//echo -a $decode(<anything>) can never be dangerous, so one can always find out what an encoded message contains without risk. If one is dumb enough to intentionally wrap $eval(...,2) or $(...,2) around $decode() or type whatever he's told on IRC, well, that's not mirc's problem, is it?