To solve your immediate problem, you can run knife ssh QUERY COMMAND --concurrency NUM where it will only run the command on NUM nodes at once, but chef is designed to be idempotent, so running once an hour should definitely not be a problem if the recipe is designed properly. You might need a not_if or only_if guard on your patching resource.
1 Like