fix: update cilium scanners to only check running pods

Signed-off-by: deggja <[email protected]>

backend/pkg/k8s/cilium-scanner.go

@@ -189,6 +189,9 @@ func determinePodCoverage(clientset *kubernetes.Clientset, nsName string, polici
 	}
 
 	for _, pod := range pods.Items {
+		if pod.Status.Phase != corev1.PodRunning {
+			continue
+		}
 		podIdentifier := fmt.Sprintf("%s/%s", pod.Namespace, pod.Name)
 		if _, exists := globallyProtectedPods[podIdentifier]; !exists {
 			if !IsPodProtected(writer, clientset, pod, policies, hasDenyAll, globallyProtectedPods) {