Azure Permissions when using Use OneDrive & SharePoint

Hello everyone,
I would like to create a RPA Bot, which will upload some files to our Sharepoint.
Since i am going to perform only file operations, I wanted to use Use OneDrive & SharePoint activity (UiPath.MicrosoftOffice365.Activities.Files.UseDriveCard). I wanted to use a service user from AD and configure this account in above activity.
Can someone explain me, why do we need to add all those permissions to perform file operations in Sharepoint:

Our security team can not understand, why do we have to allow such permissions like “Send mail on behalf of others” or “Read all users full profiles”. Is there any explanation to this?

welcome to the forum

when integrations Service way was used, then the Scopes are asked for in order to have it for all functionalities

Just check which option is better fitting to your needs