Hello Sir,
While looking at the attached file, I have noticed the source of the two alerts from Google. Well, the first one, I think is because you're using some library that is using an nsafe implementation of the X509TrustManager, so either it will be replaced by another one or fixed by some tweaks. The second one is related to the keystore that is kept in your project while generating the apk; and it's a security problem. because if it's obtained by someone else, it'll be used to sign other applications with it or even make updates to the current app.
Just talk to me in private, and I'll figure out all these problems for you after hearing more details about the app.
I'll be waiting for your response.
Have a nice day.