Support additional policies for external dependencies

We support defining policies for licenses of external dependencies. We also scan those for security vulnerabilities.

We can support definition of policies for other properties, such as age, popularity, and version ranges.