Exploiting Token and Path-based Representations of Code for Identifying Security-Relevant Commits.