Built on the endoflife.date open dataset
End-of-life intelligence
for every major stack.
endoflife.ai is a free public platform for software end-of-life intelligence, built on top of the endoflife.date open dataset. Check whether a dependency is outdated, unsupported, or a security risk — instantly and for free.
Data sourced from endoflife.date, NVD, CISA KEV, and official vendor lifecycle pages. How we source data →
455+
Products Indexed
8,400+
Pages & Score Cards
<7
Days to Exploit a New CVE
$0
Cost to Check
Trusted by security and engineering teams — free, no account required
455+
Products Tracked
<7
Days to Exploit a New CVE
8,400+
Pages & Score Cards
$0
Cost Forever
Windows 10 — EOL Oct 2025
CentOS 7 — EOL Jun 2024
AngularJS — EOL Dec 2021
MySQL 5.7 — EOL Oct 2023
PHP 8.1 — EOL Dec 2025
Node.js 20 — EOL Apr 2026
MySQL 8.0 — EOL Apr 2026
Python 3.10 — EOL Oct 2026
PostgreSQL 14 — EOL Nov 2026
PHP 8.2 — EOL Dec 2026
Python 3.13 — Supported
Node.js 22 LTS — Supported
PostgreSQL 17 — Supported
Ubuntu 24.04 LTS — Supported
Kubernetes 1.33 — Supported
Windows 10 — EOL Oct 2025
CentOS 7 — EOL Jun 2024
AngularJS — EOL Dec 2021
MySQL 5.7 — EOL Oct 2023
PHP 8.1 — EOL Dec 2025
Node.js 20 — EOL Apr 2026
MySQL 8.0 — EOL Apr 2026
Python 3.10 — EOL Oct 2026
PostgreSQL 14 — EOL Nov 2026
PHP 8.2 — EOL Dec 2026
Python 3.13 — Supported
Node.js 22 LTS — Supported
PostgreSQL 17 — Supported
Ubuntu 24.04 LTS — Supported
Kubernetes 1.33 — Supported
Free Tool
The EOL Checker
Instant lifecycle status for any software product. Paste in a product name and know your risk in seconds.
$ eol check
Product
Windows 10
EOL Date
Oct 14, 2025
Status
End of Life
CVE Blind Spot Detected. This product no longer receives security patches. Attackers diff new CVE fixes against your EOL build — your scanner won't alert you. They know. You don't.
The Problem
Your scanner has a
blind spot.
CVE reporters only test supported software. When a vulnerability is discovered in code that also exists in your EOL version, they don't check — and neither does your scanner.
01
Incomplete CVE Reporting
Security researchers report vulnerabilities in supported versions only. EOL versions share the same vulnerable code but never appear in the advisory.
02
False Scanner Confidence
Your vulnerability scanner checks CVE affected version ranges. Your EOL version falls outside that range. No alert fires. You believe you're safe.
03
Attackers Know First
Threat actors read advisories and diff patches. They test EOL builds systematically. This isn't a zero-day — it's worse. They know. You don't.
Attack Chain — EOL Software
1
CVE Published
Vulnerability disclosed in supported versions only. Your EOL build has the same code.
Vulnerability disclosed in supported versions only. Your EOL build has the same code.
2
Attacker reads the advisory
Diffs the patch. Tests against EOL builds. Confirms vulnerability present.
Diffs the patch. Tests against EOL builds. Confirms vulnerability present.
3
Your scanner runs
Checks CVE affected version range. EOL version not listed. No alert fires.
Checks CVE affected version range. EOL version not listed. No alert fires.
4
You believe you're clean
Dashboard shows green. Breach window is open.
Dashboard shows green. Breach window is open.
✓
endoflife.ai flags it first
EOL detected. CVE blind spot warning surfaced. Risk known before attacker acts.
EOL detected. CVE blind spot warning surfaced. Risk known before attacker acts.
Proprietary Intelligence
EOL Risk Score™
Every product and version page on endoflife.ai displays a proprietary 0–100 risk score — calculated at build time from four factors your vulnerability scanner doesn't track.
1
EOL Recency — 40 pts
How long past EOL — or how soon approaching. Accumulates over time with no reset.
