Scopes are an OAuth 2.0 mechanism that places limits on OAuth tokens and thus limiting an application's access to a user's account. They do not grant additional permissions beyond the user's access.
For more information on Scopes, refer to the following article on the oauth.net website:
OAuth Scopes

Scope : k:app_record:read

Available API :

• Get Record
• Get Records
• Get Comments
• Get Record Permissions

Scope : k:app_record:write

Available API :

• Add Record
• Add Records
• Add Comment
• Update Record
• Update Records
• Update Status
• Update Multiple Statuses
• Update Assignees
• Delete Records
• Delete Comment

Scope : k:app_settings:read

Available API :

• Get App
• Get Apps
• Get Form
• Get Form Layout
• Get Form Fields
• Get Process Management Settings
• Get Views
• Get Customization
• Get General Settings
• Get App Permissions
• Get Record Permissions
• Get Field Permissions
• Get App Deploy Status
• Get Graph Settings
• Get General Notification Settings
• Get Per Record Notification Settings
• Get Reminder Notification Settings
• Get Action Settings

Scope : k:app_settings:write

Available API :

• Add Form Fields
• Deploy App Settings
• Add Preview App
• Update Record Permissions
• Update Field Permissions
• Update Form Fields
• Update Form Layout
• Update General Settings
• Update Customization
• Update Views
• Update Process Management Settings
• Delete Form Fields
• Update Graph Settings
• Update General Notification Settings
• Update Per Record Notification Settings
• Update Reminder Notification Settings
• Update Action Settings

Scope : k:file:read

Available API :

• Download File

Scope : k:file:write

Available API :

• Upload File