refactor(seharden): reorganize rule IDs and add reinforce actions for identity rules

- Renumber dengbao_3.yml rules to align with CIS category structure
  (1.2.x → 1.3.x for SSH rules, 2.1.x → 2.2.x/2.3.x/2.4.x/2.5.x by subcategory)
- Add reinforce actions for password policy rules (1.1.1, 1.1.3, 1.1.4, 1.1.5)
  including empty account locking, pwquality configuration, and PASS_MAX/MIN_DAYS
- Implement new users enforcer module with lock_empty_password_accounts,
  set_password_max_days_for_root, and set_password_min_days_for_root functions
- Fix SSH probe cache invalidation by clearing _effective_dump_cache after
  reinforce execution to ensure accurate post-remediation verification

Signed-off-by: YuQing Yang <yyq01323329@alibaba-inc.com>

Author: YuQing Yang