We have security requirements in our industry to not install additional modules.

Incredible stupid policy. How should that make anything more secure? People will find crappy workarounds, like copying existing code from CPAN or poorly reimplementing the wheel. Copying code will prevent any security and bugfix updates from happening, so that policy makes your software insecure. And please don't make start ranting about reimplementing wheels. I've seen far too much crappy code written by incompetent people in areas where bugs could hurt or kill people.

With policies at this stupidy level, I would try to get the policies removed. If that fails, I would quit the job.

Alexander