Add the ability to obtain audit info on all node edits showing:
a timestamp of the edit
who performed the edit (Chef user/acct)
what was changed
Ideally this would include when a node was initially created along with if/when a node is deleted (in case someone fat-fingers something and accidentally deletes a node).
We had a situation where ?someone? edited a node's policy and we don't know who did it and since we don't know who did it, we don't know who to ask why they did it. This broke chef-client on that node.
If an auditor asks for evidence on when changes were made to servers, we have all cookbooks, policies, and Jenkins pipeline files managed by BitBucket so we have an audit tail for those, but we've no audit info for any local node edits.