You are at a Security Risk for the WordPress OAuth Server Plugin. It is because you are using the free version of the plugin for JWT Signing, where new keys are not generated for each configuration and are common for all users.
You can Upgrade Now to Premium for RSA support with dynamic keys to avoid this risk.
Note: The free plugin will continue to function but will remain vulnerable to this risk.