We are a DoD customer who utilizes docker images released by Atlassian to DockerHub and update them on a regular basis.  In order for our service desk to be granted "go-live" status by our cyber security organizations, regular and exhaustive scanning takes place and a plan must be established to remediate security vulnerabilities found on those scans.

During the most recent scan, jira-servicemanagement returned 11 "medium" vulnerabilities - 8 resulting from third-party javascript libraries and 3 from "detailed error messages revealed" when unhandled java exceptions occur.

We want to request remediations to these vulnerabilities and can provide details as necessary if the request is feasible to be addressed by Atlassian.