diff --git a/remodel/k8s/README.md b/remodel/k8s/README.md
index f62efa3..5faa759 100644
--- a/remodel/k8s/README.md
+++ b/remodel/k8s/README.md
@@ -47,3 +47,15 @@ kubectl kustomize --enable-helm infra/storage | kubectl apply -f -
 ```shell
 kubectl kustomize --enable-helm infra/controllers | kubectl apply -f -
 ```
+
+
+# SBOM
+
+* [x] Cilium
+* [] Hubble
+* [x] Argo CD
+* [x] Proxmox CSI Plugin
+* [x] Cert-manager
+* [] Gateway
+* [] CNPG
+* [] Authentication (Keycloak, Authentik, ...)
diff --git a/remodel/k8s/infra/controllers/argocd/kustomization.yaml b/remodel/k8s/infra/controllers/argocd/kustomization.yaml
index be8be74..359d1cc 100644
--- a/remodel/k8s/infra/controllers/argocd/kustomization.yaml
+++ b/remodel/k8s/infra/controllers/argocd/kustomization.yaml
@@ -13,4 +13,4 @@ helmCharts:
     version: 7.3.4
     releaseName: "argocd"
     namespace: argocd
-    valuesFile: values.yaml
\ No newline at end of file
+    valuesFile: values.yaml
diff --git a/remodel/k8s/infra/controllers/cert-manager/kustomization.yaml b/remodel/k8s/infra/controllers/cert-manager/kustomization.yaml
new file mode 100644
index 0000000..1d18651
--- /dev/null
+++ b/remodel/k8s/infra/controllers/cert-manager/kustomization.yaml
@@ -0,0 +1,13 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+  - ns.yaml
+
+helmCharts:
+  - name: cert-manager
+    repo: https://charts.jetstack.io
+    version: 1.15.1
+    releaseName: cert-manager
+    namespace: cert-manager
+    valuesFile: values.yaml
diff --git a/remodel/k8s/infra/controllers/cert-manager/ns.yaml b/remodel/k8s/infra/controllers/cert-manager/ns.yaml
new file mode 100644
index 0000000..661039b
--- /dev/null
+++ b/remodel/k8s/infra/controllers/cert-manager/ns.yaml
@@ -0,0 +1,4 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cert-manager
\ No newline at end of file
diff --git a/remodel/k8s/infra/controllers/cert-manager/values.yaml b/remodel/k8s/infra/controllers/cert-manager/values.yaml
new file mode 100644
index 0000000..f0201b7
--- /dev/null
+++ b/remodel/k8s/infra/controllers/cert-manager/values.yaml
@@ -0,0 +1,28 @@
+installCRDs: true
+
+extraArgs:
+  - "--enable-gateway-api"
+
+resources:
+  limits:
+    cpu: 100m
+    memory: 128Mi
+  requests:
+    cpu: 10m
+    memory: 64Mi
+webhook:
+  resources:
+    limits:
+      cpu: 100m
+      memory: 64Mi
+    requests:
+      cpu: 10m
+      memory: 32Mi
+cainjector:
+  resources:
+    limits:
+      cpu: 100m
+      memory: 128Mi
+    requests:
+      cpu: 10m
+      memory: 64Mi
\ No newline at end of file