Flag unsupported versions

[Rudloff]

Is there a way to flag unsupported versions that explicitly don't receive any security fix anymore?
These should not be used even if there is no known vulnerability.

It would not apply to every project but big projects like Drupal announce official dates for the end of security coverage for each branch.

It would also help in cases like #502 (comment) where we don't know when a vulnerability was introduced but we know older versions should not be used anyway.

[fabpot]

No, there is no such flag. And that's probably out of the scope of this repository (as not related to security per se).