Does Duplicator actually need / write permission?

I’m testing wordpress duplicator, and I’ve successfully migrated wordpress install to a new server. I get why the installer.php actually needs write permissions to / for most cases. However, What elludes me, even after browsing the sources is why does duplicator need permissions to the web root / ? I can’t find any references to anything actually writing there, and enabling php to write there is generally a security risk when not installing. If this is only needed for the installer, can the check from the duplicator package->new setup tab be converted to a warning instead of a fail? I’ve granted duplicator write access to /wp-snapshots, and it *should* be able to work just fine with only that. If it *needs* permissions to write to root right now, what actions need those, and I’ll submit a patch to remove those requirements.

https://wordpress.org/plugins/duplicator/