Device Posture Tool Integration With ZPA

I am working on a project to incorporate a more robust device posture tool to evaluate running processes, patch levels and existing executables on an endpoint and I would like to integrate it into Zscaler ZPA as part of the posture check. Has anyone been able to do this? What tools did you use and did you develop a special integration or did you leverage the existing ZPA device posture checks to look for a flag (e.g. registry key or file) in order to make this work?

For OS and Patchset how about using Registry key test:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion
UBR = Update Build Revision - the current system monthly rollup version
ProductName = Windows 10, Windows 7 etc.

Let me know if you find a way to Check AntiVirus health check - upto date definitions and enabled.