codeql/csharp/ql/test/query-tests/Security Features/CWE-020/UntrustedData.cs

using System;
using System.Text;
using System.Web;

public class UntrustedData : IHttpHandler
{
    public void ProcessRequest(HttpContext ctx)
    {
        var name = ctx.Request.QueryString["name"];
        var len = name.Length;

        var myEncodedString = HttpUtility.HtmlEncode(name);
        ctx.Response.Write(name);
    }

    public bool IsReusable => true;
}