You can hash it to check and yes, people do. How does that work: you take the file and encrypt it down to a single 64-ish character string or "hash" then do the same with the one on GitHub.

If both hashes match, it's the same file. It would take an insane amount of effort (years of effort) and tons of useless code injection to get the hashes from two different programs to match without changing the file size. This is how many open source programs are distributed and often how torrents are verified (as torrents are easy ways to distribute viruses without that)

You can hash it to check and yes, people do.