fix: don't process non background policies in background scan (#5008)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

pkg/controllers/report/background/controller.go

@@ -203,7 +203,7 @@ func (c *controller) updateReport(ctx context.Context, meta metav1.Object, gvk s
 		policies = append(policies, pols...)
 	}
 	// 	load background policies
-	backgroundPolicies := utils.RemoveNonValidationPolicies(logger, policies...)
+	backgroundPolicies := utils.RemoveNonBackgroundPolicies(logger, policies...)
 	if err != nil {
 		return err
 	}

pkg/controllers/report/utils/utils.go

@@ -30,6 +30,16 @@ func BuildKindSet(logger logr.Logger, policies ...kyvernov1.PolicyInterface) set
 	return kinds
 }
 
+func RemoveNonBackgroundPolicies(logger logr.Logger, policies ...kyvernov1.PolicyInterface) []kyvernov1.PolicyInterface {
+	var backgroundPolicies []kyvernov1.PolicyInterface
+	for _, pol := range policies {
+		if CanBackgroundProcess(logger, pol) {
+			backgroundPolicies = append(backgroundPolicies, pol)
+		}
+	}
+	return backgroundPolicies
+}
+
 func RemoveNonValidationPolicies(logger logr.Logger, policies ...kyvernov1.PolicyInterface) []kyvernov1.PolicyInterface {
 	var validationPolicies []kyvernov1.PolicyInterface
 	for _, pol := range policies {