Passwords and keys encoded using PROC PWENCODE do not work for AES encryption keys and SAS data set proprietary passwords. Metadata-bound, encrypted meta-LIBNAMEs are an alternative.
Thanks to Thomas Billings for this tip. Read more details in this paper from WUSS 2017: Keeping Passwords AES Encryption Keys and Other Sensitive Parameters Out of Source Code and Logs.