What about side loading?
I worked for a blue chip where they had an extreme side loading policy - my view was that if I compiled the open source code myself then I wasn't breaching policy but knew better than to ask for confirmation. Others would use standalone laptops with unencrypted hard drives and admin passwords taped to them...