Today running a Trivy scan on the version 2.2.1 of Opensearch I found the following vulnerabilities CVE-2022-24823 CVE-2022-36033 on the jars “netty-codec-4.1.72.Final”, “netty-codec-http2-4.1.72.Final.jar”, “netty-handler-4.1.72.Final.jar”, “jsoup-1.14.3.jar”.