# Improper Check for Unusual or Exceptional Conditions (CWE-754)

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

- Prevalence: Moyenne 1 langages couverts
- Impact: Élevé 1 règles de sévérité élevée
- Prevention: Documentée 1 exemples de correctifs

**OWASP:** Insecure Design (A04:2021-Insecure Design) - #4

## Description

Failing to check for error conditions, return values, or exceptional cases can lead to undefined behavior, crashes, or security vulnerabilities when these conditions occur.

## Prevention

Stratégies de prévention pour Improper Check for Unusual Conditions basées sur 1 règles de détection Shoulder.

### JavaScript

Use multi-phase migrations with data backup before destructive DDL operations like DROP TABLE or DROP COLUMN

## Warning Signs

- [HIGH] Migration contains potentially destructive operation: .... Add safety checks and data preservation logic.

## Consequences

- DoS
- Exécuter du code non autorisé
- Lecture des données de l'application

## Mitigations

- Vérifiez toutes les valeurs de retour et conditions d'erreur
- Gérez explicitement les cas limites et les conditions exceptionnelles
- Adoptez des pratiques de programmation défensive

## Detection

- Total rules: 1
- Languages: javascript, typescript

## Rules by Language

### Javascript (1 rules)

- **TypeORM Unsafe Database Migration** [HIGH]: Unsafe migrations with DROP TABLE/COLUMN operations without backups cause permanent
data loss and application crashes from schema mismatches.
  - Remediation: Backup data before destructive operations and use multi-phase migrations.

```typescript
export class SafeColumnRemoval implements MigrationInterface {
  public async up(queryRunner: QueryRunner): Promise<void> {
    // Backup before dropping
    await queryRunner.query(`
      CREATE TABLE "user_email_backup" AS
      SELECT id, email FROM "user"
    `);
    await queryRunner.dropColumn('user', 'email');
  }
}
```

Learn more: https://shoulder.dev/learn/typescript/cwe-754/unsafe-migration

### Typescript (1 rules)

- **TypeORM Unsafe Database Migration** [HIGH]: Unsafe migrations with DROP TABLE/COLUMN operations without backups cause permanent
data loss and application crashes from schema mismatches.
  - Remediation: Backup data before destructive operations and use multi-phase migrations.

```typescript
export class SafeColumnRemoval implements MigrationInterface {
  public async up(queryRunner: QueryRunner): Promise<void> {
    // Backup before dropping
    await queryRunner.query(`
      CREATE TABLE "user_email_backup" AS
      SELECT id, email FROM "user"
    `);
    await queryRunner.dropColumn('user', 'email');
  }
}
```

Learn more: https://shoulder.dev/learn/typescript/cwe-754/unsafe-migration