is it possible so give non-privileged User the right so add programs to the whitelist. Our clients work with pyenv and with every new env the User needs to allow the access.
For the OS firewall you could write a script that asks for the app name and adds it to the firewall using /usr/libexec/ApplicationFirewall/socketfilterfw.
