Restricte Permissions of an API Token

Hey everyone,

I would like to know if there is a way to restrict the API access more granular.
Right now it seems to offer only Full Access or Read-only.

That means a Web-hook to trigger an Incident will have fully access to my PagerDuty Account.

How are you guys solving this issue?

Best Regards

Did you try to set advanced permissions for a user, then generate a user API token for that user and see if that works?