef:
+        kind: HelmRepository
+        name: bjw-s
+        namespace: flux-system
+  install:
+    remediation:
+      retries: 3
+  upgrade:
+    cleanupOnFail: true
+    remediation:
+      strategy: rollback
+      retries: 3
+  dependsOn:
+    - name: qbittorrent
+      namespace: default
+  values:
+    controllers:
+      cross-seed:
+        annotations:
+          reloader.stakater.com/auto: "true"
+        containers:
+          app:
+            image:
+              repository: ghcr.io/cross-seed/cross-seed
+              tag: 6.0.0-3@sha256:a5321633e32698ea0106c0e25dc06a94e399f86928988ad7fd07accc6e872b23
+            env:
+              TZ: America/Chicago
+            args: ["daemon"]
+            probes:
+              liveness:
+                enabled: true
+              readiness:
+                enabled: true
+            securityContext:
+              allowPrivilegeEscalation: false
+              readOnlyRootFilesystem: true
+              capabilities: { drop: ["ALL"] }
+            resources:
+              requests:
+                cpu: 10m
+              limits:
+                memory: 512Mi
+    defaultPodOptions:
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 568
+        runAsGroup: 568
+        fsGroup: 568
+        fsGroupChangePolicy: OnRootMismatch
+        supplementalGroups: [10000]
+        seccompProfile: { type: RuntimeDefault }
+    service:
+      app:
+        controller: cross-seed
+        ports:
+          http:
+            port: 80
+    persistence:
+      config:
+        type: emptyDir
+      secret-file:
+        type: secret
+        name: cross-seed-secret
+        globalMounts:
+          - path: /config/config.js
+            subPath: config.js
+            readOnly: true
+      qbittorrent:
+        existingClaim: qbittorrent
+        globalMounts:
+          - path: /qbittorrent/qBittorrent/BT_backup
+            subPath: qBittorrent/BT_backup
+            readOnly: true
+      media:
+        type: nfs
+        server: 10.1.1.11
+        path: /volume1/Media
+        globalMounts:
+          - path: /data/nas-media
+            subPath: qb/downloads
diff --git a/kubernetes/apps/default/cross-seed/app/kustomization.yaml b/kubernetes/apps/default/cross-seed/app/kustomization.yaml
new file mode 100644
index 00000000..3351d8da
--- /dev/null
+++ b/kubernetes/apps/default/cross-seed/app/kustomization.yaml
@@ -0,0 +1,9 @@
+---
+# yaml-language-server: $schema=https://json.schemastore.org/kustomization
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+  - ./externalsecret.yaml
+  - ./helmrelease.yaml
+generatorOptions:
+  disableNameSuffixHash: true
diff --git a/kubernetes/apps/default/cross-seed/ks.yaml b/kubernetes/apps/default/cross-seed/ks.yaml
new file mode 100644
index 00000000..a930f6df
--- /dev/null
+++ b/kubernetes/apps/default/cross-seed/ks.yaml
@@ -0,0 +1,26 @@
+---
+# yaml-language-server: $schema=https://ks.hsn.dev/kustomize.toolkit.fluxcd.io/kustomization_v1.json
+apiVersion: kustomize.toolkit.fluxcd.io/v1
+kind: Kustomization
+metadata:
+  name: &app cross-seed
+  namespace: flux-system
+spec:
+  targetNamespace: default
+  commonMetadata:
+    labels:
+      app.kubernetes.io/name: *app
+  dependsOn:
+    - name: external-secrets-stores
+  path: ./kubernetes/apps/default/cross-seed/app
+  prune: true
+  sourceRef:
+    kind: GitRepository
+    name: homelab
+  wait: false
+  interval: 30m
+  retryInterval: 1m
+  timeout: 5m
+  postBuild:
+    substitute:
+      APP: *app
diff --git a/kubernetes/apps/default/kustomization.yaml b/kubernetes/apps/default/kustomization.yaml
index 039a7d52..d4627111 100644
--- a/kubernetes/apps/default/kustomization.yaml
+++ b/kubernetes/apps/default/kustomization.yaml
@@ -8,6 +8,7 @@ resources:
   # Flux-Kustomizations
   - ./atuin/ks.yaml
   - ./autobrr/ks.yaml
+  - ./cross-seed/ks.yaml
   - ./excalidraw/ks.yaml
   - ./jellyseerr/ks.yaml
   - ./maintainerr/ks.yaml