Indico source requires a token with all permissions

The configuration of indico token states:

From your browser, login to the Indico instance, go to "Preferences" and then "API Token". Create new token, name can be anything. Select (at least) Everything (all methods) and Classic API (read only) as scopes. Note down the token and paste it here.

Granting the Everything (all methods) looks pretty scary. Is the Everything (GET method) enough? If not, it should be stated why the additional permissions are needed