build(deps): bump react-hook-form from 7.76.1 to 7.79.0 in /webui

[dependabot]

Bumps react-hook-form from 7.76.1 to 7.79.0.

Release notes

Sourced from react-hook-form's releases.

Version 7.79.0

🚷 feat: use field array disabled (#13520) 🐞 fix controller onChange promise (#13518) 🐞 fix: track visited pairs in deepEqual to avoid false positives with shared object references (#13515) 🐞 fix #12651 issue: field validation with shouldUseNativeValidation does not behave native like for radio groups (#13512) 🐞 fix #12754 createFormControl breaks with fast refresh in dev mode (#13511) 🐞 close #12709 #12750 StrictMode would remove field value & get mounted again (#13508) 🐞 fix #13505 issue: In v8 with React compiler, a change in formState errors does not cause child components to re-render (#13510)

thanks to @​DucMinhNe & @​louzhedong

Version 7.78.0

🦷 update type dirtyFields typing for field arrays with undefined entries (#13492) 🐞 fix: recover Controller fields after reset without rerender (RN issue #13455) (#13497) 🐞 fix useFormState().isDirty race with async resolver in onChange mode (#13495) 🐞 fix: use reactive values prop over defaultValues when shouldUnregister is true (#13485) 🐞 fix deepEqual for empty non-plain objects (#13493)

thanks to @​cyphercodes

Version 7.77.0

🥡 feat: add resetDefaultValues API (#13427)

https://react-hook-form.com/docs/useform/resetdefaultvalues

const { resetDefaultValues } = useForm();
resetDefaultValues(currentValues);

🐚 harden get() against prototype-path traversal (proto / constructor / prototype) (#13479) 🐞 fix FieldArray errors overriding nested fields (#13476) 🐞 fix inconsistent reset({}) behavior requiring double-call to take effect (#13473) 🐞 fix: preserve values with shouldUnregister (#13464) 🐞 fix stale isDirty in subscribe payload after reset(..., { keepValues: true }) (#13461) 👝 save bundle size (#13468)

thanks to @​puneetdixit200 & @​dfedoryshchev

Changelog

Sourced from react-hook-form's changelog.

[7.79.0] - 2026-06-13

Added

• disabled option to useFieldArray

Fixed

• Controller onChange promise return type
• deepEqual false positives with shared object references
• shouldUseNativeValidation behavior for radio groups
• createFormControl stability with fast refresh in dev mode
• StrictMode value preservation during remount
• formState.errors reactivity with React compiler

[7.78.0] - 2026-06-08

Fixed

• Recover Controller fields after reset without rerender (RN issue #13455)
• useFormState().isDirty race with async resolver in onChange mode
• Use reactive values prop over defaultValues when shouldUnregister is true
• deepEqual for empty non-plain objects

Types

• Update dirtyFields typing for field arrays with undefined entries

[7.77.0] - 2026-05-31

Added

• resetDefaultValues API

Fixed

• Stale isDirty in subscribe payload after reset(..., { keepValues: true })
• Preserve values with shouldUnregister
• Inconsistent reset({}) behavior requiring double-call to take effect
• FieldArray errors overriding nested fields

Security

• Harden get() against prototype-path traversal (__proto__ / constructor / prototype)

Performance

• Bundle size reduction

Commits

• 3f1d2bd 7.79.0
• c344c4f 📖 update changelog v7.78.0
• 351a958 🏟️ build(deps): bump joi from 17.13.3 to 18.2.1 in /app (#13521)
• e3d8172 🚷 feat: use field array disabled (#13520)
• 00f6c28 🐞 fix controller onChange promise (#13518)
• a338076 🚷 feat: add disabled option to useFieldArray (#13519)
• a2a3c9c 🐞 fix: track visited pairs in deepEqual to avoid false positives with shared ...
• 1e00a1b 🐞 fix #12651 issue: field validation with shouldUseNativeValidation does not ...
• bb2ce17 🐞 fix #12754 createFormControl breaks with fast refresh in dev mode (#13511)
• b377376 🐞 close #12709 #12750 StrictMode would remove field value & get mounted again...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[cursor]

Critical bug investigation — PR #239

No critical bugs found in this PR.

This dependabot bump only updates react-hook-form 7.76.1 → 7.79.0 in webui/package.json and the lockfile. react-hook-form is not imported anywhere under webui/src/, so there is no behavioral surface area to regress.

Separate findings (not introduced by this PR)

Automated review of recent commits surfaced two critical correctness issues elsewhere in the codebase; fixes are in a separate PR:

1. Tagless mode HasTag not scoped by qBit instance — multi-instance setups could cross-read FreeSpacePaused/AllowedSeeding flags and resume Host-paused torrents.
2. TorrentProcessor branch 2 deletes before import — with seeding limits configured, completed torrents could be removed (deleteFiles: true) before Arr import runs.

This PR is safe to merge from a critical-correctness standpoint.

  

_{Sent by Cursor Automation: Torrentarr - Find critical bugs}