The script runner for JIRA Cloud allows users to interact with the underlying container OS where users are able to run OS commands which might possess a security risk.
Can you please consider disabling the OS interaction in the future release?
Thanks,
Shafi
Mohammeds@rba.gov.au