Input fields that are hidden using the property, or marked as , remain visible and editable when the form is switched to JSON mode.

Currently, the property only affects how fields are displayed in the UI. It hides them from the standard form view but doesn’t remove them from the underlying data structure or JSON representation.

This behaviour can potentially allow users to modify fields they shouldn’t have access to, which may introduce security or data integrity risks.

Suggested Enhancement:

Consider excluding hidden and disabled fields from JSON mode, or marking them as read-only, to align behaviour with the form view and prevent unauthorised edits.