There is no list or pre-install verification. Blocking is based on Microsoft's threat intelligence and AV signatures. MDE admins can add an allow or allow-with-warning option as a custom indicator. This would override any Microsoft blocks if encountered.
https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/manage-indicators