2
Attack Surface — 30 pts
Critical tier for OS, runtimes, databases. High for frameworks and tools.
3
CISA KEV Exposure — 20 pts
Products with confirmed active exploitation history in the CISA KEV catalog.
4
Extended Support — 10 pts
No commercial patch vendor available means higher residual risk.
EOL Risk Score™ on all 8,400+ pages. Recalculated at every build.
Full Methodology →
Resource Hub
Lifecycle Intelligence
Guides, timelines, and analysis for security and engineering teams managing software lifecycles.
New · 2026 Reference
Software EOL Dates 2026 — The 100+ Most-Searched Versions in One Reference
Every date that matters in one page: 124 versions across 44 products — Windows, Ubuntu, Debian, RHEL, Node.js, Python, PHP, Java, PostgreSQL, Kubernetes, Spring Boot, and more. Regenerated at every deploy.
New · Start Here
What Is EOL Software? Every Term, Acronym & Concept Explained
The plain-English foundation: what EOL, EOS, LTS, and CVE actually mean, what runtimes, frameworks, and libraries are, how version numbers work, and why support dates matter — assuming zero prior knowledge.
New · AI Model Lifecycle
GPT-3.5 Turbo Retirement — OpenAI Deprecation Dates & What Replaces It
GPT-3.5 Turbo is legacy: snapshot 0613 retired Sep 2024, 0301 deprecated Jun 2023. The retirement timeline, the GPT-4o mini migration checklist, and why model shutdowns are the EOL events of the AI stack.
AI Deprecation Timeline
AI Model Deprecation Dates 2026 — OpenAI, Gemini, Llama & Mistral
GPT-4 Turbo, Gemini 2.0, Llama 3, Mistral Large — all deprecated or on a countdown. The complete 2026 AI model deprecation timeline with exact shutdown dates, tracked across all four major providers.
EOL — May 2025
ROS Noetic End of Life — ROS 1 Is Over: Migration Guide to ROS 2
Noetic was the final ROS 1 distribution — its EOL ended the entire ROS 1 line. What that means for long-lived robot fleets, the double-EOL problem with Ubuntu 20.04, and the ros1_bridge migration path.
New · Product Update
Your EOL Dates Are Deadlines — Now They Live on Your Calendar
Add any product's end-of-life date to your calendar with reminders 90, 30 & 7 days out — and why PCI DSS, ISO 27001, SOC 2, HIPAA, NIST, and CISA all treat that lead time as a control, not a nicety.
Incident Guide
My Software Is EOL — What Do I Do Now?
Just found out your software is end-of-life? Understand your actual risk, the CVE blind spot your scanner is missing, and your four options — migrate, extended support, compensating controls, or risk acceptance.
⚠ EOL — Now in Effect
Debian 12 Bookworm EOL June 10, 2026 — What You Need to Do Now
Debian 12 reached end of life June 10. Who is at risk, the Docker base image checklist, compliance implications, and your step-by-step upgrade path to Debian 13 or LTS coverage.
Live Tool · CISA KEV
CVE Intelligence — EOL Software with Active CISA KEV Exposure
Every product in the CISA Known Exploited Vulnerabilities catalog cross-referenced against EOL status. Live Risk Scores, sortable by urgency. The CVE blind spot made visible.
EOL — April 30, 2025
Node.js 18 End of Life: Which Vendors Offer Extended Security Support?
Node.js 18 is end of life. No patches since April 2025. Compare extended lifecycle support vendors extended lifecycle support options — CVE coverage, compliance docs, and contract terms.
EOL — Dec 31, 2026
PHP 8.2 End of Life: December 31, 2026 — Migration Guide & Extended Support
PHP 8.2 is in security-only support with 220 days until EOL. See the exact date, upgrade path to PHP 8.3, live countdown, and which vendors cover PHP 8.2 after end of life.
Ubuntu 20.04 EOL
Ubuntu End of Life Dates 2026 — Which Vendors Offer Extended Security Support?
Ubuntu 20.04 is already EOL. Ubuntu 22.04 reaches end of standard support April 2027. Full EOL date table and vendor comparison: Canonical ESM, TuxCare ELS, enterprise support vendors.
