I currently check fingerprints on first connection and then save them. They're available for most servers, including github and other git providers. I think I've only had to connect to one server without knowing the fingerprint in advance in the last couple of years.

Looks to me like the fingerprint-checking process has to be manual if you can't choose the server certificate.