A routine vulnerability scan of my docker image (for official 15.3 release) shows 38 outdated jars with fixed vulnerabilities.

See https://hub.docker.com/layers/beargiles/postgres-pljava/latest/images/sha256-e887c997e32cd1769e9bde68ab4cbfb75e9bb39292a855a53b5592f4c99d0e79?context=repo&tab=vulnerabilities

You can find the details, including fixed version, by drilling down the list on the right. E.g.,