Many Chef users are interested in security. To answer the questions you’ve raised, we’ve put a new article called “How to be a Secure Chef” in the Chef skills library.
You’ll find suggestions for securing the Chef server, the Chef client, and your workstation. There’s also a discussion of how to control the promotion of cookbooks within a Chef workflow while sticking to DevOps principles of speed, safety and transparency. You can read the article here.