Oh, nice execution. I had the same idea during the pandemic. Though my aesthetics are completely different as I focused more on the discussions on HN, as they often have some golden nuggets. Yours is of course way more polished, as I basically just slapped bootstrap on my database front end.
Yes, but the web server is just reading files from disk and not invoking an application server. So if you keep your web server up to date, you are at a much lesser risk than if you would also have to keep your application + programming environment secure.
I just want to note I once run this stack on an old Raspberry Pi 2, and it was still really, really fast. Also it's very lightweight. My current setup runs on a box with 256 mb RAM and for a lot of small git repos it's fine. (Larger ones get OOM reaped.)
You interact with Gitolite via ssh. The things Gitolite makes easier for you is it generate those repos for you (no need to login, just push a config file) and it handles access via ssh keys.
I for instance have an own key for my phone, so I can access the repo with my notes etc, but if you steal my phone you cannot push any code.
https://www.mostdiscussed.com/popular