Hello! First time poster here, hope everyone’s doing well.
I have a couple of questions regarding the macOS application policies, hopefully someone can lend me a hand and help out My BT EPM for Mac is currently set to ‘listening mode’ - it reports back on our users application usage nwhat’s installed, what’s opened, what’s being used etc.]. I want to use it to create policies on applications that should be ‘allowed’ or ‘disallowed’ based on different factors. The questions are as follows:

1. When adding a policy based on a reported application, the in-built ‘add to policy’ button gives me two automatically assigned arguments: URI and Publisher. Could someone explain, what an URI is? Is it ok to use that as an argument regarding if an application should be allowed for usage? My first though was that it’s the applications unique ID - the bundle ID - but that’s not it after further insight.
2. Is there a way to have an argument that uses the Bundle ID of an application? for example: com.microsoft.teams2
3. How do you handle adding application policies to the workstyles? Having just the Publisher argument does not feel like the safest option, and having HASH argument probably won’t work timewise, as every new application version would require another policy.
4. The Events tab of the application shows the HASH and other additional information, but when adding a policy based on that application, and adding for example the HASH argument, it does not automatically fill out. Is that how it’s supposed to work? I know for a fact that on Windows, when you click the ‘+’ icon with the chosen argument, it autofills the information from that app, to that argument.

Hopefully the questions can be answered and are understandable In case of additional questions for me, please feel free to ask.