# Detection of Error Condition Without Action (CWE-390)

The product detects a specific error, but takes no actions to handle the error.

- Prevalence: Średnia Pokryto 1 języków
- Impact: Średni Zalecany przegląd
- Prevention: Udokumentowane 1 przykładów poprawek

**OWASP:** Insecure Design (A04:2021-Insecure Design) - #4

## Description

Empty catch blocks or error handlers that don't actually handle the error can mask problems and lead to undefined behavior. The product may continue operating in an error state, leading to crashes or security vulnerabilities.

## Prevention

Strategie zapobiegania dla Detection of Error Condition Without Action oparte na 1 regułach detekcji Shoulder.

### JavaScript

Log errors with context, respond to users, and propagate or handle appropriately

## Warning Signs

- [MEDIUM] Catch block at line ... has incomplete error handling
- [MEDIUM] empty catch blocks and incomplete error handling patterns that silently swallow errors

## Consequences

- DoS
- Wykonanie nieautoryzowanego kodu
- Modyfikacja danych aplikacji

## Mitigations

- Zawsze obsługuj błędy odpowiednio, choćby przez ich zalogowanie
- Wdroż właściwe odzyskiwanie po błędach lub zachowanie fail-safe
- Korzystaj z narzędzi lint, aby wykrywać puste obsługi wyjątków

## Detection

- Total rules: 1
- Languages: javascript, typescript

## Rules by Language

### Javascript (1 rules)

- **Incomplete Error Handling** [MEDIUM]: Detects empty catch blocks and incomplete error handling patterns that silently swallow errors.
  - Remediation: Implement proper error handling with recovery, logging, and user feedback.

### Typescript (1 rules)

- **Incomplete Error Handling** [MEDIUM]: Detects empty catch blocks and incomplete error handling patterns that silently swallow errors.
  - Remediation: Implement proper error handling with recovery, logging, and user feedback.