While not using eval() is a good thing, as far as security goes, note that if you're worried about your data store possibly being messed with by Bad People, you shouldn't trust the data (IE treat it as tainted, preferably by actualy tainting it), no matter what method you use to recessitate it.
Warning: Unless otherwise stated, code is untested. Do not use without understanding. Code is posted in the hopes it is useful, but without warranty. All copyrights are relinquished into the public domain unless otherwise stated. I am not an angel. I am capable of error, and err on a fairly regular basis. If I made a mistake, please let me know (such as by replying to this node).