Reviewing the documentation for the plugin for the Crowdstrike Falcon plugin, it shows information on the API client, secret, and what base URL. But I seem to be missing the section that says what API scopes need to be enabled and if they need to be Read and or Write access for those functions.
It all depends on what you are doing with the API. I would only grant permissions for the Actions that you plan on using, and only to the level in which you need. Understand what you want from CrowdStrike first, then build your automation. This follows the principle of least privilege.
If you need help figuring out the permissions, tell us what you want to do and we will see if anyone knows the permissions needed for that.