ci: post evals-monitor link comment on new PRs

[calvarjorge]

What

Posts a small, one-time comment on every opened/reopened PR linking to the evals-monitor PR page, where the author can start an eval for their PR.

The comment renders as:

🧪  Run evals on this PR  ·  Start eval →

Why this approach

This replaces the direct CI-trigger approach (closed #428). GitHub Actions runners — including databricks-protected-runner-group, even with id-token: write — cannot reach the dogfood.staging workspace; every request is rejected at the network perimeter with 403 RBAC: access denied. Rather than fight that boundary, GitHub just posts a link, and the evals-monitor app (which runs inside dogfood and can reach everything) performs the actual trigger when the user clicks Start eval.

Details

• Triggers on pull_request opened/reopened (targeting main).
• Idempotent: checks for a <!-- pr-eval-link --> marker and skips if already present, so reopen won't double-post.
• No secrets, no Databricks calls, no network egress — just pull-requests: write to post the comment.

Note: only applies to PRs opened/reopened after this merges; existing open PRs won't be back-filled.

This pull request and its description were written by Isaac.

[github-actions]

🔬  Run evals on this PR  ·  Go to Evals Monitor →