It’s scaring me to download and run a foreign script as root on my phone. So even if hosty doesn’t do anything wrong, we never know what’s happening tomorrow.
Running hosty as a cron job as root gives the owner of the repository access to all of your data and your system. It will be easy for them to install a backdoor without any sign to the user of the phone. So I would comment to not deploy hosty without supervision.
As far as I understand hosty just updates /etc/hosts. Wouldn’t it be simple to download hosty’s data and create your own script, or even analyse, verify and use hosty’s script statically?