Integrate directly with Anchore
https://anchore.com/ is a service for doing deep analysis on containers. They have the concept of "Gates" based on checks (ranging for packages with CVE's to file permissions). Would love the see Anchore gates block Werker deploys.
Andrew Cathrow commented
Speaking on behalf of Anchore, we'd be happy to work with Wercker on integration