raccoon, there are two safe aliases you can use to guard against the exploit. Although they're not perfect, they should yield a decent protection:
alias safe return $!decode( $encode($1,m) ,m) alias safe bset -t &a 1 $1 | return $!regsubex(safe, $bvar(&a,1-) ,/(\d+)(?: |$)/g,$chr(\1))