Operating System
Debian EOL Dates — Official Lifecycle Schedule for Every Version
Debian 12 regular support ends June 10, 2026. Debian 11 LTS ends June 30. All three support phases — regular, LTS, and ELTS — explained with EOL Risk Scores and migration guidance for every version.
Operating System
RHEL End-of-Life Dates — Official EOL Schedule for Every Version
RHEL 7 fully EOL since June 2024. RHEL 8 in Maintenance Support until 2029. Full Support, Maintenance, Extended Life, and ELS phases explained with EOL Risk Scores.
Framework
Django End-of-Life Dates — Official EOL Schedule for Every Version
Django 4.2 LTS reached EOL April 7, 2026. LTS vs standard releases explained, Python compatibility matrix, EOL Risk Scores, and a step-by-step upgrade guide.
Database
MariaDB End-of-Life Dates — Official EOL Schedule for Every Version
MariaDB 10.6 LTS reaches EOL July 6, 2026. LTS vs rolling releases explained, EOL Risk Scores, and a step-by-step upgrade guide.
Database
Oracle Database End-of-Life Dates — Premier & Extended Support for Every Version
Oracle 19c Premier Support runs to Dec 2029 (Extended to 2032). 18c, 12c, and 11g are all past support. Lifetime Support phases explained — plus the Sustaining Support CVE blind spot.
Framework
React End-of-Life Dates — What's Actually Supported in 2026
Meta doesn't publish hard React EOL dates. React 18 is security-only. React 17 and 16 are unsupported. Here's what that means and how to upgrade.
Infrastructure
Kubernetes End-of-Life Dates — Official EOL Schedule for Every Version
K8s 1.32 is EOL. K8s 1.33 reaches end of life June 28, 2026. Official dates, EOL Risk Scores, EKS/GKE/AKS support windows, and a step-by-step upgrade guide.
Compliance
Hidden Compliance Risks from Unsupported Software
SOC 2, PCI DSS, HIPAA, and ISO 27001 all share one quiet vulnerability: unsupported software. Here's what your auditors will find — before you do.
Compliance
Your EOL Dependencies Are a Compliance Problem — Not Just Tech Debt
That outdated Node or Python version isn't just a "we should upgrade someday" item. If your company is going through SOC 2, PCI, or HIPAA, it's a finding waiting to happen.
Runtime
PHP End-of-Life Dates — Official EOL Schedule for Every Version
PHP 7.4, 8.0, and 8.1 are all currently EOL. PHP powers 77% of the web — making EOL PHP one of the most widespread security risks in the ecosystem. Official dates, scores, and migration guidance.
Framework
Spring Framework End-of-Life Dates — Official EOL Schedule for Every Version
Spring 5.3, 6.0, and 6.1 are all currently EOL. Three major versions unpatched simultaneously. Official dates, EOL Risk Scores, and migration guidance for every version.
Framework
Spring Boot End-of-Life Dates — Every Version EOL Guide (2.x, 3.x and 4.x)
Spring Boot 4.0 is current. Spring Boot 3.4 OSS support ended December 2025. Spring Boot 2.7 OSS ended June 2023 with commercial support to June 2029. Full dates, Java requirements, and migration guidance.
Networking
Cisco IOS XE End-of-Life Dates — Full Version EOL & EoS Guide (17.x)
IOS XE 17.9 and earlier are end of life. 17.15 is the current Long-Lived release. Full release train EOL dates, Standard vs Long-Lived explained, and upgrade commands for Catalyst 9000.
Security
The Security Blind Spot Nobody Is Talking About Enough
EOL software gets a clean bill of health from every CVE scanner. Here's why that's the most dangerous gap in enterprise security — and what we built to close it.
Runtime
Node.js End-of-Life Dates — Official EOL Schedule for Every Version
Node.js 14, 16, 18, and 20 are all EOL. Official dates, EOL Risk Scores, breaking changes, and a 5-step migration guide for every version.
Runtime
Python End-of-Life Dates — Official EOL Schedule for Every Version
Python 3.10 and 3.11 both reach EOL on October 31, 2026. Official dates, EOL Risk Scores, and migration guidance for every Python version.
