diff --git a/argocd/templates/octopus-tentacle.yaml b/argocd/templates/octopus-tentacle.yaml
new file mode 100644
index 0000000..3a1d368
--- /dev/null
+++ b/argocd/templates/octopus-tentacle.yaml
@@ -0,0 +1,23 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: octopus-tentacle
+  namespace: argocd
+spec:
+  project: default
+  source:
+    repoURL: https://gitlab.com/developerdurp/homelab.git
+    targetRevision: main
+    path: octopus-tentacle
+    directory:
+      recurse: true
+  destination:
+    server: https://kubernetes.default.svc
+    namespace: octopus-tentacle
+  syncPolicy:
+    automated:
+      prune: true
+      selfHeal: false
+    syncOptions:
+      - CreateNamespace=true   
+
diff --git a/octopus-tentacle/Chart.yaml b/octopus-tentacle/Chart.yaml
new file mode 100644
index 0000000..a6141cd
--- /dev/null
+++ b/octopus-tentacle/Chart.yaml
@@ -0,0 +1,7 @@
+apiVersion: v2
+name: octopus-tentacle
+description: A Helm chart for Kubernetes
+type: application
+
+version: 0.1.0
+appVersion: "0.1.0"
diff --git a/octopus-tentacle/templates/deployment.yaml b/octopus-tentacle/templates/deployment.yaml
new file mode 100644
index 0000000..32c8db0
--- /dev/null
+++ b/octopus-tentacle/templates/deployment.yaml
@@ -0,0 +1,45 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: octopus-tentacle
+  labels:
+    app: octopus-tentacle
+spec:
+  selector:
+    matchLabels:
+      app: octopus-tentacle
+  replicas: 1
+  template:
+    metadata:
+      labels:
+        app: octopus-tentacle
+    spec:
+      containers:
+      - name: octopus-tentacle
+        image: registry.durp.info/octopusdeploy/tentacle:latest
+        imagePullPolicy: Always
+        securityContext:
+          allowPrivilegeEscalation: true
+        ports:
+        - name: http
+          containerPort: 10933
+        env:
+          - name: ACCEPT_EULA
+            value: "Y"
+          - name: ListeningPort
+            value: "10933"                      
+          - name: TargetEnvironment
+            value: "Development"          
+          - name: ServerUrl
+            value: "https://octopus.internal.durp.info"              
+          - name: TargetRole
+            value: "k3s"              
+          - name: ServerApiKey
+            valueFrom:
+              secretKeyRef:
+                name: octopus-tentacle-secret
+                key: key
+      volumes:
+      - name: octopus-tentacle-pvc
+        persistentVolumeClaim:
+          claimName: octopus-tentacle-pvc             
diff --git a/octopus-tentacle/templates/secret.yaml b/octopus-tentacle/templates/secret.yaml
new file mode 100644
index 0000000..20e4676
--- /dev/null
+++ b/octopus-tentacle/templates/secret.yaml
@@ -0,0 +1,15 @@
+apiVersion: external-secrets.io/v1beta1
+kind: ExternalSecret
+metadata:
+  name: octopus-tentacle-secret
+spec:
+  secretStoreRef:
+    name: vault
+    kind: ClusterSecretStore
+  target:
+    name: octopus-tentacle-secret
+  data:
+  - secretKey: key
+    remoteRef:
+      key: secrets/octopus/api
+      property: key
diff --git a/octopus-tentacle/templates/service.yaml b/octopus-tentacle/templates/service.yaml
new file mode 100644
index 0000000..fffb559
--- /dev/null
+++ b/octopus-tentacle/templates/service.yaml
@@ -0,0 +1,12 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: octopus-tentacle
+spec:
+  ports:
+  - name: http
+    port: 10933
+    targetPort: 10933
+    protocol: TCP
+  selector:
+    app: octopus-tentacle