Automation for Jira Cloud offers an action called "Send web request", which sends an HTTP request to the URL specificed within the form. This represents a risk for the bank, as the form can be used for malicious intents.

Admins should have control over the list of hostnames that these HTTP request can be executed against, by whitelisting the approved ones and blacklisting those that should not be allowed for execution via Automation for Jira.