style:move all source files under src/experimental & feat:modify source regular matching rules

Author: liangjinhuang

python/ql/src/experimental/Security/CWE-338/InsecureRandomness.ql

@@ -13,11 +13,11 @@
  */
 
 import python
-import semmle.python.security.dataflow.InsecureRandomness::InsecureRandomness
+import experimental.semmle.python.security.InsecureRandomness::InsecureRandomness
 import semmle.python.dataflow.new.DataFlow
 import DataFlow::PathGraph
 
 from Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink
 where cfg.hasFlowPath(source, sink)
 select sink.getNode(), source, sink, "Cryptographically insecure $@ in a security context.",
-  source.getNode(), "random value"
+  source.getNode(), "random value"

python/ql/lib/semmle/python/security/dataflow/InsecureRandomness.qll renamed to python/ql/src/experimental/semmle/python/security/InsecureRandomness.qll

@@ -58,7 +58,7 @@ module InsecureRandomness {
   class RandomFnSink extends Sink {
     RandomFnSink() {
       exists(DataFlowCallable randomFn |
-        randomFn.getName().regexpMatch("(?i).*(gen(erate)?|make|mk|create).*(nonce|salt|pepper).*")
+        randomFn.getName().regexpMatch("(?i).*(gen(erate)?|make|mk|create).*(nonce|salt|pepper|Password).*")
       |
         this.getEnclosingCallable() = randomFn
       )