Forge - BitBucket API : privacy and security joke?

Hi, Forge asks to renew the BitBucket API authorization. No problem with that, I click to grant the new permissions. But then bam:

Laravel Forge (https://forge.laravel.com) is requesting access to the following:

    Read and modify your account information
    Read and modify your repositories' issues
    Access your repositories' build pipelines and configure their variables
    Read and modify your team's project settings, and read and transfer repositories within your team's projects
    Read and modify your repositories and their pull requests
    Administer your repositories
    Delete your repositories
    Read and modify your snippets
    Read and modify your team membership information
    Read and modify your repositories' webhooks
    Read and modify your repositories' wikis

There is absolutely no way anyone would give such permissions to this service. What the heck is going on?