Skip to content
unfault

typescript.express.missing_error_middleware

Stability Medium

Detects Express apps without error handling middleware.

Why It Matters

Section titled “Why It Matters”

Without error middleware:

  • Unhandled errors crash — Process exits on uncaught exceptions
  • Information leakage — Stack traces shown to users
  • Inconsistent responses — Different error formats
  • Silent failures — Errors not logged

Example

Section titled “Example”
// ❌ Before
const app = express();


app.get('/users/:id', async (req, res) => {
    const user = await getUser(req.params.id);  // Throws on error
    res.json(user);
});


app.listen(3000);

If getUser throws, the request hangs or crashes.

// ✅ After
const app = express();


app.get('/users/:id', async (req, res, next) => {
    try {
        const user = await getUser(req.params.id);
        res.json(user);
    } catch (error) {
        next(error);
    }
});


// Error handling middleware (must be last)
app.use((err: Error, req: Request, res: Response, next: NextFunction) => {
    console.error('Error:', err);
    res.status(500).json({ error: 'Internal server error' });
});


app.listen(3000);

What Unfault Detects

Section titled “What Unfault Detects”
  • Express app without error middleware
  • Missing next(error) in async handlers
  • Express app without try/catch in handlers

Auto-Fix

Section titled “Auto-Fix”

Unfault adds error handling middleware and suggests wrapping async handlers.

Best Practices

Section titled “Best Practices”
// Async wrapper helper
const asyncHandler = (fn: RequestHandler) =>
    (req: Request, res: Response, next: NextFunction) =>
        Promise.resolve(fn(req, res, next)).catch(next);


app.get('/users/:id', asyncHandler(async (req, res) => {
    const user = await getUser(req.params.id);
    res.json(user);
}));


// Custom error class
class AppError extends Error {
    constructor(public statusCode: number, message: string) {
        super(message);
    }
}


// Error middleware with custom errors
app.use((err: Error, req: Request, res: Response, next: NextFunction) => {
    if (err instanceof AppError) {
        return res.status(err.statusCode).json({ error: err.message });
    }
    console.error('Unhandled error:', err);
    res.status(500).json({ error: 'Internal server error' });
});
Section titled “Related Rules”