# Improper Check for Unusual or Exceptional Conditions (CWE-754)

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

- Prevalence: 中 覆盖 1 种语言
- Impact: 高 1 条严重级别为高的规则
- Prevention: 已记录 1 个修复示例

**OWASP:** Insecure Design (A04:2021-Insecure Design) - #4

## Description

Failing to check for error conditions, return values, or exceptional cases can lead to undefined behavior, crashes, or security vulnerabilities when these conditions occur.

## Prevention

基于 1 条 Shoulder 检测规则的 Improper Check for Unusual Conditions 预防策略。

### JavaScript

Use multi-phase migrations with data backup before destructive DDL operations like DROP TABLE or DROP COLUMN

## Warning Signs

- [HIGH] Migration contains potentially destructive operation: .... Add safety checks and data preservation logic.

## Consequences

- 拒绝服务 (DoS)
- 执行未授权代码
- 读取应用程序数据

## Mitigations

- 检查所有返回值与错误条件
- 显式处理边界情况和异常条件
- 采用防御性编程实践

## Detection

- Total rules: 1
- Languages: javascript, typescript

## Rules by Language

### Javascript (1 rules)

- **TypeORM Unsafe Database Migration** [HIGH]: Unsafe migrations with DROP TABLE/COLUMN operations without backups cause permanent
data loss and application crashes from schema mismatches.
  - Remediation: Backup data before destructive operations and use multi-phase migrations.

```typescript
export class SafeColumnRemoval implements MigrationInterface {
  public async up(queryRunner: QueryRunner): Promise<void> {
    // Backup before dropping
    await queryRunner.query(`
      CREATE TABLE "user_email_backup" AS
      SELECT id, email FROM "user"
    `);
    await queryRunner.dropColumn('user', 'email');
  }
}
```

Learn more: https://shoulder.dev/learn/typescript/cwe-754/unsafe-migration

### Typescript (1 rules)

- **TypeORM Unsafe Database Migration** [HIGH]: Unsafe migrations with DROP TABLE/COLUMN operations without backups cause permanent
data loss and application crashes from schema mismatches.
  - Remediation: Backup data before destructive operations and use multi-phase migrations.

```typescript
export class SafeColumnRemoval implements MigrationInterface {
  public async up(queryRunner: QueryRunner): Promise<void> {
    // Backup before dropping
    await queryRunner.query(`
      CREATE TABLE "user_email_backup" AS
      SELECT id, email FROM "user"
    `);
    await queryRunner.dropColumn('user', 'email');
  }
}
```

Learn more: https://shoulder.dev/learn/typescript/cwe-754/unsafe-migration