This may be a moot point if the preferred approach for Java development is e.g. OpenLiberty / Liberty Profile + gRPC to Notes / Domino.
But if Java development on the Domino stack is still a recommended approach, the Java security policy needs review. There are limitations that prevent Java reflection using JAXB or Jackson. There are environmental restrictions that are used in e.g. Watson libraries. See https://openntf.org/main.nsf/project.xsp?r=project/Watson%20Developer%20Cloud%20Java%20SDK%20XPages%20Library.
There may be other recommended changes, it's worth canvassing Domino Java experts.