This is nonsense. Everyone needs the most secure phone possible, especially considering it's the only device some people will ever own. None of the other de-Googled offerings come close to the security features that Graphene offers, some of which are custom built solutions. They go above and beyond what the typical ROM does, which is why it even supports a lot of banking apps that would normally be blocked.
There's a good reason people talk about GrapheneOS a lot lately, and not any of the many alternative Android ROMs that exist.
Also, let’s keep in mind that GrapheneOS only supports Pixel because they don’t want to allow people to run their OS on hardware they don’t think is secure enough
Obviously. That's the point: Graphene isn't just any de-Googled ROM, it's specifically a product designed for security-conscious users. If someone doesn't care about security and just wants to dick around on an old Android device, they can use one of the many toy ROMs out there (like iodé)
The main goal of Graphene OS is to protect users from some very specific attacks like some devices police uses to unlock phones or some targeted hacks by state actors.
That's simply not true. It does do those things, but that's not "the main goal". Not sure where you got that from?
Yes, although nobody is perfect so it's always a possibility. The difference with Bazzite (and other immutable distros) is if it does happen, all you need to do is reboot and choose the previous version in grub. It'll be like the update never happened, no need to look up or run any magic commands.
Then you just wait until they fix it before updating again.