use Untaint;

my @dirty_params = param('trace'); # your array
my @clean_params = untaint(qr(^[-.0-9a-zA-Z]+$), \@dirty_params);