github is far more secure than a private server.
I won't argue whether it really is more secure or not now...
But.. the 'security' doesn't matter because you should always verify the signature of the file anyway.
So even if the server is compromised, even if you download a malicious version.. (which can happen on the website as well as on github, no difference here) you should never install it because the signature check will fail.
Stop trusting a server, verify the files yourself.