Risk Intelligence
The EOL Risk Score: Why CISOs and DevOps Teams Are Measuring Software Risk Wrong
Your vulnerability scanner gives EOL packages a clean bill of health. That silence is not safety — it is a measurement failure. Here is the metric that fills the gap.
Risk Intelligence
The EOL Risk Score™ Explained: What It Is, How It Works, and Why It Matters
A deep explainer on the EOL Risk Score™ — the five signals behind the score, how to read the bands, real-world use cases for security teams, DevOps, CISOs, and auditors.
2026 EOL Report
The Top 50 Products Reaching End of Life in 2026
The definitive list — 50 products, exact dates, CVE risk ratings, and migration guidance. Updated quarterly.
Security
The CVE Blind Spot: Why EOL Software Is More Dangerous Than a Zero-Day
With a zero-day, nobody knows. With EOL software, the attacker knows and you don't. Here's why that asymmetry is the most dangerous gap in enterprise security.
IT Security
Windows 10 End of Life: The Complete Migration Guide for IT Teams
Windows 10 reached EOL October 14, 2025. Millions of enterprise machines are running unpatched. Here is what you need to do now.
Open Source
The 2026 EOL Calendar: Every Major Runtime and Framework
Python, Node.js, PHP, Ruby, Java LTS — every major platform support window in one place, updated quarterly.
Enterprise
The Hidden Cost of Running EOL Software: A CISO's Risk Framework
Unsupported software is not just technical debt. It is a material security risk. Here is how to quantify it and present it to your board.
Hardware
EOSL for Enterprise Hardware: Cisco, HPE, Dell EMC Timelines
When your storage arrays and network gear hit end-of-service-life, the security clock starts. A vendor-by-vendor breakdown of critical dates.
Compliance
Why Your EOL Risk Score Is the Most Important Number in Your Security Stack
What the EOL Risk Score™ measures, how it maps to SOC 2, ISO 27001, and PCI DSS, and the real-world consequences — Equifax, MOVEit, Log4Shell — of ignoring it.
EOL — Dec 31, 2025
Apache Tomcat End of Life: Tomcat 9 EOL, Migration to Tomcat 10/11
Tomcat 9 reached end of life December 31, 2025. The javax.* to jakarta.* namespace break is why teams stay stuck. EOL Risk Scores for every Tomcat version and a step-by-step migration guide.
EOL — Feb 1, 2025
Veeam Backup & Replication End of Life: Version EOL Dates & Compliance Risk
Veeam 11 is EOL. Veeam 12.0 is EOL. Running unsupported backup software means unpatched CVEs and potential audit findings under SOC 2, PCI DSS, and ISO 27001.
All Versions EOL
CentOS End of Life: CentOS 7 & 8 Are EOL — Migration to AlmaLinux, Rocky, RHEL
CentOS 7 EOL June 2024. CentOS 8 EOL December 2021. No supported CentOS Linux versions remain. Migration options, in-place conversion tools, and EOL Risk Scores for every version.
EOL — Apr 1, 2025
Ruby on Rails End of Life: Every Version EOL Date & Upgrade Guide
Rails 6.1 EOL June 2024. Rails 7.0 EOL April 2025. Only Rails 7.1, 7.2, and 8.0 receive patches today. EOL Risk Scores and the Rails maintenance policy explained.
EOL — Apr 2026
Apache Kafka End of Life: Version EOL Dates & KRaft Migration Guide
Kafka releases EOL every 4 months. Kafka 3.6 reached EOL April 2026. EOL dates and Risk Scores for every Kafka version, plus the ZooKeeper deprecation and KRaft migration guide.
Developer API — Live
Integrate EOL intelligence into your stack
Query lifecycle data programmatically. Built for CI/CD pipelines, SBOMs, security scanners, and dependency tooling. Free tier available.
Get API Key →
Free · Pro $199/mo · Enterprise custom
Know before your scanner does
The Monthly EOL Digest™
Once a month — the most critical end-of-life dates, CVE blind spots, and lifecycle changes worth knowing about. Curated from endoflife.date, vendor advisories, and CISA KEV. Signal, not noise.
Monthly cadence. AI-curated, human-reviewed. Unsubscribe anytime. We never sell your data.