Code review comment for ~rodrigo-zaiden/ubuntu-security-tools:fix-build-source-list

we should not support the format 'release/esm-{infra/apps}', please follow the new CVE file format which is:
PRODUCT/RELEASE

so it should be:
esm/precise [1]
esm/trusty [1]
esm-infra/xenial
esm-apps/xenial
esm-apps/bionic
esm-apps/focal
esm-apps/jammy

[1] Please note that precise and trusty we do have alias setup to accept trusty/esm and precise/esm and this was a decision so we don't have to touch all our CVEs and infrastructure as their ESM came before the new CVE file format.