Hi Katherine,

I don't know if it would help to tell your IT department that British
Library Technology have allowed OpenRefine installs on managed laptops
despite the very, very strict requirements after the big 2023 ransomware
attack? But I don't know if they encountered the issue in your third point.

Cheers,
Mia

--------------------------------------------
http://openobjects.org.uk/
<http://twitter.com/mia_out>
https://hcommons.social/@mia
The Collective Wisdom Handbook: perspectives on crowdsourcing in cultural
heritage <https://britishlibrary.pubpub.org/>
Crowdsourcing our Cultural Heritage
<https://www.miaridge.com/crowdsourcing-our-cultural-heritage/>
P.S. I mostly use this address for list mail and don't check it daily


On Mon, 1 Dec 2025 at 03:52, Katherine O'Brien <[log in to unmask]>
wrote:

> Hi all,
>
> I'm trying to get approval to install OpenRefine on my university-owned
> device, but my request has been rejected due to security and management
> concerns. I'd love to hear from anyone using OpenRefine in an institutional
> context. How do you or your IT department manage it?
>
> Here are the main concerns raised by the IT department:
>
>
>   1.
> Lack of vendor support for open-source software
> I explained that OpenRefine has an active developer and user community,
> plus plenty of online training resources. This is no longer a concern.
>   2.
> Manual update processes
> I shared that OpenRefine is available through various package
> repositories, which they agreed could work.
>   3.
> Microsoft Defender cannot detect OpenRefine
> The issue is that OpenRefine uses a non-standard installation architecture
> and lacks a digital signature for its CPE, preventing Defender from
> identifying it. They said that since there’s no way to manually intervene,
> it creates challenges for vulnerability management.
>
> I posted about this on the OpenRefine discussion board<
> https://forum.openrefine.org/t/misunderstood-requirements-preventing-the-use-of-openrefine/1865>
> and got helpful feedback, but Point 3 remains a blocker. Has anyone
> successfully addressed this issue with institutional devices?
>
> Thanks in advance for any insights!
>
> Katherine
>
> Katherine O'Brien (She / Her)
> Application Administrator, Online Services
> The University of Notre Dame Australia
> Phone: +61 8 9433 0703 | University Library<https://library.nd.edu.au/home
> >
> ND39 Fremantle Campus, Nyungar boodjar
> I respect and acknowledge the Traditional owners of the land on which I
> live and work as the First People and Custodians of this country.
>
> [promotional banner. Crest logo of the University of Notre Dame Australia.
> Fremantle, Broome, Sydney. ND6259. CRICOS Provider: 01032F]<
> https://www.notredame.edu.au/>
>
> Disclaimer
>
> The information contained in this communication from the sender is
> confidential. It is intended solely for use by the recipient and others
> authorized to receive it. If you are not the recipient, you are hereby
> notified that any disclosure, copying, distribution or taking action in
> relation of the contents of this information is strictly prohibited and may
> be unlawful.
>
> This email has been scanned for viruses and malware, and may have been
> automatically archived by Mimecast Ltd, an innovator in Software as a
> Service (SaaS) for business. Providing a safer and more useful place for
> your human generated data. Specializing in; Security, archiving and
> compliance. To find out more visit the Mimecast website.
>