the closest thing under linux would be IMA and EVM. in these cases linux kernel is what would be doing the verification based values in 'security.ima' extended filesystem attribute.
potential place for osquery would be consume the kernel IMA measurement logs. but deployment of these systems is quite rare.