# Detection of Error Condition Without Action (CWE-390)

The product detects a specific error, but takes no actions to handle the error.

- Prevalence: Media 1 lenguajes cubiertos
- Impact: Medio Se recomienda revisión
- Prevention: Documentada 1 ejemplos de corrección

**OWASP:** Insecure Design (A04:2021-Insecure Design) - #4

## Description

Empty catch blocks or error handlers that don't actually handle the error can mask problems and lead to undefined behavior. The product may continue operating in an error state, leading to crashes or security vulnerabilities.

## Prevention

Estrategias de prevención para Detection of Error Condition Without Action basadas en 1 reglas de detección de Shoulder.

### JavaScript

Log errors with context, respond to users, and propagate or handle appropriately

## Warning Signs

- [MEDIUM] Catch block at line ... has incomplete error handling
- [MEDIUM] empty catch blocks and incomplete error handling patterns that silently swallow errors

## Consequences

- DoS
- Ejecutar código no autorizado
- Modificar datos de la aplicación

## Mitigations

- Maneja siempre los errores adecuadamente, aunque solo sea registrándolos
- Implementa una recuperación de errores adecuada o comportamiento a prueba de fallos
- Usa herramientas de linting para detectar manejadores de excepciones vacíos

## Detection

- Total rules: 1
- Languages: javascript, typescript

## Rules by Language

### Javascript (1 rules)

- **Incomplete Error Handling** [MEDIUM]: Detects empty catch blocks and incomplete error handling patterns that silently swallow errors.
  - Remediation: Implement proper error handling with recovery, logging, and user feedback.

### Typescript (1 rules)

- **Incomplete Error Handling** [MEDIUM]: Detects empty catch blocks and incomplete error handling patterns that silently swallow errors.
  - Remediation: Implement proper error handling with recovery, logging, and user feedback.