fix: remove job-level permissions from benchmark workflow

[slashben]

The benchmark job declared pull-requests: write which conflicts with the release pipeline (incluster-comp-pr-merged.yaml) that only grants pull-requests: read, causing a startup_failure on merge.

Removes the job-level permissions block so the workflow inherits caller permissions. The PR comment step already guards with if: github.event_name == 'pull_request' and now has continue-on-error for safety.

Fixes: https://github.com/kubescape/node-agent/actions/runs/24457924116

[coderabbitai]

Warning

Rate limit exceeded

@slashben has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 55 minutes and 2 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 55 minutes and 2 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 3450476f-192a-4f9c-8852-e333eb891a8e

📥 Commits

Reviewing files that changed from the base of the PR and between 2c7920c and f26a07a.

📒 Files selected for processing (1)

• .github/workflows/benchmark.yaml

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch fix/benchmark-permissions

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Copilot]

Pull request overview

This PR adjusts the reusable benchmark workflow’s permissions so it can be invoked from the release pipeline without failing permission validation, while making PR commenting best-effort.

Changes:

• Removed the benchmark job’s job-level permissions block so the workflow inherits the caller’s permissions (avoids startup_failure when called by workflows granting only pull-requests: read).
• Marked the “Comment on PR” step as continue-on-error: true to prevent permission-related failures from failing the job.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.