We don't check the host key and just upload the docs. The worst that
can happen is that an "attacker" gets our docs, and the Kwant website
does not get updated. We enforce the use of public key authentication
only, so an attacker cannot get any credentials, and the docs are
public information, so there is no risk.