This is an excellent question. The dockerized version of OpenSCAP is not covered in my liveProject, however in principal it is almost the same command-line tool and integrates nicely with CI/CD pipeline. What you would do once your Docker image is built (e.g. using the Containerfile/Dockerfile) is to run in your CI/CD step:
Some of the parameters would include e.g. the OpenSCAP profile and report/results file (that bit is covered in my liveProject). Based on the exit code of oscp-docker or the results file, your CI/CD would perform other steps (e.g. stop everything if there is vulnerability).